Imported function calls cause Chrome to crash
Reported by
mohsinul...@gmail.com,
Aug 27
|
|||||
Issue description
Chrome Version : 68.0.3440.106
OS Version: 10.0
URLs (if applicable) :
Other browsers tested:
Add OK or FAIL after other browsers where you have tested this issue:
Safari:
Firefox: OK
IE/Edge:
What steps will reproduce the problem?
1. Spin up a server that serves an HTML file that loads a module that imports
a function from another module.
OR
Open: https://test-meptmhiwfo.now.sh
2. Add breakpoint after the function import. And call it in the console.
3. Chrome crashes.
What is the expected result?
Function call should return the result to console.
What happens instead of that?
Chrome crashes.
Please provide any additional information below. Attach a screenshot if
possible.
- When I call the same function using .prototype.constructor, it all runs just
fine.
UserAgentString: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36
,
Aug 28
Unable to reproduce the issue on chrome reported version# 68.0.3440.106 using Windows-10 steps mentioned below: 1) Launched chrome reported version and Opened the URL: https://test-meptmhiwfo.now.sh 2) Opened Devtools > Sources, selected index.js, kept breakpoint at step-3 and navigated to Console tab 3) Entered "console.log(identity(0));" in console and pressed enter, seen error message as "Uncaught ReferenceError: identity is not defined". @Reporter: Please find the attached screencast for your reference and let us know if we missed anything in reproducing the issue, provide your feedback on it which helps us in further triaging it in better way. Thanks!
,
Aug 28
@viswa.karala@chromium.org You need to reload to get to that breakpoint
,
Aug 28
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Aug 29
@viswa.karala were you able to reproduce this?
,
Sep 3
,
Sep 25
The following revision refers to this bug: https://chromium.googlesource.com/v8/v8.git/+/e4396813232a35f040f4c7e41765bb156769352e commit e4396813232a35f040f4c7e41765bb156769352e Author: Alexey Kozyatinskiy <kozyatinskiy@chromium.org> Date: Tue Sep 25 14:52:41 2018 debug: LoadLookupSlot should initialize receiver for modules.. .. otherwise V8 crashes on attempt to use imported function as part of expression passed to Debugger.evaluateOnCallFrame. R=neis@chromium.org Bug: chromium:878029 Cq-Include-Trybots: luci.chromium.try:linux_chromium_headless_rel;master.tryserver.blink:linux_trusty_blink_rel Change-Id: I61b837f5c7b84a80d91a9cdaaac0422a24aa1620 Reviewed-on: https://chromium-review.googlesource.com/1241475 Reviewed-by: Georg Neis <neis@chromium.org> Commit-Queue: Aleksey Kozyatinskiy <kozyatinskiy@chromium.org> Cr-Commit-Position: refs/heads/master@{#56216} [modify] https://crrev.com/e4396813232a35f040f4c7e41765bb156769352e/src/runtime/runtime-scopes.cc [add] https://crrev.com/e4396813232a35f040f4c7e41765bb156769352e/test/inspector/debugger/evaluate-at-first-module-line-expected.txt [add] https://crrev.com/e4396813232a35f040f4c7e41765bb156769352e/test/inspector/debugger/evaluate-at-first-module-line.js
,
Sep 25
Fix will be available in one of the next Google Chrome Canary. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by vamshi.kommuri@chromium.org
, Aug 28