[Webkit-unassigned] [Bug 151892] New: CRASH: CodeBlock::setOptimizationThresholdBasedOnCompilationResult + 567

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Dec 4 16:20:57 PST 2015 

https://bugs.webkit.org/show_bug.cgi?id=151892

            Bug ID: 151892
           Summary: CRASH:
                    CodeBlock::setOptimizationThresholdBasedOnCompilationR
                    esult + 567
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: All
                OS: All
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: msaboff at apple.com

Backtrace like:
   1 com.apple.JavaScriptCore       0x113ea02ce WTFCrash + 0x3e (Assertions.cpp:321)
>  2 com.apple.JavaScriptCore       0x1138acbb7 JSC::CodeBlock::setOptimizationThresholdBasedOnCompilationResult(JSC::CompilationResult) + 0x237 (DataLog.h:45)
   3 com.apple.JavaScriptCore       0x113c16e4c JSC::JITToDFGDeferredCompilationCallback::compilationDidComplete(JSC::CodeBlock*, JSC::CompilationResult) + 0x8c (JITToDFGDeferredCompilationCallback.cpp:69)
   4 com.apple.JavaScriptCore       0x113aac7d4 JSC::DFG::Worklist::completeAllReadyPlansForVM(JSC::VM&, JSC::DFG::CompilationKey) + 0x104 (DFGCompilationKey.h:74)
   5 com.apple.JavaScriptCore       0x113aaca0e JSC::DFG::Worklist::completeAllPlansForVM(JSC::VM&) + 0x3e (HeapInlines.h:308)
   6 com.apple.JavaScriptCore       0x113aadde8 JSC::DFG::completeAllPlansForVM(JSC::VM&) + 0x38 (DFGWorklist.cpp:453)
   7 com.apple.JavaScriptCore       0x1138ea488 JSC::Debugger::exception(JSC::ExecState*, JSC::JSValue, bool) + 0x68 (JSCInlines.h:66)
   8 com.apple.JavaScriptCore       0x113bc0cb5 JSC::Interpreter::unwind(void*&, JSC::ExecState*&, JSC::Exception*) + 0x155 (Interpreter.cpp:691)
   9 com.apple.JavaScriptCore       0x113bde07a JSC::genericUnwind(JSC::VM*, JSC::ExecState*) + 0x5a (JITExceptions.cpp:57)
  10                                0x00004e6b5a801060 0 + 86222986809440
  11 com.apple.JavaScriptCore       0x113d1ef10 llint_entry + 0x58c7
  12 com.apple.JavaScriptCore       0x113d1ef10 llint_entry + 0x58c7
  13 com.apple.JavaScriptCore       0x113d19439 vmEntryToJavaScript + 0x146
  14 com.apple.JavaScriptCore       0x113bdc7d9 JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*) + 0xa9 (JITCode.cpp:82)
  15 com.apple.JavaScriptCore       0x113bc397a JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) + 0x1ba (Interpreter.cpp:946)
  16 com.apple.JavaScriptCore       0x1138947a7 JSC::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&, WTF::NakedPtr<JSC::Exception>&) + 0x47 (MarkedBlock.h:250)
  17 com.apple.WebCore              0x114a31dda WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext*, WebCore::Event*) + 0x3ea (JSMainThreadExecState.h:56)
  18 com.apple.WebCore              0x11467607b WebCore::EventTarget::fireEventListeners(WebCore::Event*, WebCore::EventTargetData*, WTF::Vector<WebCore::RegisteredEventListener, 1ul, WTF::CrashOnOverflow, 16ul>&) + 0x27b (InspectorInstrumentation.h:283)
  19 com.apple.WebCore              0x114675d40 WebCore::EventTarget::fireEventListeners(WebCore::Event*) + 0xe0 (EventTarget.cpp:208)
  20 com.apple.WebCore              0x114675c3d WebCore::EventTarget::dispatchEvent(WTF::PassRefPtr<WebCore::Event>) + 0x5d (PassRefPtr.h:68)
...

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20151205/f54a05ec/attachment-0001.html>

More information about the webkit-unassigned mailing list