Bug 87265
| Summary: | REGRESSION(r118096): sputnik/Conformance/12_Statement/12.13_The_throw_statement/S12.13_A3_T6.html crashes | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Jessie Berlin <jberlin> |
| Component: | DOM | Assignee: | Kent Tamura <tkent> |
| Status: | RESOLVED DUPLICATE | ||
| Severity: | Normal | CC: | ap, crogers, darin, eric.carlson, ggaren, inferno, jberlin, mjs, morrita, slewis, tkent |
| Priority: | P2 | Keywords: | InRadar, LayoutTestFailure, MakingBotsRed |
| Version: | 528+ (Nightly build) | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
Jessie Berlin
I do not have access to https://bugs.webkit.org/show_bug.cgi?id=86534, so I can't comment there.
The bots indicate this started somewhere in between r118093 and r118096:
http://build.webkit.org/results/Lion%20Debug%20(Tests)/r118093%20(6860)/results.html
http://build.webkit.org/results/Lion%20Debug%20(Tests)/r118096%20(6861)/results.html
118095 was rolled out in 118116 and the crash still happens after that, so that leaves
http://trac.webkit.org/changeset/118094
http://trac.webkit.org/changeset/118096
Given the backtrace, I think it is http://trac.webkit.org/changeset/118096, since that modified ContainerNodeAlgorithms.h
Process: DumpRenderTree [25856]
Path: /Volumes/VOLUME/*/DumpRenderTree
Identifier: DumpRenderTree
Version: ??? (???)
Code Type: X86-64 (Native)
Parent Process: Python [24932]
Date/Time: 2012-05-23 07:35:31.502 -0700
OS Version: Mac OS X 10.7.3 (11D50)
Report Version: 9
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000020
VM Regions Near 0x20:
-->
__TEXT 0000000107e20000-0000000107eb6000 [ 600K] r-x/rwx SM=COW /Volumes/VOLUME/*
Application Specific Information:
objc[25856]: garbage collection is OFF
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.apple.WebCore 0x00000001093de57c WTF::OwnPtr<WebCore::AudioNodeOutput>::get() const + 12 (OwnPtr.h:57)
1 com.apple.WebCore 0x00000001093dd2ba WebCore::AudioNode::output(unsigned int) + 90 (AudioNode.cpp:114)
2 com.apple.WebCore 0x00000001093dd694 WebCore::AudioNode::disconnect(unsigned int, int&) + 180 (AudioNode.cpp:187)
3 com.apple.WebCore 0x0000000109b05bf3 WebCore::HTMLSourceElement::removedFrom(WebCore::Node*) + 115 (HTMLSourceElement.cpp:71)
4 com.apple.WebCore 0x00000001094e3e3e WebCore::ChildNodeRemovalNotifier::notifyNodeRemovedFromTree(WebCore::ContainerNode*) + 142 (ContainerNodeAlgorithms.h:254)
5 com.apple.WebCore 0x00000001094e19bb WebCore::ChildNodeRemovalNotifier::notify(WebCore::Node*) + 107 (ContainerNodeAlgorithms.h:265)
6 com.apple.WebCore 0x00000001094e3911 WebCore::Private::NodeRemovalDispatcher<WebCore::Node, WebCore::ContainerNode, true>::dispatch(WebCore::Node*, WebCore::ContainerNode*) + 97 (ContainerNodeAlgorithms.h:139)
7 com.apple.WebCore 0x00000001094e3866 void WebCore::Private::addChildNodesToDeletionQueue<WebCore::Node, WebCore::ContainerNode>(WebCore::Node*&, WebCore::Node*&, WebCore::ContainerNode*) + 326 (ContainerNodeAlgorithms.h:179)
8 com.apple.WebCore 0x00000001094e1450 void WebCore::removeAllChildrenInContainer<WebCore::Node, WebCore::ContainerNode>(WebCore::ContainerNode*) + 48 (ContainerNodeAlgorithms.h:88)
9 com.apple.WebCore 0x00000001094dcf55 WebCore::ContainerNode::removeAllChildren() + 21 (ContainerNode.cpp:87)
10 com.apple.WebCore 0x00000001094dd447 WebCore::ContainerNode::~ContainerNode() + 55 (ContainerNode.cpp:115)
11 com.apple.WebCore 0x0000000109885525 WebCore::Element::~Element() + 341 (Element.cpp:139)
12 com.apple.WebCore 0x000000010a7e81a3 WebCore::StyledElement::~StyledElement() + 67 (StyledElement.cpp:132)
13 com.apple.WebCore 0x0000000109667745 WebCore::HTMLElement::~HTMLElement() + 21 (HTMLElement.h:44)
14 com.apple.WebCore 0x0000000109abee07 WebCore::HTMLMediaElement::~HTMLMediaElement() + 1015 (HTMLMediaElement.cpp:307)
15 com.apple.WebCore 0x0000000109b3cd52 WebCore::HTMLVideoElement::~HTMLVideoElement() + 178 (HTMLVideoElement.h:37)
16 com.apple.WebCore 0x0000000109b3c865 WebCore::HTMLVideoElement::~HTMLVideoElement() + 21 (HTMLVideoElement.h:37)
17 com.apple.WebCore 0x0000000109b3c889 WebCore::HTMLVideoElement::~HTMLVideoElement() + 25 (HTMLVideoElement.h:37)
18 com.apple.WebCore 0x0000000109b3c96c non-virtual thunk to WebCore::HTMLVideoElement::~HTMLVideoElement() + 28
19 com.apple.WebCore 0x00000001093bc752 WebCore::TreeShared<WebCore::ContainerNode>::removedLastRef() + 50 (TreeShared.h:119)
20 com.apple.WebCore 0x0000000109325cb2 WebCore::TreeShared<WebCore::ContainerNode>::deref() + 450 (TreeShared.h:81)
21 com.apple.WebCore 0x0000000109325adb void WTF::derefIfNotNull<WebCore::Node>(WebCore::Node*) + 59 (PassRefPtr.h:53)
22 com.apple.WebCore 0x0000000109325a98 WTF::RefPtr<WebCore::Node>::~RefPtr() + 24 (RefPtr.h:56)
23 com.apple.WebCore 0x0000000109325a75 WTF::RefPtr<WebCore::Node>::~RefPtr() + 21 (RefPtr.h:56)
24 com.apple.WebCore 0x00000001094893a5 WebCore::DynamicNodeList::~DynamicNodeList() + 53 (DynamicNodeList.h:41)
25 com.apple.WebCore 0x0000000109852115 WebCore::DynamicSubtreeNodeList::~DynamicSubtreeNodeList() + 21 (DynamicNodeList.cpp:38)
26 com.apple.WebCore 0x000000010a98c894 WebCore::TagNodeList::~TagNodeList() + 260 (TagNodeList.cpp:46)
27 com.apple.WebCore 0x000000010a98cbe1 WebCore::HTMLTagNodeList::~HTMLTagNodeList() + 65 (TagNodeList.h:51)
28 com.apple.WebCore 0x000000010a98cb65 WebCore::HTMLTagNodeList::~HTMLTagNodeList() + 21 (TagNodeList.h:51)
29 com.apple.WebCore 0x000000010a98cb89 WebCore::HTMLTagNodeList::~HTMLTagNodeList() + 25 (TagNodeList.h:51)
30 com.apple.WebCore 0x00000001093261a3 WTF::RefCounted<WebCore::NodeList>::deref() + 83 (RefCounted.h:191)
31 com.apple.WebCore 0x0000000109f97ce6 WebCore::JSNodeList::releaseImpl() + 38 (JSNodeList.h:58)
32 com.apple.WebCore 0x0000000109f96f3e WebCore::JSNodeListOwner::finalize(JSC::Handle<JSC::Unknown>, void*) + 110 (JSNodeList.cpp:262)
33 com.apple.JavaScriptCore 0x00000001083bfa2f JSC::WeakBlock::finalize(JSC::WeakImpl*) + 207 (WeakBlock.h:132)
34 com.apple.JavaScriptCore 0x00000001083bf395 JSC::WeakBlock::sweep() + 165 (WeakBlock.cpp:83)
35 com.apple.JavaScriptCore 0x00000001083bfe67 JSC::WeakSet::sweep() + 135 (WeakSet.cpp:64)
36 com.apple.JavaScriptCore 0x00000001081b5460 JSC::Heap::collect(JSC::Heap::SweepToggle) + 448 (Heap.cpp:704)
37 com.apple.JavaScriptCore 0x00000001083bc994 JSC::MarkedAllocator::allocateSlowCase() + 212 (MarkedAllocator.cpp:74)
38 com.apple.JavaScriptCore 0x0000000108042dc4 JSC::MarkedAllocator::allocate() + 68 (MarkedAllocator.h:77)
