[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug binutils/26011] New: [objdump] crash with ASAN in sanitizer_posix.c
From: |
dkcjd2000 at gmail dot com |
Subject: |
[Bug binutils/26011] New: [objdump] crash with ASAN in sanitizer_posix.cc:121 |
Date: |
Mon, 18 May 2020 13:46:47 +0000 |
https://sourceware.org/bugzilla/show_bug.cgi?id=26011
Bug ID: 26011
Summary: [objdump] crash with ASAN in sanitizer_posix.cc:121
Product: binutils
Version: 2.35 (HEAD)
Status: UNCONFIRMED
Severity: normal
Priority: P2
Component: binutils
Assignee: unassigned at sourceware dot org
Reporter: dkcjd2000 at gmail dot com
Target Milestone: ---
Created attachment 12557
--> https://sourceware.org/bugzilla/attachment.cgi?id=12557&action=edit
crash test case
Hello,
I'm currently developing a new fuzzing feature, and I found a crash in objdump.
I downloaded from git master, and I built it with Ubuntu 16.04 with gcc 5.4.0
with ASAN, and the following command to build objdump from the source:
CFLAGS="-O1 -fsanitize=address -U_FORTIFY_SOURCE" ./configure; make clean all;
You can reproduce the crash with the following command:
./objdump -d <attached file>
The AddressSanitizer message of the crash is:
==12140==AddressSanitizer CHECK failed:
../../../../src/libsanitizer/sanitizer_common/sanitizer_posix.cc:121 "(("unable
to mmap" && 0)) != (0)" (0x0, 0x0)
#0 0x7fd64acb9631 (/usr/lib/x86_64-linux-gnu/libasan.so.2+0xa0631)
#1 0x7fd64acbe5e3 in __sanitizer::CheckFailed(char const*, int, char
const*, unsigned long long, unsigned long long)
(/usr/lib/x86_64-linux-gnu/libasan.so.2+0xa55e3)
#2 0x7fd64acc6611 (/usr/lib/x86_64-linux-gnu/libasan.so.2+0xad611)
#3 0x7fd64ac3bc0c (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x22c0c)
#4 0x7fd64acb15d2 in malloc
(/usr/lib/x86_64-linux-gnu/libasan.so.2+0x985d2)
#5 0x6409e3 in _objalloc_alloc
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x6409e3)
#6 0x4acee2 in bfd_alloc
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x4acee2)
#7 0x5876f9 in bfd_elf32_slurp_reloc_table
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x5876f9)
#8 0x50e98d in _bfd_elf_canonicalize_dynamic_reloc
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x50e98d)
#9 0x4081e3 in disassemble_data
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x4081e3)
#10 0x40c4a9 in dump_bfd
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x40c4a9)
#11 0x40c9e7 in display_any_bfd
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x40c9e7)
#12 0x40cb6d in display_file
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x40cb6d)
#13 0x413e47 in main
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x413e47)
#14 0x7fd64a66b82f in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
#15 0x403268 in _start
(/home/cheong/results/crashes/objdump_crash/objdump.master_asan+0x403268)
--
You are receiving this mail because:
You are on the CC list for the bug.
- [Bug binutils/26011] New: [objdump] crash with ASAN in sanitizer_posix.cc:121,
dkcjd2000 at gmail dot com <=
- [Bug binutils/26011] [objdump] crash with ASAN in sanitizer_posix.cc:121, nickc at redhat dot com, 2020/05/18
- [Bug binutils/26011] [objdump] crash with ASAN in sanitizer_posix.cc:121, amodra at gmail dot com, 2020/05/19
- [Bug binutils/26011] [objdump] crash with ASAN in sanitizer_posix.cc:121, nickc at redhat dot com, 2020/05/19
- [Bug binutils/26011] [objdump] crash with ASAN in sanitizer_posix.cc:121, cvs-commit at gcc dot gnu.org, 2020/05/19
- [Bug binutils/26011] excessive memory allocation with fuzzed reloc sections, amodra at gmail dot com, 2020/05/19
- [Bug binutils/26011] excessive memory allocation with fuzzed reloc sections, amodra at gmail dot com, 2020/05/19