[Mono-bugs] [Bug 623581] New: Invalid pointer returned from mono_image_load_module

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Mon Jul 19 13:40:35 EDT 2010 

http://bugzilla.novell.com/show_bug.cgi?id=623581

http://bugzilla.novell.com/show_bug.cgi?id=623581#c0


           Summary: Invalid pointer returned from mono_image_load_module
    Classification: Mono
           Product: Mono: Runtime
           Version: SVN
          Platform: x86
        OS/Version: openSUSE 11.3
            Status: NEW
          Severity: Critical
          Priority: P5 - None
         Component: verifier
        AssignedTo: rkumpera at novell.com
        ReportedBy: spouliot at novell.com
         QAContact: mono-bugs at lists.ximian.com
          Found By: ---
           Blocker: ---


Created an attachment (id=376893)
 --> (http://bugzilla.novell.com/attachment.cgi?id=376893)
assembly causing the invalid pointer

gdb --args pedump --verify all bin/System.sigsegv.40.dll

mono_image_load_module returns an invalid (0x11), non-NULL, pointer which is
then used to lock the image causing a SIGSEGV.

class.c, line 106:
        module = mono_image_load_module (image, idx);
        if (module)
            return mono_class_from_name (module, nspace, name);


Program received signal SIGSEGV, Segmentation fault.
0xb7f75fb7 in pthread_mutex_lock () from /lib/libpthread.so.0
(gdb) bt
#0  0xb7f75fb7 in pthread_mutex_lock () from /lib/libpthread.so.0
#1  0x08071d42 in mono_image_lock (image=0x11) at image.c:2255
#2  0x08062428 in mono_class_from_name (image=0x11, name_space=0xb7b243b0 "",
name=0xb7b243b0 "") at class.c:6822
#3  0x0806306f in mono_class_from_typeref (image=0x8275a10,
type_token=16777216) at class.c:106
#4  0x08063502 in mono_class_get_full (image=0x8275a10, type_token=16777216,
context=0x0) at class.c:6438
#5  0x080640dc in mono_class_get (image=0x8275a10, type_token=16777216) at
class.c:6525
#6  0x08093a7f in do_mono_metadata_parse_type (type=0xbfffebf4, m=0x8275a10,
container=0x0, transient=1, 
    ptr=0xb7b31fa3 "\354\a
\001\022U\022\203\221\004\035\022\201\354\b\a\004\016\035\016\035\016\002\005\a\001\022\201\354\004\a\002\016\002\005\a\001\022\201\364\a\a\003\022\202\304\b\b\006\a\002\016\021\201\025\005\a\001\021\201\025\a
\002\016\016\022\201\205\t", rptr=0xbfffec2c) at metadata.c:3156
#7  0x08093def in mono_metadata_parse_type_internal (m=0x8275a10,
container=0x0, mode=MONO_PARSE_LOCAL, opt_attrs=0, transient=1, 
    ptr=0xb7b31fa1 "\022\001\354\a
\001\022U\022\203\221\004\035\022\201\354\b\a\004\016\035\016\035\016\002\005\a\001\022\201\354\004\a\002\016\002\005\a\001\022\201\364\a\a\003\022\202\304\b\b\006\a\002\016\021\201\025\005\a\001\021\201\025\a
\002\016\016\022\201\205\t", rptr=0xbfffec78) at metadata.c:1608
#8  0x08094194 in mono_metadata_parse_mh_full (m=0x8275a10, container=0x0,
ptr=<value optimized out>) at metadata.c:3509
#9  0x0807619c in mono_method_get_header (method=0x82ae174) at loader.c:2337
#10 0x080ecb89 in mono_method_verify (method=0x82ae174, level=135) at
verify.c:4469
#11 0x0804ff3e in dump_verify_info (argc=4, argv=0xbffff094) at pedump.c:365
#12 main (argc=4, argv=0xbffff094) at pedump.c:727

-- 
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

More information about the mono-bugs mailing list