Commit d0c147ab authored by Dominik Inführ's avatar Dominik Inführ Committed by V8 LUCI CQ

[heap] NotifyObjectLayoutChange invalidates slots in OLD_TO_SHARED

When an object changes layout, OLD_TO_SHARED slots need to be
invalidated for it as well.

Bug: v8:11708
Change-Id: I28ea181012955fddef986e8f8806a7477307df28
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3596175Reviewed-by: 's avatarMichael Lippautz <mlippautz@chromium.org>
Commit-Queue: Dominik Inführ <dinfuehr@chromium.org>
Cr-Commit-Position: refs/heads/main@{#80071}
parent 2ae2aa92
...@@ -3969,6 +3969,8 @@ void Heap::NotifyObjectLayoutChange( ...@@ -3969,6 +3969,8 @@ void Heap::NotifyObjectLayoutChange(
MayContainRecordedSlots(object)) { MayContainRecordedSlots(object)) {
MemoryChunk::FromHeapObject(object) MemoryChunk::FromHeapObject(object)
->RegisterObjectWithInvalidatedSlots<OLD_TO_NEW>(object); ->RegisterObjectWithInvalidatedSlots<OLD_TO_NEW>(object);
MemoryChunk::FromHeapObject(object)
->RegisterObjectWithInvalidatedSlots<OLD_TO_SHARED>(object);
} }
#ifdef VERIFY_HEAP #ifdef VERIFY_HEAP
if (FLAG_verify_heap) { if (FLAG_verify_heap) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment