src/liveedit.cc - Issue 10682013: Properly fix liveedit heap traversal bug with write barrier

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/liveedit.cc

Issue 10682013: Properly fix liveedit heap traversal bug with write barrier (Closed) Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge

Patch Set: style Created 8 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/liveedit.cc

diff --git a/src/liveedit.cc b/src/liveedit.cc

index 80e18bbbff9a9274e04f6fdd628aa671d414516b..0b8654b468302816a64bf38afbb3c0b036c8930c 100644

--- a/src/liveedit.cc

+++ b/src/liveedit.cc

@@ -965,12 +965,21 @@ class ReplacingVisitor : public ObjectVisitor {

// Finds all references to original and replaces them with substitution.

-static void ReplaceCodeObject(Code* original, Code* substitution) {

- ASSERT(!HEAP->InNewSpace(substitution));

+static void ReplaceCodeObject(Handle<Code> original,

+ Handle<Code> substitution) {

+ // Perform a full GC in order to ensure that we are not in the middle of an

+ // incremental marking phase when we are replacing the code object.

+ // Since we are not in an incremental marking phase we can write pointers

+ // to code objects (that are never in new space) without worrying about

+ // write barriers.

+ HEAP->CollectAllGarbage(Heap::kMakeHeapIterableMask,

+ "liveedit.cc ReplaceCodeObject");

+ ASSERT(!HEAP->InNewSpace(*substitution));

AssertNoAllocation no_allocations_please;

- ReplacingVisitor visitor(original, substitution);

+ ReplacingVisitor visitor(*original, *substitution);

// Iterate over all roots. Stack frames may have pointer into original code,

// so temporary replace the pointers with offset numbers

@@ -1066,8 +1075,8 @@ MaybeObject* LiveEdit::ReplaceFunctionCode(

if (IsJSFunctionCode(shared_info->code())) {

Handle<Code> code = compile_info_wrapper.GetFunctionCode();

- ReplaceCodeObject(shared_info->code(), *code);

- Handle<Object> code_scope_info = compile_info_wrapper.GetCodeScopeInfo();

+ ReplaceCodeObject(Handle<Code>(shared_info->code()), code);

+ Handle<Object> code_scope_info = compile_info_wrapper.GetCodeScopeInfo();

if (code_scope_info->IsFixedArray()) {

shared_info->set_scope_info(ScopeInfo::cast(*code_scope_info));

}

@@ -1309,7 +1318,7 @@ MaybeObject* LiveEdit::PatchFunctionPositions(

// on stack (it is safe to substitute the code object on stack, because

// we only change the structure of rinfo and leave instructions

// untouched).

- ReplaceCodeObject(info->code(), *patched_code);

+ ReplaceCodeObject(Handle<Code>(info->code()), patched_code);

}

« no previous file with comments | « no previous file | no next file » | no next file with comments »