[Webkit-unassigned] [Bug 72883] ASSERTION FAILED: !callLinkInfo->isLinked() in JSC JIT

Tue Nov 22 13:38:04 PST 2011

https://bugs.webkit.org/show_bug.cgi?id=72883

--- Comment #6 from Filip Pizlo <fpizlo at apple.com>  2011-11-22 13:38:04 PST ---
This trace looks like the JIT emitted a jump to an invalid location (0x0000000000000031) and we're faulting because that pointer contains no executable (or readable, or writable, even) memory.

I'm not sure if the assertion you're seeing is informative; it might just be valgrind interacting strangely with JSC's code patching logic.

I visited the technorati.com site on the Mac port and did not get any crashes.  Does yours crash upon visiting the site, or only after you navigate around for a bit?

(In reply to comment #4)
> This is the trace of the SIGSEV BTW:
> (gdb) bt
> #0  0x0000000000000031 in ?? ()
> #1  0x00007ffff5956640 in WebCore::gotChunkCallback (msg=0x2121020, chunk=0x217d6d0, data=0x21fab60)
>     at ../../Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:364
> #2  0x00007ffff350b671 in g_cclosure_marshal_VOID__BOXED (closure=0x21fbb20, return_value=0x0, n_param_values=2, param_values=0x1e5a810, 
>     invocation_hint=0x7fffffffad80, marshal_data=0x0) at gmarshal.c:574
> #3  0x00007ffff3508dc2 in g_closure_invoke (closure=0x21fbb20, return_value=0x0, n_param_values=2, param_values=0x1e5a810, 
>     invocation_hint=0x7fffffffad80) at gclosure.c:774
> #4  0x00007ffff3522397 in signal_emit_unlocked_R (node=0x1cb1a40, detail=0, instance=0x2121020, emission_return=0x0, 
>     instance_and_params=0x1e5a810) at gsignal.c:3302
> #5  0x00007ffff3521591 in g_signal_emit_valist (instance=0x2121020, signal_id=453, detail=0, var_args=0x7fffffffb008) at gsignal.c:3033
> #6  0x00007ffff3521ae9 in g_signal_emit (instance=0x2121020, signal_id=453, detail=0) at gsignal.c:3090
> #7  0x00007ffff3763d8b in soup_message_got_chunk (msg=0x2121020, chunk=0x217d6d0) at soup-message.c:1046
> #8  0x00007ffff376983d in read_body_chunk (msg=0x2121020) at soup-message-io.c:516
> #9  0x00007ffff376a8a7 in io_read (sock=0x1f978c0, msg=0x2121020) at soup-message-io.c:989
> #10 0x00007ffff350aba4 in g_cclosure_marshal_VOID__VOID (closure=0x2139110, return_value=0x0, n_param_values=1, param_values=0x1d400c0, 
>     invocation_hint=0x7fffffffd370, marshal_data=0x0) at gmarshal.c:85
> #11 0x00007ffff3508dc2 in g_closure_invoke (closure=0x2139110, return_value=0x0, n_param_values=1, param_values=0x1d400c0, 
>     invocation_hint=0x7fffffffd370) at gclosure.c:774
> #12 0x00007ffff3522397 in signal_emit_unlocked_R (node=0x1ceec30, detail=0, instance=0x1f978c0, emission_return=0x0, 
>     instance_and_params=0x1d400c0) at gsignal.c:3302
> #13 0x00007ffff3521591 in g_signal_emit_valist (instance=0x1f978c0, signal_id=466, detail=0, var_args=0x7fffffffd5f8) at gsignal.c:3033
> #14 0x00007ffff3521ae9 in g_signal_emit (instance=0x1f978c0, signal_id=466, detail=0) at gsignal.c:3090
> #15 0x00007ffff377e0f8 in socket_read_watch (pollable=0x1d61d00, user_data=0x1f978c0) at soup-socket.c:1265
> #16 0x00007ffff35c0b8a in pollable_source_dispatch (source=0x1ef1e40, callback=0x7ffff377e09b <socket_read_watch>, user_data=0x1f978c0)
>     at gpollableinputstream.c:232
> #17 0x00007ffff33fef42 in g_main_dispatch (context=0x544f00) at gmain.c:2513
> #18 0x00007ffff33ffc03 in g_main_context_dispatch (context=0x544f00) at gmain.c:3050
> #19 0x00007ffff33ffde6 in g_main_context_iterate (context=0x544f00, block=1, dispatch=1, self=0x573d30) at gmain.c:3121
> #20 0x00007ffff33ffeaa in g_main_context_iteration (context=0x544f00, may_block=1) at gmain.c:3182
> #21 0x00007ffff3601346 in g_application_run (application=0x617000, argc=1, argv=0x7fffffffda88) at gapplication.c:1320
> #22 0x0000000000430ca2 in main (argc=1, argv=0x7fffffffda88) at ../../src/ephy-main.c:472

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.