Issue metadata
Sign in to add a comment
|
browser_tests failing on chromium.memory/Linux MSan Tests |
||||||||||||||||||||||
Issue descriptionbrowser_tests failing on chromium.memory/Linux MSan Tests Builders failed on: - Linux MSan Tests: https://build.chromium.org/p/chromium.memory/builders/Linux%20MSan%20Tests - Linux ChromiumOS MSan Tests: https://build.chromium.org/p/chromium.memory/builders/Linux%20ChromiumOS%20MSan%20Tests -------- ==1:5==WARNING: MemorySanitizer: use-of-uninitialized-value #0 0x126150a2 in cc::LayerTreeHostImpl::SetContentHasNonAAPaint(bool) cc/trees/layer_tree_host_impl.cc:1834:7 #1 0x128b6f81 in PushLayerTreeHostPropertiesTo cc/trees/layer_tree_host.cc:1292:14 #2 0x128b6f81 in cc::LayerTreeHost::FinishCommitOnImplThread(cc::LayerTreeHostImpl*) cc/trees/layer_tree_host.cc:327:0 #3 0x12974953 in cc::ProxyImpl::ScheduledActionCommit() cc/trees/proxy_impl.cc:560:42 #4 0x1294296c in cc::Scheduler::ProcessScheduledActions() cc/scheduler/scheduler.cc:0:20 #5 0x12944470 in cc::Scheduler::NotifyReadyToCommit() cc/scheduler/scheduler.cc:159:3 #6 0x1296b5b6 in cc::ProxyImpl::NotifyReadyToCommitOnImpl(cc::CompletionEvent*, cc::LayerTreeHost*, base::TimeTicks, bool) cc/trees/proxy_impl.cc:298:15 #7 0xc7d9bd0 in Run base/callback.h:91:12 #8 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #9 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #10 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #11 0xc7d9bd0 in Run base/callback.h:91:12 #12 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #13 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #14 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #15 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #16 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #17 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #18 0xc6e1b33 in base::Thread::ThreadMain() base/threading/thread.cc:338:3 #19 0xc6c5ba5 in base::(anonymous namespace)::ThreadFunc(void*) base/threading/platform_thread_posix.cc:71:13 #20 0x7f09d3f4e183 in start_thread /build/eglibc-MjiXCM/eglibc-2.19/nptl/pthread_create.c:312:0 #21 0x7f09d4b89bec in clone /build/eglibc-MjiXCM/eglibc-2.19/misc/../sysdeps/unix/sysv/linux/x86_64/clone.S:111:0 Uninitialized value was stored to memory at #0 0x128bf38a in cc::LayerTreeHost::DoUpdateLayers(cc::Layer*) cc/trees/layer_tree_host.cc:746:29 #1 0x128bd107 in cc::LayerTreeHost::UpdateLayers() cc/trees/layer_tree_host.cc:618:17 #2 0x128e5a4b in cc::ProxyMain::BeginMainFrame(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >) cc/trees/proxy_main.cc:222:60 #3 0x12978aeb in Invoke<base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:196:12 #4 0x12978aeb in MakeItSo<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:282:0 #5 0x12978aeb in void base::internal::Invoker<base::internal::BindState<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, void ()>::RunImpl<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, 0ul, 1ul>(void (cc::ProxyMain::*&&)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >&&, base::IndexSequence<0ul, 1ul>) base/bind_internal.h:338:0 #6 0xc7d9bd0 in Run base/callback.h:91:12 #7 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #8 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #9 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #10 0xc7d9bd0 in Run base/callback.h:91:12 #11 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #12 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #13 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #14 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #15 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #16 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #17 0x1f945b5f in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:219:23 #18 0xc423849 in content::RunZygote(content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:337:14 #19 0xc42643a in content::RunNamedProcessTypeMain(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:416:12 #20 0xc4290b7 in content::ContentMainRunnerImpl::Run() content/app/content_main_runner.cc:687:12 #21 0x147eb01a in service_manager::Main(service_manager::MainParams const&) services/service_manager/embedder/main.cc:469:29 #22 0xc422b4e in content::ContentMain(content::ContentMainParams const&) content/app/content_main.cc:19:10 #23 0xe5f3506 in content::LaunchTests(content::TestLauncherDelegate*, unsigned long, int, char**) content/public/test/test_launcher.cc:526:12 Uninitialized value was stored to memory at #0 0x23a8bac0 in AnalyzeAddedOp<cc::DrawRecordOp> cc/paint/paint_op_buffer.h:1250:29 #1 0x23a8bac0 in push_internal<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/paint_op_buffer.h:1238:0 #2 0x23a8bac0 in push<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/paint_op_buffer.h:1009:0 #3 0x23a8bac0 in push<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/display_item_list.h:72:0 #4 0x23a8bac0 in cc_blink::WebDisplayItemListImpl::AppendDrawingItem(blink::WebRect const&, sk_sp<cc::PaintOpBuffer const>, blink::WebRect const&) cc/blink/web_display_item_list_impl.cc:44:0 #5 0x1a62e799 in blink::DrawingDisplayItem::AppendToWebDisplayItemList(blink::LayoutSize const&, blink::WebDisplayItemList*) const third_party/WebKit/Source/platform/graphics/paint/DrawingDisplayItem.cpp:28:11 #6 0x1a2cc7f4 in blink::PaintArtifact::AppendToWebDisplayItemList(blink::LayoutSize const&, blink::WebDisplayItemList*) const third_party/WebKit/Source/platform/graphics/paint/PaintArtifact.cpp:117:10 #7 0x1a5de6ab in blink::ContentLayerDelegate::PaintContents(blink::WebDisplayItemList*, blink::WebContentLayerClient::PaintingControlSetting) third_party/WebKit/Source/platform/graphics/ContentLayerDelegate.cpp:96:39 #8 0x23a8a818 in PaintContentsToDisplayList cc/blink/web_content_layer_impl.cc:82:14 #9 0x23a8a818 in non-virtual thunk to cc_blink::WebContentLayerImpl::PaintContentsToDisplayList(cc::ContentLayerClient::PaintingControlSetting) cc/blink/web_content_layer_impl.cc:0:0 #10 0x21d73133 in cc::PictureLayer::Update() cc/layers/picture_layer.cc:126:39 #11 0x128bebe3 in PaintContent cc/trees/layer_tree_host.cc:1118:33 #12 0x128bebe3 in cc::LayerTreeHost::DoUpdateLayers(cc::Layer*) cc/trees/layer_tree_host.cc:741:0 #13 0x128bd107 in cc::LayerTreeHost::UpdateLayers() cc/trees/layer_tree_host.cc:618:17 #14 0x128e5a4b in cc::ProxyMain::BeginMainFrame(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >) cc/trees/proxy_main.cc:222:60 #15 0x12978aeb in Invoke<base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:196:12 #16 0x12978aeb in MakeItSo<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:282:0 #17 0x12978aeb in void base::internal::Invoker<base::internal::BindState<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, void ()>::RunImpl<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, 0ul, 1ul>(void (cc::ProxyMain::*&&)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >&&, base::IndexSequence<0ul, 1ul>) base/bind_internal.h:338:0 #18 0xc7d9bd0 in Run base/callback.h:91:12 #19 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #20 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #21 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #22 0xc7d9bd0 in Run base/callback.h:91:12 #23 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #24 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #25 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #26 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #27 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #28 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #29 0x1f945b5f in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:219:23 Uninitialized value was stored to memory at #0 0x23a8ba9a in AnalyzeAddedOp<cc::DrawRecordOp> cc/paint/paint_op_buffer.h:1247:23 #1 0x23a8ba9a in push_internal<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/paint_op_buffer.h:1238:0 #2 0x23a8ba9a in push<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/paint_op_buffer.h:1009:0 #3 0x23a8ba9a in push<cc::DrawRecordOp, sk_sp<const cc::PaintOpBuffer> > cc/paint/display_item_list.h:72:0 #4 0x23a8ba9a in cc_blink::WebDisplayItemListImpl::AppendDrawingItem(blink::WebRect const&, sk_sp<cc::PaintOpBuffer const>, blink::WebRect const&) cc/blink/web_display_item_list_impl.cc:44:0 #5 0x1a62e799 in blink::DrawingDisplayItem::AppendToWebDisplayItemList(blink::LayoutSize const&, blink::WebDisplayItemList*) const third_party/WebKit/Source/platform/graphics/paint/DrawingDisplayItem.cpp:28:11 #6 0x1a2cc7f4 in blink::PaintArtifact::AppendToWebDisplayItemList(blink::LayoutSize const&, blink::WebDisplayItemList*) const third_party/WebKit/Source/platform/graphics/paint/PaintArtifact.cpp:117:10 #7 0x1a5de6ab in blink::ContentLayerDelegate::PaintContents(blink::WebDisplayItemList*, blink::WebContentLayerClient::PaintingControlSetting) third_party/WebKit/Source/platform/graphics/ContentLayerDelegate.cpp:96:39 #8 0x23a8a818 in PaintContentsToDisplayList cc/blink/web_content_layer_impl.cc:82:14 #9 0x23a8a818 in non-virtual thunk to cc_blink::WebContentLayerImpl::PaintContentsToDisplayList(cc::ContentLayerClient::PaintingControlSetting) cc/blink/web_content_layer_impl.cc:0:0 #10 0x21d73133 in cc::PictureLayer::Update() cc/layers/picture_layer.cc:126:39 #11 0x128bebe3 in PaintContent cc/trees/layer_tree_host.cc:1118:33 #12 0x128bebe3 in cc::LayerTreeHost::DoUpdateLayers(cc::Layer*) cc/trees/layer_tree_host.cc:741:0 #13 0x128bd107 in cc::LayerTreeHost::UpdateLayers() cc/trees/layer_tree_host.cc:618:17 #14 0x128e5a4b in cc::ProxyMain::BeginMainFrame(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >) cc/trees/proxy_main.cc:222:60 #15 0x12978aeb in Invoke<base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:196:12 #16 0x12978aeb in MakeItSo<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:282:0 #17 0x12978aeb in void base::internal::Invoker<base::internal::BindState<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, void ()>::RunImpl<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, 0ul, 1ul>(void (cc::ProxyMain::*&&)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >&&, base::IndexSequence<0ul, 1ul>) base/bind_internal.h:338:0 #18 0xc7d9bd0 in Run base/callback.h:91:12 #19 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #20 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #21 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #22 0xc7d9bd0 in Run base/callback.h:91:12 #23 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #24 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #25 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #26 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #27 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #28 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #29 0x1f945b5f in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:219:23 Uninitialized value was stored to memory at #0 0x11c9472e in cc::PaintOpBuffer::PaintOpBuffer() cc/paint/paint_op_buffer.cc:1527:33 #1 0x21c1aaec in cc::DisplayItemList::DisplayItemList(cc::DisplayItemList::UsageHint) cc/paint/display_item_list.cc:38:18 #2 0x23a8a6d2 in PaintContentsToDisplayList cc/blink/web_content_layer_impl.cc:79:46 #3 0x23a8a6d2 in non-virtual thunk to cc_blink::WebContentLayerImpl::PaintContentsToDisplayList(cc::ContentLayerClient::PaintingControlSetting) cc/blink/web_content_layer_impl.cc:0:0 #4 0x21d73133 in cc::PictureLayer::Update() cc/layers/picture_layer.cc:126:39 #5 0x128bebe3 in PaintContent cc/trees/layer_tree_host.cc:1118:33 #6 0x128bebe3 in cc::LayerTreeHost::DoUpdateLayers(cc::Layer*) cc/trees/layer_tree_host.cc:741:0 #7 0x128bd107 in cc::LayerTreeHost::UpdateLayers() cc/trees/layer_tree_host.cc:618:17 #8 0x128e5a4b in cc::ProxyMain::BeginMainFrame(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >) cc/trees/proxy_main.cc:222:60 #9 0x12978aeb in Invoke<base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:196:12 #10 0x12978aeb in MakeItSo<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:282:0 #11 0x12978aeb in void base::internal::Invoker<base::internal::BindState<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, void ()>::RunImpl<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, 0ul, 1ul>(void (cc::ProxyMain::*&&)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >&&, base::IndexSequence<0ul, 1ul>) base/bind_internal.h:338:0 #12 0xc7d9bd0 in Run base/callback.h:91:12 #13 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #14 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #15 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #16 0xc7d9bd0 in Run base/callback.h:91:12 #17 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #18 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #19 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #20 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #21 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #22 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #23 0x1f945b5f in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:219:23 #24 0xc423849 in content::RunZygote(content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:337:14 #25 0xc42643a in content::RunNamedProcessTypeMain(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:416:12 Uninitialized value was created by a heap allocation #0 0x8a5239 in operator new(unsigned long) ??:0:0 #1 0x23a8a6a4 in PaintContentsToDisplayList cc/blink/web_content_layer_impl.cc:79:42 #2 0x23a8a6a4 in non-virtual thunk to cc_blink::WebContentLayerImpl::PaintContentsToDisplayList(cc::ContentLayerClient::PaintingControlSetting) cc/blink/web_content_layer_impl.cc:0:0 #3 0x21d73133 in cc::PictureLayer::Update() cc/layers/picture_layer.cc:126:39 #4 0x128bebe3 in PaintContent cc/trees/layer_tree_host.cc:1118:33 #5 0x128bebe3 in cc::LayerTreeHost::DoUpdateLayers(cc::Layer*) cc/trees/layer_tree_host.cc:741:0 #6 0x128bd107 in cc::LayerTreeHost::UpdateLayers() cc/trees/layer_tree_host.cc:618:17 #7 0x128e5a4b in cc::ProxyMain::BeginMainFrame(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >) cc/trees/proxy_main.cc:222:60 #8 0x12978aeb in Invoke<base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:196:12 #9 0x12978aeb in MakeItSo<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > base/bind_internal.h:282:0 #10 0x12978aeb in void base::internal::Invoker<base::internal::BindState<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, void ()>::RunImpl<void (cc::ProxyMain::*)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >, 0ul, 1ul>(void (cc::ProxyMain::*&&)(std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> >), std::__1::tuple<base::WeakPtr<cc::ProxyMain>, base::internal::PassedWrapper<std::__1::unique_ptr<cc::BeginMainFrameAndCommitState, std::__1::default_delete<cc::BeginMainFrameAndCommitState> > > >&&, base::IndexSequence<0ul, 1ul>) base/bind_internal.h:338:0 #11 0xc7d9bd0 in Run base/callback.h:91:12 #12 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #13 0x1a679060 in blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:532:19 #14 0x1a66cb2a in blink::scheduler::TaskQueueManager::DoWork(bool) third_party/WebKit/Source/platform/scheduler/base/task_queue_manager.cc:330:13 #15 0xc7d9bd0 in Run base/callback.h:91:12 #16 0xc7d9bd0 in base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*) base/debug/task_annotator.cc:59:0 #17 0xc55005e in base::MessageLoop::RunTask(base::PendingTask*) base/message_loop/message_loop.cc:422:19 #18 0xc5532a9 in base::MessageLoop::DeferOrRunPendingTask(base::PendingTask) base/message_loop/message_loop.cc:433:5 #19 0xc5542a6 in base::MessageLoop::DoWork() base/message_loop/message_loop.cc:540:13 #20 0xc56147a in base::MessagePumpDefault::Run(base::MessagePump::Delegate*) base/message_loop/message_pump_default.cc:33:31 #21 0xc6182eb in base::RunLoop::Run() base/run_loop.cc:111:14 #22 0x1f945b5f in content::RendererMain(content::MainFunctionParams const&) content/renderer/renderer_main.cc:219:23 #23 0xc423849 in content::RunZygote(content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:337:14 #24 0xc42643a in content::RunNamedProcessTypeMain(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&, content::MainFunctionParams const&, content::ContentMainDelegate*) content/app/content_main_runner.cc:416:12 #25 0xc4290b7 in content::ContentMainRunnerImpl::Run() content/app/content_main_runner.cc:687:12 SUMMARY: MemorySanitizer: use-of-uninitialized-value (/b/s/w/ir/out/Release/browser_tests+0x126150a2)
,
Jul 26 2017
I abandoned an attempt of a mechanical revert: https://chromium-review.googlesource.com/c/586187 simply because it seems not possible. vmpstr@, could you take a look?
,
Jul 26 2017
,
Jul 26 2017
,
Jul 26 2017
Building to reproduce. Suspecting void PaintOpBuffer::operator=(PaintOpBuffer&& other), since it's not assigning has_non_aa_paint_ (which happens to be the variable msan is complaining about). I want to first build to verify though.
,
Jul 26 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/673687e665a84a8006943292a4da51a47ba5c672 commit 673687e665a84a8006943292a4da51a47ba5c672 Author: Vladimir Levin <vmpstr@chromium.org> Date: Wed Jul 26 23:23:44 2017 cc: Ensure to initialize has_non_aa_paint_ in PaintOpBuffer move ctor. This initializes/copies has_non_aa_paint_ in PaintOpBuffer move assignment (and as a result in the move ctor). R=enne@chromium.org, khushalsagar@chromium.org Bug: 749001 Cq-Include-Trybots: master.tryserver.blink:linux_trusty_blink_rel Change-Id: I2cbc6b1cb54b8cd233846b81dc46ca9b2cd4b789 Reviewed-on: https://chromium-review.googlesource.com/587331 Reviewed-by: Khushal <khushalsagar@chromium.org> Commit-Queue: Vladimir Levin <vmpstr@chromium.org> Cr-Commit-Position: refs/heads/master@{#489794} [modify] https://crrev.com/673687e665a84a8006943292a4da51a47ba5c672/cc/paint/paint_op_buffer.cc
,
Jul 27 2017
|
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by yukishiino@chromium.org
, Jul 26 2017