src/core/SkColorTable.cpp - Issue 116773002: Fixed more fuzzer issues - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(126)

My Issues | Starred Open | Closed | All

Unified Diff: src/core/SkColorTable.cpp

Issue 116773002: Fixed more fuzzer issues (Closed) Base URL: https://skia.googlesource.com/skia.git@master

Patch Set: Created 7 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« include/core/SkFlattenableBuffers.h ('K') | « samplecode/SampleFilterFuzz.cpp ('k') | src/core/SkImageInfo.cpp » ('j') | src/core/SkImageInfo.cpp » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: src/core/SkColorTable.cpp

diff --git a/src/core/SkColorTable.cpp b/src/core/SkColorTable.cpp

index c719defe869359af969b7f571ad6a2bb720cb566..dd11eb248444c63cb8d4fbe6fe737b2be45e90e6 100644

--- a/src/core/SkColorTable.cpp

+++ b/src/core/SkColorTable.cpp

@@ -90,8 +90,15 @@ SkColorTable::SkColorTable(SkFlattenableReadBuffer& buffer) {

fAlphaType = SkToU8(buffer.readUInt());

fCount = buffer.getArrayCount();

- fColors = (SkPMColor*)sk_malloc_throw(fCount * sizeof(SkPMColor));

- SkDEBUGCODE(bool success =) buffer.readColorArray(fColors, fCount);

+ size_t allocSize = fCount * sizeof(SkPMColor);

+ SkDEBUGCODE(bool success = false;)

+ if (buffer.validate(buffer.isAvailable(allocSize))) {

+ fColors = (SkPMColor*)sk_malloc_throw(allocSize);

+ SkDEBUGCODE(success =) buffer.readColorArray(fColors, fCount);

+ } else {

+ fCount = 0;

+ fColors = NULL;

+ }

#ifdef SK_DEBUG

SkASSERT((unsigned)fCount <= 256);

SkASSERT(success);

« include/core/SkFlattenableBuffers.h ('K') | « samplecode/SampleFilterFuzz.cpp ('k') | src/core/SkImageInfo.cpp » ('j') | src/core/SkImageInfo.cpp » ('J')

Powered by Google App Engine

This is Rietveld 408576698