[webkit-changes] [WebKit/WebKit] 4bfd15: Move HashCountedSet to WeakHashCountedSet in Style...
Chirag Shah
noreply at github.com
Sat Apr 1 01:59:11 PDT 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 4bfd15d8cdc7d90dc7674237addf934a3d5c7be4
https://github.com/WebKit/WebKit/commit/4bfd15d8cdc7d90dc7674237addf934a3d5c7be4
Author: Chirag M Shah <chirag_m_shah at apple.com>
Date: 2023-04-01 (Sat, 01 Apr 2023)
Changed paths:
M Source/WebCore/html/CanvasBase.cpp
M Source/WebCore/rendering/style/StyleCanvasImage.cpp
M Source/WebCore/rendering/style/StyleCrossfadeImage.cpp
M Source/WebCore/rendering/style/StyleFilterImage.cpp
M Source/WebCore/rendering/style/StyleGeneratedImage.cpp
M Source/WebCore/rendering/style/StyleGeneratedImage.h
M Source/WebCore/rendering/style/StyleGradientImage.cpp
Log Message:
-----------
Move HashCountedSet to WeakHashCountedSet in StyleGeneratedImage
https://bugs.webkit.org/show_bug.cgi?id=254835
rdar://107480319
Reviewed by Chris Dumez.
Generated images should use a Weak container to keep track of
RenderElements so that we don't trigger UAF issues.
* Source/WebCore/html/CanvasBase.cpp:
(WebCore:: const):
* Source/WebCore/rendering/style/StyleCanvasImage.cpp:
(WebCore::StyleCanvasImage::image const):
(WebCore::StyleCanvasImage::canvasChanged):
(WebCore::StyleCanvasImage::canvasResized):
* Source/WebCore/rendering/style/StyleCrossfadeImage.cpp:
(WebCore::StyleCrossfadeImage::imageChanged):
* Source/WebCore/rendering/style/StyleFilterImage.cpp:
(WebCore::StyleFilterImage::imageChanged):
* Source/WebCore/rendering/style/StyleGeneratedImage.cpp:
(WebCore::StyleGeneratedImage::addClient):
(WebCore::StyleGeneratedImage::removeClient):
(WebCore::StyleGeneratedImage::hasClient const):
* Source/WebCore/rendering/style/StyleGeneratedImage.h:
(WebCore::StyleGeneratedImage::clients const):
(WebCore::StyleGeneratedImage:: const): Deleted.
* Source/WebCore/rendering/style/StyleGradientImage.cpp:
(WebCore::StyleGradientImage::image const):
Canonical link: https://commits.webkit.org/262469@main
More information about the webkit-changes
mailing list