Issue 1754893006: Fix multibuffer crashing bug

Issue 1754893006: Fix multibuffer crashing bug (Closed)

Created:
4 years, 9 months ago by hubbe

Modified:
4 years, 9 months ago

Reviewers:
DaleCurtis, liberato (no reviews please)

CC:
chromium-reviews, feature-media-reviews_chromium.org

Base URL:
https://chromium.googlesource.com/chromium/src.git@master

Target Ref:
refs/pending/heads/master

Project:
chromium

Visibility:
Public.

More Reviews

Description

Fix multibuffer crashing bug The multibuffer reader had a problem where it would unpin a block if it was initialized with a position that was not divisible by the block size. This generally only happens on a redirect. When this happens, everything was fine up until the multibuffer is freed, where it would crash when it tried to remove a pinned block from the global LRU. Seval actions taken: o Add a test that covers the redirect path properly * this uncovered another bug where the data size was incorrectly calculated (fixed) o Fix it so that if blocks are pinned in ~MultiBuffer, we don't crash unless we're in debug mode. o Add DCHECKS to make sure that pin counts don't go negative. o Fix multibuffer reader so that it always unpins exactly what it pinned, no more, no less. BUG=591359 Committed: https://crrev.com/5b6dbf76bfa39c24ad97c29ac8a8a0c44dcf3099 Cr-Commit-Position: refs/heads/master@{#378925}

Patch Set 1 #

Total comments: 12

Patch Set 2 : DCHECK -> CHECK #

Created: 4 years, 9 months ago

Download [raw] [tar.bz2]

	Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+57 lines, -17 lines)			Patch
M	media/blink/multibuffer.cc	View	1	4 chunks	+5 lines, -0 lines	0 comments	Download
M	media/blink/multibuffer_data_source_unittest.cc	View		1 chunk	+29 lines, -0 lines	0 comments	Download
M	media/blink/multibuffer_reader.h	View		2 chunks	+6 lines, -0 lines	0 comments	Download
M	media/blink/multibuffer_reader.cc	View		5 chunks	+17 lines, -17 lines	0 comments	Download

Messages

Total messages: 15 (4 generated)

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages

liberato (no reviews please)

https://codereview.chromium.org/1754893006/diff/1/media/blink/multibuffer.cc File media/blink/multibuffer.cc (right): https://codereview.chromium.org/1754893006/diff/1/media/blink/multibuffer.cc#newcode122 media/blink/multibuffer.cc:122: if (!pinned_[i.first]) { since |pinned_.empty()| from the dcheck, how ...

4 years, 9 months ago (2016-03-02 21:45:46 UTC) #3

hubbe

4 years, 9 months ago (2016-03-02 22:10:15 UTC) #4

liberato (no reviews please)

lgtm. https://codereview.chromium.org/1754893006/diff/1/media/blink/multibuffer.cc File media/blink/multibuffer.cc (right): https://codereview.chromium.org/1754893006/diff/1/media/blink/multibuffer.cc#newcode122 media/blink/multibuffer.cc:122: if (!pinned_[i.first]) { On 2016/03/02 22:10:15, hubbe wrote: ...

4 years, 9 months ago (2016-03-02 22:13:33 UTC) #5

hubbe

4 years, 9 months ago (2016-03-02 22:22:54 UTC) #6

DaleCurtis

4 years, 9 months ago (2016-03-03 00:12:22 UTC) #7

hubbe

4 years, 9 months ago (2016-03-03 01:10:10 UTC) #8

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1754893006/20001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1754893006/20001

4 years, 9 months ago (2016-03-03 02:05:18 UTC) #12

commit-bot: I haz the power

Description was changed from ========== Fix multibuffer crashing bug The multibuffer reader had a problem ...

4 years, 9 months ago (2016-03-03 02:45:04 UTC) #14

commit-bot: I haz the power

4 years, 9 months ago (2016-03-03 02:45:05 UTC) #15

Message was sent while issue was closed.

Patchset 2 (id:??) landed as
https://crrev.com/5b6dbf76bfa39c24ad97c29ac8a8a0c44dcf3099
Cr-Commit-Position: refs/heads/master@{#378925}

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages