Comment #14 on issue 3236 by k...@google.com: llvm: Abrt in
llvm::report_bad_alloc_error
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3236#c14
Matt (mascasa@), please check what's going on here.
--
You received this message because:
1. You were specifically CC'd on the issue
You
Comment #2 on issue 5537 by k...@google.com: llvm/clang-proto-fuzzer:
ASSERT: isLoopInvariant(Operands[i], L) && "SCEVAddRecExpr operand is not
loop-invariant
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5537#c2
C reproducer:
% cat 5537.c
void foo(int *a) {
a[0] = (15164);
Comment #2 on issue 4187 by k...@google.com: llvm/clang-proto-fuzzer:
ASSERT: isa(Val) && "cast() argument of incompatible type!"
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4187#c2
C reproducer (clang -c -O2):
void foo(int *a) {
while ((a[1] + (0))) {
}
while (1) {
if
Comment #2 on issue 3821 by k...@google.com: llvm/clang-proto-fuzzer:
ASSERT: (isa(ExactNotTaken) |
| !isa(MaxNotTake
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3821#c2
C repro:
void foo(int *a) {
while (((1+(1+a[0]))+1)){
}
while ((a[0]+a[32])){
a[0]=1;
}
while
Comment #3 on issue 3727 by k...@google.com:
llvm/llvm-special-case-list-fuzzer: Global-buffer-overflow in p_bracket
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3727#c3
Of course, this is just regexp:
==1==ERROR: AddressSanitizer: global-buffer-overflow on address
0x006a18bc
Updates:
Cc: vtsyrklev...@google.com
Comment #2 on issue 3727 by k...@google.com:
llvm/llvm-special-case-list-fuzzer: Global-buffer-overflow in p_bracket
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3727#c2
(No comment was entered for this change.)
--
You received this
Updates:
Cc: vtsyrklev...@google.com
Comment #3 on issue 3688 by k...@google.com:
llvm/llvm-special-case-list-fuzzer: ASSERT: !Key.empty()
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3688#c3
Vlad, please take a look.
--
You received this message because:
1. You were
Updates:
Cc: san...@google.com
Comment #2 on issue 3704 by k...@google.com: llvm/clang-proto-fuzzer:
ASSERT: (isa(MaxNotTaken) ||
isa(MaxNotTaken)) && "No
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3704#c2
Probably a recent regression.
void foo(int *a) {
if (a[4])
Comment #8 on issue 3627 by k...@google.com: ASSERT: Res == 0
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3627#c8
We've raced :)
Before r315933 this reproduced for me.
Let OSS-Fuzz auto-close this bug.
--
You received this message because:
1. You were specifically CC'd on the
Comment #7 on issue 3627 by k...@google.com: ASSERT: Res == 0
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3627#c7
I've fixed the fuzz target in r315933.
--
You received this message because:
1. You were specifically CC'd on the issue
You may adjust your notification preferences
Comment #4 on issue 3660 by k...@google.com:
llvm/llvm-isel-fuzzer--aarch64-gisel: ASSERT: isReg() && "This is not a
register operand!"
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3660#c4
If so, oss-fuzz should be able to confirm it within ~24 hours
--
You received this message
Comment #5 on issue 3627 by k...@google.com: ASSERT: Res == 0
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3627#c5
And the assertion is in libFuzzer that indicates that the fuzz target did
not return 0
--
You received this message because:
1. You were specifically CC'd on the
Updates:
Cc: jus...@justinbogner.com
Comment #4 on issue 3627 by k...@google.com: ASSERT: Res == 0
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3627#c4
The reproducer testcase is empty
Hmm. 12 bytes for me
ls -l ~/Downloads/clusterfuzz-testcase-minimized-5935702182199296
Comment #3 on issue 3661 by k...@google.com: llvm/clang-proto-fuzzer:
Null-dereference READ in llvm::SCEV::getType
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3661#c3
Filed https://bugs.llvm.org/show_bug.cgi?id=34968
--
You received this message because:
1. You were specifically
Comment #2 on issue 3661 by k...@google.com: llvm/clang-proto-fuzzer:
Null-dereference READ in llvm::SCEV::getType
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3661#c2
C++ reproducer:
void foo(int *a) {
while (1) {
a[60] = ((1 + a[60]) + a[0]);
while ((a[60] + a[0])) {
Comment #2 on issue 3450 by k...@google.com: llvm: Stack-overflow in
clang::format::TokenAnnotator::annotate
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3450#c2
henri@, these bugs are automatically filed only here, we do not have any
mechanism to report them to LLVM's bugzilla.
Comment by k...@google.com:
A dummy comment to cause the notifications to be re-sent to llvm-bugs@
See also: http://lists.llvm.org/pipermail/llvm-dev/2017-August/116978.html
Affected issues:
issue 3133: llvm: ASSERT: DelayedTypos.empty() && "Uncorrected typos!"
Comment #5 on issue 3137 by k...@google.com: llvm: ASSERT: CurPtr[-1] == '<'
&& CurPtr[0] == '#' && "Not a placeholder!"
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3137#c5
Dummy comment to test if sending to llvm-bugs@lists.llvm.org works.
echo "clang-6.0:
18 matches
Mail list logo
