Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(147)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: src/bootstrapper.cc

Issue 1125073004: Prevent stack overflow in the serializer/deserializer. (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master
Patch Set: fixed all Created 5 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « src/api.cc ('k') | src/objects.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright 2014 the V8 project authors. All rights reserved. 1 // Copyright 2014 the V8 project authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #include "src/bootstrapper.h" 5 #include "src/bootstrapper.h"
6 6
7 #include "src/accessors.h" 7 #include "src/accessors.h"
8 #include "src/api-natives.h" 8 #include "src/api-natives.h"
9 #include "src/base/utils/random-number-generator.h" 9 #include "src/base/utils/random-number-generator.h"
10 #include "src/code-stubs.h" 10 #include "src/code-stubs.h"
(...skipping 2813 matching lines...) Expand 10 before | Expand all | Expand 10 after
2824 LookupIterator it(to, key, LookupIterator::OWN_SKIP_INTERCEPTOR); 2824 LookupIterator it(to, key, LookupIterator::OWN_SKIP_INTERCEPTOR);
2825 CHECK_NE(LookupIterator::ACCESS_CHECK, it.state()); 2825 CHECK_NE(LookupIterator::ACCESS_CHECK, it.state());
2826 if (it.IsFound()) continue; 2826 if (it.IsFound()) continue;
2827 // Set the property. 2827 // Set the property.
2828 Handle<Object> value = Handle<Object>(properties->ValueAt(i), 2828 Handle<Object> value = Handle<Object>(properties->ValueAt(i),
2829 isolate()); 2829 isolate());
2830 DCHECK(!value->IsCell()); 2830 DCHECK(!value->IsCell());
2831 if (value->IsPropertyCell()) { 2831 if (value->IsPropertyCell()) {
2832 value = handle(PropertyCell::cast(*value)->value(), isolate()); 2832 value = handle(PropertyCell::cast(*value)->value(), isolate());
2833 } 2833 }
2834 if (value->IsTheHole()) continue;
2834 PropertyDetails details = properties->DetailsAt(i); 2835 PropertyDetails details = properties->DetailsAt(i);
2835 DCHECK_EQ(kData, details.kind()); 2836 DCHECK_EQ(kData, details.kind());
2836 JSObject::AddProperty(to, key, value, details.attributes()); 2837 JSObject::AddProperty(to, key, value, details.attributes());
2837 } 2838 }
2838 } 2839 }
2839 } 2840 }
2840 } 2841 }
2841 2842
2842 2843
2843 void Genesis::TransferIndexedProperties(Handle<JSObject> from, 2844 void Genesis::TransferIndexedProperties(Handle<JSObject> from,
(...skipping 178 matching lines...) Expand 10 before | Expand all | Expand 10 after
3022 return from + sizeof(NestingCounterType); 3023 return from + sizeof(NestingCounterType);
3023 } 3024 }
3024 3025
3025 3026
3026 // Called when the top-level V8 mutex is destroyed. 3027 // Called when the top-level V8 mutex is destroyed.
3027 void Bootstrapper::FreeThreadResources() { 3028 void Bootstrapper::FreeThreadResources() {
3028 DCHECK(!IsActive()); 3029 DCHECK(!IsActive());
3029 } 3030 }
3030 3031
3031 } } // namespace v8::internal 3032 } } // namespace v8::internal
OLDNEW
« no previous file with comments | « src/api.cc ('k') | src/objects.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698