CHECK failed: !textDecorationsInEffect || !textDecoration in EditingStyle.cpp |
|||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=4958256165814272 Fuzzer: mbarbella_js_mutation_layout Job Type: linux_debug_content_shell_drt Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: CHECK failed: !textDecorationsInEffect || !textDecoration in EditingStyle.cpp blink::reconcileTextDecorationProperties blink::StyleChange::StyleChange Minimized Testcase (0.24 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv97H56UPzdE4pWnb17LUQXXVGQ7SX-cIKdDFGDYhqvlHmhUNZID3fwEKuVYXUDJfLxzsfrkgEyINztmQ-Y7j6U2zlCcVyg1GdGZijfHPWUG5C4DASWoULjoF1zXLXOBygW_6sN1lI_h7YIPcSLcUdP6_RUdvag Female <dl> DT element </dl> <br/> <hr/> <script> document.designMode = 'on'; document.execCommand('SelectAll'); document.execCommand('Strikethrough'); document.execCommand('InsertOrderedList'); </script> Filer: manoranjanr See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Apr 25 2016
Route to Editing triage
,
Apr 26 2016
It seems that the patch is ok -- I cannot see any errors in these ASSERT -> DCHECK conversion. I'll investigate the failures further today.
,
Apr 26 2016
,
Apr 26 2016
Lower to Pri-2, since real world usage of InsertOrderedList is low.
,
Apr 26 2016
All three issues ( crbug.com/606517 and crbug.com/606535 included) are genuine, not duplicates of each other and have nothing to do with ASSERT -> DCHECK change.
,
Sep 24 2016
ClusterFuzz has detected this issue as fixed in range 403853:403869. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4958256165814272 Fuzzer: mbarbella_js_mutation_layout Job Type: linux_debug_content_shell_drt Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: !textDecorationsInEffect || !textDecoration in EditingStyle.cpp blink::reconcileTextDecorationProperties blink::StyleChange::StyleChange Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=268656:269696 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=403853:403869 Minimized Testcase (0.24 Kb): Download: https://cluster-fuzz.appspot.com/download/AMIfv9464PJuUnO5qmN6sXRN4WjuQSmxDbjyLuoFElYdJ4HZQRl1eZV_WHQYrv0Cq775eZX7G8oTDBCttVfeEnL9cwwQA2DrqxrKYL2V3vPsU-ZI-LuJCLoB8gjRyF5_JnTTDJSeI3KRks2CZts0BOjMsmMQ6Jit7Q?testcase_id=4958256165814272 Female <dl> DT element </dl> <br/> <hr/> <script> document.designMode = 'on'; document.execCommand('SelectAll'); document.execCommand('Strikethrough'); document.execCommand('InsertOrderedList'); </script> See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Sep 24 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Oct 18 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by manoranj...@chromium.org
, Apr 25 2016Components: Blink>Architecture Tools>Test>FindIt>NoResult
Labels: Te-Logged
Owner: koten...@yandex-team.ru
Status: Assigned (was: Available)