STEPS TO REPRODUCE 1. Log in to Google Apps For Your Domain GMail 2. Reload, navigate away, or otherwise cause the page to unload. ACTUAL RESULTS Crash. Exception Type: EXC_BAD_ACCESS (SIGBUS) Exception Codes: KERN_PROTECTION_FAILURE at 0x0000000000000004 Stack trace: http://pastebin.com/f51ea9e1d <bdash> Machine.cpp:1838 is where the crash is happening
Very similar to https://bugs.webkit.org/show_bug.cgi?id=20386.
Doesn't crash in r35417 Does crash in r35531
Line 1838 is: r[dst] = scope->registerAt(index); The disassembly indicates that the crash is due to "scope" being 0.
<rdar://problem/6152195>
This is a reproducible crash, so it should be P1. I am also assigning it to myself.
Since this seems so similar to bug 20386, it seems like the regression is caused by r35445, but I have no way of testing myself. I'll try to fix bug 20386, and see if the fix also works for this bug.
bug 20386 is now fixed (r35812) so this may be fixed. Hixie can you check?
Ian said that this was indeed fixed.