Wireshark-bugs: [Wireshark-bugs] [Bug 10395] New: Buildbot crash output: fuzz-2014-08-18-19935.p

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Mon, 18 Aug 2014 17:30:03 +0000
Bug ID 10395
Summary Buildbot crash output: fuzz-2014-08-18-19935.pcap
Product Wireshark
Version unspecified
Hardware x86-64
URL https://www.wireshark.org/download/automated/captures/fuzz-2014-08-18-19935.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected] 

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2014-08-18-19935.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/12990-cluster-chatter.pcapng.gz

Build host information:
Linux wsbb04 3.13.0-32-generic #57-Ubuntu SMP Tue Jul 15 03:51:08 UTC 2014
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 14.04.1 LTS
Release:    14.04
Codename:    trusty

Buildbot information:
BUILDBOT_REPOSITORY=ssh://[email protected]:29418/wireshark
BUILDBOT_BUILDNUMBER=2930
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=56738931a9b823bd6e2fae157c0d85b2c3489280

Return value:  0

Dissector bug:  0

Valgrind error count:  16



Git commit
commit 56738931a9b823bd6e2fae157c0d85b2c3489280
Author: Alexis La Goutte <[email protected]>
Date:   Fri Aug 15 19:04:35 2014 +0200

    PCAPNG Block: Add modelines info

    Change-Id: I15ddf62318fc8783a2318025fa6ca110b7991ff5
    Reviewed-on: https://code.wireshark.org/review/3653
    Reviewed-by: Anders Broman <[email protected]>


Command and args: ./tools/valgrind-wireshark.sh 

==28412== Memcheck, a memory error detector
==28412== Copyright (C) 2002-2013, and GNU GPL'd, by Julian Seward et al.
==28412== Using Valgrind-3.10.0.SVN and LibVEX; rerun with -h for copyright
info
==28412== Command:
/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2014-08-18-19935.pcap
==28412== 

** (process:28412): WARNING **: Dissector bug, protocol Ceph, in packet 2108:
packet-ceph.c:5779: failed assertion "offt2 == offt" (Actual length does not
equal expected.)
==28412== Invalid read of size 1
==28412==    at 0x4C2E0E2: strlen (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x4104AF: print_packet (tshark.c:3767)
==28412==    by 0x410AF2: process_packet (tshark.c:3571)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412==  Address 0x137bc150 is 0 bytes inside a block of size 80 free'd
==28412==    at 0x4C2BDEC: free (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x715140C: wmem_simple_free_all (wmem_allocator_simple.c:107)
==28412==    by 0x715208B: wmem_leave_packet_scope (wmem_scopes.c:81)
==28412==    by 0x4107D3: process_packet (tshark.c:3557)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412== 
==28412== Invalid read of size 1
==28412==    at 0x4C2E0F4: strlen (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x4104AF: print_packet (tshark.c:3767)
==28412==    by 0x410AF2: process_packet (tshark.c:3571)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412==  Address 0x137bc151 is 1 bytes inside a block of size 80 free'd
==28412==    at 0x4C2BDEC: free (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x715140C: wmem_simple_free_all (wmem_allocator_simple.c:107)
==28412==    by 0x715208B: wmem_leave_packet_scope (wmem_scopes.c:81)
==28412==    by 0x4107D3: process_packet (tshark.c:3557)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412== 
==28412== Invalid read of size 8
==28412==    at 0x4C2F790: memcpy@@GLIBC_2.14 (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x4104E3: print_packet (string3.h:51)
==28412==    by 0x410AF2: process_packet (tshark.c:3571)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412==  Address 0x137bc150 is 0 bytes inside a block of size 80 free'd
==28412==    at 0x4C2BDEC: free (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x715140C: wmem_simple_free_all (wmem_allocator_simple.c:107)
==28412==    by 0x715208B: wmem_leave_packet_scope (wmem_scopes.c:81)
==28412==    by 0x4107D3: process_packet (tshark.c:3557)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412== 
==28412== Invalid read of size 2
==28412==    at 0x4C2F7E0: memcpy@@GLIBC_2.14 (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x4104E3: print_packet (string3.h:51)
==28412==    by 0x410AF2: process_packet (tshark.c:3571)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412==  Address 0x137bc158 is 8 bytes inside a block of size 80 free'd
==28412==    at 0x4C2BDEC: free (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==28412==    by 0x715140C: wmem_simple_free_all (wmem_allocator_simple.c:107)
==28412==    by 0x715208B: wmem_leave_packet_scope (wmem_scopes.c:81)
==28412==    by 0x4107D3: process_packet (tshark.c:3557)
==28412==    by 0x40BF75: main (tshark.c:3347)
==28412== 
==28412== 
==28412== HEAP SUMMARY:
==28412==     in use at exit: 1,348,434 bytes in 29,528 blocks
==28412==   total heap usage: 712,545 allocs, 683,017 frees, 47,878,464 bytes
allocated
==28412== 
==28412== LEAK SUMMARY:
==28412==    definitely lost: 6,497 bytes in 232 blocks
==28412==    indirectly lost: 36,664 bytes in 50 blocks
==28412==      possibly lost: 0 bytes in 0 blocks
==28412==    still reachable: 1,305,273 bytes in 29,246 blocks
==28412==         suppressed: 0 bytes in 0 blocks
==28412== Rerun with --leak-check=full to see details of leaked memory
==28412== 
==28412== For counts of detected and suppressed errors, rerun with: -v
==28412== ERROR SUMMARY: 16 errors from 4 contexts (suppressed: 0 from 0)

[ no debug trace ]

You are receiving this mail because:
  • You are watching all bug changes.