This was a rookie mistake. It was doing: for (blah) { m_offset = foo // foo's monotonically increase in the loop } as a way of computing max offset for all of the properties. Except what if the loop doesn't execute because there are no properties? Well, then, you're going to have a bogus m_offset. The solution is to initialize m_offset at the top of the loop.
<rdar://problem/13233773>
Created attachment 188945 [details] the patch
Comment on attachment 188945 [details] the patch View in context: https://bugs.webkit.org/attachment.cgi?id=188945&action=review > Source/WTF/wtf/DataLog.cpp:80 > - if (!file) > + if (!file) { > fprintf(stderr, "Warning: Could not open log file %s for writing.\n", actualFilename); > + CRASH(); > + } Oops, I will back this out.
Created attachment 188946 [details] the patch
Landed in http://trac.webkit.org/changeset/143269
*** Bug 110154 has been marked as a duplicate of this bug. ***