172134 – JSEnvironmentRecord::allocationSizeForScopeSize() and offsetOfVariable(ScopeOffset) should used checked arithmetic

Bug 172134 - JSEnvironmentRecord::allocationSizeForScopeSize() and offsetOfVariable(ScopeOffset) should used checked arithmetic

Summary: JSEnvironmentRecord::allocationSizeForScopeSize() and offsetOfVariable(ScopeO...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	JavaScriptCore (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	David Kilzer (:ddkilzer)

URL:
Keywords:

Depends on:
Blocks:

Reported:	2017-05-15 14:26 PDT by David Kilzer (:ddkilzer)
Modified:	2017-05-15 14:51 PDT (History)
CC List:	8 users (show)

See Also:

Attachments
Patch v1 (2.15 KB, patch) 2017-05-15 14:30 PDT, David Kilzer (:ddkilzer)	no flags	Details \| Formatted Diff \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description David Kilzer (:ddkilzer) 2017-05-15 14:26:11 PDT

JSEnvironmentRecord::allocationSizeForScopeSize() and JSEnvironmentRecord::offsetOfVariable(ScopeOffset) should used checked arithmetic for consistency with other methods.

Comment 1 David Kilzer (:ddkilzer) 2017-05-15 14:30:59 PDT

Created attachment 310167 [details]
Patch v1

Comment 2 WebKit Commit Bot 2017-05-15 14:51:12 PDT

Comment on attachment 310167 [details]
Patch v1

Clearing flags on attachment: 310167

Committed r216880: <http://trac.webkit.org/changeset/216880>

Comment 3 WebKit Commit Bot 2017-05-15 14:51:14 PDT

All reviewed patches have been landed.  Closing bug.