Note that the article talks about type checks for the JavaScript code that is be... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

lower on Jan 9, 2018 | parent | context | favorite | on: What Spectre and Meltdown Mean for WebKit

Note that the article talks about type checks for the JavaScript code that is being executed by WebKit, not type checks in the implementation of WebKit itself. So there are two different kinds of type checks involved here.

pizlonator on Jan 9, 2018 [–]

We are using pointer poisoning to protect type checks in WebKit itself as well as type checks in the JavaScript code we execute.

We are using index masking in WTF::Vector and WTF::StringImpl, which are used both for JavaScript execution and for lots of other things in WebKit that want a vector or a string.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact