| Index: src/runtime.cc
|
| diff --git a/src/runtime.cc b/src/runtime.cc
|
| index abe9509a7d7e653fcdaa96fbc2fc8266c0f7ef14..a63fd65d4bc6b2298a08bcdad7a62e160867ede8 100644
|
| --- a/src/runtime.cc
|
| +++ b/src/runtime.cc
|
| @@ -3030,6 +3030,8 @@ RUNTIME_FUNCTION(Runtime_FunctionSetLength) {
|
|
|
| CONVERT_ARG_CHECKED(JSFunction, fun, 0);
|
| CONVERT_SMI_ARG_CHECKED(length, 1);
|
| + RUNTIME_ASSERT((length & 0xC0000000) == 0xC0000000 ||
|
| + (length & 0xC0000000) == 0x0);
|
| fun->shared()->set_length(length);
|
| return isolate->heap()->undefined_value();
|
| }
|
| @@ -4882,6 +4884,7 @@ RUNTIME_FUNCTION(Runtime_NumberToFixed) {
|
| int f = FastD2IChecked(f_number);
|
| // See DoubleToFixedCString for these constants:
|
| RUNTIME_ASSERT(f >= 0 && f <= 20);
|
| + RUNTIME_ASSERT(!Double(value).IsSpecial());
|
| char* str = DoubleToFixedCString(value, f);
|
| Handle<String> result = isolate->factory()->NewStringFromAsciiChecked(str);
|
| DeleteArray(str);
|
| @@ -4897,6 +4900,7 @@ RUNTIME_FUNCTION(Runtime_NumberToExponential) {
|
| CONVERT_DOUBLE_ARG_CHECKED(f_number, 1);
|
| int f = FastD2IChecked(f_number);
|
| RUNTIME_ASSERT(f >= -1 && f <= 20);
|
| + RUNTIME_ASSERT(!Double(value).IsSpecial());
|
| char* str = DoubleToExponentialCString(value, f);
|
| Handle<String> result = isolate->factory()->NewStringFromAsciiChecked(str);
|
| DeleteArray(str);
|
| @@ -4912,6 +4916,7 @@ RUNTIME_FUNCTION(Runtime_NumberToPrecision) {
|
| CONVERT_DOUBLE_ARG_CHECKED(f_number, 1);
|
| int f = FastD2IChecked(f_number);
|
| RUNTIME_ASSERT(f >= 1 && f <= 21);
|
| + RUNTIME_ASSERT(!Double(value).IsSpecial());
|
| char* str = DoubleToPrecisionCString(value, f);
|
| Handle<String> result = isolate->factory()->NewStringFromAsciiChecked(str);
|
| DeleteArray(str);
|
|
|
Chromium Code Reviews
Issue 282493005:
Harden more runtime functions (Closed)
Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge