c560e1f9b8
We could end up in a baseline entry trampoline without having baseline code, because of an unhandled interaction in the debugger (discarding baseline code) and the deoptimizer. Bug: chromium:1199681 Change-Id: Ia33bb4d64903dd989728465b3d83a88b84597a8f Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/2843820 Reviewed-by: Toon Verwaest <verwaest@chromium.org> Commit-Queue: Patrick Thier <pthier@chromium.org> Cr-Commit-Position: refs/heads/master@{#74153}
53 lines
1.0 KiB
JavaScript
53 lines
1.0 KiB
JavaScript
// Copyright 2021 the V8 project authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style license that can be
|
|
// found in the LICENSE file.
|
|
|
|
// Flags: --sparkplug --allow-natives-syntax
|
|
|
|
function f() {
|
|
debugger;
|
|
return 1;
|
|
}
|
|
|
|
function g() {
|
|
return f(); // Break
|
|
}
|
|
|
|
function h() {
|
|
return g();
|
|
}
|
|
|
|
// Ensure FeedbackVector to consider f for inlining.
|
|
%EnsureFeedbackVectorForFunction(f);
|
|
%CompileBaseline(g);
|
|
|
|
%PrepareFunctionForOptimization(h);
|
|
h();
|
|
h();
|
|
|
|
var Debug = debug.Debug;
|
|
var step_count = 0;
|
|
var exception = null;
|
|
|
|
function listener(event, exec_state, event_data, data) {
|
|
if (event != Debug.DebugEvent.Break) return;
|
|
try {
|
|
if (step_count == 0) {
|
|
exec_state.prepareStep(Debug.StepAction.StepOut);
|
|
} else {
|
|
assertTrue(exec_state.frame().sourceLineText().includes('Break'));
|
|
}
|
|
step_count++;
|
|
} catch (e) {
|
|
exception = e;
|
|
print(e);
|
|
}
|
|
}
|
|
|
|
Debug.setListener(listener);
|
|
%OptimizeFunctionOnNextCall(h);
|
|
h();
|
|
Debug.setListener(null);
|
|
assertNull(exception);
|
|
assertEquals(2, step_count);
|