Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 11507] Buildbot crash output: fuzz-2015-09-07-19251.pcap

Wireshark-bugs: [Wireshark-bugs] [Bug 11507] Buildbot crash output: fuzz-2015-09-07-19251.pcap

Date: Mon, 07 Sep 2015 23:06:58 +0000

Comment # 1 on bug 11507 from Guy Harris

(In reply to Buildbot Builder from comment #0)
> ==12169==  Address 0x0 is not stack'd, malloc'd or (recently) free'd

Dear Valgrind: on all the platforms on which you run, it's called a "null
pointer".

This is *probably* the result of AES_unwrap() returning a null pointer.  It
can:

        if (kek == NULL || cipher_len < 16 || cipher_text == NULL) {
                return NULL; /* "should not happen" */
        }

The call to AES_unwrap() in AirPDcapDecryptWPABroadcastKey() is:

            decrypted_data = AES_unwrap(decryption_key, 16, szEncryptedKey, 
key_bytes_len);

so it will fail if key_bytes_len is less than 16 - the "16" in the call is the
key_len argument.

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 11507] New: Buildbot crash output: fuzz-2015-09-07-19251.pcap
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 11507] New: Buildbot crash output: fuzz-2015-09-07-19251.pcap
Next by Date: [Wireshark-bugs] [Bug 11480] SSL: RFC 7250 format for encoding raw public keys in certificate message
Previous by thread: [Wireshark-bugs] [Bug 11507] New: Buildbot crash output: fuzz-2015-09-07-19251.pcap
Next by thread: [Wireshark-bugs] [Bug 11507] Buildbot crash output: fuzz-2015-09-07-19251.pcap
Index(es):
- Date
- Thread