[Webkit-unassigned] [Bug 195165] [JSC]
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Feb 28 07:04:37 PST 2019
https://bugs.webkit.org/show_bug.cgi?id=195165
--- Comment #2 from Tomas Popela <tpopela at redhat.com> ---
(gdb) bt full
#0 JSC::LLInt::CLoop::execute (entryOpcodeID=JSC::llint_vm_entry_to_javascript, executableAddress=0x7fffa2497c30 <JSC::LLInt::CLoop::execute(JSC::OpcodeID, void*, JSC::VM*, JSC::ProtoCallFrame*, bool)+23080>, vm=0x7fff9e7d0010, protoCallFrame=0x7ffff404bd20, isInitializationPass=false)
at /home/tpopela/WebKit/WebKitBuild/Debug/DerivedSources/JavaScriptCore/LLIntAssembly.h:6092
__PRETTY_FUNCTION__ = "static JSC::JSValue JSC::LLInt::CLoop::execute(JSC::OpcodeID, void*, JSC::VM*, JSC::ProtoCallFrame*, bool)"
t0 = {m_value = 140735844712576}
t1 = {m_value = 1099549125072}
t2 = {m_value = 7782359175366647568}
t3 = {m_value = 1099549402784}
t5 = {m_value = 1099549417216}
sp = {m_value = 140735852379888}
cfr = {m_value = 140735852379936}
lr = {m_value = 140735916801780}
pc = {m_value = 7}
pcBase = {m_value = 1099549469568}
tagTypeNumber = {m_value = 18446462598732840960}
tagMask = {m_value = 18446462598732840962}
metadataTable = {m_value = 1099549417024}
d0 = {m_value = 1.3906701683820105e-309}
d1 = {m_value = 6.9533458759914248e-310}
cloopStack = @0x100023d02f8: {static maxExcessCapacity = 8192, m_vm = @0x7fff9e7d0010, m_topCallFrame = @0x7fff9e7f9868, m_end = 0x7fff9e7c0000, m_commitTop = 0x7fff9e7a0000, m_reservation = {<WTF::PageBlock> = {m_realBase = 0x7fff9e3d0000, m_base = 0x7fff9e3d0000, m_size = 4194304}, m_committed = 196608,
m_writable = true, m_executable = false}, m_lastStackPointer = 0x7fff9e7cfef0, m_currentStackPointer = 0x7fff9e7cfef0, m_softReservedZoneSizeInRegisters = 16384}
stackPointerScope = {m_stack = @0x100023d02f8, m_originalStackPointer = 0x7fff9e7d0000}
startSP = 0x7fff9e7d0000
startCFR = 0x0
nativeFunc = {m_ptr = @0x100f50a0: 0x10050c4c <functionNeverInlineFunction(JSC::ExecState*)>}
functionReturnValue = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 10, ptr = 0xa, asBits = {tag = 0, payload = 10}}}
opcode = 0x7fffa24c9f30 <JSC::LLInt::CLoop::execute(JSC::OpcodeID, void*, JSC::VM*, JSC::ProtoCallFrame*, bool)+228648>
result = <optimized out>
result = <optimized out>
result = <optimized out>
result = <optimized out>
temp = <optimized out>
result = <optimized out>
temp = <optimized out>
result = <optimized out>
result = <optimized out>
temp = <optimized out>
temp = <optimized out>
temp = <optimized out>
temp = <optimized out>
result = <optimized out>
result = <optimized out>
temp = <optimized out>
temp = <optimized out>
temp = <optimized out>
temp = <optimized out>
result = <optimized out>
#1 0x00007fffa25640e0 in JSC::vmEntryToJavaScript (executableAddress=0x7fffa2497c30 <JSC::LLInt::CLoop::execute(JSC::OpcodeID, void*, JSC::VM*, JSC::ProtoCallFrame*, bool)+23080>, vm=0x7fff9e7d0010, protoCallFrame=0x7ffff404bd20) at /home/tpopela/WebKit/Source/JavaScriptCore/llint/LLIntThunks.cpp:108
result = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 140735929925320, ptr = 0x7fffa31c3ec8 <JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*)::__FUNCTION__>, asBits = {tag = 32767, payload = -1558430008}}}
