Project: chromium Issues People Development process History Sign in
New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.
Starred by 3 users
Status: Fixed
Closed: Mar 2012
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 0
Type: Bug

  • Only users with EditIssue permission may comment.

Sign in to add a comment
Crash on startup when windows taskbar auto-hiding is enabled
Reported by, Mar 8 2012 Back to list
Chrome/Chromium Version: 19.0.1063.0 ToT
OS: Windows XP SP3

URL (if applicable) where crash occurred:

Can you reproduce this crash?


What steps will reproduce this crash (or if it's not reproducible,
what were you doing just before the crash)?

1. Start Chromium


(870.ac0): Access violation - code c0000005 (!!! second chance !!!)
eax=00000001 ebx=00000000 ecx=0012f8bc edx=00000000 esi=014a1b40 edi=0012f9f4
eip=02394881 esp=0012f8d8 ebp=0012f9dc iopl=0         nv up ei pl zr na pe nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00000246
02394881 8b9324010000    mov     edx,dword ptr [ebx+124h] ds:0023:00000124=????????

ChildEBP RetAddr  
0012f9dc 02394c7a chrome_1c30000!MessageLoop::RunTask(
			struct base::PendingTask * pending_task = 0x0012f9f4)+0x211 [c:\b\build\slave\win\build\src\base\ @ 460]
0012fa3c 023ca724 chrome_1c30000!MessageLoop::DoDelayedWork(
			class base::TimeTicks * next_delayed_work_time = 0x0148aad0)+0x15a [c:\b\build\slave\win\build\src\base\ @ 698]
0012fa70 023c9690 chrome_1c30000!base::MessagePumpForUI::DoRunLoop(void)+0x74 [c:\b\build\slave\win\build\src\base\ @ 208]
0012fa90 023958de chrome_1c30000!base::MessagePumpWin::RunWithDispatcher(
			class base::MessagePump::Delegate * delegate = 0x014a1b40, 
			class base::MessagePumpWin::Dispatcher * dispatcher = 0x0012fb68)+0x40 [c:\b\build\slave\win\build\src\base\ @ 53]
0012fb40 02396648 chrome_1c30000!MessageLoop::RunInternal(void)+0x8e [c:\b\build\slave\win\build\src\base\ @ 412]
0012fb5c 024ef951 chrome_1c30000!MessageLoopForUI::RunWithDispatcher(
			class base::MessagePumpWin::Dispatcher * dispatcher = 0x0012fb68)+0x68 [c:\b\build\slave\win\build\src\base\ @ 777]
0012fb8c 01c9b90b chrome_1c30000!ChromeBrowserMainParts::MainMessageLoopRun(
			int * result_code = 0x0148aa5c)+0x31 [c:\b\build\slave\win\build\src\chrome\browser\ @ 1872]
0012fb98 01ca89a0 chrome_1c30000!content::BrowserMainLoop::RunMainMessageLoopParts(void)+0x2b [c:\b\build\slave\win\build\src\content\browser\ @ 455]
0012fc40 02cd28be chrome_1c30000!`anonymous namespace'::BrowserMainRunnerImpl::Run(void)+0xc0 [c:\b\build\slave\win\build\src\content\browser\ @ 95]
0012fc50 024001fe chrome_1c30000!BrowserMain(
			struct content::MainFunctionParams * parameters = 0x0012fde4)+0x3e [c:\b\build\slave\win\build\src\content\browser\ @ 21]
0012fd10 024003dd chrome_1c30000!`anonymous namespace'::RunNamedProcessTypeMain(
			class std::basic_string<char,std::char_traits<char>,std::allocator<char> > * process_type = 0x0012fdf0, 
			struct content::MainFunctionParams * main_function_params = 0x0012fde4, 
			class content::ContentMainDelegate * delegate = 0x0012fe38)+0xce [c:\b\build\slave\win\build\src\content\app\ @ 282]
0012fe10 023ffd40 chrome_1c30000!`anonymous namespace'::ContentMainRunnerImpl::Run(void)+0x14d [c:\b\build\slave\win\build\src\content\app\ @ 511]
0012fe20 01c36830 chrome_1c30000!content::ContentMain(
			struct HINSTANCE__ * instance = 0x00400000, 
			struct sandbox::SandboxInterfaceInfo * sandbox_info = 0x0012ff24, 
			class content::ContentMainDelegate * delegate = 0x0012fe38)+0x30 [c:\b\build\slave\win\build\src\content\app\ @ 35]
0012fe54 00404e2b chrome_1c30000!ChromeMain(
			struct HINSTANCE__ * instance = 0x00400000, 
			struct sandbox::SandboxInterfaceInfo * sandbox_info = 0x0012ff24)+0x20 [c:\b\build\slave\win\build\src\chrome\app\ @ 28]
0012fed0 0040106e chrome!MainDllLoader::Launch(
			struct HINSTANCE__ * instance = 0x00400000, 
			struct sandbox::SandboxInterfaceInfo * sbox_info = 0x0012ff24)+0x16b [c:\b\build\slave\win\build\src\chrome\app\ @ 425]
0012ff30 00443eef chrome!wWinMain(
			struct HINSTANCE__ * instance = 0x00400000, 
			struct HINSTANCE__ * __formal = 0x00000000)+0x6e [c:\b\build\slave\win\build\src\chrome\app\ @ 37]
0012ffc0 7c7e7077 chrome!__tmainCRTStartup(void)+0x112 [f:\dd\vctools\crt_bld\self_x86\crt\src\crt0.c @ 263]
0012fff0 00000000 kernel32!BaseProcessStart+0x23
Forgot to mention: crash report is about (ToT) v125512, but v125587 also crashes. 
Comment 2 Deleted
Comment 3 by, Mar 8 2012
Labels: -Pri-2 Pri-0 Mstone-19 Area-Internals
Comment 4 by, Mar 8 2012
Labels: ReleaseBlock-Dev
Status: Assigned
Not sure exactly what the problem is, but it has to do with this change:

DisplaySettingsProviderWin::OnWorkAreaChanged() is posting a delayed task by way of polling_timer_, which when run is causing problems, and then we subsequently crash

That code is here:

We may need to revert 125466 until this is understood.

I've just landed a fix for a crash that might be the culprit of this. Can you check if this crash is gone after this?
This is what I mean for the fix:
May be already fixed then. Re-assigning to Jianli, can close it if the crash is gone in next canary.
Is  bug 117416  also related to this?
117416 is very likely related to this. laforge, can you check if this still repro in the latest build? I've just made a crash fix which might solve this problem.
@dharani: Most definitely. In fact that callstack makes more sense than the RunTask one!

I can confirm that the repro steps for this are to turn on auto-hiding of task bar.
(1) Right click on windows task bar, click properties, and check the box "auto-hide taskbar". The taskbar is now hidden.

(2) Launch Chrome (19.0.1063.0)

(3) Mouse down to the taskbar to show it.

(4) Chrome crashes.

I can also confirm that if I disable the auto-hide of taskbar, the problem goes away.
 Issue 117416  has been merged into this issue.
Labels: OS-Windows
Summary: Crash on startup when windows taskbar auto-hiding is enabled (was: NULL)
I reverted 125466 on 1063 branch and started 1063.1 build.
Project Member Comment 17 by, Mar 8 2012
The following revision refers to this bug:

r125697 | | Thu Mar 08 14:24:31 PST 2012

Changed paths:

Fix the underlying problem for Trunk/ToT build 19.0.1063.0: crash during start.

The fix is to remove the unintended duplicated observer_ definition in the sub class.

BUG= 117347 
TEST=Manual test to start chrome with auto-hiding taskbar enabled on win

Review URL:
Status: Fixed
Project Member Comment 19 by, Oct 13 2012
Labels: Restrict-AddIssueComment-Commit
This issue has been closed for some time. No one will pay attention to new comments.
If you are seeing this bug or have new data, please click New Issue to start a new bug.
Project Member Comment 20 by, Mar 10 2013
Labels: -Mstone-19 -Area-Internals M-19 Cr-Internals
Project Member Comment 21 by, Mar 14 2013
Labels: -Restrict-AddIssueComment-Commit Restrict-AddIssueComment-EditIssue
Sign in to add a comment