Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1360)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: test/debugger/debug/regress/regress-392114.js

Issue 2476303003: Revert of [debugger] Migrate more debugger tests to inspector (Closed)
Patch Set: Created 4 years, 1 month ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « test/debugger/debug/regress/regress-3717.js ('k') | test/debugger/debug/regress/regress-4320.js » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: test/debugger/debug/regress/regress-392114.js
diff --git a/test/debugger/debug/regress/regress-392114.js b/test/debugger/debug/regress/regress-392114.js
deleted file mode 100644
index b9ca4ed2a751bd17d12d31925d2097edb8f6fbe1..0000000000000000000000000000000000000000
--- a/test/debugger/debug/regress/regress-392114.js
+++ /dev/null
@@ -1,65 +0,0 @@
-// Copyright 2014 the V8 project authors. All rights reserved.
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-// * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-// * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following
-// disclaimer in the documentation and/or other materials provided
-// with the distribution.
-// * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived
-// from this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-
-Debug = debug.Debug;
-
-function dummy(x) {
- return x + 100;
-}
-
-function create_closure() {
- var f = function(arg) {
- if (arg) { %DeoptimizeFunction(f); }
- var a = Array(10);
- for (var i = 0; i < a.length; i++) {
- a[i] = i;
- }
- }
- return f;
-}
-
-var c = create_closure();
-c();
-
-// c CallIC state now has custom Array handler installed.
-
-// Turn on the debugger.
-Debug.setListener(function () {});
-
-var d = create_closure();
-%OptimizeFunctionOnNextCall(d);
-// Thanks to the debugger, we recreate the full code too. We deopt and run
-// it, stomping on the unexpected AllocationSite in the type vector slot.
-d(true);
-
-// CallIC in c misinterprets type vector slot contents as an AllocationSite,
-// corrupting the heap.
-c();
-
-// CallIC MISS - crash due to corruption.
-dummy();
« no previous file with comments | « test/debugger/debug/regress/regress-3717.js ('k') | test/debugger/debug/regress/regress-4320.js » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698