[tor-bugs] #24551 [Core Tor/Tor]: Tor crashes with: ../src/or/connection_edge.c:3979:17: runtime error: member access within null pointer of type 'const struct entry_connection_t'

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Dec 7 11:00:35 UTC 2017 

#24551: Tor crashes with: ../src/or/connection_edge.c:3979:17: runtime error:
member access within null pointer of type 'const struct entry_connection_t'
------------------------------+--------------------
     Reporter:  gk            |      Owner:  (none)
         Type:  defect        |     Status:  new
     Priority:  Medium        |  Milestone:
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:                |
------------------------------+--------------------
 I just recompiled tor picking up the latest changes on `master` and it now
 crashes on start-up in my Tor Browser:
 {{{
 ../src/or/connection_edge.c:3979:17: runtime error: member access within
 null pointer of type 'const struct entry_connection_t'
 ASAN:DEADLYSIGNAL
 =================================================================
 ==8351==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000100
 (pc 0x55f1524fb45d bp 0x7ffcbd3c61d0 sp 0x7ffcbd3c6170 T0)
 ==8351==The signal is caused by a READ memory access.
 ==8351==Hint: address points to the zero page.
     #0 0x55f1524fb45c in connection_edge_compatible_with_circuit
 ../src/or/connection_edge.c:3980
     #1 0x55f15245f4ca in circuit_stream_is_being_handled
 ../src/or/circuituse.c:1042
     #2 0x55f15245fb43 in circuit_remove_handled_ports
 ../src/or/circuituse.c:1002
     #3 0x55f15240ee35 in circuit_get_unhandled_ports
 ../src/or/circuitbuild.c:1760
     #4 0x55f15240ee35 in circuit_all_predicted_ports_handled
 ../src/or/circuitbuild.c:1776
     #5 0x55f15246adcf in needs_exit_circuits ../src/or/circuituse.c:1109
     #6 0x55f15246adcf in circuit_predict_and_launch_new
 ../src/or/circuituse.c:1231
     #7 0x55f15246adcf in circuit_build_needed_circs
 ../src/or/circuituse.c:1311
     #8 0x55f152247e47 in run_scheduled_events ../src/or/main.c:1516
     #9 0x55f152247e47 in second_elapsed_callback ../src/or/main.c:2283
     #10 0x7fa42dab09b9  (/usr/lib/x86_64-linux-
 gnu/libevent-2.1.so.6+0x229b9)
     #11 0x7fa42dab1536 in event_base_loop (/usr/lib/x86_64-linux-
 gnu/libevent-2.1.so.6+0x23536)
     #12 0x55f152249197 in run_main_loop_once ../src/or/main.c:2714
     #13 0x55f152249197 in run_main_loop_until_done ../src/or/main.c:2771
     #14 0x55f152249197 in do_main_loop ../src/or/main.c:2678
     #15 0x55f15224d6c4 in tor_run_main ../src/or/main.c:3920
     #16 0x55f15223b295 in tor_main ../src/or/tor_api.c:84
     #17 0x55f15223849b in main ../src/or/tor_main.c:22
     #18 0x7fa42b7f5560 in __libc_start_main (/lib/x86_64-linux-
 gnu/libc.so.6+0x20560)
     #19 0x55f15223af49 in _start
 (/home/thomas/Arbeit/Tor/tor/build/src/or/tor+0x69bf49)

 AddressSanitizer can not provide additional info.
 SUMMARY: AddressSanitizer: SEGV ../src/or/connection_edge.c:3980 in
 connection_edge_compatible_with_circuit
 ==8351==ABORTING
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24551>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list