Changeset 171953 in webkit
- Timestamp:
- Aug 1, 2014 3:49:51 PM (10 years ago)
- Location:
- trunk/Source/JavaScriptCore
- Files:
-
- 3 edited
-
ChangeLog (modified) (1 diff)
-
heap/MarkedBlock.cpp (modified) (1 diff)
-
runtime/StructureIDTable.h (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/JavaScriptCore/ChangeLog
r171949 r171953 1 2014-08-01 Mark Lam <mark.lam@apple.com> 2 3 Add some structure related assertions. 4 <https://webkit.org/b/135523> 5 6 Reviewed by Geoffrey Garen. 7 8 Adding 2 assertions: 9 1. assert that we don't index pass the end of the StructureIDTable. 10 This should never happen, but this assertion will help catch bugs 11 where a bad structureID gets passed in. 12 2. assert that cells in MarkedBlock::callDestructor() that are not 13 zapped should have a non-null StructureID. This will help us catch 14 bugs where the other cell header flag bits get set after the cell is 15 zapped, thereby making the cell look like an unzapped cell but has a 16 null structureID. 17 18 * heap/MarkedBlock.cpp: 19 (JSC::MarkedBlock::callDestructor): 20 * runtime/StructureIDTable.h: 21 (JSC::StructureIDTable::get): 22 1 23 2014-08-01 Csaba Osztrogonác <ossy@webkit.org> 2 24 -
trunk/Source/JavaScriptCore/heap/MarkedBlock.cpp
r171362 r171953 62 62 return; 63 63 64 ASSERT(cell->structureID()); 64 65 if (dtorType == MarkedBlock::Normal) 65 66 jsCast<JSDestructibleObject*>(cell)->classInfo()->methodTable.destroy(cell); -
trunk/Source/JavaScriptCore/runtime/StructureIDTable.h
r165265 r171953 84 84 { 85 85 #if USE(JSVALUE64) 86 ASSERT(structureID && structureID < m_capacity); 86 87 return table()[structureID].structure; 87 88 #else
Note: See TracChangeset
for help on using the changeset viewer.
