Changeset 62766 in webkit for trunk/JavaScriptCore/interpreter


Ignore:
Timestamp:
Jul 8, 2010, 12:50:54 AM (15 years ago)
Author:
[email protected]
Message:

2010-07-08 Andreas Kling <[email protected]>

Reviewed by Oliver Hunt.

Interpreter: Crash in op_load_varargs on 64-bit
https://bugs.webkit.org/show_bug.cgi?id=41795

Added missing cast of argCount to int32_t in op_load_varargs.

  • interpreter/Interpreter.cpp: (JSC::Interpreter::privateExecute):
File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/JavaScriptCore/interpreter/Interpreter.cpp

    r62612 r62766  
    37773777            // Then we copy any additional arguments that may be further up the stack ('-1' to account for 'this')
    37783778            for (; i < static_cast<int32_t>(argCount); i++)
    3779                 argStore[i] = callFrame->registers()[i - RegisterFile::CallFrameHeaderSize - expectedParams - argCount - 1];
     3779                argStore[i] = callFrame->registers()[i - RegisterFile::CallFrameHeaderSize - expectedParams - static_cast<int32_t>(argCount) - 1];
    37803780        } else if (!arguments.isUndefinedOrNull()) {
    37813781            if (!arguments.isObject()) {
Note: See TracChangeset for help on using the changeset viewer.