[Mono-bugs] [Bug 564253] New: [verifier] SIGSEGV in set_stack_value (2) on a bad assembly

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Fri Dec 11 20:28:50 EST 2009


http://bugzilla.novell.com/show_bug.cgi?id=564253

http://bugzilla.novell.com/show_bug.cgi?id=564253#c0


           Summary: [verifier] SIGSEGV in set_stack_value (2) on a bad
                    assembly
    Classification: Mono
           Product: Mono: Runtime
           Version: 2.6.x
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: P5 - None
         Component: verifier
        AssignedTo: rkumpera at novell.com
        ReportedBy: spouliot at novell.com
         QAContact: mono-bugs at lists.ximian.com
          Found By: ---
           Blocker: ---


Created an attachment (id=332314)
 --> (http://bugzilla.novell.com/attachment.cgi?id=332314)
assembly to reproduce crash

I may sound familiar (#562320 is another SIGSEV earlier in that function) but
in this case the issue is the return value (NULL) from
mono_type_get_underlying_type_any (and not the 'stack' parameter)


MONO_PATH=/opt/mono/lib/moonlight/plugin/ gdb --args mono --security=core-clr
--compile-all System.Windows.sigsegv.102219.dll

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x41f57950 (LWP 16753)]
0x0000000000582471 in set_stack_value (ctx=0x41f558b0, stack=0xbb53b0,
type=0x0, take_addr=0) at verify.c:2467
warning: Source file is more recent than executable.
2467                type_kind = type->type;
(gdb) bt
#0  0x0000000000582471 in set_stack_value (ctx=0x41f558b0, stack=0xbb53b0,
type=0x0, take_addr=0) at verify.c:2467
#1  0x0000000000587813 in do_invoke_method (ctx=0x41f558b0,
method_token=100666271, virtual=1) at verify.c:3493
#2  0x00000000005921a0 in mono_method_verify (method=0xb75730, level=48) at
verify.c:5405
#3  0x00000000005958b7 in mono_method_verify_with_current_settings
(method=0xb75730, skip_visibility=0) at verify.c:6079
#4  0x000000000041a9b2 in mini_method_verify (cfg=0xb9b970, method=0xb75730) at
mini.c:1249
#5  0x00000000004510eb in mono_method_to_ir (cfg=0xb9b970, method=0xb75730,
start_bblock=0x0, end_bblock=0x0, return_var=0x0, dont_inline=0x0,
inline_args=0x0, 
    inline_offset=0, is_virtual_call=0) at method-to-ir.c:5403
#6  0x000000000041f7bd in mini_method_compile (method=0xb75730, opts=55667199,
domain=0x7fcb4d797db0, run_cctors=0, compile_aot=0, parts=0) at mini.c:3402
#7  0x00000000004a382e in compile_all_methods_thread_main (args=0x7fff55907470)
at driver.c:881
#8  0x00000000005aef56 in start_wrapper (data=0xa265a0) at threads.c:662
#9  0x0000000000656cb3 in thread_start_routine (args=0x9f9c50) at
wthreads.c:286
#10 0x000000000066fece in GC_start_routine (arg=0x7fcb4d798e70) at
pthread_support.c:1390
#11 0x00007fcb4c9d7040 in start_thread () from /lib64/libpthread.so.0
#12 0x00007fcb4c4f408d in clone () from /lib64/libc.so.6
#13 0x0000000000000000 in ?? ()
(gdb) up 2
#2  0x00000000005921a0 in mono_method_verify (method=0xb75730, level=48) at
verify.c:5405
5405                do_invoke_method (&ctx, read32 (ip + 1), *ip ==
CEE_CALLVIRT);
(gdb) p method->name
$1 = 0x7fcb4c3fd8ad "GetHorizontallyScrollable"
(gdb) p method->klass->name
$2 = 0x7fcb4c3f0c53 "ScrollViewerAutomationPeer"
(gdb) p method->klass->name_space
$3 = 0x7fcb4c3f08ce "System.Windows.Automation.Peers"

-- 
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.


More information about the mono-bugs mailing list