[chromium-bugs] Issue 24346 in chromium: Use after freed in WebWorkerImpl::ReportPendingActivityTask

Fri, 09 Oct 2009 18:30:47 -0700 


Comment #7 on issue 24346 by [email protected]: Use after freed in  
WebWorkerImpl::ReportPendingActivityTask
http://code.google.com/p/chromium/issues/detail?id=24346

The following revision refers to this bug:
     http://src.chromium.org/viewvc/chrome?view=rev&revision=28646

------------------------------------------------------------------------
r28646 | [email protected] | 2009-10-09 18:04:48 -0700 (Fri, 09 Oct 2009) |  
5 lines
Changed paths:
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/renderer/webworker_proxy.cc?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/renderer/webworker_proxy.h?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/worker/nativewebworker_impl.cc?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/worker/nativewebworker_impl.h?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/worker/webworkerclient_proxy.cc?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/tools/valgrind/memcheck/suppressions.txt?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/webkit/api/public/WebWorker.h?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/webkit/glue/webworker_impl.cc?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/webkit/glue/webworker_impl.h?r1=28646&r2=28645
    M  
http://src.chromium.org/viewvc/chrome/trunk/src/webkit/tools/test_shell/test_web_worker.h?r1=28646&r2=28645

Fix another race condition on worker process shutdown that results in  
use-after-free.  Like 23018, this is happening because valgrind is slowing  
the worker thread shutdown enough that the backup terminate process code  
executes.

BUG=24346
TEST=covered by valgrind
Review URL: http://codereview.chromium.org/266036
------------------------------------------------------------------------


--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---

Reply via email to