New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
big JS object causes Abort call to block oom #6972
Labels
Comments
This JS snippet attempts to Allocate several Gb of memory, Chakracore sees this as dangerous and calls Abort to block it. This behaviour is by design. I have mixed feelings about this design choice - but it was a deliberate choice by the MS chakra team a while back to block certain potential security risks by calling Abort. |
rhuanjl
changed the title
big JS object causes oom
big JS object causes Abort call to block oom
Apr 18, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
commit
c3ead3f
bug
big JS object causes oom
build and run
os: Ubuntu 22.04.2 LTS
mem: 2G
build: ./build.sh --debug --static -j=8
run: ./DebugBuild/Debug/ch poc.js
Run 10 times, 10 crashes
POC
Abort output
crash stack
The text was updated successfully, but these errors were encountered: