Comments (6)
Hi @djuricmilan ! Thanks for the report.
Could you clarify what PoC
is about? Also could you provide the Solidity code repro that generated such seg fault?
from solidity.
Hi @matheusaaguiar,
PoC is the solidity code that causes the segfault when invoked with solc, version 0.8.24:
solc poc.sol
from solidity.
@djuricmilan , sorry, but I am confused, that is far from a valid Solidity code.
from solidity.
This is the result of fuzzing, so random (well mutated) code that should still retain valid compiler behaviour (as in proper errors instead of crashes or segfaults).
The curious thing here is that the segfault is in experimental analysis, which should only be invoked at all with pragma experimental solidity;
(by the way, there's no stability guarantees for that compiler mode and it will involve a lot of invalid behaviour - that's to be expected at the current stage and we're not interested in crashes, if it involves a full valid pragma experimental solidity;
at this point).
But the reproduction does not involve such a pragma, so the question is why experimental analysis runs in the first place.
However, I can't reproduce the behaviour with 0.8.24 myself.
from solidity.
Ok, I attached the actual PoC that caused the segfault to this comment. Apologies from my side, I was fooled by my terminal multiplexer that simply did not display all the bytes when printing the PoC... The PoC indeed starts with a valid pragma experimental solidity
statement, so you I assume the crash is not relevant.
bug2.zip
from solidity.
Thanks for confirming. Since this happened with experimental, we can close this issue.
from solidity.
Related Issues (20)
- assignment to struct in array HOT 1
- Redundant DUP1 and POP in CallValueCheck
- Parser fails when decoding with abi.encode, thus it doesn't allow unpacking to variables that are declared differently (e.g. statement-declared and the ones declared in advance) HOT 5
- Optimized PUSH0 and POP in clearStorageLoop HOT 2
- Optimize resizeDynamicArray
- Deduplicate bytecode dependencies used by both creation and deployed object HOT 2
- Reuse optimized IR/bytecode for bytecode dependencies
- SMTChecker: Underflow and overflow targets not checked or reported on the same expression for BMC engine HOT 1
- Redundant `ISZERO` and `PUSH20 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF AND` in covertType
- [Yul EVM code transform] Stack too deep in standalone Yul test case
- ICE in `Z3Interface::fromZ3Expr()` when running tests on Arch Linux HOT 8
- Seems like an incorrect type inference... HOT 3
- Update Z3 to 4.13.0 or later HOT 1
- Consider changing linker on Linux from `ld.gold` to `ld`
- Division by zero is checked in Unchecked blocks HOT 4
- Copyright year is 2016-2023 instead of 2016-2024 HOT 1
- Where can I find Test Sepolia so I can deploy a contract on a testnet? HOT 1
- Segfault in AsmParser for debug-compiled solc
- Copyright years are 2016-2023, should to be 2016-2024 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from solidity.