227003 – Butterfly::create() does not handle allocation failures.

NEW227003

Butterfly::create() does not handle allocation failures.

https://bugs.webkit.org/show_bug.cgi?id=227003

Summary Butterfly::create() does not handle allocation failures.

Michael Saboff

Reported 2021-06-14 18:46:06 PDT

Butterfly::create calls Butterfly:: tryCreate(), but always expects the allocation to succeed. inline Butterfly* Butterfly::create(VM& vm, JSObject* intendedOwner, size_t preCapacity, size_t propertyCapacity, bool hasIndexingHeader, const IndexingHeader& indexingHeader, size_t indexingPayloadSizeInBytes) { Butterfly* result = tryCreate(vm, intendedOwner, preCapacity, propertyCapacity, hasIndexingHeader, indexingHeader, indexingPayloadSizeInBytes); RELEASE_ASSERT(result); return result; }

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2021-06-21 18:48:17 PDT

<rdar://problem/79590714>

Note You need to log in before you can comment on or make changes to this bug.

Status NEW

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component JavaScriptCore

Assignee

Nobody

Reported

2021-06-14 18:46 PDT

Modified

2021-06-21 18:48 PDT History

CC List

1 user Show

URL

Keywords InRadar

Depends on

Blocks