No CL in the regression range changes the crashed files. The result is the blame information.

Author: Dana Jansens
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src//+/71331253d6537b9409518dec2368388c5d73cb94
Time: Wed Mar 09 20:57:22 2016
The CL last changed line 178 of file IntersectionObserver.cpp, which is stack frame 0.

Suspected Project: chromium
Suspected Component: Blink>DOM
================================
Above mentioned is the CL's list from findit, Suspecting the file of "IntersectionObserver.cpp" from the frame #0 .

danakj@: Could you please look into this issue if it is related to your change, else please help us in assigning it to the right owner.

Thanks!

This was assigned to me for renaming methods. Sorry but blame is only useful if you read the CL it shows.

=> owner of intersection observer

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/26d82fa7cdf1004bcc890a8506763ff850452b9f

commit 26d82fa7cdf1004bcc890a8506763ff850452b9f
Author: szager <szager@chromium.org>
Date: Tue May 10 19:44:16 2016

IntersectionObserver: check for constructed Frame.

BUG= 609712 
R=eae@chromium.org,skobes@chromium.org

Review-Url: https://codereview.chromium.org/1958363002
Cr-Commit-Position: refs/heads/master@{#392687}

[add] https://crrev.com/26d82fa7cdf1004bcc890a8506763ff850452b9f/third_party/WebKit/LayoutTests/intersection-observer/incomplete-document-expected.txt
[add] https://crrev.com/26d82fa7cdf1004bcc890a8506763ff850452b9f/third_party/WebKit/LayoutTests/intersection-observer/incomplete-document.html
[modify] https://crrev.com/26d82fa7cdf1004bcc890a8506763ff850452b9f/third_party/WebKit/Source/core/dom/IntersectionObserver.cpp

ClusterFuzz has detected this issue as fixed in range 392634:392692.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6685506649194496

Fuzzer: inferno_twister
Job Type: linux_asan_chrome_chromeos
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000000
Crash State:
  blink::IntersectionObserver::observe
  blink::IntersectionObserverV8Internal::observeMethodCallback
  v8::internal::FunctionCallbackArguments::Call
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=385342:385382
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_chromeos&range=392634:392692

Minimized Testcase (0.41 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95MHkXbEWHFpYcdk2GioZdg8jpUQNCho_gfoMsAtCi4UGDBXkcj8sJff6tbvnNViLKOApv_85WNuc-bMiRMbmGBSLml20Sh47DFSGKQuAXmbzW9udSqpN4A5zBJToVGZNrjaiCS5vFtFeQE9xAEXOzdzh4ZNQ

Additional requirements: Requires Gestures

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

[Automated comment] Less than 2 weeks to go before stable on M51, manual review required.

Before we approve merge to M51, Could you please confirm whether this bug is baked/verified in Canary and safe to merge?

It has been in canary since last week.

OK, approving merge to M51 branch 2704 based on comment #4 and #10. If possible, please merge before 4:00 PM PST today so we can take it for this week beta release tomorrow. Thank you.

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/5cb3583fc5aa214d59418c274c91805fad0f6259

commit 5cb3583fc5aa214d59418c274c91805fad0f6259
Author: szager <szager@chromium.org>
Date: Tue May 17 20:13:03 2016

[MERGE 2704] IntersectionObserver: check for constructed Frame.

BUG= 609712 
TBR=eae@chromium.org
NOTRY=true
NOPRESUBMIT=true
Original CL: https://codereview.chromium.org/1958363002

Review-Url: https://codereview.chromium.org/1985173002
Cr-Commit-Position: refs/branch-heads/2704@{#580}
Cr-Branched-From: 6e53600def8f60d8c632fadc70d7c1939ccea347-refs/heads/master@{#386251}

[add] https://crrev.com/5cb3583fc5aa214d59418c274c91805fad0f6259/third_party/WebKit/LayoutTests/intersection-observer/incomplete-document-expected.txt
[add] https://crrev.com/5cb3583fc5aa214d59418c274c91805fad0f6259/third_party/WebKit/LayoutTests/intersection-observer/incomplete-document.html
[modify] https://crrev.com/5cb3583fc5aa214d59418c274c91805fad0f6259/third_party/WebKit/Source/core/dom/IntersectionObserver.cpp

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot