[Mono-bugs] [Bug 569542] New: [verifier] SIGSEGV in find_method_in_class on a bad assembly

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Sat Jan 9 11:52:56 EST 2010 

http://bugzilla.novell.com/show_bug.cgi?id=569542

http://bugzilla.novell.com/show_bug.cgi?id=569542#c0


           Summary: [verifier] SIGSEGV in find_method_in_class on a bad
                    assembly
    Classification: Mono
           Product: Mono: Runtime
           Version: 2.6.x
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: P5 - None
         Component: verifier
        AssignedTo: rkumpera at novell.com
        ReportedBy: spouliot at novell.com
         QAContact: mono-bugs at lists.ximian.com
          Found By: ---
           Blocker: ---


Created an attachment (id=335774)
 --> (http://bugzilla.novell.com/attachment.cgi?id=335774)
assembly to reproduce crash

Current logic makes it possible for NULL entries in "klass->methods[x]" but
some code does not handle this.

MONO_PATH=/opt/mono/lib/moonlight/plugin/ gdb --args mono --security=core-clr
--compile-all System.Core.sigabrt.121567.dll

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x40ccb950 (LWP 26918)]
0x00000000005cba00 in find_method_in_class (klass=0xa3f9c8, name=0x7fe8aaf79bcb
"Average", qname=0x0, fqname=0x0, sig=0xa40910, from_class=0xa3f9c8)
    at loader.c:620
620            if (!((fqname && !strcmp (m->name, fqname)) ||
(gdb) bt
#0  0x00000000005cba00 in find_method_in_class (klass=0xa3f9c8,
name=0x7fe8aaf79bcb "Average", qname=0x0, fqname=0x0, sig=0xa40910,
from_class=0xa3f9c8)
    at loader.c:620
#1  0x00000000005cbc3a in find_method (in_class=0xa3f9c8, ic=0x0,
name=0x7fe8aaf79bcb "Average", sig=0xa40910, from_class=0xa3f9c8) at
loader.c:665
#2  0x00000000005ccab4 in method_from_memberref (image=0x9d6380, idx=116,
typespec_context=0x0, used_context=0x0) at loader.c:965
#3  0x00000000005cce9d in method_from_methodspec (image=0x9d6380, context=0x0,
idx=1) at loader.c:1049
#4  0x00000000005cddf7 in mono_get_method_from_token (image=0x9d6380,
token=721420289, klass=0x0, context=0x0, used_context=0x40cca4ac) at
loader.c:1488
#5  0x00000000005ce2b6 in mono_get_method_full (image=0x9d6380,
token=721420289, klass=0x0, context=0x0) at loader.c:1609
#6  0x000000000057f716 in verifier_load_method (ctx=0x40cca6f0,
token=721420289, opcode=0x6b8de6 "call") at verify.c:864
#7  0x000000000058715e in do_invoke_method (ctx=0x40cca6f0,
method_token=721420289, virtual=0) at verify.c:3380
#8  0x00000000005931b3 in mono_method_verify (method=0xa3f998, level=48) at
verify.c:5412
#9  0x0000000000596984 in mono_method_verify_with_current_settings
(method=0xa3f998, skip_visibility=0) at verify.c:6084
#10 0x000000000041a97a in mini_method_verify (cfg=0xa30800, method=0xa3f998) at
mini.c:1251
#11 0x000000000041ab61 in mono_compile_is_broken (cfg=0xa30800) at mini.c:1296
#12 0x000000000041f7c6 in mini_method_compile (method=0xa3f998, opts=55667199,
domain=0x7fe8aafa0db0, run_cctors=0, compile_aot=0, parts=0) at mini.c:3414
#13 0x00000000004a3e92 in compile_all_methods_thread_main (args=0x7fffb310fc80)
at driver.c:881
#14 0x00000000005b026a in start_wrapper (data=0xa29460) at threads.c:662
#15 0x00000000006594af in thread_start_routine (args=0x9fcb10) at
wthreads.c:286
#16 0x00000000006726ca in GC_start_routine (arg=0x7fe8aafa1e70) at
pthread_support.c:1390
#17 0x00007fe8aa1e0040 in start_thread () from /lib64/libpthread.so.0
#18 0x00007fe8a9cfd08d in clone () from /lib64/libc.so.6
#19 0x0000000000000000 in ?? ()

-- 
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

More information about the mono-bugs mailing list