Fix natives fuzzing: Let the StringIndexOf runtime function

deal with start indexes that are out of range. Review URL: http://codereview.chromium.org/8762 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@663 ce2b1a6d-e550-0410-aec6-3dcde31c8c00

Fix natives fuzzing: Let the StringIndexOf runtime function
deal with start indexes that are out of range. Review URL: http://codereview.chromium.org/8762 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@663 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
744aedd2 · kasperl@chromium.org · 7cf09d88 · 744aedd2 · 744aedd2
Commit 744aedd2 authored Oct 31, 2008 by kasperl@chromium.org
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

runtime.cc src/runtime.cc +1 -0

fuzz-natives.js test/mjsunit/fuzz-natives.js +5 -0

No files found.
--- a/src/runtime.cc
+++ b/src/runtime.cc
@@ -1401,6 +1401,7 @@ static Object* Runtime_StringIndexOf(Arguments args) {
  uint32_t start_index;
  if (!Array::IndexFromObject(index, &start_index)) return Smi::FromInt(-1);

+  RUNTIME_ASSERT(start_index <= static_cast<uint32_t>(sub->length()));
  int position = Runtime::StringMatch(sub, pat, start_index);
  return Smi::FromInt(position);
 }

--- a/test/mjsunit/fuzz-natives.js
+++ b/test/mjsunit/fuzz-natives.js
@@ -106,6 +106,11 @@ var knownProblems = {
  "SetScriptBreakPoint": true,
  "ChangeBreakOnException": true,
  "PrepareStep": true,
+
+  // Calling disable/enable access checks may interfere with the
+  // the rest of the tests.
+  "DisableAccessChecks": true,
+  "EnableAccessChecks": true,
  
  // These functions should not be callable as runtime functions.
  "NewContext": true,