Ubuntu
ecere-sdk package

  1. Bug #1107827
  2. Activity log

Activity log for bug #1107827

Date Who What changed Old value New value Message
2013-01-28 12:18:28 Jerome St-Louis bug added bug
2013-01-28 13:37:58 Jerome St-Louis ecere-sdk (Ubuntu): assignee Jerome St-Louis (jerstlouis)
2013-01-28 13:38:12 Jerome St-Louis ecere-sdk (Ubuntu): status New In Progress
2013-01-28 13:39:14 Jerome St-Louis ecere-sdk (Ubuntu): status In Progress Confirmed
2013-01-29 01:12:32 Micah Gersten nominated for series Ubuntu Quantal
2013-01-29 01:12:32 Micah Gersten bug task added ecere-sdk (Ubuntu Quantal)
2013-01-30 10:22:03 Jerome St-Louis summary [SRU] Compiling some specific eC results in undefined behavior (corrupted memory) [SRU] A serious potential for undefined behavior was identified
2013-01-30 10:34:50 Jerome St-Louis description Compiling some specific eC results in undefined behavior after memory has been corrupted. The Specifier class in the eC compiler library contains a union whose members were used in alternate manner, without proper reinitialization. [Test Case] The eC compiler will crash or produce unexpected behavior when compiling some specific eC code [need to remember/dig that code out]. [Regression Potential] This is a clean fix that simply re-initializes to all members of the union, so as to avoid the problem. It should not break anything. A serious potential for undefined behavior was identified in the eC compiler. Although I've not been able to reproduce the problem with the current state of the Specifier class, the problem manifests itself as soon as the layout of that class is slightly modified. The Specifier class in the eC compiler library contains a union whose members were used in alternate manner, without proper re-initialization. [Test Case] To reproduce the problem, add a 'void * dummy' member to the Specifier class, in sdk/compiler/libec/src/ecdefs.ec, inside the union, and inside the struct, right before 'char * name', so that it looks like: public class Specifier : struct { public: Specifier prev, next; Location loc; SpecifierType type; union { int specifier; struct { >>> void * dummy; <<< char * name; ... The compiler will then be totally broken, crashing compiling any file. With the fix, adding the 'dummy' member there will not cause any problem. The first and second structs of the union conflict with each other without being reinitialized properly. The first is used for when type is 'nameSpecifier', while the second is used when type is 'structSpecifier'. A Specifier is morphed from a nameSpecifier into a structSpecifier during the pass 3 of the compiler, and so this is problematic. It seems the problem is more evident when 'templateArgs' maps to 'definitions', rather than 'baseSpecs' as was the case in Quantal. However since there is a potential for bad behavior due to the overlap between templateArgs and baseSpecs, this should be fixed. [Regression Potential] This is a clean fix that simply re-initializes to all members of the union, so as to avoid the problem. It should not break anything.
2013-01-30 17:58:33 Jerome St-Louis bug added subscriber Ubuntu Stable Release Updates Team
2013-02-07 01:02:28 Dimitri John Ledkov ecere-sdk (Ubuntu): status Confirmed Fix Released
2013-02-07 01:02:31 Dimitri John Ledkov ecere-sdk (Ubuntu Quantal): status New Confirmed
2013-02-07 01:02:34 Dimitri John Ledkov ecere-sdk (Ubuntu Quantal): importance Undecided Medium
2014-12-03 10:01:59 Rolf Leggewie ecere-sdk (Ubuntu Quantal): status Confirmed Won't Fix