Bug #2144
Updated by skyjake over 8 years ago
*Version 1.15.6* h2. Version 1.15.6
* Game: doom1-ultimate
* No additional resources loaded
Start up a game to E1M1, type "reset" in console:
<pre>Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: EXC_I386_GPFLT
Exception Note: EXC_CORPSE_NOTIFY
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 libdeng_core.2.0.0.dylib 0x000000010785b550 de::Record::operator[](de::String const&) const + 16
1 libdeng_core.2.0.0.dylib 0x0000000107861e54 de::RecordAccessor::gets(de::String const&) const + 20
2 net.dengine.doomsday 0x0000000106d862b5 MapDef::composeUri() const + 69
3 net.dengine.doomsday 0x0000000106fd002e de::Map::mapInfo() const + 46
4 net.dengine.doomsday 0x0000000106d964fe GL_TotalRestore() + 78
5 net.dengine.doomsday 0x0000000106d6310e DD_UpdateEngineState() + 286
6 net.dengine.doomsday 0x0000000106d666f9 CCmdReset + 9
7 libdeng_doomsday.1.15.5.dylib 0x00000001084a97e6 Con_CheckExecBuffer() + 2406
8 libdeng_doomsday.1.15.5.dylib 0x00000001084aa6fb Con_Execute + 43</pre>
*Unstable h2. Unstable 2.0 build 1819 (OS X with Address Sanitizer)* Sanitizer)
<pre>ERROR: AddressSanitizer: heap-use-after-free on address 0x6070007a4f40 at pc 0x000105fc8e3a bp 0x7fff5fbf7360 sp 0x7fff5fbf7358
READ of size 8 at 0x6070007a4f40 thread T0
#0 0x105fc8e39 in de::RecordAccessor::accessedRecord() const recordaccessor.cpp:33
#1 0x105fc8f88 in de::RecordAccessor::get(de::String const&) const recordaccessor.cpp:49
#2 0x105fc943a in de::RecordAccessor::gets(de::String const&) const recordaccessor.cpp:109
#3 0x100207809 in res::MapManifest::composeUri() const mapmanifest.h:54
#4 0x100c60d68 in de::Map::mapInfo() const map.cpp:1546
#5 0x100221338 in GL_TotalRestore() gl_main.cpp:638
#6 0x10016cd27 in DD_UpdateEngineState() dd_main.cpp:2253
</pre>
"heap-use-after-free" would suggest that some deleted object is being accessed after the reset.
* Game: doom1-ultimate
* No additional resources loaded
Start up a game to E1M1, type "reset" in console:
<pre>Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: EXC_I386_GPFLT
Exception Note: EXC_CORPSE_NOTIFY
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 libdeng_core.2.0.0.dylib 0x000000010785b550 de::Record::operator[](de::String const&) const + 16
1 libdeng_core.2.0.0.dylib 0x0000000107861e54 de::RecordAccessor::gets(de::String const&) const + 20
2 net.dengine.doomsday 0x0000000106d862b5 MapDef::composeUri() const + 69
3 net.dengine.doomsday 0x0000000106fd002e de::Map::mapInfo() const + 46
4 net.dengine.doomsday 0x0000000106d964fe GL_TotalRestore() + 78
5 net.dengine.doomsday 0x0000000106d6310e DD_UpdateEngineState() + 286
6 net.dengine.doomsday 0x0000000106d666f9 CCmdReset + 9
7 libdeng_doomsday.1.15.5.dylib 0x00000001084a97e6 Con_CheckExecBuffer() + 2406
8 libdeng_doomsday.1.15.5.dylib 0x00000001084aa6fb Con_Execute + 43</pre>
*Unstable h2. Unstable 2.0 build 1819 (OS X with Address Sanitizer)* Sanitizer)
<pre>ERROR: AddressSanitizer: heap-use-after-free on address 0x6070007a4f40 at pc 0x000105fc8e3a bp 0x7fff5fbf7360 sp 0x7fff5fbf7358
READ of size 8 at 0x6070007a4f40 thread T0
#0 0x105fc8e39 in de::RecordAccessor::accessedRecord() const recordaccessor.cpp:33
#1 0x105fc8f88 in de::RecordAccessor::get(de::String const&) const recordaccessor.cpp:49
#2 0x105fc943a in de::RecordAccessor::gets(de::String const&) const recordaccessor.cpp:109
#3 0x100207809 in res::MapManifest::composeUri() const mapmanifest.h:54
#4 0x100c60d68 in de::Map::mapInfo() const map.cpp:1546
#5 0x100221338 in GL_TotalRestore() gl_main.cpp:638
#6 0x10016cd27 in DD_UpdateEngineState() dd_main.cpp:2253
</pre>
"heap-use-after-free" would suggest that some deleted object is being accessed after the reset.