CHECK failure: result || flags & PartitionAllocReturnNull in partition_alloc.h |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6034421391294464 Fuzzer: inferno_twister Job Type: windows_asan_chrome Platform Id: windows Crash Type: CHECK failure Crash Address: Crash State: result || flags & PartitionAllocReturnNull in partition_alloc.h GetHandleVerifier GetHandleVerifier Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=windows_asan_chrome&range=500786:500791 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6034421391294464 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Oct 27 2017
The commit given in #1 doesn't make any sense; GetHandleVerifier doesn't even appear in PDFium. It could be that a Chromium renderer embedding PDFium calls GetHandleVerifier, which can call `new ActiveVerifier`, which might...? call into Partition Alloc. But this looks like allocation simply failed due to e.g. OOM.
,
Nov 3 2017
ClusterFuzz testcase 6034421391294464 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace.
,
Nov 4 2017
ClusterFuzz has detected this issue as fixed in range 513950:513982. Detailed report: https://clusterfuzz.com/testcase?key=6034421391294464 Fuzzer: inferno_twister Job Type: windows_asan_chrome Platform Id: windows Crash Type: CHECK failure Crash Address: Crash State: result || flags & PartitionAllocReturnNull in partition_alloc.h GetHandleVerifier GetHandleVerifier Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=windows_asan_chrome&range=500786:500791 Fixed: https://clusterfuzz.com/revisions?job=windows_asan_chrome&range=513950:513982 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6034421391294464 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||
►
Sign in to add a comment |
|||
Comment 1 by pnangunoori@chromium.org
, Oct 27 2017Components: Blink>MemoryAllocator>Partition
Labels: Test-Predator-Wrong M-63
Owner: palmer@chromium.org
Status: Assigned (was: Untriaged)