fortran/67526 -- fix NULL pointer issue

Message ID	20150909232707.GA31830@troutmask.apl.washington.edu
State	New
Headers	show Return-Path: <gcc-patches-return-407004-incoming=patchwork.ozlabs.org@gcc.gnu.org> DomainKey-Signature: a=rsa-sha1; c=nofws; d=gcc.gnu.org; h=list-id :list-unsubscribe:list-archive:list-post:list-help:sender:date :from:to:subject:message-id:mime-version:content-type; q=dns; s= default; b=qu8dU4ZgNBLntNeZu6X6AhTyY8QdeHzP+fp3fkjmGgQqA5uKib3fL 0fBeaDo7TpwY5f0adhLYe0OXi2Ik4lcnsr/aE18XPVQZ9GXN9rWSoADnv40SjH5B 4l/Xc1UBsXgkHXHkKd3rylexWT0WXQkZZQVkl9h/ff9G0a/I0rpiQ0= Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm Precedence: bulk Sender: gcc-patches-owner@gcc.gnu.org Date: Wed, 9 Sep 2015 16:27:07 -0700 From: Steve Kargl <sgk@troutmask.apl.washington.edu> To: fortran@gcc.gnu.org, gcc-patches@gcc.gnu.org Subject: [PATCH] fortran/67526 -- fix NULL pointer issue Message-ID: <20150909232707.GA31830@troutmask.apl.washington.edu> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="9jxsPFA5p3P2qPhR" Content-Disposition: inline User-Agent: Mutt/1.5.23 (2014-03-12)

Message ID

20150909232707.GA31830@troutmask.apl.washington.edu

State

New

Headers

DomainKey-Signature: a=rsa-sha1; c=nofws; d=gcc.gnu.org; h=list-id
	:list-unsubscribe:list-archive:list-post:list-help:sender:date
	:from:to:subject:message-id:mime-version:content-type; q=dns; s=
	default; b=qu8dU4ZgNBLntNeZu6X6AhTyY8QdeHzP+fp3fkjmGgQqA5uKib3fL
	0fBeaDo7TpwY5f0adhLYe0OXi2Ik4lcnsr/aE18XPVQZ9GXN9rWSoADnv40SjH5B
	4l/Xc1UBsXgkHXHkKd3rylexWT0WXQkZZQVkl9h/ff9G0a/I0rpiQ0=
Mailing-List: contact gcc-patches-help@gcc.gnu.org; run by ezmlm
Precedence: bulk
Sender: gcc-patches-owner@gcc.gnu.org
Date: Wed, 9 Sep 2015 16:27:07 -0700
From: Steve Kargl <sgk@troutmask.apl.washington.edu>
To: fortran@gcc.gnu.org, gcc-patches@gcc.gnu.org
Subject: [PATCH] fortran/67526 -- fix NULL pointer issue
Message-ID: <20150909232707.GA31830@troutmask.apl.washington.edu>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="9jxsPFA5p3P2qPhR"
Content-Disposition: inline
User-Agent: Mutt/1.5.23 (2014-03-12)

Commit Message

Steve Kargl Sept. 9, 2015, 11:27 p.m. UTC

The attached patch fixes a NULL pointer dereference.  When
gfortran runs into an incomplete substring in an initialization
expression, she dereferences a NULL pointer.  The patch checks
for NULL and returns false, which allows gfortran to issue a
sensible error message.  Regression tested on x86_64-*-freebsd.
OK to commit?

2015-09-09  Steven G. Kargl  <kargl@gcc.gnu.org>

	PR fortran/67526
	* gfortran.dg/pr67526.f90: New test.

2015-09-09  Steven G. Kargl  <kargl@gcc.gnu.org>

	PR fortran/67526
	* expr.c (gfc_check_init_expr): Do not dereference a NULL pointer.

Comments

FX Coudert Sept. 10, 2015, 6:10 a.m. UTC | #1

> 2015-09-09  Steven G. Kargl  <kargl@gcc.gnu.org>
> 
> 	PR fortran/67526
> 	* gfortran.dg/pr67526.f90: New test.
> 
> 2015-09-09  Steven G. Kargl  <kargl@gcc.gnu.org>
> 
> 	PR fortran/67526
> 	* expr.c (gfc_check_init_expr): Do not dereference a NULL pointer.

OK.
Thanks for the patch!

Index: testsuite/gfortran.dg/pr67526.f90
===================================================================
--- testsuite/gfortran.dg/pr67526.f90	(revision 0)
+++ testsuite/gfortran.dg/pr67526.f90	(working copy)
@@ -0,0 +1,9 @@ 
+! { dg-do compile }
+! Original code from gerhard dot steinmetz dot fortran at t-online dot de
+! PR fortran/67526
+program p
+   character :: c1 = 'abc'(:     ! { dg-error "error in SUBSTRING" }
+   character :: c2 = 'abc'(3:    ! { dg-error "error in SUBSTRING" }
+   character :: c3 = 'abc'(:1    ! { dg-error "error in SUBSTRING" }
+   character :: c4 = 'abc'(2:2   ! { dg-error "error in SUBSTRING" }
+end
Index: fortran/expr.c
===================================================================
--- fortran/expr.c	(revision 227600)
+++ fortran/expr.c	(working copy)
@@ -2600,14 +2604,18 @@  gfc_check_init_expr (gfc_expr *e)
       break;
 
     case EXPR_SUBSTRING:
-      t = gfc_check_init_expr (e->ref->u.ss.start);
-      if (!t)
-	break;
-
-      t = gfc_check_init_expr (e->ref->u.ss.end);
-      if (t)
-	t = gfc_simplify_expr (e, 0);
+      if (e->ref)
+	{
+	  t = gfc_check_init_expr (e->ref->u.ss.start);
+	  if (!t)
+	    break;
 
+	  t = gfc_check_init_expr (e->ref->u.ss.end);
+	  if (t)
+	    t = gfc_simplify_expr (e, 0);
+	}
+      else
+	t = false;
       break;
 
     case EXPR_STRUCTURE:

fortran/67526 -- fix NULL pointer issue

Commit Message

Comments

Patch