Fix crash when using --smi-only-arrays and --trace-elements-transitions

BUG= TEST=3d-cube on debug mode with --smi-only-arrays and --trace-elements-transitions Review URL: https://chromiumcodereview.appspot.com/9361054 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@10687 ce2b1a6d-e550-0410-aec6-3dcde31c8c00

Fix crash when using --smi-only-arrays and --trace-elements-transitions
BUG= TEST=3d-cube on debug mode with --smi-only-arrays and --trace-elements-transitions Review URL: https://chromiumcodereview.appspot.com/9361054 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@10687 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
36141ddf · yangguo@chromium.org · 0a9e97e9 · 36141ddf
Commit 36141ddf authored Feb 14, 2012 by yangguo@chromium.org
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

ic-ia32.cc src/ia32/ic-ia32.cc +6 -0

No files found.
--- a/src/ia32/ic-ia32.cc
+++ b/src/ia32/ic-ia32.cc
@@ -1639,6 +1639,9 @@ void KeyedStoreIC::GenerateTransitionElementsSmiToDouble(MacroAssembler* masm) {
  __ pop(ebx);
  __ push(edx);
  __ push(ebx);  // return address
+  // Leaving the code managed by the register allocator and return to the
+  // convention of using esi as context register.
+  __ mov(esi, Operand(ebp, StandardFrameConstants::kContextOffset));
  __ TailCallRuntime(Runtime::kTransitionElementsSmiToDouble, 1, 1);
 }

@@ -1662,6 +1665,9 @@ void KeyedStoreIC::GenerateTransitionElementsDoubleToObject(
  __ pop(ebx);
  __ push(edx);
  __ push(ebx);  // return address
+  // Leaving the code managed by the register allocator and return to the
+  // convention of using esi as context register.
+  __ mov(esi, Operand(ebp, StandardFrameConstants::kContextOffset));
  __ TailCallRuntime(Runtime::kTransitionElementsDoubleToObject, 1, 1);
 }