Use the correct MaxOffsetGuardLimit in codegen and masm
Categories
(Core :: JavaScript: WebAssembly, defect, P3)
Tracking
()
Tracking | Status | |
---|---|---|
firefox85 | --- | fixed |
People
(Reporter: lth, Assigned: lth)
References
Details
Attachments
(1 file)
The MaxOffsetGuardLimit depends not only on whether huge memory support is compiled-in, but also on whether huge memory has been disabled at run-time due to a scarcity of VM space. In codegen and masm we assert against the constant MaxOffsetGuardLimit, but this value will be too large if huge memory is present but disabled, thus rendering the asserts ineffective. Instead, we need to use the correct, computed value.
Assignee | ||
Comment 1•4 years ago
|
||
On large-memory systems when we run with large memory disabled (due to
VM limitations usually), the offset guard limit is not the normal 2^31
but the smaller 2^16, and codegen and masm should use the correct
computed value when asserting that an offset in an access is smaller
than the limit. This requires the computed value to be passed into
the masm and stored there, whence it can be read by codegen and masm
routines.
Depends on D98855
Updated•4 years ago
|
Comment 3•4 years ago
|
||
bugherder |
Description
•