[Webkit-unassigned] [Bug 97586] [Qt] Fix crashes with LLInt C loop on 64 bit release mode

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Oct 30 11:32:46 PDT 2012


https://bugs.webkit.org/show_bug.cgi?id=97586





--- Comment #13 from Zoltan Herczeg <zherczeg at webkit.org>  2012-10-30 11:34:04 PST ---
I can only do debugging tomorrow, but I can tell you that that the issue is really the i32 thing. After the exception, t0.instruction is set to a low address  (0x22b4030), probably it points something to the data section, and the difference is much bigger than 2G. The strange thing is, why it crashes on your side with i?

SlowPathReturnType result = llint_slow_path_resolve(exec, pc);
LLInt::decodeResult(result, t0.instruction, t1.execState);

This result is returned by:

return LLInt::exceptionInstructions();

Just out of curiosity:

OFFLINE_ASM_LOCAL_LABEL(_offlineasm_noInstructions)

+       printf("catchRoutine %p\n", LLInt::exceptionInstructions());
        ExecState* exec = CAST<ExecState*>(cfr.vp);
        Instruction* pc = CAST<Instruction*>(rPC.vp);
        SlowPathReturnType result = llint_slow_path_resolve(exec, pc);
        LLInt::decodeResult(result, t0.instruction, t1.execState);
+       printf("t0.instruction: %p\n", t0.instruction);

catchRoutine 0x2004030
t0.instruction: 0x2004030

So it is set long before the exception occures, and it is a low address (outside the 2G range). What is happening on your machine?

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.


More information about the webkit-unassigned mailing list