Changeset 179035 in webkit for trunk/Source/JavaScriptCore


Ignore:
Timestamp:
Jan 23, 2015, 3:48:14 PM (10 years ago)
Author:
[email protected]
Message:

LayoutTests/js/script-tests/reentrant-caching.js crashing on 32 bit builds
https://bugs.webkit.org/show_bug.cgi?id=140843

Reviewed by Oliver Hunt.

When we are in vmEntryToJavaScript, we keep the stack pointer at an
alignment sutiable for pointing to a call frame header, which is the
alignment post making a call. We adjust the sp when calling to JS code,
but don't adjust it before calling the out of stack handler.

  • llint/LowLevelInterpreter32_64.asm:

Moved stack point down 8 bytes to get it aligned.

Location:
trunk/Source/JavaScriptCore
Files:
2 edited

Legend:

Unmodified
Added
Removed

  • trunk/Source/JavaScriptCore/ChangeLog

    r179019 r179035  
     12015-01-23  Michael Saboff  <[email protected]>
     2
     3        LayoutTests/js/script-tests/reentrant-caching.js crashing on 32 bit builds
     4        https://bugs.webkit.org/show_bug.cgi?id=140843
     5
     6        Reviewed by Oliver Hunt.
     7
     8        When we are in vmEntryToJavaScript, we keep the stack pointer at an
     9        alignment sutiable for pointing to a call frame header, which is the
     10        alignment post making a call.  We adjust the sp when calling to JS code,
     11        but don't adjust it before calling the out of stack handler.
     12
     13        * llint/LowLevelInterpreter32_64.asm:
     14        Moved stack point down 8 bytes to get it aligned.
     15
    1162015-01-23  Joseph Pecoraro  <[email protected]>
    217

  • trunk/Source/JavaScriptCore/llint/LowLevelInterpreter32_64.asm

    r178856 r179035  
    260260    end
    261261
     262    subp 8, sp # Align stack for cCall2() to make a call.
    262263    cCall2(_llint_throw_stack_overflow_error, vm, protoCallFrame)
    263264
Note: See TracChangeset for help on using the changeset viewer.