From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Gerd =?UTF-8?Q?M=C3=B6llmann?= Newsgroups: gmane.emacs.bugs Subject: bug#56108: 29.0.50; ASAN use-after-free in re_match_2_internal Date: Thu, 23 Jun 2022 07:53:29 +0200 Message-ID: <3146c990-63d9-4aa5-ab78-7bae2b7d6cd5@Spark> References: <83mte7kv7c.fsf@gnu.org> <32e548cc-ffd3-4669-ad9a-317c130b0c93@Spark> <83a6a4kec0.fsf@gnu.org> <6e56407a-b564-4aa9-b74c-78883727ef09@Spark> <831qvgkc8d.fsf@gnu.org> <83sfnwisbb.fsf@gnu.org> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="62b3ffdf_334a6f1f_588f" Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="17462"; mail-complaints-to="usenet@ciao.gmane.io" Cc: 56108@debbugs.gnu.org To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Thu Jun 23 07:55:00 2022 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1o4Fnv-0004Pg-CY for geb-bug-gnu-emacs@m.gmane-mx.org; Thu, 23 Jun 2022 07:54:59 +0200 Original-Received: from localhost ([::1]:55688 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1o4Fnu-0003Tj-9R for geb-bug-gnu-emacs@m.gmane-mx.org; Thu, 23 Jun 2022 01:54:58 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:35754) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1o4Fn0-0002uP-7N for bug-gnu-emacs@gnu.org; Thu, 23 Jun 2022 01:54:02 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:43132) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1o4Fmz-0005l6-Ue for bug-gnu-emacs@gnu.org; Thu, 23 Jun 2022 01:54:01 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1o4Fmz-00036H-S4 for bug-gnu-emacs@gnu.org; Thu, 23 Jun 2022 01:54:01 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Gerd =?UTF-8?Q?M=C3=B6llmann?= Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Thu, 23 Jun 2022 05:54:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 56108 X-GNU-PR-Package: emacs Original-Received: via spool by 56108-submit@debbugs.gnu.org id=B56108.165596362811896 (code B ref 56108); Thu, 23 Jun 2022 05:54:01 +0000 Original-Received: (at 56108) by debbugs.gnu.org; 23 Jun 2022 05:53:48 +0000 Original-Received: from localhost ([127.0.0.1]:37029 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1o4Fmm-00035o-4C for submit@debbugs.gnu.org; Thu, 23 Jun 2022 01:53:48 -0400 Original-Received: from mail-ed1-f47.google.com ([209.85.208.47]:38740) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1o4Fmh-00035V-78 for 56108@debbugs.gnu.org; Thu, 23 Jun 2022 01:53:46 -0400 Original-Received: by mail-ed1-f47.google.com with SMTP id fd6so24166584edb.5 for <56108@debbugs.gnu.org>; Wed, 22 Jun 2022 22:53:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=date:from:to:cc:message-id:in-reply-to:references:subject :mime-version; bh=uYdnwWP1NIK/aJShRIG1ABqpRfvt8jSARbwBN1c3U/A=; b=l/LTgxC0+3HBXy3CnVKrdWyF5gglnXJYuqFNpb0asEAmcGH1GuD+WTumVKROL65u8e et60Itxa8Yar84Q3ERL62PT+TJy8thFParkEHR+3v2FKXCcGYaJW2nmtm8D636qi4VQX VGPaBVRphLXz1UcNCkayVlfmmw02DDAIJQR2w9GoPAkppJNAe65qOldIKarmzNGSISmv HvSL7MChmTngYMFKm3NNWMdSHdZnhrxAxxZXHdgYBv9p8LUr83x5QmLAps0jG+Urf3Iy