Crash in webrtc::RedPacket::CreateHeader |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4823365087133696 Fuzzer: libfuzzer_producer_fec_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e900004a8f Crash State: webrtc::RedPacket::CreateHeader webrtc::ProducerFec::BuildRedPacket webrtc::FuzzOneInput Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=411293:411407 Minimized Testcase (0.02 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97vWVrx8lgVRdZGHqivauGQQC5CSEnxiueR4RSfXTuT9nHOIQrNvZplA8b8nxNHHxT9amAzDs1C0qJLlcJw1kFI24j73gi6PMKkUTFyvjUMW7kNk3Zygnh9SXzrsV5OWb2Bt-1gDBwUpDAVrA5y4T6TmDU7WQ?testcase_id=4823365087133696 Issue manually filed by: mmoroz See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Aug 31 2016
I'll have a look.
,
Sep 1 2016
The following revision refers to this bug: https://chromium.googlesource.com/external/webrtc.git/+/624c33578f41dc6d4d0415bd91572e461c59014b commit 624c33578f41dc6d4d0415bd91572e461c59014b Author: brandtr <brandtr@webrtc.org> Date: Thu Sep 01 12:01:56 2016 Fix off-by-one error in DCHECK in ProducerFec. BUG= chromium:642743 Review-Url: https://codereview.webrtc.org/2294243005 Cr-Commit-Position: refs/heads/master@{#14018} [modify] https://crrev.com/624c33578f41dc6d4d0415bd91572e461c59014b/webrtc/modules/rtp_rtcp/source/producer_fec.cc [modify] https://crrev.com/624c33578f41dc6d4d0415bd91572e461c59014b/webrtc/modules/rtp_rtcp/source/producer_fec_unittest.cc
,
Sep 1 2016
,
Sep 3 2016
ClusterFuzz has detected this issue as fixed in range 416193:416227. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4823365087133696 Fuzzer: libfuzzer_producer_fec_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e900004a8f Crash State: webrtc::RedPacket::CreateHeader webrtc::ProducerFec::BuildRedPacket webrtc::FuzzOneInput Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=411293:411407 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=416193:416227 Minimized Testcase (0.02 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97vWVrx8lgVRdZGHqivauGQQC5CSEnxiueR4RSfXTuT9nHOIQrNvZplA8b8nxNHHxT9amAzDs1C0qJLlcJw1kFI24j73gi6PMKkUTFyvjUMW7kNk3Zygnh9SXzrsV5OWb2Bt-1gDBwUpDAVrA5y4T6TmDU7WQ?testcase_id=4823365087133696 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Sep 5 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by mmoroz@chromium.org
, Aug 31 2016Components: Blink>WebRTC
Owner: brandtr@chromium.org