### Task
| **Item** | **Description** |
| :------------ | :---------- |
Crash Type | Null-dereference READ
Sanitizer | address (ASAN)
Platform | linux
Job Type | libfuzzer_asan_firefox
Fuzz Target | ContentParentIPC
### Callstack
```c
==1==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7f738af3f5e9 bp 0x7ffe7502c7f0 sp 0x7ffe7502c500 T0)
==1==The signal is caused by a READ memory access.
==1==Hint: address points to the zero page.
SCARINESS: 10 (null-deref)
#0 0x7f738af3f5e8 in mozilla::AntiTrackingCommon::SaveFirstPartyStorageAccessGrantedForOriginOnParentProcess(nsIPrincipal*, nsIPrincipal*, nsTString<char> const&, nsTString<char> const&, int) mozilla-central/toolkit/components/antitracking/AntiTrackingCommon.cpp:1164:31
#1 0x7f738817cb7b in mozilla::dom::ContentParent::RecvFirstPartyStorageAccessGrantedForOrigin(IPC::Principal const&, IPC::Principal const&, nsTString<char> const&, nsTString<char> const&, int const&, std::function<void (bool const&)>&&) mozilla-central/dom/ipc/ContentParent.cpp:5760:3
#2 0x7f738338c5f2 in mozilla::dom::PContentParent::OnMessageReceived(IPC::Message const&) /work/obj-fuzz/ipc/ipdl/PContentParent.cpp:10568:57
#3 0x7f7381baded2 in void mozilla::ipc::FuzzProtocol<mozilla::dom::ContentParent>(mozilla::dom::ContentParent*, unsigned char const*, unsigned long, nsTArray<nsTString<char> > const&) /work/obj-fuzz/dist/include/ProtocolFuzzer.h:96:18
#4 0x7f7381bad7e8 in RunContentParentIPCFuzzing(unsigned char const*, unsigned long) mozilla-central/dom/ipc/fuzztest/content_parent_ipc_libfuzz.cpp:27:3
#5 0x5641869d529f in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long)
#6 0x5641869c19de in fuzzer::RunOneTest(fuzzer::Fuzzer*, char const*, unsigned long)
#7 0x5641869c3c99 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long))
#8 0x7f738b3f2791 in mozilla::FuzzerRunner::Run(int*, char***) mozilla-central/tools/fuzzing/interface/harness/FuzzerRunner.cpp:61:10
#9 0x7f738b3436ae in XREMain::XRE_mainStartup(bool*) mozilla-central/toolkit/xre/nsAppRunner.cpp:3758:35
#10 0x7f738b34be15 in XREMain::XRE_main(int, char**, mozilla::BootstrapConfig const&) mozilla-central/toolkit/xre/nsAppRunner.cpp:4698:12
#11 0x7f738b34c7c1 in XRE_main(int, char**, mozilla::BootstrapConfig const&) mozilla-central/toolkit/xre/nsAppRunner.cpp:4792:21
#12 0x5641868d9b4a in do_main(int, char**, char**)
#13 0x5641868d9332 in main
#14 0x7f739d06582f in __libc_start_main
#15 0x5641867fb028 in _start
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/mnt/scratch0/clusterfuzz/bot/builds/clusterfuzz-builds_firefox_6180546f5e5f1d75138bf6cea3784693af7a2aa9/revisions/firefox/libxul.so+0x142fc5e8)
==1==ABORTING
```
### Notes
> This bug is subject to a 90 day disclosure deadline. If 90 days elapse without an upstream patch, then the bug report will automatically become visible to the public.
Bug 1577558 Comment 0 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
### Task
| **Item** | **Description** |
| :------------ | :---------- |
Crash Type | Null-dereference READ
Sanitizer | address (ASAN)
Platform | linux
Job Type | libfuzzer_asan_firefox
Fuzz Target | ContentParentIPC
### Callstack
```c
==1==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x7f738af3f5e9 bp 0x7ffe7502c7f0 sp 0x7ffe7502c500 T0)
==1==The signal is caused by a READ memory access.
==1==Hint: address points to the zero page.
SCARINESS: 10 (null-deref)
#0 0x7f738af3f5e8 in mozilla::AntiTrackingCommon::SaveFirstPartyStorageAccessGrantedForOriginOnParentProcess(nsIPrincipal*, nsIPrincipal*, nsTString<char> const&, nsTString<char> const&, int) mozilla-central/toolkit/components/antitracking/AntiTrackingCommon.cpp:1164:31
#1 0x7f738817cb7b in mozilla::dom::ContentParent::RecvFirstPartyStorageAccessGrantedForOrigin(IPC::Principal const&, IPC::Principal const&, nsTString<char> const&, nsTString<char> const&, int const&, std::function<void (bool const&)>&&) mozilla-central/dom/ipc/ContentParent.cpp:5760:3
#2 0x7f738338c5f2 in mozilla::dom::PContentParent::OnMessageReceived(IPC::Message const&) /work/obj-fuzz/ipc/ipdl/PContentParent.cpp:10568:57
#3 0x7f7381baded2 in void mozilla::ipc::FuzzProtocol<mozilla::dom::ContentParent>(mozilla::dom::ContentParent*, unsigned char const*, unsigned long, nsTArray<nsTString<char> > const&) /work/obj-fuzz/dist/include/ProtocolFuzzer.h:96:18
#4 0x7f7381bad7e8 in RunContentParentIPCFuzzing(unsigned char const*, unsigned long) mozilla-central/dom/ipc/fuzztest/content_parent_ipc_libfuzz.cpp:27:3
#5 0x5641869d529f in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long)
#6 0x5641869c19de in fuzzer::RunOneTest(fuzzer::Fuzzer*, char const*, unsigned long)
#7 0x5641869c3c99 in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long))
#8 0x7f738b3f2791 in mozilla::FuzzerRunner::Run(int*, char***) mozilla-central/tools/fuzzing/interface/harness/FuzzerRunner.cpp:61:10
#9 0x7f738b3436ae in XREMain::XRE_mainStartup(bool*) mozilla-central/toolkit/xre/nsAppRunner.cpp:3758:35
#10 0x7f738b34be15 in XREMain::XRE_main(int, char**, mozilla::BootstrapConfig const&) mozilla-central/toolkit/xre/nsAppRunner.cpp:4698:12
#11 0x7f738b34c7c1 in XRE_main(int, char**, mozilla::BootstrapConfig const&) mozilla-central/toolkit/xre/nsAppRunner.cpp:4792:21
#12 0x5641868d9b4a in do_main(int, char**, char**)
#13 0x5641868d9332 in main
#14 0x7f739d06582f in __libc_start_main
#15 0x5641867fb028 in _start
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/mnt/scratch0/clusterfuzz/bot/builds/clusterfuzz-builds_firefox_6180546f5e5f1d75138bf6cea3784693af7a2aa9/revisions/firefox/libxul.so+0x142fc5e8)
==1==ABORTING
```