Access Violation in DeoptimizeMarkedCodeForContext
Reported by
michael....@emerson.com,
Sep 17
|
|||||||
Issue description
UserAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36
Steps to reproduce the problem:
1. Load and unload website with small functions roughly 35000 times
2.
3.
What is the expected behavior?
No crash.
What went wrong?
In v8\src\deoptimizer.cc: Deoptimizer::DeoptimizeMarkedCodeForContext(Context* context)
Code prev = nullptr; Object element = context->OptimizedCodeListHead(); while (!element->IsUndefined(isolate)) { Code* code = Code::cast(element); <- element is 0x03! Boom! CHECK_EQ(code->kind(), Code::OPTIMIZED_FUNCTION);
I'm using cef_binary_3.3325.1758.g9aea513_windows32, on Windows 10 x64 (1607 Build 14393.0).
This is difficult to reproduce at present -- it requires that we run lots of JavaScript functions which are being optimized/deoptimized. Any comments on how to track this down?
Did this work before? N/A
Chrome version: 65.0.3325 Channel: stable
OS Version: 10.0
Flash Version: n/a
Asking what we may do to track this down so that it may be fixed?
,
Sep 17
,
Sep 19
We are using: cef_binary_3.3325.1758.g9aea513
,
Sep 21
Thanks for filing the issue... @Reporter : It would be really helpful if a sample URL/Extension is provided, so that we can investigate the issue further. Also provide crash id from chrome://crashes. Thanks.!
,
Sep 21
We're not using Chrome, we are using libcef -- I can provide a dmp file if that would help?
,
Sep 21
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Sep 24
Ho can I attach a 500MB crash dump? This has a limit of 10MB?
,
Oct 10
michael.tajmajer@ Thanks for the response... As per comment #7, Requesting you to upload a dupm file in chrome drive and share a link here that would be helpful for further triaging. Thanks..!
,
Oct 10
I put the dump file on google-drive and shared: https://drive.google.com/file/d/133bfSh0NVdS-9FA3AX6-AAltVvTdbk46/view?usp=sharing Thanks!
,
Oct 10
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 22
Chrome 65.0.3325 is end of life for half a year already. Have you tried moving to 70 as the base of cef? In addition, I don't think cef is officially supported. Please reach out to cef for support.
,
Oct 22
Cef reports this as upstream since it is the Chrome source code that contains the issue. We will try v67 or v69 and if we have the same issue will reopen and post bmp file. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by susan.boorgula@chromium.org
, Sep 17