New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 659360 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Dec 2016
Cc:
qiankun....@intel.com
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: ----
Type: Bug



Sign in to add a comment

atGlobalLevel()

Project Member Reported by ClusterFuzz, Oct 25 2016 
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5672412097282048

Fuzzer: libfuzzer_angle_translator_fuzzer
Job Type: libfuzzer_chrome_asan_debug
Platform Id: linux

Crash Type: ASSERT
Crash Address: 
Crash State:
  atGlobalLevel()
  TSymbolTable::isVaryingInvariant
  void sh::GetVariableTraverser::setTypeSpecificInfo<sh::Varying>
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=420312:420423

Minimized Testcase (0.26 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95PR7LAep1aIN2VyaKRJDzfS8dVrhAbR5b-d64dxZvJHmCTpRF6-yaYN-52Shg8nznJSKV18h0RuaNvn9dCr3xjzc4O6D4BRO3ZlowpD3gCyK4Bv33wAHoRL0wYruixNyLdYDFcYgH6A0scsrPW2dLx3fwHaw?testcase_id=5672412097282048

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by aarya@google.com, Oct 26 2016

Labels: -Restrict-View-SecurityTeam Restrict-View-EditIssue Type-Bug
These were incorrectly filed as security bugs, removing security tags.

Comment 2 by aarya@google.com, Oct 26 2016

Labels: -Security_Impact-Beta -Security_Severity-High

Comment 3 by durga.behera@chromium.org, Oct 26 2016

Cc: qiankun....@intel.com
Suspected CLs:
===============
Git blame below is NOT necessarily who introduced the crash nor the owner for it. Please check the code before assigning to anyone.(No CL in the regression range changed the crashing files.)

Author: Qiankun Miao
Project: chromium-angle
Changelist: https://chromium.googlesource.com/angle/angle.git/+/f69682be3724f0490cb7842a4892b2082d9fdeb4
Time: Tue Aug 16 06:50:42 2016
The CL last changed line 500 of file SymbolTable.h, which is stack frame 4.

Author: Olli Etuaho
Project: chromium-angle
Changelist: https://chromium.googlesource.com/angle/angle.git/+/214c2d8e4dd65662e1f6c5821065716e13e82cd6
Time: Mon Apr 27 11:49:13 2015
The CL last changed line 544 of file util.cpp, which is stack frame 5.

Author: Zhenyao Mo
Project: chromium-angle
Changelist: https://chromium.googlesource.com/angle/angle.git/+/94ac7b786f2ae1e928ca872e58ca4399df96532a
Time: Thu Oct 16 01:22:08 2014
The CL last changed line 586 of file util.cpp, which is stack frame 6.

=====================
Suspected Project: chromium

Unable to find the suspect,cced qiankun.miao@ , if you could take a look into this if its related to your change.Feel free to re-assign to an appropriate dev if not related.
Project Member

Comment 4 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 5 by ClusterFuzz, Dec 22 2016

Status: WontFix (was: Untriaged)
ClusterFuzz testcase 5672412097282048 is flaky and no longer reproduces, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment