[Bug gas/21590] Arm assembler generates incorrect transformation from ldr to movs

[manojgupta at google dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21590

--- Comment #6 from Manoj Gupta  ---
Thanks a lot!

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21576] global-buffer-overflow in print_insn_score16

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21576

Nick Clifton  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 CC||nickc at redhat dot com
 Resolution|--- |FIXED

--- Comment #5 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this bug.  This time it was a good old fashioned bug.
  The disassembler was expecting its opcode table to end with a NULL sentinel
  but it had been omitted from the table.  I have checked in a patch to fix
  this.

Cheers

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21576] global-buffer-overflow in print_insn_score16

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21576

--- Comment #4 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=e64519d1ed7fd8f990f05a5562d5b5c0c44b7d7e

commit e64519d1ed7fd8f990f05a5562d5b5c0c44b7d7e
Author: Nick Clifton 
Date:   Wed Jun 14 17:10:28 2017 +0100

Fix seg-fault when trying to disassemble a corrupt score binary.

PR binutils/21576
* score7-dis.c (score_opcodes): Add sentinel.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21578] global-buffer-overflow in sh_elf_set_mach_from_flags

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21578

--- Comment #4 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f461bbd847f15657f3dd2f317c30c75a7520da1f

commit f461bbd847f15657f3dd2f317c30c75a7520da1f
Author: Nick Clifton 
Date:   Wed Jun 14 17:01:54 2017 +0100

Fix address violation bug when disassembling a corrupt SH binary.

PR binutils/21578
* elf32-sh.c (sh_elf_set_mach_from_flags): Fix check for invalid
flag value.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21578] global-buffer-overflow in sh_elf_set_mach_from_flags

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21578

Nick Clifton  changed:

   What|Removed |Added

 CC||nickc at redhat dot com

--- Comment #5 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this bug.  This was simple one - a check to make sure
  that an array access was valid was using the wrong size.  I have checked in
  a patch to fix it.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21580] heap-buffer-overflow in disassemble_bytes

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21580

Nick Clifton  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 CC||nickc at redhat dot com
 Resolution|--- |FIXED

--- Comment #10 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this bug.

  The problem was a buffer overrun when printing out the raw bytes involved
  in the disassembly.  I have checked in a fix to prevent this from happening
  so all should be well now.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21580] heap-buffer-overflow in disassemble_bytes

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21580

--- Comment #9 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ae87f7e73eba29bd38b3a9684a10b948ed715612

commit ae87f7e73eba29bd38b3a9684a10b948ed715612
Author: Nick Clifton 
Date:   Wed Jun 14 16:50:03 2017 +0100

Fix address violation when disassembling a corrupt binary.

PR binutils/21580
binutils * objdump.c (disassemble_bytes): Check for buffer overrun when
printing out rae insns.

ld  * testsuite/ld-nds32/diff.d: Adjust expected output.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21580] heap-buffer-overflow in disassemble_bytes

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21580

--- Comment #8 from aadamski at quarkslab dot com ---
(In reply to Nick Clifton from comment #4)
>   Are you able to test out patches and see if they make a difference ?  If so
>   please could you try out the uploaded patch which might make a difference.
>   For me, the bug goes away, but I cannot tell if I have really fixed the
>   problem, or if there is still some kind of stack corruption going on.

I tried your patch with both the raw and the minimized testcases; it seems not
to crash anymore. I have started an instance of AFL in "crash exploration" mode
in order to generate more diverse testcases. I will report back in a few hours.

Thanks a lot for all your bug fixes, you're doing god's work! :-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21581] stack-buffer-overflow in bfd_get_string

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21581

--- Comment #4 from aadamski at quarkslab dot com ---
(In reply to Nick Clifton from comment #4)
>   Are you able to test out patches and see if they make a difference ?  If so
>   please could you try out the uploaded patch which might make a difference.
>   For me, the bug goes away, but I cannot tell if I have really fixed the
>   problem, or if there is still some kind of stack corruption going on.

I tried your patch with both the raw and the minimized testcases; it seems not
to crash anymore. I have started an instance of AFL in "crash exploration" mode
in order to generate more diverse testcases. I will report back in a few hours.

Thanks a lot for all your bug fixes, you're doing god's work! :-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21582] stack-buffer-overflow in ieee_object_p

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21582

--- Comment #5 from aadamski at quarkslab dot com ---
(In reply to Nick Clifton from comment #4)
>   Are you able to test out patches and see if they make a difference ?  If so
>   please could you try out the uploaded patch which might make a difference.
>   For me, the bug goes away, but I cannot tell if I have really fixed the
>   problem, or if there is still some kind of stack corruption going on.

I tried your patch with both the raw and the minimized testcases; it seems not
to crash anymore. I have started an instance of AFL in "crash exploration" mode
in order to generate more diverse testcases. I will report back in a few hours.

Thanks a lot for all your bug fixes, you're doing god's work! :-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/20022] --gc-sections is broken with __start_ and shared library

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=20022

--- Comment #13 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by H.J. Lu :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=99031bafd6e81a41553803886c6b245cb0ab89d9

commit 99031bafd6e81a41553803886c6b245cb0ab89d9
Author: H.J. Lu 
Date:   Wed Jun 14 06:11:48 2017 -0700

xfail pr20022.d on targets without dynamic relocs in .text

ld-gc/pr20022.d requires support for dynamic relocations in .text
section.

PR ld/20022
* testsuite/ld-gc/pr20022.d: Skip on targets without dynamic
relocations in .text section.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21562] Refs to __start_SCN of non-orphan sections affect --gc-sections

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21562

--- Comment #11 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by H.J. Lu :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=8eca1095d96c215409371c5687573aac89a0a980

commit 8eca1095d96c215409371c5687573aac89a0a980
Author: H.J. Lu 
Date:   Wed Jun 14 04:36:17 2017 -0700

Skip PR ld/21562 tests on targets with leading char or without
--gc-sections

Symbol lookup in linker will always fail on targets with leading char
in symbol name since __start_SECNAME and __stop_SECNAME in C may be
___start_SECNAME and ___stop_SECNAME in assembly.  Also tests with
--gc-sections always fails on targets without --gc-sections support.

* testsuite/ld-elf/pr21562a.d: Skip on targets with leading char
in in symbol name or without --gc-sections.
* testsuite/ld-elf/pr21562b.d: Likewise.
* testsuite/ld-elf/pr21562c.d: Likewise.
* testsuite/ld-elf/pr21562d.d: Likewise.
* testsuite/ld-elf/pr21562i.d: Likewise.
* testsuite/ld-elf/pr21562j.d: Likewise.
* testsuite/ld-elf/pr21562k.d: Likewise.
* testsuite/ld-elf/pr21562l.d: Likewise.
* testsuite/ld-elf/pr21562m.d: Likewise.
* testsuite/ld-elf/pr21562n.d: Likewise.
* testsuite/ld-elf/pr21562e.d: Skip on targets with leading char
in symbol name.
* testsuite/ld-elf/pr21562f.d: Likewise.
* testsuite/ld-elf/pr21562g.d: Likewise.
* testsuite/ld-elf/pr21562h.d: Likewise.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21587] global-buffer-overflow in rx_decode_opcode

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21587

Nick Clifton  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 CC||nickc at redhat dot com
 Resolution|--- |FIXED

--- Comment #5 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this problem.

  I have checked in a patch to add some more checks to the RX disassembler.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21595] global-buffer-overflow in aarch64_ext_ldst_reglist

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21595

--- Comment #2 from aadamski at quarkslab dot com ---
Created attachment 10137
  --> https://sourceware.org/bugzilla/attachment.cgi?id=10137=edit
report

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21595] global-buffer-overflow in aarch64_ext_ldst_reglist

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21595

--- Comment #1 from aadamski at quarkslab dot com ---
Created attachment 10136
  --> https://sourceware.org/bugzilla/attachment.cgi?id=10136=edit
testcase

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21595] New: global-buffer-overflow in aarch64_ext_ldst_reglist

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21595

Bug ID: 21595
   Summary: global-buffer-overflow in aarch64_ext_ldst_reglist
   Product: binutils
   Version: 2.29 (HEAD)
Status: UNCONFIRMED
  Severity: normal
  Priority: P2
 Component: binutils
  Assignee: unassigned at sourceware dot org
  Reporter: aadamski at quarkslab dot com
  Target Milestone: ---

Hello there,

I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer.

Please find attached the minimized file causing the issue ("Input") and the
ASAN report log ("Output"). Below is the reduced stacktrace with links to the
corresponding source lines on a GitHub mirror.

The command used was `objdump -D `. The compilation flags used were `-g
-O2 -fno-omit-frame-pointer -fsanitize=address
-fno-sanitize-recover=undefined`. The configuration settings used were
`--enable-targets=all --disable-shared`.

Let me know if there is any additional information I can provide.

--

Input: 3ade4a4333249762a9df82c47f3c111a.65dbcbffa0f6467be847e1372688623b.min
Output: 3ade4a4333249762a9df82c47f3c111a.65dbcbffa0f6467be847e1372688623b.txt

Error in "aarch64_ext_ldst_reglist": global-buffer-overflow
  in aarch64_ext_ldst_reglist at opcodes/aarch64-dis.c:412
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/aarch64-dis.c#L412)
  in aarch64_opcode_decode at opcodes/aarch64-dis.c:2739
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/aarch64-dis.c#L2739)
  in aarch64_decode_insn at opcodes/aarch64-dis.c:2831
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/aarch64-dis.c#L2831)
  in print_insn_aarch64_word at opcodes/aarch64-dis.c:2973
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/aarch64-dis.c#L2973)
  in print_insn_aarch64 at opcodes/aarch64-dis.c:3209
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/aarch64-dis.c#L3209)
  in disassemble_bytes at binutils/objdump.c:1864
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L1864)
  in disassemble_section at binutils/objdump.c:2309
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L2309)
  in bfd_map_over_sections at bfd/section.c:1395
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/bfd/section.c#L1395)
  in disassemble_data at binutils/objdump.c:2445
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L2445)
  in dump_bfd at binutils/objdump.c:3547
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L3547)
  in display_file at binutils/objdump.c:3714
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L3714)
  in main at binutils/objdump.c:4016
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L4016)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21594] global-buffer-overflow in OP_G

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21594

--- Comment #2 from aadamski at quarkslab dot com ---
Created attachment 10135
  --> https://sourceware.org/bugzilla/attachment.cgi?id=10135=edit
report

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21587] global-buffer-overflow in rx_decode_opcode

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21587

--- Comment #4 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=db5fa770268baf8cc82cf9b141d69799fd485fe2

commit db5fa770268baf8cc82cf9b141d69799fd485fe2
Author: Nick Clifton 
Date:   Wed Jun 14 13:35:06 2017 +0100

Fix address violation problems when disassembling a corrupt RX binary.

PR binutils/21587
* rx-decode.opc: Include libiberty.h
(GET_SCALE): New macro - validates access to SCALE array.
(GET_PSCALE): New macro - validates access to PSCALE array.
(DIs, SIs, S2Is, rx_disp): Use new macros.
* rx-decode.c: Regenerate.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21594] New: global-buffer-overflow in OP_G

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21594

Bug ID: 21594
   Summary: global-buffer-overflow in OP_G
   Product: binutils
   Version: 2.29 (HEAD)
Status: UNCONFIRMED
  Severity: normal
  Priority: P2
 Component: binutils
  Assignee: unassigned at sourceware dot org
  Reporter: aadamski at quarkslab dot com
  Target Milestone: ---

Hello there,

I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer.

Please find attached the minimized file causing the issue ("Input") and the
ASAN report log ("Output"). Below is the reduced stacktrace with links to the
corresponding source lines on a GitHub mirror.

The command used was `objdump -D `. The compilation flags used were `-g
-O2 -fno-omit-frame-pointer -fsanitize=address
-fno-sanitize-recover=undefined`. The configuration settings used were
`--enable-targets=all --disable-shared`.

Let me know if there is any additional information I can provide.

--

Input: f7920e08be4fd15ae9622aaf8dc4931e.139b2c2a6fd324fdc13d6886dc01d3bf.min
Output: f7920e08be4fd15ae9622aaf8dc4931e.139b2c2a6fd324fdc13d6886dc01d3bf.txt

Error in "OP_G": global-buffer-overflow
  in OP_G at opcodes/i386-dis.c:15572
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/i386-dis.c#L15572)
  in print_insn at opcodes/i386-dis.c:13336
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/opcodes/i386-dis.c#L13336)
  in disassemble_bytes at binutils/objdump.c:1864
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L1864)
  in disassemble_section at binutils/objdump.c:2309
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L2309)
  in bfd_map_over_sections at bfd/section.c:1395
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/bfd/section.c#L1395)
  in disassemble_data at binutils/objdump.c:2445
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L2445)
  in dump_bfd at binutils/objdump.c:3547
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L3547)
  in display_file at binutils/objdump.c:3714
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L3714)
  in main at binutils/objdump.c:4016
(see
https://github.com/bminor/binutils-gdb/blob/561bf3e950e410fbcac06523d43039f1f58150ca/binutils/objdump.c#L4016)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21594] global-buffer-overflow in OP_G

[aadamski at quarkslab dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21594

--- Comment #1 from aadamski at quarkslab dot com ---
Created attachment 10134
  --> https://sourceware.org/bugzilla/attachment.cgi?id=10134=edit
testcase

