New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 612191 link

Starred by 3 users
Status: Duplicate
Merged: issue v8:2340
Owner:
yangguo@chromium.org
Closed: Jul 17
Cc:
mlippautz@chromium.org
hpayer@chromium.org
hablich@chromium.org
u...@chromium.org
yangguo@chromium.org
adamk@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Mac
Pri: 3
Type: Bug

Blocked on:
issue v8:2340


Sign in to add a comment

[V8] Error objects keep hard-reference to the functions on the stack

Project Member Reported by ach...@adobe.com, May 16 2016 
Version: 52.0.2738.0 (Official Build) canary (64-bit) - V8 5.2.323
OS: OSX 10.11.4 (15E65)

What steps will reproduce the problem?
(1) Open the attached HTML file
(2) Open the "Developer Tools"
(3) Go to the "Profiles" tab
(4) Select the "Take Heap Snapshot" and take a heap snapshot
(5) Select "Snapshot 1" in the list of snapshots
(6) Open "(string)" in the tree
(7) Click the string object starting with "BigString..." of about 90MB
(8) The "Retainers" panel shows that "myError" is the only object keeping this object alive

What is the expected output?
The BigString should be garbage collected. There is no way to get a reference to the string using JavaScript code.

What do you see instead?
The string is not garbage collected.

Note: This bug also reproduces in nodejs.
test_leak_error.html
758 bytes View Download

Comment 1 by ach...@adobe.com, May 16 2016 

I've tested in Safari Tech Preview and Firefox, neither reproduces this issue.

Comment 2 by hablich@chromium.org, May 17 2016

Cc: mlippautz@chromium.org u...@chromium.org hpayer@chromium.org
Status: Available (was: Untriaged)

Comment 3 by hablich@chromium.org, May 17 2016

Cc: hablich@chromium.org
Labels: Needs-Bisect
Chrome test, could you please check if this is a new bug or also in 50 already?

Comment 4 by tkonch...@chromium.org, May 18 2016

Labels: -Needs-Bisect M-52 OS-Linux OS-Mac OS-Windows
Tested the same on mac 10.11 chrome version 52.0.2740.0 and stable version 50.0.2661.102 - The bigString displays "myError" object as shown in the screenshot

The issue is observed in win8.1 and Linux as well

This can be observed from M43 (43.0.2357.134) builds as well.

Hence confirming the issue for further inputs on this.

Comment 5 by tkonch...@chromium.org, May 18 2016

Screen Shot 2016-05-18 at 2.41.20 PM.png
484 KB View Download
Project Member

Comment 6 by sheriffbot@chromium.org, Jun 1 2016

Labels: -M-52 M-53 MovedFrom-52
Moving this nonessential bug to the next milestone.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 7 by sheriffbot@chromium.org, Jul 10 2016

Labels: -M-53 MovedFrom-53
This issue has been moved once and is lower than Pri-1. Removing the milestone.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 8 by sheriffbot@chromium.org, Jul 10 2017

Labels: Hotlist-Recharge-Cold
Status: Untriaged (was: Available)
This issue has been Available for over a year. If it's no longer important or seems unlikely to be fixed, please consider closing it out. If it is important, please re-triage the issue.

Sorry for the inconvenience if the bug really should have been left as Available. If you change it back, also remove the "Hotlist-Recharge-Cold" label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 9 by hablich@chromium.org, Jul 11 2017

Components: Blink>JavaScript>API
Status: Available (was: Untriaged)

Comment 10 by yangguo@chromium.org, Jul 11 2017

Blockedon: v8:2340
Project Member

Comment 11 by sheriffbot@chromium.org, Jul 11

Status: Untriaged (was: Available)
This issue has been Available for over a year. If it's no longer important or seems unlikely to be fixed, please consider closing it out. If it is important, please re-triage the issue.

Sorry for the inconvenience if the bug really should have been left as Available.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 12 by hablich@chromium.org, Jul 17

Owner: mlippautz@chromium.org
Status: Assigned (was: Untriaged)
mlippautz please evaluate if this report can be closed or not.

Comment 13 by yangguo@chromium.org, Jul 17

Mergedinto: v8:2340
Owner: yangguo@chromium.org
Status: Duplicate (was: Assigned)
This is the combination of two things:
- bigStrig gets context-allocated.
- the stack trace keeps the functions on the stack alive.

Sign in to add a comment