Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5922236256223232 Fuzzer: foozzie_js_mutation Job Type: foozzie_ignition_staging Platform Id: linux Crash Type: V8 correctness failure Crash Address: Crash State: configs: x64,fullcode:x64,ignition_staging sources: 848 Sanitizer: address (ASAN) Regressed: V8: r42370:42371 Minimized Testcase (1.12 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95lJRRDzMbHjbIg4736xwUJA1TnzSTH68VQZ-Gyq8sEkMkzcvt-IpblcV1mRrBInLBXI-5OHxHKUPf0HifHS0awfoejFr4U6pHIskv7GWLgi3-rDikHDudHo7o2-9dRQF2bQdoekwv0TCPtz7lFsye3yVAGORlQ02v0JMwFXzyQoE8etE2p1JRaUAkIaVedx7b1LToNgehCpaEAkET6vJQjk5F3lT4RSfeD3ZSUBtoxU664NJkkATiuO95cQIgVF7uYHBby-mtSdXB01FwT7OylD27l3bQT9gOwTVL97lsFijK_6xBnYQj4gKRfXb7iD_I41pWz184WsTYQdnczJpBsR-IEcYwZIN2i51G0VA27u3B-FLs?testcase_id=5922236256223232 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
// Simple repro: function __f_0() { "use asm"; function __f_1() {} return {__f_1: __f_1}; } print(Object.keys(__f_0()));
ClusterFuzz has detected this issue as fixed in range 42445:42446. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5922236256223232 Fuzzer: foozzie_js_mutation Job Type: foozzie_ignition_staging Platform Id: linux Crash Type: V8 correctness failure Crash Address: Crash State: configs: x64,fullcode:x64,ignition_staging sources: 848 Sanitizer: address (ASAN) Regressed: V8: 42370:42371 Fixed: V8: 42445:42446 Minimized Testcase (1.12 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95lJRRDzMbHjbIg4736xwUJA1TnzSTH68VQZ-Gyq8sEkMkzcvt-IpblcV1mRrBInLBXI-5OHxHKUPf0HifHS0awfoejFr4U6pHIskv7GWLgi3-rDikHDudHo7o2-9dRQF2bQdoekwv0TCPtz7lFsye3yVAGORlQ02v0JMwFXzyQoE8etE2p1JRaUAkIaVedx7b1LToNgehCpaEAkET6vJQjk5F3lT4RSfeD3ZSUBtoxU664NJkkATiuO95cQIgVF7uYHBby-mtSdXB01FwT7OylD27l3bQT9gOwTVL97lsFijK_6xBnYQj4gKRfXb7iD_I41pWz184WsTYQdnczJpBsR-IEcYwZIN2i51G0VA27u3B-FLs?testcase_id=5922236256223232 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Comment 1 by machenb...@chromium.org
, Jan 18 2017// Simple repro: function __f_0() { "use asm"; function __f_1() {} return {__f_1: __f_1}; } print(Object.keys(__f_0()));