Opened 5 years ago

Closed 4 years ago

#12419 closed defect (worksforme)

TBBs with ASan create alloc_dealloc_mismatch warnings

Reported by: gk Owned by: erinn
Priority: Medium Milestone:
Component: Applications/Tor bundles/installation Version:
Severity: Normal Keywords: tbb-security, tbb-hardening
Cc: Actual Points:
Parent ID: #10599 Points:
Reviewer: Sponsor:


TBBs with ASan based on ESR 24 still create fatal alloc_dealloc_mismatch warnings although it seems not so often/fast if compiling the bundle with GCC 4.9.0:

==2659==ERROR: AddressSanitizer: alloc-dealloc-mismatch (malloc vs operator delete) on 0x60800014a620
    #0 0x7eff150cd207 in operator delete(void*) (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/
    #1 0x7efefd4f5103 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #2 0x7efefd41515e (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #3 0x7efef95a36d0 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #4 0x7efefc83582c (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #5 0x7efefc76c8dc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #6 0x7efefc8386b1 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #7 0x7eff10ba7f58 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #8 0x7eff14e5fe99 in start_thread (/lib/x86_64-linux-gnu/
    #9 0x7eff137ae3fc in __clone (/lib/x86_64-linux-gnu/

0x60800014a620 is located 0 bytes inside of 96-byte region [0x60800014a620,0x60800014a680)
allocated by thread T50 (Image Scaler) here:
    #0 0x7eff150cc4cf in malloc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/
    #1 0x7eff0e54cc60 in moz_xmalloc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/

Thread T50 (Image Scaler) created by T0 here:
    #0 0x7eff1509b69a in __interceptor_pthread_create (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/
    #1 0x7eff10ba70ad (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/
    #2 0x7eff10bc20bf (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/

SUMMARY: AddressSanitizer: alloc-dealloc-mismatch ??:0 operator delete(void*)
==2659==HINT: if you don't care about these warnings you may set ASAN_OPTIONS=alloc_dealloc_mismatch=0

Child Tickets

Change History (5)

comment:1 Changed 5 years ago by gk

Summary: TBBs wirh ASan create alloc_dealloc_mismatch warningsTBBs with ASan create alloc_dealloc_mismatch warnings

The workaround in order to continue testing is still setting ASAN_OPTIONS to alloc_dealloc_mismatch=0.

comment:2 Changed 5 years ago by erinn

Keywords: needs-triage added

comment:3 Changed 5 years ago by gk

Keywords: needs-triage removed

comment:4 Changed 4 years ago by gk

Keywords: tbb-hardening added

comment:5 Changed 4 years ago by gk

Resolution: worksforme
Severity: Normal
Status: newclosed

That is no issue anymore with ESR 38 and GCC 5.2.0

Note: See TracTickets for help on using tickets.