[llvm-bugs] [Bug 31295] New: lld segfault in InputSection::writeTo linking FreeBSD/i386 gptboot loader (reproducer attached)

via llvm-bugs llvm-bugs at lists.llvm.org
Tue Dec 6 07:25:28 PST 2016 

https://llvm.org/bugs/show_bug.cgi?id=31295

            Bug ID: 31295
           Summary: lld segfault in InputSection::writeTo linking
                    FreeBSD/i386 gptboot loader (reproducer attached)
           Product: lld
           Version: unspecified
          Hardware: PC
                OS: FreeBSD
            Status: NEW
          Severity: normal
          Priority: P
         Component: ELF
          Assignee: unassignedbugs at nondot.org
          Reporter: emaste at freebsd.org
                CC: llvm-bugs at lists.llvm.org
            Blocks: 23214
    Classification: Unclassified

Created attachment 17729
  --> https://llvm.org/bugs/attachment.cgi?id=17729&action=edit
lld segfault reproducer

Linking the gpt bootloader, which is an i386 binary on FreeBSD/amd64.

Boot log excerpt:

--- gptboot.out ---
ld -static -N --gc-sections -m elf_i386_fbsd -Ttext 0x0 -o gptboot.out
/tank/emaste/obj/tank/emaste/src/freebsd-xlld/sys/boot/i386/gptboot/../btx/lib/crt0.o
gptboot.o sio.o crc32.o drv.o cons.o util.o xform_aes_xts.o
/tank/emaste/obj/tank/emaste/src/freebsd-xlld/sys/boot/i386/gptboot/../../geli/libgeliboot.a
/tank/emaste/obj/tank/emaste/src/freebsd-xlld/sys/boot/i386/gptboot/../../libstand32/libstand.a


Backtrace excerpt:

(lldb) bt
* thread #5: tid = 102169, 0x00000008065eaf46 libc.so.7`memcpy + 22 at
bcopy.S:65, stop reason = invalid address (fault address: 0x9051b1090)
  * frame #0: 0x00000008065eaf46 libc.so.7`memcpy + 22 at bcopy.S:65
    frame #1: 0x000000000068d084
ld.lld`lld::elf::InputSection<llvm::object::ELFType<(this=0x00000008074f3320,
Buf=0x00000009051b1000)1, false> >::writeTo(unsigned char*) + 372 at
InputSection.cpp:596
    frame #2: 0x000000000081be40 ld.lld`operator(this=0x00007fffdf7f9bd8,
IS=0x00000008074f3320) + 32 at OutputSections.cpp:256
    frame #3: 0x000000000081db6c ld.lld`operator() [inlined]
lld::elf::OutputSection<llvm::object::ELFType<(__first=__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<1,
false> > **> at 0x00007fffdf7f9be8,
__last=__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<1, false> > **>
at 0x00007fffdf7f9be0, __f=l
ld::elf::OutputSection<llvm::object::ELFType<llvm::support::endianness, false>
>::<anonymous class> at 0x00007fffdf7f9bd8)1, false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >*) 
std::__1::for_each<std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>, lld::elf::Output
Section<llvm::object::ELFType<(llvm::support::endianness)1, false>
>::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false>
>*)>(std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
fa
lse> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >*)) + 93 at algorithm:853
    frame #4: 0x000000000081db0f ld.lld`operator(this=0x0000000808810078) + 191
at Parallel.h:307
    frame #5: 0x000000000081da3c ld.lld`std::__1::__function::__func<void
lld::parallel_for_each<std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false>
>*)>(std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >*))::'lambda'(), std::__1::allocator<void
lld::parallel_for_each<std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false>
>*)>(std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>, std::__1::__wrap_iter<lld::elf:
:InputSection<llvm::object::ELFType<(llvm::support::endianness)1, false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >*))::'lambda'()>, void ()>::operator()
() [inlined] decltype(this=0x0000000808810078, __f=0x0000000808810078)1, false>
>**> >(fp)(std::__1::forward<>(fp0))) std::__1::__invoke<void
lld::parallel_for_each<std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::spport::endianness)1,
false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false>
>*)>(std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>,
lld::elf::OutputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >::writeTo(unsigned
char*)::'lambda'(lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false>
>*))::'lambda'()&>(std::__1::__wrap_iter<lld::elf::InputSection<llvm::object::ELFType<(llvm::support::endianness)1,
false> >**>&&) + 60 
at __functional_base:413

-- 
You are receiving this mail because:
You are on the CC list for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-bugs/attachments/20161206/1f9b0d60/attachment.html>

More information about the llvm-bugs mailing list