[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 --- Comment #2 from Alan Modra --- *** Bug 25073 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25073] invalide free in function _bfd_dwarf2_cleanup_debug_info
https://sourceware.org/bugzilla/show_bug.cgi?id=25073 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |DUPLICATE --- Comment #2 from Alan Modra --- Both of these testcases trigger the same overflow as pr25070 *** This bug has been marked as a duplicate of bug 25070 *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25072] malloc(): memory corruption in function print_symbol
https://sourceware.org/bugzilla/show_bug.cgi?id=25072 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |DUPLICATE --- Comment #1 from Alan Modra --- Same underlying problem as PR25070 *** This bug has been marked as a duplicate of bug 25070 *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 --- Comment #1 from Alan Modra --- *** Bug 25072 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25071] excessive memory allocation in _bfd_x86_elf_get_synthetic_symtab
https://sourceware.org/bugzilla/show_bug.cgi?id=25071 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |RESOLVED CC||amodra at gmail dot com Resolution|--- |WONTFIX --- Comment #2 from Alan Modra --- Failing to allocate a lot of memory due to a crafted testcase is not interesting. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25070] SEGV in function _bfd_dwarf2_find_nearest_line
https://sourceware.org/bugzilla/show_bug.cgi?id=25070 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED Last reconfirmed||2019-10-09 Assignee|unassigned at sourceware dot org |amodra at gmail dot com Ever confirmed|0 |1 -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25071] excessive memory allocation in _bfd_x86_elf_get_synthetic_symtab
https://sourceware.org/bugzilla/show_bug.cgi?id=25071 --- Comment #1 from H.J. Lu --- (In reply to zjuchenyuan from comment #0) > Step 7/10 : RUN ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms > --synthetic --with-symbol-versions -D > poc2_excessive-malloc__bfd_x86_elf_get_synthetic_symtab || exit 0 > ---> Running in cc859742afde > ./binutils-gdb/binutils/nm-new: warning: > poc2_excessive-malloc__bfd_x86_elf_get_synthetic_symtab has a corrupt > section with a size (ff8e38e2d42e) larger than the file size Shouldn't nm stop for corrupt section? -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/24262] bfd-plugins doesn't respect libdir
https://sourceware.org/bugzilla/show_bug.cgi?id=24262
--- Comment #4 from cvs-commit at gcc dot gnu.org ---
The binutils-2_33-branch branch has been updated by Alan Modra
:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=443adfa40984bede981c883b6efcaf493ba77957
commit 443adfa40984bede981c883b6efcaf493ba77957
Author: Alan Modra
Date: Thu Sep 26 16:20:35 2019 +0930
PR24262, plugin search dir doesn't respect --libdir
bfd/
PR 24262
* Makefile.am (AM_CPPFLAGS): Add -DLIBDIR.
* plugin.c (load_plugin): Search both ${libdir}/bfd-plugins and
${bindir}/../lib/bfd-plugins if different.
* Makefile.in: Regenerate.
ld/
PR 24262
* ld.texi (-plugin): Revert 2019-03-15 change.
(cherry picked from commit 41f37a6fb71f2a3de388108f5cdfca9cbe6e9d51)
--
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 Alan Modra changed: What|Removed |Added Status|ASSIGNED|RESOLVED CC|amodra at gmail dot com| Resolution|--- |FIXED Target Milestone|--- |2.33 --- Comment #4 from Alan Modra --- Fixed -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Alan Modra changed: What|Removed |Added Status|ASSIGNED|RESOLVED CC|amodra at gmail dot com| Resolution|--- |FIXED Target Milestone|--- |2.34 --- Comment #3 from Alan Modra --- Fixed. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 --- Comment #3 from cvs-commit at gcc dot gnu.org --- The binutils-2_33-branch branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0bc183f81a0ba549972371e78536dbd29d1c4e5f commit 0bc183f81a0ba549972371e78536dbd29d1c4e5f Author: Alan Modra Date: Wed Oct 9 00:11:28 2019 +1030 PR25079, "ar s" stopped working 's' is both a command and a modifier. If given as a command then we aren't lacking an operation. I think the same goes when mri mode is selected: any following command line used to be ignored. PR 25079 * ar.c (decode_options): Don't try for command options if write_armap or mri_mode is selected. (cherry picked from commit b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa) -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 --- Comment #2 from cvs-commit at gcc dot gnu.org --- The master branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=063c511bd79281f33fd33f0964541a73511b9e2b commit 063c511bd79281f33fd33f0964541a73511b9e2b Author: Alan Modra Date: Wed Oct 9 00:07:29 2019 +1030 PR25078, stack overflow in function find_abstract_instance PR 25078 * dwarf2.c (find_abstract_instance): Delete orig_info_ptr, add recur_count. Error on recur_count reaching 100 rather than info_ptr matching orig_info_ptr. Adjust calls. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25046] readelf "Reading xxx bytes extends past end of file for dynamic section"
https://sourceware.org/bugzilla/show_bug.cgi?id=25046 --- Comment #3 from cvs-commit at gcc dot gnu.org --- The binutils-2_33-branch branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7cb2dcb804d0af6b5fa9981907bc1f097730ac1b commit 7cb2dcb804d0af6b5fa9981907bc1f097730ac1b Author: Alan Modra Date: Mon Sep 30 14:04:08 2019 +0930 PR25046, readelf "Reading xxx bytes extends past end of file for dynamic section" PR 25046 * readelf.c (process_program_headers): Clear dynamic_addr and dynamic_size earlier. (cherry picked from commit 663f67df1e8a7ac0ab8c8c577817067ca32ea4be) -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 --- Comment #2 from cvs-commit at gcc dot gnu.org --- The master branch has been updated by Alan Modra : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa commit b7d9d3ee59236d6039d7d7ccd17ff6b47e07a8aa Author: Alan Modra Date: Wed Oct 9 00:11:28 2019 +1030 PR25079, "ar s" stopped working 's' is both a command and a modifier. If given as a command then we aren't lacking an operation. I think the same goes when mri mode is selected: any following command line used to be ignored. PR 25079 * ar.c (decode_options): Don't try for command options if write_armap or mri_mode is selected. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079 Alan Modra changed: What|Removed |Added Status|NEW |ASSIGNED CC||amodra at gmail dot com Assignee|unassigned at sourceware dot org |amodra at gmail dot com --- Comment #1 from Alan Modra --- Caused by the PR13256 fix. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug ld/25081] New: Discrepancy between VMA and LMA after ALIGN
https://sourceware.org/bugzilla/show_bug.cgi?id=25081
Bug ID: 25081
Summary: Discrepancy between VMA and LMA after ALIGN
Product: binutils
Version: 2.34 (HEAD)
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: ld
Assignee: unassigned at sourceware dot org
Reporter: joey.ye at arm dot com
Target Milestone: ---
Following case fails with trunk 2.33 on x86_64 and arm, and seems to be working
with 2.27:
$ cat a.c
int g = 4;
int main()
{
return g;
}
$ cat s.ld
MEMORY
{
FLASH (rx) : ORIGIN = 0, LENGTH = 0x1000
RAM (rwx) : ORIGIN = 0x1000, LENGTH = 0x1000
}
ENTRY(main)
SECTIONS
{
.text :
{
*(.text*)
/* Force text section end unaligned */
. = ALIGN(16);
LONG(0)
LONG(0)
LONG(0)
} > FLASH
.sec1 : ALIGN(16)
{
*(.section_noexist)
/* Aligning LMA in a leading empty section, for some reason
doesn't align VMA according */
. = ALIGN(16);
__some_symbol = .;
} > FLASH
.sec2 :
{
/* To reproduce following must match one or more empty sections */
/* Discrepancy between VMA and LMA starts from here */
*(.bss*)
} > FLASH
.sec3 :
{
/* Discrepancy between VMA and LMA remains here */
LONG(0)
LONG(0)
} > FLASH
.data :
{
*(.data*)
} > RAM AT> FLASH
.bss :
{
*(COMMON)
} > RAM
}
$ ld -v
GNU ld (GNU Binutils) 2.33.50.20191008
$ gcc -c a.c
$ ld -T s.ld -Map=a.map a.o -o a.out
ld: section .data LMA [0060,0063] overlaps section
.sec3 LMA [0060,0067]
--
You are receiving this mail because:
You are on the CC list for the bug.
___
bug-binutils mailing list
bug-binutils@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug gas/25012] pushq/popq %gs/%fs in .code64 now unsupported
https://sourceware.org/bugzilla/show_bug.cgi?id=25012 --- Comment #5 from Christian Ehrhardt --- Thank you Jan! -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25080] New: [2.33 Regression] strip removes relro program header
https://sourceware.org/bugzilla/show_bug.cgi?id=25080 Bug ID: 25080 Summary: [2.33 Regression] strip removes relro program header Product: binutils Version: 2.33 Status: NEW Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: doko at debian dot org Target Milestone: --- [forwarded from [https://bugs.debian.org/940683] Is this a regression, or an intended behavior change? Also need to check if that changed in 2.32 or .33. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25079] New: [2.33 Regression] ar: "ar s" stopped working
https://sourceware.org/bugzilla/show_bug.cgi?id=25079
Bug ID: 25079
Summary: [2.33 Regression] ar: "ar s" stopped working
Product: binutils
Version: 2.33
Status: NEW
Severity: normal
Priority: P2
Component: binutils
Assignee: unassigned at sourceware dot org
Reporter: doko at debian dot org
Target Milestone: ---
[forwarded from https://bugs.debian.org/941921]
--- BEGIN ---
#!/bin/sh
set -eux
tmp="$(mktemp -d)"
echo >"$tmp/test.c" "void foo() {}"
${CC:-cc} -c "$tmp/test.c" -o "$tmp/test.o"
${AR:-ar} r "$tmp/test.a" "$tmp/test.o"
${AR:-ar} s "$tmp/test.a"
--- END ---
This worked with binutils versions up to and including 2.32.
This fails with the 2.33 branch:
> + ar s /tmp/tmp.dE1aZKp2ui/test.a
> -s: invalid option -- '/'
> Usage: ar [emulation options] [-]{dmpqrstx}[abcDfilMNoOPsSTuvV] [--plugin
> ] [member-name] [count] archive-file file...
>ar -M [https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Alan Modra changed: What|Removed |Added Status|UNCONFIRMED |ASSIGNED Last reconfirmed||2019-10-08 CC||amodra at gmail dot com Assignee|unassigned at sourceware dot org |amodra at gmail dot com Ever confirmed|0 |1 --- Comment #1 from Alan Modra --- So I added simple infinite recursion detection to find_abstract_instace for PR22187. Now someone has crafted a binary to get around that via mutual recursion. Oh well, I suppose I should have closed the original bug as wont-fix or fixed the recursion properly. -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
[Bug binutils/25078] New: stack overflow in function find_abstract_instance
https://sourceware.org/bugzilla/show_bug.cgi?id=25078 Bug ID: 25078 Summary: stack overflow in function find_abstract_instance Product: binutils Version: 2.34 (HEAD) Status: UNCONFIRMED Severity: normal Priority: P2 Component: binutils Assignee: unassigned at sourceware dot org Reporter: bugzilla.sourceware at qiushi dot ac.cn Target Milestone: --- Created attachment 12031 --> https://sourceware.org/bugzilla/attachment.cgi?id=12031&action=edit poc6 ``` # ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms --synthetic --with-symbol-versions -D poc6_stack-overflow_find_abstract_instance ASAN:SIGSEGV = ==7==ERROR: AddressSanitizer: stack-overflow on address 0x7f7fef28 (pc 0x00692d37 bp 0x6221c980 sp 0x7f7feee0 T0) #0 0x692d36 in find_abstract_instance dwarf2.c:2815 #1 0x693e6a in find_abstract_instance dwarf2.c:2987 #2 0x693e6a in find_abstract_instance dwarf2.c:2987 #3 0x693e6a in find_abstract_instance dwarf2.c:2987 #4 0x693e6a in find_abstract_instance dwarf2.c:2987 #5 0x693e6a in find_abstract_instance dwarf2.c:2987 #6 0x693e6a in find_abstract_instance dwarf2.c:2987 #7 0x693e6a in find_abstract_instance dwarf2.c:2987 #8 0x693e6a in find_abstract_instance dwarf2.c:2987 #9 0x693e6a in find_abstract_instance dwarf2.c:2987 #10 0x693e6a in find_abstract_instance dwarf2.c:2987 ... #251 0x693e6a in find_abstract_instance dwarf2.c:2987 SUMMARY: AddressSanitizer: stack-overflow dwarf2.c:2815 find_abstract_instance ==7==ABORTING ``` Reproducible Docker image has been pushd to `zjuchenyuan/dockerized_poc:binutils-pocs`, Dockerfile: ``` FROM zjuchenyuan/afl ENV AFL_USE_ASAN=1 RUN git clone git://sourceware.org/git/binutils-gdb.git --depth 50 &&\ cd binutils-gdb &&\ git checkout 816228ed09dc867fa16dc5458277d649885d98fe &&\ ./configure --disable-shared &&\ for i in bfd libiberty opcodes libctf; do cd $i; ./configure --disable-shared && make -j; cd ..; done &&\ cd binutils &&\ ./configure --disable-shared &&\ make objdump nm-new size readelf cxxfilt RUN apt install -y gdb &&\ echo -e "set pagination off\nset confirm off" > /root/.gdbinit ADD . / RUN ./binutils-gdb/binutils/nm-new -A -a -l -S -s --special-syms --synthetic --with-symbol-versions -D poc6_stack-overflow_find_abstract_instance || exit 0 ``` -- You are receiving this mail because: You are on the CC list for the bug. ___ bug-binutils mailing list bug-binutils@gnu.org https://lists.gnu.org/mailman/listinfo/bug-binutils
