[chromium-bugs] Issue 3351 in chromium: Typing: C l o j u r e ( without whitespaced lettering ) Causes a Systemic Crash of Chrome

Sun, 12 Oct 2008 10:43:05 -0700 

Issue 3351: Typing: C l o j u r e <SPACE> ( without whitespaced lettering )  
Causes a Systemic Crash of Chrome
http://code.google.com/p/chromium/issues/detail?id=3351

Comment #6 by [EMAIL PROTECTED]:
Thanks for the crash dump file that you sent me through email.

This issue is a duplicate of issue 3040, which has been fixed and will be  
in the next
update on the Dev channel (which you are on). Don't know when we'll publish  
it, but I
think it will be soon. Sorry for the inconvenience...

Here is the stack from the dump file, for reference:

FAULTING_IP:
chrome_6d7d0000!flag_bsearch+12 [c:\b\slave\chrome-
official\build\src\chrome\third_party\hunspell\src\hunspell\csutil.cxx @  
207]
6dc68d05 0fb71442        movzx   edx,word ptr [edx+eax*2]

EXCEPTION_RECORD:  ffffffff -- (.exr 0xffffffffffffffff)
ExceptionAddress: 6dc68d05 (chrome_6d7d0000!flag_bsearch+0x00000012)
    ExceptionCode: c0000005 (Access violation)
   ExceptionFlags: 00000000
NumberParameters: 2
    Parameter[0]: 00000000
    Parameter[1]: 6e6dcecf
Attempt to read from address 6e6dcecf

DEFAULT_BUCKET_ID:  APPLICATION_FAULT

PROCESS_NAME:  chrome.exe

ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at "0x%08lx" referenced  
memory at
"0x%08lx". The memory could not be "%s".

READ_ADDRESS:  6e6dcecf

BUGCHECK_STR:  ACCESS_VIOLATION

LAST_CONTROL_TRANSFER:  from 6dc62d60 to 6dc68d05

STACK_TEXT:
029ce920 6dc62d60 6e6d6c6b 00000000 029ced90  
chrome_6d7d0000!flag_bsearch+0x12
[c:\b\slave\chrome-
official\build\src\chrome\third_party\hunspell\src\hunspell\csutil.cxx @  
207]
029ceaec 6dc629da 029ced90 00000000 00000000
chrome_6d7d0000!Hunspell::checkword+0x137 [c:\b\slave\chrome-
official\build\src\chrome\third_party\hunspell\src\hunspell\hunspell.cxx @  
606]
029cf0cc 6d9d2d84 029cf1d8 00000000 00000000  
chrome_6d7d0000!Hunspell::spell+0x5c2
[c:\b\slave\chrome-
official\build\src\chrome\third_party\hunspell\src\hunspell\hunspell.cxx @  
474]
029cf214 6d9cd965 041dbde0 00000008 029cf244
chrome_6d7d0000!SpellChecker::SpellCheckWord+0x20e [c:\b\slave\chrome-
official\build\src\chrome\browser\spellchecker.cc @ 421]
029cf248 6d9ce856 029cf300 0424a870 021a7cd0
chrome_6d7d0000!ResourceMessageFilter::OnSpellCheck+0x3c [c:\b\slave\chrome-
official\build\src\chrome\browser\resource_message_filter.cc @ 722]
029cf320 6d9cc72f 6d9cd929 00000000 021397d0
chrome_6d7d0000!IPC::MessageWithReply<std::basic_string<wchar_t,std::char_traits<wcha
r_t>,std::allocator<wchar_t> >,Tuple2<int &,int &>
>::DispatchDelayReply<ResourceMessageFilter,void (__thiscall
ResourceMessageFilter::*)(std::basic_string<wchar_t,std::char_traits<wchar_t>,std::al
locator<wchar_t> > const &,IPC::Message *)>+0x6b [c:\b\slave\chrome-
official\build\src\chrome\common\ipc_message_utils.h @ 1151]
029cf3a4 6d95bba6 029cf580 021397c0 029cf580
chrome_6d7d0000!ResourceMessageFilter::OnMessageReceived+0x1ff  
[c:\b\slave\chrome-
official\build\src\chrome\browser\resource_message_filter.cc @ 160]
029cf3b4 6d95a0ef 029cf580 0343009c 029cf580
chrome_6d7d0000!IPC::ChannelProxy::Context::TryFilters+0x24  
[c:\b\slave\chrome-
official\build\src\chrome\common\ipc_channel_proxy.cc @ 41]
029cf3c4 6d960ef4 029cf580 034310b9 03430048
chrome_6d7d0000!IPC::SyncChannel::SyncContext::OnMessageReceived+0x10
[c:\b\slave\chrome-official\build\src\chrome\common\ipc_sync_channel.cc @  
325]
029cf5a4 6d9612a1 03430048 00000000 02127218
chrome_6d7d0000!IPC::Channel::ProcessIncomingMessages+0x204  
[c:\b\slave\chrome-
official\build\src\chrome\common\ipc_channel.cc @ 295]
029cf64c 6d7e9429 00000244 02127218 00000000
chrome_6d7d0000!IPC::Channel::OnObjectSignaled+0xa6 [c:\b\slave\chrome-
official\build\src\chrome\common\ipc_channel.cc @ 425]
029cf6f4 6d7e9238 00000000 02127208 021271e8
chrome_6d7d0000!base::MessagePumpForIO::SignalWatcher+0xac  
[c:\b\slave\chrome-
official\build\src\base\message_pump_win.cc @ 625]
029cf7c4 6d7e8fea 021271e8 00000000 021271e8
chrome_6d7d0000!base::MessagePumpForIO::WaitForWork+0x236  
[c:\b\slave\chrome-
official\build\src\base\message_pump_win.cc @ 573]
029cf7e4 6d7e86b2 029cf920 029cf920 00000000
chrome_6d7d0000!base::MessagePumpForIO::DoRunLoop+0x7a [c:\b\slave\chrome-
official\build\src\base\message_pump_win.cc @ 491]
029cf800 6d7db846 00000000 029cf920 6d7dbf00
chrome_6d7d0000!base::MessagePumpWin::RunWithDispatcher+0x38  
[c:\b\slave\chrome-
official\build\src\base\message_pump_win.cc @ 97]
029cf80c 6d7dbf00 029cf920 029cf920 029cf920
chrome_6d7d0000!base::MessagePumpWin::Run+0xe [c:\b\slave\chrome-
official\build\src\base\message_pump_win.h @ 123]
029cf8b0 6d7dbe6f 7ac05c5b 0212cf60 029cf920
chrome_6d7d0000!MessageLoop::RunInternal+0x8b [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 193]
029cf8e8 6d7dbe12 0212cf60 00000001 02138400
chrome_6d7d0000!MessageLoop::RunHandler+0x4f [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 176]
029cf908 6dc50ef9 00000000 00000000 00000000  
chrome_6d7d0000!MessageLoop::Run+0x15
[c:\b\slave\chrome-official\build\src\base\message_loop.cc @ 150]
029cf9e0 6d7ddeee 6dd6206b 0212cf60 7ac05eaf
chrome_6d7d0000!base::Thread::ThreadMain+0x7e [c:\b\slave\chrome-
official\build\src\base\thread.cc @ 159]
029cf9e4 6dd6206b 0212cf60 7ac05eaf 00000000 chrome_6d7d0000!`anonymous
namespace'::ThreadFunc+0x9 [c:\b\slave\chrome-
official\build\src\base\platform_thread_win.cc @ 29]
029cfa1c 6dd62110 00000000 77444911 02138430  
chrome_6d7d0000!_callthreadstartex+0x1b
[f:\sp\vctools\crt_bld\self_x86\crt\src\threadex.c @ 348]
029cfa24 77444911 02138430 029cfa70 7751e4b6  
chrome_6d7d0000!_threadstartex+0x7f
[f:\sp\vctools\crt_bld\self_x86\crt\src\threadex.c @ 326]
029cfa30 7751e4b6 02138430 77d0ffda 00000000  
kernel32!BaseThreadInitThunk+0xe
029cfa70 7751e489 6dd62091 02138430 00000000 ntdll!__RtlUserThreadStart+0x23
029cfa88 00000000 6dd62091 02138430 00000000 ntdll!_RtlUserThreadStart+0x1b


STACK_COMMAND:  ~5s; .ecxr ; kb

FOLLOWUP_IP:
chrome_6d7d0000!flag_bsearch+12 [c:\b\slave\chrome-
official\build\src\chrome\third_party\hunspell\src\hunspell\csutil.cxx @  
207]
6dc68d05 0fb71442        movzx   edx,word ptr [edx+eax*2]

FAULTING_SOURCE_CODE:
    203:    int left = 0;
    204:    int right = length - 1;
    205:    while (left <= right) {
    206:       mid = (left + right) / 2;
>  207:       if (flags[mid] == flag) return 1;
    208:       if (flag < flags[mid]) right = mid - 1;
    209:       else left = mid + 1;
    210:    }
    211:    return 0;
    212: }


SYMBOL_STACK_INDEX:  0

SYMBOL_NAME:  chrome_6d7d0000!flag_bsearch+12

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: chrome_6d7d0000

IMAGE_NAME:  chrome.dll

DEBUG_FLR_IMAGE_TIMESTAMP:  48e3d9aa

FAULTING_THREAD:  0000114c

FAILURE_BUCKET_ID:  ACCESS_VIOLATION_chrome_6d7d0000!flag_bsearch+12

BUCKET_ID:  ACCESS_VIOLATION_chrome_6d7d0000!flag_bsearch+12

Followup: MachineOwner
---------





Issue attribute updates:
        Status: Duplicate

-- 
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"Chromium-bugs" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at 
http://groups.google.com/group/chromium-bugs?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to