CHECK failure: state_ == State::COLLECTING in hpack_decoder_string_buffer.cc |
|||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5436817025007616 Fuzzer: libFuzzer_net_quic_stream_factory_fuzzer Fuzz target binary: net_quic_stream_factory_fuzzer Job Type: x86_libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: state_ == State::COLLECTING in hpack_decoder_string_buffer.cc http2::HpackDecoderStringBuffer::OnEnd http2::HpackWholeEntryBuffer::OnNameEnd Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=x86_libfuzzer_chrome_asan_debug&range=619404:619407 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5436817025007616 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally.
,
Jan 10
Automatically adding ccs based on OWNERS file / target commit history. If this is incorrect, please add ClusterFuzz-Wrong label.
,
Jan 10
Automatically adding ccs based on suspected regression changelists: Avoid truncation error on 32 bit platforms. by bnc@google.com - https://quiche.googlesource.com/quiche/+/94696df580816fb56eac22e4a3ba0558e7e30f15 Remove unnecessary comparison. by bnc@google.com - https://quiche.googlesource.com/quiche/+/22f96529395048f41f15744f177a93429a938b35 Use uint64_t for varint. by quiche-dev@google.com - https://quiche.googlesource.com/quiche/+/15fb5630803634b1988b77d876212fad71f7a2c3 If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label.
,
Jan 11
Predator and CL could not provide any possible suspects. Using Code Search for the file, "hpack_decoder_string_buffer.cc" suspecting the below Cl might have caused this issue Suspect CL: https://quiche.googlesource.com/quiche.git/+/fd50a40b5f06e3a0f19923899137290ecdd43d39 vasilvv@/rch@ : -- Could you please check whether this is caused with respect to your change, if not please help us in assigning it to the right owner. Thanks!
,
Jan 16
(6 days ago)
ClusterFuzz has detected this issue as fixed in range 622876:622946. Detailed report: https://clusterfuzz.com/testcase?key=5436817025007616 Fuzzer: libFuzzer_net_quic_stream_factory_fuzzer Fuzz target binary: net_quic_stream_factory_fuzzer Job Type: x86_libfuzzer_chrome_asan_debug Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: state_ == State::COLLECTING in hpack_decoder_string_buffer.cc http2::HpackDecoderStringBuffer::OnEnd http2::HpackWholeEntryBuffer::OnNameEnd Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=x86_libfuzzer_chrome_asan_debug&range=619404:619407 Fixed: https://clusterfuzz.com/revisions?job=x86_libfuzzer_chrome_asan_debug&range=622876:622946 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5436817025007616 See https://github.com/google/clusterfuzz-tools for instructions to reproduce this bug locally. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Jan 16
(6 days ago)
ClusterFuzz testcase 5436817025007616 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by ClusterFuzz
, Jan 10Labels: Test-Predator-Auto-Components