[Webkit-unassigned] [Bug 29797] [V8] Runaway JS recursion crashes Chromium workers on OS X
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Oct 10 22:51:31 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=29797
--- Comment #4 from Dominic Cooney <dominicc at google.com> 2009-10-10 22:51:30 PDT ---
Runaway recursion in JavaScript workers crashes the Chromium worker process on
OS X. This is because V8's default stack limit is 512K on ia32 or 1M on x64,
but the worker process runs workers on a thread with the OS X default stack
size--512K. Because there are already some C++ frames on the stack when V8
establishes its 512K default stack limit, and V8 doesn't precisely enforce the
stack limit, runaway recursion in V8 workers overflows the OS stack and
segfaults, killing the worker process. This is described in Chromium bug 21653
<http://crbug.com/21653>.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list