src/objects-debug.cc - Issue 23936007: To diagnose chromium bug 284577, some additional CHECKS. TODOs are

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/objects-debug.cc

Issue 23936007: To diagnose chromium bug 284577, some additional CHECKS. TODOs are (Closed) Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge

Patch Set: Addressed nit Created 7 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/objects-debug.cc

diff --git a/src/objects-debug.cc b/src/objects-debug.cc

index 3eb7817b1aa2623ecf9d6d2e184612c6ae0b09cf..87e657a8a86bd55bd55c68b1fed8ebec56704de4 100644

--- a/src/objects-debug.cc

+++ b/src/objects-debug.cc

@@ -328,11 +328,17 @@ void JSObject::JSObjectVerify() {

}

- CHECK_EQ((map()->has_fast_smi_or_object_elements() ||

- (elements() == GetHeap()->empty_fixed_array())),

- (elements()->map() == GetHeap()->fixed_array_map() ||

- elements()->map() == GetHeap()->fixed_cow_array_map()));

- CHECK(map()->has_fast_object_elements() == HasFastObjectElements());

+ // TODO(hpayer): deal gracefully with partially constructed JSObjects, when

+ // allocation folding is turned off.

+ if (reinterpret_cast<Map*>(elements()) !=

+ GetHeap()->one_pointer_filler_map()) {

+ CHECK_EQ((map()->has_fast_smi_or_object_elements() ||

+ (elements() == GetHeap()->empty_fixed_array())),

+ (elements()->map() == GetHeap()->fixed_array_map() ||

+ elements()->map() == GetHeap()->fixed_cow_array_map()));

+ CHECK(map()->has_fast_object_elements() == HasFastObjectElements());

+ }

}

@@ -675,9 +681,19 @@ void Code::VerifyEmbeddedMapsDependency() {

void JSArray::JSArrayVerify() {

JSObjectVerify();

CHECK(length()->IsNumber() || length()->IsUndefined());

- CHECK(elements()->IsUndefined() ||

- elements()->IsFixedArray() ||

- elements()->IsFixedDoubleArray());

+ // TODO(hpayer): deal gracefully with partially constructed JSObjects, when

+ // allocation folding is turned off.

+ if (reinterpret_cast<Map*>(elements()) !=

+ GetHeap()->one_pointer_filler_map()) {

+ CHECK(elements()->IsUndefined() ||

+ elements()->IsFixedArray() ||

+ elements()->IsFixedDoubleArray());

+ // TODO(mvstanton): to diagnose chromium bug 284577, remove after.

+ AllocationMemento* memento = AllocationMemento::FindForJSObject(this);

+ if (memento != NULL && memento->IsValid()) {

+ memento->AllocationMementoVerify();

+ }

}

« no previous file with comments | « src/objects.cc ('k') | no next file » | no next file with comments »