fe06d8a994dddf3adaddae54c885b78d69e97d09 - WebKit

commit	fe06d8a994dddf3adaddae54c885b78d69e97d09	[log] [tgz]
author	mjs <mjs@268f45cc-cd09-0410-ab3c-d52691b4dbfc>	Wed Apr 27 00:18:14 2005 +0000
committer	mjs <mjs@268f45cc-cd09-0410-ab3c-d52691b4dbfc>	Wed Apr 27 00:18:14 2005 +0000
tree	ed48879a11a546f6f75418aabc5c08997b283358
parent	e9d4b142cc2c02ad098c9c51edbf35a23102f039 [diff]

JavaScriptCore:

        Reviewed by Chris.

	<rdar://problem/4092136> reproducible crash in KJS::kjs_fast_realloc loading maps.google.com

	* kjs/string_object.cpp:
        (StringObjectFuncImp::call): Allocate adopted ustring buffer properly.

WebCore:

        New test case for <rdar://problem/4092136> reproducible crash in KJS::kjs_fast_realloc loading maps.google.com

        * layout-tests/fast/js/string-from-char-code-expected.txt: Added.
        * layout-tests/fast/js/string-from-char-code.html: Added.


git-svn-id: http://svn.webkit.org/repository/webkit/trunk@9059 268f45cc-cd09-0410-ab3c-d52691b4dbfc

JavaScriptCore/ChangeLog[diff]
JavaScriptCore/kjs/string_object.cpp[diff]
LayoutTests/fast/js/string-from-char-code-expected.txt[Added - diff]
LayoutTests/fast/js/string-from-char-code.html[Added - diff]
WebCore/ChangeLog-2005-08-23[diff]

5 files changed

tree: ed48879a11a546f6f75418aabc5c08997b283358

JavaScriptCore/
LayoutTests/
WebCore/
WebKit/