Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-9033

QImageTextureGlyphCache::fillTexture crash at http://www.nicovideo.jp/ on browser.exe

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P1: Critical
    • 4.7.0
    • 4.7.0
    • GUI: Painting
    • None
    • Qt 4.7.0 Technology Preview built with MSVC2005 SP1 on Windows XP
      Built with OpenSSL 0.9.8l

    Description

      1. Open browser.exe
      2. Go to http://www.nicovideo.jp/
      3. Scroll down the page to the bottom

      Expected result: the page scrolls down

      Actual result: it crashes at QtGuid4.dll!QImageTextureGlyphCache::fillTexture

      Stack trace:

      > QtGuid4.dll!QImageTextureGlyphCache::fillTexture(const QTextureGlyphCache::Coord & c=

      {...}, unsigned int g=6593) 行 323 + 0xe バイト C++
      QtGuid4.dll!QTextureGlyphCache::populate(QFontEngine * fontEngine=0x02232198, int numGlyphs=1, const unsigned int * glyphs=0x001273d8, const QFixedPoint * __formal=0x001277f0) 行 157 C++
      QtGuid4.dll!QRasterPaintEngine::drawCachedGlyphs(int numGlyphs=1, const unsigned int * glyphs=0x001273d8, const QFixedPoint * positions=0x001277f0, QFontEngine * fontEngine=0x02232198) 行 3023 C++
      QtGuid4.dll!QRasterPaintEngine::drawTextItem(const QPointF & p={...}

      , const QTextItem & textItem=

      {...}) 行 3287 C++
      QtGuid4.dll!QPainter::drawTextItem(const QPointF & p={...}

      , const QTextItem & _ti=

      {...}) 行 6424 C++
      QtGuid4.dll!QPainter::drawText(const QPointF & p={...}

      , const QString & str="3月11日(木)に内閣府主催で行われた『枝野幸男 行政刷新担当大臣記者会見 生放送』を中継しました。

      今回の会見では冒頭で、枝野大臣から「事業仕分け第二弾」や「行... ﷽﷽??ǰ̈됈Ϲ땐Ϲ", int tf=131072, int justificationPadding=0) 行 5974 C++
      QtWebKitd4.dll!WebCore::Font::drawComplexText(WebCore::GraphicsContext * ctx=0x0012cb2c, const WebCore::TextRun & run=

      {...}, const WebCore::FloatPoint & point={...}

      , int from=0, int to=30) 行 183 C++
      QtWebKitd4.dll!WebCore::Font::drawText(WebCore::GraphicsContext * context=0x0012cb2c, const WebCore::TextRun & run=

      {...}, const WebCore::FloatPoint & point={...}

      , int from=0, int to=30) 行 184 C++
      QtWebKitd4.dll!WebCore::GraphicsContext::drawText(const WebCore::Font & font=

      {...}, const WebCore::TextRun & run={...}

      , const WebCore::IntPoint & point=

      {...}, int from=0, int to=30) 行 334 C++
      QtWebKitd4.dll!WebCore::paintTextWithShadows(WebCore::GraphicsContext * context=0x0012cb2c, const WebCore::Font & font={...}

      , const WebCore::TextRun & textRun=

      {...}, int startOffset=0, int endOffset=30, const WebCore::IntPoint & textOrigin={...}

      , int x=787, int y=1311, int w=307, int h=14, WebCore::ShadowData * shadow=0x00000000, bool stroked=false) 行 288 C++
      QtWebKitd4.dll!WebCore::InlineTextBox::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=787, int ty=1310) 行 471 + 0xba バイト C++
      QtWebKitd4.dll!WebCore::InlineFlowBox::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=787, int ty=1310) 行 677 C++
      QtWebKitd4.dll!WebCore::RootInlineBox::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=787, int ty=1310) 行 166 C++
      QtWebKitd4.dll!WebCore::RenderLineBoxList::paint(WebCore::RenderBoxModelObject * renderer=0x0495c48c, WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=787, int ty=1310) 行 204 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=787, int ty=1310) 行 1616 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=787, int ty=1310) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=787, int ty=1310) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=775, int ty=1310) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=775, int ty=1310) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=775, int ty=1310) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=775, int ty=1310) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=763, int ty=1278) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=763, int ty=1278) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=763, int ty=1278) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=763, int ty=1278) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=759, int ty=1244) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=759, int ty=1244) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=759, int ty=1244) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=759, int ty=1244) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=755, int ty=1240) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=755, int ty=1240) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=755, int ty=1240) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=755, int ty=1240) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=755, int ty=216) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=755, int ty=216) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=755, int ty=216) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=755, int ty=216) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintFloats(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=193, bool preservePhase=false) 行 1769 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=131, int ty=193) 行 1722 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=193) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=131, int ty=103) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=103) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=131, int ty=103) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=103) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=131, int ty=28) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=28) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=131, int ty=28) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=131, int ty=28) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=28) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=28) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=28) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=28) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=0) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=0) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=0) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=0) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintChildren(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=0) 行 1646 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintContents(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=0) 行 1618 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paintObject(WebCore::RenderObject::PaintInfo & paintInfo=

      {...}, int tx=0, int ty=0) 行 1709 C++
      QtWebKitd4.dll!WebCore::RenderBlock::paint(WebCore::RenderObject::PaintInfo & paintInfo={...}

      , int tx=0, int ty=0) 行 1509 C++
      QtWebKitd4.dll!WebCore::RenderLayer::paintLayer(WebCore::RenderLayer * rootLayer=0x04f6d53c, WebCore::GraphicsContext * p=0x0012cb2c, const WebCore::IntRect & paintDirtyRect=

      {...}, WebCore::PaintRestriction paintRestriction=PaintRestrictionNone, WebCore::RenderObject * paintingRoot=0x00000000, WTF::HashMap<WebCore::OverlapTestRequestClient *,WebCore::IntRect,WTF::PtrHash<WebCore::OverlapTestRequestClient *>,WTF::HashTraits<WebCore::OverlapTestRequestClient *>,WTF::HashTraits<WebCore::IntRect> > * overlapTestRequests=0x0012ca04, unsigned int paintFlags=0) 行 2244 C++
      QtWebKitd4.dll!WebCore::RenderLayer::paintLayer(WebCore::RenderLayer * rootLayer=0x04f6d53c, WebCore::GraphicsContext * p=0x0012cb2c, const WebCore::IntRect & paintDirtyRect={...}

      , WebCore::PaintRestriction paintRestriction=PaintRestrictionNone, WebCore::RenderObject * paintingRoot=0x00000000, WTF::HashMap<WebCore::OverlapTestRequestClient *,WebCore::IntRect,WTF::PtrHash<WebCore::OverlapTestRequestClient *>,WTF::HashTraits<WebCore::OverlapTestRequestClient *>,WTF::HashTraits<WebCore::IntRect> > * overlapTestRequests=0x0012ca04, unsigned int paintFlags=0) 行 2271 + 0x29 バイト C++
      QtWebKitd4.dll!WebCore::RenderLayer::paint(WebCore::GraphicsContext * p=0x0012cb2c, const WebCore::IntRect & damageRect=

      {...}, WebCore::PaintRestriction paintRestriction=PaintRestrictionNone, WebCore::RenderObject * paintingRoot=0x00000000) 行 2051 C++
      QtWebKitd4.dll!WebCore::FrameView::paintContents(WebCore::GraphicsContext * p=0x0012cb2c, const WebCore::IntRect & rect={...}

      ) 行 1670 C++
      QtWebKitd4.dll!QWebFramePrivate::renderPrivate(QPainter * painter=0x0012cb84, QWebFrame::RenderLayer layer=AllLayers, const QRegion & clip=

      {...}) 行 303 C++
      QtWebKitd4.dll!QWebFrame::render(QPainter * painter=0x0012cb84, const QRegion & clip={...}

      ) 行 1138 C++
      QtWebKitd4.dll!QWebView::paintEvent(QPaintEvent * ev=0x0012d3ac) 行 863 C++
      QtGuid4.dll!QWidget::event(QEvent * event=0x0012d3ac) 行 8180 C++
      QtWebKitd4.dll!QWebView::event(QEvent * e=0x0012d3ac) 行 762 C++
      QtGuid4.dll!QApplicationPrivate::notify_helper(QObject * receiver=0x01211488, QEvent * e=0x0012d3ac) 行 4322 + 0x11 バイト C++
      QtGuid4.dll!QApplication::notify(QObject * receiver=0x01211488, QEvent * e=0x0012d3ac) 行 4287 + 0x10 バイト C++
      QtCored4.dll!QCoreApplication::notifyInternal(QObject * receiver=0x01211488, QEvent * event=0x0012d3ac) 行 704 + 0x15 バイト C++
      QtCored4.dll!QCoreApplication::sendSpontaneousEvent(QObject * receiver=0x01211488, QEvent * event=0x0012d3ac) 行 218 + 0x38 バイト C++
      QtGuid4.dll!QWidgetPrivate::drawWidget(QPaintDevice * pdev=0x011d1490, const QRegion & rgn=

      {...}, const QPoint & offset={...}

      , int flags=68, QPainter * sharedPainter=0x00000000, QWidgetBackingStore * backingStore=0x012230f0) 行 5285 + 0xe バイト C++
      QtGuid4.dll!QWidgetBackingStore::sync() 行 1285 C++
      QtGuid4.dll!QWidgetPrivate::syncBackingStore() 行 1696 C++
      QtGuid4.dll!QWidget::event(QEvent * event=0x04a978a8) 行 8327 C++
      QtGuid4.dll!QMainWindow::event(QEvent * event=0x04a978a8) 行 1440 C++
      QtGuid4.dll!QApplicationPrivate::notify_helper(QObject * receiver=0x01174590, QEvent * e=0x04a978a8) 行 4322 + 0x11 バイト C++
      QtGuid4.dll!QApplication::notify(QObject * receiver=0x01174590, QEvent * e=0x04a978a8) 行 4287 + 0x10 バイト C++
      QtCored4.dll!QCoreApplication::notifyInternal(QObject * receiver=0x01174590, QEvent * event=0x04a978a8) 行 704 + 0x15 バイト C++
      QtCored4.dll!QCoreApplication::sendEvent(QObject * receiver=0x01174590, QEvent * event=0x04a978a8) 行 215 + 0x39 バイト C++
      QtCored4.dll!QCoreApplicationPrivate::sendPostedEvents(QObject * receiver=0x00000000, int event_type=0, QThreadData * data=0x00f3bfe8) 行 1345 + 0xd バイト C++
      QtCored4.dll!qt_internal_proc(HWND__ * hwnd=0x006813c0, unsigned int message=1025, unsigned int wp=0, long lp=0) 行 501 + 0x10 バイト C++
      user32.dll!77cf8734()
      [下のフレームは間違っているか、または見つかりません。user32.dll に対して読み込まれたシンボルはありません。]
      user32.dll!77cf8816()
      user32.dll!77cf89cd()
      user32.dll!77cf9402()
      user32.dll!77cf8a10()
      QtCored4.dll!QEventDispatcherWin32::processEvents(QFlags<enum QEventLoop::ProcessEventsFlag> flags=

      {...}) 行 798 C++
      QtGuid4.dll!QGuiEventDispatcherWin32::processEvents(QFlags<enum QEventLoop::ProcessEventsFlag> flags={...}

      ) 行 1143 + 0x15 バイト C++
      QtCored4.dll!QEventLoop::processEvents(QFlags<enum QEventLoop::ProcessEventsFlag> flags=

      {...}) 行 150 C++
      QtCored4.dll!QEventLoop::exec(QFlags<enum QEventLoop::ProcessEventsFlag> flags={...}

      ) 行 201 + 0x2d バイト C++
      QtCored4.dll!QCoreApplication::exec() 行 981 + 0x15 バイト C++
      QtGuid4.dll!QApplication::exec() 行 3602 C++
      browser.exe!main(int argc=1, char * * argv=0x00f3af70) 行 51 + 0x6 バイト C++
      browser.exe!WinMain(HINSTANCE__ * instance=0x00400000, HINSTANCE__ * prevInstance=0x00000000, char * __formal=0x0015233c, int cmdShow=1) 行 131 + 0x12 バイト C++
      browser.exe!__tmainCRTStartup() 行 589 + 0x35 バイト C
      browser.exe!WinMainCRTStartup() 行 414 C
      kernel32.dll!7c817077()
      msvcp80d.dll!std::basic_string<char,std::char_traits<char>,std::_DebugHeapAllocator<char> >::find_first_not_of(const char * _Ptr=0x00740063, unsigned int _Off=7471221) 行 1893 C++
      msvcp80d.dll!std::basic_string<char,std::char_traits<char>,std::_DebugHeapAllocator<char> >::find_first_not_of(const char * _Ptr=0x854242b6, unsigned int _Off=3323491776) 行 1893 C++
      0fffffff()

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            sletta Gunnar Sletta
            ryuk Ryuichi KUBUKI
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes