Suspected CLs	No CL in the regression range changes the crashed files. The result is the blame information.

Author: tfarina@chromium.org
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src//+/f751653a94ab3b2a187306c1d9c9af004db1e7d8
Time: Tue Feb 18 16:32:55 2014
The CL last changed line 224 of file text_input_controller.cc, which is stack frame 5.

Author: tfarina@chromium.org
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src//+/f751653a94ab3b2a187306c1d9c9af004db1e7d8
Time: Tue Feb 18 16:32:55 2014
The CL last changed line 134 of file text_input_controller.cc, which is stack frame 6.

Suspected Project: chromium
-----------------------------

@tfarina: Hey, would you mind checking the above issue and see if it's related to your change ?

Appreciate your help.

Thank you!

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5213473189658624

Fuzzer: inferno_twister
Job Type: windows_syzyasan_content_shell
Platform Id: windows

Crash Type: UNKNOWN
Crash Address: 0x00000023
Crash State:
  blink::RangeBoundaryPoint::ensureOffsetIsValid
  blink::WebRange::startOffset
  test_runner::TextInputController::SelectedRange
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_syzyasan_content_shell&range=399164:399271

Minimized Testcase (0.12 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv95BqUK1jFCwdwk2eP7SBISIhkEc9KbiNXrdzlJsNpwtVgMruHjeedntkXJfZ5_zlAeYCUileBXEbh7lyboN3GRlX9r3qGB8EiicSOl__2S04yMAS-aPrbsHGDVfjRtEnT7aYUNHnGZ0RkiGHiQ3-iVD2DesjA
  <script>

function __f_29()
{
 x: 0;
textInputController.selectedRange()[0]}

    var __v_34 = __f_29();
</script>


Filer: brajkumar

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6468334925381632

Fuzzer: mbarbella_js_mutation_layout
Job Type: linux_asan_content_shell_drt
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000030
Crash State:
  blink::WebRange::startOffset
  test_runner::TextInputController::SelectedRange
  test_runner::TextInputControllerBindings::SelectedRange
  

Minimized Testcase (0.06 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv94WT84Cu8wzRF-YlEqDpOBZTvAZljdp8f6V7C9fPdxs81US2l7VgVdtPXz5Qe_xsidRcFiKxvEIm57rEL0X1GkPZoPr0mkgbSqyeL5HvJtsbgWkkdq42m_I_5Wjvt_fv3HVRbuGuHz6gXf02ZsREd8vTAvhTQ
   <script>
textInputController.selectedRange()[0]
  </script>


Filer: mmohammad

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6468334925381632

Fuzzer: mbarbella_js_mutation_layout
Job Type: linux_asan_content_shell_drt
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000030
Crash State:
  blink::WebRange::startOffset
  test_runner::TextInputController::SelectedRange
  test_runner::TextInputControllerBindings::SelectedRange
  

Minimized Testcase (0.06 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv94WT84Cu8wzRF-YlEqDpOBZTvAZljdp8f6V7C9fPdxs81US2l7VgVdtPXz5Qe_xsidRcFiKxvEIm57rEL0X1GkPZoPr0mkgbSqyeL5HvJtsbgWkkdq42m_I_5Wjvt_fv3HVRbuGuHz6gXf02ZsREd8vTAvhTQ
   <script>
textInputController.selectedRange()[0]
  </script>


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6741225436872704

Fuzzer: inferno_layout_test_unmodified
Job Type: windows_syzyasan_content_shell
Platform Id: windows

Crash Type: UNKNOWN
Crash Address: 0x00000023
Crash State:
  blink::RangeBoundaryPoint::ensureOffsetIsValid
  blink::WebRange::startOffset
  test_runner::TextInputController::MarkedRange
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_syzyasan_content_shell&range=400170:400189

Minimized Testcase (0.05 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv97-wlVbiWFJJRCQ7u0XYAoSS2o3wO2g9UWWcajEaDBhbhGfvLBCj4MErn4o1QyuihOvk6yZQ4WDWdaAsvDhOrerinlVeiAPNHMVQjTzGu89rS6lDJXlJ1qthoM2LpBya1Y9kXFP7uVZmwp9ixKwv0OtjUglgA?testcase_id=6741225436872704
<script>
textInputController.markedRange();
</script>


Filer: inferno

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5390073168396288

Fuzzer: mbarbella_js_mutation_layout
Job Type: windows_syzyasan_content_shell
Platform Id: windows

Crash Type: UNKNOWN
Crash Address: 0x00000023
Crash State:
  blink::RangeBoundaryPoint::ensureOffsetIsValid
  blink::WebRange::startOffset
  test_runner::TextInputController::SelectedRange
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_syzyasan_content_shell&range=398532:398545

Minimized Testcase (0.06 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv97fIypIAU-QWUKp7PXYm9JRfH7u9QYQrq6lJWjLrO3ruRjA8SvSeMDL3IoBipLB9vnroH3SqgtSNbtNRudBH223pdMzir1FD8e1peClfmePzHKltfP2J0IKntFrA-3blb3PfeVJfjMYp4ZIIVBT7GzVwWC9wA?testcase_id=5390073168396288
<script>
textInputController.selectedRange()[-4]</script>


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4695239864614912

Fuzzer: inferno_layout_test_unmodified
Job Type: windows_syzyasan_content_shell
Platform Id: windows

Crash Type: UNKNOWN
Crash Address: 0x00000023
Crash State:
  blink::RangeBoundaryPoint::ensureOffsetIsValid
  blink::WebRange::startOffset
  test_runner::TextInputController::MarkedRange
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=windows_syzyasan_content_shell&range=402252:402309

Minimized Testcase (0.06 Kb):
Download: https://cluster-fuzz.appspot.com/download/AMIfv95GrSqyr1qPRLA41EqAO2PEiJzwEpJBLbNeMq63XGnpufGq62TxGCl8LvCuz1EwT-8hI5DNQJ_kxEoxwtkd8oxjvbcsE1_rnnhki9OwI8kDEgwKiHP5U0jZ9mMI6sr4TBZQsio9v00OWuJhrnTUqlt3D9qBEw?testcase_id=4695239864614912
<script>
textInputController.markedRange();
  </script>


Filer: tkonchada

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Moving this nonessential bug to the next milestone.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

ClusterFuzz testcase 5213473189658624 is flaky and no longer reproduces, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.