New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 657465 link

Starred by 1 user

Issue metadata

Status: Verified
Owner:
Closed: Jan 2017
Cc:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Out-of-memory in gfx_png_image_fuzzer

Project Member Reported by ClusterFuzz, Oct 19 2016

Issue description

Project Member

Comment 1 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Cc: msrchandra@chromium.org mmoroz@chromium.org
Labels: Needs-triage
Unable to find the possible suspect using CL, Find it and Code Search.
Adding Devs who might be related in CL. Could some one please look into the issue and update.
Thank You.

Comment 3 by mmoroz@chromium.org, Dec 16 2016

Cc: -mmoroz@chromium.org
Owner: mmoroz@chromium.org
Another OOM with MSan. Let's hold on with this for some time, we are planning to change some limits to have less of false positives like this one.
Project Member

Comment 4 by ClusterFuzz, Jan 14 2017

ClusterFuzz has detected this issue as fixed in range 443289:443359.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5673625942491136

Fuzzer: libfuzzer_gfx_png_image_fuzzer
Job Type: libfuzzer_chrome_msan
Platform Id: linux

Crash Type: Out-of-memory (exceeds 3000 MB)
Crash Address: 
Crash State:
  gfx_png_image_fuzzer
  
Sanitizer: memory (MSAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=399437:399478
Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=443289:443359

Minimized Testcase (0.10 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95NGGOnpa0W5n4x66hT2nkwHiBZQ7v1KB0xJ6n95o4JAD32QsOy37mFgPQ7muqZi2_5qztz7X1nESCk8XMOns1bbEfsSi9ebr1M6L7fUpJcKwm9RzUO81GGXbISQJjcuU0iVNTwd96cBApvnoMTPg-gONQylQ?testcase_id=5673625942491136

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 5 by ClusterFuzz, Jan 14 2017

Labels: ClusterFuzz-Verified
Status: Verified (was: Untriaged)
ClusterFuzz testcase 5673625942491136 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment