IBM Support

IZ75165: TROFF -F WITH INVALID LONG ARGUMENTS DUMPED CORE APPLIES TO AIX 6100-06

A fix is available

Obtain the fix for this APAR.

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • =============

Scenario: troff -F with invalid long arguments dumped core
===========================================================

I did the following steps:

A="abc" X=0 while ■ $X -le 15000  do A="a$A" let X+=1 done

troff -F $A

■root @ roja1 / # A="abc" ■root @ roja1 / # X=0 ■root @
roja1 / # while ■ $X -le 15000  > do > A="a$A" > let X+=1 >
done ■root @ roja1 / # troff -F $A Segmentation
fault(coredump) <<<<<<----------ERROR &#65517;root @ roja1&#65529; / # type
troff troff is /bin/troff &#65517;root @ roja1&#65529; / # file /core /core:
AIX core file 32-bit, troff &#65517;root @ roja1&#65529; / # dbx /bin/troff
/core Type 'help' for help.  warning: The core file is not a
fullcore. Some info may not be available.  &#65517;using memory image
in /core&#65529; reading symbolic information ...warning: no source
compiled with -g

Segmentation fault in . at 0x1000ff04 0x1000ff04 (???) 99030000
stb r8,0x0(r3) (dbx) where strcpy() at 0x1000ff04 main(??, ??)
at 0x100031c4 (dbx) x $r0:0x00000000 $stkp:0x2ff1ec00
$toc:0x2000878c $r3:0x61616161 $r4:0x2ff1ee01 $r5:0x00000063
$r6:0x00000000 $r7:0x80808080 $r8:0x00000061 $r9:0x00000061
$r10:0x2ff22890 $r11:0x00800000 $r12:0x2000ba1f $r13:0x2ff1ed30
$r14:0x20008010 $r15:0x2000b608 $r16:0x2000d464 $r17:0x200950b8
$r18:0x200082a8 $r19:0x2000d580 $r20:0x2009409c $r21:0x20095340
$r22:0x20000cd8 $r23:0x00000001 $r24:0x2000bb24 $r25:0x2000b610
$r26:0x20093880 $r27:0x2000d58c $r28:0x00000001 $r29:0x20008c9c
$r30:0x200007f8 $r31:0x2ff1ed34 $iar:0x1000ff04 $msr:0x0000d032
$cr:0x24284428 $link:0x100031c8 $ctr:0xd01368a0 $xer:0x00000000
Condition status = 0:e 1:g 2:e 3:l 4:g 5:g 6:e 7:l &#65517;unset
$noflregs to view floating point registers&#65529; &#65517;unset $novregs to
view vector registers&#65529; in . at 0x1000ff04 0x1000ff04 (???)
99030000 stb r8,0x0(r3) (dbx) q

This issue is recreatable and is also happening in 61H_0934A
build.

&#65517;root @ yamuna4&#65529; / # what /unix | grep _kdb _kdb_buildinfo
unix_64 Aug 16 2009 18:11:23 0934A_61H 14 1.2
src/bos/kernel/kdb/kdb_kdbx.c, kdb, bos610 1/9/98 05:45:07
&#65517;root @ yamuna4&#65529; / # A="abc" &#65517;root @ yamuna4&#65529; / # X=0 &#65517;root @
yamuna4&#65529; / # while &#65517; $X -le 15000 &#65529; > do > A="a$A" > let X+=1 >
done &#65517;root @ yamuna4&#65529; / # troff -F $A Segmentation
fault(coredump) <<<<-------Problem seen in 61H as well.  &#65517;root

Machine roja1.art.austin.ibm.com is available for debugging.

See MACHINE ACCESS section for login information.

Local fix

  • 



Problem summary


    

  • =============

Scenario: troff -F with invalid long arguments dumped core
===========================================================

I did the following steps:

A="abc" X=0 while   $X -le 15000   do A="a$A" let X+=1 done

troff -F $A

 root @ roja1  / # A="abc"  root @ roja1  / # X=0  root @
roja1  / # while   $X -le 15000   > do > A="a$A" > let X+=1 >
done  root @ roja1  / # troff -F $A Segmentation
fault(coredump) <<<<<<----------ERROR  root @ roja1  / # type
troff troff is /bin/troff  root @ roja1  / # file /core /core:
AIX core file 32-bit, troff  root @ roja1  / # dbx /bin/troff
/core Type 'help' for help.  warning: The core file is not a
fullcore. Some info may not be available.   using memory image
in /core  reading symbolic information ...warning: no source
compiled with -g

Segmentation fault in . at 0x1000ff04 0x1000ff04 (???) 99030000
stb r8,0x0(r3) (dbx) where strcpy() at 0x1000ff04 main(??, ??)
at 0x100031c4 (dbx) x $r0:0x00000000 $stkp:0x2ff1ec00
$toc:0x2000878c $r3:0x61616161 $r4:0x2ff1ee01 $r5:0x00000063
$r6:0x00000000 $r7:0x80808080 $r8:0x00000061 $r9:0x00000061
$r10:0x2ff22890 $r11:0x00800000 $r12:0x2000ba1f $r13:0x2ff1ed30
$r14:0x20008010 $r15:0x2000b608 $r16:0x2000d464 $r17:0x200950b8
$r18:0x200082a8 $r19:0x2000d580 $r20:0x2009409c $r21:0x20095340
$r22:0x20000cd8 $r23:0x00000001 $r24:0x2000bb24 $r25:0x2000b610
$r26:0x20093880 $r27:0x2000d58c $r28:0x00000001 $r29:0x20008c9c
$r30:0x200007f8 $r31:0x2ff1ed34 $iar:0x1000ff04 $msr:0x0000d032
$cr:0x24284428 $link:0x100031c8 $ctr:0xd01368a0 $xer:0x00000000
Condition status = 0:e 1:g 2:e 3:l 4:g 5:g 6:e 7:l  unset
$noflregs to view floating point registers   unset $novregs to
view vector registers  in . at 0x1000ff04 0x1000ff04 (???)
99030000 stb r8,0x0(r3) (dbx) q

This issue is recreatable and is also happening in 61H_0934A
build.

 root @ yamuna4  / # what /unix | grep _kdb _kdb_buildinfo
unix_64 Aug 16 2009 18:11:23 0934A_61H 14 1.2
src/bos/kernel/kdb/kdb_kdbx.c, kdb, bos610 1/9/98 05:45:07
 root @ yamuna4  / # A="abc"  root @ yamuna4  / # X=0  root @
yamuna4  / # while   $X -le 15000   > do > A="a$A" > let X+=1 >
done  root @ yamuna4  / # troff -F $A Segmentation
fault(coredump) <<<<-------Problem seen in 61H as well.   root

Machine roja1.art.austin.ibm.com is available for debugging.

See MACHINE ACCESS section for login information.

    



Problem conclusion


    

  • Condition is added to check the length.

    



Temporary fix


    

  • 



Comments


    

  • 6100-06 - use AIX APAR IZ75165
7100-00 - use AIX APAR IZ88986

    



APAR Information




    

  • APAR number
    IZ75165
    • 

  • Reported component name
    AIX 610 STD EDI
    • 

  • Reported component ID
    5765G6200
    • 

  • Reported release
    610
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Submitted date
    2010-04-27
    • 

  • Closed date
    2010-04-27
    • 

  • Last modified date
    2013-03-28
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    
IZ88986
    

    • 



Fix information


    

  • Fixed component name
    AIX 610 STD EDI
    • 

  • Fixed component ID
    5765G6200
    • 



Applicable component levels


    

  • R610  PSY  U831551
       UP10/09/01  I  1000
    • 



PTF to Fileset Mapping








      
              
                            

              

              [{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSMV87","label":"AIX 6.1 Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSMVAX","label":"AIX Express Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSAUMY","label":"IBM AIX Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11Q","label":"AIX 6.1 HIPERS, APARs and Fixes"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}}]
              

                                                                    

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            28 March 2013
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback