New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 904932 link

Starred by 1 user
Status: Assigned
Owner:
mvstan...@chromium.org
Cc:
sdantul...@chromium.org
mkarkada@chromium.org
dhadd...@chromium.org
u...@chromium.org
hpayer@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 2
Type: Bug



Sign in to add a comment

v8::GlobalValueMap<blink::ScriptWrappable*, v8::Object, blink::DOMWrapperMap<blink::ScriptWrappable>::PersistentValueMapTraits>::OnWeakCallback

Project Member Reported by abod...@chromium.org, Nov 13 
Chrome Version: 72.0.3606.0
Chrome OS Version: 11256.0.0
Chrome OS Platform: 
Network info: 

Please specify Cr-* of the system to which this bug/feature applies (add
the label below).

Steps To Reproduce:
(1)Open gmail or youtube
(2)in few seconds browser get crashed(AW, Snap!)
(3)

Expected Result:

Actual Result:
Seen browser crash

crash report: https://crash.corp.google.com/browse?stbtiq=e02902a8784e355b#0

How frequently does this problem reproduce? (Always, sometimes, hard to
reproduce?)

What is the impact to the user, and is there a workaround? If so, what is
it?

Please provide any additional information below. Attach a screen shot or
log if possible.

For graphics-related bugs, please copy/paste the contents of the about:gpu
page at the end of this report.



Thread 0 (id: 0x2e50) CRASHED [SIGILL / ILL_ILLOPN @ 0x000057fce4aadf85 ] MAGIC SIGNATURE THREAD
Stack Quality100%Show frame trust levels
0x000057fce4aadf85	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/third_party/blink/renderer/platform/bindings/dom_wrapper_map.h:161 )	v8::GlobalValueMap<blink::ScriptWrappable*, v8::Object, blink::DOMWrapperMap<blink::ScriptWrappable>::PersistentValueMapTraits>::OnWeakCallback(v8::WeakCallbackInfo<v8::GlobalValueMap<blink::ScriptWrappable*, v8::Object, blink::DOMWrapperMap<blink::ScriptWrappable>::PersistentValueMapTraits> > const&)
0x000057fce0bc8a45	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/v8/src/global-handles.cc:883 )	v8::internal::GlobalHandles::DispatchPendingPhantomCallbacks(bool)
0x000057fce0bc8d2b	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/v8/src/global-handles.cc:909 )	v8::internal::GlobalHandles::PostGarbageCollectionProcessing(v8::internal::GarbageCollector, v8::GCCallbackFlags)
0x000057fce0bef77b	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/v8/src/heap/heap.cc:1709 )	v8::internal::Heap::CollectGarbage(v8::internal::AllocationSpace, v8::internal::GarbageCollectionReason, v8::GCCallbackFlags)
0x000057fce0bf6564	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/v8/src/heap/heap.cc:1062 )	v8::internal::Heap::FinalizeIncrementalMarkingIfComplete(v8::internal::GarbageCollectionReason)
0x000057fce0c005e9	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/v8/src/heap/incremental-marking-job.cc:76 )	v8::internal::IncrementalMarkingJob::Task::RunInternal()
0x000057fcde79ef5d	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/callback.h:99 )	base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*)
0x000057fcde797d12	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/task/sequence_manager/thread_controller_impl.cc:202 )	base::sequence_manager::internal::ThreadControllerImpl::DoWork(base::sequence_manager::internal::ThreadControllerImpl::WorkType)
0x000057fcde79ef5d	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/callback.h:99 )	base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*)
0x000057fce190f433	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/message_loop/message_loop_impl.cc:404 )	base::MessageLoopImpl::RunTask(base::PendingTask*)
0x000057fce190fe15	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/message_loop/message_loop_impl.cc:415 )	base::MessageLoopImpl::DoWork()
0x000057fcde790d8a	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/message_loop/message_pump_default.cc:39 )	base::MessagePumpDefault::Run(base::MessagePump::Delegate*)
0x000057fce19323d3	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/base/run_loop.cc:102 )	<name omitted>
0x000057fce562438d	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/content/renderer/renderer_main.cc:202 )	content::RendererMain(content::MainFunctionParams const&)
0x000057fce14a5550	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/content/app/content_main_runner_impl.cc:495 )	content::ContentMainRunnerImpl::Run(bool)
0x000057fce14ac5f9	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/services/service_manager/embedder/main.cc:472 )	service_manager::Main(service_manager::MainParams const&)
0x000057fcde8de43e	(chrome -./../../../../../../../home/chrome-bot/chrome_root/src/content/app/content_main.cc:19 )	ChromeMain
0x00007ab024759a93	(libc-2.27.so -libc-start.c:308 )	__libc_start_main
0x000057fcde8c3209	(chrome + 0x00375209 )	_start
0x00007fffa8469bb7

Comment 1 by abod...@chromium.org, Nov 13

Status: Untriaged (was: Unconfirmed)

Comment 3 by bokan@chromium.org, Nov 13

Components: -Blink Blink>JavaScript>GC

Comment 4 by hablich@chromium.org, Nov 22

Cc: u...@chromium.org
Owner: mvstan...@chromium.org
Status: Assigned (was: Untriaged)
to the memory sheriff

Sign in to add a comment