31635 – Interpreter may do an out of range access when throwing an exception in the profiler.

RESOLVED FIXED 31635

Interpreter may do an out of range access when throwing an exception in the profiler.

https://bugs.webkit.org/show_bug.cgi?id=31635

Summary Interpreter may do an out of range access when throwing an exception in the p...

Oliver Hunt

Reported 2009-11-18 12:22:20 PST

Found this bug while looking at another bug -- the exception handling code assumes it can always look 8 words forward into the instruction stream, which may not be true in some cases.

Attachments
Patch (2.76 KB, patch) 2009-11-18 12:25 PST, Oliver Hunt	ap: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Oliver Hunt

Comment 1 2009-11-18 12:25:15 PST

Created attachment 43445 [details] Patch

Alexey Proskuryakov

Comment 2 2009-11-18 12:40:30 PST

Comment on attachment 43445 [details] Patch r=me

Oliver Hunt

Comment 3 2009-11-18 12:46:40 PST

Committed r51128

Eric Seidel (no email)

Comment 4 2009-11-18 13:19:03 PST

Looks like this may have regressed a test on the bots: http://build.webkit.org/results/Leopard%20Intel%20Debug%20(Tests)/r51128%20(7372)/fast/profiler/throw-exception-from-eval-pretty-diff.html

Oliver Hunt

Comment 5 2009-11-18 13:25:02 PST

Gah, i'm a moron and forgot to update the expected output

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware PC

OS OS X 10.5

Product WebKit

Component JavaScriptCore

Assignee

Nobody

Reported

2009-11-18 12:22 PST

Modified

2009-11-18 13:25 PST History

CC List

1 user Show

URL

Keywords

Depends on

Blocks