141671 2015-02-16 15:27:56 -0800 REGRESSION(r180060): C Loop crashes 2015-07-23 08:32:45 -0700 1 1 1 Unclassified WebKit JavaScriptCore 528+ (Nightly build) All All RESOLVED DUPLICATE 146767 P2 Normal --- 141733 141098 1 msaboff msaboff commit-queue mark.lam ossy oldest_to_newest 1069627 0 msaboff 2015-02-16 15:27:56 -0800 After r180060: <http://trac.webkit.org/changeset/180060>, the C Loop crashes. 1069637 1 246691 msaboff 2015-02-16 15:48:12 -0800 Created attachment 246691 Patch 1069641 2 246691 ggaren 2015-02-16 15:57:36 -0800 Comment on attachment 246691 Patch r=me 1069649 3 msaboff 2015-02-16 16:08:25 -0800 Committed r180184: <http://trac.webkit.org/changeset/180184> 1069993 4 ap 2015-02-17 18:29:31 -0800 This patch is suspected to have caused infinite recursion on js/function-apply-aliased.html. I'm going to roll it out to confirm. https://build-safari.apple.com/results/Trunk%20Syrah%20Production%20WK2%20Tests/r180236_69346%20(16927)/js/function-apply-aliased-crash-log.txt http://webkit-test-results.appspot.com/dashboards/flakiness_dashboard.html#tests=js%2Ffunction-apply-aliased.html Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 com.apple.JavaScriptCore 0x000000010ef05761 JSC::StackVisitor::Frame::existingArguments() + 145 1 com.apple.JavaScriptCore 0x000000010edddd8d JSC::UnwindFunctor::operator()(JSC::StackVisitor&) + 429 2 com.apple.JavaScriptCore 0x000000010eddd25b JSC::Interpreter::unwind(void*&, JSC::ExecState*&, JSC::JSValue&) + 491 3 com.apple.JavaScriptCore 0x000000010eded1ab JSC::genericUnwind(JSC::VM*, JSC::ExecState*, JSC::JSValue) + 91 4 com.apple.JavaScriptCore 0x000000010ee7caa4 llint_slow_path_handle_exception + 52 5 com.apple.JavaScriptCore 0x000000010ee82926 llint_entry + 15854 6 ??? 0x000039e5fb418c9f 0 + 63659925671071 7 ??? 0x000039e5fb4189ea 0 + 63659925670378 8 ??? 0x000039e5fb4189ea 0 + 63659925670378 9 ??? 0x000039e5fb4189ea 0 + 63659925670378 10 ??? 0x000039e5fb4189ea 0 + 63659925670378 11 ??? 0x000039e5fb4189ea 0 + 63659925670378 12 ??? 0x000039e5fb4189ea 0 + 63659925670378 13 ??? 0x000039e5fb4189ea 0 + 63659925670378 14 ??? 0x000039e5fb4189ea 0 + 63659925670378 15 ??? 0x000039e5fb4189ea 0 + 63659925670378 16 ??? 0x000039e5fb4189ea 0 + 63659925670378 17 ??? 0x000039e5fb4189ea 0 + 63659925670378 18 ??? 0x000039e5fb4189ea 0 + 63659925670378 19 ??? 0x000039e5fb4189ea 0 + 63659925670378 20 ??? 0x000039e5fb4189ea 0 + 63659925670378 21 ??? 0x000039e5fb4189ea 0 + 63659925670378 22 ??? 0x000039e5fb4189ea 0 + 63659925670378 23 ??? 0x000039e5fb4189ea 0 + 63659925670378 24 ??? 0x000039e5fb4189ea 0 + 63659925670378 25 ??? 0x000039e5fb4189ea 0 + 63659925670378 26 ??? 0x000039e5fb4189ea 0 + 63659925670378 27 ??? 0x000039e5fb4189ea 0 + 63659925670378 28 ??? 0x000039e5fb4189ea 0 + 63659925670378 29 ??? 0x000039e5fb4189ea 0 + 63659925670378 30 ??? 0x000039e5fb4189ea 0 + 63659925670378 31 ??? 0x000039e5fb4189ea 0 + 63659925670378 32 ??? 0x000039e5fb4189ea 0 + 63659925670378 33 ??? 0x000039e5fb4189ea 0 + 63659925670378 34 ??? 0x000039e5fb4189ea 0 + 63659925670378 35 ??? 0x000039e5fb4189ea 0 + 63659925670378 36 ??? 0x000039e5fb4189ea 0 + 63659925670378 37 ??? 0x000039e5fb4189ea 0 + 63659925670378 38 ??? 0x000039e5fb4189ea 0 + 63659925670378 39 ??? 0x000039e5fb4189ea 0 + 63659925670378 40 ??? 0x000039e5fb4189ea 0 + 63659925670378 41 ??? 0x000039e5fb4189ea 0 + 63659925670378 42 ??? 0x000039e5fb4189ea 0 + 63659925670378 43 ??? 0x000039e5fb4189ea 0 + 63659925670378 44 ??? 0x000039e5fb4189ea 0 + 63659925670378 45 ??? 0x000039e5fb4189ea 0 + 63659925670378 46 ??? 0x000039e5fb4189ea 0 + 63659925670378 47 ??? 0x000039e5fb4189ea 0 + 63659925670378 48 ??? 0x000039e5fb4189ea 0 + 63659925670378 49 ??? 0x000039e5fb4189ea 0 + 63659925670378 50 ??? 0x000039e5fb4189ea 0 + 63659925670378 1069995 5 commit-queue 2015-02-17 18:32:03 -0800 Re-opened since this is blocked by bug 141733 1111643 6 mark.lam 2015-07-23 08:32:45 -0700 The issues of this bug have all been dealt with in https://bugs.webkit.org/show_bug.cgi?id=146767. *** This bug has been marked as a duplicate of bug 146767 *** 246691 2015-02-16 15:48:12 -0800 2015-02-16 15:57:36 -0800 Patch 141671.patch text/plain 2406 msaboff SW5kZXg6IFNvdXJjZS9KYXZhU2NyaXB0Q29yZS9DaGFuZ2VMb2cKPT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PQotLS0gU291 cmNlL0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkocmV2aXNpb24gMTgwMTgwKQorKysgU291cmNl L0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkod29ya2luZyBjb3B5KQpAQCAtMSwzICsxLDIwIEBA CisyMDE1LTAyLTE2ICBNaWNoYWVsIFNhYm9mZiAgPG1zYWJvZmZAYXBwbGUuY29tPgorCisgICAg ICAgIFJFR1JFU1NJT04ocjE4MDA2MCk6IEMgTG9vcCBjcmFzaGVzCisgICAgICAgIGh0dHBzOi8v YnVncy53ZWJraXQub3JnL3Nob3dfYnVnLmNnaT9pZD0xNDE2NzEKKworICAgICAgICBSZXZpZXdl ZCBieSBOT0JPRFkgKE9PUFMhKS4KKworICAgICAgICBGaXhlZCBhIHR5cG8gdGhhdCBvbmx5IGFm ZmVjdGVkIHRoZSBDIExvb3AgaW4gdGhlIHByb2xvZ3VlKCkgbWFjcm8gaW4gTG93TGV2ZWxJbnRl cnByZXRlci5hc20uCisgICAgICAgIEFmdGVyIHRoZSBzdGFja0hlaWdodE9LR2V0Q29kZUJsb2Nr IGxhYmVsLCBjb2RlQmxvY2tTZXR0ZXIodDEpIHNob3VsZCBiZSBjb2RlQmxvY2tHZXR0ZXIodDEp LgorICAgICAgICBGaXhlZCB0aGUgcHJvY2Vzc2luZyBvZiBhbiBvdXQgb2Ygc3RhY2sgZXhjZXB0 aW9uIGluIGxsaW50X3N0YWNrX2NoZWNrIHRvIG5vdCBnZXQgdGhlIGNhbGxlcidzCisgICAgICAg IGZyYW1lLiAgVGhpcyBpc24ndCBuZWVkZWQsIHNpbmNlIHRoaXMgaGVscGVyIGlzIG9ubHkgY2Fs bGVkIHRvIGNoZWNrIHRoZSBzdGFjayBvbiBlbnRyeS4gIEFueQorICAgICAgICBleGNlcHRpb24g d2lsbCBiZSBoYW5kbGVkIGJ5IGEgY2FsbCBhbmNlc3Rvci4KKworICAgICAgICAqIGxsaW50L0xM SW50U2xvd1BhdGhzLmNwcDoKKyAgICAgICAgKEpTQzo6TExJbnQ6OmxsaW50X3N0YWNrX2NoZWNr KTogQ2hhbmdlZCB0byB1c2UgdGhlIGN1cnJlbnQgZnJhbWUgZm9yIHByb2Nlc3NpbmcgYW4gZXhj ZXB0aW9uLgorICAgICAgICAqIGxsaW50L0xvd0xldmVsSW50ZXJwcmV0ZXIuYXNtOiBGaXhlZCBh IHR5cG8uCisKIDIwMTUtMDItMTYgIEpvc2VwaCBQZWNvcmFybyAgPHBlY29yYXJvQGFwcGxlLmNv bT4KIAogICAgICAgICBXZWIgSW5zcGVjdG9yOiBTY29wZSBkZXRhaWxzIHNpZGViYXIgc2hvdWxk IGxhYmVsIG9iamVjdHMgd2l0aCBjb25zdHJ1Y3RvciBuYW1lcwpJbmRleDogU291cmNlL0phdmFT Y3JpcHRDb3JlL2xsaW50L0xMSW50U2xvd1BhdGhzLmNwcAo9PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBTb3VyY2Uv SmF2YVNjcmlwdENvcmUvbGxpbnQvTExJbnRTbG93UGF0aHMuY3BwCShyZXZpc2lvbiAxODAwODMp CisrKyBTb3VyY2UvSmF2YVNjcmlwdENvcmUvbGxpbnQvTExJbnRTbG93UGF0aHMuY3BwCSh3b3Jr aW5nIGNvcHkpCkBAIC00OTAsNyArNDkwLDYgQEAgTExJTlRfU0xPV19QQVRIX0RFQ0woc3RhY2tf Y2hlY2spCiAgICAgICAgIExMSU5UX1JFVFVSTl9UV08ocGMsIDApOwogI2VuZGlmCiAKLSAgICBl eGVjID0gZXhlYy0+Y2FsbGVyRnJhbWUodm0udG9wVk1FbnRyeUZyYW1lKTsKICAgICB2bS50b3BD YWxsRnJhbWUgPSBleGVjOwogICAgIEVycm9ySGFuZGxpbmdTY29wZSBlcnJvclNjb3BlKHZtKTsK ICAgICBDb21tb25TbG93UGF0aHM6OmludGVycHJldGVyVGhyb3dJbkNhbGxlcihleGVjLCBjcmVh dGVTdGFja092ZXJmbG93RXJyb3IoZXhlYykpOwpJbmRleDogU291cmNlL0phdmFTY3JpcHRDb3Jl L2xsaW50L0xvd0xldmVsSW50ZXJwcmV0ZXIuYXNtCj09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0KLS0tIFNvdXJjZS9KYXZh U2NyaXB0Q29yZS9sbGludC9Mb3dMZXZlbEludGVycHJldGVyLmFzbQkocmV2aXNpb24gMTgwMDgz KQorKysgU291cmNlL0phdmFTY3JpcHRDb3JlL2xsaW50L0xvd0xldmVsSW50ZXJwcmV0ZXIuYXNt CSh3b3JraW5nIGNvcHkpCkBAIC02MzEsNyArNjMxLDcgQEAgbWFjcm8gcHJvbG9ndWUoY29kZUJs b2NrR2V0dGVyLCBjb2RlQmxvYwogLnN0YWNrSGVpZ2h0T0tHZXRDb2RlQmxvY2s6CiAgICAgIyBT dGFjayBjaGVjayBzbG93IHBhdGggcmV0dXJuZWQgdGhhdCB0aGUgc3RhY2sgd2FzIG9rLgogICAg ICMgU2luY2UgdGhleSB3ZXJlIGNsb2JiZXJlZCwgbmVlZCB0byBnZXQgQ29kZUJsb2NrIGFuZCBu ZXcgc3AKLSAgICBjb2RlQmxvY2tTZXR0ZXIodDEpCisgICAgY29kZUJsb2NrR2V0dGVyKHQxKQog ICAgIGdldEZyYW1lUmVnaXN0ZXJTaXplRm9yQ29kZUJsb2NrKHQxLCB0MCkKICAgICBzdWJwIGNm ciwgdDAsIHQwCiAK