crash log for renderer (pid 9631): STDOUT: #CRASHED - renderer (pid 9631) STDERR: ================================================================= STDERR: ==4==ERROR: AddressSanitizer: use-after-poison on address 0x3cae5b7e1838 at pc 0x0000004accad bp 0x7fefc1f9dee0 sp 0x7fefc1f9d6a0 STDERR: WRITE of size 120776 at 0x3cae5b7e1838 thread T9 (ServiceWorker T) STDERR: #0 0x4accac in __interceptor_memset ??:0:0 STDERR: #1 0x1d4c72a in blink::FreeList::addToFreeList(unsigned char*, unsigned long) third_party/WebKit/Source/platform/heap/Heap.cpp:1101:24 STDERR: #2 0x1d4cefe in addToFreeList third_party/WebKit/Source/platform/heap/Heap.h:721:9 STDERR: #3 0x1d4cefe in blink::NormalPage::sweep() third_party/WebKit/Source/platform/heap/Heap.cpp:1270:0 STDERR: #4 0x1d493e0 in sweepUnsweptPage third_party/WebKit/Source/platform/heap/Heap.cpp:442:9 STDERR: #5 0x1d493e0 in blink::BaseHeap::completeSweep() third_party/WebKit/Source/platform/heap/Heap.cpp:481:0 STDERR: #6 0x1d56753 in blink::ThreadState::completeSweep() third_party/WebKit/Source/platform/heap/ThreadState.cpp:1077:13 STDERR: #7 0x1d5bcea in blink::ThreadState::preSweep() third_party/WebKit/Source/platform/heap/ThreadState.cpp:1002:5 STDERR: #8 0x1d51789 in blink::Heap::collectGarbageForTerminatingThread(blink::ThreadState*) third_party/WebKit/Source/platform/heap/Heap.cpp:2129:5 STDERR: #9 0x1d57da7 in blink::ThreadState::cleanup() third_party/WebKit/Source/platform/heap/ThreadState.cpp:251:13 STDERR: #10 0x1d58318 in blink::ThreadState::detach() third_party/WebKit/Source/platform/heap/ThreadState.cpp:274:5 STDERR: #11 0x959caae in blink::WebThreadSupportingGC::shutdown() third_party/WebKit/Source/platform/WebThreadSupportingGC.cpp:52:5 STDERR: #12 0x4db61b6 in blink::WorkerThread::shutdown() third_party/WebKit/Source/core/workers/WorkerThread.cpp:280:5 STDERR: #13 0x7544358 in Run base/bind_internal.h:157:12 STDERR: #14 0x7544358 in MakeItSo base/bind_internal.h:293:0 STDERR: #15 0x7544358 in base::internal::Invoker, base::internal::BindState >)>, void (scoped_ptr >), base::internal::TypeList > > > >, base::internal::TypeList > > > >, base::internal::InvokeHelper >)>, base::internal::TypeList > > >, void ()>::Run(base::internal::BindStateBase*) base/bind_internal.h:343:0 STDERR: #16 0x6a34d7 in Run base/callback.h:396:12 STDERR: #17 0x6a34d7 in base::debug::TaskAnnotator::RunTask(char const*, char const*, base::PendingTask const&) base/debug/task_annotator.cc:62:0 STDERR: #18 0x753d6eb in scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(unsigned long, bool, base::PendingTask*) components/scheduler/child/task_queue_manager.cc:674:5 STDERR: #19 0x753ba92 in scheduler::TaskQueueManager::DoWork(bool) components/scheduler/child/task_queue_manager.cc:627:9 STDERR: #20 0x6a34d7 in Run base/callback.h:396:12 STDERR: #21 0x6a34d7 in base::debug::TaskAnnotator::RunTask(char const*, char const*, base::PendingTask const&) base/debug/task_annotator.cc:62:0 STDERR: #22 0x5de117 in base::MessageLoop::RunTask(base::PendingTask const&) base/message_loop/message_loop.cc:458:3 STDERR: #23 0x5df2d4 in DeferOrRunPendingTask base/message_loop/message_loop.cc:468:5 STDERR: #24 0x5df2d4 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:580:0 STDERR: #25 0x5e4960 in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:34:21 STDERR: #26 0x600128 in base::RunLoop::Run() base/run_loop.cc:55:3 STDERR: #27 0x5dcaee in base::MessageLoop::Run() base/message_loop/message_loop.cc:286:3 STDERR: #28 0x83f7e91 in base::Thread::ThreadMain() base/threading/thread.cc:251:3 STDERR: #29 0x64767b in base::(anonymous namespace)::ThreadFunc(void*) base/threading/platform_thread_posix.cc:76:3 STDERR: #30 0x7feff9aafe99 in start_thread /build/buildd/eglibc-2.15/nptl/pthread_create.c:308:0 STDERR: STDERR: AddressSanitizer can not describe address in more detail (wild memory access suspected). STDERR: SUMMARY: AddressSanitizer: use-after-poison (/mnt/data/b/build/slave/WebKit_Linux_ASAN/build/src/out/Release/content_shell+0x4accac) STDERR: Shadow bytes around the buggy address: STDERR: 0x07964b6f42b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 STDERR: 0x07964b6f42c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 STDERR: 0x07964b6f42d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 STDERR: 0x07964b6f42e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 STDERR: 0x07964b6f42f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 STDERR: =>0x07964b6f4300: 00 00 00 00 00 f7 f7[f7]f7 f7 f7 f7 f7 f7 f7 f7 STDERR: 0x07964b6f4310: f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 STDERR: 0x07964b6f4320: f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 STDERR: 0x07964b6f4330: f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 STDERR: 0x07964b6f4340: f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 STDERR: 0x07964b6f4350: f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 f7 STDERR: Shadow byte legend (one shadow byte represents 8 application bytes): STDERR: Addressable: 00 STDERR: Partially addressable: 01 02 03 04 05 06 07 STDERR: Heap left redzone: fa STDERR: Heap right redzone: fb STDERR: Freed heap region: fd STDERR: Stack left redzone: f1 STDERR: Stack mid redzone: f2 STDERR: Stack right redzone: f3 STDERR: Stack partial redzone: f4 STDERR: Stack after return: f5 STDERR: Stack use after scope: f8 STDERR: Global redzone: f9 STDERR: Global init order: f6 STDERR: Poisoned by user: f7 STDERR: Container overflow: fc STDERR: Array cookie: ac STDERR: Intra object redzone: bb STDERR: ASan internal: fe STDERR: Left alloca redzone: ca STDERR: Right alloca redzone: cb STDERR: Thread T9 (ServiceWorker T) created by T0 (content_shell) here: STDERR: #0 0x4a9e39 in __interceptor_pthread_create ??:0:0 STDERR: #1 0x646e09 in base::(anonymous namespace)::CreateThread(unsigned long, bool, base::PlatformThread::Delegate*, base::PlatformThreadHandle*, base::ThreadPriority) base/threading/platform_thread_posix.cc:116:13 STDERR: #2 0x83f75b0 in base::Thread::StartWithOptions(base::Thread::Options const&) base/threading/thread.cc:107:17 STDERR: #3 0x83f7241 in base::Thread::Start() base/threading/thread.cc:80:10 STDERR: #4 0x7529dc7 in scheduler::WebThreadImplForWorkerScheduler::WebThreadImplForWorkerScheduler(char const*) components/scheduler/child/webthread_impl_for_worker_scheduler.cc:21:3 STDERR: #5 0x740cb77 in content::BlinkPlatformImpl::createThread(char const*) content/child/blink_platform_impl.cc:539:11 STDERR: #6 0x959be56 in WebThreadSupportingGC third_party/WebKit/Source/platform/WebThreadSupportingGC.cpp:23:25 STDERR: #7 0x959be56 in blink::WebThreadSupportingGC::create(char const*) third_party/WebKit/Source/platform/WebThreadSupportingGC.cpp:19:0 STDERR: #8 0x300ae6c in blink::ServiceWorkerThread::backingThread() third_party/WebKit/Source/modules/serviceworkers/ServiceWorkerThread.cpp:62:20 STDERR: #9 0x4db414f in blink::WorkerThread::start(WTF::PassOwnPtr) third_party/WebKit/Source/core/workers/WorkerThread.cpp:186:5 STDERR: #10 0x2e56ebd in blink::WebEmbeddedWorkerImpl::startWorkerThread() third_party/WebKit/Source/web/WebEmbeddedWorkerImpl.cpp:444:5 STDERR: #11 0x2e59dc0 in blink::WebEmbeddedWorkerImpl::onScriptLoaderFinished() third_party/WebKit/Source/web/WebEmbeddedWorkerImpl.cpp:402:5 STDERR: #12 0x4db2166 in notifyFinished third_party/WebKit/Source/core/workers/WorkerScriptLoader.cpp:197:5 STDERR: #13 0x4db2166 in blink::WorkerScriptLoader::didFinishLoading(unsigned long, double) third_party/WebKit/Source/core/workers/WorkerScriptLoader.cpp:161:0 STDERR: #14 0x48ac934 in blink::Resource::checkNotify() third_party/WebKit/Source/core/fetch/Resource.cpp:248:9 STDERR: #15 0x48ad6ad in blink::Resource::finish() third_party/WebKit/Source/core/fetch/Resource.cpp:307:5 STDERR: #16 0x48d6f0c in blink::ResourceLoader::didFinishLoading(blink::WebURLLoader*, double, long) third_party/WebKit/Source/core/fetch/ResourceLoader.cpp:457:5 STDERR: #17 0x7488f51 in content::WebURLLoaderImpl::Context::OnCompletedRequest(int, bool, bool, std::__1::basic_string, std::__1::allocator > const&, base::TimeTicks const&, long) content/child/web_url_loader_impl.cc:742:7 STDERR: #18 0x746957b in content::ResourceDispatcher::OnRequestComplete(int, ResourceMsg_RequestCompleteData const&) content/child/resource_dispatcher.cc:366:3 STDERR: #19 0x746434d in DispatchToMethodImpl base/tuple.h:254:3 STDERR: #20 0x746434d in DispatchToMethod base/tuple.h:261:0 STDERR: #21 0x746434d in Dispatch content/common/resource_messages.h:348:0 STDERR: #22 0x746434d in content::ResourceDispatcher::DispatchMessage(IPC::Message const&) content/child/resource_dispatcher.cc:511:0 STDERR: #23 0x7462c9d in content::ResourceDispatcher::OnMessageReceived(IPC::Message const&) content/child/resource_dispatcher.cc:119:3 STDERR: #24 0x6a34d7 in Run base/callback.h:396:12 STDERR: #25 0x6a34d7 in base::debug::TaskAnnotator::RunTask(char const*, char const*, base::PendingTask const&) base/debug/task_annotator.cc:62:0 STDERR: #26 0x753d6eb in scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(unsigned long, bool, base::PendingTask*) components/scheduler/child/task_queue_manager.cc:674:5 STDERR: #27 0x753ba92 in scheduler::TaskQueueManager::DoWork(bool) components/scheduler/child/task_queue_manager.cc:627:9 STDERR: #28 0x6a34d7 in Run base/callback.h:396:12 STDERR: #29 0x6a34d7 in base::debug::TaskAnnotator::RunTask(char const*, char const*, base::PendingTask const&) base/debug/task_annotator.cc:62:0 STDERR: #30 0x5de117 in base::MessageLoop::RunTask(base::PendingTask const&) base/message_loop/message_loop.cc:458:3 STDERR: #31 0x5df2d4 in DeferOrRunPendingTask base/message_loop/message_loop.cc:468:5 STDERR: #32 0x5df2d4 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:580:0 STDERR: #33 0x5e4960 in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:34:21 STDERR: #34 0x600128 in base::RunLoop::Run() base/run_loop.cc:55:3 STDERR: #35 0x5dcaee in base::MessageLoop::Run() base/message_loop/message_loop.cc:286:3 STDERR: #36 0x763b9fa in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:220:7 STDERR: #37 0x578176 in content::RunZygote(content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:307:14 STDERR: #38 0x57a00d in content::ContentMainRunnerImpl::Run() content/app/content_main_runner.cc:802:12 STDERR: #39 0x57773a in content::ContentMain(content::ContentMainParams const&) content/app/content_main.cc:19:15 STDERR: #40 0x4e4842 in main content/shell/app/shell_main.cc:49:10 STDERR: #41 0x7feff825776c in __libc_start_main /build/buildd/eglibc-2.15/csu/libc-start.c:226:0 STDERR: STDERR: ==4==ABORTING