| commit | 2837cb387b4cd3ef42bfd4da6712137fd3837db6 | [log] [tgz] |
|---|---|---|
| author | ofrobots <ofrobots@google.com> | Wed Apr 13 15:11:02 2016 |
| committer | Commit bot <commit-bot@chromium.org> | Wed Apr 13 15:11:21 2016 |
| tree | bab1758a5f431668a0a0f53c0102f724fc3c283c | |
| parent | 98401b843eea49293522dc9c6640b1d9baf66b85 [diff] |
disallow left-trim fast path when sampling heap profiler is active Left trimming assumes that nobody other than the JSArray has a reference to the backing store. Sampling heap profiler may profile the backing store and keep a reference too it. This reference was never updated on a left-trim, causing a crash. R=alph@chromium.org, hpayer@chromium.org, mattloring@google.com BUG= Review URL: https://codereview.chromium.org/1885723002 Cr-Commit-Position: refs/heads/master@{#35449}
V8 is Google's open source JavaScript engine.
V8 implements ECMAScript as specified in ECMA-262.
V8 is written in C++ and is used in Google Chrome, the open source browser from Google.
V8 can run standalone, or can be embedded into any C++ application.
V8 Project page: https://github.com/v8/v8/wiki
Checkout depot tools, and run
fetch v8
This will checkout V8 into the directory v8 and fetch all of its dependencies. To stay up to date, run
git pull origin
gclient sync
For fetching all branches, add the following into your remote configuration in .git/config:
fetch = +refs/branch-heads/*:refs/remotes/branch-heads/*
fetch = +refs/tags/*:refs/tags/*
Please follow the instructions mentioned on the V8 wiki.