Status: Accepted
Owner: ----
Labels: Type-Bug Priority-Medium
New issue 282 by christian.plesner.hansen: PropertyHandler test in test-api
crashes under debug gc-greedy
http://code.google.com/p/v8/issues/detail?id=282
Reason: KERN_INVALID_ADDRESS at address: 0x0beefdac
0x001cb43c in v8::internal::HeapObject::map_word (this=0xbeefdad) at
/Users/plesner/Documents/vms/google/v8/src/objects-inl.h:902
902 return MapWord(reinterpret_cast<uintptr_t>(READ_FIELD(this,
kMapOffset)));
(gdb) bt
#0 0x001cb43c in v8::internal::HeapObject::map_word (this=0xbeefdad) at
/Users/plesner/Documents/vms/google/v8/src/objects-inl.h:902
#1 0x001cb465 in v8::internal::HeapObject::map (this=0xbeefdad) at
/Users/plesner/Documents/vms/google/v8/src/objects-inl.h:892
#2 0x001cb69e in v8::internal::Object::IsFixedArray (this=0xbeefdad) at
/Users/plesner/Documents/vms/google/v8/src/objects-inl.h:346
#3 0x001d316b in v8::internal::FixedArray::cast (object=0xbeefdad) at
/Users/plesner/Documents/vms/google/v8/src/conversions.h:1339
#4 0x001e4b99 in v8::internal::DescriptorArray::GetContentArray
(this=0x3e00049) at
/Users/plesner/Documents/vms/google/v8/src/objects.h:1746
#5 0x0020be6a in v8::internal::DescriptorArray::Set (this=0x3e00049,
descriptor_number=0,
desc=0xbffff418) at /Users/plesner/Documents/vms/google/v8/src/checks.h:1296
#6 0x0012d09d in v8::internal::DescriptorWriter::Write (this=0xbffff438,
desc=0xbffff418) at
/Users/plesner/Documents/vms/google/v8/src/property.cc:35
#7 0x000bb951 in v8::internal::Factory::CopyAppendCallbackDescriptors
(array={location_ =
0x300544c}, descriptors={location_ = 0x3005450}) at
/Users/plesner/Documents/vms/google/v8/src/factory.cc:582
#8 0x000be89c in v8::internal::Factory::CreateApiFunction (obj={location_
= 0x3005424},
instance_type=JavaScriptObject) at
/Users/plesner/Documents/vms/google/v8/src/factory.cc:796
#9 0x00139de8 in v8::internal::Runtime_CreateApiFunction (args={<Embedded>
= {<No data
fields>}, length_ = 1, arguments_ = 0xbffff548}) at
/Users/plesner/Documents/vms/google/v8/src/runtime.cc:336
#10 0x03808158 in ?? ()
#11 0x038164bd in ?? ()
#12 0x0381567d in ?? ()
#13 0x0380899f in ?? ()
#14 0x03808c12 in ?? ()
#15 0x03808694 in ?? ()
#16 0x000b4f81 in v8::internal::Invoke (construct=false, func={location_ =
0x3005418},
receiver={location_ = 0x3005414}, argc=1, args=0xbffff70c,
has_pending_exception=0xbffff767) at
/Users/plesner/Documents/vms/google/v8/src/execution.cc:89
#17 0x000b51da in v8::internal::Execution::Call (func={location_ =
0x3005418},
receiver={location_ = 0x3005414}, argc=1, args=0xbffff70c,
pending_exception=0xbffff767) at
/Users/plesner/Documents/vms/google/v8/src/execution.cc:116
#18 0x000b5c95 in v8::internal::Execution::InstantiateFunction
(data={location_ = 0x3005400},
exc=0xbffff767) at
/Users/plesner/Documents/vms/google/v8/src/execution.cc:475
#19 0x0006a005 in v8::FunctionTemplate::GetFunction (this=0x3005400) at
/Users/plesner/Documents/vms/google/v8/src/api.cc:2458
#20 0x0001dda3 in TestPropertyHandler () at
/Users/plesner/Documents/vms/google/v8/test/cctest/test-api.cc:637
#21 0x001caa01 in CcTest::Run (this=0x26c384) at
/Users/plesner/Documents/vms/google/v8/test/cctest/cctest.h:57
#22 0x0000284f in main (argc=2, argv=0xbffff904) at
/Users/plesner/Documents/vms/google/v8/test/cctest/cctest.cc:98
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
v8-dev mailing list
v8-dev@googlegroups.com
http://groups.google.com/group/v8-dev
-~----------~----~----~----~------~----~------~--~---
