Bug 76413 - crash in JIT with PAX memory protection
Summary: crash in JIT with PAX memory protection
Status: UNCONFIRMED
Alias: None
Product: WebKit
Classification: Unclassified
Component: JavaScriptCore (show other bugs)
Version: 528+ (Nightly build)
Hardware: PC Linux
: P2 Normal
Assignee: Nobody
URL: http://bugs.debian.org/605132
Keywords:
: 105730 147542 (view as bug list)
Depends on:
Blocks:
 
Reported: 2012-01-16 18:26 PST by Michael Gilbert
Modified: 2015-08-02 14:42 PDT (History)
4 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Gilbert 2012-01-16 18:26:07 PST 
Webkit's JIT compiler is incompatible with strong memory protections as provided by PAX.  See debian bug report: http://bugs.debian.org/605132
Comment 1 Gavin Barraclough 2012-01-17 10:32:04 PST 
Anyone interested in making this work should have two options here.

(1) turn on ASSEMBLER_WX_EXCLUSIVE.  This may not be well tested lately in ToT, but will stop allocating WX memory.

(2) Set the flags in Platform.h to compile in both the JIT & the interpreter.  If the JIT buffer allocation fails it should automatically fall back to use the JIT.
Comment 2 Stijn van Drongelen 2013-01-08 05:28:45 PST 
*** Bug 105730 has been marked as a duplicate of this bug. ***
Comment 3 Alexey Proskuryakov 2015-08-02 14:01:10 PDT 
*** Bug 147542 has been marked as a duplicate of this bug. ***