Closed Bug 515493 Opened 15 years ago Closed 15 years ago

NJ: Uninitialized variable in ARM backend

Categories

(Core :: JavaScript Engine, defect)

Product:
Core
Component:
JavaScript Engine
Platform:
x86
macOS
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: dvander, Unassigned)

Details

(Whiteboard: fixed-in-tracemonkey)

Attachments

(1 file)

fix
386 bytes, patch
gal
: review+
Details | Diff | Splinter Review
Attached patch fixSplinter Review 
This was causing a nasty crash on Jesse's fuzzer. $sp and $fp were some huge distance apart, tracked it down to the prologue - then saw genPrologue() was emitting some totally wrong values.
Attachment #399606 - Flags: review?(gal)
Attachment #399606 - Flags: review?(gal) → review+
If the original code is on 1.9.2, this has to be fixed too.
tracking-fennec: --- → ?
(In reply to comment #1)
> If the original code is on 1.9.2, this has to be fixed too.

Is it?
This does not affect 1.9.2, apparently.
tracking-fennec: ? → ---
http://hg.mozilla.org/mozilla-central/rev/52ba02869f8f
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
Was this meant to land in 192 (not clear, comment #4 says no)?  http://hg.mozilla.org/releases/mozilla-1.9.2/rev/7fa5ed3e3857
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: