[Webkit-unassigned] [Bug 15715] Nested XSL stylesheets can produce memory corruption

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed May 14 11:16:54 PDT 2008


http://bugs.webkit.org/show_bug.cgi?id=15715


julien.chaffraix at gmail.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |julien.chaffraix at gmail.com




------- Comment #15 from julien.chaffraix at gmail.com  2008-05-14 11:16 PDT -------
(In reply to comment #14)
> (From update of attachment 16995 [edit])
> (In reply to comment #9)
> > > Can we use xmlCtxtReadMemory()?
> > No, because libxml2 doesn't expose xmlCreateMemoryParserContext().
> 

It does! (check
http://xmlsoft.org/html/libxml-parserInternals.html#xmlCreateMemoryParserCtxt)

> 
> Looks like the context for xmlCtxtReadMemory() is to be created with
> xmlNewParserCtxt(), which is exposed.

I see 3 choices here:
- use an xmlMemoryCtxt: XMLTokenizer::createMemoryParser does that too but we
also do a UTF8 conversion (that should be solved).
- use the same approach as XMLTokenizer::createStringParser which avoids the
conversion and would work here as we are parsing a well-formed document.
- use something else and in that case, avoid doing the initialization ourselves
and thus avoid using xmlNewParserCtxt

IMHO, the second one seems the most promising here.


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the webkit-unassigned mailing list