[v8-dev] Re: Questions about heap verify

Tue, 10 Aug 2021 23:40:09 -0700 

sorry, the v8 version is 7.5

and I found that immovable code was allocated in large object space.   but 
the crash was still Incomprehensible.   

On Wednesday, August 11, 2021 at 11:32:20 AM UTC+8 孙志朋 wrote:

> v8 version :7.2
>
> I have add some checks  in Heap::CollectGarbage, 
> code snippet:
> -----------------------------------------
> OptionalTimedHistogramScope histogram_timer_priority_scope(
>           gc_type_priority_timer, isolate_, mode);
>
>       VerifyPointersVisitor no_dirty_regions_visitor0(this);  // new added0
>       code_space_->Verify(isolate(), &no_dirty_regions_visitor0); // new 
> added1
>
>       code_lo_space_->Verify(isolate());       // new added2
>       next_gc_likely_to_collect_more =
>           PerformGarbageCollection(collector, gc_callback_flags);
>       if (collector == MARK_COMPACTOR || collector == SCAVENGER) {
>         tracer()->RecordGCPhasesHistograms(gc_type_timer);
>       }
>       VerifyPointersVisitor no_dirty_regions_visitor1(this);     // new 
> added3
>       code_space_->Verify(isolate(), &no_dirty_regions_visitor1);// new 
> added4
>
>       code_lo_space_->Verify(isolate());// new added5
>
> -----------------------------------------
>
>
> with this change, my application may crash at "new added5".   
> crash reason : the code object's have wrong embeded object.  
> code object print:
> -------------------------
> 2 0x9f302001: [Code]
>   3  - map: 0xac100551 <Map>
>   4 kind = STUB
>   5 compiler = unknown
>   6 address = 0x9eebbf80
>   7
>   8 Instructions (size = 1272)
>   9 0x9f302040     0  e30ec5ec       movw ip, #58860             ;; 
> object: ì
>  10
>  11                                                              ;; 
> object: ì
>  12
>  13                                                              ;; 
> object: ì
>  14
>  15 0x9f302044     4  e34ac94a       movt ip, #43338             ;; wasm 
> stub call
> -------------------------
> and what's the most  strange thing was we never allocate an large code 
> object.  
> why the code_lo_space_'s verify can cause an error ?
>

-- 
-- 
v8-dev mailing list
v8-dev@googlegroups.com
http://groups.google.com/group/v8-dev
--- 
You received this message because you are subscribed to the Google Groups 
"v8-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to v8-dev+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/v8-dev/669db8a8-e43c-4879-ba12-071dd3dd06acn%40googlegroups.com.

Reply via email to