Bug 124644

Summary: machMessageSize uses sizeof(mach_msg_ool_ports_descriptor_t) for out-of-line *memory*
Product: WebKit Reporter: Tim Horton <thorton>
Component: WebKit2Assignee: Tim Horton <thorton>
Status: RESOLVED FIXED    
Severity: Normal CC: andersca, ap, sam
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
patch andersca: review+

Tim Horton
Reported 2013-11-20 01:03:54 PST
machMessageSize does: if (numberOfOOLMemoryDescriptors) size += (numberOfOOLMemoryDescriptors * sizeof(mach_msg_ool_ports_descriptor_t)); but then uses descriptor->out_of_line, which is a mach_msg_ool_descriptor_t.
Attachments
patch (1.55 KB, patch)
2013-11-20 01:06 PST, Tim Horton 		andersca: review+
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Tim Horton
Comment 1 2013-11-20 01:06:46 PST
Created attachment 217403 [details] patch
Tim Horton
Comment 2 2013-11-20 13:26:53 PST
http://trac.webkit.org/changeset/159581
Note You need to log in before you can comment on or make changes to this bug.