Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(596)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 498553005: cc: Fix UAF in g_raster_required_for_activation_delay (Closed)

Created:
6 years, 3 months ago by boliu
Modified:
6 years, 3 months ago
Reviewers:
reveman
CC:
chromium-reviews, cc-bugs_chromium.org
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Project:
chromium
Visibility:
Public.

Description

cc: Fix UAF in g_raster_required_for_activation_delay g_raster_required_for_activation_delay is used after free. See bug for details. Fix by putting the delay object in RasterTaskGraphRunner which itself is a leaky lazy instance. BUG=402653 Committed: https://crrev.com/2b2b17a7bd1bbe3f5e08b3284da5c66c3e186b5d Cr-Commit-Position: refs/heads/master@{#292083}

Patch Set 1 #

Total comments: 4

Patch Set 2 : review #

Total comments: 1
Unified diffs Side-by-side diffs Delta from patch set Stats (+10 lines, -14 lines) Patch
M cc/resources/raster_worker_pool.cc View 1 5 chunks +10 lines, -14 lines 1 comment Download

Messages

Total messages: 10 (0 generated)
boliu
boliu@chromium.org changed reviewers: + reveman@chromium.org
6 years, 3 months ago (2014-08-26 19:14:02 UTC) #1
boliu
The "I give up because I don't know the root cause" solution. I've updated the ...
6 years, 3 months ago (2014-08-26 19:14:02 UTC) #2
reveman
https://codereview.chromium.org/498553005/diff/1/cc/resources/raster_worker_pool.cc File cc/resources/raster_worker_pool.cc (right): https://codereview.chromium.org/498553005/diff/1/cc/resources/raster_worker_pool.cc#newcode54 cc/resources/raster_worker_pool.cc:54: base::debug::TraceEventSyntheticDelay* trace_event_synthetic_delay_; I think |synthetic_delay_| is verbose enough. https://codereview.chromium.org/498553005/diff/1/cc/resources/raster_worker_pool.cc#newcode128 ...
6 years, 3 months ago (2014-08-27 00:34:37 UTC) #3
reveman
On 2014/08/26 19:14:02, boliu wrote: > The "I give up because I don't know the ...
6 years, 3 months ago (2014-08-27 00:35:24 UTC) #4
boliu
https://codereview.chromium.org/498553005/diff/1/cc/resources/raster_worker_pool.cc File cc/resources/raster_worker_pool.cc (right): https://codereview.chromium.org/498553005/diff/1/cc/resources/raster_worker_pool.cc#newcode54 cc/resources/raster_worker_pool.cc:54: base::debug::TraceEventSyntheticDelay* trace_event_synthetic_delay_; On 2014/08/27 00:34:37, reveman wrote: > I ...
6 years, 3 months ago (2014-08-27 01:14:49 UTC) #5
reveman
lgtm
6 years, 3 months ago (2014-08-27 01:16:15 UTC) #6
boliu
The CQ bit was checked by boliu@chromium.org
6 years, 3 months ago (2014-08-27 01:29:04 UTC) #7
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/boliu@chromium.org/498553005/20001
6 years, 3 months ago (2014-08-27 01:30:50 UTC) #8
commit-bot: I haz the power
Committed patchset #2 (20001) as c5dad70410179aa99ec144a368be1886ff4122a0
6 years, 3 months ago (2014-08-27 02:43:19 UTC) #9
commit-bot: I haz the power
6 years, 3 months ago (2014-09-10 02:49:15 UTC) #10
Message was sent while issue was closed. 
Patchset 2 (id:??) landed as
https://crrev.com/2b2b17a7bd1bbe3f5e08b3284da5c66c3e186b5d
Cr-Commit-Position: refs/heads/master@{#292083}

Powered by Google App Engine
This is Rietveld 408576698