Changeset 128125 in webkit

Timestamp:

Sep 10, 2012 4:22:10 PM (12 years ago)

Author:

abarth@webkit.org

Message:

[V8] V8AuxiliaryContext used by IDB leaks memory
​https://bugs.webkit.org/show_bug.cgi?id=96317

Patch by Adam Barth <​abarth@chromium.org> on 2012-09-10
Reviewed by Tony Chang.

Source/WebCore:

Before this patch, we leaked m_auxiliaryContext on V8PerIsolateData
because no one ever called Dispose to balance the call to
V8::Context::New. This patch uses ScopedPersistent to call Dispose
automatically.

Also, I've deleted the V8AuxiliaryContext because it just reinvents
V8::Context::Scope.

• bindings/v8/IDBBindingUtilities.cpp:

(WebCore::createIDBKeyFromSerializedValueAndKeyPath):
(WebCore::injectIDBKeyIntoSerializedValue):

• bindings/v8/V8PerIsolateData.cpp:

(WebCore::V8PerIsolateData::ensureAuxiliaryContext):
(WebCore):

• bindings/v8/V8PerIsolateData.h:

(V8PerIsolateData):

• bindings/v8/V8Utilities.cpp:
• bindings/v8/V8Utilities.h:

Source/WebKit/chromium:

Call the V8 APIs directly instead of using a helper class.

• tests/IDBBindingUtilitiesTest.cpp:

(WebCore::TEST):

Location:

trunk/Source

Files:

• WebCore/ChangeLog (modified) (1 diff)
• WebCore/bindings/v8/IDBBindingUtilities.cpp (modified) (2 diffs)
• WebCore/bindings/v8/V8PerIsolateData.cpp (modified) (1 diff)
• WebCore/bindings/v8/V8PerIsolateData.h (modified) (3 diffs)
• WebCore/bindings/v8/V8Utilities.cpp (modified) (1 diff)
• WebCore/bindings/v8/V8Utilities.h (modified) (1 diff)
• WebKit/chromium/ChangeLog (modified) (1 diff)
• WebKit/chromium/tests/IDBBindingUtilitiesTest.cpp (modified) (6 diffs)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2012-09-10  Adam Barth  <abarth@chromium.org>
+
+        [V8] V8AuxiliaryContext used by IDB leaks memory
+        https://bugs.webkit.org/show_bug.cgi?id=96317
+
+        Reviewed by Tony Chang.
+
+        Before this patch, we leaked m_auxiliaryContext on V8PerIsolateData
+        because no one ever called Dispose to balance the call to
+        V8::Context::New. This patch uses ScopedPersistent to call Dispose
+        automatically.
+
+        Also, I've deleted the V8AuxiliaryContext because it just reinvents
+        V8::Context::Scope.
+
+        * bindings/v8/IDBBindingUtilities.cpp:
+        (WebCore::createIDBKeyFromSerializedValueAndKeyPath):
+        (WebCore::injectIDBKeyIntoSerializedValue):
+        * bindings/v8/V8PerIsolateData.cpp:
+        (WebCore::V8PerIsolateData::ensureAuxiliaryContext):
+        (WebCore):
+        * bindings/v8/V8PerIsolateData.h:
+        (V8PerIsolateData):
+        * bindings/v8/V8Utilities.cpp:
+        * bindings/v8/V8Utilities.h:
+
 2012-09-10  Adam Barth  <abarth@chromium.org>
 

trunk/Source/WebCore/bindings/v8/IDBBindingUtilities.cpp

@@ -163 +163 @@
     RefPtr<SerializedScriptValue> value = prpValue;
 
-    V8AuxiliaryContext context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Handle<v8::Value> v8Value(value->deserialize());
     v8::Handle<v8::Value> v8Key(getNthValueOnKeyPath(v8Value, keyPathElements, keyPathElements.size()));
@@ -208 +210 @@
         return 0;
 
-    V8AuxiliaryContext context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Handle<v8::Value> v8Value(value->deserialize());
     v8::Handle<v8::Value> parent(ensureNthValueOnKeyPath(v8Value, keyPathElements, keyPathElements.size() - 1));

trunk/Source/WebCore/bindings/v8/V8PerIsolateData.cpp

@@ -108 +108 @@
 #endif
 
+v8::Handle<v8::Context> V8PerIsolateData::ensureAuxiliaryContext()
+{
+    if (m_auxiliaryContext.isEmpty())
+        m_auxiliaryContext.adopt(v8::Context::New());
+    return m_auxiliaryContext.get();
+}
+
 v8::Handle<v8::Value> V8PerIsolateData::constructorOfToString(const v8::Arguments& args)
 {

trunk/Source/WebCore/bindings/v8/V8PerIsolateData.h

@@ -27 +27 @@
 #define V8PerIsolateData_h
 
+#include "ScopedPersistent.h"
 #include <v8.h>
 #include <wtf/HashMap.h>
@@ -92 +93 @@
 
     V8HiddenPropertyName* hiddenPropertyName() { return m_hiddenPropertyName.get(); }
-    v8::Persistent<v8::Context>& auxiliaryContext() { return m_auxiliaryContext; }
+    v8::Handle<v8::Context> ensureAuxiliaryContext();
 
     void registerDOMDataStore(DOMDataStore* domDataStore) 
@@ -152 +153 @@
 
     OwnPtr<V8HiddenPropertyName> m_hiddenPropertyName;
-    v8::Persistent<v8::Context> m_auxiliaryContext;
+    ScopedPersistent<v8::Context> m_auxiliaryContext;
 
     bool m_constructorMode;

trunk/Source/WebCore/bindings/v8/V8Utilities.cpp

@@ -48 +48 @@
 
 namespace WebCore {
-
-V8AuxiliaryContext::V8AuxiliaryContext()
-{
-    auxiliaryContext()->Enter();
-}
-
-V8AuxiliaryContext::~V8AuxiliaryContext()
-{
-    auxiliaryContext()->Exit();
-}
-
-v8::Persistent<v8::Context>& V8AuxiliaryContext::auxiliaryContext()
-{
-    v8::Persistent<v8::Context>& context = V8PerIsolateData::current()->auxiliaryContext();
-    if (context.IsEmpty())
-        context = v8::Context::New();
-    return context;
-}
 
 // Use an array to hold dependents. It works like a ref-counted scheme.

trunk/Source/WebCore/bindings/v8/V8Utilities.h

@@ -63 +63 @@
     typedef unsigned CallbackAllowedValueFlags;
 
-    class V8AuxiliaryContext {
-    public:
-        V8AuxiliaryContext();
-        virtual ~V8AuxiliaryContext();
-    private:
-        v8::HandleScope m_handleScope;
-        static v8::Persistent<v8::Context>& auxiliaryContext();
-    };
-
     typedef WTF::Vector<RefPtr<MessagePort>, 1> MessagePortArray;
     typedef WTF::Vector<RefPtr<ArrayBuffer>, 1> ArrayBufferArray;

trunk/Source/WebKit/chromium/ChangeLog

@@ +1 @@
+2012-09-10  Adam Barth  <abarth@chromium.org>
+
+        [V8] V8AuxiliaryContext used by IDB leaks memory
+        https://bugs.webkit.org/show_bug.cgi?id=96317
+
+        Reviewed by Tony Chang.
+
+        Call the V8 APIs directly instead of using a helper class.
+
+        * tests/IDBBindingUtilitiesTest.cpp:
+        (WebCore::TEST):
+
 2012-09-10  Adam Barth  <abarth@chromium.org>
 

trunk/Source/WebKit/chromium/tests/IDBBindingUtilitiesTest.cpp

@@ -29 +29 @@
 #include "IDBKeyPath.h"
 #include "SerializedScriptValue.h"
+#include "V8PerIsolateData.h"
 #include "V8Utilities.h"
 
@@ -92 +93 @@
 TEST(IDBKeyFromValueAndKeyPathTest, TopLevelPropertyStringValue)
 {
-    V8AuxiliaryContext v8context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Local<v8::Object> object = v8::Object::New();
     object->Set(v8::String::New("foo"), v8::String::New("zoo"));
@@ -104 +107 @@
 TEST(IDBKeyFromValueAndKeyPathTest, TopLevelPropertyNumberValue)
 {
-    V8AuxiliaryContext v8context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Local<v8::Object> object = v8::Object::New();
     object->Set(v8::String::New("foo"), v8::Number::New(456));
@@ -116 +121 @@
 TEST(IDBKeyFromValueAndKeyPathTest, SubProperty)
 {
-    V8AuxiliaryContext v8context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Local<v8::Object> object = v8::Object::New();
     v8::Local<v8::Object> subProperty = v8::Object::New();
@@ -130 +137 @@
 TEST(InjectIDBKeyTest, TopLevelPropertyStringValue)
 {
-    V8AuxiliaryContext v8context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Local<v8::Object> object = v8::Object::New();
     object->Set(v8::String::New("foo"), v8::String::New("zoo"));
@@ -142 +151 @@
 TEST(InjectIDBKeyTest, SubProperty)
 {
-    V8AuxiliaryContext v8context;
+    v8::HandleScope handleScope;
+    v8::Context::Scope scope(V8PerIsolateData::current()->ensureAuxiliaryContext());
+
     v8::Local<v8::Object> object = v8::Object::New();
     v8::Local<v8::Object> subProperty = v8::Object::New();