Issue metadata
Sign in to add a comment
|
Timeout in feature_policy_fuzzer |
||||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5009858135588864 Fuzzer: libFuzzer_feature_policy_fuzzer Job Type: libfuzzer_chrome_msan Platform Id: linux Crash Type: Timeout (exceeds 25 secs) Crash Address: Crash State: feature_policy_fuzzer Sanitizer: memory (MSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_msan&range=498181:498239 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5009858135588864 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Apr 23 2018
File is an 800KB string being used as a header... not surprised at all that it's slow :) I'll add a couple of length guards to ensure that these inputs are fast-failed. Pretty sure this could never be seen in the wild anyway; Chrome has a 64KB total header length limit, AFAIK. Thanks for the triage; I'll take care of this.
,
May 3 2018
,
May 16 2018
ClusterFuzz testcase 5009858135588864 appears to be flaky, updating reproducibility label.
,
May 31 2018
This should be fixed now, as of https://chromium.googlesource.com/chromium/src/+/02c682276f26af4ab3221e4572847ec6786c4822 (Same root cause as crbug.com/804462 ; very long URLs causing timeouts in parsing) |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by brajkumar@chromium.org
, Apr 20 2018Components: Blink>FeaturePolicy
Labels: -Type-Bug M-66 Test-Predator-Wrong Type-Bug-Regression
Owner: iclell...@chromium.org
Status: Assigned (was: Untriaged)