Skip to content

Assertion failure in in DbCheckPostLower::Check #6766

New issue
New issue
Open
Open
Assertion failure in in DbCheckPostLower::Check#6766
Labels
Bug
@zhunki

Description

@zhunki
zhunki
opened on Dec 14, 2021

the following poc trigger a assertion faliure in "debug" build on ubuntu.

ch -maxinterpretcount:10 -maxsimplejitruncount:100 -bgjit- poc.js

function v0() {
    let v3 = 0;
    do {
        let v4 = -186432755;
        v4 %= v4;
    } while (v3 !== v3);
    v3 += v3;
}
for (let index = 0; index < 10000; index++) {
  v0()  
}

#0 0x0000555556d6714d in DbCheckPostLower::Check (this=0x7fffffff7810)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/DbCheckPostLower.cpp:81
#1 0x0000555556b2bfbd in Func::EndPhase (this=0x7fffffff8980, tag=Js::LowererPhase, dump=true)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/Func.cpp:1364
#2 0x000055555686fdf7 in AutoCodeGenPhase::~AutoCodeGenPhase (this=0x7fffffff8180)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/Func.h:1143
#3 0x0000555556b28bf3 in Func::TryCodegen (this=0x7fffffff8980)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/Func.cpp:476
#4 0x0000555556b28330 in Func::Codegen (alloc=0x7fffffff8f40, workItem=0x7ff7f4374030,
threadContextInfo=0x555557ebeed8, scriptContextInfo=0x555557ef0d88, outputData=0x7fffffff9380,
epInfo=0x7ff7f43e4280, runtimeInfo=0x0, polymorphicInlineCacheInfo=0x7ff7f43bf400,
codeGenAllocators=0x555557efd6f8, codeGenProfiler=0x0, isBackgroundJIT=false)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/Func.cpp:325
#5 0x000055555694bdc0 in NativeCodeGenerator::CodeGen (this=0x555557ef2558, pageAllocator=
0x555557ebf260, workItemData=0x555557f05ad0, jitWriteData=..., foreground=true,
epInfo=0x7ff7f43e4280)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/NativeCodeGenerator.cpp:890
#6 0x000055555694da58 in NativeCodeGenerator::CodeGen (this=0x555557ef2558,
pageAllocator=0x555557ebf260, workItem=0x555557f05aa8, foreground=true)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/NativeCodeGenerator.cpp:1007
#7 0x00005555569507d7 in NativeCodeGenerator::Process (this=0x555557ef2558, job=0x555557f05ab0,
threadData=0x0)
at /home/zhunki/workspace/ChakraCore-master/lib/Backend/NativeCodeGenerator.cpp:1895
#8 0x00005555569b9804 in JsUtil::ForegroundJobProcessor::Process (job=0x555557f05ab0)
at /home/zhunki/workspace/ChakraCore-master/lib/Common/Common/Jobs.cpp:426
#9 0x000055555695f9f3 in JsUtil::ForegroundJobProcessor::PrioritizeJobAndWait<NativeCodeGenerator, Js::EntryPointInfo*> (this=0x555557ef26d8, manager=0x555557ef2558, holder=0x7ff7f43e4280,

Metadata

Metadata

Assignees

No one assigned

    Labels

    Bug

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions