Bug 83096 - Linux crashes during boot
Summary: Linux crashes during boot
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: JavaScriptCore (show other bugs)
Version: 528+ (Nightly build)
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Gavin Barraclough
URL: http://www.ubercomp.com/jslm32/src/
Keywords:
Depends on:
Blocks:
 
Reported: 2012-04-03 16:57 PDT by Gavin Barraclough
Modified: 2012-04-03 17:30 PDT (History)
0 users

See Also:

Attachments
Fix (1.60 KB, patch)
2012-04-03 16:59 PDT, Gavin Barraclough 		fpizlo: review+
Details | Formatted Diff | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Gavin Barraclough 2012-04-03 16:57:15 PDT 
The bug here is that we add empty JSValues to the sparse map, and then set them - but a GC may occur before doing so (due to a call to reportExtraMemory cost).
We may want to consider making it safe to mark empty JSValues, but the simple & contained fix to this specific bug is to just initialize these values to something other than JSValue().
Comment 1 Gavin Barraclough 2012-04-03 16:59:10 PDT 
Created attachment 135457 [details]
Fix
Comment 2 Gavin Barraclough 2012-04-03 17:30:03 PDT 
Fixed in r113112