ASSERT: operand.num_words <= 2 |
||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6648147074613248 Fuzzer: libFuzzer_spvtools_val_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: operand.num_words <= 2 spvtools::EmitNumericLiteral spvtools::FriendlyNameMapper::ParseInstruction Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=579911:580305 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6648147074613248 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Aug 8
,
Aug 8
,
Aug 8
,
Aug 10
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/f1ea2746039f0e56cce593d53225707b71ab83fe commit f1ea2746039f0e56cce593d53225707b71ab83fe Author: Dan Sinclair <dsinclair@chromium.org> Date: Fri Aug 10 00:21:24 2018 Roll src/third_party/SPIRV-Tools/src/ 2d9a32526..714bf84e5 (14 commits) $ git log 2d9a32526..714bf84e5 --date=short --no-merges --format='%ad %ae %s' 2018-08-08 alanbaker Split mode setting opcode validation into new file. 2018-08-08 alanbaker Split annotation opcode validation into new file. 2018-08-08 alanbaker Replace asserts with returns 2018-08-08 alanbaker Split debug opcode validation into new file 2018-08-03 alanbaker Move type instruction validation into separate file 2018-08-08 31666470+s-perron Validate the input to Optimizer::Run (#1799) 2018-08-03 alanbaker Unify validation of OpCopyMemory* 2018-08-03 alanbaker Refactor where opcodes are validated 2018-08-07 shartte When clang is used as a MSVC frontend (clang-cl.exe) it does not behave exactly as GCC would. I.e. -Wall translates to /Wall, which is an alias for -Weverything. This causes massive C++98 compat warnings logspam. (#1808) 2018-08-07 dj2 Remove unused bit stream methods. (#1807) 2018-08-07 dj2 Simplify MoveToFront (#1806) 2018-08-07 dj2 Fixup readabilty/inheritance warnings (#1805) 2018-08-07 dj2 Fix readbility/braces warnings (#1804) 2018-08-03 dj2 Cleanup includes. (#1795) Created with: roll-dep src/third_party/SPIRV-Tools/src Bug: 870510 , 870571 , 870681 , 871065 , 872572 TBR=dneto@chromium.org Change-Id: I6e50c26fb10368a912c9f7e95b12dd789f0bf5f5 Reviewed-on: https://chromium-review.googlesource.com/1169129 Reviewed-by: dsinclair <dsinclair@chromium.org> Commit-Queue: dsinclair <dsinclair@chromium.org> Cr-Commit-Position: refs/heads/master@{#581976} [modify] https://crrev.com/f1ea2746039f0e56cce593d53225707b71ab83fe/DEPS
,
Aug 10
ClusterFuzz has detected this issue as fixed in range 581969:581979. Detailed report: https://clusterfuzz.com/testcase?key=6648147074613248 Fuzzer: libFuzzer_spvtools_val_fuzzer Job Type: libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: operand.num_words <= 2 spvtools::EmitNumericLiteral spvtools::FriendlyNameMapper::ParseInstruction Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=579911:580305 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan_debug&range=581969:581979 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6648147074613248 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Aug 10
ClusterFuzz testcase 6648147074613248 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
||||
►
Sign in to add a comment |
||||
Comment 1 by dsinclair@chromium.org
, Aug 3Components: Internals>GPU>Internals
Owner: dsinclair@chromium.org
Status: Assigned (was: Untriaged)