panic: runtime error: index out of range && invalid memory address or nil pointer dereference #98

bayandin · 2019-08-22T23:00:08Z

I'm playing with go-fuzz and have found a couple of crashes:

The first one easy to reproduce from the command line:

echo -e "<?<<<'S'\n" > boom.php && php-parser boom.php

panic: runtime error: index out of range

goroutine 20 [running]:
github.com/z7zmey/php-parser/scanner.(*Lexer).createToken(0xc000104000, 0xc00010d284, 0x0, 0x0, 0xc0001000a0)
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/scanner/lexer.go:148 +0x2c6
github.com/z7zmey/php-parser/scanner.(*Lexer).Lex(0xc000104000, 0x12dd360, 0xc000082e00, 0xe048)
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/scanner/scanner.go:8689 +0x3a8b
github.com/z7zmey/php-parser/php7.(*Parser).Lex(0xc000068100, 0xc000082e00, 0xe048)
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/php7/parser.go:43 +0x44
github.com/z7zmey/php-parser/php7.yylex1(0x12dd960, 0xc000068100, 0xc000082e00, 0xe048, 0x4a)
	yaccpar:119 +0x56
github.com/z7zmey/php-parser/php7.(*yyParserImpl).Parse(0xc000082e00, 0x12dd960, 0xc000068100, 0x0)
	yaccpar:204 +0x50b8d
github.com/z7zmey/php-parser/php7.yyParse(...)
	yaccpar:153
github.com/z7zmey/php-parser/php7.(*Parser).Parse(0xc000068100, 0xc000068100)
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/php7/parser.go:72 +0xcb
main.parserWorker(0xc0000a4120, 0xc0000a41e0)
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/main.go:117 +0x3b
created by main.main
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/main.go:63 +0x3b0

The second one came from the example in README with a bit of special data:

package main

import (
	"bytes"
	"os"

	"github.com/z7zmey/php-parser/php7"
	"github.com/z7zmey/php-parser/visitor"
)

func main() {
	data := []byte("<?{")

	src := bytes.NewBufferString(string(data))

	parser := php7.NewParser(src, "example.php")
	parser.Parse()

	visitor := visitor.Dumper{
		Writer: os.Stdout,
		Indent: "",
	}

	rootNode := parser.GetRootNode()
	rootNode.Walk(&visitor) // Boom!
}

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x38 pc=0x1138f90]

goroutine 1 [running]:
main.main()
	/Users/bayandin/go/src/github.com/z7zmey/php-parser/test.go:25 +0x1f0
exit status 2

I use go version go1.12.9 darwin/amd64

The text was updated successfully, but these errors were encountered:

[#98] fix panic when heredoc is not closed

z7zmey · 2021-02-13T21:13:43Z

Hi @bayandin. I have fixed only the issue with the unclosed HereDoc. The second one requires additional research and will be fixed with #55

bayandin changed the title ~~panic: runtime error: index out of range~~ panic: runtime error: index out of range && invalid memory address or nil pointer dereference Aug 22, 2019

z7zmey self-assigned this Jan 8, 2020

z7zmey added a commit that referenced this issue Feb 13, 2021

[#98] fix panic when heredoc is not closed

db34d35

z7zmey mentioned this issue Feb 13, 2021

[#98] fix panic when heredoc is not closed #125

Merged

z7zmey added a commit that referenced this issue Feb 13, 2021

[#98] fix panic when heredoc is not closed

e1686cb

z7zmey closed this as completed in #125 Feb 13, 2021

z7zmey added a commit that referenced this issue Feb 13, 2021

Merge pull request #125 from z7zmey/issue-98

c3287f4

[#98] fix panic when heredoc is not closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

panic: runtime error: index out of range && invalid memory address or nil pointer dereference #98

panic: runtime error: index out of range && invalid memory address or nil pointer dereference #98

bayandin commented Aug 22, 2019

z7zmey commented Feb 13, 2021

panic: runtime error: index out of range && invalid memory address or nil pointer dereference #98

panic: runtime error: index out of range && invalid memory address or nil pointer dereference #98

Comments

bayandin commented Aug 22, 2019

z7zmey commented Feb 13, 2021