Changeset 164448 in webkit
- Timestamp:
- Feb 20, 2014, 2:55:11 PM (11 years ago)
- Location:
- trunk/Source/JavaScriptCore
- Files:
-
- 3 edited
-
ChangeLog (modified) (1 diff)
-
heap/CopiedBlock.h (modified) (1 diff)
-
heap/CopiedSpace.cpp (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/JavaScriptCore/ChangeLog
r164447 r164448 1 2014-02-20 Mark Hahnenberg <mhahnenberg@apple.com> 2 3 CopiedBlock::pin can call into fastFree while forbidden 4 https://bugs.webkit.org/show_bug.cgi?id=128654 5 6 Reviewed by Oliver Hunt. 7 8 A FullCollection that skips copying doesn't clear the CopyWorkList of the all the surviving 9 CopiedBlocks because we currently only call didSurviveGC() at the beginning of FullCollections. 10 11 EdenCollections always do copying, therefore they always clear all CopyWorkLists. 12 13 The fix is to call didSurviveGC() for all surviving CopiedBlocks at the end of FullCollections 14 as well at the beginning. 15 16 * heap/CopiedBlock.h: 17 (JSC::CopiedBlock::didSurviveGC): 18 * heap/CopiedSpace.cpp: 19 (JSC::CopiedSpace::doneCopying): 20 1 21 2014-02-20 Mark Hahnenberg <mhahnenberg@apple.com> 2 22 -
trunk/Source/JavaScriptCore/heap/CopiedBlock.h
r162017 r164448 148 148 { 149 149 checkConsistency(); 150 ASSERT(isOld()); 150 151 m_liveBytes = 0; 151 152 #ifndef NDEBUG -
trunk/Source/JavaScriptCore/heap/CopiedSpace.cpp
r163844 r164448 254 254 ASSERT(m_blockSet.contains(block)); 255 255 blockFilter->add(reinterpret_cast<Bits>(block)); 256 block->didSurviveGC(); 256 257 toSpace->push(block); 257 258 }
Note:
See TracChangeset
for help on using the changeset viewer.
