RESOLVED FIXED Bug 94736
[CSS Shaders] [ANGLE] RenameFunction::RenameFunction may store references to temporary string 
https://bugs.webkit.org/show_bug.cgi?id=94736
Summary [CSS Shaders] [ANGLE] RenameFunction::RenameFunction may store references to ...
Joshua Netterfield
Reported 2012-08-22 11:31:37 PDT
http://code.google.com/p/angleproject/issues/detail?id=360 When RenameFunction::RenameFunction(const TString& oldFunctionName, const TString& newFunctionName) is called from TCompiler::rewriteCSSShader(TIntermNode*), references to the temporaries oldFunctionName and newFunctionName are stored as mOldFunctionName and mNewFunctionName. This results in undefined behaviour in visitAggregate. Possible fix in RenameFunction.h: private: - const TString& mOldFunctionName; + const TString mOldFunctionName; - const TString& mNewFunctionName; + const TString mNewFunctionName;
Attachments
Patch (2.24 KB, patch)
2012-08-23 15:30 PDT, Joshua Netterfield 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Max Vujovic
Comment 1 2012-08-22 13:47:37 PDT
Good catch. Thanks Joshua. We'll fix this in ANGLE first.
Joshua Netterfield
Comment 2 2012-08-23 15:30:06 PDT
Created attachment 160263 [details] Patch
Max Vujovic
Comment 3 2012-08-23 15:41:17 PDT
Thanks for the patch! FYI, you don't need to worry about the style bot when you're touching ANGLE code. We have bug 90909 to teach the style bot to ignore the ANGLE directory.
George Staikos
Comment 4 2012-08-24 07:39:15 PDT
(In reply to comment #1) > Good catch. Thanks Joshua. We'll fix this in ANGLE first. Are you saying you would rather the patch not land here but instead in ANGLE first?
Joshua Netterfield
Comment 5 2012-08-24 07:42:28 PDT
The whole ANGLE directory gets replaced with the latest version from Google every once in a while. IMO, there's no point in updating all of ANGLE just for this.
Max Vujovic
Comment 6 2012-08-24 09:26:02 PDT
(In reply to comment #4) > (In reply to comment #1) > > Good catch. Thanks Joshua. We'll fix this in ANGLE first. > > Are you saying you would rather the patch not land here but instead in ANGLE first? That's what I was saying, but I think it's fine to land this now, since we have a patch prepped for ANGLE already. (In reply to comment #5) > The whole ANGLE directory gets replaced with the latest version from Google every once in a while. IMO, there's no point in updating all of ANGLE just for this. I totally agree.
WebKit Review Bot
Comment 7 2012-08-24 14:36:41 PDT
Comment on attachment 160263 [details] Patch Clearing flags on attachment: 160263 Committed r126625: <http://trac.webkit.org/changeset/126625>
WebKit Review Bot
Comment 8 2012-08-24 14:36:45 PDT
All reviewed patches have been landed. Closing bug.
Max Vujovic
Comment 9 2012-08-27 13:54:15 PDT
Fix has been upstreamed in ANGLE r1266: http://code.google.com/p/angleproject/source/detail?r=1266
Note You need to log in before you can comment on or make changes to this bug.