Automatically applying components based on crash stacktrace and information from OWNERS files.

If this is incorrect, please apply the Test-Predator-Wrong-Components label.

Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/c422bd5ac77511a7f9c52cd3da627cd13f6f3691 ([SPv175+] Don't output OverflowClip if InnerBorderRadiusClip already has the same rect).

If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.

Also crashes in non-SPv175 mode.

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2

commit a1946e63ab4c1b92c2088fbebe96a031bdec4cb2
Author: Xianzhu Wang <wangxianzhu@chromium.org>
Date: Thu Apr 05 21:02:46 2018

[PE] Fix DCHECK failure when there are both border radius clip and overflow clip

The DCHECK is incorrect when there are both border radius clip and
overflow clip.

Remove the DCHECK, and use FragmentData::PostOverflowClip() and
PreClip() in this function.

Bug:  828164 
Change-Id: I3e9d36b26bfb72c90a37ffd492c44236920cc6f7
Reviewed-on: https://chromium-review.googlesource.com/994052
Reviewed-by: Tien-Ren Chen <trchen@chromium.org>
Commit-Queue: Xianzhu Wang <wangxianzhu@chromium.org>
Cr-Commit-Position: refs/heads/master@{#548556}
[add] https://crrev.com/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2/third_party/WebKit/LayoutTests/paint/roundedrects/composited-overflow-and-border-radius-clip-expected.html
[add] https://crrev.com/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2/third_party/WebKit/LayoutTests/paint/roundedrects/composited-overflow-and-border-radius-clip.html
[modify] https://crrev.com/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2/third_party/WebKit/Source/core/paint/FragmentData.cpp
[modify] https://crrev.com/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2/third_party/WebKit/Source/core/paint/FragmentData.h
[modify] https://crrev.com/a1946e63ab4c1b92c2088fbebe96a031bdec4cb2/third_party/WebKit/Source/core/paint/PaintLayerClipper.cpp

ClusterFuzz has detected this issue as fixed in range 548521:548525.

Detailed report: https://clusterfuzz.com/testcase?key=4723414317924352

Fuzzer: ifratric-browserfuzzer-v3
Job Type: linux_debug_chrome
Platform Id: linux

Crash Type: CHECK failure
Crash Address: 
Crash State:
  destination_property_tree_state.Clip() == clip->Parent() in PaintLayerClipper.cp
  blink::PaintLayerClipper::InitializeCommonClipRectState
  blink::PaintLayerClipper::CalculateBackgroundClipRectWithGeometryMapper
  
Sanitizer: address (ASAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_debug_chrome&range=539056:539057
Fixed: https://clusterfuzz.com/revisions?job=linux_debug_chrome&range=548521:548525

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4723414317924352

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 4723414317924352 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.