Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 10216] New: Buildbot crash output: fuzz-2014-06-20-5084.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 10216] New: Buildbot crash output: fuzz-2014-06-20-5084.pc

Date: Sat, 21 Jun 2014 20:50:05 +0000

Bug ID	10216
Summary	Buildbot crash output: fuzz-2014-06-20-5084.pcap
Classification	Unclassified
Product	Wireshark
Version	unspecified
Hardware	x86-64
URL	http://www.wireshark.org/download/automated/captures/fuzz-2014-06-20-5084.pcap
OS	Ubuntu
Status	CONFIRMED
Severity	Major
Priority	High
Component	Dissection engine (libwireshark)
Assignee	[email protected]
Reporter	[email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2014-06-20-5084.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/5752-Forward_relocation.cap

Build host information:
Linux wsbb04 3.2.0-64-generic #97-Ubuntu SMP Wed Jun 4 22:04:21 UTC 2014 x86_64
x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.4 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=ssh://[email protected]:29418/wireshark
BUILDBOT_BUILDNUMBER=2821
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=46a808acf4e8c87b61169bfac00799857b38f1f0

Return value:  0

Dissector bug:  0

Valgrind error count:  2



Git commit
commit 46a808acf4e8c87b61169bfac00799857b38f1f0
Author: dameiss <[email protected]>
Date:   Wed Jun 18 16:44:31 2014 -0700

    Add GTK modules for existing LBM dissectors.

    bug: 10204
    Change-Id: Ie21cc07b0ac9a56648ec72062ce58a1ac800318e
    Reviewed-on: https://code.wireshark.org/review/2420
    Reviewed-by: Michael Mann <[email protected]>


Command and args: ./tools/valgrind-wireshark.sh -T

==11062== Memcheck, a memory error detector
==11062== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==11062== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==11062== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-Vx -nr
/fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2014-06-20-5084.pcap
==11062== 
==11062== Conditional jump or move depends on uninitialised value(s)
==11062==    at 0x4C2BFB8: strlen (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==11062==    by 0x99262A1: g_strdup (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.3200.4)
==11062==    by 0x661E0E9: string_fvalue_set_string (ftype-string.c:53)
==11062==    by 0x65E561E: proto_tree_add_string (proto.c:2951)
==11062==    by 0x690C8F1: decode_apn (packet-gtp.c:4627)
==11062==    by 0x690CEA2: decode_gtp_pdp_cntxt (packet-gtp.c:4804)
==11062==    by 0x690D6FD: dissect_gtp_common (packet-gtp.c:8178)
==11062==    by 0x65D27FE: call_dissector_through_handle (packet.c:622)
==11062==    by 0x65D323D: call_dissector_work (packet.c:713)
==11062==    by 0x65D3A62: dissector_try_uint_new (packet.c:1144)
==11062==    by 0x65D3AB6: dissector_try_uint (packet.c:1170)
==11062==    by 0x6D11D34: decode_udp_ports (packet-udp.c:412)
==11062== 
==11062== Conditional jump or move depends on uninitialised value(s)
==11062==    at 0x4C2BFB8: strlen (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==11062==    by 0x65E0754: hfinfo_format_text.isra.12 (proto.c:4026)
==11062==    by 0x65EA853: proto_item_fill_label (proto.c:5924)
==11062==    by 0x65DF17D: proto_tree_print_node (print.c:186)
==11062==    by 0x65E0ACB: proto_tree_children_foreach (proto.c:614)
==11062==    by 0x65DF05D: proto_tree_print_node (print.c:241)
==11062==    by 0x65E0ACB: proto_tree_children_foreach (proto.c:614)
==11062==    by 0x65DF05D: proto_tree_print_node (print.c:241)
==11062==    by 0x65E0ACB: proto_tree_children_foreach (proto.c:614)
==11062==    by 0x65DE125: proto_tree_print (print.c:153)
==11062==    by 0x413620: print_packet (tshark.c:3940)
==11062==    by 0x414672: process_packet (tshark.c:3552)
==11062== 
==11062== 
==11062== HEAP SUMMARY:
==11062==     in use at exit: 1,206,477 bytes in 29,241 blocks
==11062==   total heap usage: 241,589 allocs, 212,348 frees, 29,989,444 bytes
allocated
==11062== 
==11062== LEAK SUMMARY:
==11062==    definitely lost: 3,640 bytes in 159 blocks
==11062==    indirectly lost: 36,424 bytes in 49 blocks
==11062==      possibly lost: 0 bytes in 0 blocks
==11062==    still reachable: 1,166,413 bytes in 29,033 blocks
==11062==         suppressed: 0 bytes in 0 blocks
==11062== Rerun with --leak-check=full to see details of leaked memory
==11062== 
==11062== For counts of detected and suppressed errors, rerun with: -v
==11062== Use --track-origins=yes to see where uninitialised values come from
==11062== ERROR SUMMARY: 2 errors from 2 contexts (suppressed: 3 from 3)

[ no debug trace ]

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 10216] Buildbot crash output: fuzz-2014-06-20-5084.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 10209] wireshark-1.12 rc2 (and git) on ARM - expert.c:392:2: error: incompatible type for argument 8 of 'expert_set_info_vformat'
Next by Date: [Wireshark-bugs] [Bug 10214] ASAN: global-buffer-overflow in _ws_mempbrk_sse42
Previous by thread: [Wireshark-bugs] [Bug 7683] Add a field to the Packet Details reassembled fragments tree that exposes the reassembled data
Next by thread: [Wireshark-bugs] [Bug 10216] Buildbot crash output: fuzz-2014-06-20-5084.pcap
Index(es):
- Date
- Thread