Changeset 96564 in webkit


Ignore:
Timestamp:
Oct 3, 2011 6:37:19 PM (13 years ago)
Author:
fpizlo@apple.com
Message:

JSC ASSERT Opening the Web Inspector
https://bugs.webkit.org/show_bug.cgi?id=69293

Reviewed by Oliver Hunt.

If a polymorphic access structure list has a duplicated structure, then
don't crash.

  • dfg/DFGByteCodeParser.cpp:

(JSC::DFG::ByteCodeParser::parseBlock):

Location:
trunk/Source/JavaScriptCore
Files:
2 edited

Legend:

Unmodified
Added
Removed

  • trunk/Source/JavaScriptCore/ChangeLog

    r96563 r96564  
     12011-10-03  Filip Pizlo  <fpizlo@apple.com>
     2
     3        JSC ASSERT Opening the Web Inspector
     4        https://bugs.webkit.org/show_bug.cgi?id=69293
     5
     6        Reviewed by Oliver Hunt.
     7       
     8        If a polymorphic access structure list has a duplicated structure, then
     9        don't crash.
     10
     11        * dfg/DFGByteCodeParser.cpp:
     12        (JSC::DFG::ByteCodeParser::parseBlock):
     13
    1142011-10-03  Gavin Barraclough  <barraclough@apple.com>
    215

  • trunk/Source/JavaScriptCore/dfg/DFGByteCodeParser.cpp

    r96527 r96564  
    11921192                       
    11931193                        Structure* structure = list->list[i].base.get();
     1194                        if (structureSet.contains(structure))
     1195                            continue;
     1196                       
    11941197                        size_t myOffset = structure->get(*m_globalData, identifier);
    11951198                   
Note: See TracChangeset for help on using the changeset viewer.