third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp - Issue 1414553002: Fix out-of-memory crashes related to ArrayBuffer allocation

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp

Issue 1414553002: Fix out-of-memory crashes related to ArrayBuffer allocation Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: rebase and applied senorblanco+haraken feedbac Created 5 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« third_party/WebKit/Source/modules/websockets/DOMWebSocketTest.cpp ('K') | « third_party/WebKit/Source/modules/webusb/USBInTransferResult.h ('k') | third_party/WebKit/Source/platform/graphics/gpu/DrawingBuffer.cpp » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp

diff --git a/third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp b/third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp

index 51465ee01b9e4dae52de954ec294657ae3c1f78c..edd87a3597f66d6f7c68ae1cf372814147c3a67e 100644

--- a/third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp

+++ b/third_party/WebKit/Source/platform/graphics/ImageBuffer.cpp

@@ -54,6 +54,7 @@

#include "third_party/skia/include/core/SkPicture.h"

#include "wtf/ArrayBufferContents.h"

#include "wtf/MathExtras.h"

+#include "wtf/PartitionAlloc.h"

#include "wtf/Vector.h"

#include "wtf/text/Base64.h"

#include "wtf/text/WTFString.h"

@@ -286,7 +287,9 @@ bool ImageBuffer::getImageData(Multiply multiplied, const IntRect& rect, WTF::Ar

return false;

if (!isSurfaceValid()) {

- WTF::ArrayBufferContents result(rect.width() * rect.height(), 4, WTF::ArrayBufferContents::NotShared, WTF::ArrayBufferContents::ZeroInitialize);

+ WTF::ArrayBufferContents result(rect.width() * rect.height(), 4, WTF::ArrayBufferContents::NotShared, WTF::ArrayBufferContents::ZeroInitialize, WTF::ArrayBufferContents::NullDataIfOutOfMemory);

+ if (!result.data())

+ return false;

result.transfer(contents);

return true;

}

@@ -307,7 +310,11 @@ bool ImageBuffer::getImageData(Multiply multiplied, const IntRect& rect, WTF::Ar

WTF::ArrayBufferContents::NotShared,

mayHaveStrayArea

? WTF::ArrayBufferContents::ZeroInitialize

- : WTF::ArrayBufferContents::DontInitialize);

+ : WTF::ArrayBufferContents::DontInitialize,

+ WTF::ArrayBufferContents::NullDataIfOutOfMemory);

+ if (!result.data())

+ return false;

SkAlphaType alphaType = (multiplied == Premultiplied) ? kPremul_SkAlphaType : kUnpremul_SkAlphaType;

SkImageInfo info = SkImageInfo::Make(rect.width(), rect.height(), kRGBA_8888_SkColorType, alphaType);