[Bug 599] New: busybox applet unlzma crashes

bugzilla at busybox.net bugzilla at busybox.net
Sun Sep 6 10:42:01 UTC 2009 

https://bugs.busybox.net/show_bug.cgi?id=599

           Summary: busybox applet unlzma crashes
           Product: Busybox
           Version: unspecified
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: Other
        AssignedTo: unassigned at busybox.net
        ReportedBy: oliver.metz at fswiwi.org
                CC: busybox-cvs at busybox.net
   Estimated Hours: 0.0


This changeset
(http://git.busybox.net/busybox/commit/?id=9ac3dc764a78b51fe8fdcd1b4682850de098733b)
breaks bb unlzma applet for me.

busybox-1.15.0
Linux ubuntu 2.6.28-15-server #49-Ubuntu SMP Tue Aug 18 20:09:37 UTC 2009
x86_64 GNU/Linux


I get the following gdb output:
(gdb) run unlzma dl/gcc-3.4.6-freetz-0.3.tar.lzma
Starting program: /home/oliver/fritzbox/freetz/trunk-test/tools/busybox unlzma
dl/gcc-3.4.6-freetz-0.3.tar.lzma

Program received signal SIGSEGV, Segmentation fault.
0x00000000004883ba in rc_is_bit_1 (rc=0x1ea5290, p=0x201ea1972) at
archival/libunarchive/decompress_unlzma.c:108
108             rc->bound = *p * (rc->range >> RC_MODEL_TOTAL_BITS);
(gdb) backtrace
#0  0x00000000004883ba in rc_is_bit_1 (rc=0x1ea5290, p=0x201ea1972) at
archival/libunarchive/decompress_unlzma.c:108
#1  0x00000000004885c5 in rc_get_bit (rc=0x1ea5290, p=0x201ea1972,
symbol=0x7fff25e3e1e4) at archival/libunarchive/decompress_unlzma.c:123
#2  0x0000000000488121 in unpack_lzma_stream (src_fd=0, dst_fd=1) at
archival/libunarchive/decompress_unlzma.c:423
#3  0x0000000000484539 in unpack_unlzma (info=0x7fff25e3e300) at
archival/bbunzip.c:330
#4  0x0000000000484373 in bbunpack (argv=0x7fff25e3e528, make_new_name=0x484507
<make_new_name_unlzma>, unpacker=0x484522 <unpack_unlzma>)
    at archival/bbunzip.c:98
#5  0x00000000004845a5 in unlzma_main (argc=2, argv=0x7fff25e3e528) at
archival/bbunzip.c:342
#6  0x0000000000480d0c in run_applet_no_and_exit (applet_no=6,
argv=0x7fff25e3e520) at libbb/appletlib.c:741
#7  0x0000000000480d44 in run_applet_and_exit (name=0x7fff25e3e921 "unlzma",
argv=0x7fff25e3e520) at libbb/appletlib.c:748
#8  0x0000000000480c57 in busybox_main (argv=0x7fff25e3e520) at
libbb/appletlib.c:713
#9  0x0000000000480d66 in run_applet_and_exit (name=0x7fff25e3e919 "busybox",
argv=0x7fff25e3e518) at libbb/appletlib.c:750
#10 0x0000000000480de1 in main (argc=3, argv=0x7fff25e3e518) at
libbb/appletlib.c:785
(gdb) print *p
Cannot access memory at address 0x201ea1972
(gdb)

The lzma file can be found here:
http://freetz.magenbrot.net/gcc-3.4.6-freetz-0.3.tar.lzma

Anything more I can attach?


-- 
Configure bugmail: https://bugs.busybox.net/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the busybox-cvs mailing list