This is the mail archive of the
binutils@sourceware.org
mailing list for the binutils project.
Buffer overflow in avr-ar
- From: Till Maas <opensource at till dot name>
- To: binutils at sources dot redhat dot com
- Date: Fri, 19 May 2006 20:27:56 +0200
- Subject: Buffer overflow in avr-ar
Hiyas,
I just tried to build avr-gcc on Fedora Core 5 and got the following error:
avr-ar rc ./libgcc.a libgcc/./_mulqi3.o libgcc/./_mulhi3.o libgcc/./_mulsi3.o
libgcc/./_udivmodqi4.o libgcc/./_divmodqi4.o libgcc/./_udivmodhi4.o
libgcc/./_divmodhi4.o libgcc/./_udivmodsi4.o libgcc/./_divmodsi4.o
libgcc/./_prologue.o libgcc/./_epilogue.o libgcc/./_exit.o
libgcc/./_cleanup.o libgcc/./_tablejump.o libgcc/./_copy_data.o
libgcc/./_clear_bss.o libgcc/./_ctors.o libgcc/./_dtors.o libgcc/./_muldi3.o
libgcc/./_negdi2.o libgcc/./_lshrdi3.o libgcc/./_ashldi3.o
libgcc/./_ashrdi3.o libgcc/./_cmpdi2.o libgcc/./_ucmpdi2.o
libgcc/./_floatdidf.o libgcc/./_floatdisf.o libgcc/./_fixunsdfsi.o
libgcc/./_fixunssfsi.o libgcc/./_fixunsdfdi.o libgcc/./_fixdfdi.o
libgcc/./_fixunssfdi.o libgcc/./_fixsfdi.o libgcc/./_fixxfdi.o
libgcc/./_fixunsxfdi.o libgcc/./_floatdixf.o libgcc/./_fixunsxfsi.o
libgcc/./_fixtfdi.o libgcc/./_fixunstfdi.o libgcc/./_floatditf.o
libgcc/./_clear_cache.o libgcc/./_enable_execute_stack.o
libgcc/./_trampoline.o libgcc/./__main.o libgcc/./_absvsi2.o
libgcc/./_absvdi2.o libgcc/./_addvsi3.o libgcc/./_addvdi3.o
libgcc/./_subvsi3.o libgcc/./_subvdi3.o libgcc/./_mulvsi3.o
libgcc/./_mulvdi3.o libgcc/./_negvsi2.o libgcc/./_negvdi2.o
libgcc/./_ffssi2.o libgcc/./_ffsdi2.o libgcc/./_clz.o libgcc/./_clzsi2.o
libgcc/./_clzdi2.o libgcc/./_ctzsi2.o libgcc/./_ctzdi2.o
libgcc/./_popcount_tab.o libgcc/./_popcountsi2.o libgcc/./_popcountdi2.o
libgcc/./_paritysi2.o libgcc/./_paritydi2.o libgcc/./_powisf2.o
libgcc/./_powidf2.o libgcc/./_powixf2.o libgcc/./_powitf2.o
libgcc/./_mulsc3.o libgcc/./_muldc3.o libgcc/./_mulxc3.o libgcc/./_multc3.o
libgcc/./_divsc3.o libgcc/./_divdc3.o libgcc/./_divxc3.o libgcc/./_divtc3.o
libgcc/./_eprintf.o libgcc/./__gcc_bcmp.o libgcc/./_divdi3.o
libgcc/./_moddi3.o libgcc/./_udivdi3.o libgcc/./_umoddi3.o
libgcc/./_udiv_w_sdiv.o libgcc/./_udivmoddi4.o libgcc/./_pack_sf.o
libgcc/./_unpack_sf.o libgcc/./_addsub_sf.o libgcc/./_mul_sf.o
libgcc/./_div_sf.o libgcc/./_fpcmp_parts_sf.o libgcc/./_compare_sf.o
libgcc/./_eq_sf.o libgcc/./_ne_sf.o libgcc/./_gt_sf.o libgcc/./_ge_sf.o
libgcc/./_lt_sf.o libgcc/./_le_sf.o libgcc/./_unord_sf.o libgcc/./_si_to_sf.o
libgcc/./_sf_to_si.o libgcc/./_negate_sf.o libgcc/./_make_sf.o
libgcc/./_sf_to_df.o libgcc/./_thenan_sf.o libgcc/./_sf_to_usi.o
libgcc/./_usi_to_sf.o libgcc/./unwind-dw2.o libgcc/./unwind-dw2-fde.o
libgcc/./unwind-sjlj.o libgcc/./gthr-gnat.o libgcc/./unwind-c.o
*** buffer overflow detected ***: avr-ar terminated
======= Backtrace: =========
/lib/i686/nosegneg/libc.so.6(__chk_fail+0x41)[0x6a3ab1]
/lib/i686/nosegneg/libc.so.6(__vsprintf_chk+0x0)[0x6a3348]
/lib/i686/nosegneg/libc.so.6(_IO_default_xsputn+0x9c)[0x6263e7]
/lib/i686/nosegneg/libc.so.6(_IO_padn+0xe3)[0x61ba57]
/lib/i686/nosegneg/libc.so.6(_IO_vfprintf+0x21b1)[0x6016d1]
/lib/i686/nosegneg/libc.so.6(__vsprintf_chk+0xa1)[0x6a33e9]
/lib/i686/nosegneg/libc.so.6(__sprintf_chk+0x30)[0x6a333c]
avr-ar[0x804e4f3]
avr-ar[0x804f0be]
avr-ar[0x804f8c2]
avr-ar[0x80585d5]
avr-ar[0x804b485]
avr-ar[0x804c1fb]
/lib/i686/nosegneg/libc.so.6(__libc_start_main+0xdc)[0x5da724]
avr-ar[0x8049631]
======= Memory map: ========
005a7000-005a8000 r-xp 005a7000 00:00 0 [vdso]
005a8000-005c1000 r-xp 00000000 fd:00 723719 /lib/ld-2.4.so
005c1000-005c2000 r-xp 00018000 fd:00 723719 /lib/ld-2.4.so
005c2000-005c3000 rwxp 00019000 fd:00 723719 /lib/ld-2.4.so
005c5000-006f5000 r-xp 00000000 fd:00
360491 /lib/i686/nosegneg/libc-2.4.so
006f5000-006f7000 r-xp 00130000 fd:00
360491 /lib/i686/nosegneg/libc-2.4.so
006f7000-006f8000 rwxp 00132000 fd:00
360491 /lib/i686/nosegneg/libc-2.4.so
006f8000-006fb000 rwxp 006f8000 00:00 0
007e2000-007ed000 r-xp 00000000 fd:00
723724 /lib/libgcc_s-4.1.0-20060304.so.1
007ed000-007ee000 rwxp 0000a000 fd:00
723724 /lib/libgcc_s-4.1.0-20060304.so.1
08048000-0809c000 r-xp 00000000 fd:00 762923 /usr/bin/avr-ar
0809c000-0809d000 rw-p 00054000 fd:00 762923 /usr/bin/avr-ar
0809d000-080a1000 rw-p 0809d000 00:00 0
09e8c000-0a140000 rw-p 09e8c000 00:00 0 [heap]
b7f0a000-b7f15000 rw-p b7f0a000 00:00 0
b7f15000-b7f16000 rw-p b7f15000 00:00 0
bf9ff000-bfa15000 rw-p bf9ff000 00:00 0 [stack]
fbffd000-fbffe000 ---p 00000000 00:00 0 [vdso]
make[3]: *** [libgcc.a] Aborted
make[3]: *** Deleting file `libgcc.a'
make[3]: *** Waiting for unfinished jobs....
make[3]: Leaving directory
`/home/rpmbuild/rpmbuild/BUILD/gcc-4.1.0/host-i686-redhat-linux-gnu/gcc'
make[2]: *** [stmp-multilib] Error 2
make[2]: Leaving directory
`/home/rpmbuild/rpmbuild/BUILD/gcc-4.1.0/host-i686-redhat-linux-gnu/gcc'
make[1]: *** [all-gcc] Error 2
make[1]: Leaving directory `/home/rpmbuild/rpmbuild/BUILD/gcc-4.1.0'
make: *** [all] Error 2
I do not know whether or not this is fixed with the patch in
http://sources.redhat.com/ml/binutils/2005-03/msg00180.html
(_bfd_ar_spacepad).
Kind regards,
Till