src/arm/lithium-codegen-arm.cc - Issue 221743005: Check in Lithium that allocation size in Smi range. - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(5)

My Issues | Starred Open | Closed | All

Unified Diff: src/arm/lithium-codegen-arm.cc

Issue 221743005: Check in Lithium that allocation size in Smi range. (Closed) Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge

Patch Set: Created 6 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | src/ia32/lithium-codegen-ia32.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: src/arm/lithium-codegen-arm.cc

diff --git a/src/arm/lithium-codegen-arm.cc b/src/arm/lithium-codegen-arm.cc

index 63e60ba66b00a11c106d4dee938fcdf0c316e07c..e30b25b58691273ccb210fdaa30dc560283c86ce 100644

--- a/src/arm/lithium-codegen-arm.cc

+++ b/src/arm/lithium-codegen-arm.cc

@@ -5357,7 +5357,13 @@ void LCodeGen::DoDeferredAllocate(LAllocate* instr) {

__ push(size);

} else {

int32_t size = ToInteger32(LConstantOperand::cast(instr->size()));

- __ Push(Smi::FromInt(size));

+ if (size >= 0 && size <= Smi::kMaxValue) {

+ __ Push(Smi::FromInt(size));

+ } else {

+ // We should never get here at runtime => abort

+ __ stop("invalid allocation size");

+ return;

+ }

}

int flags = AllocateDoubleAlignFlag::encode(

« no previous file with comments | « no previous file | src/ia32/lithium-codegen-ia32.cc » ('j') | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698