CHECK failure: *deserialized_op1 == *deserialized_op2 in paint_op_buffer_eq_fuzzer.cc |
|||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4554170685456384 Fuzzer: libFuzzer_paint_op_buffer_eq_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: *deserialized_op1 == *deserialized_op2 in paint_op_buffer_eq_fuzzer.cc paint_op_buffer_eq_fuzzer.cc Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=528359:528385 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4554170685456384 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.
,
Jan 11 2018
Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/22b01e0c8069d1ebf0ced27d5ccc037271ca60cc (oop: Serialize non-image filters.). If this is incorrect, please remove the owner and apply the Test-Predator-Wrong-CLs label.
,
Jan 12 2018
,
Jan 12 2018
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/df1094e3ed961da213ebd04be2c085bb203a7036 commit df1094e3ed961da213ebd04be2c085bb203a7036 Author: Vladimir Levin <vmpstr@chromium.org> Date: Fri Jan 12 04:11:48 2018 oop: Add more types to PaintOpHelper::ToString + fix comparison. This patch adds a bunch more types to the ToString serialization. It also changes the comparison of crop rect to handle NaN values. R=enne@chromium.org Bug: 801001 Cq-Include-Trybots: master.tryserver.blink:linux_trusty_blink_rel;master.tryserver.chromium.android:android_optional_gpu_tests_rel Change-Id: Ic5d465be6d659a60d33133864c4877594c4a6271 Reviewed-on: https://chromium-review.googlesource.com/861918 Commit-Queue: vmpstr <vmpstr@chromium.org> Reviewed-by: enne <enne@chromium.org> Cr-Commit-Position: refs/heads/master@{#528873} [modify] https://crrev.com/df1094e3ed961da213ebd04be2c085bb203a7036/cc/paint/paint_filter.cc [modify] https://crrev.com/df1094e3ed961da213ebd04be2c085bb203a7036/cc/paint/paint_op_buffer_eq_fuzzer.cc [modify] https://crrev.com/df1094e3ed961da213ebd04be2c085bb203a7036/cc/paint/paint_op_helper_unittest.cc [modify] https://crrev.com/df1094e3ed961da213ebd04be2c085bb203a7036/cc/test/paint_op_helper.h
,
Jan 12 2018
ClusterFuzz testcase 6323480852430848 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Jan 12 2018
ClusterFuzz has detected this issue as fixed in range 528872:528878. Detailed report: https://clusterfuzz.com/testcase?key=4554170685456384 Fuzzer: libFuzzer_paint_op_buffer_eq_fuzzer Job Type: libfuzzer_chrome_asan Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: *deserialized_op1 == *deserialized_op2 in paint_op_buffer_eq_fuzzer.cc paint_op_buffer_eq_fuzzer.cc Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=528359:528385 Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=528872:528878 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4554170685456384 See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page. |
|||
►
Sign in to add a comment |
|||
Comment 1 by ClusterFuzz
, Jan 11 2018Labels: Test-Predator-Auto-Components