[Webkit-unassigned] [Bug 164898] New: Crash in com.apple.JavaScriptCore: WTF::ThreadSpecific<WTF::WTFThreadData, + 142

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Nov 17 16:43:23 PST 2016 

https://bugs.webkit.org/show_bug.cgi?id=164898

            Bug ID: 164898
           Summary: Crash in com.apple.JavaScriptCore:
                    WTF::ThreadSpecific<WTF::WTFThreadData, + 142
    Classification: Unclassified
           Product: WebKit
           Version: Other
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: ryanhaddad at apple.com

Encountered with LayoutTest inspector/debugger/stepping/stepping-try-catch-finally.html

https://build.webkit.org/results/Apple%20Sierra%20Release%20WK2%20(Tests)/r208861%20(1521)/results.html

https://webkit-test-results.webkit.org/dashboards/flakiness_dashboard.html#showAllRuns=true&tests=inspector%2Fdebugger%2Fstepping%2Fstepping-try-catch-finally.html

Thread 12 Crashed:: WTF::AutomaticThread
0   com.apple.JavaScriptCore          0x00000001082d7ffe WTF::ThreadSpecific<WTF::WTFThreadData, (WTF::CanBeGCThread)0>::operator WTF::WTFThreadData*() + 142 (ThreadSpecific.h:150)
1   com.apple.JavaScriptCore          0x0000000108b2a631 WTF::AtomicStringImpl::remove(WTF::AtomicStringImpl*) + 97 (WTFThreadData.h:64)
2   com.apple.JavaScriptCore          0x0000000108b4fe93 WTF::StringImpl::~StringImpl() + 35 (StringImpl.h:486)
3   com.apple.JavaScriptCore          0x0000000108b4fefe WTF::StringImpl::destroy(WTF::StringImpl*) + 14 (StringImpl.cpp:138)
4   com.apple.JavaScriptCore          0x000000010825f945 JSC::TemplateRegistryKey::~TemplateRegistryKey() + 181 (Vector.h:59)
5   com.apple.JavaScriptCore          0x0000000108a533e0 void WTF::HashTable<JSC::TemplateRegistryKey, WTF::KeyValuePair<JSC::TemplateRegistryKey, JSC::Weak<JSC::JSArray> >, WTF::KeyValuePairKeyExtractor<WTF::KeyValuePair<JSC::TemplateRegistryKey, JSC::Weak<JSC::JSArray> > >, JSC::TemplateRegistryKey::Hasher, WTF::HashMap<JSC::TemplateRegistryKey, JSC::Weak<JSC::JSArray>, JSC::TemplateRegistryKey::Hasher, WTF::HashTraits<JSC::TemplateRegistryKey>, WTF::HashTraits<JSC::Weak<JSC::JSArray> > >::KeyValuePairTraits, WTF::HashTraits<JSC::TemplateRegistryKey> >::removeIf<JSC::WeakGCMap<JSC::TemplateRegistryKey, JSC::JSArray, JSC::TemplateRegistryKey::Hasher, WTF::HashTraits<JSC::TemplateRegistryKey> >::pruneStaleEntries()::'lambda'(WTF::KeyValuePair<JSC::TemplateRegistryKey, JSC::Weak<JSC::JSArray> >&)>(JSC::WeakGCMap<JSC::TemplateRegistryKey, JSC::JSArray, JSC::TemplateRegistryKey::Hasher, WTF::HashTraits<JSC::TemplateRegistryKey> >::pruneStaleEntries()::'lambda'(WTF::KeyValuePair<JSC::Tem
6   com.apple.JavaScriptCore          0x0000000108a53335 std::__1::__function::__func<JSC::WeakGCMap<JSC::TemplateRegistryKey, JSC::JSArray, JSC::TemplateRegistryKey::Hasher, WTF::HashTraits<JSC::TemplateRegistryKey> >::WeakGCMap(JSC::VM&)::'lambda'(), std::__1::allocator<JSC::WeakGCMap<JSC::TemplateRegistryKey, JSC::JSArray, JSC::TemplateRegistryKey::Hasher, WTF::HashTraits<JSC::TemplateRegistryKey> >::WeakGCMap(JSC::VM&)::'lambda'()>, void ()>::operator()() + 21 (functional:1437)
7   com.apple.JavaScriptCore          0x0000000108626291 JSC::Heap::collectInThread() + 593 (HashTable.h:181)
8   com.apple.JavaScriptCore          0x000000010862852d JSC::Heap::Thread::work() + 13 (Heap.cpp:257)
9   com.apple.JavaScriptCore          0x0000000108b5d19f std::__1::__function::__func<WTF::AutomaticThread::start(WTF::Locker<WTF::LockBase> const&)::$_0, std::__1::allocator<WTF::AutomaticThread::start(WTF::Locker<WTF::LockBase> const&)::$_0>, void ()>::operator()() + 415 (AutomaticThread.cpp:195)
10  com.apple.JavaScriptCore          0x0000000108b629c2 WTF::threadEntryPoint(void*) + 178 (functional:1766)
11  com.apple.JavaScriptCore          0x0000000108b62d9f WTF::wtfThreadEntryPoint(void*) + 15 (memory:2723)
12  libsystem_pthread.dylib           0x00007fffc327aabb _pthread_body + 180
13  libsystem_pthread.dylib           0x00007fffc327aa07 _pthread_start + 286
14  libsystem_pthread.dylib           0x00007fffc327a231 thread_start + 13

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161118/c504565a/attachment.html>

More information about the webkit-unassigned mailing list