dfxml-working-group / dfxml_cpp Goto Github PK
View Code? Open in Web Editor NEWC++ implementation of DFXML reader and writer
License: Other
dfxml_cpp's People
Contributors
Stargazers
Watchers
dfxml_cpp's Issues
upgrade catch
We got this problem on a recent build:
https://github.com/dfxml-working-group/dfxml_cpp/actions/runs/7567459660
It's not our problem; it's a bug a push to libgcc that somebody pushed.
Setup CODECOV
- CODECOV_TOKEN added to repo secrets.
Resolve AM_PROG_LIBTOOL
For autoconf 2.71 this creates errors:
configure.ac:32: warning: The macro `AM_PROG_LIBTOOL' is obsolete.
configure.ac:32: You should run autoupdate.
m4/libtool.m4:100: AM_PROG_LIBTOOL is expanded from...
configure.ac:32: the top level
slg@lastdance src % autoconf -V
autoconf (GNU Autoconf) 2.71
Copyright (C) 2021 Free Software Foundation, Inc.
License GPLv3+/Autoconf: GNU GPL version 3 or later
<https://gnu.org/licenses/gpl.html>, <https://gnu.org/licenses/exceptions.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Written by David J. MacKenzie and Akim Demaille.
slg@lastdance src %
Invalid read in dfxml_reader.cpp:164 dfxml::file_object_reader::endElement(void*, char const*)
Hello,
I found invalid read from dfxml_demo in badb3e9 by using afl and ASan. You can use following minimized reproducer to crash dfxml_demo: dfxml-crash-1.txt
Credits: Henri Salo of Nixu Corporation
$ cat dfxml-crash-1.txt
<?l?><fileobject><metadata c=''></metadata><c0eato0><p0og0am></p0og0am><e0ec0tio00e00i0o0me0t><os0s0s0ame></os0s0s0ame><os00e0sio0></os00e0sio0></e0ec0tio00e00i0o0me0t></c0eato0><co0fig00atio0><algo0ithms></algo0ithms></co0fig00atio0><fileobject><file0ame></file0ame><mtime></mtime><atime></atime><hashdigest e=''></hashdigest></fileobject><file0ame></file0ame><filesi0e></filesi0e><atime></atime><hashdigest e=''></hashdigest>
Hexdump
$ hexdump -C dfxml-crash-1.txt
00000000 3c 3f 6c 3f 3e 3c 66 69 6c 65 6f 62 6a 65 63 74 |<?l?><fileobject|
00000010 3e 3c 6d 65 74 61 64 61 74 61 20 63 3d 27 27 3e |><metadata c=''>|
00000020 3c 2f 6d 65 74 61 64 61 74 61 3e 3c 63 30 65 61 |</metadata><c0ea|
00000030 74 6f 30 3e 3c 70 30 6f 67 30 61 6d 3e 3c 2f 70 |to0><p0og0am></p|
00000040 30 6f 67 30 61 6d 3e 3c 65 30 65 63 30 74 69 6f |0og0am><e0ec0tio|
00000050 30 30 65 30 30 69 30 6f 30 6d 65 30 74 3e 3c 6f |00e00i0o0me0t><o|
00000060 73 30 73 30 73 30 61 6d 65 3e 3c 2f 6f 73 30 73 |s0s0s0ame></os0s|
00000070 30 73 30 61 6d 65 3e 3c 6f 73 30 30 65 30 73 69 |0s0ame><os00e0si|
00000080 6f 30 3e 3c 2f 6f 73 30 30 65 30 73 69 6f 30 3e |o0></os00e0sio0>|
00000090 3c 2f 65 30 65 63 30 74 69 6f 30 30 65 30 30 69 |</e0ec0tio00e00i|
000000a0 30 6f 30 6d 65 30 74 3e 3c 2f 63 30 65 61 74 6f |0o0me0t></c0eato|
000000b0 30 3e 3c 63 6f 30 66 69 67 30 30 61 74 69 6f 30 |0><co0fig00atio0|
000000c0 3e 3c 61 6c 67 6f 30 69 74 68 6d 73 3e 3c 2f 61 |><algo0ithms></a|
000000d0 6c 67 6f 30 69 74 68 6d 73 3e 3c 2f 63 6f 30 66 |lgo0ithms></co0f|
000000e0 69 67 30 30 61 74 69 6f 30 3e 3c 66 69 6c 65 6f |ig00atio0><fileo|
000000f0 62 6a 65 63 74 3e 3c 66 69 6c 65 30 61 6d 65 3e |bject><file0ame>|
00000100 3c 2f 66 69 6c 65 30 61 6d 65 3e 3c 6d 74 69 6d |</file0ame><mtim|
00000110 65 3e 3c 2f 6d 74 69 6d 65 3e 3c 61 74 69 6d 65 |e></mtime><atime|
00000120 3e 3c 2f 61 74 69 6d 65 3e 3c 68 61 73 68 64 69 |></atime><hashdi|
00000130 67 65 73 74 20 65 3d 27 27 3e 3c 2f 68 61 73 68 |gest e=''></hash|
00000140 64 69 67 65 73 74 3e 3c 2f 66 69 6c 65 6f 62 6a |digest></fileobj|
00000150 65 63 74 3e 3c 66 69 6c 65 30 61 6d 65 3e 3c 2f |ect><file0ame></|
00000160 66 69 6c 65 30 61 6d 65 3e 3c 66 69 6c 65 73 69 |file0ame><filesi|
00000170 30 65 3e 3c 2f 66 69 6c 65 73 69 30 65 3e 3c 61 |0e></filesi0e><a|
00000180 74 69 6d 65 3e 3c 2f 61 74 69 6d 65 3e 3c 68 61 |time></atime><ha|
00000190 73 68 64 69 67 65 73 74 20 65 3d 27 27 3e 3c 2f |shdigest e=''></|
000001a0 68 61 73 68 64 69 67 65 73 74 3e |hashdigest>|
000001ab
Valgrind:
==23688== Memcheck, a memory error detector
==23688== Copyright (C) 2002-2017, and GNU GPL'd, by Julian Seward et al.
==23688== Using Valgrind-3.14.0 and LibVEX; rerun with -h for copyright info
==23688== Command: builds/dfxml_cpp-clean/bin/dfxml_demo crash.1
==23688==
fi.filename:
pieces: 0
==23688== Invalid read of size 8
==23688== at 0x484B3F8: lower_bound (stl_tree.h:1203)
==23688== by 0x484B3F8: lower_bound (stl_map.h:1239)
==23688== by 0x484B3F8: operator[] (stl_map.h:495)
==23688== by 0x484B3F8: dfxml::file_object_reader::endElement(void*, char const*) (dfxml_reader.cpp:164)
==23688== by 0x4867A15: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x48684BB: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x4865F8A: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x4866E7A: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x486AA37: XML_ParseBuffer (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x484937F: dfxml::file_object_reader::read_dfxml(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::function<void (dfxml::file_object&)>) (dfxml_reader.cpp:203)
==23688== by 0x109211: main (dfxml_demo.cpp:25)
==23688== Address 0x18 is not stack'd, malloc'd or (recently) free'd
==23688==
==23688==
==23688== Process terminating with default action of signal 11 (SIGSEGV)
==23688== Access not within mapped region at address 0x18
==23688== at 0x484B3F8: lower_bound (stl_tree.h:1203)
==23688== by 0x484B3F8: lower_bound (stl_map.h:1239)
==23688== by 0x484B3F8: operator[] (stl_map.h:495)
==23688== by 0x484B3F8: dfxml::file_object_reader::endElement(void*, char const*) (dfxml_reader.cpp:164)
==23688== by 0x4867A15: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x48684BB: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x4865F8A: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x4866E7A: ??? (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x486AA37: XML_ParseBuffer (in /lib/x86_64-linux-gnu/libexpat.so.1.6.8)
==23688== by 0x484937F: dfxml::file_object_reader::read_dfxml(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::function<void (dfxml::file_object&)>) (dfxml_reader.cpp:203)
==23688== by 0x109211: main (dfxml_demo.cpp:25)
==23688== If you believe this happened as a result of a stack
==23688== overflow in your program's main thread (unlikely but
==23688== possible), you can try to increase the size of the
==23688== main thread stack using the --main-stacksize= flag.
==23688== The main thread stack size used in this run was 8388608.
==23688==
==23688== HEAP SUMMARY:
==23688== in use at exit: 19,730 bytes in 48 blocks
==23688== total heap usage: 59 allocs, 11 frees, 94,140 bytes allocated
==23688==
==23688== LEAK SUMMARY:
==23688== definitely lost: 136 bytes in 1 blocks
==23688== indirectly lost: 790 bytes in 9 blocks
==23688== possibly lost: 0 bytes in 0 blocks
==23688== still reachable: 18,804 bytes in 38 blocks
==23688== suppressed: 0 bytes in 0 blocks
==23688== Rerun with --leak-check=full to see details of leaked memory
==23688==
==23688== For counts of detected and suppressed errors, rerun with: -v
==23688== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 0 from 0)
Segmentation fault
Detection of cpuid producing false positive
When building on ppc64el architecture, the cpuid detection in dfxml_configure.m4 appears to be producing a false positive.
I added a debug statement and found that have_cpuid is set to "yes".
[...]
checking for git... no
configure: WARNING: git not found
configure: have_cpuid: yes
checking for CommonCrypto/CommonDigest.h... no
checking for gcrypt.h... no
[...]
This results in an assembler error.
be20_api/dfxml_cpp/src/dfxml_writer.h:478:96: warning: macro "__TIME__" might prevent reproducible builds [-Wdate-time]
478 | snprintf(buf,sizeof(buf),"%4d-%02d-%02dT%s",tm.tm_year+1900,tm.tm_mon+1,tm.tm_mday,__TIME__);
| ^~~~~~~~
/tmp/cc8zqd7t.s: Assembler messages:
/tmp/cc8zqd7t.s:47103: Error: unrecognized opcode: `cpuid'
/tmp/cc8zqd7t.s:48665: Error: unrecognized opcode: `cpuid'
/tmp/cc8zqd7t.s:55129: Error: unrecognized opcode: `cpuid'
make[3]: *** [Makefile:1383: phase1.o] Error 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.