[Webkit-unassigned] [Bug 53376] New: r76727-r77034: REGRESSION: Crash on page load in JSC::JSValue::toString

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Jan 29 06:12:41 PST 2011 

https://bugs.webkit.org/show_bug.cgi?id=53376

           Summary: r76727-r77034: REGRESSION: Crash on page load in
                    JSC::JSValue::toString
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh PowerPC
               URL: http://safariextensions.tumblr.com/
        OS/Version: Mac OS X 10.5
            Status: UNCONFIRMED
          Severity: Critical
          Priority: P2
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: kevin at rhubarbproductions.com


Loading the page crashes before display.


Process:         Safari [411]
Path:            /Applications/WebKit.app/Contents/MacOS/WebKit
Identifier:      org.webkit.nightly.WebKit
Version:         r77034 (77034)
Code Type:       PPC (Native)
Parent Process:  launchd [136]

Date/Time:       2011-01-29 09:07:45.263 -0500
OS Version:      Mac OS X 10.5.8 (9L30)
Report Version:  6
Anonymous UUID:  F41C1802-6457-4B49-A738-107FEBA3B7F7

Exception Type:  EXC_BAD_ACCESS (SIGBUS)
Exception Codes: KERN_PROTECTION_FAILURE at 0x0000000000000000
Crashed Thread:  0

Thread 0 Crashed:
0   com.apple.JavaScriptCore          0x0074ecdc JSC::JSValue::toString(JSC::ExecState*) const + 1212
1   com.apple.JavaScriptCore          0x00742474 __ZN3JSCL18arrayProtoFuncJoinEPNS_9ExecStateE + 4820
2   com.apple.JavaScriptCore          0x007c8f3c JSC::Interpreter::privateExecute(JSC::Interpreter::ExecutionFlag, JSC::RegisterFile*, JSC::ExecState*) + 54684
3   com.apple.JavaScriptCore          0x007d077c JSC::Interpreter::execute(JSC::ProgramExecutable*, JSC::ExecState*, JSC::ScopeChainNode*, JSC::JSObject*) + 780
4   com.apple.JavaScriptCore          0x0077a3e0 JSC::evaluate(JSC::ExecState*, JSC::ScopeChain&, JSC::SourceCode const&, JSC::JSValue) + 352
5   com.apple.WebCore                 0x021f08e8 WebCore::ScriptController::evaluateInWorld(WebCore::ScriptSourceCode const&, WebCore::DOMWrapperWorld*, WebCore::ShouldAllowXSS) + 696
6   com.apple.WebCore                 0x021f11a8 WebCore::ScriptController::evaluate(WebCore::ScriptSourceCode const&, WebCore::ShouldAllowXSS) + 56
7   com.apple.WebCore                 0x021fb844 WebCore::ScriptElement::evaluateScript(WebCore::ScriptSourceCode const&) + 212
8   com.apple.WebCore                 0x021fbb30 WebCore::ScriptElement::execute(WebCore::CachedScript*) + 496
9   com.apple.WebCore                 0x016a1900 WebCore::AsyncScriptRunner::timerFired(WebCore::Timer<WebCore::AsyncScriptRunner>*) + 176
10  com.apple.WebCore                 0x0237c390 WebCore::ThreadTimers::sharedTimerFiredInternal() + 128
11  com.apple.WebCore                 0x02237f98 __ZN7WebCoreL10timerFiredEP16__CFRunLoopTimerPv + 72
12  com.apple.CoreFoundation          0x97108818 CFRunLoopRunSpecific + 2968
13  com.apple.HIToolbox               0x904d5b14 RunCurrentEventLoopInMode + 264
14  com.apple.HIToolbox               0x904d5938 ReceiveNextEventCommon + 412
15  com.apple.HIToolbox               0x904d5778 BlockUntilNextEventMatchingListInMode + 84
16  com.apple.AppKit                  0x925c0244 _DPSNextEvent + 596
17  com.apple.AppKit                  0x925bfbfc -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 112
18  com.apple.Safari                  0x00018d74 0x1000 + 97652
19  com.apple.AppKit                  0x925b989c -[NSApplication run] + 744
20  com.apple.AppKit                  0x9258a298 NSApplicationMain + 440
21  com.apple.Safari                  0x0000b378 0x1000 + 41848

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list