Launchpad has imported 11 comments from the remote bug at https://sourceware.org/bugzilla/show_bug.cgi?id=11053.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2009-12-04T19:35:39+00:00 Paolo Bonzini wrote: $ echo 87654321 | \ grep -E -e '^(.?)(.?)(.?)(.?)(.?)(.?)(.?)(.?)(.?).?\9\8\7\6\5\4\3\2\1$' Segmentation fault Will work on a C reproducer soon. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/0 ------------------------------------------------------------------------ On 2010-04-09T17:46:04+00:00 Paolo Bonzini wrote: Minimized testcases (same regex): $ echo 8 | grep -E -e "$regex" 8 # >>> okay $ echo 87 | grep -E -e "$regex" Segmentation fault $ echo 88 | grep -E -e "$regex" 88 # >>> okay $ echo 887 | grep -E -e "$regex" Segmentation fault Also, everything I tried to feed that is of length 9 or higher and should not match, gives either a false positive or a segfault: $ echo 987654321 | grep -E -e "$regex" 887654321 $ echo 484635532 | grep -E -e "$regex" 484635532 $ echo 0123454321 | grep -E -e "$regex" Segmentation fault $ echo 0000123454321 | grep -E -e "$regex" Segmentation fault Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/1 ------------------------------------------------------------------------ On 2014-09-23T02:28:01+00:00 Paul Eggert wrote: I ran into what appears to be the same bug independently and came up with a simpler (all-C) reproducer; please see Bug#17356. I tried to merge the two bug reports via the web interface, but failed to do so. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/2 ------------------------------------------------------------------------ On 2014-09-23T07:55:27+00:00 Florian Weimer wrote: *** Bug 17356 has been marked as a duplicate of this bug. *** Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/3 ------------------------------------------------------------------------ On 2017-01-17T21:24:04+00:00 Paul Eggert wrote: This bug causes GNU coreutils Bug#22793 "grep -E assertion failure with back references"; see <https://bugs.gnu.org/22793>. I'm adding comments to both bug reports so that the connection between the two bugs is clearer. Although this bug's current assignee is Paolo Bonzini (the original reporter), I think Paolo is pretty busy doing other stuff. Is someone else available to work on regex bugs? I suspect the fix for this bug will not be trivial. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/4 ------------------------------------------------------------------------ On 2017-01-17T22:01:52+00:00 Paul Eggert wrote: Created attachment 9758 C code to reproduce the bug I attached a slightly-simpler C-language reproducer for the bug, derived from the attachment in Bug#17356. If I compile and run this program, it outputs "a.out: regexec.c:1375: pop_fail_stack: Assertion `num >= 0' failed." and then aborts. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/5 ------------------------------------------------------------------------ On 2017-12-08T18:32:01+00:00 Paul Eggert wrote: Created attachment 10674 This test case silently returns the wrong answer Following up on a 'grep' bug report here: https://debbugs.gnu.org/29613 attached is a seemingly-related test case which illustrates a bug that causes 'grep' to quietly return the wrong answer instead of dumping core. This test case should exit successfully, but because of the bug regexec returns 0 so the test case exits with status 1. I compiled and ran it on Fedora 27 x86-64 with "gcc regbug.c; ./a.out". Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/6 ------------------------------------------------------------------------ On 2018-09-22T21:27:12+00:00 Paul Eggert wrote: Another test case for this bug can be found here: https://debbugs.gnu.org/32806 Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/7 ------------------------------------------------------------------------ On 2019-01-31T03:20:02+00:00 Paul Eggert wrote: Another test case for this bug can be found here: https://debbugs.gnu.org/34238 Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/8 ------------------------------------------------------------------------ On 2019-11-11T11:27:12+00:00 Cvs-commit wrote: The master branch has been updated by Andreas Schwab <sch...@sourceware.org>: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=fc141ea78ee3d87c67b18488827fe2d89c9343e7 commit fc141ea78ee3d87c67b18488827fe2d89c9343e7 Author: Andreas Schwab <sch...@suse.de> Date: Wed Oct 30 10:38:36 2019 +0100 Fix array bounds violation in regex matcher (bug 25149) If the regex has more subexpressions than the number of elements allocated in the regmatch_t array passed to regexec then proceed_next_node may access the regmatch_t array outside its bounds. No testcase added because even without this bug it would then crash in pop_fail_stack which is bug 11053. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/9 ------------------------------------------------------------------------ On 2021-02-06T07:37:36+00:00 Paul Eggert wrote: Created attachment 13204 regex: fix undefined backref behavior I am attaching a proposed patch for this longstanding bug. I plan to email this to libc-alpha shortly. Reply at: https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1940996/comments/10 ** Changed in: grep Status: Unknown => In Progress ** Changed in: grep Importance: Unknown => Medium -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1940996 Title: test failure - test-regex To manage notifications about this bug go to: https://bugs.launchpad.net/grep/+bug/1940996/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs