Issue 3640: Crash clicking save on Download Tab after Save button on download shelf didn't draw properly http://code.google.com/p/chromium/issues/detail?id=3640
Comment #3 by [EMAIL PROTECTED]: User reported two more crash dumps: <quote> I managed to crash the October 21 build of Chromium (0.3.155.0--Developer Build 3653--passed all tests) by downloading the "mini_installer.exe" from http://build.chromium.org/buildbot/continuous/LATEST/ and then, during the download, switching to a second tab that happened to have http://www.sanders.senate.gov/news/record.cfm?id=304476 loaded into it that was launched from my email client (Thunderbird 3.0 nightly builds). I then switched back to my email client to read my next message while I waited for the download to complete. I switched back within 15 seconds and found that Chromium had crashed, restarted (with it's yellow bar, "Chromium was shutdown incorrectly etc , etc" Restore message. Restored and found no download history and an incomplete download in my downloads folder. I reproduced this a second time by doing the same thing in the same sequence with the exception of switching to my email client. Instead, I watched it crash for myself. By the way. There's a 1 KB .txt file for each dump file that contains (both are the same): [ClientCustomData] plat=Win32 prod=Chromium ptime=158546 ptype=browser ver=0.3.155.0-devel I'm attaching both dump files, the first one being only 44.9 KB in size (crashed in the background) and the second being 1.03 MB in size (crashed in the foreground). I 'll update the bug report accordingly. Oh yeah, Chromium was maximized each time. </quote> The crash dumps can be found in my home directory, under: finnur\upload\crashdumps\bug3640 The new crash dumps are: 1) c1de3710-47b4-41a1-9add-ec3e5f85d6a0.dmp, with the following information: FAULTING_IP: secur32!LsaQueryContextAttributesA+67 77fe98a8 813900000100 cmp dword ptr [ecx],10000h EXCEPTION_RECORD: ffffffff -- (.exr 0xffffffffffffffff) ExceptionAddress: 77fe98a8 (secur32!LsaQueryContextAttributesA+0x00000067) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 00000000 Parameter[1]: 000c5ea5 Attempt to read from address 000c5ea5 DEFAULT_BUCKET_ID: APPLICATION_FAULT PROCESS_NAME: chrome.exe ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at "0x%08lx" referenced memory at "0x%08lx". The memory could not be "%s". READ_ADDRESS: 000c5ea5 BUGCHECK_STR: ACCESS_VIOLATION LAST_CONTROL_TRANSFER: from 77fea4cc to 77fe98a8 STACK_TEXT: 02defd7c 77fea4cc 00000000 00000053 02defdd8 secur32!LsaQueryContextAttributesA+0x67 02defd9c 4d534a40 03321048 00000053 02defdd8 secur32!QueryContextAttributesA+0x39 02defdb4 4d5354d1 03321048 02defdd4 02defe78 winhttp!QuerySecurityInfo+0x1a 02defe8c 4d53739f 031a0000 031a5000 000003e5 winhttp!ICSecureSocket::VerifyTrust+0x4f 02defecc 4d5374d7 031a5000 02defef0 4d5096c8 winhttp!ICSecureSocket::SecureHandshake_Fsm+0x1e1 02defed8 4d5096c8 031a5000 031a0000 031a5000 winhttp!CFsm_SecureHandshake::RunSM+0x37 02defef0 4d509a52 031a0000 02deff4c 02deff40 winhttp!CFsm::Run+0x20 02deff44 4d506e77 00000000 00f8ea64 7c90e900 winhttp!CFsm::RunWorkItem+0xc5 02deffb4 7c80b713 4d4f0000 00f8ea64 7c90e900 winhttp!IOCompletionThreadFunc+0x167 02deffec 00000000 4d506d10 4d4f0000 00000000 kernel32!BaseThreadStart+0x37 FOLLOWUP_IP: secur32!LsaQueryContextAttributesA+67 77fe98a8 813900000100 cmp dword ptr [ecx],10000h SYMBOL_STACK_INDEX: 0 SYMBOL_NAME: secur32!LsaQueryContextAttributesA+67 FOLLOWUP_NAME: MachineOwner MODULE_NAME: secur32 IMAGE_NAME: secur32.dll DEBUG_FLR_IMAGE_TIMESTAMP: 4802a11b FAULTING_THREAD: 00000308 STACK_COMMAND: ~11s; .ecxr ; kb FAILURE_BUCKET_ID: ACCESS_VIOLATION_secur32!LsaQueryContextAttributesA+67 BUCKET_ID: ACCESS_VIOLATION_secur32!LsaQueryContextAttributesA+67 Followup: MachineOwner ... and ... 2) db27f98a-7320-4548-85d3-2f28219a6507.dmp FAULTING_IP: crypt32!AutoResyncStore+99 77a8e574 56 push esi EXCEPTION_RECORD: ffffffff -- (.exr 0xffffffffffffffff) ExceptionAddress: 77a8d65b (crypt32!LockStore+0x0000000b) ExceptionCode: c00000fd (Stack overflow) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 00000001 Parameter[1]: 02ce2ffc BUGCHECK_STR: c00000fd DEFAULT_BUCKET_ID: STATUS_STACKOVERFLOW PROCESS_NAME: chrome.exe ERROR_CODE: (NTSTATUS) 0xc00000fd - A new guard page for the stack cannot be created. RECURRING_STACK: From frames 0x2 to 0x2 LAST_CONTROL_TRANSFER: from 77a8e545 to 77a8d65b FOLLOWUP_IP: crypt32!AutoResyncStore+99 77a8e574 56 push esi SYMBOL_STACK_INDEX: 2 FOLLOWUP_NAME: MachineOwner MODULE_NAME: crypt32 IMAGE_NAME: crypt32.dll DEBUG_FLR_IMAGE_TIMESTAMP: 4802a0d7 FAULTING_THREAD: 00000e44 SYMBOL_NAME: crypt32!AutoResyncStore+99 STACK_COMMAND: ~10s; .ecxr ; kb FAILURE_BUCKET_ID: c00000fd_crypt32!AutoResyncStore+99 BUCKET_ID: c00000fd_crypt32!AutoResyncStore+99 Followup: MachineOwner With a stack that looks like: Args to Child 00219ef8 0022bb00 00219ef8 crypt32!LockStore+0xb 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a 00219ef8 0022bb00 00219ef8 crypt32!AutoResyncStore+0x6a ... and this continues seemingly forever ... -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Chromium-bugs" group. To post to this group, send email to chromium-bugs@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/chromium-bugs?hl=en -~----------~----~----~----~------~----~------~--~---