Issue metadata
Sign in to add a comment
|
Crash: blink::FrameLoader::loadFailed |
||||||||||||||||||||||
Issue descriptionCrash Signature: blink::FrameLoader::loadFailed Process Type: Renderer Platform: Mac Channel: Canary Version: 59.0.3048.0 Distinct Clients: 3 CPM: 0.53 Crash Reports: 3 Median Uptime: 2s Infected Clients: 0.0% Sample Reports: https://crash.corp.google.com/browse?q=reportid=%270abb4f6640000000%27 https://crash.corp.google.com/browse?q=reportid=%27169b79b0a0000000%27 https://crash.corp.google.com/browse?q=reportid=%278b81655480000000%27 Crash Link: https://crash.corp.google.com/browse?q=product.name%3D%27Chrome_Mac%27%20AND%20product.version%3D%2759.0.3048.0%27%20AND%20custom_data.ChromeCrashProto.magic_signature_1.name%3D%27blink%3A%3AFrameLoader%3A%3AloadFailed%27 Crash Link (with version impact distribution): https://crash.corp.google.com/browse?q=product.name%3D%27Chrome_Mac%27%20AND%20custom_data.ChromeCrashProto.magic_signature_1.name%3D%27blink%3A%3AFrameLoader%3A%3AloadFailed%27 Crash Stacktrace: EXC_BAD_ACCESS (0x6e8) #0 0x111ff5e53 in blink::FrameLoader::loadFailed third_party/WebKit/Source/core/loader/DocumentLoader.h:149 #1 0x1115fe8fa in blink::WebLocalFrameImpl::maybeRenderFallbackContent const third_party/WebKit/Source/web/WebLocalFrameImpl.cpp:2094 #2 0x112842024 in content::RenderFrameImpl::OnFailedNavigation content/renderer/render_frame_impl.cc:5231 #3 0x112841ce4 in bool IPC::MessageT<FrameMsg_FailedNavigation_Meta, std::__1::tuple<content::CommonNavigationParams, content::RequestNavigationParams, bool, int>, void>::Dispatch<content::RenderFrameImpl, content::RenderFrameImpl, void, void base/tuple.h:91 #4 0x1128388d6 in content::RenderFrameImpl::OnMessageReceived content/renderer/render_frame_impl.cc:1587 #5 0x10f0273aa in IPC::ChannelProxy::Context::OnDispatchMessage ipc/ipc_channel_proxy.cc:329 #6 0x10ea8003f in base::debug::TaskAnnotator::RunTask base/callback.h:91 #7 0x1114ac74b in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:533 #8 0x1114aa8d1 in blink::scheduler::TaskQueueManager::DoWork third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:331 #9 0x10ea8003f in base::debug::TaskAnnotator::RunTask base/callback.h:91 #10 0x10eaa5b7a in base::MessageLoop::RunTask base/message_loop/message_loop.cc:423 #11 0x10eaa5ecb in base::MessageLoop::DeferOrRunPendingTask base/message_loop/message_loop.cc:434 #12 0x10eaa6292 in base::MessageLoop::DoWork base/message_loop/message_loop.cc:527 #13 0x10eaa96a9 in base::MessagePumpCFRunLoopBase::RunWork base/message_loop/message_pump_mac.mm:420 #14 0x10ea99f29 in base::mac::CallWithEHFrame #15 0x10eaa90d3 in base::MessagePumpCFRunLoopBase::RunWorkSource base/message_loop/message_pump_mac.mm:396 #16 0x7fffa516e3c0 in CoreFoundation+0xa73c0 #17 0x7fffa514f2cc in CoreFoundation+0x882cc #18 0x7fffa514e7c5 in CoreFoundation+0x877c5 #19 0x7fffa514e1c3 in CoreFoundation+0x871c3 #20 0x7fffa6b60571 in Foundation+0x22571 #21 0x10eaa9d4d in base::MessagePumpNSRunLoop::DoRun base/message_loop/message_pump_mac.mm:698 #22 0x10eaa950b in base::MessagePumpCFRunLoopBase::Run base/message_loop/message_pump_mac.mm:292 #23 0x10eac7b62 in base::RunLoop::Run base/run_loop.cc:37 #24 0x11289689b in content::RendererMain content/renderer/renderer_main.cc:200 #25 0x10e6013ef in content::ContentMainRunnerImpl::Run content/app/content_main_runner.cc:729 #26 0x10fd8736b in service_manager::Main services/service_manager/embedder/main.cc:179 #27 0x10e6009d3 in content::ContentMain content/app/content_main.cc:19 #28 0x10d0140e6 in ChromeMain chrome/app/chrome_main.cc:121 #29 0x108a69da9 in main chrome/app/chrome_exe_main_mac.c:85 #30 0x7fffba8bb234 in libdyld.dylib+0x5234 #31 0x7fffba8bb234 in libdyld.dylib+0x5234 Reporter: sureshkumari
,
Mar 23 2017
Users experienced this crash on the following builds: Mac Canary 59.0.3048.0 - 0.52 CPM, 3 reports, 3 clients (signature blink::FrameLoader::loadFailed) If this update was incorrect, please add "Fracas-Wrong" label to prevent future updates. - Go/Fracas
,
Mar 23 2017
Right owner, wrong CL. More likely related to https://chromium.googlesource.com/chromium/src/+/476af767372c72fd5e71f365e78481af9ce9a1d9
,
Mar 28 2017
This is a benign nullptr deref, dropping view restrictions.
,
Apr 3 2017
Based on crash data and the stack trace, this is a PlzNavigate specific path. Adding project tag on this.
,
Apr 13 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/ecbbca63b50474ff80cf3410e491f2bc52813b81 commit ecbbca63b50474ff80cf3410e491f2bc52813b81 Author: japhet <japhet@chromium.org> Date: Thu Apr 13 20:25:35 2017 Fix nullptr deref in maybeRenderFallbackContent() There are no strict guarantees the provisional DocumentLoader won't have been detached by the time maybeRenderFallbackContent() is called. BUG= 704523 Review-Url: https://codereview.chromium.org/2783743002 Cr-Commit-Position: refs/heads/master@{#464526} [modify] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/content/renderer/render_frame_impl.cc [modify] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/third_party/WebKit/Source/web/WebLocalFrameImpl.cpp [modify] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/third_party/WebKit/Source/web/WebLocalFrameImpl.h [modify] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/third_party/WebKit/Source/web/tests/WebFrameTest.cpp [add] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/third_party/WebKit/Source/web/tests/data/fallback.html [modify] https://crrev.com/ecbbca63b50474ff80cf3410e491f2bc52813b81/third_party/WebKit/public/web/WebLocalFrame.h
,
Apr 13 2017
,
Apr 18 2017
Just to Update, There is no crash observed on Windows, Mac in recent M59, M60 releases, hence adding verified label |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by sureshkumari@chromium.org
, Mar 23 2017Components: Blink>Loader
Labels: -Type-Bug M-59 OS-Mac OS-Windows Type-Bug-Regression
Owner: japhet@chromium.org
Status: Assigned (was: Untriaged)