Menu

#381 Build fail (heap buffer overflow) when using libFuzzer (clang9.0)

other bug / no workaround
open
nobody
None
5
2019-11-07
2019-11-07
Shikhar Singh
No 
I am trying to use **libFuzzer** (https://llvm.org/docs/LibFuzzer.html) with Brl-cad (7.28.0). When building the source with address santinizer enabled, there seems to be a **heap-buffer overflow** in **strlen** used in **ERRORreport_with_symbol** (brlcad-7.28.0/src/other/stepcode/src/express/error.c). I am using clang 9.0.

Cmake command:
CFLAGS="-fsanitize=fuzzer-no-link,address" CXXFLAGS="-fsanitize=fuzzer-no-link,address" cmake ../.

Build Config:
CC = /usr/bin/clang
CXX = /usr/bin/clang++
CFLAGS = -fsanitize=fuzzer-no-link,address -std=c90 -D_POSIX_C_SOURCE=199009L
-D_XOPEN_SOURCE=3 -pipe -fno-strict-aliasing -fno-common
-fexceptions -m64 -g -ggdb3 -Qunused-arguments -fstack-protector-all
-fsanitize=address -fno-omit-frame-pointer -pedantic
-pedantic-errors -Wall -Wextra -Wundef -Wfloat-equal -Wshadow
-Wbad-function-cast -Wdeclaration-after-statement -Wc++-compat
-Winline -Wno-long-long -Wno-variadic-macros -Wdocumentation
-Wno-c11-extensions -Werror
CXXFLAGS = -fsanitize=fuzzer-no-link,address -std=c++98 -pipe
-fno-strict-aliasing -fno-common -fexceptions -ftemplate-depth-128
-m64 -g -ggdb3 -Qunused-arguments -fstack-protector-all
-fsanitize=address -fno-omit-frame-pointer -pedantic -Wall -Wextra
-Wundef -Wfloat-equal -Wshadow -Wbad-function-cast
-Wdeclaration-after-statement -Winline -Wno-long-long
-Wno-variadic-macros -Wdocumentation -Wno-c11-extensions -Werror
LDFLAGS = -m64 -g -ggdb3

I have attached the fail log.

1 Attachments
step_express_CONFIG_CONTROL_DESIGN.log

Discussion

Log in to post a comment.

MongoDB Logo MongoDB