260187 – AX: Crash in [WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUnit:].

Bug 260187 - AX: Crash in [WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUnit:].

Summary: AX: Crash in [WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUn...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Accessibility (show other bugs)
Version:	WebKit Nightly Build
Hardware:	All All

Importance:	P2 Normal
Assignee:	Andres Gonzalez

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2023-08-14 18:51 PDT by Andres Gonzalez
Modified:	2023-08-15 07:20 PDT (History)
CC List:	11 users (show)

See Also:

Attachments
Patch (2.45 KB, patch) 2023-08-14 19:30 PDT, Andres Gonzalez	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andres Gonzalez 2023-08-14 18:51:50 PDT

33 bmalloc::api::IsoHeap<WebCore::EXTTextureFilterAnisotropic>::deallocate(void*) <==
        33 WebCore::EXTTextureFilterAnisotropic::operator delete(void*)
          33 WebCore::EXTTextureFilterAnisotropic::~EXTTextureFilterAnisotropic()
            33 WebCore::appendTextContent(WebCore::Node const*, bool, bool&, WTF::StringBuilder&)
              33 WebCore::Node::textContent(bool) const
                33 WebCore::characterForCharacterOffset(WebCore::CharacterOffset const&)
                  33 WebCore::AXObjectCache::characterBefore(WebCore::CharacterOffset const&)
                    33 WebCore::AXObjectCache::previousBoundary(WebCore::CharacterOffset const&, unsigned int (*)(WTF::StringView, unsigned int, WebCore::BoundarySearchContextAvailability, bool&), WebCore::AXObjectCache::NeedsContextAtParagraphStart)
                      33 WebCore::AXObjectCache::startCharacterOffsetOfWord(WebCore::CharacterOffset const&, WebCore::EWordSide)
                        33 WebCore::AXObjectCache::leftWordRange(WebCore::CharacterOffset const&)
                          33 -[WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUnit:]::$_54::operator()() const
                            33 __AXTextMarkerRange const* WebCore::Accessibility::retrieveAutoreleasedValueFromMainThread<__AXTextMarkerRange const*, -[WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUnit:]::$_54>(-[WebAccessibilityObjectWrapper textMarkerRangeAtTextMarker:forUnit:]::$_54&&)::'lambda'()::operator()() const

Comment 1 Radar WebKit Bug Importer 2023-08-14 18:52:00 PDT

<rdar://problem/113884045>

Comment 2 Andres Gonzalez 2023-08-14 18:55:07 PDT

rdar://110921099

Comment 3 Andres Gonzalez 2023-08-14 19:30:18 PDT

Created attachment 467275 [details]
Patch

Comment 4 EWS 2023-08-15 07:20:23 PDT

Committed 266909@main (435522c0b090): <https://commits.webkit.org/266909@main>

All reviewed patches have been landed. Closing bug and clearing flags on attachment 467275 [details].