Chris Rankin wrote: > --- Brian Paul <[EMAIL PROTECTED]> wrote: >> I'm guessing we're dereferencing a null/invalid pointer here. What are >> the values of unpack and unpack->BufferObj? >> >> It's funny a crash would happen there since the same pointers are >> dereferenced just before this in the call to >> _mesa_validate_pbo_compressed_teximage() >> > > No, sorry, I can't reproduce that crash "on demand", and the unpack and > BufferObj values all > looked reasonable until WoW crashed like *this* instead: > > wine: Unhandled page fault on write access to 0x00000000 at address > 0x7dd5342c (thread 0009), > starting debugger... > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > fixme:ntdll:FILE_GetNtStatus Converting errno 12 to STATUS_UNSUCCESSFUL > Unhandled exception: page fault on write access to 0x00000000 in 32-bit code > (0x7dd5342c). > Register dump: > CS:0073 SS:007b DS:007b ES:007b FS:0033 GS:003b > EIP:7dd5342c ESP:0032f080 EBP:0032f1b8 EFLAGS:00210202( - 00 - -RI1) > EAX:00000000 EBX:7de8113c ECX:00000000 EDX:00000000 > ESI:7bafa610 EDI:7d753788 > Stack dump: > 0x0032f080: 7bafab18 00000000 00000000 00000000 > 0x0032f090: 00000000 00000000 00000000 00000000 > 0x0032f0a0: 00000000 00000000 7d753788 b7d6a658 > 0x0032f0b0: 627ffe10 00022760 b7deeff4 b7d6a669 > 0x0032f0c0: b7d017cf 000004b5 7d753348 00000000 > 0x0032f0d0: 000004b5 ffffffff 00000000 b7d6a658 > Backtrace: > =>1 0x7dd5342c _tnl_draw_prims+0xd47(ctx=0x7d70b008, arrays=0x32f20c, > prim=0x32f810, nr_prims=0x1, > ib=0x32f1fc, min_index=0x0, max_index=0x4b4) > [/home/chris/Programs/mesa/src/mesa/tnl/t_draw.c:300] > in r300_dri.so (0x0032f1b8) > 2 0x7de09782 vbo_rebase_prims+0x34f(ctx=0x7d70b008, arrays=0x7d741dc8, > prim=0x32f810, > nr_prims=0x1, ib=0x32f1fc, min_index=0xaad, max_index=0xf61, draw=0x7dd526e5) > [/home/chris/Programs/mesa/src/mesa/vbo/vbo_rebase.c:214] in r300_dri.so > (0x0032f698) > 3 0x7dd52754 _tnl_draw_prims+0x6f(ctx=0x7d70b008, arrays=0x7d741dc8, > prim=0x32f810, > nr_prims=0x1, ib=0x32f81c, min_index=0xaad, max_index=0xf61) > [/home/chris/Programs/mesa/src/mesa/tnl/t_draw.c:365] in r300_dri.so > (0x0032f7d8) > 4 0x7dd4b6c1 vbo_exec_DrawRangeElements+0x145(mode=0x4, start=0xaad, > end=0xf61, count=<register > EDI not in topmost frame>, type=0x1403, indices=0x13fb3860) > [/home/chris/Programs/mesa/src/mesa/vbo/vbo_exec_array.c:340] in r300_dri.so > (0x0032f838) > 5 0x7eac6d50 wine_glDrawRangeElementsEXT+0xb0(mode=0x4, start=0xaad, > end=0xf61, count=0x139b, > type=0x1403, indices=<register EDI not in topmost frame>) > [/home/chris/Programs/wine/dlls/opengl32/opengl_ext.c:1549] in opengl32 > (0x0032f878) > 6 0x0064365c in wow (+0x24365c) (0x0032f8a4) > 7 0x005264a5 in wow (+0x1264a5) (0x0032f900) > 8 0x005284a3 in wow (+0x1284a3) (0x0032f920) > 9 0x0051645d in wow (+0x11645d) (0x0032faf0) > 10 0x00516bcd in wow (+0x116bcd) (0x0032fb34) > 11 0x004fdb93 in wow (+0xfdb93) (0x0032fb44) > 12 0x006df2bd in wow (+0x2df2bd) (0x0032fb94) > 13 0x006e0f32 in wow (+0x2e0f32) (0x0032fc20) > 14 0x007a7d1a in wow (+0x3a7d1a) (0x0032fca8) > 15 0x007c2db7 in wow (+0x3c2db7) (0x0032fcc4) > 16 0x007c32bc in wow (+0x3c32bc) (0x0032fce0) > 17 0x00798760 in wow (+0x398760) (0x0032fdac) > 18 0x007dbe2b in wow (+0x3dbe2b) (0x0032fddc) > 19 0x007d9349 in wow (+0x3d9349) (0x0032fe54) > 20 0x007da7b1 in wow (+0x3da7b1) (0x0032fe6c) > 21 0x00406228 in wow (+0x6228) (0x0032ff08) > 22 0x7b872b47 start_process+0xc7(arg=0x0) > [/home/chris/Programs/wine/dlls/kernel32/process.c:803] in kernel32 > (0x0032ffe8) > 23 0xb7e29637 wine_switch_to_stack+0x17() in libwine.so.1 (0x00000000) > 0x7dd5342c _tnl_draw_prims+0xd47 > [/home/chris/Programs/mesa/src/mesa/tnl/t_draw.c:300] in > r300_dri.so: movl %eax,0x0(%ecx,%edx,4) > 300 *elts++ = (GLuint)(*in++); > Modules: > Module Address Debug info Name (94 modules) > PE 400000- eb9000 Export wow > PE 10000000-10069000 Deferred divxdecoder > ELF 41be4000-41c01000 Deferred ld-linux.so.2 > ELF 41e3b000-41e4f000 Deferred libresolv.so.2 > ELF 4209a000-42179000 Deferred libasound.so.2 > ELF 426af000-42808000 Deferred libc.so.6 > ELF 4280a000-42833000 Deferred libm.so.6 > ELF 42835000-4283a000 Deferred libdl.so.2 > ELF 4283c000-42855000 Deferred libpthread.so.0 > ELF 42959000-4295c000 Deferred libxau.so.6 > ELF 4297c000-42982000 Deferred libxdmcp.so.6 > ELF 42ab8000-42ac1000 Deferred libsm.so.6 > ELF 42ac3000-42add000 Deferred libice.so.6 > ELF 42b14000-42b35000 Deferred libexpat.so.1 > ELF 42b37000-42bc3000 Deferred libfreetype.so.6 > ELF 42be3000-42c12000 Deferred libfontconfig.so.1 > ELF 4320e000-4321a000 Deferred libgcc_s.so.1 > ELF 49b27000-49b32000 Deferred libdrm.so.2 > ELF 4c649000-4c665000 Deferred libxcb.so.1 > ELF 4c667000-4c669000 Deferred libxcb-xlib.so.0 > ELF 4c66b000-4c767000 Deferred libx11.so.6 > ELF 4c769000-4c779000 Deferred libxext.so.6 > ELF 4c88f000-4c894000 Deferred libxfixes.so.3 > ELF 4c8bb000-4c8c4000 Deferred libxrender.so.1 > ELF 4c8c6000-4c8c9000 Deferred libxinerama.so.1 > ELF 4c8cb000-4c8d2000 Deferred libxrandr.so.2 > ELF 4c992000-4c995000 Deferred libxcomposite.so.1 > ELF 4ca19000-4ca1e000 Deferred libxxf86vm.so.1 > ELF 4cb1b000-4cb1e000 Deferred libxdamage.so.1 > ELF 4cbbf000-4cbc9000 Deferred libxcursor.so.1 > ELF 63ba5000-63baa000 Deferred libtxc_dxtn.so > ELF 7b800000-7b928000 Dwarf kernel32<elf> > \-PE 7b820000-7b928000 \ kernel32 > ELF 7bc00000-7bca2000 Deferred ntdll<elf> > \-PE 7bc10000-7bca2000 \ ntdll > ELF 7bf00000-7bf03000 Deferred <wine-loader> > ELF 7cf2c000-7cf75000 Deferred dsound<elf> > \-PE 7cf30000-7cf75000 \ dsound > ELF 7d81c000-7d822000 Deferred libnss_dns.so.2 > ELF 7da41000-7da74000 Deferred uxtheme<elf> > \-PE 7da50000-7da74000 \ uxtheme > ELF 7dc85000-7de9b000 Dwarf r300_dri.so > ELF 7dea2000-7deb9000 Deferred msacm32<elf> > \-PE 7deb0000-7deb9000 \ msacm32 > ELF 7df98000-7dfcd000 Deferred winealsa<elf> > \-PE 7dfa0000-7dfcd000 \ winealsa > ELF 7e016000-7e02a000 Deferred midimap<elf> > \-PE 7e020000-7e02a000 \ midimap > ELF 7e02a000-7e0bf000 Deferred winex11<elf> > \-PE 7e040000-7e0bf000 \ winex11 > ELF 7e1cc000-7e1e5000 Deferred version<elf> > \-PE 7e1d0000-7e1e5000 \ version > ELF 7e1e5000-7e244000 Deferred rpcrt4<elf> > \-PE 7e1f0000-7e244000 \ rpcrt4 > ELF 7e244000-7e2e5000 Deferred ole32<elf> > \-PE 7e250000-7e2e5000 \ ole32 > ELF 7e2f9000-7e317000 Deferred iphlpapi<elf> > \-PE 7e300000-7e317000 \ iphlpapi > ELF 7e317000-7e343000 Deferred ws2_32<elf> > \-PE 7e320000-7e343000 \ ws2_32 > ELF 7e343000-7e369000 Deferred msacm32<elf> > \-PE 7e350000-7e369000 \ msacm32 > ELF 7e369000-7e427000 Deferred comctl32<elf> > \-PE 7e370000-7e427000 \ comctl32 > ELF 7e427000-7e531000 Deferred shell32<elf> > \-PE 7e440000-7e531000 \ shell32 > ELF 7e531000-7e588000 Deferred shlwapi<elf> > \-PE 7e540000-7e588000 \ shlwapi > ELF 7e588000-7e5a8000 Deferred mpr<elf> > \-PE 7e590000-7e5a8000 \ mpr > ELF 7e5a8000-7e5f5000 Deferred wininet<elf> > \-PE 7e5b0000-7e5f5000 \ wininet > ELF 7e5f5000-7e613000 Deferred imm32<elf> > \-PE 7e600000-7e613000 \ imm32 > ELF 7e613000-7e712000 Deferred wined3d<elf> > \-PE 7e630000-7e712000 \ wined3d > ELF 7e712000-7e742000 Deferred d3d9<elf> > \-PE 7e720000-7e742000 \ d3d9 > ELF 7e86e000-7e8ea000 Deferred libglu.so.1 > ELF 7e8ea000-7e947000 Deferred libgl.so.1 > ELF 7ea7b000-7eafb000 Dwarf opengl32<elf> > \-PE 7ea90000-7eafb000 \ opengl32 > ELF 7eafb000-7eb4c000 Deferred advapi32<elf> > \-PE 7eb10000-7eb4c000 \ advapi32 > ELF 7eb4c000-7ebe5000 Deferred gdi32<elf> > \-PE 7eb60000-7ebe5000 \ gdi32 > ELF 7ebe5000-7ed28000 Deferred user32<elf> > \-PE 7ec00000-7ed28000 \ user32 > ELF 7ed28000-7edb5000 Deferred winmm<elf> > \-PE 7ed30000-7edb5000 \ winmm > ELF 7efb5000-7efc1000 Deferred libnss_files.so.2 > ELF 7efec000-7f000000 Deferred lz32<elf> > \-PE 7eff0000-7f000000 \ lz32 > ELF b7e22000-b7f58000 Dwarf libwine.so.1 > Threads: > process tid prio (all id:s are in hex) > 00000008 (D) H:\World of Warcraft\WoW.exe > 00000032 0 > 00000031 2 > 00000030 15 > 0000002f 0 > 0000002e 0 > 0000002d 1 > 0000002c 0 > 0000002b 1 > 00000025 0 > 00000024 0 > 00000023 0 > 00000022 2 > 00000021 15 > 0000001e 2 > 0000001d 15 > 0000001c 15 > 0000001b 0 > 0000001a 0 > 00000019 0 > 00000009 0 <== > 0000000c > 00000013 0 > 0000000e 0 > 0000000d 0 > 0000000f > 00000016 0 > 00000012 0 > 00000011 0 > 00000010 0 > 00000017 > 00000018 0 > 00000033 > 00000034 0 > Backtrace: > =>1 0x7dd5342c _tnl_draw_prims+0xd47(ctx=0x7d70b008, arrays=0x32f20c, > prim=0x32f810, nr_prims=0x1, > ib=0x32f1fc, min_index=0x0, max_index=0x4b4) > [/home/chris/Programs/mesa/src/mesa/tnl/t_draw.c:300] > in r300_dri.so (0x0032f1b8) > 2 0x7de09782 vbo_rebase_prims+0x34f(ctx=0x7d70b008, arrays=0x7d741dc8, > prim=0x32f810, > nr_prims=0x1, ib=0x32f1fc, min_index=0xaad, max_index=0xf61, draw=0x7dd526e5) > [/home/chris/Programs/mesa/src/mesa/vbo/vbo_rebase.c:214] in r300_dri.so > (0x0032f698) > 3 0x7dd52754 _tnl_draw_prims+0x6f(ctx=0x7d70b008, arrays=0x7d741dc8, > prim=0x32f810, > nr_prims=0x1, ib=0x32f81c, min_index=0xaad, max_index=0xf61) > [/home/chris/Programs/mesa/src/mesa/tnl/t_draw.c:365] in r300_dri.so > (0x0032f7d8) > 4 0x7dd4b6c1 vbo_exec_DrawRangeElements+0x145(mode=0x4, start=0xaad, > end=0xf61, count=<register > EDI not in topmost frame>, type=0x1403, indices=0x13fb3860) > [/home/chris/Programs/mesa/src/mesa/vbo/vbo_exec_array.c:340] in r300_dri.so > (0x0032f838) > 5 0x7eac6d50 wine_glDrawRangeElementsEXT+0xb0(mode=0x4, start=0xaad, > end=0xf61, count=0x139b, > type=0x1403, indices=<register EDI not in topmost frame>) > [/home/chris/Programs/wine/dlls/opengl32/opengl_ext.c:1549] in opengl32 > (0x0032f878) > 6 0x0064365c in wow (+0x24365c) (0x0032f8a4) > 7 0x005264a5 in wow (+0x1264a5) (0x0032f900) > 8 0x005284a3 in wow (+0x1284a3) (0x0032f920) > 9 0x0051645d in wow (+0x11645d) (0x0032faf0) > 10 0x00516bcd in wow (+0x116bcd) (0x0032fb34) > 11 0x004fdb93 in wow (+0xfdb93) (0x0032fb44) > 12 0x006df2bd in wow (+0x2df2bd) (0x0032fb94) > 13 0x006e0f32 in wow (+0x2e0f32) (0x0032fc20) > 14 0x007a7d1a in wow (+0x3a7d1a) (0x0032fca8) > 15 0x007c2db7 in wow (+0x3c2db7) (0x0032fcc4) > 16 0x007c32bc in wow (+0x3c32bc) (0x0032fce0) > 17 0x00798760 in wow (+0x398760) (0x0032fdac) > 18 0x007dbe2b in wow (+0x3dbe2b) (0x0032fddc) > 19 0x007d9349 in wow (+0x3d9349) (0x0032fe54) > 20 0x007da7b1 in wow (+0x3da7b1) (0x0032fe6c) > 21 0x00406228 in wow (+0x6228) (0x0032ff08) > 22 0x7b872b47 start_process+0xc7(arg=0x0) > [/home/chris/Programs/wine/dlls/kernel32/process.c:803] in kernel32 > (0x0032ffe8) > 23 0xb7e29637 wine_switch_to_stack+0x17() in libwine.so.1 (0x00000000) > > I always seem to get errors like these when entering densely populated areas, > where the FPS drops > through the floor.
If the crash is happening in a variety of places, my guess is a memory corruption error somewhere. Is it possible to run with valgrind? Another thing you might try is to selectively disable various extensions (like texture compression) and see if the bug is tied to one of them. -Brian ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Mesa3d-dev mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/mesa3d-dev
