Dear Firaxis Devs

[generationxwing]

I'd like to introduce you to a friend of mine, his name is Application Verifier. I've been trying to cobble through the goat rodeo of issues with getting the game even running on my system (specs to follow) and decided to have a peek running the game under NTSD + Application Verifier.

Wow, the number of heap leak issues AppVerifier catches is amazing. We're talking multiple hundreds here. And all this isn't even near the cause of the issues. Are these terminal? Not really, but they can cause issues in the volumes we're talking about. And this is all before the game even presents the ESRB screen.

=======================================
VERIFIER STOP 00000900: pid 0xF10: A heap allocation was leaked.

F6AB2D90 : Address of the leaked allocation. Run !heap -p -a <address> to get additional information about the allocation.
FF04820C : Address to the allocation stack trace. Run dps <address> to view the allocation stack.
FBADAFE8 : Address of the owner dll name. Run du <address> to read the dll name.
65AB0000 : Base of the owner dll. Run .reload <dll_name> = <address> to reload the owner dll. Use 'lm' to get more information about
the loaded and unloaded modules.


=======================================

0f 00189980 00411019 vfbasics!AVrfpCoUninitialize+0xf
10 00189984 06496828 Civ5Win32Final_Release_Steam_CEG_D3D11+0x11019
11 00411019 6a008f86 Civ5Win32Final_Release_Steam_CEG_D3D11!std::_Init_ locks:perator=+0x5c28178

Then there are these;

=======================================
VERIFIER STOP 00000202: pid 0xF10: Freeing heap block containing an active critical section.

F7759FC4 : Critical section address.
FF0413A4 : Critical section initialization stack trace.
F7759FB0 : Heap block address.
0000004C : Heap block size.


=======================================

18 00189980 00411019 vfbasics!AVrfpCoUninitialize+0xf
19 00189984 06496828 Civ5Win32Final_Release_Steam_CEG_D3D11+0x11019
1a 00411019 6a008f86 Civ5Win32Final_Release_Steam_CEG_D3D11!std::_Init_ locks:perator=+0x5c28178

So let's talk about the latest issue I'm hitting. Move 441. It was fine last night until I took my 70th city at move 442 which then caused the 70th city crash. But now I can't even go back move 440 without hitting this;


FAULTING_IP:
CvGameCoreDLLFinal_Release!CvCityCitizens::SetFocu sType+cc7
070e15e7 0fbe547a01 movsx edx,byte ptr [edx+edi*2+1]

EXCEPTION_RECORD: ffffffff -- (.exr 0xffffffffffffffff)
ExceptionAddress: 070e15e7 (CvGameCoreDLLFinal_Release!CvCityCitizens::SetFoc usType+0x00000cc7)
ExceptionCode: c0000005 (Access violation)
ExceptionFlags: 00000000
NumberParameters: 2
Parameter[0]: 00000000
Parameter[1]: 00000001
Attempt to read from address 00000001

PROCESS_NAME: CivilizationV_DX11.exe

FAULTING_MODULE: 77720000 ntdll

DEBUG_FLR_IMAGE_TIMESTAMP: 4c9c5f39

ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.

EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.

EXCEPTION_PARAMETER1: 00000000

EXCEPTION_PARAMETER2: 00000001

READ_ADDRESS: 00000001

FOLLOWUP_IP:
CvGameCoreDLLFinal_Release!CvCityCitizens::SetFocu sType+cc7
070e15e7 0fbe547a01 movsx edx,byte ptr [edx+edi*2+1]

MOD_LIST: <ANALYSIS/>

FAULTING_THREAD: 000015a0

BUGCHECK_STR: APPLICATION_FAULT_NULL_CLASS_PTR_DEREFERENCE_INVAL ID_POINTER_READ_WRONG_SYMBOLS

PRIMARY_PROBLEM_CLASS: NULL_CLASS_PTR_DEREFERENCE

DEFAULT_BUCKET_ID: NULL_CLASS_PTR_DEREFERENCE

IP_ON_HEAP: 18d449f8
The fault address in not in any loaded module, please check your build's rebase
log at <releasedir>\bin\build_logs\timebuild\ntrebase.l og for module which may
contain the address if it were loaded.

FRAME_ONE_INVALID: 1

LAST_CONTROL_TRANSFER: from 18d449f8 to 070e15e7

STACK_TEXT:
WARNING: Stack unwind information not available. Following frames may be wrong.
0018fa10 18d449f8 18c87d28 702097c3 00000001 CvGameCoreDLLFinal_Release!CvCityCitizens::SetFocu sType+0xcc7
0018fa14 18c87d28 702097c3 00000001 0101001c 0x18d449f8
0018fa18 702097c3 00000001 0101001c 00000001 0x18c87d28
0018fa1c 00000000 0101001c 00000001 00000000 msvcp90!std:perator+<char,std::char_traits<char>,std::allocato r<char> >


STACK_COMMAND: ~0s; .ecxr ; kb

SYMBOL_STACK_INDEX: 0

SYMBOL_NAME: cvgamecoredllfinal_release!CvCityCitizens::SetFocu sType+cc7

MODULE_NAME: CvGameCoreDLLFinal_Release

IMAGE_NAME: CvGameCoreDLLFinal_Release.dll

FOLLOWUP_NAME: Machine_Owner;http://dbg/symbols

BUCKET_ID: WRONG_SYMBOLS

FAILURE_BUCKET_ID: NULL_CLASS_PTR_DEREFERENCE_c0000005_CvGameCoreDLLF inal_Release.dll!CvCityCitizens::SetFocusType

WATSON_STAGEONE_URL: http://watson.microsoft.com/StageOne..._dll/3_0_3_0/4
c9c5f39/c0000005/000515e7.htm?Retriage=1

Followup: Machine_Owner;http://dbg/symbols
---------

0:000>
0:000> u CvGameCoreDLLFinal_Release!CvCityCitizens::SetFocu sType+0xcc7-0x10
CvGameCoreDLLFinal_Release!CvCityCitizens::SetFocu sType+0xcb7:
070e15d7 8b4e04 mov ecx,dword ptr [esi+4]
070e15da 89442420 mov dword ptr [esp+20h],eax
070e15de 8d04c0 lea eax,[eax+eax*8]
070e15e1 c1e004 shl eax,4
070e15e4 8b1401 mov edx,dword ptr [ecx+eax]
070e15e7 0fbe547a01 movsx edx,byte ptr [edx+edi*2+1]
070e15ec 8b4c2418 mov ecx,dword ptr [esp+18h]
070e15f0 3bd1 cmp edx,ecx
0:000> r
eax=00000000 ebx=00000000 ecx=5a135e7c edx=00000000 esi=17a3b611 edi=00000174
eip=77740bd2 esp=0018da70 ebp=0018da80 iopl=0 nv up ei pl nz na pe nc
cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010206

System Specs;
Processor: Intel(R) Core(TM) i7 CPU X 980 @ 3.33GHz (12 CPUs), ~3.3GHz
Memory: 8192MB RAM
2 XFX ATI - 5970 Black Edition (2GB RAM each) in Crossfire mode
Onboard Realtek sound