================================================================= ==16331==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6120000b163f at pc 0x00000109e67f bp 0x7ffe5d40fbd0 sp 0x7ffe5d40fbc8 WRITE of size 1 at 0x6120000b163f thread T0 #0 0x109e67e in analyzer::tcp::ContentLine_Analyzer::DoDeliverOnce(int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:254 #1 0x109e9ce in analyzer::tcp::ContentLine_Analyzer::DoDeliverOnce(int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:197 #2 0x109e9ce in analyzer::tcp::ContentLine_Analyzer::DoDeliver(int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:200 #3 0x109caff in analyzer::tcp::ContentLine_Analyzer::DeliverStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:108 #4 0x13096ba in analyzer::Analyzer::NextStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:245 #5 0x130965e in analyzer::Analyzer::NextStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:239 #6 0x130e029 in analyzer::Analyzer::ForwardStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:331 #7 0x1096d9a in analyzer::tcp::TCP_Reassembler::Deliver(unsigned long, int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:455 #8 0x109bae0 in analyzer::tcp::TCP_Reassembler::DeliverBlock(unsigned long, int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:617 #9 0x109c4b6 in analyzer::tcp::TCP_Reassembler::BlockInserted(DataBlock*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:386 #10 0x877648 in Reassembler::NewBlock(double, unsigned long, unsigned long, unsigned char const*) BRO_BUILD/bro-src/src/Reassem.cc:123 #11 0x109af99 in analyzer::tcp::TCP_Reassembler::DataSent(double, unsigned long, int, unsigned char const*, analyzer::tcp::TCP_Flags, bool) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:491 #12 0x1095e1b in analyzer::tcp::TCP_Endpoint::DataSent(double, unsigned long, int, int, unsigned char const*, IP_Hdr const*, tcphdr const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Endpoint.cc:207 #13 0x108de6d in analyzer::tcp::TCP_Analyzer::DeliverData(double, unsigned char const*, int, int, IP_Hdr const*, tcphdr const*, analyzer::tcp::TCP_Endpoint*, unsigned long, int, analyzer::tcp::TCP_Flags) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP.cc:976 #14 0x108de6d in analyzer::tcp::TCP_Analyzer::DeliverPacket(int, unsigned char const*, bool, unsigned long, IP_Hdr const*, int) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP.cc:1383 #15 0x130936a in analyzer::Analyzer::NextPacket(int, unsigned char const*, bool, unsigned long, IP_Hdr const*, int) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:222 #16 0x68c4ff in Connection::NextPacket(double, int, IP_Hdr const*, int, int, unsigned char const*&, int&, int&, Packet const*) BRO_BUILD/bro-src/src/Conn.cc:273 #17 0x8f8a4b in NetSessions::DoNextPacket(double, Packet const*, IP_Hdr const*, EncapsulationStack const*) BRO_BUILD/bro-src/src/Sessions.cc:745 #18 0x8fd684 in NetSessions::NextPacket(double, Packet const*) BRO_BUILD/bro-src/src/Sessions.cc:208 #19 0x842910 in net_packet_dispatch(double, Packet const*, iosource::PktSrc*) BRO_BUILD/bro-src/src/Net.cc:273 #20 0x12488b3 in iosource::PktSrc::Process() BRO_BUILD/bro-src/src/iosource/PktSrc.cc:261 #21 0x843512 in net_run() BRO_BUILD/bro-src/src/Net.cc:321 #22 0x5bb7cb in main BRO_BUILD/bro-src/src/main.cc:1140 #23 0x7fcd2c5b22b0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202b0) #24 0x5d39b9 in _start (BRO_BUILD/install_bro/usr/local/bro/bin/bro+0x5d39b9) 0x6120000b163f is located 1 bytes to the left of 263-byte region [0x6120000b1640,0x6120000b1747) allocated by thread T0 here: #0 0x7fcd2fa83c40 in operator new[](unsigned long) GCC_BUILD/gcc-prefix/src/gcc/libsanitizer/asan/asan_new_delete.cc:82 #1 0x109cb57 in analyzer::tcp::ContentLine_Analyzer::DeliverStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:100 #2 0x13096ba in analyzer::Analyzer::NextStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:245 #3 0x130965e in analyzer::Analyzer::NextStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:239 #4 0x130e029 in analyzer::Analyzer::ForwardStream(int, unsigned char const*, bool) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:331 #5 0x1096d9a in analyzer::tcp::TCP_Reassembler::Deliver(unsigned long, int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:455 #6 0x109bae0 in analyzer::tcp::TCP_Reassembler::DeliverBlock(unsigned long, int, unsigned char const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:617 #7 0x109c4b6 in analyzer::tcp::TCP_Reassembler::BlockInserted(DataBlock*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:386 #8 0x877648 in Reassembler::NewBlock(double, unsigned long, unsigned long, unsigned char const*) BRO_BUILD/bro-src/src/Reassem.cc:123 #9 0x109af99 in analyzer::tcp::TCP_Reassembler::DataSent(double, unsigned long, int, unsigned char const*, analyzer::tcp::TCP_Flags, bool) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Reassembler.cc:491 #10 0x1095e1b in analyzer::tcp::TCP_Endpoint::DataSent(double, unsigned long, int, int, unsigned char const*, IP_Hdr const*, tcphdr const*) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP_Endpoint.cc:207 #11 0x108de6d in analyzer::tcp::TCP_Analyzer::DeliverData(double, unsigned char const*, int, int, IP_Hdr const*, tcphdr const*, analyzer::tcp::TCP_Endpoint*, unsigned long, int, analyzer::tcp::TCP_Flags) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP.cc:976 #12 0x108de6d in analyzer::tcp::TCP_Analyzer::DeliverPacket(int, unsigned char const*, bool, unsigned long, IP_Hdr const*, int) BRO_BUILD/bro-src/src/analyzer/protocol/tcp/TCP.cc:1383 #13 0x130936a in analyzer::Analyzer::NextPacket(int, unsigned char const*, bool, unsigned long, IP_Hdr const*, int) BRO_BUILD/bro-src/src/analyzer/Analyzer.cc:222 #14 0x68c4ff in Connection::NextPacket(double, int, IP_Hdr const*, int, int, unsigned char const*&, int&, int&, Packet const*) BRO_BUILD/bro-src/src/Conn.cc:273 #15 0x8f8a4b in NetSessions::DoNextPacket(double, Packet const*, IP_Hdr const*, EncapsulationStack const*) BRO_BUILD/bro-src/src/Sessions.cc:745 #16 0x8fd684 in NetSessions::NextPacket(double, Packet const*) BRO_BUILD/bro-src/src/Sessions.cc:208 #17 0x842910 in net_packet_dispatch(double, Packet const*, iosource::PktSrc*) BRO_BUILD/bro-src/src/Net.cc:273 #18 0x12488b3 in iosource::PktSrc::Process() BRO_BUILD/bro-src/src/iosource/PktSrc.cc:261 #19 0x843512 in net_run() BRO_BUILD/bro-src/src/Net.cc:321 #20 0x5bb7cb in main BRO_BUILD/bro-src/src/main.cc:1140 #21 0x7fcd2c5b22b0 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x202b0) SUMMARY: AddressSanitizer: heap-buffer-overflow BRO_BUILD/bro-src/src/analyzer/protocol/tcp/ContentLine.cc:254 in analyzer::tcp::ContentLine_Analyzer::DoDeliverOnce(int, unsigned char const*) Shadow bytes around the buggy address: 0x0c248000e270: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0c248000e280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fa 0x0c248000e290: fa fa fa fa fa fa fa fa 00 00 00 00 00 00 00 00 0x0c248000e2a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0c248000e2b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fa =>0x0c248000e2c0: fa fa fa fa fa fa fa[fa]00 00 00 00 00 00 00 00 0x0c248000e2d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0c248000e2e0: 00 00 00 00 00 00 00 00 07 fa fa fa fa fa fa fa 0x0c248000e2f0: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd 0x0c248000e300: fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c248000e310: fd fd fd fd fd fd fd fd fd fd fd fd fd fa fa fa Shadow byte legend (one shadow byte represents 8 application bytes): Addressable: 00 Partially addressable: 01 02 03 04 05 06 07 Heap left redzone: fa Freed heap region: fd Stack left redzone: f1 Stack mid redzone: f2 Stack right redzone: f3 Stack after return: f5 Stack use after scope: f8 Global redzone: f9 Global init order: f6 Poisoned by user: f7 Container overflow: fc Array cookie: ac Intra object redzone: bb ASan internal: fe Left alloca redzone: ca Right alloca redzone: cb ==16331==ABORTING [ERROR] Return code 134 is not 0, the bro process has not been started sucessfully.