Wireshark-bugs: [Wireshark-bugs] [Bug 12758] New: Buildbot crash output: fuzz-2016-08-18-13526.p
Date: Thu, 18 Aug 2016 10:00:04 +0000
Bug ID 12758
Summary Buildbot crash output: fuzz-2016-08-18-13526.pcap
Product Wireshark
Version unspecified
Hardware x86-64
URL https://www.wireshark.org/download/automated/captures/fuzz-2016-08-18-13526.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee bugzilla-admin@wireshark.org
Reporter buildbot-do-not-reply@wireshark.org

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2016-08-18-13526.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/10263-coap12_00.pcap

Build host information:
Linux wsbb04 4.4.0-31-generic #50-Ubuntu SMP Wed Jul 13 00:07:12 UTC 2016
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 16.04.1 LTS
Release:    16.04
Codename:    xenial

Buildbot information:
BUILDBOT_REPOSITORY=ssh://wireshark-buildbot@code.wireshark.org:29418/wireshark
BUILDBOT_WORKERNAME=fuzz-test
BUILDBOT_BUILDNUMBER=42
BUILDBOT_URL=http://buildbot.wireshark.org/wireshark-2.2/
BUILDBOT_BUILDERNAME=Fuzz Test
BUILDBOT_GOT_REVISION=9c8578efcfa3edfb0dd9765717d81846b81168ac

Return value:  0

Dissector bug:  0

Valgrind error count:  2



Git commit
commit 9c8578efcfa3edfb0dd9765717d81846b81168ac
Author: João Valverde <joao.valverde@tecnico.ulisboa.pt>
Date:   Sun Aug 14 14:23:07 2016 +0100

    pre-commit: Fix version check to work with git-worktree

    Change-Id: Ie895ca194738a022cc211ae50afbff0a561156a3
    Reviewed-on: https://code.wireshark.org/review/17047
    Reviewed-by: João Valverde <j@v6e.pt>
    (cherry picked from commit 3119e2fc23ec2b1d533a37db29fa3c512429d27e)
    Reviewed-on: https://code.wireshark.org/review/17075
    Reviewed-by: Peter Wu <peter@lekensteyn.nl>


==28358== Memcheck, a memory error detector
==28358== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al.
==28358== Using Valgrind-3.11.0 and LibVEX; rerun with -h for copyright info
==28358== Command:
/home/wireshark/builders/wireshark-2.2-fuzz/fuzztest/install/bin/tshark -nr
/fuzz/buildbot/fuzztest/valgrind-fuzz-2.2/fuzz-2016-08-18-13526.pcap
==28358== 
==28358== Conditional jump or move depends on uninitialised value(s)
==28358==    at 0x7533CC5: lookup_or_insert32_node (wmem_tree.c:322)
==28358==    by 0x75342CF: lookup_or_insert32 (wmem_tree.c:365)
==28358==    by 0x75342CF: wmem_tree_insert32_array (wmem_tree.c:597)
==28358==    by 0x6B124B1: dissect_coap (packet-coap.c:947)
==28358==    by 0x693BF6E: call_dissector_through_handle (packet.c:648)
==28358==    by 0x693BF6E: call_dissector_work (packet.c:723)
==28358==    by 0x693C698: dissector_try_uint_new (packet.c:1187)
==28358==    by 0x693C6E0: dissector_try_uint (packet.c:1213)
==28358==    by 0x7131539: decode_udp_ports (packet-udp.c:578)
==28358==    by 0x7131E88: dissect (packet-udp.c:1028)
==28358==    by 0x71323CD: dissect_udp (packet-udp.c:1034)
==28358==    by 0x693BF6E: call_dissector_through_handle (packet.c:648)
==28358==    by 0x693BF6E: call_dissector_work (packet.c:723)
==28358==    by 0x693C698: dissector_try_uint_new (packet.c:1187)
==28358==    by 0x6D437D5: ip_try_dissect (packet-ip.c:1976)
==28358== 
==28358== Conditional jump or move depends on uninitialised value(s)
==28358==    at 0x7533CC5: lookup_or_insert32_node (wmem_tree.c:322)
==28358==    by 0x6B124B1: dissect_coap (packet-coap.c:947)
==28358==    by 0x693BF6E: call_dissector_through_handle (packet.c:648)
==28358==    by 0x693BF6E: call_dissector_work (packet.c:723)
==28358==    by 0x693C698: dissector_try_uint_new (packet.c:1187)
==28358==    by 0x693C6E0: dissector_try_uint (packet.c:1213)
==28358==    by 0x7131539: decode_udp_ports (packet-udp.c:578)
==28358==    by 0x7131E88: dissect (packet-udp.c:1028)
==28358==    by 0x71323CD: dissect_udp (packet-udp.c:1034)
==28358==    by 0x693BF6E: call_dissector_through_handle (packet.c:648)
==28358==    by 0x693BF6E: call_dissector_work (packet.c:723)
==28358==    by 0x693C698: dissector_try_uint_new (packet.c:1187)
==28358==    by 0x6D437D5: ip_try_dissect (packet-ip.c:1976)
==28358==    by 0x6D623DB: dissect_ipv6 (packet-ipv6.c:2198)
==28358== 
==28358== 
==28358== HEAP SUMMARY:
==28358==     in use at exit: 457,891 bytes in 9,817 blocks
==28358==   total heap usage: 262,889 allocs, 253,072 frees, 32,575,655 bytes
allocated
==28358== 
==28358== LEAK SUMMARY:
==28358==    definitely lost: 3,270 bytes in 147 blocks
==28358==    indirectly lost: 9,112 bytes in 77 blocks
==28358==      possibly lost: 0 bytes in 0 blocks
==28358==    still reachable: 445,509 bytes in 9,593 blocks
==28358==         suppressed: 0 bytes in 0 blocks
==28358== Rerun with --leak-check=full to see details of leaked memory
==28358== 
==28358== For counts of detected and suppressed errors, rerun with: -v
==28358== Use --track-origins=yes to see where uninitialised values come from
==28358== ERROR SUMMARY: 2 errors from 2 contexts (suppressed: 1 from 1)

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.