Changeset 34177 in webkit for trunk/JavaScriptCore/kjs/nodes.cpp


Ignore:
Timestamp:
May 28, 2008, 11:13:37 AM (17 years ago)
Author:
[email protected]
Message:

JavaScriptCore:

2008-05-28 Anders Carlsson <[email protected]>

Reviewed by Oliver.

<rdar://problem/5968071> "const f" crashes in JavaScriptCore


Make sure to null check the initializer.


  • kjs/nodes.cpp: (KJS::ConstDeclNode::emitCodeSingle):

LayoutTests:

2008-05-28 Anders Carlsson <[email protected]>

Reviewed by Oliver.

<rdar://problem/5968071> "const f" crashes in JavaScriptCore

  • fast/js/const-without-initializer-expected.txt: Added.
  • fast/js/const-without-initializer.html: Added.
  • fast/js/resources/const-without-initializer.js: Added.
File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/JavaScriptCore/kjs/nodes.cpp

    r34030 r34177  
    46914691RegisterID* ConstDeclNode::emitCodeSingle(CodeGenerator& generator)
    46924692{
    4693     if (RegisterID* local = generator.registerForLocalConstInit(m_ident))
     4693    if (RegisterID* local = generator.registerForLocalConstInit(m_ident)) {
     4694        if (!m_init)
     4695            return local;
     4696
    46944697        return generator.emitNode(local, m_init.get());
    4695 
     4698    }
     4699   
    46964700    // FIXME: While this code should only be hit in eval code, it will potentially
    46974701    // assign to the wrong base if m_ident exists in an intervening dynamic scope.
Note: See TracChangeset for help on using the changeset viewer.