This issue is a security regression. If you are not able to fix this quickly, please revert the change that introduced it.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Can you please take a look sigbjornf@?

Based on the report, dd42ff761a2b4725279bb659de9e5205567875a4 looks like the most likely source of the regression. 

(I suspect this should be Security_Impact-None as this looks to be solely test code)

ClusterFuzz has detected this issue as fixed in range 454873:455044.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=4861066355146752

Fuzzer: inferno_twister
Job Type: mac_asan_content_shell
Platform Id: mac

Crash Type: ASSERT
Crash Address: 
Crash State:
  !needsLayout() seen again
  test_runner::GamepadController::Create
  test_runner::TestInterfaces::SetDelegate
  
Sanitizer: address (ASAN)

Regressed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=454833:454837
Fixed: https://cluster-fuzz.appspot.com/revisions?job=mac_asan_content_shell&range=454873:455044

Reproducer Testcase: https://cluster-fuzz.appspot.com/download/AMIfv94QF9V8i74KlCUWPhHjBQ_yIOz5XxC1Xv9ZTKjU7Rxg3xHqnqjE61cZQtB1tuw-Y1IGl-MhVjchalJ1OFVmhWxIrBIOS-Hwp_Eh9To7yC8DUeimaYKtj7HaTKxfQjl7kFF6kffHZF4oUIvLnuAvzTB8dsrx6oISg3at1D3sfexcd4VOW2Li-S9_YaFWrmNx__7LgL71UeN9keFR709JaeRBMk6X0SUgsACl0D9k5OKklmgLDBXATO6xaT-fF46RWJA_jZTG_3MIeUO3H7l45Milb3GuJsL_j_QOofCtmBalXIodKVIZbY0zRlbgDBoPjvbrVR_EiVK_fXTLoDrBS642vxeNFqKEHv45DrH-j0-2vYxjRXY?testcase_id=4861066355146752


See https://dev.chromium.org/Home/chromium-security/bugs/reproducing-clusterfuzz-bugs for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot