1. 15 Nov, 2016 16 commits
  2. 14 Nov, 2016 24 commits
    • ahaas's avatar
      [wasm] Reimplement function verification in the module decoder. · 1bde8304
      ahaas authored
      This CL adds the function verification option to the module decoder.
      Therefore we can remove the verification in wasm-module-runner.cc
      
      R=titzer@chromium.org
      
      Review-Url: https://codereview.chromium.org/2496203002
      Cr-Commit-Position: refs/heads/master@{#40977}
      1bde8304
    • caitp's avatar
      [builtins] Take fast path in Array.prototype.keys() only if length is an Smi · 2a350ed4
      caitp authored
      Do not take the fast path for Array.prototype.keys() if the array length is not
      guaranteed to be an Smi.
      
      BUG=660925, v8:5388
      R=bmeurer@chromium.org, mstarzinger@chromium.org
      
      Review-Url: https://codereview.chromium.org/2496323002
      Cr-Commit-Position: refs/heads/master@{#40976}
      2a350ed4
    • tebbi's avatar
      This CL enables precise source positions for all V8 compilers. It merges... · c3a6ca68
      tebbi authored
      This CL enables precise source positions for all V8 compilers. It merges compiler::SourcePosition and internal::SourcePosition to a single class used throughout the codebase. The new internal::SourcePosition instances store an id identifying an inlined function in addition to a script offset.
      SourcePosition::InliningId() refers to a the new table DeoptimizationInputData::InliningPositions(), which provides the following data for every inlining id:
       - The inlined SharedFunctionInfo as an offset into DeoptimizationInfo::LiteralArray
       - The SourcePosition of the inlining. Recursively, this yields the full inlining stack.
      Before the Code object is created, the same information can be found in CompilationInfo::inlined_functions().
      
      If SourcePosition::InliningId() is SourcePosition::kNotInlined, it refers to the outer (non-inlined) function.
      So every SourcePosition has full information about its inlining stack, as long as the corresponding Code object is known. The internal represenation of a source position is a positive 64bit integer.
      
      All compilers create now appropriate source positions for inlined functions. In the case of Turbofan, this required using AstGraphBuilderWithPositions for inlined functions too. So this class is now moved to a header file.
      
      At the moment, the additional information in source positions is only used in --trace-deopt and --code-comments. The profiler needs to be updated, at the moment it gets the correct script offsets from the deopt info, but the wrong script id from the reconstructed deopt stack, which can lead to wrong outputs. This should be resolved by making the profiler use the new inlining information for deopts.
      
      I activated the inlined deoptimization tests in test-cpu-profiler.cc for Turbofan, changing them to a case where the deopt stack and the inlining position agree. It is currently still broken for other cases.
      
      The following additional changes were necessary:
       - The source position table (internal::SourcePositionTableBuilder etc.) supports now 64bit source positions. Encoding source positions in a single 64bit int together with the difference encoding in the source position table results in very little overhead for the inlining id, since only 12% of the source positions in Octane have a changed inlining id.
       - The class HPositionInfo was effectively dead code and is now removed.
       - SourcePosition has new printing and information facilities, including computing a full inlining stack.
       - I had to rename compiler/source-position.{h,cc} to compiler/compiler-source-position-table.{h,cc} to avoid clashes with the new src/source-position.cc file.
       - I wrote the new wrapper PodArray for ByteArray. It is a template working with any POD-type. This is used in DeoptimizationInputData::InliningPositions().
       - I removed HInlinedFunctionInfo and HGraph::inlined_function_infos, because they were only used for the now obsolete Crankshaft inlining ids.
       - Crankshaft managed a list of inlined functions in Lithium: LChunk::inlined_functions. This is an analog structure to CompilationInfo::inlined_functions. So I removed LChunk::inlined_functions and made Crankshaft use CompilationInfo::inlined_functions instead, because this was necessary to register the offsets into the literal array in a uniform way. This is a safe change because LChunk::inlined_functions has no other uses and the functions in CompilationInfo::inlined_functions have a strictly longer lifespan, being created earlier (in Hydrogen already).
      
      BUG=v8:5432
      
      Review-Url: https://codereview.chromium.org/2451853002
      Cr-Commit-Position: refs/heads/master@{#40975}
      c3a6ca68
    • caitp's avatar
      [tests] skip es6/array-iterator-turbo on deopt_fuzzer · 372d905d
      caitp authored
      BUG=v8:5388
      R=bmeurer@chromium.org
      NOTRY=true
      
      Review-Url: https://codereview.chromium.org/2496063003
      Cr-Commit-Position: refs/heads/master@{#40974}
      372d905d
    • franzih's avatar
      [Interpreter] Add CallRuntime() for 5 arguments. · c0291e12
      franzih authored
      CodeAssembler::CallRuntime() with 5 arguments was declared but
      not implemented.
      
      BUG=
      
      Review-Url: https://codereview.chromium.org/2503523002
      Cr-Commit-Position: refs/heads/master@{#40973}
      c0291e12
    • ulan's avatar
      [heap] Use size_t for heap and space counters. · 71a7bca9
      ulan authored
      BUG=chromium:652721
      
      Review-Url: https://codereview.chromium.org/2490523003
      Cr-Commit-Position: refs/heads/master@{#40972}
      71a7bca9
    • clemensh's avatar
      [wasm] Make reported "lines" on stack frames 1-based · 0c6fa172
      clemensh authored
      In captured stack traces, all lines and columns must be 1-based.
      Even though this makes things a bit ugly, we have to comply also for
      wasm locations, where line and column encode function index and byte
      offset (both are originally 0-based).
      
      If we don't comply, the frontend might complain, as e.g. DevTools does.
      
      BUG=chromium:659715
      R=yangguo@chromium.org, kozyatinskiy@chromium.org
      CC=titzer@chromium.org
      
      Review-Url: https://codereview.chromium.org/2493943002
      Cr-Commit-Position: refs/heads/master@{#40971}
      0c6fa172
    • caitp's avatar
      [builtins] implement JSBuiltinReducer for ArrayIteratorNext() · 7f21e67b
      caitp authored
      Adds a protector cell to prevent inlining (which will likely lead to deopt
      loops) when a JSArrayIterator's array transitions from a fast JSArray to a
      slow JSArray (such as, when the array is touched during iteration in a way
      which triggers a map transition).
      
      Also adds TODO comments relating to the spec update proposed by Dan at
      https://github.com/tc39/ecma262/pull/724
      
      BUG=v8:5388
      R=bmeurer@chromium.org, mstarzinger@chromium.org
      TBR=hpayer@chromium.org, ulan@chromium.org
      
      Review-Url: https://codereview.chromium.org/2484003002
      Cr-Commit-Position: refs/heads/master@{#40970}
      7f21e67b
    • cbruni's avatar
      Add more JSArray verification for --verify-heap · 0909e5cc
      cbruni authored
      BUG=
      
      Review-Url: https://codereview.chromium.org/2431133003
      Cr-Commit-Position: refs/heads/master@{#40969}
      0909e5cc
    • jgruber's avatar
      Skip flaky debug-scopes test · 1c1edda7
      jgruber authored
      BUG=v8:5619,chromium:664490
      
      Review-Url: https://codereview.chromium.org/2503463002
      Cr-Commit-Position: refs/heads/master@{#40968}
      1c1edda7
    • leszeks's avatar
      [base] Probe hashmap using indices rather than pointers · 3abfc337
      leszeks authored
      Using indices rather than pointers to probe the hashmap lets us
      unconditionally mask the index to ensure it wraps around, rather than
      branching on the pointer value. This produces slightly more optimal
      code.
      
