Issue 2146353002: [stubs] Properly handle length overflow in StringAddStub.

Issue 2146353002: [stubs] Properly handle length overflow in StringAddStub. (Closed)

Created:
4 years, 5 months ago by Benedikt Meurer

Modified:
3 years, 10 months ago

Reviewers:
Michael Starzinger, jgruber

CC:
v8-reviews_googlegroups.com

Base URL:
https://chromium.googlesource.com/v8/v8.git@master

Target Ref:
refs/pending/heads/master

Project:
v8

Visibility:
Public.

More Reviews

Description

[stubs] Properly handle length overflow in StringAddStub. Using the Hydrogen code stub bailout mechanism is not correct for the string length overflow check in the StringAddStub. Instead make sure we just throw the proper exception. R=mstarzinger@chromium.org BUG=chromium:627934 Committed: https://crrev.com/6530a16eb5b7ccfd4cbcda105035f2c4c27295db Cr-Commit-Position: refs/heads/master@{#37758}

Patch Set 1 #

Total comments: 2

Patch Set 2 : Throw a proper RangeError #

Total comments: 2

Created: 4 years, 5 months ago

Download [raw] [tar.bz2]

	Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+26 lines, -7 lines)			Patch
M	src/crankshaft/hydrogen.cc	View		1 chunk	+14 lines, -1 line	2 comments	Download
M	src/runtime/runtime.h	View		1 chunk	+1 line, -0 lines	0 comments	Download
M	src/runtime/runtime-internal.cc	View	1	1 chunk	+6 lines, -0 lines	0 comments	Download
A +	test/mjsunit/regress/regress-crbug-627934.js	View		1 chunk	+5 lines, -6 lines	0 comments	Download

Messages

Total messages: 15 (6 generated)

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages

Benedikt Meurer

Hey Michi, Here's the quick fix for the StringAddStub (back-mergable if necessary). Please take a ...

4 years, 5 months ago (2016-07-14 11:12:32 UTC) #4

Michael Starzinger

LGTM. https://codereview.chromium.org/2146353002/diff/1/src/runtime/runtime-internal.cc File src/runtime/runtime-internal.cc (right): https://codereview.chromium.org/2146353002/diff/1/src/runtime/runtime-internal.cc#newcode234 src/runtime/runtime-internal.cc:234: HandleScope scope(isolate); nit: DCHECK_EQ(0, args.length());

4 years, 5 months ago (2016-07-14 11:14:20 UTC) #5

Benedikt Meurer

https://codereview.chromium.org/2146353002/diff/1/src/runtime/runtime-internal.cc File src/runtime/runtime-internal.cc (right): https://codereview.chromium.org/2146353002/diff/1/src/runtime/runtime-internal.cc#newcode234 src/runtime/runtime-internal.cc:234: HandleScope scope(isolate); Doesn't matter.

4 years, 5 months ago (2016-07-14 11:22:29 UTC) #6

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2146353002/20001

4 years, 5 months ago (2016-07-14 11:24:11 UTC) #9

commit-bot: I haz the power

Patchset 2 (id:??) landed as https://crrev.com/6530a16eb5b7ccfd4cbcda105035f2c4c27295db Cr-Commit-Position: refs/heads/master@{#37758}

4 years, 5 months ago (2016-07-14 11:47:52 UTC) #12

jgruber

https://codereview.chromium.org/2146353002/diff/20001/src/crankshaft/hydrogen.cc File src/crankshaft/hydrogen.cc (right): https://codereview.chromium.org/2146353002/diff/20001/src/crankshaft/hydrogen.cc#newcode2418 src/crankshaft/hydrogen.cc:2418: // will be to migrate the StringAddStub to TurboFan ...

3 years, 10 months ago (2017-01-31 15:13:47 UTC) #14

Benedikt Meurer

3 years, 10 months ago (2017-01-31 17:57:20 UTC) #15

Message was sent while issue was closed.

https://codereview.chromium.org/2146353002/diff/20001/src/crankshaft/hydrogen.cc
File src/crankshaft/hydrogen.cc (right):

https://codereview.chromium.org/2146353002/diff/20001/src/crankshaft/hydrogen...
src/crankshaft/hydrogen.cc:2418: // will be to migrate the StringAddStub to
TurboFan one day.
I think we still inline this into the BinaryOpIC for String addition, so for now
just keep it.

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages