This is the mail archive of the
glibc-bugs@sourceware.org
mailing list for the glibc project.
[Bug dynamic-link/22149] Zero-length VLAs cause probes into red zone with -fstack-clash-protection
- From: "fweimer at redhat dot com" <sourceware-bugzilla at sourceware dot org>
- To: glibc-bugs at sourceware dot org
- Date: Mon, 27 Nov 2017 12:12:07 +0000
- Subject: [Bug dynamic-link/22149] Zero-length VLAs cause probes into red zone with -fstack-clash-protection
- Auto-submitted: auto-generated
- References: <bug-22149-131@http.sourceware.org/bugzilla/>
https://sourceware.org/bugzilla/show_bug.cgi?id=22149
Florian Weimer <fweimer at redhat dot com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Assignee|unassigned at sourceware dot org |fweimer at redhat dot com
Summary|cache.c:save_cache creates |Zero-length VLAs cause
|zero-size VLA |probes into red zone with
| |-fstack-clash-protection
--- Comment #4 from Florian Weimer <fweimer at redhat dot com> ---
Example valgrind traces:
==5682== Invalid write of size 8
==5682== at 0x496D5B8: _nl_load_locale_from_archive (in
/usr/lib64/libc-2.17.so)
==5682== by 0x496C7BB: _nl_find_locale (in /usr/lib64/libc-2.17.so)
==5682== by 0x496C0E3: setlocale (in /usr/lib64/libc-2.17.so)
==5682== by 0x401DEF: ??? (in /usr/sbin/wipefs)
==5682== by 0x4961533: (below main) (in /usr/lib64/libc-2.17.so)
==5682== Address 0x1fff00e778 is on thread 1's stack
==5682== 8 bytes below stack pointer
==5682== Invalid write of size 8
==5682== at 0x400E784: _dl_fini (in /usr/lib64/ld-2.17.so)
==5682== by 0x4978613: __run_exit_handlers (in /usr/lib64/libc-2.17.so)
==5682== by 0x497863B: exit (in /usr/lib64/libc-2.17.so)
==5682== by 0x4961537: (below main) (in /usr/lib64/libc-2.17.so)
==5682== Address 0x1fff00eb88 is on thread 1's stack
==5682== 8 bytes below stack pointer
--
You are receiving this mail because:
You are on the CC list for the bug.