New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 776345 link

Starred by 1 user
Status: WontFix
Owner:
js...@chromium.org
Closed: Nov 2017
Cc:
pnangunoori@chromium.org
aheninger@google.com
msrchandra@chromium.org
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

Timeout in icu_break_iterator_utf32_fuzzer

Project Member Reported by ClusterFuzz, Oct 19 2017 
Detailed report: https://clusterfuzz.com/testcase?key=5084924045688832

Fuzzer: libFuzzer_icu_break_iterator_utf32_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: Timeout (exceeds 25 secs)
Crash Address: 
Crash State:
  icu_break_iterator_utf32_fuzzer
  
Sanitizer: address (ASAN)

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5084924045688832

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

Note: This crash might not be reproducible with the provided testcase. That said, for the past 14 days we've been seeing this crash frequently. If you are unable to reproduce this, please try a speculative fix based on the crash stacktrace in the report. The fix can be verified by looking at the crash statistics in the report, a day after the fix is deployed. We will auto-close the bug if the crash is not seen for 14 days.

Comment 1 by pnangunoori@chromium.org, Oct 23 2017

Cc: msrchandra@chromium.org pnangunoori@chromium.org
Labels: Test-Predator-Wrong
Owner: mmoroz@chromium.org
Status: Available (was: Untriaged)
As per the  Issue 696411  owner, assigning this issue to @mmoroz.
@mmoroz -- Could you please look into this issue, kindly reassign if it has nothing to do with your changes.
Thanks.

Comment 2 by pnangunoori@chromium.org, Oct 23 2017

Status: Assigned (was: Available)

Comment 3 by mmoroz@chromium.org, Oct 23 2017

Owner: js...@chromium.org
Assigning to jshin@, ICU owner.

Comment 4 by js...@chromium.org, Oct 23 2017

Cc: aheninger@google.com
Hmm.... ICU is going to be updated to 60 soon. And, there's a major change in BreakIterator in ICU 60.  Hope that this would not happen with the new RBBI code in ICU 60. 

OTOH, we have to deal with existing Chrome releases (M62, M63)... argh...

Comment 5 by js...@chromium.org, Oct 23 2017 

oh... if this crash only happens with UTF-32 input, we may not have to worry about exiting Chrome releases because Chrome/Blink does not use UTF-32 input (afaik).

Comment 6 by js...@chromium.org, Oct 23 2017

Labels: -Pri-1 Pri-2
> if this crash only happens with UTF-32 input

The test input is not valid UTF-32 (either LE or BE) because it has code points beyond plane 16. 

So, in Chrome/v8, this kind of invalid input will not reach ICU. 

Among other reasons, Chrome/Blink does not support UTF-32 input any more. 

I'll downgrade to Pri-3 once I'm sure.

Comment 7 by mmoroz@chromium.org, Oct 24 2017 

For more information, please see https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md.

The link referenced in the description is no longer valid.
Project Member

Comment 8 by ClusterFuzz, Nov 20 2017

Status: WontFix (was: Assigned)
ClusterFuzz testcase 5084924045688832 is flaky and no longer crashes, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment