jsc shell's flashHeapAccess() should not do JS work after releasing access to the...
authormark.lam@apple.com <mark.lam@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 30 Nov 2017 22:51:59 +0000 (22:51 +0000)
committermark.lam@apple.com <mark.lam@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 30 Nov 2017 22:51:59 +0000 (22:51 +0000)
commit9fcbe156653fce5436b961933b6faf0bc63afccf
tree633d5fc994f4944702e1e382c7356e821a439580
parent45452a677ecc73a4d7625e4b6254784b34ff1104
jsc shell's flashHeapAccess() should not do JS work after releasing access to the heap.
https://bugs.webkit.org/show_bug.cgi?id=180219
<rdar://problem/35696536>

Reviewed by Filip Pizlo.

JSTests:

* stress/regress-180219.js: Added.

Source/JavaScriptCore:

* jsc.cpp:
(functionFlashHeapAccess):

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@225352 268f45cc-cd09-0410-ab3c-d52691b4dbfc
JSTests/ChangeLog
JSTests/stress/regress-180219.js [new file with mode: 0644]
Source/JavaScriptCore/ChangeLog
Source/JavaScriptCore/jsc.cpp