New issue
Advanced search Search tips

Issue 621017 link

Starred by 1 user
Status: WontFix
Owner:
yosin@chromium.org
Closed: Jun 2016
Cc:
joone....@intel.com
editing-dev@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 1
Type: Bug



Sign in to add a comment

Crash in blink::CompositeEditCommand::insertNodeAfter

Project Member Reported by ClusterFuzz, Jun 17 2016 
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5087559277608960

Fuzzer: bj_broddelwerk
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000048
Crash State:
  blink::CompositeEditCommand::insertNodeAfter
  blink::InsertLineBreakCommand::doApply
  blink::CompositeEditCommand::applyCommandToComposite
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=172836:173286

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv942y867PDwwdsOQl1eFdJwzuYcw3xX6pA2cyUtzeP_OaemAs36i642n__WYElSKQjgPCFqsqCxV2fSfGA05oUtakJQd9IXIKDS9eHl-O9Jo_nbsBkblwdKc5CEbr2IzsLP61kWwzob8XExYZ0XMFkpDErVX1HbPtbo33WHSQecVLOOHDV0


Additional requirements: Requires Gestures

Filer: durga.behera

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by durga.behera@chromium.org, Jun 17 2016

Cc: joone....@intel.com
Components: Tools>Test>FindIt>NoResult Blink
Labels: findit-wrong Te-Logged M-52
Owner: yosin@chromium.org
Currently its impacting the latest Stable (51.0.2704.84) and Beta (52.0.2743.41.

Findit did not produce any suspected CLs.

From code search on the crashed file "CompositeEditCommand.cpp" recent changes made might be suspect.
Suspect : https://codereview.chromium.org/2073643002
joone.hur@ : Could you please take a look into this if its related to your change.
yosin@ : Referring to  Issue 614246 , assigned to you.
Project Member

Comment 2 by sheriffbot@chromium.org, Jun 17 2016

Labels: -M-52 M-53 MovedFrom-52
Moving this nonessential bug to the next milestone.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 3 by cbiesin...@chromium.org, Jun 18 2016

Components: -Blink Blink>Editing

Comment 4 by joone....@intel.com, Jun 18 2016 

could you attach the test case?
Project Member

Comment 5 by ClusterFuzz, Jun 18 2016 

ClusterFuzz has detected this testcase as flaky and is unable to reproduce it in the original crash revision. Skipping fixed testing check and marking it as potentially fixed.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5087559277608960

Fuzzer: bj_broddelwerk
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000048
Crash State:
  blink::CompositeEditCommand::insertNodeAfter
  blink::InsertLineBreakCommand::doApply
  blink::CompositeEditCommand::applyCommandToComposite
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=172836:173286

Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv942y867PDwwdsOQl1eFdJwzuYcw3xX6pA2cyUtzeP_OaemAs36i642n__WYElSKQjgPCFqsqCxV2fSfGA05oUtakJQd9IXIKDS9eHl-O9Jo_nbsBkblwdKc5CEbr2IzsLP61kWwzob8XExYZ0XMFkpDErVX1HbPtbo33WHSQecVLOOHDV0?testcase_id=5087559277608960


Additional requirements: Requires Gestures

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

Comment 6 by yosin@chromium.org, Jun 24 2016

Status: WontFIx (was: Available)
Mark WontFix according to #c5

Comment 7 by kateso...@chromium.org, Oct 18 2016

Components: -Tools>Test>FindIt>NoResult
Project Member

Comment 8 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment