Status: Accepted
Owner: [email protected]
Labels: Type-Bug Priority-Medium
New issue 747 by [email protected]: Code flushing during gc will flush
code that has heap allocated locals
http://code.google.com/p/v8/issues/detail?id=747
When doing code flushing there is no check for heap allocated locals.
This means that if a function uses eval we can potentially flush the code
object containing the scopeinfo used to lookup local variables.
What will reproduce this problem (using the expose_gc flag and enabling
code flushing):
(function() {
var x = 42;
this.callEval = function() {eval('x');};
})();
callEval();
gc();
gc();
gc();
gc();
gc();
gc();
callEval();
Expected output:
Nothing.
Acutal output:
An error stating that x is not defined during the second call to callEval.
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
