Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[JSC] Harden CustomGetterSetter by adding MethodTable overrides that …
…always crash https://bugs.webkit.org/show_bug.cgi?id=268897 <rdar://122171568> Reviewed by Mark Lam. Just like GetterSetter, CustomGetterSetter is never purposely exposed to userland code. However, to make exploitation of accidentally exposed CustomGetterSetter objects difficult, this patch implements MethodTable overrides that abort the program when reached, similar to GetterSetter. * Source/JavaScriptCore/runtime/CustomGetterSetter.h: (JSC::CustomGetterSetter::getOwnPropertySlot): (JSC::CustomGetterSetter::put): (JSC::CustomGetterSetter::putByIndex): (JSC::CustomGetterSetter::setPrototype): (JSC::CustomGetterSetter::defineOwnProperty): (JSC::CustomGetterSetter::deleteProperty): Canonical link: https://commits.webkit.org/272448.523@safari-7618-branch
- Loading branch information