[Webkit-unassigned] [Bug 28438] Browser hangs on opening Web Inspector.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Aug 20 22:35:30 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=28438
Oliver Hunt <oliver at apple.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|UNCONFIRMED |NEW
CC| |oliver at apple.com
Ever Confirmed|0 |1
--- Comment #5 from Oliver Hunt <oliver at apple.com> 2009-08-20 22:35:30 PDT ---
I suspect (based on the backtrace) that the hang is actually ReportCrash taking
forever to analyse a debug build.
The issue is that when debugging is enabled all the codeblocks for all existing
functions get erased. Now if we imagine a scenario:
function createClosure() {
var a = "Argh!!";
return function() {
return a;
}
}
closure = createClosure();
Now we enable debugging, so neither the closure function nor the createClosure
function retain their code blocks. At this point we call 'closure()', which
triggers recompilation of the closure function which requires a lookup of a,
which then crashes as a scope lookup uses the symbol table of the (now deleted)
code block of the createClosure function.
Happily i have a fix that i shall post shortly.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list