130652 – Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when WebKit is compiled with fcatch-undefined-behavior

Bug 130652 - Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when WebKit is compiled with fcatch-undefined-behavior

Summary: Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when We...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	New Bugs (show other bugs)
Version:	528+ (Nightly build)
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Geoffrey Garen

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2014-03-23 11:25 PDT by Geoffrey Garen
Modified:	2014-03-24 20:28 PDT (History)
CC List:	5 users (show)

See Also:

Attachments
Patch (6.64 KB, patch) 2014-03-23 11:29 PDT, Geoffrey Garen	mhahnenberg: review+ buildbot: commit-queue-	Details \| Formatted Diff \| Diff
Archive of layout-test-results from webkit-ews-10 for mac-mountainlion-wk2 (486.23 KB, application/zip) 2014-03-23 12:52 PDT, Build Bot	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Geoffrey Garen 2014-03-23 11:25:25 PDT

Safari crashes in JavaScriptCore: JSC::JSObject::growOutOfLineStorage when WebKit is compiled with fcatch-undefined-behavior

Comment 1 Geoffrey Garen 2014-03-23 11:29:09 PDT

Created attachment 227612 [details]
Patch

Comment 2 Geoffrey Garen 2014-03-23 11:29:22 PDT

<rdar://problem/16318555>

Comment 3 Build Bot 2014-03-23 12:52:36 PDT

Comment on attachment 227612 [details]
Patch

Attachment 227612 [details] did not pass mac-wk2-ews (mac-wk2):
Output: http://webkit-queues.appspot.com/results/6275842619473920

New failing tests:
media/W3C/audio/canPlayType/canPlayType_application_octet_stream.html

Comment 4 Build Bot 2014-03-23 12:52:38 PDT

Created attachment 227614 [details]
Archive of layout-test-results from webkit-ews-10 for mac-mountainlion-wk2

The attached test failures were seen while running run-webkit-tests on the mac-wk2-ews.
Bot: webkit-ews-10  Port: mac-mountainlion-wk2  Platform: Mac OS X 10.8.5

Comment 5 Geoffrey Garen 2014-03-23 13:11:47 PDT

EWS failure looks spurious -- a 'timeout' while the WebProcess was not busy and a race condition in a repaint test.

Comment 6 Mark Hahnenberg 2014-03-24 17:56:44 PDT

Comment on attachment 227612 [details]
Patch

r=me

Comment 7 Geoffrey Garen 2014-03-24 20:28:09 PDT

Committed r166217: <http://trac.webkit.org/changeset/166217>