[csa] Fix AllocateFunctionWithMapAndContext

Use write barrier when storing code into JSFunction::Code field. Earlier, code from SharedFunctionInfo was always a builtin and hence it was safe to skip write barrier there. With Sparkplug we could also store baseline code and hence it isn't safe to skip write barrier. Change-Id: I6a68ac759d619cdbeec8d4a37e9493d46f7aa790 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3056982Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Mythri Alle <mythria@chromium.org> Cr-Commit-Position: refs/heads/master@{#75959}

[csa] Fix AllocateFunctionWithMapAndContext
Use write barrier when storing code into JSFunction::Code field. Earlier, code from SharedFunctionInfo was always a builtin and hence it was safe to skip write barrier there. With Sparkplug we could also store baseline code and hence it isn't safe to skip write barrier. Change-Id: I6a68ac759d619cdbeec8d4a37e9493d46f7aa790 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3056982Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Mythri Alle <mythria@chromium.org> Cr-Commit-Position: refs/heads/master@{#75959}
3c5705c6 · Mythri A · V8 LUCI CQ · 6a77c346 · 3c5705c6
Commit 3c5705c6 authored Jul 28, 2021 by Mythri A Committed by V8 LUCI CQ Jul 28, 2021
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

code-stub-assembler.cc src/codegen/code-stub-assembler.cc +1 -1

No files found.
--- a/src/codegen/code-stub-assembler.cc
+++ b/src/codegen/code-stub-assembler.cc
@@ -14411,7 +14411,7 @@ TNode<JSFunction> CodeStubAssembler::AllocateFunctionWithMapAndContext(
  StoreObjectFieldNoWriteBarrier(fun, JSFunction::kSharedFunctionInfoOffset,
                                 shared_info);
  StoreObjectFieldNoWriteBarrier(fun, JSFunction::kContextOffset, context);
-  StoreObjectFieldNoWriteBarrier(fun, JSFunction::kCodeOffset, ToCodeT(code));
+  StoreObjectField(fun, JSFunction::kCodeOffset, ToCodeT(code));
  return CAST(fun);
 }