Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 9270] New: Buildbot crash output: fuzz-2013-10-14-6042.pca

Date: Mon, 14 Oct 2013 18:10:04 +0000
Bug ID 9270
Summary Buildbot crash output: fuzz-2013-10-14-6042.pcap
Classification Unclassified
Product Wireshark
Version unspecified
Hardware x86-64
URL http://www.wireshark.org/download/automated/captures/fuzz-2013-10-14-6042.pcap
OS Ubuntu
Status CONFIRMED
Severity Major
Priority High
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected]

Problems have been found with the following capture file:

http://www.wireshark.org/download/automated/captures/fuzz-2013-10-14-6042.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/10860-packet-gsm.pcap

Build host information:
Linux wsbb04 3.2.0-49-generic #75-Ubuntu SMP Tue Jun 18 17:39:32 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID:    Ubuntu
Description:    Ubuntu 12.04.2 LTS
Release:    12.04
Codename:    precise

Buildbot information:
BUILDBOT_REPOSITORY=http://code.wireshark.org/git/wireshark
BUILDBOT_BUILDNUMBER=2126
BUILDBOT_URL=http://buildbot.wireshark.org/trunk/
BUILDBOT_BUILDERNAME=Clang-Code-Analysis
BUILDBOT_SLAVENAME=clang-code-analysis
BUILDBOT_GOT_REVISION=f1ee43ab0ae499386302b0d182661349178c36de

Return value:  134

Dissector bug:  0

Valgrind error count:  32



Git commit
commit f1ee43ab0ae499386302b0d182661349178c36de
Author: Pascal Quantin <[email protected]>
Date:   Sat Oct 12 14:29:40 2013 +0000

    Update User Guide for 1.11 preparation

    svn path=/trunk/; revision=52567


Command and args: ./tools/valgrind-wireshark.sh 

==15330== Memcheck, a memory error detector
==15330== Copyright (C) 2002-2011, and GNU GPL'd, by Julian Seward et al.
==15330== Using Valgrind-3.7.0 and LibVEX; rerun with -h for copyright info
==15330== Command:
/home/wireshark/builders/trunk-clang-ca/clangcodeanalysis/install/bin/tshark
-nr /fuzz/buildbot/clangcodeanalysis/valgrind-fuzz/fuzz-2013-10-14-6042.pcap
==15330== 
==15330== Conditional jump or move depends on uninitialised value(s)
==15330==    at 0x678D849: dissect_cbch (packet-gsm_cbch.c:263)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330==    by 0x648A9D0: call_dissector_with_data (packet.c:2131)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330==    by 0x6489492: dissector_try_uint_new (packet.c:1044)
==15330==    by 0x64894E6: dissector_try_uint (packet.c:1070)
==15330==    by 0x6B3CDF7: decode_udp_ports (packet-udp.c:342)
==15330==    by 0x6B3D401: dissect (packet-udp.c:661)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330== 
==15330== Conditional jump or move depends on uninitialised value(s)
==15330==    at 0x678D85C: dissect_cbch (packet-gsm_cbch.c:263)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330==    by 0x648A9D0: call_dissector_with_data (packet.c:2131)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330==    by 0x6489492: dissector_try_uint_new (packet.c:1044)
==15330==    by 0x64894E6: dissector_try_uint (packet.c:1070)
==15330==    by 0x6B3CDF7: decode_udp_ports (packet-udp.c:342)
==15330==    by 0x6B3D401: dissect (packet-udp.c:661)
==15330==    by 0x6488197: call_dissector_through_handle (packet.c:519)
==15330==    by 0x6488AE4: call_dissector_work (packet.c:613)
==15330== 
**
ERROR:packet.c:2117:call_dissector_only: assertion failed: (handle != NULL)
==15330== 
==15330== HEAP SUMMARY:
==15330==     in use at exit: 10,692,657 bytes in 285,036 blocks
==15330==   total heap usage: 498,640 allocs, 213,604 frees, 23,805,035 bytes
allocated
==15330== 
==15330== LEAK SUMMARY:
==15330==    definitely lost: 1,944 bytes in 10 blocks
==15330==    indirectly lost: 184 bytes in 5 blocks
==15330==      possibly lost: 0 bytes in 0 blocks
==15330==    still reachable: 10,690,529 bytes in 285,021 blocks
==15330==         suppressed: 0 bytes in 0 blocks
==15330== Rerun with --leak-check=full to see details of leaked memory
==15330== 
==15330== For counts of detected and suppressed errors, rerun with: -v
==15330== Use --track-origins=yes to see where uninitialised values come from
==15330== ERROR SUMMARY: 32 errors from 2 contexts (suppressed: 3 from 3)
./tools/valgrind-wireshark.sh: line 107: 15330 Aborted                 (core
dumped) $LIBTOOL valgrind --suppressions=`dirname $0`/vg-suppressions
--tool=$TOOL $VERBOSE $LEAK_CHECK $REACHABLE $TRACK_ORIGINS $COMMAND
$COMMAND_ARGS $PCAP $COMMAND_ARGS2 > /dev/null

[ no debug trace ]


You are receiving this mail because:
  • You are watching all bug changes.