Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/edcfacf19e21ebe0910f7ad90d10902170cda21a (cc/ipc: Use PaintFilter serialization directly for FilterOperations.).

If this is incorrect, please remove the owner and apply the Test-Predator-Wrong-CLs label.

Automatically applying components based on crash stacktrace and information from OWNERS files.

If this is incorrect, please apply the Test-Predator-Wrong-Components label.

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/b001a21ad2917d2dd55c541144889bbeeef55d31

commit b001a21ad2917d2dd55c541144889bbeeef55d31
Author: Khushal <khushalsagar@chromium.org>
Date: Fri Jan 19 22:10:20 2018

cc/paint: Ensure matrices are fixed during deserialization for filters.

Use Read instead of ReadSimple on PaintOpReader during matrix
serialization to ensure the type and matrix values are set correctly.
In general, ReadSimple directly reads and sets the memory for the value
and might miss type specific sanity checks, so use the Read version for
available types.

R=vmpstr@chromium.org

Bug:  803432 
Cq-Include-Trybots: master.tryserver.blink:linux_trusty_blink_rel;master.tryserver.chromium.android:android_optional_gpu_tests_rel
Change-Id: I27c13806f3426fa1cad919af7a5f76f357f79d52
Reviewed-on: https://chromium-review.googlesource.com/875186
Commit-Queue: Khushal <khushalsagar@chromium.org>
Reviewed-by: vmpstr <vmpstr@chromium.org>
Cr-Commit-Position: refs/heads/master@{#530629}
[modify] https://crrev.com/b001a21ad2917d2dd55c541144889bbeeef55d31/cc/paint/paint_op_reader.cc

ClusterFuzz has detected this issue as fixed in range 530628:530631.

Detailed report: https://clusterfuzz.com/testcase?key=5488509380198400

Fuzzer: libFuzzer_paint_op_buffer_eq_fuzzer
Job Type: libfuzzer_chrome_asan
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  *deserialized_op1 == *deserialized_op2 in paint_op_buffer_eq_fuzzer.cc
  paint_op_buffer_eq_fuzzer.cc
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=529805:529845
Fixed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_asan&range=530628:530631

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=5488509380198400

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5488509380198400 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.