#24551 closed defect (fixed)

Tor crashes with: ../src/or/connection_edge.c:3979:17: runtime error: member access within null pointer of type 'const struct entry_connection_t'

Reported by: gk Owned by:
Priority: Medium Milestone:
Component: Core Tor/Tor Version:
Severity: Normal Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:


I just recompiled tor picking up the latest changes on master and it now crashes on start-up in my Tor Browser:

../src/or/connection_edge.c:3979:17: runtime error: member access within null pointer of type 'const struct entry_connection_t'
==8351==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000100 (pc 0x55f1524fb45d bp 0x7ffcbd3c61d0 sp 0x7ffcbd3c6170 T0)
==8351==The signal is caused by a READ memory access.
==8351==Hint: address points to the zero page.
    #0 0x55f1524fb45c in connection_edge_compatible_with_circuit ../src/or/connection_edge.c:3980
    #1 0x55f15245f4ca in circuit_stream_is_being_handled ../src/or/circuituse.c:1042
    #2 0x55f15245fb43 in circuit_remove_handled_ports ../src/or/circuituse.c:1002
    #3 0x55f15240ee35 in circuit_get_unhandled_ports ../src/or/circuitbuild.c:1760
    #4 0x55f15240ee35 in circuit_all_predicted_ports_handled ../src/or/circuitbuild.c:1776
    #5 0x55f15246adcf in needs_exit_circuits ../src/or/circuituse.c:1109
    #6 0x55f15246adcf in circuit_predict_and_launch_new ../src/or/circuituse.c:1231
    #7 0x55f15246adcf in circuit_build_needed_circs ../src/or/circuituse.c:1311
    #8 0x55f152247e47 in run_scheduled_events ../src/or/main.c:1516
    #9 0x55f152247e47 in second_elapsed_callback ../src/or/main.c:2283
    #10 0x7fa42dab09b9  (/usr/lib/x86_64-linux-gnu/libevent-2.1.so.6+0x229b9)
    #11 0x7fa42dab1536 in event_base_loop (/usr/lib/x86_64-linux-gnu/libevent-2.1.so.6+0x23536)
    #12 0x55f152249197 in run_main_loop_once ../src/or/main.c:2714
    #13 0x55f152249197 in run_main_loop_until_done ../src/or/main.c:2771
    #14 0x55f152249197 in do_main_loop ../src/or/main.c:2678
    #15 0x55f15224d6c4 in tor_run_main ../src/or/main.c:3920
    #16 0x55f15223b295 in tor_main ../src/or/tor_api.c:84
    #17 0x55f15223849b in main ../src/or/tor_main.c:22
    #18 0x7fa42b7f5560 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x20560)
    #19 0x55f15223af49 in _start (/home/thomas/Arbeit/Tor/tor/build/src/or/tor+0x69bf49)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV ../src/or/connection_edge.c:3980 in connection_edge_compatible_with_circuit

Child Tickets

Change History (2)

comment:1 Changed 19 months ago by nickm

Whoops. Looks like I accidentally committed some extra code as part of 046acf208bc53a3fa7ea9967707835188eb6651c

comment:2 Changed 19 months ago by nickm

Resolution: fixed
Status: newclosed

Reverted with c2c0f83c23986344c4f3fab033ea1126452f2897

Note: See TracTickets for help on using tickets.