Updates:
Cc: mikhail.naganov
Labels: Type-Bug Priority-High
Comment #3 on issue 655 by [email protected]: Simple JS leads to tab
crash in Chrome
http://code.google.com/p/v8/issues/detail?id=655
I already reproduced it, on a new Linux64 build of bleeding-edge V8. It
looks like a
WebCore bug. The stack shows WebCore::InjectedScriptHost getting a null
handle from
injectScript. Do you or Mikhail know who would know about this?
#4 0x0000000001abce7b in CheckHelper
(file=0x37a87a4 "v8/src/handles-inl.h",
line=48, source=0x37a8790 "location_ != __null", condition=false)
at v8/src/checks.h:62
#5 0x0000000001acc106 in
v8::internal::Handle<v8::internal::Object>::operator*
(this=0x7fffffff9d90) at v8/src/handles-inl.h:48
#6 0x0000000001acc15b in
v8::internal::Handle<v8::internal::Object>::operator->
(this=0x7fffffff9d90) at v8/src/handles.h:62
#7 0x0000000001abd267 in v8::Value::IsObject (this=0x0) at
v8/src/api.cc:1546
#8 0x00000000024ec166 in WebCore::ScriptObject::v8Object
(this=0x7fffffff9e58)
at third_party/WebKit/WebCore/bindings/v8/ScriptObject.cpp:57
#9 0x00000000024e2a84 in WebCore::InjectedScriptHost::injectedScriptFor (
this=0x7ffff7ebdbd0, inspectedScriptState=0x7fffeee655a0)
at
third_party/WebKit/WebCore/bindings/v8/custom/V8InjectedScriptHostCustom.
cpp:245
#10 0x000000000253c7e9 in WebCore::ConsoleMessage::addToFrontend (
this=0x7fffeee2b850, frontend=0x7fffeee66e40,
injectedScriptHost=0x7ffff7ebdbd0)
---Type <return> to continue, or q <return> to quit---
at third_party/WebKit/WebCore/inspector/ConsoleMessage.cpp:98
#11 0x000000000235b855 in WebCore::InspectorController::addConsoleMessage (
this=0x7ffff7ed5a00, scriptState=0x7fffeee655a0,
consoleMessage=0x7fffeee2b850)
at third_party/WebKit/WebCore/inspector/InspectorController.cpp:324
#12 0x000000000235c269 in WebCore::InspectorController::addMessageToConsole
(
this=0x7ffff7ed5a00, source=WebCore::JSMessageSource,
type=WebCore::LogMessageType, level=WebCore::LogMessageLevel,
callStack=0x7ffff7e7c820)
at third_party/WebKit/WebCore/inspector/InspectorController.cpp:299
#13 0x0000000001ecf51c in WebCore::Console::addMessage (this=0x7fffeee1d090,
type=WebCore::LogMessageType, level=WebCore::LogMessageLevel,
callStack=0x7ffff7e7c820, acceptNoArguments=false)
at third_party/WebKit/WebCore/page/Console.cpp:182
#14 0x0000000001ecf7a5 in WebCore::Console::log (this=0x7fffeee1d090,
callStack=0x7ffff7e7c820)
at third_party/WebKit/WebCore/page/Console.cpp:217
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
To unsubscribe from this group, send email to v8-dev+unsubscribegooglegroups.com or reply
to this email with the words "REMOVE ME" as the subject.
