1. Helder Correia Avatar Helder Correia
  2. Untitled project
  3. speedcrunch
  4. Issues

speedcrunch crashes on xor function with large values

Issue #265 invalid
Former user created an issue

Originally reported on Google Code with ID 265 ``` What steps will reproduce the problem? 1. xor(1126364778;25214903917) 2. 3.

What is the expected output? What do you see instead? expected: result of the operation result: application exits

What version of the product are you using? On what operating system? version 0.10, fedora core 8 64-bit

Please provide any additional information below. * buffer overflow detected *: speedcrunch terminated

= Backtrace:

/lib64/libc.so.6(fortify_fail+0x32)[0x3bf60ea362] /lib64/libc.so.6[0x3bf60e8a90] /lib64/libc.so.6[0x3bf60e7ef9] /lib64/libc.so.6(_IO_default_xsputn+0x94)[0x3bf606ec34] /lib64/libc.so.6(_IO_vfprintf+0x15ce)[0x3bf604438e] /lib64/libc.so.6(vsprintf_chk+0x9d)[0x3bf60e7f9d] /lib64/libc.so.6(sprintf_chk+0x80)[0x3bf60e7ee0] speedcrunch(float_setinteger+0x3b)[0x496b9b] speedcrunch(_longint2floatnum+0x85)[0x48f475] speedcrunch(_logic2floatnum+0x54)[0x4955c4] speedcrunch(float_xor+0x8a)[0x491eaa] speedcrunch(_Z11call2ArgsNDP14HNumberPrivateS0_S0_PFcP11floatstructPKS1_S4_E+0x5c)[0x499adc] speedcrunch(_ZNK7HNumbereoERKS_+0x36)[0x49b396] speedcrunch(_ZN9Functions7Private4xor_EP8FunctionRK7QVectorI7HNumberE+0x53)[0x43dee3] speedcrunch(_ZN8Function4execERK7QVectorI7HNumberE+0x15b)[0x442d5b] speedcrunch(_ZN9Evaluator12evalNoAssignEv+0xee0)[0x439490] speedcrunch(_ZN9Evaluator4evalEv+0x27)[0x43a8a7] speedcrunch(_ZN9Evaluator13evalUpdateAnsEv+0x1e)[0x43aebe] speedcrunch(_ZN10MainWindow13returnPressedEv+0xd0)[0x47fb40] speedcrunch(_ZN10MainWindow11qt_metacallEN11QMetaObject4CallEiPPv+0xed)[0x4a3dbd] /usr/lib64/libQtCore.so.4(_ZN11QMetaObject8activateEP7QObjectiiPPv+0x22b)[0x396114bb8b] speedcrunch(_ZN6Editor11qt_metacallEN11QMetaObject4CallEiPPv+0x74)[0x4a3044] /usr/lib64/libQtCore.so.4(_ZN11QMetaObject8activateEP7QObjectiiPPv+0x22b)[0x396114bb8b] /usr/lib64/libQtCore.so.4[0x396115219f] /usr/lib64/libQtCore.so.4(_ZN7QObject5eventEP6QEvent+0x9a)[0x39611465aa] /usr/lib64/libQtGui.so.4(_ZN19QApplicationPrivate13notify_helperEP7QObjectP6QEvent+0xaf)[0x3f0dd84c3f] /usr/lib64/libQtGui.so.4(_ZN12QApplication6notifyEP7QObjectP6QEvent+0xae)[0x3f0dd8974e] /usr/lib64/libQtCore.so.4(_ZN16QCoreApplication14notifyInternalEP7QObjectP6QEvent+0xc9)[0x3961137b39] /usr/lib64/libQtCore.so.4[0x3961162457] /usr/lib64/libQtCore.so.4[0x396116004d] /lib64/libglib-2.0.so.0(g_main_context_dispatch+0x1c3)[0x36ec62ef53] /lib64/libglib-2.0.so.0[0x36ec63224d] /lib64/libglib-2.0.so.0(g_main_context_iteration+0x6e)[0x36ec63277e] /usr/lib64/libQtCore.so.4(_ZN20QEventDispatcherGlib13processEventsE6QFlagsIN10QEventLoop17ProcessEventsFlagEE+0x4e)[0x396116048e] /usr/lib64/libQtGui.so.4[0x3f0de0b90f] /usr/lib64/libQtCore.so.4(_ZN10QEventLoop13processEventsE6QFlagsINS_17ProcessEventsFlagEE+0x35)[0x3961136f55] /usr/lib64/libQtCore.so.4(_ZN10QEventLoop4execE6QFlagsINS_17ProcessEventsFlagEE+0x9a)[0x39611370ba] /usr/lib64/libQtCore.so.4(_ZN16QCoreApplication4execEv+0xa9)[0x39611390f9] speedcrunch(main+0x6e)[0x48e0ce] /lib64/libc.so.6(libc_start_main+0xf4)[0x3bf601e074] speedcrunch(_ZN7QObject5eventEP6QEvent+0x339)[0x426a89]

```

Reported by `yalexander` on 2009-03-05 00:44:56

Comments (4)

  1. Former user Account Deleted

    ``` I'm not able to reproduce the crash on any platform, but I'm using the latest version (0.10.1). Are you able to try it out? ```

    Reported by `helder.pereira.correia` on 2009-03-05 10:51:08

  2. Former user Account Deleted

    ``` according to the trace, float_setinteger is involved, so most probably this is related to issue #180, which has been fixed meanwhile. Try use the latest sources. ```

    Reported by `wolf.lammen` on 2009-03-05 12:46:45

  3. Former user Account Deleted

    ``` Pastes fine and runs on 0.10.1 Windows. Well, the XOR is fine, the paste has a minor quirk, whereby the PASTE string is NOT visible, but IS actually there and Enter calculates as expected. Paste appears in the output window, and shows up AFTER the <Enter> - but that operation is a little counter intuitive. It should behave just like any windows paste operation : able to replace, or insert at cursor, and be immediately visible. ```

    Reported by `Jim.Granville` on 2009-03-05 23:59:47

  4. Former user Account Deleted

    Reported by `helder.pereira.correia` on 2009-03-13 10:00:37 - Status changed: `Invalid`

  5. Log in to comment
Assignee
Type
bug
Priority
minor
Status
invalid
Component
Milestone
Version
Votes
0
Watchers
0
Jira: the preferred issue tracker for Bitbucket. Join the team!