New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 671194 link

Starred by 13 users
Status: Fixed
Owner:
wfh@chromium.org
Closed: Feb 2017
Cc:
anan...@chromium.org
gov...@chromium.org
amineer@chromium.org
leon....@intel.com
ein...@il.ibm.com
roc...@chromium.org
finnur@chromium.org
robertshield@chromium.org
wfh@chromium.org
pbomm...@chromium.org
ligim...@chromium.org
dugg...@us.ibm.com
msrchandra@chromium.org
csharp@chromium.org
lio...@il.ibm.com
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 1
Type: Bug-Regression



Sign in to add a comment

Chrome 55 incompatibility with Trusteer Rapport

Project Member Reported by sheriffbot@chromium.org, Dec 5 2016 
Crash Signature: [Third party - rapportnikko.dll] mojo::edk::`anonymous namespace'::ChannelWin::WriteNoLock
Process Type: Browser
Platform: Win
Channel: Beta
Version: 55.0.2883.75
Distinct Clients: 1114
CPM: 3.39
Crash Reports: 1390
Median Uptime: 01m:07s
Infected Clients: 6.44%

Sample Reports:
https://crash.corp.google.com/browse?q=reportid=%274bf5ee4f00000000%27
https://crash.corp.google.com/browse?q=reportid=%274fc103a300000000%27
https://crash.corp.google.com/browse?q=reportid=%2757895fdf00000000%27
https://crash.corp.google.com/browse?q=reportid=%27b2eb2fdf00000000%27
https://crash.corp.google.com/browse?q=reportid=%27dc2c894f00000000%27

Crash Link:
https://crash.corp.google.com/browse?q=product.name%3D%27Chrome%27%20AND%20product.version%3D%2755.0.2883.75%27%20AND%20custom_data.ChromeCrashProto.magic_signature_1.name%3D%27%5BThird%20party%20-%20rapportnikko.dll%5D%20mojo%3A%3Aedk%3A%3A%60anonymous%20namespace%5C%27%3A%3AChannelWin%3A%3AWriteNoLock%27

Crash Link (with version impact distribution):
https://crash.corp.google.com/browse?q=product.name%3D%27Chrome%27%20AND%20custom_data.ChromeCrashProto.magic_signature_1.name%3D%27%5BThird%20party%20-%20rapportnikko.dll%5D%20mojo%3A%3Aedk%3A%3A%60anonymous%20namespace%5C%27%3A%3AChannelWin%3A%3AWriteNoLock%27

Crash Stacktrace:
ACCESS_VIOLATION_READ (0x0)
#0 0x757b9ee3 in CommandLineToArgvW 
#1 0x6a0bc169 in RapportNikko.DLL+0xc169 
#2 0x6a0d69a5 in RapportNikko.DLL+0x269a5 
#3 0x6a0d404c in RapportNikko.DLL+0x2404c 
#4 0x6a0cd93f in RapportNikko.DLL+0x1d93f 
#5 0x6a0db08e in RapportNikko.DLL+0x2b08e 
#6 0x6a0be610 in RapportNikko.DLL+0xe610 
#7 0x6a0c54f9 in RapportNikko.DLL+0x154f9 
#8 0x6fc091ed in rooksdol.dll+0x91ed 
#9 0x6fc0e709 in rooksdol.dll+0xe709 
#10 0x6fc0e557 in rooksdol.dll+0xe557 
#11 0x6fc12098 in rooksdol.dll+0x12098 
#13 0x769312cb in WriteFileImplementation 
#14 0x5a04a457 in mojo::edk::`anonymous namespace'::ChannelWin::WriteNoLock mojo/edk/system/channel_win.cc:304
#15 0x5a049e6d in mojo::edk::`anonymous namespace'::ChannelWin::Write mojo/edk/system/channel_win.cc:109
#16 0x5a049b09 in mojo::edk::NodeChannel::WriteChannelMessage mojo/edk/system/node_channel.cc:900
#17 0x5a048fd7 in mojo::edk::NodeChannel::PortsMessage mojo/edk/system/node_channel.cc:352
#18 0x5a03f5ce in mojo::edk::NodeController::SendPeerMessage mojo/edk/system/node_controller.cc:665
#19 0x5a03fad3 in mojo::edk::NodeController::ForwardMessage mojo/edk/system/node_controller.cc:798
#20 0x58ec9aba in mojo::edk::ports::Node::SendMessageInternal mojo/edk/system/ports/node.cc:854
#21 0x58ec8e33 in mojo::edk::ports::Node::SendMessage mojo/edk/system/ports/node.cc:315
#22 0x5a03e86a in mojo::edk::NodeController::SendMessage mojo/edk/system/node_controller.cc:286
#23 0x5a03d265 in mojo::edk::MessagePipeDispatcher::WriteMessage mojo/edk/system/message_pipe_dispatcher.cc:142
#24 0x5a03b927 in mojo::edk::Core::WriteMessageNew mojo/edk/system/core.cc:696
#25 0x58ec6c1f in MojoWriteMessageNewImpl mojo/edk/embedder/entrypoints.cc:120
#26 0x5971f0dd in mojo::WriteMessageNew mojo/public/cpp/system/message_pipe.h:97
#27 0x59be4d6f in mojo::Connector::Accept mojo/public/cpp/bindings/lib/connector.cc:127
#28 0x59eebe2b in IPC::`anonymous namespace'::ChannelAssociatedGroupController::SendMessageW ipc/ipc_mojo_bootstrap.cc:485
#29 0x59be647d in mojo::`anonymous namespace'::SendRunOrClosePipeMessage mojo/public/cpp/bindings/lib/pipe_control_message_proxy.cc:36
#30 0x59be6513 in mojo::PipeControlMessageProxy::NotifyPeerEndpointClosed mojo/public/cpp/bindings/lib/pipe_control_message_proxy.cc:57
#31 0x59eeb6bf in IPC::`anonymous namespace'::ChannelAssociatedGroupController::CloseEndpointHandle ipc/ipc_mojo_bootstrap.cc:183
#32 0x59be287a in mojo::ScopedInterfaceEndpointHandle::reset mojo/public/cpp/bindings/lib/scoped_interface_endpoint_handle.cc:38
#33 0x59be27f3 in mojo::ScopedInterfaceEndpointHandle::~ScopedInterfaceEndpointHandle mojo/public/cpp/bindings/lib/scoped_interface_endpoint_handle.cc:23
#34 0x59be16dc in mojo::InterfaceEndpointClient::~InterfaceEndpointClient mojo/public/cpp/bindings/lib/interface_endpoint_client.cc:173
#35 0x59be1619 in mojo::InterfaceEndpointClient::`scalar deleting destructor' 
#36 0x59eeda52 in IPC::internal::MessagePipeReader::~MessagePipeReader ipc/ipc_message_pipe_reader.cc:43
#37 0x59eeda15 in IPC::internal::MessagePipeReader::`scalar deleting destructor' 
#38 0x59ee5a5c in IPC::ChannelMojo::Close ipc/ipc_channel_mojo.cc:314
#39 0x59ee596f in IPC::ChannelMojo::~ChannelMojo ipc/ipc_channel_mojo.cc:281
#40 0x59ee5938 in IPC::ChannelMojo::`scalar deleting destructor' 
#41 0x58e0ebc8 in content::ChildProcessHostImpl::~ChildProcessHostImpl content/common/child_process_host_impl.cc:125
#42 0x58e0eb39 in content::ChildProcessHostImpl::`scalar deleting destructor' 
#43 0x5953d932 in content::BrowserChildProcessHostImpl::~BrowserChildProcessHostImpl content/browser/browser_child_process_host_impl.cc:195
#44 0x5953d82a in content::BrowserChildProcessHostImpl::`scalar deleting destructor' 
#45 0x5970b84d in content::UtilityProcessHostImpl::~UtilityProcessHostImpl content/browser/utility_process_host_impl.cc:175
#46 0x5970b7eb in content::UtilityProcessHostImpl::`scalar deleting destructor' 
#47 0x5a71a65b in ImageDecoder::StopBatchMode chrome/browser/image_decoder.cc:226
#48 0x5994827e in base::Timer::RunScheduledTask base/timer/timer.cc:213
#49 0x5997398f in base::debug::TaskAnnotator::RunTask base/debug/task_annotator.cc:54
#50 0x5991ff62 in base::MessageLoop::RunTask base/message_loop/message_loop.cc:405
#51 0x5992001f in base::MessageLoop::DeferOrRunPendingTask base/message_loop/message_loop.cc:414
#52 0x59920868 in base::MessageLoop::DoDelayedWork base/message_loop/message_loop.cc:552
#53 0x59974720 in base::MessagePumpForIO::DoRunLoop base/message_loop/message_pump_win.cc:740
#54 0x59973c74 in base::MessagePumpWin::Run base/message_loop/message_pump_win.cc:141
#55 0x5995d5fb in base::RunLoop::Run base/run_loop.cc:35
#56 0x59941a88 in base::Thread::Run base/threading/thread.cc:245
#57 0x59548d45 in content::BrowserThreadImpl::IOThreadRun content/browser/browser_thread_impl.cc:243
#58 0x59548e47 in content::BrowserThreadImpl::Run content/browser/browser_thread_impl.cc:278
#59 0x59941c1c in base::Thread::ThreadMain base/threading/thread.cc:333
#60 0x59915995 in base::`anonymous namespace'::ThreadFunc base/threading/platform_thread_win.cc:84
#61 0x76933369 in BaseThreadInitThunk 
#62 0x77579901 in __RtlUserThreadStart 
#63 0x775798d4 in _RtlUserThreadStart 


Reporter: beherad

Comment 1 by durga.behera@chromium.org, Dec 5 2016

Cc: -beherad@google.com gov...@chromium.org ligim...@chromium.org
Components: Internals>Mojo
Labels: -Type-Bug ReleaseBlock-Stable M-55 OS-Windows Type-Bug-Regression
Owner: roc...@chromium.org
Status: Assigned (was: Untriaged)
1) This is a regression crash seen from 50.0.2661.102 and spiked in latest stable 55.0.2883.75.
2) Currently its a top # 2 renderer crasher having 2702 crashes from 2002 unique client Ids.
3) Crashes are not seen on M56 and M57 channels.
4) Link to list of builds where crashes are seen:
https://crash.corp.google.com/browse?q=product.name%3D%27Chrome%27%20AND%20custom_data.ChromeCrashProto.ptype%3D%27browser%27%20AND%20custom_data.ChromeCrashProto.magic_signature_1.name%3D%27%5BThird%20party%20-%20rapportnikko.dll%5D%20mojo%3A%3Aedk%3A%3A%60anonymous%20namespace%5C%27%3A%3AChannelWin%3A%3AWriteNoLock%27&ignore_case=false&enable_rewrite=true&omit_field_name=&omit_field_value=&omit_field_opt=%3D#samplereports:5,productversion:1000
5) OMahaproxy UI CL:

Possible suspect from the above CL based on the crashed file "node_controller.cc".
Review-Url: https://codereview.chromium.org/2264543003
rockot@ : Could you please take a look into this if its related to your change.
6) Crashes are seen only on Windows and has more crash instances, so adding ReleaseBlock-Stable against M55 to get it fixed before next stable push.
Project Member

Comment 2 by sheriffbot@chromium.org, Dec 5 2016

Labels: FoundIn-M-55
Users experienced this crash on the following builds:

Win Beta 55.0.2883.75 -  3.19 CPM, 1349 reports, 1088 clients (signature [Third party - rapportnikko.dll] mojo::edk::`anonymous namespace'::ChannelWin::WriteNoLock)

If this update was incorrect, please add "Fracas-Wrong" label to prevent future updates.

- Go/Fracas

Comment 4 by roc...@chromium.org, Dec 5 2016

Cc: wfh@chromium.org
I don't know what we normally do in cases like this, but clearly the crash is in a third-party DLL belonging to Trusteer Rapport. +wfh@ any advice?

Comment 5 by gov...@chromium.org, Dec 5 2016 


A friendly reminder that Your bug is labelled as Stable ReleaseBlock for this week M55 Stable release cut, pls make sure to land the fix and get it merged into the release branch ASAP. Thank you!

Comment 6 by wfh@chromium.org, Dec 5 2016

Cc: pbomm...@chromium.org
Labels: -Restrict-View-EditIssue
We've had issues with Trusteer Rapport before. I think previously blacklisting them has caused other issues.

The first step here would be to get a repro by installing the latest version and checking the crashes on M55.

pbommana - can you do this?

Comment 7 by wfh@chromium.org, Dec 5 2016

Cc: csharp@chromium.org robertshield@chromium.org
adding other potentially interested folks

Comment 8 by wfh@chromium.org, Dec 5 2016 

100% are x86

an even spread of versions across win7 -> win10 

100% have some combination of

%ProgramFiles%\trusteer\rapport\bin\rooksbas.dll
%ProgramFiles%\trusteer\rapport\bin\trf.dll
%ProgramFiles%\trusteer\rapport\bin\rooksdol.dll
%ProgramFiles%\trusteer\rapport\bin\rapportutil.dll
%ProgramFiles%\trusteer\rapport\bin\rapportnikko.dll
%ProgramFiles%\trusteer\rapport\bin\rapportgp.dll

in them.

Comment 9 by pbomm...@chromium.org, Dec 5 2016 

So far I have tried installing "Trusteer Endpoint Protection version 3.5.1609.107" on Windows 7(32bit) and Windows 8.1 with Chrome 32bit haven't seen any browser crashes.

Comment 10 by wfh@chromium.org, Dec 5 2016 

issue 537647 and  issue 564467  is similar and we added the product to the blacklist but that caused further incompatibilities.

The best steps here are to try and get a repro then contact Trusteer to try and collaboratively resolve the issue.

Comment 11 by robertshield@chromium.org, Dec 6 2016 

Yes, we've seen this software before. csharp@ will have more details but IIRC when blacklisted, they used to (maybe intentionally) kill the process at startup.

Working with them again to help them fix their crashes sounds good to me.

Comment 12 by wfh@chromium.org, Dec 6 2016

Cc: roc...@chromium.org
Owner: wfh@chromium.org
Status: Started (was: Assigned)
I have contacted Trusteer R&D for help reproducing and diagnosing this issue.

Comment 13 by dtapu...@chromium.org, Dec 6 2016 

Issue 671610 has been merged into this issue.

Comment 14 by pbomm...@chromium.org, Dec 6 2016 

Issue 671660 has been merged into this issue.

Comment 15 by pbomm...@chromium.org, Dec 6 2016 

This is currently top#1 browser crash on latest Chrome stable i.e., 55.9.2883.75, As I see there are 10 different magic signatures crashes which are caused due to  "rapportnikko" please find the data from below url :

URL for all crashes due to rapportnikko : https://goto.google.com/udnjy

I am still trying, so far no luck in reproducing the browser crash.

Comment 16 by wfh@chromium.org, Dec 6 2016 

Update from Trusteer is that they have identified the incompatibility and hope to have a fix this week.

Comment 17 by vabr@chromium.org, Dec 7 2016 

Issue 671611 has been merged into this issue.

Comment 18 by ranjitkan@chromium.org, Dec 7 2016

Labels: prestable-55.0.2883.75
Adding label "prestable-55.0.2883.75". Since the instances are spiked mainly in build 55.0.2883.75. Please undo or remove if not the case.

Comment 19 by pbomm...@chromium.org, Dec 7 2016 

Issue 672108 has been merged into this issue.

Comment 20 by asanka@chromium.org, Dec 7 2016 

Issue 672033 has been merged into this issue.

Comment 21 by asanka@chromium.org, Dec 7 2016 

Issue 672000 has been merged into this issue.

Comment 22 by wfh@chromium.org, Dec 9 2016

Summary: Chrome 55 incompatibility with Trusteer Rapport (was: Crash: [Third party - rapportnikko.dll] mojo::edk::`anonymous namespace'::ChannelWin::WriteNoLock)

Comment 23 by wfh@chromium.org, Dec 9 2016

Cc: ein...@il.ibm.com
There appear to be two new versions of Rapport DLLs now:

3.5.1804.54
3.5.1804.56

Both are still causing crashes with signature "[Renderer kill] autofill::mojom::PasswordManagerDriverRequestValidator::Accept" which is issue 671611

Comment 24 by wfh@chromium.org, Dec 9 2016 

Still getting crashes on latest Chrome and latest Rapport.


0:000> kv
  *** Stack trace for last set context - .thread/.cxr resets it
 # ChildEBP RetAddr  Args to Child              
00 0022ed08 66d0f41f 0022ee5c 0ae79a58 00000067 chrome_elf!DumpProcessWithoutCrash+0x1f (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\components\crash\content\app\crashpad_win.cc @ 154]
01 0022ed30 66e6fe21 689151ec 00000000 00000002 chrome_66490000!content::bad_message::ReceivedBadMessage+0x1b (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\content\browser\bad_message.cc @ 56]
02 0022edf0 66d8a7bd 00000011 0022ee1c 0022ee38 chrome_66490000!content::RenderProcessHostImpl::OnMojoError+0x6e (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\content\browser\renderer_host\render_process_host_impl.cc @ 3038]
03 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::FunctorTraits<void (__cdecl*)(int,base::FilePath const &),void>::Invoke+0xc (Inline Function @ 66d8a7bd) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 164]
04 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::InvokeHelper<0,void>::MakeItSo+0xc (Inline Function @ 66d8a7bd) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 285]
05 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__cdecl*)(int,base::FilePath const &),int>,void __cdecl(base::FilePath const &)>::RunImpl+0xc (Inline Function @ 66d8a7bd) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 361]
06 0022ee00 6781edac 0b09ad78 0022ee1c 0aaa1cd8 chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__cdecl*)(int,base::FilePath const &),int>,void __cdecl(base::FilePath const &)>::Run+0xf (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 339]
07 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::RunMixin<base::Callback<void __cdecl(std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &),1,1> >::Run+0xa (Inline Function @ 6781edac) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\callback.h @ 64]
08 (Inline) -------- -------- -------- -------- chrome_66490000!mojo::edk::NodeChannel::NotifyBadMessage+0x27 (Inline Function @ 6781edac) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\edk\system\node_channel.cc @ 227]
09 0022ee38 6781bf98 0b198060 0022ee5c 0022f048 chrome_66490000!mojo::edk::NodeController::NotifyBadMessageFrom+0x50 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\edk\system\node_controller.cc @ 386]
0a 0022ee78 666a70ff 0b0e2710 0aaa1cd8 00000067 chrome_66490000!mojo::edk::Core::NotifyBadMessage+0xc0 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\edk\system\core.cc @ 796]
0b 0022ee8c 673c0b1e 0b0e2710 0aaa1cd8 00000067 chrome_66490000!MojoNotifyBadMessageImpl+0x11 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\edk\embedder\entrypoints.cc @ 255]
0c (Inline) -------- -------- -------- -------- chrome_66490000!MojoNotifyBadMessage+0x11 (Inline Function @ 673c0b1e) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\c\system\thunks.cc @ 282]
0d (Inline) -------- -------- -------- -------- chrome_66490000!mojo::NotifyBadMessage+0x11 (Inline Function @ 673c0b1e) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\system\message.h @ 78]
0e (Inline) -------- -------- -------- -------- chrome_66490000!mojo::internal::MessageBuffer::NotifyBadMessage+0x1d (Inline Function @ 673c0b1e) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\message_buffer.cc @ 47]
0f 0022eeb4 673c06f1 0022ef8c 0022f01c 0022f048 chrome_66490000!mojo::Message::NotifyBadMessage+0x2e (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\message.cc @ 106]
10 0022efac 670236c5 00000000 0022f048 0022f048 chrome_66490000!mojo::internal::ReportValidationError+0x176 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\validation_errors.cc @ 85]
11 0022efec 670235f0 0022f01c 0ae043d8 0b08b208 chrome_66490000!mojo::internal::Array_Data<mojo::internal::Pointer<autofill::mojom::internal::PasswordForm_Data> >::Validate+0xc4 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\array_internal.h @ 301]
12 0022f004 670230ba 0022f01c 0b03e5d4 0022f120 chrome_66490000!mojo::internal::ValidateContainer<mojo::internal::Array_Data<mojo::internal::Pointer<autofill::mojom::internal::PasswordForm_Data> > >+0x4f (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\validation_util.h @ 148]
13 0022f030 67022265 0b03e5d0 0b08b208 684a6b40 chrome_66490000!autofill::mojom::internal::PasswordManagerDriver_PasswordFormsRendered_Params_Data::Validate+0x8d (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\out\release\gen\components\autofill\content\public\interfaces\autofill_driver.mojom-shared.cc @ 907]
14 (Inline) -------- -------- -------- -------- chrome_66490000!mojo::internal::ValidateMessagePayload+0x11 (Inline Function @ 67022265) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\validation_util.h @ 81]
15 0022f06c 673c63ea 0022f120 0b090180 00000000 chrome_66490000!autofill::mojom::PasswordManagerDriverRequestValidator::Accept+0xe1 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\out\release\gen\components\autofill\content\public\interfaces\autofill_driver.mojom.cc @ 1693]
16 0022f08c 673c3e98 0022f120 00000002 00000000 chrome_66490000!mojo::FilterChain::Accept+0x22 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\filter_chain.cc @ 38]
17 (Inline) -------- -------- -------- -------- chrome_66490000!mojo::InterfaceEndpointClient::HandleIncomingMessage+0x9 (Inline Function @ 673c3e98) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\interface_endpoint_client.cc @ 273]
18 0022f0ac 673c37ae 0b08b1e0 00000002 00438b20 chrome_66490000!mojo::internal::MultiplexRouter::ProcessIncomingMessage+0x108 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\multiplex_router.cc @ 824]
19 0022f0e4 673c6400 0022f120 00000000 0b0901b0 chrome_66490000!mojo::internal::MultiplexRouter::Accept+0x4f (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\multiplex_router.cc @ 536]
1a 0022f104 673c51dd 0022f120 00000000 0b0901b0 chrome_66490000!mojo::FilterChain::Accept+0x38 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\filter_chain.cc @ 41]
1b 0022f144 673c5032 0022f154 0b01ea50 00000000 chrome_66490000!mojo::Connector::ReadSingleMessage+0x63 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\connector.cc @ 246]
1c (Inline) -------- -------- -------- -------- chrome_66490000!mojo::Connector::ReadAllAvailableMessages+0xc (Inline Function @ 673c5032) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\connector.cc @ 272]
1d 0022f15c 66cd22a9 00000000 0022f194 673c7596 chrome_66490000!mojo::Connector::OnHandleReadyInternal+0x34 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\bindings\lib\connector.cc @ 205]
1e (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::FunctorTraits<void (__thiscall content::AccessibilityUI::*)(base::ListValue const *),void>::Invoke+0xe (Inline Function @ 66cd22a9) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 214]
1f (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::InvokeHelper<0,void>::MakeItSo+0xe (Inline Function @ 66cd22a9) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 285]
20 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__thiscall content::AccessibilityUI::*)(base::ListValue const *),base::internal::UnretainedWrapper<content::AccessibilityUI> >,void __cdecl(base::ListValue const *)>::RunImpl+0xe (Inline Function @ 66cd22a9) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 361]
21 0022f168 673c7596 0b09c058 0022f18c 673c753e chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__thiscall content::AccessibilityUI::*)(base::ListValue const *),base::internal::UnretainedWrapper<content::AccessibilityUI> >,void __cdecl(base::ListValue const *)>::Run+0x11 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 343]
22 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::RunMixin<base::Callback<void __cdecl(unsigned int),1,1> >::Run+0xc (Inline Function @ 673c7596) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\callback.h @ 64]
23 0022f194 66c8840a 00000000 0022f3b0 00000000 chrome_66490000!mojo::Watcher::OnHandleReady+0x58 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\mojo\public\cpp\system\watcher.cc @ 122]
24 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::FunctorTraits<void (__thiscall policy::ExternalPolicyDataFetcherBackend::*)(policy::ExternalPolicyDataFetcher::Job *),void>::Invoke+0x13 (Inline Function @ 66c8840a) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 214]
25 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::InvokeHelper<1,void>::MakeItSo+0x2a (Inline Function @ 66c8840a) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 305]
26 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__thiscall policy::ExternalPolicyDataFetcherBackend::*)(policy::ExternalPolicyDataFetcher::Job *),base::WeakPtr<policy::ExternalPolicyDataFetcherBackend>,policy::ExternalPolicyDataFetcher::Job *>,void __cdecl(void)>::RunImpl+0x2d (Inline Function @ 66c8840a) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 361]
27 0022f1b4 67153b10 0b1a6910 0022f3b0 00a03de0 chrome_66490000!base::internal::Invoker<base::internal::BindState<void (__thiscall policy::ExternalPolicyDataFetcherBackend::*)(policy::ExternalPolicyDataFetcher::Job *),base::WeakPtr<policy::ExternalPolicyDataFetcherBackend>,policy::ExternalPolicyDataFetcher::Job *>,void __cdecl(void)>::Run+0x40 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\base\bind_internal.h @ 343]
28 (Inline) -------- -------- -------- -------- chrome_66490000!base::internal::RunMixin<base::Callback<void __cdecl(void),1,1> >::Run+0x7 (Inline Function @ 67153b10) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\callback.h @ 64]
29 0022f220 671000f3 684d0498 0022f3b0 0b1a6910 chrome_66490000!base::debug::TaskAnnotator::RunTask+0x180 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\debug\task_annotator.cc @ 54]
2a 0022f344 67100908 0022f3b0 00000000 009bd4f8 chrome_66490000!base::MessageLoop::RunTask+0x1c3 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_loop.cc @ 406]
2b (Inline) -------- -------- -------- -------- chrome_66490000!base::MessageLoop::DeferOrRunPendingTask+0x5c (Inline Function @ 67100908) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_loop.cc @ 414]
2c 0022f4a0 671540cf 00000000 009bd4f8 6845f300 chrome_66490000!base::MessageLoop::DoWork+0x388 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_loop.cc @ 513]
2d 0022f4d0 67153df5 00000000 0022f548 00a03de0 chrome_66490000!base::MessagePumpForUI::DoRunLoop+0x5f (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_pump_win.cc @ 264]
2e 0022f4fc 6713d76c 00a03de0 004351b0 0a5f1400 chrome_66490000!base::MessagePumpWin::Run+0x55 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_pump_win.cc @ 143]
2f (Inline) -------- -------- -------- -------- chrome_66490000!base::MessageLoop::RunHandler+0x9 (Inline Function @ 6713d76c) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\message_loop\message_loop.cc @ 370]
30 0022f528 6708a8f0 00000000 003e0a48 6845f39c chrome_66490000!base::RunLoop::Run+0x8c (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\base\run_loop.cc @ 36]
31 0022f564 66d21c82 003e0a58 ffffffff 00439960 chrome_66490000!ChromeBrowserMainParts::MainMessageLoopRun+0xc4 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\chrome\browser\chrome_browser_main.cc @ 2118]
32 0022f578 66d245de 00439960 00000000 0022f5a4 chrome_66490000!content::BrowserMainLoop::RunMainMessageLoopParts+0x51 (FPO: [0,0,4]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\content\browser\browser_main_loop.cc @ 983]
33 0022f588 66d1fe81 00000000 00000000 ffffffff chrome_66490000!content::BrowserMainRunnerImpl::Run+0x16 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\content\browser\browser_main_runner.cc @ 156]
34 0022f5a4 67052625 0022f5c8 ffffffff 004890e0 chrome_66490000!content::BrowserMain+0x143 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\content\browser\browser_main.cc @ 46]
35 (Inline) -------- -------- -------- -------- chrome_66490000!content::RunNamedProcessTypeMain+0x64 (Inline Function @ 67052625) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\content\app\content_main_runner.cc @ 411]
36 0022f5f0 665836a4 0043a558 009dd6a8 0043a550 chrome_66490000!content::ContentMainRunnerImpl::Run+0xf6 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\content\app\content_main_runner.cc @ 779]
37 (Inline) -------- -------- -------- -------- chrome_66490000!content::ContentMain+0x5f (Inline Function @ 665836a4) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\content\app\content_main.cc @ 20]
38 0022f638 011253c0 01120000 0022f65c 6c1c7a7d chrome_66490000!ChromeMain+0xe1 (FPO: [Non-Fpo]) (CONV: cdecl) [c:\b\build\slave\win-pgo\build\src\chrome\app\chrome_main.cc @ 97]
39 0022f6fc 01121ad3 01120000 6c1c7a7d 00000000 chrome!MainDllLoader::Launch+0x2e3 (FPO: [Non-Fpo]) (CONV: thiscall) [c:\b\build\slave\win-pgo\build\src\chrome\app\main_dll_loader_win.cc @ 174]
3a 0022f820 0118a774 01120000 00000000 003e1d22 chrome!wWinMain+0x14d (FPO: [Non-Fpo]) (CONV: stdcall) [c:\b\build\slave\win-pgo\build\src\chrome\app\chrome_exe_main_win.cc @ 248]
3b (Inline) -------- -------- -------- -------- chrome!invoke_main+0x1a (Inline Function @ 0118a774) (CONV: cdecl) [f:\dd\vctools\crt\vcstartup\src\startup\exe_common.inl @ 113]
3c 0022f86c 7681ef1c 7ffd8000 0022f8b8 76ea367a chrome!__scrt_common_main_seh+0xf6 (FPO: [Non-Fpo]) (CONV: cdecl) [f:\dd\vctools\crt\vcstartup\src\startup\exe_common.inl @ 253]
3d 0022f878 76ea367a 7ffd8000 76c8e4c6 00000000 kernel32!BaseThreadInitThunk+0xe (FPO: [Non-Fpo])
3e 0022f8b8 76ea364d 0118a7e6 7ffd8000 00000000 ntdll!__RtlUserThreadStart+0x70 (FPO: [Non-Fpo])
3f 0022f8d0 00000000 0118a7e6 7ffd8000 00000000 ntdll!_RtlUserThreadStart+0x1b (FPO: [Non-Fpo])
0:000> lmvm chrome
Browse full module list
start    end        module name
01120000 01209000   chrome   C (private pdb symbols)  c:\src\symbols\chrome.exe.pdb\664A796DCDAA4B25A87EC5071B3145AA1\chrome.exe.pdb
    Loaded symbol image file: chrome.exe
    Mapped memory image file: c:\src\symbols\chrome.exe\5848DB5Ce9000\chrome.exe
    Image path: C:\Program Files\Google\Chrome\Application\chrome.exe
    Image name: chrome.exe
    Browse all global symbols  functions  data
    Timestamp:        Wed Dec 07 20:02:36 2016 (5848DB5C)
    CheckSum:         00000000
    ImageSize:        000E9000
    File version:     55.0.2883.87
    Product version:  55.0.2883.87
    File flags:       0 (Mask 0)
    File OS:          0 Unknown Base
    File type:        1.0 App
    File date:        00000000.00000000
    Translations:     0409.04b0
    CompanyName:      Google Inc.
    ProductName:      Google Chrome
    InternalName:     chrome_exe
    OriginalFilename: chrome.exe
    ProductVersion:   55.0.2883.87
    FileVersion:      55.0.2883.87
    FileDescription:  Google Chrome
    LegalCopyright:   Copyright 2016 Google Inc. All rights reserved.
0:000> lmvm rapportnikko
Browse full module list
start    end        module name
66210000 662cc000   RapportNikko   (deferred)             
    Image path: C:\Program Files\Trusteer\Rapport\bin\RapportNikko.DLL
    Image name: RapportNikko.DLL
    Browse all global symbols  functions  data
    Timestamp:        Tue Dec 06 08:28:31 2016 (5846E72F)
    CheckSum:         00000000
    ImageSize:        000BC000
    File version:     3.5.1804.56
    Product version:  3.5.1804.56
    File flags:       0 (Mask 0)
    File OS:          0 Unknown Base
    File type:        2.0 Dll
    File date:        00000000.00000000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

Comment 25 by wfh@chromium.org, Dec 9 2016

Cc: leon....@intel.com vabr@chromium.org
rockot - it would be interesting to know if this error is because the PasswordManagerDriver->PasswordFormsParsed message is being specifically corrupted here, or whether it's just an accident i.e. this just happens to be the first message sent or by an accident of the internal processing of this message (e.g. a particular message ID, or something like that)?

message appears to be defined here: https://cs.chromium.org/chromium/src/components/autofill/content/common/autofill_driver.mojom?sq=package:chromium&l=70

Comment 26 by roc...@chromium.org, Dec 9 2016 

I think there's enough arbitrary IPC between channel setup and the first
possible instance of this message that it would be extremely unlikely to
not see random validation errors on other interfaces. It seems likely that
this is a targeted (and obviously invalid) transformation of that specific
message.

Comment 27 by wfh@chromium.org, Dec 10 2016

Cc: finnur@chromium.org lio...@il.ibm.com
Given this injection and subsequent tampering of IPC messages is still causing crashes on the latest versions of Trusteer Rapport and Google Chrome, we are planning to add an in-product notification to warn users of this incompatibility.
Project Member

Comment 28 by bugdroid1@chromium.org, Dec 10 2016 

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb

commit 07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb
Author: wfh <wfh@chromium.org>
Date: Sat Dec 10 02:35:11 2016

Annotate Trusteer Rapport < 3.6 as incompatible with Chrome.

BUG= 671194 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng
TEST=manual, install Trusteer Rapport, verify dialog appears.

Review-Url: https://codereview.chromium.org/2566733003
Cr-Commit-Position: refs/heads/master@{#437729}

[modify] https://crrev.com/07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb/chrome/browser/win/enumerate_modules_model.cc
[modify] https://crrev.com/07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb/chrome/browser/win/enumerate_modules_model.h

Comment 29 by wfh@chromium.org, Dec 10 2016

Labels: Merge-Request-55

Comment 30 by gov...@chromium.org, Dec 10 2016

Cc: anan...@chromium.org amineer@chromium.org
Labels: -Merge-Request-55 Merge-Approved-55
Approving merge to M55 branch 2883 per internal email thread.
Project Member

Comment 31 by bugdroid1@chromium.org, Dec 10 2016

Labels: -merge-approved-55 merge-merged-2883
The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/80f677bbae431925b07c329adcd36a6fae486dfa

commit 80f677bbae431925b07c329adcd36a6fae486dfa
Author: Will Harris <wfh@chromium.org>
Date: Sat Dec 10 20:56:56 2016

Merge M55: Annotate Trusteer Rapport < 3.6 as incompatible with Chrome.

BUG= 671194 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng
TEST=manual, install Trusteer Rapport, verify dialog appears.

Review-Url: https://codereview.chromium.org/2566733003
Cr-Commit-Position: refs/heads/master@{#437729}
(cherry picked from commit 07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb)

Review URL: https://codereview.chromium.org/2564273002 .

Cr-Commit-Position: refs/branch-heads/2883@{#734}
Cr-Branched-From: 614d31daee2f61b0180df403a8ad43f20b9f6dd7-refs/heads/master@{#423768}

[modify] https://crrev.com/80f677bbae431925b07c329adcd36a6fae486dfa/chrome/browser/win/enumerate_modules_model.cc
[modify] https://crrev.com/80f677bbae431925b07c329adcd36a6fae486dfa/chrome/browser/win/enumerate_modules_model.h

Comment 32 by kkaluri@chromium.org, Dec 12 2016 

Issue 673093 has been merged into this issue.

Comment 33 by wfh@chromium.org, Dec 12 2016

Cc: dugg...@us.ibm.com

Comment 34 by msrchandra@chromium.org, Dec 13 2016

Cc: msrchandra@chromium.org
Labels: Needs-Feedback
Tested the issue by installing IBM Trusteer Rapport on Chrome Stable# 55.0.2883.95 on Windows 7 (64 - bit OS) using 32 & 64 - bit Chrome and Windows 10 (32 - bit OS) using 32 - bit Chrome.
Followed the below steps and providing the observations --

Case (a) --
(i) Installed IBM Trusteer successfully.
(ii) Via Cmd installed 55.0.2883.87 and launched Chrome.
(iii) Enabled IBM Trusteer extension on Chrome# 55.0.2883.87.
(iv) Navigated to www.bankofamerica.com.
(v) Now via cmd updated using the diff "55.0.2883.95_55.0.2883.87_chrome_updater_w3pgo.exe".
(vi) After successfully executed, Navigated to chrome://chrome and clicked on Relaunch.
(vii) IBM Trusteer Rapport extension is getting disabled after relaunch. (The extension is enabled under chrome://extensions but adjacent to omnibox the extension is greyed out.

Case (b) --
(i) Installed IBM Trusteer successfully.
(ii) Via Cmd installed 55.0.2883.95 and launched Chrome.
(iii) IBM Trusteer Rapport is disabled in the Latest Stable# 55.0.2883.95.

@wfh -- Could you please provide us an update whether this is the expected behavior or not so that the issue would be further triaged.
Thanks in Advance.

Comment 35 by msrchandra@chromium.org, Dec 13 2016

Labels: TE-Verified-M55 TE-Verified-55.0.2883.95
Adding TE Verified labels as Comment#35 is ecpected behavior.
Thank You.

Comment 36 by pbomm...@chromium.org, Dec 13 2016 

This is expected behavior,Please correct me if I am wrong.When trusteer  disable DLL not to load inside Chrome hence we see the extension as greyedout which in return doesn't crash the webpages.
Project Member

Comment 37 by bugdroid1@chromium.org, Dec 13 2016 

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/3992d8758269d26ad8e40b37ef6702deca3b8e2f

commit 3992d8758269d26ad8e40b37ef6702deca3b8e2f
Author: Will Harris <wfh@chromium.org>
Date: Tue Dec 13 22:41:02 2016

Merge M55: Revert of Annotate Trusteer Rapport < 3.6 as incompatible with Chrome. (patchset #1 id:1 of https://codereview.chromium.org/2566733003/ )

Reason for revert:
These issues have been resolved in the latest update from Trusteer.

Original issue's description:
> Annotate Trusteer Rapport < 3.6 as incompatible with Chrome.
>
> BUG= 671194 
> CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng
> TEST=manual, install Trusteer Rapport, verify dialog appears.
>
> Committed: https://crrev.com/07a5425d95dc96b3d0a3bd8acad943cf0f4cd2fb
> Cr-Commit-Position: refs/heads/master@{#437729}

TBR=chrisha@chromium.org,jschuh@chromium.org,finnur@chromium.org,pmonette@chromium.org
BUG= 671194 

Review-Url: https://codereview.chromium.org/2577533002
Cr-Commit-Position: refs/heads/master@{#438293}
(cherry picked from commit b17b3a185ede96b5654f5ece8d19ee4f070d96ce)
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng

Review URL: https://codereview.chromium.org/2569353002 .

Cr-Commit-Position: refs/branch-heads/2883@{#743}
Cr-Branched-From: 614d31daee2f61b0180df403a8ad43f20b9f6dd7-refs/heads/master@{#423768}

[modify] https://crrev.com/3992d8758269d26ad8e40b37ef6702deca3b8e2f/chrome/browser/win/enumerate_modules_model.cc
[modify] https://crrev.com/3992d8758269d26ad8e40b37ef6702deca3b8e2f/chrome/browser/win/enumerate_modules_model.h

Comment 38 by brajkumar@chromium.org, Dec 15 2016 

Issue 672799 has been merged into this issue.

Comment 40 by wfh@chromium.org, Feb 14 2017

Status: Fixed (was: Started)
I think this can be marked fixed.

Comment 41 by vabr@chromium.org, Nov 29

Cc: -vabr@chromium.org

Sign in to add a comment