Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5991444285489152 Fuzzer: bj_broddelwerk Job Type: linux_msan_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: startPosition.compareTo(endPosition) <= 0 in Serialization.cpp blink::CreateMarkupAlgorithm<>::createMarkup blink::createMarkup Sanitizer: memory (MSAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_msan_chrome&range=442831:443393 Minimized Testcase (4.86 Kb): https://cluster-fuzz.appspot.com/download/AMIfv94QKuyIqHr8bQFuZquvYEG3Au6iK9IXDUq0__pl_G1-F6tOTsXDk50siKWUvtMH1EC9EGKEZCd2mzi_k6Mw14DPc2KXV2SUYnlQSGGSaI-2gLCx6G4orPMlFz4pmchS_ilNoFhXjA7OOaq1jkxIUmI40KqvE3HLMHZp_Dg-fFncRPqcdpPLDi9KeWZwL73UeWal-mqJV6khQsQAxIkhWtTOC71KOx2WGPCMTiklFI3SwpuZex8UUZNZ6qaNdVA2f5P3tcA52Ha22tBztCgQJ9nU8aNY45kL3VL_jY4ze16u5whnKYInZVqRBVIaJaVhkY_vDdYFZW-rdZop9J28lNoKwQVHao3_5j2MrGQf4d7ZxHBY77c?testcase_id=5991444285489152 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
As per existing issue 675429, assigning to xiaochengh@. could you please take a look? Thank you.
ClusterFuzz has detected this issue as fixed in range 449250:449260. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5991444285489152 Fuzzer: bj_broddelwerk Job Type: linux_msan_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: startPosition.compareTo(endPosition) <= 0 in Serialization.cpp blink::CreateMarkupAlgorithm<>::createMarkup blink::createMarkup Sanitizer: memory (MSAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_msan_chrome&range=442831:443393 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_msan_chrome&range=449250:449260 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv94QKuyIqHr8bQFuZquvYEG3Au6iK9IXDUq0__pl_G1-F6tOTsXDk50siKWUvtMH1EC9EGKEZCd2mzi_k6Mw14DPc2KXV2SUYnlQSGGSaI-2gLCx6G4orPMlFz4pmchS_ilNoFhXjA7OOaq1jkxIUmI40KqvE3HLMHZp_Dg-fFncRPqcdpPLDi9KeWZwL73UeWal-mqJV6khQsQAxIkhWtTOC71KOx2WGPCMTiklFI3SwpuZex8UUZNZ6qaNdVA2f5P3tcA52Ha22tBztCgQJ9nU8aNY45kL3VL_jY4ze16u5whnKYInZVqRBVIaJaVhkY_vDdYFZW-rdZop9J28lNoKwQVHao3_5j2MrGQf4d7ZxHBY77c?testcase_id=5991444285489152 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
ClusterFuzz testcase 5991444285489152 is verified as fixed, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Comment 1 by mummare...@chromium.org
, Jan 18 2017Labels: Test-Predator-Wrong M-57
Owner: xiaoche...@chromium.org
Status: Assigned (was: Untriaged)