[webkit-changes] [WebKit/WebKit] d7e44e: [CoreIPC] [Fuzz Blocker] TRAP in WebKit::NetworkCo...

pratiksha-99 noreply at github.com
Wed Nov 6 16:09:31 PST 2024 

  Branch: refs/heads/main
  Home:   https://github.com/WebKit/WebKit
  Commit: d7e44e3524f840f1b08f494db29421c50b2d79d6
      https://github.com/WebKit/WebKit/commit/d7e44e3524f840f1b08f494db29421c50b2d79d6
  Author: Pratiksha Choudhury <p_choudhury at apple.com>
  Date:   2024-11-06 (Wed, 06 Nov 2024)

  Changed paths:
    A LayoutTests/ipc/coreipc.js
    A LayoutTests/ipc/invalid-message-to-web-process-crash-expected.txt
    A LayoutTests/ipc/invalid-message-to-web-process-crash.html
    M Source/WebKit/NetworkProcess/NetworkConnectionToWebProcess.cpp

  Log Message:
  -----------
  [CoreIPC] [Fuzz Blocker] TRAP in WebKit::NetworkConnectionToWebProcess::dispatchMessage
https://bugs.webkit.org/show_bug.cgi?id=282604
rdar://138840919

Reviewed by Chris Dumez.

Added a check for decoder.destinationID() validity on the invalid message received for fuzzing.

* LayoutTests/ipc/coreipc.js: Added.
(deepCopy):
(CoreIPCClass):
(CoreIPCClass.prototype.initializeMessageByName):
(CoreIPCClass.prototype.initializeMessages):
(CoreIPCClass.prototype.generateSendingFunction):
(CoreIPCClass.prototype.newStreamConnection):
(export.StreamConnection):
(export.StreamConnection.prototype.newInterface):
(export.StreamConnectionInterface):
(export.StreamConnectionInterface.prototype.initializeMessages):
(export.StreamConnectionInterface.prototype.generateStreamSendingFunction):
(export.SerializationError):
(export.resolveAlias):
(isPrimtiveType):
(isEnum):
(isIdentifier):
(export.ArgumentSerializer.splitTemplateType):
(export.ArgumentSerializer.parseTemplate):
(export.ArgumentSerializer):
* LayoutTests/ipc/invalid-message-to-web-process-crash-expected.txt: Added.
* LayoutTests/ipc/invalid-message-to-web-process-crash.html: Added.
* Source/WebKit/NetworkProcess/NetworkConnectionToWebProcess.cpp:
(WebKit::NetworkConnectionToWebProcess::dispatchMessage):

Canonical link: https://commits.webkit.org/286256@main



To unsubscribe from these emails, change your notification settings at https://github.com/WebKit/WebKit/settings/notifications

More information about the webkit-changes mailing list