CHECK failure: i < size() in Vector.h |
||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=5040045596868608 Fuzzer: inferno_layout_test_unmodified Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: i < size() in Vector.h blink::LayoutBlockFlow::AppendFloatsToLastLine blink::LayoutBlockFlow::LayoutRunsAndFloatsInRange Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=473625:473653 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5040045596868608 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Jan 4 2018
Unable to provide possible suspect using Predator, CL and Code Search. Could someone please look into the issue. Thank You...
,
Jan 4 2018
,
Jan 5 2018
,
Jan 5 2018
Would you mind taking a look at this one Rob?
,
Jan 5 2018
,
Apr 8 2018
ClusterFuzz has detected this issue as fixed in range 549059:549062. Detailed report: https://clusterfuzz.com/testcase?key=5040045596868608 Fuzzer: inferno_layout_test_unmodified Job Type: linux_ubsan_vptr_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: i < size() in Vector.h blink::LayoutBlockFlow::AppendFloatsToLastLine blink::LayoutBlockFlow::LayoutRunsAndFloatsInRange Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=473625:473653 Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_vptr_chrome&range=549059:549062 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5040045596868608 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
||||||
►
Sign in to add a comment |
||||||
Comment 1 by dtapu...@chromium.org
, Jan 3 2018