Changeset 31205 in webkit for trunk/JavaScriptCore

Timestamp:

Mar 20, 2008, 10:00:16 PM (17 years ago)

Author:

[email protected]

Message:

Fix for leak introduced by inline ScopeChainNode use

Reviewed by Maciej

To avoid any extra branches when managing an inline ScopeChainNode
in the ScopeChain the inline node gets inserted with a refcount of

2. This meant than when the ScopeChain was destroyed the ScopeChainNodes

above the inline node would be leaked.

We resolve this by manually popping the inline node in the
FunctionExecState destructor.

Location:

trunk/JavaScriptCore

Files:

• ChangeLog (modified) (1 diff)
• JavaScriptCore.xcodeproj/project.pbxproj (modified) (2 diffs)
• kjs/ExecStateInlines.h (modified) (1 diff)
• kjs/scope_chain.h (modified) (2 diffs)

trunk/JavaScriptCore/ChangeLog

@@ +1 @@
+2008-03-20  Oliver Hunt  <[email protected]>
+
+        Reviewed by Maciej.
+
+        Fix for leak introduced by inline ScopeChainNode use
+
+        To avoid any extra branches when managing an inline ScopeChainNode
+        in the ScopeChain the inline node gets inserted with a refcount of
+        2.  This meant than when the ScopeChain was destroyed the ScopeChainNodes
+        above the inline node would be leaked.
+
+        We resolve this by manually popping the inline node in the
+        FunctionExecState destructor.
+
+        * JavaScriptCore.xcodeproj/project.pbxproj:
+        * kjs/ExecStateInlines.h:
+        (KJS::FunctionExecState::~FunctionExecState):
+        * kjs/scope_chain.h:
+        (KJS::ScopeChain::popInlineScopeNode):
+
 2008-03-20  Mark Rowe  <[email protected]>
 

trunk/JavaScriptCore/JavaScriptCore.xcodeproj/project.pbxproj

@@ -483 +483 @@
                 93F1981A08245AAE001E9ABC /* keywords.table */ = {isa = PBXFileReference; fileEncoding = 4; indentWidth = 4; lastKnownFileType = text; path = keywords.table; sourceTree = "<group>"; tabWidth = 8; };
                 95C18D3E0C90E7EF00E72F73 /* JSRetainPtr.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = JSRetainPtr.h; sourceTree = "<group>"; };
+                A785E3030D9341AB00953772 /* ExecStateInlines.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = ExecStateInlines.h; sourceTree = "<group>"; };
                 A8E894310CD0602400367179 /* JSCallbackObjectFunctions.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = JSCallbackObjectFunctions.h; sourceTree = "<group>"; };
                 A8E894330CD0603F00367179 /* JSGlobalObject.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = JSGlobalObject.h; sourceTree = "<group>"; };
@@ -827 +828 @@
                                 14BD53F40A3E12D800BAF59C /* ExecState.cpp */,
                                 14BD53F30A3E12D800BAF59C /* ExecState.h */,
+                                A785E3030D9341AB00953772 /* ExecStateInlines.h */,
                                 F692A85E0255597D01FF60F7 /* function.cpp */,
                                 F692A85F0255597D01FF60F7 /* function.h */,

trunk/JavaScriptCore/kjs/ExecStateInlines.h

@@ -84 +84 @@
         if (m_activation->needsPop())
             m_globalObject->popActivation();
+        
+        if (m_inlineScopeChainNode.next) {
+            m_scopeChain.popInlineScopeNode();
+            m_inlineScopeChainNode.next = 0;
+        }
     }
 

trunk/JavaScriptCore/kjs/scope_chain.h

@@ -94 +94 @@
         void replaceTop(JSObject*);
         void pop();
-        
+        void popInlineScopeNode();
+
         void mark();
 
@@ -172 +173 @@
 }
 
+inline void ScopeChain::popInlineScopeNode()
+{
+    _node = _node->next;
+}
+
 } // namespace KJS