Potential crash in YARR JIT generated code when building 64 bit
authormsaboff@apple.com <msaboff@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Tue, 26 Feb 2013 19:37:53 +0000 (19:37 +0000)
committermsaboff@apple.com <msaboff@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Tue, 26 Feb 2013 19:37:53 +0000 (19:37 +0000)
commit32acc64346693a613d47a0dff2f5f0026c5d8762
tree9de291fa31371c9bd26c95097758b8a159f3d8e3
parent0afa681db9734a342748f0a07f754dca8501e083
Potential crash in YARR JIT generated code when building 64 bit
https://bugs.webkit.org/show_bug.cgi?id=110893

Reviewed by Gavin Barraclough.

The ABI doesn't define the behavior for the upper bits of a value that takes less than 64 bits.
Therefore, we zero extend both the count and length registers to assure that these unsigned values
don't have garbage upper bits.

* yarr/YarrJIT.cpp:
(JSC::Yarr::YarrGenerator::generateEnter):

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@144083 268f45cc-cd09-0410-ab3c-d52691b4dbfc
Source/JavaScriptCore/ChangeLog
Source/JavaScriptCore/yarr/YarrJIT.cpp