Fix a race condition when accessing code_cache_map_ in d8

code_cache_map_ is used to store the serialized code that could be consumed in the subsequent runs. This is a std::map which is not thread safe. So protect this with mutex to avoid any race conditions when executing in multiple isolates in parallel. Bug: chromium:783124 Change-Id: Ie58402b8547cf3e83716b8d97d98a298745e487f Reviewed-on: https://chromium-review.googlesource.com/806334Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Mythri Alle <mythria@chromium.org> Cr-Commit-Position: refs/heads/master@{#49837}

Fix a race condition when accessing code_cache_map_ in d8
code_cache_map_ is used to store the serialized code that could be consumed in the subsequent runs. This is a std::map which is not thread safe. So protect this with mutex to avoid any race conditions when executing in multiple isolates in parallel. Bug: chromium:783124 Change-Id: Ie58402b8547cf3e83716b8d97d98a298745e487f Reviewed-on: https://chromium-review.googlesource.com/806334Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Mythri Alle <mythria@chromium.org> Cr-Commit-Position: refs/heads/master@{#49837}
03b4d391 · Mythri · Commit Bot · 1ce7f0e8 · 03b4d391 · 03b4d391
Commit 03b4d391 authored Dec 04, 2017 by Mythri Committed by Commit Bot Dec 04, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 1 deletion

d8.cc src/d8.cc +4 -1

d8.h src/d8.h +2 -0

No files found.
--- a/src/d8.cc
+++ b/src/d8.cc
@@ -506,6 +506,7 @@ std::vector<Worker*> Shell::workers_;
 std::vector<ExternalizedContents> Shell::externalized_contents_;
 base::LazyMutex Shell::isolate_status_lock_;
 std::map<v8::Isolate*, bool> Shell::isolate_status_;
+base::LazyMutex Shell::cached_code_mutex_;
 std::map<std::string, std::unique_ptr<ScriptCompiler::CachedData>>
    Shell::cached_code_map_;
@@ -570,6 +571,7 @@ class BackgroundCompileThread : public base::Thread {
 ScriptCompiler::CachedData* Shell::LookupCodeCache(Isolate* isolate,
                                                   Local<Value> source) {
+  base::LockGuard<base::Mutex> lock_guard(cached_code_mutex_.Pointer());
  CHECK(source->IsString());
  v8::String::Utf8Value key(isolate, source);
  DCHECK(*key);
@@ -587,6 +589,7 @@ ScriptCompiler::CachedData* Shell::LookupCodeCache(Isolate* isolate,
 void Shell::StoreInCodeCache(Isolate* isolate, Local<Value> source,
                             const ScriptCompiler::CachedData* cache_data) {
+  base::LockGuard<base::Mutex> lock_guard(cached_code_mutex_.Pointer());
  CHECK(source->IsString());
  if (cache_data == nullptr) return;
  v8::String::Utf8Value key(isolate, source);
@@ -3435,7 +3438,6 @@ int Shell::Main(int argc, char* argv[]) {
        result = RunMain(isolate2, argc, argv, true);
      }
-      cached_code_map_.clear();
      isolate2->Dispose();
    } else {
      bool last_run = true;
@@ -3454,6 +3456,7 @@ int Shell::Main(int argc, char* argv[]) {
    }
    // Shut down contexts and collect garbage.
+    cached_code_map_.clear();
    evaluation_context_.Reset();
    stringify_function_.Reset();
    CollectGarbage(isolate);

--- a/src/d8.h
+++ b/src/d8.h
@@ -513,6 +513,8 @@ class Shell : public i::AllStatic {
  // the isolate_status_ needs to be concurrency-safe.
  static base::LazyMutex isolate_status_lock_;
  static std::map<Isolate*, bool> isolate_status_;
+  static base::LazyMutex cached_code_mutex_;
  static std::map<std::string, std::unique_ptr<ScriptCompiler::CachedData>>
      cached_code_map_;
 };