[Bug c++/70481] [Regression] Libiberty Demangler segfaults

jakub at gcc dot gnu.org gcc-bugzilla@gcc.gnu.org
Thu May 19 10:45:00 GMT 2016


https://gcc.gnu.org/bugzilla/show_bug.cgi?id=70481

--- Comment #5 from Jakub Jelinek <jakub at gcc dot gnu.org> ---
Author: jakub
Date: Thu May 19 10:44:31 2016
New Revision: 236452

URL: https://gcc.gnu.org/viewcvs?rev=236452&root=gcc&view=rev
Log:
        Backported from mainline
        2016-05-19  Jakub Jelinek  <jakub@redhat.com>

        PR c++/70498
        * cp-demangle.c (d_expression_1): Formatting fix.

        2016-05-02  Marcel Böhme  <boehme.marcel@gmail.com>

        PR c++/70498
        * cp-demangle.c: Parse numbers as integer instead of long to avoid
        overflow after sanity checks. Include <limits.h> if available.
        (INT_MAX): Define if necessary.
        (d_make_template_param): Takes integer argument instead of long.
        (d_make_function_param): Likewise.
        (d_append_num): Likewise.
        (d_identifier): Likewise.
        (d_number): Parse as and return integer.
        (d_compact_number): Handle overflow.
        (d_source_name): Change variable type to integer for parsed number.
        (d_java_resource): Likewise.
        (d_special_name): Likewise.
        (d_discriminator): Likewise.
        (d_unnamed_type): Likewise.
        * testsuite/demangle-expected: Add regression test cases.

        2016-04-08  Marcel Böhme  <boehme.marcel@gmail.com>

        PR c++/69687
        * cplus-dem.c: Include <limits.h> if available.
        (INT_MAX): Define if necessary.
        (remember_type, remember_Ktype, register_Btype, string_need):
        Abort if we detect cases where we the size of the allocation would
        overflow.

        PR c++/70492
        * cplus-dem.c (gnu_special): Handle case where consume_count returns
        -1.

        2016-03-31  Mikhail Maltsev  <maltsevm@gmail.com>
                    Marcel Bohme  <boehme.marcel@gmail.com>

        PR c++/67394
        PR c++/70481
        * cplus-dem.c (squangle_mop_up): Zero bsize/ksize after freeing
        btypevec/ktypevec.
        * testsuite/demangle-expected: Add coverage tests.

Modified:
    branches/gcc-5-branch/libiberty/ChangeLog
    branches/gcc-5-branch/libiberty/cp-demangle.c
    branches/gcc-5-branch/libiberty/cplus-dem.c
    branches/gcc-5-branch/libiberty/testsuite/demangle-expected


More information about the Gcc-bugs mailing list