124361 – REGRESSION (r159276): rbp register overwritten in Win 64 version of callToJavascript stub

RESOLVED FIXED Bug 124361

REGRESSION (r159276): rbp register overwritten in Win 64 version of callToJavascript stub

https://bugs.webkit.org/show_bug.cgi?id=124361

Summary REGRESSION (r159276): rbp register overwritten in Win 64 version of callToJav...

Michael Saboff

Reported 2013-11-14 08:52:35 PST

In the inline assembly stub for MSVC X86_64, there is an error in the instruction to save RBP: push rbp => mov rbp, rax ; Save previous frame pointer mov rbp, rsp MS inline assembly is Intel format (i.e. <opcode> <dest>, <src>, ...) The rbp and tax need to be swapped.

Attachments
Patch (1.12 KB, patch) 2013-11-14 09:01 PST, Michael Saboff	oliver: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Michael Saboff

Comment 1 2013-11-14 09:01:18 PST

Created attachment 216944 [details] Patch

Michael Saboff

Comment 2 2013-11-14 10:11:15 PST

Committed r159290: <http://trac.webkit.org/changeset/159290>

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Other

OS Windows 7

Product WebKit

Component JavaScriptCore

Assignee

Michael Saboff

Reported

2013-11-14 08:52 PST

Modified

2013-11-14 10:11 PST History

CC List

0 users

URL

Keywords

Depends on

Blocks

116888

Dependancies

tree graph