162536 – REGRESSION (r206221): [USER] com.apple.WebKit.WebContent.Development at com.apple.JavaScriptCore: vmEntryToJavaScript + 299

Bug 162536 - REGRESSION (r206221): [USER] com.apple.WebKit.WebContent.Development at com.apple.JavaScriptCore: vmEntryToJavaScript + 299

Summary: REGRESSION (r206221): [USER] com.apple.WebKit.WebContent.Development at com.a...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	JavaScriptCore (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Chris Dumez

URL:
Keywords:	InRadar

Depends on:
Blocks:	162311
	Show dependency tree / graph

Reported:	2016-09-24 22:54 PDT by Chris Dumez
Modified:	2016-09-24 23:39 PDT (History)
CC List:	9 users (show)

See Also:

Attachments
Patch (8.52 KB, patch) 2016-09-24 23:01 PDT, Chris Dumez	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Chris Dumez 2016-09-24 22:54:47 PDT

REGRESSION (r206221): [USER] com.apple.WebKit.WebContent.Development at com.apple.JavaScriptCore: vmEntryToJavaScript + 299:
* BACKTRACE ('>' indicates stack frame used for CrashTracer aggregation)

   1 ???                            0000000000 0 + 0
   2 ???                            0000000000 0 + 0
   3 com.apple.JavaScriptCore       0x0087a797 llint_entry + 24793
   4 com.apple.JavaScriptCore       0x0087a797 llint_entry + 24793
   5 ???                            0000000000 0 + 0
   6 ???                            0000000000 0 + 0
   7 ???                            0000000000 0 + 0
   8 ???                            0000000000 0 + 0
>  9 com.apple.JavaScriptCore       0x008744db vmEntryToJavaScript + 299
  10 com.apple.JavaScriptCore       0x00736aee JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*) + 190
  11 com.apple.JavaScriptCore       0x0003a396 JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) + 470
  12 com.apple.JavaScriptCore       0x0035d20f JSC::profiledCall(JSC::ExecState*, JSC::ProfilingReason, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&, WTF::NakedPtr<JSC::Exception>&) + 159
  13 com.apple.WebCore              0x00ea06ac WebCore::ScheduledAction::executeFunctionInContext(JSC::JSGlobalObject*, JSC::JSValue, WebCore::ScriptExecutionContext&) + 588
  14 com.apple.WebCore              0x00ea02c6 WebCore::ScheduledAction::execute(WebCore::Document&) + 134
  15 com.apple.WebCore              0x001318c7 WebCore::DOMTimer::fired() + 679
  16 com.apple.WebCore              0x000129d0 WebCore::ThreadTimers::sharedTimerFiredInternal() + 176
  17 com.apple.WebCore              0x0001290f WebCore::timerFired(__CFRunLoopTimer*, void*) + 31
  18 com.apple.CoreFoundation       0x00090e14 __CFRUNLOOP_IS_CALLING_OUT_TO_A_TIMER_CALLBACK_FUNCTION__ + 20 (/Library/Caches/com.apple.xbs/Sources/CF/CF-1348.1/RunLoop.subproj/CFRunLoop.c:1810)
  19 com.apple.CoreFoundation       0x00090a9f __CFRunLoopDoTimer + 1071 (/Library/Caches/com.apple.xbs/Sources/CF/CF-1348.1/RunLoop.subproj/CFRunLoop.c:2349)
  20 com.apple.CoreFoundation       0x000905fa __CFRunLoopDoTimers + 298 (/Library/Caches/com.apple.xbs/Sources/CF/CF-1348.1/RunLoop.subproj/CFRunLoop.c:2488)
  21 com.apple.CoreFoundation       0x00088021 __CFRunLoopRun + 2065 (/Library/Caches/com.apple.xbs/Sources/CF/CF-1348.1/RunLoop.subproj/CFRunLoop.c:2984)
  22 com.apple.CoreFoundation       0x000875b4 CFRunLoopRunSpecific + 420 (/Library/Caches/com.apple.xbs/Sources/CF/CF-1348.1/RunLoop.subproj/CFRunLoop.c:3113)
  23 com.apple.HIToolbox            0x000307fc RunCurrentEventLoopInMode + 240 (Events/EventsCore/EventLoop.c:440)
  24 com.apple.HIToolbox            0x00030631 ReceiveNextEventCommon + 432 (/BuildRoot/Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX10.12.Internal.sdk/usr/include/dispatch/once.h:77)
  25 com.apple.HIToolbox            0x00030466 _BlockUntilNextEventMatchingListInModeWithFilter + 71 (Events/EventsCore/EventBlocking.c:161)
  26 com.apple.AppKit               0x00046c2d _DPSNextEvent + 1093
  27 com.apple.AppKit               0x007b9db0 -[NSApplication(NSEvent) _nextEventMatchingEventMask:untilDate:inMode:dequeue:] + 2730
  28 com.apple.AppKit               0x0003b5cd -[NSApplication run] + 926
  29 com.apple.AppKit               0x00005f1d NSApplicationMain + 1237
  30 libxpc.dylib                   0x000108b3 _xpc_objc_main + 775 (/BuildRoot/Library/Caches/com.apple.xbs/Sources/libxpc/libxpc-972.20.3/src/main.m:162)
  31 libxpc.dylib                   0x0000f2d0 xpc_main + 494 (/BuildRoot/Library/Caches/com.apple.xbs/Sources/libxpc/libxpc-972.20.3/src/init.c:1447)
  32 com.apple.WebKit.WebContent    0x000017a2  + 0
  33 libdyld.dylib                  0x00005255 start + 1

Comment 1 Chris Dumez 2016-09-24 22:55:02 PDT

<rdar://problem/28415971>

Comment 2 Chris Dumez 2016-09-24 23:01:41 PDT

Created attachment 289773 [details]
Patch

Comment 3 Chris Dumez 2016-09-24 23:39:24 PDT

Comment on attachment 289773 [details]
Patch

Clearing flags on attachment: 289773

Committed r206359: <http://trac.webkit.org/changeset/206359>

Comment 4 Chris Dumez 2016-09-24 23:39:32 PDT

All reviewed patches have been landed.  Closing bug.