Mailinglist Archive: opensuse-bugs (4295 mails)

< Previous Next >
[Bug 1039202] New: d8 crashes with empty program
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Mon, 15 May 2017 20:47:22 +0000
  • Message-id: <bug-1039202-21960@http.bugzilla.opensuse.org/>
http://bugzilla.opensuse.org/show_bug.cgi?id=1039202


Bug ID: 1039202
Summary: d8 crashes with empty program
Classification: openSUSE
Product: openSUSE Tumbleweed
Version: Current
Hardware: x86-64
OS: SUSE Other
Status: NEW
Severity: Critical
Priority: P5 - None
Component: Other
Assignee: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
Reporter: daxim@xxxxxxxx
QA Contact: qa-bugs@xxxxxxx
Found By: ---
Blocker: ---

User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
Firefox/52.0
Build Identifier:

$ touch foo.js

$ d8 foo.js
Failed to open startup resource 'natives_blob.bin'.
Failed to open startup resource 'snapshot_blob.bin'.


#
# Fatal error in src/snapshot/natives-external.cc, line 122
# Check failed: holder_.
#

==== C stack trace ===============================

1: 0x7f8f567cd416
2: 0x7f8f567d2853
3: 0x7f8f563ba3f4
4: 0x7f8f563bac94
5: 0x7f8f5645d83c
6: v8::Isolate::New(v8::Isolate::CreateParams const&)
7: 0x4098e1
8: __libc_start_main
9: 0x40611a
Illegal instruction (core dumped)

$ gdb d8
GNU gdb (GDB; openSUSE Tumbleweed) 7.12.1
Copyright (C) 2017 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-suse-linux".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://bugs.opensuse.org/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from d8...Reading symbols from
/usr/lib/debug/usr/bin/d8.debug...done.
done.
(gdb) r foo.js
Starting program: /usr/bin/d8 foo.js
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib64/libthread_db.so.1".
[New Thread 0x7ffff54dc700 (LWP 12564)]
[New Thread 0x7ffff4cdb700 (LWP 12565)]
[New Thread 0x7ffff44da700 (LWP 12566)]
Failed to open startup resource '/usr/bin/natives_blob.bin'.
Failed to open startup resource '/usr/bin/snapshot_blob.bin'.


#
# Fatal error in src/snapshot/natives-external.cc, line 122
# Check failed: holder_.
#

==== C stack trace ===============================

1: 0x7ffff79a3416
2: 0x7ffff79a8853
3: 0x7ffff75903f4
4: 0x7ffff7590c94
5: 0x7ffff763383c
6: v8::Isolate::New(v8::Isolate::CreateParams const&)
7: 0x4098e1
8: __libc_start_main
9: 0x40611a

Thread 1 "d8" received signal SIGILL, Illegal instruction.
v8::base::OS::Abort () at src/base/platform/platform-posix.cc:240
240 src/base/platform/platform-posix.cc: No such file or directory.
(gdb) bt full
#0 v8::base::OS::Abort () at src/base/platform/platform-posix.cc:240
No locals.
#1 0x00007ffff79a3423 in V8_Fatal (file=0x7ffff7a1c8a8
"src/snapshot/natives-external.cc", line=122, format=0x7ffff79a916f "Check
failed: %s.")
at src/base/logging.cc:116
arguments = {{gp_offset = 32, fp_offset = 48, overflow_arg_area =
0x7fffffffc970, reg_save_area = 0x7fffffffc890}}
#2 0x00007ffff79a8853 in
v8::internal::NativesHolder<(v8::internal::NativeType)0>::get () at
src/snapshot/natives-external.cc:122
No locals.
#3
v8::internal::NativesCollection<(v8::internal::NativeType)0>::GetBuiltinsCount
() at src/snapshot/natives-external.cc:198
No locals.
#4 0x00007ffff75903f4 in v8::internal::Heap::CreateInitialObjects
(this=this@entry=0x62b2b0) at src/heap/heap.cc:2777
scope = {static kCheckHandleThreshold = 30720, isolate_ = 0x62b290,
prev_next_ = 0x0, prev_limit_ = 0x0}
intrinsic_names = <optimized out>
empty_properties_dictionary = {<v8::internal::HandleBase> = {location_
= 0x666b40}, <No data fields>}
slow_element_dictionary = <optimized out>
script = <optimized out>
cell = <optimized out>
is_concat_spreadable_cell = <optimized out>
species_cell = <optimized out>
#5 0x00007ffff7590c94 in v8::internal::Heap::CreateHeapObjects
(this=this@entry=0x62b2b0) at src/heap/heap.cc:5341
No locals.
#6 0x00007ffff763383c in v8::internal::Isolate::Init
(this=this@entry=0x62b290, des=des@entry=0x0) at src/isolate.cc:2240
always_allocate = {heap_ = 0x62b2b0}
create_heap_objects = true
#7 0x00007ffff72802cf in v8::Isolate::New (params=...) at src/api.cc:7361
isolate = 0x62b290
v8_isolate = 0x62b290
code_event_handler = 0x0
isolate_scope = {isolate_ = 0x62b290}
#8 0x00000000004098e1 in v8::Shell::Main (argc=2, argv=0x7fffffffd2b8) at
src/d8.cc:2477
create_params = {entry_hook = 0x0, code_event_handler = 0x0,
constraints = {max_semi_space_size_ = 0, max_old_space_size_ = 0,
max_executable_size_ = 0, stack_limit_ = 0x0, code_range_size_ =
0}, snapshot_blob = 0x0, counter_lookup_callback = 0x0,
create_histogram_callback = 0x0, add_histogram_sample_callback = 0x0,
array_buffer_allocator = 0x7fffffffd0c0,
external_references = 0x0}
mock_arraybuffer_allocator = {<v8::ArrayBuffer::Allocator> = {
_vptr.Allocator = 0x616c38 <vtable for v8::(anonymous
namespace)::MockArrayBufferAllocator+16>}, <No data fields>}
isolate = <optimized out>
result = 0
shell_array_buffer_allocator = {<v8::ArrayBuffer::Allocator> = {
_vptr.Allocator = 0x616c00 <vtable for v8::(anonymous
namespace)::ShellArrayBufferAllocator+16>}, <No data fields>}
argv = 0x7fffffffd2b8
argc = 2
#9 0x00007ffff6156541 in __libc_start_main (main=0x405f40 <main(int, char**)>,
argc=2, argv=0x7fffffffd2b8, init=<optimized out>,
---Type <return> to continue, or q <return> to quit---
fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffd2a8)
at ../csu/libc-start.c:295
result = <optimized out>
unwind_buf = {cancel_jmp_buf = {{jmp_buf = {0, 1104397541182334681,
4219120, 140737488343728, 0, 0, -1104396982438533415,
-1104376834380863783}, mask_was_saved = 0}}, priv = {pad =
{0x0, 0x0, 0x7fffffffd2d0, 0x7ffff7ffe310}, data = {prev = 0x0,
cleanup = 0x0, canceltype = -11568}}}
not_first_call = <optimized out>
#10 0x000000000040611a in _start () at ../sysdeps/x86_64/start.S:120
No locals.


Reproducible: Always




$ cat /etc/os-release
NAME="openSUSE Tumbleweed"
# VERSION="20170510"
ID=opensuse
ID_LIKE="suse"
VERSION_ID="20170510"
PRETTY_NAME="openSUSE Tumbleweed"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:tumbleweed:20170510"
BUG_REPORT_URL="https://bugs.opensuse.org";
HOME_URL="https://www.opensuse.org/";

$ rpm -qi -f `which d8`
Name : v8
Version : 5.3.332
Release : 2.2
Architecture: x86_64
Install Date: Mon May 15 22:08:59 2017
Group : System/Libraries
Size : 570218
License : BSD-3-Clause
Signature : RSA/SHA256, Fri Apr 14 15:43:05 2017, Key ID b88b2fd43dbdc284
Source RPM : v8-5.3.332-2.2.src.rpm
Build Date : Fri Apr 14 15:40:49 2017
Build Host : build83
Relocations : (not relocatable)
Packager : https://bugs.opensuse.org
Vendor : openSUSE
URL : http://code.google.com/p/v8
Summary : JavaScript Engine
Description :
V8 is Google\'s open source JavaScript engine. V8 is written in C++ and is used
in Google Chrome, the open source browser from Google. V8 implements ECMAScript
as specified in ECMA-262, 3rd edition.
Distribution: openSUSE Tumbleweed

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >
This Thread
  • No further messages