From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 79271 invoked by alias); 26 Feb 2015 22:01:46 -0000 Mailing-List: contact glibc-bugs-regex-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Post: List-Help: , Sender: glibc-bugs-regex-owner@sourceware.org Received: (qmail 79225 invoked by uid 48); 26 Feb 2015 22:01:42 -0000 From: "konstantin.s.serebryany at gmail dot com" To: glibc-bugs-regex@sourceware.org Subject: [Bug regex/18041] New: infinite loop in regcomp/calc_eclosure_iter Date: Thu, 26 Feb 2015 22:01:00 -0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: glibc X-Bugzilla-Component: regex X-Bugzilla-Version: 2.21 X-Bugzilla-Keywords: X-Bugzilla-Severity: normal X-Bugzilla-Who: konstantin.s.serebryany at gmail dot com X-Bugzilla-Status: NEW X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: unassigned at sourceware dot org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version bug_status bug_severity priority component assigned_to reporter cc Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Bugzilla-URL: http://sourceware.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-SW-Source: 2015-02/txt/msg00011.txt.bz2 https://sourceware.org/bugzilla/show_bug.cgi?id=18041 Bug ID: 18041 Summary: infinite loop in regcomp/calc_eclosure_iter Product: glibc Version: 2.21 Status: NEW Severity: normal Priority: P2 Component: regex Assignee: unassigned at sourceware dot org Reporter: konstantin.s.serebryany at gmail dot com CC: drepper.fsp at gmail dot com #include int main() { regex_t r; const char p[] = {135, 57, 42, 92, 39, 82, 42, 42, 123, 57, 48, 125, 0}; regcomp(&r, p, 75); return 0; } gcc re3.cc && ./a.out # never ends ... #253 0x00007ffff7af3c1f in calc_eclosure_iter (new_set=new_set@entry=0x7fffffffdb80, dfa=dfa@entry=0x602120, node=node@entry=2, root=root@entry=1) at regcomp.c:1732 #254 0x00007ffff7af7847 in calc_eclosure (dfa=) at regcomp.c:1672 #255 analyze (preg=) at regcomp.c:1198 #256 re_compile_internal (preg=preg@entry=0x7fffffffdc80, pattern=pattern@entry=0x7fffffffdcc0 "\207\071*\\'R**{90}", length=, syntax=syntax@entry=4436732) at regcomp.c:804 #257 0x00007ffff7af8a80 in __regcomp (preg=0x7fffffffdc80, pattern=0x7fffffffdcc0 "\207\071*\\'R**{90}", cflags=) at regcomp.c:506 #258 0x0000000000400601 in main () 2.19 and fresh trunk are affected. Found with the same fuzzer as bugs 18032, 18036, 18037, 18040 -- You are receiving this mail because: You are on the CC list for the bug.