[Webkit-unassigned] [Bug 185503] Various crashes on observablehq.com when opening Web Inspector

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed May 9 23:32:08 PDT 2018 

https://bugs.webkit.org/show_bug.cgi?id=185503

Alexey Proskuryakov <ap at webkit.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |fpizlo at apple.com,
                   |                            |mark.lam at apple.com,
                   |                            |utatane.tea at gmail.com,
                   |                            |webkit-bug-importer at group.a
                   |                            |pple.com
            Summary|Web Inspector: browser tab  |Various crashes on
                   |crashes on observablehq.com |observablehq.com when
                   |                            |opening Web Inspector

--- Comment #1 from Alexey Proskuryakov <ap at webkit.org> ---
I'm hitting multiple different crash signatures.

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.JavaScriptCore            0x00007fff537076f4 JSC::JSFunction::create(JSC::VM&, JSC::FunctionExecutable*, JSC::JSScope*) + 4
1   com.apple.JavaScriptCore            0x00007fff52eb3236 llint_slow_path_new_func_exp + 102
2   com.apple.JavaScriptCore            0x00007fff52ebad78 llint_entry + 28966


Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.JavaScriptCore            0x00007fff52d82704 JSC::JSCell::toNumber(JSC::ExecState*) const + 4
1   com.apple.JavaScriptCore            0x00007fff5367d269 slow_path_inc + 153
2   com.apple.JavaScriptCore            0x00007fff52eb5b1a llint_entry + 7880

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.JavaScriptCore            0x00007fff534f52fb JSC::ShadowChicken::update(JSC::VM&, JSC::ExecState*) + 2939
1   com.apple.JavaScriptCore            0x00007fff534f4732 JSC::ShadowChicken::log(JSC::VM&, JSC::ExecState*, JSC::ShadowChicken::Packet const&) + 18
2   com.apple.JavaScriptCore            0x00007fff53521f14 JSC::genericUnwind(JSC::VM*, JSC::ExecState*, JSC::UnwindStart) + 132
3   com.apple.JavaScriptCore            0x00007fff5357376d llint_slow_path_handle_exception + 45
4   com.apple.JavaScriptCore            0x00007fff52eb8645 llint_entry + 18931

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20180510/8a518aa2/attachment.html>

More information about the webkit-unassigned mailing list