Make sure getFallbackFamily() always sets *scriptChecked.

This avoids an uninitialized read in FontCache::fallbackFontForCharacter(), which assumes the script is set. Found by DrMemory in http://build.chromium.org/p/chromium.memory.fyi/builders/Windows%20Content%20Browser%20%28DrMemory%20full%29%20%284%29/builds/5885/steps/memory%20test%3A%20content_browsertests/logs/stdio. Review URL: https://codereview.chromium.org/1327143002 git-svn-id: svn://svn.chromium.org/blink/trunk@202009 bbb929c8-8fbe-4397-9dbb-9b2b20218538

Make sure getFallbackFamily() always sets *scriptChecked.
This avoids an uninitialized read in FontCache::fallbackFontForCharacter(), which assumes the script is set. Found by DrMemory in http://build.chromium.org/p/chromium.memory.fyi/builders/Windows%20Content%20Browser%20%28DrMemory%20full%29%20%284%29/builds/5885/steps/memory%20test%3A%20content_browsertests/logs/stdio. Review URL: https://codereview.chromium.org/1327143002 git-svn-id: svn://svn.chromium.org/blink/trunk@202009 bbb929c8-8fbe-4397-9dbb-9b2b20218538
f4b89b20 · jyasskin@chromium.org · b579566e · f4b89b20
Commit f4b89b20 authored Sep 09, 2015 by jyasskin@chromium.org
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 1 deletion

third_party/WebKit/Source/platform/fonts/win/FontFallbackWin.cpp ...arty/WebKit/Source/platform/fonts/win/FontFallbackWin.cpp +4 -1

No files found.
--- a/third_party/WebKit/Source/platform/fonts/win/FontFallbackWin.cpp
+++ b/third_party/WebKit/Source/platform/fonts/win/FontFallbackWin.cpp
@@ -404,8 +404,11 @@ const UChar* getFallbackFamily(UChar32 character,
    ASSERT(character);
    ASSERT(fontManager);
    const UChar* family = getFontBasedOnUnicodeBlock(character, fontManager);
-    if (family)
+    if (family) {
+        if (scriptChecked)
+            *scriptChecked = USCRIPT_INVALID_CODE;
        return family;
+    }
    UScriptCode script = getScript(character);