[valgrind] [Bug 369441] New: bad lvec argument crashes process_vm_readv/writev syscall wrappers

Tue, 27 Sep 2016 13:05:47 -0700 

https://bugs.kde.org/show_bug.cgi?id=369441

            Bug ID: 369441
           Summary: bad lvec argument crashes process_vm_readv/writev
                    syscall wrappers
           Product: valgrind
           Version: unspecified
          Platform: Other
                OS: Linux
            Status: UNCONFIRMED
          Severity: normal
          Priority: NOR
         Component: general
          Assignee: jsew...@acm.org
          Reporter: m...@redhat.com

LTP testcases/kernel/syscalls/cma/process_vm01 crashes valgrind:

==3940== Syscall param process_vm_readv(lvec) points to unaddressable byte(s)
==3940==    at 0x4129977: syscall (in /usr/lib/libc-2.23.so)
==3940==    by 0x804A414: test_process_vm_readv (process_vm.h:42)
==3940==    by 0x804A414: cma_test_params_read (process_vm01.c:137)
==3940==    by 0x8049E33: cma_test_iov_invalid (process_vm01.c:294)
==3940==    by 0x8049E33: cma_test_errnos (process_vm01.c:410)
==3940==    by 0x8049E33: main (process_vm01.c:91)
==3940==  Address 0xffffffff is not stack'd, malloc'd or (recently) free'd
==3940== 
--3940-- VALGRIND INTERNAL ERROR: Valgrind received a signal 11 (SIGSEGV) -
exit
ing
--3940-- si_code=1;  Faulting address: 0x3;  sp: 0x628dde4c

valgrind: the 'impossible' happened:
   Killed by fatal signal

host stacktrace:
==3940==    at 0x380A3E79: vgSysWrap_linux_sys_process_vm_readv_before
(syswrap-linux.c:5012)

==3961== Syscall param process_vm_writev(lvec) points to unaddressable byte(s)
==3961==    at 0x4129977: syscall (in /usr/lib/libc-2.23.so)
==3961==    by 0x804A3C4: test_process_vm_writev (process_vm.h:55)
==3961==    by 0x804A3C4: cma_test_params_write (process_vm01.c:145)
==3961==    by 0x8049E33: cma_test_iov_invalid (process_vm01.c:294)
==3961==    by 0x8049E33: cma_test_errnos (process_vm01.c:410)
==3961==    by 0x8049E33: main (process_vm01.c:91)
==3961==  Address 0xffffffff is not stack'd, malloc'd or (recently) free'd
==3961== 
--3961-- VALGRIND INTERNAL ERROR: Valgrind received a signal 11 (SIGSEGV) -
exit
ing
--3961-- si_code=1;  Faulting address: 0x3;  sp: 0x629a8e4c

valgrind: the 'impossible' happened:
   Killed by fatal signal

host stacktrace:
==3961==    at 0x380A40F9: vgSysWrap_linux_sys_process_vm_writev_before
(syswrap-linux.c:5050)


Reproducible: Always

-- 
You are receiving this mail because:
You are watching all bug changes.

Reply via email to