Crash in base::debug::DebugBreak |
|||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4748640473317376 Fuzzer: libfuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e9000058d8 Crash State: base::debug::DebugBreak net::FtpNetworkTransaction::SendFtpCommand net::FtpNetworkTransaction::DoCtrlWriteQUIT Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=433648:433747 Minimized Testcase (1.23 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94siZ2A1hFuZyiIEEmaRVZIZPXBofP_eVJXPIn8lcJD6u7ey_jsXK3-bzfNyKH32uF0UTM1Wf0GZuKkh5xXpE-a88aobaI1Txo31EqUk5vvrulaK50YykD0M-NHKT1rM8Y1gl2EP6zcUFC13lAhuoAqWU284Q?testcase_id=4748640473317376 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Nov 28 2016
Find it did not provide any possible suspects, assigning to the concern owner from CL -- https://chromium.googlesource.com/chromium/src/+log/2e790171a1806ea15a81ef9bc2ab87ec93aabb92..c1cab294711bca021f9e21a06e9183ca88b8c62a?pretty=fuller Suspecting, https://chromium.googlesource.com/chromium/src/+/a7da0714bb1e387b30298047a9fa81c0ed2a2d13 @mmenke -- Could you please look into the issue, kindly re-assign if this is not related to your change. Thank You.
,
Nov 28 2016
,
Nov 28 2016
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/d94cd17eb70ca6099f9eeeaf307962624534884b commit d94cd17eb70ca6099f9eeeaf307962624534884b Author: mmenke <mmenke@chromium.org> Date: Mon Nov 28 21:50:32 2016 Fix hitting a DCHECK in FtpNetworkTransaction on extra responses. The DCHECK was mostly benign, though Chrome would close the socket without waiting for a response to its QUIT messages, which has unclear consequences. BUG= 668759 Review-Url: https://codereview.chromium.org/2532873003 Cr-Commit-Position: refs/heads/master@{#434727} [modify] https://crrev.com/d94cd17eb70ca6099f9eeeaf307962624534884b/net/ftp/ftp_network_transaction.cc [modify] https://crrev.com/d94cd17eb70ca6099f9eeeaf307962624534884b/net/ftp/ftp_network_transaction_unittest.cc
,
Nov 29 2016
ClusterFuzz has detected this issue as fixed in range 434721:434825. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4748640473317376 Fuzzer: libfuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e9000058d8 Crash State: base::debug::DebugBreak net::FtpNetworkTransaction::SendFtpCommand net::FtpNetworkTransaction::DoCtrlWriteQUIT Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=433648:433747 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=434721:434825 Minimized Testcase (1.23 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94siZ2A1hFuZyiIEEmaRVZIZPXBofP_eVJXPIn8lcJD6u7ey_jsXK3-bzfNyKH32uF0UTM1Wf0GZuKkh5xXpE-a88aobaI1Txo31EqUk5vvrulaK50YykD0M-NHKT1rM8Y1gl2EP6zcUFC13lAhuoAqWU284Q?testcase_id=4748640473317376 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||
►
Sign in to add a comment |
|||
Comment 1 by ajha@chromium.org
, Nov 27 2016