Merge remote-tracking branch 'origin/5.11' into dev

Conflicts: mkspecs/features/qt_common.prf src/corelib/tools/qstring.cpp src/plugins/platforms/windows/qwindowsmousehandler.cpp src/widgets/widgets/qmainwindowlayout_p.h Change-Id: I5df613008f6336f69b257d08e49a133d033a9d65
author: Liang Qi <liang.qi@qt.io> 2018-05-24 16:27:08 +0200
committer: Liang Qi <liang.qi@qt.io> 2018-05-24 16:29:14 +0200
commit: f82e5085169876e0ec7c1b744d021b068c281cfe (patch)
tree: a870e1f68ce62818a0793c4c78a67971e841e676 /src/corelib/serialization
parent: f74d4fb1dacc682e2e6f4a44e4240f642a2c3b70 (diff)
parent: ee47999333dde1d38b73d04e142e05f06f8c56ed (diff)
1 files changed, 20 insertions, 23 deletions
diff --git a/src/corelib/serialization/qjson.cpp b/src/corelib/serialization/qjson.cpp
index 592f6168dc..7912b5040c 100644
--- a/src/corelib/serialization/qjson.cpp
+++ b/src/corelib/serialization/qjson.cpp
@@ -326,38 +326,35 @@ int Value::usedStorage(const Base *b) const
     return alignedSize(s);
 }
 
+inline bool isValidValueOffset(uint offset, uint tableOffset)
+{
+    return offset >= sizeof(Base)
+        && offset + sizeof(uint) <= tableOffset;
+}
+
 bool Value::isValid(const Base *b) const
 {
-    int offset = -1;
     switch (type) {
+    case QJsonValue::Null:
+    case QJsonValue::Bool:
+        return true;
     case QJsonValue::Double:
-        if (latinOrIntValue)
-            break;
-        Q_FALLTHROUGH();
+        return latinOrIntValue || isValidValueOffset(value, b->tableOffset);
     case QJsonValue::String:
+        if (!isValidValueOffset(value, b->tableOffset))
+            return false;
+        if (latinOrIntValue)
+            return asLatin1String(b).isValid(b->tableOffset - value);
+        return asString(b).isValid(b->tableOffset - value);
     case QJsonValue::Array:
+        return isValidValueOffset(value, b->tableOffset)
+            && static_cast<Array *>(base(b))->isValid(b->tableOffset - value);
     case QJsonValue::Object:
-        offset = value;
-        break;
-    case QJsonValue::Null:
-    case QJsonValue::Bool:
+        return isValidValueOffset(value, b->tableOffset)
+            && static_cast<Object *>(base(b))->isValid(b->tableOffset - value);
     default:
-        break;
-    }
-
-    if (offset == -1)
-        return true;
-    if (offset + sizeof(uint) > b->tableOffset || offset < (int)sizeof(Base))
-        return false;
-
-    int s = usedStorage(b);
-    if (s < 0 || s > (int)b->tableOffset - offset)
         return false;
-    if (type == QJsonValue::Array)
-        return static_cast<Array *>(base(b))->isValid(s);
-    if (type == QJsonValue::Object)
-        return static_cast<Object *>(base(b))->isValid(s);
-    return true;
+    }
 }
 
 /*!
author	Liang Qi <liang.qi@qt.io>	2018-05-24 16:27:08 +0200
committer	Liang Qi <liang.qi@qt.io>	2018-05-24 16:29:14 +0200
commit	f82e5085169876e0ec7c1b744d021b068c281cfe (patch)
tree	a870e1f68ce62818a0793c4c78a67971e841e676 /src/corelib/serialization
parent	f74d4fb1dacc682e2e6f4a44e4240f642a2c3b70 (diff)
parent	ee47999333dde1d38b73d04e142e05f06f8c56ed (diff)