Login
Log in using an SSO provider:
Fedora Account System
Red Hat Associate
Red Hat Customer
Login using a Red Hat Bugzilla account
Forgot Password
Create an Account
Red Hat Bugzilla – Attachment 1391296 Details for
Bug 1541844
[abrt] xdg-desktop-portal: strstr(): xdg-desktop-portal killed by SIGSEGV
Home
New
Search
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh92 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
[?]
This site requires JavaScript to be enabled to function correctly, please enable it.
File: backtrace
backtrace (text/plain), 32.57 KB, created by
David Reddick
on 2018-02-05 04:05:56 UTC
(
hide
)
Description:
File: backtrace
Filename:
MIME Type:
Creator:
David Reddick
Created:
2018-02-05 04:05:56 UTC
Size:
32.57 KB
patch
obsolete
>[New LWP 7633] >[New LWP 7630] >[New LWP 7631] >[New LWP 7632] >[New LWP 7634] >[New LWP 7639] >[Thread debugging using libthread_db enabled] >Using host libthread_db library "/lib64/libthread_db.so.1". >Core was generated by `/usr/libexec/xdg-desktop-portal'. >Program terminated with signal SIGSEGV, Segmentation fault. >#0 __strstr_sse2 (haystack_start=0x0, needle_start=0x557ff0a0112e "flatpak run ") at ../string/strstr.c:63 >63 while (*haystack && *needle) >[Current thread is 1 (Thread 0x7f82f9d32700 (LWP 7633))] > >Thread 1 (Thread 0x7f82f9d32700 (LWP 7633)): >#0 __strstr_sse2 (haystack_start=0x0, needle_start=0x557ff0a0112e "flatpak run ") at ../string/strstr.c:63 > haystack = 0x0 > needle = 0x557ff0a0112e "flatpak run " > needle_len = <optimized out> > haystack_len = <optimized out> > ok = true >#1 0x0000557ff09ced34 in is_sandboxed (info=0x0) at src/open-uri.c:177 > exec = 0x0 > exec = <optimized out> >#2 launch_application_with_uri (choice_id=0x7f82f0043d50 "alacarte-made-1437d622-056d-11e8-9b34-7085c23e8d23", uri=uri@entry=0x557ff18c08b0 "https://chrome.google.com/webstore/detail/bikioccmkafdpakkkcpdbppfkghcmihk", parent_window=parent_window@entry=0x7f82f0007a10 "", writable=writable@entry=0) at src/open-uri.c:192 > desktop_id = 0x7f82f0022fd0 "alacarte-made-1437d622-056d-11e8-9b34-7085c23e8d23.desktop" > info = 0x0 > context = 0x557ff18b6e10 > ruri = 0x0 > uris = {data = 0x7f82e4008a98, next = 0x7f82feb168d3 <g_object_finalize+83>, prev = 0x7f82e4008aa0} >#3 0x0000557ff09d0123 in handle_open_in_thread_func (task=<optimized out>, source_object=<optimized out>, task_data=0x7f82f0008060, cancellable=<optimized out>) at src/open-uri.c:524 > request = 0x7f82f0008060 > parent_window = 0x7f82f0007a10 "" > app_id = 0x7f82ec003a80 "org.signal.Desktop" > uri = 0x557ff18c08b0 "https://chrome.google.com/webstore/detail/bikioccmkafdpakkkcpdbppfkghcmihk" > error = 0x0 > impl_request = 0x0 > choices = 0x7f82f001ca70 > scheme = 0x7f82f0008f40 "https" > content_type = 0x7f82f0008f20 "x-scheme-handler/https" > latest_id = 0x0 > basename = 0x0 > latest_count = 0 > latest_threshold = 2147483647 > always_ask = 1 > opts_builder = {u = {s = {partial_magic = 140200513838304, type = 0x7ffc9f5c9c20 <clock_gettime+512>, y = {140200513838368, 8486329536, 140200349044864, 1, 140200513838336, 140722981550478, 140722981550479, 39, 24, 140200592631972, 140200349044864, 140200147716544, 94008001164456, 140200147716544}}, x = {140200513838304, 140722982132768, 140200513838368, 8486329536, 140200349044864, 1, 140200513838336, 140722981550478, 140722981550479, 39, 24, 140200592631972, 140200349044864, 140200147716544, 94008001164456, 140200147716544}}} > skip_app_chooser = 1 > fd = <optimized out> > writable = 0 > request_auto_unlock477 = 0x7f82f00080a8 >#4 0x00007f82fede96f6 in g_task_thread_pool_thread (thread_data=0x7f82e40089c0, pool_data=<optimized out>) at gtask.c:1331 > task = 0x7f82e40089c0 >#5 0x00007f82fe861590 in g_thread_pool_thread_proxy (data=<optimized out>) at gthreadpool.c:307 > task = <optimized out> > pool = 0x557ff185f680 >#6 0x00007f82fe860bc6 in g_thread_proxy (data=0x557ff186a140) at gthread.c:784 > thread = 0x557ff186a140 > __func__ = "g_thread_proxy" >#7 0x00007f82fe3bd574 in start_thread (arg=<optimized out>) at pthread_create.c:463 > pd = <optimized out> > now = <optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140200513840896, 5873172436057609144, 140722981550478, 140722981550479, 140722981550608, 140722981550608, -5871497024140717128, -5871480872625876040}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <optimized out> >#8 0x00007f82fe0f145f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 >No locals. > >Thread 2 (Thread 0x7f82ff2f4f80 (LWP 7630)): >#0 0x00007f82fe0e6a49 in __GI___poll (fds=0x557ff18c0000, nfds=2, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29 > resultvar = 18446744073709551100 > sc_cancel_oldtype = 0 > sc_ret = <optimized out> >#1 0x00007f82fe838f39 in g_main_context_poll (priority=<optimized out>, n_fds=2, fds=0x557ff18c0000, timeout=<optimized out>, context=0x557ff18703f0) at gmain.c:4204 > ret = <optimized out> > errsv = <optimized out> > poll_func = 0x7f82fe8487d0 <g_poll> > poll_func = <optimized out> > ret = <optimized out> > errsv = <optimized out> >#2 g_main_context_iterate (context=0x557ff18703f0, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at gmain.c:3898 > max_priority = 2147483647 > timeout = -1 > some_ready = <optimized out> > nfds = 2 > allocated_nfds = 2 > fds = 0x557ff18c0000 >#3 0x00007f82fe8392d2 in g_main_loop_run (loop=0x557ff185f110) at gmain.c:4099 > self = <optimized out> > __func__ = "g_main_loop_run" >#4 0x0000557ff09cca99 in main (argc=<optimized out>, argv=<optimized out>) at src/xdg-desktop-portal.c:451 > owner_id = 1 > error = 0x0 > session_bus = 0x557ff1859030 > context = 0x557ff18476e0 > >Thread 3 (Thread 0x7f82fbf71700 (LWP 7631)): >#0 0x00007f82fe0e6a49 in __GI___poll (fds=0x557ff1869fe0, nfds=2, timeout=5469) at ../sysdeps/unix/sysv/linux/poll.c:29 > resultvar = 18446744073709551100 > sc_cancel_oldtype = 0 > sc_ret = <optimized out> >#1 0x00007f82fe838f39 in g_main_context_poll (priority=<optimized out>, n_fds=2, fds=0x557ff1869fe0, timeout=<optimized out>, context=0x557ff1869ea0) at gmain.c:4204 > ret = <optimized out> > errsv = <optimized out> > poll_func = 0x7f82fe8487d0 <g_poll> > poll_func = <optimized out> > ret = <optimized out> > errsv = <optimized out> >#2 g_main_context_iterate (context=context@entry=0x557ff1869ea0, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at gmain.c:3898 > max_priority = 2147483647 > timeout = 5469 > some_ready = <optimized out> > nfds = 2 > allocated_nfds = 2 > fds = 0x557ff1869fe0 >#3 0x00007f82fe83904c in g_main_context_iteration (context=0x557ff1869ea0, may_block=may_block@entry=1) at gmain.c:3964 > retval = <optimized out> >#4 0x00007f82fe839091 in glib_worker_main (data=<optimized out>) at gmain.c:5773 >No locals. >#5 0x00007f82fe860bc6 in g_thread_proxy (data=0x557ff186a000) at gthread.c:784 > thread = 0x557ff186a000 > __func__ = "g_thread_proxy" >#6 0x00007f82fe3bd574 in start_thread (arg=<optimized out>) at pthread_create.c:463 > pd = <optimized out> > now = <optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140200549750528, 5873172436057609144, 140722981549854, 140722981549855, 140722981549984, 140722981549984, -5871492317393431624, -5871480872625876040}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <optimized out> >#7 0x00007f82fe0f145f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 >No locals. > >Thread 4 (Thread 0x7f82fa533700 (LWP 7632)): >#0 0x00007f82fe0e6a49 in __GI___poll (fds=0x557ff1876a00, nfds=3, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29 > resultvar = 18446744073709551100 > sc_cancel_oldtype = 0 > sc_ret = <optimized out> >#1 0x00007f82fe838f39 in g_main_context_poll (priority=<optimized out>, n_fds=3, fds=0x557ff1876a00, timeout=<optimized out>, context=0x557ff1874d30) at gmain.c:4204 > ret = <optimized out> > errsv = <optimized out> > poll_func = 0x7f82fe8487d0 <g_poll> > poll_func = <optimized out> > ret = <optimized out> > errsv = <optimized out> >#2 g_main_context_iterate (context=0x557ff1874d30, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at gmain.c:3898 > max_priority = 2147483647 > timeout = -1 > some_ready = <optimized out> > nfds = 3 > allocated_nfds = 3 > fds = 0x557ff1876a00 >#3 0x00007f82fe8392d2 in g_main_loop_run (loop=0x557ff1874e70) at gmain.c:4099 > self = <optimized out> > __func__ = "g_main_loop_run" >#4 0x00007f82fee2cc76 in gdbus_shared_thread_func (user_data=0x557ff1874d00) at gdbusprivate.c:275 > data = 0x557ff1874d00 >#5 0x00007f82fe860bc6 in g_thread_proxy (data=0x557ff186a0a0) at gthread.c:784 > thread = 0x557ff186a0a0 > __func__ = "g_thread_proxy" >#6 0x00007f82fe3bd574 in start_thread (arg=<optimized out>) at pthread_create.c:463 > pd = <optimized out> > now = <optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140200522233600, 5873172436057609144, 140722981550574, 140722981550575, 140722981550704, 140722981550704, -5871489327022451784, -5871480872625876040}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <optimized out> >#7 0x00007f82fe0f145f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 >No locals. > >Thread 5 (Thread 0x7f82ebfff700 (LWP 7634)): >#0 0x00007f82fe0e6a49 in __GI___poll (fds=0x557ff18a5470, nfds=1, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29 > resultvar = 18446744073709551100 > sc_cancel_oldtype = 0 > sc_ret = <optimized out> >#1 0x00007f82fe838f39 in g_main_context_poll (priority=<optimized out>, n_fds=1, fds=0x557ff18a5470, timeout=<optimized out>, context=0x557ff18a5500) at gmain.c:4204 > ret = <optimized out> > errsv = <optimized out> > poll_func = 0x7f82fe8487d0 <g_poll> > poll_func = <optimized out> > ret = <optimized out> > errsv = <optimized out> >#2 g_main_context_iterate (context=context@entry=0x557ff18a5500, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at gmain.c:3898 > max_priority = 2147483647 > timeout = -1 > some_ready = <optimized out> > nfds = 1 > allocated_nfds = 1 > fds = 0x557ff18a5470 >#3 0x00007f82fe83904c in g_main_context_iteration (context=context@entry=0x557ff18a5500, may_block=may_block@entry=1) at gmain.c:3964 > retval = <optimized out> >#4 0x00007f82f83dc42d in dconf_gdbus_worker_thread (user_data=0x557ff18a5500) at dconf-gdbus-thread.c:82 > context = 0x557ff18a5500 >#5 0x00007f82fe860bc6 in g_thread_proxy (data=0x557ff186ac00) at gthread.c:784 > thread = 0x557ff186ac00 > __func__ = "g_thread_proxy" >#6 0x00007f82fe3bd574 in start_thread (arg=<optimized out>) at pthread_create.c:463 > pd = <optimized out> > now = <optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140200281896704, 5873172436057609144, 140722981547326, 140722981547327, 140722981547456, 140722981547456, -5871457198519594056, -5871480872625876040}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <optimized out> >#7 0x00007f82fe0f145f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 >No locals. > >Thread 6 (Thread 0x7f82eb7fe700 (LWP 7639)): >#0 syscall () at ../sysdeps/unix/sysv/linux/x86_64/syscall.S:38 >No locals. >#1 0x00007f82fe87e1ec in g_mutex_lock_slowpath (mutex=mutex@entry=0x7f82f00080a8) at gthread-posix.c:1320 >No locals. >#2 0x00007f82fe87ea72 in g_mutex_lock (mutex=mutex@entry=0x7f82f00080a8) at gthread-posix.c:1344 >No locals. >#3 0x0000557ff09d6668 in auto_lock_helper (mutex=0x7f82f00080a8) at src/request.h:76 >No locals. >#4 close_requests_in_thread_func (task=<optimized out>, source_object=<optimized out>, task_data=0x7f82f0005130, cancellable=<optimized out>) at src/request.c:354 > request = 0x7f82f0008060 > request_auto_unlock354 = <optimized out> > sender = 0x7f82f0005130 ":1.197" > list = 0x7f82f000da30 > l = 0x7f82f000da30 > iter = {dummy1 = 0x7f82f0004180, dummy2 = 0x557ff1877070, dummy3 = 0x7f82ec003bb0, dummy4 = 8, dummy5 = 32642, dummy6 = 0x7f8200000001} > request = 0x7f82f0008060 >#5 0x00007f82fede96f6 in g_task_thread_pool_thread (thread_data=0x557ff1877070, pool_data=<optimized out>) at gtask.c:1331 > task = 0x557ff1877070 >#6 0x00007f82fe861590 in g_thread_pool_thread_proxy (data=<optimized out>) at gthreadpool.c:307 > task = <optimized out> > pool = 0x557ff185f680 >#7 0x00007f82fe860bc6 in g_thread_proxy (data=0x7f82e4003b20) at gthread.c:784 > thread = 0x7f82e4003b20 > __func__ = "g_thread_proxy" >#8 0x00007f82fe3bd574 in start_thread (arg=<optimized out>) at pthread_create.c:463 > pd = <optimized out> > now = <optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140200273504000, 5873172436057609144, 140200513836222, 140200513836223, 140200513836352, 140200513836352, -5871456099544837192, -5871480872625876040}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <optimized out> >#9 0x00007f82fe0f145f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 >No locals. >From To Syms Read Shared Object Library >0x00007f82fed8f450 0x00007f82fee7bb82 Yes /lib64/libgio-2.0.so.0 >0x00007f82feb0c7c0 0x00007f82feb3f925 Yes /lib64/libgobject-2.0.so.0 >0x00007f82fe808090 0x00007f82fe88160e Yes /lib64/libglib-2.0.so.0 >0x00007f82fe5d7ad0 0x00007f82fe5e86d5 No /lib64/libgcc_s.so.1 >0x00007f82fe3bbb90 0x00007f82fe3c9811 Yes /lib64/libpthread.so.0 >0x00007f82fe018370 0x00007f82fe15f65f Yes /lib64/libc.so.6 >0x00007f82fddf07c0 0x00007f82fddf4f7a Yes /lib64/libffi.so.6 >0x00007f82fdbec140 0x00007f82fdbed036 Yes /lib64/libgmodule-2.0.so.0 >0x00007f82fd9e7ee0 0x00007f82fd9e8bae Yes /lib64/libdl.so.2 >0x00007f82fd775660 0x00007f82fd7c738d Yes /lib64/libpcre.so.1 >0x00007f82fd55f3d0 0x00007f82fd56c23f Yes /lib64/libz.so.1 >0x00007f82fd33adf0 0x00007f82fd35211f Yes /lib64/libselinux.so.1 >0x00007f82fd120840 0x00007f82fd12c65e Yes /lib64/libresolv.so.2 >0x00007f82fced2af0 0x00007f82fcf07a5e No /lib64/libmount.so.1 >0x00007f82ff102f60 0x00007f82ff11f9c0 Yes /lib64/ld-linux-x86-64.so.2 >0x00007f82fcc46170 0x00007f82fcca2d61 Yes /lib64/libpcre2-8.so.0 >0x00007f82fca001c0 0x00007f82fca2e85e No /lib64/libblkid.so.1 >0x00007f82fc7f0740 0x00007f82fc7f3fd9 No /lib64/libuuid.so.1 >0x00007f82fc5e91c0 0x00007f82fc5ec44c Yes /lib64/librt.so.1 >0x00007f82fc3bf110 0x00007f82fc3d9ab6 No /usr/lib64/gio/modules/libgvfsdbus.so >0x00007f82fc188a70 0x00007f82fc19fa76 No /usr/lib64/gvfs/libgvfscommon.so >0x00007f82fbf72e80 0x00007f82fbf737a8 Yes /lib64/libutil.so.1 >0x00007f82fb569580 0x00007f82fb56e2a9 No /lib64/libnss_sss.so.2 >0x00007f82fab53340 0x00007f82fab595b8 Yes /lib64/libnss_files.so.2 >0x00007f82f9117ae0 0x00007f82f91285cd Yes /lib64/libproxy.so.1 >0x00007f82f8f0a1a0 0x00007f82f8f0ddcf Yes /lib64/libmodman.so.1 >0x00007f82f8c07380 0x00007f82f8cba5fe No /lib64/libstdc++.so.6 >0x00007f82f87f29f0 0x00007f82f88a4f8a Yes /lib64/libm.so.6 >0x00007f82f85e3970 0x00007f82f85e49ea Yes /usr/lib64/gio/modules/libgiognomeproxy.so >0x00007f82f83d8c30 0x00007f82f83ddc2e Yes /usr/lib64/gio/modules/libdconfsettings.so >$1 = 0x0 >$2 = 0x0 >rax 0x0 0 >rbx 0x0 0 >rcx 0x7f82f00008d0 140200349010128 >rdx 0x0 0 >rsi 0x557ff0a0112e 94007986229550 >rdi 0x0 0 >rbp 0x0 0x0 >rsp 0x7f82f9d31af0 0x7f82f9d31af0 >r8 0x1 1 >r9 0x66 102 >r10 0x5345445f53495f47 6000277254750953287 >r11 0x0 0 >r12 0x7f82f0043d50 140200349285712 >r13 0x7f82f0022fd0 140200349151184 >r14 0x557ff18c08b0 94008001693872 >r15 0x7f82f0008f20 140200349044512 >rip 0x7f82fe07fe05 0x7f82fe07fe05 <__strstr_sse2+37> >eflags 0x10246 [ PF ZF IF RF ] >cs 0x33 51 >ss 0x2b 43 >ds 0x0 0 >es 0x0 0 >fs 0x0 0 >gs 0x0 0 >Dump of assembler code for function __strstr_sse2: > 0x00007f82fe07fde0 <+0>: push %r15 > 0x00007f82fe07fde2 <+2>: push %r14 > 0x00007f82fe07fde4 <+4>: push %r13 > 0x00007f82fe07fde6 <+6>: push %r12 > 0x00007f82fe07fde8 <+8>: push %rbp > 0x00007f82fe07fde9 <+9>: mov %rdi,%rbp > 0x00007f82fe07fdec <+12>: push %rbx > 0x00007f82fe07fded <+13>: sub $0x68,%rsp > 0x00007f82fe07fdf1 <+17>: movzbl (%rsi),%r9d > 0x00007f82fe07fdf5 <+21>: mov %fs:0x28,%rax > 0x00007f82fe07fdfe <+30>: mov %rax,0x58(%rsp) > 0x00007f82fe07fe03 <+35>: xor %eax,%eax >=> 0x00007f82fe07fe05 <+37>: movzbl (%rdi),%eax > 0x00007f82fe07fe08 <+40>: test %al,%al > 0x00007f82fe07fe0a <+42>: je 0x7f82fe080198 <__strstr_sse2+952> > 0x00007f82fe07fe10 <+48>: test %r9b,%r9b > 0x00007f82fe07fe13 <+51>: je 0x7f82fe0801ad <__strstr_sse2+973> > 0x00007f82fe07fe19 <+57>: mov %rdi,%rdx > 0x00007f82fe07fe1c <+60>: mov %rsi,%rbx > 0x00007f82fe07fe1f <+63>: mov %r9d,%ecx > 0x00007f82fe07fe22 <+66>: mov $0x1,%edi > 0x00007f82fe07fe27 <+71>: jmp 0x7f82fe07fe34 <__strstr_sse2+84> > 0x00007f82fe07fe29 <+73>: nopl 0x0(%rax) > 0x00007f82fe07fe30 <+80>: test %cl,%cl > 0x00007f82fe07fe32 <+82>: je 0x7f82fe07fe54 <__strstr_sse2+116> > 0x00007f82fe07fe34 <+84>: add $0x1,%rdx > 0x00007f82fe07fe38 <+88>: add $0x1,%rbx > 0x00007f82fe07fe3c <+92>: cmp %al,%cl > 0x00007f82fe07fe3e <+94>: sete %al > 0x00007f82fe07fe41 <+97>: movzbl (%rbx),%ecx > 0x00007f82fe07fe44 <+100>: and %eax,%edi > 0x00007f82fe07fe46 <+102>: movzbl (%rdx),%eax > 0x00007f82fe07fe49 <+105>: test %al,%al > 0x00007f82fe07fe4b <+107>: jne 0x7f82fe07fe30 <__strstr_sse2+80> > 0x00007f82fe07fe4d <+109>: xor %r14d,%r14d > 0x00007f82fe07fe50 <+112>: test %cl,%cl > 0x00007f82fe07fe52 <+114>: jne 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe07fe54 <+116>: mov %rbp,%r14 > 0x00007f82fe07fe57 <+119>: test %dil,%dil > 0x00007f82fe07fe5a <+122>: jne 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe07fe5c <+124>: mov %rbx,%r15 > 0x00007f82fe07fe5f <+127>: lea 0x1(%rbp),%rdi > 0x00007f82fe07fe63 <+131>: sub %rsi,%r15 > 0x00007f82fe07fe66 <+134>: movsbl %r9b,%esi > 0x00007f82fe07fe6a <+138>: callq 0x7f82fe0181c0 <*ABS*+0x88030@plt> > 0x00007f82fe07fe6f <+143>: mov %rax,%r14 > 0x00007f82fe07fe72 <+146>: test %rax,%rax > 0x00007f82fe07fe75 <+149>: je 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe07fe77 <+151>: cmp $0x1,%r15 > 0x00007f82fe07fe7b <+155>: je 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe07fe7d <+157>: lea 0x0(%rbp,%r15,1),%rax > 0x00007f82fe07fe82 <+162>: sub %r15,%rbx > 0x00007f82fe07fe85 <+165>: mov $0x1,%ecx > 0x00007f82fe07fe8a <+170>: mov %rax,%rdx > 0x00007f82fe07fe8d <+173>: sub %r14,%rdx > 0x00007f82fe07fe90 <+176>: cmp %r14,%rax > 0x00007f82fe07fe93 <+179>: cmovb %rcx,%rdx > 0x00007f82fe07fe97 <+183>: mov %rdx,%r8 > 0x00007f82fe07fe9a <+186>: cmp $0x1f,%r15 > 0x00007f82fe07fe9e <+190>: jbe 0x7f82fe07fee0 <__strstr_sse2+256> > 0x00007f82fe07fea0 <+192>: mov %r14,%rdi > 0x00007f82fe07fea3 <+195>: mov %r15,%rcx > 0x00007f82fe07fea6 <+198>: mov %rbx,%rdx > 0x00007f82fe07fea9 <+201>: mov %r8,%rsi > 0x00007f82fe07feac <+204>: callq 0x7f82fe07fa20 <two_way_long_needle> > 0x00007f82fe07feb1 <+209>: mov %rax,%r14 > 0x00007f82fe07feb4 <+212>: mov 0x58(%rsp),%rdi > 0x00007f82fe07feb9 <+217>: xor %fs:0x28,%rdi > 0x00007f82fe07fec2 <+226>: mov %r14,%rax > 0x00007f82fe07fec5 <+229>: jne 0x7f82fe080274 <__strstr_sse2+1172> > 0x00007f82fe07fecb <+235>: add $0x68,%rsp > 0x00007f82fe07fecf <+239>: pop %rbx > 0x00007f82fe07fed0 <+240>: pop %rbp > 0x00007f82fe07fed1 <+241>: pop %r12 > 0x00007f82fe07fed3 <+243>: pop %r13 > 0x00007f82fe07fed5 <+245>: pop %r14 > 0x00007f82fe07fed7 <+247>: pop %r15 > 0x00007f82fe07fed9 <+249>: retq > 0x00007f82fe07feda <+250>: nopw 0x0(%rax,%rax,1) > 0x00007f82fe07fee0 <+256>: mov %rdx,0x8(%rsp) > 0x00007f82fe07fee5 <+261>: mov %r15,%rsi > 0x00007f82fe07fee8 <+264>: lea 0x50(%rsp),%rdx > 0x00007f82fe07feed <+269>: mov %rbx,%rdi > 0x00007f82fe07fef0 <+272>: callq 0x7f82fe07f8f0 <critical_factorization> > 0x00007f82fe07fef5 <+277>: mov %rax,%r12 > 0x00007f82fe07fef8 <+280>: mov 0x50(%rsp),%rax > 0x00007f82fe07fefd <+285>: mov %r12,%rdx > 0x00007f82fe07ff00 <+288>: lea (%rbx,%rax,1),%rsi > 0x00007f82fe07ff04 <+292>: mov %rax,0x18(%rsp) > 0x00007f82fe07ff09 <+297>: callq 0x7f82fe0182d0 <*ABS*+0x89370@plt> > 0x00007f82fe07ff0e <+302>: mov 0x8(%rsp),%r8 > 0x00007f82fe07ff13 <+307>: mov $0x1,%ecx > 0x00007f82fe07ff18 <+312>: test %eax,%eax > 0x00007f82fe07ff1a <+314>: jne 0x7f82fe080070 <__strstr_sse2+656> > 0x00007f82fe07ff20 <+320>: lea -0x1(%r12),%rax > 0x00007f82fe07ff25 <+325>: sub %r12,%rcx > 0x00007f82fe07ff28 <+328>: xor %r13d,%r13d > 0x00007f82fe07ff2b <+331>: xor %ebp,%ebp > 0x00007f82fe07ff2d <+333>: mov %rax,0x20(%rsp) > 0x00007f82fe07ff32 <+338>: add %rbx,%rax > 0x00007f82fe07ff35 <+341>: mov %r13,%rsi > 0x00007f82fe07ff38 <+344>: mov %r8,%rdi > 0x00007f82fe07ff3b <+347>: mov %rax,0x28(%rsp) > 0x00007f82fe07ff40 <+352>: mov %r15,%rax > 0x00007f82fe07ff43 <+355>: sub 0x18(%rsp),%rax > 0x00007f82fe07ff48 <+360>: mov %r12,%r13 > 0x00007f82fe07ff4b <+363>: mov %rcx,0x10(%rsp) > 0x00007f82fe07ff50 <+368>: mov %rsi,%r12 > 0x00007f82fe07ff53 <+371>: mov %rax,0x30(%rsp) > 0x00007f82fe07ff58 <+376>: mov %r14,%rax > 0x00007f82fe07ff5b <+379>: mov %rbp,%r14 > 0x00007f82fe07ff5e <+382>: mov %rax,%rbp > 0x00007f82fe07ff61 <+385>: nopl 0x0(%rax) > 0x00007f82fe07ff68 <+392>: lea (%r15,%r12,1),%r10 > 0x00007f82fe07ff6c <+396>: xor %esi,%esi > 0x00007f82fe07ff6e <+398>: mov %r10,%rdx > 0x00007f82fe07ff71 <+401>: mov %r10,0x8(%rsp) > 0x00007f82fe07ff76 <+406>: sub %rdi,%rdx > 0x00007f82fe07ff79 <+409>: add %rbp,%rdi > 0x00007f82fe07ff7c <+412>: callq 0x7f82fe018170 <*ABS*+0x89340@plt> > 0x00007f82fe07ff81 <+417>: mov 0x8(%rsp),%r10 > 0x00007f82fe07ff86 <+422>: test %r10,%r10 > 0x00007f82fe07ff89 <+425>: je 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe07ff8f <+431>: test %rax,%rax > 0x00007f82fe07ff92 <+434>: jne 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe07ff98 <+440>: cmp %r14,%r13 > 0x00007f82fe07ff9b <+443>: mov %r14,%rax > 0x00007f82fe07ff9e <+446>: cmovae %r13,%rax > 0x00007f82fe07ffa2 <+450>: lea (%rax,%r12,1),%rdx > 0x00007f82fe07ffa6 <+454>: lea (%rbx,%rax,1),%rsi > 0x00007f82fe07ffaa <+458>: add %rbp,%rdx > 0x00007f82fe07ffad <+461>: cmp %rax,%r15 > 0x00007f82fe07ffb0 <+464>: jbe 0x7f82fe07ffdb <__strstr_sse2+507> > 0x00007f82fe07ffb2 <+466>: movzbl (%rsi),%edi > 0x00007f82fe07ffb5 <+469>: cmp %dil,(%rdx) > 0x00007f82fe07ffb8 <+472>: jne 0x7f82fe080050 <__strstr_sse2+624> > 0x00007f82fe07ffbe <+478>: lea 0x0(%rbp,%r12,1),%rdx > 0x00007f82fe07ffc3 <+483>: jmp 0x7f82fe07ffd2 <__strstr_sse2+498> > 0x00007f82fe07ffc5 <+485>: nopl (%rax) > 0x00007f82fe07ffc8 <+488>: movzbl (%rdx,%rax,1),%esi > 0x00007f82fe07ffcc <+492>: cmp %sil,(%rbx,%rax,1) > 0x00007f82fe07ffd0 <+496>: jne 0x7f82fe080050 <__strstr_sse2+624> > 0x00007f82fe07ffd2 <+498>: add $0x1,%rax > 0x00007f82fe07ffd6 <+502>: cmp %rax,%r15 > 0x00007f82fe07ffd9 <+505>: jne 0x7f82fe07ffc8 <__strstr_sse2+488> > 0x00007f82fe07ffdb <+507>: mov 0x20(%rsp),%rax > 0x00007f82fe07ffe0 <+512>: lea (%r12,%rax,1),%rsi > 0x00007f82fe07ffe4 <+516>: mov %rax,%rdx > 0x00007f82fe07ffe7 <+519>: add %rbp,%rsi > 0x00007f82fe07ffea <+522>: cmp %r14,%r13 > 0x00007f82fe07ffed <+525>: jbe 0x7f82fe0801e2 <__strstr_sse2+1026> > 0x00007f82fe07fff3 <+531>: mov 0x28(%rsp),%rax > 0x00007f82fe07fff8 <+536>: movzbl (%rax),%eax > 0x00007f82fe07fffb <+539>: cmp %al,(%rsi) > 0x00007f82fe07fffd <+541>: jne 0x7f82fe0801e2 <__strstr_sse2+1026> > 0x00007f82fe080003 <+547>: sub %r13,%rsi > 0x00007f82fe080006 <+550>: jmp 0x7f82fe08001e <__strstr_sse2+574> > 0x00007f82fe080008 <+552>: nopl 0x0(%rax,%rax,1) > 0x00007f82fe080010 <+560>: movzbl 0x1(%rax,%rsi,1),%edi > 0x00007f82fe080015 <+565>: cmp %dil,(%rbx,%rax,1) > 0x00007f82fe080019 <+569>: jne 0x7f82fe080027 <__strstr_sse2+583> > 0x00007f82fe08001b <+571>: mov %rax,%rdx > 0x00007f82fe08001e <+574>: lea -0x1(%rdx),%rax > 0x00007f82fe080022 <+578>: cmp %rdx,%r14 > 0x00007f82fe080025 <+581>: jne 0x7f82fe080010 <__strstr_sse2+560> > 0x00007f82fe080027 <+583>: lea 0x1(%r14),%r9 > 0x00007f82fe08002b <+587>: cmp %rdx,%r9 > 0x00007f82fe08002e <+590>: ja 0x7f82fe08025a <__strstr_sse2+1146> > 0x00007f82fe080034 <+596>: mov 0x30(%rsp),%r14 > 0x00007f82fe080039 <+601>: add 0x18(%rsp),%r12 > 0x00007f82fe08003e <+606>: mov %r10,%rdi > 0x00007f82fe080041 <+609>: jmpq 0x7f82fe07ff68 <__strstr_sse2+392> > 0x00007f82fe080046 <+614>: nopw %cs:0x0(%rax,%rax,1) > 0x00007f82fe080050 <+624>: mov 0x10(%rsp),%rdi > 0x00007f82fe080055 <+629>: xor %r14d,%r14d > 0x00007f82fe080058 <+632>: lea (%rdi,%r12,1),%rcx > 0x00007f82fe08005c <+636>: lea (%rax,%rcx,1),%r12 > 0x00007f82fe080060 <+640>: jmp 0x7f82fe08003e <__strstr_sse2+606> > 0x00007f82fe080062 <+642>: nopw 0x0(%rax,%rax,1) > 0x00007f82fe080068 <+648>: xor %r14d,%r14d > 0x00007f82fe08006b <+651>: jmpq 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe080070 <+656>: lea (%r14,%r12,1),%rax > 0x00007f82fe080074 <+660>: lea 0x1(%r12),%r11 > 0x00007f82fe080079 <+665>: mov %rax,0x8(%rsp) > 0x00007f82fe08007e <+670>: lea (%rbx,%r12,1),%r13 > 0x00007f82fe080082 <+674>: cmp %r11,%r8 > 0x00007f82fe080085 <+677>: jb 0x7f82fe0801b5 <__strstr_sse2+981> > 0x00007f82fe08008b <+683>: mov %r15,%rax > 0x00007f82fe08008e <+686>: mov $0x1,%edx > 0x00007f82fe080093 <+691>: lea (%rbx,%r11,1),%rdi > 0x00007f82fe080097 <+695>: movzbl 0x0(%r13),%r13d > 0x00007f82fe08009c <+700>: sub %r12,%rax > 0x00007f82fe08009f <+703>: lea -0x1(%r12),%r10 > 0x00007f82fe0800a4 <+708>: mov %rdi,0x10(%rsp) > 0x00007f82fe0800a9 <+713>: mov %r12,%rdi > 0x00007f82fe0800ac <+716>: cmp %r12,%rax > 0x00007f82fe0800af <+719>: lea (%rbx,%r10,1),%rcx > 0x00007f82fe0800b3 <+723>: cmovb %r12,%rax > 0x00007f82fe0800b7 <+727>: sub %r12,%rdx > 0x00007f82fe0800ba <+730>: neg %rdi > 0x00007f82fe0800bd <+733>: mov %rcx,%rbp > 0x00007f82fe0800c0 <+736>: mov %rdx,0x18(%rsp) > 0x00007f82fe0800c5 <+741>: mov %r12,%rcx > 0x00007f82fe0800c8 <+744>: add $0x1,%rbx > 0x00007f82fe0800cc <+748>: add $0x1,%rax > 0x00007f82fe0800d0 <+752>: mov %rdi,0x28(%rsp) > 0x00007f82fe0800d5 <+757>: mov %rax,0x20(%rsp) > 0x00007f82fe0800da <+762>: lea (%r14,%r12,1),%rax > 0x00007f82fe0800de <+766>: mov %r11,%r12 > 0x00007f82fe0800e1 <+769>: movzbl (%rax),%edx > 0x00007f82fe0800e4 <+772>: lea 0x1(%rax),%rsi > 0x00007f82fe0800e8 <+776>: cmp %dl,%r13b > 0x00007f82fe0800eb <+779>: je 0x7f82fe080104 <__strstr_sse2+804> > 0x00007f82fe0800ed <+781>: test %dl,%dl > 0x00007f82fe0800ef <+783>: je 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe0800f5 <+789>: mov %rsi,%rax > 0x00007f82fe0800f8 <+792>: movzbl (%rax),%edx > 0x00007f82fe0800fb <+795>: lea 0x1(%rax),%rsi > 0x00007f82fe0800ff <+799>: cmp %dl,%r13b > 0x00007f82fe080102 <+802>: jne 0x7f82fe0800ed <__strstr_sse2+781> > 0x00007f82fe080104 <+804>: sub 0x8(%rsp),%rsi > 0x00007f82fe080109 <+809>: lea -0x1(%rsi),%r9 > 0x00007f82fe08010d <+813>: cmp %r12,%r15 > 0x00007f82fe080110 <+816>: jbe 0x7f82fe080148 <__strstr_sse2+872> > 0x00007f82fe080112 <+818>: mov 0x10(%rsp),%rdi > 0x00007f82fe080117 <+823>: movzbl 0x1(%rax),%esi > 0x00007f82fe08011b <+827>: mov %r12,%rdx > 0x00007f82fe08011e <+830>: cmp %sil,(%rdi) > 0x00007f82fe080121 <+833>: jne 0x7f82fe0801ea <__strstr_sse2+1034> > 0x00007f82fe080127 <+839>: sub %rcx,%rax > 0x00007f82fe08012a <+842>: jmp 0x7f82fe08013f <__strstr_sse2+863> > 0x00007f82fe08012c <+844>: nopl 0x0(%rax) > 0x00007f82fe080130 <+848>: movzbl (%rax,%rdx,1),%esi > 0x00007f82fe080134 <+852>: cmp %sil,-0x1(%rbx,%rdx,1) > 0x00007f82fe080139 <+857>: jne 0x7f82fe0801ea <__strstr_sse2+1034> > 0x00007f82fe08013f <+863>: add $0x1,%rdx > 0x00007f82fe080143 <+867>: cmp %rdx,%r15 > 0x00007f82fe080146 <+870>: ja 0x7f82fe080130 <__strstr_sse2+848> > 0x00007f82fe080148 <+872>: lea (%r9,%r10,1),%rdi > 0x00007f82fe08014c <+876>: add %r14,%rdi > 0x00007f82fe08014f <+879>: cmp $0xffffffffffffffff,%r10 > 0x00007f82fe080153 <+883>: je 0x7f82fe08018c <__strstr_sse2+940> > 0x00007f82fe080155 <+885>: movzbl (%rdi),%edx > 0x00007f82fe080158 <+888>: mov $0xffffffffffffffff,%rax > 0x00007f82fe08015f <+895>: mov 0x28(%rsp),%r11 > 0x00007f82fe080164 <+900>: cmp %dl,0x0(%rbp) > 0x00007f82fe080167 <+903>: je 0x7f82fe080187 <__strstr_sse2+935> > 0x00007f82fe080169 <+905>: jmpq 0x7f82fe080265 <__strstr_sse2+1157> > 0x00007f82fe08016e <+910>: xchg %ax,%ax > 0x00007f82fe080170 <+912>: movzbl 0x0(%rbp,%rax,1),%esi > 0x00007f82fe080175 <+917>: sub $0x1,%rax > 0x00007f82fe080179 <+921>: movzbl 0x1(%rdi,%rax,1),%edx > 0x00007f82fe08017e <+926>: cmp %dl,%sil > 0x00007f82fe080181 <+929>: jne 0x7f82fe080265 <__strstr_sse2+1157> > 0x00007f82fe080187 <+935>: cmp %rax,%r11 > 0x00007f82fe08018a <+938>: jne 0x7f82fe080170 <__strstr_sse2+912> > 0x00007f82fe08018c <+940>: add %r9,%r14 > 0x00007f82fe08018f <+943>: jmpq 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe080194 <+948>: nopl 0x0(%rax) > 0x00007f82fe080198 <+952>: test %r9b,%r9b > 0x00007f82fe08019b <+955>: mov $0x0,%r8d > 0x00007f82fe0801a1 <+961>: cmove %rdi,%r8 > 0x00007f82fe0801a5 <+965>: mov %r8,%r14 > 0x00007f82fe0801a8 <+968>: jmpq 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe0801ad <+973>: mov %rdi,%r14 > 0x00007f82fe0801b0 <+976>: jmpq 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe0801b5 <+981>: sub %r8,%rcx > 0x00007f82fe0801b8 <+984>: xor %esi,%esi > 0x00007f82fe0801ba <+986>: lea (%r14,%r8,1),%rdi > 0x00007f82fe0801be <+990>: mov %r11,0x10(%rsp) > 0x00007f82fe0801c3 <+995>: lea (%rcx,%r12,1),%rdx > 0x00007f82fe0801c7 <+999>: callq 0x7f82fe018170 <*ABS*+0x89340@plt> > 0x00007f82fe0801cc <+1004>: test %rax,%rax > 0x00007f82fe0801cf <+1007>: jne 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe0801d5 <+1013>: mov 0x10(%rsp),%r11 > 0x00007f82fe0801da <+1018>: mov %r11,%r8 > 0x00007f82fe0801dd <+1021>: jmpq 0x7f82fe08008b <__strstr_sse2+683> > 0x00007f82fe0801e2 <+1026>: mov %r13,%rdx > 0x00007f82fe0801e5 <+1029>: jmpq 0x7f82fe080027 <__strstr_sse2+583> > 0x00007f82fe0801ea <+1034>: test %sil,%sil > 0x00007f82fe0801ed <+1037>: je 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe0801f3 <+1043>: add 0x18(%rsp),%r9 > 0x00007f82fe0801f8 <+1048>: add %rdx,%r9 > 0x00007f82fe0801fb <+1051>: lea (%r15,%r9,1),%r11 > 0x00007f82fe0801ff <+1055>: lea (%r14,%r8,1),%rdi > 0x00007f82fe080203 <+1059>: xor %esi,%esi > 0x00007f82fe080205 <+1061>: mov %r10,0x48(%rsp) > 0x00007f82fe08020a <+1066>: mov %r11,%rdx > 0x00007f82fe08020d <+1069>: mov %r11,0x30(%rsp) > 0x00007f82fe080212 <+1074>: sub %r8,%rdx > 0x00007f82fe080215 <+1077>: mov %rcx,0x40(%rsp) > 0x00007f82fe08021a <+1082>: mov %r9,0x38(%rsp) > 0x00007f82fe08021f <+1087>: callq 0x7f82fe018170 <*ABS*+0x89340@plt> > 0x00007f82fe080224 <+1092>: mov 0x30(%rsp),%r11 > 0x00007f82fe080229 <+1097>: test %r11,%r11 > 0x00007f82fe08022c <+1100>: je 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe080232 <+1106>: test %rax,%rax > 0x00007f82fe080235 <+1109>: jne 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe08023b <+1115>: mov 0x38(%rsp),%r9 > 0x00007f82fe080240 <+1120>: mov 0x40(%rsp),%rcx > 0x00007f82fe080245 <+1125>: mov %r11,%r8 > 0x00007f82fe080248 <+1128>: mov 0x48(%rsp),%r10 > 0x00007f82fe08024d <+1133>: lea (%rcx,%r9,1),%rdx > 0x00007f82fe080251 <+1137>: lea (%r14,%rdx,1),%rsi > 0x00007f82fe080255 <+1141>: jmpq 0x7f82fe0800f5 <__strstr_sse2+789> > 0x00007f82fe08025a <+1146>: mov %rbp,%r14 > 0x00007f82fe08025d <+1149>: add %r12,%r14 > 0x00007f82fe080260 <+1152>: jmpq 0x7f82fe07feb4 <__strstr_sse2+212> > 0x00007f82fe080265 <+1157>: test %dl,%dl > 0x00007f82fe080267 <+1159>: je 0x7f82fe080068 <__strstr_sse2+648> > 0x00007f82fe08026d <+1165>: add 0x20(%rsp),%r9 > 0x00007f82fe080272 <+1170>: jmp 0x7f82fe0801fb <__strstr_sse2+1051> > 0x00007f82fe080274 <+1172>: callq 0x7f82fe1028f0 <__stack_chk_fail> >End of assembler dump. >== EXPLOITABLE ==
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1391296">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 1541844
: 1391296 |
1391297
|
1391298
|
1391299
|
1391300
|
1391301
|
1391302
|
1391303
|
1391304
|
1391305
|
1391306
|
1391307