[Webkit-unassigned] [Bug 151440] REGRESSION(r192599): It made 34 JSC tests crash on ARM Linux

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Nov 19 08:28:54 PST 2015 

https://bugs.webkit.org/show_bug.cgi?id=151440

--- Comment #7 from Csaba Osztrogonác <ossy at webkit.org> ---
(In reply to comment #4)
> Can someone run run-javascriptcore-tests manually on ARM, and post an actual
> crash trace?  Thanks.

I tried to generate backtrack on ARMv7, but unfortunately gdb crashes
on debug build of JSC. :(

But it seems the bug is in the DFG JIT somewhere, because 
stress/op_sub.js passes with disable DFG, but crashes by default.

I had a release backtrace. I don't think if it helps, but who knows.

#0  0x00000000 in ?? ()
(gdb) bt
#0  0x00000000 in ?? ()
#1  0xb6d83d56 in llint_entry ()
   from /home/webkitbuildbot/slaves/efl-thumb2-official/buildslave/efl-linux-armv7-thumb2-release/build/WebKitBuild/Release/lib/libjavascriptcore_efl.so.1
#2  0xb6d83d56 in llint_entry ()
   from /home/webkitbuildbot/slaves/efl-thumb2-official/buildslave/efl-linux-armv7-thumb2-release/build/WebKitBuild/Release/lib/libjavascriptcore_efl.so.1
#3  0xb6d83da0 in llint_entry ()
   from /home/webkitbuildbot/slaves/efl-thumb2-official/buildslave/efl-linux-armv7-thumb2-release/build/WebKitBuild/Release/lib/libjavascriptcore_efl.so.1
#4  0xb6d7ebe0 in vmEntryToJavaScript ()
   from /home/webkitbuildbot/slaves/efl-thumb2-official/buildslave/efl-linux-armv7-thumb2-release/build/WebKitBuild/Release/lib/libjavascriptcore_efl.so.1
#5  0xb6b4956a in JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*) ()
   from /home/webkitbuildbot/slaves/efl-thumb2-official/buildslave/efl-linux-armv7-thumb2-release/build/WebKitBuild/Release/lib/libjavascriptcore_efl.so.1
#6  0xdfacb3fc in ?? ()
Backtrace stopped: previous frame identical to this frame (corrupt stack?)

I'll try to create a debug backtrace on AArch64, but I will 
have time for it only tomorrow morning (in CET timezone).

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20151119/a08b39f2/attachment.html>

More information about the webkit-unassigned mailing list