Bug 132821 - [EFL] Web Inspector: Web Inspector crashed with Segmentation Fault on 32 Bit OS
Summary: [EFL] Web Inspector: Web Inspector crashed with Segmentation Fault on 32 Bit OS
Status: RESOLVED WONTFIX
Alias: None
Product: WebKit
Classification: Unclassified
Component: Web Inspector (show other bugs)
Version: 528+ (Nightly build)
Hardware: All All
: P2 Normal
Assignee: Nobody
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2014-05-12 06:27 PDT by Tanay
Modified: 2017-03-11 10:40 PST (History)
11 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Tanay 2014-05-12 06:27:50 PDT 
Launch EWebLauncher--> cntrl+alt+i to launch web inspector
Shows the inspector window and crashes.
Comment 1 Radar WebKit Bug Importer 2014-05-12 06:28:13 PDT 
<rdar://problem/16883479>
Comment 2 Tanay 2014-05-12 06:30:37 PDT 
(In reply to comment #1)
> <rdar://problem/16883479>

Backtrace from GDB

#0  0xb71b20ed in WTFCrash () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#1  0xb6dfb824 in JSC::DFG::FixupPhase::injectTypeConversionsInBlock(JSC::DFG::BasicBlock*) ()
   from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#2  0xb6e015b3 in JSC::DFG::FixupPhase::run() () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#3  0xb6e01a76 in bool JSC::DFG::runPhase<JSC::DFG::FixupPhase>(JSC::DFG::Graph&) () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#4  0xb6e01baf in JSC::DFG::performFixup(JSC::DFG::Graph&) () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#5  0xb6e5be74 in JSC::DFG::Plan::compileInThreadImpl(JSC::DFG::LongLivedState&) () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#6  0xb6e5c3ba in JSC::DFG::Plan::compileInThread(JSC::DFG::LongLivedState&, JSC::DFG::ThreadData*) ()
   from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#7  0xb6df6f18 in JSC::DFG::compile(JSC::VM&, JSC::CodeBlock*, JSC::CodeBlock*, JSC::DFG::CompilationMode, unsigned int, JSC::Operands<JSC::JSValue, JSC::OperandValueTraits<JSC::JSValue> > const&, WTF::PassRefPtr<JSC::DeferredCompilationCallback>) () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#8  0xb6f78c75 in operationOptimize () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#9  0xa4bbc9da in ?? ()
#10 0xb71a198a in llint_entry () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#11 0xb719d4e1 in callToJavaScript () from /home/tanay.c/webkit/WebKitBuild/Release/lib/libjavascriptcore_efl.so.0
#12 0xa597dd30 in ?? ()
Comment 3 Csaba Osztrogonác 2014-05-12 07:40:26 PDT 
I didn't manage to reproduce this crash on top of trunk (r168619)
on my Ubuntu 12.04 (x86_64). Do you work on other revision or
architecture, or not the default config?
Comment 4 Tanay 2014-05-12 23:00:55 PDT 
(In reply to comment #3)
> I didn't manage to reproduce this crash on top of trunk (r168619)
> on my Ubuntu 12.04 (x86_64). Do you work on other revision or
> architecture, or not the default config?

I gave it a shot with the latest revision r168673 but it crashes. 
I am using the default config with supported architectures i686 i386.
I could not find any relevant information on the support for web inspector in 32 bit architectures.
Comment 5 Csaba Osztrogonác 2014-05-12 23:30:46 PDT 
(In reply to comment #4)
> I gave it a shot with the latest revision r168673 but it crashes. 
> I am using the default config with supported architectures i686 i386.
> I could not find any relevant information on the support for web inspector in 32 bit architectures.

Did you get this crash on x86_64 and x86 (32 bit) too?

Did you get this crash in release and debug mode too?

Which Linux distribution and GCC version do you use?
This bug might be related to a specific GCC version
and/or a distro specific compiler option.
Comment 6 Tanay 2014-05-13 02:16:10 PDT 
(In reply to comment #5)

> Did you get this crash on x86_64 and x86 (32 bit) too?
> 
> Did you get this crash in release and debug mode too?
> 
> Which Linux distribution and GCC version do you use?
> This bug might be related to a specific GCC version
> and/or a distro specific compiler option.

1) lscpu gives me the following info:
Architecture: i686
CPU op-mode(s): 32-bit, 64-bit

2) Ubuntu 12.04 distribution (32 bit kernel) on 64 bit CPU  

3) GCC version 4.7.3 

4) Using the Release build. (Debug builds fail due to RAM constraints)

I do not have a x86_64 (64 bit OS) configuration at present, hence I cannot verify if the crash happens on a 64 bit OS.
Comment 7 Csaba Osztrogonác 2014-05-13 03:37:56 PDT 
Thanks for the information, it seems it is a bug in 32 bit 
backend of JSC. It might be a DFG JIT bug. 

Unfortunately I don't have installed 32 bit Linux or OSX. :(

I cc JSC developers, I hope they have any hints what is this crash.
And maybe it is a valid bug on OSX too, I can't check it myself.
Comment 8 Tanay 2014-05-27 02:32:53 PDT 
(In reply to comment #7)
> Thanks for the information, it seems it is a bug in 32 bit 
> backend of JSC. It might be a DFG JIT bug. 
> 
> Unfortunately I don't have installed 32 bit Linux or OSX. :(
> 
> I cc JSC developers, I hope they have any hints what is this crash.
> And maybe it is a valid bug on OSX too, I can't check it myself.

Just an update, I have disabled the JIT and am able to launch the Web Inspector. This further confirms that the problem indeed lies in the 32 bit backend of JSC.

The issue still persists with JIT enabled.
Comment 9 Michael Catanzaro 2017-03-11 10:40:04 PST 
Closing this bug because the EFL port has been removed from trunk.

If you feel this bug applies to a different upstream WebKit port and was closed in error, please either update the title and reopen the bug, or leave a comment to request this.