Status: Untriaged
Owner: ----
Labels: Type-Bug Pri-2 OS-All Area-Misc Size-Medium

New issue 20643 by d...@chromium.org: Invalid read in  
WebCore::RenderThemeChromiumSkia::adjustSliderThumbSize() et al
http://code.google.com/p/chromium/issues/detail?id=20643

Saw this burst of invalid reads once today:

http://build.chromium.org/buildbot/waterfall/builders/Webkit%20Linux%20(valgrind%20layout)/builds/1495/steps/valgrind%20test:%20layout/logs/stdio

Valgrind complained

Invalid read of size 4
WebCore::RenderThemeChromiumSkia::adjustSliderThumbSize(WebCore::RenderObject*)
const (third_party/WebKit/WebCore/platform/graphics/Image.h:109)
   WebCore::RenderSlider::layout()
(third_party/WebKit/WebCore/rendering/RenderSlider.cpp:327)
   WebCore::RenderBlock::layoutInlineChildren(bool, int&, int&)
(third_party/WebKit/WebCore/rendering/RenderObject.h:487)
   WebCore::RenderBlock::layoutBlock(bool)
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:712)
   WebCore::RenderBlock::layout()
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:638)
   ...
   WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox*,
WebCore::RenderBlock::MarginInfo&, int&, int&)
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:1327)
   WebCore::RenderBlock::layoutBlockChildren(bool, int&)
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:1270)
   WebCore::RenderBlock::layoutBlock(bool)
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:714)
   WebCore::RenderBlock::layout()
(third_party/WebKit/WebCore/rendering/RenderBlock.cpp:638)
   WebCore::RenderView::layout()
(third_party/WebKit/WebCore/rendering/RenderView.cpp:122)
   WebCore::FrameView::layout(bool)
(third_party/WebKit/WebCore/page/FrameView.cpp:651)
   WebCore::FrameView::layoutTimerFired(WebCore::Timer<WebCore::FrameView>*)
(third_party/WebKit/WebCore/page/FrameView.cpp:991)

00:17:05 memcheck_analyze.py [ERROR] InvalidRead
Invalid read of size 4
   nssToken_CreateFromPK11SlotInfo
(ild/buildd/nss-3.12.0.3/mozilla/security/nss/lib/pk11wrap/dev3hack.c:182)
   STAN_InitTokenForSlotInfo
(ild/buildd/nss-3.12.0.3/mozilla/security/nss/lib/pki/pki3hack.c:105)
   STAN_AddModuleToDefaultTrustDomain
(ild/buildd/nss-3.12.0.3/mozilla/security/nss/lib/pki/pki3hack.c:191)
   SECMOD_LoadUserModule
(ild/buildd/nss-3.12.0.3/mozilla/security/nss/lib/pk11wrap/pk11pars.c:396)
   base::EnsureNSSInit() (base/nss_init.cc:49)
   net::TestServerLauncher::LoadTestRootCert()  
(net/socket/ssl_test_util.cc:51)
   main (webkit/tools/test_shell/test_shell_main.cc:150)

00:17:05 memcheck_analyze.py [ERROR] InvalidRead
Invalid read of size 4
   v8::internal::SweepSpace(v8::internal::PagedSpace*, void (*)(unsigned
char*, int)) (v8/src/spaces.h:478)
Address 0x5029ff8 is 8 bytes inside a block of size 16,500 free'd
   free
(ome/chrome-bot/valgrind-20090715/coregrind/m_replacemalloc/vg_replace_malloc.c:324)
   exit (/lib/tls/i686/cmov/libc-2.7.so)
   AlarmHandler(int) (webkit/tools/test_shell/test_shell_gtk.cc:435)
   0x4BA3127 (/lib/tls/i686/cmov/libc-2.7.so)
   event_base_loop (third_party/libevent/event.c:513)
   base::MessagePumpLibevent::Run(base::MessagePump::Delegate*)
(base/message_pump_libevent.cc:245)


--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---

Reply via email to