[chromium-bugs] Issue 8544 in chromium: Crash - SafeBrowsingResourceHandler::OnUrlCheckResult

codesite-noreply Wed, 01 Apr 2009 20:37:46 -0700


Comment #13 on issue 8544 by [email protected]: Crash -  
SafeBrowsingResourceHandler::OnUrlCheckResult
http://code.google.com/p/chromium/issues/detail?id=8544


 From a debugging session with Huan, we see the crash in this function:

bool AsyncResourceHandler::OnResponseCompleted(
     int request_id,
     const URLRequestStatus& status,
     const std::string& security_info) {
   receiver_->Send(new ViewMsg_Resource_RequestComplete(routing_id_,
                                                        request_id,
                                                        status,
                                                        security_info));
   ...

// edi: AsyncResourceHandler (non-zero)
021B0BAF  mov         ecx,dword ptr [edi+0Ch]
// ecx: receiver_ (non-zero)
// edx: vtable of receiver_ (NULL)
021B0BB2  mov         edx,dword ptr [ecx]
021B0BB4  push        eax
// crash at this call
021B0BB5  call        dword ptr [edx+4]

It looks like the SafeBrowsing callback is occurring after the object has  
been freed.
I have a speculative fix for this.


--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---

[chromium-bugs] Issue 8544 in chromium: Crash - SafeBrowsingResourceHandler::OnUrlCheckResult

Reply via email to