Commits · 0a8bccfd7bc0e362f47096276c41bf90e916b55d · Linshizhi / V8

27 Sep, 2021 18 commits

[cleanup] Remove variable shadowing in wasm-interpreter.cc · 0a8bccfd

Andreas Haas authored Sep 24, 2021

R=thibaudm@chromium.org

Bug: v8:12244
Change-Id: I9012ec21f4dbf2c644b0cb3964e545bfb2b2112c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182442Reviewed-by: Thibaud Michaud <thibaudm@chromium.org>
Commit-Queue: Andreas Haas <ahaas@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77092}

0a8bccfd

[bazel] Introduce ObjectVisitorWithCageBases · 311a4aea

Victor Gomes authored Sep 27, 2021

No-Try: true
Bug: v8:11880
Change-Id: I8d15b1974e965a31b822308879d78461bf1a141f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3186442
Auto-Submit: Victor Gomes <victorgomes@chromium.org>
Reviewed-by: Igor Sheludko <ishell@chromium.org>
Commit-Queue: Igor Sheludko <ishell@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77091}

311a4aea

[mips][loong64][regexp] Fix regexp test failures · f5e48df1

Zhao Jiazhong authored Sep 27, 2021

Port commit bba7c09a
  [regexp] Allow reentrant irregexp execution

Port commit 4bbfc4b7
  [regexp] Remove the `stack` parameter from regexp matchers

Port commit c1700c56
  [regexp] Fix UAF in RegExpMacroAssembler

Bug: v8:11382
Change-Id: Ie2e95d7b19ecbd740e8d8a4130c725416abc114a
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3185562Reviewed-by: Liu yu <liuyu@loongson.cn>
Commit-Queue: Zhao Jiazhong <zhaojiazhong-hf@loongson.cn>
Cr-Commit-Position: refs/heads/main@{#77090}

f5e48df1

[arm][arm64] Activate Argument Count Consistency · ea6dd0f4

Patrick Thier authored Sep 27, 2021

Activate argument count consistency (receiver is always included in
JS argument count) for arm and arm64.

Bug: v8:11112
Change-Id: I4b019721422a0a4653d59e81cde2f7d57708e625
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3186436
Commit-Queue: Victor Gomes <victorgomes@chromium.org>
Auto-Submit: Patrick Thier <pthier@chromium.org>
Reviewed-by: Victor Gomes <victorgomes@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77089}

ea6dd0f4

[ext-code-space] Introduce ObjectVisitorWithCageBases · 3ac59282

Igor Sheludko authored Sep 27, 2021

... an ObjectVisitor subclass that takes care of caching values of
both the main pointer compression cage base and code cage base
(when the external code space is enabled).

Drive-by: this CL also changes signature of
RelocInfo::target_object_no_host(...) to accept PtrComprCageBase
instead of Isolate*.

Bug: v8:11880
Change-Id: I3fbb382e0a0170e28542bc495d8fecfd24da8a07
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182231
Commit-Queue: Igor Sheludko <ishell@chromium.org>
Reviewed-by: Camillo Bruni <cbruni@chromium.org>
Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77088}

3ac59282

cppgc: Support virtual prefinalizers · 14cc79cc

Omer Katz authored Sep 24, 2021

Bug: chromium:1252634, chromium:1056170
Change-Id: Ifdecca29dbff4ed3d6ee2acd547a20add482d59f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183167Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Commit-Queue: Omer Katz <omerkatz@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77087}

14cc79cc

[cleanup] Remove variable shadowing in asm-parser.cc · 6af3eb8f

Andreas Haas authored Sep 24, 2021

R=clemensb@chromium.org

Bug: v8:12244
Change-Id: I988ebec99cb791b21c46acf6de961627406d70ef
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182443Reviewed-by: Clemens Backes <clemensb@chromium.org>
Commit-Queue: Andreas Haas <ahaas@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77086}

6af3eb8f

[cleanup] Fix -Wshadow in src/base/ and src/d8/ · c016398d

Jakob Kummerow authored Sep 24, 2021

Bug: v8:12244,v8:12245
Change-Id: I718eea6eb065b2775186322b888f805423d6be1e
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183161
Auto-Submit: Jakob Kummerow <jkummerow@chromium.org>
Commit-Queue: Clemens Backes <clemensb@chromium.org>
Reviewed-by: Clemens Backes <clemensb@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77085}

c016398d

[deserialization] Remove unnecessarily limit on buffer size · 422dc378

Ray Wang authored Sep 27, 2021

1. Now there is no serializer/deserializer-specific buffer size limit.
2. Update AUTHORS

Ref: https://github.com/nodejs/node/issues/40059

Change-Id: Iad4c6d8f68a91ef21d3c404fb7945949e69ad9e2
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3170411Reviewed-by: Jakob Kummerow <jkummerow@chromium.org>
Reviewed-by: Clemens Backes <clemensb@chromium.org>
Commit-Queue: Jakob Kummerow <jkummerow@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77084}

422dc378

[cleanup] Fix Wshadow warnings in cctests · bd87901c

Marja Hölttä authored Sep 27, 2021

Bug: v8:12244, v8:12245
Change-Id: I5745daaa18dba962b45a05d1064face610d05e2b
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3185460Reviewed-by: Patrick Thier <pthier@chromium.org>
Commit-Queue: Marja Hölttä <marja@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77083}

bd87901c

[regexp] Fix UAF in RegExpMacroAssembler · c1700c56

Jakob Gruber authored Sep 27, 2021

.. by turning `masm_` into a unique_ptr s.t. it's freed after the
NoRootArrayScope which references it.

Fixed: chromium:1252620
Change-Id: I24580c5a96d76a973b2b083e7a76b95f93bb6068
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3185459
Commit-Queue: Jakob Gruber <jgruber@chromium.org>
Commit-Queue: Patrick Thier <pthier@chromium.org>
Auto-Submit: Jakob Gruber <jgruber@chromium.org>
Reviewed-by: Patrick Thier <pthier@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77082}

c1700c56

[cleanup] Fix -Wshadow in src/ic/ · ae16d614

Jakob Kummerow authored Sep 24, 2021

Bug: v8:12244,v8:12245
Change-Id: Ic09dcc473b9e853490a54b63f08e91e8f7b2d69c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183164
Auto-Submit: Jakob Kummerow <jkummerow@chromium.org>
Commit-Queue: Igor Sheludko <ishell@chromium.org>
Reviewed-by: Igor Sheludko <ishell@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77081}

ae16d614

[test][cleanup] Fix -Wshadow warnings in unittests · dba4f451

Jakob Kummerow authored Sep 24, 2021

Bug: v8:12244,v8:12245
Change-Id: I0bcc6dcc148138a6c3b2c87fd8819a9e809e5668
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182230
Auto-Submit: Jakob Kummerow <jkummerow@chromium.org>
Commit-Queue: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Michael Achenbach <machenbach@chromium.org>
Reviewed-by: Andreas Haas <ahaas@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77080}

dba4f451

[runtime] Fix object cloning with spreads · 732d09a6

Patrick Thier authored Sep 27, 2021

When cloning objects using spread and update properties (e.g.
obj = {...o, x: 0}), we wrongly used the setter for the update argument
if one was set.
This CL changes the behaviour such that all arguments following the
spread are treated as dynamic arguments.

Bug: chromium:1251366
Change-Id: I76a6d02606dca0faa0a256f465834d85d3df4f6f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3178969
Commit-Queue: Patrick Thier <pthier@chromium.org>
Reviewed-by: Shu-yu Guo <syg@chromium.org>
Reviewed-by: Igor Sheludko <ishell@chromium.org>
Reviewed-by: Marja Hölttä <marja@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77079}

732d09a6

[cleanup] Fix -Wshadow in src/numbers/ · ecfd167d

Jakob Kummerow authored Sep 24, 2021

Bug: v8:12244,v8:12245
Change-Id: Ida2dc91b10f708ded9cb71d140bf26673b1442bc
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183166
Auto-Submit: Jakob Kummerow <jkummerow@chromium.org>
Commit-Queue: Jakob Gruber <jgruber@chromium.org>
Reviewed-by: Jakob Gruber <jgruber@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77078}

ecfd167d

[rab/gsab] TA.p.{entries,keys,values}: Support RAB / GSAB · 3530299c

Marja Hölttä authored Sep 27, 2021

Bug: v8:11111
Change-Id: I10409756af4ba1a04c1bca21cbdab375003a7f42
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3177225
Commit-Queue: Marja Hölttä <marja@chromium.org>
Reviewed-by: Shu-yu Guo <syg@chromium.org>
Reviewed-by: Jakob Kummerow <jkummerow@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77077}

3530299c

[heap] Make GarbageCollector an enum class · 9899864a

Dominik Inführ authored Sep 27, 2021

GCTracer::Scope and GCTracer::Event shadow GarbageCollector's
MARK_COMPACTOR, etc.

Bug: v8:12244, v8:12245
Change-Id: Ibe60fb03ba35c9a9e057cadc7b8f557d9db9437f
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182226
Auto-Submit: Dominik Inführ <dinfuehr@chromium.org>
Commit-Queue: Dominik Inführ <dinfuehr@chromium.org>
Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77076}

9899864a

Update V8 DEPS. · bf17ee0a

v8-ci-autoroll-builder authored Sep 27, 2021

Rolling v8/build: https://chromium.googlesource.com/chromium/src/build/+log/a169c19..6476f40

TBR=v8-waterfall-sheriff@grotations.appspotmail.com,mtv-sf-v8-sheriff@grotations.appspotmail.com

Change-Id: I7f9fa264560e7a5128358e1b0218cb6763f9c12c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3184927Reviewed-by: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Commit-Queue: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Cr-Commit-Position: refs/heads/main@{#77075}

bf17ee0a

26 Sep, 2021 5 commits

[mips][loong64][compiler] Teach InstructionScheduler about protected memory accesses · 65d9c441

Zhao Jiazhong authored Sep 26, 2021

Port commit e301d71f

Change-Id: I58bb66e86629b60bcb75b3cec3e293d75acc5f5c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3184290
Auto-Submit: Zhao Jiazhong <zhaojiazhong-hf@loongson.cn>
Reviewed-by: Liu yu <liuyu@loongson.cn>
Commit-Queue: Liu yu <liuyu@loongson.cn>
Cr-Commit-Position: refs/heads/main@{#77074}

65d9c441

Update V8 DEPS. · fc4c843b

v8-ci-autoroll-builder authored Sep 26, 2021

Rolling v8/build: https://chromium.googlesource.com/chromium/src/build/+log/32fc064..a169c19

Rolling v8/third_party/aemu-linux-x64: y7X4kitLsRPSZc6ksrVllZRbH7mvEXlq9-4wOg7zR5cC..6Vr4alb5803W2n5PbA5ZLwCcJznKdmFX1pDoy_5hfOAC

Rolling v8/tools/clang: https://chromium.googlesource.com/chromium/src/tools/clang/+log/77d41f0..efd7c81

TBR=v8-waterfall-sheriff@grotations.appspotmail.com,mtv-sf-v8-sheriff@grotations.appspotmail.com

Change-Id: If098b284229ccbc2cabf93026ea8fb957ed779d0
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183003Reviewed-by: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Commit-Queue: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Cr-Commit-Position: refs/heads/main@{#77073}

fc4c843b

[riscv64] Implement VSADDU · 2ea2ea77

Lu Yahan authored Sep 23, 2021

Change-Id: Ifa2236b650f78ad851930e69e0387d8952f197c1
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3178142
Commit-Queue: Yahan Lu <yahan@iscas.ac.cn>
Reviewed-by: Brice Dobry <brice.dobry@futurewei.com>
Cr-Commit-Position: refs/heads/main@{#77072}

2ea2ea77

[riscv64] Fix error in assembler atomic · 18589f30

Lu Yahan authored Sep 22, 2021

Change-Id: I71bc9fd393d2f53c982b85cd1cf6729e56a62f2d
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3174619Reviewed-by: Ji Qiu <qiuji@iscas.ac.cn>
Reviewed-by: Hannes Payer <hpayer@chromium.org>
Commit-Queue: Yahan Lu <yahan@iscas.ac.cn>
Cr-Commit-Position: refs/heads/main@{#77071}

18589f30

[x64] Implement 256-bit assembly for vroundps/pd, vpblendw, vpalignr · dd1e168c

jing.bao authored Sep 23, 2021

Bug: v8:12228
Change-Id: Ifd813e6bff92e6a08cc41eb8f5b1848abe849cd3
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3178540Reviewed-by: Zhi An Ng <zhin@chromium.org>
Commit-Queue: Jing Bao <jing.bao@intel.com>
Cr-Commit-Position: refs/heads/main@{#77070}

dd1e168c

25 Sep, 2021 2 commits

Use relaxed memcpy for TypedArray#slice when backed by SABs · ce23293e

Shu-yu Guo authored Sep 25, 2021

Bug: chromium:1246752
Change-Id: If305d80e4f727e95dffb40a9c4fc551ce253b948
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183729
Commit-Queue: Shu-yu Guo <syg@chromium.org>
Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77069}

ce23293e

Update V8 DEPS. · 646f1a67

v8-ci-autoroll-builder authored Sep 25, 2021

Rolling v8/build: https://chromium.googlesource.com/chromium/src/build/+log/c4acc0e..32fc064

Rolling v8/buildtools/linux64: git_revision:69ec4fca1fa69ddadae13f9e6b7507efa0675263..git_revision:de86ec4176235871a7cb335756987e41246dae4a

Rolling v8/third_party/abseil-cpp: https://chromium.googlesource.com/chromium/src/third_party/abseil-cpp/+log/4402489..a46a633

Rolling v8/third_party/aemu-linux-x64: 35rwW0ni0eziJ2doq4bSBym86edze8jHjf2fyZhjl8kC..y7X4kitLsRPSZc6ksrVllZRbH7mvEXlq9-4wOg7zR5cC

Rolling v8/third_party/catapult: https://chromium.googlesource.com/catapult/+log/3d49e1c..444aba8

Rolling v8/third_party/depot_tools: https://chromium.googlesource.com/chromium/tools/depot_tools/+log/a6baf70..f35d350

Rolling v8/third_party/googletest/src: https://chromium.googlesource.com/external/github.com/google/googletest/+log/159c9ad..e4717df

Rolling v8/third_party/zlib: https://chromium.googlesource.com/chromium/src/third_party/zlib/+log/77c1323..dfa96e8

Rolling v8/tools/luci-go: git_revision:028cd41e0f4b2bec99d94c780caf2f978e09b182..git_revision:e9585787c808e21d6eaa2c7d7a928dbc19999172

TBR=v8-waterfall-sheriff@grotations.appspotmail.com,mtv-sf-v8-sheriff@grotations.appspotmail.com

Change-Id: I4ea1bfbd22da816afaf413bd6e86c63aa91d4a39
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182608Reviewed-by: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Commit-Queue: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com>
Cr-Commit-Position: refs/heads/main@{#77068}

646f1a67

24 Sep, 2021 15 commits

cppgc: Fix gcc compilation error · 85372591

Milad Fa authored Sep 24, 2021

After https://crrev.com/c/3182223 gcc might throw the following
error during compilation:
```
error: variable 'is_on_heap' set but not used
```

Bug: v8:11749
Change-Id: I31a2bef4adb1bfcb2b35115b4dea6df80f84f681
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183165Reviewed-by: Omer Katz <omerkatz@chromium.org>
Commit-Queue: Milad Fa <mfarazma@redhat.com>
Cr-Commit-Position: refs/heads/main@{#77067}

85372591

[cleanup] Fix -Wshadow warnings in samples/shell · c7978c69

Ng Zhi An authored Sep 24, 2021

Bug: v8:12244
Change-Id: I463eceb5b90f4b5b0efddcad7b1734e14d36944d
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183526Reviewed-by: Adam Klein <adamk@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77066}

c7978c69

[cleanup] Fix -Wshadow warnings in cctest/wasm · 4c8cc64e

Ng Zhi An authored Sep 24, 2021

Drive-by clean-up to move ADD_CODE, which is defined the same way in
multiple files, into wasm-run-utils.h.

R=adamk@chromium.org

Bug: v8:12244
Change-Id: I61d54cf2c589c3f8b69950fba097d8754bb99c5a
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183524Reviewed-by: Adam Klein <adamk@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77065}

4c8cc64e

[cleanup][ia32][x64] Fix -Wshadow warnings in assembler · c9ddba2b

Ng Zhi An authored Sep 24, 2021

Rename the kNone enum in SimdPrefix to kNoPrefix

R=adamk@chromium.org

Bug: v8:12244
Change-Id: I8604dfadea24ce5f00c710de4d3c38da9d8a27a7
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182886Reviewed-by: Adam Klein <adamk@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77064}

c9ddba2b

cppgc: Fix check for assignments in prefinalizers · 960a440d

Omer Katz authored Sep 24, 2021

Off heap members are "safe" to reference dead objects since they are not
connected to the object graph and do not ressurect the object.

This is needed becuase Members are used as temporary on stack variables
in Blink, e.g. when querying if a HeapHashMap contains a key.

Bug: v8:11749
Change-Id: I7ab2559d00c366480a3efbc0512bb1d1f63b64e7
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182223Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
Commit-Queue: Omer Katz <omerkatz@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77063}

960a440d

[cleanup] Fix -Wshadow in src/execution/ · f1365e60

Jakob Kummerow authored Sep 24, 2021

Bug: v8:12244,v8:12245
Change-Id: I3d9223f32bdc0d1cf7e5083996bc5707ab361e52
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183162
Commit-Queue: Jakob Kummerow <jkummerow@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Auto-Submit: Jakob Kummerow <jkummerow@chromium.org>
Reviewed-by: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77062}

f1365e60

[cleanup] Fix -Wshadow warnings in test-wasm-stack · 5f38cf00

Ng Zhi An authored Sep 24, 2021

R=adamk@chromium.org

Bug: v8:12244
Change-Id: Ie925797bda5de937afaf345e3115e18c14a9e06d
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182882Reviewed-by: Adam Klein <adamk@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77061}

5f38cf00

[cleanup] Fix -Wshadow warnings in wasm-simd-utils · 7c2707ff

Ng Zhi An authored Sep 24, 2021

R=adamk@chromium.org

Bug: v8:12244
Change-Id: I7d4bde96822fc238a04c76b848f2c55e93375c3e
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182880Reviewed-by: Adam Klein <adamk@chromium.org>
Commit-Queue: Zhi An Ng <zhin@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77060}

7c2707ff

[test262] Roll test262 · 31f73601

Shu-yu Guo authored Sep 24, 2021

https://chromium.googlesource.com/external/github.com/tc39/test262/+log/650e7ad..50dd431

Bug: v8:7834, v8:12240
Change-Id: I017d7a60a38c8935d279040eb5f4bdadda22317e
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3182892
Commit-Queue: Shu-yu Guo <syg@chromium.org>
Commit-Queue: Adam Klein <adamk@chromium.org>
Auto-Submit: Shu-yu Guo <syg@chromium.org>
Reviewed-by: Adam Klein <adamk@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77059}

31f73601

ppc/s390: [wasm] Interpret table.grow result as 32 bit · 647ef1a7

Junliang Yan authored Sep 24, 2021

Port a0ace8a8

Original Message:

  In Liftoff, the result of table.grow was smi-untagged and sign-extended
  to a ptr-sized value. However the result is typed as i32, so the upper
  32 bits should be cleared on 64 bit platforms. In particular this is
  observable when the value is used as an index for a memory operand,
  which leads to the repro in the attached issue.

  Match the TF behavior by untagging the value as a 32-bit int.

Change-Id: I73ee1d29b830eae1fd4e680634b78317b04c069c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3183160Reviewed-by: Milad Fa <mfarazma@redhat.com>
Commit-Queue: Junliang Yan <junyan@redhat.com>
Cr-Commit-Position: refs/heads/main@{#77058}

647ef1a7

[assembler][x64] Reduce number of templates · f2ef73d2

Clemens Backes authored Sep 24, 2021

Many instructions are declared using DECLARE_INSTRUCTION (via
ASSEMBLER_INSTRUCTION_LIST), and each of them currently defined eight
templates for different sizes and different number of arguments.
This CL reduces this to three variadic templates per instruction.

R=zhin@chromium.org

Bug: v8:12244
Change-Id: Ibd75c55e757f917eb1e9b54c0a1a79632a1ba6d8
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3181103Reviewed-by: Zhi An Ng <zhin@chromium.org>
Commit-Queue: Clemens Backes <clemensb@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77057}

f2ef73d2

[wasm][test] Cleanup macros · 156b2409

Clemens Backes authored Sep 23, 2021

Some macros are redundant or unused.
- WASM_RETURN1 is identical to WASM_RETURN.
- WASM_RETURNN has an unused {count} parameter, and is otherwise
  identical to WASM_RETURN.
- WASM_IFB is identical to WASM_IF.
- WASM_CASE and WASM_CASE_BR are unused.
- WASM_BR_TABLEV is unused.

R=thibaudm@chromium.org

Bug: v8:12244
Change-Id: Ie7be00351f2dfe38d6e84d80e157a85df37233a9
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3178860Reviewed-by: Thibaud Michaud <thibaudm@chromium.org>
Commit-Queue: Clemens Backes <clemensb@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77056}

156b2409

[cleanup] Fix shadowed variables in runtime-wasm.cc · 22713850

Andreas Haas authored Sep 24, 2021

R=clemensb@chromium.org

Bug: v8:12244
Change-Id: I9d633fd3c79703ee65dc2f57b556fde4853cc35c
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3181105Reviewed-by: Clemens Backes <clemensb@chromium.org>
Commit-Queue: Andreas Haas <ahaas@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77055}

22713850

[wasm][cleanup] Use range-based signature iteration · 2bde2cc7

Clemens Backes authored Sep 24, 2021

Instead of hand-coding a loop, use range-based for loops for iterating
signatures. Similarly, {std::transform} can replace a hand-coded loop
for constructing values from return types.

R=thibaudm@chromium.org

Bug: v8:12244
Change-Id: I467656650b731cbcb9ea57c54f5311885bb158dd
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3181520Reviewed-by: Thibaud Michaud <thibaudm@chromium.org>
Commit-Queue: Clemens Backes <clemensb@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77054}

2bde2cc7

[cleanup] Refactor WebAssemblyInstance() to avoid variable shadowing · c5312996

Andreas Haas authored Sep 24, 2021

R=jkummerow@chromium.org

Bug: v8:12244
Change-Id: I6264a91caa1f961ea1fa27c372c53240d969e91a
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3181527
Commit-Queue: Andreas Haas <ahaas@chromium.org>
Reviewed-by: Jakob Kummerow <jkummerow@chromium.org>
Cr-Commit-Position: refs/heads/main@{#77053}

c5312996