Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(285)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 2010493002: Check CallSite arguments more rigorously (Closed)

Created:
4 years, 7 months ago by Clemens Hammacher
Modified:
4 years, 6 months ago
Reviewers:
Igor Sheludko, titzer, Yang
CC:
v8-reviews_googlegroups.com
Base URL:
https://chromium.googlesource.com/v8/v8.git@master
Target Ref:
refs/pending/heads/master
Project:
v8
Visibility:
Public.

Description

Check CallSite arguments more rigorously Before, it was possible to construct invalid CallSite objects, which would trigger a runtime assert when any function is called on it. This check ensures to throw a TypeError when invalid information is passed to the CallSite constructor. This reverts part of this CL: https://codereview.chromium.org/2006603002 R=ishell@chromium.org, titzer@chromium.org, yangguo@chromium.org BUG=chromium:614295 Committed: https://crrev.com/25c2203a8f1553ac79deed299ff66830d4d9ec0e Cr-Commit-Position: refs/heads/master@{#36578}

Patch Set 1 #

Patch Set 2 : remove unneeded cast #

Total comments: 2

Patch Set 3 : rebase #

Patch Set 4 : add regression test case #

Unified diffs Side-by-side diffs Delta from patch set Stats (+38 lines, -14 lines) Patch
M src/js/messages.js View 1 2 1 chunk +2 lines, -2 lines 0 comments Download
M src/messages.h View 1 chunk +2 lines, -1 line 0 comments Download
M src/messages.cc View 1 2 chunks +4 lines, -9 lines 0 comments Download
M src/runtime/runtime.h View 1 2 1 chunk +2 lines, -1 line 0 comments Download
M src/runtime/runtime-internal.cc View 1 2 2 chunks +10 lines, -0 lines 0 comments Download
M src/wasm/wasm-module.h View 1 2 1 chunk +7 lines, -0 lines 0 comments Download
M src/wasm/wasm-module.cc View 1 2 1 chunk +10 lines, -0 lines 0 comments Download
A + test/mjsunit/regress/regress-crbug-615774.js View 1 2 3 1 chunk +1 line, -1 line 0 comments Download

Messages

Total messages: 13 (5 generated)
Clemens Hammacher
4 years, 7 months ago (2016-05-24 10:49:58 UTC) #2
titzer
On 2016/05/24 10:49:58, Clemens Hammacher wrote: lgtm
4 years, 7 months ago (2016-05-24 11:52:13 UTC) #3
Yang
On 2016/05/24 11:52:13, titzer wrote: > On 2016/05/24 10:49:58, Clemens Hammacher wrote: > > lgtm ...
4 years, 7 months ago (2016-05-24 14:34:58 UTC) #4
Igor Sheludko
https://codereview.chromium.org/2010493002/diff/20001/src/messages.cc File src/messages.cc (right): https://codereview.chromium.org/2010493002/diff/20001/src/messages.cc#newcode181 src/messages.cc:181: if (!maybe_wasm_func_index->IsSmi()) { What if we hit this case ...
4 years, 7 months ago (2016-05-25 08:26:30 UTC) #5
Clemens Hammacher
https://codereview.chromium.org/2010493002/diff/20001/src/messages.cc File src/messages.cc (right): https://codereview.chromium.org/2010493002/diff/20001/src/messages.cc#newcode181 src/messages.cc:181: if (!maybe_wasm_func_index->IsSmi()) { On 2016/05/25 08:26:29, Igor Sheludko wrote: ...
4 years, 6 months ago (2016-05-30 08:25:00 UTC) #6
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/2010493002/60001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/2010493002/60001
4 years, 6 months ago (2016-05-30 10:25:08 UTC) #9
commit-bot: I haz the power
Committed patchset #4 (id:60001)
4 years, 6 months ago (2016-05-30 10:27:08 UTC) #11
commit-bot: I haz the power
4 years, 6 months ago (2016-05-30 10:30:19 UTC) #13
Message was sent while issue was closed. 
Patchset 4 (id:??) landed as
https://crrev.com/25c2203a8f1553ac79deed299ff66830d4d9ec0e
Cr-Commit-Position: refs/heads/master@{#36578}

Powered by Google App Engine
This is Rietveld 408576698