[Webkit-unassigned] [Bug 50816] New: REGRESSION: Hang inside Yarr::RegexCodeBlock::execute when visiting bugs.webkit.org

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Dec 10 07:16:25 PST 2010 

https://bugs.webkit.org/show_bug.cgi?id=50816

           Summary: REGRESSION: Hang inside Yarr::RegexCodeBlock::execute
                    when visiting bugs.webkit.org
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
               URL: http://bugs.webkit.org/
        OS/Version: Windows XP
            Status: NEW
          Keywords: NeedsRadar, Regression
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: aroben at apple.com
                CC: ggaren at apple.com, barraclough at apple.com,
                    msaboff at apple.com


To reproduce:

1. Go to http://bugs.webkit.org/

You'll hang. Here's the backtrace:


     06e50e26()    
>	JavaScriptCore.dll!JSC::Yarr::RegexCodeBlock::execute(const wchar_t * input=0x0785a944, unsigned int start=0, unsigned int length=11, int * output=0x054f1dd4)  Line 67 + 0x1c bytes	C++
     JavaScriptCore.dll!JSC::Yarr::executeRegex(JSC::Yarr::RegexCodeBlock & jitObject={...}, const wchar_t * input=0x0785a944, unsigned int start=0, unsigned int length=11, int * output=0x054f1dd4)  Line 84    C++
     JavaScriptCore.dll!JSC::RegExp::match(const JSC::UString & s={Committer):}, int startOffset=0, WTF::Vector<int,32> * ovector=[10](0,1,0,85,-1,85,0,0,-1,16))  Line 139 + 0x2b bytes    C++
     JavaScriptCore.dll!JSC::RegExpConstructor::performMatch(JSC::RegExp * r=0x055a4d00, const JSC::UString & s={Committer):}, int startOffset=0, int & position=-858993460, int & length=0, int * * ovector=0x00000000)  Line 114 + 0x23 bytes    C++
     JavaScriptCore.dll!JSC::RegExpObject::match(JSC::ExecState * exec=0x03e901e8)  Line 168    C++
     JavaScriptCore.dll!JSC::RegExpObject::exec(JSC::ExecState * exec=0x03e901e8)  Line 126 + 0xc bytes    C++
     JavaScriptCore.dll!JSC::regExpProtoFuncExec(JSC::ExecState * exec=0x03e901e8)  Line 74 + 0x1f bytes    C++
     026a0852()    
     JavaScriptCore.dll!cti_op_put_by_id_generic()  Line 1421 + 0x24 bytes    C++
     JavaScriptCore.dll!JSC::JITCode::execute(JSC::RegisterFile * registerFile=0x022d6cf4, JSC::ExecState * callFrame=0x03e90048, JSC::JSGlobalData * globalData=0x022da3d0)  Line 77 + 0x22 bytes    C++
     JavaScriptCore.dll!JSC::Interpreter::executeCall(JSC::ExecState * callFrame=0x054c7470, JSC::JSObject * function=0x042d1b80, JSC::CallType callType=CallTypeJS, const JSC::CallData & callData={...}, JSC::JSValue thisValue={...}, const JSC::ArgList & args={...})  Line 849 + 0x2a bytes    C++
     JavaScriptCore.dll!JSC::call(JSC::ExecState * exec=0x054c7470, JSC::JSValue functionObject={...}, JSC::CallType callType=CallTypeJS, const JSC::CallData & callData={...}, JSC::JSValue thisValue={...}, const JSC::ArgList & args={...})  Line 38 + 0x3c bytes    C++
     WebKit.dll!WebCore::JSMainThreadExecState::call(JSC::ExecState * exec=0x054c7470, JSC::JSValue functionObject={...}, JSC::CallType callType=CallTypeJS, const JSC::CallData & callData={...}, JSC::JSValue thisValue={...}, const JSC::ArgList & args={...})  Line 48 + 0x29 bytes    C++
     WebKit.dll!WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext * scriptExecutionContext=, WebCore::Event * event=)  Line 124 + 0x6a bytes    C++
     WebKit.dll!WebCore::EventTarget::fireEventListeners(WebCore::Event * event=0x055a4ca8, WebCore::EventTargetData * d=0x02389e14, WTF::Vector<WebCore::RegisteredEventListener,1> & entry=[1]({listener=0x0555cfe0 {m_jsFunction=0x042d1b80 m_wrapper={...} m_isAttribute=true ...} useCapture=false }))  Line 342 + 0x35 bytes    C++
     WebKit.dll!WebCore::EventTarget::fireEventListeners(WebCore::Event * event=0x055a4ca8)  Line 313    C++
     WebKit.dll!WebCore::EventTarget::dispatchEvent(WTF::PassRefPtr<WebCore::Event> event={...})  Line 297 + 0x11 bytes    C++
     WebKit.dll!WebCore::XMLHttpRequestProgressEventThrottle::dispatchEvent(WTF::PassRefPtr<WebCore::Event> event={...}, WebCore::ProgressEventAction progressEventAction=DoNotFlushProgressEvent)  Line 82    C++
     WebKit.dll!WebCore::XMLHttpRequest::callReadyStateChangeListener()  Line 368 + 0x39 bytes    C++
     WebKit.dll!WebCore::XMLHttpRequest::changeState(WebCore::XMLHttpRequest::State newState=DONE)  Line 352    C++
     WebKit.dll!WebCore::XMLHttpRequest::didFinishLoading(unsigned long identifier=11)  Line 1014    C++
     WebKit.dll!WebCore::DocumentThreadableLoader::didFinishLoading(unsigned long identifier=11)  Line 246 + 0x19 bytes    C++
     WebKit.dll!WebCore::DocumentThreadableLoader::didFinishLoading(WebCore::SubresourceLoader * loader=0x054c5c20)  Line 237    C++
     WebKit.dll!WebCore::SubresourceLoader::didFinishLoading(double finishTime=0.00000000000000000)  Line 180 + 0x1f bytes    C++
     WebKit.dll!WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle * __formal=0x02341ed0, double finishTime=0.00000000000000000)  Line 435 + 0x18 bytes    C++
     WebKit.dll!WebCore::didFinishLoading(_CFURLConnection * conn=0x055a4450, const void * clientInfo=0x02341ed0)  Line 244 + 0x26 bytes    C++

The XHR that just finished loading is for <http://svn.webkit.org/repository/webkit/trunk/WebKitTools/Scripts/webkitpy/common/config/committers.py>.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list