d0fe942d23
This fixes a bug found by the fuzzer where we would attempt to dereference a null handle if memory allocation failed. In this case, the failure was because the amount of memory requested was above V8's hardcoded limit. BUG= https://bugs.chromium.org/p/chromium/issues/detail?id=666741 Review-Url: https://codereview.chromium.org/2514983002 Cr-Commit-Position: refs/heads/master@{#41158}
10 lines
345 B
JavaScript
10 lines
345 B
JavaScript
// Copyright 2016 the V8 project authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style license that can be
|
|
// found in the LICENSE file.
|
|
//
|
|
// Flags: --random-seed=-1101427159 --enable-slow-asserts --expose-wasm
|
|
|
|
(function __f_7() {
|
|
assertThrows(() => new WebAssembly.Memory({initial: 59199}), RangeError);
|
|
})();
|