Out-of-memory in media_vpx_video_decoder_fuzzer |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4537370514030592 Fuzzer: libFuzzer_media_vpx_video_decoder_fuzzer Job Type: libfuzzer_chrome_msan Platform Id: linux Crash Type: Out-of-memory (exceeds 2048 MB) Crash Address: Crash State: media_vpx_video_decoder_fuzzer Sanitizer: memory (MSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_msan&range=430917:430934 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4537370514030592 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Aug 7 2017
ClusterFuzz is analyzing your testcase. Developers can follow the progress at https://clusterfuzz.com/testcase?key=5501022394122240.
,
Aug 7 2017
Let's try to reproduce it with ASan. OOMs with MSan are not always valid...
,
Aug 7 2017
Doesn't crash with ASan, though takes for a while to perform 100 runs: $ out/Release/media_vpx_video_decoder_fuzzer -print_final_stats=1 -timeout=25 -rss_limit_mb=2048 -runs=100 ./clusterfuzz-testcase-minimized-4537370514030592 INFO: Seed: 4265735722 INFO: Loaded 2 modules (414358 guards): [0x7ff3c49614a0, 0x7ff3c497c3f4), [0x33db6e0, 0x35551e4), <...>/out/Release/media_vpx_video_decoder_fuzzer: Running 1 inputs 100 time(s) each. Running: ./clusterfuzz-testcase-minimized-4537370514030592 #2 pulse cov: 977 ft: 682 exec/s: 1 rss: 724Mb #4 pulse cov: 977 ft: 682 exec/s: 1 rss: 725Mb #8 pulse cov: 977 ft: 682 exec/s: 1 rss: 725Mb #16 pulse cov: 977 ft: 684 exec/s: 1 rss: 725Mb #32 pulse cov: 982 ft: 689 exec/s: 1 rss: 725Mb #64 pulse cov: 983 ft: 690 exec/s: 1 rss: 725Mb Executed ./clusterfuzz-testcase-minimized-4537370514030592 in 97239 ms *** *** NOTE: fuzzing was not performed, you have only *** executed the target code on a fixed set of inputs. *** stat::number_of_executed_units: 100 stat::average_exec_per_sec: 1 stat::new_units_added: 0 stat::slowest_unit_time_sec: 0 stat::peak_rss_mb: 725
,
Oct 9 2017
Could be related to issue 767336 , but not sure.
,
Oct 24 2017
For more information, please see https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md. The link referenced in the description is no longer valid. (bulk edit)
,
Jan 12 2018
,
Jan 16 2018
,
Jan 19 2018
ClusterFuzz testcase 4917745111269376 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace.
,
Jan 29 2018
Issue 806454 has been merged into this issue.
,
Feb 1 2018
Issue 807563 has been merged into this issue.
,
Feb 14 2018
Issue 812103 has been merged into this issue.
,
Feb 19 2018
Issue 813031 has been merged into this issue.
,
Feb 22 2018
Issue 814283 has been merged into this issue.
,
Feb 26 2018
Issue 815501 has been merged into this issue. |
|||
►
Sign in to add a comment |
|||
Comment 1 by msrchandra@chromium.org
, Aug 7 2017Labels: M-62 Test-Predator-Wrong
Owner: mmoroz@chromium.org
Status: Assigned (was: Untriaged)