Bug 264034

Summary: Host function isPureNaN is inlined into true in DFGByteCodeParser.cpp handleIntrinsicCall.
Product: WebKit Reporter: EntryHi <entryhii>
Component: JavaScriptCoreAssignee: Nobody <webkit-unassigned>
Status: NEW ---    
Severity: Normal CC: mark.lam, webkit-bug-importer, ysuzuki
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: PC   
OS: Linux   

Description EntryHi 2023-11-01 04:29:40 PDT 
===================test.js==================
for (let v0 = 0; v0 < 100; v0++) {
  const v2 = this.isPureNaN(v0);
  print(v2)
}
============================================


Run args: ./jsc -f test.js --useConcurrentJIT=0  --jitPolicyScale=0.01


JSC prints `true` in DFG. The correct result should be `false`.
Comment 1 Radar WebKit Bug Importer 2023-11-08 03:30:14 PST 
<rdar://problem/118109241>
Comment 2 Sosuke Suzuki 2024-02-23 22:46:14 PST 
Pull request: https://github.com/WebKit/WebKit/pull/25053