      Review-Url: https://codereview.chromium.org/2488423003
      Cr-Commit-Position: refs/heads/master@{#40967}
      3abfc337
    • neis's avatar
      [debug] Extend a test and fix some typos. · 4e32419b
      neis authored
      R=jgruber@chromium.org
      BUG=
      
      Review-Url: https://codereview.chromium.org/2493533003
      Cr-Commit-Position: refs/heads/master@{#40966}
      4e32419b
    • rmcilroy's avatar
      Only treat possible eval calls going through 'with' as special. · be9b820c
      rmcilroy authored
      This removes the POSSIBLY_EVAL_CALL call type, and instead uses OTHER_CALL
      or WITH_CALL to decide whether to do the special LOOKUP_SLOT_CALL runtime
      call to find the callee and possibly update the receiver with the with-object.
      This means that eval calls out of 'with' blocks can now just do a normal
      LdaLookupGlobalSlot operation, which can check the context chain for eval
      extentions and fast-path the lookup if none exist.
      
      BUG=661556
      
      Review-Url: https://codereview.chromium.org/2487483004
      Cr-Commit-Position: refs/heads/master@{#40965}
      be9b820c
    • neis's avatar
      Revert of [ast] Simplify FetchFreeVariables. (patchset #1 id:1 of... · 8538143c
      neis authored
      Revert of [ast] Simplify FetchFreeVariables. (patchset #1 id:1 of https://codereview.chromium.org/2491373004/ )
      
      Reason for revert:
      It's probably needed after all but we're lacking tests.
      
      Original issue's description:
      > [ast] Simplify FetchFreeVariables.
      >
      > This CL removes the ParseInfo argument from FetchFreeVariables, since it seems
      > to have become unnecessary.
      >
      > R=verwaest@chromium.org
      > BUG=
      
      TBR=verwaest@chromium.org
      # Not skipping CQ checks because original CL landed more than 1 days ago.
      BUG=
      
      Review-Url: https://codereview.chromium.org/2495293002
      Cr-Commit-Position: refs/heads/master@{#40964}
      8538143c
    • mstarzinger's avatar
      [builtins] Fix pointer comparison in ToString builtin. · 79aee39f
      mstarzinger authored
      This fixes the bogus {Word32Equal} comparison in the ToString builtin
      implementing Object.prototype.toString to be a pointer-size {WordEqual}
      comparison instead. Comparing just the lower half-word is insufficient
      on 64-bit architectures.
      
      R=jgruber@chromium.org
      TEST=mjsunit/regress/regress-crbug-664506
      BUG=chromium:664506
      
      Review-Url: https://codereview.chromium.org/2496043003
      Cr-Commit-Position: refs/heads/master@{#40963}
      79aee39f
    • verwaest's avatar
      Only treat lookup-slot-calls going through 'with' special · 733af7eb
      verwaest authored
      This replaces LOOKUP_SLOT_CALL with WITH_CALL, and relies on regular lookup-slot handling in variable load to support other lookup slots (variables resolved in the context of sloppy eval). This allows optimizations for such variable loads to kick in for calls as well. We only need special handling for function calls in the context of with, since it changes the receiver of the call from undefined/global to the with-object.
      
      This currently doesn't yet make it work for the direct eval call itself, since the POSSIBLY_EVAL_CALL flag is also used to deal with direct eval later.
      
      BUG=
      
      Review-Url: https://codereview.chromium.org/2480253006
      Cr-Commit-Position: refs/heads/master@{#40962}
      733af7eb
    • jarin's avatar
      Revert of [turbofan] Fix deoptimization of boolean bit constants. (patchset #1... · 1c9528c4
      jarin authored
      Revert of [turbofan] Fix deoptimization of boolean bit constants. (patchset #1 id:1 of https://codereview.chromium.org/2495243002/ )
      
      Reason for revert:
      Seems to break GC stress.
      
      Original issue's description:
      > [turbofan] Fix deoptimization of boolean bit constants.
      >
      > BUG=chromium:664490
      
      TBR=bmeurer@chromium.org
      # Skipping CQ checks because original CL landed less than 1 days ago.
      NOPRESUBMIT=true
      NOTREECHECKS=true
      NOTRY=true
      BUG=chromium:664490
      
      Review-Url: https://codereview.chromium.org/2502613002
      Cr-Commit-Position: refs/heads/master@{#40961}
      1c9528c4
    • bmeurer's avatar
      [turbofan] Properly allocate constant-folded string. · 56672803
      bmeurer authored
      When constant-folding S[K], make sure to return a String, and not the
      character code as Number.
      
      BUG=chromium:664942
      R=yangguo@chromium.org
      
      Review-Url: https://codereview.chromium.org/2503433002
      Cr-Commit-Position: refs/heads/master@{#40960}
      56672803
    • bmeurer's avatar
      Revert of MIPS: Optimize load/store with large offset (patchset #1 id:1 of... · fae0e710
      bmeurer authored
      Revert of MIPS: Optimize load/store with large offset (patchset #1 id:1 of https://codereview.chromium.org/2486283003/ )
      
      Reason for revert:
      Breaks CQ trybots now, i.e. https://build.chromium.org/p/tryserver.v8/builders/v8_linux_mipsel_compile_rel/builds/24703/steps/compile%20with%20ninja/logs/stdio
      
      Original issue's description:
      > MIPS: Optimize load/store with large offset
      >
      > Currently, we are using the following sequence for load/store with large offset (offset > 16b):
      >
      >     lui at, 0x1234
      >     ori at, at, 0x5678
      >     add at, s0, at
      >     lw  a0, 0(at)
      >
      > This sequence can be optimized in the following way:
      >
      >     lui at, 0x1234
      >     add at, s0, at
      >     lw  a0, 0x5678(at)
      >
      > BUG=
      
      TBR=ivica.bogosavljevic@imgtec.com,miran.karic@imgtec.com,v8-mips-ports@googlegroups.com,dusan.simicic@imgtec.com
      # Skipping CQ checks because original CL landed less than 1 days ago.
      NOPRESUBMIT=true
      NOTREECHECKS=true
      NOTRY=true
      BUG=
      
      Review-Url: https://codereview.chromium.org/2500863003
      Cr-Commit-Position: refs/heads/master@{#40959}
      fae0e710
    • ulan's avatar
      Enable -Wsign-compare compiler warnings. · e5b15226
      ulan authored
      BUG=v8:5614
      
      Review-Url: https://codereview.chromium.org/2493193002
      Cr-Commit-Position: refs/heads/master@{#40958}
      e5b15226
    • jarin's avatar
      [turbofan] Introduce map-guarded generic handler for named store. · 225cb9fa
      jarin authored
      This helps if the polymorhpic case has other maps with fast accesses.
      
      In box2d (with high number of iterations and warm-up), we spend about 2.7% of running time in StoreIC; after this change it is only 0.2%.
      
      Review-Url: https://codereview.chromium.org/2494673002
      Cr-Commit-Position: refs/heads/master@{#40957}
      225cb9fa
    • yangguo's avatar
      Compiling an array literal should be context-independent. · 08f09ed7
      yangguo authored
      We are removing use of the debugger context. When the debugger triggers
      compilation, we may not have a context from which to create a JSArray.
      
      R=ishell@chromium.org
      BUG=chromium:664577
      
      Review-Url: https://codereview.chromium.org/2479123002
      Cr-Commit-Position: refs/heads/master@{#40956}
      08f09ed7
    • Miran.Karic's avatar
      Add icu libraries to unittests dependencies · 6f556b33
      Miran.Karic authored
      In component build, unittests did not link with icu libraries, which
      caused errors. By adding icu libraries to dependencies unittests links
      correctly.
      
      BUG=
      TEST=unittests/*
      
      Review-Url: https://codereview.chromium.org/2479863002
      Cr-Commit-Position: refs/heads/master@{#40955}
      6f556b33
    • yangguo's avatar
      [debugger] simplify compile for debugging. · b62e2284
      yangguo authored
      R=mstarzinger@chromium.org
      
      Review-Url: https://codereview.chromium.org/2497213002
      Cr-Commit-Position: refs/heads/master@{#40954}
      b62e2284