[Webkit-unassigned] [Bug 168971] New: Null pointer crash when loading module with unresolved import also as a script file

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Feb 28 08:44:01 PST 2017 

https://bugs.webkit.org/show_bug.cgi?id=168971

            Bug ID: 168971
           Summary: Null pointer crash when loading module with unresolved
                    import also as a script file
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Local Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: andre.bargull at gmail.com

svn revision: 213147

Test file, t.js:
---
import {x} from "./t.js"
---

STR:
- Start JSC shell with: ~/svn/webkit/WebKitBuild/Debug/bin/jsc -m t.js -f t.js

Crashes with:
---
Thread 1 "jsc" received signal SIGSEGV, Segmentation fault.
0x000000000046f5f0 in JSC::MarkedBlock::vm (this=0x0) at ../../Source/JavaScriptCore/heap/MarkedBlock.h:411
---

Stack trace:
---
#0  0x000000000046f5f0 in JSC::MarkedBlock::vm (this=0x0) at ../../Source/JavaScriptCore/heap/MarkedBlock.h:411
#1  0x000000000047c4fe in JSC::HeapCell::vm (this=0x0) at ../../Source/JavaScriptCore/heap/HeapCellInlines.h:67
#2  0x00007ffff68b2b32 in JSC::Interpreter::execute (this=0x7fffef5fe080, executable=0x7fffaed4c320, callFrame=0x7fffffffcd60, scope=0x0) at ../../Source/JavaScriptCore/interpreter/Interpreter.cpp:1173
#3  0x00007ffff6b9de2e in JSC::JSModuleRecord::evaluate (this=0x7fffaed500a0, exec=0x7fffffffcd60) at ../../Source/JavaScriptCore/runtime/JSModuleRecord.cpp:207
#4  0x00007ffff6b97bc7 in JSC::JSModuleLoader::evaluate (this=0x7fffaedb0190, exec=0x7fffffffcd60, key=..., moduleRecordValue=..., scriptFetcher=...)
    at ../../Source/JavaScriptCore/runtime/JSModuleLoader.cpp:238
#5  0x00007ffff6c28def in JSC::moduleLoaderPrototypeEvaluate (exec=0x7fffffffcd60) at ../../Source/JavaScriptCore/runtime/ModuleLoaderPrototype.cpp:245
...
---

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170228/cc189052/attachment-0001.html>

More information about the webkit-unassigned mailing list