Please sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
sputnik/Unicode/Unicode_500/S7.2_A1.6_T1.html crashes in the interpreter
https://bugs.webkit.org/show_bug.cgi?id=79728 Reviewed by Gavin Barraclough. When initialising a chained get instruction we may end up in a state where the instruction stream says we have a scopechain, but it has not yet been set (eg. if allocating the StructureChain itself is what leads to the GC). We could re-order the allocation, but it occurs in a couple of places, so it seems less fragile simply to null check the scopechain slot before we actually visit the slot. * bytecode/CodeBlock.cpp: (JSC::CodeBlock::visitStructures): Canonical link: https://commits.webkit.org/96821@main git-svn-id: https://svn.webkit.org/repository/webkit/trunk@109059 268f45cc-cd09-0410-ab3c-d52691b4dbfc
- Loading branch information
Showing with 20 additions and 2 deletions.