CHECK failure: false in style_builder.cc |
||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=6626940308684800 Fuzzer: ifratric-browserfuzzer-v3 Job Type: linux_debug_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: false in style_builder.cc blink::StyleBuilder::ApplyProperty blink::StyleBuilder::ApplyProperty Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=linux_debug_chrome&range=523893:523905 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6626940308684800 Issue filed automatically. See https://github.com/google/clusterfuzz-tools for more information.
,
Mar 17 2018
Automatically adding ccs based on suspected regression changelists: Drop UseCounter usage measurement on view-source pages. by loonybear@chromium.org - https://chromium.googlesource.com/chromium/src/+/3f921557c4cb83453bfce0fe8637e489a90064ad Add ImageData constructor from StaticBitmapImage by zakerinasab@chromium.org - https://chromium.googlesource.com/chromium/src/+/2c863229da24ed1cb180759c9342e7a5125fd6f5 If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label.
,
Mar 19 2018
Can reproduce. Regression range looks bogus.
,
Mar 19 2018
,
Mar 22 2018
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/cd755eea8d9f291537513f0bfd85c6e5d9845402 commit cd755eea8d9f291537513f0bfd85c6e5d9845402 Author: Rune Lillesveen <futhark@chromium.org> Date: Thu Mar 22 09:48:04 2018 Drop property if valid descriptor but not property. This bug made @font-face and @viewport descriptor names become valid properties in style rules when the value included var() references. Bug: 823034 Change-Id: I1087f110af07d8b92989d55e8bebe9cab19d3e0d Reviewed-on: https://chromium-review.googlesource.com/968489 Commit-Queue: Rune Lillesveen <futhark@chromium.org> Reviewed-by: Morten Stenshorne <mstensho@chromium.org> Reviewed-by: Ian Kilpatrick <ikilpatrick@chromium.org> Cr-Commit-Position: refs/heads/master@{#545025} [modify] https://crrev.com/cd755eea8d9f291537513f0bfd85c6e5d9845402/third_party/WebKit/Source/core/css/parser/CSSPropertyParser.cpp [modify] https://crrev.com/cd755eea8d9f291537513f0bfd85c6e5d9845402/third_party/WebKit/Source/core/css/parser/CSSPropertyParser.h [modify] https://crrev.com/cd755eea8d9f291537513f0bfd85c6e5d9845402/third_party/WebKit/Source/core/css/parser/CSSPropertyParserTest.cpp
,
Mar 22 2018
,
Mar 23 2018
ClusterFuzz has detected this issue as fixed in range 545023:545026. Detailed report: https://clusterfuzz.com/testcase?key=6626940308684800 Fuzzer: ifratric-browserfuzzer-v3 Job Type: linux_debug_chrome Platform Id: linux Crash Type: CHECK failure Crash Address: Crash State: false in style_builder.cc blink::StyleBuilder::ApplyProperty blink::StyleBuilder::ApplyProperty Sanitizer: address (ASAN) Regressed: https://clusterfuzz.com/revisions?job=linux_debug_chrome&range=523893:523905 Fixed: https://clusterfuzz.com/revisions?job=linux_debug_chrome&range=545023:545026 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6626940308684800 See https://github.com/google/clusterfuzz-tools for more information. If you suspect that the result above is incorrect, try re-doing that job on the test case report page.
,
Mar 23 2018
ClusterFuzz testcase 6626940308684800 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue. |
||||||
►
Sign in to add a comment |
||||||
Comment 1 by ClusterFuzz
, Mar 17 2018Labels: Test-Predator-Auto-Components