[Bug 95395] glsl: NULL type value in add_uniform() leads to SIGSEGV

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Sat May 14 07:17:28 UTC 2016 

https://bugs.freedesktop.org/show_bug.cgi?id=95395

            Bug ID: 95395
           Summary: glsl: NULL type value in add_uniform() leads to
                    SIGSEGV
           Product: Mesa
           Version: 11.2
          Hardware: ARM
                OS: OpenBSD
            Status: NEW
          Severity: normal
          Priority: medium
         Component: glsl-compiler
          Assignee: idr at freedesktop.org
          Reporter: jsg at openbsd.org
        QA Contact: intel-3d-bugs at lists.freedesktop.org

Created attachment 123737
  --> https://bugs.freedesktop.org/attachment.cgi?id=123737&action=edit
glxinfo from the arm machine

When running glxgears with Mesa 11.2.2 over X11 forwarding with the gallium
softpipe renderer on OpenBSD arm I see the following crash.

Program received signal SIGSEGV, Segmentation fault.
add_uniform (this=Variable "this" is not available.) at
/usr/xenocara/lib/mesa/src/compiler/glsl/builtin_variables.cpp:544
544        const unsigned array_count = type->is_array() ? type->length : 1;
Current language:  auto; currently c++
(gdb) bt
#0  add_uniform (this=Variable "this" is not available.) at
/usr/xenocara/lib/mesa/src/compiler/glsl/builtin_variables.cpp:544
#1  0x453d97ec in generate_uniforms (this=0xbfff1508) at
/usr/xenocara/lib/mesa/src/compiler/glsl/builtin_variables.cpp:882
#2  0x453db110 in _mesa_glsl_initialize_variables (instructions=Variable
"instructions" is not available.
) at /usr/xenocara/lib/mesa/src/compiler/glsl/builtin_variables.cpp:1304
#3  0x451ec5e4 in _mesa_get_fixed_func_fragment_program (ctx=0x40246000) at
/usr/xenocara/lib/mesa/src/mesa/main/ff_fragment_shader.cpp:1225
#4  0x4529d038 in _mesa_update_state_locked () at glsl_symbol_table.h:45
#5  0x4529d1b0 in _mesa_update_state () at glsl_symbol_table.h:45
#6  0x451b8268 in _mesa_Clear () at nir_builder_opcodes.h:80
#7  0x469e3e30 in glClear () from /usr/X11R6/lib/libGL.so.17.0
#8  0x0000a998 in __register_frame_info ()
#9  0xbfff1a80 in ?? ()
Cannot access memory at address 0x34388d3f
(gdb) p type
$1 = (const glsl_type *) 0x0
(gdb) p name
$2 = 0x4558e6fc "gl_CurrentAttribVertMESA"

I can't reproduce this on amd64 forcing softpipe via LIBGL_ALWAYS_SOFTWARE,
which leads me to believe this is somehow alignment related.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/intel-3d-bugs/attachments/20160514/a903f391/attachment.html>

More information about the intel-3d-bugs mailing list