Status: Assigned
Owner: [email protected]
Labels: Type-Bug Priority-Medium Harmony
New issue 4400 by [email protected]: Default parameters segfault when
lazily parsed
https://code.google.com/p/v8/issues/detail?id=4400
If an object literal or array literal are used as an initializer/default
parameter in a lazily parsed function, the literal index is lost and
results in dereferencing bad memory.
EG:
```
// --harmony-default-parameters --min-preparse-length
function borked(a = [], b = {}, c) {}
borked(); // crash!
```
(Actual test case has a bunch of lines of comments just to make sure it
does the thing, but yeah it's pretty consistent).
This is fixed by a slight modification to some code in
https://crrev.com/1272673003 as noted in a comment, I'll submit a CL for
this
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings
--
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
---
You received this message because you are subscribed to the Google Groups "v8-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
