295037 – REGRESSION (279702@main): Incorrect use of sizeof() in checkJSStringOOBUTF8() from testapi.c

RESOLVED FIXED295037

REGRESSION (279702@main): Incorrect use of sizeof() in checkJSStringOOBUTF8() from testapi.c

https://bugs.webkit.org/show_bug.cgi?id=295037

Summary REGRESSION (279702@main): Incorrect use of sizeof() in checkJSStringOOBUTF8()...

David Kilzer (:ddkilzer)

Reported 2025-06-26 09:56:54 PDT

REGRESSION (279702@main): Incorrect use of sizeof() in checkJSStringOOBUTF8() from testapi.c. Switching from stack-allocated buffers to malloc() caused sizeof() to report the size of a pointer instead of the size of a buffer. Regressed in: Enable -Wvla when building WebKit <https://bugs.webkit.org/show_bug.cgi?id=275081> <rdar://129190911> <https://commits.webkit.org/279702@main> <rdar://154311531>

Attachments
Add attachment proposed patch, testcase, etc.

David Kilzer (:ddkilzer)

Comment 1 2025-06-26 10:04:01 PDT

EWS

Comment 2 2025-06-26 18:48:26 PDT

Committed 296699@main (8f23ef0c9c9d): <https://commits.webkit.org/296699@main> Reviewed commits have been landed. Closing PR #47245 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component JavaScriptCore

Assignee

David Kilzer (:ddkilzer)

Reported

2025-06-26 09:56 PDT

Modified

2025-06-26 18:48 PDT History

CC List

1 user Show

URL

Keywords InRadar

Depends on

275081

Blocks

Dependencies

tree graph