Providing Predator results:
Suspected CLs	The result is a list of CLs that change the crashed files.

Author: junov
Project: chromium
Changelist: https://chromium.googlesource.com/chromium/src/+/980562f70d53ff313d4f5cd885c70248d3dd902a
Time: Wed Sep 07 19:35:18 2016
File HTMLCanvasElement.cpp is changed in this cl (and is part of stack frame #2, "blink::"; frame #3, "blink::HTMLCanvasElement::getSourceImageForCanvas"; frame #4, "non-virtual thunk to blink::HTMLCanvasElement::getSourceImageForCanvas")
Minimum distance from crash line to modified line: 55. (file: HTMLCanvasElement.cpp, crashed on: 1194, modified: 1139).

Suspected Project: chromium
Suspected Component: Blink>HTML

junov@, could you please check the issue and help.

Removing EditIssue view restrictions from ClusterFuzz filed bugs. If you believe that this issue should still be restricted, please reapply the label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/edbaf210e408c0c06c5f1dba250d1a5e33bb3c6e

commit edbaf210e408c0c06c5f1dba250d1a5e33bb3c6e
Author: junov <junov@chromium.org>
Date: Mon Nov 28 20:29:27 2016

Add null check in createTransparentImage

BUG= 666630 

Review-Url: https://codereview.chromium.org/2517693002
Cr-Commit-Position: refs/heads/master@{#434711}

[modify] https://crrev.com/edbaf210e408c0c06c5f1dba250d1a5e33bb3c6e/third_party/WebKit/Source/core/html/HTMLCanvasElement.cpp

ClusterFuzz has detected this issue as fixed in range 434662:434711.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5466942120132608

Fuzzer: ochang_domfuzzer
Job Type: linux_asan_chrome_mp
Platform Id: linux

Crash Type: UNKNOWN READ
Crash Address: 0x000000000028
Crash State:
  SkSurface::makeImageSnapshot
  blink::createTransparentImage
  blink::HTMLCanvasElement::getSourceImageForCanvas
  
Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=416997:417065
Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_asan_chrome_mp&range=434662:434711

Minimized Testcase (19.19 Kb): https://cluster-fuzz.appspot.com/download/AMIfv95-2Jl2B-S-UQKt37KkDNmAOlbay6xSyxaRH8SBr4ToA_XivkICd01fW-VtPSlRGvcE6OlO-JM_nS7Qd3YvOPj1Cx45qpJaQpQsZI71rgjF7SO2hkBHg0xgic8cqZ82aO9hWdrkXVfTQYw5J_jyZXTOzNKcsPi_gIKCY4CXak1Q2qrsxDQ?testcase_id=5466942120132608

See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase is verified as fixed, closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.