==36170==ERROR: AddressSanitizer: heap-use-after-free on address 0x622000103908 at pc 0x7ffff6ec9f54 bp 0x7fffffffc6f0 sp 0x7fffffffbe98 READ of size 5504 at 0x622000103908 thread T0 #0 0x7ffff6ec9f53 (/usr/lib/x86_64-linux-gnu/libasan.so.4+0xaff53) #1 0x55556ba4201f in memfile_chunk_add /home/brecht/dev/blender/source/blender/blenloader/intern/undofile.c:107 #2 0x55556ba4f275 in writedata_do_write /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:363 #3 0x55556ba4f568 in mywrite_flush /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:393 #4 0x55556ba6faaa in write_file_handle /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:3927 #5 0x55556ba70b82 in BLO_write_file_mem /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:4133 #6 0x55556ba71ac4 in BKE_memfile_undo_encode /home/brecht/dev/blender/source/blender/blenkernel/intern/blender_undo.c:120 #7 0x55556ba40d70 in memfile_undosys_step_encode /home/brecht/dev/blender/source/blender/editors/undo/memfile_undo.c:80 #8 0x55556bab8ab7 in undosys_step_encode /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:156 #9 0x55556babcefd in BKE_undosys_step_push_with_type /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:556 #10 0x55556babd4da in BKE_undosys_step_push /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:592 #11 0x55556ba3b8a4 in ED_undo_push /home/brecht/dev/blender/source/blender/editors/undo/ed_undo.c:95 #12 0x55556ba3cdda in ED_undo_push_op /home/brecht/dev/blender/source/blender/editors/undo/ed_undo.c:290 #13 0x555567e25e3d in wm_operator_finished /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:982 #14 0x555567e2aeff in wm_operator_invoke /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1474 #15 0x555567e2bd94 in wm_operator_call_internal /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1651 #16 0x555567e2c057 in WM_operator_name_call_ptr /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1699 #17 0x555567e2c0af in WM_operator_name_call /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1705 #18 0x55556acfffab in ED_object_mode_compat_set /home/brecht/dev/blender/source/blender/editors/object/object_modes.c:153 #19 0x55556aceba0a in object_mode_set_exec /home/brecht/dev/blender/source/blender/editors/object/object_edit.c:1374 #20 0x555567e2aa61 in wm_operator_invoke /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1450 #21 0x555567e2befa in wm_operator_call_internal /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1685 #22 0x555567e2c057 in WM_operator_name_call_ptr /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1699 #23 0x55556ad00739 in ED_object_mode_generic_enter /home/brecht/dev/blender/source/blender/editors/object/object_modes.c:235 #24 0x55556b4e6778 in ED_workspace_change /home/brecht/dev/blender/source/blender/editors/screen/workspace_edit.c:188 #25 0x555567ed5d58 in WM_window_set_active_workspace /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_window.c:2324 #26 0x555567e21447 in wm_event_do_notifiers /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:441 #27 0x555567e0e9f7 in WM_main /home/brecht/dev/blender/source/blender/windowmanager/intern/wm.c:420 #28 0x55556674bdb4 in main /home/brecht/dev/blender/source/creator/creator.c:500 #29 0x7ffff563ab96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96) #30 0x55556674b249 in _start (/home/brecht/dev/debug/bin/blender+0x111f7249) 0x622000103908 is located 8 bytes inside of 5512-byte region [0x622000103900,0x622000104e88) freed by thread T0 here: #0 0x7ffff6ef87b8 in __interceptor_free (/usr/lib/x86_64-linux-gnu/libasan.so.4+0xde7b8) #1 0x55556762b302 in MEM_lockfree_freeN /home/brecht/dev/blender/intern/guardedalloc/intern/mallocn_lockfree_impl.c:157 #2 0x55556ba419c1 in BLO_memfile_free /home/brecht/dev/blender/source/blender/blenloader/intern/undofile.c:62 #3 0x55556ba71c7f in BKE_memfile_undo_free /home/brecht/dev/blender/source/blender/blenkernel/intern/blender_undo.c:131 #4 0x55556ba41342 in memfile_undosys_step_free /home/brecht/dev/blender/source/blender/editors/undo/memfile_undo.c:127 #5 0x55556bab9a67 in undosys_step_free_and_unlink /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:221 #6 0x55556baba9b3 in undosys_stack_clear_all_first /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:322 #7 0x55556babbbcf in BKE_undosys_stack_limit_steps_and_memory /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:440 #8 0x55556ba3b847 in ED_undo_push /home/brecht/dev/blender/source/blender/editors/undo/ed_undo.c:92 #9 0x55556ba3cdda in ED_undo_push_op /home/brecht/dev/blender/source/blender/editors/undo/ed_undo.c:290 #10 0x555567e25e3d in wm_operator_finished /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:982 #11 0x555567e2aeff in wm_operator_invoke /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1474 #12 0x555567e2bd94 in wm_operator_call_internal /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1651 #13 0x555567e2c057 in WM_operator_name_call_ptr /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1699 #14 0x555567e2c0af in WM_operator_name_call /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1705 #15 0x55556acfffab in ED_object_mode_compat_set /home/brecht/dev/blender/source/blender/editors/object/object_modes.c:153 #16 0x55556aceba0a in object_mode_set_exec /home/brecht/dev/blender/source/blender/editors/object/object_edit.c:1374 #17 0x555567e2aa61 in wm_operator_invoke /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1450 #18 0x555567e2befa in wm_operator_call_internal /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1685 #19 0x555567e2c057 in WM_operator_name_call_ptr /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:1699 #20 0x55556ad00739 in ED_object_mode_generic_enter /home/brecht/dev/blender/source/blender/editors/object/object_modes.c:235 #21 0x55556b4e6778 in ED_workspace_change /home/brecht/dev/blender/source/blender/editors/screen/workspace_edit.c:188 #22 0x555567ed5d58 in WM_window_set_active_workspace /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_window.c:2324 #23 0x555567e21447 in wm_event_do_notifiers /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:441 #24 0x555567e0e9f7 in WM_main /home/brecht/dev/blender/source/blender/windowmanager/intern/wm.c:420 #25 0x55556674bdb4 in main /home/brecht/dev/blender/source/creator/creator.c:500 #26 0x7ffff563ab96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96) previously allocated by thread T0 here: #0 0x7ffff6ef8b50 in __interceptor_malloc (/usr/lib/x86_64-linux-gnu/libasan.so.4+0xdeb50) #1 0x55556762bc7c in MEM_lockfree_mallocN /home/brecht/dev/blender/intern/guardedalloc/intern/mallocn_lockfree_impl.c:308 #2 0x55556ba42214 in memfile_chunk_add /home/brecht/dev/blender/source/blender/blenloader/intern/undofile.c:117 #3 0x55556ba4f275 in writedata_do_write /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:363 #4 0x55556ba4f568 in mywrite_flush /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:393 #5 0x55556ba6faaa in write_file_handle /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:3927 #6 0x55556ba70b82 in BLO_write_file_mem /home/brecht/dev/blender/source/blender/blenloader/intern/writefile.c:4133 #7 0x55556ba71ac4 in BKE_memfile_undo_encode /home/brecht/dev/blender/source/blender/blenkernel/intern/blender_undo.c:120 #8 0x55556ba40d70 in memfile_undosys_step_encode /home/brecht/dev/blender/source/blender/editors/undo/memfile_undo.c:80 #9 0x55556bab8ab7 in undosys_step_encode /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:156 #10 0x55556babcefd in BKE_undosys_step_push_with_type /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:556 #11 0x55556babad60 in undosys_stack_push_main /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:335 #12 0x55556babca5a in BKE_undosys_step_push_with_type /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:531 #13 0x55556babd4da in BKE_undosys_step_push /home/brecht/dev/blender/source/blender/blenkernel/intern/undo_system.c:592 #14 0x55556ba3b8a4 in ED_undo_push /home/brecht/dev/blender/source/blender/editors/undo/ed_undo.c:95 #15 0x55556a5171cd in ui_apply_but_funcs_after /home/brecht/dev/blender/source/blender/editors/interface/interface_handlers.c:878 #16 0x55556a5763a7 in ui_region_handler /home/brecht/dev/blender/source/blender/editors/interface/interface_handlers.c:10069 #17 0x555567e22da1 in wm_handler_ui_call /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:623 #18 0x555567e338d9 in wm_handlers_do_intern /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:2699 #19 0x555567e35de1 in wm_handlers_do /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:2945 #20 0x555567e39f11 in wm_event_do_handlers /home/brecht/dev/blender/source/blender/windowmanager/intern/wm_event_system.c:3397 #21 0x555567e0e9eb in WM_main /home/brecht/dev/blender/source/blender/windowmanager/intern/wm.c:417 #22 0x55556674bdb4 in main /home/brecht/dev/blender/source/creator/creator.c:500 #23 0x7ffff563ab96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96)