Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(40)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 1398403005: Prevent ~StickyKeysOverlay() from calling back into StickyKeysOverlay via the animator. (Closed)

Created:
5 years, 2 months ago by Anand Mistry (off Chromium)
Modified:
5 years, 2 months ago
Reviewers:
Tim Song
CC:
chromium-reviews, kalyank, sadrul, chrome-apps-syd-reviews_chromium.org
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Prevent ~StickyKeysOverlay() from calling back into StickyKeysOverlay via the animator. The animator calls StickyKeysOverlay::OnLayerAnimationEnded() during the destruction of |overlay_widget_|, which dereferences overlay_widget_. However, unique_ptr in libc++ (which we want to replace scoped_ptr with) sets its value to nullptr before deleting the object, resulting in a nullptr dereference. BUG=535321 Committed: https://crrev.com/4ce7724a1dbe5d73f3dd19bf74e60d18189333a1 Cr-Commit-Position: refs/heads/master@{#354409}

Patch Set 1 #

Unified diffs Side-by-side diffs Delta from patch set Stats (+10 lines, -1 line) Patch
M ash/sticky_keys/sticky_keys_overlay.cc View 1 chunk +10 lines, -1 line 0 comments Download

Messages

Total messages: 16 (6 generated)
Anand Mistry (off Chromium)
5 years, 2 months ago (2015-10-13 06:56:48 UTC) #2
Anand Mistry (off Chromium)
I should mention, the stack trace that leads to this is: #3 0x0000004823c9 base::internal::scoped_ptr_impl<>::get() #4 ...
5 years, 2 months ago (2015-10-13 21:45:12 UTC) #3
Tim Song
Sorry for the delay. LGTM.
5 years, 2 months ago (2015-10-14 23:48:38 UTC) #4
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1398403005/1 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1398403005/1
5 years, 2 months ago (2015-10-15 00:05:50 UTC) #6
commit-bot: I haz the power
Try jobs failed on following builders: win_chromium_rel_ng on tryserver.chromium.win (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.win/builders/win_chromium_rel_ng/builds/120840)
5 years, 2 months ago (2015-10-15 01:23:11 UTC) #8
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1398403005/1 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1398403005/1
5 years, 2 months ago (2015-10-15 03:29:54 UTC) #10
commit-bot: I haz the power
Try jobs failed on following builders: win_chromium_rel_ng on tryserver.chromium.win (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.win/builders/win_chromium_rel_ng/builds/120877)
5 years, 2 months ago (2015-10-15 04:46:43 UTC) #12
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1398403005/1 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1398403005/1
5 years, 2 months ago (2015-10-15 23:20:50 UTC) #14
commit-bot: I haz the power
Committed patchset #1 (id:1)
5 years, 2 months ago (2015-10-16 00:04:28 UTC) #15
commit-bot: I haz the power
5 years, 2 months ago (2015-10-16 00:05:20 UTC) #16
Message was sent while issue was closed. 
Patchset 1 (id:??) landed as
https://crrev.com/4ce7724a1dbe5d73f3dd19bf74e60d18189333a1
Cr-Commit-Position: refs/heads/master@{#354409}

Powered by Google App Engine
This is Rietveld 408576698