Bug 143962

Summary:

CRASH in operationCreateDirectArgumentsDuringExit()

Product:

WebKit

Reporter:

Michael Saboff <msaboff>

Component:

JavaScriptCore

Assignee:

Filip Pizlo <fpizlo>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

barraclough, benjamin, ggaren, mark.lam, mhahnenb, mmirman, msaboff, nrotem, oliver, saam, sam, webkit-bug-importer

Priority:

Keywords:

InRadar

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Attachments:

Description	Flags
work in progress	none
the patch	ggaren: review+

Michael Saboff

Reported 2015-04-20 13:20:51 PDT

Crash opening mail app on iCloud.com: * thread #1: tid = 0x7d825, 0x00000001144fdb37, queue = 'com.apple.main-thread, stop reason = EXC_BAD_ACCESS (code=1, addre

Attachments
work in progress (9.87 KB, patch) 2015-04-24 14:08 PDT, Filip Pizlo	no flags	Details Formatted Diff Diff
the patch (11.50 KB, patch) 2015-04-24 14:26 PDT, Filip Pizlo	ggaren: review+	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2015-04-20 13:21:25 PDT

<rdar://problem/20621589>

Mark Lam

Comment 2 2015-04-22 14:58:11 PDT

<rdar://problem/20492150>

Filip Pizlo

Comment 3 2015-04-24 14:08:15 PDT

Created attachment 251572 [details] work in progress Roughly, I'm making it so that the OSR exit compiler tracks liveness of constant-like things. This allows for a bunch of simplifications and should fix this bug.

Filip Pizlo

Comment 4 2015-04-24 14:26:20 PDT

Created attachment 251573 [details] the patch

Geoffrey Garen

Comment 5 2015-04-24 15:05:27 PDT

Comment on attachment 251573 [details] the patch r=me

Filip Pizlo

Comment 6 2015-04-25 01:32:49 PDT

Landed in http://trac.webkit.org/changeset/183307

Note You need to log in before you can comment on or make changes to this bug.