Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: P1: Critical
Fix Version/s: 6.2.0 Beta1
Affects Version/s: 6.2.0
Component/s: QML: Declarative and Javascript Engine
Labels:
- qmlnext
Environment:
Ubuntu 20.04 LTS
clang 10.0.0

Commits:
aa7a10ce8b062bad4df40afc63d2fea34744a2fb b42953cc207af942f3f2e9948fb83e605fdde000

Configure Qt with "-sanitize undefined".
Build Qt.

Build the attached project using this build of Qt:

#include <QCoreApplication>
#include <QJSEngine>

int main(int argc, char *argv[]) {
    QCoreApplication a(argc, argv);
    QJSEngine().evaluate("function a(){a(a&a+a)}a()");
    return 0;
}

Run the resulting program.
You will see output like:

qtbase/include/QtQml/../../../../../src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/common/qjsnumbercoercion.h:52:34: runtime error: nan is outside the range of representable values of type 'int'
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior qtbase/include/QtQml/../../../../../src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/common/qjsnumbercoercion.h:52:34 in 
/home/qtrob/dev/src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/jit/qv4baselineassembler.cpp:310:13: runtime error: load of value 4294967295, which is not a valid value for type 'JSC::MacroAssembler<JSC::MacroAssemblerX86_64>::RegisterID' (aka 'JSC::X86Registers::RegisterID')
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior /home/qtrob/dev/src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/jit/qv4baselineassembler.cpp:310:13 in 
qtbase/include/QtQml/../../../../../src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/common/qjsnumbercoercion.h:52:34: runtime error: nan is outside the range of representable values of type 'int'
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior qtbase/include/QtQml/../../../../../src/qt-dev-base_declarative_svg-05.20/qtdeclarative/src/qml/common/qjsnumbercoercion.h:52:34 in