Bug 26055

Summary: [Gtk] Webkit crash in JIT-ed JavaScript
Product: WebKit Reporter: Chip Black <bytex64>
Component: JavaScriptCoreAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: jmalonzo
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: PC   
OS: Linux   
URL: http://dominionofawesome.com/cryptobox/

Chip Black
Reported 2009-05-27 20:09:42 PDT
On r44174, WebKit crashes on http://dominionofawesome.com/cryptobox/ when the "Encrypt" button is clicked. When I compile WebKit without JIT support, output appears in the Ciphertext box (and obviously it doesn't crash). I've tried to track down the bug, but with or without debugging enabled, every backtrace looks like this: #0 0xb768ec63 in ctiVMThrowTrampoline () from /usr/lib/libwebkit-1.0.so.2 #1 0xb52c4100 in ?? () #2 0xbfd2c07c in ?? () #3 0xc5c00000 in ?? () #4 0xb768e8ee in ctiVMThrowTrampoline () from /usr/lib/libwebkit-1.0.so.2 #5 0xb3bfb6e0 in ?? () #6 0x00000000 in ?? () I'm hoping you guys can figure it out, because it's inscrutable to me. :) I've tested this inside of both uzbl and Midori, and it crashes in both.
Attachments
Add attachment proposed patch, testcase, etc.
Alexey Proskuryakov
Comment 1 2009-05-28 03:36:05 PDT
FWIW, this doesn't crash for me on Mac OS X with a debug build of r44217.
Jan Alonzo
Comment 2 2009-05-28 17:47:34 PDT
Hi Chip, I've tested r44256 (latest as of 29/05/2009) and this seems to work now. WebKitGtk 1.1.8 was also release a few hours ago and it maybe worth to use that version if you're using a release copy of WebKitGtk. Thanks for the bug.
Chip Black
Comment 3 2009-05-28 21:29:02 PDT
Still failing for me in the same way. :(
Jan Alonzo
Comment 4 2009-06-06 02:54:32 PDT
(In reply to comment #3) > Still failing for me in the same way. :( > Are you able to attach a backtrace?
Chip Black
Comment 5 2009-06-06 12:34:01 PDT
The backtrace looks identical to the one above. I have updated my svn and I will try it again to see if anything has changed.
Jan Alonzo
Comment 6 2009-07-17 16:45:04 PDT
(In reply to comment #5) > The backtrace looks identical to the one above. I have updated my svn and I > will try it again to see if anything has changed. Can you please try with WebKitGtk 1.1.11 and using the GtkLauncher? Thanks.
Chip Black
Comment 7 2009-07-22 00:33:51 PDT
Much to my surprise, the problem has gone away. Thanks!
Jan Alonzo
Comment 8 2009-07-22 04:16:25 PDT
The issue is confirmed fixed in WebKitGtk 1.1.11. Closing.
Note You need to log in before you can comment on or make changes to this bug.