Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: ab77ec97e20a74eb3528a9aa78b708bee5d45f14
https://github.com/WebKit/WebKit/commit/ab77ec97e20a74eb3528a9aa78b708bee5d45f14
Author: Anand Srinivasan <[email protected]>
Date: 2026-04-14 (Tue, 14 Apr 2026)
Changed paths:
M JSTests/wasm/stress/ipint-multimem-oob.js
Log Message:
-----------
IPInt nonzero memory bounds check still doesn't check last accessed byte
https://bugs.webkit.org/show_bug.cgi?id=312197
rdar://174688881
Reviewed by Yusuke Suzuki.
When rdar://174338638 (https://bugs.webkit.org/show_bug.cgi?id=311764)
was being fixed, the relevant macro in IPInt
(memoryOpAdvanceMCAndMakePointer) was split into multiple macros before
the bug was fixed. This patch adds that radar's fix to
loadStoreMakePointerSlow, since the other macros correctly handled the
case where the first accessed byte is in bounds but the last isn't.
Existing test is extended to exercise all macros that check bounds.
* JSTests/wasm/stress/ipint-multimem-oob.js:
(str):
(catch):
(buildModule): Deleted.
* Source/JavaScriptCore/llint/InPlaceInterpreter64.asm:
Canonical link: https://commits.webkit.org/311243@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
