[6636:6712:1123209437759:ERROR:web_data_service.cc(677)] Cannot initialize the web database: 2 ================================================================= ==6871== ERROR: AddressSanitizer heap-use-after-free on address 0x7fffece8e480 at pc 0x55555aa8cdeb bp 0x7fffffff3610 sp 0x7fffffff3608 READ of size 8 at 0x7fffece8e480 thread T0 #0 0x55555aa8cdeb in WebCore::RenderTableSection::nodeAtPoint(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #1 0x55555aa67d46 in WebCore::RenderTable::nodeAtPoint(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #2 0x55555a871bb8 in WebCore::RenderBlock::hitTestContents(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #3 0x55555a86f5b2 in WebCore::RenderBlock::nodeAtPoint(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #4 0x55555a871bb8 in WebCore::RenderBlock::hitTestContents(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #5 0x55555a86f5b2 in WebCore::RenderBlock::nodeAtPoint(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestAction) ???:0 #6 0x55555aa348d2 in WebCore::RenderObject::hitTest(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntPoint const&, WebCore::IntPoint const&, WebCore::HitTestFilter) ???:0 #7 0x55555a9b2994 in WebCore::RenderLayer::hitTestContents(WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntRect const&, WebCore::IntPoint const&, WebCore::HitTestFilter) const ???:0 #8 0x55555a9ae87b in WebCore::RenderLayer::hitTestLayer(WebCore::RenderLayer*, WebCore::RenderLayer*, WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntRect const&, WebCore::IntPoint const&, bool, WebCore::HitTestingTransformState const*, double*) ???:0 #9 0x55555a9b2705 in WebCore::RenderLayer::hitTestList(WTF::Vector*, WebCore::RenderLayer*, WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntRect const&, WebCore::IntPoint const&, WebCore::HitTestingTransformState const*, double*, double*, WebCore::HitTestingTransformState const*, bool) ???:0 #10 0x55555a9ae658 in WebCore::RenderLayer::hitTestLayer(WebCore::RenderLayer*, WebCore::RenderLayer*, WebCore::HitTestRequest const&, WebCore::HitTestResult&, WebCore::IntRect const&, WebCore::IntPoint const&, bool, WebCore::HitTestingTransformState const*, double*) ???:0 #11 0x55555a9ad4aa in WebCore::RenderLayer::hitTest(WebCore::HitTestRequest const&, WebCore::HitTestResult&) ???:0 #12 0x55555963915f in WebCore::Document::prepareMouseEvent(WebCore::HitTestRequest const&, WebCore::IntPoint const&, WebCore::PlatformMouseEvent const&) ???:0 #13 0x55555a346f54 in WebCore::EventHandler::handleMouseMoveEvent(WebCore::PlatformMouseEvent const&, WebCore::HitTestResult*, bool) ???:0 #14 0x55555a346642 in WebCore::EventHandler::mouseMoved(WebCore::PlatformMouseEvent const&, bool) ???:0 #15 0x5555590ae86b in WebKit::WebViewImpl::mouseMove(WebKit::WebMouseEvent const&) ???:0 #16 0x5555590b7b7c in WebKit::WebViewImpl::handleInputEvent(WebKit::WebInputEvent const&) ???:0 #17 0x55555c3983c9 in RenderWidget::OnHandleInputEvent(IPC::Message const&) ???:0 #18 0x55555c3967a6 in RenderWidget::OnMessageReceived(IPC::Message const&) ???:0 #19 0x55555c345769 in RenderViewImpl::OnMessageReceived(IPC::Message const&) ???:0 #20 0x555558f838d8 in MessageRouter::RouteMessage(IPC::Message const&) ???:0 #21 0x555558f83740 in MessageRouter::OnMessageReceived(IPC::Message const&) ???:0 #22 0x555558eb5645 in ChildThread::OnMessageReceived(IPC::Message const&) ???:0 #23 0x555558ff9dd9 in IPC::ChannelProxy::Context::OnDispatchMessage(IPC::Message const&) ???:0 #24 0x5555578d9bb4 in MessageLoop::RunTask(base::PendingTask const&) ???:0 #25 0x5555578da436 in MessageLoop::DeferOrRunPendingTask(base::PendingTask const&) ???:0 #26 0x5555578db71b in MessageLoop::DoWork() ???:0 #27 0x5555578e5f67 in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) ???:0 #28 0x5555578d87ce in MessageLoop::RunInternal() ???:0 #29 0x5555578d6b1f in MessageLoop::Run() ???:0 #30 0x55555c3bef5a in RendererMain(content::MainFunctionParams const&) ???:0 #31 0x555557832148 in (anonymous namespace)::RunNamedProcessTypeMain(std::basic_string, std::allocator > const&, content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main.cc:0 #32 0x555557831614 in content::ContentMain(int, char const**, content::ContentMainDelegate*) ???:0 #33 0x555556115647 in ChromeMain ??:0 #34 0x55555611554b in main ???:0 #35 0x7ffff207430d in ?? ??:0 0x7fffece8e480 is located 0 bytes inside of 200-byte region [0x7fffece8e480,0x7fffece8e548) freed by thread T0 here: #0 0x55555cefa5d2 in free ??:0 #1 0x5555596bac8c in WebCore::Node::detach() ???:0 #2 0x555559688045 in WebCore::Element::detach() ???:0 #3 0x5555596894e5 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #4 0x55555968a150 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #5 0x55555968a150 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #6 0x5555596286c2 in WebCore::Document::recalcStyle(WebCore::Node::StyleChange) ???:0 #7 0x55555962baeb in WebCore::Document::updateStyleIfNeeded() ???:0 #8 0x55555962b2b2 in WebCore::Document::implicitClose() ???:0 #9 0x55555a226dc6 in WebCore::FrameLoader::checkCompleted() ???:0 #10 0x55555a223258 in WebCore::FrameLoader::finishedParsing() ???:0 #11 0x555559648b75 in WebCore::Document::finishedParsing() ???:0 #12 0x55555991f173 in WebCore::HTMLDocumentParser::prepareToStopParsing() ???:0 #13 0x55555a206314 in WebCore::DocumentWriter::endIfNotLoadingMainResource() ???:0 #14 0x55555a242d69 in WebCore::FrameLoader::finishedLoading() ???:0 #15 0x55555a26a874 in WebCore::MainResourceLoader::didFinishLoading(double) ???:0 #16 0x55555b8c4113 in webkit_glue::WebURLLoaderImpl::Context::OnCompletedRequest(net::URLRequestStatus const&, std::basic_string, std::allocator > const&, base::Time const&) ???:0 #17 0x555558fa535b in bool ResourceMsg_RequestComplete::Dispatch, std::allocator > const&, base::Time const&)>(IPC::Message const*, ResourceDispatcher*, ResourceDispatcher*, void (ResourceDispatcher::*)(int, net::URLRequestStatus const&, std::basic_string, std::allocator > const&, base::Time const&)) ???:0 #18 0x555558fa31dc in ResourceDispatcher::DispatchMessage(IPC::Message const&) ???:0 #19 0x555558fa0f10 in ResourceDispatcher::OnMessageReceived(IPC::Message const&) ???:0 #20 0x555558eb500a in ChildThread::OnMessageReceived(IPC::Message const&) ???:0 #21 0x555558ff9dd9 in IPC::ChannelProxy::Context::OnDispatchMessage(IPC::Message const&) ???:0 #22 0x5555578d9bb4 in MessageLoop::RunTask(base::PendingTask const&) ???:0 #23 0x5555578da436 in MessageLoop::DeferOrRunPendingTask(base::PendingTask const&) ???:0 #24 0x5555578db71b in MessageLoop::DoWork() ???:0 #25 0x5555578e5f67 in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) ???:0 #26 0x5555578d87ce in MessageLoop::RunInternal() ???:0 #27 0x5555578d6b1f in MessageLoop::Run() ???:0 #28 0x55555c3bef5a in RendererMain(content::MainFunctionParams const&) ???:0 #29 0x555557832148 in (anonymous namespace)::RunNamedProcessTypeMain(std::basic_string, std::allocator > const&, content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main.cc:0 previously allocated by thread T0 here: #0 0x55555cefa692 in malloc ??:0 #1 0x55555aa1b96b in WebCore::RenderObject::createObject(WebCore::Node*, WebCore::RenderStyle*) ???:0 #2 0x5555596d9913 in WebCore::NodeRendererFactory::createRenderer() ???:0 #3 0x5555596da273 in WebCore::NodeRendererFactory::createRendererIfNeeded() ???:0 #4 0x5555596baba6 in WebCore::Node::createRendererIfNeeded() ???:0 #5 0x555559687762 in WebCore::Element::attach() ???:0 #6 0x555559689526 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #7 0x55555968a150 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #8 0x55555968a150 in WebCore::Element::recalcStyle(WebCore::Node::StyleChange) ???:0 #9 0x5555596286c2 in WebCore::Document::recalcStyle(WebCore::Node::StyleChange) ???:0 #10 0x55555962baeb in WebCore::Document::updateStyleIfNeeded() ???:0 #11 0x55555962bede in WebCore::Document::updateLayout() ???:0 #12 0x55555962c1b2 in WebCore::Document::updateLayoutIgnorePendingStylesheets() ???:0 #13 0x55555967cb6c in WebCore::Element::offsetTop() ???:0 #14 0x55555ac7969e in WebCore::ElementInternal::offsetTopAttrGetter(v8::Local, v8::AccessorInfo const&) out/Release/obj/gen/webkit/bindings/V8DerivedSources03.cpp:0 #15 0x5555588643b0 in v8::internal::JSObject::GetPropertyWithCallback(v8::internal::Object*, v8::internal::Object*, v8::internal::String*) ???:0 #16 0x555558c4cb35 in v8::internal::LoadIC::Load(v8::internal::InlineCacheState, v8::internal::Handle, v8::internal::Handle) ???:0 #17 0x555558c5b57e in v8::internal::LoadIC_Miss(v8::internal::Arguments, v8::internal::Isolate*) ???:0 #18 0x7fffc8d0420e in ?? ??:0 #19 0x7fffc8d2f4d1 in ?? ??:0 #20 0x7fffc8d0810e in ?? ??:0 #21 0x7fffc8d1fc41 in ?? ??:0 ==6871== ABORTING Stats: 12M malloced (11M for red zones) by 19155 calls Stats: 0M realloced by 118 calls Stats: 9M freed by 11853 calls Stats: 0M really freed by 0 calls Stats: 64M (16394 full pages) mmaped in 15 calls mmaps by size class: 8:32766; 9:8191; 10:4095; 11:2047; 12:1024; 13:512; 14:256; 15:128; 16:64; 17:32; 18:16; 20:4; 22:1; 23:1; mallocs by size class: 8:16847; 9:916; 10:692; 11:387; 12:96; 13:73; 14:99; 15:20; 16:9; 17:12; 18:1; 20:1; 22:1; 23:1; frees by size class: 8:10199; 9:559; 10:595; 11:266; 12:60; 13:58; 14:85; 15:17; 16:2; 17:9; 18:1; 20:1; 23:1; rfrees by size class: Stats: malloc large: 16 small slow: 92 Shadow byte and word: 0x1ffffd9d1c90: fd 0x1ffffd9d1c90: fd fd fd fd fd fd fd fd More shadow bytes: 0x1ffffd9d1c70: fa fa fa fa fa fa fa fa 0x1ffffd9d1c78: fa fa fa fa fa fa fa fa 0x1ffffd9d1c80: fa fa fa fa fa fa fa fa 0x1ffffd9d1c88: fa fa fa fa fa fa fa fa =>0x1ffffd9d1c90: fd fd fd fd fd fd fd fd 0x1ffffd9d1c98: fd fd fd fd fd fd fd fd 0x1ffffd9d1ca0: fd fd fd fd fd fd fd fd 0x1ffffd9d1ca8: fd fd fd fd fd fd fd fd 0x1ffffd9d1cb0: fa fa fa fa fa fa fa fa