Comment #30 on issue 23362 by spotrh: glibc assert in WebCore::CSSParser::~CSSParser() (double free) -- gcc 4.4-specific? http://code.google.com/p/chromium/issues/detail?id=23362
Okay, as Craig points out on 25048: I'm under the impression that the double free checking in glibc is controlled by MALLOC_CHECK_ btw. and is unrelated to FORTIFY_SOURCE. I do think FORTIFY_SOURCE is a good idea though. ***** In testing, MALLOC_CHECK_ affects the result when chromium-browser is executed with --single-process [s...@pterodactyl ~]$ export MALLOC_CHECK_=0 [s...@pterodactyl ~]$ chromium-browser --single-process [11878:11878:228078102038:ERROR:/mnt/chromium/rpmbuild/BUILD/chromium-20091013svn28872/src/chrome/browser/net/chrome_url_request_context.cc(98)] Cannot use V8 Proxy resolver in single process mode. chromium-browser: malloc.c:4628: _int_malloc: Assertion `(unsigned long)(size) >= (unsigned long)(nb)' failed. Aborted [s...@pterodactyl ~]$ unset MALLOC_CHECK_ [s...@pterodactyl ~]$ chromium-browser --single-process [12046:12046:228099840759:ERROR:/mnt/chromium/rpmbuild/BUILD/chromium-20091013svn28872/src/chrome/browser/net/chrome_url_request_context.cc(98)] Cannot use V8 Proxy resolver in single process mode. *** glibc detected *** /usr/lib64/chromium-browser/chromium-browser: double free or corruption (!prev): 0x00007fe5e434b910 *** ======= Backtrace: ========= /lib64/libc.so.6(+0x758d6)[0x7fe628c758d6] /usr/lib64/chromium-browser/chromium-browser[0x111da7f] /usr/lib64/chromium-browser/chromium-browser[0x1155990] /usr/lib64/chromium-browser/chromium-browser[0x12f0313] /usr/lib64/chromium-browser/chromium-browser[0xd1a6a1] /usr/lib64/chromium-browser/chromium-browser[0xd1ae37] /usr/lib64/chromium-browser/chromium-browser[0xd666dd] /usr/lib64/chromium-browser/chromium-browser[0x11fec1f] /usr/lib64/chromium-browser/chromium-browser[0x1381c4a] /usr/lib64/chromium-browser/chromium-browser[0x1488329] /usr/lib64/chromium-browser/chromium-browser[0x148d031] /usr/lib64/chromium-browser/chromium-browser[0x148d881] /usr/lib64/chromium-browser/chromium-browser[0x146c8f0] /usr/lib64/chromium-browser/chromium-browser[0x951773] /usr/lib64/chromium-browser/chromium-browser[0x95198b] /usr/lib64/chromium-browser/chromium-browser[0x951c6d] /usr/lib64/chromium-browser/chromium-browser[0x951f19] /usr/lib64/chromium-browser/chromium-browser[0x950232] /usr/lib64/chromium-browser/chromium-browser[0x95041c] /usr/lib64/chromium-browser/chromium-browser[0x9766e1] /usr/lib64/chromium-browser/chromium-browser[0x95d47a] /lib64/libpthread.so.0(+0x696a)[0x7fe62f26c96a] /lib64/libc.so.6(clone+0x6d)[0x7fe628ce13cd] ======= Memory map: ======== 00400000-01b2f000 r-xp 00000000 fd:00 398023 /usr/lib64/chromium-browser/chromium-browser 01d2e000-01d41000 rwxp 0172e000 fd:00 398023 /usr/lib64/chromium-browser/chromium-browser 01d41000-01d9c000 rwxp 00000000 00:00 0 01fbb000-0235e000 rwxp 00000000 00:00 0 [heap] 7fe5b4000000-7fe5b4021000 rwxp 00000000 00:00 0 7fe5b4021000-7fe5b8000000 ---p 00000000 00:00 0 7fe5b8000000-7fe5b8084000 rwxp 00000000 00:00 0 7fe5b8084000-7fe5d8000000 ---p 00000000 00:00 0 7fe5d8000000-7fe5d8100000 rwxp 00000000 00:00 0 7fe5d8100000-7fe5d9000000 ---p 00000000 00:00 0 7fe5d9000000-7fe5d9100000 rwxp 00000000 00:00 0 7fe5d9100000-7fe5dc000000 ---p 00000000 00:00 0 7fe5dc000000-7fe5dc56b000 rwxp 00000000 00:00 0 7fe5dc56b000-7fe5e0000000 ---p 00000000 00:00 0 7fe5e20f2000-7fe5e20f3000 ---p 00000000 00:00 0 7fe5e20f3000-7fe5e2af3000 rwxp 00000000 00:00 0 7fe5e2af3000-7fe5e2ea8000 rwxs 00000000 00:08 4784167 /SYSV00000000 (deleted) 7fe5e2ea8000-7fe5e3258000 rwxs 00000000 00:08 4751398 /SYSV00000000 (deleted) 7fe5e35ff000-7fe5e3600000 ---p 00000000 00:00 0 7fe5e3600000-7fe5e4000000 rwxp 00000000 00:00 0 7fe5e4000000-7fe5e4353000 rwxp 00000000 00:00 0 7fe5e4353000-7fe5e8000000 ---p 00000000 00:00 0 7fe5e8000000-7fe5e8021000 rwxp 00000000 00:00 0 7fe5e8021000-7fe5ec000000 ---p 00000000 00:00 0 7fe5ec000000-7fe5ec021000 rwxp 00000000 00:00 0 7fe5ec021000-7fe5f0000000 ---p 00000000 00:00 0 7fe5f0000000-7fe5f0021000 rwxp 00000000 00:00 0 7fe5f0021000-7fe5f4000000 ---p 00000000 00:00 0 7fe5f4232000-7fe5f45e7000 rwxs 00000000 00:08 4784167 /SYSV00000000 (deleted) 7fe5f4609000-7fe5f498d000 rwxs 00000000 00:08 4849701 /SYSV00000000 (deleted) 7fe5f498d000-7fe5f49a0000 r-xp 00000000 fd:00 393545 /usr/lib64/gio/modules/libgioremote-volume-monitor.so 7fe5f49a0000-7fe5f4ba0000 ---p 00013000 fd:00 393545 /usr/lib64/gio/modules/libgioremote-volume-monitor.so 7fe5f4ba0000-7fe5f4ba1000 rwxp 00013000 fd:00 393545 /usr/lib64/gio/modules/libgioremote-volume-monitor.so 7fe5f4ba1000-7fe5f4baf000 r-xp 00000000 fd:00 2177 /lib64/libudev.so.0.4.2 7fe5f4baf000-7fe5f4dae000 ---p 0000e000 fd:00 2177 /lib64/libudev.so.0.4.2 7fe5f4dae000-7fe5f4daf000 rwxp 0000d000 fd:00 2177 /lib64/libudev.so.0.4.2 7fe5f4daf000-7fe5f4dc5000 r-xp 00000000 fd:00 294711 /usr/lib64/libgvfscommon.so.0.0.0 7fe5f4dc5000-7fe5f4fc5000 ---p 00016000 fd:00 294711 /usr/lib64/libgvfscommon.so.0.0.0 7fe5f4fc5000-7fe5f4fc6000 rwxp 00016000 fd:00 294711 /usr/lib64/libgvfscommon.so.0.0.0 7fe5f4fc6000-7fe5f4fef000 r-xp 00000000 fd:00 403697 /usr/lib64/gio/modules/libgvfsdbus.so 7fe5f4fef000-7fe5f51ee000 ---p 00029000 fd:00 403697 /usr/lib64/gio/modules/libgvfsdbus.so 7fe5f51ee000-7fe5f51f0000 rwxp 00028000 fd:00 403697 /usr/lib64/gio/modules/libgvfsdbus.so 7fe5f51f0000-7fe5f51f2000 r-xp 00000000 fd:00 6519 /lib64/libutil-2.10.90.so 7fe5f51f2000-7fe5f53f1000 ---p 00002000 fd:00 6519 /lib64/libutil-2.10.90.so 7fe5f53f1000-7fe5f53f2000 r-xp 00001000 fd:00 6519 /lib64/libutil-2.10.90.so 7fe5f53f2000-7fe5f53f3000 rwxp 00002000 fd:00 6519 /lib64/libutil-2.10.90.so 7fe5f57fc000-7fe5f57fd000 ---p 00000000 00:00 0 7fe5f57fd000-7fe5f61fd000 rwxp 00000000 00:00 0 7fe5f61fd000-7fe5f61fe000 ---p 00000000 00:00 0 7fe5f61fe000-7fe5f6bfe000 rwxp 00000000 00:00 0 7fe5f6bfe000-7fe5f6bff000 ---p 00000000 00:00 0 7fe5f6bff000-7fe5f75ff000 rwxp 00000000 00:00 0 7fe5f75ff000-7fe5f7600000 ---p 00000000 00:00 0 7fe5f7600000-7fe5f8000000 rwxp 00000000 00:00 0 7fe5f8000000-7fe5f8021000 rwxp 00000000 00:00 0 7fe5f8021000-7fe5fc000000 ---p 00000000 00:00 0 7fe5fc000000-7fe5fc021000 rwxp 00000000 00:00 0 7fe5fc021000-7fe600000000 ---p 00000000 00:00 0 7fe600000000-7fe600021000 rwxp 00000000 00:00 0 7fe600021000-7fe604000000 ---p 00000000 00:00 0 7fe604000000-7fe604021000 rwxp 00000000 00:00 0 7fe604021000-7fe608000000 ---p 00000000 00:00 0 7fe608000000-7fe608021000 rwxp 00000000 00:00 0 7fe608021000-7fe60c000000 ---p 00000000 00:00 0 7fe60c000000-7fe60c021000 rwxp 00000000 00:00 0 7fe60c021000-7fe610000000 ---p 00000000 00:00 0 7fe610000000-7fe610021000 rwxp 00000000 00:00 0 7fe610021000-7fe614000000 ---p 00000000 00:00 0 7fe614000000-7fe6140be000 rwxp 00000000 00:00 0 7fe6140be000-7fe618000000 ---p 00000000 00:00 0 7fe618000000-7fe618072000 rwxp 00000000 00:00 0 7fe618072000-7fe61c000000 ---p 00000000 00:00 0 7fe61c111000-7fe61c19d000 r-xp 00000000 fd:00 133732 /usr/share/fonts/dejavu/DejaVuSans-Bold.ttf 7fe61c19d000-7fe61c1dd000 rwxp 00000000 00:00 0 7fe61c1dd000-7fe61c1de000 ---p 00000000 00:00 0 7fe61c1de000-7fe61c2fe000 rwxp 00000000 00:00 0 7fe61c2fe000-7fe61c35e000 rwxs 00000000 00:08 4685860 /SYSV00000000 (deleted) 7fe61c35e000-7fe61c360000 rwxs 00000000 fd:00 934318 /home/spot/.cache/chromium/Cache/data_3 7fe61c360000-7fe61c362000 rwxs 00000000 fd:00 934317 /home/spot/.cache/chromium/Cache/data_2 7fe61c362000-7fe61c364000 rwxs 00000000 fd:00 934316 /home/spot/.cache/chromium/Cache/data_1 7fe61c364000-7fe61c3a1000 r-xp 00000000 fd:00 271881 /usr/lib64/libibus.so.1.0.0 7fe61c3a1000-7fe61c5a1000 ---p 0003d000 fd:00 271881 /usr/lib64/libibus.so.1.0.0 7fe61c5a1000-7fe61c5a4000 rwxp 0003d000 fd:00 271881 /usr/lib64/libibus.so.1.0.0 7fe61c5a4000-7fe61c5a9000 r-xp 00000000 fd:00 266441 /usr/lib64/gtk-2.0/2.10.0/immodules/im-ibus.so 7fe61c5a9000-7fe61c7a9000 ---p 00005000 fd:00 266441 /usr/lib64/gtk-2.0/2.10.0/immodules/im-ibus.so 7fe61c7a9000-7fe61c7aa000 rwxp 00005000 fd:00 266441 /usr/lib64/gtk-2.0/2.10.0/immodules/im-ibus.so 7fe61c7aa000-7fe61c82b000 rwxs 00000000 fd:00 934314 /home/spot/.cache/chromium/Cache/index 7fe61c82b000-7fe61c86c000 r-xs 00000000 00:11 849013 /dev/shm/org.chromium.E7bj3N (deleted) 7fe61c86c000-7fe61c899000 rwxp 00000000 00:00 0 7fe61c89a000-7fe61c89c000 rwxs 00000000 fd:00 934315 /home/spot/.cache/chromium/Cache/data_0 7fe61c8b4000-7fe61c8bc000 rwxs 00000000 00:11 849320 /dev/shm/org.chromium.sOHKdZ (deleted) 7fe61c8c4000-7fe61c8c5000 r-xs 00000000 00:11 848975 /dev/shm/org.chromium.kiD8mv (deleted) 7fe61c8c5000-7fe61c8c6000 rwxs 00000000 00:08 4620322 /SYSV00000000 (deleted) 7fe61c8c6000-7fe61c907000 rwxs 00000000 00:11 849013 /dev/shm/org.chromium.E7bj3N (deleted) 7fe61c907000-7fe61c9e4000 rwxp 00000000 00:00 0 7fe61c9e4000-7fe61ca7c000 r-xp 00000000 fd:00 198973 /usr/share/fonts/dejavu/DejaVuSans.ttf 7fe61ca7c000-7fe61cadc000 rwxs 00000000 00:08 4587553 /SYSV00000000 (deleted) 7fe61cadc000-7fe61cb68000 r-xs 00000000 fd:00 133732 /usr/share/fonts/dejavu/DejaVuSans-Bold.ttf 7fe61cb68000-7fe61cc00000 r-xs 00000000 fd:00 198973 /usr/share/fonts/dejavu/DejaVuSans.ttf 7fe61cc00000-7fe61cc04000 r-xs 00000000 fd:00 6724 /var/cache/fontconfig/87f5e051180a7a75f16eb6fe7dbd3749-x86-64.cache-2 7fe61cc04000-7fe61cc0d000 r-xs 00000000 fd:00 5392 /var/cache/fontconfig/b79f3aaa7d385a141ab53ec885cc22a8-x86-64.cache-2 7fe61cc0d000-7fe61cc0f000 r-xs 00000000 fd:00 6757 /var/cache/fontconfig/3f821257dd33660ba7bbb45c32deb84c-x86-64.cache-2 7fe61cc0f000-7fe61cc16000 r-xs 00000000 fd:00 6756 /var/cache/fontconfig/4460665c0f3e88acdd4c85aa2f409b99-x86-64.cache-2 7fe61cc16000-7fe61cc18000 r-xs 00000000 fd:00 6755 /var/cache/fontconfig/830f035fa84a65ce80e050178dbb630d-x86-64.cache-2 7fe61cc18000-7fe61cc19000 r-xs 00000000 fd:00 6754 /var/cache/fontconfig/81a173283b451552b599cfaafd6236bd-x86-64.cache-2 7fe61cc19000-7fe61cc1a000 r-xs 00000000 fd:00 6753 /var/cache/fontconfig/6cfc7d49b27ba7d3eb71ab86e04def2c-x86-64.cache-2 7fe61cc1a000-7fe61cc1b000 r-xs 00000000 fd:00 7435 /var/cache/fontconfig/6fcb01a03a016cc71057b587cdea6709-x86-64.cache-2 7fe61cc1b000-7fe61cc1c000 r-xs 00000000 fd:00 6751 /var/cache/fontconfig/f19e33e2e30dd6a755d46a158b148be0-x86-64.cache-2 7fe61cc1c000-7fe61cc1e000 r-xs 00000000 fd:00 6750 /var/cache/fontconfig/92766a01268820036254e15fb956c917-x86-64.cache-2 7fe61cc1e000-7fe61cc1f000 r-xs 00000000 fd:00 7975 /var/cache/fontconfig/b887eea8f1b96e1d899b44ed6681fc27-x86-64.cache-2 7fe61cc1f000-7fe61cc20000 r-xs 00000000 fd:00 6747 /var/cache/fontconfig/860639f272b8b4b3094f9e399e41bccd-x86-64.cache-2 7fe61cc20000-7fe61cc21000 r-xs 00000000 fd:00 6742 /var/cache/fontconfig/c6e0f78466ee8c9447ddb26c678e76b6-x86-64.cache-2 7fe61cc21000-7fe61cc22000 r-xs 00000000 fd:00 6739 /var/cache/fontconfig/211368abcb0ff835c229ff05c9ec01dc-x86-64.cache-2 7fe61cc22000-7fe61cc23000 r-xs 00000000 fd:00 6738 /var/cache/fontconfig/c46020d7221988a13df853d2b46304fc-x86-64.cache-2 7fe61cc23000-7fe61cc24000 r-xs 00000000 fd:00 7974 /var/cache/fontconfig/d759ee9cd048e494517a1be23d25a662-x86-64.cache-2 7fe61cc24000-7fe61cc25000 r-xs 00000000 fd:00 6748 /var/cache/fontconfig/d290456e58f67f52b0f8f224126f9ea8-x86-64.cache-2 7fe61cc25000-7fe61cc26000 r-xs 00000000 fd:00 6745 /var/cache/fontconfig/fa2b533b7056bdadb961f088bc0a978b-x86-64.cache-2 7fe61cc26000-7fe61cc27000 r-xs 00000000 fd:00 6735 /var/cache/fontconfig/b63c21b9c3e5b4a4009aa5966b421593-x86-64.cache-2 7fe61cc27000-7fe61cc28000 r-xs 00000000 fd:00 6736 /var/cache/fontconfig/02595b6bec17789ffaf4672fedd6165f-x86-64.cache-2 7fe61cc28000-7fe61cc29000 r-xs 00000000 fd:00 6737 /var/cache/fontconfig/10397e85b55c32cb2628a75c10264886-x86-64.cache-2 7fe61cc29000-7fe61cc2a000 r-xs 00000000 fd:00 6744 /var/cache/fontconfig/df893b4576ad6107f9397134092c4059-x86-64.cache-2 7fe61cc2a000-7fe61cc2b000 r-xs 00000000 fd:00 7972 /var/cache/fontconfig/ff627ea95a65192232277bf7c8a56f23-x86-64.cache-2 7fe61cc2b000-7fe61cc2e000 r-xs 00000000 fd:00 7189 /var/cache/fontconfig/e4307be1e5b40d775f6e65a19e2b9602-x86-64.cache-2 7fe61cc2e000-7fe61cc32000 r-xs 00000000 fd:00 6731 /var/cache/fontconfig/b67b32625a2bb51b023d3814a918f351-x86-64.cache-2 7fe61cc32000-7fe61cc3c000 r-xs 00000000 fd:00 6726 /var/cache/fontconfig/614d1caaa4d7914789410f6367de37ca-x86-64.cache-2 7fe61cc3c000-7fe61cc4c000 r-xs 00000000 fd:00 6725 /var/cache/fontconfig/12b26b760a24f8b4feb03ad48a333a72-x86-64.cache-2 7fe61cc4c000-7fe61cc4d000 ---p 00000000 00:00 0 7fe61cc4d000-7fe61cc6d000 rwxp 00000000 00:00 0 7fe61cc6d000-7fe61cc6e000 ---p 00000000 00:00 0 7fe61cc6e000-7fe61cc8e000 rwxp 00000000 00:00 0 7fe61cc8e000-7fe61cc8f000 ---p 00000000 00:00 0 7fe61cc8f000-7fe61ce37000 rwxp 00000000 00:00 0 7fe61ce37000-7fe61ce3c000 r-xp 00000000 fd:00 6509 /lib64/libnss_dns-2.10.90.so 7fe61ce3c000-7fe61d03b000 ---p 00005000 fd:00 6509 /lib64/libnss_dns-2.10.90.so 7fe61d03b000-7fe61d03c000 r-xp 00004000 fd:00 6509 /lib64/libnss_dns-2.10.90.so 7fe61d03c000-7fe61d03d000 rwxp 00005000 fd:00 6509 /lib64/libnss_dns-2.10.90.so 7fe61d03d000-7fe61d03e000 ---p 00000000 00:00 0 7fe61d03e000-7fe61da3e000 rwxp 00000000 00:00 0 7fe61da3e000-7fe61da40000 r-xp 00000000 fd:00 607 /lib64/libnss_mdns4_minimal.so.2Aborted -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
