194575 2019-02-12 17:51:20 -0800 generateUnlinkedCodeBlockForFunctions has a UAF 2019-02-13 02:05:32 -0800 1 1 1 Unclassified WebKit JavaScriptCore WebKit Nightly Build Unspecified Unspecified RESOLVED DUPLICATE 194536 P2 Normal --- 194576 1 saam saam benjamin fpizlo ggaren gskachkov guijemont keith_miller mark.lam msaboff rmorisset ticaiolima tzagallo ysuzuki oldest_to_newest 1505544 0 saam 2019-02-12 17:51:20 -0800 ... 1505546 1 361878 saam 2019-02-12 17:56:35 -0800 Created attachment 361878 patch Tadeu, is there an infrastructure in place where I can test this function? 1505669 2 tzagallo 2019-02-13 01:31:44 -0800 I had a patch in https://bugs.webkit.org/show_bug.cgi?id=194536 for this. Right now, we only test the cache by running the stress tests with the cache enable + a test for the JSScript caching in the api tests. 1505673 3 saam 2019-02-13 02:05:20 -0800 *** This bug has been marked as a duplicate of bug 194536 *** 361878 2019-02-12 17:56:35 -0800 2019-02-13 02:05:32 -0800 patch a-backup.diff text/plain 2080 saam SW5kZXg6IFNvdXJjZS9KYXZhU2NyaXB0Q29yZS9DaGFuZ2VMb2cKPT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PQotLS0gU291 cmNlL0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkocmV2aXNpb24gMjQxMzM0KQorKysgU291cmNl L0phdmFTY3JpcHRDb3JlL0NoYW5nZUxvZwkod29ya2luZyBjb3B5KQpAQCAtMSwzICsxLDE2IEBA CisyMDE5LTAyLTEyICBTYWFtIGJhcmF0aSAgPHNiYXJhdGlAYXBwbGUuY29tPgorCisgICAgICAg IGdlbmVyYXRlVW5saW5rZWRDb2RlQmxvY2tGb3JGdW5jdGlvbnMgaGFzIGEgVUFGCisgICAgICAg IGh0dHBzOi8vYnVncy53ZWJraXQub3JnL3Nob3dfYnVnLmNnaT9pZD0xOTQ1NzUKKworICAgICAg ICBSZXZpZXdlZCBieSBOT0JPRFkgKE9PUFMhKS4KKworICAgICAgICBXZSB3ZXJlIHVzaW5nIGEg RnVuY3Rpb25FeGVjdXRhYmxlJ3MgU291cmNlQ29kZSB3aXRob3V0IGVuc3VyaW5nCisgICAgICAg IHdlIGtlcHQgdGhlIEZ1bmN0aW9uRXhlY3V0YWJsZSBhbGl2ZS4KKworICAgICAgICAqIHJ1bnRp bWUvQ29kZUNhY2hlLmNwcDoKKyAgICAgICAgKEpTQzo6Z2VuZXJhdGVVbmxpbmtlZENvZGVCbG9j a0ZvckZ1bmN0aW9ucyk6CisKIDIwMTktMDItMTIgIE1pY2hhZWwgQ2F0YW56YXJvICA8bWNhdGFu emFyb0BpZ2FsaWEuY29tPgogCiAgICAgICAgIFVucmV2aWV3ZWQsIGZpeCAtV2ltcGxpY2l0LWZh bGx0aHJvdWdoIHdhcm5pbmcgYWZ0ZXIgcjI0MTE0MApJbmRleDogU291cmNlL0phdmFTY3JpcHRD b3JlL3J1bnRpbWUvQ29kZUNhY2hlLmNwcAo9PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09Ci0tLSBTb3VyY2UvSmF2YVNjcmlw dENvcmUvcnVudGltZS9Db2RlQ2FjaGUuY3BwCShyZXZpc2lvbiAyNDEzMzQpCisrKyBTb3VyY2Uv SmF2YVNjcmlwdENvcmUvcnVudGltZS9Db2RlQ2FjaGUuY3BwCSh3b3JraW5nIGNvcHkpCkBAIC0x NjksMTEgKzE2OSwxNCBAQCB2b2lkIGdlbmVyYXRlVW5saW5rZWRDb2RlQmxvY2tGb3JGdW5jdGlv CiAgICAgICAgIGlmIChjb25zdHJ1Y3RvcktpbmQgPT0gQ29kZUZvckNvbnN0cnVjdCAmJiBTb3Vy Y2VQYXJzZU1vZGVTZXQoU291cmNlUGFyc2VNb2RlOjpBc3luY0Fycm93RnVuY3Rpb25Nb2RlLCBT b3VyY2VQYXJzZU1vZGU6OkFzeW5jTWV0aG9kTW9kZSwgU291cmNlUGFyc2VNb2RlOjpBc3luY0Z1 bmN0aW9uTW9kZSkuY29udGFpbnModW5saW5rZWRFeGVjdXRhYmxlLT5wYXJzZU1vZGUoKSkpCiAg ICAgICAgICAgICByZXR1cm47CiAKKyAgICAgICAgLy8gRklYTUU6IFdlIHNob3VsZG4ndCBuZWVk IHRvIG1ha2UgYSBGdW5jdGlvbkV4ZWN1dGFibGUqIGp1c3QgdG8gZ2V0IGl0cyBTb3VyY2VDb2Rl OgorICAgICAgICAvLyBodHRwczovL2J1Z3Mud2Via2l0Lm9yZy9zaG93X2J1Zy5jZ2k/aWQ9MTk0 NTc2CiAgICAgICAgIEZ1bmN0aW9uRXhlY3V0YWJsZSogZXhlY3V0YWJsZSA9IHVubGlua2VkRXhl Y3V0YWJsZS0+bGluayh2bSwgcGFyZW50U291cmNlKTsKICAgICAgICAgY29uc3QgU291cmNlQ29k ZSYgc291cmNlID0gZXhlY3V0YWJsZS0+c291cmNlKCk7CiAgICAgICAgIFVubGlua2VkRnVuY3Rp b25Db2RlQmxvY2sqIHVubGlua2VkRnVuY3Rpb25Db2RlQmxvY2sgPSB1bmxpbmtlZEV4ZWN1dGFi bGUtPnVubGlua2VkQ29kZUJsb2NrRm9yKHZtLCBzb3VyY2UsIGNvbnN0cnVjdG9yS2luZCwgZGVi dWdnZXJNb2RlLCBlcnJvciwgdW5saW5rZWRFeGVjdXRhYmxlLT5wYXJzZU1vZGUoKSk7CiAgICAg ICAgIGlmICh1bmxpbmtlZEZ1bmN0aW9uQ29kZUJsb2NrKQogICAgICAgICAgICAgZ2VuZXJhdGVV bmxpbmtlZENvZGVCbG9ja0ZvckZ1bmN0aW9ucyh2bSwgdW5saW5rZWRGdW5jdGlvbkNvZGVCbG9j aywgc291cmNlLCBkZWJ1Z2dlck1vZGUsIGVycm9yKTsKKyAgICAgICAgZXhlY3V0YWJsZS0+dXNl KCk7CiAgICAgfTsKIAogICAgIC8vIEZJWE1FOiBXZSBzaG91bGQgYWxzbyBnZW5lcmF0ZSBDb2Rl QmxvY2tzIGZvciBDb2RlRm9yQ29uc3RydWN0Cg==