Closed
Bug 926778
Opened 11 years ago
Closed 11 years ago
Prevent executable allocator from handing out poisoned pointers with JSGC_ROOT_ANALYSIS
Categories
(Core :: JavaScript Engine, defect)
Core
JavaScript Engine
Tracking
()
RESOLVED
FIXED
mozilla27
People
(Reporter: sfink, Assigned: sfink)
References
Details
Attachments
(1 file)
|
(deleted),
patch
|
terrence
:
review+
|
Details | Diff | Splinter Review |
I was getting disturbingly frequent but intermittent failures with rooting analysis, and thought I'd dig in a little.
|
Assignee | |
Comment 1•11 years ago
|
||
I know we're going to be ripping out the dynamic rooting analysis soon, but this gets rid of a lot of intermittent orange for me.
But certainly not all -- I have a lingering very-intermittent:
Assertion failure: masm.framePushed() == initialStack, at /home/sfink/src/MI-GC/js/src/jit/IonCaches.cpp:975
even with this patch applied.
Attachment #816972 -
Flags: review?(terrence)
|
|
Assignee | |
Updated•11 years ago
|
Blocks: ExactRooting
|
||
Comment 2•11 years ago
|
||
Comment on attachment 816972 [details] [diff] [review]
Prevent executable allocator from handing out poisoned pointers with JSGC_ROOT_ANALYSIS
Review of attachment 816972 [details] [diff] [review]:
-----------------------------------------------------------------
r=me
::: js/src/assembler/jit/ExecutableAllocatorPosix.cpp
@@ +46,5 @@
> + void* allocation;
> +#ifdef JSGC_ROOT_ANALYSIS
> + do {
> +#endif
> + allocation = mmap(NULL, n, INITIAL_PROTECTION_FLAGS, MAP_PRIVATE | MAP_ANON, VM_TAG_FOR_EXECUTABLEALLOCATOR_MEMORY, 0);
The indentation here looks wrong to me. I guess the style guide doesn't really cover this case, but I would suggest indenting this line. It doesn't really matter though.
Attachment #816972 -
Flags: review?(terrence) → review+
|
||
Comment 3•11 years ago
|
||
Status: ASSIGNED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla27
You need to log in
before you can comment on or make changes to this bug.
Description
•