[chromium-bugs] Issue 9893 in chromium: Weird crash set marked "empty"

codesite-noreply Wed, 08 Apr 2009 18:11:28 -0700

Status: Untriaged
Owner: [email protected]
CC: [email protected]
Labels: Type-Bug Pri-2 OS-All Area-Misc Size-Medium Crash


New issue 9893 by [email protected]: Weird crash set marked "empty"
http://code.google.com/p/chromium/issues/detail?id=9893

http://crash-staging/reportview?product=Chrome&version=2.0.173.0-qemu&signature=(empty)

There are 70 occurrences of this (empty) crash for version 2.0.173.0

When loading the minidump in WinDbg and executing .ecxr to access the  
exception stored in the minidump, we get weird
register values for an unknown thread:
0:001> .ecxr
eax=fffffff8 ebx=00000000 ecx=0000000f edx=01d40598 esi=00000000  
edi=00000000
eip=01d40050 esp=00000000 ebp=01d40050 iopl=0         nv up di pl nz na po  
nc
cs=0640  ss=0000  ds=0000  es=0006  fs=efff  gs=0085              
efl=00000000
0640:01d40050 50              push    eax

No ESP and an EIP in none of the loaded modules:
[...]
00400000 004bf000   chrome     (private pdb symbols)
02560000 02ec9000   chrome_2560000   (private pdb symbols)
[...]

No prior disassembly possible
01d40050 50              push    eax
01d40051 00d4            add     ah,dl
01d40053 015000          add     dword ptr [eax],edx
01d40056 d401            aamb    1
01d40058 40              inc     eax
01d40059 06              push    es
01d4005a d401            aamb    1
01d4005c 0000            add     byte ptr [eax],al
01d4005e 0000            add     byte ptr [eax],al
01d40060 0000            add     byte ptr [eax],al
01d40062 0000            add     byte ptr [eax],al
01d40064 0000            add     byte ptr [eax],al


The two running thread don't seem to have anything to do with the crash:
One of them is always:
ntdll!KiFastSystemCallRet
ntdll!ZwWaitForMultipleObjects+0xc
kernel32!WaitForMultipleObjectsEx+0x12c
kernel32!WaitForMultipleObjects+0x18
chrome!google_breakpad::CrashGenerationClient::SignalCrashEventAndWait+0x42
chrome!google_breakpad::CrashGenerationClient::RequestDump+0x42
chrome!google_breakpad::ExceptionHandler::WriteMinidumpWithException+0x40
chrome!google_breakpad::ExceptionHandler::HandleException+0x44
kernel32!UnhandledExceptionFilter+0x1ec
WARNING: Frame IP not in any known module. Following frames may be wrong.
0x100012bc
ntdll!ExecuteHandler+0x24
ntdll!KiUserExceptionDispatcher+0xe
0x1d3f99b
0x10005156
kernel32!BaseThreadStart+0x37

And the other one is never the same, here is an example:
ntdll!RtlAllocateHeapSlowly+0x6b1
ntdll!RtlDebugAllocateHeap+0xaf
ntdll!RtlAllocateHeapSlowly+0x44
ntdll!RtlAllocateHeap+0xe64
ntdll!RtlpDphNormalHeapAllocate+0x57
ntdll!RtlpDebugPageHeapAllocate+0xba
ntdll!RtlDebugAllocateHeap+0x2d
ntdll!RtlAllocateHeapSlowly+0x44
ntdll!RtlAllocateHeap+0xe64
chrome_2560000!malloc+0x7a
chrome_2560000!WTF::fastMalloc+0x9
chrome_2560000!std::allocator<wchar_t>::allocate+0x41
chrome_2560000!std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t>
  
>::_Copy+0x4c
chrome_2560000!std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t>
  
>::_Grow+0x22
chrome_2560000!std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t>
  
>::assign+0x45
chrome_2560000!base::PathProviderWin+0x4c2
chrome_2560000!PathService::Get+0x67
chrome_2560000!base::PathProvider+0xa9
chrome_2560000!PathService::Get+0x67
chrome_2560000!chrome::PathProvider+0xa11

And here is another one:
ntdll!RtlpDebugPageHeapFree
ntdll!RtlDebugFreeHeap+0x2c
ntdll!RtlFreeHeapSlowly+0x37
ntdll!RtlFreeHeap+0xf9
chrome_2560000!free+0x6e
chrome_2560000!std::basic_string<wchar_t,std::char_traits<wchar_t>,std::allocator<wchar_t>
  
>::_Tidy+0x30
chrome_2560000!base::PathProviderWin+0xc1
chrome_2560000!PathService::Get+0x67
chrome_2560000!base::PathProvider+0xa9
chrome_2560000!PathService::Get+0x67
chrome_2560000!chrome::PathProvider+0xa11
chrome_2560000!PathService::Get+0x67
chrome_2560000!PathService::Get+0x31
chrome_2560000!logging::GetLogFileName+0x7f
chrome_2560000!logging::InitChromeLogging+0x56
chrome_2560000!ChromeMain+0x35d
chrome!google_update::GoogleUpdateClient::Launch+0x176
chrome!wWinMain+0x1aa
chrome!__tmainCRTStartup+0x176
kernel32!BaseProcessStart+0x23

    Though the exception record is exactly the same:
0:000> .ECXR
eax=fffffff8 ebx=00000000 ecx=0000000f edx=01d40598 esi=00000000  
edi=00000000
eip=01d40050 esp=00000000 ebp=01d40050 iopl=0         nv up di pl nz na po  
nc
cs=0640  ss=0000  ds=0000  es=0006  fs=efff  gs=0085              
efl=00000000
0640:01d40050 ??

    As I said... Weird...

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---

[chromium-bugs] Issue 9893 in chromium: Weird crash set marked "empty"

Reply via email to