[Webkit-unassigned] [Bug 152258] Enable FTL on FreeBSD

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Feb 10 10:14:00 PST 2016 

https://bugs.webkit.org/show_bug.cgi?id=152258

--- Comment #10 from Ting-Wei Lan <lantw44 at gmail.com> ---
FreeBSD 10.3-BETA1 x86_64, WebKit trunk r196364.

testb3 always passes, but running Octane benchmark seldom succeeds. WebKitWebProcess usually crashes with the following message.

ASSERTION FAILED: value.isUndefinedOrNull()
../../Source/JavaScriptCore/bytecode/SpeculatedType.cpp(394) : SpeculatedType JSC::speculationFromValue(JSC::JSValue)

[Backtrace provided by GDB]
Core was generated by `WebKitWebProcess'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x000000080b36d06a in WTFCrash () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#1  0x000000080a7c9617 in JSC::speculationFromValue(JSC::JSValue) () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#2  0x000000080a75be34 in JSC::ValueProfileBase<1u>::computeUpdatedPrediction(JSC::ConcurrentJITLocker const&) ()
   from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#3  0x000000080a74d0f2 in JSC::CodeBlock::updateAllPredictionsAndCountLiveness(unsigned int&, unsigned int&) ()
   from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#4  0x000000080a74d1bd in JSC::CodeBlock::updateAllValueProfilePredictions() ()
   from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#5  0x000000080a74ac29 in JSC::CodeBlock::updateAllPredictions() () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#6  0x000000080ad670e8 in operationOptimize () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18
#7  0x0000000822cd5731 in ?? ()
#8  0x000000081e42ff80 in ?? ()
#9  0x000000081e4055d8 in ?? ()
#10 0x000000087fc3f4f0 in ?? ()
#11 0x000000081e4055d8 in ?? ()
#12 0x00007fffffffa450 in ?? ()
#13 0x0000000803d808ca in JSC::CopyBarrierBase::set(JSC::VM&, JSC::JSCell const*, void*) ()
   from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37
#14 0x000000082364a781 in ?? ()
#15 0x000000087347ba60 in ?? ()
#16 0x00000008648cb580 in ?? ()
#17 0x0000000100000008 in ?? ()
#18 0x00000008652fbd90 in ?? ()
#19 0xffff00007fe0fc6a in ?? ()
#20 0x00000008994c3a60 in ?? ()
#21 0x0000000000000007 in ?? ()
#22 0x0000000800000006 in ?? ()
#23 0xffff000000000000 in ?? ()
#24 0xffff0000000a3943 in ?? ()
#25 0xffff0000000a394c in ?? ()
#26 0x0000000803d7f9fd in JSC::JSNonFinalObject::finishCreation(JSC::VM&) () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37
#27 0x0000000822f99167 in ?? ()
#28 0x0000000885a51a80 in ?? ()
#29 0x00000008648cb610 in ?? ()
#30 0x0000000000000005 in ?? ()
#31 0x00000008652fbd90 in ?? ()
#32 0xffff00007fe0fc6a in ?? ()
#33 0x0000000000000007 in ?? ()
#34 0xffff000000000000 in ?? ()
#35 0x0000000000000006 in ?? ()
#36 0x000000087b035870 in ?? ()
#37 0x00000008678bfd00 in ?? ()
#38 0x0000000864692900 in ?? ()
#39 0x000000081e4055c0 in ?? ()
#40 0x000000087b035870 in ?? ()
#41 0x00000008678bfd00 in ?? ()
#42 0x00007fffffffa7b0 in ?? ()
#43 0x000000000000000a in ?? ()
#44 0x00007fffffffa7b0 in ?? ()
#45 0x000000082285ef51 in ?? ()
#46 0x00000008786b2fc0 in ?? ()
#47 0x00000008648f27d0 in ?? ()
#48 0x0000000800000003 in ?? ()
#49 0x000000087fc3f510 in ?? ()
#50 0x00000008652fbd90 in ?? ()
#51 0x0000000000000006 in ?? ()
#52 0x00007fffffffa870 in ?? ()
#53 0x000000082364a781 in ?? ()
#54 0x00000008634a3040 in ?? ()
#55 0x00000008648cb580 in ?? ()
#56 0x0000000e00000008 in ?? ()
#57 0x000000087fc3f4e0 in ?? ()
#58 0x0000000800000000 in ?? ()
#59 0x000000086349f580 in ?? ()
#60 0x0000000000000007 in ?? ()
#61 0x0000000800000006 in ?? ()
#62 0x00000008652fbd90 in ?? ()
#63 0x000000087fc3f510 in ?? ()
#64 0xffff0000000a393f in ?? ()
#65 0x000000087fc3f4e0 in ?? ()
#66 0x00000008652fbd90 in ?? ()
#67 0xffff000000000002 in ?? ()
#68 0xffff000000000000 in ?? ()
#69 0xffff000000000002 in ?? ()
#70 0x00007fffffffa870 in ?? ()
#71 0x00000008229bfecc in ?? ()
#72 0x00000008786b4320 in ?? ()
#73 0x00000008648c9f00 in ?? ()
#74 0x000000086349e3b0 in ?? ()
#75 0x0000000000000002 in ?? ()
#76 0x000000086484b140 in ?? ()
#77 0x00000008702e2900 in ?? ()
#78 0x000000000000000a in ?? ()
#79 0x00000000000a3943 in ?? ()
#80 0x000000000000000a in ?? ()
#81 0x000000087fc3f4e0 in ?? ()
#82 0x000000000000000a in ?? ()
#83 0x000000000000000a in ?? ()
#84 0x000000000000000a in ?? ()
#85 0x000000000000000a in ?? ()
#86 0x0000000000000006 in ?? ()
#87 0x0000000000000007 in ?? ()
#88 0x000000086349f580 in ?? ()
#89 0x0000000000000001 in ?? ()
#90 0x00000008652fbd90 in ?? ()
#91 0xffff000000000002 in ?? ()
#92 0xffff000000000000 in ?? ()
#93 0xffff000000000002 in ?? ()
#94 0x00007fffffffaa90 in ?? ()
#95 0x0000000822f9c641 in ?? ()
#96 0x00000008786bd860 in ?? ()
#97 0x00000008648cb5b0 in ?? ()
#98 0x0000000d00000006 in ?? ()
#99 0x00000008652fbd90 in ?? ()
#100 0xffff00007fe0fc6a in ?? ()
#101 0xffff000000000009 in ?? ()
#102 0x0000000000000007 in ?? ()
#103 0xffff000000000000 in ?? ()
#104 0x0000000000000007 in ?? ()
#105 0x00000008678bfd00 in ?? ()
#106 0x0000000864692900 in ?? ()
#107 0x000000081e4055c0 in ?? ()
#108 0x000000087b0358a0 in ?? ()
#109 0x00000008678bfd00 in ?? ()
#110 0x00007fffffffa9d0 in ?? ()
#111 0x000000000000000a in ?? ()
#112 0x00007fffffffa9d0 in ?? ()
#113 0xffff000000000030 in ?? ()
#114 0x00000008994c3a90 in ?? ()
#115 0x00000008648f27d0 in ?? ()
#116 0x0000000800000003 in ?? ()
#117 0x000000087fc3f530 in ?? ()
#118 0x00000008652fbd90 in ?? ()
#119 0x0000000000000006 in ?? ()
#120 0x0000000000000001 in ?? ()
#121 0x000000081e405668 in ?? ()
#122 0x00000008634a3040 in ?? ()
#123 0x000000081e405668 in ?? ()
#124 0x00007fffffffa980 in ?? ()
#125 0x000000087fc3f500 in ?? ()
#126 0x0000000800000000 in ?? ()
#127 0x000000086349f580 in ?? ()
#128 0x00007fffffffa9b0 in ?? ()
#129 0x0000000803d8099f in JSC::Heap::writeBarrier(JSC::JSCell const*) () from /home/lantw44/gnome/source/webkit-trunk/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37
Backtrace stopped: previous frame inner to this frame (corrupt stack?)

[Backtrace provided by LLDB]
* thread #1: tid = 0, 0x000000080b36d06a libjavascriptcoregtk-4.0.so.18`::WTFCrash() + 42 at Assertions.cpp:321, name = 'WebKitWebProcess', stop reason = signal SIGSEGV
  * frame #0: 0x000000080b36d06a libjavascriptcoregtk-4.0.so.18`::WTFCrash() + 42 at Assertions.cpp:321
    frame #1: 0x000000080a7c9617 libjavascriptcoregtk-4.0.so.18`JSC::speculationFromValue(value=JSValue at 0x00007fffffff9dd0) + 375 at SpeculatedType.cpp:394
    frame #2: 0x000000080a75be34 libjavascriptcoregtk-4.0.so.18`JSC::ValueProfileBase<1u>::computeUpdatedPrediction(this=0x000000088a7713a0, (null)=0x00007fffffff9ea8) + 132 at ValueProfile.h:145
    frame #3: 0x000000080a74d0f2 libjavascriptcoregtk-4.0.so.18`JSC::CodeBlock::updateAllPredictionsAndCountLiveness(this=0x000000087347ba60, numberOfLiveNonArgumentValueProfiles=0x00007fffffff9ee4, numberOfSamplesInProfiles=0x00007fffffff9ee0) + 258 at CodeBlock.cpp:3847
    frame #4: 0x000000080a74d1bd libjavascriptcoregtk-4.0.so.18`JSC::CodeBlock::updateAllValueProfilePredictions(this=0x000000087347ba60) + 29 at CodeBlock.cpp:3863
    frame #5: 0x000000080a74ac29 libjavascriptcoregtk-4.0.so.18`JSC::CodeBlock::updateAllPredictions(this=0x000000087347ba60) + 25 at CodeBlock.cpp:3884
    frame #6: 0x000000080ad670e8 libjavascriptcoregtk-4.0.so.18`::operationOptimize(exec=0x00007fffffffa500, bytecodeIndex=0) + 616 at JITOperations.cpp:1136
    frame #7: 0x0000000822cd5731
    frame #8: 0x000000082364a781
    frame #9: 0x0000000822f99167
    frame #10: 0x0000000822f9c641
    frame #11: 0x000000082364bcbf
    frame #12: 0x0000000822f99167
    frame #13: 0x0000000822f9c641
    frame #14: 0x00000008239a06a9
    frame #15: 0x00000008239e5208
    frame #16: 0x0000000822298b7a
    frame #17: 0x00000008239b0c77
    frame #18: 0x00000008239ba093
    frame #19: 0x000000082397b0c8
    frame #20: 0x000000082326ed56
    frame #21: 0x00000008239cb19d
    frame #22: 0x0000000823994055
    frame #23: 0x00000008239e5208
    frame #24: 0x000000082325ad5f
    frame #25: 0x0000000823992d8f
    frame #26: 0x00000008239e5208
    frame #27: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #28: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #29: 0x000000080b1eea69 libjavascriptcoregtk-4.0.so.18`llint_entry + 26829
    frame #30: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #31: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #32: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #33: 0x000000080b1ee9ef libjavascriptcoregtk-4.0.so.18`llint_entry + 26707
    frame #34: 0x0000000821c8b9da
    frame #35: 0x0000000821dbdbe6
    frame #36: 0x0000000821c9b7ef
    frame #37: 0x0000000822849327
    frame #38: 0x000000080b1e7f86 libjavascriptcoregtk-4.0.so.18`llintPCRangeStart + 334
    frame #39: 0x000000080ad5211d libjavascriptcoregtk-4.0.so.18`JSC::JITCode::execute(this=0x00000008825f41e0, vm=0x000000081e4055c0, protoCallFrame=0x00007fffffffccf0) + 221 at JITCode.cpp:80
    frame #40: 0x000000080ad157a9 libjavascriptcoregtk-4.0.so.18`JSC::Interpreter::executeCall(this=0x000000081e5d5068, callFrame=0x000000081e493140, function=0x0000000864af2e30, callType=CallTypeJS, callData=0x00007fffffffd1f8, thisValue=JSValue at 0x00007fffffffcd90, args=0x00007fffffffd128) + 1497 at Interpreter.cpp:1035
    frame #41: 0x000000080af3dafe libjavascriptcoregtk-4.0.so.18`JSC::call(exec=0x000000081e493140, functionObject=JSValue at 0x00007fffffffce48, callType=CallTypeJS, callData=0x00007fffffffd1f8, thisValue=JSValue at 0x00007fffffffce30, args=0x00007fffffffd128) + 190 at CallData.cpp:40
    frame #42: 0x000000080af3db63 libjavascriptcoregtk-4.0.so.18`JSC::call(exec=0x000000081e493140, functionObject=JSValue at 0x00007fffffffcec8, callType=CallTypeJS, callData=0x00007fffffffd1f8, thisValue=JSValue at 0x00007fffffffceb0, args=0x00007fffffffd128, returnedException=0x00007fffffffd148) + 83 at CallData.cpp:45
    frame #43: 0x000000080af3dd51 libjavascriptcoregtk-4.0.so.18`JSC::profiledCall(exec=0x000000081e493140, reason=Other, functionObject=JSValue at 0x00007fffffffcf70, callType=CallTypeJS, callData=0x00007fffffffd1f8, thisValue=JSValue at 0x00007fffffffcf58, args=0x00007fffffffd128, returnedException=0x00007fffffffd148) + 129 at CallData.cpp:64
    frame #44: 0x0000000804af40bd libwebkit2gtk-4.0.so.37`WebCore::JSMainThreadExecState::profiledCall(exec=0x000000081e493140, reason=Other, functionObject=JSValue at 0x00007fffffffd010, callType=CallTypeJS, callData=0x00007fffffffd1f8, thisValue=JSValue at 0x00007fffffffcff8, args=0x00007fffffffd128, returnedException=0x00007fffffffd148) + 125 at JSMainThreadExecState.h:74
    frame #45: 0x0000000804be95c1 libwebkit2gtk-4.0.so.37`WebCore::ScheduledAction::executeFunctionInContext(this=0x0000000881da7d70, globalObject=0x000000081e493100, thisValue=JSValue at 0x00007fffffffd218, context=0x000000081e430f60) + 737 at ScheduledAction.cpp:104
    frame #46: 0x0000000804be9074 libwebkit2gtk-4.0.so.37`WebCore::ScheduledAction::execute(this=0x0000000881da7d70, document=0x000000081e430ec0) + 388 at ScheduledAction.cpp:125
    frame #47: 0x0000000804be8ec3 libwebkit2gtk-4.0.so.37`WebCore::ScheduledAction::execute(this=0x0000000881da7d70, context=0x000000081e430f60) + 67 at ScheduledAction.cpp:78
    frame #48: 0x000000080573defb libwebkit2gtk-4.0.so.37`WebCore::DOMTimer::fired(this=0x000000088bf90688) + 1131 at DOMTimer.cpp:348
    frame #49: 0x00000008058feb1c libwebkit2gtk-4.0.so.37`WebCore::ThreadTimers::sharedTimerFiredInternal(this=0x000000081e5c97a8) + 396 at ThreadTimers.cpp:121
    frame #50: 0x00000008058ff781 libwebkit2gtk-4.0.so.37`(this=0x0000000808eddf78)::operator()() const + 33 at ThreadTimers.cpp:73
    frame #51: 0x00000008058ff6bc libwebkit2gtk-4.0.so.37`std::__1::__function::__func<WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0, std::__1::allocator<WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0>, void ()>::operator()() [inlined] decltype(this=0x0000000808eddf78, __f=0x0000000808eddf78)::$_0&>(fp)(std::__1::forward<>(fp0))) std::__1::__invoke<WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0&>(WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0&&&) + 60 at __functional_base:413
    frame #52: 0x00000008058ff6ab libwebkit2gtk-4.0.so.37`std::__1::__function::__func<WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0, std::__1::allocator<WebCore::ThreadTimers::setSharedTimer(WebCore::SharedTimer*)::$_0>, void ()>::operator(this=0x0000000808eddf70)() + 43 at functional:1370
    frame #53: 0x0000000803c8f2cd libwebkit2gtk-4.0.so.37`std::__1::function<void ()>::operator(this=0x0000000808eddf70)() const + 141 at functional:1756
    frame #54: 0x00000008058d79ce libwebkit2gtk-4.0.so.37`WebCore::MainThreadSharedTimer::fired(this=0x0000000808eddf60) + 110 at MainThreadSharedTimer.cpp:52
    frame #55: 0x00000008062934ee libwebkit2gtk-4.0.so.37`WTF::RunLoop::Timer<WebCore::MainThreadSharedTimer>::fired(this=0x0000000808eddfa0) + 110 at RunLoop.h:131
    frame #56: 0x000000080b3d934d libjavascriptcoregtk-4.0.so.18`(this=0x0000000000000000, userData=0x0000000808eddfa0)::operator()(gpointer) const + 45 at RunLoopGLib.cpp:131
    frame #57: 0x000000080b3d9318 libjavascriptcoregtk-4.0.so.18`(userData=0x0000000808eddfa0)::__invoke(gpointer) + 24 at RunLoopGLib.cpp:129
    frame #58: 0x000000080b3d9446 libjavascriptcoregtk-4.0.so.18`WTF::$_0::operator(this=0x000000080b3d93c0, source=0x00000008214db200, callback=0x000000080b3d9300, userData=0x0000000808eddfa0)(_GSource*, int (*)(void*), void*) const + 86 at RunLoopGLib.cpp:44
    frame #59: 0x000000080b3d93e8 libjavascriptcoregtk-4.0.so.18`WTF::$_0::__invoke(source=0x00000008214db200, callback=0x000000080b3d9300, userData=0x0000000808eddfa0)(void*), void*) + 40 at RunLoopGLib.cpp:39
    frame #60: 0x000000080dffdac4 libglib-2.0.so.0`g_main_dispatch(context=0x000000081e053780) + 452 at gmain.c:3154
    frame #61: 0x000000080dffd8e3 libglib-2.0.so.0`g_main_context_dispatch(context=0x000000081e053780) + 51 at gmain.c:3769
    frame #62: 0x000000080dffdeb7 libglib-2.0.so.0`g_main_context_iterate(context=0x000000081e053780, block=1, dispatch=1, self=0x000000081e021f30) + 471 at gmain.c:3840
    frame #63: 0x000000080dffe3ce libglib-2.0.so.0`g_main_loop_run(loop=0x000000081e3ccc80) + 590 at gmain.c:4034
    frame #64: 0x000000080b3d888d libjavascriptcoregtk-4.0.so.18`WTF::RunLoop::run() + 189 at RunLoopGLib.cpp:94
    frame #65: 0x00000008045a5d6d libwebkit2gtk-4.0.so.37`int WebKit::ChildProcessMain<WebKit::WebProcess, WebKit::WebProcessMain>(argc=2, argv=0x00007fffffffda00) + 253 at ChildProcessMain.h:61
    frame #66: 0x00000008045a5c5b libwebkit2gtk-4.0.so.37`WebKit::WebProcessMainUnix(argc=2, argv=0x00007fffffffda00) + 27 at WebProcessMainGtk.cpp:77
    frame #67: 0x0000000000400bf5 WebKitWebProcess`main(argc=2, argv=0x00007fffffffda00) + 69 at WebProcessMain.cpp:44
    frame #68: 0x0000000000400acf WebKitWebProcess`_start + 367

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160210/812e9f11/attachment-0001.html>

More information about the webkit-unassigned mailing list