Project

General

Profile

crash1.txt

Edgardo Hoszowski, 11/11/2018 12:43 AM

 
1
==17635==ERROR: AddressSanitizer: heap-use-after-free on address 0x61100046e290 at pc 0x7ffff6ef6935 bp 0x7fffdd34aa30 sp 0x7fffdd34a1d8
2
READ of size 2 at 0x61100046e290 thread T6 (worker 2)
3
    #0 0x7ffff6ef6934 in __asan_memcpy (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x8c934)
4
    #1 0x7ffff2389b11  (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x19b11)
5
    #2 0x7ffff23fff17  (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x8ff17)
6
    #3 0x7ffff2403a51  (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x93a51)
7
    #4 0x7ffff2404081  (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x94081)
8
    #5 0x7ffff2404409  (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x94409)
9
    #6 0x7ffff24046e5 in sqlite3_prepare_v2 (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x946e5)
10
    #7 0x7ffff672854d in dt_collection_image_offset_with_collection /home/edgardo/darktable_remove_crash/src/common/collection.c:1508
11
    #8 0x7ffff6726b4c in dt_collection_image_offset_with_collection /home/edgardo/darktable_remove_crash/src/common/collection.c:1501
12
    #9 0x7ffff6726b4c in dt_collection_hint_message /home/edgardo/darktable_remove_crash/src/common/collection.c:1473
13
    #10 0x7ffff67270f5 in dt_collection_update /home/edgardo/darktable_remove_crash/src/common/collection.c:244
14
    #11 0x7ffff672977c in dt_collection_update_query /home/edgardo/darktable_remove_crash/src/common/collection.c:1433
15
    #12 0x7ffff679c3c7 in dt_image_import_internal /home/edgardo/darktable_remove_crash/src/common/image.c:1116
16
    #13 0x7ffff6831770 in dt_film_import1 /home/edgardo/darktable_remove_crash/src/control/jobs/film_jobs.c:256
17
    #14 0x7ffff6831ea8 in dt_film_import1_run /home/edgardo/darktable_remove_crash/src/control/jobs/film_jobs.c:33
18
    #15 0x7ffff6824894 in dt_control_job_execute /home/edgardo/darktable_remove_crash/src/control/jobs.c:304
19
    #16 0x7ffff6825d37 in dt_control_run_job /home/edgardo/darktable_remove_crash/src/control/jobs.c:323
20
    #17 0x7ffff6825d37 in dt_control_work /home/edgardo/darktable_remove_crash/src/control/jobs.c:568
21
    #18 0x7ffff63e86b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
22
    #19 0x7ffff611e41c in clone (/lib/x86_64-linux-gnu/libc.so.6+0x10741c)
23

    
24
0x61100046e290 is located 16 bytes inside of 218-byte region [0x61100046e280,0x61100046e35a)
25
freed by thread T4 (worker 0) here:
26
    #0 0x7ffff6f022ca in __interceptor_free (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x982ca)
27
    #1 0x7ffff6726fef in _dt_collection_store /home/edgardo/darktable_remove_crash/src/common/collection.c:564
28
    #2 0x7ffff6726fef in dt_collection_update /home/edgardo/darktable_remove_crash/src/common/collection.c:229
29
    #3 0x7ffff6829a0f in dt_control_remove_images_job_run /home/edgardo/darktable_remove_crash/src/control/jobs/control_jobs.c:652
30
    #4 0x7ffff6824894 in dt_control_job_execute /home/edgardo/darktable_remove_crash/src/control/jobs.c:304
31
    #5 0x7ffff6825d37 in dt_control_run_job /home/edgardo/darktable_remove_crash/src/control/jobs.c:323
32
    #6 0x7ffff6825d37 in dt_control_work /home/edgardo/darktable_remove_crash/src/control/jobs.c:568
33
    #7 0x7ffff63e86b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
34

    
35
previously allocated by thread T6 (worker 2) here:
36
    #0 0x7ffff6f02602 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x98602)
37
    #1 0x7ffff56327b8 in g_malloc (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4f7b8)
38

    
39
Thread T6 (worker 2) created by T0 here:
40
    #0 0x7ffff6ea0253 in pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x36253)
41
    #1 0x7ffff6758334 in dt_pthread_create /home/edgardo/darktable_remove_crash/src/common/dtpthread.c:69
42
    #2 0x7ffff68263d8 in dt_control_jobs_init /home/edgardo/darktable_remove_crash/src/control/jobs.c:624
43
    #3 0x7ffff681bf51 in dt_control_init /home/edgardo/darktable_remove_crash/src/control/control.c:69
44
    #4 0x7ffff674a271 in dt_init /home/edgardo/darktable_remove_crash/src/common/darktable.c:854
45
    #5 0x4008c5 in main /home/edgardo/darktable_remove_crash/src/main.c:82
46
    #6 0x7ffff603782f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
47

    
48
Thread T4 (worker 0) created by T0 here:
49
    #0 0x7ffff6ea0253 in pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x36253)
50
    #1 0x7ffff6758334 in dt_pthread_create /home/edgardo/darktable_remove_crash/src/common/dtpthread.c:69
51
    #2 0x7ffff68263d8 in dt_control_jobs_init /home/edgardo/darktable_remove_crash/src/control/jobs.c:624
52
    #3 0x7ffff681bf51 in dt_control_init /home/edgardo/darktable_remove_crash/src/control/control.c:69
53
    #4 0x7ffff674a271 in dt_init /home/edgardo/darktable_remove_crash/src/common/darktable.c:854
54
    #5 0x4008c5 in main /home/edgardo/darktable_remove_crash/src/main.c:82
55
    #6 0x7ffff603782f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
56

    
57
SUMMARY: AddressSanitizer: heap-use-after-free ??:0 __asan_memcpy
58
Shadow bytes around the buggy address:
59
  0x0c2280085c00: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
60
  0x0c2280085c10: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
61
  0x0c2280085c20: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
62
  0x0c2280085c30: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
63
  0x0c2280085c40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
64
=>0x0c2280085c50: fd fd[fd]fd fd fd fd fd fd fd fd fd fd fd fd fd
65
  0x0c2280085c60: fd fd fd fd fd fd fd fd fd fd fd fd fa fa fa fa
66
  0x0c2280085c70: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
67
  0x0c2280085c80: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
68
  0x0c2280085c90: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
69
  0x0c2280085ca0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
70
Shadow byte legend (one shadow byte represents 8 application bytes):
71
  Addressable:           00
72
  Partially addressable: 01 02 03 04 05 06 07 
73
  Heap left redzone:       fa
74
  Heap right redzone:      fb
75
  Freed heap region:       fd
76
  Stack left redzone:      f1
77
  Stack mid redzone:       f2
78
  Stack right redzone:     f3
79
  Stack partial redzone:   f4
80
  Stack after return:      f5
81
  Stack use after scope:   f8
82
  Global redzone:          f9
83
  Global init order:       f6
84
  Poisoned by user:        f7
85
  Container overflow:      fc
86
  Array cookie:            ac
87
  Intra object redzone:    bb
88
  ASan internal:           fe
89
==17635==ABORTING
Go to top