Data race in blink::ThreadHeap::detach |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4761867058937856 Fuzzer: inferno_layout_test_unmodified Job Type: linux_tsan_chrome_mp Platform Id: linux Crash Type: Data race WRITE 4 Crash Address: 0x7d380000da14 Crash State: blink::ThreadHeap::detach blink::ThreadState::detachCurrentThread blink::WebThreadSupportingGC::shutdown Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=398351:398496 Minimized Testcase (3.00 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94KrKfRwG5RnD-Obsc6LXTIP532pRJ-3FFGdXLhLf-jrb3dmI833W1J5tBQ9FcsL7LfCGDwV5ZEn5H3hiCAUEOeoO59R-sUjocXJNmAwD8ygNZdF_S4y1tPWrouI_dq9Nn_EdaoiryEEBLdp5pKQ5TzKuRonQ Filer: mummareddy See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Jun 9 2016
,
Jun 9 2016
Moving this nonessential bug to the next milestone. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jun 10 2016
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/32ab2d4c4cdca33398c7af1e05c058d5f10102ab commit 32ab2d4c4cdca33398c7af1e05c058d5f10102ab Author: keishi <keishi@chromium.org> Date: Fri Jun 10 06:47:50 2016 Fix data race in blink::ThreadHeap::detach BUG= 618504 Review-Url: https://codereview.chromium.org/2051053002 Cr-Commit-Position: refs/heads/master@{#399126} [modify] https://crrev.com/32ab2d4c4cdca33398c7af1e05c058d5f10102ab/third_party/WebKit/Source/platform/heap/Heap.cpp
,
Jun 10 2016
ClusterFuzz has detected this issue as fixed in range 399117:399141. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4761867058937856 Fuzzer: inferno_layout_test_unmodified Job Type: linux_tsan_chrome_mp Platform Id: linux Crash Type: Data race WRITE 4 Crash Address: 0x7d380000da14 Crash State: blink::ThreadHeap::detach blink::ThreadState::detachCurrentThread blink::WebThreadSupportingGC::shutdown Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=398351:398496 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=399117:399141 Minimized Testcase (3.00 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94KrKfRwG5RnD-Obsc6LXTIP532pRJ-3FFGdXLhLf-jrb3dmI833W1J5tBQ9FcsL7LfCGDwV5ZEn5H3hiCAUEOeoO59R-sUjocXJNmAwD8ygNZdF_S4y1tPWrouI_dq9Nn_EdaoiryEEBLdp5pKQ5TzKuRonQ See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jun 12 2016
,
Jun 15 2016
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/32ab2d4c4cdca33398c7af1e05c058d5f10102ab commit 32ab2d4c4cdca33398c7af1e05c058d5f10102ab Author: keishi <keishi@chromium.org> Date: Fri Jun 10 06:47:50 2016 Fix data race in blink::ThreadHeap::detach BUG= 618504 Review-Url: https://codereview.chromium.org/2051053002 Cr-Commit-Position: refs/heads/master@{#399126} [modify] https://crrev.com/32ab2d4c4cdca33398c7af1e05c058d5f10102ab/third_party/WebKit/Source/platform/heap/Heap.cpp
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by mummare...@chromium.org
, Jun 9 2016Owner: haraken@chromium.org
Status: Assigned (was: Available)