72561 2011-11-16 16:07:55 -0800 LayoutTests for Debug Builds Crashes in JavaScriptCore/yarr/YarrInterpreter.cpp(185) 2011-11-16 16:25:43 -0800 1 1 1 Unclassified WebKit JavaScriptCore 528+ (Nightly build) All All RESOLVED FIXED P2 Critical --- 1 msaboff msaboff oldest_to_newest 504363 0 msaboff 2011-11-16 16:07:55 -0800 The crash happens in CharAccess(const UString& s) : m_buffer(0) { if (s.is8Bit()) { #if USE(JSC) m_charSize = Char8; unsigned length = s.length(); m_ptr.ptr8 = m_buffer = static_cast<char *>(fastMalloc(length)); memcpy(m_buffer, s.latin1().data(), length); #else ASSERT_NOT_REACHED(); <=== This line is crashing #endif } else { m_charSize = Char16; m_ptr.ptr16 = s.characters(); } } 504378 1 115475 msaboff 2011-11-16 16:22:09 -0800 Created attachment 115475 Patch 504383 2 115475 jamesr 2011-11-16 16:24:51 -0800 Comment on attachment 115475 Patch Looks good 504384 3 msaboff 2011-11-16 16:25:43 -0800 Committed r100523: <http://trac.webkit.org/changeset/100523> 115475 2011-11-16 16:22:09 -0800 2011-11-16 16:24:51 -0800 Patch 72561.patch text/plain 2607 msaboff SW5kZXg6IFNvdXJjZS9KYXZhU2NyaXB0Q29yZS9DaGFuZ2VMb2cKPT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PQotLS0gU291 cmNlL0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkocmV2aXNpb24gMTAwNTE4KQorKysgU291cmNl L0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkod29ya2luZyBjb3B5KQpAQCAtMSwzICsxLDE3IEBA CisyMDExLTExLTE2ICBNaWNoYWVsIFNhYm9mZiAgPG1zYWJvZmZAYXBwbGUuY29tPgorCisgICAg ICAgIExheW91dFRlc3RzIGZvciBEZWJ1ZyBCdWlsZHMgQ3Jhc2hlcyBpbiBKYXZhU2NyaXB0Q29y ZS95YXJyL1lhcnJJbnRlcnByZXRlci5jcHAoMTg1KQorICAgICAgICBodHRwczovL2J1Z3Mud2Vi a2l0Lm9yZy9zaG93X2J1Zy5jZ2k/aWQ9NzI1NjEKKworICAgICAgICBSZW1vdmVkICNpZiBVU0Uo SlNDKSBhbmQgdGhlcmVmb3JlIHRoZSBBU1NFUlRfTk9UX1JFQUNIRUQoKS4KKyAgICAgICAgU2lt cGxpZmllZCB0aGUgY29kZSBpbiB0aGUgcHJvY2Vzcy4KKworICAgICAgICBSZXZpZXdlZCBieSBO T0JPRFkgKE9PUFMhKS4KKworICAgICAgICAqIHlhcnIvWWFyckludGVycHJldGVyLmNwcDoKKyAg ICAgICAgKEpTQzo6WWFycjo6SW50ZXJwcmV0ZXI6OkNoYXJBY2Nlc3M6OkNoYXJBY2Nlc3MpOgor ICAgICAgICAoSlNDOjpZYXJyOjpJbnRlcnByZXRlcjo6Q2hhckFjY2Vzczo6fkNoYXJBY2Nlc3Mp OgorCiAyMDExLTExLTE2ICBQYXRyaWNrIEdhbnN0ZXJlciAgPHBhcm9nYUB3ZWJraXQub3JnPgog CiAgICAgICAgIFVucmV2aWV3ZWQuIEJ1aWxkIGZpeCBmb3IgIUVOQUJMRShKSVQpIGFmdGVyIHIx MDAzNjMuCkluZGV4OiBTb3VyY2UvSmF2YVNjcmlwdENvcmUveWFyci9ZYXJySW50ZXJwcmV0ZXIu Y3BwCj09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT0KLS0tIFNvdXJjZS9KYXZhU2NyaXB0Q29yZS95YXJyL1lhcnJJbnRlcnBy ZXRlci5jcHAJKHJldmlzaW9uIDEwMDUwOSkKKysrIFNvdXJjZS9KYXZhU2NyaXB0Q29yZS95YXJy L1lhcnJJbnRlcnByZXRlci5jcHAJKHdvcmtpbmcgY29weSkKQEAgLTE3Myw0MSArMTczLDMwIEBA IHB1YmxpYzoKICAgICBjbGFzcyBDaGFyQWNjZXNzIHsKICAgICBwdWJsaWM6CiAgICAgICAgIENo YXJBY2Nlc3MoY29uc3QgVVN0cmluZyYgcykKLSAgICAgICAgICAgIDogbV9idWZmZXIoMCkKICAg ICAgICAgewogICAgICAgICAgICAgaWYgKHMuaXM4Qml0KCkpIHsKLSNpZiBVU0UoSlNDKQogICAg ICAgICAgICAgICAgIG1fY2hhclNpemUgPSBDaGFyODsKLSAgICAgICAgICAgICAgICB1bnNpZ25l ZCBsZW5ndGggPSBzLmxlbmd0aCgpOwotICAgICAgICAgICAgICAgIG1fcHRyLnB0cjggPSBtX2J1 ZmZlciA9IHN0YXRpY19jYXN0PGNoYXIgKj4oZmFzdE1hbGxvYyhsZW5ndGgpKTsKLSAgICAgICAg ICAgICAgICBtZW1jcHkobV9idWZmZXIsIHMubGF0aW4xKCkuZGF0YSgpLCBsZW5ndGgpOwotI2Vs c2UKLSAgICAgICAgICAgICAgICBBU1NFUlRfTk9UX1JFQUNIRUQoKTsKLSNlbmRpZgorICAgICAg ICAgICAgICAgIG1fcHRyLnB0cjggPSBzLmNoYXJhY3RlcnM4KCk7CiAgICAgICAgICAgICB9IGVs c2UgewogICAgICAgICAgICAgICAgIG1fY2hhclNpemUgPSBDaGFyMTY7Ci0gICAgICAgICAgICAg ICAgbV9wdHIucHRyMTYgPSBzLmNoYXJhY3RlcnMoKTsKKyAgICAgICAgICAgICAgICBtX3B0ci5w dHIxNiA9IHMuY2hhcmFjdGVyczE2KCk7CiAgICAgICAgICAgICB9CiAgICAgICAgIH0KIAotICAg ICAgICBDaGFyQWNjZXNzKGNvbnN0IGNoYXIqIHB0cikKKyAgICAgICAgQ2hhckFjY2Vzcyhjb25z dCBMQ2hhciogcHRyKQogICAgICAgICAgICAgOiBtX2NoYXJTaXplKENoYXI4KQotICAgICAgICAg ICAgLCBtX2J1ZmZlcigwKQogICAgICAgICB7CiAgICAgICAgICAgICBtX3B0ci5wdHI4ID0gcHRy OwogICAgICAgICB9CiAKICAgICAgICAgQ2hhckFjY2Vzcyhjb25zdCBVQ2hhciogcHRyKQogICAg ICAgICAgICAgOiBtX2NoYXJTaXplKENoYXIxNikKLSAgICAgICAgICAgICwgbV9idWZmZXIoMCkK ICAgICAgICAgewogICAgICAgICAgICAgbV9wdHIucHRyMTYgPSBwdHI7CiAgICAgICAgIH0KIAog ICAgICAgICB+Q2hhckFjY2VzcygpCiAgICAgICAgIHsKLSAgICAgICAgICAgIGlmIChtX2NoYXJT aXplID09IENoYXI4KQotICAgICAgICAgICAgICAgIGZhc3RGcmVlKG1fYnVmZmVyKTsKICAgICAg ICAgfQogCiAgICAgICAgIGlubGluZSBVQ2hhciBvcGVyYXRvcltdKHVuc2lnbmVkIGluZGV4KQpA QCAtMjE5LDExICsyMDgsMTAgQEAgcHVibGljOgogCiAgICAgcHJpdmF0ZToKICAgICAgICAgdW5p b24gewotICAgICAgICAgICAgY29uc3QgY2hhciogcHRyODsKKyAgICAgICAgICAgIGNvbnN0IExD aGFyKiBwdHI4OwogICAgICAgICAgICAgY29uc3QgVUNoYXIqIHB0cjE2OwogICAgICAgICB9IG1f cHRyOwogICAgICAgICBZYXJyQ2hhclNpemUgbV9jaGFyU2l6ZTsKLSAgICAgICAgY2hhciogbV9i dWZmZXI7CiAgICAgfTsKIAogICAgIGNsYXNzIElucHV0U3RyZWFtIHsK