[FUZZIT] Crash at fuzzing target gwion
fuzzit-dev opened this issue · comments
fuzzit-dev commented
A new crash was discovered for fuzzing target gwion.
Here is a snippet of the log:
9 NEW cov: 3792 ft: 9509 corp: 234/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 269/269 MS: 5 ChangeBinInt-ShuffleBytes-ChangeBinInt-ShuffleBytes-CrossOver-
FUZZER: #280 NEW cov: 3793 ft: 9514 corp: 235/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 125/269 MS: 1 PersAutoDict- DE: "\x01\x00\x00\x00\x00\x00\x00\x00"-
FUZZER: #282 NEW cov: 3795 ft: 9521 corp: 236/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 269/269 MS: 2 CMP-CrossOver- DE: "\x12\x00\x00\x00"-
FUZZER: #284 NEW cov: 3795 ft: 9522 corp: 237/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 134/269 MS: 2 ChangeBinInt-CopyPart-
FUZZER: #285 NEW cov: 3795 ft: 9523 corp: 238/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 238/269 MS: 1 InsertRepeatedBytes-
FUZZER: #288 NEW cov: 3795 ft: 9525 corp: 239/20Kb lim: 269 exec/s: 0 rss: 29Mb L: 125/269 MS: 3 ShuffleBytes-ChangeByte-ShuffleBytes-
FUZZER: #297 NEW cov: 3795 ft: 9527 corp: 240/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 109/269 MS: 4 ShuffleBytes-ChangeByte-ChangeBit-InsertRepeatedBytes-
FUZZER: #300 NEW cov: 3795 ft: 9529 corp: 241/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 205/269 MS: 3 CopyPart-ChangeASCIIInt-CrossOver-
FUZZER: #301 NEW cov: 3795 ft: 9530 corp: 242/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 94/269 MS: 1 ChangeByte-
FUZZER: #303 NEW cov: 3795 ft: 9531 corp: 243/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 123/269 MS: 2 PersAutoDict-CopyPart- DE: "\x01\x00\x00\x00\x00\x00\x00\x00"-
FUZZER: #314 NEW cov: 3795 ft: 9532 corp: 244/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 213/269 MS: 1 PersAutoDict- DE: "\x12\x00\x00\x00"-
FUZZER: #316 NEW cov: 3795 ft: 9538 corp: 245/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 152/269 MS: 2 PersAutoDict-InsertRepeatedBytes- DE: "\x01\x00\x00\x00\x00\x00\x00\x00"-
FUZZER: #319 NEW cov: 3796 ft: 9539 corp: 246/21Kb lim: 269 exec/s: 0 rss: 29Mb L: 104/269 MS: 3 CopyPart-ShuffleBytes-ChangeBit-
FUZZER: #340 NEW cov: 3796 ft: 9540 corp: 247/22Kb lim: 269 exec/s: 0 rss: 29Mb L: 137/269 MS: 1 CopyPart-
FUZZER: UndefinedBehaviorSanitizer:DEADLYSIGNAL
FUZZER: ==29==ERROR: UndefinedBehaviorSanitizer: BUS on unknown address 0x000000000000 (pc 0x0000005012d4 bp 0x7fffd6e6d570 sp 0xe0007fffd6e6d510 T29)
FUZZER: #0 0x5012d3 (/app/fuzzer+0x5012d3)
FUZZER: #1 0x500aa3 (/app/fuzzer+0x500aa3)
FUZZER: #2 0x4c05e0 (/app/fuzzer+0x4c05e0)