#2 0x00007fffa2475b04 in JSC::JITCode::execute (this=0x10002417b70, vm=0x7fff9e7d0010, protoCallFrame=0x7ffff404bd20) at /home/tpopela/WebKit/Source/JavaScriptCore/jit/JITCodeInlines.h:38
scope = {<JSC::ExceptionScope> = {m_vm = @0x7fff9e7d0010, m_previousScope = 0x7ffff404bc08, m_location = {stackPosition = 0x0, functionName = 0x7fffa31c3ec8 <JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*)::__FUNCTION__> "execute",
file = 0x7fffa31bdf10 "/home/tpopela/WebKit/Source/JavaScriptCore/jit/JITCodeInlines.h", line = 35}, m_recursionDepth = 3}, m_isReleased = false}
__FUNCTION__ = "execute"
entryAddress = 0x7fffa2497c30 <JSC::LLInt::CLoop::execute(JSC::OpcodeID, void*, JSC::VM*, JSC::ProtoCallFrame*, bool)+23080>
result = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 1099549473648, ptr = 0x10002417b70, asBits = {tag = 256, payload = 37845872}}}
#3 0x00007fffa246777c in JSC::Interpreter::executeProgram (this=0x100023d02f0, source=..., callFrame=0x100023f0048, thisObj=0x7fff9e260280) at /home/tpopela/WebKit/Source/JavaScriptCore/interpreter/Interpreter.cpp:834
mask = {m_mask = 6 '\006'}
error = 0x0
codeBlock = 0x7fff9dfc0000
protoCallFrame = {static numberOfRegisters = 4, codeBlockValue = {u = {value = 140735843926016, callFrame = 0x7fff9dfc0000, codeBlock = 0x7fff9dfc0000, encodedValue = {asInt64 = 140735843926016, ptr = 0x7fff9dfc0000, asBits = {tag = 32767, payload = -1644429312}}, number = 6.953274562231997e-310,
integer = 140735843926016}}, calleeValue = {u = {value = 140735846679200, callFrame = 0x7fff9e2602a0, codeBlock = 0x7fff9e2602a0, encodedValue = {asInt64 = 140735846679200, ptr = 0x7fff9e2602a0, asBits = {tag = 32767, payload = -1641676128}}, number = 6.9532746982573601e-310,
integer = 140735846679200}}, argCountAndCodeOriginValue = {u = {value = 1, callFrame = 0x1, codeBlock = 0x1, encodedValue = {asInt64 = 1, ptr = 0x1, asBits = {tag = 0, payload = 1}}, number = 4.9406564584124654e-324, integer = 1}}, thisArg = {u = {value = 140735846679168, callFrame = 0x7fff9e260280,
codeBlock = 0x7fff9e260280, encodedValue = {asInt64 = 140735846679168, ptr = 0x7fff9e260280, asBits = {tag = 32767, payload = -1641676160}}, number = 6.9532746982557791e-310, integer = 140735846679168}}, paddedArgCount = 1, hasArityMismatch = false, args = 0x0}
result = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 140733193388035, ptr = 0x7fff00000003, asBits = {tag = 32767, payload = 3}}}
scope = 0x7fff9e290000
vm = <error reading variable>
throwScope = {<JSC::ExceptionScope> = {m_vm = @0x7fff9e7d0010, m_previousScope = 0x7ffff404c6b8, m_location = {stackPosition = 0x0, functionName = 0x7fffa31c1c60 <JSC::Interpreter::executeProgram(JSC::SourceCode const&, JSC::ExecState*, JSC::JSObject*)::__FUNCTION__> "executeProgram",
file = 0x7fffa31bdfe0 "/home/tpopela/WebKit/Source/JavaScriptCore/interpreter/Interpreter.cpp", line = 655}, m_recursionDepth = 2}, m_isReleased = true}
__FUNCTION__ = "executeProgram"
program = 0x7fff9e020000
__PRETTY_FUNCTION__ = "JSC::JSValue JSC::Interpreter::executeProgram(const JSC::SourceCode&, JSC::CallFrame*, JSC::JSObject*)"
globalObject = 0x100023f0000
JSONPData = {<WTF::VectorBuffer<JSC::JSONPData, 0>> = {<WTF::VectorBufferBase<JSC::JSONPData>> = {m_buffer = 0x0, m_capacity = 0, m_size = 0}, <No data fields>}, <No data fields>}
