Status: Untriaged Owner: [EMAIL PROTECTED] Labels: Type-Bug Pri-2 OS-All Area-Misc
New issue 5300 by [EMAIL PROTECTED]: many uninitialized memory reads in LayoutTests\fast\backgrounds\svg-as-background-5.html http://code.google.com/p/chromium/issues/detail?id=5300 from a recent purify run, LayoutTests\fast\backgrounds\svg-as-background-5.html generated dozens of errors similar to these: [W] UMR: Uninitialized memory read in SkPathStroker::line_to(SkPoint const&,SkPoint const&) {4 occurrences} Reading 4 bytes from 0x0013cf00 (4 bytes at 0x0013cf00 uninitialized) Address 0x0013cf00 points into a thread's stack Address 0x0013cf00 is 4 bytes past the start of local variable 'norm' in SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) Thread ID: 0x84c Error location SkPathStroker::line_to(SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:224] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:284] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:316] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubicTo(SkPoint const&,SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:453] SkStroke::strokePath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:560] SkPaint::getFillPath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skpaint.cpp:1419] WebCore::boundingBoxForCurrentStroke(GraphicsContext::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:95] WebCore::strokeBoundingBox(Path::WebCore const&,RenderStyle::WebCore *,RenderObject::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:110] WebCore::RenderPath::strokeBBox(void)const [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\renderpathskia.cpp:70] WebCore::RenderPath::relativeBBox(bool)const [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:93] WebCore::RenderPath::absoluteClippedOverflowRect(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:150] WebCore::RenderPath::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:137] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGRoot::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgroot.cpp:112] WebCore::RenderBlock::layoutBlockChildren(bool,int&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:1330] WebCore::RenderBlock::layoutBlock(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:657] WebCore::RenderBlock::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:568] WebCore::RenderView::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderview.cpp:118] WebCore::FrameView::layout(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\page\frameview.cpp:529] WebCore::Document::implicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\dom\document.cpp:1711] WebCore::FrameLoader::checkCallImplicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1371] WebCore::FrameLoader::checkCompleted(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1323] WebCore::FrameLoader::finishedParsing(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1273] [W] UMR: Uninitialized memory read in +(SkPoint const&,SkPoint const&) {7 occurrences} Reading 4 bytes from 0x0013cc90 (4 bytes at 0x0013cc90 uninitialized) Address 0x0013cc90 points into a thread's stack Address 0x0013cc90 is 4 bytes past the start of local variable 'unitDummy' in SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) Thread ID: 0x84c Error location +(SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\include\corecg\skpoint.h:258] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:336] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:316] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:316] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubicTo(SkPoint const&,SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:453] SkStroke::strokePath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:560] SkPaint::getFillPath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skpaint.cpp:1419] WebCore::boundingBoxForCurrentStroke(GraphicsContext::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:95] WebCore::strokeBoundingBox(Path::WebCore const&,RenderStyle::WebCore *,RenderObject::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:110] WebCore::RenderPath::strokeBBox(void)const [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\renderpathskia.cpp:70] WebCore::RenderPath::relativeBBox(bool)const [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:93] WebCore::RenderPath::absoluteClippedOverflowRect(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:150] WebCore::RenderPath::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:137] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGRoot::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgroot.cpp:112] WebCore::RenderBlock::layoutBlockChildren(bool,int&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:1330] WebCore::RenderBlock::layoutBlock(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:657] WebCore::RenderBlock::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:568] WebCore::RenderView::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderview.cpp:118] WebCore::FrameView::layout(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\page\frameview.cpp:529] WebCore::Document::implicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\dom\document.cpp:1711] WebCore::FrameLoader::checkCallImplicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1371] WebCore::FrameLoader::checkCompleted(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1323] WebCore::FrameLoader::finishedParsing(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1273] [W] UMR: Uninitialized memory read in SkPoint::DotProduct(SkPoint const&,SkPoint const&) {9 occurrences} Reading 4 bytes from 0x0013cc44 (4 bytes at 0x0013cc44 uninitialized) Address 0x0013cc44 points into a thread's stack Address 0x0013cc44 is the local variable 'unit' in SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) Thread ID: 0x84c Error location SkPoint::DotProduct(SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\include\corecg\skpoint.h:275] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:341] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:316] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:313] SkPathStroker::cubic_to(SkPoint const* const,SkPoint const&,SkPoint const&,SkPoint *,SkPoint *,int) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:316] SkPathStroker::cubicTo(SkPoint const&,SkPoint const&,SkPoint const&) [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:453] SkStroke::strokePath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skstroke.cpp:560] SkPaint::getFillPath(SkPath const&,SkPath *)const [c:\b\slave\pl\build\src\skia\sgl\skpaint.cpp:1419] WebCore::boundingBoxForCurrentStroke(GraphicsContext::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:95] WebCore::strokeBoundingBox(Path::WebCore const&,RenderStyle::WebCore *,RenderObject::WebCore const*) [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\skiasupport.cpp:110] WebCore::RenderPath::strokeBBox(void)const [c:\b\slave\pl\build\src\webkit\port\platform\graphics\svg\renderpathskia.cpp:70] WebCore::RenderPath::relativeBBox(bool)const [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:93] WebCore::RenderPath::absoluteClippedOverflowRect(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:150] WebCore::RenderPath::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderpath.cpp:137] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGContainer::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgcontainer.cpp:253] WebCore::RenderObject::layoutIfNeeded(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderobject.h:512] WebCore::RenderSVGRoot::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\rendersvgroot.cpp:112] WebCore::RenderBlock::layoutBlockChildren(bool,int&) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:1330] WebCore::RenderBlock::layoutBlock(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:657] WebCore::RenderBlock::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderblock.cpp:568] WebCore::RenderView::layout(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\rendering\renderview.cpp:118] WebCore::FrameView::layout(bool) [c:\b\slave\pl\build\src\third_party\webkit\webcore\page\frameview.cpp:529] WebCore::Document::implicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\dom\document.cpp:1711] WebCore::FrameLoader::checkCallImplicitClose(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1371] WebCore::FrameLoader::checkCompleted(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1323] WebCore::FrameLoader::finishedParsing(void) [c:\b\slave\pl\build\src\third_party\webkit\webcore\loader\frameloader.cpp:1273] -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Chromium-bugs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/chromium-bugs?hl=en -~----------~----~----~----~------~----~------~--~---
