Wireshark-bugs: [Wireshark-bugs] [Bug 9139] New: Buildbot crash output: fuzz-2013-09-12-20795.pc

Date: Thu, 12 Sep 2013 19:10:04 +0000
Bug ID 9139
Summary Buildbot crash output: fuzz-2013-09-12-20795.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2013-09-12-20795.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-09-12-20795.pcap

stderr:
Input file:
/home/wireshark/menagerie/menagerie/10131-130227_zbee-zcl-on-off.pcap

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=
BUILDBOT_BUILDNUMBER=2093
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=ef6ad2800ee7a24075f4d0db1fb42b4881ec629a

Return value:  0

Dissector bug:  0

Valgrind error count:  7



Git commit
commit ef6ad2800ee7a24075f4d0db1fb42b4881ec629a
Author: Gerald Combs <[email protected]>
Date:   Tue Sep 10 22:01:42 2013 +0000

    Add a hack to allow builds to succeed on 64-bit systems.

    svn path=/trunk/; revision=51945


Command and args: ./tools/valgrind-wireshark.sh 

==31293== Memcheck, a memory error detector
==31293== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==31293== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==31293== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-09-12-20795.pcap
==31293== 
==31293== Conditional jump or move depends on uninitialised value(s)
==31293==    at 0x9417956: ??? (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.3)
==31293==    by 0x67CA73F: ieee802154_addr_update (packet-ieee802154.c:2263)
==31293==    by 0x6B7A9E8: dissect_zbee_nwk (packet-zbee-nwk.c:557)
==31293==    by 0x6B7BC04: dissect_zbee_nwk_heur (packet-zbee-nwk.c:313)
==31293==    by 0x6453200: dissector_try_heuristic (packet.c:1846)
==31293==    by 0x67CCBEA: dissect_ieee802154_common (packet-ieee802154.c:1080)
==31293==    by 0x6451137: call_dissector_through_handle (packet.c:492)
==31293==    by 0x6451A84: call_dissector_work (packet.c:586)
==31293==    by 0x64523C2: dissector_try_uint_new (packet.c:1017)
==31293==    by 0x6452416: dissector_try_uint (packet.c:1043)
==31293==    by 0x66EBBE5: dissect_frame (packet-frame.c:488)
==31293==    by 0x6451137: call_dissector_through_handle (packet.c:492)
==31293== 
==31293== Conditional jump or move depends on uninitialised value(s)
==31293==    at 0x67CA1A8: ieee802154_short_addr_equal
(packet-ieee802154.c:2187)
==31293==    by 0x941794B: ??? (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.3)
==31293==    by 0x67CA728: ieee802154_addr_update (packet-ieee802154.c:2255)
==31293==    by 0x6B7A9E8: dissect_zbee_nwk (packet-zbee-nwk.c:557)
==31293==    by 0x6B7BC04: dissect_zbee_nwk_heur (packet-zbee-nwk.c:313)
==31293==    by 0x6453200: dissector_try_heuristic (packet.c:1846)
==31293==    by 0x67CCBEA: dissect_ieee802154_common (packet-ieee802154.c:1080)
==31293==    by 0x6451137: call_dissector_through_handle (packet.c:492)
==31293==    by 0x6451A84: call_dissector_work (packet.c:586)
==31293==    by 0x64523C2: dissector_try_uint_new (packet.c:1017)
==31293==    by 0x6452416: dissector_try_uint (packet.c:1043)
==31293==    by 0x66EBBE5: dissect_frame (packet-frame.c:488)
==31293== 
==31293== Conditional jump or move depends on uninitialised value(s)
==31293==    at 0x67CA1A8: ieee802154_short_addr_equal
(packet-ieee802154.c:2187)
==31293==    by 0x941794B: ??? (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.3)
==31293==    by 0x67CA728: ieee802154_addr_update (packet-ieee802154.c:2255)
==31293==    by 0x6B7D447: dissect_zbee_secure (packet-zbee-security.c:528)
==31293==    by 0x6B7A3D0: dissect_zbee_nwk (packet-zbee-nwk.c:678)
==31293==    by 0x6B7BC04: dissect_zbee_nwk_heur (packet-zbee-nwk.c:313)
==31293==    by 0x6453200: dissector_try_heuristic (packet.c:1846)
==31293==    by 0x67CCBEA: dissect_ieee802154_common (packet-ieee802154.c:1080)
==31293==    by 0x6451137: call_dissector_through_handle (packet.c:492)
==31293==    by 0x6451A84: call_dissector_work (packet.c:586)
==31293==    by 0x64523C2: dissector_try_uint_new (packet.c:1017)
==31293==    by 0x6452416: dissector_try_uint (packet.c:1043)
==31293== 
==31293== 
==31293== HEAP SUMMARY:
==31293==     in use at exit: 1,238,961 bytes in 27,971 blocks
==31293==   total heap usage: 282,705 allocs, 254,734 frees, 11,142,624 bytes
allocated
==31293== 
==31293== LEAK SUMMARY:
==31293==    definitely lost: 95,669 bytes in 1,335 blocks
==31293==    indirectly lost: 59,364 bytes in 1,738 blocks
==31293==      possibly lost: 0 bytes in 0 blocks
==31293==    still reachable: 1,083,928 bytes in 24,898 blocks
==31293==         suppressed: 0 bytes in 0 blocks
==31293== Rerun with --leak-check=full to see details of leaked memory
==31293== 
==31293== For counts of detected and suppressed errors, rerun with: -v
==31293== Use --track-origins=yes to see where uninitialised values come from
==31293== ERROR SUMMARY: 7 errors from 3 contexts (suppressed: 3 from 3)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.