New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 686494 link

Starred by 4 users

Issue metadata

Status: Verified
Owner:
Last visit > 30 days ago
Closed: Feb 2017
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

!ScriptForbiddenScope::isScriptForbidden() in V8PerIsolateData.cpp

Project Member Reported by ClusterFuzz, Jan 29 2017

Issue description

Comment 1 by tkent@chromium.org, Jan 30 2017

Components: Blink>Bindings
Cc: msrchandra@chromium.org
Labels: Test-Predator-Wrong
Owner: mlippautz@chromium.org
Status: Assigned (was: Untriaged)
Predator and CL did not find any possible suspect.
Using Code Search for the file, "V8PerIsolateData.cpp" assigning to the concern owner.

Suspecting Commit#
https://chromium.googlesource.com/chromium/src/+/124f15acfc2ed99a2e163191e6b24ed5dedb103a

@mlippautz -- Could you please look into the issue, kindly re-assign if this is not related to your changes.
Thank You.
Owner: ----
Status: Untriaged (was: Assigned)
Not caused by my CL.
Owner: a.obzhirov@samsung.com
a.obzhirov@, Can you please look into this? Seems like we still need to merge this fix (https://bugs.chromium.org/p/chromium/issues/detail?id=676004#c4) to any other branch? Since CF has reported this crash after the above fix has been landed. 

Thank you!
Project Member

Comment 5 by ClusterFuzz, Feb 3 2017

ClusterFuzz has detected this issue as fixed in range 447544:447726.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5723265856438272

Fuzzer: inferno_twister_custom_bundle
Job Type: linux_ubsan_vptr_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  !ScriptForbiddenScope::isScriptForbidden() in V8PerIsolateData.cpp
  blink::beforeCallEnteredCallback
  v8::Function::Call
  
Sanitizer: undefined (UBSAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_vptr_content_shell_drt&range=443945:443963
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_vptr_content_shell_drt&range=447544:447726

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96WkfPR3KpbNw9sZprQP6WFP8VT9o5Q91hnD6Q6YfHIFuZ39EsBhRNE_ZvLTOv4b_U50sasaNFiAffLDM3nP-vaElE0TyDFaB3GLYKg6_8FG34cMrvOk2wqqxvW5SJklOL_NfLEEHCIEJk45WZdXRiriLMqS2Gr8FRfm5uS75onNZYec2pEbzfXmwdRmOKttdeE3uDHk0VVYHuClG5dsk2edv7iSTdL00UNbIcnpuhHBW5O6AzOjG8xBeQXhNQ4b9cIiOoS8abSxU3ULTFONQeAwAKoJD6WlLEJzI73lTe1WPtHj0GescSwQbScVbi55n3U2_VFuHw8oqCZGph0a1-9dCLoFXl2wGu44mnwPAoasIiG6CA?testcase_id=5723265856438272


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 6 by ClusterFuzz, Feb 3 2017

Labels: ClusterFuzz-Verified
Status: Verified (was: Untriaged)
ClusterFuzz testcase 5723265856438272 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment