Bug 227003 - Butterfly::create() does not handle allocation failures.
Summary: Butterfly::create() does not handle allocation failures.
Status: NEW
Alias: None
Product: WebKit
Classification: Unclassified
Component: JavaScriptCore (show other bugs)
Version: WebKit Nightly Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Nobody
URL:
Keywords: InRadar
Depends on:
Blocks:
 
Reported: 2021-06-14 18:46 PDT by Michael Saboff
Modified: 2021-06-21 18:48 PDT (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Saboff 2021-06-14 18:46:06 PDT 
Butterfly::create calls Butterfly:: tryCreate(), but always expects the allocation to succeed.

inline Butterfly* Butterfly::create(VM& vm, JSObject* intendedOwner, size_t preCapacity, size_t propertyCapacity, bool hasIndexingHeader, const IndexingHeader& indexingHeader, size_t indexingPayloadSizeInBytes)
{
    Butterfly* result = tryCreate(vm, intendedOwner, preCapacity, propertyCapacity, hasIndexingHeader, indexingHeader, indexingPayloadSizeInBytes);

    RELEASE_ASSERT(result);
    return result;
}
Comment 1 Radar WebKit Bug Importer 2021-06-21 18:48:17 PDT 
<rdar://problem/79590714>