Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-74743

Crash triggered by QQuickWindowPrivate::deliverPressOrReleaseEvent

    XMLWordPrintable

Details

    • Linux/Wayland
    • 042f2b67739439c020451843d887d131d5f9cbdc

    Description

      We faced a problem that leads to application crash while performing some touch operations on touchscreen (e.g. sliding screen left to right).

      The problem is caused by unsafe memory access in QQuickWindowPrivate while it is handling touchEvent.

      I made some analysis according to stack trace and found following lines (https://github.com/qt/qtdeclarative/blob/5.12.1/src/quick/items/qquickwindow.cpp line 2530): 

      if (isTouchEvent && event->isPressEvent() && isDeliveringTouchAsMouse() && pointerEventInstance(touchMouseDevice)->pointById(touchMouseId)->grabberPointerHandler()) {

       It seems like after calling pointById(touchMouseId) we are receiving nullptr and after that app crashed in call of grabberPointerHandler() with this=nullptr instance object.

      It's hard for us to add simple example for it (seems like that nullptr access problem is very rare) but I pointed the place with unsafe memory access.

      I also attached gdb stack trace output.

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. QTBUG-74008 Every 2-finger touchevent raises application crash

          • P1: Critical - Urgent and Important, will STOP the release if matched with set FixVersion field. This includes regressions from the last version that are not edge cases; Data loss; Build issues; All but the most unlikely crashes/lockups/hanging; Serious usability issues and embarrassing bugs & Bugs critical to a deliverable. This is the highest possible priority for requirements.
          • Closed
          resulted from

          User Story - Created by Jira Software - do not edit or delete. Issue type for a user story. QT3DS-3308 Support customer project X

          • P1: Critical - Urgent and Important, will STOP the release if matched with set FixVersion field. This includes regressions from the last version that are not edge cases; Data loss; Build issues; All but the most unlikely crashes/lockups/hanging; Serious usability issues and embarrassing bugs & Bugs critical to a deliverable. This is the highest possible priority for requirements.
          • In Progress
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              srutledg Shawn Rutledge
              nkrasnoyarov NIKITA KRASNOYAROV
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes