[Pixman] Crash during stress-test

LE GARREC Vincent legarrec.vincent at gmail.com
Sun Nov 19 18:26:56 UTC 2017 

I made a clone on https://github.com/bansan85/pixman/tree/stress_test_file
I tried to make lots of small commits to make review easier.
I still have a crash. Please use the new file enclosed. The previous one is
not working anymore.
I don't used HAVE_GCC_VECTOR_EXTENSIONS but I tried to make the code
compatible.

To run the stress-test :
./stress-test -f rasterize_edges_8_min.crash

2017-11-17 12:31 GMT+01:00 Emil Velikov <emil.l.velikov at gmail.com>:

> Hi Vincent,
>
> On 15 November 2017 at 21:37, LE GARREC Vincent
> <legarrec.vincent at gmail.com> wrote:
> > Dear,
> >
> > I ran stress-test under fuzzing and I found a crash.
> >
> > I'm not really comfortable with pixman so I don't really know how to
> report
> > you the problem.
> >
> > Please find enclosed modifications I needed to apply to allow fuzzing
> with
> > afl.
> > I disabled HAVE_GCC_VECTOR_EXTENSIONS and adapt smallprng_rand_r to read
> > from buffer instead of random data based on seed.
> >
> > To make the stress-test crashes, run ./stress-test
> rasterize_edges_8.crash
> >
> > I hope it's not my patch that make pixman crashes.
> >
> > Please, tell me if you need further information or if I did something
> wrong.
> >
> I'm not that muhc of a pixman to provide you with feedback on the exact
> issue.
>
> Small question though:
> Have you considered adding a argument to the program which changes
> rand -> input file method?
>
> It will allow you to drop the HAVE_GCC_VECTOR_EXTENSIONS workarounds
> and upstream the changes.
> This way one will be able to do some extensive testing prior to
> rolling a potentially vulnerable pixman release to the masses.
>
> HTH
> Emil
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/pixman/attachments/20171119/52e48e07/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rasterize_edges_8_min.crash
Type: application/octet-stream
Size: 42 bytes
Desc: not available
URL: <https://lists.freedesktop.org/archives/pixman/attachments/20171119/52e48e07/attachment.obj>

More information about the Pixman mailing list