Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-12-14 02:31:59 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Bug 673017 - Fix use of uninitialized data. r=wmccloskey.

Browse Source 
The chunk's bitmap was being cleared at the first GC cycle, but it could be
read before that. Clear it early to fix that.

--HG--
extra : rebase_source : 09b1fb28e8e03ca6798f767426e4b423eb716d4d
This commit is contained in:
Rafael Ávila de Espíndola 2011-08-29 13:56:58 -04:00
parent 5977e20a52
commit 0106f4f8e1
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
js/src/jsgc.cpp
View File

@ -339,10 +339,11 @@ Chunk::init(JSRuntime *rt)
for (size_t i = 0; i != JS_ARRAY_LENGTH(markingDelay); ++i)
markingDelay[i].init();
/*
* The rest of info fields is initailzied in PickChunk. We do not clear
* the mark bitmap as that is done at the start of the next GC.
*/
/* We clear the bitmap to guard against xpc_IsGrayGCThing being called on
uninitialized data, which would happen before the first GC cycle. */
bitmap.clear();
/* The rest of info fields are initialized in PickChunk. */
}
inline Chunk **