Status: Unconfirmed
Owner: ----
Labels: Type-Bug Pri-2 OS-All Area-Misc
New issue 9615 by ElideBotton: Access Violation while exiting Chrome
browser process
http://code.google.com/p/chromium/issues/detail?id=9615
Chrome Version : 2.0.169.1
URLs (if applicable) :
Other browsers tested: N/A
Add OK or FAIL after other browsers where you have tested this issue:
Safari 4: N/A
Firefox 3.x: N/A
IE 7: N/A
IE 8: N/A
What steps will reproduce the problem?
1. Unknown.
What is the expected result?
Not to crash.
What happens instead?
Crash in browser [see stack trace below]
"Whoa! Google Chrome has crashed. Restart now?"
Please provide any additional information below. Attach a screenshot if
possible.
FAULTING_IP:
ntdll!RtlpCoalesceFreeBlocks+128
7c911e58 8b09 mov ecx,dword ptr [ecx]
EXCEPTION_RECORD: ffffffff -- (.exr 0xffffffffffffffff)
ExceptionAddress: 7c911e58 (ntdll!RtlpCoalesceFreeBlocks+0x00000128)
ExceptionCode: c0000005 (Access violation)
ExceptionFlags: 00000000
NumberParameters: 2
Parameter[0]: 00000000
Parameter[1]: 50203a65
Attempt to read from address 50203a65
FAULTING_THREAD: 00000b90
DEFAULT_BUCKET_ID: HEAP_CORRUPTION
PROCESS_NAME: chrome.exe
ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at "0x%08lx" referenced
memory at "0x%08lx". The memory could not be "%s".
READ_ADDRESS: 50203a65
NTGLOBALFLAG: 0
APPLICATION_VERIFIER_FLAGS: 0
LAST_CONTROL_TRANSFER: from 7c910d5c to 7c911e58
STACK_TEXT:
02e1fbf4 7c910d5c 50203a65 04a34638 02e1fcac
ntdll!RtlpCoalesceFreeBlocks+0x128
02e1fcc8 01c01a3b 00cf0000 00000000 04a34640 ntdll!RtlFreeHeap+0x2e9
02e1fd08 01baaa0d 04a34640 01b99f9d 04a34648 chrome_1630000!free+0x6e
[f:\sp\vctools\crt_bld\self_x86\crt\src\free.c @ 110]
02e1fd10 01b99f9d 04a34648 01e95bec 04a34648
chrome_1630000!sqlite3MemFree+0xd [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\mem1.c @ 63]
02e1fd28 01ba6f22 02852ff8 0289c9c0 028ad218
chrome_1630000!sqlite3PageFree+0x9c [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\malloc.c @ 437]
02e1fd38 01ba7f7f 028ad218 01b94836 02832c38
chrome_1630000!pager_reset+0x26 [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\pager.c @ 1310]
02e1fd40 01b94836 02832c38 02832d9c 02e1fd74
chrome_1630000!sqlite3PagerClose+0x15 [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\pager.c @ 2790]
02e1fd54 01b8c35f 028ad218 02875d78 028a83d0
chrome_1630000!sqlite3BtreeClose+0x55 [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\btree.c @ 1508]
02e1fd74 017ca464 00000000 028c4970 017cae9b
chrome_1630000!sqlite3_close+0x84 [c:\b\slave\chrome-
official\build\src\third_party\sqlite\src\main.c @ 504]
02e1fd80 017cae9b 00e42fbc 00e42fb8 00e42fbc
chrome_1630000!history::TextDatabase::`scalar deleting destructor'+0x25
02e1fd98 017ca9a4 00e42fb8 02e1fdd0 00e42fbc
chrome_1630000!MRUCacheBase<int,history::TextDatabase
*,MRUCachePointerDeletor<history::TextDatabase *> >::Erase+0x31
[c:\b\slave\chrome-official\build\src\chrome\common\mru_cache.h @ 119]
02e1fddc 017a6d70 027532d8 017a308d 0489ef28
chrome_1630000!MRUCacheBase<int,history::TextDatabase
*,MRUCachePointerDeletor<history::TextDatabase *>
> ::~MRUCacheBase<int,history::TextDatabase
*,MRUCachePointerDeletor<history::TextDatabase *> >+0x4d
[c:\b\slave\chrome-official\build\src\chrome\common\mru_cache.h @ 62]
02e1fde4 017a308d 0489ef28 027532d8 02e1fe50
chrome_1630000!history::TextDatabaseManager::`scalar deleting
destructor'+0x39
02e1fdf8 0174b5cd 027532d8 0489ef28 0174bba1
chrome_1630000!history::HistoryBackend::~HistoryBackend+0x7c
[c:\b\slave\chrome-
official\build\src\chrome\browser\history\history_backend.cc @ 202]
02e1fe04 0174bba1 02e1fef0 019b5d12 00000001
chrome_1630000!base::RefCountedThreadSafe<history::HistoryBackend>::Release
+0x1e [c:\b\slave\chrome-official\build\src\base\ref_counted.h @ 107]
02e1fe0c 019b5d12 00000001 019b5d41 02e1fe50
chrome_1630000!RunnableMethod<history::HistoryBackend,void (__thiscall
history::HistoryBackend::*)(void),Tuple0>::`scalar deleting
destructor'+0x18
02e1fe14 019b5d41 02e1fe50 02753568 019b5ecf
chrome_1630000!MessageLoop::RunTask+0x24 [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 311]
02e1fe20 019b5ecf 027532b8 027532c8 02e1fef0
chrome_1630000!MessageLoop::DeferOrRunPendingTask+0x2a [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 316]
02e1fe50 019cf811 02e1fef0 02e1fef0 00000000
chrome_1630000!MessageLoop::DoWork+0x6e [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 408]
02e1fe7c 019b5bd6 02e1fef0 02758fc8 019b5ba5
chrome_1630000!base::MessagePumpDefault::Run+0xb9 [c:\b\slave\chrome-
official\build\src\base\message_pump_default.cc @ 50]
02e1fe88 019b5ba5 0bf919d4 02758fdc 02758fc8
chrome_1630000!MessageLoop::RunInternal+0x2b [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 198]
02e1fec0 019b5b48 02758fdc 00000001 7c80a000
chrome_1630000!MessageLoop::RunHandler+0x4f [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 181]
02e1fee0 019bbfb4 0012ecec 00cf0000 01e23dc8
chrome_1630000!MessageLoop::Run+0x15 [c:\b\slave\chrome-
official\build\src\base\message_loop.cc @ 155]
02e1ffb0 019bb7be 7c80b683 02758fc8 0012ecec
chrome_1630000!base::Thread::ThreadMain+0x81 [c:\b\slave\chrome-
official\build\src\base\thread.cc @ 159]
02e1ffb4 7c80b683 02758fc8 0012ecec 00cf0000 chrome_1630000!`anonymous
namespace'::ThreadFunc+0x9 [c:\b\slave\chrome-
official\build\src\base\platform_thread_win.cc @ 27]
02e1ffec 00000000 019bb7b5 02758fc8 00000000 kernel32!BaseThreadStart+0x37
ADDITIONAL_DEBUG_TEXT: Enable Pageheap/AutoVerifer
PRIMARY_PROBLEM_CLASS: HEAP_CORRUPTION
BUGCHECK_STR: APPLICATION_FAULT_HEAP_CORRUPTION_INVALID_POINTER_READ
SYMBOL_NAME: heap_corruption!heap_corruption
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: heap_corruption
IMAGE_NAME: heap_corruption
DEBUG_FLR_IMAGE_TIMESTAMP: 0
STACK_COMMAND: ~9s ; kb
FAILURE_BUCKET_ID:
heap_corruption!heap_corruption_c0000005_HEAP_CORRUPTION
BUCKET_ID:
APPLICATION_FAULT_HEAP_CORRUPTION_INVALID_POINTER_READ_heap_corruption!heap
_corruption
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---
