New issue
Advanced search Search tips

Issue 698305 link

Starred by 2 users
Status: Verified
Owner:
machenb...@chromium.org
Closed: Mar 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

V8 correctness failure in configs: x64,ignition_turbo:ia32,ignition_turbo

Project Member Reported by ClusterFuzz, Mar 3 2017

Comment 1 by machenb...@chromium.org, Mar 3 2017

Labels: -Pri-1 Pri-2
Owner: machenb...@chromium.org
Status: Assigned (was: Untriaged)
Project Member

Comment 2 by bugdroid1@chromium.org, Mar 6 2017 

The following revision refers to this bug:
  https://chromium.googlesource.com/v8/v8.git/+/5cfa7fb537f02fe8829c8f403aa400b4bdaaa85f

commit 5cfa7fb537f02fe8829c8f403aa400b4bdaaa85f
Author: Michael Achenbach <machenbach@chromium.org>
Date: Mon Mar 06 09:36:09 2017

[foozzie] Use simpler date mock

The previous method was too brittle as applying a variable number of arguments to Date can be manipulated in too many ways, e.g. concat and apply semantics.

The new method shoud suffice for most cases.

BUG= chromium:698305 
NOTRY=true
TBR=yangguo@chromium.org,mstarzinger@chromium.org

Change-Id: If6baf6ca8f1534c41ab8c50a5c507df89fbf0d16
Reviewed-on: https://chromium-review.googlesource.com/449653
Reviewed-by: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Michael Starzinger <mstarzinger@chromium.org>
Commit-Queue: Michael Achenbach <machenbach@chromium.org>
Cr-Commit-Position: refs/heads/master@{#43601}
[modify] https://crrev.com/5cfa7fb537f02fe8829c8f403aa400b4bdaaa85f/tools/foozzie/v8_mock.js
Project Member

Comment 3 by ClusterFuzz, Mar 6 2017 

ClusterFuzz has detected this issue as fixed in range 43600:43601.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4557626211041280

Fuzzer: foozzie_js_mutation
Job Type: v8_foozzie
Platform Id: linux

Crash Type: V8 correctness failure
Crash Address: 
Crash State:
  configs: x64,ignition_turbo:ia32,ignition_turbo
  sources: d40
  
Sanitizer: address (ASAN)

Regressed: V8: 43569:43570
Fixed: V8: 43600:43601

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96tokUUT7YoyZCGh-JSzkuqeIECY4dvf_YMk1GlbTyPZFO2mCWQlzYxeq9SR2jOBcc6eTtRdZKPhzaKUBQ_Qvtl1AeO64fqI1WuQb_KeNiEvFu5U0Ti-CN-ai2whY-ebZMokDb8zzQw1_UTceEPQSskQgoW3z4BJ7v_gi22eXhE5bbISQUB--9PdOXcrKijNeQ8MgtuVBzqcq12kg11mjS5GzihosHDg36brFHeq9k_c5nWuHcINBVGX31Vgfpb50xHd8oxu6ZKZz0SqMpeXuysOf7cC3XWEpuG6_DAdRaMfDTNed3MftMMVQirp1HizTF1sT28nrzQde2HDnWz0dzD-dmIBOvI7W1JHQPSBIrRSgzbcBs?testcase_id=4557626211041280


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Comment 4 by machenb...@chromium.org, Mar 6 2017

Status: Verified (was: Assigned)

Sign in to add a comment