Status: Untriaged Owner: ---- Labels: Type-Bug Pri-2 OS-All Area-WebKit Size-Medium Valgrind Fixit
New issue 17245 by [email protected]: Invalid Write in WebCore::SVGRenderBase::prepareToRenderSVGContent() http://code.google.com/p/chromium/issues/detail?id=17245 Happened in LayoutTests/svg/custom/mask-excessive-malloc.svg during the fishing expedition sh tools/valgrind/valgrind_webkit_tests.sh LayoutTests/svg Presumably it would also be reproduced by more specific commands sh tools/valgrind/valgrind_webkit_tests.sh LayoutTests/svg/custom or sh tools/valgrind/valgrind_webkit_tests.sh LayoutTests/svg/custom/ mask-excessive-malloc.svg but I haven't verified that. Valgrind complains Invalid write of size 4 at WebCore::ImageBuffer::getImageData(WebCore::IntRect const&) const (ImageBufferSkia.cpp:138) by WebCore::SVGResourceMasker::applyMask(WebCore::GraphicsContext*, WebCore::FloatRect const&) (SVGResourceMasker.cpp:79) by WebCore::SVGRenderBase::prepareToRenderSVGContent(WebCore::RenderObject*, WebCore::RenderObject::PaintInfo&, WebCore::FloatRect const&, WebCore::SVGResourceFilter*&, WebCore::SVGResourceFilter*) (SVGRenderSupport.cpp:136) by WebCore::RenderPath::paint(WebCore::RenderObject::PaintInfo&, int, int) (RenderPath.cpp:193) by WebCore::RenderBox::paint(WebCore::RenderObject::PaintInfo&, int, int) (RenderBox.cpp:544) by WebCore::RenderSVGRoot::paint(WebCore::RenderObject::PaintInfo&, int, int) (RenderSVGRoot.cpp:163) by WebCore::RenderLayer::paintLayer(WebCore::RenderLayer*, WebCore::GraphicsContext*, WebCore::IntRect const&, WebCore::PaintRestriction, WebCore::RenderObject*, WTF::HashMap<WebCore::OverlapTestRequestClient*, WebCore::IntRect, WTF::PtrHash<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::IntRect> >*, unsigned int) (RenderLayer.cpp:2169) by WebCore::RenderLayer::paintLayer(WebCore::RenderLayer*, WebCore::GraphicsContext*, WebCore::IntRect const&, WebCore::PaintRestriction, WebCore::RenderObject*, WTF::HashMap<WebCore::OverlapTestRequestClient*, WebCore::IntRect, WTF::PtrHash<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::IntRect> >*, unsigned int) (RenderLayer.cpp:2194) by WebCore::RenderLayer::paint(WebCore::GraphicsContext*, WebCore::IntRect const&, WebCore::PaintRestriction, WebCore::RenderObject*) (RenderLayer.cpp:1971) by WebCore::FrameView::paintContents(WebCore::GraphicsContext*, WebCore::IntRect const&) (FrameView.cpp:1454) by WebCore::ScrollView::paint(WebCore::GraphicsContext*, WebCore::IntRect const&) (ScrollView.cpp:755) by WebFrameImpl::Paint(skia::PlatformCanvas*, WebKit::WebRect const&) (webframe_impl.cc:1498) by WebViewImpl::paint(skia::PlatformCanvas*, WebKit::WebRect const&) (webview_impl.cc:989) by TestShell::DumpImage(WebView*, std::basic_string<wchar_t, std::char_traits<wchar_t>, std::allocator<wchar_t> > const&, std::string const&) (test_shell.cc:257) by TestShell::Dump(TestShell*) (test_shell.cc:239) by TestShell::TestFinished() (test_shell_gtk.cc:396) -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
