Issue 604064: Fix stack corruption when calling non-function.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Issue 604064: Fix stack corruption when calling non-function. (Closed)

Created:
10 years, 10 months ago by Kevin Millikin (Chromium)

Modified:
9 years, 7 months ago

Reviewers:
William Hesse, Mads Ager (chromium)

CC:
v8-dev

Visibility:
Public.

Description

Fix stack corruption when calling non-function. Fix for issue 603. Revision r3484 removed the property name from the call stack for call ICs. When a non-function was called via a call IC and Function.prototype.call, an extra value was left on the stack that the caller could not know to clean up. Fix is to change the JS builtin used for calling non-functions. It now gets the callee as receiver, rather than iterating stack frames and finding it on the expression stack of its JS caller. Committed: http://code.google.com/p/v8/source/detail?r=3882

Patch Set 1 #

Created: 10 years, 10 months ago

Download [raw] [tar.bz2]

	Unified diffs	Side-by-side diffs	Stats (+198 lines, -246 lines)			Patch
M	src/arm/builtins-arm.cc	View	7 chunks	+63 lines, -56 lines	0 comments	Download
M	src/arm/codegen-arm.cc	View	1 chunk	+3 lines, -0 lines	0 comments	Download
M	src/ia32/builtins-ia32.cc	View	4 chunks	+61 lines, -61 lines	0 comments	Download
M	src/ia32/codegen-ia32.cc	View	1 chunk	+3 lines, -0 lines	0 comments	Download
M	src/runtime.h	View	1 chunk	+0 lines, -2 lines	0 comments	Download
M	src/runtime.cc	View	2 chunks	+0 lines, -57 lines	0 comments	Download
M	src/runtime.js	View	1 chunk	+6 lines, -12 lines	0 comments	Download
M	src/x64/builtins-x64.cc	View	6 chunks	+59 lines, -58 lines	0 comments	Download
M	src/x64/codegen-x64.cc	View	1 chunk	+3 lines, -0 lines	0 comments	Download

Messages

Total messages: 2 (0 generated)

Expand Messages | Collapse Messages

LGTM if you add a test case.

Expand Messages | Collapse Messages