Creating a packaged app window from one profile while in the session of the other profile crashes |
||||
Issue descriptionChromeOS 11151.45.0, 71.0.3578.71 beta-channel eve What steps will reproduce the problem? 1. Add two user accounts user A and user B 2. Login user A and add user B using multiprofile feature 3. Open files app in user B account. Right-click on the title bar and select 'Move window to user A' 4. Click on the 3 dot menu and select 'New Window' What happens ? Browser crash Crash report: https://crash.corp.google.com/browse?stbtiq=f8807418ba46d97a#0 Feedback report: https://listnr.corp.google.com/report/85812220770
,
Nov 29
#0 OnWindowTitleChanged ()
at ../../chrome/browser/ui/ash/launcher/extension_app_window_launcher_item_controller.cc:92
#1 0x00007ffff30996e8 in SetTitle () at ../../ui/aura/window.cc:207
#2 0x00007ffff1c49920 in SetWindowTitle () at ../../ui/views/widget/native_widget_aura.cc:428
#3 0x00007ffff1c2adb4 in UpdateWindowTitle () at ../../ui/views/widget/widget.cc:839
#4 0x00007ffff50d6aa7 in NotifyNavigationStateChanged ()
at ../../content/browser/web_contents/web_contents_impl.cc:1603
#5 0x00007ffff50e4b5c in UpdateTitleForEntry () at ../../content/browser/web_contents/web_contents_impl.cc:4911
#6 0x00007ffff4d620a2 in OnUpdateTitle () at ../../content/browser/frame_host/render_frame_host_impl.cc:2938
#7 0x00007ffff4d61ecd in DispatchToMethodImpl<content::RenderFrameHostImpl*, void (content::RenderFrameHostImpl::*)(std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits> const&, blink::WebTextDirection), std::__1::tuple<std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits>, blink::WebTextDirection>, 0, 1> () at ../../base/tuple.h:52
#8 DispatchToMethod<content::RenderFrameHostImpl*, void (content::RenderFrameHostImpl::*)(std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits> const&, blink::WebTextDirection), std::__1::tuple<std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits>, blink::WebTextDirection> > ()
at ../../base/tuple.h:60
#9 DispatchToMethod<content::RenderFrameHostImpl, void (content::RenderFrameHostImpl::*)(std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits> const&, blink::WebTextDirection), void, std::__1::tuple<std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits>, blink::WebTextDirection> > ()
at ../../ipc/ipc_message_templates.h:51
#10 Dispatch<content::RenderFrameHostImpl, content::RenderFrameHostImpl, void, void (content::RenderFrameHostImpl::*)(std::__1::basic_string<base::char16, base::string16_internals::string16_char_traits> const&, blink::WebTextDirection)>
() at ../../ipc/ipc_message_templates.h:146
#11 0x00007ffff4d5e398 in OnMessageReceived () at ../../content/browser/frame_host/render_frame_host_impl.cc:1366
#12 0x00007ffff4f71e7e in OnMessageReceived () at ../../content/browser/renderer_host/render_process_host_impl.cc:3341
#13 0x00007ffff62cdbb1 in OnDispatchMessage () at ../../ipc/ipc_channel_proxy.cc:320
#14 0x00007ffff62d043b in Invoke<void (IPC::ChannelProxy::Context::*)(IPC::Message const&), scoped_refptr<IPC::ChannelProxy::Context> const&, IPC::Message const&> () at ../../base/bind_internal.h:516
#15 MakeItSo<void (IPC::ChannelProxy::Context::* const&)(IPC::Message const&), scoped_refptr<IPC::ChannelProxy::Context> const&, IPC::Message const&> () at ../../base/bind_internal.h:616
#16 RunImpl<void (IPC::ChannelProxy::Context::* const&)(IPC::Message const&), std::__1::tuple<scoped_refptr<IPC::ChannelProxy::Context>, IPC::Message> const&, 0, 1> () at ../../base/bind_internal.h:689
#17 Run () at ../../base/bind_internal.h:671
#18 0x00007ffff7c2d381 in Run () at ../../base/callback.h:99
#19 RunTask () at ../../base/debug/task_annotator.cc:99
#20 0x00007ffff7c5918f in RunTask () at ../../base/message_loop/message_loop_impl.cc:350
#21 0x00007ffff7c597f3 in DeferOrRunPendingTask () at ../../base/message_loop/message_loop_impl.cc:361
#22 DoWork () at ../../base/message_loop/message_loop_impl.cc:449
#23 0x00007ffff7d3d729 in Run () at ../../base/message_loop/message_pump_libevent.cc:210
#24 0x00007ffff7c58d38 in Run () at ../../base/message_loop/message_loop_impl.cc:302
#25 0x00007ffff7c8a939 in Run () at ../../base/run_loop.cc:102
#26 0x0000555556da36d8 in MainMessageLoopRun () at ../../chrome/browser/chrome_browser_main.cc:1898
#27 0x00007ffff4bb00e7 in RunMainMessageLoopParts () at ../../content/browser/browser_main_loop.cc:993
#28 0x00007ffff4bb2806 in Run () at ../../content/browser/browser_main_runner_impl.cc:165
#29 0x00007ffff4bacc32 in BrowserMain () at ../../content/browser/browser_main.cc:47
#30 0x00007ffff566d233 in RunBrowserProcessMain () at ../../content/app/content_main_runner_impl.cc:537
#31 Run () at ../../content/app/content_main_runner_impl.cc:902
#32 0x00007fffe817e376 in Main () at ../../services/service_manager/embedder/main.cc:472
#33 0x00007ffff566b584 in content::ContentMain(content::ContentMainParams const&) ()
at ../../content/app/content_main.cc:19
#34 0x0000555555e1fea3 in ChromeMain () at ../../chrome/app/chrome_main.cc:102
#35 0x00007fffe87422b1 in __libc_start_main (main=0x555555e1fe20 <main>, argc=7, argv=0x7fffffffd3d8,
init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffd3c8)
at ../csu/libc-start.c:291
#36 0x0000555555e1fd1a in _start ()
,
Nov 29
ExtensionAppWindowLauncherItemController::OnWindowTitleChanged() looks up the window in the extensions::AppWindowRegistry for the current profile (as decided by the singleton ChromeLauncherController) and when the window is from another profile it isn't found, so |app_window->show_in_shelf()| dereferences a null |app_window|. This isn't files app specific; it can happen with any packaged app.
,
Dec 13
|
||||
►
Sign in to add a comment |
||||
Comment 1 by sdantul...@chromium.org
, Nov 28