test/unittests/heap/cppgc · 3cd99390caa5274d84ec63b216613773aa97eea5 · Linshizhi / V8

cppgc: Clear large pages on free. · 1fc24069

Omer Katz authored May 06, 2021

Destroyed large pages can be reallocated before the OS get a chance to
reclaim and clear them. In such cases we will get non-zero memory in a
newly allocated page.
Normal pages are not affected since they are kept in page pools instead
of being freed.
Fix by explicitly clearing the payload when destroying a large page.

Bug: chromium:1056170, chromium:1206274
Change-Id: I6436302f50b8f0b4ef41288425bf464b0eb52d5f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/2874404
Commit-Queue: Omer Katz <omerkatz@chromium.org>
Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Cr-Commit-Position: refs/heads/master@{#74418}

1fc24069

Name	Last commit	Last update
..
allocation-unittest.cc		Loading commit data...
compactor-unittest.cc		Loading commit data...
concurrent-marking-unittest.cc		Loading commit data...
concurrent-sweeper-unittest.cc		Loading commit data...
cross-thread-persistent-unittest.cc		Loading commit data...
custom-spaces-unittest.cc		Loading commit data...
ephemeron-pair-unittest.cc		Loading commit data...
explicit-management-unittest.cc		Loading commit data...
finalizer-trait-unittest.cc		Loading commit data...
free-list-unittest.cc		Loading commit data...
garbage-collected-unittest.cc		Loading commit data...
gc-info-unittest.cc		Loading commit data...
gc-invoker-unittest.cc		Loading commit data...
heap-growing-unittest.cc		Loading commit data...
heap-object-header-unittest.cc		Loading commit data...
heap-page-unittest.cc		Loading commit data...
heap-statistics-collector-unittest.cc		Loading commit data...
heap-unittest.cc		Loading commit data...
incremental-marking-schedule-unittest.cc		Loading commit data...
logging-unittest.cc		Loading commit data...
marker-unittest.cc		Loading commit data...
marking-verifier-unittest.cc		Loading commit data...
marking-visitor-unittest.cc		Loading commit data...
member-unittest.cc		Loading commit data...
metric-recorder-unittest.cc		Loading commit data...
minor-gc-unittest.cc		Loading commit data...
name-trait-unittest.cc		Loading commit data...
object-size-trait-unittest.cc		Loading commit data...
object-start-bitmap-unittest.cc		Loading commit data...
page-memory-unittest.cc		Loading commit data...
persistent-family-unittest.cc		Loading commit data...
prefinalizer-unittest.cc		Loading commit data...
run-all-unittests.cc		Loading commit data...
sanitizer-unittest.cc		Loading commit data...
source-location-unittest.cc		Loading commit data...
stack-unittest.cc		Loading commit data...
stats-collector-scopes-unittest.cc		Loading commit data...
stats-collector-unittest.cc		Loading commit data...
sweeper-unittest.cc		Loading commit data...
test-platform.cc		Loading commit data...
test-platform.h		Loading commit data...
testing-unittest.cc		Loading commit data...
tests.cc		Loading commit data...
tests.h		Loading commit data...
visitor-unittest.cc		Loading commit data...
weak-container-unittest.cc		Loading commit data...
workloads-unittest.cc		Loading commit data...
write-barrier-unittest.cc		Loading commit data...