Data race in extensions::ExtensionsGuestViewMessageFilter::~ExtensionsGuestViewMessageFilter |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4660882346606592 Fuzzer: ochang_domfuzzer Job Type: linux_tsan_chrome_mp Platform Id: linux Crash Type: Data race READ 8 Crash Address: 0x555c93adf1b8 Crash State: extensions::ExtensionsGuestViewMessageFilter::~ExtensionsGuestViewMessageFilter void content::BrowserThread::DeleteOnThread< guest_view::GuestViewMessageFilter::OnDestruct Sanitizer: thread (TSAN) Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4660882346606592 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information. Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.
,
Nov 19
,
Nov 26
Predator and CL could not provide any possible suspects. Using Code Search for the file, "extensions_guest_view_message_filter.cc" suspecting the below Cl might have caused this issue Suspect CL: https://chromium.googlesource.com/chromium/src/+/f8bcf5c5d88062c211335a677ab8969d481168f7 ekaramad@ -- Could you please check whether this is caused with respect to your change, if not please help us in assigning it to the right owner. Thanks!
,
Nov 26
Yes there is a slight chance for race here. This part of code is undergoing some refactor and I will clean these issues up soon. Thanks. |
|||
►
Sign in to add a comment |
|||
Comment 1 by ClusterFuzz
, Nov 19Labels: Test-Predator-Auto-Components