Changeset 56380 in webkit
- Timestamp:
- Mar 22, 2010, 11:08:33 PM (14 years ago)
- Location:
- trunk
- Files:
-
- 4 added
- 3 edited
-
LayoutTests/ChangeLog (modified) (1 diff)
-
LayoutTests/websocket/tests/long-invalid-header-expected.txt (added)
-
LayoutTests/websocket/tests/long-invalid-header.html (added)
-
LayoutTests/websocket/tests/long-invalid-header_wsh.py (added)
-
LayoutTests/websocket/tests/script-tests/long-invalid-header.js (added)
-
WebCore/ChangeLog (modified) (1 diff)
-
WebCore/websockets/WebSocketHandshake.cpp (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/LayoutTests/ChangeLog
r56379 r56380 1 2010-03-19 Abhishek Arya <inferno@chromium.org> 2 3 Reviewed by Adam Barth. 4 5 https://bugs.webkit.org/show_bug.cgi?id=36339 6 This LayoutTest tests for webkit ability to process long invalid headers generated by misbehaving websockets servers. 7 8 * websocket/tests/long-invalid-header-expected.txt: Added. 9 * websocket/tests/long-invalid-header.html: Added. 10 * websocket/tests/long-invalid-header_wsh.py: Added. 11 * websocket/tests/script-tests/long-invalid-header.js: Added. 12 1 13 2010-03-22 David Kilzer <ddkilzer@apple.com> 2 14 -
trunk/WebCore/ChangeLog
r56377 r56380 1 2010-03-19 Abhishek Arya <inferno@chromium.org> 2 3 Reviewed by Adam Barth. 4 5 https://bugs.webkit.org/show_bug.cgi?id=36339 6 Off-by-one memory corruption fix for long invalid websockets upgrade header 7 8 Test: websocket/tests/long-invalid-header.html 9 10 * websockets/WebSocketHandshake.cpp: 11 (WebCore::WebSocketHandshake::readServerHandshake): 12 1 13 2010-03-22 Fumitoshi Ukai <ukai@chromium.org> 2 14 -
trunk/WebCore/websockets/WebSocketHandshake.cpp
r55570 r56380 259 259 } 260 260 const char* p = header + sizeof(webSocketServerHandshakeHeader) - 1; 261 const char* end = header + len + 1;261 const char* end = header + len; 262 262 263 263 if (m_mode == Normal) {
Note:
See TracChangeset
for help on using the changeset viewer.