Bug 139679
| Summary: | 0<=NaN return TRUE if disabling JIT | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Mark Wang <mwang> |
| Component: | JavaScriptCore | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED WONTFIX | ||
| Severity: | Normal | CC: | ggaren, matthew_hanson, nwaschbu, webkit-bug-importer |
| Priority: | P2 | Keywords: | InRadar |
| Version: | 528+ (Nightly build) | ||
| Hardware: | Unspecified | ||
| OS: | Linux | ||
Mark Wang
If --enable-jit=yes, '0<=NaN' returns false.
If --enable-jit=no, '0<=NaN' returns true. it is not corrected.
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Radar WebKit Bug Importer
<rdar://problem/19280919>
Geoffrey Garen
Can you be more specific?
I tried this:
[redacted]> JSC_useJIT=0 DYLD_FRAMEWORK_PATH=./Contents/Frameworks/ ./Contents/Resources/jsc
>>> 0<=NaN
false
Mark Wang
I am using WebKitGTK2.0.1 which didn't change the JavascriptCore.
My test script is:
<script>
0 <= NaN?console.log("TRUE"):console.log("FALSE");
</script>
OS: Linux.
Result:
If --enable-jit=yes, "0 <= NaN" always is FALSE no matter if JIT is enabled by ENV
If --enable-jit=no, "0 <= NaN" always is TRUE.
So, JIT must be disabled in the build configuration in order to reproduce this issue.
Mark Wang
If disabling the JIT in the build configuration, the issue can reproduced. So It is reopened.
JSC_useJIT=0 can't reproduce this issue if --enable-jit=yes in the build configuration.
Mark Wang
In only a few versions of offlineasm/cloop.rb, "isnan" was used (not "std::isnan").
This issue can't be reproduced if using "std::isnan", so it is set to be 'WONTFIX'