- 19 Sep, 2016 4 commits
-
-
jochen authored
If the scope was lazily parsed, the ScopeInfo won't be correct (and we won't store it in the SharedFunctionInfo). BUG=chromium:644106 R=marja@chromium.org Review-Url: https://codereview.chromium.org/2345243002 Cr-Commit-Position: refs/heads/master@{#39495}
-
machenbach authored
BUG=chromium:648153 NOTRY=true NOPRESUBMIT=true TBR=emso@chromium.org Review-Url: https://codereview.chromium.org/2352573002 Cr-Commit-Position: refs/heads/master@{#39494}
-
hablich authored
Revert of Fix async/await memory leak (patchset #5 id:80001 of https://codereview.chromium.org/2334323006/ ) Reason for revert: newly introduced test async-await-loop times out: https://build.chromium.org/p/client.v8/builders/V8%20Linux%20-%20arm64%20-%20sim%20-%20MSAN/builds/10894/steps/Ignition%20-%20turbofan%20%28flakes%29/logs/async-await-loop Original issue's description: > Fix async/await memory leak > > This patch closes a memory leak in async/await where the desugaring > was creating a situation analagous to that described in v8:5002. > Intermediate Promises were being kept alive, so a long-running loop > would cause linear memory usage on the heap. This patch returns > undefined to the 'then' callback passed into PerformPromiseThen > in order to avoid this hazard. Test expectations are fixed to remove > expecting extraneous events which occurred on Promises that are > now not given unnecessarily complex resolution paths before being > thrown away. > > BUG=v8:5390 > > Committed: https://crrev.com/a0ba18e9634c5e2d439033ab61a77cff54f9af35 > Cr-Commit-Position: refs/heads/master@{#39479} TBR=adamk@chromium.org,caitp@igalia.com,littledan@chromium.org NOTRY=true BUG=v8:5390 Review-Url: https://codereview.chromium.org/2354473002 Cr-Commit-Position: refs/heads/master@{#39493}
-
jarin authored
Review-Url: https://codereview.chromium.org/2349983002 Cr-Commit-Position: refs/heads/master@{#39492}
-
- 18 Sep, 2016 5 commits
-
-
zhengxing.li authored
port 7f3d15aa(r39470) original commit message: In ignition, arguments to function calls and function constructors are pushed onto the stack before calling the function. It is required to check that stack does not overflow when pushing the arguments. BUG= Review-Url: https://codereview.chromium.org/2351543002 Cr-Commit-Position: refs/heads/master@{#39491}
-
zhengxing.li authored
port c7d7ca36(r39410) original commit message: Add a notion of "invocation count" to the baseline compilers, which increment a special slot in the TypeFeedbackVector for each invocation of a given function (the optimized code doesn't currently collect this information). Use this invocation count to relativize the call counts on the call sites within the function, so that the inlining heuristic has a view of relative importance of a call site rather than some absolute numbers with unclear meaning for the current function. Also apply the call site frequency as a factor to all frequencies in the inlinee by passing this to the graph builders so that the importance of a call site in an inlinee is relative to the topmost optimized function. Note that all functions that neither have literals nor need type feedback slots will share a single invocation count cell in the canonical empty type feedback vector, so their invocation count is meaningless, but that doesn't matter since we only use the invocation count to relativize call counts within the function, which we only have if we have at least one type feedback vector (the CallIC slot). See the design document for additional details on this change: https://docs.google.com/document/d/1VoYBhpDhJC4VlqMXCKvae-8IGuheBGxy32EOgC2LnT8 BUG= Review-Url: https://codereview.chromium.org/2352493002 Cr-Commit-Position: refs/heads/master@{#39490}
-
zhengxing.li authored
port 3ccedd5d(r39398) original commit message: BUG= Review-Url: https://codereview.chromium.org/2352483002 Cr-Commit-Position: refs/heads/master@{#39489}
-
v8-autoroll authored
Rolling v8/build to cce8ee87cfdbbac3b05240132f74fe1f398e83d1 TBR=machenbach@chromium.org,vogelheim@chromium.org,hablich@chromium.org Review-Url: https://codereview.chromium.org/2346163002 Cr-Commit-Position: refs/heads/master@{#39488}
-
zhengxing.li authored
port 2ab3fcf4(r39377) original commit message: To make better inlining decisions, it's good to have call counts for poly/mega-morphic cases. This CL makes it work for calls, and another will follow to better unify the code between constructor calls and normal calls (and thence, to record megamorphic call counts there as well). BUG= Review-Url: https://codereview.chromium.org/2351523002 Cr-Commit-Position: refs/heads/master@{#39487}
-
- 17 Sep, 2016 4 commits
-
-
jbroman authored
In practice this is a dense array, because there is currently no provision in the format for assigning IDs other than sequentially to every object. Thus a FixedArray is more efficient than a general dictionary. BUG=chromium:148757 Review-Url: https://codereview.chromium.org/2342293003 Cr-Commit-Position: refs/heads/master@{#39486}
-
v8-autoroll authored
Rolling v8/build to f7f13b559d1d51c4e932659e11b28be595595041 Rolling v8/buildtools to 6115afa0ea5ea33e1f284d9ef2175a03db1370ca TBR=machenbach@chromium.org,vogelheim@chromium.org,hablich@chromium.org Review-Url: https://codereview.chromium.org/2351503002 Cr-Commit-Position: refs/heads/master@{#39485}
-
gdeepti authored
test-run-wasm-module cctests broken in debug since recent refactoring changes for moving Compilation/Instantiation off the module object (https://codereview.chromium.org/2320723005). The problem here is that SetupIsolateForWasm tries to add the same property to a module_object multiple times and hits a DCHECK when this property is found on a lookup. - Fixed to use the setup method only once when CcTest::InitIsolateOnce is used. - Move setup method to test as this is only used for cctests/fuzzers. The install method should take care of this in the regular JS pipeline. R=mtrofin@chromium.org, ahaas@chromium.org Review-Url: https://codereview.chromium.org/2342263002 Cr-Commit-Position: refs/heads/master@{#39484}
-
mtrofin authored
We'd like wasm regressions to live under a subfolder of the mjsunit regression folder. BUG= Review-Url: https://codereview.chromium.org/2344373002 Cr-Commit-Position: refs/heads/master@{#39483}
-
- 16 Sep, 2016 25 commits
-
-
bakkot authored
Normally the parser just uses AstConsStrings to concatenate, but some types require an AstRawString. This patch adds an AstValueFactory method which produces one from two AstRawStrings. Review-Url: https://codereview.chromium.org/2348783002 Cr-Commit-Position: refs/heads/master@{#39482}
-
adamk authored
R=neis@chromium.org BUG=v8:1569 Review-Url: https://codereview.chromium.org/2347933002 Cr-Commit-Position: refs/heads/master@{#39481}
-
littledan authored
This patch implements a bug fix to the async/await specification described at https://github.com/tc39/ecma262/pull/692#issuecomment-247488411 Namely, the intermediate values of Promises may be rejected, and they do not have .then called on them anymore (now that the memory leak is fixed), but they do not correspond do unhandled rejections. This change has been tested manually with integration with Blink; once it is checked in and rolled, then further tests can be added on the Blink side for the uncaught rejection handler and async/await. BUG=v8:4483 Review-Url: https://codereview.chromium.org/2338273007 Cr-Commit-Position: refs/heads/master@{#39480}
-
littledan authored
This patch closes a memory leak in async/await where the desugaring was creating a situation analagous to that described in v8:5002. Intermediate Promises were being kept alive, so a long-running loop would cause linear memory usage on the heap. This patch returns undefined to the 'then' callback passed into PerformPromiseThen in order to avoid this hazard. Test expectations are fixed to remove expecting extraneous events which occurred on Promises that are now not given unnecessarily complex resolution paths before being thrown away. BUG=v8:5390 Review-Url: https://codereview.chromium.org/2334323006 Cr-Commit-Position: refs/heads/master@{#39479}
-
martyn.capewell authored
For denominators that are powers of two, replace Float64 division with multiplication by the reciprocal. Additionally, replace division by -1 with negation, and multiplication by two with addition. BUG= Review-Url: https://codereview.chromium.org/2347573002 Cr-Commit-Position: refs/heads/master@{#39478}
-
neis authored
Rename JSModule to Module and make it a Struct rather than a JSObject. We will later add a separate JSModuleNamespace object to implement the 'import * as foo' syntax. BUG=v8:1569 Review-Url: https://codereview.chromium.org/2345823002 Cr-Commit-Position: refs/heads/master@{#39477}
-
ishell authored
This CL also cleans up related interface descriptors: 1) unused StoreTransitionDescriptor is removed and VectorStoreTransitionDescriptor is renamed to StoreTransitionDescriptor. 2) on ia32/x87 architectures slot and vector are passed on the stack (dispatcher/handlers cleanup will be addressed in a separate CL). These two stub ports have to be combined in one CL because: 1) without changing the StoreTransitionDescriptor TF was not able to compile them on ia32/x87 (because of lack of registers), 2) it was not possible to change the descriptor first because Crankshaft was not able to deal with the stack allocated parameters in case of a stub failure. TBR=jkummerow@chromium.org BUG=v8:5269 Review-Url: https://codereview.chromium.org/2313093002 Cr-Commit-Position: refs/heads/master@{#39476}
-
vogelheim authored
Revert of [Tracing] Remove unnecessary memory allocation in runtime call stats. (patchset #1 id:1 of https://codereview.chromium.org/2342643004/ ) Reason for revert: Revert because this breaks V8's roll into Chromium. ASAN complains about memory accesses in a particular unit test. Borked roll CL: https://codereview.chromium.org/2348833002/ Reproduce breakage with: 1, args.gn: v8_deprecation_warnings = true use_goma = true is_asan = true 2, ninja -C out/... content_browsertests 3, out/.../content_browsertests --gtest_filter=V8SamplingProfilerTest.* Original issue's description: > [Tracing] Remove unnecessary memory allocation in runtime call stats. > > Previously we didn't implement TRACE_STR_COPY when we write trace events to > file, which causes us to allocate a growing independent memory chunk for dumped > runtime call stats table. Since we now have a fully functional TRACE_STR_COPY, > this memory allocation can be avoided, this patch removes it. > > BUG=v8:5089 > > Committed: https://crrev.com/e1997bb7d780d12e3a89078e8dd652dcf1d90039 > Cr-Commit-Position: refs/heads/master@{#39462} TBR=cbruni@chromium.org,fmeawad@chromium.org,lpy@chromium.org # Skipping CQ checks because original CL landed less than 1 days ago. NOPRESUBMIT=true NOTREECHECKS=true NOTRY=true BUG=v8:5089 Review-Url: https://codereview.chromium.org/2349593004 Cr-Commit-Position: refs/heads/master@{#39475}
-
vogelheim authored
crrev.com/2339933002 and crrev.com/2314663002 were overlapping, so this slipped through the cracks. R=jochen@chromium.org BUG=v8:4947, chromium:646794 Review-Url: https://codereview.chromium.org/2343093002 Cr-Commit-Position: refs/heads/master@{#39474}
-
leszeks authored
Adds a fast path for loading DYNAMIC_LOCAL variables, which are lookup variables that can be context loaded, without calling the runtime, as long as there was no context extension by a sloppy eval along their context chain. BUG=v8:5263 Review-Url: https://codereview.chromium.org/2343633002 Cr-Commit-Position: refs/heads/master@{#39473}
-
mstarzinger authored
The predicate in question should only trigger once and hence the stack height should not be updated incrementally. This puts checks into place ensuring this holds. R=bmeurer@chromium.org Review-Url: https://codereview.chromium.org/2333923008 Cr-Commit-Position: refs/heads/master@{#39472}
-
marja authored
Revert of Preparse inner functions. (patchset #23 id:440001 of https://codereview.chromium.org/2322243002/ ) Reason for revert: This approach is not good - breaks when we recompile. Original issue's description: > Preparse inner functions. > > This is an overly pessimistic approach where PreParser only keeps > track of unresolved variables, but doesn't declare anything. This > will result in context-allocating variables in the outer function > unnecessarily, if the variable names clash with variable names > used by the inner function (even if the variables are not the > same). However, we have been unable to prove that this approach > wouldn't be good enough for the practical purposes. > > Committed: https://crrev.com/e1341ca8fa486bb2c9e4236672a64ec7756a164d > Cr-Commit-Position: refs/heads/master@{#39469} TBR=adamk@chromium.org,vogelheim@chromium.org,nikolaos@chromium.org,nednguyen@google.com # Skipping CQ checks because original CL landed less than 1 days ago. NOPRESUBMIT=true NOTREECHECKS=true NOTRY=true Review-Url: https://codereview.chromium.org/2349473004 Cr-Commit-Position: refs/heads/master@{#39471}
-
mythria authored
In ignition, arguments to function calls and function constructors are pushed onto the stack before calling the function. It is required to check that stack does not overflow when pushing the arguments. BUG=v8:4280 LOG=N Review-Url: https://codereview.chromium.org/2335513004 Cr-Commit-Position: refs/heads/master@{#39470}
-
marja authored
This is an overly pessimistic approach where PreParser only keeps track of unresolved variables, but doesn't declare anything. This will result in context-allocating variables in the outer function unnecessarily, if the variable names clash with variable names used by the inner function (even if the variables are not the same). However, we have been unable to prove that this approach wouldn't be good enough for the practical purposes. Review-Url: https://codereview.chromium.org/2322243002 Cr-Commit-Position: refs/heads/master@{#39469}
-
bmeurer authored
During feedback typing (in SimplifiedLowering) we might be able to constant-fold a bunch of ObjectIs<Type> predicates, i.e. because we took type feedback on the input or we narrowed the type of a Phi because of type feedback. R=mvstanton@chromium.org BUG=v8:5267,v8:5270 Review-Url: https://codereview.chromium.org/2342283002 Cr-Commit-Position: refs/heads/master@{#39468}
-
nikolaos authored
This patch moves the following parsing method to ParserBase: - ParseTryStatement R=adamk@chromium.org, marja@chromium.org BUG= LOG=N Review-Url: https://codereview.chromium.org/2339453002 Cr-Commit-Position: refs/heads/master@{#39467}
-
mstarzinger authored
This ensures that {Compiler::EnsureBytecode} fails gracefully in case the --ignition-filter flag prevents generation of bytecode for a certain set of functions. This can be triggered via inlining. R=rmcilroy@chromium.org Review-Url: https://codereview.chromium.org/2340293002 Cr-Commit-Position: refs/heads/master@{#39466}
-
nikolaos authored
In release mode, statements like: var i; for (i of [0]) { let j; debugger; } would end up with one more block scope than in the debug modes. R=adamk@chromium.org, marja@chromium.org BUG= LOG=N Review-Url: https://codereview.chromium.org/2347633002 Cr-Commit-Position: refs/heads/master@{#39465}
-
vogelheim authored
- Smaller, more consistent streams API (Advance, Back, pos, Seek) - Remove implementations from the header, in favor of creation functions. Observe: - Performance: - All Utf16CharacterStream methods have an inlinable V8_LIKELY w/ a body of only a few instructions. I expect most calls to end up there. - There used to be performance problems w/ bookmarking, particularly with copying too much data on SetBookmark w/ UTF-8 streaming streams. All those copies are gone. - The old streaming streams implementation used to copy data even for 2-byte input. It no longer does. - The only remaining 'slow' method is the Seek(.) slow case for utf-8 streaming streams. I don't expect this to be called a lot; and even if, I expect it to be offset by the gains in the (vastly more frequent) calls to the other methods or the 'fast path'. - If it still bothers us, there are several ways to speed it up. - API & code cleanliness: - I want to remove the 'old' API in a follow-up CL, which should mostly delete code, or replace it 1:1. - In a 2nd follow-up I want to delete much of the UTF-8 handling in Blink for streaming streams. - The "bookmark" is now always implemented (and mostly very fast), so we should be able to use it for more things. - Testing & correctness: - The unit tests now cover all stream implementations, and are pretty good and triggering all the edge cases. - Vastly more DCHECKs of the invariants. BUG=v8:4947 Review-Url: https://codereview.chromium.org/2314663002 Cr-Commit-Position: refs/heads/master@{#39464}
-
mtrofin authored
Ensure we can serialize a wasm compiled module even after it was instantiated a few times. BUG= Review-Url: https://codereview.chromium.org/2339933003 Cr-Commit-Position: refs/heads/master@{#39463}
-
lpy authored
Previously we didn't implement TRACE_STR_COPY when we write trace events to file, which causes us to allocate a growing independent memory chunk for dumped runtime call stats table. Since we now have a fully functional TRACE_STR_COPY, this memory allocation can be avoided, this patch removes it. BUG=v8:5089 Review-Url: https://codereview.chromium.org/2342643004 Cr-Commit-Position: refs/heads/master@{#39462}
-
v8-autoroll authored
Rolling v8/build to 3f47a5e106127ae4e2567d64c615dc706054c819 Rolling v8/tools/clang to bd7e80b254a93d0a5cd8ecb994e47b1c827e253c TBR=machenbach@chromium.org,vogelheim@chromium.org,hablich@chromium.org Review-Url: https://codereview.chromium.org/2347783002 Cr-Commit-Position: refs/heads/master@{#39461}
-
bakkot authored
This is one part of a WIP implementation of the stage-2 proposal to add fields to classes: https://github.com/tc39/proposal-class-public-fields See design doc: https://docs.google.com/document/d/1WRtNm3ZLNJT1WVr8aq4RJuByYgfuAFAhj20LwTW6JVE/ This adds the desugaring logic to the parser. It isn't usable without the (forthcoming) backend changes. BUG=v8:5367 Review-Url: https://codereview.chromium.org/2316233004 Cr-Commit-Position: refs/heads/master@{#39460}
-
bakkot authored
This is one part of a WIP implementation of the stage-2 proposal to add fields to classes: https://github.com/tc39/proposal-class-public-fields See design doc: https://docs.google.com/document/d/1WRtNm3ZLNJT1WVr8aq4RJuByYgfuAFAhj20LwTW6JVE/ This adds support for parsing fields in classes, including infrastructure. In particular, it adds: * Two booleans on function literal AST nodes * Two compiler hints on SharedFunctionInfos representing said bools * A new type of ClassLiteralProperty, FIELD * Parser support for the syntax * Syntax tests * A flag to enable it. Currently the fields are parsed and then droppped. Subsequent patches will add semantics, mostly by desugaring in the parser and the remainder in the non-crankshaft backends. BUG=v8:5367 Review-Url: https://codereview.chromium.org/2315733003 Cr-Commit-Position: refs/heads/master@{#39459}
-
lpy authored
Previously, macro like PREPARE_FOR_EXECUTION_WITH_CALLBACK will end up calling LOG_API, where we create a runtime call timer scope when we enable tracing with runtime call stats, however since the flag will be enabled after calling TRACE_EVENT_CALL_STATS_SCOPED, this will end up with incorrect timestamp. Thus, we introduce a new macro PREPARE_FOR_EXECUTION_WITH_CONTEXT_IN_RUNTIME_CALL_STATS_SCOPE, which will call TRACE_EVENT_CALL_STATS_SCOPED inside it. BUG=v8:5089 Review-Url: https://codereview.chromium.org/2344723004 Cr-Commit-Position: refs/heads/master@{#39458}
-
- 15 Sep, 2016 2 commits
-
-
jochen authored
We don't need the context anymore for parsing, the scope info chain is enough. BUG=v8:5215 R=marja@chromium.org,jgruber@chromium.org,mstarzinger@chromium.org Review-Url: https://codereview.chromium.org/2342443004 Cr-Commit-Position: refs/heads/master@{#39457}
-
littledan authored
Reland of Put RegExp js code in strict mode (patchset #2 id:20001 of https://codereview.chromium.or… (patchset #2 id:20001 of https://codereview.chromium.org/2112713003/ ) Reason for revert: With fixes for frozen RegExps in https://codereview.chromium.org/2339443002 , it should be web-compatible to put RegExps in strict mode again, per spec. Original issue's description: > Revert of Put RegExp js code in strict mode (patchset #2 id:20001 of https://codereview.chromium.org/1776883005/ ) > > Reason for revert: > Found to break SAP Web IDE, and these semantics are not shipped in any other browser. > Revert to legacy semantics while assessing web compatibility. > > BUG=chromium:624318 > > Original issue's description: > > Put RegExp js code in strict mode > > > > src/js/regexp.js was one of the few files that was left in sloppy > > mode. The ES2017 draft specification requires that writes to > > lastIndex throw when the property is non-writable, and test262 > > tests enforce this behavior. This patch puts that file in strict > > mode. > > > > BUG=v8:4504 > > R=yangguo@chromium.org > > LOG=Y > > > > Committed: https://crrev.com/80b1b2a45bbd9bf3d08e4e6516acfaaa8f438213 > > Cr-Commit-Position: refs/heads/master@{#34801} > > TBR=yangguo@chromium.org,adamk@chromium.org > > Committed: https://crrev.com/34880eb3dcf7492d44c0a3b45b6c888189f2c3c3 > Cr-Commit-Position: refs/heads/master@{#37449} TBR=adamk@chromium.org,yangguo@chromium.org # Not skipping CQ checks because original CL landed more than 1 days ago. BUG=chromium:624318 Review-Url: https://codereview.chromium.org/2344773002 Cr-Commit-Position: refs/heads/master@{#39456}
-