From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail
From: Gerd =?UTF-8?Q?M=C3=B6llmann?= <gerd.moellmann@gmail.com>
Newsgroups: gmane.emacs.bugs
Subject: bug#58850: 29.0.50; sqlite crashes on error
Date: Wed, 2 Nov 2022 06:00:08 +0100
Message-ID: <8cb872ce-23bf-6ea9-94d8-459592bf3550@gmail.com>
References: <6698F81B-6E83-403D-8D7C-DCAC4F9D07D0@gmail.com>
 <83ilk3hycm.fsf@gnu.org>
 <CAM6wYYJcWtXiPb_mhodCi+GRX=8nztA91eztUkwbgn32qgRMxQ@mail.gmail.com>
 <835yg1hl9k.fsf@gnu.org>
 <CAM6wYYKp4Kd3tEJsUmuEenmZR3TSbj8MP0EqO_XBz3ooY_TmFA@mail.gmail.com>
 <83o7trce3i.fsf@gnu.org> <m2v8nzvygj.fsf@Mini.fritz.box>
 <m2sfj3vxuq.fsf@Mini.fritz.box>
 <CAM6wYY+kr8QKnG3SV3jjbRge3AYYv2-czZa4Rtj9XYwWP=HB_Q@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214";
	logging-data="3945"; mail-complaints-to="usenet@ciao.gmane.io"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0)
 Gecko/20100101 Thunderbird/102.4.1
Cc: 58850@debbugs.gnu.org, Eli Zaretskii <eliz@gnu.org>
To: Andrew Hyatt <ahyatt@gmail.com>
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Wed Nov 02 06:01:20 2022
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org
Original-Received: from lists.gnu.org ([209.51.188.17])
	by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org>)
	id 1oq5sO-0000tO-9o
	for geb-bug-gnu-emacs@m.gmane-mx.org; Wed, 02 Nov 2022 06:01:20 +0100
Original-Received: from localhost ([::1] helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-gnu-emacs-bounces@gnu.org>)
	id 1oq5s8-0000NF-Ow; Wed, 02 Nov 2022 01:01:04 -0400
Original-Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1oq5s6-0000Gy-SV
 for bug-gnu-emacs@gnu.org; Wed, 02 Nov 2022 01:01:02 -0400
Original-Received: from debbugs.gnu.org ([209.51.188.43])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1oq5s6-0001Ne-A4
 for bug-gnu-emacs@gnu.org; Wed, 02 Nov 2022 01:01:02 -0400
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1oq5s6-0005Qd-1N
 for bug-gnu-emacs@gnu.org; Wed, 02 Nov 2022 01:01:02 -0400
X-Loop: help-debbugs@gnu.org
Resent-From: Gerd =?UTF-8?Q?M=C3=B6llmann?= <gerd.moellmann@gmail.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Wed, 02 Nov 2022 05:01:02 +0000
Resent-Message-ID: <handler.58850.B58850.166736521720809@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 58850
X-GNU-PR-Package: emacs
Original-Received: via spool by 58850-submit@debbugs.gnu.org id=B58850.166736521720809
 (code B ref 58850); Wed, 02 Nov 2022 05:01:02 +0000
Original-Received: (at 58850) by debbugs.gnu.org; 2 Nov 2022 05:00:17 +0000
Original-Received: from localhost ([127.0.0.1]:44648 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1oq5rM-0005PX-Rp
 for submit@debbugs.gnu.org; Wed, 02 Nov 2022 01:00:17 -0400
Original-Received: from mail-ej1-f44.google.com ([209.85.218.44]:39748)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <gerd.moellmann@gmail.com>) id 1oq5rL-0005PF-Ua
 for 58850@debbugs.gnu.org; Wed, 02 Nov 2022 01:00:16 -0400
Original-Received: by mail-ej1-f44.google.com with SMTP id b2so42341517eja.6
 for <58850@debbugs.gnu.org>; Tue, 01 Nov 2022 22:00:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; 
 h=content-transfer-encoding:in-reply-to:subject:from:references:cc:to
