Context Navigation

← Previous Changeset
Next Changeset →

Changeset 245069 in webkit

Timestamp:

May 8, 2019 2:18:48 PM (5 years ago)

Author:

Chris Dumez

Message:

Regression: Crash at WebKit: PAL::HysteresisActivity::start
https://bugs.webkit.org/show_bug.cgi?id=197666
<rdar://problem/50037153>

Reviewed by Geoffrey Garen.

We've recently made it so that the WebContent process destroys its WebSQLiteDatabaseTracker when preparing
for process suspension and then re-constructs it when resuming. The issue is that the WebSQLiteDatabaseTracker
internal implementation was calling callOnMainThread() and capturing |this| to start/stop its HysteresisActivity.
As a result, |this| could be dead by the time we're on the main thread and we'd crash.

To address the issue, we no longer destroy the WebSQLiteDatabaseTracker when preparing to suspend. Instead, we
set a 'isSuspended' flag on the WebSQLiteDatabaseTracker so that it stops notifying the WebProcess of changes.

Also clean up the class a bit so that:

The constructor takes in a WTF::Function instead of a NetworkProcess / WebProcess reference. This is provides better layering. The WebSQLiteDatabaseTracker should not need to know anything about those objects.
Use RunLoop::main().dispatch() instead of callOnMainThread() since we're in WebKit2 code.

NetworkProcess/NetworkProcess.cpp:

(WebKit::NetworkProcess::NetworkProcess):

Shared/WebSQLiteDatabaseTracker.cpp:

(WebKit::WebSQLiteDatabaseTracker::WebSQLiteDatabaseTracker):
(WebKit::WebSQLiteDatabaseTracker::~WebSQLiteDatabaseTracker):
(WebKit::WebSQLiteDatabaseTracker::willBeginFirstTransaction):
(WebKit::WebSQLiteDatabaseTracker::didFinishLastTransaction):
(WebKit::WebSQLiteDatabaseTracker::hysteresisUpdated): Deleted.

Shared/WebSQLiteDatabaseTracker.h:
WebProcess/WebProcess.cpp:

(WebKit::m_nonVisibleProcessCleanupTimer):
(WebKit::WebProcess::initializeSQLiteDatabaseTracker):
(WebKit::WebProcess::cancelPrepareToSuspend):
(WebKit::WebProcess::processDidResume):
(WebKit::m_webSQLiteDatabaseTracker): Deleted.

WebProcess/WebProcess.h:

Location:

trunk/Source/WebKit

Files:

: 6 edited

ChangeLog (modified) (1 diff)
NetworkProcess/NetworkProcess.cpp (modified) (1 diff)
Shared/WebSQLiteDatabaseTracker.cpp (modified) (3 diffs)
Shared/WebSQLiteDatabaseTracker.h (modified) (1 diff)
WebProcess/WebProcess.cpp (modified) (4 diffs)
WebProcess/WebProcess.h (modified) (3 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/WebKit/ChangeLog

-                      r245067
+                      r245069
+-05-08  Chris Dumez  <cdumez@apple.com>
+        Regression: Crash at WebKit: PAL::HysteresisActivity::start
+        https://bugs.webkit.org/show_bug.cgi?id=197666
+        <rdar://problem/50037153>
+        Reviewed by Geoffrey Garen.
+        We've recently made it so that the WebContent process destroys its WebSQLiteDatabaseTracker when preparing
+        for process suspension and then re-constructs it when resuming. The issue is that the WebSQLiteDatabaseTracker
+        internal implementation was calling callOnMainThread() and capturing |this| to start/stop its HysteresisActivity.
+        As a result, |this| could be dead by the time we're on the main thread and we'd crash.
+        To address the issue, we no longer destroy the WebSQLiteDatabaseTracker when preparing to suspend. Instead, we
+        set a 'isSuspended' flag on the WebSQLiteDatabaseTracker so that it stops notifying the WebProcess of changes.
+        Also clean up the class a bit so that:
+. The constructor takes in a WTF::Function instead of a NetworkProcess / WebProcess reference. This is provides
+           better layering. The WebSQLiteDatabaseTracker should not need to know anything about those objects.
+. Use RunLoop::main().dispatch() instead of callOnMainThread() since we're in WebKit2 code.
+        * NetworkProcess/NetworkProcess.cpp:
+        (WebKit::NetworkProcess::NetworkProcess):
+        * Shared/WebSQLiteDatabaseTracker.cpp:
+        (WebKit::WebSQLiteDatabaseTracker::WebSQLiteDatabaseTracker):
+        (WebKit::WebSQLiteDatabaseTracker::~WebSQLiteDatabaseTracker):
+        (WebKit::WebSQLiteDatabaseTracker::willBeginFirstTransaction):
+        (WebKit::WebSQLiteDatabaseTracker::didFinishLastTransaction):
+        (WebKit::WebSQLiteDatabaseTracker::hysteresisUpdated): Deleted.
+        * Shared/WebSQLiteDatabaseTracker.h:
+        * WebProcess/WebProcess.cpp:
+        (WebKit::m_nonVisibleProcessCleanupTimer):
+        (WebKit::WebProcess::initializeSQLiteDatabaseTracker):
+        (WebKit::WebProcess::cancelPrepareToSuspend):
+        (WebKit::WebProcess::processDidResume):
+        (WebKit::m_webSQLiteDatabaseTracker): Deleted.
+        * WebProcess/WebProcess.h:
 -05-08  Tim Horton  <timothy_horton@apple.com>

