Fix one more missing c0_ < 0 check in scanner

author Jakob Kummerow <jkummerow@chromium.org>

Mon, 17 Nov 2014 09:43:17 +0000 (10:43 +0100)

committer Jakob Kummerow <jkummerow@chromium.org>

Mon, 17 Nov 2014 09:43:31 +0000 (09:43 +0000)
author Jakob Kummerow <jkummerow@chromium.org>
Mon, 17 Nov 2014 09:43:17 +0000 (10:43 +0100)
committer Jakob Kummerow <jkummerow@chromium.org>
Mon, 17 Nov 2014 09:43:31 +0000 (09:43 +0000)
diff --git a/src/scanner.cc b/src/scanner.cc

index bf7c9e3..3214c6f 100644 (file)
--- a/src/scanner.cc
+++ b/src/scanner.cc
@@ -312,8 +312,7 @@ Token::Value Scanner::SkipSourceURLComment() {
  void Scanner::TryToParseSourceURLComment() {
    // Magic comments are of the form: //[#@]\s<name>=\s*<value>\s*.* and this
    // function will just return if it cannot parse a magic comment.
-  if (!unicode_cache_->IsWhiteSpace(c0_))
-    return;
+  if (c0_ < 0 || !unicode_cache_->IsWhiteSpace(c0_)) return;
    Advance();
    LiteralBuffer name;
    while (c0_ >= 0 && !unicode_cache_->IsWhiteSpaceOrLineTerminator(c0_) &&
diff --git a/test/mjsunit/regress/regress-crbug-433766.js b/test/mjsunit/regress/regress-crbug-433766.js

new file mode 100644 (file)

index 0000000..fae9483
--- /dev/null
+++ b/test/mjsunit/regress/regress-crbug-433766.js
@@ -0,0 +1,16 @@
+// Copyright 2014 the V8 project authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+var filler = "//" + new Array(('@')).join('x');
+
+// Test strict eval in global context.
+eval(
+  "'use strict';" +
+  "var x = 23;" +
+  "var f = function bozo1() {" +
+  "  return x;" +
+  "};" +
+  "f;" +
+  filler
+)();
author	Jakob Kummerow <jkummerow@chromium.org>
	Mon, 17 Nov 2014 09:43:17 +0000 (10:43 +0100)
committer	Jakob Kummerow <jkummerow@chromium.org>
	Mon, 17 Nov 2014 09:43:31 +0000 (09:43 +0000)
src/scanner.cc		patch \| blob \| history
test/mjsunit/regress/regress-crbug-433766.js	[new file with mode: 0644]	patch \| blob