> Can you check that this build really used AddressSanitizer? > > ASAN_OPTIONS=help=1 ./bash -c : > > Should print a bunch of option help text if it is.
Yes, I get a lot of texts. ``` $ ASAN_OPTIONS=help=1 ./bash -c Available flags for AddressSanitizer: quarantine_size - Deprecated, please use quarantine_size_mb. (Current Value: -1) quarantine_size_mb - Size (in Mb) of quarantine used to detect use-after-free errors. Lower value may reduce memory usage but increase the chance of false negatives. (Current Value: -1) thread_local_quarantine_size_kb - Size (in Kb) of thread local quarantine used to detect use-after-free errors. Lower value may reduce memory usage but increase the chance of false negatives. It is not advised to go lower than 64Kb, otherwise frequent transfers to global quarantine might affect performance. (Current Value: -1) … ``` > > Also, do you still get the crash when you run with: > > HISTFILE= INPUTRC=/ LC_ALL=C ./bash --norc > Yes ``` $ HISTFILE= INPUTRC=/ LC_ALL=C ./bash --norc bash(79142,0x1fcb120c0) malloc: nano zone abandoned due to inability to reserve vm space. This is MacStudio@Home: ~/works/bash $ Segmentation fault: 11 HISTFILE= INPUTRC=/ LC_ALL=C ./bash --norc ``` > And > > HISTFILE= INPUTRC=/ LC_ALL=en_US.UTF-8 ./bash —norc Yes ``` $ HISTFILE= INPUTRC=/ LC_ALL=en_US.UTF-8 ./bash --norc bash(79145,0x1fcb120c0) malloc: nano zone abandoned due to inability to reserve vm space. This is MacStudio@Home: ~/works/bash $ Segmentation fault: 11 HISTFILE= INPUTRC=/ LC_ALL=en_US.UTF-8 ./bash --norc ``` Also, I just discovered I can also trigger the bash to crash after I ssh into the arch linux and do the same maneuver again it seg faulted. With the installed bash. I get `free(): invalid pointer` With the git cloned one, I get segfault. I’m now learning to use gdb inside the arch linux and see if I can make a crash dump. This may take a while...
