Crash in findX |
|||||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5662128553066496 Fuzzer: bj_broddelwerk Job Type: linux_lsan_chrome_mp Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000000000 Crash State: findX SkAAClipBlitter::blitV aaa_walk_convex_edges Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=430188:430192 Minimized Testcase (0.37 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97xNbBofjYWm02kouSSW6FbhM6ZufM1tMYwHFb88xhDfgy79GTFeirwlQgwSm6hc-NcUHIpevFQuJeBRLfP8l5LWPNS8FCEy5H-28nCpde4MAJVvew1WqOW1Afp1FOxaKY2ddRXKoVSv3-iHmHnZsNzg--r8w?testcase_id=5662128553066496 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Nov 8 2016
ClusterFuzz has detected this issue as fixed in range 430262:430287. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5662128553066496 Fuzzer: bj_broddelwerk Job Type: linux_lsan_chrome_mp Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x000000000000 Crash State: findX SkAAClipBlitter::blitV aaa_walk_convex_edges Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=430188:430192 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_lsan_chrome_mp&range=430262:430287 Minimized Testcase (0.37 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97xNbBofjYWm02kouSSW6FbhM6ZufM1tMYwHFb88xhDfgy79GTFeirwlQgwSm6hc-NcUHIpevFQuJeBRLfP8l5LWPNS8FCEy5H-28nCpde4MAJVvew1WqOW1Afp1FOxaKY2ddRXKoVSv3-iHmHnZsNzg--r8w?testcase_id=5662128553066496 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Nov 8 2016
ClusterFuzz testcase is verified as fixed, closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 8 2016
The following CL should fix it. https://codereview.chromium.org/2481703004/
,
Nov 8 2016
,
Nov 8 2016
,
Nov 8 2016
Please ignore the CL posted above (https://codereview.chromium.org/2481703004/). That CL is for chromium:662925 (this is chromium:662952; moreover, both these bugs have a final fail in findX, which are really confusing). The actual CL that fixes this is: https://codereview.chromium.org/2485243002/
,
Nov 9 2016
The following revision refers to this bug: https://skia.googlesource.com/skia.git/+/c78eff97549e8e346394d3e228395ceb8a467b35 commit c78eff97549e8e346394d3e228395ceb8a467b35 Author: liyuqian <liyuqian@google.com> Date: Wed Nov 09 19:18:30 2016 Do not call blitV with 0 height This is causing SkAAClipBlitter to crash. BUG= chromium:662952 GOLD_TRYBOT_URL= https://gold.skia.org/search?issue=2485243002 Review-Url: https://codereview.chromium.org/2485243002 [modify] https://crrev.com/c78eff97549e8e346394d3e228395ceb8a467b35/src/core/SkScan_AAAPath.cpp [modify] https://crrev.com/c78eff97549e8e346394d3e228395ceb8a467b35/tests/PathTest.cpp
,
Nov 15 2016
,
Nov 22 2016
Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by mummare...@chromium.org
, Nov 7 2016Labels: Test-Predator-Wrong-CLs M-56 Te-Logged
Owner: liyuqian@chromium.org
Status: Assigned (was: Untriaged)