New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 766506 link

Starred by 1 user
Status: WontFix
Owner:
wolenetz@chromium.org
Closed: Apr 2018
Cc:
kcc@chromium.org
pnangunoori@chromium.org
mmoroz@chromium.org
dalecur...@chromium.org
msrchandra@chromium.org
wolenetz@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Mac
Pri: 3
Type: Bug



Sign in to add a comment

Timeout in mediasource_MP4_AACSBR_pipeline_integration_fuzzer

Project Member Reported by ClusterFuzz, Sep 19 2017 
Detailed report: https://clusterfuzz.com/testcase?key=6672621537329152

Fuzzer: libFuzzer_mediasource_MP4_AACSBR_pipeline_integration_fuzzer
Job Type: libfuzzer_chrome_msan
Platform Id: linux

Crash Type: Timeout (exceeds 25 secs)
Crash Address: 
Crash State:
  mediasource_MP4_AACSBR_pipeline_integration_fuzzer
  
Sanitizer: memory (MSAN)

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6672621537329152

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.

Comment 1 by pnangunoori@chromium.org, Sep 20 2017

Cc: msrchandra@chromium.org pnangunoori@chromium.org
Components: Internals>Media
Labels: Test-Predator-Wrong
Owner: wolenetz@chromium.org
Status: Assigned (was: Untriaged)
As per the  Issue 754500  owner assigning this issue to @wolenetz.
@wolenetz -- Could you please look into this issue, kindly reassign if it has nothing to do with your changes.
Thanks.
Project Member

Comment 2 by ClusterFuzz, Sep 21 2017

Labels: OS-Mac

Comment 3 by wolenetz@chromium.org, Sep 21 2017

Cc: mmoroz@chromium.org kcc@chromium.org dalecur...@chromium.org
Components: -Internals>Media Internals>Media>Source
Labels: -Pri-1 Pri-3
Mergedinto: 759277
Status: Duplicate (was: Assigned)
Looks like a root cause duplicate of bug 759277: huge trun.sample_count (trun sample_count is 2550137601 in this case), causing long loop + large allocations (so if let to run longer than 25 seconds, this case triggers OOM).

P3 and updating duplicate issue ID
CC+=CF folks and dalecurtis@ like previously done on bug 759277

Comment 4 by wolenetz@chromium.org, Feb 12 2018

Status: Assigned (was: Duplicate)
Unduplicating so that CF has a chance to specifically verify if this is already fixed.

Comment 5 by infe...@chromium.org, Apr 17 2018

Status: WontFix (was: Assigned)
We are closing all ooms and timeouts that are unreproducible. We won't be filing such bugs in future.
Project Member

Comment 6 by ClusterFuzz, Oct 14 

ClusterFuzz has detected this issue as fixed in range 599464:599465.

Detailed report: https://clusterfuzz.com/testcase?key=6672621537329152

Fuzzer: libFuzzer_mediasource_MP4_AACSBR_pipeline_integration_fuzzer
Job Type: libfuzzer_chrome_msan
Platform Id: linux

Crash Type: Timeout (exceeds 25 secs)
Crash Address: 
Crash State:
  mediasource_MP4_AACSBR_pipeline_integration_fuzzer
  
Sanitizer: memory (MSAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_msan&range=499835:499884
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_msan&range=599464:599465

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6672621537329152

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Sign in to add a comment