Issue694

Title ASAN crash while -b loadship
Priority important Status rejected
Assigned To Keywords
Linked issues ASAN crash in -b loadship, dialog and mapgen
View: 695
Watchers

Submitted on 2013-09-28 22h46 by matthiaskrgr, last changed by matthiaskrgr.

Messages
Author: matthiaskrgr Date: 2013-09-28   22h46
Attempts to reproduce this failed.. :/
Anyway:

=================================================================
==27453== ERROR: AddressSanitizer: heap-use-after-free on address 0x607800095300
at pc 0x544238 bp 0x7fff66815450 sp 0x7fff66815448
READ of size 4 at 0x607800095300 thread T0
    #0 0x544237 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x544237)
    #1 0x546447 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x546447)
    #2 0x460919 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x460919)
    #3 0x4eebed (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4eebed)
    #4 0x4ef950 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4ef950)
    #5 0x4176a5 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4176a5)
    #6 0x7f1537a10bc4 (/usr/lib/libc-2.18.so+0x21bc4)
    #7 0x417f1c (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x417f1c)
0x607800095300 is located 8704 bytes inside of 11656-byte region
[0x607800093100,0x607800095e88)
freed by thread T0 here:
    #0 0x7f153929647a (/usr/lib/libasan.so.0.0.0+0x1547a)
    #1 0x7f15382428cc (/usr/lib/libSDL-1.2.so.0.11.4+0x2c8cc)
previously allocated by thread T0 here:
    #0 0x7f153929655a (/usr/lib/libasan.so.0.0.0+0x1555a)
    #1 0x7f1538242b0a (/usr/lib/libSDL-1.2.so.0.11.4+0x2cb0a)
Shadow bytes around the buggy address:
  0x0c0f8000aa10: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa20: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa30: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa40: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa50: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
=>0x0c0f8000aa60:[fd]fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa70: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa80: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aa90: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aaa0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c0f8000aab0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:     fa
  Heap righ redzone:     fb
  Freed Heap region:     fd
  Stack left redzone:    f1
  Stack mid redzone:     f2
  Stack right redzone:   f3
  Stack partial redzone: f4
  Stack after return:    f5
  Stack use after scope: f8
  Global redzone:        f9
  Global init order:     f6
  Poisoned by user:      f7
  ASan internal:         fe
==27453== ABORTING


addr2line -e ./src/freedroidRPG 0x544237 0x546447 0x460919 0x4eebed 0x4ef950
0x4176a5 0x417f1c
/home/matthias/vcs/git/freedroid/src/mapgen/mapgen.c:366
/home/matthias/vcs/git/freedroid/src/mapgen/mapgen.c:1015
/home/matthias/vcs/git/freedroid/src/map.c:1076
/home/matthias/vcs/git/freedroid/src/benchmark.c:94
/home/matthias/vcs/git/freedroid/src/benchmark.c:247
/home/matthias/vcs/git/freedroid/src/main.c:153


@ 2c85c170344c830068f626e635e05502db37382a
Author: matthiaskrgr Date: 2013-09-28   22h56
Since it seemed random, it might be related to mapgen stuff.
Author: matthiaskrgr Date: 2013-09-29   08h08
Closed in favor of 695
History
Date User Action Args
2013-09-29 08:08:25matthiaskrgrsetstatus: open -> rejected
messages: + msg2580
linked: + ASAN crash in -b loadship, dialog and mapgen
2013-09-28 22:56:18matthiaskrgrsetmessages: + msg2578
2013-09-28 22:46:51matthiaskrgrcreate