RESOLVED FIXED 215051
Unconditionally record string offsets in the fast text codepath 
https://bugs.webkit.org/show_bug.cgi?id=215051
Summary Unconditionally record string offsets in the fast text codepath
Myles C. Maxfield
Reported 2020-08-01 00:08:26 PDT
Unconditionally record string offsets in the fast text codepath
Attachments
Patch (17.77 KB, patch)
2020-08-01 00:16 PDT, Myles C. Maxfield 		no flags
DetailsFormatted DiffDiff
Patch (18.25 KB, patch)
2020-08-01 00:36 PDT, Myles C. Maxfield 		no flags
DetailsFormatted DiffDiff
Patch (18.75 KB, patch)
2020-08-01 00:48 PDT, Myles C. Maxfield 		darin: review+
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
Myles C. Maxfield
Comment 1 2020-08-01 00:16:52 PDT
Created attachment 405770 [details] Patch
Myles C. Maxfield
Comment 2 2020-08-01 00:36:44 PDT
Created attachment 405773 [details] Patch
Myles C. Maxfield
Comment 3 2020-08-01 00:48:24 PDT
Created attachment 405776 [details] Patch
Darin Adler
Comment 4 2020-08-01 21:03:09 PDT
Comment on attachment 405776 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=405776&action=review > Source/WebCore/platform/graphics/FontCascade.cpp:1266 > - ASSERT_WITH_SECURITY_IMPLICATION(offsetInString < textRun.length()); > + RELEASE_ASSERT_WITH_SECURITY_IMPLICATION(offsetInString < static_cast<GlyphBufferStringOffset>(textRun.length())); Changing this to a RELEASE_ASSERT makes it unnecessary to have it inside an if statement that checks the same thing. Just put this outside the if and don’t check this in the if. > Source/WebCore/platform/graphics/FontCascade.cpp:1273 > + U16_NEXT(textRun.characters16(), offsetInString, static_cast<GlyphBufferStringOffset>(textRun.length()), baseCharacter); Can we put static_cast<GlyphBufferStringOffset>(textRun.length()) in a local variable? The long expression makes it hard to see what is going on. And we could probably convert without a cast if we used a local. And we use it twice, once here and once in the assertion. Also, seems like this should be U16_GET, not U16_NEXT. We don’t want to bump offsetInString. And if we did, we’d have to do it in the 8-bit case above.
Myles C. Maxfield
Comment 5 2020-08-03 21:50:04 PDT
Committed r265241: <https://trac.webkit.org/changeset/265241>
Radar WebKit Bug Importer
Comment 6 2020-08-03 21:51:19 PDT
<rdar://problem/66507427>
Myles C. Maxfield
Comment 7 2020-08-08 23:40:08 PDT
Committed r265414: <https://trac.webkit.org/changeset/265414>
Note You need to log in before you can comment on or make changes to this bug.