Issue 694: ASAN crash while -b loadship - FreedroidRPG issues

Title	ASAN crash while -b loadship
Priority	important	Status	rejected
Assigned To		Keywords
Linked issues	ASAN crash in -b loadship, dialog and mapgen View: 695	Watchers

Submitted on 2013-09-28 22h46 by matthiaskrgr, last changed by matthiaskrgr.

Messages
Author: matthiaskrgr	Date: 2013-09-28 22h46
Attempts to reproduce this failed.. :/ Anyway: ================================================================= ==27453== ERROR: AddressSanitizer: heap-use-after-free on address 0x607800095300 at pc 0x544238 bp 0x7fff66815450 sp 0x7fff66815448 READ of size 4 at 0x607800095300 thread T0 #0 0x544237 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x544237) #1 0x546447 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x546447) #2 0x460919 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x460919) #3 0x4eebed (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4eebed) #4 0x4ef950 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4ef950) #5 0x4176a5 (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x4176a5) #6 0x7f1537a10bc4 (/usr/lib/libc-2.18.so+0x21bc4) #7 0x417f1c (/home/matthias/vcs/git/freedroid/src/freedroidRPG+0x417f1c) 0x607800095300 is located 8704 bytes inside of 11656-byte region [0x607800093100,0x607800095e88) freed by thread T0 here: #0 0x7f153929647a (/usr/lib/libasan.so.0.0.0+0x1547a) #1 0x7f15382428cc (/usr/lib/libSDL-1.2.so.0.11.4+0x2c8cc) previously allocated by thread T0 here: #0 0x7f153929655a (/usr/lib/libasan.so.0.0.0+0x1555a) #1 0x7f1538242b0a (/usr/lib/libSDL-1.2.so.0.11.4+0x2cb0a) Shadow bytes around the buggy address: 0x0c0f8000aa10: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa20: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa30: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa40: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa50: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd =>0x0c0f8000aa60:[fd]fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa70: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa80: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aa90: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aaa0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c0f8000aab0: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd Shadow byte legend (one shadow byte represents 8 application bytes): Addressable: 00 Partially addressable: 01 02 03 04 05 06 07 Heap left redzone: fa Heap righ redzone: fb Freed Heap region: fd Stack left redzone: f1 Stack mid redzone: f2 Stack right redzone: f3 Stack partial redzone: f4 Stack after return: f5 Stack use after scope: f8 Global redzone: f9 Global init order: f6 Poisoned by user: f7 ASan internal: fe ==27453== ABORTING addr2line -e ./src/freedroidRPG 0x544237 0x546447 0x460919 0x4eebed 0x4ef950 0x4176a5 0x417f1c /home/matthias/vcs/git/freedroid/src/mapgen/mapgen.c:366 /home/matthias/vcs/git/freedroid/src/mapgen/mapgen.c:1015 /home/matthias/vcs/git/freedroid/src/map.c:1076 /home/matthias/vcs/git/freedroid/src/benchmark.c:94 /home/matthias/vcs/git/freedroid/src/benchmark.c:247 /home/matthias/vcs/git/freedroid/src/main.c:153 @ 2c85c170344c830068f626e635e05502db37382a
Author: matthiaskrgr	Date: 2013-09-28 22h56
Since it seemed random, it might be related to mapgen stuff.
Author: matthiaskrgr	Date: 2013-09-29 08h08
Closed in favor of 695

History
Date	User	Action	Args
2013-09-29 08:08:25	matthiaskrgr	set	status: open -> rejected messages: + msg2580 linked: + ASAN crash in -b loadship, dialog and mapgen
2013-09-28 22:56:18	matthiaskrgr	set	messages: + msg2578
2013-09-28 22:46:51	matthiaskrgr	create