[Webkit-unassigned] [Bug 41763] REGRESSION: Crash at JSC::JIT::privateCompile(JSC::MacroAssemblerCodePtr*)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jul 8 12:30:15 PDT 2010


https://bugs.webkit.org/show_bug.cgi?id=41763


Alexey Proskuryakov <ap at webkit.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|[REGRESSION] Crash at       |REGRESSION: Crash at
                   |JSC::JIT::privateCompile(JS |JSC::JIT::privateCompile(JS
                   |C::MacroAssemblerCodePtr*)  |C::MacroAssemblerCodePtr*)
             Status|UNCONFIRMED                 |NEW
           Keywords|                            |Regression
           Priority|P2                          |P1
     Ever Confirmed|0                           |1




--- Comment #3 from Alexey Proskuryakov <ap at webkit.org>  2010-07-08 12:30:15 PST ---
m_codeBlock is null:

#0    0x101ac471a in JSC::CodeBlock::codeType at CodeBlock.h:410
#1    0x101acacd4 in JSC::JIT::privateCompile at JIT.cpp:473
#2    0x101ab5f1e in JSC::JIT::compile at JIT.h:183
#3    0x101aaf89c in JSC::FunctionExecutable::generateJITCodeForCall at Executable.cpp:212
#4    0x101a565be in JSC::FunctionExecutable::jitCodeForCall at Executable.h:407
#5    0x101aee92f in cti_op_call_jitCompile at JITStubs.cpp:1820
#6    0x101ae6981 in WTF::doubleHash at HashTable.h:447
#7    0x101ac6aba in JSC::JITCode::execute at JITCode.h:77
#8    0x101ac2805 in JSC::Interpreter::executeCall at Interpreter.cpp:784
#9    0x101a7e229 in JSC::call at CallData.cpp:38
#10    0x102c9469d in WebCore::JSMainThreadExecState::call at JSMainThreadExecState.h:48
#11    0x102d25202 in WebCore::JSEventListener::handleEvent at JSEventListener.cpp:124

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list