77592 2012-02-01 18:21:19 -0800 REGRESSION(r106408): crashes in chromium mac release tests (Requested by japhet on #webkit). 2012-02-01 18:46:30 -0800 1 1 1 Unclassified WebKit New Bugs 528+ (Nightly build) Unspecified Unspecified RESOLVED FIXED P2 Normal --- 72294 1 webkit.review.bot webkit.review.bot andersca danakj japhet oldest_to_newest 547553 0 webkit.review.bot 2012-02-01 18:21:19 -0800 http://trac.webkit.org/changeset/106408 broke the build: crashes in chromium mac release tests (Requested by japhet on #webkit). This is an automatic bug report generated by the sheriff-bot. If this bug report was created because of a flaky test, please file a bug for the flaky test (if we don't already have one on file) and dup this bug against that bug so that we can track how often these flaky tests case pain. "Only you can prevent forest fires." -- Smokey the Bear 547554 1 125061 webkit.review.bot 2012-02-01 18:21:51 -0800 Created attachment 125061 ROLLOUT of r106408 Any committer can land this patch automatically by marking it commit-queue+. The commit-queue will build and test the patch before landing to ensure that the rollout will be successful. This process takes approximately 15 minutes. If you would like to land the rollout faster, you can use the following command: webkit-patch land-attachment ATTACHMENT_ID where ATTACHMENT_ID is the ID of this attachment. 547557 2 japhet 2012-02-01 18:24:36 -0800 The crashes seem to be of the form: #0 0x6e9abef9 in CrMallocErrorBreak at process_util_mac.mm:556 #1 0x95525563 in free #2 0x6f69826f in WTF::VectorBufferBase<int>::deallocateBuffer at Vector.h:285 #3 0x6f69826f in WTF::Vector<int, 0ul>::expandCapacity at Vector.h:899 #4 0x6f69826f in WebCore::Region::Shape::shapeOperation<WebCore::Region::Shape::SubtractOperation> at Vector.h:820 #5 0x6f6971ae in WebCore::Region::subtract at Region.cpp:411 #6 0x6f6b34fd in WebCore::TiledLayerChromium::updateBounds at TiledLayerChromium.cpp:140 #7 0x6f6b4b61 in WebCore::TiledLayerChromium::prepareToUpdate at TiledLayerChromium.cpp:527 #8 0x6f69e288 in WebCore::ContentLayerChromium::paintContentsIfDirty at ContentLayerChromium.cpp:107 #9 0x6f6c4e24 in WebCore::CCLayerTreeHost::paintLayerContents at CCLayerTreeHost.cpp:422 #10 0x6f6c48c8 in WebCore::CCLayerTreeHost::updateLayers at CCLayerTreeHost.cpp:385 #11 0x6f6c4408 in WebCore::CCLayerTreeHost::updateLayers at CCLayerTreeHost.cpp:355 #12 0x6f6cd1af in WebCore::CCSingleThreadProxy::commitIfNeeded at CCSingleThreadProxy.h:275 #13 0x6f6cd1af in WebCore::CCSingleThreadProxy::compositeImmediately at CCSingleThreadProxy.cpp:217 #14 0x6f6c43d4 in WebCore::CCLayerTreeHost::composite at CCLayerTreeHost.cpp:344 They're occurring reliable on chromium mac release ToT. See http://build.chromium.org/p/chromium.webkit/builders/Mac10.6%20Tests/builds/8700. I'm also hitting it reliably by going to http://chrome.angrybirds.com with a ToT chromium build. 547574 3 125061 webkit.review.bot 2012-02-01 18:46:26 -0800 Comment on attachment 125061 ROLLOUT of r106408 Clearing flags on attachment: 125061 Committed r106525: <http://trac.webkit.org/changeset/106525> 547575 4 webkit.review.bot 2012-02-01 18:46:30 -0800 All reviewed patches have been landed. Closing bug. 125061 2012-02-01 18:21:51 -0800 2012-02-01 18:46:26 -0800 ROLLOUT of r106408 bug-77592-20120202022316.patch text/plain 3175 webkit.review.bot U3VidmVyc2lvbiBSZXZpc2lvbjogMTA2NTIxCmRpZmYgLS1naXQgYS9Tb3VyY2UvV2ViQ29yZS9D aGFuZ2VMb2cgYi9Tb3VyY2UvV2ViQ29yZS9DaGFuZ2VMb2cKaW5kZXggN2FlNWU2NGVkMGMzMGUx YmQwMWJkYzQ1M2JjNDFmMjE0ZDc3NTc3Yy4uNDQ0YTUyNTI1ZTZhYzVlMWViYmE5MzU3ZjVhZWY1 NWJjMGU1ODE3MyAxMDA2NDQKLS0tIGEvU291cmNlL1dlYkNvcmUvQ2hhbmdlTG9nCisrKyBiL1Nv dXJjZS9XZWJDb3JlL0NoYW5nZUxvZwpAQCAtMSwzICsxLDE3IEBACisyMDEyLTAyLTAxICBTaGVy aWZmIEJvdCAgPHdlYmtpdC5yZXZpZXcuYm90QGdtYWlsLmNvbT4KKworICAgICAgICBVbnJldmll d2VkLCByb2xsaW5nIG91dCByMTA2NDA4LgorICAgICAgICBodHRwOi8vdHJhYy53ZWJraXQub3Jn L2NoYW5nZXNldC8xMDY0MDgKKyAgICAgICAgaHR0cHM6Ly9idWdzLndlYmtpdC5vcmcvc2hvd19i dWcuY2dpP2lkPTc3NTkyCisKKyAgICAgICAgY3Jhc2hlcyBpbiBjaHJvbWl1bSBtYWMgcmVsZWFz ZSB0ZXN0cyAoUmVxdWVzdGVkIGJ5IGphcGhldCBvbgorICAgICAgICAjd2Via2l0KS4KKworICAg ICAgICAqIHBsYXRmb3JtL2dyYXBoaWNzL1JlZ2lvbi5jcHA6CisgICAgICAgICogcGxhdGZvcm0v Z3JhcGhpY3MvUmVnaW9uLmg6CisgICAgICAgIChSZWdpb24pOgorICAgICAgICAoU2hhcGUpOgor CiAyMDEyLTAyLTAxICBQYWJsbyBGbG91cmV0ICA8cGFibG9mQG1vdG9yb2xhLmNvbT4KIAogICAg ICAgICBTdXBwb3J0IHRhcmdldE9yaWdpbiA9ICIvIiBpbiBwb3N0TWVzc2FnZSBmb3Igc2VuZGlu ZyBtZXNzYWdlcyB0byBzYW1lIG9yaWdpbiBhcyBzb3VyY2UgZG9jdW1lbnQuCmRpZmYgLS1naXQg YS9Tb3VyY2UvV2ViQ29yZS9wbGF0Zm9ybS9ncmFwaGljcy9SZWdpb24uY3BwIGIvU291cmNlL1dl YkNvcmUvcGxhdGZvcm0vZ3JhcGhpY3MvUmVnaW9uLmNwcAppbmRleCA3M2U2ZGRjZjVkMTQ3MjM2 N2M4OTkwZjYwNzE2MjM1OWU4YWFiNjQ2Li41NDI3YzZjOTFkMjE2MGViNzdlODI3ODdhYjA5YWVm NDIxZDY2MTI3IDEwMDY0NAotLS0gYS9Tb3VyY2UvV2ViQ29yZS9wbGF0Zm9ybS9ncmFwaGljcy9S ZWdpb24uY3BwCisrKyBiL1NvdXJjZS9XZWJDb3JlL3BsYXRmb3JtL2dyYXBoaWNzL1JlZ2lvbi5j cHAKQEAgLTY1LDExICs2NSw2IEBAIFZlY3RvcjxJbnRSZWN0PiBSZWdpb246OnJlY3RzKCkgY29u c3QKICAgICByZXR1cm4gcmVjdHM7CiB9CiAKLWJvb2wgUmVnaW9uOjpjb250YWlucyhjb25zdCBS ZWdpb24mIHJlZ2lvbikgY29uc3QKLXsKLSAgICByZXR1cm4gV2ViQ29yZTo6aW50ZXJzZWN0KHJl Z2lvbiwgKnRoaXMpID09IHJlZ2lvbjsKLX0KLQogUmVnaW9uOjpTaGFwZTo6U2hhcGUoKQogewog fQpkaWZmIC0tZ2l0IGEvU291cmNlL1dlYkNvcmUvcGxhdGZvcm0vZ3JhcGhpY3MvUmVnaW9uLmgg Yi9Tb3VyY2UvV2ViQ29yZS9wbGF0Zm9ybS9ncmFwaGljcy9SZWdpb24uaAppbmRleCA5MTcwYWY0 ZjA2NWQwODc3MWFhN2JhMjg1MDI4ZmU4MWU1ZDk1MDY2Li5iNTM1OWJiZTM5YzAyNWMzZTJjNWU1 NWIzOWZhNGE1NzU3ZDc5NzVmIDEwMDY0NAotLS0gYS9Tb3VyY2UvV2ViQ29yZS9wbGF0Zm9ybS9n cmFwaGljcy9SZWdpb24uaAorKysgYi9Tb3VyY2UvV2ViQ29yZS9wbGF0Zm9ybS9ncmFwaGljcy9S ZWdpb24uaApAQCAtNDcsOSArNDcsNiBAQCBwdWJsaWM6CiAKICAgICB2b2lkIHRyYW5zbGF0ZShj b25zdCBJbnRTaXplJik7CiAKLSAgICAvLyBSZXR1cm5zIHRydWUgaWYgdGhlIHF1ZXJ5IHJlZ2lv biBpcyBhIHN1YnNldCBvZiB0aGlzIHJlZ2lvbi4KLSAgICBib29sIGNvbnRhaW5zKGNvbnN0IFJl Z2lvbiYpIGNvbnN0OwotCiAjaWZuZGVmIE5ERUJVRwogICAgIHZvaWQgZHVtcCgpIGNvbnN0Owog I2VuZGlmCkBAIC0xMDcsMTggKzEwNCwxMyBAQCBwcml2YXRlOgogCiAgICAgICAgIGJvb2wgY2Fu Q29hbGVzY2UoU2VnbWVudEl0ZXJhdG9yIGJlZ2luLCBTZWdtZW50SXRlcmF0b3IgZW5kKTsKIAot ICAgICAgICBWZWN0b3I8aW50LCAzMj4gbV9zZWdtZW50czsKLSAgICAgICAgVmVjdG9yPFNwYW4s IDE2PiBtX3NwYW5zOwotCi0gICAgICAgIGZyaWVuZCBib29sIG9wZXJhdG9yPT0oY29uc3QgU2hh cGUmLCBjb25zdCBTaGFwZSYpOworICAgICAgICAvLyBGSVhNRTogVGhlc2UgdmVjdG9ycyBzaG91 bGQgaGF2ZSBpbmxpbmUgc2l6ZXMuIEZpZ3VyZSBvdXQgYSBnb29kIG9wdGltYWwgdmFsdWUuCisg ICAgICAgIFZlY3RvcjxpbnQ+IG1fc2VnbWVudHM7CisgICAgICAgIFZlY3RvcjxTcGFuPiBtX3Nw YW5zOyAgICAgICAgCiAgICAgfTsKIAogICAgIEludFJlY3QgbV9ib3VuZHM7CiAgICAgU2hhcGUg bV9zaGFwZTsKLQotICAgIGZyaWVuZCBib29sIG9wZXJhdG9yPT0oY29uc3QgUmVnaW9uJiwgY29u c3QgUmVnaW9uJik7Ci0gICAgZnJpZW5kIGJvb2wgb3BlcmF0b3I9PShjb25zdCBTaGFwZSYsIGNv bnN0IFNoYXBlJik7Ci0gICAgZnJpZW5kIGJvb2wgb3BlcmF0b3I9PShjb25zdCBTcGFuJiwgY29u c3QgU3BhbiYpOwogfTsKIAogc3RhdGljIGlubGluZSBSZWdpb24gaW50ZXJzZWN0KGNvbnN0IFJl Z2lvbiYgYSwgY29uc3QgUmVnaW9uJiBiKQpAQCAtMTQ1LDIxICsxMzcsNiBAQCBzdGF0aWMgaW5s aW5lIFJlZ2lvbiB0cmFuc2xhdGUoY29uc3QgUmVnaW9uJiByZWdpb24sIGNvbnN0IEludFNpemUm IG9mZnNldCkKICAgICByZXR1cm4gcmVzdWx0OwogfQogCi1pbmxpbmUgYm9vbCBvcGVyYXRvcj09 KGNvbnN0IFJlZ2lvbiYgYSwgY29uc3QgUmVnaW9uJiBiKQotewotICAgIHJldHVybiBhLm1fYm91 bmRzID09IGIubV9ib3VuZHMgJiYgYS5tX3NoYXBlID09IGIubV9zaGFwZTsKLX0KLQotaW5saW5l IGJvb2wgb3BlcmF0b3I9PShjb25zdCBSZWdpb246OlNoYXBlJiBhLCBjb25zdCBSZWdpb246OlNo YXBlJiBiKQotewotICAgIHJldHVybiBhLm1fc3BhbnMgPT0gYi5tX3NwYW5zICYmIGEubV9zZWdt ZW50cyA9PSBiLm1fc2VnbWVudHM7Ci19Ci0KLWlubGluZSBib29sIG9wZXJhdG9yPT0oY29uc3Qg UmVnaW9uOjpTcGFuJiBhLCBjb25zdCBSZWdpb246OlNwYW4mIGIpCi17Ci0gICAgcmV0dXJuIGEu eSA9PSBiLnkgJiYgYS5zZWdtZW50SW5kZXggPT0gYi5zZWdtZW50SW5kZXg7Ci19Ci0KIH0gLy8g bmFtZXNwYWNlIFdlYkNvcmUKIAogI2VuZGlmIC8vIFJlZ2lvbl9oCg==