Closed
Bug 633043
Opened 14 years ago
Closed 14 years ago
"Assertion failure: !vp->isPrimitive() && callee != &vp[0].toObject()" with InstallTrigger
Categories
(Core :: XPConnect, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: jruderman, Assigned: gal)
Details
(Keywords: assertion, testcase, Whiteboard: fixed-in-tracemonkey)
Attachments
(3 files)
Assertion failure: !vp->isPrimitive() && callee != &vp[0].toObject(), at js/src/jscntxtinlines.h:732
This is the same assertion as in bug 621420, but the testcases are very different, and I think this bug a regression from the last few days.
Reporter | ||
Comment 1•14 years ago
|
||
Reporter | ||
Comment 2•14 years ago
|
||
Filed as security-sensitive because this seems to involve a chrome-content boundary. Please let me know if it's actually a security bug.
Assignee | ||
Comment 5•14 years ago
|
||
Assignee | ||
Updated•14 years ago
|
Attachment #511265 -
Flags: review?(lw)
![]() |
||
Updated•14 years ago
|
Attachment #511265 -
Flags: review?(lw) → review+
Assignee | ||
Comment 6•14 years ago
|
||
Whiteboard: fixed-in-tracemonkey
Comment 7•14 years ago
|
||
cdleary-bot mozilla-central merge info:
http://hg.mozilla.org/mozilla-central/rev/9ecbccbaff7b
Updated•14 years ago
|
Status: NEW → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•