qt4: zoom context menu crash when feeding it an invalid vout pointer variable in subcontext menu
when vout change old zoom becomes invalid but you still can click it
Program received signal SIGSEGV, Segmentation fault.
[Switching to thread 4552.0xacc]
0x6d7839a6 in Control (p_vout=0x128d17dc, i_query=1, args=0x1006b74c "Ð\002")
at events.c:1061
in events.c
(gdb) Error: dll starting at 0x771d0000 not found.
Error: dll starting at 0x75700000 not found.
Error: dll starting at 0x771d0000 not found.
Error: dll starting at 0x77100000 not found.
1061 events.c: No such file or directory.
bt
[#0](https://code.videolan.org/videolan/vlc/-/issues/0) 0x6d7839a6 in Control (p_vout=0x128d17dc, i_query=1,
args=0x1006b74c "Ð\002") at events.c:1061
[#1](https://code.videolan.org/videolan/vlc/-/issues/1) 0x6a5720ee in vout_Control (p_vout=0x128d17dc, i_query=1)
at ../include/vlc_vout.h:681
[#2](https://code.videolan.org/videolan/vlc/-/issues/2) 0x6a573c2b in ZoomCallback (p_this=0x128d17dc, psz_cmd=0x128b6f90 "zoom",
oldval=
{i_int = 1073741824, b_bool = false, f_float = 2, psz_string = 0x40000000 <Address 0x40000000 out of bounds>, p_address = 0x40000000, p_object = 0x40000000, p_list = 0x40000000, i_time = 1335955076052680704, var = {psz_name = 0x40000000 <Address 0x40000000 out of bounds>, i_object_id = 311051280}, padding = {a = 0 '\0', b = 0 '\0', c = 0 '\0', d = 64 '@', e = 16 '\020', f = 68 'D', g = -118 '\212', h = 18 '\022'}}, newval=
{i_int = 1065353216, b_bool = false, f_float = 1, psz_string = 0x3f800000 <Address 0x3f800000 out of bounds>, p_address = 0x3f800000, p_object = 0x3f800000, p_list = 0x3f800000, i_time = 1335955076044292096, var = {psz_name = 0x3f800000 <Address 0x3f800000 out of bounds>, i_object_id = 311051280}, padding = {a = 0 '\0', b = 0 '\0', c = -128 '\200', d = 63 '?', e = 16 '\020', f = 68 'D', g = -118 '\212', h = 18 '\022'}}, p_data=0x0)
at video_output/vout_intf.c:1003
[#3](https://code.videolan.org/videolan/vlc/-/issues/3) 0x6a58f3e1 in var_SetChecked (p_this=0x128d17dc,
psz_name=0x128b6f90 "zoom", expected_type=0, val=
{i_int = 1065353216, b_bool = false, f_float = 1, psz_string = 0x3f800000 <Address 0x3f800000 out of bounds>, p_address = 0x3f800000, p_object = 0x3f800000, p_list = 0x3f800000, i_time = 1335955076044292096, var = {psz_name = 0x3f800000 <Address 0x3f800000 out of bounds>, i_object_id = 311051280}, padding = {a = 0 '\0', b = 0 '\0', c = -128 '\200', d = 63 '?', e = 16 '\020', f = 68 'D', g = -118 '\212', h = 18 '\022'}}) at misc/variables.c:749
[#4](https://code.videolan.org/videolan/vlc/-/issues/4) 0x6a58f46e in __var_Set (p_this=0x128d17dc, psz_name=0x128b6f90 "zoom",
val=
{i_int = 1065353216, b_bool = false, f_float = 1, psz_string = 0x3f800000 <Address 0x3f800000 out of bounds>, p_address = 0x3f800000, p_object = 0x3f800000, p_list = 0x3f800000, i_time = 1335955076044292096, var = {psz_name = 0x3f800000 <Address 0x3f800000 out of bounds>, i_object_id = 311051280}, padding = {a = 0 '\0', b = 0 '\0', c = -128 '\200', d = 63 '?', e = 16 '\020', f = 68 'D', g = -118 '\212', h = 18 '\022'}}) at misc/variables.c:786
[#5](https://code.videolan.org/videolan/vlc/-/issues/5) 0x08f076d2 in QVLCMenu::DoAction (data=0x12807348) at menus.cpp:1307
[#6](https://code.videolan.org/videolan/vlc/-/issues/6) 0x08feac62 in DialogsProvider::qt_metacall (this=0xd2d5730,
_c=InvokeMetaMethod, _id=40, _a=0x1006b8e0)
at dialogs_provider.moc.cpp:171
[#7](https://code.videolan.org/videolan/vlc/-/issues/7) 0x094ee6c7 in QMetaObject::activate ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#8](https://code.videolan.org/videolan/vlc/-/issues/8) 0x09523dd7 in QSignalMapper::mapped ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#9](https://code.videolan.org/videolan/vlc/-/issues/9) 0x09523fc2 in QSignalMapper::map ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#10](https://code.videolan.org/videolan/vlc/-/issues/10) 0x095240be in QSignalMapper::map ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#11](https://code.videolan.org/videolan/vlc/-/issues/11) 0x095246f6 in QSignalMapper::qt_metacall ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#12](https://code.videolan.org/videolan/vlc/-/issues/12) 0x094ee6c7 in QMetaObject::activate ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#13](https://code.videolan.org/videolan/vlc/-/issues/13) 0x090447d6 in QAction::triggered ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#14](https://code.videolan.org/videolan/vlc/-/issues/14) 0x09044b6e in QAction::activate ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#15](https://code.videolan.org/videolan/vlc/-/issues/15) 0x0903fcca in QMenuPrivate::activateAction ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#16](https://code.videolan.org/videolan/vlc/-/issues/16) 0x09042fc0 in QMenu::mouseReleaseEvent ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#17](https://code.videolan.org/videolan/vlc/-/issues/17) 0x09058bba in QWidget::event ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#18](https://code.videolan.org/videolan/vlc/-/issues/18) 0x0903d55c in QMenu::event ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#19](https://code.videolan.org/videolan/vlc/-/issues/19) 0x09028d6c in QApplicationPrivate::notify_helper ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#20](https://code.videolan.org/videolan/vlc/-/issues/20) 0x0902972c in QApplication::notify ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#21](https://code.videolan.org/videolan/vlc/-/issues/21) 0x094f3fec in QCoreApplication::notifyInternal ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
[#22](https://code.videolan.org/videolan/vlc/-/issues/22) 0x127f3cf8 in ?? ()
[#23](https://code.videolan.org/videolan/vlc/-/issues/23) 0x1006c220 in ?? ()
[#24](https://code.videolan.org/videolan/vlc/-/issues/24) 0x094f1277 in QMetaObject::addGuard ()
at /include/qt4/QtCore/../src/corelib/kernel/qabstractitemmodel.h:61
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
Call stack:
6D7839A6 libdirect3d_plugin.dll:6D7839A6 Control events.c:1061
static int Control(
vout_thread_t * p_vout = &(indirect),
int i_query = 1,
va_list args = &-48
)
6A5720EE libvlccore.dll:6A5720EE vout_Control vlc_vout.h:681
static int vout_Control(
vout_thread_t * p_vout = &(indirect),
int i_query = 1
)
6A573C2B libvlccore.dll:6A573C2B ZoomCallback vout_intf.c:1006
static int ZoomCallback(
vlc_object_t * p_this = &(indirect),
const char * psz_cmd = &'z',
vlc_value_t oldval = {
int i_int = 1073741824,
_Bool b_bool = (bool),
float f_float = 2.000000,
char * psz_string = &,
void * p_address = ,
vlc_object_t * p_object = &(indirect),
vlc_list_t * p_list = &(indirect),
mtime_t i_time =
6A58F3E1 libvlccore.dll:6A58F3E1 var_SetChecked variables.c:747
int var_SetChecked(
vlc_object_t * p_this = &(indirect),
const char * psz_name = &'z',
int expected_type = 0,
vlc_value_t val = {
int i_int = 1065353216,
_Bool b_bool = (bool),
float f_float = 1.000000,
char * psz_string = &,
void * p_address = ,
vlc_object_t * p_object = &(indirect),
vlc_list_t * p_list = &(indirect),
mtime_t i_time =
6A58F46E libvlccore.dll:6A58F46E __var_Set variables.c:787
int __var_Set(
vlc_object_t * p_this = &(indirect),
const char * psz_name = &'z',
vlc_value_t val = {
int i_int = 1065353216,
_Bool b_bool = (bool),
float f_float = 1.000000,
char * psz_string = &,
void * p_address = ,
vlc_object_t * p_object = &(indirect),
vlc_list_t * p_list = &(indirect),
mtime_t i_time =
08F476D2 libqt4_plugin.dll:08F476D2 vlc_entry_license__1_0_0d
0902AC62 libqt4_plugin.dll:0902AC62 vlc_entry_license__1_0_0d
0952E6C7 libqt4_plugin.dll:0952E6C7 _Z36qt_plugin_instance_AccessibleFactoryv
09563DD7 libqt4_plugin.dll:09563DD7 _Z36qt_plugin_instance_AccessibleFactoryv
09563FC2 libqt4_plugin.dll:09563FC2 _Z36qt_plugin_instance_AccessibleFactoryv
095640BE libqt4_plugin.dll:095640BE _Z36qt_plugin_instance_AccessibleFactoryv
095646F6 libqt4_plugin.dll:095646F6 _Z36qt_plugin_instance_AccessibleFactoryv
0952E6C7 libqt4_plugin.dll:0952E6C7 _Z36qt_plugin_instance_AccessibleFactoryv
090847D6 libqt4_plugin.dll:090847D6 _Z36qt_plugin_instance_AccessibleFactoryv
09084B6E libqt4_plugin.dll:09084B6E _Z36qt_plugin_instance_AccessibleFactoryv
0907FCCA libqt4_plugin.dll:0907FCCA _Z36qt_plugin_instance_AccessibleFactoryv
09082FC0 libqt4_plugin.dll:09082FC0 _Z36qt_plugin_instance_AccessibleFactoryv
09098BBA libqt4_plugin.dll:09098BBA _Z36qt_plugin_instance_AccessibleFactoryv
0907D55C libqt4_plugin.dll:0907D55C _Z36qt_plugin_instance_AccessibleFactoryv
09068D6C libqt4_plugin.dll:09068D6C _Z36qt_plugin_instance_AccessibleFactoryv
0906972C libqt4_plugin.dll:0906972C _Z36qt_plugin_instance_AccessibleFactoryv
09533FEC libqt4_plugin.dll:09533FEC _Z36qt_plugin_instance_AccessibleFactoryv
0906ADB0 libqt4_plugin.dll:0906ADB0 _Z36qt_plugin_instance_AccessibleFactoryv
092650E4 libqt4_plugin.dll:092650E4 _Z36qt_plugin_instance_AccessibleFactoryv
0926702C libqt4_plugin.dll:0926702C _Z36qt_plugin_instance_AccessibleFactoryv
75828807 USER32.dll:75828807 GetWindowLongW
75828962 USER32.dll:75828962 GetWindowLongW
75828AAD USER32.dll:75828AAD GetWindowLongW
75828B00 USER32.dll:75828B00 DispatchMessageW
095C9F20 libqt4_plugin.dll:095C9F20 _Z36qt_plugin_instance_AccessibleFactoryv
0926A1E0 libqt4_plugin.dll:0926A1E0 _Z36qt_plugin_instance_AccessibleFactoryv
095BDEE8 libqt4_plugin.dll:095BDEE8 _Z36qt_plugin_instance_AccessibleFactoryv
095BE087 libqt4_plugin.dll:095BE087 _Z36qt_plugin_instance_AccessibleFactoryv
095373D3 libqt4_plugin.dll:095373D3 _Z36qt_plugin_instance_AccessibleFactoryv
08F4296A libqt4_plugin.dll:08F4296A vlc_entry_license__1_0_0d
6A586265 libvlccore.dll:6A586265 vlc_entry threads.c:625
static unsigned int vlc_entry(
void * data =
)
75A42CCE msvcrt.dll:75A42CCE wcstombs_s
75A42DEB msvcrt.dll:75A42DEB _beginthreadex
7578E3F3 kernel32.dll:7578E3F3 BaseThreadInitThunk
7751CFED ntdll.dll:7751CFED RtlCreateUserProcess
7751D1FF ntdll.dll:7751D1FF RtlCreateProcessParameters
Edited by xxcv