Program received signal SIGSEGV, Segmentation fault.
testAndSet (n=0, this=0x28) at Source/JavaScriptCore/wtf/Bitmap.h:98
98	    bool result = bits[index] & mask;
(gdb) bt
#0  testAndSet (n=0, this=0x28) at Source/JavaScriptCore/wtf/Bitmap.h:98
#1  concurrentTestAndSet (n=0, this=0x28) at Source/JavaScriptCore/wtf/Bitmap.h:117
#2  testAndSetMarked (this=0x0, p=0x0) at Source/JavaScriptCore/heap/MarkedBlock.h:279
#3  testAndSetMarked (cell=0x0) at Source/JavaScriptCore/heap/Heap.h:261
#4  internalAppend (cell=0x0, this=0x44b50ba8) at Source/JavaScriptCore/runtime/Structure.h:359
#5  JSC::MarkStack::append<JSC::StructureChain> (this=0x44b50ba8, slot=<optimized out>)
    at Source/JavaScriptCore/runtime/WriteBarrier.h:229
#6  0x414c2850 in JSC::CodeBlock::stronglyVisitStrongReferences (this=this@entry=0x44b011c0, 
    visitor=...) at Source/JavaScriptCore/bytecode/CodeBlock.cpp:1856
#7  0x414c2950 in JSC::CodeBlock::visitAggregate (this=0x44b011c0, visitor=...)
    at Source/JavaScriptCore/bytecode/CodeBlock.cpp:1630
#8  0x415a0f88 in JSC::FunctionExecutable::visitChildren (cell=0x484eb230, visitor=...)
    at Source/JavaScriptCore/runtime/Executable.cpp:601
#9  0x414fdf50 in visitChildren (cell=<optimized out>, visitor=...)
    at Source/JavaScriptCore/heap/MarkStack.cpp:322
#10 JSC::SlotVisitor::drain (this=0x44b50ba8) at Source/JavaScriptCore/heap/MarkStack.cpp:360
#11 0x414faca0 in donateAndDrain (this=0x44b50ba8)
    at Source/JavaScriptCore/heap/SlotVisitor.h:55
#12 JSC::Heap::markRoots (this=this@entry=0x44b502f0, fullGC=fullGC@entry=true)
    at Source/JavaScriptCore/heap/Heap.cpp:631
#13 0x414fb56c in JSC::Heap::collect (this=0x44b502f0, sweepToggle=JSC::Heap::DoNotSweep)
    at Source/JavaScriptCore/heap/Heap.cpp:796
#14 0x414ff5cc in JSC::MarkedAllocator::allocateSlowCase (this=0x44b50308)
    at Source/JavaScriptCore/heap/MarkedAllocator.cpp:70
#15 0x4151844c in allocate (this=<optimized out>)
    at Source/JavaScriptCore/heap/MarkedAllocator.h:73
#16 allocateWithDestructor (bytes=12, this=<optimized out>)
    at Source/JavaScriptCore/heap/MarkedSpace.h:162
#17 allocateWithDestructor (bytes=12, this=<optimized out>)
    at Source/JavaScriptCore/heap/Heap.h:344
#18 allocateCell<JSC::StructureChain> (heap=...) at Source/JavaScriptCore/runtime/JSCell.h:334
#19 create (head=0x484eb500, globalData=...)
    at Source/JavaScriptCore/runtime/StructureChain.h:50
#20 JSC::Structure::prototypeChain (this=this@entry=0x484eb4b0, exec=exec@entry=0x480d4210)
    at Source/JavaScriptCore/runtime/JSGlobalObject.h:392
#21 0x41505d1c in JSC::Interpreter::tryCacheGetByID (this=0x44af0a00, this@entry=0x7, 
    callFrame=0x480d4210, codeBlock=codeBlock@entry=0x44b011c0, vPC=vPC@entry=0x44bbb658, 
    baseValue=..., baseValue@entry=..., propertyName=..., slot=...)
    at Source/JavaScriptCore/interpreter/Interpreter.cpp:1790
#22 0x4150aaa4 in JSC::Interpreter::privateExecute (this=0x7, this@entry=0x4850f900, 
    flag=flag@entry=JSC::Interpreter::Normal, registerFile=0xbeffb438, 
    registerFile@entry=0x44af0a0c, callFrame=0x1)
    at Source/JavaScriptCore/interpreter/Interpreter.cpp:2967
#23 0x41516fbc in JSC::Interpreter::execute (this=0x4850f900, program=0xbeffc310, 
    callFrame=0x4854fcb8, scopeChain=0x4855ffe0, thisObj=0x4850ffc0)
    at Source/JavaScriptCore/interpreter/Interpreter.cpp:1142
#24 0x41592950 in JSC::evaluate (exec=0x4854fcb8, scopeChain=0x4855ffe0, source=..., 
    thisValue=..., returnedException=0xbeffc378)
    at Source/JavaScriptCore/runtime/Completion.cpp:73
#25 0x40331124 in evaluate (exception=0xbeffc370, thisValue=..., source=..., 
    chain=<optimized out>, exec=0x4854fcb8)
    at Source/WebCore/bindings/js/JSMainThreadExecState.h:85
#26 WebCore::ScriptController::evaluateInWorld (this=this@entry=0x44b09a40, sourceCode=..., 
    world=<optimized out>) at Source/WebCore/bindings/js/ScriptController.cpp:145
#27 0x4033185c in WebCore::ScriptController::evaluate (this=0x44b09a40, sourceCode=...)
    at Source/WebCore/bindings/js/ScriptController.cpp:162
#28 0x404a902c in WebCore::ScriptElement::executeScript (this=this@entry=0x44af13f8, 
    sourceCode=...) at Source/WebCore/dom/ScriptElement.cpp:288
#29 0x404ab904 in WebCore::ScriptElement::prepareScript (this=0x44af13f8, 
    scriptStartPosition=..., supportLegacyTypes=<optimized out>)
    at Source/WebCore/dom/ScriptElement.cpp:241
#30 0x4063ba90 in WebCore::HTMLScriptRunner::runScript (this=this@entry=0x44af5ab8, script=
    0x4063ba90, scriptStartPosition=...) at Source/WebCore/html/parser/HTMLScriptRunner.cpp:296
#31 0x4063c4bc in WebCore::HTMLScriptRunner::execute (this=0x44af5ab8, scriptElement=..., 
    scriptStartPosition=...) at Source/WebCore/html/parser/HTMLScriptRunner.cpp:170
#32 0x406286d8 in WebCore::HTMLDocumentParser::runScriptsForPausedTreeBuilder (
    this=this@entry=0x44b0f000) at Source/WebCore/html/parser/HTMLDocumentParser.cpp:207
#33 0x406287d8 in WebCore::HTMLDocumentParser::canTakeNextToken (this=this@entry=0x44b0f000, 
    mode=mode@entry=WebCore::HTMLDocumentParser::AllowYield, session=...)
    at Source/WebCore/html/parser/HTMLDocumentParser.cpp:225
#34 0x4062b730 in WebCore::HTMLDocumentParser::pumpTokenizer (this=0x44b0f000, 
    mode=WebCore::HTMLDocumentParser::AllowYield)
    at Source/WebCore/html/parser/HTMLDocumentParser.cpp:263
#35 0x4062cbac in WebCore::HTMLDocumentParser::append (this=0x44b0f000, source=...)
    at Source/WebCore/html/parser/HTMLDocumentParser.cpp:370
#36 0x4043ab50 in WebCore::DecodedDataDocumentParser::appendBytes (this=0x44b0f000, 
    writer=<optimized out>, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=<optimized out>)
    at Source/WebCore/dom/DecodedDataDocumentParser.cpp:50
#37 0x4073fefc in WebCore::DocumentWriter::addData (this=<optimized out>, 
    bytes=<optimized out>, length=<optimized out>)
    at Source/WebCore/loader/DocumentWriter.cpp:206
#38 0x407361f0 in WebCore::DocumentLoader::commitData (this=0x44b08a00, 
    bytes=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192)
    at Source/WebCore/loader/DocumentLoader.cpp:327
#39 0x401abb9c in WebKit::FrameLoaderClient::committedLoad (this=0x44afedd0, loader=0x44b08a00, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192)
    at Source/WebKit/gtk/WebCoreSupport/FrameLoaderClientGtk.cpp:169
#40 0x407366e0 in WebCore::DocumentLoader::commitLoad (this=0x44b08a00, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192)
    at Source/WebCore/loader/DocumentLoader.cpp:313
#41 0x4078045c in WebCore::ResourceLoader::didReceiveData (this=0x44b40b00, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192, encodedDataLength=8192, allAtOnce=false)
    at Source/WebCore/loader/ResourceLoader.cpp:287
#42 0x407699e8 in WebCore::MainResourceLoader::didReceiveData (this=0x44b40b00, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192, encodedDataLength=8192, allAtOnce=false)
    at Source/WebCore/loader/MainResourceLoader.cpp:464
#43 0x4077e824 in WebCore::ResourceLoader::didReceiveData (this=0x44b40b00, 
    data=0x1a53e0 "&&B.parentNode;)B=B.parentNode;if(A==B){y=!0;break a}}y=!1}if(!y){for(var C=new w,E=0;E<x.g.length;++E)C.c.push(x.g[E].call(h,C.a));x.a.push(C)}q(\"click\");q(\"clickmod\");q(\"focus\");q(\"focusin\");q(\"blur"..., length=8192, encodedDataLength=8192)
    at Source/WebCore/loader/ResourceLoader.cpp:441
#44 0x408a6ef8 in WebCore::readCallback (source=<optimized out>, asyncResult=0x156040, 
    data=0x44aeb490) at Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:727
#45 0x41d12968 in ?? () from /lib/libgio-2.0.so.0
#46 0x41d250e0 in g_simple_async_result_complete () from /lib/libgio-2.0.so.0
#47 0x41c8fbf4 in ?? () from /lib/libsoup-2.4.so.1
#48 0x41c8f438 in ?? () from /lib/libsoup-2.4.so.1
#49 0x41df2fcc in g_cclosure_marshal_VOID__BOXEDv () from /lib/libgobject-2.0.so.0
#50 0x41df052c in ?? () from /lib/libgobject-2.0.so.0
#51 0x41e09bac in g_signal_emit_valist () from /lib/libgobject-2.0.so.0
#52 0x41e0a4e8 in g_signal_emit () from /lib/libgobject-2.0.so.0
#53 0x41c97710 in ?? () from /lib/libsoup-2.4.so.1
#54 0x41c97ffc in ?? () from /lib/libsoup-2.4.so.1
#55 0x41c983a8 in ?? () from /lib/libsoup-2.4.so.1
#56 0x41e732ac in ?? () from /lib/libglib-2.0.so.0
#57 0x41e75728 in g_main_context_dispatch () from /lib/libglib-2.0.so.0
#58 0x41e75a94 in ?? () from /lib/libglib-2.0.so.0
#59 0x41e75eb8 in g_main_loop_run () from /lib/libglib-2.0.so.0
#60 0x41823f5c in gtk_main () from /lib/libgtk-3.so.0
#61 0x0000a4e8 in main (argc=275776, argv=0x5e334) at Tools/GtkLauncher/main.c:452