| OLD | NEW |
|---|
| (Empty) |
| 1 ================================================================= | |
| 2 ==102004==ERROR: AddressSanitizer: heap-use-after-free on address 0x000000f259c0
at pc 0x0000009de9c1 bp 0x7ffdb340f360 sp 0x7ffdb340f358 | |
| 3 READ of size 1 at 0x000000f259c0 thread T0 | |
| 4 #0 0x9de9c0 in convert_to_8_asan(unsigned int, unsigned int) /tmp/skia/out/R
elease/../../src/codec/SkMasks.cpp:54:16 | |
| 5 #1 0x9dd67e in swizzle_mask24_to_n32_opaque(void*, unsigned char const*, int
, SkMasks*, unsigned int, unsigned int) /tmp/skia/out/Release/../../src/codec/Sk
MaskSwizzler.cpp:93:23 | |
| 6 #2 0x9d82d6 in SkBmpMaskCodec::decodeRows(SkImageInfo const&, void*, unsigne
d long, SkCodec::Options const&) /tmp/skia/out/Release/../../src/codec/SkBmpMask
Codec.cpp:103:9 | |
| 7 #3 0x9d805a in SkBmpMaskCodec::onGetPixels(SkImageInfo const&, void*, unsign
ed long, SkCodec::Options const&, unsigned int*, int*, int*) /tmp/skia/out/Relea
se/../../src/codec/SkBmpMaskCodec.cpp:53:16 | |
| 8 #4 0x9c1453 in SkCodec::getPixels(SkImageInfo const&, void*, unsigned long,
SkCodec::Options const*, unsigned int*, int*) /tmp/skia/out/Release/../../src/co
dec/SkCodec.cpp:204:27 | |
| 9 #5 0x7245fb in fuzz_img(SkData*) /tmp/skia/out/Release/../../fuzz/fuzz.cpp:1
19:13 | |
| 10 #6 0x724052 in main /tmp/skia/out/Release/../../fuzz/fuzz.cpp:53:30 | |
| 11 #7 0x7fda10ae6ec4 in __libc_start_main /tmp/tmp.Htw1L27e9P/csu/libc-start.c:
287 | |
| 12 #8 0x67bfcf in _start (/tmp/executables/skcodec/analyzer0/fuzz_asan_release+
0x67bfcf) | |
| 13 | |
| 14 0x000000f259c0 is located 32 bytes to the left of global variable 'MIN_SIZE' def
ined in '../../src/gpu/GrResourceProvider.cpp:102:31' (0xf259e0) of size 4 | |
| 15 0x000000f259c0 is located 20 bytes to the right of global variable 'kPattern' de
fined in '../../src/gpu/GrResourceProvider.cpp:69:27' (0xf259a0) of size 12 | |
| 16 SUMMARY: AddressSanitizer: heap-use-after-free /tmp/skia/out/Release/../../src/c
odec/SkMasks.cpp:54 convert_to_8(unsigned int, unsigned int) | |
| 17 Shadow bytes around the buggy address: | |
| 18 0x0000801dcae0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 19 0x0000801dcaf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 20 0x0000801dcb00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 21 0x0000801dcb10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 22 0x0000801dcb20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 23 =>0x0000801dcb30: 00 00 00 00 00 04 f9 f9[f9]f9 f9 f9 04 f9 f9 f9 | |
| 24 0x0000801dcb40: f9 f9 f9 f9 04 f9 f9 f9 f9 f9 f9 f9 00 00 00 00 | |
| 25 0x0000801dcb50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 26 0x0000801dcb60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 27 0x0000801dcb70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 28 0x0000801dcb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | |
| 29 Shadow byte legend (one shadow byte represents 8 application bytes): | |
| 30 Addressable: 00 | |
| 31 Partially addressable: 01 02 03 04 05 06 07 | |
| 32 Heap left redzone: fa | |
| 33 Heap right redzone: fb | |
| 34 Freed heap region: fd | |
| 35 Stack left redzone: f1 | |
| 36 Stack mid redzone: f2 | |
| 37 Stack right redzone: f3 | |
| 38 Stack partial redzone: f4 | |
| 39 Stack after return: f5 | |
| 40 Stack use after scope: f8 | |
| 41 Global redzone: f9 | |
| 42 Global init order: f6 | |
| 43 Poisoned by user: f7 | |
| 44 Container overflow: fc | |
| 45 Array cookie: ac | |
| 46 Intra object redzone: bb | |
| 47 ASan internal: fe | |
| 48 Left alloca redzone: ca | |
| 49 Right alloca redzone: cb | |
| 50 ==102004==ABORTING | |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1691893002:
Fuzzer now deduplicates on the analysis side instead of the download side (Closed)
Base URL: https://skia.googlesource.com/buildbot@metrics