m_selectionInFlatTree.isValidFor(document()). VisibleSelection() in SelectionEdi |
|||||
Issue descriptionDetailed report: https://cluster-fuzz.appspot.com/testcase?key=5821767118749696 Fuzzer: bj_broddelwerk Job Type: linux_debug_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: m_selectionInFlatTree.isValidFor(document()). VisibleSelection() in SelectionEdi blink::SelectionEditor::updateIfNeeded blink::FrameSelection::updateIfNeeded Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_chrome&range=431812:431813 Unminimized Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96O7JLA8-7YXJokAcVhF2apuqvn9J5ynWjO0_G4DlGMhd7bsUiNZ2HdZEWRjCPHsaYiH4tK0-VhAeRWIzvcXhR7M-inpd2ibGQoG1J1EdIBhF0X5yDLOF2QmxCxrNmdd7NqrPxAeeDHwKyklfTFA4MfPx33aqOue2RrA5lFM7owLjPm0mI?testcase_id=5821767118749696 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
,
Jan 3 2017
the warnings have nothing to do with the CHECK failure, it simply means that chrome tries to create multiple AudioManager.
,
Jan 9 2017
,
Jan 10 2017
Through code search on file SelectionEditor.cpp, suspected CL is https://chromium.googlesource.com/chromium/src/+/14076c954628a8dc4bdefbd080cb80851d43d4ac
,
Mar 1 2017
ClusterFuzz has detected this issue as fixed in range 450347:450395. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5821767118749696 Fuzzer: bj_broddelwerk Job Type: linux_debug_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: m_selectionInFlatTree.isValidFor(document()). VisibleSelection() in SelectionEdi blink::SelectionEditor::updateIfNeeded blink::FrameSelection::updateIfNeeded Sanitizer: address (ASAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_chrome&range=431812:431813 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_chrome&range=450347:450395 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96O7JLA8-7YXJokAcVhF2apuqvn9J5ynWjO0_G4DlGMhd7bsUiNZ2HdZEWRjCPHsaYiH4tK0-VhAeRWIzvcXhR7M-inpd2ibGQoG1J1EdIBhF0X5yDLOF2QmxCxrNmdd7NqrPxAeeDHwKyklfTFA4MfPx33aqOue2RrA5lFM7owLjPm0mI?testcase_id=5821767118749696 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Mar 1 2017
ClusterFuzz testcase 5821767118749696 is verified as fixed, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Mar 1 2017
ClusterFuzz has detected this issue as fixed in range 450347:450395. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5821767118749696 Fuzzer: bj_broddelwerk Job Type: linux_debug_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: m_selectionInFlatTree.isValidFor(document()). VisibleSelection() in SelectionEdi blink::SelectionEditor::updateIfNeeded blink::FrameSelection::updateIfNeeded Sanitizer: address (ASAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_chrome&range=431812:431813 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_debug_chrome&range=450347:450395 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv96O7JLA8-7YXJokAcVhF2apuqvn9J5ynWjO0_G4DlGMhd7bsUiNZ2HdZEWRjCPHsaYiH4tK0-VhAeRWIzvcXhR7M-inpd2ibGQoG1J1EdIBhF0X5yDLOF2QmxCxrNmdd7NqrPxAeeDHwKyklfTFA4MfPx33aqOue2RrA5lFM7owLjPm0mI?testcase_id=5821767118749696 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by msrchandra@chromium.org
, Jan 3 2017Labels: Test-Predator-Wrong
Owner: qin...@chromium.org
Status: Assigned (was: Untriaged)