chromium/src
0
Fork 0
Code Activity

[iOS] fix crash when deleting last incognito tab.

Browse Source 
In some circumstances, |connectedScenes| can contain a scene with
no associated SceneController while cleaning up after the last OTR tab.

This CL ensures that when this happens, the nil controller isn't added
to the controller array.

(Root cause for this state is unclear; some comments are added here as
well to guide future investigations).

Bug: 1142782
Change-Id: I33617e6e2252a2124870430c2eefc2cb4158a28c
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2506440
Commit-Queue: Mark Cogan <marq@chromium.org>
Reviewed-by: Robbie Gibson <rkgibson@google.com>
Cr-Commit-Position: refs/heads/master@{#822260}
This commit is contained in:
Mark Cogan
2020-10-29 18:02:08 +00:00
committed by Commit Bot
parent 0cbb40a94c
commit 463dba9072
2 changed files with 9 additions and 4 deletions
ios/chrome
app
application_delegate
app_state.mm
browser
ui
main
scene_controller.mm

4
ios/chrome/app/application_delegate/app_state.mm

@ -200,7 +200,6 @@ initWithBrowserLauncher:(id<BrowserLauncher>)browserLauncher
- (void)setMainSceneState:(SceneState*)mainSceneState {
DCHECK(!_mainSceneState);
_mainSceneState = mainSceneState;
[self.observers appState:self sceneConnected:mainSceneState];
}
@ -577,7 +576,8 @@ initWithBrowserLauncher:(id<BrowserLauncher>)browserLauncher
for (UIWindowScene* scene in connectedScenes) {
if (![scene.delegate isKindOfClass:[SceneDelegate class]]) {
// This might happen in tests.
// TODO(crbug.com/1113097): This shouldn't be needed.
// TODO(crbug.com/1113097): This shouldn't be needed. (It might also
// be the cause of crbug.com/1142782).
[sceneStates addObject:[[SceneState alloc] initWithAppState:self]];
continue;
}

9
ios/chrome/browser/ui/main/scene_controller.mm

@ -2390,9 +2390,14 @@ const char kMultiWindowOpenInNewWindowHistogram[] =
NSMutableArray<SceneController*>* sceneControllers =
[[NSMutableArray alloc] init];
for (SceneState* sceneState in self.sceneState.appState.connectedScenes) {
for (SceneState* sceneState in [self.sceneState.appState connectedScenes]) {
SceneController* sceneController = sceneState.controller;
[sceneControllers addObject:sceneController];
// In some circumstances, the scene state may still exist while the
// corresponding scene controller has been deallocated.
// (see crbug.com/1142782).
if (sceneController) {
[sceneControllers addObject:sceneController];
}
}
for (SceneController* sceneController in sceneControllers) {