New issue
Advanced search Search tips

Issue 609656 link

Starred by 1 user

Issue metadata

Status: Verified
Owner: ----
Closed: Jul 2016
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

CHECK failed: node in ApplyStyleCommand.cpp

Project Member Reported by ClusterFuzz, May 5 2016

Issue description

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6180192782909440

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_debug_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  CHECK failed: node in ApplyStyleCommand.cpp
  blink::ApplyStyleCommand::applyRelativeFontStyleChange
  blink::ApplyStyleCommand::doApply
  

Minimized Testcase (0.79 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95HCTK96fLzKgsU25rYJDAc-ceZLjTYI1QfDJEAVWWc20mSSIDu-dQqOLMOUg7wmYcQBsQjd3Ig4VBlsL6jVGE8MgTG9IiKk6K0_O0gk6Y-ZS0IhL_f7xk531C3KrCFvl2I8qfGFqJjLp5hx4-dwvpeBT3NQg

Filer: manoranjanr

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
 
Components: Tools>Test>FindIt>NoResult Blink
Labels: Te-Logged
Owner: koten...@yandex-team.ru
Status: Assigned (was: Available)
kotenkov@, could you please look into this change (https://chromium.googlesource.com/chromium/src/+/4021ae18b9410d496adc92077e00672253f3876d%5E%21/third_party/WebKit/Source/core/editing/commands/ApplyStyleCommand.cpp) if possible?

Thank you!
Components: -Blink Blink>Editing
Owner: yosin@chromium.org

Comment 5 by yosin@chromium.org, Jun 10 2016

Owner: ----
Project Member

Comment 6 by ClusterFuzz, Jun 27 2016

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5233832441937920

Fuzzer: inferno_twister
Job Type: linux_asan_chrome_v8_arm
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x00000008
Crash State:
  blink::ApplyStyleCommand::applyRelativeFontStyleChange
  blink::ApplyStyleCommand::doApply
  blink::CompositeEditCommand::apply
  

Minimized Testcase (0.79 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97YyI72wjdA0UqW0JSFFaS9ibPqBq3_pcv6tDk6Ghs8MCE9gA3LHZRQ741YNSogJ9zd8cuyhy8VzxmztOfbpd9wdLUwQ7vXaBGsQuKdOlaclDYjMcDBuc8A0-_FH4FKEFKwP30rNQDf_ClMfCSk5DUTVZoNQQ?testcase_id=5233832441937920

Filer: mmohammad

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
Project Member

Comment 7 by ClusterFuzz, Jul 5 2016

ClusterFuzz has detected this issue as fixed in range 403746:403751.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5233832441937920

Fuzzer: inferno_twister
Job Type: linux_asan_chrome_v8_arm
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x00000008
Crash State:
  blink::ApplyStyleCommand::applyRelativeFontStyleChange
  blink::ApplyStyleCommand::doApply
  blink::CompositeEditCommand::apply
  
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_v8_arm&range=403746:403751

Minimized Testcase (0.79 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97YyI72wjdA0UqW0JSFFaS9ibPqBq3_pcv6tDk6Ghs8MCE9gA3LHZRQ741YNSogJ9zd8cuyhy8VzxmztOfbpd9wdLUwQ7vXaBGsQuKdOlaclDYjMcDBuc8A0-_FH4FKEFKwP30rNQDf_ClMfCSk5DUTVZoNQQ?testcase_id=5233832441937920

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 8 by ClusterFuzz, Jul 5 2016

ClusterFuzz has detected this issue as fixed in range 403746:403751.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6180192782909440

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_debug_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  node in ApplyStyleCommand.cpp
  blink::ApplyStyleCommand::applyRelativeFontStyleChange
  blink::ApplyStyleCommand::doApply
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=388139:388165
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=403746:403751

Minimized Testcase (0.79 Kb): https://cluster-fuzz.appspot.com/download/AMIfv973IFjw_Ue3D-HtTBMZ78JzER5mc58Phx5hzne3hDQ6K7zme6WmKb46Vw5liABdgtNZiat1n6a9ilEQYOeymzlQeHvBFfp6aunkeUXobBzzW-IsApG5EZ5CT30Yg6-1Xbf0OgYI4zF8gmibcqmXfGT2_nvw-Q?testcase_id=6180192782909440

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 9 by ClusterFuzz, Jul 5 2016

Labels: ClusterFuzz-Verified
Status: Verified (was: Assigned)
ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Components: -Tools>Test>FindIt>NoResult
Project Member

Comment 11 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment