Issue 827045 link

Starred by 2 users

Issue metadata

Status:	Verified
Owner:	█ loonyb...@chromium.org Last visit > 30 days ago
Closed:	Mar 2018
Cc:	█ manoranj...@chromium.org █ loonyb...@chromium.org nyerramilli@chromium.org rbasuvula@chromium.org
Components:	Blink>Media
EstimatedDays:	----
NextAction:	----
OS:	Linux , Windows , Mac
Pri:	1
Type:	Bug-Regression
Stability-Crash ReleaseBlock-Beta HasTestcase ClusterFuzz-Verified hasbisect-per-revision M-67 FoundIn-67 RegressedIn-67 Target-67 ET-MUM-Reported

Regression : Browser crashes after selecting 'Troubleshoot playback issue' option on YouTube video.

Reported by avsha...@etouch.net, Mar 29 2018

Issue description

Chrome Version : 67.0.3383.0 (Official Build) b6c093c42e2a0eb8c2d8c9dc76171b59dc65568d-refs/heads/master@{#546671} 64-bit
OS : Windows(7,8,8.1,10), Linux(14.04 LTS)

What steps will reproduce the problem?
1. Launch chrome, navigate to www.youtube.com and play any video.
2. Right click on video and select 'Troubleshoot playback issue' option.
3. Observe.

Actual Result : Browser crashes after selecting 'Troubleshoot playback issue' option on YouTube video.

Expected Result : Browser should not crash.

------------
Crash ID:
ID 7ed6e314b20f325a (Local Crash ID: 502cc22c-0c2f-4a18-bf2e-1401294478fc)
ID 0f7374ab382f39c3 (Local Crash ID: b7ed7d83-6b5e-459e-80e5-eaf03537255c)

This is a regression issue, broken in M-67 and will soon update remaining info.

	Actual_Crash.mp4 1.2 MB View Download

Comment 1 by avsha...@etouch.net, Mar 29 2018

Labels: hasbisect-per-revision RegressedIn-67 Target-67 FoundIn-67 ET-MUM-Reported OS-Windows
Owner: loonyb...@chromium.org
Status: Assigned (was: Unconfirmed)

This is a regression issue, broken in M-67 and providing the bisect using per-revision script:
Good Build : 67.0.3381.0 (Revision : 545919)
Bad Build : 67.0.3382.0 (Revision : 546346)

You are probably looking for a change made after 546162 (known good), but no later than 546163 (first known bad).

CHANGE-LOG URL:
https://chromium.googlesource.com/chromium/src/+log/e74fcf86f94d9feb618a330bba378b32850450bc..29d922d6f2e2da999f1c71b320a65c2584a01d99

Suspect : https://chromium.googlesource.com/chromium/src/+/29d922d6f2e2da999f1c71b320a65c2584a01d99

@Luna : Could you please check whether this is caused with respect to your change, if not please help us in assigning it to the right owner.

Note : 
1. This crash is also reproducible in 32-bit Canary build #67.0.3383.0.
2. Able to repro on Mac(10.12.6, 10.13.1, 10.13.4) OS.

	Expected_Result.mp4 1.1 MB View Download

Comment 2 by nyerramilli@chromium.org, Mar 29 2018

Cc: manoranj...@chromium.org
Labels: ReleaseBlock-Beta

marking as RB Beta, please change if required

Comment 3 by loonyb...@chromium.org, Mar 29 2018

This might be a crash caused by that CL. 
But I landed the fix yesterday in Issue 826679.

I will verify if this has been fixed.

Comment 4 by loonyb...@chromium.org, Mar 29 2018

Cc: loonyb...@chromium.org

 Issue 827162  has been merged into this issue.

Comment 5 by loonyb...@chromium.org, Mar 29 2018

Status: Started (was: Assigned)

Fixing in https://chromium-review.googlesource.com/c/chromium/src/+/986499

Project Member

Comment 6 by bugdroid1@chromium.org, Mar 30 2018

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/97f7e5ce2599b461260e21900bb87d73a4c95ae7

commit 97f7e5ce2599b461260e21900bb87d73a4c95ae7
Author: Luna Lu <loonybear@chromium.org>
Date: Fri Mar 30 19:22:16 2018

Bug fix: Chrome crash on OnFeaturesUsageObserved

For the two bitsets in UseCounterPageLoadMetricsObserver css_properties_sent_ and
animated_css_properties_sent_, the index are ranged from 2 to kMaximumCSSSampleID.
This means the size of the bitset needs to be kMaximumCSSSampleID + 1

Verified to fix examples provided in 827045.
Also verified to fix 827162

Bug:  827045 
Change-Id: Icf2229d2e01fc574c210553b8c2b37552e2e754b
Reviewed-on: https://chromium-review.googlesource.com/986499
Reviewed-by: Charlie Harrison <csharrison@chromium.org>
Reviewed-by: Bryan McQuade <bmcquade@chromium.org>
Commit-Queue: Michael Thiessen <mthiesse@chromium.org>
Cr-Commit-Position: refs/heads/master@{#547234}
[modify] https://crrev.com/97f7e5ce2599b461260e21900bb87d73a4c95ae7/chrome/browser/page_load_metrics/observers/use_counter_page_load_metrics_observer.cc
[modify] https://crrev.com/97f7e5ce2599b461260e21900bb87d73a4c95ae7/chrome/browser/page_load_metrics/observers/use_counter_page_load_metrics_observer.h
[modify] https://crrev.com/97f7e5ce2599b461260e21900bb87d73a4c95ae7/chrome/browser/page_load_metrics/observers/use_counter_page_load_metrics_observer_unittest.cc

Project Member

Comment 7 by ClusterFuzz, Mar 31 2018

Labels: ClusterFuzz-Verified
Status: Verified (was: Started)

ClusterFuzz testcase 6411004343484416 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

►

Issue 827045 link

Issue metadata

Regression : Browser crashes after selecting 'Troubleshoot playback issue' option on YouTube video.

Issue description

Comment 1 by avsha...@etouch.net, Mar 29 2018

Comment 1 Deleted

Comment 2 by nyerramilli@chromium.org, Mar 29 2018

Comment 2 Deleted

Comment 3 by loonyb...@chromium.org, Mar 29 2018

Comment 3 Deleted

Comment 4 by loonyb...@chromium.org, Mar 29 2018

Comment 4 Deleted

Comment 5 by loonyb...@chromium.org, Mar 29 2018

Comment 5 Deleted

Comment 6 by bugdroid1@chromium.org, Mar 30 2018

Comment 6 Deleted

Comment 7 by ClusterFuzz, Mar 31 2018

Comment 7 Deleted

Sign in to add a comment