* [Bug libdw/21330] New: dwarf_peel_type() loops infinitely for typedef const struct ...
@ 2017-03-30 2:06 kubo at jiubao dot org
2017-03-30 9:29 ` [Bug libdw/21330] " mark at klomp dot org
` (2 more replies)
0 siblings, 3 replies; 4+ messages in thread
From: kubo at jiubao dot org @ 2017-03-30 2:06 UTC (permalink / raw)
To: elfutils-devel
https://sourceware.org/bugzilla/show_bug.cgi?id=21330
Bug ID: 21330
Summary: dwarf_peel_type() loops infinitely for typedef const
struct ...
Product: elfutils
Version: unspecified
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: libdw
Assignee: unassigned at sourceware dot org
Reporter: kubo at jiubao dot org
CC: elfutils-devel at sourceware dot org
Target Milestone: ---
When a type is defined as "typedef const struct foo foo_t", dwarf_peel_type()
for foo_t loops infinitely.
38 int
39 dwarf_peel_type (Dwarf_Die *die, Dwarf_Die *result)
40 {
41 int tag;
42
43 /* Ignore previous errors. */
44 if (die == NULL)
45 return -1;
46
47 *result = *die;
48 tag = INTUSE (dwarf_tag) (result);
49 while (tag == DW_TAG_typedef
50 || tag == DW_TAG_const_type
51 || tag == DW_TAG_volatile_type
52 || tag == DW_TAG_restrict_type
53 || tag == DW_TAG_atomic_type)
54 {
55 Dwarf_Attribute attr_mem;
56 Dwarf_Attribute *attr = INTUSE (dwarf_attr_integrate) (die,
DW_AT_type,
57 &attr_mem);
58 if (attr == NULL)
59 return 1;
60
61 if (INTUSE (dwarf_formref_die) (attr, result) == NULL)
62 return -1;
63
64 tag = INTUSE (dwarf_tag) (result);
65 }
...
dwarf_tag() at line 48 returns DW_TAG_typedef.
dwarf_attr_integrate() and dwarf_formref_die() sets DW_AT_type of die to
result.
dwarf_tag() at line 64 returns DW_TAG_const.
dwarf_attr_integrate() and dwarf_formref_die() sets same value to result
because the first argument of dwarf_attr_integrate() is unchanged.
dwarf_tag() at line 64 returns same value forever.
--
You are receiving this mail because:
You are on the CC list for the bug.
^ permalink raw reply [flat|nested] 4+ messages in thread* [Bug libdw/21330] dwarf_peel_type() loops infinitely for typedef const struct ... 2017-03-30 2:06 [Bug libdw/21330] New: dwarf_peel_type() loops infinitely for typedef const struct kubo at jiubao dot org @ 2017-03-30 9:29 ` mark at klomp dot org 2017-03-30 10:27 ` mark at klomp dot org 2017-04-05 14:43 ` mark at klomp dot org 2 siblings, 0 replies; 4+ messages in thread From: mark at klomp dot org @ 2017-03-30 9:29 UTC (permalink / raw) To: elfutils-devel https://sourceware.org/bugzilla/show_bug.cgi?id=21330 Mark Wielaard <mark at klomp dot org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mark at klomp dot org --- Comment #1 from Mark Wielaard <mark at klomp dot org> --- Oops. That die argument at line 56 to dwarf_attr_integrate () should obviously have been result instead. This looks like it could never have worked. But there are various testcases that should have caught this. Unfortunately all usages in elfutils itself do dwarf_peel_type (die, die). And that invocation works just fine... -- You are receiving this mail because: You are on the CC list for the bug. ^ permalink raw reply [flat|nested] 4+ messages in thread
* [Bug libdw/21330] dwarf_peel_type() loops infinitely for typedef const struct ... 2017-03-30 2:06 [Bug libdw/21330] New: dwarf_peel_type() loops infinitely for typedef const struct kubo at jiubao dot org 2017-03-30 9:29 ` [Bug libdw/21330] " mark at klomp dot org @ 2017-03-30 10:27 ` mark at klomp dot org 2017-04-05 14:43 ` mark at klomp dot org 2 siblings, 0 replies; 4+ messages in thread From: mark at klomp dot org @ 2017-03-30 10:27 UTC (permalink / raw) To: elfutils-devel https://sourceware.org/bugzilla/show_bug.cgi?id=21330 --- Comment #2 from Mark Wielaard <mark at klomp dot org> --- Posted a patch: https://sourceware.org/ml/elfutils-devel/2017-q1/msg00149.html -- You are receiving this mail because: You are on the CC list for the bug. ^ permalink raw reply [flat|nested] 4+ messages in thread
* [Bug libdw/21330] dwarf_peel_type() loops infinitely for typedef const struct ... 2017-03-30 2:06 [Bug libdw/21330] New: dwarf_peel_type() loops infinitely for typedef const struct kubo at jiubao dot org 2017-03-30 9:29 ` [Bug libdw/21330] " mark at klomp dot org 2017-03-30 10:27 ` mark at klomp dot org @ 2017-04-05 14:43 ` mark at klomp dot org 2 siblings, 0 replies; 4+ messages in thread From: mark at klomp dot org @ 2017-04-05 14:43 UTC (permalink / raw) To: elfutils-devel https://sourceware.org/bugzilla/show_bug.cgi?id=21330 Mark Wielaard <mark at klomp dot org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Resolution|--- |FIXED --- Comment #3 from Mark Wielaard <mark at klomp dot org> --- commit f339da994fda25b51cddc3d88182f249b75f89ff Author: Mark Wielaard <mark@klomp.org> Date: Thu Mar 30 12:19:53 2017 +0200 libdw: Fix dwarf_peel_type infinite loop. We were calling dwarf_attr_integrate () in the die in the loop instead of on the result. Which would cause an infinite loop when die != result. Add a testcase that explicitly checks this case. https://sourceware.org/bugzilla/show_bug.cgi?id=21330 Signed-off-by: Mark Wielaard <mark@klomp.org> -- You are receiving this mail because: You are on the CC list for the bug. ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2017-04-05 14:43 UTC | newest] Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- 2017-03-30 2:06 [Bug libdw/21330] New: dwarf_peel_type() loops infinitely for typedef const struct kubo at jiubao dot org 2017-03-30 9:29 ` [Bug libdw/21330] " mark at klomp dot org 2017-03-30 10:27 ` mark at klomp dot org 2017-04-05 14:43 ` mark at klomp dot org
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).