Stack use after scope error with BufferArea

[vrabaud]

System information (version)

• OpenCV => 4.6.0

Detailed description

When running with the clang address sanitizer, the following error appears: https://github.com/google/sanitizers/wiki/AddressSanitizerUseAfterScope.

For example, if we take the resizeNN_bitexact function

opencv/modules/imgproc/src/resize.cpp

Line 1211 in 47f30a0

area.allocate(x_ofse, dsize.width, CV_SIMD_WIDTH);

that uses a BufferArea, the BufferArea area stores a given a pointer to a pointer (x_ofse). In the BufferArea destructor, that pointer to pointer is used to reset the pointer at

opencv/modules/core/src/buffer_area.cpp

Line 33 in 47f30a0

*ptr = 0;

which is problematic because x_ofse is out of scope.

A solution could be to use a unique_ptr (but that would not work for 3.4) or call the deallocate function by hand before letting the destructor do its job. Please let me know if you see a simpler solution.

Issue submission checklist

• I report the issue, it's not a question
• I checked the problem with documentation, FAQ, open issues,
  forum.opencv.org, Stack Overflow, etc and have not found any solution
• I updated to the latest OpenCV version and the issue is still there

[alalek]

Thank you for the report!

relates #18053

Pointers for BufferArea should be defined before area instance (so they stay in the scope in its destructor).
Main problem is that it is hard to check this without sanitizer.

---

Also we could remove zeroing of these pointers, or keep it is Debug builds only - we don't really need that code in correct program.

---

Or we should redesign BufferArea API.

/cc @mshabunin

[mshabunin]

I agree, we can remove zeroing. I'll prepare the fix.

Note: in this specific case BufferArea should not be used at all, the purpose of this class was to optimize multiple buffers allocation by combining them into one large buffer. Here only one buffer is being allocated.

[vrabaud]

I confirm it is now fixed at HEAD, thx !