Ill in blink::TextDecoder::decode |
||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5295691520540672 Fuzzer: inferno_twister Job Type: linux_asan_chrome_mp Platform Id: linux Crash Type: Ill Crash Address: 0x55cbc153cfe6 Crash State: blink::TextDecoder::decode blink::TextDecoder::decode blink::V8TextDecoder::decodeMethodCallback Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=linux_asan_chrome_mp&range=605010:605011 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5295691520540672 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Nov 5
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/dae5b388b44dae4dc11668dba210bbb92d72d969 (Add bounds CHECK to UTF-8 decoder memory allocation.). If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.
,
Nov 5
This should be WAI following fix for issue 901030.
,
Nov 5
I'm not sure; I wonder if the "Ill" means "Illegal instruction"? I don't think `ValueOrDie` is supposed to die in that way; it calls `CHECK` which is `IMMEDIATE_CRASH` which is `__builtin_unreachable` in Clang. +ClusterFuzz people to tell us what CF should see here.
,
Nov 6
,
Nov 12
ClusterFuzz testcase 5295691520540672 is still reproducing on tip-of-tree build (trunk). If this testcase was not reproducible locally or unworkable, ignore this notification and we will file another bug soon with hopefully a better and workable testcase. Otherwise, if this is not intended to be fixed (e.g. this is an intentional crash), please add ClusterFuzz-Ignore label to prevent future bug filing with similar crash stacktrace.
,
Dec 13
|
||||||
►
Sign in to add a comment |
||||||
Comment 1 by ClusterFuzz
, Nov 5Labels: Test-Predator-Auto-Components