65832 2011-08-07 15:15:00 -0700 Non-extensibility does not prevent mutating [[Prototype]] 2012-02-12 14:20:20 -0800 1 1 1 Unclassified WebKit JavaScriptCore 528+ (Nightly build) All All RESOLVED FIXED http://es5.github.com/#x8.6.2 P2 Major --- 0 erights oliver barraclough erights oliver oldest_to_newest 447775 0 erights 2011-08-07 15:15:00 -0700 ES5.1 section 8.6.2 states: "In addition, if [[Extensible]] is false the value of the [[Class]] and [[Prototype]] internal properties of the object may not be modified." However, on Safari 5.0.6 through WebKit Nightly 5.0.6 (5533.22.3, r92569), we see: > var x = Object.freeze({}); > var y = {}; > x.__proto__ = y; Object > y.isPrototypeOf(x); true > Object.getPrototypeOf(x) === y; true I'm classifying this as Severity=Major, since it is the only currently known showstopper preventing SES from being able to run securely using a verification-only strategy. 448148 1 103271 oliver 2011-08-08 11:59:36 -0700 Created attachment 103271 Patch 448157 2 oliver 2011-08-08 12:10:37 -0700 Committed r92618: <http://trac.webkit.org/changeset/92618> 554857 3 erights 2012-02-12 14:20:20 -0800 See https://bugs.webkit.org/show_bug.cgi?id=78438 103271 2011-08-08 11:59:36 -0700 2011-08-08 12:05:35 -0700 Patch bug-65832-20110808115935.patch text/plain 4198 oliver U3VidmVyc2lvbiBSZXZpc2lvbjogOTI2MTEKZGlmZiAtLWdpdCBhL0xheW91dFRlc3RzL0NoYW5n ZUxvZyBiL0xheW91dFRlc3RzL0NoYW5nZUxvZwppbmRleCA3MmZmMTBjNzU5NTFlYzViNzk5OWM3 NTM5NDg0ODg4NGFkNGRjNWM5Li5iY2Y2YmY4MjZlYmFiY2I0ZmIwNjRlNzA0NDM3OTEyNTM5OWQ5 ZmFhIDEwMDY0NAotLS0gYS9MYXlvdXRUZXN0cy9DaGFuZ2VMb2cKKysrIGIvTGF5b3V0VGVzdHMv Q2hhbmdlTG9nCkBAIC0xLDMgKzEsMTYgQEAKKzIwMTEtMDgtMDggIE9saXZlciBIdW50ICA8b2xp dmVyQGFwcGxlLmNvbT4KKworICAgICAgICBOb24tZXh0ZW5zaWJpbGl0eSBkb2VzIG5vdCBwcmV2 ZW50IG11dGF0aW5nIFtbUHJvdG90eXBlXV0KKyAgICAgICAgaHR0cHM6Ly9idWdzLndlYmtpdC5v cmcvc2hvd19idWcuY2dpP2lkPTY1ODMyCisKKyAgICAgICAgUmV2aWV3ZWQgYnkgTk9CT0RZIChP T1BTISkuCisKKyAgICAgICAgQWRkIHRlc3RzIHRvIGVuc3VyZSB3ZSBjYW4ndCBhc3NpZ24gdG8g X19wcm90b19fIHdoZW4gYW4gb2JqZWN0CisgICAgICAgIGlzIG5vdCBleHRlbnNpYmxlLgorCisg ICAgICAgICogZmFzdC9qcy9wcmV2ZW50RXh0ZW5zaW9ucy1leHBlY3RlZC50eHQ6CisgICAgICAg ICogZmFzdC9qcy9zY3JpcHQtdGVzdHMvcHJldmVudEV4dGVuc2lvbnMuanM6CisKIDIwMTEtMDgt MDggIEppYW4gTGkgIDxqaWFubGlAY2hyb21pdW0ub3JnPgogCiAgICAgICAgIFVucmV2aWV3ZWQs IG1hcmsgc29tZSB0ZXN0cyBhcyBmbGFreSBvbiBjaHJvbWl1bS4KZGlmZiAtLWdpdCBhL0xheW91 dFRlc3RzL2Zhc3QvanMvcHJldmVudEV4dGVuc2lvbnMtZXhwZWN0ZWQudHh0IGIvTGF5b3V0VGVz dHMvZmFzdC9qcy9wcmV2ZW50RXh0ZW5zaW9ucy1leHBlY3RlZC50eHQKaW5kZXggZGRiNjA1ODdj YjEzNGZiY2E1N2ZhZGIzYWY4MDk0MDZmOWE0Yjc3MS4uYWIzMzFjMmM5NzkzYTVlNjMwZDRmMmYx OTA5YzA1MWFiMmZhMWVlOSAxMDA2NDQKLS0tIGEvTGF5b3V0VGVzdHMvZmFzdC9qcy9wcmV2ZW50 RXh0ZW5zaW9ucy1leHBlY3RlZC50eHQKKysrIGIvTGF5b3V0VGVzdHMvZmFzdC9qcy9wcmV2ZW50 RXh0ZW5zaW9ucy1leHBlY3RlZC50eHQKQEAgLTExLDYgKzExLDggQEAgUEFTUyB0ZXN0KHByZXZl bnRFeHRlbnNpb25zKG9iaigpKSkgaXMgIihiOjQpIgogUEFTUyB0ZXN0KHNlYWwob2JqKCkpKSBp cyAiKGE6MSkoYjo0KVMiCiBQQVNTIHRlc3QoZnJlZXplKG9iaigpKSkgaXMgIihhOjEpKGI6MilT RiIKIFBBU1MgT2JqZWN0LnByZXZlbnRFeHRlbnNpb25zKE1hdGguc2luKSBpcyBNYXRoLnNpbgor UEFTUyB2YXIgbyA9IHt9OyBPYmplY3QucHJldmVudEV4dGVuc2lvbnMobyk7IG8uX19wcm90b19f ID0geyBuZXdQcm9wOiAiU2hvdWxkIG5vdCBzZWUgdGhpcyIgfTsgby5uZXdQcm9wOyBpcyB1bmRl ZmluZWQuCitQQVNTICJ1c2Ugc3RyaWN0IjsgdmFyIG8gPSB7fTsgT2JqZWN0LnByZXZlbnRFeHRl bnNpb25zKG8pOyBvLl9fcHJvdG9fXyA9IHsgbmV3UHJvcDogIlNob3VsZCBub3Qgc2VlIHRoaXMi IH07IHRocmV3IGV4Y2VwdGlvbiBUeXBlRXJyb3I6IEF0dGVtcHRlZCB0byBhc3NpZ24gdG8gcmVh ZG9ubHkgcHJvcGVydHkuLgogUEFTUyBzdWNjZXNzZnVsbHlQYXJzZWQgaXMgdHJ1ZQogCiBURVNU IENPTVBMRVRFCmRpZmYgLS1naXQgYS9MYXlvdXRUZXN0cy9mYXN0L2pzL3NjcmlwdC10ZXN0cy9w cmV2ZW50RXh0ZW5zaW9ucy5qcyBiL0xheW91dFRlc3RzL2Zhc3QvanMvc2NyaXB0LXRlc3RzL3By ZXZlbnRFeHRlbnNpb25zLmpzCmluZGV4IGJjNjNhMzA5ZTMzN2QzYmYxOTllMTVhZWMzNDA5YzQy ZTg1MzcwMzguLjg4OWQ3YTQ3MzNhMTljNTNjN2UyYTcxY2JkNzc2YWZiMmU3OTAwMWIgMTAwNjQ0 Ci0tLSBhL0xheW91dFRlc3RzL2Zhc3QvanMvc2NyaXB0LXRlc3RzL3ByZXZlbnRFeHRlbnNpb25z LmpzCisrKyBiL0xheW91dFRlc3RzL2Zhc3QvanMvc2NyaXB0LXRlc3RzL3ByZXZlbnRFeHRlbnNp b25zLmpzCkBAIC02OCw0ICs2OCw3IEBAIHNob3VsZEJlKCd0ZXN0KGZyZWV6ZShvYmooKSkpJywg JyIoYToxKShiOjIpU0YiJyk7IC8vIHNlYWxlZCBhbmQgZnJvemVuLCBDQU5OT1QKIC8vIGNoZWNr IHRoYXQgd2UgY2FuIHByZXZlbnRFeHRlbnNpb25zIG9uIGEgaG9zdCBmdW5jdGlvbi4KIHNob3Vs ZEJlKCdPYmplY3QucHJldmVudEV4dGVuc2lvbnMoTWF0aC5zaW4pJywgJ01hdGguc2luJyk7CiAK K3Nob3VsZEJlVW5kZWZpbmVkKCd2YXIgbyA9IHt9OyBPYmplY3QucHJldmVudEV4dGVuc2lvbnMo byk7IG8uX19wcm90b19fID0geyBuZXdQcm9wOiAiU2hvdWxkIG5vdCBzZWUgdGhpcyIgfTsgby5u ZXdQcm9wOycpOworc2hvdWxkVGhyb3coJyJ1c2Ugc3RyaWN0IjsgdmFyIG8gPSB7fTsgT2JqZWN0 LnByZXZlbnRFeHRlbnNpb25zKG8pOyBvLl9fcHJvdG9fXyA9IHsgbmV3UHJvcDogIlNob3VsZCBu