Bug 121648 - REGRESSION(r156047): WebCore hangs inside JSC::toInt32(double)
Summary: REGRESSION(r156047): WebCore hangs inside JSC::toInt32(double)
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: JavaScriptCore (show other bugs)
Version: 528+ (Nightly build)
Hardware: Unspecified Unspecified
: P1 Critical
Assignee: Filip Pizlo
URL:
Keywords: InRadar, Regression
Depends on: 121064
Blocks:
  Show dependency treegraph
 
Reported: 2013-09-19 17:16 PDT by Ryosuke Niwa
Modified: 2013-09-20 17:06 PDT (History)
5 users (show)

See Also:

Attachments
the patch (4.11 KB, patch)
2013-09-20 17:00 PDT, Filip Pizlo 		mhahnenberg: review+
Details | Formatted Diff | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ryosuke Niwa 2013-09-19 17:16:13 PDT 
e.g.

Running Time	Self		Symbol Name
15006.0ms   44.2%	15006.0	 	JSC::toInt32(double)
3067.0ms    9.0%	0.0	 	 <Unknown Address>
2214.0ms    6.5%	0.0	 	 0x3465719f9a52
2214.0ms    6.5%	0.0	 	  JSC::JITCode::execute(JSC::JSStack*, JSC::ExecState*, JSC::VM*)
2214.0ms    6.5%	0.0	 	   JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
2214.0ms    6.5%	0.0	 	    JSC::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
2214.0ms    6.5%	0.0	 	     WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext*, WebCore::Event*)
2214.0ms    6.5%	0.0	 	      WebCore::EventTarget::fireEventListeners(WebCore::Event*, WebCore::EventTargetData*, WTF::Vector<WebCore::RegisteredEventListener, 1ul, WTF::CrashOnOverflow>&)
Comment 1 Ryosuke Niwa 2013-09-19 17:18:29 PDT 
<rdar://problem/15024481>
Comment 2 Filip Pizlo 2013-09-20 17:00:45 PDT 
Created attachment 212246 [details]
the patch
Comment 3 Mark Hahnenberg 2013-09-20 17:04:22 PDT 
Comment on attachment 212246 [details]
the patch

r=me
Comment 4 Filip Pizlo 2013-09-20 17:06:28 PDT 
Landed in http://trac.webkit.org/changeset/156212