Status: Untriaged Owner: ---- Labels: Type-Bug Pri-1 OS-Linux Area-WebKit Valgrind
New issue 25220 by [email protected]: LayoutTests/svg exposing uninitialised reference deep in WebCore::svgConstructor http://code.google.com/p/chromium/issues/detail?id=25220 http://build.chromium.org/buildbot/waterfall/builders/Webkit%20Linux%20(valgrind%20layout)/builds/2812/steps/valgrind%20test:%20layout/logs/stdio ... http://build.chromium.org/buildbot/waterfall/builders/Webkit%20Linux%20(valgrind%20layout)/builds/2808/steps/valgrind%20test:%20layout/logs/stdio contain numerous valgrind warnings like 08:59:59 memcheck_analyze.py [ERROR] UninitValue Command: /b/slave/webkit-rel-linux-valgrind-layout/build/src/sconsbuild/Release/test_shell --layout-tests ... file:///b/slave/webkit-rel-linux-valgrind-layout/build/src/third_party/WebKit/LayoutTests/svg/custom/js-late-mask-and-object-creation.svg Use of uninitialised value of size 4 WebCore::SynchronizableProperty::operator==(WebCore::SynchronizableProperty const&) const (third_party/WebKit/WebCore/svg/SynchronizablePropertyController.h:60) WTF::HashTable<WebCore::SynchronizableProperty, ...) (third_party/WebKit/JavaScriptCore/wtf/HashTable.h:336) std::pair<WTF::HashTableIterator<WebCore::SynchronizableProperty, ...) (third_party/WebKit/JavaScriptCore/wtf/HashTable.h:649) WTF::HashTable<WebCore::SynchronizableProperty, ...) (third_party/WebKit/JavaScriptCore/wtf/HashTable.h:315) WTF::HashSet<WebCore::SynchronizableProperty, ...) (third_party/WebKit/JavaScriptCore/wtf/HashSet.h:210) WebCore::SynchronizablePropertyController::registerProperty(WebCore::QualifiedName const&, WebCore::SVGAnimatedPropertyBase*) (third_party/WebKit/WebCore/svg/SynchronizablePropertyController.cpp:44) WebCore::SVGAnimatedProperty<WebCore::SVGStyledElement, WebCore::String, &(WebCore::SVGStyledElementIdentifier), &(WebCore::HTMLNames::classAttrString)>::registerProperty() (third_party/WebKit/WebCore/svg/SVGAnimatedProperty.h:389) WebCore::SVGAnimatedProperty<WebCore::SVGStyledElement, WebCore::String, &(WebCore::SVGStyledElementIdentifier), &(WebCore::HTMLNames::classAttrString)>::SVGAnimatedProperty(WebCore::SVGStyledElement const*, WebCore::QualifiedName const&) (third_party/WebKit/WebCore/svg/SVGAnimatedProperty.h:202) WebCore::SVGStyledElement::SVGStyledElement(WebCore::QualifiedName const&, WebCore::Document*) (third_party/WebKit/WebCore/svg/SVGStyledElement.cpp:52) WebCore::SVGStyledLocatableElement::SVGStyledLocatableElement(WebCore::QualifiedName const&, WebCore::Document*) (third_party/WebKit/WebCore/svg/SVGStyledLocatableElement.cpp:37) WebCore::SVGSVGElement::SVGSVGElement(WebCore::QualifiedName const&, WebCore::Document*) (third_party/WebKit/WebCore/svg/SVGSVGElement.cpp:77) WebCore::svgConstructor(WebCore::QualifiedName const&, WebCore::Document*, bool) (sconsbuild/Release/obj/WebCore/_webcore_intermediate/SVGElementFactory.cpp:303) WebCore::SVGElementFactory::createSVGElement(WebCore::QualifiedName const&, WebCore::Document*, bool) (sconsbuild/Release/obj/WebCore/_webcore_intermediate/SVGElementFactory.cpp:433) WebCore::Document::createElement(WebCore::QualifiedName const&, bool) (third_party/WebKit/WebCore/dom/Document.cpp:799) Per previous discussion, triaging UMR's as priority 1 initially. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