trunk/Source/WebKit/NetworkProcess/NetworkProcess.cpp

r245053	r245069
134	134	#endif
135	135	#if PLATFORM(IOS_FAMILY)
136		, m_webSQLiteDatabaseTracker(*this)
	136	, m_webSQLiteDatabaseTracker([this](bool isHoldingLockedFiles) { parentProcessConnection()->send(Messages::NetworkProcessProxy::SetIsHoldingLockedFiles(isHoldingLockedFiles), 0); })
137	137	#endif
138	138	{

trunk/Source/WebKit/Shared/WebSQLiteDatabaseTracker.cpp

-                      r243939
+                      r245069
 #include "WebProcessProxyMessages.h"
 #include <WebCore/SQLiteDatabaseTracker.h>
-#include <wtf/MainThread.h>
 namespace WebKit {
 using namespace WebCore;
+WebSQLiteDatabaseTracker::WebSQLiteDatabaseTracker(WebProcess& process)
+    : m_process(process)
+    , m_processType(AuxiliaryProcess::ProcessType::WebContent)
+    , m_hysteresis([this](PAL::HysteresisState state) { hysteresisUpdated(state); })
+WebSQLiteDatabaseTracker::WebSQLiteDatabaseTracker(IsHoldingLockedFilesHandler&& isHoldingLockedFilesHandler)
+    : m_isHoldingLockedFilesHandler(WTFMove(isHoldingLockedFilesHandler))
+    , m_hysteresis([this](PAL::HysteresisState state) { setIsHoldingLockedFiles(state == PAL::HysteresisState::Started); })
+{
+    SQLiteDatabaseTracker::setClient(this);
+}
+WebSQLiteDatabaseTracker::WebSQLiteDatabaseTracker(NetworkProcess& process)
+    : m_process(process)
+    , m_processType(AuxiliaryProcess::ProcessType::Network)
+    , m_hysteresis([this](PAL::HysteresisState state) { hysteresisUpdated(state); })
+{
+    ASSERT(RunLoop::isMain());
     SQLiteDatabaseTracker::setClient(this);
+}
 …
     if (m_hysteresis.state() == PAL::HysteresisState::Started)
+        hysteresisUpdated(PAL::HysteresisState::Stopped);
+        setIsHoldingLockedFiles(false);
+}
+void WebSQLiteDatabaseTracker::setIsSuspended(bool isSuspended)
+{
+    ASSERT(RunLoop::isMain());
+    m_isSuspended = isSuspended;
+}
 void WebSQLiteDatabaseTracker::willBeginFirstTransaction()
+{
     callOnMainThread([this] {
+    RunLoop::main().dispatch([this] {
         m_hysteresis.start();
     });
 …
 void WebSQLiteDatabaseTracker::didFinishLastTransaction()
+{
     callOnMainThread([this] {
+    RunLoop::main().dispatch([this] {
         m_hysteresis.stop();
     });
+}
 void WebSQLiteDatabaseTracker::hysteresisUpdated(PAL::HysteresisState state)
+void WebSQLiteDatabaseTracker::setIsHoldingLockedFiles(bool isHoldingLockedFiles)
+{
+    switch (m_processType) {
+    case AuxiliaryProcess::ProcessType::WebContent:
+        m_process.parentProcessConnection()->send(Messages::WebProcessProxy::SetIsHoldingLockedFiles(state == PAL::HysteresisState::Started), 0);
+        break;
+    case AuxiliaryProcess::ProcessType::Network:
+        m_process.parentProcessConnection()->send(Messages::NetworkProcessProxy::SetIsHoldingLockedFiles(state == PAL::HysteresisState::Started), 0);
+        break;
+    default:
+        ASSERT_NOT_REACHED();
+    }
+    ASSERT(RunLoop::isMain());
+    if (m_isSuspended)
+        return;
+    m_isHoldingLockedFilesHandler(isHoldingLockedFiles);
+}

trunk/Source/WebKit/Shared/WebSQLiteDatabaseTracker.h

-                      r243939
+                      r245069
 namespace WebKit {
+class NetworkProcess;
+class WebProcess;
+class WebSQLiteDatabaseTracker : public WebCore::SQLiteDatabaseTrackerClient {
+class WebSQLiteDatabaseTracker final : public WebCore::SQLiteDatabaseTrackerClient {
     WTF_MAKE_NONCOPYABLE(WebSQLiteDatabaseTracker)
 public:
     explicit WebSQLiteDatabaseTracker(WebProcess&);
     explicit WebSQLiteDatabaseTracker(NetworkProcess&);
+    using IsHoldingLockedFilesHandler = Function<void(bool)>;
+    explicit WebSQLiteDatabaseTracker(IsHoldingLockedFilesHandler&&);
     ~WebSQLiteDatabaseTracker();
+    // WebCore::SQLiteDatabaseTrackerClient
+    void willBeginFirstTransaction() override;
+    void didFinishLastTransaction() override;
+    void setIsSuspended(bool);
 private:
     void hysteresisUpdated(PAL::HysteresisState);
+    void setIsHoldingLockedFiles(bool);
+    AuxiliaryProcess& m_process;
+    AuxiliaryProcess::ProcessType m_processType;
+    // WebCore::SQLiteDatabaseTrackerClient.
+    void willBeginFirstTransaction() final;
+    void didFinishLastTransaction() final;
+    IsHoldingLockedFilesHandler m_isHoldingLockedFilesHandler;
     PAL::HysteresisActivity m_hysteresis;
+    bool m_isSuspended { false };
 };

trunk/Source/WebKit/WebProcess/WebProcess.cpp

-                      r244979
+                      r245069
     , m_nonVisibleProcessCleanupTimer(*this, &WebProcess::nonVisibleProcessCleanupTimerFired)
 #if PLATFORM(IOS_FAMILY)
     , m_webSQLiteDatabaseTracker(std::make_unique<WebSQLiteDatabaseTracker>(*this))
+    , m_webSQLiteDatabaseTracker([this](bool isHoldingLockedFiles) { parentProcessConnection()->send(Messages::WebProcessProxy::SetIsHoldingLockedFiles(isHoldingLockedFiles), 0); })
 #endif
+{
 …
 #if PLATFORM(IOS_FAMILY)
     m_webSQLiteDatabaseTracker = nullptr;
+    m_webSQLiteDatabaseTracker.setIsSuspended(true);
     SQLiteDatabase::setIsDatabaseOpeningForbidden(true);
     if (DatabaseTracker::isInitialized())
 …
 #if PLATFORM(IOS_FAMILY)
     m_webSQLiteDatabaseTracker = std::make_unique<WebSQLiteDatabaseTracker>(*this);
+    m_webSQLiteDatabaseTracker.setIsSuspended(false);
     SQLiteDatabase::setIsDatabaseOpeningForbidden(false);
     accessibilityProcessSuspendedNotification(false);
 …
 #if PLATFORM(IOS_FAMILY)
     m_webSQLiteDatabaseTracker = std::make_unique<WebSQLiteDatabaseTracker>(*this);
+    m_webSQLiteDatabaseTracker.setIsSuspended(false);
     SQLiteDatabase::setIsDatabaseOpeningForbidden(false);
     accessibilityProcessSuspendedNotification(false);

trunk/Source/WebKit/WebProcess/WebProcess.h

-                      r244091
+                      r245069
 #include "WebInspectorInterruptDispatcher.h"
 #include "WebProcessCreationParameters.h"
+#include "WebSQLiteDatabaseTracker.h"
 #include <WebCore/ActivityState.h>
 #include <WebCore/RegistrableDomain.h>
 …
 struct WebPageGroupData;
 struct WebPreferencesStore;
-class WebSQLiteDatabaseTracker;
 struct WebsiteData;
 struct WebsiteDataStoreParameters;
 …
 #if PLATFORM(IOS_FAMILY)
     std::unique_ptr<WebSQLiteDatabaseTracker> m_webSQLiteDatabaseTracker;
+    WebSQLiteDatabaseTracker m_webSQLiteDatabaseTracker;
     ProcessTaskStateObserver m_taskStateObserver { *this };
 #endif

Note: See TracChangeset for help on using the changeset viewer.