[Webkit-unassigned] [Bug 29797] New: Runaway JS recursion crashes Chromium workers on OS X
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Sep 28 00:24:52 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=29797
Summary: Runaway JS recursion crashes Chromium workers on OS X
Product: WebKit
Version: 528+ (Nightly build)
Platform: Macintosh Intel
OS/Version: Mac OS X 10.6
Status: UNCONFIRMED
Severity: Normal
Priority: P2
Component: WebCore Misc.
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: dominicc at google.com
CC: atwilson at chromium.org
Dominic Cooney <dominicc at google.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #40218| |review?
Flag| |
Created an attachment (id=40218)
--> (https://bugs.webkit.org/attachment.cgi?id=40218)
Sets a stack limit. Do not land before proposed fix lands in V8--see
description.
Repro: Open LayoutTests/fast/workers/use-machine-stack.html.
Expected behavior: it prints PASS (RangeError: Maximum call stack size
exceeded.)
Actual behavior:
Safari 4.0.3 (6531.9): OK.
Google Chrome 4.0.212.1 (Official Build 26852) WebKit 532.1 V8 1.3.11.1: Worker
process crashes.
This is related to <http://crbug.com/21653>.
I've attached a patch. The patch depends on a proposed fix to V8 bug 442, see
<http://codereview.chromium.org/242014>.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list