New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 600236 link

Starred by 2 users
Status: Fixed
Owner:
treib@chromium.org
Closed: Apr 2016
Cc:
ajha@chromium.org
kavvaru@chromium.org
wfh@chromium.org
brajkumar@chromium.org
durga.behera@chromium.org
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Mac
Pri: 1
Type: Bug-Regression



Sign in to add a comment

Browser crashes on selecting chrome://supervised-user-internals in incognito and guest mode

Project Member Reported by sc00335...@techmahindra.com, Apr 4 2016 
Version: 51.0.2699.0 dev
OS: Ubuntu 12.04,14.04

What steps will reproduce the problem?
(1) Launch chrome and Browse as guest
(2) Navigate to chrome://chrome-urls and select chrome://supervised-user-internals and observe

Expected: Browser should not crash on selecting chrome://supervised-user-internals from guest mode

Actual: Instead browser crash is seen.

This is a regression issue broken in M51. Will provide bisect info soon. 

Crash Ids: 

 e4245a0400000000 , 5c405c8c00000000

Comment 1 by kavvaru@chromium.org, Apr 4 2016

Labels: ReleaseBlock-Stable OS-Mac
Status: Untriaged (was: Unconfirmed)
Able to reproduce the issue on Mac 10.11.3 using chrome version 51.0.2699.0 

