Title: [238977] releases/WebKitGTK/webkit-2.22/Source/WebKit
- Revision
- 238977
- Author
- [email protected]
- Date
- 2018-12-07 16:24:59 -0800 (Fri, 07 Dec 2018)
Log Message
Merge r238798 - Alignment padding needs to be zeroed out in IPC::Encoder
https://bugs.webkit.org/show_bug.cgi?id=192304
Reviewed by Chris Dumez.
Might be useful to make a regression test for this, but I couldn't find any
other tests for this code.
* Platform/IPC/Encoder.cpp:
(IPC::Encoder::grow): Use std::memset to zero-fill padding bytes.
* UIProcess/mac/LegacySessionStateCoding.cpp:
(WebKit::HistoryEntryDataEncoder::grow): Ditto.
Modified Paths
Diff
Modified: releases/WebKitGTK/webkit-2.22/Source/WebKit/ChangeLog (238976 => 238977)
--- releases/WebKitGTK/webkit-2.22/Source/WebKit/ChangeLog 2018-12-08 00:24:56 UTC (rev 238976)
+++ releases/WebKitGTK/webkit-2.22/Source/WebKit/ChangeLog 2018-12-08 00:24:59 UTC (rev 238977)
@@ -1,3 +1,19 @@
+2018-12-03 Darin Adler <[email protected]>
+
+ Alignment padding needs to be zeroed out in IPC::Encoder
+ https://bugs.webkit.org/show_bug.cgi?id=192304
+
+ Reviewed by Chris Dumez.
+
+ Might be useful to make a regression test for this, but I couldn't find any
+ other tests for this code.
+
+ * Platform/IPC/Encoder.cpp:
+ (IPC::Encoder::grow): Use std::memset to zero-fill padding bytes.
+
+ * UIProcess/mac/LegacySessionStateCoding.cpp:
+ (WebKit::HistoryEntryDataEncoder::grow): Ditto.
+
2018-11-20 Jeff Miller <[email protected]>
Return nullptr immediately if the key doesn't exist in the HashMap.
Modified: releases/WebKitGTK/webkit-2.22/Source/WebKit/Platform/IPC/Encoder.cpp (238976 => 238977)
--- releases/WebKitGTK/webkit-2.22/Source/WebKit/Platform/IPC/Encoder.cpp 2018-12-08 00:24:56 UTC (rev 238976)
+++ releases/WebKitGTK/webkit-2.22/Source/WebKit/Platform/IPC/Encoder.cpp 2018-12-08 00:24:59 UTC (rev 238977)
@@ -168,6 +168,8 @@
size_t alignedSize = roundUpToAlignment(m_bufferSize, alignment);
reserve(alignedSize + size);
+ std::memset(m_buffer + m_bufferSize, 0, alignedSize - m_bufferSize);
+
m_bufferSize = alignedSize + size;
m_bufferPointer = m_buffer + alignedSize + size;
Modified: releases/WebKitGTK/webkit-2.22/Source/WebKit/UIProcess/mac/LegacySessionStateCoding.cpp (238976 => 238977)
--- releases/WebKitGTK/webkit-2.22/Source/WebKit/UIProcess/mac/LegacySessionStateCoding.cpp 2018-12-08 00:24:56 UTC (rev 238976)
+++ releases/WebKitGTK/webkit-2.22/Source/WebKit/UIProcess/mac/LegacySessionStateCoding.cpp 2018-12-08 00:24:59 UTC (rev 238977)
@@ -220,6 +220,8 @@
growCapacity(alignedSize + size);
+ std::memset(m_buffer.get() + m_bufferSize, 0, alignedSize - m_bufferSize);
+
m_bufferSize = alignedSize + size;
m_bufferPointer = m_buffer.get() + m_bufferSize;
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
