[Webkit-unassigned] [Bug 155490] New: [Fetch API] response-consume.html is crashing on Mac WK1 Debug builds

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Mar 15 03:57:09 PDT 2016 

https://bugs.webkit.org/show_bug.cgi?id=155490

            Bug ID: 155490
           Summary: [Fetch API] response-consume.html is crashing on Mac
                    WK1 Debug builds
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: youennf at gmail.com

As shown in https://build.webkit.org/results/Apple%20Yosemite%20Debug%20WK1%20(Tests)/r198134%20(11545)/results.html, response-consume.html is often crashing.
This can be reproduced locally.

Crash log is:
ASSERTION FAILED: m_heap->vm()->currentThreadIsHoldingAPILock()
/Users/youenn/Documents/WebKit/Source/JavaScriptCore/heap/MarkedAllocator.cpp(146) : void *JSC::MarkedAllocator::allocateSlowCase(size_t)
1   0x10306b490 WTFCrash
2   0x102ca4ac9 JSC::MarkedAllocator::allocateSlowCase(unsigned long)
3   0x102122bea JSC::MarkedAllocator::allocate(unsigned long)
4   0x10220e839 JSC::MarkedSpace::allocateWithDestructor(unsigned long)
5   0x10220e7fc JSC::Heap::allocateWithDestructor(unsigned long)
6   0x102217e6a void* JSC::Heap::allocateObjectOfType<JSC::JSString>(unsigned long)
7   0x102217dc4 void* JSC::allocateCell<JSC::JSString>(JSC::Heap&, unsigned long)
8   0x102217b1c void* JSC::allocateCell<JSC::JSString>(JSC::Heap&)
9   0x1022177d0 JSC::JSString::create(JSC::VM&, WTF::PassRefPtr<WTF::StringImpl>)
10  0x102217496 JSC::jsString(JSC::VM*, WTF::String const&)
11  0x10240cc55 JSC::jsString(JSC::ExecState*, WTF::String const&)
12  0x102c756ee JSC::LiteralParser<unsigned char>::parse(JSC::ParserState)
13  0x102a46b87 JSC::LiteralParser<unsigned char>::tryLiteralParse()
14  0x102bcd6bd JSC::JSONParse(JSC::ExecState*, WTF::String const&)
15  0x108413220 WebCore::FetchBody::resolveAsJSON(WebCore::ScriptExecutionContext&, WTF::String const&, WebCore::DeferredWrapper&&)
16  0x108413b74 WebCore::FetchBody::loadedAsText(WebCore::ScriptExecutionContext&, WTF::String&&)
17  0x108f62150 WebCore::FetchBodyOwner::loadedBlobAsText(WTF::String&&)
18  0x108f62704 WebCore::FetchBodyOwner::BlobLoader::didFinishLoadingAsText(WTF::String&&)
19  0x109f48c07 WebCore::FetchLoader::didFinishLoading(unsigned long, double)
...

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160315/93bdfdb4/attachment-0001.html>

More information about the webkit-unassigned mailing list