https://codereview.chromium.org/646483003/diff/60001/src/factory.cc
File src/factory.cc (right):
https://codereview.chromium.org/646483003/diff/60001/src/factory.cc#newcode1785
src/factory.cc:1785: Handle<Object> byte_length_handle =
DBC: why we have this Factory::NewJSTypedArray?
Where is it used?
Can we add a proper byte_offset argument to it?
Can we add proper validation of all arguments and sizes? (byte length
fits into ArrayBuffer etc?) Historically, this is a place where security
bugs brew.
https://codereview.chromium.org/646483003/
--
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
---
You received this message because you are subscribed to the Google Groups "v8-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