39 com.apple.JavaScriptCore 0x0000000108052cc5 JSC::MarkedSpace::allocateWithDestructor(unsigned long) + 37 (MarkedSpace.h:186)
40 com.apple.JavaScriptCore 0x0000000108052c8e JSC::Heap::allocateWithDestructor(unsigned long) + 126 (Heap.h:345)
41 com.apple.JavaScriptCore 0x000000010809bb68 void* JSC::allocateCell<JSC::FunctionExecutable>(JSC::Heap&) + 152 (JSCell.h:336)
42 com.apple.JavaScriptCore 0x000000010809bfa4 JSC::FunctionExecutable::create(JSC::ExecState*, JSC::Identifier const&, JSC::Identifier const&, JSC::SourceCode const&, bool, JSC::FunctionParameters*, bool, int, int) + 84 (Executable.h:473)
43 com.apple.JavaScriptCore 0x0000000108067bee JSC::BytecodeGenerator::makeFunction(JSC::ExecState*, JSC::FunctionBodyNode*) + 206 (BytecodeGenerator.h:599)
44 com.apple.JavaScriptCore 0x000000010805b9ea JSC::BytecodeGenerator::BytecodeGenerator(JSC::ProgramNode*, JSC::ScopeChainNode*, WTF::HashMap<WTF::RefPtr<WTF::StringImpl>, JSC::SymbolTableEntry, JSC::IdentifierRepHash, WTF::HashTraits<WTF::RefPtr<WTF::StringImpl> >, JSC::SymbolTableIndexHashTraits>*, JSC::ProgramCodeBlock*, JSC::CompilationKind) + 1466 (BytecodeGenerator.cpp:289)
45 com.apple.JavaScriptCore 0x000000010805b41d JSC::BytecodeGenerator::BytecodeGenerator(JSC::ProgramNode*, JSC::ScopeChainNode*, WTF::HashMap<WTF::RefPtr<WTF::StringImpl>, JSC::SymbolTableEntry, JSC::IdentifierRepHash, WTF::HashTraits<WTF::RefPtr<WTF::StringImpl> >, JSC::SymbolTableIndexHashTraits>*, JSC::ProgramCodeBlock*, JSC::CompilationKind) + 61 (BytecodeGenerator.cpp:299)
46 com.apple.JavaScriptCore 0x00000001081a114d JSC::ProgramExecutable::compileInternal(JSC::ExecState*, JSC::ScopeChainNode*, JSC::JITCode::JITType) + 1549 (Executable.cpp:367)
47 com.apple.JavaScriptCore 0x00000001081cf4b0 JSC::ProgramExecutable::compile(JSC::ExecState*, JSC::ScopeChainNode*) + 192 (Executable.h:414)
48 com.apple.JavaScriptCore 0x00000001081cb152 JSC::Interpreter::execute(JSC::ProgramExecutable*, JSC::ExecState*, JSC::ScopeChainNode*, JSC::JSObject*) + 3970 (Interpreter.cpp:1205)
49 com.apple.JavaScriptCore 0x00000001080c8352 JSC::evaluate(JSC::ExecState*, JSC::ScopeChainNode*, JSC::SourceCode const&, JSC::JSValue, JSC::JSValue*) + 434 (Completion.cpp:73)
50 com.apple.WebCore 0x0000000109f39fbd WebCore::JSMainThreadExecState::evaluate(JSC::ExecState*, JSC::ScopeChainNode*, JSC::SourceCode const&, JSC::JSValue, JSC::JSValue*) + 77 (JSMainThreadExecState.h:76)
51 com.apple.WebCore 0x000000010a6b37b3 WebCore::ScriptController::evaluateInWorld(WebCore::ScriptSourceCode const&, WebCore::DOMWrapperWorld*) + 371 (ScriptController.cpp:145)
52 com.apple.WebCore 0x000000010a6b38e4 WebCore::ScriptController::evaluate(WebCore::ScriptSourceCode const&) + 68 (ScriptController.cpp:162)
53 com.apple.WebCore 0x000000010a6c916c WebCore::ScriptElement::executeScript(WebCore::ScriptSourceCode const&) + 444 (ScriptElement.cpp:290)
54 com.apple.WebCore 0x000000010a6c81cd WebCore::ScriptElement::prepareScript(WTF::TextPosition const&, WebCore::ScriptElement::LegacyTypeSupport) + 1693 (ScriptElement.cpp:235)
55 com.apple.WebCore 0x0000000109afaf83 WebCore::HTMLScriptRunner::runScript(WebCore::Element*, WTF::TextPosition const&) + 419 (HTMLScriptRunner.cpp:298)
56 com.apple.WebCore 0x0000000109afad3c WebCore::HTMLScriptRunner::execute(WTF::PassRefPtr<WebCore::Element>, WTF::TextPosition const&) + 156 (HTMLScriptRunner.cpp:172)
57 com.apple.WebCore 0x0000000109a71325 WebCore::HTMLDocumentParser::runScriptsForPausedTreeBuilder() + 277 (HTMLDocumentParser.cpp:207)
58 com.apple.WebCore 0x0000000109a7140b WebCore::HTMLDocumentParser::canTakeNextToken(WebCore::HTMLDocumentParser::SynchronousMode, WebCore::PumpSession&) + 171 (HTMLDocumentParser.cpp:225)
59 com.apple.WebCore 0x0000000109a70cd4 WebCore::HTMLDocumentParser::pumpTokenizer(WebCore::HTMLDocumentParser::SynchronousMode) + 420 (HTMLDocumentParser.cpp:263)
60 com.apple.WebCore 0x0000000109a70935 WebCore::HTMLDocumentParser::pumpTokenizerIfPossible(WebCore::HTMLDocumentParser::SynchronousMode) + 197 (HTMLDocumentParser.cpp:178)
61 com.apple.WebCore 0x0000000109a7189f WebCore::HTMLDocumentParser::append(WebCore::SegmentedString const&) + 335 (HTMLDocumentParser.cpp:372)
62 com.apple.WebCore 0x0000000109650e27 WebCore::DecodedDataDocumentParser::appendBytes(WebCore::DocumentWriter*, char const*, unsigned long) + 199 (DecodedDataDocumentParser.cpp:50)
63 com.apple.WebCore 0x00000001096f416e WebCore::DocumentWriter::addData(char const*, unsigned long) + 254 (DocumentWriter.cpp:219)
64 com.apple.WebCore 0x00000001096d4394 WebCore::DocumentLoader::commitData(char const*, unsigned long) + 388 (DocumentLoader.cpp:350)
65 com.apple.WebKit 0x0000000108d0f0f3 -[WebFrame(WebInternal) _commitData:] + 211 (WebFrame.mm:829)
66 com.apple.WebKit 0x0000000108d4d8a0 -[WebHTMLRepresentation receivedData:withDataSource:] + 128 (WebHTMLRepresentation.mm:185)
67 com.apple.WebKit 0x0000000108cec6ba -[WebDataSource(WebInternal) _receivedData:] + 90 (WebDataSource.mm:235)
68 com.apple.WebKit 0x0000000108d1cbc1 WebFrameLoaderClient::committedLoad(WebCore::DocumentLoader*, char const*, int) + 129 (WebFrameLoaderClient.mm:836)
69 com.apple.WebCore 0x00000001096d4470 WebCore::DocumentLoader::commitLoad(char const*, int) + 208 (DocumentLoader.cpp:322)
70 com.apple.WebCore 0x00000001096d46d3 WebCore::DocumentLoader::receivedData(char const*, int) + 83 (DocumentLoader.cpp:361)
71 com.apple.WebCore 0x000000010a270977 WebCore::MainResourceLoader::addData(char const*, int, bool) + 87 (MainResourceLoader.cpp:193)
72 com.apple.WebCore 0x000000010a67258c WebCore::ResourceLoader::didReceiveData(char const*, int, long long, bool) + 108 (ResourceLoader.cpp:276)
73 com.apple.WebCore 0x000000010a271fe7 WebCore::MainResourceLoader::didReceiveData(char const*, int, long long, bool) + 727 (MainResourceLoader.cpp:498)
74 com.apple.WebCore 0x000000010a672efc WebCore::ResourceLoader::didReceiveData(WebCore::ResourceHandle*, char const*, int, int) + 140 (ResourceLoader.cpp:430)
75 com.apple.WebCore 0x000000010a66f87a -[WebCoreResourceHandleAsDelegate connection:didReceiveData:lengthReceived:] + 298 (ResourceHandleMac.mm:823)
76 com.apple.Foundation 0x00007fff8acf53a9 ___NSURLConnectionDidReceiveData_block_invoke_1 + 144
77 com.apple.Foundation 0x00007fff8acf5313 _NSURLConnectionDidReceiveData + 86
