Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5890986778820608 Fuzzer: inferno_layout_test_fuzzer Job Type: linux_ubsan_vptr_content_shell_drt Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: false in FontCache.cpp blink::FontCache::crashWithFontInfo blink::FontFallbackIterator::next Sanitizer: undefined (UBSAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_vptr_content_shell_drt&range=451942:451968 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95OFXi1kekq59Uc5ZnHpDljCAvB7LCFLNjNMugLzt_3Xo9mjp7jOe_rtR-XrulG_unQcJxwGNXzTQIFg0KO5l4lFQC426dgWR6F6VnrIPe0HH6I2fLjCZmG67okEZTo0T62Jf8LSkgMozwglO8dby9Lvt-eyeJOhpgLIBQRmXR982sx9jqHLtW8qb7aIumOhX3HRCAjas1LO73GmtxuaD7EtsOktALueUYOTEEdn7OB8X0EwW3dOAz8MA4-whF0I3xyjrbVdGahjk3IOqg8mLTGHvQ7rHFCLgCTKxnmr5o-fKoQgduXE2DaqA_8ql2OjN2jmT5G1wJwPacx1f1zBv8aoCeV8cHAbjG6t4ZG-6kmU2ydHmESHD0KGGh6QS7q3Vb7Clb7UQWwWE_n9gzvPTqJo3FjbQ?testcase_id=5890986778820608 Issue filed automatically. See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.
Suspected CL from regression range https://chromium.googlesource.com/chromium/src/+/525ae83ae253451728d18cb115df46197eab35cf kojii@, could you please take a look? Thank you
Oh, great clusterfuzz, but I'm still not able to repro.
ClusterFuzz has detected this issue as fixed in range 454776:454777. Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5890986778820608 Fuzzer: inferno_layout_test_fuzzer Job Type: linux_ubsan_vptr_content_shell_drt Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: false in FontCache.cpp blink::FontCache::crashWithFontInfo blink::FontFallbackIterator::next Sanitizer: undefined (UBSAN) Regressed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_vptr_content_shell_drt&range=451942:451968 Fixed: https://cluster-fuzz.appspot.com/revisions?job=linux_ubsan_vptr_content_shell_drt&range=454776:454777 Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv95OFXi1kekq59Uc5ZnHpDljCAvB7LCFLNjNMugLzt_3Xo9mjp7jOe_rtR-XrulG_unQcJxwGNXzTQIFg0KO5l4lFQC426dgWR6F6VnrIPe0HH6I2fLjCZmG67okEZTo0T62Jf8LSkgMozwglO8dby9Lvt-eyeJOhpgLIBQRmXR982sx9jqHLtW8qb7aIumOhX3HRCAjas1LO73GmtxuaD7EtsOktALueUYOTEEdn7OB8X0EwW3dOAz8MA4-whF0I3xyjrbVdGahjk3IOqg8mLTGHvQ7rHFCLgCTKxnmr5o-fKoQgduXE2DaqA_8ql2OjN2jmT5G1wJwPacx1f1zBv8aoCeV8cHAbjG6t4ZG-6kmU2ydHmESHD0KGGh6QS7q3Vb7Clb7UQWwWE_n9gzvPTqJo3FjbQ?testcase_id=5890986778820608 See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
ClusterFuzz testcase 5890986778820608 is verified as fixed, so closing issue. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
Comment 1 by mummare...@chromium.org
, Mar 2 2017Labels: Test-Predator-Wrong M-58
Owner: kojii@chromium.org
Status: Assigned (was: Untriaged)