Closed Bug 1525505 Opened 6 years ago Closed 6 years ago

XDRScript should create JSScript with valid constructor arguments

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla67

Tracking Flags:

Tracking

Status

firefox67

---

fixed

People

(Reporter: tcampbell, Assigned: tcampbell)

References

Details

Attachments

(3 files)

Bug 1525505 - Fix bug in XDRState::codeCString 6 years ago Ted Campbell [:tcampbell] 47 bytes, text/x-phabricator-request		Details \| Review
Bug 1525505 - XDR ScriptSource before Script 6 years ago Ted Campbell [:tcampbell] 47 bytes, text/x-phabricator-request		Details \| Review
Bug 1525505 - Pass source extents to JSScript constructor in XDRScript 6 years ago Ted Campbell [:tcampbell] 47 bytes, text/x-phabricator-request		Details \| Review

Ted Campbell [:tcampbell]

Assignee

Description

•

6 years ago

In Bug 1451284 we have issues with coverage misbehaving that stem from XDR decoding.

We initialize the coverage data structures before the filename is properly set when something is OwnSource. We should code things in the appropriate order so that we can call JSScript::Create with legal values.

[1] https://searchfox.org/mozilla-central/rev/9eb30227b21e0aa40d51d9f9b08bb0b113c5fadb/js/src/vm/JSScript.cpp#520,566

Ted Campbell [:tcampbell]

Assignee

Comment 1

•

6 years ago

Attached file Bug 1525505 - Fix bug in XDRState::codeCString — Details

Sanity check was reading out-of-range value. This caused more XDR decode
failures than expected, but non-cache load would recover anyways. With
fix, a few more cases will support XDR caching.

Ted Campbell [:tcampbell]

Assignee

Comment 2

•

6 years ago

Attached file Bug 1525505 - XDR ScriptSource before Script — Details

This ensures the script source is properly ininitialized before calling
JSScript::Create. This fixes issues with LCov when the script comes from
an XDR-based cache.

Depends on D18873

Ted Campbell [:tcampbell]

Assignee

Comment 3

•

6 years ago

Attached file Bug 1525505 - Pass source extents to JSScript constructor in XDRScript — Details

There is no existing bug, but passing correct values to constructor is
more predictable for future.

Depends on D18874

Ted Campbell [:tcampbell]

Assignee

Updated

•

6 years ago

Blocks: 1525924

Marco Castelluccio [:marco]

Updated

•

6 years ago

Status: NEW → ASSIGNED

Ted Campbell [:tcampbell]

Assignee

Comment 4

•

6 years ago

(Changing reviewers based on workload/availability)

Pulsebot

Comment 5

•

6 years ago

Pushed by tcampbell@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/41ba287d84da Fix bug in XDRState::codeCString r=jandem,nbp https://hg.mozilla.org/integration/autoland/rev/c4e1215ffff6 XDR ScriptSource before Script r=jandem https://hg.mozilla.org/integration/autoland/rev/d6729b60b236 Pass source extents to JSScript constructor in XDRScript r=jandem

Bogdan Tara[:bogdan_tara | bogdant]

Comment 6

•

6 years ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/41ba287d84da
https://hg.mozilla.org/mozilla-central/rev/c4e1215ffff6
https://hg.mozilla.org/mozilla-central/rev/d6729b60b236

Status: ASSIGNED → RESOLVED

Closed: 6 years ago

status-firefox67: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → mozilla67

Ted Campbell [:tcampbell]

Assignee

Updated

•

6 years ago

Updated

•

6 years ago

Blocks: 1528320

You need to log in before you can comment on or make changes to this bug.

Bugzilla

XDRScript should create JSScript with valid constructor arguments

Categories

(Core :: JavaScript Engine, enhancement, P2)

Tracking

()

People

(Reporter: tcampbell, Assigned: tcampbell)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(3 files)

Description

Comment 1

Comment 2

Comment 3

Updated

Updated

Comment 4

Comment 5

Comment 6

Updated

Updated

Attachment

General

Description

File Name

Content Type