Closed Bug 1902582 Opened 8 months ago Closed 8 months ago

Hit MOZ_CRASH([unhandlable oom] Overflowed stack while marking test queue)

Categories

(Core :: JavaScript Engine, defect)

defect

Tracking

()

RESOLVED WONTFIX

People

(Reporter: anbu1024.me, Unassigned)

Details

Steps to reproduce:

The test engine version:
commit: 4582d9

Build commands:

cd debug_xx

/bin/sh ../../gecko-dev/js/src/configure --enable-debug --disable-optimize --disable-shared-js --disable-tests

make -j 12

Test case:

try { this.setMarkStackLimit(8); } catch (e) {}

try { this.enqueueMark(this); } catch (e) {}

gc();

Actual results:

Execution result:

#01: js::AutoEnterOOMUnsafeRegion::crash_impl(char const*)[./js +0x2904380]
#02: ???[./js +0x2445d69]
#03: ???[./js +0x33280b0]
#04: ???[./js +0x33277fa]
#05: ???[./js +0x332a821]
#06: ???[./js +0x332ced5]
#07: ???[./js +0x332de72]
#08: ???[./js +0x330b282]
#09: JS::NonIncrementalGC(JSContext*, JS::GCOptions, JS::GCReason)[./js +0x337f44f]
#10: ???[./js +0x2d5578d]
#11: ???[./js +0x2603abc]
#12: ???[./js +0x25d9e53]
#13: ???[./js +0x25da5d9]
#14: ???[./js +0x25da413]
#15: ???[./js +0x25e8d9d]
#16: ???[./js +0x25d9835]
#17: ???[./js +0x25d94e1]
#18: ???[./js +0x25dba21]
#19: ???[./js +0x25dbd9c]
#20: ???[./js +0x2812abf]
#21: JS_ExecuteScript(JSContext*, JS::Handle<JSScript*>)[./js +0x2812be5]
#22: ???[./js +0x243403f]
#23: ???[./js +0x243390c]
#24: ???[./js +0x240b281]
#25: ???[./js +0x23f9779]
#26: ???[./js +0x23f4437]
#27: __libc_start_main[/lib/x86_64-linux-gnu/libc.so.6 +0x24083]
#28: ???[./js +0x23e9ae9]
#29: ??? (???:???)
Segmentation fault (core dumped)
Component: Untriaged → JavaScript Engine
Product: Firefox → Core

Both setMarkStackLimit() and enqueueMark() are testing functions. The former limits the size of the mark stack and the latter tries to push extra marking onto it.
It doesn't however support any fallback if the limit is reached.

I think this is reasonable behaviour for testing functions so I'll close this as WONTFIX.

Status: NEW → RESOLVED
Closed: 8 months ago
Resolution: --- → WONTFIX
Summary: js::AutoEnterOOMUnsafeRegion::crash_impl → Hit MOZ_CRASH([unhandlable oom] Overflowed stack while marking test queue)
You need to log in before you can comment on or make changes to this bug.