Stack Trace
===============
Thread 0 CRASHED [SIGSEGV @ 0x00000028 ] MAGIC SIGNATURE THREAD
0x00007f9bb379373d	(chrome -./out/Release/../../build/linux/debian_wheezy_amd64-sysroot/usr/lib/gcc/x86_64-linux-gnu/4.6/../../../../include/c++/4.6/bits/stl_tree.h:660 )	AccountTrackerService::GetAccounts
0x00007f9bb64547ba	(chrome -./out/Release/../../chrome/browser/ui/webui/supervised_user_internals_message_handler.cc:270 )	SupervisedUserInternalsMessageHandler::SendBasicInfo
0x00007f9bac12f248	(libstdc++.so.6.0.19 + 0x000ba248 )	
0x00007f9bac12fe0a	(libstdc++.so.6.0.19 + 0x000bae0a )	
0x00007f9bac130281	(libstdc++.so.6.0.19 + 0x000bb281 )	
0x00007f9bb2fd949c	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/thread_cache.h:201 )	do_free_with_callback
0x00007f9bb410583f	(chrome + 0x0209583f )	
0x00007f9bb74a3101	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/tcmalloc.cc:1045 )	tc_malloc
0x00007f9bb2fc2f19	(chrome -./out/Release/../../base/allocator/allocator_shim.cc:150 )	ShimCppNew
0x00007f9bb2bb3f27	(chrome -./out/Release/../../build/linux/debian_wheezy_amd64-sysroot/usr/lib/gcc/x86_64-linux-gnu/4.6/../../../../include/c++/4.6/bits/char_traits.h:257 )	std::_Rb_tree<base::FilePath, base::FilePath, std::_Identity<base::FilePath>, std::less<base::FilePath>, std::allocator<base::FilePath> >::find
0x00007f9bb43a9ca8	(chrome -./out/Release/../../base/callback.h:397 )	content::WebUIImpl::ProcessWebUIMessage
0x00007f9bb43a92bf	(chrome + 0x023392bf )	
0x00007f9bb43a915b	(chrome -./out/Release/../../base/tuple.h:166 )	IPC::MessageT<ViewHostMsg_WebUISend_Meta, std::tuple<GURL, std::basic_string<char>, base::ListValue>, void>::Dispatch<content::WebUIImpl, content::WebUIImpl, void, void (content::WebUIImpl::*)(const GURL &, const std::basic_string<char> &, const base::ListValue &)>
0x00007f9bb2fd949c	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/thread_cache.h:201 )	do_free_with_callback
0x00007f9bb2bb6bcf	(chrome + 0x00b46bcf )	
0x00007f9bb76fd5bc	(chrome + 0x0568d5bc )	_fini
0x00007f9bb76fd391	(chrome + 0x0568d391 )	_fini
0x00007f9bb645575f	(chrome -./out/Release/../../chrome/browser/ui/webui/supervised_user_internals_message_handler.cc:131 )	SupervisedUserInternalsMessageHandler::IOThreadHelper::IOThreadHelper
0x00007f9bb6454182	(chrome -./out/Release/../../base/memory/ref_counted.h:183 )	SupervisedUserInternalsMessageHandler::HandleRegisterForEvents
0x00007f9bb43a907f	(chrome -./out/Release/../../content/browser/webui/web_ui_impl.cc:68 )	content::WebUIImpl::OnMessageReceived
0x00007f9bb7599f3d	(chrome + 0x05529f3d )	_fini
0x00007f9bb759a7a0	(chrome + 0x0552a7a0 )	_fini
0x00007f9bb43a9030	(chrome -./out/Release/../../content/browser/webui/web_ui_impl.cc:68 )	content::WebUIImpl::OnMessageReceived
0x00007f9bb43882f5	(chrome -./out/Release/../../content/browser/web_contents/web_contents_impl.cc:566 )	content::WebContentsImpl::OnMessageReceived
0x00007f9bb6c62552	(chrome -./out/Release/../../base/profiler/tracked_time.cc:51 )	tracked_objects::TrackedTime::Now
0x00007f9bb6c9a655	(chrome -./out/Release/../../base/tracked_objects.cc:739 )	tracked_objects::ThreadData::Now
0x00007f9bb6c60f83	(chrome -./out/Release/../../base/profiler/scoped_profile.cc:31 )	tracked_objects::ScopedProfile::~ScopedProfile
0x00007f9bb43a9091	(chrome -./out/Release/../../content/browser/webui/web_ui_impl.cc:68 )	content::WebUIImpl::OnMessageReceived
0x00007f9bb7599f3d	(chrome + 0x05529f3d )	_fini
0x00007f9bb759a7a0	(chrome + 0x0552a7a0 )	_fini
0x00007f9bb43a9030	(chrome -./out/Release/../../content/browser/webui/web_ui_impl.cc:68 )	content::WebUIImpl::OnMessageReceived
0x00007f9bb43882f5	(chrome -./out/Release/../../content/browser/web_contents/web_contents_impl.cc:566 )	content::WebContentsImpl::OnMessageReceived
0x00007f9bb34c50b3	(chrome -./out/Release/../../third_party/skia/src/core/SkRegion.cpp:291 )	SkRegion::setRuns
0x00007f9bb34c5d12	(chrome -./out/Release/../../third_party/skia/src/core/SkRegion.cpp:1081 )	SkRegion::Oper
0x00007f9bb2fd949c	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/thread_cache.h:201 )	do_free_with_callback
0x00007f9bb34c50b3	(chrome -./out/Release/../../third_party/skia/src/core/SkRegion.cpp:291 )	SkRegion::setRuns
0x00007f9bb2fd949c	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/thread_cache.h:201 )	do_free_with_callback
0x00007f9bb2fc2fc9	(chrome -./out/Release/../../base/allocator/allocator_shim.cc:164 )	ShimMalloc
0x00007f9bac62bcff	(libgdk-x11-2.0.so.0.2400.23 + 0x00091cff )	
0x00007f9bb34c5836	(chrome -./out/Release/../../third_party/skia/src/core/SkRegion.cpp:97 )	SkRegion::Oper
0x00007f9bacba7784	(libgtk-x11-2.0.so.0.2400.23 + 0x0035a784 )	
0x00007f9bac62bb83	(libgdk-x11-2.0.so.0.2400.23 + 0x00091b83 )	
0x00007f9bac5f3544	(libgdk-x11-2.0.so.0.2400.23 + 0x00059544 )	
0x00007f9bb2fd949c	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/thread_cache.h:201 )	do_free_with_callback
0x00007f9bb42ca366	(chrome -./out/Release/../../content/browser/renderer_host/render_view_host_impl.cc:891 )	content::RenderViewHostImpl::OnMessageReceived
0x00007f9bb74a3101	(chrome -./out/Release/../../third_party/tcmalloc/chromium/src/tcmalloc.cc:1045 )	tc_malloc
0x00007f9bb79080df	(chrome + 0x058980df )	_fini
0x00007f9bb2fc2f19	(chrome -./out/Release/../../base/allocator/allocator_shim.cc:150 )	ShimCppNew
0x00007f9bb79080df	(chrome + 0x058980df )	_fini
0x00007f9bb34c4e5d	(chrome -./out/Release/../../third_party/skia/src/core/SkRegion.cpp:1089 )	<name omitted>
... 34 more
0x00007f9bb7750aef	(chrome + 0x056e0aef )	_fini
0x00007f9babba292c	(libc-2.19.so -clock_gettime.c:115 )	__clock_gettime
0x00007f9bb6c82ed2	(chrome -./out/Release/../../base/time/time_posix.cc:98 )	base::TimeTicks::Now
0x00007f9bb6c62552	(chrome -./out/Release/../../base/profiler/tracked_time.cc:51 )	tracked_objects::TrackedTime::Now
0x00007f9bb6c9a655	(chrome -./out/Release/../../base/tracked_objects.cc:739 )	tracked_objects::ThreadData::Now
0x00007f9bb3ce04f4	(chrome -./out/Release/../../ipc/ipc_channel_proxy.cc:282 )	IPC::ChannelProxy::Context::OnDispatchMessage
0x00007f9bb7750aef	(chrome + 0x056e0aef )	_fini
0x00007f9bb6c3500b	(chrome -./out/Release/../../base/callback.h:397 )	base::debug::TaskAnnotator::RunTask
0x00007f9bb7750aef	(chrome + 0x056e0aef )	_fini
0x00007f9bb3ce040a	(chrome -./out/Release/../../ipc/ipc_channel_proxy.cc:103 )	IPC::ChannelProxy::Context::OnMessageReceivedNoFilter
0x00007f9bae9af8b8	(libpthread-2.19.so + 0x0000f8b8 )	
0x00007f9baab8e068	(libxcb.so.1.1.0 + 0x0000c068 )	
0x00007f9bb7559f3b	(chrome + 0x054e9f3b )	_fini
0x00007f9bb6c4a3f4	(chrome -./out/Release/../../base/message_loop/message_loop.cc:476 )	base::MessageLoop::RunTask
0x00007f9bb6c58dfc	(chrome -./out/Release/../../base/pending_task.cc:36 )	base::PendingTask::~PendingTask
0x00007f9bb6c4aae5	(chrome -./out/Release/../../base/message_loop/message_loop.cc:636 )	base::MessageLoop::DoDelayedWork
0x00007f9bb6c4a717	(chrome -./out/Release/../../base/message_loop/message_loop.cc:485 )	base::MessageLoop::DeferOrRunPendingTask
0x00007f9bb6c4a8ca	(chrome -./out/Release/../../base/message_loop/message_loop.cc:597 )	base::MessageLoop::DoWork
0x00007f9bb3ce16ef	(chrome + 0x01c716ef )	
0x00007f9bb7559f5a	(chrome + 0x054e9f5a )	_fini
0x00007f9bb7559f3b	(chrome + 0x054e9f3b )	_fini
0x00007f9bb3ce040a	(chrome -./out/Release/../../ipc/ipc_channel_proxy.cc:103 )	IPC::ChannelProxy::Context::OnMessageReceivedNoFilter
0x00007f9bb6c4c08f	(chrome + 0x04bdc08f )	
0x00007f9bb6c4c0a9	(chrome -./out/Release/../../base/message_loop/message_pump_glib.cc:267 )	base::::WorkSourceDispatch
0x00007f9bb0dc9e03	(libglib-2.0.so.0.4002.0 + 0x00048e03 )	
0x00007f9bb0dd8b3f	(libglib-2.0.so.0.4002.0 + 0x00057b3f )	
0x00007f9bb0dca047	(libglib-2.0.so.0.4002.0 + 0x00049047 )	
0x00007f9bb0dca0eb	(libglib-2.0.so.0.4002.0 + 0x000490eb )	
0x00007f9bb6c4bf85	(chrome -./out/Release/../../base/message_loop/message_pump_glib.cc:309 )	base::MessagePumpGlib::Run
0x00007f9bb2bab6b7	(chrome + 0x00b3b6b7 )	
0x00007f9bb6c6284f	(chrome -./out/Release/../../base/run_loop.cc:35 )	base::RunLoop::Run
0x00007f9bb2be55ac	(chrome -./out/Release/../../chrome/browser/chrome_browser_main.cc:1851 )	ChromeBrowserMainParts::MainMessageLoopRun
0x00007f9bb40da2f0	(chrome -./out/Release/../../content/browser/browser_main_runner.cc:63 )	content::BrowserMainRunnerImpl::Initialize
0x00007f9bac0e9d03	(libstdc++.so.6.0.19 + 0x00074d03 )	
0x00007f9bb40d7677	(chrome -./out/Release/../../content/browser/browser_main_loop.cc:945 )	content::BrowserMainLoop::RunMainMessageLoopParts
0x00007f9bb7580389	(chrome + 0x05510389 )	_fini
0x00007f9bb75803b4	(chrome + 0x055103b4 )	_fini
0x00007f9bb40da00a	(chrome -./out/Release/../../content/browser/browser_main_runner.cc:71 )	content::BrowserMainRunnerImpl::Initialize
0x00007f9bb40da41c	(chrome -./out/Release/../../content/browser/browser_main_runner.cc:154 )	content::BrowserMainRunnerImpl::Run
0x00007f9bb40d2cbb	(chrome -./out/Release/../../content/browser/browser_main.cc:45 )	content::BrowserMain
0x00007f9bac12f024	(libstdc++.so.6.0.19 + 0x000ba024 )	
0x00007f9bb2bab6b7	(chrome + 0x00b3b6b7 )	
0x00007f9bb2bac53d	(chrome -./out/Release/../../build/linux/debian_wheezy_amd64-sysroot/usr/lib/gcc/x86_64-linux-gnu/4.6/../../../../include/c++/4.6/bits/basic_string.h:2462 )	ChromeMainDelegate::RunProcess
0x00007f9bb6c11ce9	(chrome -./out/Release/../../content/app/content_main_runner.cc:754 )	content::ContentMainRunnerImpl::Run
0x00007f9bb7993d2f	(chrome + 0x05923d2f )	_fini
0x00007f9bb6c10b2f	(chrome -./out/Release/../../content/app/content_main.cc:19 )	content::ContentMain
0x00007f9bb2bab817	(chrome -./out/Release/../../chrome/app/chrome_main.cc:84 )	ChromeMain
0x00007f9bb74a25ff	(chrome + 0x054325ff )	__libc_csu_fini
0x00007f9bababbec4	(libc-2.19.so -libc-start.c:287 )	__libc_start_main
0x00007f9bb2bab6e0	(chrome + 0x00b3b6e0 )	_start

Sindhu@ Please update the bisect information.
Adding the blocker label please feel free to remove if not required.

Thanks,

Comment 2 by sc00335...@techmahindra.com, Apr 4 2016

Labels: -Needs-Bisect hasbisect
Owner: treib@chromium.org
CHANGELOG URL:
  https://chromium.googlesource.com/chromium/src/+log/d12aeb8306eaf1df7259b8a5ae7634ba735eef2a..a02317c0ca306333828f64520d691cc9ecdbaa87

Suspecting  https://codereview.chromium.org/1826153002 from changelog

@treib:Please help in re-assigning if it is not related to your change.

Comment 3 by sc00335...@techmahindra.com, Apr 4 2016

Status: Assigned (was: Untriaged)
Project Member

Comment 4 by sheriffbot@chromium.org, Apr 4 2016

Labels: M-50 Fracas
Users experienced this crash on the following builds:

Linux Beta 50.0.2661.57 -  0.14 CPM, 1 reports, 1 clients (signature AccountTrackerService::GetAccounts)

If this update was incorrect, please add "Fracas-Wrong" label to prevent future updates.

- Go/Fracas

Comment 5 by gov...@chromium.org, Apr 4 2016 

M50 Stable is launching very soon! Your bug is labelled as Stable ReleaseBlock, pls make sure to land the fix and get it merged ASAP. All changes MUST be merged into the release branch by 5pm on Apr-8 to make into the desktop Stable final build cut. Thanks!

Comment 7 by treib@chromium.org, Apr 6 2016

Status: Started (was: Assigned)

Comment 8 by treib@chromium.org, Apr 6 2016

Summary: Browser crashes on selecting chrome://supervised-user-internals in incognito and guest mode (was: [Regression]: Browser crashes on selecting chrome://supervised-user-internals in guest mode)
Not actually a regression, the offending code was added in https://codereview.chromium.org/1300643002 (which is already in stable).
What's new is that chrome://supervised-user-internals now appears in chrome://about, so it's a bit more visible than before.

Comment 9 by treib@chromium.org, Apr 6 2016

Labels: -M-50
...or, to be more precise: It's still a regression, but not a recent one. Since the addition to chrome://about makes it much more visible, I still consider it a stable blocker for M51, but there's no reason to merge to earlier branches.
Fix incoming.
Project Member

Comment 10 by bugdroid1@chromium.org, Apr 6 2016 

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/89f1e2e60059c782353b26fd2f9c7eb00a133810

commit 89f1e2e60059c782353b26fd2f9c7eb00a133810
Author: treib <treib@chromium.org>
Date: Wed Apr 06 13:46:58 2016

chrome://supervised-user-internals: handle null AccountTrackerService

This fixes a crash when the page is accessed in guest or incognito mode.

BUG= 600236 

Review URL: https://codereview.chromium.org/1859393002

Cr-Commit-Position: refs/heads/master@{#385449}

[modify] https://crrev.com/89f1e2e60059c782353b26fd2f9c7eb00a133810/chrome/browser/ui/webui/supervised_user_internals_message_handler.cc

Comment 11 by treib@chromium.org, Apr 6 2016

Status: Fixed (was: Started)

Sign in to add a comment