b3Qgc2VlIHRoaXMiIH07Jyk7CisKIHN1Y2Nlc3NmdWxseVBhcnNlZCA9IHRydWU7ClwgTm8gbmV3 bGluZSBhdCBlbmQgb2YgZmlsZQpkaWZmIC0tZ2l0IGEvU291cmNlL0phdmFTY3JpcHRDb3JlL0No YW5nZUxvZyBiL1NvdXJjZS9KYXZhU2NyaXB0Q29yZS9DaGFuZ2VMb2cKaW5kZXggNDI3ZDlmYWNl YjY0MmZlZTk2ZDFkODNjMDRiMGI2MWI5YmE5ZGRkOC4uNGFjMDcyMTE1ZTliZDE5NmYyMWE5MjJh NGU4Nzc3ZGRhYzk4YmNiNSAxMDA2NDQKLS0tIGEvU291cmNlL0phdmFTY3JpcHRDb3JlL0NoYW5n ZUxvZworKysgYi9Tb3VyY2UvSmF2YVNjcmlwdENvcmUvQ2hhbmdlTG9nCkBAIC0xLDMgKzEsMTUg QEAKKzIwMTEtMDgtMDggIE9saXZlciBIdW50ICA8b2xpdmVyQGFwcGxlLmNvbT4KKworICAgICAg ICBOb24tZXh0ZW5zaWJpbGl0eSBkb2VzIG5vdCBwcmV2ZW50IG11dGF0aW5nIFtbUHJvdG90eXBl XV0KKyAgICAgICAgaHR0cHM6Ly9idWdzLndlYmtpdC5vcmcvc2hvd19idWcuY2dpP2lkPTY1ODMy CisKKyAgICAgICAgUmV2aWV3ZWQgYnkgTk9CT0RZIChPT1BTISkuCisKKyAgICAgICAgRGlzYWxs b3cgbXV0YXRpb24gb2YgX19wcm90b19fIG9uIG9iamVjdHMgdGhhdCBhcmUgbm90IGV4dGVuc2li bGUuCisKKyAgICAgICAgKiBydW50aW1lL0pTT2JqZWN0LmNwcDoKKyAgICAgICAgKEpTQzo6SlNP YmplY3Q6OnB1dCk6CisKIDIwMTEtMDgtMDggIEZpbGlwIFBpemxvICA8ZnBpemxvQGFwcGxlLmNv bT4KIAogICAgICAgICBERkcgSklUIGRvZXMgbm90IHRyYWNrIHNwZWN1bGF0aW9uIGRlY2lzaW9u cyBmb3IgZ2xvYmFsIHZhcmlhYmxlcwpkaWZmIC0tZ2l0IGEvU291cmNlL0phdmFTY3JpcHRDb3Jl L3J1bnRpbWUvSlNPYmplY3QuY3BwIGIvU291cmNlL0phdmFTY3JpcHRDb3JlL3J1bnRpbWUvSlNP YmplY3QuY3BwCmluZGV4IGZjY2Y2MzMxZGJlNjAzMGNiNTkwM2U5N2IwNjM1M2U0YjY0ODUxMDMu LmEwOTEzYTQxOTU3ZjU4Y2MxNDM2OWEwMGFlYzQ3MTE5MjcxMDY0NTggMTAwNjQ0Ci0tLSBhL1Nv dXJjZS9KYXZhU2NyaXB0Q29yZS9ydW50aW1lL0pTT2JqZWN0LmNwcAorKysgYi9Tb3VyY2UvSmF2 YVNjcmlwdENvcmUvcnVudGltZS9KU09iamVjdC5jcHAKQEAgLTExMCw2ICsxMTAsMTMgQEAgdm9p ZCBKU09iamVjdDo6cHV0KEV4ZWNTdGF0ZSogZXhlYywgY29uc3QgSWRlbnRpZmllciYgcHJvcGVy dHlOYW1lLCBKU1ZhbHVlIHZhbHUKICAgICAgICAgLy8gU2V0dGluZyBfX3Byb3RvX18gdG8gYSBu b24tb2JqZWN0LCBub24tbnVsbCB2YWx1ZSBpcyBzaWxlbnRseSBpZ25vcmVkIHRvIG1hdGNoIE1v emlsbGEuCiAgICAgICAgIGlmICghdmFsdWUuaXNPYmplY3QoKSAmJiAhdmFsdWUuaXNOdWxsKCkp CiAgICAgICAgICAgICByZXR1cm47CisKKyAgICAgICAgaWYgKCFpc0V4dGVuc2libGUoKSkgewor ICAgICAgICAgICAgaWYgKHNsb3QuaXNTdHJpY3RNb2RlKCkpCisgICAgICAgICAgICAgICAgdGhy b3dUeXBlRXJyb3IoZXhlYywgU3RyaWN0TW9kZVJlYWRvbmx5UHJvcGVydHlXcml0ZUVycm9yKTsK KyAgICAgICAgICAgIHJldHVybjsKKyAgICAgICAgfQorICAgICAgICAgICAgCiAgICAgICAgIGlm ICghc2V0UHJvdG90eXBlV2l0aEN5Y2xlQ2hlY2soZXhlYy0+Z2xvYmFsRGF0YSgpLCB2YWx1ZSkp CiAgICAgICAgICAgICB0aHJvd0Vycm9yKGV4ZWMsIGNyZWF0ZUVycm9yKGV4ZWMsICJjeWNsaWMg X19wcm90b19fIHZhbHVlIikpOwogICAgICAgICByZXR1cm47Cg==