[Webkit-unassigned] [Bug 16129] REGRESSION (r27761-r27811): malloc error while visiting http://mysit.es (crashes release build)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Nov 25 13:16:43 PST 2007


http://bugs.webkit.org/show_bug.cgi?id=16129





------- Comment #7 from mrowe at apple.com  2007-11-25 13:16 PDT -------
Loading this page under guard malloc triggers the following crash:

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_PROTECTION_FAILURE at address: 0xe28f9000
0x00627c3a in jsRegExpCompile (pattern=0xe28f0fd0, patternLength=17,
ignoreCase=JSRegExpDoNotIgnoreCase, multiline=JSRegExpSingleLine,
numSubpatterns=0xe28f6ffc, errorptr=0xe28f6ff8) at
/Volumes/Data/Home/Documents/Work/WebKit-git/OpenSource/JavaScriptCore/pcre/pcre_compile.cpp:3048
3048        *code = OP_BRA;
(gdb) bt
#0  0x00627c3a in jsRegExpCompile (pattern=0xe28f0fd0, patternLength=17,
ignoreCase=JSRegExpDoNotIgnoreCase, multiline=JSRegExpSingleLine,
numSubpatterns=0xe28f6ffc, errorptr=0xe28f6ff8) at
/Volumes/Data/Home/Documents/Work/WebKit-git/OpenSource/JavaScriptCore/pcre/pcre_compile.cpp:3048
#1  0x005953df in KJS::RegExp::RegExp (this=0xe28f6fe0, pattern=@0x31bb2ff8,
flags=@0x31bb2ffc) at regexp.cpp:70
#2  0x0059540d in KJS::RegExp::RegExp (this=0xe28f6fe0, pattern=@0x31bb2ff8,
flags=@0x31bb2ffc) at regexp.cpp:71
#3  0x005f6905 in KJS::RegExpNode::RegExpNode (this=0xe28f4ff0,
pattern=@0x31bb2ff8, flags=@0x31bb2ffc) at nodes.h:281
#4  0x005f693b in KJS::RegExpNode::RegExpNode (this=0xe28f4ff0,
pattern=@0x31bb2ff8, flags=@0x31bb2ffc) at nodes.h:283
#5  0x005c5653 in kjsyyparse () at grammar.y:227

I'm waiting through another guardmalloc run to see whether fixing this regexp
issue fixed the malloc errors.


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the webkit-unassigned mailing list