From nobody Fri Jan 07 13:57:11 2022 X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 8D70B1921193 for ; Fri, 7 Jan 2022 13:57:20 +0000 (UTC) (envelope-from marklmi@yahoo.com) Received: from sonic301-21.consmr.mail.gq1.yahoo.com (sonic301-21.consmr.mail.gq1.yahoo.com [98.137.64.147]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4JVlCM38hFz4pw8 for ; Fri, 7 Jan 2022 13:57:19 +0000 (UTC) (envelope-from marklmi@yahoo.com) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1641563838; bh=+krWnSqzxV14W8F0UiTb16dUyW3e3d//+KHyoGvMU7w=; h=From:Subject:Date:References:To:In-Reply-To:From:Subject:Reply-To; b=bPiTX45Jw+36/YSKDh4CPsAHV52DjZKTvkk5zxoGyZeVk8i5B67cIm3F9eVrgSjCildYOvwnubsylQOKhqyOZb/OX7GTL0Ne6n+d0pb3Q+s/hULtSVlPdnwq6kDJOmWo7xnn9bVUhMgYlyJl1dYYV/6CCuxkz/MXTrljdG9gaGqxfKFcqf5VqWxsIbyeq6xDU1I8iXztzId8C/PXseEfzh674097od3yj1rOYl0WvYsuqhaqvc9Xz3emeCUuJnETeqqmYN5vYdz1YaIuNGUWse9iy8iODDu2PMJ7vu/+o+mTmIXTyUTVMrCIx/YT/IN6MW7r3Dbn1JPOYfIgBGWdKA== X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1641563838; bh=bFolhg1MRFN/2SyQ5ApGiJvWcUSI5FksNlFwYQBHQCs=; h=X-Sonic-MF:From:Subject:Date:To:From:Subject; b=bgW2tcrcsSB1pUWVkQj1cy4pSZ76O2BpVBehNeK9jFE53rdOu9px/Z19hGh5ZZzJuPimBi/sqKjWlEfNJhAf5IR731otwfWix0mkhNWrl5/wgUAl3IfZM1ALzlPtsJc7tZCbD8IC/kaNj9PeJdEQ6Pp1YzDonnfpXplCChruBuHuf/NzGEeTmNL6wNlA/DEbtbNiZsiNstyLHCp7winvdLVVDibE70WkaeSE9WZaMbTYr8NH1eQQtgq6WT98yH/j+dIXBsna7eU/WTOc9kRXQuhmjD29xJCks1qHlRcvAKRC8yaIuPL8jb2X2V3ZvXOaYzwXUv+urFfFt7TCj+TcFA== X-YMail-OSG: uVblbEEVM1nHwOHpr1w0oD.NHN6Q.sXrXE6GJJjAmbB6Cg5oHfbUccj0WeIste4 zRew3w.s7KwX6nE3wwop6VEK..rid10sYh3l25l0Cz7GQch3Br57eJS8qZbvTN.0rxxbl3Zmlqrp lh5doegH3u15zHX.AGZZQ9CzrqgyXKnhl1K4RUMJMb2PyBU1YA9vdBbHEdKP_Bx310ZrAk6Am85Z f_xvAO2sxhikSe8gkzqU81vHFLBSgthgQntY5shoohDiI6sDBJzkARWxoWnvwR7YAEUF2afK00tb 4f8ggk18ngFDnCpVFkPBSlP2zzDDFp7AxSaUYHbqAIYUlf.RmORBmc9xKkLZnjAq2a5.FW.MQRc_ _zHmAAaCCURy_ZVD8x86Qz2lE1tCj0oJkVRq0V4y3Ya.txYbKkkNlHS2kYpeC2fnvSyXn15FetDI BQHnJ8yxNXI3zqdyLYmepAxRKa4GY9QsGRJwIT6gR4_Q9HY7KowKOxmxT6UOMpw9rLISybEK9aTI gy_iiQa4wk3LVV2ca.CAxU5wfu5unmHBjZXPVJj7Z2.HtWCFRy.ps5b_afSNmvhW2B3bCmVM2WiR jIcRJu5lfpNlEzUNQYwfjGGugYLSg.VTTzx52CZitZt6_2VtN6D8xlV5d_AvSLvwrJt_gfSCkzHq DAxrHnnhLV8krW31aJ50TkzEuOLtpzLTjp8VDvNW9j.CK0Jk7HfAML5kd.EzBD2nfzhv0vl.x2tW Hh8hYb___q6.RVBHjsg.HEz7u.HGYZHpgyWM4lNopzYTn2o5g52FtypzIsIPjX7jWvilSqx7bYI5 GL1wlz1mgtrcltVk.pZN46NoIGmeLcdfMwc0ty0fmVg7BcvT.csQ6K6VCCS.UzLAmonp958OwM0J oHmjpfCRb6icNKiJST3sNLRJGMqdy3q.lw9cmWW2kP1nqJ9FKLT.pCirkKPsdwbec8XjpiHqe.gv 0euZAtDha3XkCcBwk0UGbksdWT0nY2q4MX9VF24F1vUhBMg5FBOe9M6CoLF3re8JTWTIUyaLp91W SJ8VbGMcd7r90YStXdYLt3AsoAx3FgQoIAH80YiqBmhsYYIR0uAoUijwm5.ZM7GQDf2fQte6mgvg MjFsL2pOKg3lrxMRm3sgfmcfrMDKJapwse5fusf.RnHo6trFU9mSwddcQwu2mddTN1N44pTeCuCW Sc4zIioyn1NUigx1VaXYCEKCOUEpX5gJoEuSaGKR2KsBlTqMBeI6Y9QkHu9iAQNS5DpuYPnubcNU JFR_HzBfWpxohgDILT7k4XZiUN2jaNXhGubUvpQTR4e23xmlmZqNMRZAXv4fCh93KmrwoNzOTsGs gICBDPy4IBaswHS8eafaDxA5x3aRGl1ntscMQgq.C3uCfY7rh6sAxVCNP6KQQqfQ1x5_y6TzR1jd KV5BGDTGcYgpqVIDfPu4eE6cdwmARgAuN9c.dYr18jTbKlDrfM0ejVjgP8..20jbrDinpe1wRrBB nTMGQRLrVvUn4KrzNKlEnJLM2ECigrUkX7HRYKzY_t5uD2dmCpoXrCG43Y7NqaJltAN_yZNSCDd_ xxcVI3LVej3tTSpPfH22KeG1oPfh4LlR3gwESQaaQtSYtyvBXEgfE5dRI0nl0Dkz5OOv63UZ4W1A pyaa8JRJYXkNFh8POEhJFgqM6Cf0R0mR19J0CGEZY90760DBWSRcrVDUGQODsypzU7D6Dv4p.SPf WC0AnoK4vNov3lqr7QiH5xX10ZO.YHt4Bhly.k9ECPXr4IiKrGTL1v7crf2CRKjgxn4r2rSfkUxd UyabxbAj8mr9ZHmETNt0xIz1NsFrdDf6LeKhNTjx7OtLRvnhP1gh4ebF0hqVlGhwSGjevQ.1bku8 Dr4hbhBvovOL_lfOlKVX3aYM9pIoVIdL_UAzX5Y0xeL4XvjL_sD3YEvbc4gkcSDdBCCXt1ePml6d .tZAb9Y7TXiA17GJ4K2ood3dBa3HFBZLxMsmG.GJYIIM4OIoXyiy8uo9EXMDaOdwhQ6hbDoIFCMy MdBOUmQQEBUMNX43a8LSPpy8Y1AN2ClhodsJVVCqGg_pvC._Ml7rt.dejciGiGNugEDldsQSykuS 8D0QxFYduRwdWLym.4Hl5g_CEzs4EGUW0wgHUZZjcd_pssk619C67vlQ0grmXICwgQ4i5EAKajTN BPF71qDSieh_0z5bquD4JePNXaUwgUgYHApTOdFwvPEJnyG4wAphk1ITN2eO1i3srrisRkU.xl3J 4_eHBqyZpozzlGU1faGjy7w-- X-Sonic-MF: Received: from sonic.gate.mail.ne1.yahoo.com by sonic301.consmr.mail.gq1.yahoo.com with HTTP; Fri, 7 Jan 2022 13:57:18 +0000 Received: by kubenode522.mail-prod1.omega.bf1.yahoo.com (VZM Hermes SMTP Server) with ESMTPA ID 67a924cece4c9149ae67566bc09e7ec5; Fri, 07 Jan 2022 13:57:13 +0000 (UTC) From: Mark Millard Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable List-Id: Discussions about the use of FreeBSD-current List-Archive: https://lists.freebsd.org/archives/freebsd-current List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-current@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) Subject: Re: FYI: An example type of UBSAN failure during kyua test -k /usr/tests/Kyuafile Date: Fri, 7 Jan 2022 05:57:11 -0800 References: <91B0824D-C202-40A2-8781-30E6E0502D0B@yahoo.com> To: freebsd-current In-Reply-To: <91B0824D-C202-40A2-8781-30E6E0502D0B@yahoo.com> Message-Id: <02A69F9D-FE10-40F3-BEF3-5A54EFC2310A@yahoo.com> X-Mailer: Apple Mail (2.3654.120.0.1.13) X-Rspamd-Queue-Id: 4JVlCM38hFz4pw8 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=pass header.d=yahoo.com header.s=s2048 header.b=bPiTX45J; dmarc=pass (policy=reject) header.from=yahoo.com; spf=pass (mx1.freebsd.org: domain of marklmi@yahoo.com designates 98.137.64.147 as permitted sender) smtp.mailfrom=marklmi@yahoo.com X-Spamd-Result: default: False [-1.50 / 15.00]; RCVD_TLS_LAST(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[yahoo.com:s=s2048]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[yahoo.com:dkim]; FREEMAIL_FROM(0.00)[yahoo.com]; MV_CASE(0.50)[]; MIME_GOOD(-0.10)[text/plain]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[yahoo.com:+]; DMARC_POLICY_ALLOW(-0.50)[yahoo.com,reject]; RCVD_IN_DNSWL_NONE(0.00)[98.137.64.147:from]; NEURAL_HAM_SHORT(-1.00)[-1.000]; R_SPF_ALLOW(-0.20)[+ptr:yahoo.com]; NEURAL_SPAM_LONG(1.00)[0.999]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[yahoo.com]; ASN(0.00)[asn:36647, ipnet:98.137.64.0/20, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[]; RWL_MAILSPIKE_POSSIBLE(0.00)[98.137.64.147:from] X-ThisMailContainsUnwantedMimeParts: N On 2022-Jan-7, at 05:08, Mark Millard wrote: > On 2022-Jan-7, at 03:49, Mark Millard wrote: >=20 >> Having done a buildworld with both WITH_ASAN=3D and WITH_UBSAN=3D >> after finding what to control to allow the build, I installed >> it in a directory tree for chroot use and have >> "kyua test -k /usr/tests/Kyuafile" running. >>=20 >> I see evidence of various examples of one type of undefined >> behavior: "applying zero offset to null pointer" >>=20 >> # more = /usr/obj/DESTDIRs/main-amd64-xSAN-chroot/tmp/kyua.FKD2vh/356/stderr.txt=20= >> /usr/main-src/lib/libc/stdio/fread.c:133:10: runtime error: applying = zero offset to null pointer >> SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdio/fread.c:133:10 in=20 >> /usr/main-src/lib/libc/stdio/fread.c:133:10: runtime error: applying = zero offset to null pointer >> SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdio/fread.c:133:10 in=20 >> /usr/main-src/usr.bin/sed/process.c:715:18: runtime error: applying = zero offset to null pointer >> SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/sed/process.c:715:18 in=20 >> /usr/main-src/lib/libc/stdio/fread.c:133:10: runtime error: applying = zero offset to null pointer >> SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdio/fread.c:133:10 in=20 >> Fail: stderr not empty >> --- /dev/null 2022-01-07 10:29:57.182903000 +0000 >> +++ /tmp/kyua.FKD2vh/356/work/check.Mk9llD/stderr 2022-01-07 = 10:29:57.173100000 +0000 >> @@ -0,0 +1,2 @@ >> +/usr/main-src/lib/libc/stdio/fread.c:133:10: runtime error: applying = zero offset to null pointer >> +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdio/fread.c:133:10 in=20 >> Files left in work directory after failure: mntpt, mounterr >>=20 >>=20 >> In general the lib/libc/stdio/fread.c:133:10 example seems to >> be in a place that would make it fairly common. >>=20 >> usr.bin/sed/process.c:715:18 is more limited: just sed use. >>=20 >=20 > kyua ran to completion. This note is focused on UBSAN reports. >=20 > By far the most common UBSAN report is for the > lib/libc/stdio/fread.c:133:10 code. >=20 > Another somewhat common UBSAN report is: >=20 > Standard error: > /usr/main-src/usr.bin/cut/cut.c:458:7: runtime error: addition of = unsigned offset to 0x62100000010d overflowed to 0x62100000010c > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/cut/cut.c:458:7 in=20 > Fail: incorrect exit status: 1, expected: 0 >=20 >=20 > There is at least one example of: >=20 > Standard error: > ld-elf.so.1: /lib/libthr.so.3: Undefined symbol = "__asan_option_detect_stack_use_after_return" >=20 >=20 > Some more zero offsets to null are: >=20 > +/usr/main-src/bin/sh/jobs.c:590:35: runtime error: applying zero = offset to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/bin/sh/jobs.c:590:35 in=20 > +/usr/main-src/bin/sh/jobs.c:601:22: runtime error: applying zero = offset to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/bin/sh/jobs.c:601:22 in=20 > +/usr/main-src/contrib/xz/src/liblzma/common/common.c:292:16: runtime = error: applying zero offset to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/contrib/xz/src/liblzma/common/common.c:292:16 in=20 >=20 > +/usr/main-src/usr.sbin/makefs/ffs.c:1053:35: runtime error: applying = zero offset to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.sbin/makefs/ffs.c:1053:35 in=20 > Files left in work directory after failure: dir, ufs.img >=20 >=20 > contrib/libxo/libxo/xo_buf.h has examples of non-zero offsets: >=20 > +/usr/main-src/contrib/libxo/libxo/xo_buf.h:116:22: runtime error: = applying non-zero offset 4 to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/contrib/libxo/libxo/xo_buf.h:116:22 in=20 > +/usr/main-src/contrib/libxo/libxo/xo_buf.h:116:44: runtime error: = applying zero offset to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/contrib/libxo/libxo/xo_buf.h:116:44 in=20 > +/usr/main-src/contrib/libxo/libxo/xo_buf.h:120:29: runtime error: = applying non-zero offset 4 to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/contrib/libxo/libxo/xo_buf.h:120:29 in=20 >=20 > As does contrib/openzfs/module/nvpair/nvpair.c : >=20 > /usr/main-src/sys/contrib/openzfs/module/nvpair/nvpair.c:3129:49: = runtime error: applying non-zero offset 4 to null pointer > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/sys/contrib/openzfs/module/nvpair/nvpair.c:3129:49 in=20 >=20 >=20 > There is a: >=20 > +/usr/main-src/bin/sh/arith_yacc.c:193:10: runtime error: negation of = -9223372036854775808 cannot be represented in type 'arith_t' (aka = 'long'); cast to an unsigned type to negate this value to itself > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/bin/sh/arith_yacc.c:193:10 in=20 >=20 > And there are various examples similar to: >=20 > +/usr/main-src/sys/contrib/zlib/deflate.c:1262:31: runtime error: load = of misaligned address 0x631000014805 for type 'ushf' (aka 'unsigned = short'), which requires 2 byte alignment > +0x631000014805: note: pointer points here > + 69 6c 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 > + ^=20 >=20 > but at different lines of the code. >=20 > There are examples of: >=20 > +/usr/main-src/lib/libc/db/hash/hash_page.c:761:3: runtime error: left = shift of 1 by 31 places cannot be represented in type 'int' > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/db/hash/hash_page.c:761:3 in=20 > +/usr/main-src/lib/libc/db/hash/hash_page.c:840:2: runtime error: left = shift of 1 by 31 places cannot be represented in type 'int' > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/db/hash/hash_page.c:840:2 in=20 > +/usr/main-src/lib/libc/db/hash/hash_page.c:774:2: runtime error: left = shift of 1 by 31 places cannot be represented in type 'int' > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/db/hash/hash_page.c:774:2 in=20 >=20 > There are various examples similar to: >=20 > +/usr/main-src/lib/libc/db/btree/bt_conv.c:168:6: runtime error: load = of misaligned address 0x616000000b91 for type 'uint32_t' (aka 'unsigned = int'), which requires 4 byte alignment > +0x616000000b91: note: pointer points here > + 00 00 02 02 03 00 00 00 ec 01 00 00 78 0a 00 08 00 00 00 02 00 00 = 00 02 02 00 00 00 ec 01 00 00 > + ^=20 >=20 > but at different lines of the code. >=20 > There was a: >=20 > /usr/main-src/contrib/netbsd-tests/lib/libc/gen/t_sleep.c:305:36: = runtime error: signed integer overflow: 105827994173648 * 1000000000 = cannot be represented in type 'long long' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/contrib/netbsd-tests/lib/libc/gen/t_sleep.c:305:36 in=20 >=20 > And a: >=20 > +/usr/main-src/lib/libc/regex/engine.c:1013:53: runtime error: left = shift of 4611686018427387904 by 1 places cannot be represented in type = 'long' > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/regex/engine.c:1013:53 in=20 >=20 > (It occured in multiple places.) >=20 > And: >=20 > /usr/main-src/lib/libc/gen/_rand48.c:45:55: runtime error: signed = integer overflow: 57068 * 43981 cannot be represented in type 'int' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/gen/_rand48.c:45:55 in=20 > /usr/main-src/lib/libc/gen/_rand48.c:45:26: runtime error: signed = integer overflow: 58989 * 55082 cannot be represented in type 'int' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/gen/_rand48.c:45:26 in=20 > /usr/main-src/lib/libc/gen/_rand48.c:45:37: runtime error: signed = integer overflow: 1365949284 + 876906888 cannot be represented in type = 'int' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/gen/_rand48.c:45:37 in=20 >=20 > /usr/main-src/lib/libc/stdlib/getenv.c:169:20: runtime error: load of = value 190, which is not a valid value for type 'bool' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdlib/getenv.c:169:20 in=20 > /usr/main-src/lib/libc/stdlib/getenv.c:684:23: runtime error: load of = value 190, which is not a valid value for type 'bool' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libc/stdlib/getenv.c:684:23 in=20 >=20 > And: >=20 > /usr/main-src/lib/libthr/thread/thr_sig.c:797:7: runtime error: member = access within misaligned address 0xffffffffffffffff for type 'const = ucontext_t' (aka 'const struct __ucontext'), which requires 16 byte = alignment > 0xffffffffffffffff: note: pointer points here > > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libthr/thread/thr_sig.c:797:7 in=20 > /usr/main-src/lib/libthr/thread/thr_sig.c:797:7: runtime error: member = access within misaligned address 0xffffffffffffffff for type 'const = __sigset_t' (aka 'const struct __sigset'), which requires 16 byte = alignment > 0xffffffffffffffff: note: pointer points here > > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libthr/thread/thr_sig.c:797:7 in=20 > /usr/main-src/lib/libthr/thread/thr_sig.c:797:7: runtime error: load = of misaligned address 0xffffffffffffffff for type 'const __uint32_t' = (aka 'const unsigned int'), which requires 16 byte alignment > 0xffffffffffffffff: note: pointer points here > > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/lib/libthr/thread/thr_sig.c:797:7 in=20 >=20 > And: >=20 > +/usr/main-src/sbin/nvmecontrol/nvmecontrol.h:99:9: runtime error: = load of misaligned address 0x7fffffffc978 for type 'uint128_t' (aka = 'unsigned __int128'), which requires 16 byte alignment > +0x7fffffffc978: note: pointer points here > + 00 00 00 00 00 60 a5 ee dc 01 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 > + ^=20 > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/sbin/nvmecontrol/nvmecontrol.h:99:9 in=20 >=20 > And: >=20 > /usr/main-src/sys/netinet/libalias/alias_db.c:430:2: runtime error: = member access within null pointer of type 'struct libalias' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/sys/netinet/libalias/alias_db.c:430:2 in=20 >=20 > And: >=20 > /usr/main-src/tests/sys/sys/qmath_test.c:569:3: runtime error: left = shift of 1277217398 by 34 places cannot be represented in type 's64q_t' = (aka 'long') > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:569:3 in=20 > /usr/main-src/tests/sys/sys/qmath_test.c:569:3: runtime error: signed = integer overflow: -8928018189856292682 + -9223372036854775808 cannot be = represented in type 'long' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:569:3 in=20 > /usr/main-src/tests/sys/sys/qmath_test.c:570:3: runtime error: left = shift of 674540471 by 34 places cannot be represented in type 's64q_t' = (aka 'long') > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:570:3 in=20 > /usr/main-src/tests/sys/sys/qmath_test.c:570:3: runtime error: signed = integer overflow: -7034438991598280603 + -9223372036854775808 cannot be = represented in type 'long' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:570:3 in=20 >=20 > /usr/main-src/tests/sys/sys/qmath_test.c:378:3: runtime error: left = shift of 1099256400 by 34 places cannot be represented in type 's64q_t' = (aka 'long') > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:378:3 in=20 > /usr/main-src/tests/sys/sys/qmath_test.c:379:3: runtime error: left = shift of 7397324394137081998 by 3 places cannot be represented in type = 's64q_t' (aka 'long') > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:379:3 in=20 > /usr/main-src/tests/sys/sys/qmath_test.c:378:3: runtime error: signed = integer overflow: -5522065151083782997 + -9223372036854775808 cannot be = represented in type 'long' > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/tests/sys/sys/qmath_test.c:378:3 in=20 >=20 > And: >=20 > /usr/main-src/usr.bin/mkimg/ebr.c:89:16: runtime error: member access = within misaligned address 0x61500000023e for type 'struct = dos_partition', which requires 4 byte alignment > 0x61500000023e: note: pointer points here > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 > ^=20 > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/mkimg/ebr.c:89:16 in=20 >=20 > And: >=20 > /usr/main-src/usr.bin/mkimg/mbr.c:99:8: runtime error: member access = within misaligned address 0x6150000004be for type 'struct = dos_partition', which requires 4 byte alignment > 0x6150000004be: note: pointer points here > 42 0a 42 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 = 00 00 00 00 00 00 00 00 00 00 > ^=20 > SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/mkimg/mbr.c:99:8 in=20 >=20 > And: >=20 > +/usr/main-src/usr.bin/rs/rs.c:387:5: runtime error: applying non-zero = offset 108370614813184 to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/rs/rs.c:387:5 in=20 >=20 > And: >=20 > +/usr/main-src/usr.bin/unifdef/unifdef.c:836:52: runtime error: = applying non-zero offset 1 to null pointer > +SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior = /usr/main-src/usr.bin/unifdef/unifdef.c:836:52 in=20 With all the line number references, I should have noted what my source context for main [so: 14] is based on: # uname -apKU FreeBSD amd64_ZFS 14.0-CURRENT FreeBSD 14.0-CURRENT #29 = main-n252196-a3522837b021-dirty: Mon Jan 3 22:17:33 PST 2022 = root@amd64_ZFS:/usr/obj/BUILDs/main-amd64-nodbg-clang/usr/main-src/amd64.a= md64/sys/GENERIC-NODBG amd64 amd64 1400046 1400046 # ~/fbsd-based-on-what-commit.sh -C /usr/main-src/ branch: main merge-base: a3522837b021a46f2de81303247599ea51163d13 merge-base: CommitDate: 2022-01-04 03:39:24 +0000 a3522837b021 (HEAD -> main, freebsd/main, freebsd/HEAD) ipfilter = userland: Fix branch mismerge n252196 (--first-parent --count for merge-base) =3D=3D=3D Mark Millard marklmi at yahoo.com