Re: Various segmentation faults in luac

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Various segmentation faults in luac
From: Luiz Henrique de Figueiredo <lhf@...>
Date: Tue, 9 Dec 2014 09:30:47 -0200

> Using the AFL fuzzer ( http://lcamtuf.coredump.cx/afl/ ) I found a few
> segfaults (and a failed assertion, id:000019) in luac when inputting
> files from stdin. All files are run with lua 5.2.3 and the patch from
> http://www.lua.org/bugs.html by executing "luac - < inputfile".

I can't reproduce any crashes.
The scripts you sent are strange. id:000007 does not compile.

Anyway, does it work in unpatched Lua 5.2.3?

I don't see any reason in luac why using stdin would be different
from using the file, except that the issue seems related to garbage
collection and using a filename may change the memory allocation pattern.

Try stopping the garbage collection in luac.c by adding the line below
just before "lua_pushcfunction(L,&pmain)":

	lua_gc(L, LUA_GCSTOP, 0);

Follow-Ups:
- Re: Various segmentation faults in luac, Dennis Felsing

References:
- Various segmentation faults in luac, Dennis Felsing

Prev by Date: Re: lua_register and Lua crash
Next by Date: Re: Function void luaV_finishOp (lua_State *L)
Previous by thread: Various segmentation faults in luac
Next by thread: Re: Various segmentation faults in luac
Index(es):
- Date
- Thread