[Webkit-unassigned] [Bug 153938] New: Eclipse JVM crashes in libjavascriptcoregtk JSC::JSCell::getPrimitiveNumber

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Feb 6 01:42:53 PST 2016 

https://bugs.webkit.org/show_bug.cgi?id=153938

            Bug ID: 153938
           Summary: Eclipse JVM crashes in libjavascriptcoregtk
                    JSC::JSCell::getPrimitiveNumber
    Classification: Unclassified
           Product: WebKit
           Version: Other
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Gtk
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: libnoon at gmail.com
                CC: bugs-noreply at webkitgtk.org

Created attachment 270789
  --> https://bugs.webkit.org/attachment.cgi?id=270789&action=review
JVM crash log

This crash happened while using Eclipse Mars.1 which had:
- a markdown editor tab showing the Preview view (web-like); the markdown has no javascript
- a web browser tab open on:
http://www.brpreiss.com/books/opus8/html/page96.html#SECTION004300000000000000000

Eclipse was running with:
java version "1.8.0_51"
Java(TM) SE Runtime Environment (build 1.8.0_51-b16)
Java HotSpot(TM) 64-Bit Server VM (build 25.51-b03, mixed mode)
from jdk-8u51-linux-x64 downloaded as a tarball from the web.

The log says:
Stack: [0x00007f4bab57b000,0x00007f4bab67c000],  sp=0x00007f4bab676cb8,  free space=1007k
Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
C  [libjavascriptcoregtk-3.0.so.0+0x4c2ec0]  JSC::JSCell::getPrimitiveNumber(JSC::ExecState*, double&, JSC::JSValue&) const+0x0
C  0x00007f4a3271ee61
Java frames: (J=compiled Java code, j=interpreted, Vv=VM code)
J 14833  org.eclipse.swt.internal.gtk.OS._gtk_widget_destroy(J)V (0 bytes) @ 0x00007f4b97aa4681 [0x00007f4b97aa4640+0x41]
J 42420 C2 org.eclipse.swt.widgets.Widget.destroyWidget()V (30 bytes) @ 0x00007f4b9c36671c [0x00007f4b9c3665a0+0x17c]
J 27969 C2 org.eclipse.swt.widgets.Widget.release(Z)V (90 bytes) @ 0x00007f4b97bb5d1c [0x00007f4b97bb5c40+0xdc]
J 41828 C1 org.eclipse.swt.widgets.Control.release(Z)V (115 bytes) @ 0x00007f4b977dd834 [0x00007f4b977dd1c0+0x674]
J 36561 C2 org.eclipse.swt.widgets.Widget.dispose()V (27 bytes) @ 0x00007f4b9aa99d88 [0x00007f4b9aa99d20+0x68]
j  org.eclipse.e4.ui.workbench.renderers.swt.SWTPartRenderer.disposeWidget(Lorg/eclipse/e4/ui/model/application/ui/MUIElement;)V+40
[...]

Core dumps were disabled, so I don't have any.

If this is insufficient to investigate, feel free to close as unreproducible.  This is the first time I encounter this crash.

Thanks!

Best regards
Fabrice

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160206/f3b6ef1c/attachment.html>

More information about the webkit-unassigned mailing list