Status: New
Owner: ----
New issue 175 by [EMAIL PROTECTED]: Null Pointer Read in
LayoutTests\fast\js\global-recursion-on-full-stack.html
http://code.google.com/p/v8/issues/detail?id=175
This is in the list of known crashers in the layout tests. Here's some
more details from a recent Purify run:
[E] NPR: NULL pointer read in v8::HandleScope::RawClose(void * *) {1
occurrence}
Reading 4 bytes from 0x00000000 (4 bytes at 0x00000000 illegal)
Address 0x00000000 points into invalid memory
Thread ID: 0xa18
Error location
v8::HandleScope::RawClose(void * *)
[c:\b\slave\pl\build\src\v8\src\api.cc:462]
v8::internal::Factory::NewError(char const*,char
const*,Vector<Handle<Object::internal::v8>::internal::v8>::internal::v8)
[c:\b\slave\pl\build\src\v8\src\factory.cc:310]
v8::internal::Factory::NewTypeError(char
const*,Vector<Handle<Object::internal::v8>::internal::v8>::internal::v8)
[c:\b\slave\pl\build\src\v8\src\factory.cc:260]
v8::internal::IC::TypeError(char
const*,Handle<Object::internal::v8>::internal::v8,Handle<String::internal::v8>::internal::v8)
[c:\b\slave\pl\build\src\v8\src\ic.cc:196]
v8::internal::CallIC::LoadFunction(InlineCacheState::internal::v8,Handle<Object::internal::v8>::internal::v8,Handle<String::internal::v8>::internal
::v8) [c:\b\slave\pl\build\src\v8\src\ic.cc:332]
v8::internal::CallIC_Miss(Arguments::internal::v8)
[c:\b\slave\pl\build\src\v8\src\ic.cc:1051]
v8::internal::Invoke
[c:\b\slave\pl\build\src\v8\src\execution.cc:87]
v8::internal::Execution::Call(Handle<JSFunction::internal::v8>::internal::v8,Handle<Object::internal::v8>::internal::v8,int,Object::internal::v8
*
* *,bool *) [c:\b\slave\pl\build\src\v8\src\execution.cc:117]
v8::Script::Run(void)
[c:\b\slave\pl\build\src\v8\src\api.cc:1067]
WebCore::V8Proxy::RunScript(Handle<Script::v8>::v8,bool)
[c:\b\slave\pl\build\src\webkit\port\bindings\v8\v8_proxy.cpp:1310]
WebCore::V8Proxy::Evaluate(String::WebCore
const&,int,String::WebCore const&,Node::WebCore *)
[c:\b\slave\pl\build\src\webkit\port\bindings\v8\v8_proxy.cpp:1265]
WebCore::ScriptController::evaluate(ScriptSourceCode::WebCore
const&)
[c:\b\slave\pl\build\src\webkit\port\bindings\v8\scriptcontroller.cpp:282]
WebCore::FrameLoader::executeScript(ScriptSourceCode::WebCore
const&)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:799]
WebCore::HTMLTokenizer::scriptExecution(ScriptSourceCode::WebCore
const&,State::HTMLTokenizer::WebCore)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp:563]
WebCore::HTMLTokenizer::scriptHandler(State::HTMLTokenizer::WebCore)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp:505]
WebCore::HTMLTokenizer::parseSpecial(SegmentedString::WebCore&,State::HTMLTokenizer::WebCore)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp:347]
WebCore::HTMLTokenizer::parseTag(SegmentedString::WebCore&,State::HTMLTokenizer::WebCore)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp:1495]
WebCore::HTMLTokenizer::write(SegmentedString::WebCore
const&,bool)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp:1726]
WebCore::FrameLoader::write(char const*,int,bool)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1058]
WebCore::FrameLoader::endIfNotLoadingMainResource(void)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1094]
WebCore::FrameLoader::end(void)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1079]
WebCore::DocumentLoader::finishedLoading(void)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\documentloader.cpp:343]
WebCore::FrameLoader::finishedLoading(void)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:3031]
WebCore::MainResourceLoader::didFinishLoading(void)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\mainresourceloader.cpp:335]
WebCore::ResourceLoader::didFinishLoading(ResourceHandle::WebCore *)
[c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\resourceloader.cpp:398]
WebCore::ResourceHandleInternal::OnCompletedRequest(URLRequestStatus const&)
[c:\b\slave\pl\build\src\webkit\glue\resource_handle_impl.cc:631]
?A0xc8f35eb9::RequestProxy::NotifyCompletedRequest(URLRequestStatus
const&)
[c:\b\slave\pl\build\src\webkit\tools\test_shell\simple_resource_loader_bridge.cc:175]
[EMAIL PROTECTED]@?A0xc8f35eb9@@[EMAIL PROTECTED]@@@ZV3@@@[EMAIL
PROTECTED]
A0xc8f35eb9@@[EMAIL PROTECTED]@@@[EMAIL PROTECTED]@@@@@Z
[c:\b\slave\pl\build\src\base\tuple.h:393]
[EMAIL PROTECTED]@[EMAIL PROTECTED]@@[EMAIL PROTECTED]@@@[EMAIL
PROTECTED]@@@@@@UAEXXZ
[c:\b\slave\pl\build\src\base\task.h:312]
MessageLoop::RunTask(Task *)
[c:\b\slave\pl\build\src\base\message_loop.cc:308]
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
-~----------~----~----~----~------~----~------~--~---
