[Bug ld/28441] [RISCV] ld linker relaxation is really slow
https://sourceware.org/bugzilla/show_bug.cgi?id=28441 shivam98.tkg at gmail dot com changed: What|Removed |Added CC||shivam98.tkg at gmail dot com -- You are receiving this mail because: You are on the CC list for the bug.
Issue 40338 in oss-fuzz: binutils:fuzz_as: Use-of-uninitialized-value in input_file_open
Comment #1 on issue 40338 by amo...@gmail.com: binutils:fuzz_as: Use-of-uninitialized-value in input_file_open https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40338#c1 Another problem with fuzz_as.c. I intend to ignore all fuzz_as reports. -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40330 in oss-fuzz: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
Comment #4 on issue 40330 by da...@adalogics.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c4 You're right. However, it would be great being able to fuzz the main logic in libbfd that gas uses so I will try to see how this can be done. Perhaps the smartest is to write the fuzzer as a very simplified version of gas that executes central functions in libbdf - do you have any thoughts on which functions in libbfd would be good to target in this context? -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40330 in oss-fuzz: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
Comment #1 on issue 40330 by amo...@gmail.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c1 This is not a exactly a problem with the assembler. This is a fuzzer issue. On the second and subseqent runs of binutils/fuzz_as.c:LLVMFuzzerTestOneInput perform_as_assembly_pass is being run with gas global variables holding info from the previous run, not initialised as they would be when actually running gas. For this particular fuzzing report, the gas variable in question is static struct conditional_frame *current_cframe = NULL; in gas/cond.c, and there are many similar variables. -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40330 in oss-fuzz: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
Comment #2 on issue 40330 by da...@adalogics.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c2 Thanks for the analysis. I see two approaches forward, either come up with some solution in the fuzzer that resets all of the variables, or disabling the check for stack-use-after-return in the fuzzer. I propose we disable it for now so the fuzzer is not blocked by these checks, and then perhaps change the fuzzer to reset all of the variables at a later stage. Does that sound reasonable to you Alan? -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40330 in oss-fuzz: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
Comment #3 on issue 40330 by amo...@gmail.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c3 No, just disabling one particular class of error isn't sufficient. Once you go into running perform_an_assembly_pass with bogus global state, anything can happen, so the entire output of the fuzzer is worthless. Sorry. -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40248 in oss-fuzz: binutils:fuzz_objdump: Heap-buffer-overflow in bfd_mach_o_arm_canonicalize_one_reloc
Updates: Labels: -restrict-view-commit Comment #4 on issue 40248 by sheriffbot: binutils:fuzz_objdump: Heap-buffer-overflow in bfd_mach_o_arm_canonicalize_one_reloc https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40248#c4 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40240 in oss-fuzz: binutils:fuzz_objdump: Heap-buffer-overflow in aout_get_external_symbols
Updates: Labels: -restrict-view-commit Comment #4 on issue 40240 by sheriffbot: binutils:fuzz_objdump: Heap-buffer-overflow in aout_get_external_symbols https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40240#c4 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40280 in oss-fuzz: binutils:fuzz_objdump: Null-dereference READ in bfd_nonfatal_message
Updates: Labels: -restrict-view-commit Comment #4 on issue 40280 by sheriffbot: binutils:fuzz_objdump: Null-dereference READ in bfd_nonfatal_message https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40280#c4 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40283 in oss-fuzz: binutils:fuzz_objdump: Heap-buffer-overflow in bfd_getl32
Updates: Labels: -restrict-view-commit Comment #3 on issue 40283 by sheriffbot: binutils:fuzz_objdump: Heap-buffer-overflow in bfd_getl32 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40283#c3 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40288 in oss-fuzz: binutils:fuzz_objcopy: Undefined-shift in _bfd_xcoff64_swap_aux_in
Updates: Labels: -restrict-view-commit Comment #3 on issue 40288 by sheriffbot: binutils:fuzz_objcopy: Undefined-shift in _bfd_xcoff64_swap_aux_in https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40288#c3 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 36773 in oss-fuzz: binutils:fuzz_bfd: Out-of-memory in fuzz_bfd
Updates: Labels: Deadline-Approaching Comment #2 on issue 36773 by sheriffbot: binutils:fuzz_bfd: Out-of-memory in fuzz_bfd https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36773#c2 This bug is approaching its deadline for being fixed, and will be automatically derestricted within 7 days. If a fix is planned within 2 weeks after the deadline has passed, a grace extension can be granted. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
Issue 40233 in oss-fuzz: binutils:fuzz_nm: Heap-buffer-overflow in aout_get_external_symbols
Updates: Labels: -restrict-view-commit Comment #4 on issue 40233 by sheriffbot: binutils:fuzz_nm: Heap-buffer-overflow in aout_get_external_symbols https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40233#c4 This bug has been fixed. It has been opened to the public. - Your friendly Sheriffbot -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
[Bug ld/27923] ld: Support DT_RELR relative relocation format
https://sourceware.org/bugzilla/show_bug.cgi?id=27923 --- Comment #3 from H.J. Lu --- (In reply to H.J. Lu from comment #2) > > We can do "-z relr=glibc" which generates DT_RELR and adds a > glibc version dependency against the first version of glibc > with DT_RELR support. Here is the proposal: https://sourceware.org/pipermail/binutils/2021-October/118292.html -- You are receiving this mail because: You are on the CC list for the bug.
[Bug ld/28501] New: ld arm: R_ARM_GOTOFF32 referencing a preemptible symbol should be disallowed
https://sourceware.org/bugzilla/show_bug.cgi?id=28501 Bug ID: 28501 Summary: ld arm: R_ARM_GOTOFF32 referencing a preemptible symbol should be disallowed Product: binutils Version: unspecified Status: UNCONFIRMED Severity: normal Priority: P2 Component: ld Assignee: unassigned at sourceware dot org Reporter: i at maskray dot me Target Milestone: --- cat >a.s <>> defined in arm.o >>> referenced by arm.o:(.text+0x4) % ld.lld -shared -Bsymbolic arm.o # -Bsymbolic makes defined symbols non-preemptible, so no diagnostic As of 2021-10, glibc sysdeps/arm/dl-machine.h has such incorrect usage: https://sourceware.org/pipermail/libc-alpha/2021-October/132315.html -- You are receiving this mail because: You are on the CC list for the bug.
[Bug gold/28494] gold combines different aligned/padded SHT_NOTE sections in the same PT_NOTE segment
https://sourceware.org/bugzilla/show_bug.cgi?id=28494 --- Comment #4 from cvs-commit at gcc dot gnu.org --- The master branch has been updated by H.J. Lu : https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f85dcfc3af9cf7c2859241253f1d37b1133abea2 commit f85dcfc3af9cf7c2859241253f1d37b1133abea2 Author: H.J. Lu Date: Mon Oct 25 08:42:24 2021 -0700 gold: Place .note.gnu.property section before other note sections Place the .note.gnu.property section before all other note sections to avoid being placed between other note sections with different alignments. PR gold/28494 * layout.cc (Layout::create_note): Set order to ORDER_PROPERTY_NOTE for the .note.gnu.property section. * layout.h (Output_section_order): Add ORDER_PROPERTY_NOTE. -- You are receiving this mail because: You are on the CC list for the bug.
[Bug gold/28494] gold combines different aligned/padded SHT_NOTE sections in the same PT_NOTE segment
https://sourceware.org/bugzilla/show_bug.cgi?id=28494 H.J. Lu changed: What|Removed |Added Target Milestone|--- |2.38 Version|unspecified |2.37 Resolution|--- |FIXED Status|NEW |RESOLVED --- Comment #5 from H.J. Lu --- Fixed for 2.38. -- You are receiving this mail because: You are on the CC list for the bug.
Issue 40330 in oss-fuzz: binutils:fuzz_as: Stack-use-after-return in as_bad_internal
Comment #6 on issue 40330 by amo...@gmail.com: binutils:fuzz_as: Stack-use-after-return in as_bad_internal https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40330#c6 There isn't a great deal in bfd that is specific to gas. Many of the bfd functions used by gas are also used by objcopy and objdump. Why can't oss-fuzz run an actual gas image compiled with asan support? -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.
