89629 – std::hash<std::string> segfault for long strings_link管理

link管理

链接快照平台

输入网页链接，自动生成快照
标签化管理网页链接

相关文章推荐

聪明伶俐的单杠 · C++ String(字符串)和 ...· 7 小时前 ·

一身肌肉的板栗 · C++类结构体与json相互转换 - ...· 7 小时前 ·

温文尔雅的镜子 · 如何将字符串转换为C++枚举类_技术资讯-恒创科技· 7 小时前 ·

直爽的电脑桌 · C++ 中 char 与 string ...· 7 小时前 ·

捣蛋的手术刀 · C#: Swapping ...· 4 小时前 ·

心软的蟠桃 · 《人民邮电》(薛新龙、陈润恺) ...· 1 周前 ·

欢快的茶叶 · Advanced Configuration· 4 周前 ·

深情的山寨机 · 揭秘进口大片进中国之谜！_影视工业网-幕后英 ...· 3 月前 ·

眼睛小的鞭炮 · 杨雨虹-动物科学技术学院· 4 月前 ·

高大的豌豆 · numpy.average() in ...· 8 月前 ·

_Hash_bytes crashes when len is 2^31 or greater.  The length is converted to int at hash_bytes.cc line 142, resulting in a negative number if the length doesn't fit in an int variable.  Then end < buf resulting in an infinite loop that eventually runs into inaccessible memory.
#include <unordered_set>
#include <string>
#include <iostream>
int main() {
    size_t big = size_t(1) << 31;
    std::cout << "line " << __LINE__ << std::endl;
    // this succeeds
    std::hash<std::string>{}(std::string(big - 1, 'a'));
    std::cout << "line " << __LINE__ << std::endl;
    // segfault at libstdc++-v3/libsupc++/hash_bytes.cc:147
    std::hash<std::string>{}(std::string(big, 'a'));
    std::cout << "line " << __LINE__ << std::endl;
I think we should just use size_t for the len_aligned variable:
--- a/libstdc++-v3/libsupc++/hash_bytes.cc
+++ b/libstdc++-v3/libsupc++/hash_bytes.cc
@@ -139,7 +139,7 @@ _GLIBCXX_BEGIN_NAMESPACE_VERSION
     // Remove the bytes not divisible by the sizeof(size_t).  This
     // allows the main loop to process the data as 64-bit integers.
-    const int len_aligned = len & ~0x7;
+    const size_t len_aligned = len & ~0x7;
     const char* const end = buf + len_aligned;
     size_t hash = seed ^ (len * mul);
     for (const char* p = buf; p != end; p += 8)
URL: https://gcc.gnu.org/viewcvs?rev=269584&root=gcc&view=rev
PR libstdc++/89629 fix _Hash_bytes for lengths > INT_MAX
	PR libstdc++/89629
	* libsupc++/hash_bytes.cc [__SIZEOF_SIZE_T__ == 8] (_Hash_bytes):
	Use correct type for len_aligned.
	* testsuite/20_util/hash/89629.cc: New test.
Added:
    trunk/libstdc++-v3/testsuite/20_util/hash/89629.cc
Modified:
    trunk/libstdc++-v3/ChangeLog
    trunk/libstdc++-v3/libsupc++/hash_bytes.cc

URL: https://gcc.gnu.org/viewcvs?rev=270959&root=gcc&view=rev PR libstdc++/89629 fix _Hash_bytes for lengths > INT_MAX Backport from mainline 2019-03-11 Jonathan Wakely < [email protected] > PR libstdc++/89629 * libsupc++/hash_bytes.cc [__SIZEOF_SIZE_T__ == 8] (_Hash_bytes): Use correct type for len_aligned. * testsuite/20_util/hash/89629.cc: New test. Added: branches/gcc-8-branch/libstdc++-v3/testsuite/20_util/hash/89629.cc Modified: branches/gcc-8-branch/libstdc++-v3/ChangeLog branches/gcc-8-branch/libstdc++-v3/libsupc++/hash_bytes.cc URL: https://gcc.gnu.org/viewcvs?rev=271009&root=gcc&view=rev PR libstdc++/89629 fix _Hash_bytes for lengths > INT_MAX Backport from mainline 2019-03-11 Jonathan Wakely < [email protected] > PR libstdc++/89629 * libsupc++/hash_bytes.cc [__SIZEOF_SIZE_T__ == 8] (_Hash_bytes): Use correct type for len_aligned. * testsuite/20_util/hash/89629.cc: New test. Added: branches/gcc-7-branch/libstdc++-v3/testsuite/20_util/hash/89629.cc Modified: branches/gcc-7-branch/libstdc++-v3/ChangeLog branches/gcc-7-branch/libstdc++-v3/libsupc++/hash_bytes.cc

推荐文章

聪明伶俐的单杠 · C++ String(字符串)和 float/double (浮点数)互转 - 菜鸟教程

7 小时前

一身肌肉的板栗 · C++类结构体与json相互转换 - Yaronzz - 博客园

7 小时前

温文尔雅的镜子 · 如何将字符串转换为C++枚举类_技术资讯-恒创科技

7 小时前

直爽的电脑桌 · C++ 中 char 与 string 转换 - Shinning

7 小时前

捣蛋的手术刀 · C#: Swapping Newtonsoft Json.NET for Text.Json - Hi, I'm Ray

4 小时前

心软的蟠桃 · 《人民邮电》(薛新龙、陈润恺) 如何提升我国人工智能产业国际竞争力_舆论引导_对外经贸大学教育与开放经济研究中心

1 周前

欢快的茶叶 · Advanced Configuration

4 周前

深情的山寨机 · 揭秘进口大片进中国之谜！_影视工业网-幕后英雄APP

3 月前

眼睛小的鞭炮 · 杨雨虹-动物科学技术学院

4 月前

高大的豌豆 · numpy.average() in Python - Javatpoint

8 月前