78 com.apple.CFNetwork 0x00007fff88599c08 URLConnectionClient::_clientDidReceiveData(__CFArray const*, URLConnectionClient::ClientConnectionEventQueue*) + 348
79 com.apple.CFNetwork 0x00007fff8864b8fb URLConnectionClient::ClientConnectionEventQueue::processAllEventsAndConsumePayload(XConnectionEventInfo<XClientEvent, XClientEventParams>*, long) + 827
80 com.apple.CFNetwork 0x00007fff88576389 URLConnectionClient::processEvents() + 185
81 com.apple.CFNetwork 0x00007fff8857622e MultiplexerSource::perform() + 212
82 com.apple.CoreFoundation 0x00007fff892a66e1 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
83 com.apple.CoreFoundation 0x00007fff892a5f4d __CFRunLoopDoSources0 + 253
84 com.apple.CoreFoundation 0x00007fff892ccd39 __CFRunLoopRun + 905
85 com.apple.CoreFoundation 0x00007fff892cc676 CFRunLoopRunSpecific + 230
86 com.apple.Foundation 0x00007fff8ac98f9f -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 267
87 DumpRenderTree 0x0000000107e389a9 _ZL7runTestRKNSt3__112basic_stringIcNS_11char_traitsIcEENS_9allocatorIcEEEE + 5769 (DumpRenderTree.mm:1365)
88 DumpRenderTree 0x0000000107e3729a _ZL20runTestingServerLoopv + 282 (DumpRenderTree.mm:828)
89 DumpRenderTree 0x0000000107e36b09 dumpRenderTree(int, char const**) + 377 (DumpRenderTree.mm:877)
90 DumpRenderTree 0x0000000107e3920c main + 124 (DumpRenderTree.mm:915)
91 DumpRenderTree 0x0000000107e22154 start + 52
Thread 1:: Dispatch queue: com.apple.libdispatch-manager
0 libsystem_kernel.dylib 0x00007fff8fad17e6 kevent + 10
1 libdispatch.dylib 0x00007fff8d8695be _dispatch_mgr_invoke + 923
2 libdispatch.dylib 0x00007fff8d86814e _dispatch_mgr_thread + 54
Thread 2:: com.apple.NSURLConnectionLoader
0 libsystem_kernel.dylib 0x00007fff8facf67a mach_msg_trap + 10
1 libsystem_kernel.dylib 0x00007fff8faced71 mach_msg + 73
2 com.apple.CoreFoundation 0x00007fff892c46fc __CFRunLoopServiceMachPort + 188
3 com.apple.CoreFoundation 0x00007fff892cce64 __CFRunLoopRun + 1204
4 com.apple.CoreFoundation 0x00007fff892cc676 CFRunLoopRunSpecific + 230
5 com.apple.Foundation 0x00007fff8acf2ffb +[NSURLConnection(NSURLConnectionReallyInternal) _resourceLoadLoop:] + 335
6 com.apple.Foundation 0x00007fff8ace774e -[NSThread main] + 68
7 com.apple.Foundation 0x00007fff8ace76c6 __NSThread__main__ + 1575
8 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
9 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 3:: JavaScriptCore::BlockFree
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425561 WTF::ThreadCondition::timedWait(WTF::Mutex&, double) + 209 (ThreadingPthreads.cpp:417)
3 com.apple.JavaScriptCore 0x00000001083d4b83 JSC::BlockAllocator::waitForRelativeTimeWhileHoldingLock(double) + 99 (BlockAllocator.cpp:79)
4 com.apple.JavaScriptCore 0x00000001083d4bd0 JSC::BlockAllocator::waitForRelativeTime(double) + 64 (BlockAllocator.cpp:89)
5 com.apple.JavaScriptCore 0x00000001083d4c24 JSC::BlockAllocator::blockFreeingThreadMain() + 68 (BlockAllocator.cpp:103)
6 com.apple.JavaScriptCore 0x00000001083d4975 JSC::BlockAllocator::blockFreeingThreadStartFunc(void*) + 21 (BlockAllocator.cpp:95)
7 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
8 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
9 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
