A previous patch caused a regression on some ARMv7 platforms. Call arguments were set up differently than how the callee expected them.
Created attachment 241196 [details] Patch
Comment on attachment 241196 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=241196&action=review r=me , but CQ-, because it depends on bug138254 > Source/JavaScriptCore/jit/JITInlines.h:586 > - setupArgumentsWithExecState(TrustedImm32(op1), TrustedImmPtr(identOp2), regOp3Payload, regOp3Tag, TrustedImm32(op4)); > + setupArgumentsWithExecState(TrustedImm32(op1), TrustedImmPtr(identOp2), EABI_32BIT_DUMMY_ARG regOp3Payload, regOp3Tag, TrustedImm32(op4)); Good catch, ARM EABI doesn't like splitting the 64 bit sized JSValue to r3 and stack.
Comment on attachment 241196 [details] Patch Clearing flags on attachment: 241196 Committed r175766: <http://trac.webkit.org/changeset/175766>
All reviewed patches have been landed. Closing bug.