Skip to content

V
V8
Commit 11a831f1 authored by hpayer's avatar hpayer Committed by Commit bot
Browse files
Options

Verify that double unboxing is never performed on large objects. 

BUG=

Review URL: https://codereview.chromium.org/1214673007

Cr-Commit-Position: refs/heads/master@{#29538}
parent 6db4586f
Hide whitespace changes
Inline Side-by-side
Showing with 5 additions and 0 deletions
src/heap/spaces.cc
View file @ 11a831f1
......@@ -3046,6 +3046,11 @@ void LargeObjectSpace::Verify() {
CHECK(map->IsMap());
CHECK(heap()->map_space()->Contains(map));
// Double unboxing in LO space is not allowed. This would break the
// lookup mechanism for store and slot buffer entries which use the
// page header tag.
CHECK(object->ContentType() != HeapObjectContents::kMixedValues);
// We have only code, sequential strings, external strings
// (sequential strings that have been morphed into external
// strings), fixed arrays, byte arrays, and constant pool arrays in the
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment