- 30 Jan, 2018 20 commits
-
-
jgruber authored
Some tests need to ensure all builtins are deserialized. This adds a helper to make that easier. Drive-by-refactoring: Centralize lazy-deserialization tracing. TBR=rmcilroy@chromium.org Bug: v8:6624 Change-Id: I1f7caa6c539b12aabcba5b7b28c50ad40355848b Reviewed-on: https://chromium-review.googlesource.com/891822 Commit-Queue: Jakob Gruber <jgruber@chromium.org> Reviewed-by:
Yang Guo <yangguo@chromium.org> Cr-Commit-Position: refs/heads/master@{#50959}
-
Camillo Bruni authored
Convert certain DCHECKS into CHECKS for some Map setters. This should have minimal performance impact at the same time getting us better coverage out there in the wild. Change-Id: I9a12f43e1baca15d9bf8b1aed86bb6b0dc13921d Reviewed-on: https://chromium-review.googlesource.com/866931 Commit-Queue: Camillo Bruni <cbruni@chromium.org> Reviewed-by:
Igor Sheludko <ishell@chromium.org> Cr-Commit-Position: refs/heads/master@{#50958}
-
Michael Starzinger authored
R=clemensh@chromium.org Change-Id: Ifcd5d58bd27754d5ba7d05b302dc6089af5e3a53 Reviewed-on: https://chromium-review.googlesource.com/892074Reviewed-by:
Clemens Hammacher <clemensh@chromium.org> Commit-Queue: Michael Starzinger <mstarzinger@chromium.org> Cr-Commit-Position: refs/heads/master@{#50957}
-
Gabriel Charette authored
This is a merge of https://chromium-review.googlesource.com/c/v8/v8/+/888704 and https://chromium-review.googlesource.com/c/v8/v8/+/887084 Which implements the fix in CL 887084 correctly in a world where there can be more tasks_ than items_ (crbug.com/806237). Bug: chromium:805932 Change-Id: I05401be4fdce442644a8973281a9d88bd959b271 Reviewed-on: https://chromium-review.googlesource.com/892883 Commit-Queue: Gabriel Charette <gab@chromium.org> Reviewed-by:
Michael Lippautz <mlippautz@chromium.org> Cr-Commit-Position: refs/heads/master@{#50956}
-
Michael Achenbach authored
TBR=sergiyb@chromium.org NOTRY=true Bug: v8:6917 Change-Id: I4903ffc49b5ed475706c0dc604a92b90f6b5d2a0 Reviewed-on: https://chromium-review.googlesource.com/892866Reviewed-by:
Michael Achenbach <machenbach@chromium.org> Commit-Queue: Michael Achenbach <machenbach@chromium.org> Cr-Commit-Position: refs/heads/master@{#50955}
-
sreten.kovacevic authored
Use config with these options when target is MIPS Change-Id: Ia93504f90aa42daef37f1cf1025cef9e9a584034 Reviewed-on: https://chromium-review.googlesource.com/890741Reviewed-by:
-
Clemens Hammacher authored
The generated file only contained the last section of the module, since the decoder's range is reset in DecodeSection. This CL fixes this by remembering the original module bytes and dumping them instead. R=ahaas@chromium.org Change-Id: I5e0f97279886817d58caac6114994bb9c1a147fc Reviewed-on: https://chromium-review.googlesource.com/892980Reviewed-by:
Andreas Haas <ahaas@chromium.org> Commit-Queue: Clemens Hammacher <clemensh@chromium.org> Cr-Commit-Position: refs/heads/master@{#50953}
-
Choongwoo Han authored
- Port TypedArray.prototype.slice to CSA - Implement TypedArraySpeciesCreateByLength as a CSA - Fix spec bugs: Throw if a source typed array is neutered after creating a result typed array Bug: v8:5929 Cq-Include-Trybots: luci.v8.try:v8_linux_noi18n_rel_ng Change-Id: Ia7ce2239d37db6db172c00aa120ef51c31a14bac Reviewed-on: https://chromium-review.googlesource.com/830991 Commit-Queue: Jakob Gruber <jgruber@chromium.org> Commit-Queue: Peter Marshall <petermarshall@chromium.org> Reviewed-by:
Peter Marshall <petermarshall@chromium.org> Reviewed-by:
Jakob Gruber <jgruber@chromium.org> Cr-Commit-Position: refs/heads/master@{#50952}
-
Michael Starzinger authored
R=clemensh@chromium.org Change-Id: I9f4fcddca2e478d5074d68870d0293aacdeb4aa1 Reviewed-on: https://chromium-review.googlesource.com/813920Reviewed-by:
-
Clemens Hammacher authored
The wasm compile fuzzer generated {br} instructions, but no {br_if} so far. This CL adds that. R=ahaas@chromium.org Change-Id: Ib5e47a26d96e88498104e0d57b9a49b74b7356eb Reviewed-on: https://chromium-review.googlesource.com/890450Reviewed-by: -
jgruber authored
The test inspects each builtin's RelocInfo. It's isolate-independent, iff there are no entries for embedded objects, runtime calls, external references (which could point to addresses on the isolate), or code targets. Bug: v8:6666 Change-Id: Ie32353db445a9e81e1c9a0a8f1b5ffe1566a0404 Reviewed-on: https://chromium-review.googlesource.com/888639 Commit-Queue: Jakob Gruber <jgruber@chromium.org> Reviewed-by:
-
Yang Guo authored
R=machenbach@chromium.org Bug: v8:7335 Change-Id: Ib80df7aa269a8e9de7ad739f29883f61f0f0882c Reviewed-on: https://chromium-review.googlesource.com/892978Reviewed-by:
-
Michael Achenbach authored
TBR=sergiyb@chromium.org Bug: v8:6917 Change-Id: I592f745385fe0aedf2d9fb6f88e51b85663c6865 Reviewed-on: https://chromium-review.googlesource.com/891821 Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by:
-
Yang Guo authored
R=machenbach@chromium.org Bug: v8:7335 Cq-Include-Trybots: luci.v8.try:v8_linux_noi18n_rel_ng Change-Id: I70d639324f6de4dd11871f67953943e80c238a12 Reviewed-on: https://chromium-review.googlesource.com/890181 Commit-Queue: Yang Guo <yangguo@chromium.org> Reviewed-by:
-
Yang Guo authored
R=machenbach@chromium.org Bug: v8:7335 Change-Id: I8a97d67be6888014d015ec3f0ec486a3c3d9861a Reviewed-on: https://chromium-review.googlesource.com/889756Reviewed-by:
-
Yang Guo authored
Bug: v8:7335 Change-Id: I6610bba00ff558de5826934c326fc2873c91a1a3 Reviewed-on: https://chromium-review.googlesource.com/890742Reviewed-by:
-
Philip Jägenstedt authored
This only affects document.all, which is the only user of |ObjectTemplate::SetCallAsFunctionHandler|, and will mean that new document.all() will throw TypeError. There are tests for this: //src/third_party/WebKit/LayoutTests/external/wpt/html/infrastructure/common-dom-interfaces/collections/htmlallcollection.html (cherry picked from commit 7233447e4ac4587c81e91077857f8a30c4a6d2df) Change-Id: Ibb39b3c61b688591c781158cf4abc0c2d74c908e Reviewed-on: https://chromium-review.googlesource.com/882642Reviewed-by:
Adam Klein <adamk@chromium.org> Commit-Queue: Philip Jägenstedt <foolip@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/890496 Cr-Commit-Position: refs/heads/master@{#50943}
-
Sigurd Schneider authored
Add inbounds benchmark for String.p.charCodeAt and add in and out of bounds benchmarks for String.p.codePointAt. Bug: v8:7092, v8:7326, chromium:806758 Change-Id: I48065627bd79d8fb24e55b2f6dce590e7adbbd6e Reviewed-on: https://chromium-review.googlesource.com/891858Reviewed-by:
Benedikt Meurer <bmeurer@chromium.org> Commit-Queue: Benedikt Meurer <bmeurer@chromium.org> Cr-Commit-Position: refs/heads/master@{#50942}
-
v8-autoroll authored
Rolling v8/build: https://chromium.googlesource.com/chromium/src/build/+log/8bf670e..f8323d8 Rolling v8/third_party/catapult: https://chromium.googlesource.com/catapult/+log/82f653f..69f2184 Rolling v8/tools/clang: https://chromium.googlesource.com/chromium/src/tools/clang/+log/1243a6d..a312f49 TBR=machenbach@chromium.org,hablich@chromium.org,sergiyb@chromium.org Change-Id: Ic07d910e6fee31c8bff82b47662edd2bd0907a58 Reviewed-on: https://chromium-review.googlesource.com/892618 Commit-Queue: v8 autoroll <v8-autoroll@chromium.org> Reviewed-by:
v8 autoroll <v8-autoroll@chromium.org> Cr-Commit-Position: refs/heads/master@{#50941}
-
Kanghua Yu authored
I8x16Shl/I8x16ShrS/I8x16ShrU,I8x16Mul R=bbudge@chromium.org, bmeurer@chromium.org Bug: Change-Id: I97d7f077c26fe6f8be6464582f20d4e3c8fd4667 Reviewed-on: https://chromium-review.googlesource.com/853772 Commit-Queue: Benedikt Meurer <bmeurer@chromium.org> Reviewed-by:
Bill Budge <bbudge@chromium.org> Cr-Commit-Position: refs/heads/master@{#50940}
-
- 29 Jan, 2018 20 commits
-
-
Jungshik Shin authored
This is a v8-port of https://chromium-review.googlesource.com/c/chromium/src/+/890176 . By default, ICU tries to load data items (e.g. brkitr/char.brk) from individual files before trying the common data. Because all the ICU data Chrome needs is included in the common ICU data file that is memory mapped in InitializeICU(), trying to load from the disk just wastes cycles because there's no file with separate ICU data items. Bug: chromium:805694 Test: Intl tests Change-Id: Ia7e77d658b56d98027336acd2c91fd5f7b2cea3e Reviewed-on: https://chromium-review.googlesource.com/890343Reviewed-by:
-
Adam Klein authored
This is a reland of 7dbfec50, now that pdfium has been updated to avoid libfuzzer build failures. I've tested this change locally in pdfium xfa and non-xfa builds. The calls in chromium were removed in https://crrev.com/c/865160, while pdfium was updated in https://pdfium-review.googlesource.com/c/pdfium/+/23270. Bug: v8:7269, v8:7273, v8:7274 Cq-Include-Trybots: master.tryserver.chromium.linux:linux_chromium_rel_ng Change-Id: I2d49033fcb305eeba87cca1e27840f278220d15e Reviewed-on: https://chromium-review.googlesource.com/890051Reviewed-by:
-
Michael Achenbach authored
TBR=sergiyb@chromium.org Bug: v8:6917 Change-Id: I6d526410520fe7b2cfeff536ed260b37dbb2b8b6 Reviewed-on: https://chromium-review.googlesource.com/891819Reviewed-by:
-
Junliang Yan authored
The stock GCC on Ubuntu 16.04 complains these constants are unused (possibly gcc issue). This CL changes these to constexpr to workaround gcc errors. R=clemensh@chromium.org, joransiu@ca.ibm.com Change-Id: I8c1772e91744bc46ace6bee576b90d40c0cdf41f Reviewed-on: https://chromium-review.googlesource.com/881554Reviewed-by:
Hannes Payer <hpayer@chromium.org> Reviewed-by:
-
Sathya Gunasekaran authored
Things that don't work yet: (a) pre parsed scope data is broken (b) private fields can be accessed outside classes (c) no early or runtime error for accessing unknown fields Things that do work: everything else Change-Id: I3d58be44e2be73ec50defb42403112a8a5e68c54 Bug: v8:5368 Reviewed-on: https://chromium-review.googlesource.com/865497 Commit-Queue: Sathya Gunasekaran <gsathya@chromium.org> Reviewed-by:
Georg Neis <neis@chromium.org> Reviewed-by:
Mythri Alle <mythria@chromium.org> Cr-Commit-Position: refs/heads/master@{#50935}
-
Benedikt Meurer authored
This adjusts the RunMicrotask logic to invoke CallHandlerInfo microtasks from CSA land directly (via a runtime function call), instead of bailing out to C++ for the rest of the microtask queue entries. Even in simple micro-benchmarks there doesn't seem to be a huge performance difference. In fact performance get's better when CallHandlerInfo and promises are mixed, which makes sense, since calling from C++ to JS land is more expensive than the other way around. But just in case the runtime function call overhead ever becomes the bottleneck we can introduce a direct C++ call and setup a handle scope around it, much like a very simple version of CallApiFunctionStub. This greatly simplifies the microtask handling and paves the way for refactoring the queue to significant reduce the GC overhead associated with promises currently. Bug: v8:7253 Change-Id: I33adb62a6bada138674d324f36d4be894e27f3c9 Cq-Include-Trybots: master.tryserver.chromium.linux:linux_chromium_rel_ng Reviewed-on: https://chromium-review.googlesource.com/890441Reviewed-by:
Michael Starzinger <mstarzinger@chromium.org> Reviewed-by:
Sathya Gunasekaran <gsathya@chromium.org> Reviewed-by:
-
Benedikt Meurer authored
The @@species protector guards the following (in case of Promises): - The initial Promise.prototype has the initial "constructor" pointing to the Promise constructor. - No JSPromise instance has a "constructor" property. So this is sufficient to guard the fast-path in PromiseResolve, given that we check whether the value is actually a JSPromise and that the [[Prototype]] of value is the (initial) Promise.prototype. Also refactor the code a bit and avoid the BranchIfSameValue, which blows up the builtin quite a lot, since we already know that constructor must be a valid JSReceiver and thus we can simply use WordEqual to compare value's "constructor" to the constructor. Bug: v8:7253 Change-Id: I6413882241c9648c95bb2299100a6c3a7c803110 Cq-Include-Trybots: master.tryserver.chromium.linux:linux_chromium_rel_ng Reviewed-on: https://chromium-review.googlesource.com/890438Reviewed-by: -
Ali Ijaz Sheikh authored
We were starting an allocation step during NewSpace::AddFreshPage. At this point, we had advanced the page, but not updated allocation_info_. This ultimately led to assertions as Space::Size was not expecting to be called when to_space_.page_{high,low} are inconsistent with allocation_info_.top(). The solution here is to avoid starting the step in the middle of the space state mutation. We account for memory allocated so far before the mutation is started, and then start a new step after the mutation has been completed. Bug: chromium:806179 Change-Id: I17ee896d80c4ec752baa2b17c3fd2bef7ea2ca33 Reviewed-on: https://chromium-review.googlesource.com/889981Reviewed-by:Ulan Degenbaev <ulan@chromium.org> Commit-Queue: Ali Ijaz Sheikh <ofrobots@google.com> Cr-Commit-Position: refs/heads/master@{#50932}
-
Clemens Hammacher authored
Even though most compilers accept the method to be private, gcc 4.8 complains about this (which seems to be correct). Thus we make this method protected. R=franzih@chromium.org Change-Id: Ia49b2ddebe1ced7529d4943107a76a909c355b73 Reviewed-on: https://chromium-review.googlesource.com/890449Reviewed-by:
Franziska Hinkelmann <franzih@chromium.org> Commit-Queue: Clemens Hammacher <clemensh@chromium.org> Cr-Commit-Position: refs/heads/master@{#50931}
-
Michael Achenbach authored
TBR=sergiyb@chromium.org NOTRY=true Bug: v8:7012 Change-Id: I9d2a8b4b01f7f682490e9f784c05df4c9eeb8557 Reviewed-on: https://chromium-review.googlesource.com/891324 Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by:
-
Michael Achenbach authored
This adds back an option for interrupt budget available in no-snap builds. This also adds a fuzzer configuration for numfuzz that enables fuzzing the interrupt budget option. A new flag --disable-analysis allows to generally skip the fuzzer's analysis phase, which can be chosen for interrupt budget, which doesn't support an analysis phase. Bug: v8:6917 Change-Id: I546dd9ee41c3e0fb027108ef4606a34514f230d4 Reviewed-on: https://chromium-review.googlesource.com/885805Reviewed-by:
Ross McIlroy <rmcilroy@chromium.org> Reviewed-by:
-
Gabriel Charette authored
This reverts commit 8a27c7d3. Reason for revert: Having more tasks then work items is intentional in some use cases, i.e. Scavenging where RunInParallel() does parallel processing on a dynamic workload *after* the initial set of work items: { barrier_->Start(); TimedScope scope(&scavenging_time); PageScavengingItem* item = nullptr; while ((item = GetItem<PageScavengingItem>()) != nullptr) { item->Process(scavenger_); item->MarkFinished(); } do { scavenger_->Process(barrier_); } while (!barrier_->Wait()); scavenger_->Process(); } Original change's description: > v8::ItemParallelJob : Do not launch more Tasks than there are Items to process. > > Except when there are 0 items. For some reason I don't quite understand yet, not > calling Run() on tasks_[0] when there are 0 items results in DCHECKs... > > Bug: chromium:806237 > Change-Id: I38c8fffde64a42f93f4efda492832651137eebd7 > Reviewed-on: https://chromium-review.googlesource.com/888704 > Commit-Queue: Gabriel Charette <gab@chromium.org> > Reviewed-by: Michael Lippautz <mlippautz@chromium.org> > Cr-Commit-Position: refs/heads/master@{#50924} TBR=gab@chromium.org,mlippautz@chromium.org Change-Id: Iad2ab16bb41f339de8e3fbca1c08c5d26b8a0111 No-Presubmit: true No-Tree-Checks: true No-Try: true Bug: chromium:806237 Reviewed-on: https://chromium-review.googlesource.com/891186Reviewed-by:
-
Michael Achenbach authored
This is the first step for retiring swarming tests with gyp. TBR=sergiyb@chromium.org NOTRY=true Bug: v8:7335 Change-Id: I98145843b91d47a77e06173c2a421fcc0d4e5586 Reviewed-on: https://chromium-review.googlesource.com/891230 Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by:
-
Michael Starzinger authored
R=tebbi@chromium.org Change-Id: Iae9a3774eb7913388350ce3cd0a96d6a6cca25e8 Reviewed-on: https://chromium-review.googlesource.com/885845Reviewed-by:
Tobias Tebbi <tebbi@chromium.org> Commit-Queue: Michael Starzinger <mstarzinger@chromium.org> Cr-Commit-Position: refs/heads/master@{#50926}
-
Ross McIlroy authored
BUG=chromium:798964 Change-Id: I63c373ef3f27a3295fc79f5c82d78b5fd89a83da Reviewed-on: https://chromium-review.googlesource.com/888752 Commit-Queue: Ross McIlroy <rmcilroy@chromium.org> Reviewed-by:
-
Gabriel Charette authored
Except when there are 0 items. For some reason I don't quite understand yet, not calling Run() on tasks_[0] when there are 0 items results in DCHECKs... Bug: chromium:806237 Change-Id: I38c8fffde64a42f93f4efda492832651137eebd7 Reviewed-on: https://chromium-review.googlesource.com/888704 Commit-Queue: Gabriel Charette <gab@chromium.org> Reviewed-by:
-
Leszek Swirski authored
Wide suspends have a "wide" (or "extra-wide") bytecode at their offset, rather than the suspend itself, so they were failing the return check. Bug: chromium:805765 Change-Id: Iabfc2a2167d09eda2f6885d9100287aadcd8fee9 Reviewed-on: https://chromium-review.googlesource.com/887082Reviewed-by:
-
Leszek Swirski authored
Bug: chromium:806200 Change-Id: If76a8cb5b988321d38d170dfba7c1fc5354e2667 Reviewed-on: https://chromium-review.googlesource.com/888922Reviewed-by:
-
Daniel Clifford authored
There is currently no test that shows this bug (it was found as part of the DSL experiment), but it should get fixed anyway and it will eventually be verified by the A.p.splice CSA builtin port that is in progress. Change-Id: I9b6da8dc8f3151ad0b0a06c3ca10d604060efef7 Reviewed-on: https://chromium-review.googlesource.com/890580Reviewed-by:
-
Daniel Clifford authored
This makes the ArrayBuiltinsAssembler consistent with the StringBuiltinsAssembler and paves the way for tools that expect the assemblers to have a common structure. Change-Id: I7470fc2cf144f9cc2fdbcee99b31daed267550be Reviewed-on: https://chromium-review.googlesource.com/889933Reviewed-by:
Michael Stanton <mvstanton@chromium.org> Commit-Queue: Daniel Clifford <danno@chromium.org> Cr-Commit-Position: refs/heads/master@{#50920}
-
