[webkit-changes] [WebKit/WebKit] 0ad56d: [JSC][ARM] Fix stack pointer adjustment in JSToWasm

Mikhail R. Gadelha Tue, 26 Aug 2025 07:28:34 -0700

  Branch: refs/heads/main
  Home:   https://github.com/WebKit/WebKit
  Commit: 0ad56d6165bed410234439a1ddb1313a7096126a
      
https://github.com/WebKit/WebKit/commit/0ad56d6165bed410234439a1ddb1313a7096126a
  Author: Mikhail R. Gadelha <[email protected]>
  Date:   2025-08-26 (Tue, 26 Aug 2025)


  Changed paths:
    M Source/JavaScriptCore/wasm/js/JSToWasm.cpp

  Log Message:
  -----------
  [JSC][ARM] Fix stack pointer adjustment in JSToWasm
https://bugs.webkit.org/show_bug.cgi?id=297899

Reviewed by Justin Michaud.

In JSToWasm, we push 8 bytes to the stack before calling
operationJSToWasmEntryWrapperBuildFrame, but when restoring sp,
we would pop 16 bytes, leading to corrupted arguments in the
jitted function.

This PR fixes the issue by poping 8 bytes.

* Source/JavaScriptCore/wasm/js/JSToWasm.cpp:
(JSC::Wasm::createJSToWasmJITShared):

Canonical link: https://commits.webkit.org/299158@main



To unsubscribe from these emails, change your notification settings at 
https://github.com/WebKit/WebKit/settings/notifications
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes

[webkit-changes] [WebKit/WebKit] 0ad56d: [JSC][ARM] Fix stack pointer adjustment in JSToWasm

Reply via email to