Status: Untriaged Owner: ---- CC: anan...@chromium.org, est...@chromium.org, thes...@chromium.org Labels: OS-Linux Area-Misc Type-Bug
New issue 26623 by aoca...@chromium.org: Crash when closing newly opened windows http://code.google.com/p/chromium/issues/detail?id=26623 Chrome Version : 4.0.229.0 (30554) OS + version : Ubuntu 8.04 CPU architecture (32-bit / 64-bit): 64-bit window manager : Gnome 2.22.3 URLs (if applicable) : Behavior in Firefox 3.x (if applicable): Behavior in Chrome for Windows (optional): I've gotten to repro this three times 1. Open Chrome 2. Go to wrench > New Tab 3. In original window, Go to wrench > new window 4. In original window, Go to wrench > new incognito window 5. Close the incognito window in step 4 6. Close the new window in step 3 I get a crash Crash reports at: http://crash/reportdetail?reportid=944c8e9e72946991 http://crash/reportdetail?reportid=944c8e9e7294620d Here is the trace from the console: aoca...@aocampo:~/Linux/builds$ *** glibc detected *** /usr/bin/google-chrome: corrupted double-linked list: 0x00007f84341b79e0 *** ======= Backtrace: ========= /lib/libc.so.6[0x7f843e295663] /lib/libc.so.6[0x7f843e297922] /lib/libc.so.6(__libc_malloc+0x90)[0x7f843e299360] /usr/lib/libstdc++.so.6(_Znwm+0x1d)[0x7f843e8575ed] /usr/lib/libstdc++.so.6(_ZNSs4_Rep9_S_createEmmRKSaIcE+0x21)[0x7f843e8342e1] /usr/lib/libstdc++.so.6(_ZNSs4_Rep8_M_cloneERKSaIcEm+0x2b)[0x7f843e834cbb] /usr/lib/libstdc++.so.6(_ZNSs7reserveEm+0x40)[0x7f843e835610] /usr/bin/google-chrome[0x8a9409] /usr/bin/google-chrome[0x69567e] /usr/bin/google-chrome[0x6957de] /usr/bin/google-chrome[0x651429] /usr/bin/google-chrome[0x63ecbc] /usr/bin/google-chrome[0x4996b2] /usr/bin/google-chrome[0x8af46e] /usr/bin/google-chrome[0x8afe98] /usr/bin/google-chrome[0x8b0391] /usr/bin/google-chrome[0x8b2ed5] /usr/bin/google-chrome[0x8b0757] /usr/bin/google-chrome[0x429e72] /usr/bin/google-chrome[0x424d5f] /lib/libc.so.6(__libc_start_main+0xf4)[0x7f843e2411c4] /usr/bin/google-chrome[0x423979] ======= Memory map: ======== 00400000-0298a000 r-xp 00000000 08:01 1229978 /opt/google/chrome/chrome 02b8a000-02ba3000 rwxp 0258a000 08:01 1229978 /opt/google/chrome/chrome 02ba3000-0331d000 rwxp 02ba3000 00:00 0 [heap] 40f8e000-40f8f000 ---p 40f8e000 00:00 0 40f8f000-4178f000 rwxp 40f8f000 00:00 0 4178f000-41790000 ---p 4178f000 00:00 0 41790000-41f90000 rwxp 41790000 00:00 0 41f90000-41f91000 ---p 41f90000 00:00 0 41f91000-42791000 rwxp 41f91000 00:00 0 42791000-42792000 ---p 42791000 00:00 0 42792000-42f92000 rwxp 42792000 00:00 0 42f92000-42f93000 ---p 42f92000 00:00 0 42f93000-43793000 rwxp 42f93000 00:00 0 43793000-43794000 ---p 43793000 00:00 0 43794000-437b4000 rwxp 43794000 00:00 0 437b4000-437b5000 ---p 437b4000 00:00 0 437b5000-43fb5000 rwxp 437b5000 00:00 0 43fb5000-43fb6000 ---p 43fb5000 00:00 0 43fb6000-447b6000 rwxp 43fb6000 00:00 0 447b6000-447b7000 ---p 447b6000 00:00 0 447b7000-44fb7000 rwxp 447b7000 00:00 0 44fb7000-44fb8000 ---p 44fb7000 00:00 0 44fb8000-44fd8000 rwxp 44fb8000 00:00 0 7f842c000000-7f842c0e7000 rwxp 7f842c000000 00:00 0 7f842c0e7000-7f8430000000 ---p 7f842c0e7000 00:00 0 7f8434000000-7f843429a000 rwxp 7f8434000000 00:00 0 7f843429a000-7f8438000000 ---p 7f843429a000 00:00 0 7f843813f000-7f84384e3000 rwxs 00000000 00:09 353206292 /SYSV00000000 (deleted) 7f8438887000-7f84388cd000 r-xs 00000000 08:01 352293 /usr/share/fonts/truetype/msttcorefonts/Arial_Bold.ttf 7f84388cd000-7f843892f000 r-xp 00000000 08:01 1404017 /usr/lib/nss/libnssckbi.so 7f843892f000-7f8438b2f000 ---p 00062000 08:01 1404017 /usr/lib/nss/libnssckbi.so 7f8438b2f000-7f8438b47000 rwxp 00062000 08:01 1404017 /usr/lib/nss/libnssckbi.so 7f8438b47000-7f8438b9d000 r-xp 00000000 08:01 1404016 /usr/lib/nss/libfreebl3.so 7f8438b9d000-7f8438d9c000 ---p 00056000 08:01 1404016 /usr/lib/nss/libfreebl3.so 7f8438d9c000-7f8438d9e000 rwxp 00055000 08:01 1404016 /usr/lib/nss/libfreebl3.so 7f8438d9e000-7f8438da2000 rwxp 7f8438d9e000 00:00 0 7f8438da2000-7f8439b1b000 r-xp 00000000 08:01 1558738 /usr/share/fonts/truetype/wqy/wqy-zenhei.ttf 7f8439b1b000-7f8439b84000 r-xp 00000000 08:01 1313773 /usr/lib/libsqlite3.so.0.8.6 7f8439b84000-7f8439d84000 ---p 00069000 08:01 1313773 /usr/lib/libsqlite3.so.0.8.6 7f8439d84000-7f8439d87000 rwxp 00069000 08:01 1313773 /usr/lib/libsqlite3.so.0.8.6 7f8439d87000-7f8439dc2000 r-xp 00000000 08:01 1404015 /usr/lib/nss/libsoftokn3.so 7f8439dc2000-7f8439fc1000 ---p 0003b000 08:01 1404015 /usr/lib/nss/libsoftokn3.so 7f8439fc1000-7f8439fc3000 rwxp 0003a000 08:01 1404015 /usr/lib/nss/libsoftokn3.so 7f8439fc3000-7f8439fc6000 r-xp 00000000 08:01 1385713 /usr/lib/pango/1.6.0/modules/pango-hangul-fc.so 7f8439fc6000-7f843a1c5000 ---p 00003000 08:01 1385713 /usr/lib/pango/1.6.0/modules/pango-hangul-fc.so 7f843a1c5000-7f843a1c6000 rwxp 00002000 08:01 1385713 /usr/lib/pango/1.6.0/modules/pango-hangul-fc.so 7f843a1c6000-7f843a1c8000 r-xp 00000000 08:01 1385709 /usr/lib/pango/1.6.0/modules/pango-arabic-fc.so 7f843a1c8000-7f843a3c8000 ---p 00002000 08:01 1385709 /usr/lib/pango/1.6.0/modules/pango-arabic-fc.so 7f843a3c8000-7f843a3c9000 rwxp 00002000 08:01 1385709 /usr/lib/pango/1.6.0/modules/pango-arabic-fc.so 7f843a3c9000-7f843a3ca000 r-xp 00000000 08:01 1385710 /usr/lib/pango/1.6.0/modules/pango-arabic-lang.so 7f843a3ca000-7f843a5c9000 ---p 00001000 08:01 1385710 /usr/lib/pango/1.6.0/modules/pango-arabic-lang.so 7f843a5c9000-7f843a5ca000 rwxp 00000000 08:01 1385710 /usr/lib/pango/1.6.0/modules/pango-arabic-lang.so 7f843a5ca000-7f843a5dc000 r-xp 00000000 08:01 771240 /lib/libresolv-2.7.so 7f843a5dc000-7f843a7dc000 ---p 00012000 08:01 771240 /lib/libresolv-2.7.so 7f843a7dc000-7f843a7de000 rwxp 00012000 08:01 771240 /lib/libresolv-2.7.so 7f843a7de000-7f843a7e0000 rwxp 7f843a7de000 00:00 0 7f843a7e0000-7f843a7e4000 r-xp 00000000 08:01 770304 /lib/libnss_dns-2.7.so 7f843a7e4000-7f843a9e4000 ---p 00004000 08:01 770304 /lib/libnss_dns-2.7.so 7f843a9e4000-7f843a9e6000 rwxp 00004000 08:01 770304 /lib/libnss_dns-2.7.so 7f843aa03000-7f843aa05000 rwxs 00000000 00:1b 18447724 /home/aocampo/.cache/google-chrome/Cache/data_3 7f843aa05000-7f843aa07000 rwxs 00000000 00:1b 18447723 /home/aocampo/.cache/google-chrome/Cache/data_2 7f843aa07000-7f843aa09000 rwxs 00000000 00:1b 24393032 /home/aocampo/.cache/google-chrome/Cache/data_1 7f843aa09000-7f843aa0b000 rwxs 00000000 00:1b 24393031 /home/aocampo/.cache/google-chrome/Cache/data_0 7f843aa0b000-7f843aa8c000 rwxs 00000000 00:1b 24393020 /home/aocampo/.cache/google-chrome/Cache/index 7f843aa8c000-7f843ab90000 rwxp 7f843aa8c000 00:00 0 7f843ab90000-7f843ac21000 r-xp 00000000 08:01 1353615 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf 7f843ac21000-7f843ac23000 r-xp 00000000 08:01 1385711 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so 7f843ac23000-7f843ae22000 ---p 00002000 08:01 1385711 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so 7f843ae22000-7f843ae23000 rwxp 00001000 08:01 1385711 /usr/lib/pango/1.6.0/modules/pango-basic-fc.so 7f843ae23000-7f843ae50000 rwxp 7f843ae23000 00:00 0 7f843ae50000-7f843aeb0000 rwxs 00000000 00:09 353042442 /SYSV00000000 (deleted) 7f843aef0000-7f843af77000 r-xs 00000000 08:01 1353616 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans-Bold.ttf 7f843af97000-7f843b028000 r-xs 00000000 08:01 1353615 /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf 7f843b038000-7f843b048000 rwxs 00000000 00:14 6702392 /dev/shm/com.google.chrome.cRFEXf (deleted) 7f843b048000-7f843b051000 r-xs 00000000 08:01 1974510 /var/cache/fontconfig/945677eb7aeaf62f1d50efc3fb3ec7d8-x86-64.cache-2 7f843b051000-7f843b053000 r-xs 00000000 08:01 1974580 /var/cache/fontconfig/99e8ed0e538f840c565b6ed5dad60d56-x86-64.cache-2 7f843b053000-7f843b056000 r-xs 00000000 08:01 1974579 /var/cache/fontconfig/e383d7ea5fbe662a33d9b44caf393297-x86-64.cache-2 7f843b056000-7f843b057000 r-xs 00000000 08:01 1974578 /var/cache/fontconfig/fd9505950c048a77dc4b710eb6a628ed-x86-64.cache-2 7f843b057000-7f843b058000 r-xs 00000000 08:01 1974577 /var/cache/fontconfig/a2ab74764b07279e7c36ddb1d302cf26-x86-64.cache-2 7f843b058000-7f843b059000 r-xs 00000000 08:01 1974576 /var/cache/fontconfig/c69f04ab05004e31a6d5e7--11:50:53-- https://clients2.google.com/cr/report => `/dev/fd/3' Resolving clients2.google.com... 74.125.19.102, 74.125.19.101, 74.125.19.138, ... Connecting to clients2.google.com|74.125.19.102|:443... connected. HTTP request sent, awaiting response... 200 OK Length: unspecified [text/html] [<=> ] 0 --.--K/s Crash dump id: 944c8e9e72946991 [ <=> ] 16 --.--K/s 11:50:54 (1.18 MB/s) - `/dev/fd/3' saved [16] -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
