Opened 5 years ago

Closed 4 years ago

#12419 closed defect (worksforme)

TBBs with ASan create alloc_dealloc_mismatch warnings

Reported by: gk Owned by: erinn
Priority: Medium Milestone:
Component: Applications/Tor bundles/installation Version:
Severity: Normal Keywords: tbb-security, tbb-hardening
Cc: Actual Points:
Parent ID: #10599 Points:
Reviewer: Sponsor:

Description

TBBs with ASan based on ESR 24 still create fatal alloc_dealloc_mismatch warnings although it seems not so often/fast if compiling the bundle with GCC 4.9.0:

=================================================================
==2659==ERROR: AddressSanitizer: alloc-dealloc-mismatch (malloc vs operator delete) on 0x60800014a620
    #0 0x7eff150cd207 in operator delete(void*) (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/libasan.so.1+0x58207)
    #1 0x7efefd4f5103 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0x102e6103)
    #2 0x7efefd41515e (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0x1020615e)
    #3 0x7efef95a36d0 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0xc3946d0)
    #4 0x7efefc83582c (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0xf62682c)
    #5 0x7efefc76c8dc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0xf55d8dc)
    #6 0x7efefc8386b1 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libxul.so+0xf6296b1)
    #7 0x7eff10ba7f58 (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libnspr4.so+0x144f58)
    #8 0x7eff14e5fe99 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x7e99)
    #9 0x7eff137ae3fc in __clone (/lib/x86_64-linux-gnu/libc.so.6+0xf43fc)

0x60800014a620 is located 0 bytes inside of 96-byte region [0x60800014a620,0x60800014a680)
allocated by thread T50 (Image Scaler) here:
    #0 0x7eff150cc4cf in malloc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/libasan.so.1+0x574cf)
    #1 0x7eff0e54cc60 in moz_xmalloc (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libmozalloc.so+0x1c60)

Thread T50 (Image Scaler) created by T0 here:
    #0 0x7eff1509b69a in __interceptor_pthread_create (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/TorBrowser/Tor/libasan.so.1+0x2669a)
    #1 0x7eff10ba70ad (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libnspr4.so+0x1440ad)
    #2 0x7eff10bc20bf (/home/firefox64/asan/ubsan/tor-browser_en-US/Browser/libnspr4.so+0x15f0bf)

SUMMARY: AddressSanitizer: alloc-dealloc-mismatch ??:0 operator delete(void*)
==2659==HINT: if you don't care about these warnings you may set ASAN_OPTIONS=alloc_dealloc_mismatch=0
==2659==ABORTING

Child Tickets

Change History (5)

comment:1 Changed 5 years ago by gk

Summary: TBBs wirh ASan create alloc_dealloc_mismatch warningsTBBs with ASan create alloc_dealloc_mismatch warnings

The workaround in order to continue testing is still setting ASAN_OPTIONS to alloc_dealloc_mismatch=0.

comment:2 Changed 5 years ago by erinn

Keywords: needs-triage added

comment:3 Changed 5 years ago by gk

Keywords: needs-triage removed

comment:4 Changed 4 years ago by gk

Keywords: tbb-hardening added

comment:5 Changed 4 years ago by gk

Resolution: worksforme
Severity: Normal
Status: newclosed

That is no issue anymore with ESR 38 and GCC 5.2.0

Note: See TracTickets for help on using tickets.