(location_) != nullptr in src/handles.cc |
|||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4919712030392320 Fuzzer: mbarbella_js_mutation Job Type: linux_asan_d8_dbg Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: (location_) != nullptr in src/handles.cc Regressed: V8: r36371:36372 Minimized Testcase (0.37 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv94kR3FjG92FfdCmLd02j2-afS4nmCdueTdbgr3kikEw1Jvg7b4_Mtu9S923sFMKsT05g1y7f5w5HJpZB6OYRbT3t220jZ-A2m7upuOE5rbfkzJFB4aJyrMYuJraFboNE66Z8B_Bf4e25X8utnrOql5DTL82AQ function __f_54(expected, __f_69, __f_7) { Wasm.instantiateModuleFromAsm( __f_69.toString()); } function __f_17() { "use asm"; function __f_39(__v_21, __v_23) { __v_21 = __v_21|0; __v_23 = __v_23|0; var __v_22 = (__v_23 + 0)|16 var __v_25 = 3.0; var __v_25 = ~~__v_25; } function __f_18() { } return {__f_18: __f_18}; } __f_54(101,__f_17); ( { })(); Filer: mstarzinger See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
May 25 2016
ClusterFuzz has detected this issue as fixed in range 36502:36503. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4919712030392320 Fuzzer: mbarbella_js_mutation Job Type: linux_asan_d8_dbg Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: (location_) != nullptr in src/handles.cc Regressed: V8: r36371:36372 Fixed: V8: r36502:36503 Minimized Testcase (0.37 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv94kR3FjG92FfdCmLd02j2-afS4nmCdueTdbgr3kikEw1Jvg7b4_Mtu9S923sFMKsT05g1y7f5w5HJpZB6OYRbT3t220jZ-A2m7upuOE5rbfkzJFB4aJyrMYuJraFboNE66Z8B_Bf4e25X8utnrOql5DTL82AQ function __f_54(expected, __f_69, __f_7) { Wasm.instantiateModuleFromAsm( __f_69.toString()); } function __f_17() { "use asm"; function __f_39(__v_21, __v_23) { __v_21 = __v_21|0; __v_23 = __v_23|0; var __v_22 = (__v_23 + 0)|16 var __v_25 = 3.0; var __v_25 = ~~__v_25; } function __f_18() { } return {__f_18: __f_18}; } __f_54(101,__f_17); ( { })(); See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jun 13 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||
►
Sign in to add a comment |
|||
Comment 1 by mstarzinger@chromium.org
, May 20 2016Owner: titzer@chromium.org
Status: Assigned (was: Available)