[LLVMbugs] [Bug 9046] New: memory unsafety bug

bugzilla-daemon at llvm.org bugzilla-daemon at llvm.org
Mon Jan 24 19:13:11 PST 2011 

http://llvm.org/bugs/show_bug.cgi?id=9046

           Summary: memory unsafety bug
           Product: new-bugs
           Version: trunk
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P
         Component: new bugs
        AssignedTo: unassignedbugs at nondot.org
        ReportedBy: regehr at cs.utah.edu
                CC: llvmbugs at cs.uiuc.edu, chenyang at cs.utah.edu


Created an attachment (id=6044)
 --> (http://llvm.org/bugs/attachment.cgi?id=6044)
failure-inducing C code

We've been seeing some odd compiler hangs and reports of heap corruption from
glibc; valgrind says it's a use-after-free problem. Sorry for the not-reduced
testcase.

regehr at home:~$ valgrind -q --trace-children=yes clang -O2 -w small.c
==30005== Invalid read of size 4
==30005==    at 0x948B53E:
llvm::FoldingSetImpl::InsertNode(llvm::FoldingSetImpl::Node*, void*) (in
/mnt/z/z/compiler-install/llvm-gcc-r124171-install/bin/clang)
==30005==    by 0x4B9DD63: ???
==30005==  Address 0x465e064 is 124 bytes inside a block of size 260 free'd
==30005==    at 0x40257ED: free (vg_replace_malloc.c:366)
==30005==    by 0x948B4B3: llvm::FoldingSetImpl::GrowHashTable() (in
/mnt/z/z/compiler-install/llvm-gcc-r124171-install/bin/clang)
==30005== 
==30005== Invalid write of size 4
==30005==    at 0x948B54C:
llvm::FoldingSetImpl::InsertNode(llvm::FoldingSetImpl::Node*, void*) (in
/mnt/z/z/compiler-install/llvm-gcc-r124171-install/bin/clang)
==30005==    by 0x4B9DD63: ???
==30005==  Address 0x465e064 is 124 bytes inside a block of size 260 free'd
==30005==    at 0x40257ED: free (vg_replace_malloc.c:366)
==30005==    by 0x948B4B3: llvm::FoldingSetImpl::GrowHashTable() (in
/mnt/z/z/compiler-install/llvm-gcc-r124171-install/bin/clang)
==30005== 
regehr at home:~$ 
regehr at home:~$ 
regehr at home:~$ 
regehr at home:~$ clang -v
clang version 2.9 (trunk 124171)
Target: i386-pc-linux-gnu
Thread model: posix

-- 
Configure bugmail: http://llvm.org/bugs/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the llvm-bugs mailing list