| OLD | NEW |
|---|
| (Empty) |
| 1 ================================================================= | |
| 2 ==9140==ERROR: AddressSanitizer: global-buffer-overflow on address 0x00000117762
8 at pc 0x000000a65431 bp 0x7ffd28194d30 sp 0x7ffd28194d28 | |
| 3 READ of size 1 at 0x000001177628 thread T0 | |
| 4 #0 0xa65430 in convert_to_8(unsigned int, unsigned int) /tmp/skia/out/Debug/
../../src/codec/SkMasks.cpp:54:16 | |
| 5 #1 0xa63dee in swizzle_mask24_to_n32_opaque(void*, unsigned char const*, int
, SkMasks*, unsigned int, unsigned int) /tmp/skia/out/Debug/../../src/codec/SkMa
skSwizzler.cpp:93:23 | |
| 6 #2 0xa5dfa6 in SkBmpMaskCodec::decodeRows(SkImageInfo const&, void*, unsigne
d long, SkCodec::Options const&) /tmp/skia/out/Debug/../../src/codec/SkBmpMaskCo
dec.cpp:103:9 | |
| 7 #3 0xa5dd2a in SkBmpMaskCodec::onGetPixels(SkImageInfo const&, void*, unsign
ed long, SkCodec::Options const&, unsigned int*, int*, int*) /tmp/skia/out/Debug
/../../src/codec/SkBmpMaskCodec.cpp:53:16 | |
| 8 #4 0xa43e9c in SkCodec::getPixels(SkImageInfo const&, void*, unsigned long,
SkCodec::Options const*, unsigned int*, int*) /tmp/skia/out/Debug/../../src/code
c/SkCodec.cpp:204:27 | |
| 9 #5 0x72c2dc in fuzz_img(SkData*) /tmp/skia/out/Debug/../../fuzz/fuzz.cpp:119
:13 | |
| 10 #6 0x72bd09 in main /tmp/skia/out/Debug/../../fuzz/fuzz.cpp:53:30 | |
| 11 #7 0x7f4ae3494ec4 in __libc_start_main /tmp/tmp.Htw1L27e9P/csu/libc-start.c:
287 | |
| 12 #8 0x68399f in _start (/tmp/executables/skcodec/analyzer0/fuzz_asan_debug+0x
68399f) | |
| 13 | |
| 14 0x000001177628 is located 24 bytes to the left of global variable '<string liter
al>' defined in '../../src/gpu/gl/GrGLGpu.cpp:305:17' (0x1177640) of size 16 | |
| 15 '<string literal>' is ascii string 'Disable(0x0B42)' | |
| 16 0x000001177628 is located 35 bytes to the right of global variable '<string lite
ral>' defined in '../../src/gpu/gl/GrGLGpu.cpp:305:17' (0x11775e0) of size 37 | |
| 17 '<string literal>' is ascii string '../../src/gpu/gl/GrGLGpu.cpp(305) : ' | |
| 18 SUMMARY: AddressSanitizer: global-buffer-overflow /tmp/skia/out/Debug/../../src/
codec/SkMasks.cpp:54 convert_to_8(unsigned int, unsigned int) | |
| 19 Shadow bytes around the buggy address: | |
| 20 0x000080226e70: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 21 0x000080226e80: 05 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9 | |
| 22 0x000080226e90: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 23 0x000080226ea0: 05 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9 | |
| 24 0x000080226eb0: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 25 =>0x000080226ec0: 05 f9 f9 f9 f9[f9]f9 f9 00 00 f9 f9 f9 f9 f9 f9 | |
| 26 0x000080226ed0: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 27 0x000080226ee0: 05 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9 | |
| 28 0x000080226ef0: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 29 0x000080226f00: 05 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9 | |
| 30 0x000080226f10: 00 00 00 00 00 00 00 01 f9 f9 f9 f9 00 00 00 00 | |
| 31 Shadow byte legend (one shadow byte represents 8 application bytes): | |
| 32 Addressable: 00 | |
| 33 Partially addressable: 01 02 03 04 05 06 07 | |
| 34 Heap left redzone: fa | |
| 35 Heap right redzone: fb | |
| 36 Freed heap region: fd | |
| 37 Stack left redzone: f1 | |
| 38 Stack mid redzone: f2 | |
| 39 Stack right redzone: f3 | |
| 40 Stack partial redzone: f4 | |
| 41 Stack after return: f5 | |
| 42 Stack use after scope: f8 | |
| 43 Global redzone: f9 | |
| 44 Global init order: f6 | |
| 45 Poisoned by user: f7 | |
| 46 Container overflow: fc | |
| 47 Array cookie: ac | |
| 48 Intra object redzone: bb | |
| 49 ASan internal: fe | |
| 50 Left alloca redzone: ca | |
| 51 Right alloca redzone: cb | |
| 52 ==9140==ABORTING | |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1691893002:
Fuzzer now deduplicates on the analysis side instead of the download side (Closed)
Base URL: https://skia.googlesource.com/buildbot@metrics