Ignore:
Timestamp:
Aug 1, 2013, 2:57:38 PM (12 years ago)
Author:
[email protected]
Message:

REGRESSION: Crash beneath cti_vm_throw_slowpath due to invalid CallFrame pointer
https://bugs.webkit.org/show_bug.cgi?id=119140

Reviewed by Filip Pizlo.

Ensure that ExceptionHandler is returned by functions in two registers by encoding the value as a 64 bit int.

  • jit/JITExceptions.cpp:

(JSC::encode):

  • jit/JITExceptions.h:
  • jit/JITStubs.cpp:

(JSC::cti_vm_throw_slowpath):

  • jit/JITStubs.h:
File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/Source/JavaScriptCore/jit/JITExceptions.cpp

    r153273 r153612  
    5252}
    5353
     54EncodedExceptionHandler encode(ExceptionHandler handler)
     55{
     56    ExceptionHandlerUnion u;
     57    u.handler = handler;
     58    return u.encodedHandler;
     59}
     60
    5461ExceptionHandler genericThrow(VM* vm, ExecState* callFrame, JSValue exceptionValue, unsigned vPCIndex)
    5562{
Note: See TracChangeset for help on using the changeset viewer.