search

MicrosoftEdge / WebView2Feedback

Feedback and discussions about Microsoft Edge WebView2
https://aka.ms/webview2
423 stars 51 forks source link

Crash occurs when viewing a PDF file #4381

Open fvanheeswijk opened 4 months ago

fvanheeswijk commented 4 months ago

What happened?

We have a report that the WebView2 browser has crashed when the user was viewing a PDF file (using the PDF.js component) and it generated a crashdump. Due to privacy concerns we are wary of sharing the crashdump itself but we can share the output of !analyze -v with WinDbg.

Is this information of any use to fix this problem that seemingly does not reproduce consistently?

*******************************************************************************
* *
* Exception Analysis *
* *
*******************************************************************************

KEY_VALUES_STRING: 1
Key : Analysis.CPU.mSec
Value: 8999
Key : Analysis.Elapsed.mSec
Value: 9734
Key : Analysis.IO.Other.Mb
Value: 107
Key : Analysis.IO.Read.Mb
Value: 2
Key : Analysis.IO.Write.Mb
Value: 527
Key : Analysis.Init.CPU.mSec
Value: 2124
Key : Analysis.Init.Elapsed.mSec
Value: 416859
Key : Analysis.Memory.CommitPeak.Mb
Value: 1202
Key : Failure.Bucket
Value: BREAKPOINT_80000003_msedge.dll!blink::AXObjectCacheImpl::SerializeEntireTree
Key : Failure.Hash
Value: {57b618c1-024e-5220-b476-135cfaa5ecb5}
Key : Timeline.Process.Start.DeltaSec
Value: 10
Key : WER.OS.Branch
Value: rs5_release
Key : WER.OS.Version
Value: 10.0.17763.1
Key : WER.Process.Version
Value: 121.0.2277.112

FILE_IN_CAB: 2c097a95-bddc-4259-83aa-fbe3ec39420f.dmp
NTGLOBALFLAG: 0
PROCESS_BAM_CURRENT_THROTTLED: 0
PROCESS_BAM_PREVIOUS_THROTTLED: 0
APPLICATION_VERIFIER_FLAGS: 0
CONTEXT: (.ecxr)
rax=0000000000000001 rbx=0000000000000000 rcx=000020ec01066f40
rdx=0000000000000000 rsi=0000009dbc3fbf48 rdi=00001c34002ea4e8
rip=00007ff9a5a2c8f9 rsp=0000009dbc3fba80 rbp=0000009dbc3fc158
r8=0000000000000000 r9=0000009dbc3fbf48 r10=00001c3400da8a90
r11=0000000000000dfb r12=0000009dbc3fbcf0 r13=0000009dbc3fbf50
r14=0000000000000000 r15=00001c34002ea4e8
iopl=0 nv up ei pl nz na pe nc
cs=0033 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000202
msedge!blink::AXObjectCacheImpl::SerializeEntireTree+0x199:
00007ff9`a5a2c8f9 cc int 3
Resetting default scope
EXCEPTION_RECORD: (.exr -1)
ExceptionAddress: 00007ff9a5a2c8f9 (msedge!blink::AXObjectCacheImpl::SerializeEntireTree+0x0000000000000199)
ExceptionCode: 80000003 (Break instruction exception)
ExceptionFlags: 00000000
NumberParameters: 1
Parameter[0]: 0000000000000000
PROCESS_NAME: msedgewebview2.exe
ERROR_CODE: (NTSTATUS) 0x80000003 - {EXCEPTION} Breakpoint A breakpoint has been reached.
EXCEPTION_CODE_STR: 80000003
EXCEPTION_PARAMETER1: 0000000000000000
STACK_TEXT:
0000009d`bc3fba80 00007ff9`a5f83a5f : 00000000`00000030 000020ec`05c66f40 00000000`00000030 000020ec`05c66f40 : msedge!blink::AXObjectCacheImpl::SerializeEntireTree+0x199
0000009d`bc3fbc60 00007ff9`a4d02e6c : 00007ff9`aa948e60 000020ec`03598000 00000000`00000000 000020ec`05ddde20 : msedge!blink::WebAXContext::SerializeEntireTree+0xc9
0000009d`bc3fbcc0 00007ff9`a4d02d6c : 000020ec`05c66f40 00007ff9`9d9606d4 000020ec`03598000 00000000`00000000 : msedge!content::AXTreeSnapshotterImpl::SerializeTreeWithLimits+0x38
0000009d`bc3fbd30 00007ff9`a506b2ba : 000020ec`04bd0380 00007ff9`a8c83c68 0000009d`bc3fbf48 000020ec`04bd0380 : msedge!content::AXTreeSnapshotterImpl::Snapshot+0xcc
0000009d`bc3fbee0 00007ff9`a506af27 : 00000000`00000000 0000009d`bc3fc158 00000000`00000000 00007ff9`a8f2e11c : msedge!printing::PrintRenderFrameHelper::PreviewPageRendered+0xfe
0000009d`bc3fc0f0 00007ff9`a506a2d1 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : msedge!printing::PrintRenderFrameHelper::RenderPreviewPage+0x24d
0000009d`bc3fc1c0 00007ff9`a5069dc3 : 000020ec`0841ae20 0000009d`bc3fc448 000020ec`019a4200 0000009d`bc3fc3b8 : msedge!printing::PrintRenderFrameHelper::CreatePreviewDocument+0x4f7
0000009d`bc3fc300 00007ff9`a50639ec : aaaaaaaa`aaaaaa00 00000000`00000040 000020ec`01b24520 000020ec`01039e00 : msedge!printing::PrintRenderFrameHelper::OnFramePreparedForPreviewDocument+0x23
0000009d`bc3fc330 00007ff9`a5067cd3 : 00000000`0000004a 00007ff9`a9a4b4f0 00000000`0000000b 00000000`00000000 : msedge!printing::PrepareFrameAndViewForPrint::BeginPrinting+0x7e
0000009d`bc3fc390 00007ff9`a506736e : 00000000`000000b0 0000009d`bc3fc618 0000009d`bc3fc601 00007ff9`9befc66d : msedge!printing::PrintRenderFrameHelper::PrepareFrameForPreviewDocument+0x179
0000009d`bc3fc400 00007ff9`a1dcc0e6 : 000020ec`002f9f80 00007ff9`9befc66d 00000000`0000103c 0000009d`003fc538 : msedge!printing::PrintRenderFrameHelper::PrintPreview+0x24e
0000009d`bc3fc4e0 00007ff9`9bd7c6d6 : 000020ec`035bdc18 00007ff9`9befc515 00000000`00000000 00000000`00000000 : msedge!printing::mojom::PrintRenderFrameStubDispatch::Accept+0x1d2
0000009d`bc3fc5a0 00007ff9`9b989788 : aaaaaaaa`aaaaaaaa 00007ff9`9b98951e aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!mojo::InterfaceEndpointClient::HandleIncomingMessageThunk::Accept+0x566
0000009d`bc3fc6e0 00007ff9`9b9893ed : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!mojo::MessageDispatcher::Accept+0xe8
0000009d`bc3fc750 00007ff9`9c8c2f53 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!mojo::InterfaceEndpointClient::HandleIncomingMessage+0x57
0000009d`bc3fc8e0 00007ff9`9cace13c : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!IPC::`anonymous namespace'::ChannelAssociatedGroupController::AcceptOnEndpointThread+0xf3
0000009d`bc3fc990 00007ff9`9ed17a55 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!base::internal::Invoker<base::internal::BindState<void (IPC::(anonymous namespace)::ChannelAssociatedGroupController::*)(mojo::Message, IPC::(anonymous namespace)::ScopedUrgentMessageNotification),scoped_refptr<IPC::(anonymous namespace)::ChannelAssociatedGroupController>,mojo::Message,IPC::(anonymous namespace)::ScopedUrgentMessageNotification>,void ()>::RunOnce+0x14c
0000009d`bc3fca70 00007ff9`9ed16084 : 00000000`44ee0000 00000000`00000000 00000000`00000000 00000000`00000000 : msedge!base::TaskAnnotator::RunTaskImpl+0x175
0000009d`bc3fcbb0 00007ff9`9ed14f08 : aaaaaaaa`aaaaaa00 aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::DoWorkImpl+0x574
0000009d`bc3fce60 00007ff9`9c836ab3 : 0000009d`bc3fd0e8 0000009d`bc3fd100 000020ec`00220d58 00007ff9`9e131020 : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::DoWork+0xb8
0000009d`bc3fcf70 00007ff9`9d157692 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : msedge!base::MessagePumpDefault::Run+0x83
0000009d`bc3fd020 00007ff9`9d2845bb : 000020ec`083eb970 00007ff9`a1dce06b 000020ec`01039e00 00007ff9`9edbcad0 : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::Run+0x1e2
0000009d`bc3fd0a0 00007ff9`a5065a5e : 000067a1`58075861 000020ec`01039e00 00001c34`0029b5d8 000020ec`01039e08 : msedge!base::RunLoop::Run+0xfb
0000009d`bc3fd1a0 00007ff9`a506549d : 000020ec`0083c080 00000294`00000000 000020ec`00891ff0 00007ff9`9d5e1de7 : msedge!printing::PrintRenderFrameHelper::RequestPrintPreview+0x4ce
0000009d`bc3fd290 00007ff9`a3ebede7 : 000020ec`00891ff0 00007ff9`a5e4cce6 00001c34`008be250 00000001`00000004 : msedge!printing::PrintRenderFrameHelper::ScriptedPrint+0x1ad
0000009d`bc3fd320 00007ff9`a5bbba6d : 000067a1`58075a31 00000294`0004b5e1 00000294`0016b415 00000294`0016b415 : msedge!content::RenderFrameImpl::ScriptedPrint+0x257
0000009d`bc3fd3c0 00007ff9`9c90dd02 : 00000294`0016b485 00002278`00038a59 000020ec`0083c080 00000294`00000000 : msedge!blink::ChromeClient::Print+0xad
0000009d`bc3fd420 00007ff9`9c90b76a : 00000294`0004b5a5 00000000`00000000 00000294`0016b485 00000294`0016ffd1 : msedge!Builtins_CallApiCallbackGeneric+0xc2
0000009d`bc3fd488 00007ff9`9c90949c : 00000294`0016b415 00000294`00226459 00000000`0000002e 0000009d`bc3fd660 : msedge!Builtins_InterpreterEntryTrampoline+0x12a
0000009d`bc3fd530 00007ff9`9c90909b : 00000000`00000000 00000000`00000000 00000000`00000002 00000000`00000000 : msedge!Builtins_JSEntryTrampoline+0x5c
0000009d`bc3fd558 00007ff9`9bea88c8 : 00000000`00000000 00000000`00000000 00000000`00000000 00007ff9`9bcfbee4 : msedge!Builtins_JSEntry+0xdb
0000009d`bc3fd670 00007ff9`9be4a9ab : 000020ec`00890078 00000294`000006e9 00000000`00000008 0000009d`bc3fdac0 : msedge!v8::internal::Execution::Call+0x228
0000009d`bc3fd850 00007ff9`9be478bc : 000020ec`00270540 00007ff9`9f138bdf 00000386`8002af2c 00000000`00000000 : msedge!v8::Function::Call+0x36b
0000009d`bc3fda20 00007ff9`9c3aab19 : 000067a1`58075251 00001c34`00148120 00000000`00000000 000020ec`00270540 : msedge!blink::V8ScriptRunner::CallFunction+0x25c
0000009d`bc3fdba0 00007ff9`9c3a94a2 : 000020ec`0084a240 00007ff9`9c3a941e aaaaaaaa`aaaaaaaa 00000fff`3372839c : msedge!blink::bindings::CallbackInvokeHelper<blink::CallbackFunctionWithTaskAttributionBase,0,0>::Call+0xe9
0000009d`bc3fdc50 00007ff9`9c3a8e6b : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa 00000000`00000000 00000000`00000000 : msedge!blink::V8Function::Invoke+0x382
0000009d`bc3fde70 00007ff9`9c3a89f4 : 00000000`00000000 00007ff9`9b985795 00000000`00000000 00000000`00000000 : msedge!blink::V8Function::InvokeAndReportException+0xcb
0000009d`bc3fdf40 00007ff9`9c3a7de6 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!blink::ScheduledAction::Execute+0x18e
0000009d`bc3fe1e0 00007ff9`9c8c5bc3 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!blink::DOMTimer::Fired+0x226
0000009d`bc3fe380 00007ff9`9ed17a55 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!base::internal::Invoker<base::internal::BindState<void (__cdecl blink::TimerBase::*)(void) __ptr64,WTF::UnretainedWrapper<blink::TimerBase> >,void __cdecl(void)>::RunOnce+0x83
0000009d`bc3fe440 00007ff9`9ed16084 : 000067a1`58076c31 00000000`00000048 ca9499f6`a5d295b8 00007ff9`aa948e60 : msedge!base::TaskAnnotator::RunTaskImpl+0x175
0000009d`bc3fe580 00007ff9`9ed14f08 : aaaaaaaa`aaaaaa00 aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::DoWorkImpl+0x574
0000009d`bc3fe830 00007ff9`9c836ab3 : 00000001`00000000 0000009d`bc3feb00 000020ec`00220d58 000020ec`00220d60 : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::DoWork+0xb8
0000009d`bc3fe940 00007ff9`9d15758f : 00000000`00004f25 00007ff9`a93d0921 00000000`00000040 0000009d`bc3fea90 : msedge!base::MessagePumpDefault::Run+0x83
0000009d`bc3fe9f0 00007ff9`9d2845bb : 72657377`6f72422e 6f546863`6e75614c 53706f6f`4c6e7552 00000080`74726174 : msedge!base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::Run+0xdf
0000009d`bc3fea70 00007ff9`9b3561e7 : 0000009d`bc3fee78 0000009d`bc3fee78 00000000`00000801 0000009d`bc3fece0 : msedge!base::RunLoop::Run+0xfb
0000009d`bc3feb70 00007ff9`9b34c634 : 00000000`00000000 00007ff9`9cbfb8c5 00007ff9`00000000 00007ff9`9b961575 : msedge!content::RendererMain+0x637
0000009d`bc3fedb0 00007ff9`9b34b5b9 : 08000000`00000000 000067a1`580767d1 000067a1`580764e1 00000000`ffffffff : msedge!content::RunOtherNamedProcessTypeMain+0x1a0
0000009d`bc3fef40 00007ff9`9b34aea4 : 000020ec`002600a0 00007ff9`9b941eca 00000000`00000002 000020ec`002ac240 : msedge!content::ContentMainRunnerImpl::Run+0x2c9
0000009d`bc3ff0b0 00007ff9`9b349fb1 : aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa aaaaaaaa`aaaaaaaa 000020ec`002600a0 : msedge!content::RunContentProcess+0x215
0000009d`bc3ff2f0 00007ff9`9b349903 : 00007ff7`bac20000 0000009d`bc3ff710 0000605c`002ac000 00000000`00000000 : msedge!content::ContentMain+0x73
0000009d`bc3ff380 00007ff7`bac6e9a0 : 00007ff7`baec1b80 00007ff9`9b349630 00000000`00000000 0000605c`00274090 : msedge!ChromeMain+0x2d3
0000009d`bc3ff6b0 00007ff7`bac6bb47 : 00000000`0000000a 00000000`00000000 00000000`00000000 0000009d`bc3ffae0 : msedgewebview2!MainDllLoader::Launch+0x388
0000009d`bc3ff940 00007ff7`bad4f342 : 00007ff7`bae95140 00007ff7`bad4f3b9 00000000`00000000 00007ffa`03187630 : msedgewebview2!wWinMain+0x45e
0000009d`bc3ffe40 00007ffa`06bd7ac4 : 00007ff7`bad4f3b0 0000009d`bc3ffe90 00000000`00000030 00000000`00000000 : msedgewebview2!__scrt_common_main_seh+0x106
0000009d`bc3ffe80 00007ff7`bae6381d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0x14
0000009d`bc3ffeb0 00007ffa`06eea351 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : msedgewebview2!TargetBaseThreadInitThunk+0x40
0000009d`bc3fff40 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x21

STACK_COMMAND: ~0s; .ecxr ; kb
SYMBOL_NAME: msedge!blink::AXObjectCacheImpl::SerializeEntireTree+199
MODULE_NAME: msedge
IMAGE_NAME: msedge.dll
FAILURE_BUCKET_ID: BREAKPOINT_80000003_msedge.dll!blink::AXObjectCacheImpl::SerializeEntireTree
OS_VERSION: 10.0.17763.1
BUILDLAB_STR: rs5_release
OSPLATFORM_TYPE: x64
OSNAME: Windows 10
IMAGE_VERSION: 121.0.2277.112
FAILURE_ID_HASH: {57b618c1-024e-5220-b476-135cfaa5ecb5}
Followup: MachineOwner

Importance

Moderate. My app's user experience is affected, but still usable.

Runtime Channel

Stable release (WebView2 Runtime)

Runtime Version

121.0.2277.112

SDK Version

1.0.1938.49

Framework

Winforms

Operating System

Windows Server

OS Version

17763.4851

Repro steps

None in particular, it reproduces randomly and causes a crash that generates a minidump.

Repros in Edge Browser

Not Applicable

Regression

Don't know

Last working version (if regression)

No response

AB#47259111

fvanheeswijk commented 2 months ago

Is there any news on this?