[Webkit-unassigned] [Bug 25292] New: Apparent memory corruption running fast/js/math-transforms.html

Mon Apr 20 06:24:17 PDT 2009

https://bugs.webkit.org/show_bug.cgi?id=25292

           Summary: Apparent memory corruption running fast/js/math-
                    transforms.html
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: gns at gnome.org

Trying to debug two failing tests on the GTK+ port I found out that they are
failing because the frame name goes from empty to a very strange value:
"someFloatString". This is caused by running the math-transforms test. I added
small print statements to the beginning and the end of the
FrameLoader::executeScript method to print the frame name, to make sure and
this is the output I get when I navigate to that test using the launcher:

name (executescript): 
name (executescript2): 
name (executescript): 
name (executescript2): someFloatString
name (executescript): someFloatString
name (executescript2): someFloatString

This happens both in GTK+ and Qt. Haven't been able to try other platforms yet.
I have used the print statements because I wasn't able to figure out a better
way of tracking/nailing this problem; valgrind didn't show any suspicious
writes, and I was unable to figure out a watch statement that would catch this
in gdb. I am on Linux x86, and I have JIT enabled.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.