Mercurial > mozreview > gecko / changeset / 2e61e1c039c5f6448034c2437f2d44650d5351a5
summary | shortlog | changelog | pushlog | graph | tags | bookmarks | branches | files | changeset | raw | zip | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Bug 1052582 Part 2 - Create and use a separate malloc arena for ArrayBuffer contents. r?sfink draft
authorMatt Howell <mhowell@mozilla.com>
Wed, 23 May 2018 14:57:42 -0700
changeset 816166 2e61e1c039c5f6448034c2437f2d44650d5351a5
parent 816165 463609da4378dc2fa1dd93187c1600c55783594c
push id115761
push usermhowell@mozilla.com
push dateTue, 10 Jul 2018 16:58:42 +0000
reviewerssfink
bugs1052582
milestone63.0a1
Bug 1052582 Part 2 - Create and use a separate malloc arena for ArrayBuffer contents. r?sfink MozReview-Commit-ID: 7IlFvr3hoA8
dom/file/FileReaderSync.cpp file | annotate | diff | comparison | revisions
dom/network/TCPSocketChild.cpp file | annotate | diff | comparison | revisions
js/public/Utility.h file | annotate | diff | comparison | revisions
js/src/jsutil.cpp file | annotate | diff | comparison | revisions
js/src/vm/ArrayBufferObject.cpp file | annotate | diff | comparison | revisions 
--- a/dom/file/FileReaderSync.cpp
+++ b/dom/file/FileReaderSync.cpp
@@ -57,17 +57,18 @@ FileReaderSync::ReadAsArrayBuffer(JSCont
                                   JS::MutableHandle<JSObject*> aRetval,
                                   ErrorResult& aRv)
 {
   uint64_t blobSize = aBlob.GetSize(aRv);
   if (NS_WARN_IF(aRv.Failed())) {
     return;
   }
 
-  UniquePtr<char[], JS::FreePolicy> bufferData(js_pod_malloc<char>(blobSize));
+  UniquePtr<char[], JS::FreePolicy> bufferData(
+    js_pod_arena_malloc<char>(js::ArrayBufferContentsArena, blobSize));
   if (!bufferData) {
     aRv.Throw(NS_ERROR_OUT_OF_MEMORY);
     return;
   }
 
   nsCOMPtr<nsIInputStream> stream;
   aBlob.CreateInputStream(getter_AddRefs(stream), aRv);
   if (NS_WARN_IF(aRv.Failed())) {
--- a/dom/network/TCPSocketChild.cpp
+++ b/dom/network/TCPSocketChild.cpp
@@ -21,17 +21,18 @@ using mozilla::net::gNeckoChild;
 
 namespace IPC {
 
 bool
 DeserializeArrayBuffer(JSContext* cx,
                        const InfallibleTArray<uint8_t>& aBuffer,
                        JS::MutableHandle<JS::Value> aVal)
 {
-  mozilla::UniquePtr<uint8_t[], JS::FreePolicy> data(js_pod_malloc<uint8_t>(aBuffer.Length()));
+  mozilla::UniquePtr<uint8_t[], JS::FreePolicy> data(
+    js_pod_arena_malloc<uint8_t>(js::ArrayBufferContentsArena, aBuffer.Length()));
   if (!data)
       return false;
   memcpy(data.get(), aBuffer.Elements(), aBuffer.Length());
 
   JSObject* obj = JS_NewArrayBufferWithContents(cx, aBuffer.Length(), data.get());
   if (!obj)
       return false;
   // If JS_NewArrayBufferWithContents returns non-null, the ownership of
--- a/js/public/Utility.h
+++ b/js/public/Utility.h
@@ -370,16 +370,17 @@ struct MOZ_RAII JS_PUBLIC_DATA(AutoEnter
 
 } /* namespace js */
 
 // Malloc allocation.
 
 namespace js {
 
 extern JS_PUBLIC_DATA(arena_id_t) MallocArena;
+extern JS_PUBLIC_DATA(arena_id_t) ArrayBufferContentsArena;
 
 extern void InitMallocAllocator();
 extern void ShutDownMallocAllocator();
 
 } /* namespace js */
 
 static inline void* js_arena_malloc(arena_id_t arena, size_t bytes)
 {
--- a/js/src/jsutil.cpp
+++ b/js/src/jsutil.cpp
@@ -160,28 +160,31 @@ ResetSimulatedInterrupt()
     interruptCheckFailAlways = false;
 }
 
 } // namespace oom
 } // namespace js
 #endif // defined(DEBUG) || defined(JS_OOM_BREAKPOINT)
 
 JS_PUBLIC_DATA(arena_id_t) js::MallocArena;
+JS_PUBLIC_DATA(arena_id_t) js::ArrayBufferContentsArena;
 
 void
 js::InitMallocAllocator()
 {
     MallocArena = moz_create_arena();
+    ArrayBufferContentsArena = moz_create_arena();
 }
 
 void
 js::ShutDownMallocAllocator()
 {
     // Until Bug 1364359 is fixed it is unsafe to call moz_dispose_arena.
     // moz_dispose_arena(MallocArena);
+    // moz_dispose_arena(ArrayBufferContentsArena);
 }
 
 JS_PUBLIC_API(void)
 JS_Assert(const char* s, const char* file, int ln)
 {
     MOZ_ReportAssertionFailure(s, file, ln);
     MOZ_CRASH();
 }
--- a/js/src/vm/ArrayBufferObject.cpp
+++ b/js/src/vm/ArrayBufferObject.cpp
@@ -454,17 +454,18 @@ ArrayBufferObject::class_constructor(JSC
         return false;
     args.rval().setObject(*bufobj);
     return true;
 }
 
 static ArrayBufferObject::BufferContents
 AllocateArrayBufferContents(JSContext* cx, uint32_t nbytes)
 {
-    uint8_t* p = cx->zone()->pod_callocCanGC<uint8_t>(nbytes);
+    uint8_t* p = cx->zone()->pod_callocCanGC<uint8_t>(nbytes,
+                                                      js::ArrayBufferContentsArena);
     if (!p)
         ReportOutOfMemory(cx);
 
     return ArrayBufferObject::BufferContents::create<ArrayBufferObject::PLAIN>(p);
 }
 
 static void
 NoteViewBufferWasDetached(ArrayBufferViewObject* view,
gecko
Deployed from 4e825768105f at 2024-04-08T16:23:58Z.