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21583] [avr] Move .jumptables to a higher address

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21583

Nick Clifton  changed:

   What|Removed |Added

 Status|NEW |RESOLVED
 Resolution|--- |FIXED

--- Comment #4 from Nick Clifton  ---
Hi Georg-Johann,

  Patch approved and applied.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21583] [avr] Move .jumptables to a higher address

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21583

--- Comment #3 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4c0b797e0d2005780d8f0300f0ccc14b9d7c13b5

commit 4c0b797e0d2005780d8f0300f0ccc14b9d7c13b5
Author: Georg-Johann Lay 
Date:   Wed Jun 14 12:23:39 2017 +0100

Move location of .jumptables section and add .hightext section to AVR
linker script.

PR ld/21583
* scripttempl/avr.sc (.jumptables): Move down in text section.
(.hightext): New in text.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21593] New: .startof.SECNAME and .sizeof.SECNAME should be local

[hjl.tools at gmail dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21593

Bug ID: 21593
   Summary: .startof.SECNAME and .sizeof.SECNAME should be local
   Product: binutils
   Version: 2.29 (HEAD)
Status: NEW
  Severity: normal
  Priority: P2
 Component: ld
  Assignee: unassigned at sourceware dot org
  Reporter: hjl.tools at gmail dot com
  Target Milestone: ---

[hjl@gnu-tools-1 startof]$ cat x.s
.sectionscnfoo,"aw",%progbits
.zero 0x10

.globl  bar
.data
.align 8
.type   bar, %object
.size   bar, 8
bar:
.dc.a   __stop_scnfoo
.dc.a  .sizeof. (scnfoo)
.dc.a   __start_scnfoo
.dc.a  .startof. (scnfoo)
[hjl@gnu-tools-1 startof]$ make
as   -o x.o x.s
./ld -shared --gc-sections -o x.so x.o
readelf -sW x.so | grep scnfoo
 1: 00201020 0 NOTYPE  GLOBAL DEFAULT8 .startof.scnfoo
 6: 0010 0 NOTYPE  GLOBAL DEFAULT  ABS .sizeof.scnfoo
10: 00201030 0 NOTYPE  LOCAL  DEFAULT8 __stop_scnfoo
11: 00201020 0 NOTYPE  LOCAL  DEFAULT8 __start_scnfoo
13: 00201020 0 NOTYPE  GLOBAL DEFAULT8 .startof.scnfoo
18: 0010 0 NOTYPE  GLOBAL DEFAULT  ABS .sizeof.scnfoo
[hjl@gnu-tools-1 startof]$ 

Exporting .startof.SECNAME and .sizeof.SECNAME as dynamic symbols may
lead to unexpected behavior.  Reference to .startof.SECNAME and
.sizeof.SECNAME to section SECNAME within a DSO will be resolved to
.startof.SECNAME and .sizeof.SECNAME in another DSO or executable.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21589] heap-buffer-overflow in bfd_getl64

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21589

Nick Clifton  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 CC||nickc at redhat dot com
 Resolution|--- |FIXED

--- Comment #5 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this bug.  There were several places in the VMS parsing
code where potential address violations could happen.  I have checked in a
patch which I hope will address them all.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21589] heap-buffer-overflow in bfd_getl64

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21589

--- Comment #4 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=c53d2e6d744da000aaafe0237bced090aab62818

commit c53d2e6d744da000aaafe0237bced090aab62818
Author: Nick Clifton 
Date:   Wed Jun 14 11:27:15 2017 +0100

Fix potential address violations when processing a corrupt Alpha VMA
binary.

PR binutils/21589
* vms-alpha.c (_bfd_vms_get_value): Add an extra parameter - the
maximum value for the ascic pointer.  Check that name processing
does not read beyond this value.
(_bfd_vms_slurp_etir): Add checks for attempts to read beyond the
end of etir record.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21583] [avr] Move .jumptables to a higher address

[gjl at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21583

--- Comment #2 from Georg-Johann Lay  ---
(In reply to Nick Clifton from comment #1)
> Do you have a patch for the linker script to implement this addition ?

It's here: https://sourceware.org/ml/binutils/2017-06/msg00148.html

Am usually fileing PRs for additions so it's easier to refer to a feature.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21591] SEGV on unknown address 0x000000000000 in versados_scan

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21591

Nick Clifton  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 CC||nickc at redhat dot com
 Resolution|--- |FIXED

--- Comment #4 from Nick Clifton  ---
Hi Aadamski,

  Thanks for reporting this bug.  There were a couple of problems in the
versados parser that led to this failure, but I have checked in a patch which
should fix them.

