[Webkit-unassigned] [Bug 129429] New: [Win32][LLINT] Crash when running JSC stress tests.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Feb 27 09:14:02 PST 2014
https://bugs.webkit.org/show_bug.cgi?id=129429
Summary: [Win32][LLINT] Crash when running JSC stress tests.
Product: WebKit
Version: 528+ (Nightly build)
Platform: PC
OS/Version: Unspecified
Status: NEW
Severity: Normal
Priority: P2
Component: JavaScriptCore
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: peavo at outlook.com
I'm currently getting a crash when running the JSC stress tests.
This is caused by accessing uncommitted stack memory.
This happens when we move the stack pointer by a value larger than the Windows stack guard page size (4K).
The system does not get the chance to move the guard page then, because we are not doing any stack reading or writing in between.
The stack guard page is the barrier between committed and uncommitted stack memory on Windows.
When someone tries to read or write to the guard page, the system commits that memory, and moves the guard page.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list