Wireshark-bugs: [Wireshark-bugs] [Bug 13062] New: Buildbot crash output: fuzz-2016-10-27-20662.p

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Thu, 27 Oct 2016 22:40:03 +0000
Bug ID 13062
Summary Buildbot crash output: fuzz-2016-10-27-20662.pcap
Product Wireshark
Version unspecified
Hardware x86-64
URL https://www.wireshark.org/download/automated/captures/fuzz-2016-10-27-20662.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected] 

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2016-10-27-20662.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/11275-cops-fuzz-test.pcap

Build host information:
Linux wsbb04 4.4.0-45-generic #66-Ubuntu SMP Wed Oct 19 14:12:37 UTC 2016
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 16.04.1 LTS
Release:    16.04
Codename:    xenial

Buildbot information:
BUILDBOT_REPOSITORY=ssh://[email protected]:29418/wireshark
BUILDBOT_WORKERNAME=clang-code-analysis
BUILDBOT_BUILDNUMBER=3765
BUILDBOT_URL=http://buildbot.wireshark.org/wireshark-master/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_GOT_REVISION=7dfaab3cf79db1f36d4607d5d1ce79c222b8a9ac

Return value:  0

Dissector bug:  0

Valgrind error count:  1



Git commit
commit 7dfaab3cf79db1f36d4607d5d1ce79c222b8a9ac
Author: Dario Lombardo <[email protected]>
Date:   Mon Oct 24 16:15:22 2016 +0200

    checkAPI: move atoi from soft-deprecated to prohibited.

    The atoi function has been completely removed from the tree.
    It's still present in the GTK code, but, since GTK compilation
    has been removed in the default, checkAPI target doesn't complain,
    as well as the buildbot.

    Change-Id: I436d6f333b99b9188734155c1f92273420354947
    Reviewed-on: https://code.wireshark.org/review/18432
    Petri-Dish: Dario Lombardo <[email protected]>
    Tested-by: Petri Dish Buildbot <[email protected]>
    Reviewed-by: Jeff Morriss <[email protected]>
    Tested-by: Jeff Morriss <[email protected]>
    Reviewed-by: Dario Lombardo <[email protected]>


==24346== Memcheck, a memory error detector
==24346== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al.
==24346== Using Valgrind-3.11.0 and LibVEX; rerun with -h for copyright info
==24346== Command:
/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install.plain/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2016-10-27-20662.pcap
==24346== 
==24346== Conditional jump or move depends on uninitialised value(s)
==24346==    at 0x6B972D4: dissect_cops_pdu (packet-cops.c:1102)
==24346==    by 0x7182B15: tcp_dissect_pdus (packet-tcp.c:3266)
==24346==    by 0x6B95CA1: dissect_cops (packet-cops.c:1134)
==24346==    by 0x69A9795: call_dissector_through_handle (packet.c:650)
==24346==    by 0x69A9795: call_dissector_work (packet.c:725)
==24346==    by 0x69A965E: dissector_try_uint_new (packet.c:1290)
==24346==    by 0x718302F: decode_tcp_ports (packet-tcp.c:5197)
==24346==    by 0x718443F: process_tcp_payload (packet-tcp.c:5260)
==24346==    by 0x7183900: desegment_tcp (packet-tcp.c:2778)
==24346==    by 0x7183900: dissect_tcp_payload (packet-tcp.c:5327)
==24346==    by 0x7188579: dissect_tcp (packet-tcp.c:6209)
==24346==    by 0x69A9795: call_dissector_through_handle (packet.c:650)
==24346==    by 0x69A9795: call_dissector_work (packet.c:725)
==24346==    by 0x69A965E: dissector_try_uint_new (packet.c:1290)
==24346==    by 0x6DD5A22: ip_try_dissect (packet-ip.c:1976)
==24346==    by 0x6DD5A22: dissect_ip_v4 (packet-ip.c:2439)
==24346== 
==24346== 
==24346== HEAP SUMMARY:
==24346==     in use at exit: 6,085,929 bytes in 9,727 blocks
==24346==   total heap usage: 266,187 allocs, 256,460 frees, 37,372,997 bytes
allocated
==24346== 
==24346== LEAK SUMMARY:
==24346==    definitely lost: 408 bytes in 88 blocks
==24346==    indirectly lost: 256 bytes in 2 blocks
==24346==      possibly lost: 0 bytes in 0 blocks
==24346==    still reachable: 6,085,265 bytes in 9,637 blocks
==24346==         suppressed: 0 bytes in 0 blocks
==24346== Rerun with --leak-check=full to see details of leaked memory
==24346== 
==24346== For counts of detected and suppressed errors, rerun with: -v
==24346== Use --track-origins=yes to see where uninitialised values come from
==24346== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 0 from 0)

[ no debug trace ]

You are receiving this mail because:
  • You are watching all bug changes.