RESOLVED FIXED 189227
The watchdog sometimes fails to terminate a script. 
https://bugs.webkit.org/show_bug.cgi?id=189227
Summary The watchdog sometimes fails to terminate a script.
Mark Lam
Reported 2018-09-01 22:59:00 PDT
<rdar://problem/39932857>
Attachments
proposed patch. (7.87 KB, patch)
2018-09-01 23:38 PDT, Mark Lam 		ews-watchlist: commit-queue-
DetailsFormatted DiffDiff
proposed patch. (7.87 KB, patch)
2018-09-02 09:18 PDT, Mark Lam 		mark.lam: review-
ews-watchlist: commit-queue-
DetailsFormatted DiffDiff
proposed patch. (10.24 KB, patch)
2018-09-03 11:40 PDT, Mark Lam 		mark.lam: review-
DetailsFormatted DiffDiff
proposed patch. (10.24 KB, patch)
2018-09-03 13:01 PDT, Mark Lam 		mark.lam: review-
DetailsFormatted DiffDiff
proposed patch. (10.23 KB, patch)
2018-09-03 13:08 PDT, Mark Lam 		saam: review+
mark.lam: commit-queue-
DetailsFormatted DiffDiff
patch for landing. (11.15 KB, patch)
2018-09-03 16:15 PDT, Mark Lam 		no flags
DetailsFormatted DiffDiff
Show Obsolete (5) View All Add attachment proposed patch, testcase, etc.
Mark Lam
Comment 1 2018-09-01 23:38:19 PDT
Created attachment 348728 [details] proposed patch.
EWS Watchlist
Comment 2 2018-09-02 01:02:47 PDT
Comment on attachment 348728 [details] proposed patch. Attachment 348728 [details] did not pass jsc-ews (mac): Output: https://webkit-queues.webkit.org/results/9067847 New failing tests: stress/regress-189227-watchdog-on-infinite-loop.js.dfg-eager stress/regress-189227-watchdog-on-infinite-loop.js.default stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-small-pool stress/regress-189227-watchdog-on-infinite-loop.js.ftl-eager-no-cjit-b3o1 stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-validate-sampling-profiler stress/regress-189227-watchdog-on-infinite-loop.js.ftl-eager-no-cjit stress/regress-189227-watchdog-on-infinite-loop.js.no-ftl stress/regress-189227-watchdog-on-infinite-loop.js.dfg-eager-no-cjit-validate stress/regress-189227-watchdog-on-infinite-loop.js.no-cjit-collect-continuously stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-b3o1 stress/regress-189227-watchdog-on-infinite-loop.js.no-cjit-validate-phases stress/regress-189227-watchdog-on-infinite-loop.js.no-llint stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-no-inline-validate stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-no-put-stack-validate apiTests
Saam Barati
Comment 3 2018-09-02 09:13:40 PDT
Comment on attachment 348728 [details] proposed patch. View in context: https://bugs.webkit.org/attachment.cgi?id=348728&action=review > Source/JavaScriptCore/dfg/DFGOperations.cpp:2853 > + if (UNLIKELY(vm.needTrapHandling())) If you make CheckTraps exit to check_traps, you won’t need this code
Mark Lam
Comment 4 2018-09-02 09:18:29 PDT
Created attachment 348733 [details] proposed patch. Adjusted test heuristics to hopefully eliminate flakiness.
EWS Watchlist
Comment 5 2018-09-02 10:48:01 PDT
Comment on attachment 348733 [details] proposed patch. Attachment 348733 [details] did not pass jsc-ews (mac): Output: https://webkit-queues.webkit.org/results/9071026 New failing tests: stress/regress-189227-watchdog-on-infinite-loop.js.dfg-eager stress/regress-189227-watchdog-on-infinite-loop.js.dfg-eager-no-cjit-validate stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-small-pool stress/regress-189227-watchdog-on-infinite-loop.js.ftl-eager-no-cjit-b3o1 stress/regress-189227-watchdog-on-infinite-loop.js.no-cjit-validate-phases stress/regress-189227-watchdog-on-infinite-loop.js.no-ftl stress/regress-189227-watchdog-on-infinite-loop.js.no-cjit-collect-continuously stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-b3o1 stress/regress-189227-watchdog-on-infinite-loop.js.no-llint stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-no-inline-validate stress/regress-189227-watchdog-on-infinite-loop.js.ftl-no-cjit-no-put-stack-validate apiTests
Saam Barati
Comment 6 2018-09-02 11:46:26 PDT
Are you going to make the change where you fix how check_traps is lowered in the bytecode parser?
Mark Lam
Comment 7 2018-09-02 11:59:24 PDT
(In reply to Saam Barati from comment #6) > Are you going to make the change where you fix how check_traps is lowered in > the bytecode parser? Yes, I should take this patch out of review
Mark Lam
Comment 8 2018-09-03 11:40:23 PDT
Created attachment 348785 [details] proposed patch. Let's get some EWS testing.
Mark Lam
Comment 9 2018-09-03 12:27:16 PDT
Comment on attachment 348785 [details] proposed patch. The EWS is still consistently reproducing a failure on the new test. I'm going to investigate this first.
Mark Lam
Comment 10 2018-09-03 13:01:48 PDT
Created attachment 348786 [details] proposed patch. Looks like the issue is that on some bots, the watchdog thread can't get a time slice before the main thread runs to completion. Let's make the test timeout ridiculously large to give it adequate margin.
Mark Lam
Comment 11 2018-09-03 13:07:00 PDT
Comment on attachment 348786 [details] proposed patch. This margin is still insufficient. In the end, I cannot make this test not racy. I have to make the test a true infinite loop and rely on the jsc test harness to timeout the test if it hangs. New patch coming soon.
Mark Lam
Comment 12 2018-09-03 13:08:11 PDT
Created attachment 348787 [details] proposed patch.
Saam Barati
Comment 13 2018-09-03 16:04:13 PDT
Comment on attachment 348787 [details] proposed patch. View in context: https://bugs.webkit.org/attachment.cgi?id=348787&action=review > Source/JavaScriptCore/dfg/DFGSpeculativeJIT32_64.cpp:3967 > + compileCheckTraps(node); You should also call noResult here just for ensuring good style in case CheckTraps ever gets any child nodes > Source/JavaScriptCore/dfg/DFGSpeculativeJIT64.cpp:4448 > + compileCheckTraps(node); Ditto
Mark Lam
Comment 14 2018-09-03 16:15:13 PDT
Comment on attachment 348787 [details] proposed patch. View in context: https://bugs.webkit.org/attachment.cgi?id=348787&action=review Thanks for the review. >> Source/JavaScriptCore/dfg/DFGSpeculativeJIT32_64.cpp:3967 >> + compileCheckTraps(node); > > You should also call noResult here just for ensuring good style in case CheckTraps ever gets any child nodes I'll add the noResult(node) call to the implementation of compileCheckTraps().
Mark Lam
Comment 15 2018-09-03 16:15:54 PDT
Created attachment 348794 [details] patch for landing.
WebKit Commit Bot
Comment 16 2018-09-03 19:48:20 PDT
Comment on attachment 348794 [details] patch for landing. Clearing flags on attachment: 348794 Committed r235605: <https://trac.webkit.org/changeset/235605>
WebKit Commit Bot
Comment 17 2018-09-03 19:48:21 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.