[JSC] Grown region of WasmTable should be initialized with null
authorysuzuki@apple.com <ysuzuki@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sun, 16 Jun 2019 22:06:29 +0000 (22:06 +0000)
committerysuzuki@apple.com <ysuzuki@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sun, 16 Jun 2019 22:06:29 +0000 (22:06 +0000)
commit3a5d29e82fe1c58ba45d8b1faced6043d4ea7194
tree32fff3abb6bcc5847ef1b2d816267187c96bfbf6
parent5709ebb754b5cd55b1ae88ebfc34fee5ffaadb06
[JSC] Grown region of WasmTable should be initialized with null
https://bugs.webkit.org/show_bug.cgi?id=198903

Reviewed by Saam Barati.

JSTests:

* wasm/stress/wasm-table-grow-initialize.js: Added.
(shouldBe):

Source/JavaScriptCore:

Grown region of Wasmtable is now empty. We should initialize it with null.
We also rename Wasm::Table::visitChildren to Wasm::Table::visitAggregate to
align to the naming convention.

* wasm/WasmTable.cpp:
(JSC::Wasm::Table::grow):
(JSC::Wasm::Table::visitAggregate):
(JSC::Wasm::Table::visitChildren): Deleted.
* wasm/WasmTable.h:
* wasm/js/JSWebAssemblyTable.cpp:
(JSC::JSWebAssemblyTable::visitChildren):

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@246487 268f45cc-cd09-0410-ab3c-d52691b4dbfc
JSTests/ChangeLog
JSTests/wasm/stress/wasm-table-grow-initialize.js [new file with mode: 0644]
Source/JavaScriptCore/ChangeLog
Source/JavaScriptCore/wasm/WasmTable.cpp
Source/JavaScriptCore/wasm/WasmTable.h
Source/JavaScriptCore/wasm/js/JSWebAssemblyTable.cpp