Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OSS-Fuzz issue 46634 #480

Open
oss-fuzz-robot opened this issue Apr 12, 2022 · 2 comments
Open

OSS-Fuzz issue 46634 #480

oss-fuzz-robot opened this issue Apr 12, 2022 · 2 comments
Labels
fuzz-issue

Comments

@oss-fuzz-robot
Copy link

OSS-Fuzz has found a bug in this project. Please see https://oss-fuzz.com/testcase?key=4969712884252672 for details and reproducers.

This issue is mirrored from https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46634 and will auto-close if the status changes there.

If you have trouble accessing this report, please file an issue at https://github.com/google/oss-fuzz/issues/new.
@evverx
Copy link
Contributor

evverx commented Apr 13, 2022 

SANITIZER=undefined ./scripts/build-fuzzers.sh
wget -O oss-fuzz-46634 https://oss-fuzz.com/download?testcase_id=4969712884252672
UBSAN_OPTIONS=print_stacktrace=1:print_summary=1:halt_on_error=1 ./out/bpf-object-fuzzer oss-fuzz-46634
INFO: Running with entropic power schedule (0xFF, 100).
INFO: Seed: 2663389372
INFO: Loaded 1 modules   (52488 inline 8-bit counters): 52488 [0x7b4420, 0x7c1128),
INFO: Loaded 1 PC tables (52488 PCs): 52488 [0x654b00,0x721b80),
./out/bpf-object-fuzzer: Running 1 inputs 1 time(s) each.
Running: oss-fuzz-46634
btf.h:407:9: runtime error: member access within misaligned address 0x000002e2f9ba for type 'const struct btf_type', which requires 4 byte alignment
0x000002e2f9ba: note: pointer points here
 00 00  20 20 20 20 20 20 20 20  20 ff ff 20 20 20 20 20  20 20 20 20 20 20 ff ff  ff 20 20 20 20 20
              ^
    #0 0x5897a1 in btf_vlen /home/vagrant/libbpf/src/./btf.h:407:9
    #1 0x5897a1 in btf_type_size /home/vagrant/libbpf/src/btf.c:291:15
    #2 0x581104 in btf_parse_type_sec /home/vagrant/libbpf/src/btf.c:414:15
    #3 0x581104 in btf_new /home/vagrant/libbpf/src/btf.c:870:15
    #4 0x580648 in btf__new /home/vagrant/libbpf/src/btf.c:885:20
    #5 0x505868 in bpf_object__init_btf /home/vagrant/libbpf/src/libbpf.c:2748:14
    #6 0x4e83a8 in bpf_object__elf_collect /home/vagrant/libbpf/src/libbpf.c:3413:9
    #7 0x4958c7 in bpf_object_open /home/vagrant/libbpf/src/libbpf.c:7106:16
    #8 0x4963ce in bpf_object__open_mem /home/vagrant/libbpf/src/libbpf.c:7171:20
    #9 0x483018 in LLVMFuzzerTestOneInput /home/vagrant/libbpf/fuzz/bpf-object-fuzzer.c:16:8
    #10 0x439389 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) (/home/vagrant/libbpf/out/bpf-object-fuzzer+0x439389)
    #11 0x419e2f in fuzzer::RunOneTest(fuzzer::Fuzzer*, char const*, unsigned long) (/home/vagrant/libbpf/out/bpf-object-fuzzer+0x419e2f)
    #12 0x421aee in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) (/home/vagrant/libbpf/out/bpf-object-fuzzer+0x421aee)
    #13 0x410f96 in main (/home/vagrant/libbpf/out/bpf-object-fuzzer+0x410f96)
    #14 0x7febe706255f in __libc_start_call_main (/lib64/libc.so.6+0x2d55f)
    #15 0x7febe706260b in __libc_start_main@GLIBC_2.2.5 (/lib64/libc.so.6+0x2d60b)
    #16 0x410fe4 in _start (/home/vagrant/libbpf/out/bpf-object-fuzzer+0x410fe4)

SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior btf.h:407:9 in

@anakryiko anakryiko added the bug Something isn't working label Nov 15, 2022
@anakryiko
Copy link
Member

Should be addressed by #617

@anakryiko anakryiko added fuzz-issue and removed bug Something isn't working labels Nov 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
fuzz-issue
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@anakryiko @evverx @oss-fuzz-robot