We have recently migrated to WKWebview. We have added a listener for cookie change, to get the updated cookies and update our own store.
- (void)cookiesDidChangeInCookieStore:(WKHTTPCookieStore *)cookieStore {
[cookieStore getAllCookies:^(NSArray* cookies) {
}];
}
Once the controller is loaded, it calls cookiesDidChangeInCookieStore and crashes at "getAllCookies".But this crash happens only in TestFlight/Fabric build. Doesn't happen when i run the app directly on device from xcode (both in debug and release mode). Below is the crash report,
Thread 9 name: WebThread
Thread 9 Crashed:
0 WebKit 0x0000000192fbfc10 WebKit::CallbackMap::put+ 1186832 (WTF::Ref<WebKit::CallbackBase, WTF::DumbPtrTraits<WebKit::CallbackBase> >&&) + 128
1 WebKit 0x0000000192fbfbb4 WebKit::CallbackMap::put+ 1186740 (WTF::Ref<WebKit::CallbackBase, WTF::DumbPtrTraits<WebKit::CallbackBase> >&&) + 36
2 WebKit 0x00000001930490cc WebKit::CallbackID WebKit::CallbackMap::put<WTF::Vector<WebCore::Cookie, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc> const&, WebKit::CallbackBase::Error>(WTF::Function<void + 1749196 (WTF::Vector<WebCore::Cookie, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc> const&, WebKit::CallbackBase::Error)>&&) + 136
3 WebKit 0x0000000193049008 WebKit::WebCookieManagerProxy::getAllCookies(PAL::SessionID, WTF::Function<void + 1749000 (WTF::Vector<WebCore::Cookie, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc> const&, WebKit::CallbackBase::Error)>&&) + 44
4 WebKit 0x0000000192eb5b90 API::HTTPCookieStore::cookies(WTF::Function<void + 97168 (WTF::Vector<WebCore::Cookie, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc> const&)>&&) + 124
5 WebKit 0x00000001931fbdf8 -[WKHTTPCookieStore getAllCookies:] + 92
6 WebKit 0x00000001931fc96c WKHTTPCookieStoreObserver::cookiesDidChange+ 3533164 (API::HTTPCookieStore&) + 44
7 WebKit 0x0000000192eb61b0 API::HTTPCookieStore::cookiesDidChange+ 98736 () + 72
8 JavaScriptCore 0x000000018a0e17d4 WTF::dispatchFunctionsFromMainThread+ 6100 () + 344
9 JavaScriptCore 0x000000018a208650 WTF::timerFired+ 1214032 (__CFRunLoopTimer*, void*) + 40
10 CoreFoundation 0x0000000183527aa8 __CFRUNLOOP_IS_CALLING_OUT_TO_A_TIMER_CALLBACK_FUNCTION__ + 28
11 CoreFoundation 0x000000018352776c __CFRunLoopDoTimer + 864
12 CoreFoundation 0x0000000183527010 __CFRunLoopDoTimers + 248
13 CoreFoundation 0x0000000183524b60 __CFRunLoopRun + 2168
14 CoreFoundation 0x0000000183444da8 CFRunLoopRunSpecific + 552
15 WebCore 0x000000018b6d1dcc RunWebThread+ 265676 (void*) + 592
16 libsystem_pthread.dylib 0x00000001831a5220 _pthread_body + 272
17 libsystem_pthread.dylib 0x00000001831a5110 _pthread_body + 0
18 libsystem_pthread.dylib 0x00000001831a3b10 thread_start + 4
Looks like there is an overflow when getAllCookies is called.This happens only in iOS 11.3.
I was able to fix this crash by calling getAllCookies asynchronously in the main thread.
After some investigation we have come to the following working solution:
Backstory
We have a crash when the user updates to a newer version of our App.
Problem
We were using UIWebView and injecting cookies into it. The problem comes when:
getAllCookies(_ completionHandler: @escaping ([HTTPCookie]) -> Void)
on the componentwkhttpcookiestore
so we can loop through them and remove them one by one.Verdict
UIWebView uses
nshttpcookiestorage
: https://developer.apple.com/documentation/foundation/nshttpcookiestorageWKWebView uses
wkhttpcookiestore
: https://developer.apple.com/documentation/webkit/wkhttpcookiestoreSomewhere in the middle of the synchronisation from
nshttpcookiestorage
to thewkhttpcookiestore
when we try to retrieve the cookies, it is passing one of the values as a NSURL and then someone is callinglength()
function on that object which crashes because NSURL does not have that function.Resolution
Therefore, we should remove the cookies that are set on the
nshttpcookiestorage
with the right method which is by using:HTTPCookieStorage.shared.removeCookies(since: Date.distantPast)
and then remove the cookies from thewkhttpcookiestore
with the right method that isremoveData(ofTypes:for:completionHandler:)
and set the type asWKWebsiteDataTypeCookies
rather than looping through all the cookies and removing them one by one.Test Considerations
All tests MUST be done on real devices (iPhone/iPad) since this crash is NOT reproducible on iOS simulators.
Code Snippet