[webkit-changes] [215514] trunk/Source/WebCore

Wed, 19 Apr 2017 09:18:49 -0700

Title: [215514] trunk/Source/WebCore
Revision
215514
Author
[email protected]
Date
2017-04-19 09:17:53 -0700 (Wed, 19 Apr 2017)

Log Message

[iOS, macOS] Guard against passing nullptr to vImagePremultiplyData
https://bugs.webkit.org/show_bug.cgi?id=170912
<rdar://problem/30565800>

Reviewed by Brady Eidson.

* platform/graphics/cg/ImageBufferDataCG.cpp:
(WebCore::affineWarpBufferData): Assert if we passed nullptr buffers.
(WebCore::transferData): Ditto.
(WebCore::ImageBufferData::getData): Check for nullptr data member and avoid passing to vImage routines.
(WebCore::ImageBufferData::putData): Ditto.

Modified Paths

Diff

Modified: trunk/Source/WebCore/ChangeLog (215513 => 215514)


--- trunk/Source/WebCore/ChangeLog	2017-04-19 16:14:51 UTC (rev 215513)
+++ trunk/Source/WebCore/ChangeLog	2017-04-19 16:17:53 UTC (rev 215514)
@@ -1,3 +1,17 @@
+2017-04-19  Brent Fulgham  <[email protected]>
+
+        [iOS, macOS] Guard against passing nullptr to vImagePremultiplyData
+        https://bugs.webkit.org/show_bug.cgi?id=170912
+        <rdar://problem/30565800>
+
+        Reviewed by Brady Eidson.
+
+        * platform/graphics/cg/ImageBufferDataCG.cpp:
+        (WebCore::affineWarpBufferData): Assert if we passed nullptr buffers.
+        (WebCore::transferData): Ditto.
+        (WebCore::ImageBufferData::getData): Check for nullptr data member and avoid passing to vImage routines.
+        (WebCore::ImageBufferData::putData): Ditto.
+
 2017-04-19  Dave Hyatt  <[email protected]>
 
         Remove bogus assert for :not.

Modified: trunk/Source/WebCore/platform/graphics/cg/ImageBufferDataCG.cpp (215513 => 215514)


--- trunk/Source/WebCore/platform/graphics/cg/ImageBufferDataCG.cpp	2017-04-19 16:14:51 UTC (rev 215513)
+++ trunk/Source/WebCore/platform/graphics/cg/ImageBufferDataCG.cpp	2017-04-19 16:17:53 UTC (rev 215514)
@@ -1,5 +1,5 @@
 /*
- * Copyright (C) 2011-2016 Apple Inc. All rights reserved.
+ * Copyright (C) 2011-2017 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
@@ -83,6 +83,9 @@
 #if !PLATFORM(IOS_SIMULATOR)
 static void affineWarpBufferData(const vImage_Buffer& src, const vImage_Buffer& dest, float scale)
 {
+    ASSERT(src.data);
+    ASSERT(dest.data);
+
     vImage_AffineTransform scaleTransform = { scale, 0, 0, scale, 0, 0 }; // FIXME: Add subpixel translation.
     Pixel_8888 backgroundColor;
     vImageAffineWarp_ARGB8888(&src, &dest, 0, &scaleTransform, backgroundColor, kvImageEdgeExtend);
@@ -93,6 +96,9 @@
 static inline void transferData(void* output, void* input, int width, int height, size_t inputBytesPerRow)
 {
 #if USE(ACCELERATE)
+    ASSERT(input);
+    ASSERT(output);
+
     vImage_Buffer src;
     src.width = width;
     src.height = height;
@@ -194,6 +200,9 @@
     unsigned char* srcRows;
     
     if (!accelerateRendering) {
+        if (!data)
+            return result;
+
         srcBytesPerRow = bytesPerRow.unsafeGet();
         srcRows = reinterpret_cast<unsigned char*>(data) + originy * srcBytesPerRow + originx * 4;
 
@@ -437,6 +446,9 @@
     unsigned char* destRows;
     
     if (!accelerateRendering) {
+        if (!data)
+            return;
+
         destBytesPerRow = bytesPerRow.unsafeGet();
         destRows = reinterpret_cast<unsigned char*>(data) + (desty * destBytesPerRow + destx * 4).unsafeGet();
 

_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes

Reply via email to