New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 757384 link

Starred by 1 user
Status: Duplicate
Merged: issue 757347
Owner:
yangguo@chromium.org
Closed: Aug 2017
Cc:
nyerramilli@chromium.org
jarin@chromium.org
rbasuvula@chromium.org
msrchandra@chromium.org
ranjitkan@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Mac
Pri: 1
Type: Bug-Regression



Sign in to add a comment

Regression : Tab crash is seen in 'Application' section of devtools.

Reported by rp...@etouch.net, Aug 21 2017 
Version: 62.0.3192.0 006fe05062cd9696cd11f2cb607c92f577471b7d-refs/heads/master@{#495856}
OS: Windows (7,8,8.1,10),Linux (14.04 LTS),Mac OS X(10.11.6,10.12.3)

What steps will reproduce the problem?
1. Freshly launch chrome, navigate to NTP and open devtools.
2. Now go to 'Application' section and expand 'Cache storage' option and then click on link below it.
3. Now resize the RHS window up/down and click on one or more options and try to delete them using right click context menu,observe 
 
Actual: Tab crash is seen after deleting path in cache storage of 'Application' section
Expected: Tab crash should not be seen after deleting path in cache storage of 'Application' section

Crash ID : 18826e98c33fa27f (Local Crash ID: e3d52789-8ad0-41b1-a3a3-0dca6ef91074)
         : 945bb26c4cd68191 (Local Crash ID: 0230fc9a-d80f-4ebb-8a39-20de93bc598a)

This is regression issue, broken in ‘M 62’ and will soon update other info :
Good build:62.0.3190.0
Bad build: 62.0.3191.0
Actual_video.mp4
1.7 MB View Download
Expected_video.mp4
1.8 MB View Download

