Comment #7 on issue 31080 by [email protected]: Crash -
ExtensionAction::GetValue()
http://code.google.com/p/chromium/issues/detail?id=31080
This is essentially the same bug from October (issue 25553), but with a
different
signature because the crashing function got moved.
It looks to me like we are crashing (during painting) inside
ExtensionAction when we
try to paint the Badge. More specifically, we crash in the template code
where we look
up the badge text in the map (tab id -> badge text).
This would make sense if the PageActionWithBadgeView was using a pointer to
a deleted
PageAction object, for example if the extension crashed or got disabled (or
otherwise
unloaded) without the LocationBarView deleting the views that represent the
PageAction.
But I've looked at and experimented with a bunch of code paths to try to
verify this
and I can't find a scenario where this could occur. In browser.cc we clear
the
PageActionWithBadgeViews when we get notification of an extension
unloading, disabling
and crashing. :/
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
