[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 --- Comment #2 from Alan Modra --- *** Bug 25073 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25073] invalide free in function _bfd_dwarf2_cleanup_debug_info
https://sourceware.org/bugzilla/show_bug.cgi?id=25073 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |DUPLICATE --- Comment #2 from Alan Modra --- Both of these testcases trigger the same overflow as pr25070 *** This bug has been marked as a duplicate of bug 25070 *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25072] malloc(): memory corruption in function print_symbol
https://sourceware.org/bugzilla/show_bug.cgi?id=25072 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |DUPLICATE --- Comment #1 from Alan Modra --- Same underlying problem as PR25070 *** This bug has been marked as a duplicate of bug 25070 *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 --- Comment #1 from Alan Modra --- *** Bug 25072 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25071] excessive memory allocation in _bfd_x86_elf_get_synthetic_symtab
https://sourceware.org/bugzilla/show_bug.cgi?id=25071 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |WONTFIX --- Comment #2 from Alan Modra --- Failing to allocate a lot of memory due to a crafted testcase is not interesting. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED Last reconfirmed||2019-10-09 Assignee|unassigned at sourceware dot org |amodra at gmail dot com Ever confirmed|0 |1 -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25071] excessive memory allocation in _bfd_x86_elf_get_synthetic_symtab
https://sourceware.org/bugzilla/show_bug.cgi?id=25071 --- Comment #1 from H.J. Lu --- (In reply to zjuchenyuan from comment #0) > Step 7/10 : RUN ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms > --synthetic --with-symbol-versions -D > poc2_excessive-malloc__bfd_x86_elf_get_synthetic_symtab || exit 0 > ---> Running in cc859742afde > ./binutils-gdb/binutils/nm-new: warning: > poc2_excessive-malloc__bfd_x86_elf_get_synthetic_symtab has a corrupt > section with a size (ff8e38e2d42e) larger than the file size Shouldn't nm stop for corrupt section? -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/24262] bfd-plugins doesn't respect libdir
https://sourceware.org/bugzilla/show_bug.cgi?id=24262 --- Comment #4 from cvs-commit at gcc dot gnu.org --- The binutils-2_33-branch branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=443adfa40984bede981c883b6efcaf493ba77957 commit 443adfa40984bede981c883b6efcaf493ba77957 Author: Alan Modra Date: Thu Sep 26 16:20:35 2019 +0930 PR24262, plugin search dir doesn't respect --libdir bfd/ PR 24262 * Makefile.am (AM_CPPFLAGS): Add -DLIBDIR. * plugin.c (load_plugin): Search both ${libdir}/bfd-plugins and ${bindir}/../lib/bfd-plugins if different. * Makefile.in: Regenerate. ld/ PR 24262 * ld.texi (-plugin): Revert 2019-03-15 change. (cherry picked from commit 41f37a6fb71f2a3de388108f5cdfca9cbe6e9d51) -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 Alan Modra changed: What|Removed |Added Status|ASSIGNED|RESOLVED CC|amodra at gmail dot com| Resolution|--- |FIXED Target Milestone|--- |2.33 --- Comment #4 from Alan Modra --- Fixed -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Alan Modra changed: What|Removed |Added Status|ASSIGNED|RESOLVED CC|amodra at gmail dot com| Resolution|--- |FIXED Target Milestone|--- |2.34 --- Comment #3 from Alan Modra --- Fixed. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 --- Comment #3 from cvs-commit at gcc dot gnu.org --- The binutils-2_33-branch branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0bc183f81a0ba549972371e78536dbd29d1c4e5f commit 0bc183f81a0ba549972371e78536dbd29d1c4e5f Author: Alan Modra Date: Wed Oct 9 00:11:28 2019 +1030 PR25079, "ar s" stopped working 's' is both a command and a modifier. If given as a command then we aren't lacking an operation. I think the same goes when mri mode is selected: any following command line used to be ignored. PR 25079 * ar.c (decode_options): Don't try for command options if write_armap or mri_mode is selected. (cherry picked from commit b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa) -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 --- Comment #2 from cvs-commit at gcc dot gnu.org --- The master branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=063c511bd79281f33fd33f0964541a73511b9e2b commit 063c511bd79281f33fd33f0964541a73511b9e2b Author: Alan Modra Date: Wed Oct 9 00:07:29 2019 +1030 PR25078, stack overflow in function find_abstract_instance PR 25078 * dwarf2.c (find_abstract_instance): Delete orig_info_ptr, add recur_count. Error on recur_count reaching 100 rather than info_ptr matching orig_info_ptr. Adjust calls. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25046] readelf "Reading xxx bytes extends past end of file for dynamic section"
https://sourceware.org/bugzilla/show_bug.cgi?id=25046 --- Comment #3 from cvs-commit at gcc dot gnu.org --- The binutils-2_33-branch branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7cb2dcb804d0af6b5fa9981907bc1f097730ac1b commit 7cb2dcb804d0af6b5fa9981907bc1f097730ac1b Author: Alan Modra Date: Mon Sep 30 14:04:08 2019 +0930 PR25046, readelf "Reading xxx bytes extends past end of file for dynamic section" PR 25046 * readelf.c (process_program_headers): Clear dynamic_addr and dynamic_size earlier. (cherry picked from commit 663f67df1e8a7ac0ab8c8c577817067ca32ea4be) -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 --- Comment #2 from cvs-commit at gcc dot gnu.org --- The master branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa commit b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa Author: Alan Modra Date: Wed Oct 9 00:11:28 2019 +1030 PR25079, "ar s" stopped working 's' is both a command and a modifier. If given as a command then we aren't lacking an operation. I think the same goes when mri mode is selected: any following command line used to be ignored. PR 25079 * ar.c (decode_options): Don't try for command options if write_armap or mri_mode is selected. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 Alan Modra changed: What|Removed |Added Status|NEW |ASSIGNED CC||amodra at gmail dot com Assignee|unassigned at sourceware dot org |amodra at gmail dot com --- Comment #1 from Alan Modra --- Caused by the PR13256 fix. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug ld/25081] New: Discrepancy between VMA and LMA after ALIGN
https://sourceware.org/bugzilla/show_bug.cgi?id=25081 Bug ID: 25081 Summary: Discrepancy between VMA and LMA after ALIGN Product: binutils Version: 2.34 (HEAD) Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: joey.ye at arm dot com Target Milestone: --- Following case fails with trunk 2.33 on x86_64 and arm, and seems to be working with 2.27: $ cat a.c int g = 4; int main() { return g; } $ cat s.ld MEMORY { FLASH (rx) : ORIGIN = 0, LENGTH = 0x1000 RAM (rwx) : ORIGIN = 0x1000, LENGTH = 0x1000 } ENTRY(main) SECTIONS { .text : { *(.text*) /* Force text section end unaligned */ . = ALIGN(16); LONG(0) LONG(0) LONG(0) } > FLASH .sec1 : ALIGN(16) { *(.section_noexist) /* Aligning LMA in a leading empty section, for some reason doesn't align VMA according */ . = ALIGN(16); __some_symbol = .; } > FLASH .sec2 : { /* To reproduce following must match one or more empty sections */ /* Discrepancy between VMA and LMA starts from here */ *(.bss*) } > FLASH .sec3 : { /* Discrepancy between VMA and LMA remains here */ LONG(0) LONG(0) } > FLASH .data : { *(.data*) } > RAM AT> FLASH .bss : { *(COMMON) } > RAM } $ ld -v GNU ld (GNU Binutils) 2.33.50.20191008 $ gcc -c a.c $ ld -T s.ld -Map=a.map a.o -o a.out ld: section .data LMA [0060,0063] overlaps section .sec3 LMA [0060,0067] -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug gas/25012] pushq/popq %gs/%fs in .code64 now unsupported
https://sourceware.org/bugzilla/show_bug.cgi?id=25012 --- Comment #5 from Christian Ehrhardt --- Thank you Jan! -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25080] New: [2.33 Regression] strip removes relro program header
https://sourceware.org/bugzilla/show_bug.cgi?id=25080 Bug ID: 25080 Summary: [2.33 Regression] strip removes relro program header Product: binutils Version: 2.33 Status: NEW Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: doko at debian dot org Target Milestone: --- [forwarded from [https://bugs.debian.org/940683] Is this a regression, or an intended behavior change? Also need to check if that changed in 2.32 or .33. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] New: [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 Bug ID: 25079 Summary: [2.33 Regression] ar: "ar s" stopped working Product: binutils Version: 2.33 Status: NEW Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: doko at debian dot org Target Milestone: --- [forwarded from https://bugs.debian.org/941921] --- BEGIN --- #!/bin/sh set -eux tmp="$(mktemp -d)" echo >"$tmp/test.c" "void foo() {}" ${CC:-cc} -c "$tmp/test.c" -o "$tmp/test.o" ${AR:-ar} r "$tmp/test.a" "$tmp/test.o" ${AR:-ar} s "$tmp/test.a" --- END --- This worked with binutils versions up to and including 2.32. This fails with the 2.33 branch: > + ar s /tmp/tmp.dE1aZKp2ui/test.a > -s: invalid option -- '/' > Usage: ar [emulation options] [-]{dmpqrstx}[abcDfilMNoOPsSTuvV] [--plugin > ] [member-name] [count] archive-file file... >ar -M [https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED Last reconfirmed||2019-10-08 CC||amodra at gmail dot com Assignee|unassigned at sourceware dot org |amodra at gmail dot com Ever confirmed|0 |1 --- Comment #1 from Alan Modra --- So I added simple infinite recursion detection to find_abstract_instace for PR22187. Now someone has crafted a binary to get around that via mutual recursion. Oh well, I suppose I should have closed the original bug as wont-fix or fixed the recursion properly. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] New: stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Bug ID: 25078 Summary: stack overflow in function find_abstract_instance Product: binutils Version: 2.34 (HEAD) Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: bugzilla.sourceware at qiushi dot ac.cn Target Milestone: --- Created attachment 12031 --> https://sourceware.org/bugzilla/attachment.cgi?id=12031&action=edit poc6 ``` # ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms --synthetic --with-symbol-versions -D poc6_stack-overflow_find_abstract_instance ASAN:SIGSEGV = ==7==ERROR: AddressSanitizer: stack-overflow on address 0x7f7fef28 (pc 0x00692d37 bp 0x6221c980 sp 0x7f7feee0 T0) #0 0x692d36 in find_abstract_instance dwarf2.c:2815 #1 0x693e6a in find_abstract_instance dwarf2.c:2987 #2 0x693e6a in find_abstract_instance dwarf2.c:2987 #3 0x693e6a in find_abstract_instance dwarf2.c:2987 #4 0x693e6a in find_abstract_instance dwarf2.c:2987 #5 0x693e6a in find_abstract_instance dwarf2.c:2987 #6 0x693e6a in find_abstract_instance dwarf2.c:2987 #7 0x693e6a in find_abstract_instance dwarf2.c:2987 #8 0x693e6a in find_abstract_instance dwarf2.c:2987 #9 0x693e6a in find_abstract_instance dwarf2.c:2987 #10 0x693e6a in find_abstract_instance dwarf2.c:2987 ... #251 0x693e6a in find_abstract_instance dwarf2.c:2987 SUMMARY: AddressSanitizer: stack-overflow dwarf2.c:2815 find_abstract_instance ==7==ABORTING ``` Reproducible Docker image has been pushd to `zjuchenyuan/dockerized_poc:binutils-pocs`, Dockerfile: ``` FROM zjuchenyuan/afl ENV AFL_USE_ASAN=1 RUN git clone git://sourceware.org/git/binutils-gdb.git --depth 50 &&\ cd binutils-gdb &&\ git checkout 816228ed09dc867fa16dc5458277d649885d98fe &&\ ./configure --disable-shared &&\ for i in bfd libiberty opcodes libctf; do cd $i; ./configure --disable-shared && make -j; cd ..; done &&\ cd binutils &&\ ./configure --disable-shared &&\ make objdump nm-new size readelf cxxfilt RUN apt install -y gdb &&\ echo -e "set pagination off\nset confirm off" > /root/.gdbinit ADD . / RUN ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms --synthetic --with-symbol-versions -D poc6_stack-overflow_find_abstract_instance || exit 0 ``` -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils