Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4716358974832640 Fuzzer: libfuzzer_pdfium_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: m1 == FXSYS_round(m * 255) libpthread.so.0 AdobeCMYK_to_sRGB Sanitizer: address (ASAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_asan_debug&range=455091:455226 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv97dwLcIuSuj7ktb5sLxGR8an_m15D3a0BkQzqBxszICUelmjOOw4usSeqEpLxovo6_Wd6KZCABm_e_A6pyNRR__dotjEeVNICyZP09dvj4cg5t7V7oyPbV6Sz6AXJoIAXBiRsFgilp0XVl2QqaYkL8IMbckzdt4ghd0YopBuTnPjT7HhnrG3qcHaOxHWe29mQPtxVqjinCXtsXRQva8ryQfAFiDeP0S_-9EEXb9ITdzJpTXRjUpDUH8MupLybIfYmX-zmCElQ38fM18wghJ0p0Zlfbildz-IU5ErcWag7JsjSuN-PN1EmxTPw8GGDPxAQpN05Ssc34bzUiH1fU4mwjdcVJJsVrReRVQ3n1lhkKXLjzeqm4?testcase_id=4716358974832640 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
Git blame below is NOT necessarily who introduced the crash nor the owner for it. Please check the code before assigning to anyone.(No CL in the regression range changed the crashing files.) Author: brucedawson Project: chromium-pdfium Changelist: https://pdfium.googlesource.com/pdfium.git/+/160bd0e26f5dfe5fa11322f61b3d156c2214cba8 Time: Mon Jun 27 06:58:37 2016 -0700 The CL last changed line 1657 of file fx_codec_icc.cpp, which is stack frame 9. Author: thestig Project: chromium-pdfium Changelist: https://pdfium.googlesource.com/pdfium.git/+/28c888b8ee6d1da93cffaa8c14833ddc4986cc79 Time: Tue Nov 08 16:22:28 2016 -0800 The CL last changed line 104 of file fpdf_page_colors.cpp, which is stack frame 10. Author: dan sinclair Project: chromium-pdfium Changelist: https://pdfium.googlesource.com/pdfium.git/+/61b2fc718910a5ab2a75ec5026b239ff33bccfdc Time: Wed Mar 23 19:21:44 2016 -0400 The CL last changed line 140 of file cpdf_color.cpp, which is stack frame 11. ============ From the above CL suspecting https://pdfium.googlesource.com/pdfium.git/+/28c888b8ee6d1da93cffaa8c14833ddc4986cc79 thestig@: Could you please take a look into this if its related to your change.
ClusterFuzz has detected this issue as fixed in range 456175:456206. Detailed report: https://clusterfuzz.com/testcase?key=4716358974832640 Fuzzer: libfuzzer_pdfium_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: m1 == FXSYS_round(m * 255) AdobeCMYK_to_sRGB CPDF_DeviceCS::GetRGB Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=455091:455226 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=456175:456206 Reproducer Testcase: https://clusterfuzz.com/download/AMIfv94aEb1VYngDxZDlz6O9xE_7uDgmHJ95MSAdVB9pnu2qB7J2aTep7e5LBCG8-PORNZgNlgPFXfJX3M4YYy3g2UHGBj5IwHVmcCYe1cQEImrxrAbEz6EyfEWha9woc7DMSEEo6IzO6UquYFf-sYUWc3slXVL7oHzZ1wKqEwl9z-3M2UZNK9u89V6l66u7sppiKZLM23XTGSQ-8_-jZVCn3a7dLy_iUlna2PdFNB4ab2Dej2pgmx-vFm8OuzxUmSzjmt3ZKqJ_vGQUoj4aae68u5qRH8H3kGETY_ViU2AAEAp6rWyAQKeIzKLE-k0G9-1mBW5xa1SD6RX_fGcPu3JLIcUvB7v8hzUX0McW25Hvrt7yMvI84DY?testcase_id=4716358974832640 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Comment 1 by durga.behera@chromium.org
, Mar 8 2017Labels: Test-Predator-Correct-CLs M-59
Owner: thestig@chromium.org
Status: Assigned (was: Untriaged)