Closed
Bug 1901413
Opened 29 days ago
Closed 26 days ago
Hit MOZ_CRASH(invalid UTF-8 string: ReportInvalidCharacter) at /root/src/js/src/vm/CharacterEncoding.cpp:322
Categories
(Core :: JavaScript Engine, defect, P1)
Core
JavaScript Engine
Tracking
()
RESOLVED
FIXED
129 Branch
Tracking | Status | |
---|---|---|
firefox-esr115 | --- | unaffected |
firefox127 | --- | wontfix |
firefox128 | --- | fixed |
firefox129 | --- | fixed |
People
(Reporter: nils.bars, Assigned: arai)
References
(Blocks 2 open bugs, Regression)
Details
(Keywords: regression)
Attachments
(3 files)
Steps to reproduce:
Checkout commit 15778b8c32f8535624fff2af36fc669e65a9af3 and invoke the js shell as follows:
/root/js-spidermonkey-shell --fuzzing-safe <testcase>
Actual results:
Hit MOZ_CRASH(invalid UTF-8 string: ReportInvalidCharacter) at /root/src/js/src/vm/CharacterEncoding.cpp:322
Component: Untriaged → JavaScript Engine
Product: Firefox → Core
Version: Firefox 125 → Trunk
The first bad revision is:
changeset: https://hg.mozilla.org/mozilla-central/rev/11e79bc5149a
user: Tooru Fujisawa
date: Tue Jun 06 04:29:07 2023 +0000
summary: Bug 1831845 - Part 1: Use JS::ConstUTF8CharsZ in JS::TransitiveCompileOptions::{filename_,introducerFilename_}. r=nbp
Arai-san, is bug 1831845 a likely regressor?
Status: UNCONFIRMED → NEW
Ever confirmed: true
Flags: needinfo?(arai.unmht)
Keywords: regression
Regressed by: 1831845
Assignee | ||
Comment 2•28 days ago
|
||
Yes, I overlooked the consumer with latin-1 in debugger.
Assignee: nobody → arai.unmht
Status: NEW → ASSIGNED
Flags: needinfo?(arai.unmht)
Assignee | ||
Comment 3•28 days ago
|
||
Pushed by arai_a@mac.com: https://hg.mozilla.org/integration/autoland/rev/0c90c17a9f8a Use UTF-8 for Debugger.Object.createSource url parameter. r=iain
Comment 5•27 days ago
|
||
Set release status flags based on info from the regressing bug 1831845
status-firefox127:
--- → affected
status-firefox128:
--- → affected
status-firefox129:
--- → affected
status-firefox-esr115:
--- → unaffected
Updated•27 days ago
|
Comment 6•26 days ago
|
||
bugherder |
Status: ASSIGNED → RESOLVED
Closed: 26 days ago
Resolution: --- → FIXED
Target Milestone: --- → 129 Branch
Comment 7•26 days ago
|
||
The patch landed in nightly and beta is affected.
:arai, is this bug important enough to require an uplift?
- If yes, please nominate the patch for beta approval.
- If no, please set
status-firefox128
towontfix
.
For more information, please visit BugBot documentation.
Flags: needinfo?(arai.unmht)
Assignee | ||
Comment 8•26 days ago
|
||
Original Revision: https://phabricator.services.mozilla.com/D213057
Updated•26 days ago
|
Attachment #9407069 -
Flags: approval-mozilla-beta?
Comment 9•26 days ago
|
||
beta Uplift Approval Request
- User impact if declined: Possible crash when non-ASCII/non-UTF-8 filename flows into debugger
- Code covered by automated testing: yes
- Fix verified in Nightly: yes
- Needs manual QE test: no
- Steps to reproduce for manual QE testing: None
- Risk associated with taking this patch: Low
- Explanation of risk level: This changes the behavior only when the filename is non-ASCII, which doesn't happen in general for web, given URLs are all URL-encoded ASCII
- String changes made/needed: None
- Is Android affected?: yes
Assignee | ||
Updated•26 days ago
|
Flags: needinfo?(arai.unmht)
Updated•25 days ago
|
Attachment #9407069 -
Flags: approval-mozilla-beta? → approval-mozilla-beta+
Updated•25 days ago
|
Comment 10•25 days ago
|
||
uplift |
https://hg.mozilla.org/releases/mozilla-beta/rev/aa3043f6c8da
Updated•25 days ago
|
You need to log in
before you can comment on or make changes to this bug.
Description
•