Branch: refs/heads/webkitglib/2.48
Home: https://github.com/WebKit/WebKit
Commit: c43225245666c547c17d0baeb79a238951eb2f5e
https://github.com/WebKit/WebKit/commit/c43225245666c547c17d0baeb79a238951eb2f5e
Author: Jean-Yves Avenard <[email protected]>
Date: 2025-08-01 (Fri, 01 Aug 2025)
Changed paths:
M Source/WebCore/Modules/fetch/FetchBodyConsumer.cpp
M Source/WebCore/platform/SharedBuffer.h
Log Message:
-----------
Cherry-pick 297885@main (59ff57feba67).
https://bugs.webkit.org/show_bug.cgi?id=296427
Crash in WebCore::FragmentedSharedBuffer::takeData
https://bugs.webkit.org/show_bug.cgi?id=296427
rdar://155578324
Reviewed by Jer Noble.
Attempting to create a blob from fetched data greater than 4GiB.
Creating a Blob from fetch request was done by concatenating all the content
received into a Vector. As a WTF::Vector can't contain more than
`std::numeric_limits<unsigned>::max()`
elements, a crash would crash.
To get around this, if the resulting blob is going to be more than 512MiB
we generate a fragmented Blob instead made of each of the partial data
received by the fetch command.
TODO: How to test without storing more than 4GiB data on a server?
* Source/WebCore/Modules/fetch/FetchBodyConsumer.cpp:
(WebCore::FetchBodyConsumer::takeAsBlob):
* Source/WebCore/platform/SharedBuffer.h:
(WebCore::FragmentedSharedBuffer::segments const): Add convenience method
Canonical link: https://commits.webkit.org/297885@main
Canonical link: https://commits.webkit.org/290945.340@webkitglib/2.48
Commit: 897b7181a7b86e2c58a13c2ea5d9229051ea9fc5
https://github.com/WebKit/WebKit/commit/897b7181a7b86e2c58a13c2ea5d9229051ea9fc5
Author: Ryosuke Niwa <[email protected]>
Date: 2025-08-01 (Fri, 01 Aug 2025)
Changed paths:
M Source/WebCore/workers/service/context/ServiceWorkerThread.cpp
Log Message:
-----------
Cherry-pick 297832@main (3928ae29571b).
https://bugs.webkit.org/show_bug.cgi?id=296360
Release assert failure in ServiceWorkerThread::queueTaskToPostMessage
https://bugs.webkit.org/show_bug.cgi?id=296360
Reviewed by Chris Dumez.
Convert a release assert to an early return with a release log & debug
assertion.
* Source/WebCore/workers/service/context/ServiceWorkerThread.cpp:
(WebCore::ServiceWorkerThread::queueTaskToPostMessage):
Canonical link: https://commits.webkit.org/297832@main
Canonical link: https://commits.webkit.org/290945.341@webkitglib/2.48
Compare: https://github.com/WebKit/WebKit/compare/3ef1fd9d9fe4...897b7181a7b8
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
