[Webkit-unassigned] [Bug 146729] Syscall param sendmsg(msg.msg_iov[0]) points to uninitialised byte(s) in IPC::Connection::sendOutgoingMessage
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Jul 30 21:28:09 PDT 2016
https://bugs.webkit.org/show_bug.cgi?id=146729
--- Comment #5 from Michael Catanzaro <mcatanzaro at igalia.com> ---
So:
In WebPageProxy::loadAlternateHTMLString we never initialize the request, sandboxExtensionHandle, data, MIMEType, or encodingName properties of LoadParameters. It's arguably not a bug if we never use those parameters, but valgrind justifiably complains that we pass uninitialized memory into the kernel. Let's avoid it by zero-initializing the struct.
In the case of WebProcessPool::ensureNetworkProcess, there's a bunch of stuff we're not initializing in NetworkProcessCreationParameters (e.g. the sandbox extension handles are only conditionally-initialized). Again, we ought to zero-initialize the struct.
The one that valgrind says originates in IPC::Connection::sendOutgoingMessage is less obvious, still trying to figure it out.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160731/84a82072/attachment-0001.html>
More information about the webkit-unassigned
mailing list