Closed Bug 565799 Opened 15 years ago Closed 15 years ago

JM: mochitest-plain crash: /tests/content/events/test/test_bug448602.html

Categories

(Core :: JavaScript Engine, defect)

Product:
Core
Component:
JavaScript Engine
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: dmandelin, Assigned: dmandelin)

References

Details

Attachments

(1 file)

Patch 3
3.91 KB, patch
dvander
: review+
Details | Diff | Splinter Review
We crash on this test.
The failure is in a new assertion added for fast globals in JM: JS_PUBLIC_API(JSBool) JS_InitStandardClasses(JSContext *cx, JSObject *obj) { JSAtom *atom; CHECK_REQUEST(cx); JS_ASSERT((obj->getClass()->flags & JSCLASS_GLOBAL_FLAGS) == JSCLASS_GLOBAL_FLAGS); This test calls _newJSDContext, which calls JS_InitStandardClasses with a global object that has global_class with flags=0. The easy fix would seem to be to make the jsd global class use JSCLASS_GLOBAL_FLAGS. Would that break anything?
ah, wes mentioned that jsd doesn't have that flag and wondered if there were interesting benefits. iirc he said that not having global meant that jsd bits wouldn't be jit'd which i noted was probably a good thing temporarily until we were more confident about results.
My local JSD fork (mostly timeless' thread-safety patches plus tweaks to play nice with my embedding) has had that flag for a couple of days now -- no observable problems, but I haven't looked very hard either. The shell-based debugger, jsdb -- which is still in CVS -- is also missing that flag. According to TFS, leaving that flags off will cause "ECMA-262 original prototype behaviour to break", hopefully JSD doesn't rely on that being broken.
OK, It looks like we should add that flag in JM as well. I'll just do it on that branch for now. Next week we have an intern starting, Andrew Drake, who will be working on making JM code debuggable, so hopefully he can pick up testing that as well.
Attached patch Patch 3Splinter Review
Attachment #445456 - Flags: review?(dvander)
Comment on attachment 445456 [details] [diff] [review] Patch 3 Maybe a follow-up bug (or just make sure we remember it for our debugging story) that InlineReturn gets inlined, sans debug hook, if there is neither a callobj nor arguments obj.
Attachment #445456 - Flags: review?(dvander) → review+
http://hg.mozilla.org/users/danderson_mozilla.com/jaegermonkey/rev/f8c917d2ba48
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: