[Webkit-unassigned] [Bug 146629] [MIPS] webkitgtk crashed if JIT is enabled
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Jul 6 18:04:57 PDT 2015
https://bugs.webkit.org/show_bug.cgi?id=146629
Jeffrey <Jeffrey.li at nagra.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #256268| |review?, commit-queue?
Flags| |
--- Comment #2 from Jeffrey <Jeffrey.li at nagra.com> ---
Created attachment 256268
--> https://bugs.webkit.org/attachment.cgi?id=256268&action=review
proposed patch
On MIPS platform, function llint_op_catch() use RA register to compute gp pointor. JSC::CCallHelpers::jumpToExceptionHandler() use T9 register. It will cause a invalid gp pointer when jump to llint_op_catch().
My patch load the function address to RA first. Then copy it to T9 and jump.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150707/55aeca82/attachment.html>
More information about the webkit-unassigned
mailing list