public inbox for gdb-prs@sourceware.org
help / color / mirror / Atom feed
From: "vries at gcc dot gnu.org" <sourceware-bugzilla@sourceware.org>
To: gdb-prs@sourceware.org
Subject: [Bug gdb/31258] New: [gdb] ThreadSanitizer: heap-use-after-free in memmove
Date: Thu, 18 Jan 2024 09:07:43 +0000 [thread overview]
Message-ID: <bug-31258-4717@http.sourceware.org/bugzilla/> (raw)
https://sourceware.org/bugzilla/show_bug.cgi?id=31258
Bug ID: 31258
Summary: [gdb] ThreadSanitizer: heap-use-after-free in memmove
Product: gdb
Version: HEAD
Status: NEW
Severity: normal
Priority: P2
Component: gdb
Assignee: unassigned at sourceware dot org
Reporter: vries at gcc dot gnu.org
Target Milestone: ---
When building gdb with O0 -fsanitize=thread, and run test-case
gdb.ada/uninitialized_vars.exp, I run into a heap-user-after-free:
(gdb) info locals
a = 0
z = (a => 1, b => false, c => 2.0)
y = (a => 184, c => 9.18340949e-41, d => -411009023)
==================
[1m[31mWARNING: ThreadSanitizer: heap-use-after-free (pid=519489)
[1m[0m[1m[34m Read of size 4 at 0xfffff1c0fc18 by main thread:
[1m[0m #0 memmove <null> (libtsan.so.2+0x4b10c) (BuildId:
fe872cc4563474b7ad67d63a019aa94e1e0df888)
#1 unsigned char* std::__copy_move_backward<false, true,
std::random_access_iterator_tag>::__copy_move_b<unsigned char const, unsigned
char>(unsigned char const*, unsigned char const*, unsigned char*)
/usr/include/c++/13/bits/stl_algobase.h:748 (gdb+0x45bf80) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#2 unsigned char* std::__copy_move_backward_a2<false, unsigned char const*,
unsigned char*>(unsigned char const*, unsigned char const*, unsigned char*)
/usr/include/c++/13/bits/stl_algobase.h:769 (gdb+0x45b12c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#3 unsigned char* std::__copy_move_backward_a1<false, unsigned char const*,
unsigned char*>(unsigned char const*, unsigned char const*, unsigned char*)
/usr/include/c++/13/bits/stl_algobase.h:778 (gdb+0x459dc4) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#4 unsigned char* std::__copy_move_backward_a<false, unsigned char const*,
unsigned char*>(unsigned char const*, unsigned char const*, unsigned char*)
/usr/include/c++/13/bits/stl_algobase.h:807 (gdb+0x458710) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#5 unsigned char* std::copy_backward<unsigned char const*, unsigned
char*>(unsigned char const*, unsigned char const*, unsigned char*)
/usr/include/c++/13/bits/stl_algobase.h:867 (gdb+0x456c4c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#6 void gdb::copy<unsigned char const, unsigned
char>(gdb::array_view<unsigned char const>, gdb::array_view<unsigned char>)
/home/vries/gdb/src/gdb/../gdbsupport/array-view.h:223 (gdb+0x455030) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#7 value::contents_copy_raw(value*, long, long, long)
/home/vries/gdb/src/gdb/value.c:1239 (gdb+0x110a4e8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#8 value::primitive_field(long, int, type*)
/home/vries/gdb/src/gdb/value.c:3078 (gdb+0x110fef8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#9 value_field(value*, int) /home/vries/gdb/src/gdb/value.c:3095
(gdb+0x110ffa8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#10 print_field_values /home/vries/gdb/src/gdb/ada-valprint.c:658
(gdb+0x4f7f8c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#11 ada_val_print_struct_union /home/vries/gdb/src/gdb/ada-valprint.c:857
(gdb+0x4f88d8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#12 ada_value_print_inner(value*, ui_file*, int, value_print_options
const*) /home/vries/gdb/src/gdb/ada-valprint.c:1042 (gdb+0x4f90a0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#13 ada_language::value_print_inner(value*, ui_file*, int,
value_print_options const*) const <null> (gdb+0x4c5358) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#14 common_val_print(value*, ui_file*, int, value_print_options const*,
language_defn const*) /home/vries/gdb/src/gdb/valprint.c:1092 (gdb+0x10fd41c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#15 common_val_print_checked(value*, ui_file*, int, value_print_options
const*, language_defn const*) /home/vries/gdb/src/gdb/valprint.c:1184
(gdb+0x10fd908) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#16 print_variable_and_value(char const*, symbol*, frame_info_ptr,
ui_file*, int) /home/vries/gdb/src/gdb/printcmd.c:2355 (gdb+0xcb133c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#17 print_variable_and_value_data::operator()(char const*, symbol*)
/home/vries/gdb/src/gdb/stack.c:2295 (gdb+0xf2be88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#18 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::operator()(gdb::fv_detail::erased_callable, char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:305 (gdb+0xf3358c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#19 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::_FUN(gdb::fv_detail::erased_callable, char const*,
symbol*) /home/vries/gdb/src/gdb/../gdbsupport/function-view.h:299
(gdb+0xf335f4) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#20 gdb::function_view<void (char const*, symbol*)>::operator()(char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:289 (gdb+0xf32e18)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#21 iterate_over_block_locals /home/vries/gdb/src/gdb/stack.c:2227
(gdb+0xf2bb78) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#22 iterate_over_block_local_vars(block const*, gdb::function_view<void
(char const*, symbol*)>) /home/vries/gdb/src/gdb/stack.c:2246 (gdb+0xf2bc10)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#23 print_frame_local_vars /home/vries/gdb/src/gdb/stack.c:2367
(gdb+0xf2c1dc) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#24 info_locals_command(char const*, int)
/home/vries/gdb/src/gdb/stack.c:2445 (gdb+0xf2c62c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#25 do_simple_func /home/vries/gdb/src/gdb/cli/cli-decode.c:95
(gdb+0x6e444c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#26 cmd_func(cmd_list_element*, char const*, int)
/home/vries/gdb/src/gdb/cli/cli-decode.c:2735 (gdb+0x6ebb88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#27 execute_command(char const*, int) /home/vries/gdb/src/gdb/top.c:575
(gdb+0xff748c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#28 command_handler(char const*) /home/vries/gdb/src/gdb/event-top.c:566
(gdb+0x942488) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#29 command_line_handler(std::unique_ptr<char, gdb::xfree_deleter<char>
>&&) /home/vries/gdb/src/gdb/event-top.c:802 (gdb+0x942bc0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#30 tui_command_line_handler /home/vries/gdb/src/gdb/tui/tui-interp.c:104
(gdb+0x10365f8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#31 gdb_rl_callback_handler /home/vries/gdb/src/gdb/event-top.c:259
(gdb+0x941884) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#32 rl_callback_read_char
/home/vries/gdb/src/readline/readline/callback.c:290 (gdb+0x11a2c7c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#33 gdb_rl_callback_read_char_wrapper_noexcept
/home/vries/gdb/src/gdb/event-top.c:195 (gdb+0x9415f8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#34 gdb_rl_callback_read_char_wrapper
/home/vries/gdb/src/gdb/event-top.c:234 (gdb+0x941720) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#35 stdin_event_handler /home/vries/gdb/src/gdb/ui.c:155 (gdb+0x1079320)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#36 handle_file_event /home/vries/gdb/src/gdbsupport/event-loop.cc:573
(gdb+0x1cf5678) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#37 gdb_wait_for_event /home/vries/gdb/src/gdbsupport/event-loop.cc:694
(gdb+0x1cf5d3c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#38 gdb_do_one_event(int) /home/vries/gdb/src/gdbsupport/event-loop.cc:264
(gdb+0x1cf4074) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#39 start_event_loop /home/vries/gdb/src/gdb/main.c:408 (gdb+0xb79354)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#40 captured_command_loop /home/vries/gdb/src/gdb/main.c:472 (gdb+0xb79584)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#41 captured_main /home/vries/gdb/src/gdb/main.c:1342 (gdb+0xb7b99c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#42 gdb_main(captured_main_args*) /home/vries/gdb/src/gdb/main.c:1361
(gdb+0xb7ba4c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#43 main /home/vries/gdb/src/gdb/gdb.c:39 (gdb+0x423ce8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
[1m[34m Previous write of size 8 at 0xfffff1c0fc18 by main thread:
[1m[0m #0 operator delete(void*, unsigned long) <null>
(libtsan.so.2+0x8fb14) (BuildId: fe872cc4563474b7ad67d63a019aa94e1e0df888)
#1 std::__new_allocator<dwarf_stack_value>::deallocate(dwarf_stack_value*,
unsigned long) /usr/include/c++/13/bits/new_allocator.h:172 (gdb+0x822504)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#2 std::allocator_traits<std::allocator<dwarf_stack_value>
>::deallocate(std::allocator<dwarf_stack_value>&, dwarf_stack_value*, unsigned
long) /usr/include/c++/13/bits/alloc_traits.h:517 (gdb+0x820bf4) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#3 std::_Vector_base<dwarf_stack_value, std::allocator<dwarf_stack_value>
>::_M_deallocate(dwarf_stack_value*, unsigned long)
/usr/include/c++/13/bits/stl_vector.h:387 (gdb+0x820bf4)
#4 std::_Vector_base<dwarf_stack_value, std::allocator<dwarf_stack_value>
>::~_Vector_base() /usr/include/c++/13/bits/stl_vector.h:366 (gdb+0x81fc94)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#5 std::vector<dwarf_stack_value, std::allocator<dwarf_stack_value>
>::~vector() /usr/include/c++/13/bits/stl_vector.h:735 (gdb+0x81fd24) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#6 dwarf_expr_context::~dwarf_expr_context()
/home/vries/gdb/src/gdb/dwarf2/expr.h:124 (gdb+0x822e38) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#7 dwarf2_evaluate_loc_desc_full /home/vries/gdb/src/gdb/dwarf2/loc.c:1559
(gdb+0x86c10c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#8 dwarf2_evaluate_loc_desc(type*, frame_info_ptr, unsigned char const*,
unsigned long, dwarf2_per_cu_data*, dwarf2_per_objfile*, bool)
/home/vries/gdb/src/gdb/dwarf2/loc.c:1570 (gdb+0x86c2f0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#9 locexpr_read_variable /home/vries/gdb/src/gdb/dwarf2/loc.c:3061
(gdb+0x86f650) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#10 language_defn::read_var_value(symbol*, block const*, frame_info_ptr)
const /home/vries/gdb/src/gdb/findvar.c:502 (gdb+0x98294c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#11 ada_language::read_var_value(symbol*, block const*, frame_info_ptr)
const <null> (gdb+0x4c412c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#12 read_var_value(symbol*, block const*, frame_info_ptr)
/home/vries/gdb/src/gdb/findvar.c:729 (gdb+0x983464) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#13 print_variable_and_value(char const*, symbol*, frame_info_ptr,
ui_file*, int) /home/vries/gdb/src/gdb/printcmd.c:2352 (gdb+0xcb12f0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#14 print_variable_and_value_data::operator()(char const*, symbol*)
/home/vries/gdb/src/gdb/stack.c:2295 (gdb+0xf2be88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#15 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::operator()(gdb::fv_detail::erased_callable, char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:305 (gdb+0xf3358c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#16 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::_FUN(gdb::fv_detail::erased_callable, char const*,
symbol*) /home/vries/gdb/src/gdb/../gdbsupport/function-view.h:299
(gdb+0xf335f4) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#17 gdb::function_view<void (char const*, symbol*)>::operator()(char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:289 (gdb+0xf32e18)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#18 iterate_over_block_locals /home/vries/gdb/src/gdb/stack.c:2227
(gdb+0xf2bb78) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#19 iterate_over_block_local_vars(block const*, gdb::function_view<void
(char const*, symbol*)>) /home/vries/gdb/src/gdb/stack.c:2246 (gdb+0xf2bc10)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#20 print_frame_local_vars /home/vries/gdb/src/gdb/stack.c:2367
(gdb+0xf2c1dc) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#21 info_locals_command(char const*, int)
/home/vries/gdb/src/gdb/stack.c:2445 (gdb+0xf2c62c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#22 do_simple_func /home/vries/gdb/src/gdb/cli/cli-decode.c:95
(gdb+0x6e444c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#23 cmd_func(cmd_list_element*, char const*, int)
/home/vries/gdb/src/gdb/cli/cli-decode.c:2735 (gdb+0x6ebb88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#24 execute_command(char const*, int) /home/vries/gdb/src/gdb/top.c:575
(gdb+0xff748c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#25 command_handler(char const*) /home/vries/gdb/src/gdb/event-top.c:566
(gdb+0x942488) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#26 command_line_handler(std::unique_ptr<char, gdb::xfree_deleter<char>
>&&) /home/vries/gdb/src/gdb/event-top.c:802 (gdb+0x942bc0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#27 tui_command_line_handler /home/vries/gdb/src/gdb/tui/tui-interp.c:104
(gdb+0x10365f8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#28 gdb_rl_callback_handler /home/vries/gdb/src/gdb/event-top.c:259
(gdb+0x941884) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#29 rl_callback_read_char
/home/vries/gdb/src/readline/readline/callback.c:290 (gdb+0x11a2c7c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#30 gdb_rl_callback_read_char_wrapper_noexcept
/home/vries/gdb/src/gdb/event-top.c:195 (gdb+0x9415f8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#31 gdb_rl_callback_read_char_wrapper
/home/vries/gdb/src/gdb/event-top.c:234 (gdb+0x941720) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#32 stdin_event_handler /home/vries/gdb/src/gdb/ui.c:155 (gdb+0x1079320)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#33 handle_file_event /home/vries/gdb/src/gdbsupport/event-loop.cc:573
(gdb+0x1cf5678) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#34 gdb_wait_for_event /home/vries/gdb/src/gdbsupport/event-loop.cc:694
(gdb+0x1cf5d3c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#35 gdb_do_one_event(int) /home/vries/gdb/src/gdbsupport/event-loop.cc:264
(gdb+0x1cf4074) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#36 start_event_loop /home/vries/gdb/src/gdb/main.c:408 (gdb+0xb79354)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#37 captured_command_loop /home/vries/gdb/src/gdb/main.c:472 (gdb+0xb79584)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#38 captured_main /home/vries/gdb/src/gdb/main.c:1342 (gdb+0xb7b99c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#39 gdb_main(captured_main_args*) /home/vries/gdb/src/gdb/main.c:1361
(gdb+0xb7ba4c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#40 main /home/vries/gdb/src/gdb/gdb.c:39 (gdb+0x423ce8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
[1m[32m Location is heap block of size 8 at 0xfffff1c0fc10 allocated by main
thread:
[1m[0m #0 calloc <null> (libtsan.so.2+0x454e8) (BuildId:
fe872cc4563474b7ad67d63a019aa94e1e0df888)
#1 xcalloc /home/vries/gdb/src/gdb/alloc.c:97 (gdb+0x500024) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#2 xzalloc(unsigned long) /home/vries/gdb/src/gdbsupport/common-utils.cc:29
(gdb+0x1cee77c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#3 value::allocate_contents(bool) /home/vries/gdb/src/gdb/value.c:937
(gdb+0x11093a8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#4 value::fetch_lazy() /home/vries/gdb/src/gdb/value.c:4033 (gdb+0x1112b30)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#5 value::entirely_covered_by_range_vector(std::vector<range,
std::allocator<range> > const&) /home/vries/gdb/src/gdb/value.c:229
(gdb+0x11073b0) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#6 value::entirely_optimized_out() /home/vries/gdb/src/gdb/value.h:560
(gdb+0x4f9558) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#7 value_check_printable /home/vries/gdb/src/gdb/valprint.c:1133
(gdb+0x10fd680) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#8 common_val_print_checked(value*, ui_file*, int, value_print_options
const*, language_defn const*) /home/vries/gdb/src/gdb/valprint.c:1182
(gdb+0x10fd8d8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#9 print_variable_and_value(char const*, symbol*, frame_info_ptr, ui_file*,
int) /home/vries/gdb/src/gdb/printcmd.c:2355 (gdb+0xcb133c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#10 print_variable_and_value_data::operator()(char const*, symbol*)
/home/vries/gdb/src/gdb/stack.c:2295 (gdb+0xf2be88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#11 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::operator()(gdb::fv_detail::erased_callable, char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:305 (gdb+0xf3358c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#12 gdb::function_view<void (char const*,
symbol*)>::bind<print_variable_and_value_data>(print_variable_and_value_data&)::{lambda(gdb::fv_detail::erased_callable,
char const*, symbol*)#1}::_FUN(gdb::fv_detail::erased_callable, char const*,
symbol*) /home/vries/gdb/src/gdb/../gdbsupport/function-view.h:299
(gdb+0xf335f4) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#13 gdb::function_view<void (char const*, symbol*)>::operator()(char
const*, symbol*) const
/home/vries/gdb/src/gdb/../gdbsupport/function-view.h:289 (gdb+0xf32e18)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#14 iterate_over_block_locals /home/vries/gdb/src/gdb/stack.c:2227
(gdb+0xf2bb78) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#15 iterate_over_block_local_vars(block const*, gdb::function_view<void
(char const*, symbol*)>) /home/vries/gdb/src/gdb/stack.c:2246 (gdb+0xf2bc10)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#16 print_frame_local_vars /home/vries/gdb/src/gdb/stack.c:2367
(gdb+0xf2c1dc) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#17 info_locals_command(char const*, int)
/home/vries/gdb/src/gdb/stack.c:2445 (gdb+0xf2c62c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#18 do_simple_func /home/vries/gdb/src/gdb/cli/cli-decode.c:95
(gdb+0x6e444c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#19 cmd_func(cmd_list_element*, char const*, int)
/home/vries/gdb/src/gdb/cli/cli-decode.c:2735 (gdb+0x6ebb88) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#20 execute_command(char const*, int) /home/vries/gdb/src/gdb/top.c:575
(gdb+0xff748c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#21 command_handler(char const*) /home/vries/gdb/src/gdb/event-top.c:566
(gdb+0x942488) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#22 command_line_handler(std::unique_ptr<char, gdb::xfree_deleter<char>
>&&) /home/vries/gdb/src/gdb/event-top.c:802 (gdb+0x942bc0) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#23 tui_command_line_handler /home/vries/gdb/src/gdb/tui/tui-interp.c:104
(gdb+0x10365f8) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#24 gdb_rl_callback_handler /home/vries/gdb/src/gdb/event-top.c:259
(gdb+0x941884) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#25 rl_callback_read_char
/home/vries/gdb/src/readline/readline/callback.c:290 (gdb+0x11a2c7c) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#26 gdb_rl_callback_read_char_wrapper_noexcept
/home/vries/gdb/src/gdb/event-top.c:195 (gdb+0x9415f8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#27 gdb_rl_callback_read_char_wrapper
/home/vries/gdb/src/gdb/event-top.c:234 (gdb+0x941720) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#28 stdin_event_handler /home/vries/gdb/src/gdb/ui.c:155 (gdb+0x1079320)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#29 handle_file_event /home/vries/gdb/src/gdbsupport/event-loop.cc:573
(gdb+0x1cf5678) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#30 gdb_wait_for_event /home/vries/gdb/src/gdbsupport/event-loop.cc:694
(gdb+0x1cf5d3c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#31 gdb_do_one_event(int) /home/vries/gdb/src/gdbsupport/event-loop.cc:264
(gdb+0x1cf4074) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#32 start_event_loop /home/vries/gdb/src/gdb/main.c:408 (gdb+0xb79354)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#33 captured_command_loop /home/vries/gdb/src/gdb/main.c:472 (gdb+0xb79584)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#34 captured_main /home/vries/gdb/src/gdb/main.c:1342 (gdb+0xb7b99c)
(BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#35 gdb_main(captured_main_args*) /home/vries/gdb/src/gdb/main.c:1361
(gdb+0xb7ba4c) (BuildId: 6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
#36 main /home/vries/gdb/src/gdb/gdb.c:39 (gdb+0x423ce8) (BuildId:
6dc308d9bc2da51d7adf979315fabd66fb46e8a3)
SUMMARY: ThreadSanitizer: heap-use-after-free (/lib64/libtsan.so.2+0x4b10c)
(BuildId: fe872cc4563474b7ad67d63a019aa94e1e0df888) in memmove
==================
y2 = (a => 224, c => 9.18340949e-41, d => -411009023)
nv = (v => (kind => 200, string_value => 4160731976))
ut = (b => 3, c => 4.20389539e-45)
tt = (a => -134229152, b => 255 '["ff"]')
ctt = (a => -8816, b => 255 '["ff"]', c => -1.02340132e+34)
ctt2 = (a => -141925200, b => 255 '["ff"]')
w = (0 => (field1 => 0x67fffff7fc41bc, field2 => "["04"]["a4"]"), (field1 =>
0xfffff7ffb000 <tunable_list+688>, field2 => "["98"]["a1"]"))
dire = (num1 => 0, num2 => 0, num3 => 0, num4 => 0, field1 => (), field2 => (0
=> (field1 => 0xfffff7fff480, field2 => "["00"]["00"]"), (field1 =>
0xfffff7841908, field2 => "["a3"]!"), (field1 => 0xfffff7ffef00, field2 =>
"`["d9"]"), (field1 => 0x400, field2 => "["00"]["ef"]"), (field1 => 0x0, field2
=> "["00"]["ef"]"), (field1 => 0xfffff7ffcb48 <_rtld_local+2888>, field2 =>
"["00"]["00"]"), (field1 => 0x0, field2 => "["00"]["00"]"), (field1 => 0x0,
field2 => "["00"]["00"]"), (field1 => 0x0, field2 => "["00"]["00"]"), (field1
=> 0x0, field2 => " ["da"]"), (field1 => 0xafffff7fc41bc, field2 =>
"P["ca"]")), field3 => (0 => (field1 => 0xfffff7ffb000 <tunable_list+688>,
field2 => "H["c9"]")), field4 => (0 => (field1 => 0xfffff7fac588, field2 =>
"8["c5"]")), field5 => (0 => (field1 => 0x0, field2 => "H["cb"]")))
nvp = (discr => 0)
t_ptr = <error reading variable: Cannot access memory at address 0x6>
t_ptr2 = <error reading variable: Value out of range.>
my_str = <error reading variable: Cannot access memory at address 0x54>
v_null = v_null
v_boolean = v_boolean
v_integer = v_integer
nbi_n = (var => v_null)
nbi_i = (var => v_null)
nbi_b = (var => 144, integer_value => 65535)
(gdb) PASS: gdb.ada/uninitialized_vars.exp: info locals
--
You are receiving this mail because:
You are on the CC list for the bug.
next reply other threads:[~2024-01-18 9:07 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-01-18 9:07 vries at gcc dot gnu.org [this message]
2024-01-18 14:27 ` [Bug gdb/31258] " vries at gcc dot gnu.org
2024-01-18 16:44 ` vries at gcc dot gnu.org
2024-01-19 15:39 ` vries at gcc dot gnu.org
2024-01-20 23:20 ` vries at gcc dot gnu.org
2024-01-21 9:08 ` [Bug exp/31258] " vries at gcc dot gnu.org
2024-01-22 13:27 ` vries at gcc dot gnu.org
2024-02-19 8:59 ` cvs-commit at gcc dot gnu.org
2024-02-19 9:01 ` vries at gcc dot gnu.org
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=bug-31258-4717@http.sourceware.org/bugzilla/ \
--to=sourceware-bugzilla@sourceware.org \
--cc=gdb-prs@sourceware.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).