Open Bug 672373 Opened 13 years ago Updated 2 years ago

Blit JS_FREE_PATTERN over memory being freed in js_free, on platforms that support malloc_size

Tracking

()

Status:

NEW

People

(Reporter: jorendorff, Unassigned)

Details

Attachments

(1 file)

WIP 1 13 years ago Jason Orendorff [:jorendorff] 2.00 KB, patch		Details \| Diff \| Splinter Review

Jason Orendorff [:jorendorff]

Reporter

Description

•

13 years ago

Attached patch WIP 1 — Details — Splinter Review

On Windows, debug builds fill freed memory with garbage. I like it. This recently caught a read-after-free bug for me. So here's a crude hack to do the same on Mac. I tried it, and it doesn't slow things down very much.

The configury may not be quite up to snuff.

Nobody; OK to take it and work on it

Assignee

Updated

•

10 years ago

Assignee: general → nobody

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Blit JS_FREE_PATTERN over memory being freed in js_free, on platforms that support malloc_size

Categories

(Core :: JavaScript Engine, defect)

Tracking

()

People

(Reporter: jorendorff, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Updated

Attachment

General

Description

File Name

Content Type