| Scaling factor: 16.000000 |
| Mode: 0 |
| Decoding |
| ================================================================= |
| ==7260==ERROR: AddressSanitizer: requested allocation size 0x3fffffc0000 (0x3fffffc1000 after adjustments for alignment, red zones etc.) exceeds maximum supported size of 0x10000000000 (thread T0) |
| #0 0xaf0f63 in __interceptor_malloc /tmp/clang-build/src/compiler-rt/lib/asan/asan_malloc_linux.cc:98:3 |
| #1 0x2e4209f in dng_std_allocator<dng_camera_profile_info>::allocate(unsigned long) /mnt/fuzzing/skia-be/skia/third_party/externals/dng_sdk/source/dng_memory.h:560:34 |
| #2 0x2e406f1 in std::__1::allocator_traits<dng_std_allocator<dng_camera_profile_info> >::allocate(dng_std_allocator<dng_camera_profile_info>&, unsigned long) /usr/local/bin/../include/c++/v1/memory:1548:21 |
| #3 0x2e406f1 in std::__1::__split_buffer<dng_camera_profile_info, dng_std_allocator<dng_camera_profile_info>&>::__split_buffer(unsigned long, unsigned long, dng_std_allocator<dng_camera_profile_info>&) /usr/local/bin/../include/c++/v1/__split_buffer:311 |
| #4 0x2e39dc1 in std::__1::vector<dng_camera_profile_info, dng_std_allocator<dng_camera_profile_info> >::reserve(unsigned long) /usr/local/bin/../include/c++/v1/vector:1562:53 |
| #5 0x2e36ba7 in dng_shared::Parse_ifd0(dng_stream&, dng_exif&, unsigned int, unsigned int, unsigned int, unsigned int, unsigned long) /mnt/fuzzing/skia-be/skia/out/Debug/../../third_party/externals/dng_sdk/source/dng_shared.cpp:2545:25 |
| #6 0x2e326ab in dng_shared::ParseTag(dng_stream&, dng_exif&, unsigned int, bool, unsigned int, unsigned int, unsigned int, unsigned long, long) /mnt/fuzzing/skia-be/skia/out/Debug/../../third_party/externals/dng_sdk/source/dng_shared.cpp:1261:7 |
| #7 0x2d67b8b in dng_info::ParseTag(dng_host&, dng_stream&, dng_exif*, dng_shared*, dng_ifd*, unsigned int, unsigned int, unsigned int, unsigned int, unsigned long, long) /mnt/fuzzing/skia-be/skia/out/Debug/../../third_party/externals/dng_sdk/source/dng_info.cpp:164:32 |
| #8 0x2d687a9 in dng_info::ParseIFD(dng_host&, dng_stream&, dng_exif*, dng_shared*, dng_ifd*, unsigned long, long, unsigned int) /mnt/fuzzing/skia-be/skia/out/Debug/../../third_party/externals/dng_sdk/source/dng_info.cpp:590:3 |
| #9 0x2d6ec31 in dng_info::Parse(dng_host&, dng_stream&) /mnt/fuzzing/skia-be/skia/out/Debug/../../third_party/externals/dng_sdk/source/dng_info.cpp:1971:2 |
| #10 0x280befe in SkDngImage::readDng() /mnt/fuzzing/skia-be/skia/out/Debug/../../src/codec/SkRawCodec.cpp:580:20 |
| #11 0x280104b in SkDngImage::NewFromStream(SkRawStream*) /mnt/fuzzing/skia-be/skia/out/Debug/../../src/codec/SkRawCodec.cpp:445:53 |
| #12 0x27f2c28 in SkRawCodec::MakeFromStream(std::__1::unique_ptr<SkStream, std::__1::default_delete<SkStream> >, SkCodec::Result*) /mnt/fuzzing/skia-be/skia/out/Debug/../../src/codec/SkRawCodec.cpp:683:42 |
| #13 0x16d4ba8 in SkCodec::MakeFromStream(std::__1::unique_ptr<SkStream, std::__1::default_delete<SkStream> >, SkCodec::Result*, SkPngChunkReader*) /mnt/fuzzing/skia-be/skia/out/Debug/../../src/codec/SkCodec.cpp:109:16 |
| #14 0x16d53f3 in SkCodec::MakeFromData(sk_sp<SkData>, SkPngChunkReader*) /mnt/fuzzing/skia-be/skia/out/Debug/../../src/codec/SkCodec.cpp:126:12 |
| #15 0xb790aa in fuzz_img(sk_sp<SkData>, unsigned char, unsigned char) /mnt/fuzzing/skia-be/skia/out/Debug/../../fuzz/fuzz.cpp:361:36 |
| #16 0xb74f12 in fuzz_file(SkString, SkString) /mnt/fuzzing/skia-be/skia/out/Debug/../../fuzz/fuzz.cpp:164:9 |
| #17 0xb74611 in main /mnt/fuzzing/skia-be/skia/out/Debug/../../fuzz/fuzz.cpp:109:16 |
| #18 0x7f307166c2e0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202e0) |
| |
| ==7260==HINT: if you don't care about these errors you may set ASAN_OPTIONS=allocator_may_return_null=1 |
| SUMMARY: AddressSanitizer: allocation-size-too-big /tmp/clang-build/src/compiler-rt/lib/asan/asan_malloc_linux.cc:98:3 in __interceptor_malloc |
| ==7260==ABORTING |