Uploaded image for project: 'Qt Creator'
  1. Qt Creator
  2. QTCREATORBUG-32381

Help: AddressSanitizer: heap-use-after-free

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • P2: Important
    • None
    • Qt Creator 16.0.0-beta1
    • Help System
    • None
    • macOS

    Description

      I've pressed F1 on a QStringList and Qt Creator was terminated by address sanitizer:

      =================================================================
==47850==ERROR: AddressSanitizer: heap-use-after-free on address 0x00032acf1100 at pc 0x000102605d0c bp 0x00016fbc3bf0 sp 0x00016fbc33b0
READ of size 2 at 0x00032acf1100 thread T0
    #0 0x102605d08 in wrap_strlen+0x264 (libclang_rt.asan_osx_dynamic.dylib:arm64e+0x15d08)
    #1 0x140962338 in std::__1::__constexpr_strlen[abi:v160006](char const*) cstring:114
    #2 0x140962238 in std::__1::char_traits<char>::length(char const*) char_traits.h:220
    #3 0x1409621bc in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char>>::basic_string[abi:v160006]<std::nullptr_t>(char const*) string:882
    #4 0x14094e47c in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char>>::basic_string[abi:v160006]<std::nullptr_t>(char const*) string:880
    #5 0x14094df30 in DocumentContainerPrivate::draw_list_marker(unsigned long, litehtml::list_marker const&) container_qpainter.cpp:576
    #6 0x14099e340 in litehtml::html_tag::draw_list_marker(unsigned long, litehtml::position const&) html_tag.cpp:1320
    #7 0x14099de08 in litehtml::html_tag::draw(unsigned long, int, int, litehtml::position const*, std::__1::shared_ptr<litehtml::render_item> const&) html_tag.cpp:319
    #8 0x1409c331c in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp:636
    #9 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #10 0x1409c2ea0 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:557
    #11 0x1409c34d4 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp
    #12 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #13 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #14 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #15 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #16 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #17 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #18 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #19 0x1409c2ec8 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:558
    #20 0x140953b7c in DocumentContainer::draw(QPainter*, QRect const&) container_qpainter.cpp:989
    #21 0x140976100 in QLiteHtmlWidget::paintEvent(QPaintEvent*) qlitehtmlwidget.cpp:613
    #22 0x101e9f830 in QWidget::event(QEvent*) qwidget.cpp
    #23 0x101f26684 in QFrame::event(QEvent*) qframe.cpp:521
    #24 0x1031dff20 in QCoreApplicationPrivate::sendThroughObjectEventFilters(QObject*, QEvent*) qcoreapplication.cpp:1307
    #25 0x101e4f09c in QApplicationPrivate::notify_helper(QObject*, QEvent*) qapplication.cpp:3290
    #26 0x101e50b3c in QApplication::notify(QObject*, QEvent*) qapplication.cpp
    #27 0x1031dfbd8 in QCoreApplication::notifyInternal2(QObject*, QEvent*) qcoreapplication.cpp:1168
    #28 0x101e8f9c0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5608
    #29 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #30 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #31 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #32 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #33 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #34 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #35 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #36 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #37 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #38 0x101e97dc4 in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5773
    #39 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #40 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #41 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #42 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #43 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #44 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #45 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #46 0x101eb2b60 in QWidgetRepaintManager::paintAndFlush() qwidgetrepaintmanager.cpp:907
    #47 0x101eb0f98 in QWidgetRepaintManager::sync(QWidget*, QRegion const&) qwidgetrepaintmanager.cpp:632
    #48 0x101eb8ba0 in QWidgetWindow::handleExposeEvent(QExposeEvent*) qwidgetwindow.cpp:1067
    #49 0x101eb65cc in QWidgetWindow::event(QEvent*) qwidgetwindow.cpp:346
    #50 0x101e4f0bc in QApplicationPrivate::notify_helper(QObject*, QEvent*) qapplication.cpp:3296
    #51 0x101e50078 in QApplication::notify(QObject*, QEvent*) qapplication.cpp:3247
    #52 0x1031dfbd8 in QCoreApplication::notifyInternal2(QObject*, QEvent*) qcoreapplication.cpp:1168
    #53 0x101259430 in QGuiApplicationPrivate::processExposeEvent(QWindowSystemInterfacePrivate::ExposeEvent*) qguiapplication.cpp:3464
    #54 0x1012bef90 in bool QWindowSystemHelper<QWindowSystemInterface::SynchronousDelivery>::handleEvent<QWindowSystemInterfacePrivate::ExposeEvent, QWindow*, QRegion>(QWindow*, QRegion) qwindowsysteminterface.cpp:105
    #55 0x1012ba5a0 in bool QWindowSystemInterface::handleExposeEvent<QWindowSystemInterface::SynchronousDelivery>(QWindow*, QRegion const&) qwindowsysteminterface.cpp:337
    #56 0x101d469fc in QCocoaWindow::handleExposeEvent(QRegion const&) qcocoawindow.mm:1544
    #57 0x101d5d1c4 in -[QNSView(Drawing) displayLayer:]::$_3::operator()() const qnsview_drawing.mm:239
    #58 0x101d5ce2c in -[QNSView(Drawing) displayLayer:] qnsview_drawing.mm:278
    #59 0x1a47b0630 in -[CALayer display]+0xcc (QuartzCore:arm64e+0x20630)
    #60 0x1a0448f04 in -[NSViewBackingLayer display]+0x29c (AppKit:arm64e+0x687f04)
    #61 0x1a47afe3c in CA::Layer::display_if_needed(CA::Transaction*)+0x2e4 (QuartzCore:arm64e+0x1fe3c)
    #62 0x1a4934cd4 in CA::Context::commit_transaction(CA::Transaction*, double, double*)+0x1fc (QuartzCore:arm64e+0x1a4cd4)
    #63 0x1a4792860 in CA::Transaction::commit()+0x284 (QuartzCore:arm64e+0x2860)
    #64 0x19ff23ac4 in __62+[CATransaction(NSCATransaction) NS_setFlushesWithDisplayLink]_block_invoke+0x10c (AppKit:arm64e+0x162ac4)
    #65 0x1a08e44e0 in ___NSRunLoopObserverCreateWithHandler_block_invoke+0x3c (AppKit:arm64e+0xb234e0)
    #66 0x19c59c858 in __CFRUNLOOP_IS_CALLING_OUT_TO_AN_OBSERVER_CALLBACK_FUNCTION__+0x20 (CoreFoundation:arm64e+0x7d858)
    #67 0x19c59c744 in __CFRunLoopDoObservers+0x214 (CoreFoundation:arm64e+0x7d744)
    #68 0x19c59bd70 in __CFRunLoopRun+0x304 (CoreFoundation:arm64e+0x7cd70)
    #69 0x19c59b410 in CFRunLoopRunSpecific+0x25c (CoreFoundation:arm64e+0x7c410)
    #70 0x1a6d46198 in RunCurrentEventLoopInMode+0x120 (HIToolbox:arm64e+0x33198)
    #71 0x1a6d45fd4 in ReceiveNextEventCommon+0x284 (HIToolbox:arm64e+0x32fd4)
    #72 0x1a6d45d2c in _BlockUntilNextEventMatchingListInModeWithFilter+0x48 (HIToolbox:arm64e+0x32d2c)
    #73 0x19fdfacc4 in _DPSNextEvent+0x290 (AppKit:arm64e+0x39cc4)
    #74 0x1a05f14cc in -[NSApplication(NSEventRouting) _nextEventMatchingEventMask:untilDate:inMode:dequeue:]+0x2b8 (AppKit:arm64e+0x8304cc)
    #75 0x19fdedff8 in -[NSApplication run]+0x1d8 (AppKit:arm64e+0x2cff8)
    #76 0x101d17d44 in QCocoaEventDispatcher::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) qcocoaeventdispatcher.mm:407
    #77 0x1031ead38 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) qeventloop.cpp:194
    #78 0x1031e03fc in QCoreApplication::exec() qcoreapplication.cpp:1513
    #79 0x10024dfd8 in main main.cpp:970
    #80 0x19c133150 in start+0x9a8 (dyld:arm64e+0xfffffffffff4d150)

0x00032acf1100 is located 0 bytes inside of 64-byte region [0x00032acf1100,0x00032acf1140)
freed by thread T0 here:
    #0 0x10265152c in wrap__ZdlPv+0x74 (libclang_rt.asan_osx_dynamic.dylib:arm64e+0x6152c)
    #1 0x14099dfa4 in litehtml::html_tag::draw_list_marker(unsigned long, litehtml::position const&) html_tag.cpp:1234
    #2 0x14099de08 in litehtml::html_tag::draw(unsigned long, int, int, litehtml::position const*, std::__1::shared_ptr<litehtml::render_item> const&) html_tag.cpp:319
    #3 0x1409c331c in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp:636
    #4 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #5 0x1409c2ea0 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:557
    #6 0x1409c34d4 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp
    #7 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #8 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #9 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #10 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #11 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #12 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #13 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #14 0x1409c2ec8 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:558
    #15 0x140953b7c in DocumentContainer::draw(QPainter*, QRect const&) container_qpainter.cpp:989
    #16 0x140976100 in QLiteHtmlWidget::paintEvent(QPaintEvent*) qlitehtmlwidget.cpp:613
    #17 0x101e9f830 in QWidget::event(QEvent*) qwidget.cpp
    #18 0x101f26684 in QFrame::event(QEvent*) qframe.cpp:521
    #19 0x1031dff20 in QCoreApplicationPrivate::sendThroughObjectEventFilters(QObject*, QEvent*) qcoreapplication.cpp:1307
    #20 0x101e4f09c in QApplicationPrivate::notify_helper(QObject*, QEvent*) qapplication.cpp:3290
    #21 0x101e50b3c in QApplication::notify(QObject*, QEvent*) qapplication.cpp
    #22 0x1031dfbd8 in QCoreApplication::notifyInternal2(QObject*, QEvent*) qcoreapplication.cpp:1168
    #23 0x101e8f9c0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5608
    #24 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #25 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #26 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #27 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #28 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #29 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649

previously allocated by thread T0 here:
    #0 0x1026510ec in wrap__Znwm+0x74 (libclang_rt.asan_osx_dynamic.dylib:arm64e+0x610ec)
    #1 0x19c3e6528 in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char>>::__init_copy_ctor_external(char const*, unsigned long)+0x48 (libc++.1.dylib:arm64e+0x13528)
    #2 0x19c3ee104 in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char>>::basic_string(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char>> const&)+0x3c (libc++.1.dylib:arm64e+0x1b104)
    #3 0x14099df68 in litehtml::html_tag::draw_list_marker(unsigned long, litehtml::position const&) html_tag.cpp:1234
    #4 0x14099de08 in litehtml::html_tag::draw(unsigned long, int, int, litehtml::position const*, std::__1::shared_ptr<litehtml::render_item> const&) html_tag.cpp:319
    #5 0x1409c331c in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp:636
    #6 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #7 0x1409c2ea0 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:557
    #8 0x1409c34d4 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) render_item.cpp
    #9 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #10 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #11 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #12 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #13 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #14 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #15 0x1409c3428 in litehtml::render_item::draw_children(unsigned long, int, int, litehtml::position const*, litehtml::draw_flag, int) css_length.h
    #16 0x1409c2ec8 in litehtml::render_item::draw_stacking_context(unsigned long, int, int, litehtml::position const*, bool) render_item.cpp:558
    #17 0x140953b7c in DocumentContainer::draw(QPainter*, QRect const&) container_qpainter.cpp:989
    #18 0x140976100 in QLiteHtmlWidget::paintEvent(QPaintEvent*) qlitehtmlwidget.cpp:613
    #19 0x101e9f830 in QWidget::event(QEvent*) qwidget.cpp
    #20 0x101f26684 in QFrame::event(QEvent*) qframe.cpp:521
    #21 0x1031dff20 in QCoreApplicationPrivate::sendThroughObjectEventFilters(QObject*, QEvent*) qcoreapplication.cpp:1307
    #22 0x101e4f09c in QApplicationPrivate::notify_helper(QObject*, QEvent*) qapplication.cpp:3290
    #23 0x101e50b3c in QApplication::notify(QObject*, QEvent*) qapplication.cpp
    #24 0x1031dfbd8 in QCoreApplication::notifyInternal2(QObject*, QEvent*) qcoreapplication.cpp:1168
    #25 0x101e8f9c0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5608
    #26 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #27 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649
    #28 0x101e97edc in QWidgetPrivate::paintSiblingsRecursive(QPaintDevice*, QList<QObject*> const&, int, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5787
    #29 0x101e8fbd0 in QWidgetPrivate::drawWidget(QPaintDevice*, QRegion const&, QPoint const&, QFlags<QWidgetPrivate::DrawWidgetFlag>, QPainter*, QWidgetRepaintManager*) qwidget.cpp:5649

SUMMARY: AddressSanitizer: heap-use-after-free (libclang_rt.asan_osx_dynamic.dylib:arm64e+0x15d08) in wrap_strlen+0x264
Shadow bytes around the buggy address:
  0x00032acf0e80: fd fd fd fd fa fa fa fa fa fa fa fa fa fa fa fa
  0x00032acf0f00: fa fa fa fa fd fd fd fd fd fd fd fd fa fa fa fa
  0x00032acf0f80: fa fa fa fa fa fa fa fa fa fa fa fa fd fd fd fd
  0x00032acf1000: fd fd fd fd fa fa fa fa fd fd fd fd fd fd fd fd
  0x00032acf1080: fa fa fa fa 00 00 00 00 00 00 00 00 fa fa fa fa
=>0x00032acf1100:[fd]fd fd fd fd fd fd fd fa fa fa fa fa fa fa fa
  0x00032acf1180: fa fa fa fa fa fa fa fa 00 00 00 00 00 00 00 00
  0x00032acf1200: fa fa fa fa fd fd fd fd fd fd fd fd fa fa fa fa
  0x00032acf1280: fd fd fd fd fd fd fd fd fa fa fa fa fd fd fd fd
  0x00032acf1300: fd fd fd fd fa fa fa fa fa fa fa fa fa fa fa fa
  0x00032acf1380: fa fa fa fa fd fd fd fd fd fd fd fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==47850==ABORTING

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            jkobus Jarek Kobus
            cadam Cristian Adam
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes