Skip to content

dwarf: Fix SEGV when accessing uninitialized skeleton CU #475

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
EricRahm merged 2 commits into from
Jan 6, 2026
Merged

dwarf: Fix SEGV when accessing uninitialized skeleton CU #475

EricRahm merged 2 commits into from
Jan 6, 2026
+49 −2

Conversation

@EricRahm
Copy link
Collaborator

@EricRahm EricRahm commented Jan 5, 2026
edited
Loading

When processing malformed DWARF data, specifically a compile unit
where a top-level DIE attribute requires indirect address resolution
(e.g., DW_AT_GNU_dwo_id using DW_FORM_addrx), Bloaty would crash.
This occurred because ReadTopLevelDIE was called before skeleton_
was initialized in CU::ReadHeader, leading to a null pointer
dereference in ReadIndirectAddress.

This patch moves the initialization of skeleton_ to the beginning
of CU::ReadHeader to ensure it is available when reading top-level
attributes.

Fixes #402
Fixes #409
Fixes #463

@EricRahm
dwarf: Fix SEGV when accessing uninitialized skeleton CU
6be60e4 
When processing malformed DWARF data, specifically a compile unit
where a top-level DIE attribute requires indirect address resolution
(e.g., DW_AT_GNU_dwo_id using DW_FORM_addrx), Bloaty would crash.
This occurred because `ReadTopLevelDIE` was called before `skeleton_`
was initialized in `CU::ReadHeader`, leading to a null pointer
dereference in `ReadIndirectAddress`.

This patch moves the initialization of `skeleton_` to the beginning
of `CU::ReadHeader` to ensure it is available when reading top-level
attributes.

Fixes google#402
@EricRahm
Add regression test for google#402.
9c10205
This was referenced Jan 5, 2026
Closed
Closed
Closed
@EricRahm EricRahm requested a review from haberman January 5, 2026 23:04
@EricRahm
Copy link
Collaborator Author

EricRahm commented Jan 5, 2026

@haberman This is a very small fix that fixes at least 3 reported issues.

@EricRahm EricRahm merged commit 2e3d747 into google:main Jan 6, 2026
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@haberman haberman haberman approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

OSS-Fuzz issue 462929298 Crash Report: SEGV in ReadIndirectAddress Crash Report: SEGV in CU::dwarf()

2 participants

@EricRahm @haberman