Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ScavengerVisitorBase<true>::VisitPointers segfault on JIT-NOINTRINSIFY-ReleaseSIMARM #59879

Open
bkonyi opened this issue Jan 10, 2025 · 1 comment
Open

ScavengerVisitorBase<true>::VisitPointers segfault on JIT-NOINTRINSIFY-ReleaseSIMARM #59879

bkonyi opened this issue Jan 10, 2025 · 1 comment
Labels
area-vm Use area-vm for VM related issues, including code coverage, and the AOT and JIT backends. dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) gardening P3 A lower priority bug or feature request triaged Issue has been triaged by sub team

Comments

@bkonyi
Copy link
Contributor

bkonyi commented Jan 10, 2025

Crash:

===== CRASH =====
si_signo=Segmentation fault(11), si_code=SEGV_MAPERR(1), si_addr=0x4178a68c
version=3.7.0-edge (main) (Unknown timestamp) on "linux_simarm"
pid=325014, thread=325016, isolate_group=main(0x5a9d2da0), isolate=(nil)((nil))
os=linux, arch=arm, comp=no, sim=yes
isolate_instructions=5874fb80, vm_instructions=5874fb80
fp=f75fee48, sp=f75fee00, pc=58a90491
  pc 0x58a90491 fp 0xf75fee48 dart::ScavengerVisitorBase<true>::VisitPointers+0x41
  pc 0x58a40463 fp 0xf75feed8 dart::StackFrame::VisitObjectPointers+0x373
  pc 0x58a4f7da fp 0xf75fef78 dart::Thread::VisitObjectPointers+0x23a
  pc 0x5893b58c fp 0xf75fefb8 dart::IsolateGroup::VisitObjectPointers+0x9c
  pc 0x58a89a14 fp 0xf75ff028 void dart::Scavenger::IterateRoots<true>+0x144
  pc 0x58a89617 fp 0xf75ff108 dart::ScavengerVisitorBase<true>::ProcessRoots+0xb7
  pc 0x58a8913e fp 0xf75ff178 dart::ParallelScavengerTask::RunEnteredIsolateGroup+0x4e
  pc 0x58a84322 fp 0xf75ff1b8 dart::SafepointTask::Run+0x72
  pc 0x58a527b7 fp 0xf75ff248 dart::ThreadPool::WorkerLoop+0x137
  pc 0x58a52a8c fp 0xf75ff288 dart::ThreadPool::Worker::Main+0x7c
  pc 0x589f2977 fp 0xf75ff358 dart::ThreadStart+0xe7
  pc 0xf7ead635 fp 0xf75ff428 /lib/i386-linux-gnu/libpthread.so.0+0x7635
-- End of DumpStackTrace

Reproduction:

-- BEGIN REPRODUCE  --

DART SDK REVISION: 

dart runtime/tools/dartfuzz/dartfuzz.dart --no-fp --no-ffi --flat --seed 1781286623 fuzz.dart

-- RUN 1 --

out/ReleaseSIMRISCV64/dart --old_gen_heap_size=128 /b/s/w/itsasan1pf/dart_fuzzDXFKEX/fuzz.dart

-- RUN 2 --

out/ReleaseSIMARM/dart --intrinsify=false --old_gen_heap_size=128 /b/s/w/itsasan1pf/dart_fuzzDXFKEX/fuzz.dart

-- END REPRODUCE  --

Full logs
@bkonyi bkonyi added area-vm Use area-vm for VM related issues, including code coverage, and the AOT and JIT backends. P3 A lower priority bug or feature request gardening dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) triaged Issue has been triaged by sub team labels Jan 10, 2025
@bkonyi
Copy link
Contributor Author

bkonyi commented Jan 10, 2025

FYI @rmacnak-google

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area-vm Use area-vm for VM related issues, including code coverage, and the AOT and JIT backends. dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) gardening P3 A lower priority bug or feature request triaged Issue has been triaged by sub team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bkonyi