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug binutils/21591] SEGV on unknown address 0x000000000000 in versados_scan

[cvs-commit at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21591

--- Comment #3 from cvs-commit at gcc dot gnu.org  ---
The master branch has been updated by Nick Clifton :

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=04f963fd489cae724a60140e13984415c205f4ac

commit 04f963fd489cae724a60140e13984415c205f4ac
Author: Nick Clifton 
Date:   Wed Jun 14 10:35:16 2017 +0100

Fix seg-faults in objdump when disassembling a corrupt versados binary.

PR binutils/21591
* versados.c (versados_mkobject): Zero the allocated tdata structure.
(process_otr): Check for an invalid offset in the otr structure.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug gas/21590] Arm assembler generates incorrect transformation from ldr to movs

[thopre01 at gcc dot gnu.org]

https://sourceware.org/bugzilla/show_bug.cgi?id=21590

Thomas Preud'homme  changed:

   What|Removed |Added

 CC||thopre01 at gcc dot gnu.org
   Assignee|unassigned at sourceware dot org   |thopre01 at gcc dot 
gnu.org

--- Comment #5 from Thomas Preud'homme  ---
Fixed in trunk in https://sourceware.org/bugzilla/show_bug.cgi?id=21590

Backport is under approval process:
https://sourceware.org/ml/binutils/2017-06/msg00145.html

Best regards.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug ld/21583] [avr] Move .jumptables to a higher address

[nickc at redhat dot com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21583

Nick Clifton  changed:

   What|Removed |Added

 CC||nickc at redhat dot com

--- Comment #1 from Nick Clifton  ---
Hi Georg-Johann,

  Do you have a patch for the linker script to implement this addition ?

Cheers
  Nick

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils

[Bug gas/21590] Arm assembler generates incorrect transformation from ldr to movs

[ramana.radhakrishnan at foss dot arm.com]

https://sourceware.org/bugzilla/show_bug.cgi?id=21590

--- Comment #4 from ramana.radhakrishnan at foss dot arm.com ---
On 13/06/17 23:31, manojgupta at google dot com wrote:
> https://sourceware.org/bugzilla/show_bug.cgi?id=21590


I believe this was fixed by 
https://sourceware.org/ml/binutils/2017-04/msg00179.html

Trunk for the testcase produces the following output.



 <__clone>:
0:   2800cmp r0, #0
2:   bf14ite ne
4:   2900cmpne   r1, #0
6:   f06f 0015   mvneq.w r0, #21
a:   f43f affe   beq.w   0 <__syscall_error>
e:   f841 3d04   str.w   r3, [r1, #-4]!
   12:   f841 0d04   str.w   r0, [r1, #-4]!
   16:   4610mov r0, r2
   18:   4694mov ip, r2
   1a:   b490push{r4, r7}
   1c:   9a02ldr r2, [sp, #8]
   1e:   9b03ldr r3, [sp, #12]
   20:   9c04ldr r4, [sp, #16]
   22:   f04f 0778   mov.w   r7, #120; 0x78
   26:   df00svc 0
   28:   2800cmp r0, #0
   2a:   d003beq.n   34 <__clone+0x34>
   2c:   bc90pop {r4, r7}
   2e:   f6ff affe   blt.w   0 <__syscall_error>
   32:   4770bx  lr
   34:   f41c 3f80   tst.w   ip, #65536  ; 0x1
   38:   d10ebne.n   58 <__clone+0x58>
   3a:   ee1d 0f70   mrc 15, 0, r0, cr13, cr0, {3}
   3e:   4601mov r1, r0
   40:   f41c 7f80   tst.w   ip, #256; 0x100
   44:   f04f 0714   mov.w   r7, #20
   48:   bf14ite ne
   4a:   f04f 30ff   movne.w r0, #4294967295 ; 0x
   4e:   df00svceq   0
   50:   f5a1 618b   sub.w   r1, r1, #1112   ; 0x458
   54:   6008str r0, [r1, #0]
   56:   6048str r0, [r1, #4]
   58:   9801ldr r0, [sp, #4]
   5a:   f85d cb08   ldr.w   ip, [sp], #8
   5e:   47e0blx ip
   60:   f7ff bffe   b.w 0 <_exit>


Thanks,
Ramana


>
> Manoj Gupta  changed:
>
>What|Removed |Added
> 
>  CC||matthew.wahab at arm dot com
>

-- 
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils