-
fpizlo@apple.com authored
OSR exit compilation should defend against argument recoveries from code blocks that are no longer on the inline stack https://bugs.webkit.org/show_bug.cgi?id=100601 Reviewed by Oliver Hunt. This happened to me while I was fixing bugs for https://bugs.webkit.org/show_bug.cgi?id=100599. I'm not sure how to reproduce this. * dfg/DFGAssemblyHelpers.h: (JSC::DFG::AssemblyHelpers::baselineCodeBlockFor): (AssemblyHelpers): * dfg/DFGOSRExitCompiler32_64.cpp: (JSC::DFG::OSRExitCompiler::compileExit): * dfg/DFGOSRExitCompiler64.cpp: (JSC::DFG::OSRExitCompiler::compileExit): git-svn-id: http://svn.webkit.org/repository/webkit/trunk@132749 268f45cc-cd09-0410-ab3c-d52691b4dbfc
c071eaaf