Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(68)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 603393004: String::NewExternal should not crash the renderer. (Closed)

Created:
6 years, 2 months ago by loislo
Modified:
6 years, 2 months ago
CC:
v8-dev
Project:
v8
Visibility:
Public.

Description

String::NewExternal should not crash the renderer. The blink may pass a very long string to v8 for making a handle to it. v8 has max string length limit and creates exception. But NewExternal code does not check that the handle is null and crashes the renderer. With the fix the js code receives the exception. BUG=414615 LOG=N R=yangguo@chromium.org, yurys@chromium.org Committed: https://code.google.com/p/v8/source/detail?r=24250

Patch Set 1 #

Total comments: 4

Patch Set 2 : comments addressed #

Unified diffs Side-by-side diffs Delta from patch set Stats (+66 lines, -18 lines) Patch
M src/api.cc View 1 3 chunks +19 lines, -18 lines 0 comments Download
M test/cctest/test-api.cc View 1 1 chunk +47 lines, -0 lines 0 comments Download

Messages

Total messages: 9 (2 generated)
loislo
ptal
6 years, 2 months ago (2014-09-26 09:07:55 UTC) #2
loislo
+jochen
6 years, 2 months ago (2014-09-26 09:29:37 UTC) #4
Yang
https://codereview.chromium.org/603393004/diff/1/src/api.cc File src/api.cc (right): https://codereview.chromium.org/603393004/diff/1/src/api.cc#newcode5508 src/api.cc:5508: if (maybe_string.ToHandle(&string)) At this point we have a pending ...
6 years, 2 months ago (2014-09-26 09:29:59 UTC) #5
yurys
lgtm https://codereview.chromium.org/603393004/diff/1/test/cctest/test-strings.cc File test/cctest/test-strings.cc (right): https://codereview.chromium.org/603393004/diff/1/test/cctest/test-strings.cc#newcode1380 test/cctest/test-strings.cc:1380: uint16_t string_[10]; Length 1 should be enough https://codereview.chromium.org/603393004/diff/1/test/cctest/test-strings.cc#newcode1390 ...
6 years, 2 months ago (2014-09-26 09:30:34 UTC) #6
loislo
comments addressed
6 years, 2 months ago (2014-09-26 10:27:14 UTC) #7
Yang
On 2014/09/26 10:27:14, loislo wrote: > comments addressed LGTM. Thanks!
6 years, 2 months ago (2014-09-26 10:28:09 UTC) #8
loislo
6 years, 2 months ago (2014-09-26 11:14:17 UTC) #9
Message was sent while issue was closed. 
Committed patchset #2 (id:20001) manually as 24250 (tree was closed).

Powered by Google App Engine
This is Rietveld 408576698