Stack-overflow in blink::Node::RecalcDistribution |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5797138968870912 Fuzzer: bj_broddelwerk Job Type: mac_asan_chrome Platform Id: mac Crash Type: Stack-overflow Crash Address: 0x7fff52ae0e80 Crash State: blink::Node::RecalcDistribution Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=449378:450347 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5797138968870912 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Nov 15 2017
Predator and CL could not provide any possible suspects. Using the code search for the file, “node.cpp” assigning to concern owner. Suspecting Commit# https://chromium.googlesource.com/chromium/src/+/31070df4c130e0c97a8e44aff50a79684837f8a9 hayato@-- Could you please look into this issue, kindly reassign if it has nothing to do with your changes. Thank You...
,
Nov 15 2017
It looks the fuzzer creates a deeply nested tree to me. WONTFIX.
,
Nov 18 2017
ClusterFuzz has detected this issue as fixed in range 514498:517702. Detailed report: https://clusterfuzz.com/testcase?key=5797138968870912 Fuzzer: bj_broddelwerk Job Type: mac_asan_chrome Platform Id: mac Crash Type: Stack-overflow Crash Address: 0x7fff52ae0e80 Crash State: blink::Node::RecalcDistribution Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=449378:450347 Fixed: https://clusterfuzz.com/revisions?job=mac_asan_chrome&range=514498:517702 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5797138968870912 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||
►
Sign in to add a comment |
|||
Comment 1 by dtapu...@chromium.org
, Nov 15 2017