100504 2012-10-26 05:02:39 -0700 [BlackBerry] ASSERT currentThreadIsHoldingLock() failed in MarkedAllocator::allocateSlowCase() 2012-10-26 07:30:30 -0700 1 1 1 Unclassified WebKit WebKit BlackBerry 528+ (Nightly build) Unspecified Unspecified RESOLVED FIXED P2 Normal --- 0 xuewen.ok webkit-unassigned mifenton rwlbuis tonikitoo webkit.review.bot yong.li.webkit oldest_to_newest 751902 0 xuewen.ok 2012-10-26 05:02:39 -0700 DESCRIPTION: This is similar with a resolved bug 95492, but it has different code path. I will make a patch in the same way. HOW TO REPRODUCE: 1) Build debug version webkit 2) open bing.com 3) after it loaded, open baidu.com EXPECTED: Baidu.com is loaded and browser should not crash ACTUAL: Browser crashed at the assertion failure as following. Thread [3] (Suspended: Signal 'SIGSEGV' received. Description: Segmentation fault.) 22 JSC::MarkedAllocator::allocateSlowCase() MarkedAllocator.cpp:76 0x02954174 21 JSC::MarkedAllocator::allocate() MarkedAllocator.h:83 0x793f43e4 20 JSC::MarkedSpace::allocateWithDestructor() MarkedSpace.h:197 0x793f4518 19 JSC::Heap::allocateWithDestructor() Heap.h:366 0x793f4668 18 JSC::allocateCell<JSC::JSAPIValueWrapper>() JSCell.h:337 0x793ff2ac 17 JSC::JSAPIValueWrapper::create() JSAPIValueWrapper.h:49 0x793fb664 16 JSC::jsAPIValueWrapper() JSAPIValueWrapper.h:73 0x793fb814 15 toRef() APICast.h:114 0x793fb8a0 14 BlackBerry::WebKit::WebPagePrivate::executeJavaScriptInIsolatedWorld() WebPage.cpp:860 0x793d9f08 13 BlackBerry::WebKit::WebPage::executeJavaScriptInIsolatedWorld() WebPage.cpp:915 0x793da308 751935 1 170903 xuewen.ok 2012-10-26 05:28:56 -0700 Created attachment 170903 patch Petter Wang had internally reviewed+. It's better to have YongLi to have a look. 752021 2 170903 yong.li.webkit 2012-10-26 07:23:55 -0700 Comment on attachment 170903 patch r+ with more confidence when it is internally reviewed first. 752026 3 170903 webkit.review.bot 2012-10-26 07:30:26 -0700 Comment on attachment 170903 patch Clearing flags on attachment: 170903 Committed r132653: <http://trac.webkit.org/changeset/132653> 752027 4 webkit.review.bot 2012-10-26 07:30:30 -0700 All reviewed patches have been landed. Closing bug. 170903 2012-10-26 05:28:56 -0700 2012-10-26 07:30:26 -0700 patch 0001-BlackBerry-ASSERT-currentThreadIsHoldingLock-failed-.patch text/plain 3034 xuewen.ok RnJvbSA4Nzc1MTYzOWM3Y2NlMWEwNmNmOGU4MmQzZjE4YWY4NTdjMzg3MGRkIE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBTZWFuIFdhbmcgPFh1ZXdlbi5XYW5nQHRvcmNobW9iaWxlLmNv bS5jbj4KRGF0ZTogRnJpLCAyNiBPY3QgMjAxMiAyMDoyNToyMSArMDgwMApTdWJqZWN0OiBbUEFU Q0hdIFtCbGFja0JlcnJ5XSBBU1NFUlQgY3VycmVudFRocmVhZElzSG9sZGluZ0xvY2soKSBmYWls ZWQgaW4KIE1hcmtlZEFsbG9jYXRvcjo6YWxsb2NhdGVTbG93Q2FzZSgpCiBodHRwczovL2J1Z3Mu d2Via2l0Lm9yZy9zaG93X2J1Zy5jZ2k/aWQ9MTAwNTA0CgpSZXZpZXdlZCBieSBOT0JPRFkgKE9P UFMhKS4KClBSICMyMzIwMzggVGhlIHNpbWlsYXIgUFIgIyAyMDA3MjQuClJldmlld2VkIGludGVy bmFsbHkgYnkgUGV0dGVyIFdhbmcuCgpUaGlzIGlzc3VlIGlzIHNhbWUgYXMgYnVnIDk1NDkyLCBh bmQgdGhpcyBwYXRjaCBpcyBzYW1lIGFzIGl0cyBwYXRjaC4KSG9sZCB0aGUgSlNMb2NrIGZvciB0 aGUgY3VycmVudCB0aHJlYWQgYmVmb3JlIHdlIGNhbGwgdG9SZWYgdG8gYXZvaWQKdGhlIEFTU0VS VCBmYWlsdXJlLgoKKiBBcGkvV2ViUGFnZS5jcHA6CihCbGFja0JlcnJ5OjpXZWJLaXQ6OldlYlBh Z2VQcml2YXRlOjpleGVjdXRlSmF2YVNjcmlwdEluSXNvbGF0ZWRXb3JsZCk6CihCbGFja0JlcnJ5 OjpXZWJLaXQ6OldlYlBhZ2U6OmV4ZWN1dGVKYXZhU2NyaXB0RnVuY3Rpb24pOgotLS0KIFNvdXJj ZS9XZWJLaXQvYmxhY2tiZXJyeS9BcGkvV2ViUGFnZS5jcHAgfCAgICAyICsrCiBTb3VyY2UvV2Vi S2l0L2JsYWNrYmVycnkvQ2hhbmdlTG9nICAgICAgIHwgICAxOCArKysrKysrKysrKysrKysrKysK IDIgZmlsZXMgY2hhbmdlZCwgMjAgaW5zZXJ0aW9ucygrKQoKZGlmZiAtLWdpdCBhL1NvdXJjZS9X ZWJLaXQvYmxhY2tiZXJyeS9BcGkvV2ViUGFnZS5jcHAgYi9Tb3VyY2UvV2ViS2l0L2JsYWNrYmVy cnkvQXBpL1dlYlBhZ2UuY3BwCmluZGV4IDdkNTliMzcuLjMyMjllYTcgMTAwNjQ0Ci0tLSBhL1Nv dXJjZS9XZWJLaXQvYmxhY2tiZXJyeS9BcGkvV2ViUGFnZS5jcHAKKysrIGIvU291cmNlL1dlYktp dC9ibGFja2JlcnJ5L0FwaS9XZWJQYWdlLmNwcApAQCAtODM2LDYgKzgzNiw3IEBAIGJvb2wgV2Vi UGFnZVByaXZhdGU6OmV4ZWN1dGVKYXZhU2NyaXB0SW5Jc29sYXRlZFdvcmxkKGNvbnN0IFNjcmlw dFNvdXJjZUNvZGUmIHNvCiAgICAgSlNDOjpFeGVjU3RhdGUqIGV4ZWMgPSBtX21haW5GcmFtZS0+ c2NyaXB0KCktPmdsb2JhbE9iamVjdChtX2lzb2xhdGVkV29ybGQuZ2V0KCkpLT5nbG9iYWxFeGVj KCk7CiAgICAgSlNHbG9iYWxDb250ZXh0UmVmIGNvbnRleHQgPSB0b0dsb2JhbFJlZihleGVjKTsK IAorICAgIEpTQzo6SlNMb2NrSG9sZGVyIGxvY2soZXhlYyk7CiAgICAgSlNUeXBlIHR5cGUgPSBK U1ZhbHVlR2V0VHlwZShjb250ZXh0LCB0b1JlZihleGVjLCB2YWx1ZSkpOwogCiAgICAgc3dpdGNo ICh0eXBlKSB7CkBAIC05MTAsNiArOTExLDcgQEAgdm9pZCBXZWJQYWdlOjpleGVjdXRlSmF2YVNj cmlwdEZ1bmN0aW9uKGNvbnN0IHN0ZDo6dmVjdG9yPEJsYWNrQmVycnk6OlBsYXRmb3JtOjoKICAg ICBKU0M6OkV4ZWNTdGF0ZSogZXhlYyA9IHJvb3QtPmdsb2JhbE9iamVjdCgpLT5nbG9iYWxFeGVj KCk7CiAgICAgSlNHbG9iYWxDb250ZXh0UmVmIGN0eCA9IHRvR2xvYmFsUmVmKGV4ZWMpOwogCisg ICAgSlNDOjpKU0xvY2tIb2xkZXIgbG9jayhleGVjKTsKICAgICBXVEY6OlZlY3RvcjxKU1ZhbHVl UmVmPiBhcmdMaXN0UmVmKGFyZ3Muc2l6ZSgpKTsKICAgICBmb3IgKHVuc2lnbmVkIGkgPSAwOyBp IDwgYXJncy5zaXplKCk7ICsraSkKICAgICAgICAgYXJnTGlzdFJlZltpXSA9IEJsYWNrQmVycnlK YXZhU2NyaXB0VmFyaWFudFRvSlNWYWx1ZVJlZihjdHgsIGFyZ3NbaV0pOwpkaWZmIC0tZ2l0IGEv U291cmNlL1dlYktpdC9ibGFja2JlcnJ5L0NoYW5nZUxvZyBiL1NvdXJjZS9XZWJLaXQvYmxhY2ti ZXJyeS9DaGFuZ2VMb2cKaW5kZXggZDJjMTZmZS4uMDg2YTQ1MSAxMDA2NDQKLS0tIGEvU291cmNl L1dlYktpdC9ibGFja2JlcnJ5L0NoYW5nZUxvZworKysgYi9Tb3VyY2UvV2ViS2l0L2JsYWNrYmVy cnkvQ2hhbmdlTG9nCkBAIC0xLDMgKzEsMjEgQEAKKzIwMTItMTAtMjYgIFNlYW4gV2FuZyAgPFh1 ZXdlbi5XYW5nQHRvcmNobW9iaWxlLmNvbS5jbj4KKworICAgICAgICBbQmxhY2tCZXJyeV0gQVNT RVJUIGN1cnJlbnRUaHJlYWRJc0hvbGRpbmdMb2NrKCkgZmFpbGVkIGluIE1hcmtlZEFsbG9jYXRv cjo6YWxsb2NhdGVTbG93Q2FzZSgpCisgICAgICAgIGh0dHBzOi8vYnVncy53ZWJraXQub3JnL3No b3dfYnVnLmNnaT9pZD0xMDA1MDQKKworICAgICAgICBSZXZpZXdlZCBieSBOT0JPRFkgKE9PUFMh KS4KKworICAgICAgICBQUiAjMjMyMDM4IFRoZSBzaW1pbGFyIFBSICMgMjAwNzI0LgorICAgICAg ICBSZXZpZXdlZCBpbnRlcm5hbGx5IGJ5IFBldHRlciBXYW5nLgorCisgICAgICAgIFRoaXMgaXNz dWUgaXMgc2FtZSBhcyBidWcgOTU0OTIsIGFuZCB0aGlzIHBhdGNoIGlzIHNhbWUgYXMgaXRzIHBh dGNoLgorICAgICAgICBIb2xkIHRoZSBKU0xvY2sgZm9yIHRoZSBjdXJyZW50IHRocmVhZCBiZWZv cmUgd2UgY2FsbCB0b1JlZiB0byBhdm9pZAorICAgICAgICB0aGUgQVNTRVJUIGZhaWx1cmUuCisK KyAgICAgICAgKiBBcGkvV2ViUGFnZS5jcHA6CisgICAgICAgIChCbGFja0JlcnJ5OjpXZWJLaXQ6 OldlYlBhZ2VQcml2YXRlOjpleGVjdXRlSmF2YVNjcmlwdEluSXNvbGF0ZWRXb3JsZCk6CisgICAg ICAgIChCbGFja0JlcnJ5OjpXZWJLaXQ6OldlYlBhZ2U6OmV4ZWN1dGVKYXZhU2NyaXB0RnVuY3Rp b24pOgorCiAyMDEyLTEwLTI1ICBTZWFuIFdhbmcgIDxYdWV3ZW4uV2FuZ0B0b3JjaG1vYmlsZS5j b20uY24+CiAKICAgICAgICAgW0JsYWNrQmVycnldIFdlYlZpZXcgcHJvY2VzcyBjcmFzaGVkIGF0 IEF1dGhlbnRpY2F0aW9uQ2hhbGxlbmdlTWFuYWdlcjo6cGFnZVZpc2liaWxpdHlDaGFuZ2VkKCkK LS0gCjEuNy45LjUKCg==