The `function_offset`s are all over `GetCoeffsFast`; it's not a single particular line that's crashing. Many of the crashing instructions are benign like `cmp` or reg-to-reg `mov`s. There's even a subset of crashes that aren't on a proper instruction boundary, so they misinterpret a privileged `in` operation and crash with `EXCEPTION_PRIV_INSTRUCTION`. A cpu issue is certainly a possibility at this point. Given the wide range of crash addresses, maybe a jump accidentally went to a garbage offset.
Bug 1639258 Comment 6 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
The `function_offset`s are all over `GetCoeffsFast`; it's not a single particular line that's crashing. Many of the crashing instructions are benign like `cmp` or reg-to-reg `mov`s. There's even a subset of crashes that aren't on a proper instruction boundary, so they misinterpret a privileged `in` operation and crash with `EXCEPTION_PRIV_INSTRUCTION`. A cpu issue is certainly a possibility at this point. ~~Given the wide range of crash addresses, maybe a jump accidentally went to a garbage offset.~~ (EDIT: On second thought, in light of the benign instructions, more likely the cpu is decoding something other than what we're seeing.)