From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <3D1jfYQ0bAFI6878Bu25-9B8xu992x.08805yECyBw87Dy7D.w86@M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com> Received: from mail-io1-xd47.google.com (mail-io1-xd47.google.com [IPv6:2607:f8b0:4864:20::d47]) by sourceware.org (Postfix) with ESMTPS id E93613940032 for ; Wed, 12 Jan 2022 22:37:03 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org E93613940032 Received: by mail-io1-xd47.google.com with SMTP id i7-20020a6bb807000000b00605570242e6so2620513iof.18 for ; Wed, 12 Jan 2022 14:37:03 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:date:reply-to:references:message-id :subject:from:to; bh=jUrns4v9CaTcPhC0Ephf9wJeZyxGH6HVMUjTFkyeUCQ=; b=i0Wz5SJILyI4pbZfsQbJyjKdeQOVApJjIHChXB3r8yXEZ0cTQ6L7p4ekgbXh36Wv/M RT7uOD25eTAhCdQuJo5koAfbt9SgkBFGFyA5qm5u/uxb1iAPQBpo7bYDBQ25XOCOZodH XAS2h1j/1Xr4Joka0toIU8Lmz4mAFYX3DtllTcI93wYa33lfMm92+j22/L17jcYORrKT N1hBGGPTQqquDxeL/UnQbbj0KdfDzV1H2Saj4Tmas/JlkvWWDQlEyG7QUjyGsGTsBUYg eTH8fiq00fOIiaTF6oimK3QgleDjeM52JfNWrRfKbiS/ffU9nUYz5mI1caOog4foZmXS 8fKA== X-Gm-Message-State: AOAM533uhCRuXhZh2XbYnlJTzVESdY6wa8ubHGS09gJge5PE2rRpLHga CbhXTC2oQUVODnOgBt/33wl2W/4o+bYIYyLq8nZffVXwZbQz X-Google-Smtp-Source: ABdhPJy72SdKvXC/rIVwt127gtvljr1va35QBbjCaRfDObzoXjF+1kM1/5GlSWEd/dAwqn0MQfDmgZH9jwCjvgRMblRsO7nHuV44 MIME-Version: 1.0 X-Received: by 2002:a05:6e02:1bc5:: with SMTP id x5mr988583ilv.255.1642027023383; Wed, 12 Jan 2022 14:37:03 -0800 (PST) Date: Wed, 12 Jan 2022 14:37:03 -0800 Reply-To: oss-fuzz@monorail-prod.appspotmail.com References: <0=71cc74a7ba1af446b7ed6b9a08b414d9=2c0356afc660f9c3dfa1ade2a69ce6ad=oss-fuzz@monorail-prod.appspotmail.com> X-Google-Appengine-App-Id: s~monorail-prod X-Google-Appengine-App-Id-Alias: monorail-prod Message-ID: <00000000000070c35505d56a355b@google.com> Subject: Issue 43505 in oss-fuzz: elfutils:fuzz-dwfl-core: Use-of-uninitialized-value in handle_file_note From: =?UTF-8?Q?evv=E2=80=A6_via_monorail?= To: elfutils-devel@sourceware.org X-Spam-Status: No, score=-1.1 required=5.0 tests=BAYES_00, DKIMWL_WL_HIGH, DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, HEADER_FROM_DIFFERENT_DOMAINS, HTML_MESSAGE, RCVD_IN_DNSWL_NONE, SPF_HELO_NONE, SPF_PASS, TXREP autolearn=ham autolearn_force=no version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on server2.sourceware.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: elfutils-devel@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Elfutils-devel mailing list List-Unsubscribe: , List-Archive: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Jan 2022 22:37:05 -0000 Comment #3 on issue 43505 by evv...@gmail.com: elfutils:fuzz-dwfl-core: Use-of-uninitialized-value in handle_file_note https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43505#c3 Looking at another issue that hasn't been reported by OSS-Fuzz yet: ``` Running: /mnt/scratch0/clusterfuzz/bot/inputs/fuzzer-testcases/crash-57876e6ee0a1504e6fa0b22336043846f283f4a2 ==742==WARNING: MemorySanitizer: use-of-uninitialized-value #0 0x6374a5 in dwfl_segment_report_module /src/elfutils/libdwfl/dwfl_segment_report_module.c:401:11 #1 0x537d0d in dwfl_core_file_report /src/elfutils/libdwfl/core-file.c:563:17 #2 0x528aa5 in LLVMFuzzerTestOneInput /src/fuzz-dwfl-core.c:52:6 #3 0x455243 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) cxa_noexception.cpp:0 #4 0x440e92 in fuzzer::RunOneTest(fuzzer::Fuzzer*, char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerDriver.cpp:324:6 #5 0x4466dc in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) cxa_noexception.cpp:0 #6 0x46f4a2 in main /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerMain.cpp:20:10 #7 0x7f5d0ddbc0b2 in __libc_start_main /build/glibc-eX1tMB/glibc-2.31/csu/libc-start.c:308:16 #8 0x41f60d in _start Uninitialized value was created by an allocation of 'ehdr' in the stack frame of function 'dwfl_segment_report_module' #0 0x62d610 in dwfl_segment_report_module /src/elfutils/libdwfl/dwfl_segment_report_module.c:301 ``` it seems MSan doesn't like unions that aren't initialized explicitly -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment.