Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(355)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 2636173002: [wasm] Enforce memory and table limits during instantiation. (Closed)

Created:
3 years, 11 months ago by titzer
Modified:
3 years, 11 months ago
Reviewers:
rossberg
CC:
v8-reviews_googlegroups.com
Target Ref:
refs/pending/heads/master
Project:
v8
Visibility:
Public.

Description

[wasm] Enforce memory and table limits during instantiation. R=rossberg@chromium.org BUG=chromium:575167 Review-Url: https://codereview.chromium.org/2636173002 Cr-Commit-Position: refs/heads/master@{#42426} Committed: https://chromium.googlesource.com/v8/v8/+/8d76f0e3465a84bbf0bceab114900fbe75844e1f

Patch Set 1 #

Total comments: 6

Patch Set 2 : Fix formatting #

Patch Set 3 : formatting #

Patch Set 4 : format string #

Patch Set 5 : [wasm] Enforce memory and table limits during instantiation. #

Unified diffs Side-by-side diffs Delta from patch set Stats (+182 lines, -77 lines) Patch
M src/wasm/module-decoder.cc View 2 chunks +8 lines, -9 lines 0 comments Download
M src/wasm/wasm-js.cc View 1 6 chunks +27 lines, -30 lines 0 comments Download
M src/wasm/wasm-limits.h View 1 chunk +1 line, -0 lines 0 comments Download
M src/wasm/wasm-module.h View 1 chunk +1 line, -0 lines 0 comments Download
M src/wasm/wasm-module.cc View 1 2 3 5 chunks +54 lines, -12 lines 0 comments Download
M src/wasm/wasm-objects.h View 3 chunks +7 lines, -4 lines 0 comments Download
M src/wasm/wasm-objects.cc View 1 2 3 4 5 chunks +17 lines, -9 lines 0 comments Download
M test/mjsunit/wasm/compiled-module-serialization.js View 1 chunk +1 line, -1 line 0 comments Download
M test/mjsunit/wasm/import-memory.js View 1 chunk +15 lines, -0 lines 0 comments Download
M test/mjsunit/wasm/indirect-tables.js View 1 3 chunks +23 lines, -2 lines 0 comments Download
M test/mjsunit/wasm/instantiate-module-basic.js View 2 chunks +2 lines, -2 lines 0 comments Download
M test/mjsunit/wasm/module-memory.js View 1 chunk +1 line, -1 line 0 comments Download
M test/mjsunit/wasm/table.js View 1 4 chunks +25 lines, -7 lines 0 comments Download

Messages

Total messages: 23 (14 generated)
titzer
3 years, 11 months ago (2017-01-17 13:33:26 UTC) #1
rossberg
LGTM https://codereview.chromium.org/2636173002/diff/1/src/wasm/wasm-objects.cc File src/wasm/wasm-objects.cc (right): https://codereview.chromium.org/2636173002/diff/1/src/wasm/wasm-objects.cc#newcode137 src/wasm/wasm-objects.cc:137: *isolate->factory()->NewNumber(maximum)); Lossy conversion paranoia triggered https://codereview.chromium.org/2636173002/diff/1/test/mjsunit/wasm/indirect-tables.js File test/mjsunit/wasm/indirect-tables.js ...
3 years, 11 months ago (2017-01-17 14:22:06 UTC) #6
titzer
https://codereview.chromium.org/2636173002/diff/1/src/wasm/wasm-objects.cc File src/wasm/wasm-objects.cc (right): https://codereview.chromium.org/2636173002/diff/1/src/wasm/wasm-objects.cc#newcode137 src/wasm/wasm-objects.cc:137: *isolate->factory()->NewNumber(maximum)); On 2017/01/17 14:22:06, rossberg wrote: > Lossy conversion ...
3 years, 11 months ago (2017-01-17 16:47:18 UTC) #7
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2636173002/20001
3 years, 11 months ago (2017-01-17 16:51:04 UTC) #10
commit-bot: I haz the power
Try jobs failed on following builders: v8_linux_mipsel_compile_rel on master.tryserver.v8 (JOB_FAILED, http://build.chromium.org/p/tryserver.v8/builders/v8_linux_mipsel_compile_rel/builds/27883) v8_linux_nodcheck_rel_ng on master.tryserver.v8 (JOB_FAILED, ...
3 years, 11 months ago (2017-01-17 16:54:16 UTC) #12
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2636173002/60001
3 years, 11 months ago (2017-01-17 17:52:22 UTC) #15
commit-bot: I haz the power
Try jobs failed on following builders: v8_linux_rel_ng on master.tryserver.v8 (JOB_FAILED, http://build.chromium.org/p/tryserver.v8/builders/v8_linux_rel_ng/builds/19311) v8_linux_rel_ng_triggered on master.tryserver.v8 (JOB_FAILED, ...
3 years, 11 months ago (2017-01-17 18:34:52 UTC) #17
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2636173002/80001
3 years, 11 months ago (2017-01-17 18:49:58 UTC) #20
commit-bot: I haz the power
3 years, 11 months ago (2017-01-17 19:16:05 UTC) #23
Message was sent while issue was closed. 
Committed patchset #5 (id:80001) as
https://chromium.googlesource.com/v8/v8/+/8d76f0e3465a84bbf0bceab114900fbe758...

Powered by Google App Engine
This is Rietveld 408576698