Issue 819956 link

Starred by 1 user

Issue metadata

Status:	Verified
Owner:	ahass...@chromium.org
Closed:	Apr 2018
Cc:	manojgupta@chromium.org
EstimatedDays:	----
NextAction:	----
OS:	Chrome
Pri:	1
Type:	Bug
Stability-Crash Reproducible Stability-Memory-AddressSanitizer Stability-Memory-LeakSanitizer Clusterfuzz

Indirect-leak in BrotliDecoderDecompressStream

Project Member Reported by ClusterFuzz, Mar 8 2018

Issue description

Detailed report: https://clusterfuzz.com/testcase?key=6580203615420416

Fuzzer: libFuzzer_puffin_fuzzer
Job Type: libfuzzer_asan_chromeos
Platform Id: linux

Crash Type: Indirect-leak
Crash Address: 
Crash State:
  BrotliDecoderDecompressStream
  bsdiff::BrotliDecompressor::Read
  bsdiff::BsdiffPatchReader::ParseControlEntry
  
Sanitizer: address (ASAN)

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6580203615420416

Issue filed automatically.

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

Comment 1 by infe...@chromium.org, Mar 10 2018

Owner: ahass...@chromium.org
Status: Assigned (was: Untriaged)

Project Member

Comment 2 by bugdroid1@chromium.org, Mar 17 2018

The following revision refers to this bug:
  https://chromium.googlesource.com/chromiumos/overlays/chromiumos-overlay/+/6afb65dd05101b0db8e7ec1f6a8d56055c860624

commit 6afb65dd05101b0db8e7ec1f6a8d56055c860624
Author: Amin Hassani <ahassani@google.com>
Date: Sat Mar 17 01:31:18 2018

bsdiff: Mark as stable

Some new fuzzer problems were fixed in the bsdiff, uprev so we can test the new
changes.

The fixes were:
https://android-review.googlesource.com/c/platform/external/bsdiff/+/638404
https://android-review.googlesource.com/c/platform/external/bsdiff/+/638402
https://android-review.googlesource.com/c/platform/external/bsdiff/+/638401

TEST=unittest
BUG= chromium:820043 
BUG= chromium:819956 
BUG= chromium:818174 

Change-Id: Ifa8d0d66d82bc09b81bb71bae082406af3eb662d
Reviewed-on: https://chromium-review.googlesource.com/967008
Commit-Ready: Amin Hassani <ahassani@chromium.org>
Tested-by: Amin Hassani <ahassani@chromium.org>
Reviewed-by: Mike Frysinger <vapier@chromium.org>

[rename] https://crrev.com/6afb65dd05101b0db8e7ec1f6a8d56055c860624/dev-util/bsdiff/bsdiff-4.3.1-r12.ebuild

Project Member

Comment 3 by ClusterFuzz, Apr 1 2018

Status: WontFix (was: Assigned)

ClusterFuzz testcase 6580203615420416 is flaky and no longer crashes, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Comment 4 by metzman@chromium.org, Jun 6 2018

Status: Verified (was: WontFix)

I think this was incorrectly marked WontFix because of an issue with builds on ClusterFuzz.

Comment 5 by manojgupta@chromium.org, Aug 13

Cc: -manojgupta@google.com manojgupta@chromium.org

►

Issue 819956 link

Issue metadata

Indirect-leak in BrotliDecoderDecompressStream

Issue description

Comment 1 by infe...@chromium.org, Mar 10 2018

Comment 1 Deleted

Comment 2 by bugdroid1@chromium.org, Mar 17 2018

Comment 2 Deleted

Comment 3 by ClusterFuzz, Apr 1 2018

Comment 3 Deleted

Comment 4 by metzman@chromium.org, Jun 6 2018

Comment 4 Deleted

Comment 5 by manojgupta@chromium.org, Aug 13

Comment 5 Deleted

Sign in to add a comment