[Webkit-unassigned] [Bug 261928] New: REGRESSION(268259 at main): ASSERTION FAILED: prologueSizeInBytesDataIC == (jit.debugOffset() - startOffset)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Sep 21 18:47:11 PDT 2023 

https://bugs.webkit.org/show_bug.cgi?id=261928

            Bug ID: 261928
           Summary: REGRESSION(268259 at main): ASSERTION FAILED:
                    prologueSizeInBytesDataIC == (jit.debugOffset() -
                    startOffset)
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: Hironori.Fujii at sony.com

After 268259 at main (Bug 261595), WinCaior is crashing.
https://build.webkit.org/#/builders/727/builds/20961

ASSERTION FAILED: prologueSizeInBytesDataIC == (jit.debugOffset() - startOffset)
C:\BW\WinCairo-64-bit-Debug-Build\build\Source\JavaScriptCore\bytecode/InlineCacheCompiler.cpp(706) : JSC::InlineCacheCompiler::emitDataICPrologue
1   00007FF90450278B WTFCrash
2   00007FF8BB7EF8CE WTFCrashWithInfo
3   00007FF8BBA9125A JSC::InlineCacheCompiler::emitDataICPrologue
4   00007FF8BBA9720E JSC::getByIdSlowPathCodeGenerator
5   00007FF8BCA769B1 `JSC::JITThunks::ctiStub'::`2'::<lambda_1>::operator()
6   00007FF8BCA7F80F JSC::JITThunks::ctiStubImpl<`JSC::JITThunks::ctiStub'::`2'::<lambda_1> >
7   00007FF8BCA737E9 JSC::JITThunks::ctiStub
8   00007FF8BD34AA45 JSC::VM::getCTIStub
9   00007FF8BBA90F86 JSC::InlineCacheCompiler::generateSlowPathCode
10  00007FF8BCA6F25D JSC::JIT::emitSlow_op_get_by_id
11  00007FF8BC991613 JSC::JIT::privateCompileSlowCases
12  00007FF8BC9841C6 JSC::JIT::compileAndLinkWithoutFinalizing
13  00007FF8BC95335B JSC::BaselineJITPlan::compileInThreadImpl
14  00007FF8BCA2A849 JSC::JITPlan::compileInThread
15  00007FF8BCAA6BF9 JSC::JITWorklistThread::work
16  00007FF90450B93A `WTF::AutomaticThread::start'::`2'::<lambda_1>::operator()
17  00007FF90450BD3B WTF::Detail::CallableWrapper<`WTF::AutomaticThread::start'::`2'::<lambda_1>,void>::call
18  00007FF90451A9C3 WTF::Function<void __cdecl(void)>::operator()
19  00007FF9045C0898 WTF::Thread::entryPoint
20  00007FF9046970C4 WTF::wtfThreadEntryPoint
21  00007FF8F2D06B4C recalloc
22  00007FF900C54DE0 BaseThreadInitThunk
23  00007FF91541EC4B RtlUserThreadStart

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230922/160d6cd1/attachment.htm>

More information about the webkit-unassigned mailing list