Bug 130652

Summary: Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when WebKit is compiled with fcatch-undefined-behavior
Product: WebKit Reporter: Geoffrey Garen <ggaren>
Component: New BugsAssignee: Geoffrey Garen <ggaren>
Status: RESOLVED FIXED    
Severity: Normal CC: buildbot, ddkilzer, fpizlo, mhahnenberg, rniwa
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch
mhahnenberg: review+, buildbot: commit-queue-
Archive of layout-test-results from webkit-ews-10 for mac-mountainlion-wk2 none

Description Geoffrey Garen 2014-03-23 11:25:25 PDT 
Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when WebKit is compiled with fcatch-undefined-behavior
Comment 1 Geoffrey Garen 2014-03-23 11:29:09 PDT 
Created attachment 227612 [details]
Patch
Comment 2 Geoffrey Garen 2014-03-23 11:29:22 PDT 
<rdar://problem/16318555>
Comment 3 Build Bot 2014-03-23 12:52:36 PDT 
Comment on attachment 227612 [details]
Patch

Attachment 227612 [details] did not pass mac-wk2-ews (mac-wk2):
Output: http://webkit-queues.appspot.com/results/6275842619473920

New failing tests:
media/W3C/audio/canPlayType/canPlayType_application_octet_stream.html
Comment 4 Build Bot 2014-03-23 12:52:38 PDT 
Created attachment 227614 [details]
Archive of layout-test-results from webkit-ews-10 for mac-mountainlion-wk2

The attached test failures were seen while running run-webkit-tests on the mac-wk2-ews.
Bot: webkit-ews-10  Port: mac-mountainlion-wk2  Platform: Mac OS X 10.8.5
Comment 5 Geoffrey Garen 2014-03-23 13:11:47 PDT 
EWS failure looks spurious -- a 'timeout' while the WebProcess was not busy and a race condition in a repaint test.
Comment 6 Mark Hahnenberg 2014-03-24 17:56:44 PDT 
Comment on attachment 227612 [details]
Patch

r=me
Comment 7 Geoffrey Garen 2014-03-24 20:28:09 PDT 
Committed r166217: <http://trac.webkit.org/changeset/166217>