Issue metadata
Sign in to add a comment
|
Null-dereference READ in ObtainAndSetContextProvider |
||||||||||||||||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6133705614295040 Fuzzer: inferno_flicker Job Type: windows_asan_chrome_no_sandbox Platform Id: windows Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: ObtainAndSetContextProvider ?RunOnce@?$Invoker@U?$BindState@P6AXV?$OnceCallback@$$A6AX_NPEAVContextProvider@ base::internal::ReplyAdapter<struct std::pair<class media::GpuVideoAcceleratorFa Sanitizer: address (ASAN) Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6133705614295040 Additional requirements: Requires Gestures Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
May 22 2018
By comparing the crash state this issue looks similar to bug 843044 , hence assigning to the same owner for more updates. lethalantidote@ Could you please take a look in to this issue? Thanks!
,
May 22 2018
Per comment #1 this bug and bug 843044 listed at #2 both are reported on M68 Beta. Is this indeed M67 Beta blocker? Pls note M67 last Beta release is tomorrow, RC cut today @ 1:00 PM PT. We're NOT planning to block tomorrow's last M67 beta for this. Pls let us know ASAP if there is any concern here. Thank you. Also M67 goes to stable next Tuesday (05/29), Stable RC cut this Thursday (05/24) @ 4:00 PM PT. So if this is indeed M67 blocker, pls land fix to trunk ASAP and request a merge to M67. Thank you.
,
May 22 2018
Adding CL reviewer to cc list as well - https://bugs.chromium.org/p/chromium/issues/detail?id=843044#c14.
,
May 22 2018
,
May 22 2018
This should not effect M67 beta launch. This is only on m68 canary 50/50 finch experiment.
,
May 22 2018
Thank you lethalantidote@. Adding M68 milestone per comment #6.
,
May 22 2018
Your bug is tagged as Release block Beta and we are branching in 2 days.Please have a fix ASAP.
,
May 22 2018
This is only turned on for a finch experiment.
,
May 23 2018
This is actually affecting Beta 68 launch if we want to have the experiment enabled in 68.
,
May 23 2018
Hmm, it's actually not clear from the clusterfuzz page if this is affecting M68. It mention M66 and M67. bug 843044 is similar but affects HEAD. I requested a redo of the impact. If it doesn't impact HEAD or M68, we should probably close as this code isn't in production for M66 and M67.
,
May 25 2018
For what I can tell, this is only affecting 66/67. This is what clusterfuzz said on the status page (pending a new task for 2 days so I'm giving up on getting confirmation). I tried locally and it did not crash. Please reopen if you disagree.
,
May 25 2018
,
Jun 1 2018
ClusterFuzz testcase 6133705614295040 is still reproducing on tip-of-tree build (trunk). Please re-test your fix against this testcase and if the fix was incorrect or incomplete, please re-open the bug. Otherwise, ignore this notification and add ClusterFuzz-Wrong label. |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by ClusterFuzz
, May 18 2018