FUZZER: #3 0x4ece99 (/app/fuzzer+0x4ece99)
FUZZER: #4 0x4eb5d1 (/app/fuzzer+0x4eb5d1)
FUZZER: #5 0x4eb878 (/app/fuzzer+0x4eb878)
FUZZER: #6 0x4f0e79 (/app/fuzzer+0x4f0e79)
FUZZER: #7 0x4f31e6 (/app/fuzzer+0x4f31e6)
FUZZER: #8 0x4ef8ca (/app/fuzzer+0x4ef8ca)
FUZZER: #9 0x4f179b (/app/fuzzer+0x4f179b)
FUZZER: #10 0x4f266f (/app/fuzzer+0x4f266f)
FUZZER: #11 0x4f2c20 (/app/fuzzer+0x4f2c20)
FUZZER: #12 0x4ec216 (/app/fuzzer+0x4ec216)
FUZZER: #13 0x4f2d86 (/app/fuzzer+0x4f2d86)
FUZZER: #14 0x4ebce4 (/app/fuzzer+0x4ebce4)
FUZZER: #15 0x4f306c (/app/fuzzer+0x4f306c)
FUZZER: #16 0x4d7f0c (/app/fuzzer+0x4d7f0c)
FUZZER: #17 0x4f0efe (/app/fuzzer+0x4f0efe)
FUZZER: #18 0x4f31e6 (/app/fuzzer+0x4f31e6)
FUZZER: #19 0x4ef8ca (/app/fuzzer+0x4ef8ca)
FUZZER: #20 0x4f179b (/app/fuzzer+0x4f179b)
FUZZER: #21 0x4f280f (/app/fuzzer+0x4f280f)
FUZZER: #22 0x4f3161 (/app/fuzzer+0x4f3161)
FUZZER: #23 0x4be48c (/app/fuzzer+0x4be48c)
FUZZER: #24 0x4b6fb1 (/app/fuzzer+0x4b6fb1)
FUZZER: #25 0x4b314a (/app/fuzzer+0x4b314a)
FUZZER: #26 0x4b337e (/app/fuzzer+0x4b337e)
FUZZER: #27 0x4b1a05 (/app/fuzzer+0x4b1a05)
FUZZER: #28 0x442f91 (/app/fuzzer+0x442f91)
FUZZER: #29 0x4427d5 (/app/fuzzer+0x4427d5)
FUZZER: #30 0x444a77 (/app/fuzzer+0x444a77)
FUZZER: #31 0x445795 (/app/fuzzer+0x445795)
FUZZER: #32 0x433558 (/app/fuzzer+0x433558)
FUZZER: #33 0x45c9c2 (/app/fuzzer+0x45c9c2)
FUZZER: #34 0x7f5292bb92e0 (/lib/x86_64-linux-gnu/libc.so.6+0x202e0)
FUZZER: #35 0x406e08 (/app/fuzzer+0x406e08)
FUZZER:
FUZZER: UndefinedBehaviorSanitizer can not provide additional info.
FUZZER: ==29==ABORTING
FUZZER: MS: 1 ChangeBinInt-; base unit: 37d84c8a8a4caaa4c6ff10de85421b90b62e40e2
FUZZER: 0x63,0x6c,0x61,0x73,0x73,0x3c,0x7e,0x45,0x7e,0x3e,0x43,0x7b,0x66,0x75,0x6e,0x20,0x76,0x6f,0x69,0x64,0x20,0x74,0x28,0x29,0x7b,0xa,0x20,0x20,0x20,0x20,0x3c,0x7e,0x41,0x7e,0x3e,0x43,0x20,0x63,0x3b,0xa,0x20,0x20,0x7d,0xa,0x7d,0xa,0xa,0x3c,0x7e,0x69,0x6e,0x74,0x7e,0x3e,0x43,0x20,0x63,0x3b,0xa,
FUZZER: class<~E~>C{fun void t(){\x0a <~A~>C c;\x0a }\x0a}\x0a\x0a<~int~>C c;\x0a
FUZZER: artifact_prefix='./'; Test unit written to ./artifact
FUZZER: Base64: Y2xhc3M8fkV+PkN7ZnVuIHZvaWQgdCgpewogICAgPH5Bfj5DIGM7CiAgfQp9Cgo8fmludH4+QyBjOwo=
FUZZER: stat::number_of_executed_units: 341
FUZZER: stat::average_exec_per_sec: 0
FUZZER: stat::new_units_added: 35
FUZZER: stat::slowest_unit_time_sec: 0
FUZZER: stat::peak_rss_mb: 29
2020/05/24 20:23:33 process finished with error = exit status 1
2020/05/24 20:23:33 Exit Status: 1
2020/05/24 20:23:33 uploading crash...
More details can be found here
Cheers,
Fuzzit Bot