New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 612020 link

Starred by 1 user
Status: Verified
Owner:
och...@chromium.org
Closed: Jan 2017
Cc:
kcc@chromium.org
mmoroz@chromium.org
och...@chromium.org
aizatsky@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Floating-point-exception in opj_int_ceildiv

Project Member Reported by ClusterFuzz, May 15 2016 
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5518331997585408

Fuzzer: libfuzzer_pdf_jpx_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_pcrl
  opj_pi_next
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=383063:383080

Minimized Testcase (0.34 Kb): https://cluster-fuzz.appspot.com/download/AMIfv96BkjGt92pvsDP_YvsN35jf_zydUB_g7QK_dHDfbHd_u9rCzNimsY8cd3lLHlCankNHwhWTTkeAS-E6WLQkZnYlsBZ5EO00twX0uTHMKwupogACrwqnvosNxoYjDEmuRxrANj1Bk8FVAAmAD7cDgHuZnZi1ew

Filer: mmoroz

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by mmoroz@chromium.org, May 15 2016

Cc: mmoroz@chromium.org kcc@chromium.org och...@chromium.org aizatsky@chromium.org
Components: Internals>Plugins>PDF
Project Member

Comment 2 by ClusterFuzz, Jun 20 2016 

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4823957069103104

Fuzzer: libfuzzer_pdf_jpx_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_cprl
  opj_pi_next
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=383063:383080

Minimized Testcase (0.22 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97ReUDeLhbZMIK4qOV5IK2ulP3hdN808gxI57KWcXoedgnIu36XH8VuzD5piQepw8aj4pO0RnL9mvzZBCtXuLWQNvz70DYihsdzwpiZT4QCB02X1msbOPjbRqM054SWWqEJZ8h2G2cEbOU6RKSJq7AR6SJrUA?testcase_id=4823957069103104

Filer: mmoroz

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
Project Member

Comment 3 by ClusterFuzz, Jun 27 2016 

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5518331997585408

Fuzzer: libfuzzer_pdf_jpx_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_pcrl
  opj_pi_next
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=383063:383080

Minimized Testcase (0.34 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97YKKvZ4eZ3n04UmMEHbXoHDQdrUAIvAgmQSiBL25EmJ5_x5SIG4dbDH_ACRA2MgbmIcmj0lt5xqelLnX2TFCM48c5WegHHxBBzp3BX0ZnDE6jckUDSDP9E1YGhn1gMwfoPlTZtgIOmdC8aJh7rNwanvj6eqA?testcase_id=5518331997585408

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 4 by ClusterFuzz, Jul 31 2016 

ClusterFuzz has detected this issue as fixed in range 408608:408631.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4823957069103104

Fuzzer: libfuzzer_pdf_jpx_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_cprl
  opj_pi_next
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=395675:395769
Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan&range=408608:408631

Minimized Testcase (0.22 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97ReUDeLhbZMIK4qOV5IK2ulP3hdN808gxI57KWcXoedgnIu36XH8VuzD5piQepw8aj4pO0RnL9mvzZBCtXuLWQNvz70DYihsdzwpiZT4QCB02X1msbOPjbRqM054SWWqEJZ8h2G2cEbOU6RKSJq7AR6SJrUA?testcase_id=4823957069103104

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Comment 5 by dsinclair@chromium.org, Aug 2 2016

Owner: och...@chromium.org
Status: Fixed (was: Available)
Marking fixed as per #4. Setting owner to ochang@ as he's been looking into these.

Comment 6 by ajha@chromium.org, Oct 19 2016

Status: Assigned (was: Fixed)
CF is still complaining, hence re-opening and updating the same.
Project Member

Comment 7 by ClusterFuzz, Oct 19 2016

Labels: Stability-AFL
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5505428631060480

Fuzzer: afl_pdf_jpx_fuzzer
Job Type: afl_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_pcrl
  opj_pi_next
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=afl_chrome_asan&range=402185:402404

Minimized Testcase (0.29 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95TCkmih3jXu6kSJW1S-NT7sMaatBb8aEgZUxyfAXDkAeouVvs3X8oZLXOHF8EIj8xiEURqb8CljE2ypIRHIG3sapi6AGxnU6lfvowYEuBpCyPdMm_kcz8RqEzJDhmu7_LE4AocOCLnBHOcmuBn4J7Qjito6w?testcase_id=5505428631060480

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 9 by ClusterFuzz, Jan 18 2017 

ClusterFuzz has detected this issue as fixed in range 443963:443986.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5505428631060480

Fuzzer: afl_pdf_jpx_fuzzer
Job Type: afl_chrome_asan
Platform Id: linux

Crash Type: Floating-point-exception
Crash Address: 
Crash State:
  opj_int_ceildiv
  opj_pi_next_pcrl
  opj_pi_next
  
Sanitizer: address (ASAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=afl_chrome_asan&range=402185:402404
Fixed: https://cluster-fuzz.appspot.com/revisions?job=afl_chrome_asan&range=443963:443986

Minimized Testcase (0.29 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95TCkmih3jXu6kSJW1S-NT7sMaatBb8aEgZUxyfAXDkAeouVvs3X8oZLXOHF8EIj8xiEURqb8CljE2ypIRHIG3sapi6AGxnU6lfvowYEuBpCyPdMm_kcz8RqEzJDhmu7_LE4AocOCLnBHOcmuBn4J7Qjito6w?testcase_id=5505428631060480

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 10 by ClusterFuzz, Jan 18 2017

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)
ClusterFuzz testcase 5505428631060480 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment