76413 – crash in JIT with PAX memory protection

UNCONFIRMED 76413

crash in JIT with PAX memory protection

https://bugs.webkit.org/show_bug.cgi?id=76413

Summary crash in JIT with PAX memory protection

Michael Gilbert

Reported 2012-01-16 18:26:07 PST

Webkit's JIT compiler is incompatible with strong memory protections as provided by PAX. See debian bug report: http://bugs.debian.org/605132

Attachments
Add attachment proposed patch, testcase, etc.

Gavin Barraclough

Comment 1 2012-01-17 10:32:04 PST

Anyone interested in making this work should have two options here. (1) turn on ASSEMBLER_WX_EXCLUSIVE. This may not be well tested lately in ToT, but will stop allocating WX memory. (2) Set the flags in Platform.h to compile in both the JIT & the interpreter. If the JIT buffer allocation fails it should automatically fall back to use the JIT.

Stijn van Drongelen

Comment 2 2013-01-08 05:28:45 PST

*** Bug 105730 has been marked as a duplicate of this bug. ***

Alexey Proskuryakov

Comment 3 2015-08-02 14:01:10 PDT

*** Bug 147542 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.

Status UNCONFIRMED

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware PC

OS Linux

Product WebKit

Component JavaScriptCore

Assignee

Nobody

Reported

2012-01-16 18:26 PST

Modified

2015-08-02 14:42 PDT History

CC List

4 users Show

URL

http://bugs.debian.org/605132

Keywords

Duplicates (2)

105730 147542 View as bug list

Depends on

Blocks