RESOLVED FIXED 41763
REGRESSION: Crash at JSC::JIT::privateCompile(JSC::MacroAssemblerCodePtr*) 
https://bugs.webkit.org/show_bug.cgi?id=41763
Summary REGRESSION: Crash at JSC::JIT::privateCompile(JSC::MacroAssemblerCodePtr*)
Ismail Donmez
Reported 2010-07-07 05:51:15 PDT
Using revision r62632. How to reproduce; - Visit http://cnnturk.com - Wait 2-3 seconds - Crash
Attachments
Crash backtrace (38.72 KB, text/plain)
2010-07-07 05:52 PDT, Ismail Donmez 		no flags
Details
Patch (13.79 KB, patch)
2010-07-12 18:04 PDT, Oliver Hunt 		barraclough: review+
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Ismail Donmez
Comment 1 2010-07-07 05:52:32 PDT
Created attachment 60724 [details] Crash backtrace
Ismail Donmez
Comment 2 2010-07-08 12:18:52 PDT
Still reproducable on trunk.
Alexey Proskuryakov
Comment 3 2010-07-08 12:30:15 PDT
m_codeBlock is null: #0 0x101ac471a in JSC::CodeBlock::codeType at CodeBlock.h:410 #1 0x101acacd4 in JSC::JIT::privateCompile at JIT.cpp:473 #2 0x101ab5f1e in JSC::JIT::compile at JIT.h:183 #3 0x101aaf89c in JSC::FunctionExecutable::generateJITCodeForCall at Executable.cpp:212 #4 0x101a565be in JSC::FunctionExecutable::jitCodeForCall at Executable.h:407 #5 0x101aee92f in cti_op_call_jitCompile at JITStubs.cpp:1820 #6 0x101ae6981 in WTF::doubleHash at HashTable.h:447 #7 0x101ac6aba in JSC::JITCode::execute at JITCode.h:77 #8 0x101ac2805 in JSC::Interpreter::executeCall at Interpreter.cpp:784 #9 0x101a7e229 in JSC::call at CallData.cpp:38 #10 0x102c9469d in WebCore::JSMainThreadExecState::call at JSMainThreadExecState.h:48 #11 0x102d25202 in WebCore::JSEventListener::handleEvent at JSEventListener.cpp:124
Alexey Proskuryakov
Comment 4 2010-07-08 12:30:41 PDT
<rdar://problem/8171867>
Oliver Hunt
Comment 5 2010-07-12 18:04:36 PDT
Created attachment 61305 [details] Patch
Oliver Hunt
Comment 6 2010-07-13 12:57:28 PDT
Committed r63237: <http://trac.webkit.org/changeset/63237>
Note You need to log in before you can comment on or make changes to this bug.