Skip Menu |
Report information
Id: 131646
Status: pending release
Priority: 0/
Queue: perl5

Owner: Nobody
Requestors: randir <sergey.aleynikov [at] gmail.com>
Cc:
AdminCc:

Operating System: (no value)
PatchStatus: (no value)
Severity: medium
Type: core
Perl Version: 5.27.1
Fixed In: (no value)



Date: Sat, 24 Jun 2017 16:01:17 +0300
From: Sergey Aleynikov <sergey.aleynikov [...] gmail.com>
Subject: utf8.c:832: S_unexpected_non_continuation_text: Assertion `expect_len == UTF8SKIP(s)' failed.
To: perlbug [...] perl.org
Download (untitled) / with headers
text/plain 5.7k
This is a bug report for perl from sergey.aleynikov@gmail.com, generated with the help of perlbug 1.40 running under perl 5.27.1. ----------------------------------------------------------------- [Please describe your issue here] While fuzzing perl v5.27.1-37-g4c95ee9f29 built with afl and run under libdislocator, I found the following program for(uc 0..t){0~~pack"UXp>",exp} to cause an assertion failure. This is a regression in 5.26, bisect points to: commit 7cf8d05d1e856f3bd3a392b3ccea008f1c1eb743 Author: Karl Williamson <khw@cpan.org> Date: Wed Sep 28 15:05:17 2016 -0600 Add details to UTF-8 malformation error messages GDB info about the crash location is: (gdb) bt #0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51 #1 0x00007ffff6cf63fa in __GI_abort () at abort.c:89 #2 0x00007ffff6cede37 in __assert_fail_base (fmt=<optimized out>, assertion=assertion@entry=0x5555559a83ad "expect_len == UTF8SKIP(s)", file=file@entry=0x5555559a7b65 "utf8.c", line=line@entry=832, function=function@entry=0x5555559b2280 <__PRETTY_FUNCTION__.15262> "S_unexpected_non_continuation_text") at assert.c:92 #3 0x00007ffff6cedee2 in __GI___assert_fail (assertion=0x5555559a83ad "expect_len == UTF8SKIP(s)", file=0x5555559a7b65 "utf8.c", line=832, function=0x5555559b2280 <__PRETTY_FUNCTION__.15262> "S_unexpected_non_continuation_text") at assert.c:101 #4 0x00005555558857da in S_unexpected_non_continuation_text (s=0x555555c062d1 "", print_len=2, non_cont_byte_pos=1, expect_len=2) at utf8.c:832 #5 0x00005555558871db in Perl_bytes_cmp_utf8 (b=0x555555c05260 "0", blen=1, u=0x555555c062d2 "", ulen=9) at utf8.c:1876 #6 0x0000555555780e0a in Perl_sv_eq_flags (sv1=0x555555c0b3b0, sv2=0x555555c0b428, flags=0) at sv.c:7887 #7 0x00005555557b63da in Perl_pp_seq () at pp.c:2383 #8 0x000055555580a669 in S_do_smartmatch (seen_this=0x0, seen_other=0x0, copied=false) at pp_ctl.c:5152 #9 0x0000555555803a27 in Perl_pp_smartmatch () at pp_ctl.c:4670 #10 0x00005555556d5a7d in Perl_runops_debug () at dump.c:2451 #11 0x00005555555cbb3d in S_run_body (oldscope=1) at perl.c:2548 #12 0x00005555555cb0bb in perl_run (my_perl=0x555555bed010) at perl.c:2471 #13 0x0000555555583f3e in main (argc=2, argv=0x7fffffffe1e8, env=0x7fffffffe200) at perlmain.c:123 (gdb) p expect_len $1 = 2 (gdb) p s $2 = (const U8 * const) 0x555555c062d1 "" (gdb) p UTF8SKIP(s) $3 = 1 '\001' [Please do not change anything below this line] ----------------------------------------------------------------- --- Flags: category=core severity=medium --- Site configuration information for perl 5.27.1: Configured by root at Sun May 28 01:44:41 MSK 2017. Summary of my perl5 (revision 5 version 26 subversion 0) configuration: Derived from: 4c95ee9f298c2edfc1382d540ff89288790e78b6 Platform: osname=linux osvers=4.9.0-3-amd64 archname=x86_64-linux uname='linux dorothy 4.9.0-3-amd64 #1 smp debian 4.9.25-1 (2017-05-02) x86_64 gnulinux ' config_args='-des -Dusedevel -DDEBUGGING -Dcc=afl-clang-fast -Doptimize=-O0 -g -ggdb3 -fno-omit-frame-pointer' hint=previous useposix=true d_sigaction=define useithreads=undef usemultiplicity=undef use64bitint=define use64bitall=define uselongdouble=undef usemymalloc=n default_inc_excludes_dot=define bincompat5005=undef Compiler: cc='afl-clang-fast' ccflags ='-DDEBUGGING -fno-strict-aliasing -pipe -fstack-protector-strong -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -D_FORTIFY_SOURCE=2' optimize='-O0 -g -ggdb3 -fno-omit-frame-pointer' cppflags='-DDEBUGGING -fno-strict-aliasing -pipe -fstack-protector-strong -I/usr/local/include' ccversion='' gccversion='4.2.1 Compatible Clang 3.9.1 (tags/RELEASE_391/rc2)' gccosandvers='' intsize=4 longsize=8 ptrsize=8 doublesize=8 byteorder=12345678 doublekind=3 d_longlong=define longlongsize=8 d_longdbl=define longdblsize=16 longdblkind=3 ivtype='long' ivsize=8 nvtype='double' nvsize=8 Off_t='off_t' lseeksize=8 alignbytes=8 prototype=define Linker and Libraries: ld='afl-clang-fast' ldflags =' -fstack-protector-strong -L/usr/local/lib' libpth=/usr/local/lib /usr/lib/llvm-3.9/bin/../lib/clang/3.9.1/lib /usr/include/x86_64-linux-gnu /usr/lib /lib/x86_64-linux-gnu /lib/../lib /usr/lib/x86_64-linux-gnu /usr/lib/../lib /lib /usr/local/lib /usr/lib/llvm-3.9/bin/../lib/clang/3.9.1/lib /usr/include/x86_64-linux-gnu /usr/lib libs=-lpthread -lnsl -ldl -lm -lcrypt -lutil -lc perllibs=-lpthread -lnsl -ldl -lm -lcrypt -lutil -lc libc=libc-2.24.so so=so useshrplib=false libperl=libperl.a gnulibc_version='2.24' Dynamic Linking: dlsrc=dl_dlopen.xs dlext=so d_dlsymun=undef ccdlflags='-Wl,-E' cccdlflags='-fPIC' lddlflags='-shared -O0 -g -ggdb3 -fno-omit-frame-pointer -L/usr/local/lib -fstack-protector-strong' Locally applied patches: uncommitted-changes --- @INC for perl 5.27.1: lib /usr/local/lib/perl5/site_perl/5.26.0/x86_64-linux /usr/local/lib/perl5/site_perl/5.26.0 /usr/local/lib/perl5/5.26.0/x86_64-linux /usr/local/lib/perl5/5.26.0 --- Environment for perl 5.27.1: HOME=/home/afl LANG=en_US.UTF-8 LANGUAGE=en_US:en LC_CTYPE=en_US.UTF-8 LD_LIBRARY_PATH (unset) LOGDIR (unset) PATH=/home/afl/perlbrew/bin:/home/afl/perlbrew/perls/perl-5.24.1-dbg/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games PERLBREW_BASHRC_VERSION=0.78 PERLBREW_HOME=/home/afl/.perlbrew PERLBREW_MANPATH=/home/afl/perlbrew/perls/perl-5.24.1-dbg/man PERLBREW_PATH=/home/afl/perlbrew/bin:/home/afl/perlbrew/perls/perl-5.24.1-dbg/bin PERLBREW_PERL=perl-5.24.1-dbg PERLBREW_ROOT=/home/afl/perlbrew PERLBREW_VERSION=0.78 PERL_BADLANG (unset) SHELL=/usr/bin/zshpe
RT-Send-CC: perl5-porters [...] perl.org
Download (untitled) / with headers
text/plain 125b
Thanks, fixed by 1d5030e143202c1e963e1fc91eb6f3afaa2df83e I'm adding my vote for this to go into 5.26.1 -- Karl Williamson


This service is sponsored and maintained by Best Practical Solutions and runs on Perl.org infrastructure.

For issues related to this RT instance (aka "perlbug"), please contact perlbug-admin at perl.org