GCC stack access scheduled after stack deallocation
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Fix Released
|
High
|
Unassigned | ||
gcc |
Unknown
|
Unknown
|
|||
ceph (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
fpgatools (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
gambas3 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
gcc-4.9 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
gcc-5 (Ubuntu) |
Fix Released
|
High
|
Matthias Klose | ||
Xenial |
Fix Released
|
High
|
Unassigned | ||
Yakkety |
Fix Released
|
High
|
Unassigned | ||
gcc-5-cross (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
gcc-arm-none-eabi (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
gcc-avr (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
gcc-mingw-w64 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
higan (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
insighttoolkit4 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
ivtools (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
juju-mongodb3.2 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
libtsm (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
mariadb-10.0 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
mysql-5.7 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
nodejs (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
percona-server-5.6 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
percona-xtrabackup (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Dimitri John Ledkov | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
percona-xtradb-cluster-5.6 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
valgrind (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
webkitgtk (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
= Validation =
For gcc-5, check that code generation is correct as per small C test case below.
== fpgatools ==
* compile autotest.c and strip chrpath
* change path in autotest_diff.sh from ./ to /usr/bin
* execute autotest and check error codes
== gambas3 ==
* execute gambas.test
== inisghttoolkit4 ==
$ apt install insighttoolkit4
Run attached insightoolkit4.py script against an image file, e.g. Circle.png from -examples package.
== libtsm ==
Nothing in the archive uses this... No idea why we have this package, either release the update, or remove it from proposed.
== mariadb-10.0 ==
Run mariadb.sh
== percona-server-5.6 ==
Run percona.sh
== percona-xtrabackup ==
Execute $ xtrabackup --backup; xtracbackup --prepare; xtrabackup --backup in a new directory
== percona-
Deploy three node percona-cluster charm, upgrade to proposed, check that updating tables on one node is reflected on the others.
== webkitgtk ==
Open start.ubuntu.com in midori
== Comment: #0 - Andreas Krebbel - 2016-04-19 05:22:12 ==
The following miscompilation was found in the Valgrind memcheck preload library.
This compiler behavior can be reproduced with a small test case:
$ echo 'void foo (void) { volatile int a = 5; (void) a; }' | \
gcc -O2 -fno-omit-
foo.o: file format elf64-s390
Disassembly of section .text:
0000000000000000 <foo>:
0: b3 c1 00 2b ldgr %f2,%r11
4: b3 c1 00 0f ldgr %f0,%r15
8: e3 f0 ff 58 ff 71 lay %r15,-168(%r15)
e: b9 04 00 bf lgr %r11,%r15
12: b3 cd 00 f0 lgdr %r15,%f0
16: e5 4c b0 a4 00 05 mvhi 164(%r11),5 <---- stack variable access after stack pointer restore
1c: 58 10 b0 a4 l %r1,164(%r11) <----
20: b3 cd 00 b2 lgdr %r11,%f2
24: 07 fe br %r14
26: 07 07 nopr %r7
A patch for upstream GCC has been posted on the mailing list. Backports will go into 4.9/5/6 branches after the upstream patch is applied.
https:/
This patch needs to be included in the Ubuntu 16.04 GCC 5 packages.
We have scanned the entire xenial universe repo for suspicious sequences. Unfortunately several packages need to be rebuild after including the patch. We recommend rebuilding at least the following packages:
ceph-test_
g++-mingw-
g++-mingw-
gambas3-
gcc-arm-
gcc-avr_
gcc-mingw-
gcc-mingw-
gcc-snapshot_
gfortran-
gfortran-
gnat-mingw-
gnat-mingw-
gobjc++
gobjc++
gobjc-mingw-
gobjc-mingw-
higan_094-
juju-mongodb3.
libfpga0_
libgnatvsn5_
libgnatvsn5-
libinsighttoolk
libiv-unidraw1_
libjavascriptco
libjavascriptco
libmariadbd18_
libtsm3_
libwebkit2gtk-
mariadb-
mariadb-
mariadb-
mariadb-
mariadb-
mariadb-
mysql-client-
mysql-client-
mysql-server-
mysql-server-
mysql-testsuite
nodejs_
percona-
percona-
percona-
== Comment: #2 - Andreas Krebbel - 2016-04-20 03:22:27 ==
Patch is upstream committed to head, gcc-6, and gcc-5 branches.
tags: | added: architecture-s39064 bugnameltc-140461 severity-high targetmilestone-inin16041 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → gcc-defaults (Ubuntu) |
affects: | gcc-defaults (Ubuntu) → gcc-5 (Ubuntu) |
Changed in gcc-4.9 (Ubuntu Xenial): | |
assignee: | nobody → Matthias Klose (doko) |
Changed in gcc-5 (Ubuntu Xenial): | |
assignee: | Skipper Bug Screeners (skipper-screen-team) → Matthias Klose (doko) |
Changed in ubuntu-z-systems: | |
importance: | Undecided → High |
tags: |
added: bugnameltc-140542 removed: bugnameltc-140461 |
Changed in ceph (Ubuntu Yakkety): | |
status: | In Progress → Fix Committed |
Changed in gcc-4.9 (Ubuntu): | |
assignee: | Matthias Klose (doko) → nobody |
Changed in valgrind (Ubuntu Yakkety): | |
status: | New → Fix Committed |
Changed in percona-xtradb-cluster-5.6 (Ubuntu Yakkety): | |
status: | New → Fix Committed |
Changed in percona-server-5.6 (Ubuntu Yakkety): | |
status: | New → Fix Committed |
Changed in mysql-5.7 (Ubuntu Yakkety): | |
status: | New → Fix Committed |
Changed in juju-mongodb3.2 (Ubuntu Yakkety): | |
status: | In Progress → Fix Committed |
Changed in insighttoolkit4 (Ubuntu Yakkety): | |
status: | In Progress → Fix Committed |
Changed in ceph (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in fpgatools (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in gambas3 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in insighttoolkit4 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in juju-mongodb3.2 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in libtsm (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in mariadb-10.0 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in mysql-5.7 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in nodejs (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in percona-server-5.6 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in percona-xtrabackup (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in percona-xtradb-cluster-5.6 (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in valgrind (Ubuntu Xenial): | |
status: | New → In Progress |
tags: | removed: verification-failed |
Changed in gcc-5 (Ubuntu Xenial): | |
importance: | Undecided → High |
Changed in gcc-5 (Ubuntu Yakkety): | |
importance: | Undecided → High |
description: | updated |
Changed in ubuntu-z-systems: | |
status: | New → In Progress |
Changed in ubuntu-z-systems: | |
status: | In Progress → Fix Committed |
tags: |
added: verification-done removed: verification-needed |
tags: | removed: bugnameltc-140461 severity-high verification-needed |
description: | updated |
tags: | added: bugnameltc-140461 severity-high |
tags: | added: bugnameltc-140461 severity-high |
description: | updated |
description: | updated |
tags: |
added: verification-done removed: verification-needed |
Changed in ubuntu-z-systems: | |
status: | Fix Committed → Fix Released |
Changed in gcc-mingw-w64 (Ubuntu): | |
status: | Triaged → Fix Released |
Changed in gcc-4.9 (Ubuntu): | |
status: | Triaged → Fix Released |
I don't think the mingw-w64 packages need to be rebuilt; they don't generate code for S/390, but for i686 and x86_64 only.