Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 4300f716829054e43e61528f023cb0b7856667a4
https://github.com/WebKit/WebKit/commit/4300f716829054e43e61528f023cb0b7856667a4
Author: Dan Hecht <[email protected]>
Date: 2026-03-02 (Mon, 02 Mar 2026)
Changed paths:
M Source/WebKit/WebProcess/WebPage/IPCTestingAPI.cpp
Log Message:
-----------
IPCTestingAPI: make JSIPC::serializeEnumInfo GC safe
https://bugs.webkit.org/show_bug.cgi?id=308994
rdar://171529170
Reviewed by Yusuke Suzuki.
304461@main introduced an unsafe use of WTF::map. The returned
vector contains GC object references that are unrooted.
Fix this by updating the JS array directly so that all GC objects
are reachable while constructing the objects and populating the array.
Testing: found by debug build layout tests with --collectContinuously=1
--useZombieMode=1 ENABLE_GC_VALIDATION=1
* Source/WebKit/WebProcess/WebPage/IPCTestingAPI.cpp:
(WebKit::IPCTestingAPI::JSIPC::serializedEnumInfo):
Canonical link: https://commits.webkit.org/308492@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
