- 10 Jan, 2017 1 commit
-
-
adamk authored
It shipped with Chrome 55 stable. R=littledan@chromium.org Review-Url: https://codereview.chromium.org/2621173002 Cr-Commit-Position: refs/heads/master@{#42203}
-
- 11 Jul, 2016 1 commit
-
-
littledan authored
This patch just checks for a stack overflow and returns failure from the cases which Clusterfuzz found. However, there may be more locations in the parser which need similar treatment. R=caitpotter88@gmail.com,neis BUG=v8:4483,chromium:624300 Review-Url: https://codereview.chromium.org/2135503002 Cr-Commit-Position: refs/heads/master@{#37655}
-
- 14 Apr, 2016 1 commit
-
-
yangguo authored
R=jkummerow@chromium.org BUG=chromium:600257 LOG=N Review URL: https://codereview.chromium.org/1884143002 Cr-Commit-Position: refs/heads/master@{#35496}
-
- 18 Mar, 2016 1 commit
-
-
yangguo authored
R=jkummerow@chromium.org BUG=chromium:595657 LOG=N Review URL: https://codereview.chromium.org/1811913006 Cr-Commit-Position: refs/heads/master@{#34894}
-
- 26 Feb, 2016 1 commit
-
-
bmeurer authored
The %_Call intrinsic (if supported by the compiler) is lowered directly to the Call builtin and thus throws a TypeError if the target is not callable. The %Call runtime function also eventually calls into the Call builtin, but had an early abort if the target is not a JSReceiver, which is unnecessary and leads to various test failures for Ignition. R=mvstanton@chromium.org Review URL: https://codereview.chromium.org/1727833006 Cr-Commit-Position: refs/heads/master@{#34316}
-
- 03 Feb, 2016 1 commit
-
-
bmeurer authored
R=jarin@chromium.org BUG=chromium:582703 LOG=n Review URL: https://codereview.chromium.org/1664483003 Cr-Commit-Position: refs/heads/master@{#33693}
-
- 02 Feb, 2016 1 commit
-
-
caitpotter88 authored
Based on vogelheim's CL at https://codereview.chromium.org/1657783002/ BUG=chromium:582626, v8:2700 LOG=N R=adamk@chromium.org, rossberg@chromium.org, vogelheim@chromium.org Review URL: https://codereview.chromium.org/1656993002 Cr-Commit-Position: refs/heads/master@{#33651}
-
- 29 Jan, 2016 1 commit
-
-
littledan authored
Previously, String.prototype.normalize constructed its ICU input string as a null-terminated string. This creates a bug for strings which contain a null byte, which is allowed in ECMAScript. This patch constructs the ICU string based on its length so that the entire string is normalized. R=jshin@chromium.org BUG=v8:4654 LOG=Y Review URL: https://codereview.chromium.org/1645223003 Cr-Commit-Position: refs/heads/master@{#33614}
-
- 04 Jan, 2016 1 commit
-
-
jarin authored
BUG=572409 LOG=n Review URL: https://codereview.chromium.org/1555023002 Cr-Commit-Position: refs/heads/master@{#33078}
-