Issue metadata
Sign in to add a comment
|
Fatal error in v8::internal::compiler::EscapeAnalysisReducer::ReduceStateValueInput |
||||||||||||||||||||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6019088499605504 Fuzzer: mbarbella_js_mutation Job Type: windows_asan_d8 Platform Id: windows Crash Type: Fatal error Crash Address: Crash State: v8::internal::compiler::EscapeAnalysisReducer::ReduceStateValueInput v8::internal::compiler::EscapeAnalysisReducer::ReduceDeoptState v8::internal::compiler::EscapeAnalysisReducer::ReduceDeoptState Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_asan_d8&range=426818:426932 Minimized Testcase (0.10 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv95rKvUZMKO0IrC1pmXfBNTQ2KKU-6oK2zOO96nOXb7SDAn-9mVpNDaWjVLbv6JzirrB9rGGENRynT7U-NaCL_LzwGckQ6AXAnW2sxbkJewAoXAHSo09IEkwJguuwzuVENRMmY-oPO8RIayxbww5K2xX-Kuouw?testcase_id=6019088499605504 try { async function __f_9() { } async function __f_10() { await __f_9(); } } catch(e) {; } gc(); Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Nov 28 2016
|
|||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||
Comment 1 by hablich@chromium.org
, Oct 24 2016Status: Available (was: Untriaged)
Summary: Fatal error in v8::internal::compiler::EscapeAnalysisReducer::ReduceStateValueInput (was: Fatal error in )