Crash in base::debug::DebugBreak |
||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=6480969831022592 Fuzzer: libfuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e900006ce1 Crash State: base::debug::DebugBreak net::FtpNetworkTransaction::GetRequestPathForFtpCommand net::FtpNetworkTransaction::DoCtrlWriteSIZE Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=433648:433747 Minimized Testcase (1.03 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94hLICcQxuIciiBkVLRcinu7LkHzPCde00S9aUKayVOzPNP9k-ZdhAat74HsyCFCTdr-1gWHxgeIJ0AkYVoVFap-Dqaztmu3n_yv7yHw6rzLjC9HrhVFV9WQOeKqdDOPHTSgiuYUXRBKNEPX9o6fRr2HO6eDA?testcase_id=6480969831022592 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Nov 29 2016
That fuzzer type has to be wrong. The detailed bug report correctly shows "net_url_request_ftp_fuzzer" is the binary that was executed.
,
Nov 29 2016
,
Nov 29 2016
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/2d3fc642169b3997c1cb7d2169e0c9c6c98c21e8 commit 2d3fc642169b3997c1cb7d2169e0c9c6c98c21e8 Author: mmenke <mmenke@chromium.org> Date: Tue Nov 29 18:58:53 2016 Fix yet another silly DCHECK in the FTP code. The code was allowing CRs or LFs in remote paths, but DCHECKing that commands including paths don't contain them. This CL makes the request fail if a remote path contains either character. BUG= 669407 Review-Url: https://codereview.chromium.org/2538773002 Cr-Commit-Position: refs/heads/master@{#435045} [modify] https://crrev.com/2d3fc642169b3997c1cb7d2169e0c9c6c98c21e8/net/ftp/ftp_network_transaction.cc [modify] https://crrev.com/2d3fc642169b3997c1cb7d2169e0c9c6c98c21e8/net/ftp/ftp_network_transaction_unittest.cc
,
Nov 30 2016
ClusterFuzz has detected this issue as fixed in range 435013:435078. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6480969831022592 Fuzzer: libfuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: UNKNOWN Crash Address: 0x03e900006ce1 Crash State: base::debug::DebugBreak net::FtpNetworkTransaction::GetRequestPathForFtpCommand net::FtpNetworkTransaction::DoCtrlWriteSIZE Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=433648:433747 Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=435013:435078 Minimized Testcase (1.03 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94hLICcQxuIciiBkVLRcinu7LkHzPCde00S9aUKayVOzPNP9k-ZdhAat74HsyCFCTdr-1gWHxgeIJ0AkYVoVFap-Dqaztmu3n_yv7yHw6rzLjC9HrhVFV9WQOeKqdDOPHTSgiuYUXRBKNEPX9o6fRr2HO6eDA?testcase_id=6480969831022592 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
||
►
Sign in to add a comment |
||
Comment 1 by msrchandra@chromium.org
, Nov 29 2016Components: Infra>Git
Labels: Test-Predator-Wrong-CLs
Owner: mmenke@chromium.org
Status: Assigned (was: Untriaged)