wpO9Nsw23QypdeY2kVe5ZAota5SnUHRIn264RpZ4RAENcHw0fE+EBkb61gd5DrMtQY57 n6cg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:date:from:to:cc:message-id:in-reply-to :references:subject:mime-version; bh=uYdnwWP1NIK/aJShRIG1ABqpRfvt8jSARbwBN1c3U/A=; b=jsxW6PKqplT1F9u9Pem8y0eiSce4vaM5Ah3ZVbu+K/hXiFZr50HQ/aStOn38lmJx+b NYy9bO2k/ieQpOBvy5B9fY7lc5mGdjqW4y4fMgDR7BCYNUnGXjiflbsHf6dRDMSjZsbe VDEFrRW3kGbi2QAwqsvLNHa4HbdfeTeituwiP16KgSv1W7spNKS06aFTIFnarKTuFHZ9 ABsgkvWSuFM0SCa55VxTNaBSD3iHE4D6aUBV83HP+q4Qp4AvhMeGl8P/LKjbaEduyY0J 5fI9vMm8qn6Pq042HVNUusBWqZMBPxJROVwTCZP3l2HLeNdkx5hwfLnfzcAii7GC3Lhz +6ZA== X-Gm-Message-State: AJIora/guJ+F1Z/7SnaD9A5l46VoaR96egho07ls9vueWMsSyM5C/8xc aOtQqVH1gEGyHPDbJ1qi+AXrB1rv7LKNjZWq X-Google-Smtp-Source: AGRyM1v1/W6fw4BfvisxwoYEhteyYy9iIOaNRYH0VxVWajJj1aqx2zJRa9P3ujvX6Zhz8HN77cm1Gw== X-Received: by 2002:a05:6402:2710:b0:435:bf54:8569 with SMTP id y16-20020a056402271000b00435bf548569mr4719846edd.165.1655963617043; Wed, 22 Jun 2022 22:53:37 -0700 (PDT) Original-Received: from [192.168.178.21] (pd9e367fb.dip0.t-ipconnect.de. [217.227.103.251]) by smtp.gmail.com with ESMTPSA id u9-20020a1709061da900b006fe8c831632sm10232450ejh.73.2022.06.22.22.53.35 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 22 Jun 2022 22:53:36 -0700 (PDT) In-Reply-To: <83sfnwisbb.fsf@gnu.org> X-Readdle-Message-ID: 3146c990-63d9-4aa5-ab78-7bae2b7d6cd5@Spark X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.io gmane.emacs.bugs:235063 Archived-At: --62b3ffdf_334a6f1f_588f Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On 22. Jun 2022, 18:20 +0200, Eli Zaretskii , wrote: > > > > I think the next step is to add the missing freeze=5Fpattern calls an= d > > see if that fixes the problem=3F I think the missing freezes are 100% a bug, and they should be fixed. Do you want to do that or should I=3F (BTW, I just now noticed the =22->buf=22 at the end of the =22bufp =3D &c= ompile=5Fpattern (regexp,...)=22 that I complained about.=C2=A0 =C2=A0Tha= t explains it.=C2=A0=C2=A0Nice :-/.) Another side question, if I may: Have you perhaps heard of someone produc= ing a static call graph for Emacs, or better yet, specific functions in E= macs=3F=C2=A0=C2=A0Maybe using objdump -D or something similar=3F --62b3ffdf_334a6f1f_588f Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline
On 22. Jun 2022, 18:20 +0200, Eli Zaretskii <eli= z=40gnu.org>, wrote:

I think the next step is to add the missing freeze=5Fpattern calls and see if that fixes the problem=3F
I think the missing freezes are 100% a bug, and the= y should be fixed.

Do you want to do that or should I=3F&=23160;

(BTW, I just now noticed the =22->buf=22 at the end of the =22bufp =3D= &compile=5Fpattern (regexp,...)=22 that I complained about.&=23160; = &=23160;That explains it.&=23160;&=23160;Nice :-/.)

Another side question, if I may: Have you perhaps heard of someone produc= ing a static call graph for Emacs, or better yet, specific functions in E= macs=3F&=23160;&=23160;Maybe using objdump -D or something similar=3F&=23= 160;
--62b3ffdf_334a6f1f_588f--