Chromium Code Reviews
DescriptionFix use-after-scope issues with incorrect usage of ManifestParser.
ManifestParser accepts references to StringPiece and GURL. In one
case, the test passed inline values which went out of scope immediately,
and then the parser used the references pointing to a stack space
potentially already reused by other local variables. In other case,
string was implicitly converted to StringPiece which also went out
of scope before Parse call.
Both issues are due to the constructor taking references. It's dangerous,
and potentially should be changed.
The issue was found by AddressSanitizer with use-after-scope check enabled.
BUG=649897
TBR=mlamouri@chromium.org
Committed: https://crrev.com/9e8006ae521235d3e9bd0f05f3b445ac37066e40
Cr-Commit-Position: refs/heads/master@{#440010}
Patch Set 1 #
Messages
Total messages: 14 (10 generated)
|
||||||||||||||||||||||||||||