Hi there,
In Poky we're currently seeing a crash of "zypper search" in conjunction with
rpm 5.4.0 [1]. Using valgrind I tracked the issue down to rpmio/mire.c line
361:
mire->preg = xcalloc(1, sizeof(*mire->preg));
If I hack this line to specify 64 as the size (the expected sizeof(regex_t)
for x86_64, as opposed to 24 reported by valgrind) then the crash disappears
and valgrind stops reporting invalid memory accesses.
I don't have much knowledge of the rpm codebase, but a bit of header grepping
shows me that libpcre's pcreposix.h has a regex_t which differs quite
considerably from regex_t in regex.h (and matches the smaller size reported by
valgrind), and therefore I strongly suspect that the culprit is that pcre's
regex_t is being used when allocating the struct in mire.c which is then
passed to regcomp. FWIW we are enabling pcre support at configure time.
I could hack this to work, but since we may have dueling headers here the
solution might not be trivial. Any suggestions?
Thanks,
Paul
[1] http://bugzilla.pokylinux.org/show_bug.cgi?id=721
--
Paul Eggleton
Intel Open Source Technology Centre (UK)
______________________________________________________________________
RPM Package Manager http://rpm5.org
Developer Communication List rpm-devel@rpm5.org
