[v8-dev] [v8] r12095 committed - Fix off-by-one-pointer error in an ASSERT inside DeferredHandles::Iter...

[codesite-noreply]

Revision: 12095
Author:   san...@chromium.org
Date:     Mon Jul 16 06:00:57 2012
Log:      Fix off-by-one-pointer error in an ASSERT inside  
DeferredHandles::Iterate.

This will crash v8 in debug mode if the compilation prologue allocates
an exact multiple of kHandleBlockSize handles.

BUG=
TEST=

Review URL: https://chromiumcodereview.appspot.com/10689191
http://code.google.com/p/v8/source/detail?r=12095

Modified:
 /branches/bleeding_edge/src/api.cc

=======================================
--- /branches/bleeding_edge/src/api.cc  Fri Jul 13 09:33:27 2012
+++ /branches/bleeding_edge/src/api.cc  Mon Jul 16 06:00:57 2012
@@ -6514,7 +6514,7 @@
   ASSERT(!blocks_.is_empty());

   ASSERT((first_block_limit_ >= blocks_.first()) &&
-         (first_block_limit_ < &(blocks_.first())[kHandleBlockSize]));
+         (first_block_limit_ <= &(blocks_.first())[kHandleBlockSize]));

   v->VisitPointers(blocks_.first(), first_block_limit_);

--
v8-dev mailing list
v8-dev@googlegroups.com
http://groups.google.com/group/v8-dev