Wireshark-bugs: [Wireshark-bugs] [Bug 10757] New: Buildbot crash output: fuzz-2014-12-03-2750.pc
Date: Fri, 05 Dec 2014 17:30:04 +0000
Bug ID 10757
Summary Buildbot crash output: fuzz-2014-12-03-2750.pcap
Product Wireshark
Version unspecified
Hardware x86-64
URL https://www.wireshark.org/download/automated/captures/fuzz-2014-12-03-2750.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee bugzilla-admin@wireshark.org
Reporter buildbot-do-not-reply@wireshark.org

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2014-12-03-2750.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/file1

Build host information:
Linux wsbb04 3.13.0-39-generic #66-Ubuntu SMP Tue Oct 28 13:30:27 UTC 2014
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 14.04.1 LTS
Release:    14.04
Codename:    trusty

Buildbot information:
BUILDBOT_REPOSITORY=ssh://wireshark-buildbot@code.wireshark.org:29418/wireshark
BUILDBOT_BUILDNUMBER=3077
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang Code Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=5abfc6028d849a7e4f4dded0922c572e874cbb83

Return value:  0

Dissector bug:  0

Valgrind error count:  1



Git commit
commit 5abfc6028d849a7e4f4dded0922c572e874cbb83
Author: Alexis La Goutte <alexis.lagoutte@gmail.com>
Date:   Tue Dec 2 16:09:26 2014 +0100

    Couchbase: fix missing comma...

    Change-Id: Ic86e07b434e693d2f0fbd9518a23ed49cf49f24d
    Reviewed-on: https://code.wireshark.org/review/5572
    Reviewed-by: Alexis La Goutte <alexis.lagoutte@gmail.com>


Command and args: ./tools/valgrind-wireshark.sh 

==22773== Memcheck, a memory error detector
==22773== Copyright (C) 2002-2013, and GNU GPL'd, by Julian Seward et al.
==22773== Using Valgrind-3.10.0.SVN and LibVEX; rerun with -h for copyright
info
==22773== Command:
/home/wireshark/builders/wireshark-master-fuzz/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2014-12-03-2750.pcap
==22773== 
==22773== Invalid read of size 1
==22773==    at 0x66DEA9A: tvb_uncompress (tvbuff_zlib.c:187)
==22773==    by 0x66DECA4: tvb_child_uncompress (tvbuff_zlib.c:317)
==22773==    by 0x6A0EB4D: dissect_http_message (packet-http.c:1364)
==22773==    by 0x6A0FD28: dissect_http (packet-http.c:2774)
==22773==    by 0x66AEC5E: call_dissector_through_handle (packet.c:618)
==22773==    by 0x66AF6A4: call_dissector_work (packet.c:709)
==22773==    by 0x66AFD5B: dissector_try_uint_new (packet.c:1141)
==22773==    by 0x6DAE085: decode_tcp_ports (packet-tcp.c:4064)
==22773==    by 0x6DAE42E: process_tcp_payload (packet-tcp.c:4122)
==22773==    by 0x6DAE9FF: dissect_tcp_payload (packet-tcp.c:1950)
==22773==    by 0x6DB0653: dissect_tcp (packet-tcp.c:5010)
==22773==    by 0x66AEC23: call_dissector_through_handle (packet.c:622)
==22773==  Address 0x1206f002 is 0 bytes after a block of size 2 alloc'd
==22773==    at 0x4C2AB80: malloc (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==22773==    by 0x9B04610: g_malloc (in
/lib/x86_64-linux-gnu/libglib-2.0.so.0.4002.0)
==22773==    by 0x66DFB79: tvb_memdup (tvbuff.c:841)
==22773==    by 0x66DE793: tvb_uncompress (tvbuff_zlib.c:70)
==22773==    by 0x66DECA4: tvb_child_uncompress (tvbuff_zlib.c:317)
==22773==    by 0x6A0EB4D: dissect_http_message (packet-http.c:1364)
==22773==    by 0x6A0FD28: dissect_http (packet-http.c:2774)
==22773==    by 0x66AEC5E: call_dissector_through_handle (packet.c:618)
==22773==    by 0x66AF6A4: call_dissector_work (packet.c:709)
==22773==    by 0x66AFD5B: dissector_try_uint_new (packet.c:1141)
==22773==    by 0x6DAE085: decode_tcp_ports (packet-tcp.c:4064)
==22773==    by 0x6DAE42E: process_tcp_payload (packet-tcp.c:4122)
==22773== 
==22773== 
==22773== HEAP SUMMARY:
==22773==     in use at exit: 1,260,163 bytes in 29,798 blocks
==22773==   total heap usage: 1,530,307 allocs, 1,500,509 frees, 83,842,822
bytes allocated
==22773== 
==22773== LEAK SUMMARY:
==22773==    definitely lost: 5,176 bytes in 251 blocks
==22773==    indirectly lost: 37,720 bytes in 112 blocks
==22773==      possibly lost: 0 bytes in 0 blocks
==22773==    still reachable: 1,217,267 bytes in 29,435 blocks
==22773==         suppressed: 0 bytes in 0 blocks
==22773== Rerun with --leak-check=full to see details of leaked memory
==22773== 
==22773== For counts of detected and suppressed errors, rerun with: -v
==22773== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 0 from 0)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.