[Wireshark-bugs] [Bug 16784] New: Buildbot crash output: fuzz-2020-08-15-4627.pcap

Sun, 16 Aug 2020 14:40:59 -0700 

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16784

            Bug ID: 16784
           Summary: Buildbot crash output: fuzz-2020-08-15-4627.pcap
           Product: Wireshark
           Version: unspecified
          Hardware: x86-64
                OS: Ubuntu
            Status: CONFIRMED
          Severity: Major
          Priority: High
         Component: Dissection engine (libwireshark)
          Assignee: bugzilla-ad...@wireshark.org
          Reporter: buildbot-do-not-re...@wireshark.org
  Target Milestone: ---

Problems have been found with the following capture file:

https://www.wireshark.org/download/automated/captures/fuzz-2020-08-15-4627.pcap

stderr:
Input file: /home/wireshark/menagerie/menagerie/produce.pcapng

Build host information:
Linux build6 4.15.0-112-generic #113-Ubuntu SMP Thu Jul 9 23:41:39 UTC 2020
x86_64 x86_64 x86_64 GNU/Linux
Distributor ID: Ubuntu
Description:    Ubuntu 18.04.5 LTS
Release:        18.04
Codename:       bionic

Buildbot information:
BUILDBOT_WORKERNAME=fuzz-test
BUILDBOT_BUILDNUMBER=85
BUILDBOT_BUILDERNAME=Fuzz Test
BUILDBOT_URL=http://buildbot.wireshark.org/wireshark-3.2/
BUILDBOT_REPOSITORY=ssh://wireshark-build...@code.wireshark.org:29418/wireshark
BUILDBOT_GOT_REVISION=1b74b64b8dd2a0884239e812b84c132010c70485

Return value:  0

Dissector bug:  0

Valgrind error count:  1



Git commit
commit 1b74b64b8dd2a0884239e812b84c132010c70485
Author: Pascal Quantin <pas...@wireshark.org>
Date:   Fri Aug 14 14:49:48 2020 +0200

    Check that at least one token exists to consider the JSON as valid

    Bug: 16780
    Change-Id: I07ca12675fc79a7c524719d18b85e5d3dada6652
    Reviewed-on: https://code.wireshark.org/review/38160
    Petri-Dish: Pascal Quantin <pas...@wireshark.org>
    Tested-by: Petri Dish Buildbot
    Reviewed-by: Pascal Quantin <pas...@wireshark.org>
    (cherry picked from commit 62c4e2525f23d200b39caa7ac14080d943024728)
    Reviewed-on: https://code.wireshark.org/review/38161


Command and args: ./tools/valgrind-wireshark.sh -b
/home/wireshark/builders/wireshark-3.2-fuzz/fuzztest/install.plain/bin  
==18641== Memcheck, a memory error detector
==18641== Copyright (C) 2002-2017, and GNU GPL'd, by Julian Seward et al.
==18641== Using Valgrind-3.13.0 and LibVEX; rerun with -h for copyright info
==18641== Command:
/home/wireshark/builders/wireshark-3.2-fuzz/fuzztest/install.plain/bin/tshark
-nr /fuzz/buildbot/fuzztest/valgrind-fuzz-3.2/fuzz-2020-08-15-4627.pcap
==18641== 
==18641== Conditional jump or move depends on uninitialised value(s)
==18641==    at 0xE907B0A: ZSTD_decompressStream (in
/usr/lib/x86_64-linux-gnu/libzstd.so.1.3.3)
==18641==    by 0x72A1C92: decompress_zstd (packet-kafka.c:1512)
==18641==    by 0x72A14B4: decompress (packet-kafka.c:1558)
==18641==    by 0x72A0CB5: dissect_kafka_message_old (packet-kafka.c:1640)
==18641==    by 0x72A0A0C: dissect_kafka_message (packet-kafka.c:1783)
==18641==    by 0x72A08CB: dissect_kafka_message_set (packet-kafka.c:1804)
==18641==    by 0x72A075C: dissect_kafka_produce_request_partition
(packet-kafka.c:2980)
==18641==    by 0x72A0665: dissect_kafka_array_ref (packet-kafka.c:907)
==18641==    by 0x72A04B4: dissect_kafka_array (packet-kafka.c:923)
==18641==    by 0x72A055D: dissect_kafka_produce_request_topic
(packet-kafka.c:3001)
==18641==    by 0x72A0665: dissect_kafka_array_ref (packet-kafka.c:907)
==18641==    by 0x72A04B4: dissect_kafka_array (packet-kafka.c:923)
==18641== 
==18641== 
==18641== HEAP SUMMARY:
==18641==     in use at exit: 43,132 bytes in 201 blocks
==18641==   total heap usage: 330,175 allocs, 329,974 frees, 40,603,325 bytes
allocated
==18641== 
==18641== LEAK SUMMARY:
==18641==    definitely lost: 0 bytes in 0 blocks
==18641==    indirectly lost: 0 bytes in 0 blocks
==18641==      possibly lost: 304 bytes in 1 blocks
==18641==    still reachable: 42,025 bytes in 167 blocks
==18641==         suppressed: 803 bytes in 33 blocks
==18641== Rerun with --leak-check=full to see details of leaked memory
==18641== 
==18641== For counts of detected and suppressed errors, rerun with: -v
==18641== Use --track-origins=yes to see where uninitialised values come from
==18641== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 0 from 0)

[ no debug trace ]

-- 
You are receiving this mail because:
You are watching all bug changes.
___________________________________________________________________________
Sent via:    Wireshark-bugs mailing list <wireshark-bugs@wireshark.org>
Archives:    https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
             mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

Reply via email to