120890 – Concurrent FTL causes !hasOptimizedReplacement() asserts in cti_optimize

RESOLVED FIXED 120890

Concurrent FTL causes !hasOptimizedReplacement() asserts in cti_optimize

https://bugs.webkit.org/show_bug.cgi?id=120890

Summary Concurrent FTL causes !hasOptimizedReplacement() asserts in cti_optimize

Filip Pizlo

Reported 2013-09-06 13:12:56 PDT

This is because the FTL may install an optimized replacement while the DFG has already been jettisoned - so then the baseline JIT's cti_optimize sees an on-going DFG compile to reoptimize the code while also seeing an FTL optimized replacement.

Attachments
the patch (1.62 KB, patch) 2013-09-06 13:13 PDT, Filip Pizlo	fpizlo: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Filip Pizlo

Comment 1 2013-09-06 13:13:51 PDT

Created attachment 210786 [details] the patch

Filip Pizlo

Comment 2 2013-09-06 13:17:16 PDT

Comment on attachment 210786 [details] the patch r=mark

Filip Pizlo

Comment 3 2013-09-06 13:19:32 PDT

Landed in http://trac.webkit.org/changeset/155209

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware All

OS All

Product WebKit

Component JavaScriptCore

Assignee

Filip Pizlo

Reported

2013-09-06 13:12 PDT

Modified

2013-09-06 13:19 PDT History

CC List

7 users Show

URL

Keywords

Depends on

Blocks

112840

Dependencies

tree graph