Status: New
Owner: ----
New issue 2433 by [email protected]: Array access past length leads to
reading uninitialized data after transition to FAST_DOUBLE_ELEMENTS
http://code.google.com/p/v8/issues/detail?id=2433
The following test case:
arr = [];
arr[0] = 0;
arr[0] = 1.1;
print(arr[1]);
prints "-1.1885946300594787e+148" in d8 (in debug mode), which is
kZapValue. Reading any index up to 16 (the capacity of the underlying
FixedDoubleArray) leads to similar bogus values.
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
