Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

segfault in S_mg_findext_flags() #15942

Open
p5pRT opened this issue Apr 4, 2017 · 4 comments
Open

segfault in S_mg_findext_flags() #15942

p5pRT opened this issue Apr 4, 2017 · 4 comments

Comments

@p5pRT
Copy link

p5pRT commented Apr 4, 2017

Migrated from rt.perl.org#131101 (status was 'open')

Searchable as RT131101$

@p5pRT
Copy link
Author

p5pRT commented Apr 4, 2017

From @geeknik

Triggered with v5.25.11-28-g5fc3895. Compiled with afl-clang-fast on Debian
8 x64.

#0 0x82fa26 in S_mg_findext_flags /root/perl/mg.c​:413​:10
#1 0x82fa26 in Perl_mg_find_mglob /root/perl/mg.c​:462
#2 0x8d20fc in Perl_pp_match /root/perl/pp_hot.c​:2129​:18
#3 0x80077b in Perl_runops_debug /root/perl/dump.c​:2451​:23
#4 0x5a2073 in S_run_body /root/perl/perl.c​:2524​:2
#5 0x5a2073 in perl_run /root/perl/perl.c​:2447
#6 0x4de98d in main /root/perl/perlmain.c​:123​:9
#7 0x7ff1449c5b44 in __libc_start_main
/build/glibc-qK83Be/glibc-2.19/csu/libc-start.c​:287
#8 0x4de5fc in _start (/root/perl/perl+0x4de5fc)

@p5pRT
Copy link
Author

p5pRT commented Apr 4, 2017

From @geeknik

test043

@p5pRT
Copy link
Author

p5pRT commented Apr 5, 2017

From @iabyn

On Tue, Apr 04, 2017 at 04​:51​:50PM -0700, Brian Carpenter wrote​:

# New Ticket Created by Brian Carpenter
# Please include the string​: [perl #131101]
# in the subject line of all future correspondence about this issue.
# <URL​: https://rt-archive.perl.org/perl5/Ticket/Display.html?id=131101 >

Triggered with v5.25.11-28-g5fc3895. Compiled with afl-clang-fast on Debian
8 x64.

#0 0x82fa26 in S_mg_findext_flags /root/perl/mg.c​:413​:10
#1 0x82fa26 in Perl_mg_find_mglob /root/perl/mg.c​:462
#2 0x8d20fc in Perl_pp_match /root/perl/pp_hot.c​:2129​:18
#3 0x80077b in Perl_runops_debug /root/perl/dump.c​:2451​:23
#4 0x5a2073 in S_run_body /root/perl/perl.c​:2524​:2
#5 0x5a2073 in perl_run /root/perl/perl.c​:2447
#6 0x4de98d in main /root/perl/perlmain.c​:123​:9
#7 0x7ff1449c5b44 in __libc_start_main
/build/glibc-qK83Be/glibc-2.19/csu/libc-start.c​:287
#8 0x4de5fc in _start (/root/perl/perl+0x4de5fc)

It can be reduced to

  map /x/g, (%h = ("y", 0)), (%h = ("y", 0))

It's a stack-not-refcounted bug.

--
A power surge on the Bridge is rapidly and correctly diagnosed as a faulty
capacitor by the highly-trained and competent engineering staff.
  -- Things That Never Happen in "Star Trek" #9

@p5pRT
Copy link
Author

p5pRT commented Apr 5, 2017

The RT System itself - Status changed from 'new' to 'open'

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants