Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5435453106028544 Fuzzer: libfuzzer_neteq_rtp_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: WebRtcSpl_DotProductWithScale webrtc::Expand::AnalyzeSignal webrtc::Expand::Process Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_ubsan&range=432467:432520 Minimized Testcase (1.69 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94b0G6UZMstaxg0CxVXOiGvU3kAn1LQtGRXBUALfEBSBrjq0-Y8kCbb0j-AO6B2i5wkEzRqBL5h67-apRUh0KrVzDuFz-HYc6kpYkgWk2DDwZ6dyXeG9klJjTy-lj1ie8MzOjKsa4wusaoOYbdUyylTgc9kig?testcase_id=5435453106028544 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
The following revision refers to this bug: https://chromium.googlesource.com/external/webrtc.git/+/d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7 commit d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7 Author: henrik.lundin <henrik.lundin@webrtc.org> Date: Tue Mar 07 12:02:47 2017 Avoid overflow in WebRtcSpl_DotProductWithScale BUG= chromium:676935 Review-Url: https://codereview.webrtc.org/2717123004 Cr-Commit-Position: refs/heads/master@{#17091} [modify] https://crrev.com/d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7/webrtc/common_audio/BUILD.gn [rename] https://crrev.com/d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7/webrtc/common_audio/signal_processing/dot_product_with_scale.cc [add] https://crrev.com/d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7/webrtc/common_audio/signal_processing/dot_product_with_scale.h [modify] https://crrev.com/d461ffce2ac65ceaa6e6e4bb8d1abe2b0be87bd7/webrtc/common_audio/signal_processing/include/signal_processing_library.h
ClusterFuzz has detected this issue as fixed in range 455480:455513. Detailed report: https://clusterfuzz.com/testcase?key=5435453106028544 Fuzzer: libfuzzer_neteq_rtp_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: WebRtcSpl_DotProductWithScale webrtc::Expand::AnalyzeSignal webrtc::Expand::Process Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=432467:432520 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=455480:455513 Reproducer Testcase: https://clusterfuzz.com/download/AMIfv97lglHj3WMvX9cMPwNGXj8fza_6hjXXJEhyvsC4EeIqcGFdFVBhBSV_X4GUpXQ9TDKdexEQcp_Y075kkuRaxHBrSTot1nDBUfJXn0y26vjTGx4pfOMnHR7C1bhbc1lmDtWZ4Cx2q1xtMlUcIaIFIYnkMHNKyeMCivo1wcapzgNWXl5J6MVx2rLG3oF4haR_R_YsAtQ7fOWUmv04m-hVibFfzgnL_QJ0AgWqnbSwY4J7b8GObi1GF7u0OwJhfkbliOdLCvmEOGy7kQv8MMy6rgLnoZF30Gq3tM69dUHHGeu72RFDpWBnLl0fkLmyGkaSsVXVjrf5M8fBFRZBmMbTa0LloN5nY6TGoeW87wUaS3OeyszRq94?testcase_id=5435453106028544 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
ClusterFuzz testcase 5435453106028544 is verified as fixed, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Comment 1 Deleted