Context Navigation

DFGCCallHelpers.h

Timestamp:

Jun 6, 2012, 5:23:36 PM (13 years ago)

Author:

Message:

DFG arguments access slow path should not crash if the arguments haven't been created
https://bugs.webkit.org/show_bug.cgi?id=88471

Reviewed by Gavin Barraclough.

Source/JavaScriptCore:

(JSC::DFG::CCallHelpers::setupArgumentsWithExecState):
(CCallHelpers):

(JSC::DFG::SpeculativeJIT::callOperation):

(JSC::DFG::SpeculativeJIT::compile):

(JSC::DFG::SpeculativeJIT::compile):

LayoutTests:

(foo.bar):
(foo):

(foo):
(bar):

File:

-              r118240
+              r119647
+    }
+    ALWAYS_INLINE void setupArgumentsWithExecState(TrustedImm32 arg1, TrustedImmPtr arg2, GPRReg arg3)
+    {
+        resetCallArguments();
+        addCallArgument(GPRInfo::callFrameRegister);
+        addCallArgument(arg1);
+        addCallArgument(arg2);
+        addCallArgument(arg3);
+    }
     ALWAYS_INLINE void setupArgumentsWithExecState(GPRReg arg1, GPRReg arg2, GPRReg arg3, TrustedImmPtr arg4)
+    {
 …
+    }
+    ALWAYS_INLINE void setupArgumentsWithExecState(TrustedImm32 arg1, TrustedImmPtr arg2, GPRReg arg3)
+    {
+        move(arg3, GPRInfo::argumentGPR3);
+        move(arg1, GPRInfo::argumentGPR1);
+        move(arg2, GPRInfo::argumentGPR2);
+        move(GPRInfo::callFrameRegister, GPRInfo::argumentGPR0);
+    }
     ALWAYS_INLINE void setupArgumentsWithExecState(TrustedImm32 arg1, GPRReg arg2, TrustedImm32 arg3)
+    {

Note: See TracChangeset for help on using the changeset viewer.