Comment 1 by rbasuvula@chromium.org, Aug 21 2017

Labels: ReleaseBlock-Stable
Owner: jarin@chromium.org
Status: Assigned (was: Unconfirmed)
Stack Trace:
------------
Thread 0 (id: 7256) CRASHED [EXCEPTION_ACCESS_VIOLATION_READ @ 0xd53a7231 ] MAGIC SIGNATURE THREAD
Stack Quality100%Show frame trust levels
0x000007fb0d831bb5	(chrome_child.dll -source-position-table.cc:187 )	v8::internal::SourcePositionTableIterator::Advance()
0x000007fb0d559515	(chrome_child.dll -debug.cc:658 )	v8::internal::Debug::ClearBreakPoints(v8::internal::Handle<v8::internal::DebugInfo>)
0x000007fb0d55fd40	(chrome_child.dll -functional:212 )	std::_Func_impl<<lambda_660269bd4fd60755b8237a09cea33cc4>,std::allocator<int>,bool,v8::internal::Handle<v8::internal::DebugInfo> >::_Do_call(v8::internal::Handle<v8::internal::DebugInfo> &&)
0x000007fb0d55c10f	(chrome_child.dll -debug.cc:1415 )	v8::internal::Debug::ClearAllDebugInfos(std::function<bool >)
0x000007fb0d5580c1	(chrome_child.dll -debug.cc:349 )	v8::internal::Debug::Unload()
0x000007fb0d55ed47	(chrome_child.dll -debug.cc:1983 )	v8::internal::Debug::UpdateState()
0x000007fb0d331f25	(chrome_child.dll -api.cc:9828 )	v8::debug::SetDebugDelegate(v8::Isolate *,v8::debug::DebugDelegate *)
0x000007fb0d951864	(chrome_child.dll -v8-debugger.cc:164 )	v8_inspector::V8Debugger::disable()
0x000007fb0d942a85	(chrome_child.dll -v8-debugger-agent-impl.cc:364 )	v8_inspector::V8DebuggerAgentImpl::disable()
0x000007fb0d8f1466	(chrome_child.dll -console.cpp:214 )	v8_inspector::protocol::Console::DispatcherImpl::disable(int,std::unique_ptr<v8_inspector::protocol::DictionaryValue,std::default_delete<v8_inspector::protocol::DictionaryValue> >,v8_inspector::protocol::ErrorSupport *)
0x000007fb0d8f1296	(chrome_child.dll -console.cpp:196 )	v8_inspector::protocol::Console::DispatcherImpl::dispatch(int,v8_inspector::String16 const &,std::unique_ptr<v8_inspector::protocol::DictionaryValue,std::default_delete<v8_inspector::protocol::DictionaryValue> >)
0x000007fb0d8eb72c	(chrome_child.dll -protocol.cpp:813 )	v8_inspector::protocol::UberDispatcher::dispatch(std::unique_ptr<v8_inspector::protocol::Value,std::default_delete<v8_inspector::protocol::Value> >)
0x000007fb0d962dde	(chrome_child.dll -v8-inspector-session-impl.cc:312 )	v8_inspector::V8InspectorSessionImpl::dispatchProtocolMessage(v8_inspector::StringView const &)
0x000007fb0e7f3b78	(chrome_child.dll -inspectorsession.cpp:82 )	blink::InspectorSession::DispatchProtocolMessage(WTF::String const &,WTF::String const &)
0x000007fb0e6d58bd	(chrome_child.dll -webdevtoolsagentimpl.cpp:509 )	blink::WebDevToolsAgentImpl::DispatchOnInspectorBackend(int,int,blink::WebString const &,blink::WebString const &)
0x000007fb0f7d36bd	(chrome_child.dll -devtools_agent.cc:269 )	content::DevToolsAgent::OnDispatchOnInspectorBackend(int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &)
0x000007fb0f6c6137	(chrome_child.dll -ipc_message_templates.h:27 )	IPC::DispatchToMethod<ppapi::proxy::HostDispatcher,void ( ppapi::proxy::HostDispatcher::*)(int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &),void,std::tuple<int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> >,std::basic_string<char,std::char_traits<char>,std::allocator<char> > > >(ppapi::proxy::HostDispatcher *,void ( ppapi::proxy::HostDispatcher::*)(int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &),void *,std::tuple<int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> >,std::basic_string<char,std::char_traits<char>,std::allocator<char> > > const &)
0x000007fb0f7d2637	(chrome_child.dll -ipc_message_templates.h:122 )	IPC::MessageT<DevToolsAgentMsg_DispatchOnInspectorBackend_Meta,std::tuple<int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> >,std::basic_string<char,std::char_traits<char>,std::allocator<char> > >,void>::Dispatch<content::DevToolsAgent,content::DevToolsAgent,void,void ( content::DevToolsAgent::*)(int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &)>(IPC::Message const *,content::DevToolsAgent *,content::DevToolsAgent *,void *,void ( content::DevToolsAgent::*)(int,int,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &))
0x000007fb0f7d3ae1	(chrome_child.dll -devtools_agent.cc:110 )	content::DevToolsAgent::OnMessageReceived(IPC::Message const &)
0x000007fb0f798952	(chrome_child.dll -render_frame_impl.cc:1598 )	content::RenderFrameImpl::OnMessageReceived(IPC::Message const &)
0x000007fb0fc1a0e6	(chrome_child.dll -message_router.cc:56 )	IPC::MessageRouter::RouteMessage(IPC::Message const &)
0x000007fb0f5936e8	(chrome_child.dll -child_thread_impl.cc:764 )	content::ChildThreadImpl::OnMessageReceived(IPC::Message const &)
0x000007fb0ef6359f	(chrome_child.dll -ipc_channel_proxy.cc:329 )	IPC::ChannelProxy::Context::OnDispatchMessage(IPC::Message const &)
0x000007fb0ef62341	(chrome_child.dll -bind_internal.h:335 )	base::internal::Invoker<base::internal::BindState<void ( IPC::ChannelProxy::Context::*)(IPC::Message const &),scoped_refptr<IPC::ChannelProxy::Context>,IPC::Message>,void >::RunImpl<void ( IPC::ChannelProxy::Context::*const &)(IPC::Message const &),std::tuple<scoped_refptr<IPC::ChannelProxy::Context>,IPC::Message> const &,0,1>(void ( IPC::ChannelProxy::Context::*const &)(IPC::Message const &),std::tuple<scoped_refptr<IPC::ChannelProxy::Context>,IPC::Message> const &,std::integer_sequence<unsigned __int64,0,1>)
0x000007fb0d9f1644	(chrome_child.dll -task_annotator.cc:59 )	base::debug::TaskAnnotator::RunTask(char const *,base::PendingTask *)
0x000007fb0ed43d1c	(chrome_child.dll -task_queue_manager.cc:532 )	blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue *,bool,blink::scheduler::LazyNow,base::TimeTicks *)
0x000007fb0ed42cff	(chrome_child.dll -task_queue_manager.cc:330 )	blink::scheduler::TaskQueueManager::DoWork(bool)
0x000007fb0f8f3720	(chrome_child.dll -bind_internal.h:283 )	base::internal::InvokeHelper<1,void>::MakeItSo<void ( content::FilteringNetworkManager::*const &)(bool),base::WeakPtr<content::FilteringNetworkManager> const &,bool>(void ( content::FilteringNetworkManager::*const &)(bool),base::WeakPtr<content::FilteringNetworkManager> const &,bool &&)
0x000007fb0ed4197f	(chrome_child.dll -bind_internal.h:335 )	base::internal::Invoker<base::internal::BindState<void ( blink::scheduler::TaskQueueManager::*)(bool),base::WeakPtr<blink::scheduler::TaskQueueManager>,bool>,void >::RunImpl<void ( blink::scheduler::TaskQueueManager::*const &)(bool),std::tuple<base::WeakPtr<blink::scheduler::TaskQueueManager>,bool> const &,0,1>(void ( blink::scheduler::TaskQueueManager::*const &)(bool),std::tuple<base::WeakPtr<blink::scheduler::TaskQueueManager>,bool> const &,std::integer_sequence<unsigned __int64,0,1>)
0x000007fb0d9f1644	(chrome_child.dll -task_annotator.cc:59 )	base::debug::TaskAnnotator::RunTask(char const *,base::PendingTask *)
0x000007fb0d9bca4e	(chrome_child.dll -message_loop.cc:406 )	base::MessageLoop::RunTask(base::PendingTask *)
0x000007fb0d9bd48c	(chrome_child.dll -message_loop.cc:524 )	base::MessageLoop::DoWork()
0x000007fb0da10fbc	(chrome_child.dll -message_pump_default.cc:33 )	base::MessagePumpDefault::Run(base::MessagePump::Delegate *)
0x000007fb0d9d7a08	(chrome_child.dll -run_loop.cc:123 )	base::RunLoop::Run()
0x000007fb0f7ae80f	(chrome_child.dll -renderer_main.cc:220 )	content::RendererMain(content::MainFunctionParams const &)
0x000007fb0ee5dae2	(chrome_child.dll -content_main_runner.cc:410 )	content::RunNamedProcessTypeMain(std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &,content::MainFunctionParams const &,content::ContentMainDelegate *)
0x000007fb0ee5d92d	(chrome_child.dll -content_main_runner.cc:693 )	content::ContentMainRunnerImpl::Run()
0x000007fb0ee6487d	(chrome_child.dll -main.cc:469 )	service_manager::Main(service_manager::MainParams const &)
0x000007fb0ee5d17b	(chrome_child.dll -content_main.cc:19 )	content::ContentMain(content::ContentMainParams const &)
0x000007fb0e97c2d1	(chrome_child.dll -chrome_main.cc:122 )	ChromeMain
0x000007f6c8656162	(chrome.exe -main_dll_loader_win.cc:199 )	MainDllLoader::Launch(HINSTANCE__ *,base::TimeTicks)
0x000007f6c86550ea	(chrome.exe -chrome_exe_main_win.cc:275 )	wWinMain
0x000007f6c8687262	(chrome.exe -exe_common.inl:253 )	__scrt_common_main_seh
0x000007fb30a21841	(KERNEL32.DLL + 0x00001841 )	BaseThreadInitThunk
0x000007fb32efdf10	(ntdll.dll + 0x0003df10 )	RtlUserThreadStart

Unable to reproduce this crash manually from Chrome TE end, Hence assigning through code search from the above stack trace.

Used code search for the file "source-position-table.cc" from above stack trace and suspecting the below change might be caused this issue.

https://chromium.googlesource.com/v8/v8.git/+/418926e0104b2b634f38876b5b274840decf8e46

Link to the list of builds: https://goto.google.com/qbjrg

jarin@: Could you please check if this is caused with respect to your change, if not please help us in reassign the issue to the right owner. 

Adding Release Block-Stable for this issue.Please remove if not the case.

Thanks!

Comment 2 by jarin@chromium.org, Aug 21 2017

Cc: jarin@chromium.org
Owner: yangguo@chromium.org
As far as I can tell, after my change SourcePositionTableIterator still takes the original unhandlified path, so I do not think it is my change.

Yang, could you take a look?

Comment 3 by ligim...@chromium.org, Aug 21 2017

Mergedinto: 757347
Status: Duplicate (was: Assigned)

Comment 4 by yangguo@chromium.org, Aug 22 2017 

I made some refactorings that shipped with 62.0.3188.0 though.  Issue 757347  has an entirely different stack trace too.

And I can't reproduce this issue on a debug build of ToT Chrome (2bfb18e4fa01cc2fe45aac93b155e164db4e0ee2) :(

Sign in to add a comment