Context Navigation

← Previous Change
Next Change →

CopiedBlock.h

Timestamp:

Feb 20, 2014, 2:55:11 PM (11 years ago)

Author:

Message:

CopiedBlock::pin can call into fastFree while forbidden
https://bugs.webkit.org/show_bug.cgi?id=128654

Reviewed by Oliver Hunt.

A FullCollection that skips copying doesn't clear the CopyWorkList of the all the surviving
CopiedBlocks because we currently only call didSurviveGC() at the beginning of FullCollections.

EdenCollections always do copying, therefore they always clear all CopyWorkLists.

The fix is to call didSurviveGC() for all surviving CopiedBlocks at the end of FullCollections
as well at the beginning.

heap/CopiedBlock.h:

(JSC::CopiedBlock::didSurviveGC):

heap/CopiedSpace.cpp:

(JSC::CopiedSpace::doneCopying):

File:

: 1 edited

trunk/Source/JavaScriptCore/heap/CopiedBlock.h (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/JavaScriptCore/heap/CopiedBlock.h

r162017	r164448
148	148	{
149	149	checkConsistency();
	150	ASSERT(isOld());
150	151	m_liveBytes = 0;
151	152	#ifndef NDEBUG

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 164448 in webkit for trunk/Source/JavaScriptCore/heap/CopiedBlock.h

Legend:

trunk/Source/JavaScriptCore/heap/CopiedBlock.h

Download in other formats: