WebCore::PathQt::platformPath(): don't return a temporary object
#38
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
`WebCore::Path::platformPath()` expects to be able to return the return value of `WebCore::PlatformPathImpl::platformPath()` as a `PlatformPathPtr` without creating a dangling reference. However, `WebCore::PathQt::platformPath()` is defined as returning a temporary `QPainterPath` object, which does become a dangling reference when returned by reference, leading to segfaults at runtime. This commit changes the return type of `WebCore::PathQt::platformPath()` to `PlatformPathPtr` (paralleling the definition of `WebCore::PathCG::platformPath()`), so as to avoid creating a temporary `QPainterPath` object, thereby avoiding the creation of a dangling reference when returning from `WebCore::Path::platformPath()`. Fixes: movableink#37
|
Note: The other way this can be fixed is to typedef typedef QPainterPath PlatformPath;/* QPainterPath is valued based */
typedef PlatformPath PlatformPathPtr;Curiously, it has the same typo'd comment but in a different file and with a different typedef, so I wonder whether the dangling reference bug was introduced in movableink/webkit after copying the correct code from qtwebkit/qtwebkit or was fixed in qtwebkit/qtwebkit after copying the incorrect code from movableink/webkit. I'd guess the former. For reference, here is the related code in movableink/webkit (exclusive of this PR): webkit/Source/WebCore/platform/graphics/PlatformPath.h Lines 41 to 42 in 2d2b379 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
WebCore::Path::platformPath()expects to be able to return the return value ofWebCore::PlatformPathImpl::platformPath()as aPlatformPathPtrwithout creating a dangling reference. However,WebCore::PathQt::platformPath()is defined as returning a temporaryQPainterPathobject, which does become a dangling reference when returned by reference, leading to segfaults at runtime.This PR changes the return type of
WebCore::PathQt::platformPath()toPlatformPathPtr(paralleling the definition ofWebCore::PathCG::platformPath()), so as to avoid creating a temporaryQPainterPathobject, thereby avoiding the creation of a dangling reference when returning fromWebCore::Path::platformPath().Fixes: #37