Project

General

Profile

Bug #1236

SIGTRAP in glib found during fuzzing

Added by Francis Deslauriers 5 months ago. Updated 5 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Start date:
02/17/2020
Due date:
% Done:

0%

Estimated time:

Description

I was fuzzing Babeltrace 2 by randomly mutating one of the channel file at each run and I encountered a crash very quickly. This may be a glib bug.
I attached the trace in a zip.

Running this command: babeltrace --verbose -o dummy input/1125/

1-17 22:05:33.065 26581 26581 I CLI print_cfg@babeltrace.c:682 Configuration:
  Debug mode: no
  Verbose mode: no
  Plugin paths:
    - /home/frdeso/.local/lib/babeltrace/plugins
    - /usr/local/lib/babeltrace/plugins
    - /home/frdeso/.local/lib/babeltrace/plugins
    - /usr/local/lib/babeltrace/plugins
  Source component instances:
    'source.ctf.fs':
      Name: source-ctf-fs
      Parameters:
        path: input/1125/
  Filter component instances:
    'filter.utils.muxer':
      Name: muxer
      Parameters:
        { }
  Sink component instances:
    'sink.utils.dummy':
      Name: dummy
      Parameters:
        { }
  Connections:
    source-ctf-fs.* -> muxer.*
    muxer.* -> dummy.*
01-17 22:05:33.065 26581 26581 I CLI load_dynamic_plugins@babeltrace.c:758 Loading dynamic plugins.
01-17 22:05:33.066 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.066 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.067 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.067 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.067 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.067 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.067 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.068 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.068 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.068 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.068 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.069 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.070 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.070 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.071 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.072 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.072 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.072 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.072 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.072 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="text", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.so" 
01-17 22:05:33.072 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.so" 
01-17 22:05:33.072 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="ctf", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.so" 
01-17 22:05:33.072 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="lttng-utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.so" 
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.073 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.074 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.074 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.074 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.074 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.074 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.075 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I PLUGIN init_python_plugin_provider@plugin.c:82 Cannot open `libbabeltrace-python-plugin-provider.so`: libbabeltrace-python-plugin-provider.so: cannot open shared object file: No such file or directory: continuing without Python plugin support.
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="text", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.so", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="text", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-text.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.so", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="ctf", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.so", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-utils.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="lttng-utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.so", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="ctf", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-ctf.so" 
01-17 22:05:33.076 26581 26581 I CLI add_to_loaded_plugins@babeltrace.c:733 Not using plugin: another one already exists with the same name: plugin-name="lttng-utils", plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.la", existing-plugin-path="/usr/local/lib/babeltrace/plugins/babeltrace-plugin-lttng-utils.so" 
01-17 22:05:33.076 26581 26581 I CLI load_static_plugins@babeltrace.c:808 Loading static plugins.
01-17 22:05:33.076 26581 26581 I CLI load_all_plugins@babeltrace.c:837 Loaded all plugins: count=4
01-17 22:05:33.076 26581 26581 I CLI main@babeltrace.c:2888 Executing command: cmd=0, command-name="convert" 
01-17 22:05:33.076 26581 26581 I CLI cmd_run@babeltrace.c:2595 Creating components.
01-17 22:05:33.114 26581 26581 I PLUGIN-CTF-METADATA-IR-VISITOR ctf_visitor_generate_ir_visit_node@visitor-generate-ir.c:5388 Visiting metadata's AST to generate CTF IR objects.
01-17 22:05:33.114 26581 26581 I PLUGIN-CTF-METADATA-IR-VISITOR visit_env@visitor-generate-ir.c:4630 Detected LTTng trace from `tracer_name` environment value: tracer-name="lttng-modules" 
01-17 22:05:33.151 26581 26581 W PLUGIN-CTF-FS-SRC-DS build_index_from_stream_file@data-stream-file.c:723 Invalid packet size reported in file: stream="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1", packet-offset=0, packet-size-bytes=2199023517696, file-size=2531328
01-17 22:05:33.151 26581 26581 W PLUGIN-CTF-FS-SRC add_ds_file_to_ds_file_group@fs.c:656 Failed to index CTF stream file '/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1'
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x18a71f0, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x17f18b0, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_3" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x17dfd10, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_0" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x16fd790, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_2" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_create_components_from_config_components@babeltrace.c:2429 Created and inserted component: comp-addr=0x16fe140, comp-name="source-ctf-fs" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x1853640, port-name="in0" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x17f4690, port-name="out" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_create_components_from_config_components@babeltrace.c:2429 Created and inserted component: comp-addr=0x17bf3f0, comp-name="muxer" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x1906e30, comp-name="dummy", port-addr=0x18754b0, port-name="in" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_create_components_from_config_components@babeltrace.c:2429 Created and inserted component: comp-addr=0x1906e30, comp-name="dummy" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run@babeltrace.c:2609 Connecting components.
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port@babeltrace.c:1872 Connecting upstream port: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x18a71f0, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1613 Connecting upstream port to the next available downstream port: upstream-port-addr=0x18a71f0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1", downstream-comp-name="muxer", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x18aaf60, port-name="in1" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1949 Skipping input port.
01-17 22:05:33.152 26581 26581 I CLI graph_ports_connected_listener@babeltrace.c:1991 Graph's component ports connected: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x18a71f0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=0x1853640, downstream-port-name="in0" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1796 Connected component ports: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x18a71f0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_1", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=(nil), downstream-port-name="in0", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port@babeltrace.c:1872 Connecting upstream port: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x17f18b0, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_3" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1613 Connecting upstream port to the next available downstream port: upstream-port-addr=0x17f18b0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_3", downstream-comp-name="muxer", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x194d720, port-name="in2" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1949 Skipping input port.
01-17 22:05:33.152 26581 26581 I CLI graph_ports_connected_listener@babeltrace.c:1991 Graph's component ports connected: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x17f18b0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_3", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=0x18aaf60, downstream-port-name="in1" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1796 Connected component ports: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x17f18b0, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_3", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=(nil), downstream-port-name="in1", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port@babeltrace.c:1872 Connecting upstream port: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x17dfd10, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_0" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1613 Connecting upstream port to the next available downstream port: upstream-port-addr=0x17dfd10, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_0", downstream-comp-name="muxer", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x18b5cb0, port-name="in3" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1949 Skipping input port.
01-17 22:05:33.152 26581 26581 I CLI graph_ports_connected_listener@babeltrace.c:1991 Graph's component ports connected: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x17dfd10, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_0", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=0x194d720, downstream-port-name="in2" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1796 Connected component ports: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x17dfd10, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_0", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=(nil), downstream-port-name="in2", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port@babeltrace.c:1872 Connecting upstream port: comp-addr=0x16fe140, comp-name="source-ctf-fs", port-addr=0x16fd790, port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_2" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1613 Connecting upstream port to the next available downstream port: upstream-port-addr=0x16fd790, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_2", downstream-comp-name="muxer", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1932 Port added to a graph's component: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x17b9610, port-name="in4" 
01-17 22:05:33.152 26581 26581 I CLI graph_port_added_listener@babeltrace.c:1949 Skipping input port.
01-17 22:05:33.152 26581 26581 I CLI graph_ports_connected_listener@babeltrace.c:1991 Graph's component ports connected: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x16fd790, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_2", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=0x18b5cb0, downstream-port-name="in3" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1796 Connected component ports: upstream-comp-addr=0x16fe140, upstream-comp-name="source-ctf-fs", upstream-port-addr=0x16fd790, upstream-port-name="/home/frdeso/projets/bt-fuzzing/input/1125/channel0_2", downstream-comp-addr=0x17bf3f0, downstream-comp-name="muxer", downstream-port-addr=(nil), downstream-port-name="in3", conn-arg="source-ctf-fs:muxer" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port@babeltrace.c:1872 Connecting upstream port: comp-addr=0x17bf3f0, comp-name="muxer", port-addr=0x17f4690, port-name="out" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1613 Connecting upstream port to the next available downstream port: upstream-port-addr=0x17f4690, upstream-port-name="out", downstream-comp-name="dummy", conn-arg="muxer:dummy" 
01-17 22:05:33.152 26581 26581 I CLI graph_ports_connected_listener@babeltrace.c:1991 Graph's component ports connected: upstream-comp-addr=0x17bf3f0, upstream-comp-name="muxer", upstream-port-addr=0x17f4690, upstream-port-name="out", downstream-comp-addr=0x1906e30, downstream-comp-name="dummy", downstream-port-addr=0x18754b0, downstream-port-name="in" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run_ctx_connect_upstream_port_to_downstream_component@babeltrace.c:1796 Connected component ports: upstream-comp-addr=0x17bf3f0, upstream-comp-name="muxer", upstream-port-addr=0x17f4690, upstream-port-name="out", downstream-comp-addr=0x1906e30, downstream-comp-name="dummy", downstream-port-addr=(nil), downstream-port-name="in", conn-arg="muxer:dummy" 
01-17 22:05:33.152 26581 26581 I CLI cmd_run@babeltrace.c:2623 Running the graph.

(process:26581): GLib-ERROR **: /build/glib2.0-prJhLS/glib2.0-2.48.2/./glib/gmem.c:165: failed to allocate 27128233984 bytes
zsh: trace trap (core dumped)  babeltrace --verbose -o dummy input/1125/

Here is the gdb backtrace of the crash running this command: gdb --args babeltrace -o dummy input/1125/

Program received signal SIGTRAP, Trace/breakpoint trap.
0x00007ffff7262a5b in g_logv () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
(gdb) bt
#0  0x00007ffff7262a5b in g_logv () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#1  0x00007ffff7262bcf in g_log () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#2  0x00007ffff7261801 in g_realloc () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007ffff722f2dd in ?? () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#4  0x00007ffff722fde8 in g_ptr_array_sized_new () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#5  0x00007ffff7b740c0 in bt_field_sequence_set_length (field=field@entry=0x640230, length_field=length_field@entry=0x75f200) at fields.c:504
#6  0x00007ffff6152f23 in btr_get_sequence_length_cb (type=<optimized out>, data=0x706ac0) at notif-iter.c:2459
#7  0x00007ffff6134510 in get_compound_field_type_length (field_type=0x8d4cf0, btr=0x70b1b0) at btr.c:245
#8  stack_push_with_len (btr=0x70b1b0, base_type=0x8d4cf0) at btr.c:298
#9  0x00007ffff6138fb0 in next_field_state (btr=0x70b1b0) at btr.c:1341
#10 handle_state (btr=btr@entry=0x70b1b0) at btr.c:1378
#11 0x00007ffff613a5cf in bt_btr_start (btr=0x70b1b0, type=type@entry=0x8d4020, buf=0x7ffff51e5000 "\300\037\374\301E\356\260\345\333I\343N\223\343T\006\340\032u\214", offset=4160, packet_offset=4160, sz=32768, status=0x7fffffffe074)
    at btr.c:1521
#12 0x00007ffff6151460 in read_dscope_begin_state (notit=notit@entry=0x706ac0, dscope_field_type=dscope_field_type@entry=0x8d4020, done_state=done_state@entry=STATE_EMIT_NOTIF_EVENT, 
    continue_state=continue_state@entry=STATE_DSCOPE_EVENT_PAYLOAD_CONTINUE, dscope_field=dscope_field@entry=0x706b28) at notif-iter.c:563
#13 0x00007ffff61555dd in read_event_payload_begin_state (notit=0x706ac0) at notif-iter.c:1553
#14 handle_state (notit=0x706ac0) at notif-iter.c:1675
#15 bt_notif_iter_get_next_notification (notit=0x706ac0, cc_prio_map=0x8493d0, notification=notification@entry=0x7fffffffe1d0) at notif-iter.c:3125
#16 0x00007ffff6124de4 in ctf_fs_ds_file_next (ds_file=<optimized out>) at data-stream-file.c:855
#17 0x00007ffff612668c in ctf_fs_iterator_next (iterator=<optimized out>) at fs.c:98
#18 0x00007ffff7b5a78f in ensure_queue_has_notifications (iterator=0x737000) at iterator.c:2131
#19 bt_notification_iterator_next (iterator=0x737000) at iterator.c:2261
#20 0x00007ffff6392786 in muxer_upstream_notif_iter_next (muxer_upstream_notif_iter=0x63b920) at muxer.c:457
#21 validate_muxer_upstream_notif_iter (muxer_upstream_notif_iter=0x63b920) at muxer.c:957
#22 validate_muxer_upstream_notif_iters (muxer_notif_iter=<optimized out>) at muxer.c:980
#23 muxer_notif_iter_do_next (muxer_notif_iter=<optimized out>, muxer_comp=<optimized out>) at muxer.c:1051
#24 muxer_notif_iter_next (priv_notif_iter=0x63f610) at muxer.c:1379
#25 0x00007ffff7b5a78f in ensure_queue_has_notifications (iterator=0x63f610) at iterator.c:2131
#26 bt_notification_iterator_next (iterator=0x63f610) at iterator.c:2261
#27 0x00007ffff638d8b3 in dummy_consume (component=<optimized out>) at dummy.c:124
#28 0x00007ffff7b5637f in bt_component_sink_consume (component=component@entry=0x75f490) at sink.c:87
#29 0x00007ffff7b50d18 in consume_graph_sink (sink=0x75f490) at graph.c:427
#30 consume_sink_node (node=0x834580, graph=<optimized out>) at graph.c:465
#31 0x00007ffff7b51854 in bt_graph_run (graph=0x640b50) at graph.c:622
#32 0x0000000000405d32 in cmd_run (cfg=0x62e110) at babeltrace.c:2627
#33 main (argc=<optimized out>, argv=<optimized out>) at babeltrace.c:2892

At frame 5, there is an gpointer allocation for 3391029248 bytes.

(gdb) frame 5
#5  0x00007ffff7b740c0 in bt_field_sequence_set_length (field=field@entry=0x640230, length_field=length_field@entry=0x75f200) at fields.c:504
504        sequence->elements = g_ptr_array_sized_new((size_t) sequence_length);
(gdb) p sequence_length 
$1 = 3391029248


Files

trace-1125.tar.gz (3.32 MB) trace-1125.tar.gz Jonathan Rajotte Julien, 02/17/2020 04:59 PM
trace-1261.tar.gz (3.32 MB) trace-1261.tar.gz Jonathan Rajotte Julien, 02/17/2020 04:59 PM

Also available in: Atom PDF