-
Jakob Gruber authored
The array length is modifiable by user code that is called as a side-effect during the sorting algorithm. We thus cannot base any guarantees on the current length, but must reference the initially-read array length instead. Note that even though the algorithm may read and write from beyond the current array length value, this adheres to the spec, which only requires accesses to be within the original array dimensions (i.e.: 0 <= i < original array length). Bug: chromium:901633 Change-Id: Id765e80d4231ff6f2a73e040ec94c2b07f8c5b0f Reviewed-on: https://chromium-review.googlesource.com/c/1317814 Commit-Queue: Jakob Gruber <jgruber@chromium.org> Reviewed-by:
Daniel Clifford <danno@chromium.org> Cr-Commit-Position: refs/heads/master@{#57279}
1444bebe
| Name |
Last commit
|
Last update |
|---|---|---|
| .. | ||
| binutils | ||
| colorama | ||
| eu-strip | ||
| googletest | ||
| inspector_protocol | ||
| v8/builtins |