[Webkit-unassigned] [Bug 275989] Kotlin Compose demos (using WasmGC) no longer work in the latest Safari TP

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Jun 28 17:44:10 PDT 2024 

https://bugs.webkit.org/show_bug.cgi?id=275989

--- Comment #4 from Alexey Proskuryakov <ap at webkit.org> ---
The crash log goes into ~/Library/Logs/DiagnosticReports. I can reproduce with STP 197.

You said "no longer works", do you know when this last worked?



Thread 10 Crashed:: Wasm Worklist Helper Thread
0   JavaScriptCore                             0x10d35be4c JSC::Wasm::WasmCallingConvention::callInformationFor(JSC::Wasm::FunctionSignature const&, JSC::Wasm::CallRole) const + 116
1   JavaScriptCore                             0x10e351158 JSC::Wasm::OMGIRGenerator::addCall(unsigned int, JSC::Wasm::TypeDefinition const&, WTF::Vector<JSC::B3::Variable*, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, WTF::Vector<JSC::B3::Variable*, 8ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, JSC::CallLinkInfoBase::CallType) + 232
2   JavaScriptCore                             0x10e3ab060 JSC::Wasm::FunctionParser<JSC::Wasm::OMGIRGenerator>::parseExpression() + 20440
3   JavaScriptCore                             0x10e350b3c JSC::Wasm::FunctionParser<JSC::Wasm::OMGIRGenerator>::parse() + 8196
4   JavaScriptCore                             0x10e35285c JSC::Wasm::OMGIRGenerator::addCall(unsigned int, JSC::Wasm::TypeDefinition const&, WTF::Vector<JSC::B3::Variable*, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, WTF::Vector<JSC::B3::Variable*, 8ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, JSC::CallLinkInfoBase::CallType) + 6124
5   JavaScriptCore                             0x10e3ab060 JSC::Wasm::FunctionParser<JSC::Wasm::OMGIRGenerator>::parseExpression() + 20440
6   JavaScriptCore                             0x10e350b3c JSC::Wasm::FunctionParser<JSC::Wasm::OMGIRGenerator>::parse() + 8196
7   JavaScriptCore                             0x10e358c40 JSC::Wasm::parseAndCompileOMG(JSC::Wasm::CompilationContext&, JSC::Wasm::OptimizingJITCallee&, JSC::Wasm::FunctionData const&, JSC::Wasm::TypeDefinition const&, WTF::Vector<JSC::Wasm::UnlinkedWasmToWasmCall, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, JSC::Wasm::CalleeGroup&, JSC::Wasm::ModuleInformation const&, JSC::MemoryMode, JSC::Wasm::CompilationMode, unsigned int, std::__1::optional<bool>, unsigned int, JSC::Wasm::TierUpCount*) + 4256
8   JavaScriptCore                             0x10e391ff8 JSC::Wasm::OMGPlan::work(JSC::Wasm::Plan::CompilationEffort) + 324

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240629/1859abf3/attachment.htm>

More information about the webkit-unassigned mailing list