src/arm/code-stubs-arm.cc - Issue 6987009: Fix GC-unsafe corner case in bit-not on ARM

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/arm/code-stubs-arm.cc

Issue 6987009: Fix GC-unsafe corner case in bit-not on ARM (Closed) Base URL: http://v8.googlecode.com/svn/branches/bleeding_edge/

Patch Set: '' Created 9 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/arm/code-stubs-arm.cc

===================================================================

--- src/arm/code-stubs-arm.cc (revision 8053)

+++ src/arm/code-stubs-arm.cc (working copy)

@@ -1903,6 +1903,8 @@

void UnaryOpStub::GenerateHeapNumberCodeBitNot(

MacroAssembler* masm, Label* slow) {

+ Label impossible;

EmitCheckForHeapNumber(masm, r0, r1, r6, slow);

// Convert the heap number is r0 to an untagged integer in r1.

__ ConvertToInt32(r0, r1, r2, r3, d0, slow);

@@ -1921,17 +1923,27 @@

__ bind(&try_float);

if (mode_ == UNARY_NO_OVERWRITE) {

Label slow_allocate_heapnumber, heapnumber_allocated;

- __ AllocateHeapNumber(r0, r2, r3, r6, &slow_allocate_heapnumber);

+ // Allocate a new heap number without zapping r0, which we need if it fails.

+ __ AllocateHeapNumber(r2, r3, r4, r6, &slow_allocate_heapnumber);

__ jmp(&heapnumber_allocated);

__ bind(&slow_allocate_heapnumber);

__ EnterInternalFrame();

- __ push(r1);

- __ CallRuntime(Runtime::kNumberAlloc, 0);

- __ pop(r1);

+ __ push(r0); // Push the heap number, not the untagged int32.

+ __ CallRuntime(Runtime::kNumberAlloc, 0);

+ __ mov(r2, r0); // Move the new heap number into r2.

+ // Get the heap number into r0, now that the new heap number is in r2.

+ __ pop(r0);

__ LeaveInternalFrame();

+ // Convert the heap number in r0 to an untagged integer in r1.

+ // This can't go slow-case because it's the same number we already

+ // converted once again.

+ __ ConvertToInt32(r0, r1, r3, r4, d0, &impossible);

+ __ mvn(r1, Operand(r1));

__ bind(&heapnumber_allocated);

+ __ mov(r0, r2); // Move newly allocated heap number to r0.

}

if (CpuFeatures::IsSupported(VFP3)) {

@@ -1948,6 +1960,11 @@

WriteInt32ToHeapNumberStub stub(r1, r0, r2);

__ Jump(stub.GetCode(), RelocInfo::CODE_TARGET);

}

+ __ bind(&impossible);

+ if (FLAG_debug_code) {

+ __ stop("Incorrect assumption in bit-not stub");

+ }

}

« no previous file with comments | « no previous file | test/mjsunit/binary-op-newspace.js » ('j') | test/mjsunit/bit-not.js » ('J')