Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5001237495021568 Fuzzer: inferno_canvas_wrecker Job Type: mac_asan_chrome Platform Id: mac Crash Type: CHECK failure Crash Address: Crash State: Marking::IsBlack(ObjectMarking::MarkBitFrom(object)) in mark-compact.cc Sanitizer: address (ASAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=440663:440664 Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95WdbxMjUUsjjg-gQEALDTvGG__hqDcNbM3kLOsAiV0Nvlb3hQeWB70xaz2IY3vYewIbT6S9_N9Ib1C8DexfAzD0Po9aK-505QzqJY1KMhT8i1h1ZZcs_tcCY-u2Y2P-gdA71-RmqBKtRduAst58eodPatEGu_kq_E2_-6iIucCzeigX_4LOhsPACfN4PDKIDaBynHZUPM5sijV0H0ztYwAkvdbhT3a_YkaerCYyh506qklXPFeLcL1Fl_kNGc7__Kzp18S9usAeUdmGfz14hprGrALBZbFXMkyZtbXoIycA4xQnefLVJkWYQVNBhpSgjO5PBXvF1rQ_TE-lKv5e4YEUxHukkdRuPsOPEzH5VOrKySYsU0?testcase_id=5001237495021568 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
[mac bug triage] Tentatively marking this v8 according to a quick codesearch.
ClusterFuzz has detected this issue as fixed in range 443650:443891. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5001237495021568 Fuzzer: inferno_canvas_wrecker Job Type: mac_asan_chrome Platform Id: mac Crash Type: CHECK failure Crash Address: Crash State: Marking::IsBlack(ObjectMarking::MarkBitFrom(object)) in mark-compact.cc Sanitizer: address (ASAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=440663:440664 Fixed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_chrome&range=443650:443891 Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95WdbxMjUUsjjg-gQEALDTvGG__hqDcNbM3kLOsAiV0Nvlb3hQeWB70xaz2IY3vYewIbT6S9_N9Ib1C8DexfAzD0Po9aK-505QzqJY1KMhT8i1h1ZZcs_tcCY-u2Y2P-gdA71-RmqBKtRduAst58eodPatEGu_kq_E2_-6iIucCzeigX_4LOhsPACfN4PDKIDaBynHZUPM5sijV0H0ztYwAkvdbhT3a_YkaerCYyh506qklXPFeLcL1Fl_kNGc7__Kzp18S9usAeUdmGfz14hprGrALBZbFXMkyZtbXoIycA4xQnefLVJkWYQVNBhpSgjO5PBXvF1rQ_TE-lKv5e4YEUxHukkdRuPsOPEzH5VOrKySYsU0?testcase_id=5001237495021568 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
ClusterFuzz testcase 5001237495021568 is verified as fixed, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Comment 1 by patricia...@chromium.org
, Jan 16 2017