New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 737575 link

Starred by 1 user
Status: Duplicate
Merged: issue 747554
Owner: ----
Closed: Jul 2017
Cc:
kbr@chromium.org
ifratric@google.com
ericrk@chromium.org
ccameron@chromium.org
zmo@chromium.org
mac-bugs-priority@chromium.org
dsinclair@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Mac
Pri: 1
Type: Bug



Sign in to add a comment

Bus in gldRenderFillPolygonPtr

Project Member Reported by ClusterFuzz, Jun 28 2017 
Detailed report: https://clusterfuzz.com/testcase?key=6082273253523456

Fuzzer: ifratric-browserfuzzer-v3
Job Type: mac_asan_chrome
Platform Id: mac

Crash Type: Bus
Crash Address: 0x6311003d4790
Crash State:
  gldRenderFillPolygonPtr
  glDrawElements_IMM_GL3Exec
  gpu::gles2::GLES2DecoderImpl::DoDrawElements
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=469763:469773

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6082273253523456


Issue filed automatically.

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by shrike@chromium.org, Jul 6 2017

Components: Internals>GPU>Internals

Comment 2 by enne@chromium.org, Jul 7 2017

Cc: kbr@chromium.org zmo@chromium.org ccameron@chromium.org
ccameron: what's our strategy for crashes in mac drivers again? Are these things that the command buffer should be sanitizing? Are these things we should be blacklisting? Or are these wontfix?

see similarly:  issue 736631  and  issue 736627

Comment 3 by enne@chromium.org, Jul 7 2017 

and  issue 739678

Comment 4 by kbr@chromium.org, Jul 7 2017

Cc: ericrk@chromium.org
They should be evaluated on a case-by-case basis. This one looks like it might be being provoked by Ganesh.

Comment 5 by ccameron@chromium.org, Jul 21 2017

Mergedinto: 747554
Status: Duplicate (was: Untriaged)

Sign in to add a comment