RESOLVED FIXED207313
Crash when printing at WebCore: WebCore::FrameView::paintContents 
https://bugs.webkit.org/show_bug.cgi?id=207313
Summary Crash when printing at WebCore: WebCore::FrameView::paintContents
David Kilzer (:ddkilzer)
Reported 2020-02-05 17:03:16 PST
Crash when printing at WebCore: WebCore::FrameView::paintContents: Crashed Thread: 0 Dispatch queue: com.apple.main-thread Exception Type: EXC_BAD_ACCESS (SIGSEGV) Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000110 Exception Note: EXC_CORPSE_NOTIFY Termination Signal: Segmentation fault: 11 Termination Reason: Namespace SIGNAL, Code 0xb Terminating Process: exc handler [34336] VM Regions Near 0x110: --> __TEXT 0000000107afe000-0000000107aff000 [ 4K] r-x/r-x SM=COW /System/Library/Frameworks/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 com.apple.WebCore 0x00007fff3ebd17bf WebCore::FrameView::paintContents(WebCore::GraphicsContext&, WebCore::IntRect const&, WebCore::Widget::SecurityOriginPaintPolicy) + 31 1 com.apple.WebCore 0x00007fff3ec0be93 WebCore::PrintContext::spoolRect(WebCore::GraphicsContext&, WebCore::IntRect const&) + 307 2 com.apple.WebKit 0x00007fff3fce8936 WebKit::WebPage::drawRectToImage(unsigned long long, WebKit::PrintInfo const&, WebCore::IntRect const&, WebCore::IntSize const&, WebKit::CallbackID) + 346 3 com.apple.WebKit 0x00007fff3fcfba1e WebKit::WebPage::didReceiveWebPageMessage(IPC::Connection&, IPC::Decoder&) + 26868 4 com.apple.WebKit 0x00007fff3f885e36 IPC::MessageReceiverMap::dispatchMessage(IPC::Connection&, IPC::Decoder&) + 114 5 com.apple.WebKit 0x00007fff3fbfbefe WebKit::WebProcess::didReceiveMessage(IPC::Connection&, IPC::Decoder&) + 28 6 com.apple.WebKit 0x00007fff3f86f221 IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >) + 229 7 com.apple.WebKit 0x00007fff3f875b8e WTF::Detail::CallableWrapper<IPC::Connection::enqueueIncomingMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >)::$_11, void>::call() + 214 8 com.apple.JavaScriptCore 0x00007fff3334252d WTF::RunLoop::performWork() + 237 9 com.apple.JavaScriptCore 0x00007fff3334280a WTF::RunLoop::performWork(void*) + 26 10 com.apple.CoreFoundation 0x00007fff2ecefb21 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17 11 com.apple.CoreFoundation 0x00007fff2ecefac0 __CFRunLoopDoSource0 + 103 12 com.apple.CoreFoundation 0x00007fff2ecef8d4 __CFRunLoopDoSources0 + 209 13 com.apple.CoreFoundation 0x00007fff2ecee740 __CFRunLoopRun + 1272 14 com.apple.CoreFoundation 0x00007fff2ecedbd3 CFRunLoopRunSpecific + 499 15 com.apple.Foundation 0x00007fff31391188 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 212 16 com.apple.Foundation 0x00007fff31444d6b -[NSRunLoop(NSRunLoop) run] + 76 17 libxpc.dylib 0x00007fff66598191 _xpc_objc_main.cold.4 + 49 18 libxpc.dylib 0x00007fff665980d7 _xpc_objc_main + 559 19 libxpc.dylib 0x00007fff66597c0a xpc_main + 377 20 com.apple.WebKit 0x00007fff3f9c5a30 WebKit::XPCServiceMain(int, char const**) + 539 21 libdyld.dylib 0x00007fff6634a7fd start + 1
Attachments
Patch v1 (2.23 KB, patch)
2020-02-05 17:14 PST, David Kilzer (:ddkilzer) 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
David Kilzer (:ddkilzer)
Comment 1 2020-02-05 17:03:41 PST
<rdar://problem/56675778>
David Kilzer (:ddkilzer)
Comment 2 2020-02-05 17:14:50 PST
Created attachment 389905 [details] Patch v1
Brent Fulgham
Comment 3 2020-02-05 17:16:15 PST
Comment on attachment 389905 [details] Patch v1 r=me
David Kilzer (:ddkilzer)
Comment 4 2020-02-05 21:02:34 PST
Failed mac-wk1 tests (retrying): https://ews-build.webkit.org/#/builders/30/builds/2263
WebKit Commit Bot
Comment 5 2020-02-05 23:00:45 PST
Comment on attachment 389905 [details] Patch v1 Clearing flags on attachment: 389905 Committed r255908: <https://trac.webkit.org/changeset/255908>
WebKit Commit Bot
Comment 6 2020-02-05 23:00:47 PST
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.