 :content-language:user-agent:mime-version:date:message-id:from:to:cc
 :subject:date:message-id:reply-to;
 bh=h8dv7WAI1OhlK2jbbsCj2n6n8Wxv0iUwOp1ufhodWqc=;
 b=GKBmyZ9/cLfQcAnzOlZH/KqJBdTXBiW5YIsiR8TLkUcPXM2MrcjxlboH0mwLnQPwqP
 p1HKqlvU84hTvJYwMCjNIuoYUw6yZt8bobF9GBKokDcwTjBSC9tjMCa4gSubvV5nJiR3
 k53D2KrtYSly0l4ByUUYYqSIPlqnsUG21Toxyi1khgS3RkQsrepM9JN1yXKQMs9oOKbN
 pg4ZBpH4RA5dF/3XK/09sOyEa+Dl/3N5bwSyMW+tyV6okMKX/lPJRMGuyQiBYZqRUSlo
 zs0SpIz62QIuKM5XE/BD3YbdkWkZMdkmfDHHW8d93zWZ4wRE7/a7eQJoj1tcwlConhhj
 8h8Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20210112;
 h=content-transfer-encoding:in-reply-to:subject:from:references:cc:to
 :content-language:user-agent:mime-version:date:message-id
 :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
 bh=h8dv7WAI1OhlK2jbbsCj2n6n8Wxv0iUwOp1ufhodWqc=;
 b=PuzV2btjncbpSb9ho2S3wa9ZPNcC57GuKw+BRRSNfoBRV2QVVd+USXn2Wcmr7zNnwI
 yAfrbTXrDiFqF2s//5TjjtzkaRyBJcFLGX4JObYvxHddR7cDy6xkjprjKXEkCvdrybU1
 TND0H0L3r/bx/3Dj3Cw/sQ0a1+8P/qJZ0dZPOEE6uXR55Mk7ixJ61ykYYDrHEsvBh9JL
 9WbVkTfzZNrkCryAewlQhS0qRLLyWAbj2frianW2D/A9WGNFOJm40cviie0JgJHO0/tl
 Osh/PlAYenUvcCp0wB0Y9OuPxQenSHulsZehXwc8SWZqKXnG2szTHeS0AU5F5G6npWTt
 m9bQ==
X-Gm-Message-State: ACrzQf1alL629H9H/9QRLKOgE/uYDuXxqJ9/EDIQFTRF7VHJ4/Whxinv
 u8+kzG6fQzYM6rGBLEh0rXY=
X-Google-Smtp-Source: AMsMyM5MgBazIG3ICrXs3aU5fA8p0qP803dVm/DY9gviLrLtHnlOkOH9EgK02kZ0zGAUT1KooNjlSw==
X-Received: by 2002:a17:907:1b1f:b0:72f:56db:cce9 with SMTP id
 mp31-20020a1709071b1f00b0072f56dbcce9mr20998453ejc.605.1667365209989; 
 Tue, 01 Nov 2022 22:00:09 -0700 (PDT)
Original-Received: from [192.168.178.21] (pd9e36738.dip0.t-ipconnect.de.
 [217.227.103.56]) by smtp.gmail.com with ESMTPSA id
 vq7-20020a170907a4c700b007ad96726c42sm4958512ejc.91.2022.11.01.22.00.09
 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
 Tue, 01 Nov 2022 22:00:09 -0700 (PDT)
Content-Language: en-US
In-Reply-To: <CAM6wYY+kr8QKnG3SV3jjbRge3AYYv2-czZa4Rtj9XYwWP=HB_Q@mail.gmail.com>
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
 the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
 <mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-gnu-emacs>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
 <mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Original-Sender: "bug-gnu-emacs" <bug-gnu-emacs-bounces@gnu.org>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org
Xref: news.gmane.io gmane.emacs.bugs:246839
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/246839>

On 02.11.22 04:33, Andrew Hyatt wrote:
> It does work for me, thank you for the fix!  I don't think I really 
> understand what is going on here either (does anyone? is the length of 
> the path in the name the relevant thing here?), but if there's a 
> solution that works, then that's enough for me, thanks.  I'll close this 
> bug.

It was a classical stack-buffer overflow.  The "name=..." part of the
printed representation of SQLite objects was printed to a fixed-size
buffer on the processor stack.  With a long enough name, this overwrites
other stuff on the stack, like the return address, and boom.  I fixed
this by not using a buffer al all, which is the way this is done
normally.  There was actually no need for using the buffer in the first
place.

Thanks for the report, and the testing!