Critical PDFKit crash (iOS 11 and macOS 10.13 High Sierra) with a normal document (CGPDFNodeCreateFromStructureTree)

Originator:felipekellermann
Number:rdar://33966285 Date Originated:August 18 2017
Status:Closed Resolved:11.0 beta 7 (15A5362a)
Product:iOS Product Version:iOS 11 (15A5354b)
Classification:Serious Bug Reproducible:Always
 
Area:
UIKit

Summary:
Some documents that worked fine using iOS 10 and macOS 10.12 Sierra are crashing with PDFKit causing problems using native applications (Preview, Safari, Files, etc.) and 3rd party apps using the new unified PDFKit. Attached is a document that causes immediate crash while opening.

Steps to Reproduce:
Open the attached PDF document using iOS 11 (15A5354b) or macOS 10.13 High Sierra (17A344b), it causes an immediate crash, no further actions or interactions needed.

Crash backtrace:

* thread #29, queue = 'NSOperationQueue 0x1c0221be0 (QOS: UNSPECIFIED)', stop reason = EXC_BAD_ACCESS (code=1, address=0x0)
  * frame #0: 0x0000000192e57cc0 CorePDF`CGPDFNodeCreateFromStructureTree + 1292
    frame #1: 0x0000000192e7266c CorePDF`CGPDFPageGetLayout + 360
    frame #2: 0x00000001982e90bc PDFKit`-[PDFPage fetchPageLayoutOnThread:] + 92
    frame #3: 0x00000001844336a0 CoreFoundation`__invoking___ + 144
    frame #4: 0x0000000184312820 CoreFoundation`-[NSInvocation invoke] + 292
    frame #5: 0x0000000184df36c4 Foundation`-[NSInvocationOperation main] + 40
    frame #6: 0x0000000184d23540 Foundation`-[__NSOperationInternal _start:] + 848
    frame #7: 0x0000000184df4f24 Foundation`__NSOQSchedule_f + 404
    frame #8: 0x0000000100b7540c libdispatch.dylib`_dispatch_client_callout + 16
    frame #9: 0x0000000100b82838 libdispatch.dylib`_dispatch_continuation_pop + 592
    frame #10: 0x0000000100b810d4 libdispatch.dylib`_dispatch_async_redirect_invoke + 628
    frame #11: 0x0000000100b86b50 libdispatch.dylib`_dispatch_root_queue_drain + 616
    frame #12: 0x0000000100b8687c libdispatch.dylib`_dispatch_worker_thread3 + 136
    frame #13: 0x0000000184057130 libsystem_pthread.dylib`_pthread_wqthread + 1268
    frame #14: 0x0000000184056c30 libsystem_pthread.dylib`start_wqthread + 4

Expected Results:
Document should be opened without problems or crashes as in iOS 10 or macOS 10.12.

Observed Results:
Immediate crash while opening the PDF document, no actions or interactions needed.

Version:
iOS 11 (15A5354b)

Notes:


Configuration:

Comments


Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!