Suspected CLs:
=============
Git blame below is NOT necessarily who introduced the crash nor the owner for it. Please check the code before assigning to anyone.(No CL in the regression range changed the crashing files.)

Author: christian.plesner.hansen
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/43d26ecc3563a46f62a0224030667c8f8f3f6ceb
Time: Thu Jul 03 15:10:15 2008
The CL last changed line 4603 of file objects-inl.h, which is stack frame 0.

Author: hpayer
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/67f99ee1026f7832b477b956beb394485be372f7
Time: Mon Jan 11 14:32:48 2016
The CL last changed line 3249 of file mark-compact.cc, which is stack frame 1.

Author: mlippautz
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/187f86c589dc97fb1e794edf9d4c0e20af20389b
Time: Mon Jul 04 13:06:27 2016
The CL last changed line 3745 of file mark-compact.cc, which is stack frame 2.

Author: mlippautz
Project: chromium-v8
Changelist: https://chromium.googlesource.com/v8/v8.git/+/7d5969da3d2b1a9b08c6fc6517d69f8ca4aca94c
Time: Mon Jun 20 13:19:25 2016
The CL last changed line 3719 of file mark-compact.cc, which is stack frame 3.

Author: tzik
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/99de02ba952b0a69291f81c5b8ca14d81cc1f74f
Time: Fri Jul 01 05:54:12 2016
The CL last changed line 214 of file bind_internal.h, which is stack frame 4.

Author: tzik
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/27d1e313968955f1a120b65b31e316263365b1b3
Time: Tue Sep 13 05:28:59 2016
The CL last changed line 47 of file callback.h, which is stack frame 5.

Author: maruel@chromium.org
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/52a261f59b20e89f8c5936bce642362f8e367b57
Time: Tue Mar 03 15:01:12 2009
The CL last changed line 71 of file platform_thread_posix.cc, which is stack frame 6.

==============================
Suspected Project: chromium-v8
Suspected Component: Blink>JavaScript

ClusterFuzz has detected this issue as fixed in range 428348:428482.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4741802675666944

Fuzzer: inferno_twister
Job Type: linux_tsan_chrome_mp
Platform Id: linux

Crash Type: Data race READ 1
Crash Address: 0x7f7fdabad4fc
Crash State:
  v8::internal::LiveObjectIterator<
  v8::internal::MarkCompactCollector::Sweeper::RawSweep
  v8::internal::MarkCompactCollector::Sweeper::ParallelSweepPage
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=426786:426801
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_tsan_chrome_mp&range=428348:428482

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96EmPF1rGbg1eGEe1emevgwlINeBo5zAaW8hLnRnHuExK5wVOxLzpO_TRECZxmYVzZiOJ9wI-tqCgSvZnJjB5NGMJCaAA_HTULsF7jFmHbcFZTpp8qgCpJB5Kqc-S7J2R2YgwYnL1UCs2u50aRpdBRdk2nYXuORzJFQLvwucuDuS1NBf-Y?testcase_id=4741802675666944


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot