[Webkit-unassigned] [Bug 155225] New: Assertion failure: !isCompilationThread() || !isAtomic() in StringImpl::ref()

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Mar 9 01:16:50 PST 2016 

https://bugs.webkit.org/show_bug.cgi?id=155225

            Bug ID: 155225
           Summary: Assertion failure: !isCompilationThread() ||
                    !isAtomic() in StringImpl::ref()
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: rniwa at webkit.org

DFG Worklist Worker Thread (14)#0    0x0000000101422f17 in ::WTFCrash() at /Volumes/Data/webkit2/Source/WTF/wtf/Assertions.cpp:322
#1    0x00000001005da4f0 in WTF::StringImpl::ref() at /Volumes/Data/webkit2/WebKitBuild/Debug/usr/local/include/wtf/text/StringImpl.h:588
#2    0x00000001005edf53 in WTF::Ref<WTF::StringImpl>::Ref(WTF::StringImpl&) at /Volumes/Data/webkit2/WebKitBuild/Debug/usr/local/include/wtf/Ref.h:62
#3    0x00000001005edb9d in WTF::Ref<WTF::StringImpl>::Ref(WTF::StringImpl&) at /Volumes/Data/webkit2/WebKitBuild/Debug/usr/local/include/wtf/Ref.h:61
#4    0x000000010147fbf6 in WTF::Ref<WTF::StringImpl> WTF::StringImpl::createInternal<unsigned char>(unsigned char const*, unsigned int) at /Volumes/Data/webkit2/Source/WTF/wtf/text/StringImpl.cpp:244
#5    0x0000000101476862 in WTF::StringImpl::create(unsigned char const*, unsigned int) at /Volumes/Data/webkit2/Source/WTF/wtf/text/StringImpl.cpp:259
#6    0x0000000100a086a1 in WTF::StringImpl::isolatedCopy() const at /Volumes/Data/webkit2/WebKitBuild/Debug/usr/local/include/wtf/text/StringImpl.h:1160
#7    0x0000000100a07667 in JSC::DFG::LazyJSValue::tryGetString(JSC::DFG::Graph&) const at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGLazyJSValue.cpp:124
#8    0x000000010099d66c in JSC::DFG::FrozenValue::tryGetString(JSC::DFG::Graph&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGFrozenValue.cpp:44
#9    0x0000000100a42441 in JSC::DFG::Node::tryGetString(JSC::DFG::Graph&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGNode.cpp:207
#10    0x0000000100bb72cf in JSC::DFG::StrengthReductionPhase::handleNode() at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGStrengthReductionPhase.cpp:302
#11    0x0000000100bb5fd8 in JSC::DFG::StrengthReductionPhase::run() at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGStrengthReductionPhase.cpp:63
#12    0x0000000100bb5de5 in bool JSC::DFG::runAndLog<JSC::DFG::StrengthReductionPhase>(JSC::DFG::StrengthReductionPhase&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGPhase.h:80
#13    0x0000000100bb5d6e in bool JSC::DFG::runPhase<JSC::DFG::StrengthReductionPhase>(JSC::DFG::Graph&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGPhase.h:90
#14    0x0000000100bb5cd8 in JSC::DFG::performStrengthReduction(JSC::DFG::Graph&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGStrengthReductionPhase.cpp:394
#15    0x0000000100ad4ea9 in JSC::DFG::Plan::compileInThreadImpl(JSC::DFG::LongLivedState&) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGPlan.cpp:302
#16    0x0000000100ad401d in JSC::DFG::Plan::compileInThread(JSC::DFG::LongLivedState&, JSC::DFG::ThreadData*) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGPlan.cpp:184
#17    0x0000000100bebbca in JSC::DFG::Worklist::runThread(JSC::DFG::ThreadData*) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGWorklist.cpp:369
#18    0x0000000100be9f24 in JSC::DFG::Worklist::threadFunction(void*) at /Volumes/Data/webkit2/Source/JavaScriptCore/dfg/DFGWorklist.cpp:411
#19    0x000000010148e039 in WTF::createThread(void (*)(void*), void*, char const*)::$_0::operator()() const at /Volumes/Data/webkit2/Source/WTF/wtf/Threading.cpp:81
#20    0x000000010148e00d in decltype(std::__1::forward<WTF::createThread(void (*)(void*), void*, char const*)::$_0&>(fp)(std::__1::forward<>(fp0))) std::__1::__invoke<WTF::createThread(void (*)(void*), void*, char const*)::$_0&>(WTF::createThread(void (*)(void*), void*, char const*)::$_0&&&) [inlined] at /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/../include/c++/v1/__functional_base:415
#21    0x000000010148dffc in void std::__1::__invoke_void_return_wrapper<void>::__call<WTF::createThread(void (*)(void*), void*, char const*)::$_0&>(WTF::createThread(void (*)(void*), void*, char const*)::$_0&&&) at /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/../include/c++/v1/__functional_base:440
#22    0x000000010148dfac in std::__1::__function::__func<WTF::createThread(void (*)(void*), void*, char const*)::$_0, std::__1::allocator<WTF::createThread(void (*)(void*), void*, char const*)::$_0>, void ()>::operator()() at /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/../include/c++/v1/functional:1407
#23    0x0000000100d345ba in std::__1::function<void ()>::operator()() const at /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/../include/c++/v1/functional:1793
#24    0x000000010148cd0e in WTF::threadEntryPoint(void*) at /Volumes/Data/webkit2/Source/WTF/wtf/Threading.cpp:58
#25    0x000000010148e5a1 in WTF::wtfThreadEntryPoint(void*) at /Volumes/Data/webkit2/Source/WTF/wtf/ThreadingPthreads.cpp:164
#26    0x000000010e77d805 in _pthread_body ()
#27    0x000000010e77d782 in _pthread_start ()
#28    0x000000010e77afa1 in thread_start ()

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160309/047e5849/attachment.html>

More information about the webkit-unassigned mailing list