Direct-leak in net::Filter::InitGZipFilter |
||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4655535663611904 Fuzzer: net_url_request_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: Direct-leak Crash Address: Crash State: net::Filter::InitGZipFilter PrependNewFilter net::Filter::Factory Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv97lkbp_xTBf9xhQzO0SfDgxj8AuqPxgPK8TTJHOtQ7kvezLoH77T1EOzeOvZUu2PA6LBgoKuYrDRm5bkrDTrsue6-e4KKjZ3gVVQ-8VkO4v2UcmF65Nt7nKqXz0U1RBN7rm6olpN2AZCuhagEqn54Qxn6am2Q Filer: mmoroz See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
May 9 2016
,
May 9 2016
Yea, this one looked weird to me. Seems worth investigation. The filter code is in the middle of a major refactor, though, so may be best to wait until that's ironed out.
,
May 9 2016
,
May 24 2016
Looks like a long known bug: when unexpected encoding stacks over known encoding, all the filters in the chain are simply leaked. See: https://codereview.chromium.org/6674042/#msg6
,
May 24 2016
Matt: should we mark this as fixed? Bacek landed a CL on May 12 to use std::unique_ptr instead of raw pointers. https://chromium.googlesource.com/chromium/src/+/8f371550462da10bb82a3043aaa52e07ed452b9a
,
May 24 2016
SGTM. A bug should have been filed for that bug for us to mark this a duplicate of.
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
||||||
►
Sign in to add a comment |
||||||
Comment 1 by mmoroz@chromium.org
, May 9 2016