parseResult = false
programSource = {m_characters = 0x100023ec674, m_length = 352, m_is8Bit = true, m_underlyingString = 0x1000240af10}
entryScope = {m_vm = @0x7fff9e7d0010, m_globalObject = 0x100023f0000, m_didPopListeners = {<WTF::VectorBuffer<WTF::Function<void()>, 0>> = {<WTF::VectorBufferBase<WTF::Function<void()> >> = {m_buffer = 0x0, m_capacity = 0, m_size = 0}, <No data fields>}, <No data fields>}}
#4 0x00007fffa27be880 in JSC::evaluate (exec=0x100023f0048, source=..., thisValue=..., returnedException=...) at /home/tpopela/WebKit/Source/JavaScriptCore/runtime/Completion.cpp:141
vm = <error reading variable>
lock = {m_vm = {static isRefPtr = <optimized out>, m_ptr = 0x7fff9e7d0010}}
scope = {<JSC::ExceptionScope> = {m_vm = @0x7fff9e7d0010, m_previousScope = 0x7ffff404c958, m_location = {stackPosition = 0x0, functionName = 0x7fffa32985b0 <JSC::evaluate(JSC::ExecState*, JSC::SourceCode const&, JSC::JSValue, WTF::NakedPtr<JSC::Exception>&)::__FUNCTION__> "evaluate",
file = 0x7fffa3289128 "/home/tpopela/WebKit/Source/JavaScriptCore/runtime/Completion.cpp", line = 132}, m_recursionDepth = 1}, <No data fields>}
__FUNCTION__ = "evaluate"
__PRETTY_FUNCTION__ = "JSC::JSValue JSC::evaluate(JSC::ExecState*, const JSC::SourceCode&, JSC::JSValue, WTF::NakedPtr<JSC::Exception>&)"
profile = {m_active = false, static s_mode = JSC::CodeProfiling::Disabled, static s_tracker = 0x0, static s_profileStack = 0x0}
thisObj = 0x7fff9e260280
result = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 140737287342480, ptr = 0x7ffff404c990, asBits = {tag = 32767, payload = -201012848}}}
---Type <return> to continue, or q <return> to quit---
#5 0x000000001005d7e8 in runWithOptions (globalObject=0x100023f0000, options=..., success=@0x7ffff404cb48: true) at /home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp:2586
evaluationException = {m_ptr = 0x0}
returnValue = {static numberOfInt52Bits = 52, static notInt52 = 4503599627370496, static int52ShiftAmount = 12, u = {asInt64 = 140737287342672, ptr = 0x7ffff404ca50, asBits = {tag = 32767, payload = -201012656}}}
promise = 0x0
isModule = false
isLastFile = true
i = 0
scripts = @0x7ffff404cc18: {<WTF::VectorBuffer<Script, 0>> = {<WTF::VectorBufferBase<Script>> = {m_buffer = 0x100023c1e70, m_capacity = 16, m_size = 1}, <No data fields>}, <No data fields>}
fileName = {static MaxLength = 2147483647, m_impl = {static isRefPtr = <optimized out>, m_ptr = 0x10002409c00}}
scriptBuffer = {<WTF::VectorBuffer<char, 0>> = {<WTF::VectorBufferBase<char>> = {
m_buffer = 0x1000240ac90 "function f(x, y) {\n x.y = y;\n};\n\nfunction g(x) {\n return x.y + 42;\n}\nnoInline(f);\nnoInline(g);\n\nvar x = {};\nvar y = {};\nf(x, 42);\nf(y, {});\n\nwhile (!numberOfDFGCompiles(g)) {\n optimizeNextInv"..., m_capacity = 352,
m_size = 352}, <No data fields>}, <No data fields>}
vm = <error reading variable>
scope = {<JSC::ExceptionScope> = {m_vm = @0x7fff9e7d0010, m_previousScope = 0x0, m_location = {stackPosition = 0x0, functionName = 0x100be670 <runWithOptions(GlobalObject*, CommandLine&, bool&)::__FUNCTION__> "runWithOptions", file = 0x100b2938 "/home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp",
line = 2533}, m_recursionDepth = 0}, <No data fields>}
__FUNCTION__ = "runWithOptions"
#6 0x000000001005eea0 in <lambda(JSC::VM&, GlobalObject*, bool&)>::operator()(JSC::VM &, GlobalObject *, bool &) const (__closure=0x7ffff404cc08, vm=..., globalObject=0x100023f0000, success=@0x7ffff404cb48: true) at /home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp:3052
options = @0x7ffff404cc10: {m_interactive = false, m_dump = false, m_module = false, m_exitCode = false, m_scripts = {<WTF::VectorBuffer<Script, 0>> = {<WTF::VectorBufferBase<Script>> = {m_buffer = 0x100023c1e70, m_capacity = 16, m_size = 1}, <No data fields>}, <No data fields>},
m_arguments = {<WTF::VectorBuffer<WTF::String, 0>> = {<WTF::VectorBufferBase<WTF::String>> = {m_buffer = 0x0, m_capacity = 0, m_size = 0}, <No data fields>}, <No data fields>}, m_profile = false, m_profilerOutput = {static MaxLength = 2147483647, m_impl = {static isRefPtr = <optimized out>, m_ptr = 0x0}},
m_uncaughtExceptionName = {static MaxLength = 2147483647, m_impl = {static isRefPtr = <optimized out>, m_ptr = 0x0}}, m_treatWatchdogExceptionAsSuccess = false, m_alwaysDumpUncaughtException = false, m_dumpMemoryFootprint = false, m_dumpSamplingProfilerData = false, m_enableRemoteDebugging = false}
#7 0x00000000100608c0 in runJSC<jscmain(int, char**)::<lambda(JSC::VM&, GlobalObject*, bool&)> >(const CommandLine &, bool, const <lambda(JSC::VM&, GlobalObject*, bool&)> &) (options=..., isWorker=false, func=...) at /home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp:2910
locker = {m_vm = {static isRefPtr = <optimized out>, m_ptr = 0x7fff9e7d0010}}
worker = {<WTF::BasicRawSentinelNode<Worker>> = {m_next = 0x100023c28e8, m_prev = 0x100023c28d8}, m_workers = @0x100023c28d0, m_messages = {m_start = 0, m_end = 0, m_buffer = {<WTF::VectorBufferBase<WTF::RefPtr<Message, WTF::DumbPtrTraits<Message> > >> = {m_buffer = 0x0, m_capacity = 0,
m_size = 0}, <No data fields>}, m_iterators = 0x0}}
vm = <error reading variable>
result = 32767
success = true
globalObject = 0x100023f0000
#8 0x000000001005ef74 in jscmain (argc=2, argv=0x7ffff404d158) at /home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp:3045
options = {m_interactive = false, m_dump = false, m_module = false, m_exitCode = false, m_scripts = {<WTF::VectorBuffer<Script, 0>> = {<WTF::VectorBufferBase<Script>> = {m_buffer = 0x100023c1e70, m_capacity = 16, m_size = 1}, <No data fields>}, <No data fields>},
m_arguments = {<WTF::VectorBuffer<WTF::String, 0>> = {<WTF::VectorBufferBase<WTF::String>> = {m_buffer = 0x0, m_capacity = 0, m_size = 0}, <No data fields>}, <No data fields>}, m_profile = false, m_profilerOutput = {static MaxLength = 2147483647, m_impl = {static isRefPtr = <optimized out>, m_ptr = 0x0}},
m_uncaughtExceptionName = {static MaxLength = 2147483647, m_impl = {static isRefPtr = <optimized out>, m_ptr = 0x0}}, m_treatWatchdogExceptionAsSuccess = false, m_alwaysDumpUncaughtException = false, m_dumpMemoryFootprint = false, m_dumpSamplingProfilerData = false, m_enableRemoteDebugging = false}
result = 32767
#9 0x000000001005bf78 in main (argc=2, argv=0x7ffff404d158) at /home/tpopela/WebKit/Source/JavaScriptCore/jsc.cpp:2410
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190228/e05bfa79/attachment-0001.html>
More information about the webkit-unassigned
mailing list