Bug 124420

Summary:

REGRESSION (r158586): callToJavaScript needs to save return PC to Sentinel frame

Product:

WebKit

Reporter:

Michael Saboff <msaboff>

Component:

JavaScriptCore

Assignee:

Michael Saboff <msaboff>

Status:

RESOLVED FIXED

Severity:

Normal

Priority:

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Bug Depends on:

Bug Blocks:

116888

Attachments:

Description	Flags
Patch	fpizlo: review+

Michael Saboff

Reported 2013-11-15 10:08:28 PST

The sentinel frame added in r158586 sets the return PC in the sentinel frame to 0. The sentinel frame is effectively the call frame for callToJavaScript and therefore should have the return PC set to its caller.

Attachments
Patch (4.95 KB, patch) 2013-11-15 10:42 PST, Michael Saboff	fpizlo: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Michael Saboff

Comment 1 2013-11-15 10:42:11 PST

Created attachment 217063 [details] Patch

Michael Saboff

Comment 2 2013-11-15 11:04:52 PST

Committed r159346: <http://trac.webkit.org/changeset/159346>

Note You need to log in before you can comment on or make changes to this bug.