Automatically applying components based on crash stacktrace and information from OWNERS files.

If this is incorrect, please apply the Test-Predator-Wrong-Components label.

Automatically assigning owner based on suspected regression changelist https://chromium.googlesource.com/chromium/src/+/cbf76818d0f7e88d489f18ada04a4077e594daec (Roll clang 335091:335608.).

If this is incorrect, please let us know why and apply the Test-Predator-Wrong-CLs label. If you aren't the correct owner for this issue, please unassign yourself as soon as possible so it can be re-triaged.

It's possible this is due to the compiler run, but then that very likely only exposes existing undefined behavior.

Unable to provide possible suspect using Predator, CL and Code Search.
Could someone please look into the issue.
Thank You.

It's likely that ResourceFetcher has put a null String to HashMap as a key.

Simple repro steps:

1. Open data:text/xml,<%3Fxml-stylesheet%20%3F>
2. Open devtools

https://chromium-review.googlesource.com/c/chromium/src/+/1132914

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/ae18f0f47b8272cc5b911cc22cb799a648405f45

commit ae18f0f47b8272cc5b911cc22cb799a648405f45
Author: Kunihiko Sakamoto <ksakamoto@chromium.org>
Date: Thu Jul 12 04:26:33 2018

Fix crash in ResourceFetcher::CachedResource()

This fixes a bug where ResourceFetcher::CachedResource() crashes when
given a null KURL.

Bug:  859314 
Change-Id: Iae07ded3124b690854aa7ba2a532f21be2a99972
Reviewed-on: https://chromium-review.googlesource.com/1132914
Reviewed-by: Yutaka Hirano <yhirano@chromium.org>
Commit-Queue: Kunihiko Sakamoto <ksakamoto@chromium.org>
Cr-Commit-Position: refs/heads/master@{#574487}
[modify] https://crrev.com/ae18f0f47b8272cc5b911cc22cb799a648405f45/third_party/blink/renderer/platform/loader/fetch/resource_fetcher.cc
[modify] https://crrev.com/ae18f0f47b8272cc5b911cc22cb799a648405f45/third_party/blink/renderer/platform/loader/fetch/resource_fetcher_test.cc

ClusterFuzz has detected this issue as fixed in range 574486:574487.

Detailed report: https://clusterfuzz.com/testcase?key=6427573131935744

Fuzzer: attekett_surku_fuzzer
Job Type: linux_ubsan_chrome
Platform Id: linux

Crash Type: Null-dereference READ
Crash Address: 0x000000000008
Crash State:
  get
  Impl
  GetHash
  
Sanitizer: undefined (UBSAN)

Regressed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=570731:570732
Fixed: https://clusterfuzz.com/revisions?job=linux_ubsan_chrome&range=574486:574487

Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=6427573131935744

Additional requirements: Requires Gestures

See https://github.com/google/clusterfuzz-tools for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 6427573131935744 is verified as fixed, so closing issue as verified.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.