New issue
Advanced search Search tips

Issue 659362 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Dec 2016
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: ----
Type: Bug



Sign in to add a comment

minML <= maxML

Project Member Reported by ClusterFuzz, Oct 25 2016 
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6202518838444032

Fuzzer: libfuzzer_icu_uregex_open_fuzzer
Job Type: libfuzzer_chrome_asan_debug
Platform Id: linux

Crash Type: ASSERT
Crash Address: 
Crash State:
  minML <= maxML
  icu_56::RegexCompile::handleCloseParen
  icu_56::RegexCompile::doParseActions
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=415616:415651

Minimized Testcase (0.03 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97fHM4MgmAVbdST0QBlcxMUc_CAYJOsD3OdqkdRiU23geEG2C0lxctuvcv3oPOsvLPf2rowodU7cRSq73clwUJM36Fh6YFPdsttL4VjoiTCPYiXHzmeF79w9_3m3y2JdezL8iyfzJsbwmvtEL4dCQA_qk0cEQ?testcase_id=6202518838444032

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Comment 1 by aarya@google.com, Oct 26 2016

Labels: -Restrict-View-SecurityTeam Restrict-View-EditIssue Type-Bug
These were incorrectly filed as security bugs, removing security tags.

Comment 2 by aarya@google.com, Oct 26 2016

Labels: -Security_Impact-Beta -Security_Severity-High

Comment 3 by durga.behera@chromium.org, Oct 26 2016

Labels: Test-Predator-Wrong
Owner: aizatsky@chromium.org
Status: Assigned (was: Untriaged)
This is impacting current Beta # 55.0.2883.21.

Suspected CLs:
==================
Git blame below is NOT necessarily who introduced the crash nor the owner for it. Please check the code before assigning to anyone.(No CL in the regression range changed the crashing files.)

Author: jshin@chromium.org
Project: chromium-icu
Changelist: https://chromium.googlesource.com/chromium/deps/icu.git/+/6f31ac30b9092fd02a8c97e5216cf53f3e4fae41
Time: Wed Mar 26 22:15:14 2014
The CL last changed line 2298 of file regexcmp.cpp, which is stack frame 4.

Author: jshin@chromium.org
Project: chromium-icu
Changelist: https://chromium.googlesource.com/chromium/deps/icu.git/+/6f31ac30b9092fd02a8c97e5216cf53f3e4fae41
Time: Wed Mar 26 22:15:14 2014
The CL last changed line 738 of file regexcmp.cpp, which is stack frame 5.

Author: jshin@chromium.org
Project: chromium-icu
Changelist: https://chromium.googlesource.com/chromium/deps/icu.git/+/6f31ac30b9092fd02a8c97e5216cf53f3e4fae41
Time: Wed Mar 26 22:15:14 2014
The CL last changed line 235 of file regexcmp.cpp, which is stack frame 6.

==================
Suspected Project: chromium

Unable to find the suspect for the crash, assigning to the Owner of the crashed file "icu_uregex_open_fuzzer.cc" to help further triage it.
Owner : https://cs.chromium.org/chromium/src/third_party/icu/fuzzers/OWNERS
aizatsky@ : Could you please take a look into this and help further investigation on it.

Comment 4 by durga.behera@chromium.org, Oct 26 2016 

 Issue 659493  has been merged into this issue.

Comment 5 by aizatsky@chromium.org, Oct 26 2016

Owner: ----
my change has nothing to do with it. I was changing the _tool_ that finds the bug. This has to be assigned to icu people.

Comment 6 by aarya@google.com, Oct 26 2016

Status: Untriaged (was: Assigned)

Comment 7 by durga.behera@chromium.org, Oct 28 2016

Labels: Needs-triage
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 9 by ClusterFuzz, Dec 22 2016

Status: WontFix (was: Untriaged)
ClusterFuzz testcase 6202518838444032 is flaky and no longer reproduces, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment