To reproduce: 1. run-webkit-tests on the apple-slave-7 bot Many many tests are crashing beneath ctiTrampoline. Here's the backtrace: 01259430() > WebKit.dll!ctiTrampoline(void * code=0x01207930, JSC::RegisterFile * __formal=0x022f0068, JSC::RegisterFile * __formal=0x022f0068, JSC::JSValuePtr * exception=0x12407e68, JSC::RegisterFile * __formal=0x022f0068, JSC::RegisterFile * __formal=0x022f0068) Line 145 C++ WebKit.dll!JSC::CTI::execute(void * code=0x01259430, JSC::RegisterFile * registerFile=0x01207930, JSC::ExecState * callFrame=0x022f0068, JSC::JSGlobalData * globalData=0x01230020, JSC::JSValuePtr * exception=0x0012ecbc) Line 342 + 0x1f bytes C++ WebKit.dll!JSC::Machine::execute(JSC::ProgramNode * programNode=0x011ef828, JSC::ExecState * callFrame=0x00cc3ec4, JSC::ScopeChainNode * scopeChain=0x01231cf8, JSC::JSObject * thisObj=0x02700000, JSC::JSValuePtr * exception=0x0012ecbc) Line 930 + 0x26 bytes C++ WebKit.dll!JSC::Interpreter::evaluate(JSC::ExecState * exec=0x00cc3ec4, JSC::ScopeChain & scopeChain={...}, const JSC::SourceCode & source={...}, JSC::JSValuePtr thisValue={...}) Line 71 C++ WebKit.dll!WebCore::ScriptController::evaluate(const WebCore::String & sourceURL={...}, int baseLine=1, const WebCore::String & str={...}) Line 112 + 0x51 bytes C++ WebKit.dll!WebCore::FrameLoader::executeScript(const WebCore::String & url={...}, int baseLine=1, const WebCore::String & script={...}) Line 795 C++ WebKit.dll!WebCore::HTMLTokenizer::scriptExecution(const WebCore::String & str={...}, WebCore::HTMLTokenizer::State state={...}, const WebCore::String & scriptURL={...}, int baseLine=1) Line 564 C++ WebKit.dll!WebCore::HTMLTokenizer::scriptHandler(WebCore::HTMLTokenizer::State state={...}) Line 503 + 0x27 bytes C++ WebKit.dll!WebCore::HTMLTokenizer::parseSpecial(WebCore::SegmentedString & src={...}, WebCore::HTMLTokenizer::State state={...}) Line 345 + 0x10 bytes C++ WebKit.dll!WebCore::HTMLTokenizer::parseTag(WebCore::SegmentedString & src={...}, WebCore::HTMLTokenizer::State state={...}) Line 1517 + 0x17 bytes C++ WebKit.dll!WebCore::HTMLTokenizer::write(const WebCore::SegmentedString & str={...}, bool appendData=true) Line 1752 + 0x1d bytes C++ WebKit.dll!WebCore::FrameLoader::write(const char * str=0x00000000, int len=0, bool flush=true) Line 1041 + 0x21 bytes C++ WebKit.dll!WebCore::FrameLoader::endIfNotLoadingMainResource() Line 1078 C++ WebKit.dll!WebCore::FrameLoader::end() Line 1063 C++ WebKit.dll!WebCore::DocumentLoader::finishedLoading() Line 345 C++ WebKit.dll!WebCore::FrameLoader::finishedLoading() Line 2976 C++ WebKit.dll!WebCore::MainResourceLoader::didFinishLoading() Line 334 C++ WebKit.dll!WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle * __formal=0x01217ad0) Line 398 + 0xf bytes C++ WebKit.dll!WebCore::didFinishLoading(_CFURLConnection * conn=0x0121c4b8, const void * clientInfo=0x01217ad0) Line 119 + 0x1e bytes C++ CFNetwork.dll!6a535f00() [Frames below may be incorrect and/or missing, no symbols loaded for CFNetwork.dll] CFNetwork.dll!6a536353() CFNetwork.dll!6a5364f6() user32.dll!_InternalCallWinProc@20() + 0x28 bytes user32.dll!_UserCallWinProcCheckWow@32() + 0xa2 bytes user32.dll!_DispatchMessageWorker@8() + 0xc8 bytes user32.dll!_DispatchMessageW@4() + 0xf bytes DumpRenderTree_debug.exe!runTest(const char * pathOrURL=0x0012f738) Line 751 + 0xc bytes C++ DumpRenderTree_debug.exe!main(int argc=2, char * * argv=0x009bca10) Line 1088 + 0xc bytes C++ DumpRenderTree_debug.exe!__tmainCRTStartup() Line 597 + 0x17 bytes C kernel32.dll!_BaseProcessStart@4() + 0x23 bytes
<rdar://problem/6310753>
Looks like this crash also occurs when launching Safari on this machine.
This was fixed in r37804: http://trac.webkit.org/changeset/37804