Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[dartfuzz] runtime/vm/code_patcher_x64.cc: 80: error: Expected call [CODE_REG + offs] #55622

Closed
alexmarkov opened this issue May 2, 2024 · 0 comments
Closed

[dartfuzz] runtime/vm/code_patcher_x64.cc: 80: error: Expected call [CODE_REG + offs] #55622

alexmarkov opened this issue May 2, 2024 · 0 comments
Labels
area-vm Use area-vm for VM related issues, including code coverage, FFI, and the AOT and JIT backends. dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) gardening P3 A lower priority bug or feature request triaged Issue has been triaged by sub team

Comments

@alexmarkov
Copy link
Contributor 

=== FAILURE ===
command: out/ReleaseX64/dart --profiler --max_profile_depth=63 --max_profile_depth=63 --mark_when_idle --no_polymorphic_with_deopt --no_use_register_cc --inlining_callee_size_threshold=204 pkg/compiler/lib/src/dart2js.dart --invoker=test --platform-binaries=out/ReleaseX64 --out=out/dartfuzz/5.js --no-source-maps pkg/compiler/lib/src/util/memory_compiler.dart
exitCode: -6
stdout:

stderr:
../../runtime/vm/code_patcher_x64.cc: 80: error: Expected `call [CODE_REG + offs]` at 7fc6b008903f
version=3.5.0-edge (main) (Unknown timestamp) on "linux_x64"
pid=1112495, thread=1112536, isolate_group=kernel-service(0x7fc6b800ec60), isolate=kernel-service(0x7fc6b8016a60)
os=linux, arch=x64, comp=no, sim=no
isolate_instructions=7fc6c973e000, vm_instructions=55cdd7f9e4a0
fp=7fc6abdfc9a0, sp=7fc6abdfc870, pc=55cdd81abe6c
  pc 0x000055cdd81abe6c fp 0x00007fc6abdfc9a0 dart::Profiler::DumpStackTrace+0x7c
  pc 0x000055cdd7f9e694 fp 0x00007fc6abdfca80 dart::Assert::Fail+0x84
  pc 0x000055cdd80dddb9 fp 0x00007fc6abdfcad0 dart::UnoptimizedCall::UnoptimizedCall+0x119
  pc 0x000055cdd80dda1b fp 0x00007fc6abdfcb10 dart::CodePatcher::GetInstanceCallAt+0x1b
  pc 0x000055cdd81ee71e fp 0x00007fc6abdfd1b0 dart::DRT_SwitchableCallMiss+0x13e
  pc 0x00007fc6cca82dd3 fp 0x00007fc6abdfd1f0 Unknown symbol
  pc 0x00007fc6cca832de fp 0x00007fc6abdfd230 Unknown symbol
  pc 0x00007fc6b008903f fp 0x00007fc6abdfd260 Unknown symbol
  pc 0x00007fc6c9fe33e3 fp 0x00007fc6abdfd2a0 Unknown symbol
  pc 0x00007fc6ca02b060 fp 0x00007fc6abdfd2d8 Unknown symbol
  pc 0x00007fc6c9884c19 fp 0x00007fc6abdfd328 Unknown symbol
  pc 0x00007fc6ca02a9d6 fp 0x00007fc6abdfd378 Unknown symbol
  pc 0x00007fc6ca02e453 fp 0x00007fc6abdfd420 Unknown symbol
  pc 0x00007fc6ca02f634 fp 0x00007fc6abdfd490 Unknown symbol
  pc 0x00007fc6c9fe178d fp 0x00007fc6abdfd520 Unknown symbol
  pc 0x00007fc6c9fe1b09 fp 0x00007fc6abdfd5b8 Unknown symbol
  pc 0x00007fc6ca031624 fp 0x00007fc6abdfd638 Unknown symbol
  pc 0x00007fc6ca032293 fp 0x00007fc6abdfd6c0 Unknown symbol
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfd710 Unknown symbol
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfd790 Unknown symbol
  pc 0x00007fc6c981497a fp 0x00007fc6abdfd7f8 Unknown symbol
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfd890 Unknown symbol
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfd8e0 Unknown symbol
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfd940 Unknown symbol
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfd9c0 Unknown symbol
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfda08 Unknown symbol
  pc 0x00007fc6ca17ed44 fp 0x00007fc6abdfda50 Unknown symbol
  pc 0x00007fc6cca88e8e fp 0x00007fc6abdfda80 Unknown symbol
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfdad0 Unknown symbol
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfdb50 Unknown symbol
  pc 0x00007fc6c981497a fp 0x00007fc6abdfdbb8 Unknown symbol
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfdc50 Unknown symbol
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfdca0 Unknown symbol
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfdd00 Unknown symbol
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfdd80 Unknown symbol
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfddc8 Unknown symbol
  pc 0x00007fc6ca17ed44 fp 0x00007fc6abdfde10 Unknown symbol
  pc 0x00007fc6cca88e8e fp 0x00007fc6abdfde40 Unknown symbol
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfde90 Unknown symbol
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfdf10 Unknown symbol
  pc 0x00007fc6c981497a fp 0x00007fc6abdfdf78 Unknown symbol
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfe010 Unknown symbol
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfe060 Unknown symbol
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfe0c0 Unknown symbol
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfe140 Unknown symbol
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfe188 Unknown symbol
  pc 0x00007fc6ca03e86a fp 0x00007fc6abdfe1c8 Unknown symbol
  pc 0x00007fc6ca036eba fp 0x00007fc6abdfe240 Unknown symbol
  pc 0x00007fc6ca037097 fp 0x00007fc6abdfe2a0 Unknown symbol
  pc 0x00007fc6c980fdaf fp 0x00007fc6abdfe330 Unknown symbol
  pc 0x00007fc6c9814ebd fp 0x00007fc6abdfe380 Unknown symbol
  pc 0x00007fc6ca039f1d fp 0x00007fc6abdfe3c8 Unknown symbol
  pc 0x00007fc6ca03a285 fp 0x00007fc6abdfe408 Unknown symbol
  pc 0x00007fc6ca03a486 fp 0x00007fc6abdfe430 Unknown symbol
  pc 0x00007fc6c980c869 fp 0x00007fc6abdfe470 Unknown symbol
  pc 0x00007fc6c980dfe0 fp 0x00007fc6abdfe4f0 Unknown symbol
  pc 0x00007fc6c980af13 fp 0x00007fc6abdfe528 Unknown symbol
  pc 0x00007fc6c980afd9 fp 0x00007fc6abdfe558 Unknown symbol
  pc 0x00007fc6c980d20d fp 0x00007fc6abdfe5c0 Unknown symbol
  pc 0x00007fc6ca17fa2c fp 0x00007fc6abdfe618 Unknown symbol
  pc 0x00007fc6cca83216 fp 0x00007fc6abdfe690 Unknown symbol
  pc 0x000055cdd80e0535 fp 0x00007fc6abdfe6f0 dart::DartEntry::InvokeFunction+0x165
  pc 0x000055cdd80e1f33 fp 0x00007fc6abdfe730 dart::DartLibraryCalls::HandleMessage+0x123
  pc 0x000055cdd80feecf fp 0x00007fc6abdfecc0 dart::IsolateMessageHandler::HandleMessage+0x2bf
  pc 0x000055cdd81213b9 fp 0x00007fc6abdfed30 dart::MessageHandler::HandleMessages+0x119
  pc 0x000055cdd81217a8 fp 0x00007fc6abdfed80 dart::MessageHandler::TaskCallback+0x1e8
  pc 0x000055cdd821f837 fp 0x00007fc6abdfee00 dart::ThreadPool::WorkerLoop+0x137
  pc 0x000055cdd821fac2 fp 0x00007fc6abdfee30 dart::ThreadPool::Worker::Main+0x72
  pc 0x000055cdd81a8d36 fp 0x00007fc6abdfeef0 dart::ThreadStart+0xd6
-- End of DumpStackTrace
  pc 0x0000000000000000 fp 0x00007fc6abdfd1f0 sp 0x0000000000000000 [Stub] CallToRuntime
  pc 0x00007fc6cca832de fp 0x00007fc6abdfd230 sp 0x00007fc6abdfd200 [Stub] SwitchableCallMiss
  pc 0x00007fc6b008903f fp 0x00007fc6abdfd260 sp 0x00007fc6abdfd240 [Optimized] BinaryBuilder.readByte
  pc 0x00007fc6c9fe33e3 fp 0x00007fc6abdfd2a0 sp 0x00007fc6abdfd270 [Unoptimized] BinaryBuilder.readUInt30
  pc 0x00007fc6ca02b060 fp 0x00007fc6abdfd2d8 sp 0x00007fc6abdfd2b0 [Unoptimized] BinaryBuilder.readStringTable.<anonymous closure>
  pc 0x00007fc6c9884c19 fp 0x00007fc6abdfd328 sp 0x00007fc6abdfd2e8 [Optimized] new _List@0150898.generate
  pc 0x00007fc6ca02a9d6 fp 0x00007fc6abdfd378 sp 0x00007fc6abdfd338 [Unoptimized] BinaryBuilder.readStringTable
  pc 0x00007fc6ca02e453 fp 0x00007fc6abdfd420 sp 0x00007fc6abdfd388 [Unoptimized] BinaryBuilder._readOneComponent@24015961
  pc 0x00007fc6ca02f634 fp 0x00007fc6abdfd490 sp 0x00007fc6abdfd430 [Unoptimized] BinaryBuilder.readComponent.<anonymous closure>
  pc 0x00007fc6c9fe178d fp 0x00007fc6abdfd520 sp 0x00007fc6abdfd4a0 [Unoptimized] Timeline.timeSync
  pc 0x00007fc6c9fe1b09 fp 0x00007fc6abdfd5b8 sp 0x00007fc6abdfd530 [Unoptimized] BinaryBuilder.readComponent
  pc 0x00007fc6ca031624 fp 0x00007fc6abdfd638 sp 0x00007fc6abdfd5c8 [Unoptimized] ProcessedOptions.loadComponent
  pc 0x00007fc6ca032293 fp 0x00007fc6abdfd6c0 sp 0x00007fc6abdfd648 [Unoptimized] ProcessedOptions.loadSdkSummary
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfd710 sp 0x00007fc6abdfd6d0 [Unoptimized] _SuspendState@4048458._createAsyncCallbacks@4048458.thenCallback
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfd790 sp 0x00007fc6abdfd720 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c981497a fp 0x00007fc6abdfd7f8 sp 0x00007fc6abdfd7a0 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfd890 sp 0x00007fc6abdfd808 [Unoptimized] _CustomZone@4048458.runUnary
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfd8e0 sp 0x00007fc6abdfd8a0 [Unoptimized] _FutureListener@4048458.handleValue
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfd940 sp 0x00007fc6abdfd8f0 [Unoptimized] _Future@4048458._propagateToListeners@4048458.handleValueCallback
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfd9c0 sp 0x00007fc6abdfd950 [Unoptimized] _Future@4048458._propagateToListeners@4048458
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfda08 sp 0x00007fc6abdfd9d0 [Unoptimized] _Future@4048458._completeWithValue@4048458
  pc 0x00007fc6ca17ed44 fp 0x00007fc6abdfda50 sp 0x00007fc6abdfda18 [Unoptimized] _SuspendState@4048458._returnAsync@4048458
  pc 0x00007fc6cca88e8e fp 0x00007fc6abdfda80 sp 0x00007fc6abdfda60 [Stub] ReturnAsync
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfdad0 sp 0x00007fc6abdfda90 [Unoptimized] _SuspendState@4048458._createAsyncCallbacks@4048458.thenCallback
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfdb50 sp 0x00007fc6abdfdae0 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c981497a fp 0x00007fc6abdfdbb8 sp 0x00007fc6abdfdb60 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfdc50 sp 0x00007fc6abdfdbc8 [Unoptimized] _CustomZone@4048458.runUnary
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfdca0 sp 0x00007fc6abdfdc60 [Unoptimized] _FutureListener@4048458.handleValue
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfdd00 sp 0x00007fc6abdfdcb0 [Unoptimized] _Future@4048458._propagateToListeners@4048458.handleValueCallback
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfdd80 sp 0x00007fc6abdfdd10 [Unoptimized] _Future@4048458._propagateToListeners@4048458
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfddc8 sp 0x00007fc6abdfdd90 [Unoptimized] _Future@4048458._completeWithValue@4048458
  pc 0x00007fc6ca17ed44 fp 0x00007fc6abdfde10 sp 0x00007fc6abdfddd8 [Unoptimized] _SuspendState@4048458._returnAsync@4048458
  pc 0x00007fc6cca88e8e fp 0x00007fc6abdfde40 sp 0x00007fc6abdfde20 [Stub] ReturnAsync
  pc 0x00007fc6ca17e98c fp 0x00007fc6abdfde90 sp 0x00007fc6abdfde50 [Unoptimized] _SuspendState@4048458._createAsyncCallbacks@4048458.thenCallback
  pc 0x00007fc6c9814664 fp 0x00007fc6abdfdf10 sp 0x00007fc6abdfdea0 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c981497a fp 0x00007fc6abdfdf78 sp 0x00007fc6abdfdf20 [Unoptimized] _rootRunUnary@4048458
  pc 0x00007fc6c9928ee2 fp 0x00007fc6abdfe010 sp 0x00007fc6abdfdf88 [Unoptimized] _CustomZone@4048458.runUnary
  pc 0x00007fc6c99290e6 fp 0x00007fc6abdfe060 sp 0x00007fc6abdfe020 [Unoptimized] _FutureListener@4048458.handleValue
  pc 0x00007fc6ca03de8b fp 0x00007fc6abdfe0c0 sp 0x00007fc6abdfe070 [Unoptimized] _Future@4048458._propagateToListeners@4048458.handleValueCallback
  pc 0x00007fc6ca03d75f fp 0x00007fc6abdfe140 sp 0x00007fc6abdfe0d0 [Unoptimized] _Future@4048458._propagateToListeners@4048458
  pc 0x00007fc6ca03e787 fp 0x00007fc6abdfe188 sp 0x00007fc6abdfe150 [Unoptimized] _Future@4048458._completeWithValue@4048458
  pc 0x00007fc6ca03e86a fp 0x00007fc6abdfe1c8 sp 0x00007fc6abdfe198 [Unoptimized] _Future@4048458._asyncCompleteWithValue@4048458.<anonymous closure>
  pc 0x00007fc6ca036eba fp 0x00007fc6abdfe240 sp 0x00007fc6abdfe1d8 [Unoptimized] _rootRun@4048458
  pc 0x00007fc6ca037097 fp 0x00007fc6abdfe2a0 sp 0x00007fc6abdfe250 [Unoptimized] _rootRun@4048458
  pc 0x00007fc6c980fdaf fp 0x00007fc6abdfe330 sp 0x00007fc6abdfe2b0 [Unoptimized] _CustomZone@4048458.run
  pc 0x00007fc6c9814ebd fp 0x00007fc6abdfe380 sp 0x00007fc6abdfe340 [Unoptimized] _CustomZone@4048458.bindCallback.<anonymous closure>
  pc 0x00007fc6ca039f1d fp 0x00007fc6abdfe3c8 sp 0x00007fc6abdfe390 [Unoptimized] _microtaskLoop@4048458
  pc 0x00007fc6ca03a285 fp 0x00007fc6abdfe408 sp 0x00007fc6abdfe3d8 [Unoptimized] _startMicrotaskLoop@4048458
  pc 0x00007fc6ca03a486 fp 0x00007fc6abdfe430 sp 0x00007fc6abdfe418 [Unoptimized] _startMicrotaskLoop@4048458
  pc 0x00007fc6c980c869 fp 0x00007fc6abdfe470 sp 0x00007fc6abdfe440 [Unoptimized] _runPendingImmediateCallback@1026248
  pc 0x00007fc6c980dfe0 fp 0x00007fc6abdfe4f0 sp 0x00007fc6abdfe480 [Unoptimized] _Timer@1026248._runTimers@1026248
  pc 0x00007fc6c980af13 fp 0x00007fc6abdfe528 sp 0x00007fc6abdfe500 [Unoptimized] _Timer@1026248._handleMessage@1026248
  pc 0x00007fc6c980afd9 fp 0x00007fc6abdfe558 sp 0x00007fc6abdfe538 [Unoptimized] _Timer@1026248._handleMessage@1026248
  pc 0x00007fc6c980d20d fp 0x00007fc6abdfe5c0 sp 0x00007fc6abdfe568 [Unoptimized] _Closure@0150898.dyn:call
  pc 0x00007fc6ca17fa2c fp 0x00007fc6abdfe618 sp 0x00007fc6abdfe5d0 [Unoptimized] _RawReceivePort@1026248._handleMessage@1026248
  pc 0x00007fc6cca83216 fp 0x00007fc6abdfe690 sp 0x00007fc6abdfe628 [Stub] InvokeDartCode

https://logs.chromium.org/logs/dart/buildbucket/cr-buildbucket/8749081813646344017/+/u/collect_shards/dartfuzz_-_flags_shard_13/task_stdout_stderr:_dartfuzz_-_flags_shard_13
@alexmarkov alexmarkov added area-vm Use area-vm for VM related issues, including code coverage, FFI, and the AOT and JIT backends. gardening dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) labels May 2, 2024
copybara-service bot pushed a commit that referenced this issue May 2, 2024
@rmacnak-google
[vm, compiler] Don't emit AOT instance calls with --no_polymorphic_wi…
6c95160 
…th_deopt.

TEST=dartfuzz
Bug: #55622
Bug: #55623
Change-Id: Ib327d9cb2621eb6cfd509db83b2e04d17967d857
Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/364960
Reviewed-by: Alexander Markov <alexmarkov@google.com>
Commit-Queue: Ryan Macnak <rmacnak@google.com>
@a-siva a-siva added triaged Issue has been triaged by sub team P3 A lower priority bug or feature request labels May 8, 2024
copybara-service bot pushed a commit that referenced this issue May 9, 2024
@rmacnak-google
[vm, compiler] Fix double-call with --no_polymorphic_with_deopt.
f7cc159 
TEST=dartfuzz
Bug: #55622
Bug: #55623
Change-Id: If841fcfee242b2d2bc3b0c970d42488bfe202fb8
Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/365868
Reviewed-by: Alexander Markov <alexmarkov@google.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area-vm Use area-vm for VM related issues, including code coverage, FFI, and the AOT and JIT backends. dartfuzz Found with Dart fuzzing (DartFuzz, libFuzzer, etc.) gardening P3 A lower priority bug or feature request triaged Issue has been triaged by sub team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rmacnak-google @a-siva @alexmarkov