Bug 1921215 Comment 0 Edit History

Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.

Original comment by
on 
Steps to reproduce:

Checkout commit 6b6c3965d0a79880493b8ae44a92389b72d90636 and invoke the js shell as follows:
```
js --fast-warmup --fuzzing-safe <testcase>
``


Actual results:

```
Assertion failure: cx->isExceptionPending(), at js/src/jit/Bailouts.cpp:319

==2768723==ERROR: UndefinedBehaviorSanitizer: SEGV on unknown address 0x000000000000 (pc 0x5627b073cdf1 bp 0x7fff0de6b740 sp 0x7fff0de6b610 T2768723)
==2768723==The signal is caused by a WRITE memory access.
==2768723==Hint: address points to the zero page.
    #0 0x5627b073cdf1 in js::jit::ExceptionHandlerBailout(JSContext*, js::jit::InlineFrameIterator const&, js::jit::ResumeFromException*, js::jit::ExceptionBailoutInfo const&) js/src/jit/Bailouts.cpp:319:5
    #1 0x5627b0e50e1e in js::jit::HandleExceptionIon(JSContext*, js::jit::InlineFrameIterator const&, js::jit::ResumeFromException*, bool*) js/src/jit/JitFrames.cpp:314:15
    #2 0x5627b0e50e1e in js::jit::HandleException(js::jit::ResumeFromException*) js/src/jit/JitFrames.cpp:787:9
    #3 0x307b2eabc5e5  (<unknown module>)

```
Revision 1 by
on 
Steps to reproduce:

Checkout commit 6b6c3965d0a79880493b8ae44a92389b72d90636 and invoke the js shell as follows:
```
js --fast-warmup --fuzzing-safe <testcase>
```


Actual results:

```
Assertion failure: cx->isExceptionPending(), at js/src/jit/Bailouts.cpp:319

==2768723==ERROR: UndefinedBehaviorSanitizer: SEGV on unknown address 0x000000000000 (pc 0x5627b073cdf1 bp 0x7fff0de6b740 sp 0x7fff0de6b610 T2768723)
==2768723==The signal is caused by a WRITE memory access.
==2768723==Hint: address points to the zero page.
    #0 0x5627b073cdf1 in js::jit::ExceptionHandlerBailout(JSContext*, js::jit::InlineFrameIterator const&, js::jit::ResumeFromException*, js::jit::ExceptionBailoutInfo const&) js/src/jit/Bailouts.cpp:319:5
    #1 0x5627b0e50e1e in js::jit::HandleExceptionIon(JSContext*, js::jit::InlineFrameIterator const&, js::jit::ResumeFromException*, bool*) js/src/jit/JitFrames.cpp:314:15
    #2 0x5627b0e50e1e in js::jit::HandleException(js::jit::ResumeFromException*) js/src/jit/JitFrames.cpp:787:9
    #3 0x307b2eabc5e5  (<unknown module>)
```

Back to Bug 1921215 Comment 0