New issue
Advanced search Search tips

Issue 628531 link

Starred by 1 user
Status: Verified
Owner: ----
Closed: Nov 2016
Cc:
editing-dev@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

InsertListCommand hits DCHECK with TR

Project Member Reported by ClusterFuzz, Jul 15 2016 
Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6665709388300288

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_debug_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  destination.deepEquivalent().inShadowIncludingDocument(). INPUT id="el3"@0/TextA
  blink::CompositeEditCommand::moveParagraphs
  blink::CompositeEditCommand::moveParagraph
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=339858:339861

Minimized Testcase (0.99 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95qJ3_R5tV4Mm7yLO-w2ET8yDg-rBHYv9vJyOyiDAfK5hhlQhU5boi287-BUug1gXQVtY9UtyH3HSMcTu0nVKFaI6bVC4SeKl0svJvrB5Peh8RMEz8Iiu1zx65zvVPVkK9n4Iyvss6LLIFnWEZhegHSuuuXuw?testcase_id=6665709388300288

Filer: kavvaru

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

Comment 1 by kavvaru@chromium.org, Jul 15 2016

Components: Blink>Editing>Command Tools>Test>FindIt>NoResult
Labels: Te-Logged M-52
Owner: yoichio@chromium.org
Status: Assigned (was: Available)
Blink CL
===========
https://chromium.googlesource.com/chromium/blink/+log/6f48aefd394edf47e5e1d7623ac71115b675c4da..a14f45b42a54e050e9d02f62b019773378cbfdbf?pretty=fuller

Possible suspect from the above CL
https://codereview.chromium.org/1245843003

yoichio@ Could you please look into this issue if it is related to your change,else please route this to an appropriate owner for this issue.

Thanks,

Comment 2 by yosin@chromium.org, Jul 15 2016

Labels: -Pri-1 Pri-2
Owner: ----
Status: Available (was: Assigned)
Summary: InsertListCommand hits DCHECK with TABLE (was: destination.deepEquivalent().inShadowIncludingDocument(). INPUT id="el3"@0/TextA)
Lower to Pri-2 since real world usage of InsertLineBreak command is low.

DOM tree at assertion:
m_endingSelection.showTreeForThis()
BODY	00000262118E3168 (editable) (focused)
	TR	00000262118E31D0 ID="el0" (editable)
SE		BR	00000262118E3C28 (editable)

Comment 3 by yosin@chromium.org, Jul 15 2016

Summary: InsertListCommand hits DCHECK with TR (was: InsertListCommand hits DCHECK with TABLE)

Comment 4 by kateso...@chromium.org, Oct 18 2016

Components: -Tools>Test>FindIt>NoResult
Project Member

Comment 5 by sheriffbot@chromium.org, Nov 22 2016

Labels: -Restrict-View-EditIssue
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 6 by ClusterFuzz, Nov 29 2016 

ClusterFuzz has detected this issue as fixed in range 434840:434865.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=6665709388300288

Fuzzer: inferno_layout_test_unmodified
Job Type: linux_debug_content_shell_drt
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  destination.deepEquivalent().inShadowIncludingDocument(). INPUT id="el3"@0/TextA
  blink::CompositeEditCommand::moveParagraphs
  blink::CompositeEditCommand::moveParagraph
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=339858:339861
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_content_shell_drt&range=434840:434865

Minimized Testcase (0.99 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95qJ3_R5tV4Mm7yLO-w2ET8yDg-rBHYv9vJyOyiDAfK5hhlQhU5boi287-BUug1gXQVtY9UtyH3HSMcTu0nVKFaI6bVC4SeKl0svJvrB5Peh8RMEz8Iiu1zx65zvVPVkK9n4Iyvss6LLIFnWEZhegHSuuuXuw?testcase_id=6665709388300288

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
Project Member

Comment 7 by ClusterFuzz, Nov 29 2016

Labels: ClusterFuzz-Verified
Status: Verified (was: Available)
ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

Sign in to add a comment