Status: Assigned
Owner: [email protected]
CC: [email protected], [email protected], [email protected],
[email protected]
Labels: Type-Bug Priority-Critical
New issue 1587 by [email protected]: Top renderer crash in object lookup
- beta blocker
http://code.google.com/p/v8/issues/detail?id=1587
Chromium bug: http://crbug.com/91834
Top renderer crash in ChromeOS 14.0.835.19:
Product: Chrome_ChromeOS
Stack Signature: v8::internal::Object::Lookup-3AEAB80
New Signature Label: v8::internal::Object::Lookup
New Signature Hash: 2c76ae46_c8551d1c_9569353c_0150738e_77e443cd
Report link: http://go/crash/reportdetail?reportid=020d4214d2f9a354
Meta information:
Product Name: Chrome_ChromeOS
Product Version: 14.0.835.19
Report ID: 020d4214d2f9a354
Report Time: 2011/08/05 02:37:06, Fri
Uptime: 3 sec
Cumulative Uptime: 0 sec
OS Name: Linux
OS Version: 0.0.0 Linux 2.6.38.3+ #1 SMP Thu Aug 4 00:27:15 PDT 2011 i686
CPU Architecture: x86
CPU Info: GenuineIntel family 6 model 28 stepping 10
Thread 0 *CRASHED* ( SIGSEGV @ 0x00000000 )
0x74fd3f65 [chrome - v8/src/objects-inl.h:3026]
v8::internal::Object::Lookup
0x7515c2d4 [chrome - v8/src/ic.cc:380]
v8::internal::CallICBase::LoadFunction
0x7515c947 [chrome - v8/src/ic.cc:1938]
v8::internal::CallIC_Miss
0x37c920b5
0x37c96ebf
0x25007660
0x255970ea
0x37c93480
0x2ba6a3a0
0x5df4d99e
0x37c981e8
0x5df67fc4
0x37c93480
0x250074af
0x24ff0721
0x24ff324d
0x24ff1641
0x24ff1b74
0x2823c603
0x37c93480
0x37ca65e1
0x282363d8
0x37c93480
0x2823bbaa
0x37ca4c39
0x37c95d8a
0x74eec868 [chrome - v8/src/execution.cc:122]
v8::internal::Invoke
0x74eececc [chrome - v8/src/execution.cc:158]
v8::internal::Execution::Call
0x74eb0421 [chrome - v8/src/api.cc:3584] v8::Function::Call
0x74949538 [chrome - chrome/renderer/extensions/bindings_utils.cc:217]
bindings_utils::CallFunctionInContext
...... (2 stack frames dropped.)
0x7494fa38 [chrome - ./base/tuple.h:570]
ExtensionDispatcher::OnControlMessageReceived
0x764ebb8d [chrome - content/renderer/render_thread.cc:402]
RenderThread::OnControlMessageReceived
0x751f97c2 [chrome - content/common/child_thread.cc:173]
ChildThread::OnMessageReceived
0x7529e8e6 [chrome - ipc/ipc_channel_proxy.cc:256]
IPC::ChannelProxy::Context::OnDispatchMessage
0x7529eb17 [chrome - ./base/tuple.h:551]
RunnableMethod<IPC::ChannelProxy::Context, void
(IPC::ChannelProxy::Context::*)(const IPC::Message&), Tuple1<IPC::Message>
::Run
0x74a351e0 [chrome - base/message_loop.cc:104]
TaskClosureAdapter::Run
0x74a354ea [chrome - ./base/bind_internal.h:595]
base::internal::Invoker1<false, base::internal::InvokerStorage1<void
(<unnamed>::TaskClosureAdapter::*)(), <unnamed>::TaskClosureAdapter*>, void
(<unnamed>::TaskClosureAdapter::*)()>::DoInvoke
0x74a3701d [chrome - ./base/callback.h:265]
MessageLoop::RunTask
0x74a38e06 [chrome - base/message_loop.cc:502]
MessageLoop::DoWork
0x74a3c817 [chrome - base/message_pump_default.cc:23]
base::MessagePumpDefault::Run
0x74a357ed [chrome - base/message_loop.cc:451]
MessageLoop::RunHandler
0x74a35a69 [chrome - base/message_loop.cc:348] MessageLoop::Run
0x765173e2 [chrome - content/renderer/renderer_main.cc:228]
RendererMain
0x73f3dd97 [chrome - chrome/app/chrome_main.cc:504]
RunZygote
0x73f3e4bf [chrome - chrome/app/chrome_main.cc:551]
ChromeMain
0x73f3f114 [chrome - chrome/app/chrome_exe_main_gtk.cc:46]
main
0x72c0ca95 [libc-2.10.1.so + 0x00016a95]
0x73f3d4c0 [chrome + 0x002074c0]
0x73f3f0bf [chrome + 0x002090bf]
0x73d25fff [ld-2.10.1.so + 0x0000efff]
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
