Chromium Code Reviews
|
|
Chromium Code Reviews
Issue
2374643002:
Sanitize values in chrome_pdf::PDFiumPage::PageToScreen(). (Closed)
DescriptionSanitize values in chrome_pdf::PDFiumPage::PageToScreen().
BUG=650167
Committed: https://crrev.com/7253c367c1fdf94da3b299f13c6140b815b72da3
Cr-Commit-Position: refs/heads/master@{#421370}
Patch Set 1 #
Total comments: 5
Patch Set 2 : plain double #
Total comments: 2
Patch Set 3 : less #Messages
Total messages: 22 (12 generated)
The CQ bit was checked by thestig@chromium.org to run a CQ dry run
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
thestig@chromium.org changed reviewers: + tsepez@chromium.org
The CQ bit was unchecked by commit-bot@chromium.org
Dry run: This issue passed the CQ dry run.
https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc#n... pdf/pdfium/pdfium_page.cc:465: base::CheckedNumeric<double> start_x = rect_.x(); can we get away with just using doubles here? I'm not sure how they would overflow. https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc#n... pdf/pdfium/pdfium_page.cc:509: if (!base::IsValueInRangeForNumericType<int32_t>(new_left) || new_left is an int (presumably == int32_t for practical purposes), so this would always be in range?
https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc#n... pdf/pdfium/pdfium_page.cc:465: base::CheckedNumeric<double> start_x = rect_.x(); On 2016/09/27 15:57:17, Tom Sepez wrote: > can we get away with just using doubles here? I'm not sure how they would > overflow. Can multiplying by |zoom| overflow? Am I being too paranoid?
https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc#n... pdf/pdfium/pdfium_page.cc:465: base::CheckedNumeric<double> start_x = rect_.x(); On 2016/09/27 16:44:40, Lei Zhang wrote: > On 2016/09/27 15:57:17, Tom Sepez wrote: > > can we get away with just using doubles here? I'm not sure how they would > > overflow. > > Can multiplying by |zoom| overflow? Am I being too paranoid? Probably can, but I wouldn't worry about it. There are too many places where doubles would overflow throughout the code ...
The CQ bit was checked by thestig@chromium.org to run a CQ dry run
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/1/pdf/pdfium/pdfium_page.cc#n... pdf/pdfium/pdfium_page.cc:465: base::CheckedNumeric<double> start_x = rect_.x(); On 2016/09/27 16:46:42, Tom Sepez wrote: > On 2016/09/27 16:44:40, Lei Zhang wrote: > > On 2016/09/27 15:57:17, Tom Sepez wrote: > > > can we get away with just using doubles here? I'm not sure how they would > > > overflow. > > > > Can multiplying by |zoom| overflow? Am I being too paranoid? > > Probably can, but I wouldn't worry about it. There are too many places where > doubles would overflow throughout the code ... Done.
The CQ bit was unchecked by commit-bot@chromium.org
Dry run: This issue passed the CQ dry run.
LGTM otherwise. https://codereview.chromium.org/2374643002/diff/20001/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/20001/pdf/pdfium/pdfium_page.... pdf/pdfium/pdfium_page.cc:497: if (!base::IsValueInRangeForNumericType<int32_t>(new_left) || Is this overkill per previous comment?
https://codereview.chromium.org/2374643002/diff/20001/pdf/pdfium/pdfium_page.cc File pdf/pdfium/pdfium_page.cc (right): https://codereview.chromium.org/2374643002/diff/20001/pdf/pdfium/pdfium_page.... pdf/pdfium/pdfium_page.cc:497: if (!base::IsValueInRangeForNumericType<int32_t>(new_left) || On 2016/09/27 20:00:42, Tom Sepez wrote: > Is this overkill per previous comment? Done.
The CQ bit was checked by thestig@chromium.org
The patchset sent to the CQ was uploaded after l-g-t-m from tsepez@chromium.org Link to the patchset: https://codereview.chromium.org/2374643002/#ps40001 (title: "less")
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
Message was sent while issue was closed.
Committed patchset #3 (id:40001)
Message was sent while issue was closed.
Description was changed from ========== Sanitize values in chrome_pdf::PDFiumPage::PageToScreen(). BUG=650167 ========== to ========== Sanitize values in chrome_pdf::PDFiumPage::PageToScreen(). BUG=650167 Committed: https://crrev.com/7253c367c1fdf94da3b299f13c6140b815b72da3 Cr-Commit-Position: refs/heads/master@{#421370} ==========
Message was sent while issue was closed.
Patchset 3 (id:??) landed as https://crrev.com/7253c367c1fdf94da3b299f13c6140b815b72da3 Cr-Commit-Position: refs/heads/master@{#421370} |
