Issue 906666 link

Starred by 1 user
Issue metadata

Status:	Untriaged
Owner:	----
Components:	UI>Browser>History
EstimatedDays:	----
NextAction:	----
OS:	Windows
Pri:	3
Type:	Bug
DCheck failure in chrome!sqlite3VdbeSerialGet

Project Member Reported by elawrence@chromium.org, Nov 19
Issue description

My Canary got "upgraded" to an ASAN DCHECK build and it crashed four times in a row while just sitting idle for a few seconds.

Uploaded Crash Report ID d1e796530d6508c4

https://crash/d1e796530d6508c4

Google Chrome	72.0.3615.1 (Official Build) canary-dcheck (32-bit) (cohort: ASAN)
Revision	8c6f655f256b4c97761908dcdc4d342fcdcea680-refs/branch-heads/3615@{#2}


BUGCHECK_STR:  APPLICATION_FAULT_INVALID_POINTER_READ

PRIMARY_PROBLEM_CLASS:  APPLICATION_FAULT

LAST_CONTROL_TRANSFER:  from 11118a31 to 11119d29

STACK_TEXT:  
0ce2ec74 11118a31 0e317200 512012af 12e33c1c chrome!sqlite3VdbeSerialGet+0x4a
0ce2ee28 0f684e89 0ce2ef70 0ca50688 1c4a885b chrome!sqlite3VdbeExec+0x7239
0ce2ef4c 0f690016 0cb92b00 0f5115f1 12867e98 chrome!chrome_sqlite3_step+0x1db
0ce2ef8c 0f68ff86 00000001 0ce2f0a8 0fb4b186 chrome!sql::Statement::StepInternal+0x88
0ce2ef98 0fb4b186 0e7df0d8 11100001 15e27c00 chrome!sql::Statement::Step+0xa
0ce2f0a8 0fb4b0af 15363c18 0ce2f0b8 00000000 chrome!history::ThumbnailDatabase::GetIconMappingsForPageURL+0x6a
0ce2f0dc 0fb4aefe 15363c18 15363c0c 0ce2f10c chrome!history::ThumbnailDatabase::GetIconMappingsForPageURL+0x2b
0ce2f1ec 0fb4ad67 15363c18 15363c0c 15363c00 chrome!history::HistoryBackend::GetFaviconsFromDB+0xc2
0ce2f2e8 0fb4acd4 15363c18 15363c0c 15363c00 chrome!history::HistoryBackend::GetFaviconsForURL+0x8d
0ce2f310 0fc2d18a 15363bd8 15363bd8 51200d1f chrome!base::internal::Invoker<base::internal::BindState<void (history::HistoryBackend::*)(const GURL &, const base::internal::flat_tree<favicon_base::IconType,favicon_base::IconType,base::internal::GetKeyFromValueIdentity<favicon_base::IconType>,std::less<void> > &, const std::vector<int,std::allocator<int> > &, bool, std::vector<favicon_base::FaviconRawBitmapResult,std::allocator<favicon_base::FaviconRawBitmapResult> > *) __attribute__((thiscall)),scoped_refptr<history::HistoryBackend>,GURL,base::internal::flat_tree<favicon_base::IconType,favicon_base::IconType,base::internal::GetKeyFromValueIdentity<favicon_base::IconType>,std::less<void> >,std::vector<int,std::allocator<int> >,bool,std::vector<favicon_base::FaviconRawBitmapResult,std::allocator<favicon_base::FaviconRawBitmapResult> > *>,void ()>::RunOnce+0x34
0ce2f328 1094df77 0ce2f33c 0ce2f350 104a22d1 chrome!base::OnceCallback<void ()>::Run+0x2a
0ce2f334 104a22d1 15dac618 00000000 51200d67 chrome!base::`anonymous namespace'::RunIfNotCanceled+0x17
0ce2f350 104a2297 15e116cc 15e116d4 15e116d0 chrome!base::internal::FunctorTraits<void (*)(media::VideoCaptureDevice *, base::OnceCallback<void ()>),void>::Invoke<void (*)(media::VideoCaptureDevice *, base::OnceCallback<void ()>),media::VideoCaptureDevice *,base::OnceCallback<void ()> >+0x31
0ce2f364 10f2bda1 15e116b8 77e9604d 0fb4a625 chrome!base::internal::Invoker<base::internal::BindState<void (*)(media::VideoCaptureDevice *, base::OnceCallback<void ()>),media::VideoCaptureDevice *,base::OnceCallback<void ()> >,void ()>::RunOnce+0x17
0ce2f450 10f2c171 127c82ed 127c820c 000001fc chrome!base::`anonymous namespace'::PostTaskAndReplyRelay::RunTaskAndPostReply+0xa1
0ce2f484 0f5a82b5 15aa21b0 0ce2f5c0 1097473d chrome!base::internal::FunctorTraits<void (*)(base::(anonymous namespace)::PostTaskAndReplyRelay),void>::Invoke<void (*)(base::(anonymous namespace)::PostTaskAndReplyRelay),base::(anonymous namespace)::PostTaskAndReplyRelay>+0x51
0ce2f598 10f24aa3 12862782 0ce2f6d0 127c820c chrome!base::debug::TaskAnnotator::RunTask+0x125
0ce2f6a8 10f24c93 0ce2f6d0 0f540ae0 512008ff chrome!base::MessageLoopImpl::RunTask+0xe3
0ce2f6c8 10f24ffa 00000000 127c82ed 127c820c chrome!base::MessageLoopImpl::DeferOrRunPendingTask+0x53
0ce2f790 0f5a51fc 0bb06670 0bb06668 00002601 chrome!base::MessageLoopImpl::DoWork+0xca
0ce2f7b4 10f247a9 0bb4937c 0ce2fa58 109511e9 chrome!base::MessagePumpDefault::Run+0x9c
0ce2f88c 0f52cec4 00000001 0ce2fa58 00000000 chrome!base::MessageLoopImpl::Run+0x79
0ce2f968 0f52cdcc 00002694 00002694 00002694 chrome!base::RunLoop::Run+0xd4
0ce2fa3c 0f52a8a8 0ce2fa58 00000000 0baee808 chrome!base::Thread::Run+0xac
0ce2fb24 1094fe15 0baee7f8 00000984 00000984 chrome!base::Thread::ThreadMain+0x278
0ce2fb48 77abfe09 0c957328 77abfdf0 0ce2fbb4 chrome!base::`anonymous namespace'::ThreadFunc+0xa5
0ce2fb58 77e9607d 0c957328 621cee9f 00000000 KERNEL32!BaseThreadInitThunk+0x19
0ce2fbb4 77e9604d ffffffff 77eb45b5 00000000 ntdll!__RtlUserThreadStart+0x2f
0ce2fbc4 00000000 1094fd70 0c957328 00000000 ntdll!_RtlUserThreadStart+0x1b
►
Issue 906666 link

Issue metadata

DCheck failure in chrome!sqlite3VdbeSerialGet

Issue description

Sign in to add a comment
