Context Navigation

← Previous Change
Next Change →

runtime

Timestamp:

Aug 20, 2009, 9:21:01 PM (16 years ago)

Author:

Message:

REGRESSION: fast/profiler/call.html is crashing occasionally
https://bugs.webkit.org/show_bug.cgi?id=28476

Reviewed by Gavin Barraclough.

Using the codeblock for information about how many parameters and
locals a function has is unsafe in certain circumstances. The
basic scenario is all function code being cleared in response to
the debugger or profiler being enabled, and then an activation is
marked before its associated function is re-executed.

To deal with this scenario we store the variable count of a function
directly in the FunctionExecutable, and then use that information.

Location:

trunk/JavaScriptCore/runtime

Files:

: 4 edited

Arguments.h (modified) (1 diff)
Executable.cpp (modified) (1 diff)
Executable.h (modified) (3 diffs)
JSActivation.cpp (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/JavaScriptCore/runtime/Arguments.h

-              r47412
+              r47620
+    {
         function = callFrame->callee();
+        CodeBlock* codeBlock = &function->executable()->generatedBytecode();
+        int numParameters = codeBlock->m_numParameters;
+        int numParameters = function->executable()->parameterCount();
         argc = callFrame->argumentCount();
         if (argc <= numParameters)
             argv = callFrame->registers() - RegisterFile::CallFrameHeaderSize - numParameters + 1; // + 1 to skip "this"
+            argv = callFrame->registers() - RegisterFile::CallFrameHeaderSize - numParameters;
         else
             argv = callFrame->registers() - RegisterFile::CallFrameHeaderSize - numParameters - argc + 1; // + 1 to skip "this"
+            argv = callFrame->registers() - RegisterFile::CallFrameHeaderSize - numParameters - argc;
         argc -= 1; // - 1 to skip "this"
         firstParameterIndex = -RegisterFile::CallFrameHeaderSize - numParameters + 1; // + 1 to skip "this"
+        firstParameterIndex = -RegisterFile::CallFrameHeaderSize - numParameters;
+    }

trunk/JavaScriptCore/runtime/Executable.cpp

r47597	r47620
88	88	m_numParameters = m_codeBlock->m_numParameters;
89	89	ASSERT(m_numParameters);
	90	m_numVariables = m_codeBlock->m_numVars;
90	91
91	92	body()->destroyData();

trunk/JavaScriptCore/runtime/Executable.h

-              r47597
+              r47620
             , m_codeBlock(0)
             , m_name(name)
+            , m_numVariables(0)
+        {
             m_node = body;
 …
         bool usesArguments() const { return body()->usesArguments(); }
         size_t parameterCount() const { return body()->parameterCount(); }
+        size_t variableCount() const { return m_numVariables; }
         UString paramString() const { return body()->paramString(); }
 …
         CodeBlock* m_codeBlock;
         const Identifier& m_name;
+        size_t m_numVariables;
 #if ENABLE(JIT)

trunk/JavaScriptCore/runtime/JSActivation.cpp

-              r47412
+              r47620
         return;
     size_t numParametersMinusThis = d()->functionExecutable->generatedBytecode().m_numParameters - 1;
+    size_t numParametersMinusThis = d()->functionExecutable->parameterCount();
     size_t count = numParametersMinusThis;
     markStack.appendValues(registerArray, count);
     size_t numVars = d()->functionExecutable->generatedBytecode().m_numVars;
+    size_t numVars = d()->functionExecutable->variableCount();
     // Skip the call frame, which sits between the parameters and vars.

Note: See TracChangeset for help on using the changeset viewer.