10 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 4:: JavaScriptCore::Marking
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425430 WTF::ThreadCondition::wait(WTF::Mutex&) + 48 (ThreadingPthreads.cpp:396)
3 com.apple.JavaScriptCore 0x00000001082a7b38 JSC::SlotVisitor::drainFromShared(JSC::SlotVisitor::SharedDrainMode) + 1096 (MarkStack.cpp:430)
4 com.apple.JavaScriptCore 0x00000001082a76cd JSC::MarkStackThreadSharedData::markingThreadMain() + 77 (MarkStack.cpp:228)
5 com.apple.JavaScriptCore 0x00000001082a7c05 JSC::MarkStackThreadSharedData::markingThreadStartFunc(void*) + 21 (MarkStack.cpp:235)
6 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
7 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
8 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
9 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 5:: JavaScriptCore::Marking
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425430 WTF::ThreadCondition::wait(WTF::Mutex&) + 48 (ThreadingPthreads.cpp:396)
3 com.apple.JavaScriptCore 0x00000001082a7b38 JSC::SlotVisitor::drainFromShared(JSC::SlotVisitor::SharedDrainMode) + 1096 (MarkStack.cpp:430)
4 com.apple.JavaScriptCore 0x00000001082a76cd JSC::MarkStackThreadSharedData::markingThreadMain() + 77 (MarkStack.cpp:228)
5 com.apple.JavaScriptCore 0x00000001082a7c05 JSC::MarkStackThreadSharedData::markingThreadStartFunc(void*) + 21 (MarkStack.cpp:235)
6 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
7 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
8 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
9 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 6:: JavaScriptCore::Marking
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425430 WTF::ThreadCondition::wait(WTF::Mutex&) + 48 (ThreadingPthreads.cpp:396)
3 com.apple.JavaScriptCore 0x00000001082a7b38 JSC::SlotVisitor::drainFromShared(JSC::SlotVisitor::SharedDrainMode) + 1096 (MarkStack.cpp:430)
4 com.apple.JavaScriptCore 0x00000001082a76cd JSC::MarkStackThreadSharedData::markingThreadMain() + 77 (MarkStack.cpp:228)
5 com.apple.JavaScriptCore 0x00000001082a7c05 JSC::MarkStackThreadSharedData::markingThreadStartFunc(void*) + 21 (MarkStack.cpp:235)
6 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
7 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
8 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
9 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 7:: WebCore: LocalStorage
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425430 WTF::ThreadCondition::wait(WTF::Mutex&) + 48 (ThreadingPthreads.cpp:396)
3 com.apple.JavaScriptCore 0x00000001084254ff WTF::ThreadCondition::timedWait(WTF::Mutex&, double) + 111 (ThreadingPthreads.cpp:407)
4 com.apple.WebCore 0x000000010a794e9d WTF::PassOwnPtr<WebCore::StorageTask> WTF::MessageQueue<WebCore::StorageTask>::waitForMessageFilteredWithTimeout<bool ()(WebCore::StorageTask*)>(WTF::MessageQueueWaitResult&, bool (&)(WebCore::StorageTask*), double) + 509 (MessageQueue.h:138)
5 com.apple.WebCore 0x000000010a79410c WTF::MessageQueue<WebCore::StorageTask>::waitForMessage() + 60 (MessageQueue.h:124)
6 com.apple.WebCore 0x000000010a793c55 WebCore::StorageThread::threadEntryPoint() + 133 (StorageThread.cpp:70)
7 com.apple.WebCore 0x000000010a793bc5 WebCore::StorageThread::threadEntryPointCallback(void*) + 21 (StorageThread.cpp:63)
8 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
9 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
10 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
11 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
Thread 8:: WebCore: LocalStorage
0 libsystem_kernel.dylib 0x00007fff8fad0bca __psynch_cvwait + 10
1 libsystem_c.dylib 0x00007fff884e2274 _pthread_cond_wait + 840
2 com.apple.JavaScriptCore 0x0000000108425430 WTF::ThreadCondition::wait(WTF::Mutex&) + 48 (ThreadingPthreads.cpp:396)
3 com.apple.JavaScriptCore 0x00000001084254ff WTF::ThreadCondition::timedWait(WTF::Mutex&, double) + 111 (ThreadingPthreads.cpp:407)
4 com.apple.WebCore 0x000000010a794e9d WTF::PassOwnPtr<WebCore::StorageTask> WTF::MessageQueue<WebCore::StorageTask>::waitForMessageFilteredWithTimeout<bool ()(WebCore::StorageTask*)>(WTF::MessageQueueWaitResult&, bool (&)(WebCore::StorageTask*), double) + 509 (MessageQueue.h:138)
5 com.apple.WebCore 0x000000010a79410c WTF::MessageQueue<WebCore::StorageTask>::waitForMessage() + 60 (MessageQueue.h:124)
6 com.apple.WebCore 0x000000010a793c55 WebCore::StorageThread::threadEntryPoint() + 133 (StorageThread.cpp:70)
7 com.apple.WebCore 0x000000010a793bc5 WebCore::StorageThread::threadEntryPointCallback(void*) + 21 (StorageThread.cpp:63)
8 com.apple.JavaScriptCore 0x0000000108423ed0 _ZN3WTFL16threadEntryPointEPv + 144 (Threading.cpp:70)
9 com.apple.JavaScriptCore 0x00000001084249b8 _ZN3WTFL19wtfThreadEntryPointEPv + 104 (ThreadingPthreads.cpp:164)
10 libsystem_c.dylib 0x00007fff884de8bf _pthread_start + 335
11 libsystem_c.dylib 0x00007fff884e1b75 thread_start + 13
<rdar://problem/11513959>
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Jessie Berlin
Note: I am hesitant to just skip this test because when I run locally, other tests (with no clear pattern) also hit this crash.
I am hesitant to roll out the change because it also fixes a crash.
Not really sure what to do here re: the tests.
Jessie Berlin
Also note that this is not just affecting WK1. It is causing crashes in WK2 as well:
http://build.webkit.org/results/Lion%20Debug%20(WebKit2%20Tests)/r118178%20(7408)/results.html
At least two of those crashes (though the links to the crash logs are broken) are this crash.
Geoffrey Garen
(In reply to comment #1)
> I am hesitant to roll out the change because it also fixes a crash.
I'd recommend rolling out r118096 and reopening the bug (assuming that fixes the tests). r118096 fixed an unlikely crash and in exchange caused likely crashes in basic functionality.
Jessie Berlin
(In reply to comment #3)
> (In reply to comment #1)
> > I am hesitant to roll out the change because it also fixes a crash.
>
> I'd recommend rolling out r118096 and reopening the bug (assuming that fixes the tests). r118096 fixed an unlikely crash and in exchange caused likely crashes in basic functionality.
I asked the sheriff to roll it out. See https://bugs.webkit.org/show_bug.cgi?id=87285.
Alexey Proskuryakov
So this seems resolved by the rollout.
*** This bug has been marked as a duplicate of bug 87285 ***
Hajime Morrita
Thanks for the catch. We'll search other option for Bug 86534.