array_sscanf("hej","%s%n") cores
Imported from http://bugzilla.roxen.com/bugzilla/show_bug.cgi?id=1013
Reported by Mirar , Idonex Heavy Industries mirar@roxen.com
| tsunami% pike
| Pike v7.1 release 17 running Hilfe v2.0 (Incremental Pike Frontend)
| > array_sscanf("hej","%s%n");
| zsh: segmentation fault pike
(gdb) run
Starting program: /usr/local/bin/pike
Pike v7.1 release 17 running Hilfe v2.0 (Incremental Pike Frontend)
> array_sscanf("hej","%s%n");
Program received signal SIGSEGV, Segmentation fault.
0x80fd59d in low_do_hash (s=0x8307a48, len__=-137394757, size_shift=0)
at /users/mirar/pike/src/stralloc.c:54
54 DO_HASHMEM(full_hash_value, s, len__<<size_shift,
HASH_PREFIX<<size_shift);
(gdb) bt
#0 0x80fd59d in low_do_hash (s=0x8307a48, len__=-137394757, size_shift=0)
at /users/mirar/pike/src/stralloc.c:54
#1 0x80feab4 in debug_make_shared_binary_string (str=0x8307a48 "hej",
len=4157572539) at /users/mirar/pike/src/stralloc.c:670
#2 0x80feb9c in debug_make_shared_binary_string0 (str=0x8307a48 "hej",
len=4157572539) at /users/mirar/pike/src/stralloc.c:709
#3 0x80dd83c in very_low_sscanf_0_0 (input=0x8307a48 "hej", input_len=3,
match=0x8307b10 "%s%n", match_len=4, chars_matched=0xbfffdde4,
success=0xbfffdde8) at /users/mirar/pike/src/opcodes.c:1568
#4 0x80e7422 in f_sscanf (args=2) at /users/mirar/pike/src/opcodes.c:1740
#5 0x807cfa3 in mega_apply (type=APPLY_SVALUE, args=2, arg1=0x8313018,
arg2=0x0) at /users/mirar/pike/src/interpret.c:971
#6 0x807bda1 in eval_instruction_without_debug (pc=0x82ea584 "#")
at /users/mirar/pike/src/interpret_functions.h:1447
#7 0x807e556 in apply_low_safe_and_stupid (o=0x82a9c84, offset=5)
at /users/mirar/pike/src/interpret.c:775
#8 0x811d49b in eval_low (n=0x83190ac) at /users/mirar/pike/src/las.c:4501
#9 0x811d8c6 in eval (n=0x83190ac) at /users/mirar/pike/src/las.c:4576
#10 0x8115705 in optimize (n=0x8318fec) at /users/mirar/pike/src/las.c:4319
#11 0x810e375 in debug_mknode (token=291, a=0x8318f8c, b=0x0)
at /users/mirar/pike/src/las.c:1029
#12 0x806162b in yyparse () at language.yacc:3213
#13 0x80fac2e in compile (prog=0x82e9650, handler=0x0, major=-1, minor=-1)
at /users/mirar/pike/src/program.c:3416
#14 0x8125a99 in f_compile (args=4)
at /users/mirar/pike/src/builtin_functions.c:2544
#15 0x807cfa3 in mega_apply (type=APPLY_SVALUE, args=4, arg1=0x82ced04,
arg2=0x0) at /users/mirar/pike/src/interpret.c:971
#16 0x8076b95 in eval_instruction_without_debug (
pc=0x82cd62a "xi\004>\n\017\006>\tH\006\017\006\032\004\005")
at /users/mirar/pike/src/interpret_functions.h:621
#17 0x807df89 in o_catch (
pc=0x82cd625
"G\001f\a\005xi\004>\n\017\006>\tH\006\017\006\032\004\005")
at /users/mirar/pike/src/interpret.c:775
#18 0x807897c in eval_instruction_without_debug (pc=0x82cd621 "\n")
at /users/mirar/pike/src/interpret_functions.h:852
#19 0x807da1f in mega_apply (type=APPLY_LOW, args=1, arg1=0x82a9fe4,
arg2=0x8)
at /users/mirar/pike/src/interpret.c:775
#20 0x807bda1 in eval_instruction_without_debug (pc=0x82cd683 "d\002u·")
at /users/mirar/pike/src/interpret_functions.h:1447
#21 0x807da1f in mega_apply (type=APPLY_LOW, args=2, arg1=0x82a9fe4,
arg2=0xc)
at /users/mirar/pike/src/interpret.c:775
#22 0x807b929 in eval_instruction_without_debug (
pc=0x82ce01a "%\n\001R\002R\006G")
at /users/mirar/pike/src/interpret_functions.h:1420
#23 0x807da1f in mega_apply (type=APPLY_LOW, args=1, arg1=0x82a9fe4,
arg2=0x21)
at /users/mirar/pike/src/interpret.c:775
#24 0x807bda1 in eval_instruction_without_debug (pc=0x82cdc1b "d")
at /users/mirar/pike/src/interpret_functions.h:1447
#25 0x807da1f in mega_apply (type=APPLY_LOW, args=0, arg1=0x82a9fe4,
arg2=0x1e)
at /users/mirar/pike/src/interpret.c:775
#26 0x807bda1 in eval_instruction_without_debug (
pc=0x82cd8e2 "]\roD\r\237\016h$\003\001S\002D\r\234i\001]\roD\rI")
at /users/mirar/pike/src/interpret_functions.h:1447
#27 0x807da1f in mega_apply (type=APPLY_LOW, args=1, arg1=0x82a9fe4,
arg2=0x1b)
at /users/mirar/pike/src/interpret.c:775
#28 0x807b929 in eval_instruction_without_debug (pc=0x82ce04b "$")
at /users/mirar/pike/src/interpret_functions.h:1420
#29 0x807da1f in mega_apply (type=APPLY_LOW, args=1, arg1=0x82a9fe4,
arg2=0x22)
at /users/mirar/pike/src/interpret.c:775
#30 0x807b929 in eval_instruction_without_debug (
pc=0x82d94c4
"oD%\223\017D\r\234uÙÿÿÿ?\020sÔÿÿÿo\237&oD%\017\noD\a?\0224$")
at /users/mirar/pike/src/interpret_functions.h:1420
#31 0x807da1f in mega_apply (type=APPLY_LOW, args=0, arg1=0x82a9fe4,
arg2=0x23)
at /users/mirar/pike/src/interpret.c:775
#32 0x807eae4 in apply_lfun (o=0x82a9fe4, fun=1, args=0)
at /users/mirar/pike/src/interpret.c:1565
#33 0x80d6093 in call_pike_initializers (o=0x82a9fe4, args=0)
at /users/mirar/pike/src/object.c:255
#34 0x80d64b7 in parent_clone_object (p=0x82d92b8, parent=0x82a9f84,
parent_identifier=1, args=0) at /users/mirar/pike/src/object.c:310
#35 0x807d6b5 in mega_apply (type=APPLY_STACK, args=0, arg1=0x0, arg2=0x0)
at /users/mirar/pike/src/interpret.c:1216
#36 0x807bda1 in eval_instruction_without_debug (pc=0x82d01ec
"o7\020(s\013")
at /users/mirar/pike/src/interpret_functions.h:1447
#37 0x807da1f in mega_apply (type=APPLY_LOW, args=2, arg1=0x82aa164,
arg2=0x49)
at /users/mirar/pike/src/interpret.c:775
#38 0x807eb3e in apply (o=0x82aa164, fun=0x8199907 "_main", args=2)
at /users/mirar/pike/src/interpret.c:1577
#39 0x80cdbdd in main (argc=1, argv=0xbffffcdc)
at /users/mirar/pike/src/main.c:560