crash when creating/destroying a browser window without allowing the message loop to run

What steps will reproduce the problem?
1. Create a new window with CEF browser
2. Call ClientHandler.CloseAllBrowsers and destroy the window soon enough (eg 
after 200 millisecons sleep)
3. Closing the window early will not let the message loop start (OnAfterCreated 
is not called) and results in a crash

What is the expected output? What do you see instead?
Expected is destroying the window without crashing

What version of the product are you using? On what operating system?
cef 3.2171.1979 32bit on Windows 8.1

Please provide any additional information below.
FAULTING_IP: 
libcef!content::WebContentsImpl::SetIsLoading+13f 
[e:\cef\workspace\cef3-windows-2171\download\chromium\src\content\browser\web_co
ntents\web_contents_impl.cc @ 3211]
131a9bbf 8b90d0000000    mov     edx,dword ptr [eax+0D0h]

EXCEPTION_RECORD:  ffffffffffffffff -- (.exr 0xffffffffffffffff)
ExceptionAddress: 00000000131a9bbf 
(libcef!content::WebContentsImpl::SetIsLoading+0x000000000000013f)
   ExceptionCode: c0000005 (Access violation)
  ExceptionFlags: 00000000
NumberParameters: 2
   Parameter[0]: 0000000000000000
   Parameter[1]: 00000000f5bf2856
Attempt to read from address 00000000f5bf2856

CONTEXT:  0000000000000000 -- (.cxr 0x0;r)
eax=f5bf2786 ebx=00000000 ecx=0a404e00 edx=0a404e4c esi=08d9d86c edi=08d9d9cc
eip=131a9bbf esp=08d9d868 ebp=08d9d9cc iopl=0         nv up ei pl nz na pe nc
cs=0023  ss=002b  ds=002b  es=002b  fs=0053  gs=002b             efl=00010206
libcef!content::WebContentsImpl::SetIsLoading+0x13f:
131a9bbf 8b90d0000000    mov     edx,dword ptr [eax+0D0h] 
ds:002b:f5bf2856=????????

STACK_TEXT:  
08d9d9cc 1319aae3 06416600 00000001 00000001 
libcef!content::WebContentsImpl::SetIsLoading+0x13f
08d9d9f0 1321054b 22fa2c30 00000001 08d9e048 
libcef!content::WebContentsImpl::DidStartLoading+0x43
08d9db18 1350c6e2 08d9dda4 08d9e150 08d9e058 
libcef!content::RenderFrameHostImpl::Navigate+0x33b
08d9e048 1350c975 22fa2c30 0a3f0680 00000000 
libcef!content::NavigatorImpl::NavigateToEntry+0x432
08d9e064 1319f702 22fa2c30 00000000 08d9e2e0 
libcef!content::NavigatorImpl::NavigateToPendingEntry+0x45
08d9e150 134bb3e6 00000000 08d9e708 08d9e2fc 
libcef!content::WebContentsImpl::NavigateToPendingEntry+0x152
08d9e2e0 134ba864 00000000 0a404e58 08d9e708 
libcef!content::NavigationControllerImpl::NavigateToPendingEntry+0x2a6
08d9e2f0 134bb0a7 0a3f0680 08d9e944 08d9e714 
libcef!content::NavigationControllerImpl::LoadEntry+0x24
08d9e708 134ba938 08d9e720 08d9ed30 08d9e95c 
libcef!content::NavigationControllerImpl::LoadURLWithParams+0x707
08d9e944 102e6b80 08d9ecbc 08d9ef1c 00000001 
libcef!content::NavigationControllerImpl::LoadURL+0x78
08d9ed30 102df699 ffffffff ffffffff 08d9eee4 
libcef!CefBrowserHostImpl::LoadURL+0x1f0
08d9efa4 102dfe47 08d9f204 22f86d80 22f84180 
libcef!CefBrowserHostImpl::Create+0x2d9
08d9f20c 102dff48 08d9f238 22f86d80 22f84180 
libcef!CefBrowserHost::CreateBrowserSync+0x277
08d9f244 102ecae7 22f86d80 08d9f288 08d9f26c libcef!`anonymous 
namespace'::CreateBrowserWithHelper+0x58
08d9f258 102e7038 22f84210 08d9f27c 102eb535 
libcef!base::internal::RunnableAdapter<void (__cdecl*)(`anonymous 
namespace'::CreateBrowserHelper *)>::Run+0x27
08d9f264 102eb535 102dfef0 22f84210 22f84210 
libcef!base::internal::InvokeHelper<0,void,base::internal::RunnableAdapter<void 
(__cdecl*)(`anonymous namespace'::CreateBrowserHelper *)>,void 
__cdecl(`anonymous namespace'::CreateBrowserHelper * const &)>::MakeItSo+0x18
08d9f27c 102b073f 22f84200 08d9f598 102eb4f0 
libcef!base::internal::Invoker<1,base::internal::BindState<base::internal::Runna
bleAdapter<void (__cdecl*)(`anonymous namespace'::CreateBrowserHelper *)>,void 
__cdecl(`anonymous namespace'::CreateBrowserHelper *),void __cdecl(`anonymous 
namespace'::CreateBrowserHelper *)>,void __cdecl(`anonymous 
namespace'::CreateBrowserHelper *)>::Run+0x45
08d9f294 10603f13 08d9f520 cccccccc cccccccc libcef!base::Callback<void 
__cdecl(void)>::Run+0x2f
08d9f35c 105278d4 167d69e4 167d6a64 08d9f550 
libcef!base::debug::TaskAnnotator::RunTask+0x223
08d9f520 105258c4 08d9f550 06343e00 08d9f590 
libcef!base::MessageLoop::RunTask+0x1b4
08d9f530 10525ead 08d9f550 08d9f6c4 08d9f598 
libcef!base::MessageLoop::DeferOrRunPendingTask+0x34
08d9f590 10607b84 08d9f5b0 06321e20 00cccccc 
libcef!base::MessageLoop::DoWork+0xdd
08d9f5a8 10609012 08d9f5f8 00000001 00000000 
libcef!base::MessagePumpForUI::DoRunLoop+0x54
08d9f5d8 10608f7c 06343e00 00000000 0632f0a0 
libcef!base::MessagePumpWin::RunWithDispatcher+0x82
08d9f5ec 105276f7 06343e00 08d9f6f8 08d9f744 
libcef!base::MessagePumpWin::Run+0x1c
08d9f6c4 105961fe 08d9f72c cccccccc 0f8f8cfa 
libcef!base::MessageLoop::RunHandler+0xf7
08d9f6f8 105275ab 08d9f850 cccccccc 06343e00 libcef!base::RunLoop::Run+0x3e
08d9f72c 10596a86 0632f5a0 08d9f850 10597405 libcef!base::MessageLoop::Run+0x2b
08d9f738 10597405 06343e00 08d9f840 08d9f858 libcef!base::Thread::Run+0x16
08d9f850 1051ed3b 1051ec60 1051ec60 cccccccc 
libcef!base::Thread::ThreadMain+0x285
08d9f88c 76107c04 06321e20 76107be0 c8cc9faf libcef!base::`anonymous 
namespace'::ThreadFunc+0xdb
08d9f8a0 7703b90f 06321e20 c9e27707 00000000 KERNEL32!BaseThreadInitThunk+0x24
08d9f8e8 7703b8da ffffffff 770206fd 00000000 
ntdll_76fe0000!__RtlUserThreadStart+0x2f
08d9f8f8 00000000 1051ec60 06321e20 00000000 
ntdll_76fe0000!_RtlUserThreadStart+0x1b

STACK_COMMAND:  .cxr 0x0 ; kb

FAULTING_SOURCE_LINE:  
e:\cef\workspace\cef3-windows-2171\download\chromium\src\content\browser\web_con
tents\web_contents_impl.cc

FAULTING_SOURCE_FILE:  
e:\cef\workspace\cef3-windows-2171\download\chromium\src\content\browser\web_con
tents\web_contents_impl.cc

FAULTING_SOURCE_LINE_NUMBER:  3211

FAULTING_SOURCE_CODE:  
No source found for 
'e:\cef\workspace\cef3-windows-2171\download\chromium\src\content\browser\web_co
ntents\web_contents_impl.cc'
Original issue reported on code.google.com by tomas.ba...@gmail.com on 29 Jan 2015 at 8:28
apimall / chromiumembedded

crash when creating/destroying a browser window without allowing the message loop to run #1512
