Arx Libertatis Bug Tracker
star_faded.png
Please log in to bookmark issues
bug_report_small.png
OPEN  Crash report #253  -  [9774F695] arx.exe!Cedric_AnimCalcTranslation() animationrender.cpp(243)
Posted Apr 30, 2012 - updated Jun 29, 2018   Shortlink: http://arx.vg/253
action_vote_minus_faded.png
0
Votes
 action_vote_plus_faded.png
SebastienLussier (SebastienLussier) has been working on this issue since July 04, 2012 (00:57)
Issue details
  • Type of issue
    Crash report
  • Status
     
    		 New
  • Assigned to
    Not assigned to anyone
  • Type of bug
    Not triaged
  • Likelihood
    Not triaged
  • Effect
    Not triaged
  • Posted by
    CrashBot
  • Owned by
    Not owned by anyone
  • Estimated time
    Not estimated
  • Category
    Not determined
  • Resolution
    Not determined
  • Priority
    Not determined
  • Reproducability
    Not determined
  • Severity
    Not determined
  • Targetted for
    icon_milestones.png next
  • OS
    icon_customdatatype.png Windows XP
  • Architecture
    icon_customdatatype.png x86
  • Fixed in
    icon_customdatatype.png Not determined
Issue description
Illegal storage access

Callstack: 
  arx.exe!0x63f4aa 
  arx.exe!0x6408a2 
  arx.exe!0x645156 
  arx.exe!0x523ad0 
  arx.exe!0x50b63e 
  arx.exe!0x622e10 
  arx.exe!0x61bc77 
  arx.exe!0x61948e 
  arx.exe!0x4dbb41 
  kernel32.dll!RegisterWaitForInputIdle()


Registers: 
  EAX:00000000  EBX:0149F5E4  ECX:1EB07FC8  EDX:1EB07FC8  ESI:1B8FB928  EDI:1B8FB560
  CS:EIP:001B:7C817077
  SS:ESP:0023:0149FFC8  EBP:0149FFF0
  DS:0023  ES:0023  FS:003B  GS:0000
  Flags:00210246


Steps to reproduce this issue
Tried to change levels

#1
icon_reply.pngReply
Comment posted by
CrashBot
Apr 30, 19:03
A file was uploaded. arx.logicon_open_new.png This comment was attached:

arxcrash-2484-4278660449
#2
icon_reply.pngReply
Comment posted by
CrashBot
Apr 30, 19:03
A file was uploaded. cfg.iniicon_open_new.png This comment was attached:

arxcrash-2484-4278660449
#3
icon_reply.pngReply
Comment posted by
CrashBot
Apr 30, 19:03
A file was uploaded. crash.dmpicon_open_new.png This comment was attached:

arxcrash-2484-4278660449
#4
icon_reply.pngReply
Comment posted by
CrashBot
Apr 30, 19:03
A file was uploaded. crash.xmlicon_open_new.png This comment was attached:

arxcrash-2484-4278660449
#5
icon_reply.pngReply
Comment posted by
SebastienLussier
May 12, 01:20
The crash dump points to eFrame being corrupted...

&eFrame == 0x1eb07ffc &eFrame->num_frame == 0x1eb07ffc

The memory starting from 0x1eb08000 can't be accessed (page freed probably)

AnimationRender.cpp(243) : 
  ftr = sFrame->translate + (eFrame->translate - sFrame->translate) * animuse->pour;


The callstack is: 
  arx.exe!Cedric_AnimCalcTranslation(INTERACTIVE_OBJ * io, ANIM_USE * animuse, float scale, Vector3<float> & ftr, bool update_movement)  Line 243 + 0x19 bytes	C++
  arx.exe!Cedric_AnimateDrawEntity(EERIE_3DOBJ * eobj, ANIM_USE * animuse, Angle<float> * angle, Vector3<float> * pos, INTERACTIVE_OBJ * io, bool render, bool update_movement)  Line 2034 + 0x20 bytes	C++
  arx.exe!EERIEDrawAnimQuat(EERIE_3DOBJ * eobj, ANIM_USE * eanim, Angle<float> * angle, Vector3<float> * pos, unsigned long time, INTERACTIVE_OBJ * io, bool render, bool update_movement)  Line 648 + 0x28 bytes	C++
  arx.exe!RenderInter(float from, float to)  Line 4117 + 0x25 bytes	C++
  arx.exe!ARX_SCENE_Render(long flag)  Line 3305	C++
  arx.exe!ArxGame::Render()  Line 1775	C++
  arx.exe!ArxGame::Run()  Line 564 + 0x12 bytes	C++
  arx.exe!runGame()  Line 842	C++
  arx.exe!WinMain(HINSTANCE__ * hInstance, HINSTANCE__ * hPrevInstance, char * lpCmdLine, int nCmdShow)  Line 875	C++
  arx.exe!__tmainCRTStartup()  Line 547 + 0x1c bytes	C
  kernel32.dll!_BaseProcessStart@4()  + 0x23 bytes


#18
icon_reply.pngReply
Comment posted by
Daniel Scharrer
Nov 11, 20:00
Got this in valgrind: 

  1. ==7816== Invalid read of size 4
  2. ==7816==    at 0x45FFBB: glm::detail::tvec3<float> glm::detail::operator-<float>(glm::detail::tvec3<float> const&, glm::detail::tvec3<float> const&) (type_vec3.inl:720)
  3. ==7816==    by 0x47E165: CalcTranslation(ANIM_USE*, glm::detail::tvec3<float>&) (AnimationRender.cpp:1196)
  4. ==7816==    by 0x47F8AA: EERIEDrawAnimQuatUpdate(EERIE_3DOBJ*, ANIM_USE*, Angle<float> const&, glm::detail::tvec3<float> const&, unsigned long, Entity*, bool) (AnimationRender.cpp:1508)
  5. ==7816==    by 0x715473: UpdateInter() (Interactive.cpp:2945)
  6. ==7816==    by 0x73900C: ARX_SCENE_Update() (Scene.cpp:1532)
  7. ==7816==    by 0x4BDAE6: ArxGame::updateLevel() (ArxGame.cpp:1365)
  8. ==7816==    by 0x4BEEA2: ArxGame::render() (ArxGame.cpp:1688)
  9. ==7816==    by 0x4B9058: ArxGame::doFrame() (ArxGame.cpp:622)
  10. ==7816==    by 0x4B8BFE: ArxGame::run() (ArxGame.cpp:557)
  11. ==7816==    by 0x4C8EBC: runGame() (Core.cpp:701)
  12. ==7816==    by 0x4F00D9: main (Startup.cpp:174)
  13. ==7816==  Address 0xb2657cc is not stack'd, malloc'd or (recently) free'd
#19
icon_reply.pngReply
Comment posted by
Daniel Scharrer
icon_reply.pngNov 11, 20:18, in reply to comment #18
From Eli2, may be related: 

  1. Invalid read of size 4
  2.       in UpdateInter() in src/scene/Interactive.cpp:2945
  3.     Address 0x14f61fe4 is not stack'd, malloc'd or (recently) free'd  1: EERIEDrawAnimQuatUpdate(EERIE_3DOBJ*, ANIM_USE*, Angle&lt;float&gt; const&amp;, glm::detail::tvec3&lt;float&gt; const&amp;, unsigned long, Entity*, bool) in glm/glm/core/type_vec3.inl:690
  4.       2: UpdateInter() in src/scene/Interactive.cpp:2945
  5.       3: ARX_SCENE_Update() in src/scene/Scene.cpp:1532
  6.       4: ArxGame::updateLevel() in src/core/ArxGame.cpp:1365
  7.       5: ArxGame::render() in src/core/ArxGame.cpp:1688
  8.       6: ArxGame::doFrame() in src/core/ArxGame.cpp:622
  9.       7: ArxGame::run() in src/core/ArxGame.cpp:557
  10.       8: runGame() in src/core/Core.cpp:701
  11.       9: main in src/core/Startup.cpp:174
#24
icon_reply.pngReply
Comment posted by
Daniel Scharrer
Jan 12, 09:00
This might already be fixed as there are no reports for this on AL 1.2-dev.