Project

General

Profile

Bug #11376

segfault in levels

Added by David Schaefer over 2 years ago. Updated over 2 years ago.

Status:
Fixed
Priority:
Low
Assignee:
-
Category:
-
Target version:
Start date:
12/20/2016
Due date:
% Done:

100%

Affected Version:
git master branch
System:
Ubuntu
bitness:
64-bit
hardware architecture:
amd64/x86

Description

env LC_ALL=C ~/unstable/darktable/bin/darktable

(darktable:20951): Gtk-WARNING **: Allocating size to main_window 0x629000060370 without calling gtk_widget_get_preferred_width/height(). How does the code know the size to allocate?

(darktable:20951): Gtk-WARNING **: Allocating size to main_window 0x629000060370 without calling gtk_widget_get_preferred_width/height(). How does the code know the size to allocate?

(darktable:20951): Gtk-WARNING **: Allocating size to main_window 0x629000060370 without calling gtk_widget_get_preferred_width/height(). How does the code know the size to allocate? =================================================================
20951ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6190021a5180 at pc 0x7f16b587f994 bp 0x7fff9644e9f0 sp 0x7fff9644e9e0
READ of size 4 at 0x6190021a5180 thread T0
#0 0x7f16b587f993 in dt_draw_histogram_8_log /home/david/workspace/darktable.git/src/gui/draw.h:239
#1 0x7f16b587f993 in dt_draw_histogram_8 /home/david/workspace/darktable.git/src/gui/draw.h:250
#2 0x7f16b587f993 in dt_iop_levels_area_draw /home/david/workspace/darktable.git/src/iop/levels.c:846
#3 0x7f16e3751b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x222b10)
#4 0x7f16e3891fae (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x362fae)
#5 0x7f16e22e21a3 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x101a3)
#6 0x7f16e22fc390 in g_signal_emit_valist (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2a390)
#7 0x7f16e22fcfae in g_signal_emit (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2afae)
#8 0x7f16e389eb69 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36fb69)
#9 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#10 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#11 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#12 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#13 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#14 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#15 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#16 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#17 0x7f16e37f3559 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2c4559)
#18 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#19 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#20 0x7f16e37f30f4 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2c40f4)
#21 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#22 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#23 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#24 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#25 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#26 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#27 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#28 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#29 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#30 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#31 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#32 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#33 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#34 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#35 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#36 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#37 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#38 0x7f16e36da65b (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1ab65b)
#39 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#40 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#41 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#42 0x7f16e3705c87 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1d6c87)
#43 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#44 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#45 0x7f16e3705b50 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1d6b50)
#46 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#47 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#48 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#49 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#50 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#51 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#52 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#53 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#54 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#55 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#56 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#57 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#58 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#59 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#60 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#61 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#62 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#63 0x7f16e36da65b (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1ab65b)
#64 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#65 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#66 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#67 0x7f16e37a9161 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x27a161)
#68 0x7f16e388f9ef (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x3609ef)
#69 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#70 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#71 0x7f16e389071c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36171c)
#72 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#73 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#74 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#75 0x7f16e37d58aa (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2a68aa)
#76 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#77 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#78 0x7f16e37d3df0 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2a4df0)
#79 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#80 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#81 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#82 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#83 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#84 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#85 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#86 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#87 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#88 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#89 0x7f16e370e633 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1df633)
#90 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#91 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#92 0x7f16e370f640 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1e0640)
#93 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#94 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#95 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#96 0x7f16e3646173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#97 0x7f16e369655c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#98 0x7f16e369b1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#99 0x7f16e3648b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#100 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#101 0x7f16e36914af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#102 0x7f16e3691591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#103 0x7f16e38ac710 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x37d710)
#104 0x7f16e389e98a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#105 0x7f16e389ee68 in gtk_widget_send_expose (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36fe68)
#106 0x7f16e3750b84 in gtk_main_do_event (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x221b84)
#107 0x7f16e327ab04 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x32b04)
#108 0x7f16e32897f7 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x417f7)
#109 0x7f16e328a94b (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x4294b)
#110 0x7f16e328ab02 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x42b02)
#111 0x7f16e22e1f74 in g_closure_invoke (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0xff74)
#112 0x7f16e22f3f81 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x21f81)
#113 0x7f16e22fcbcb in g_signal_emit_valist (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2abcb)
#114 0x7f16e22fcfae in g_signal_emit (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2afae)
#115 0x7f16e3282a90 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x3aa90)
#116 0x7f16e3270e67 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x28e67)
#117 0x7f16e3e61102 (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4b102)
#118 0x7f16e3e60689 in g_main_context_dispatch (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4a689)
#119 0x7f16e3e60a3f (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4aa3f)
#120 0x7f16e3e60d61 in g_main_loop_run (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4ad61)
#121 0x7f16e374fcf4 in gtk_main (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x220cf4)
#122 0x7f16e53487d4 in dt_gui_gtk_run /home/david/workspace/darktable.git/src/gui/gtk.c:981
#123 0x55cc15b9ca0b in main /home/david/workspace/darktable.git/src/main.c:25
#124 0x7f16e4a763f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)
#125 0x55cc15b9ca59 in _start (/home/david/unstable/darktable/bin/darktable+0xa59)

0x6190021a5180 is located 0 bytes to the right of 1024-byte region [0x6190021a4d80,0x6190021a5180)
allocated by thread T7 here:
#0 0x7f16e58d2260 in __interceptor_realloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc7260)
#1 0x7f16e527816e in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:1495
#2 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#3 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#4 0x7f16e5273599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#5 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#6 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#7 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#8 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#9 0x7f16e5273599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#10 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#11 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#12 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#13 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#14 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#15 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#16 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#17 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#18 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#19 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#20 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#21 0x7f16e527270c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#22 0x7f16e5273599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#23 0x7f16e527f532 in dt_dev_pixelpipe_process_rec_and_backcopy /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:2187
#24 0x7f16e527f532 in dt_dev_pixelpipe_process /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:2273
#25 0x7f16e5247e8e in dt_dev_process_preview_job /home/david/workspace/darktable.git/src/develop/develop.c:262
#26 0x7f16e5238d90 in dt_dev_process_preview_job_run /home/david/workspace/darktable.git/src/control/jobs/develop_jobs.c:25
#27 0x7f16e522c7d8 in dt_control_run_job_res /home/david/workspace/darktable.git/src/control/jobs.c:213
#28 0x7f16e522c7d8 in dt_control_work_res /home/david/workspace/darktable.git/src/control/jobs.c:514
#29 0x7f16e4e246c9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76c9)

Thread T7 created by T0 here:
#0 0x7f16e583c4e8 in __interceptor_pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x314e8)
#1 0x7f16e517c29d in dt_pthread_create /home/david/workspace/darktable.git/src/common/dtpthread.c:63
#2 0x7f16e52244ed in dt_control_init /home/david/workspace/darktable.git/src/control/control.c:119
#3 0x7f16e516f41d in dt_init /home/david/workspace/darktable.git/src/common/darktable.c:827
#4 0x55cc15b9c9d5 in main /home/david/workspace/darktable.git/src/main.c:24
#5 0x7f16e4a763f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)

SUMMARY: AddressSanitizer: heap-buffer-overflow /home/david/workspace/darktable.git/src/gui/draw.h:239 in dt_draw_histogram_8_log
Shadow bytes around the buggy address:
0x0c328042c9e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c328042c9f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c328042ca00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c328042ca10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c328042ca20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c328042ca30:[fa]fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c328042ca40: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c328042ca50: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c328042ca60: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c328042ca70: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c328042ca80: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Heap right redzone: fb
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack partial redzone: f4
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
Left alloca redzone: ca
Right alloca redzone: cb
20951ABORTING


Related issues

Duplicated by darktable - Bug #11375: Just opened darktable and tried to open one formerly processed image in darkroom Duplicate 12/20/2016

Associated revisions

Revision bb5f8513
Added by Roman Lebedev over 2 years ago

Histogram params: default to 256 bins. Fixes #11376

Was broken by 4fa1eee7d342b70e1c886cc17baae01c26d348b4.

Revision fa933c9f
Added by Roman Lebedev over 2 years ago

Histogram params: default to 256 bins. Fixes #11376

Was broken by 4fa1eee7d342b70e1c886cc17baae01c26d348b4.

(cherry picked from commit bb5f8513c0e540211f88e35fc7b2af4a58838804)

History

#1 Updated by David Schaefer over 2 years ago

I can reproduce that by opening my image by double clicking on the film strip:

david@UX32VD ~/w/darktable.git> env LC_ALL=C ~/unstable/darktable/bin/darktable

(darktable:21306): Gtk-WARNING **: Allocating size to main_window 0x629000060370 without calling gtk_widget_get_preferred_width/height(). How does the code know the size to allocate? =================================================================
21306ERROR: AddressSanitizer: heap-buffer-overflow on address 0x61b0000673f8 at pc 0x7f8457865033 bp 0x7fffa89756e0 sp 0x7fffa8974e88
READ of size 533 at 0x61b0000673f8 thread T0
#0 0x7f8457865032 (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3d032)
#1 0x7f84571cceb5 in dt_image_is_raw /home/david/workspace/darktable.git/src/common/image.c:80
#2 0x7f842a643870 in commit_params /home/david/workspace/darktable.git/src/iop/rawprepare.c:548
#3 0x7f845726d529 in dt_iop_init_pipe /home/david/workspace/darktable.git/src/develop/imageop.c:483
#4 0x7f845729af35 in dt_dev_pixelpipe_create_nodes /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:233
#5 0x7f843ad4341f in dt_dev_change_image /home/david/workspace/darktable.git/src/views/darkroom.c:611
#6 0x7f843ad44417 in dt_dev_change_image /home/david/workspace/darktable.git/src/views/darkroom.c:727
#7 0x7f843ad44417 in film_strip_activated /home/david/workspace/darktable.git/src/views/darkroom.c:720
#8 0x7f843ad44417 in _view_darkroom_filmstrip_activate_callback /home/david/workspace/darktable.git/src/views/darkroom.c:734
#9 0x7f84542fef74 in g_closure_invoke (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0xff74)
#10 0x7f8454310f81 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x21f81)
#11 0x7f8454318d30 in g_signal_emitv (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x29d30)
#12 0x7f8457258378 in _signal_raise /home/david/workspace/darktable.git/src/control/signal.c:161
#13 0x7f8455e7e704 in g_main_context_invoke_full (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4b704)
#14 0x7f8457258dfc in dt_control_signal_raise /home/david/workspace/darktable.git/src/control/signal.c:243
#15 0x7f843c5e96c2 in _lib_filmstrip_button_press_callback /home/david/workspace/darktable.git/src/libs/tools/filmstrip.c:608
#16 0x7f845576ea1b (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x222a1b)
#17 0x7f84542fef74 in g_closure_invoke (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0xff74)
#18 0x7f8454310f81 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x21f81)
#19 0x7f845431966e in g_signal_emit_valist (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2a66e)
#20 0x7f8454319fae in g_signal_emit (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2afae)
#21 0x7f84558b14bb (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x3654bb)
#22 0x7f845576bc3d (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x21fc3d)
#23 0x7f845576dbc1 in gtk_main_do_event (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x221bc1)
#24 0x7f8455297b04 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x32b04)
#25 0x7f84552c4ad1 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x5fad1)
#26 0x7f8455e7d7d6 in g_main_context_dispatch (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4a7d6)
#27 0x7f8455e7da3f (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4aa3f)
#28 0x7f8455e7dd61 in g_main_loop_run (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4ad61)
#29 0x7f845576ccf4 in gtk_main (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x220cf4)
#30 0x7f84573657d4 in dt_gui_gtk_run /home/david/workspace/darktable.git/src/gui/gtk.c:981
#31 0x55bdf8335a0b in main /home/david/workspace/darktable.git/src/main.c:25
#32 0x7f8456a933f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)
#33 0x55bdf8335a59 in _start (/home/david/unstable/darktable/bin/darktable+0xa59)

0x61b0000673f8 is located 0 bytes to the right of 1656-byte region [0x61b000066d80,0x61b0000673f8)
allocated by thread T0 here:
#0 0x7f84578eeeb0 in __interceptor_malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc6eb0)
#1 0x7f845725c26b in dt_dev_init /home/david/workspace/darktable.git/src/develop/develop.c:95
#2 0x7f84573a4c84 in dt_view_load_module /home/david/workspace/darktable.git/src/views/view.c:197
#3 0x7f84573a506c in dt_view_manager_load_module /home/david/workspace/darktable.git/src/views/view.c:118
#4 0x7f84573a557a in dt_view_manager_init /home/david/workspace/darktable.git/src/views/view.c:83
#5 0x7f845718c465 in dt_init /home/david/workspace/darktable.git/src/common/darktable.c:895
#6 0x55bdf83359d5 in main /home/david/workspace/darktable.git/src/main.c:24
#7 0x7f8456a933f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)

SUMMARY: AddressSanitizer: heap-buffer-overflow (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x3d032)
Shadow bytes around the buggy address:
0x0c3680004e20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004e30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004e40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004e50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004e60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c3680004e70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00[fa]
0x0c3680004e80: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3680004e90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004ea0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004eb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3680004ec0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Heap right redzone: fb
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack partial redzone: f4
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
Left alloca redzone: ca
Right alloca redzone: cb
21306ABORTING

#2 Updated by David Schaefer over 2 years ago

Okay, the second one looks different for me but this one is exactly the same like the first one. Got it by opening the file in darkroom and trying to move the right slider of the levels module.

(darktable:21416): Gtk-WARNING **: Allocating size to main_window 0x629000060370 without calling gtk_widget_get_preferred_width/height(). How does the code know the size to allocate? =================================================================
21416ERROR: AddressSanitizer: heap-buffer-overflow on address 0x619002051180 at pc 0x7f8b69302994 bp 0x7ffcaa03cc00 sp 0x7ffcaa03cbf0
READ of size 4 at 0x619002051180 thread T0
#0 0x7f8b69302993 in dt_draw_histogram_8_log /home/david/workspace/darktable.git/src/gui/draw.h:239
#1 0x7f8b69302993 in dt_draw_histogram_8 /home/david/workspace/darktable.git/src/gui/draw.h:250
#2 0x7f8b69302993 in dt_iop_levels_area_draw /home/david/workspace/darktable.git/src/iop/levels.c:846
#3 0x7f8b97a94b10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x222b10)
#4 0x7f8b97bd4fae (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x362fae)
#5 0x7f8b966251a3 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x101a3)
#6 0x7f8b9663f390 in g_signal_emit_valist (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2a390)
#7 0x7f8b9663ffae in g_signal_emit (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2afae)
#8 0x7f8b97be1b69 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36fb69)
#9 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#10 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#11 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#12 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#13 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#14 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#15 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#16 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#17 0x7f8b97b36559 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2c4559)
#18 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#19 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#20 0x7f8b97b360f4 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2c40f4)
#21 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#22 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#23 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#24 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#25 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#26 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#27 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#28 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#29 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#30 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#31 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#32 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#33 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#34 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#35 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#36 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#37 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#38 0x7f8b97a1d65b (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1ab65b)
#39 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#40 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#41 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#42 0x7f8b97a48c87 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1d6c87)
#43 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#44 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#45 0x7f8b97a48b50 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1d6b50)
#46 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#47 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#48 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#49 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#50 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#51 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#52 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#53 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#54 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#55 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#56 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#57 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#58 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#59 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#60 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#61 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#62 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#63 0x7f8b97a1d65b (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1ab65b)
#64 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#65 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#66 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#67 0x7f8b97aec161 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x27a161)
#68 0x7f8b97bd29ef (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x3609ef)
#69 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#70 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#71 0x7f8b97bd371c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36171c)
#72 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#73 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#74 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#75 0x7f8b97b188aa (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2a68aa)
#76 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#77 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#78 0x7f8b97b16df0 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x2a4df0)
#79 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#80 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#81 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#82 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#83 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#84 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#85 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#86 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#87 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#88 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#89 0x7f8b97a51633 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1df633)
#90 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#91 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#92 0x7f8b97a52640 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1e0640)
#93 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#94 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#95 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#96 0x7f8b97989173 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x117173)
#97 0x7f8b979d955c (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16755c)
#98 0x7f8b979de1bf (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x16c1bf)
#99 0x7f8b9798bb10 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x119b10)
#100 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#101 0x7f8b979d44af in gtk_container_propagate_draw (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x1624af)
#102 0x7f8b979d4591 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x162591)
#103 0x7f8b97bef710 (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x37d710)
#104 0x7f8b97be198a (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36f98a)
#105 0x7f8b97be1e68 in gtk_widget_send_expose (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x36fe68)
#106 0x7f8b97a93b84 in gtk_main_do_event (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x221b84)
#107 0x7f8b975bdb04 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x32b04)
#108 0x7f8b975cc7f7 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x417f7)
#109 0x7f8b975cd94b (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x4294b)
#110 0x7f8b975cdb02 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x42b02)
#111 0x7f8b96624f74 in g_closure_invoke (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0xff74)
#112 0x7f8b96636f81 (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x21f81)
#113 0x7f8b9663fbcb in g_signal_emit_valist (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2abcb)
#114 0x7f8b9663ffae in g_signal_emit (/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0+0x2afae)
#115 0x7f8b975c5a90 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x3aa90)
#116 0x7f8b975b3e67 (/usr/lib/x86_64-linux-gnu/libgdk-3.so.0+0x28e67)
#117 0x7f8b981a4102 (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4b102)
#118 0x7f8b981a3689 in g_main_context_dispatch (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4a689)
#119 0x7f8b981a3a3f (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4aa3f)
#120 0x7f8b981a3d61 in g_main_loop_run (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4ad61)
#121 0x7f8b97a92cf4 in gtk_main (/usr/lib/x86_64-linux-gnu/libgtk-3.so.0+0x220cf4)
#122 0x7f8b9968b7d4 in dt_gui_gtk_run /home/david/workspace/darktable.git/src/gui/gtk.c:981
#123 0x55e9acfd0a0b in main /home/david/workspace/darktable.git/src/main.c:25
#124 0x7f8b98db93f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)
#125 0x55e9acfd0a59 in _start (/home/david/unstable/darktable/bin/darktable+0xa59)

0x619002051180 is located 0 bytes to the right of 1024-byte region [0x619002050d80,0x619002051180)
allocated by thread T7 here:
#0 0x7f8b99c15260 in __interceptor_realloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc7260)
#1 0x7f8b995bb16e in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:1495
#2 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#3 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#4 0x7f8b995b6599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#5 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#6 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#7 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#8 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#9 0x7f8b995b6599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#10 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#11 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#12 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#13 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#14 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#15 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#16 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#17 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#18 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#19 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#20 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#21 0x7f8b995b570c in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:582
#22 0x7f8b995b6599 in dt_dev_pixelpipe_process_rec /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:701
#23 0x7f8b995c2532 in dt_dev_pixelpipe_process_rec_and_backcopy /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:2187
#24 0x7f8b995c2532 in dt_dev_pixelpipe_process /home/david/workspace/darktable.git/src/develop/pixelpipe_hb.c:2273
#25 0x7f8b9958ae8e in dt_dev_process_preview_job /home/david/workspace/darktable.git/src/develop/develop.c:262
#26 0x7f8b9957bd90 in dt_dev_process_preview_job_run /home/david/workspace/darktable.git/src/control/jobs/develop_jobs.c:25
#27 0x7f8b9956f7d8 in dt_control_run_job_res /home/david/workspace/darktable.git/src/control/jobs.c:213
#28 0x7f8b9956f7d8 in dt_control_work_res /home/david/workspace/darktable.git/src/control/jobs.c:514
#29 0x7f8b991676c9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76c9)

Thread T7 created by T0 here:
#0 0x7f8b99b7f4e8 in __interceptor_pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.3+0x314e8)
#1 0x7f8b994bf29d in dt_pthread_create /home/david/workspace/darktable.git/src/common/dtpthread.c:63
#2 0x7f8b995674ed in dt_control_init /home/david/workspace/darktable.git/src/control/control.c:119
#3 0x7f8b994b241d in dt_init /home/david/workspace/darktable.git/src/common/darktable.c:827
#4 0x55e9acfd09d5 in main /home/david/workspace/darktable.git/src/main.c:24
#5 0x7f8b98db93f0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x203f0)

SUMMARY: AddressSanitizer: heap-buffer-overflow /home/david/workspace/darktable.git/src/gui/draw.h:239 in dt_draw_histogram_8_log
Shadow bytes around the buggy address:
0x0c32804021e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c32804021f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3280402200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3280402210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x0c3280402220: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x0c3280402230:[fa]fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3280402240: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3280402250: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3280402260: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3280402270: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x0c3280402280: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Heap right redzone: fb
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack partial redzone: f4
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
Left alloca redzone: ca
Right alloca redzone: cb
21416ABORTING

#3 Updated by Pascal Obry over 2 years ago

Cannot reproduce! All your reports are really strange, I doubt you'll have been the first one to find those issues. So let's go back to your configuration.

Are you using OpenCL? If so, do you have the same issue if you disable it.

Also, it may be a memory issue. Have you checked your RAM? I'm asking because you've reported many crash recently...

#4 Updated by Roman Lebedev over 2 years ago

I have seen similar reports before, there is something racy in the pipe.

#5 Updated by David Schaefer over 2 years ago

regarding OpenCL. Seems my Zenbook UX32VD is not configured to use OpenCL. In the dt configuration this is turned on. Does it render problems?

/darktable-cltest
[opencl_init] opencl related configuration options:
[opencl_init]
[opencl_init] opencl: 1
[opencl_init] opencl_library: ''
[opencl_init] opencl_memory_requirement: 768
[opencl_init] opencl_memory_headroom: 300
[opencl_init] opencl_device_priority: '*/!0,*/*/*'
[opencl_init] opencl_size_roundup: 16
[opencl_init] opencl_async_pixelpipe: 0
[opencl_init] opencl_synch_cache: 0
[opencl_init] opencl_number_event_handles: 25
[opencl_init] opencl_micro_nap: 1000
[opencl_init] opencl_use_pinned_memory: 0
[opencl_init] opencl_use_cpu_devices: 0
[opencl_init] opencl_avoid_atomics: 0
[opencl_init] opencl_enable_markesteijn: 1
[opencl_init]
[opencl_init] could not find opencl runtime library 'libOpenCL'
[opencl_init] could not find opencl runtime library 'libOpenCL.so'
[opencl_init] found opencl runtime library 'libOpenCL.so.1'
[opencl_init] opencl library 'libOpenCL.so.1' found on your system and loaded
[opencl_init] could not get platforms: -1001
[opencl_init] FINALLY: opencl is NOT AVAILABLE on this system.
[opencl_init] initial status of opencl enabled flag is OFF.

=================================================================
3318ERROR: LeakSanitizer: detected memory leaks

Direct leak of 64 byte(s) in 1 object(s) allocated from:
#0 0x7f498601d260 in __interceptor_realloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc7260)
#1 0x7f49845b0ea7 in g_realloc (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x4fea7)

Indirect leak of 4518992 byte(s) in 435 object(s) allocated from:
#0 0x7f498601ceb0 in __interceptor_malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc6eb0)
#1 0x7f4981576f76 (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x48f76)

Indirect leak of 13880 byte(s) in 235 object(s) allocated from:
#0 0x7f498601ceb0 in __interceptor_malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc6eb0)
#1 0x7f4981576f76 (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x48f76)

Indirect leak of 8208 byte(s) in 2 object(s) allocated from:
#0 0x7f498601ceb0 in __interceptor_malloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc6eb0)
#1 0x7f4981576f76 (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x48f76)
#2 0x7f4981604c8b (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0xd6c8b)

Indirect leak of 5640 byte(s) in 11 object(s) allocated from:
#0 0x7f498601d260 in __interceptor_realloc (/usr/lib/x86_64-linux-gnu/libasan.so.3+0xc7260)
#1 0x7f4981576f18 (/usr/lib/x86_64-linux-gnu/libsqlite3.so.0+0x48f18)

SUMMARY: AddressSanitizer: 4546784 byte(s) leaked in 684 allocation(s).

How do you want me to check the memory?

#6 Updated by Pascal Obry over 2 years ago

No, you don't have OpenCL activated so the only code path used by dt is the CPU one.

For the memory I was thinking about the check on the BIOS. But if you have only issues with dt that's not necessary, is that the case?

#7 Updated by Roman Lebedev over 2 years ago

  • Duplicated by Bug #11375: Just opened darktable and tried to open one formerly processed image in darkroom added

#8 Updated by Roman Lebedev over 2 years ago

  • Status changed from New to Fixed
  • % Done changed from 0 to 100

#9 Updated by Roman Lebedev over 2 years ago

  • Target version set to 2.4.0

Also available in: Atom PDF