• Jakob Kummerow's avatar
    [wasm] Fix and harden all conditional tier-up checks · b9c4a849
    Jakob Kummerow authored
    This remodels the tier-up checks on loop back edges to avoid
    modifying the cache state by taking temp registers passed in
    from the caller, and not causing the instance to get cached.
    
    Additionally, this introduces FreezeCacheState scopes, which
    allow us to enforce that certain ranges don't cause any cache
    modifications. Conditional jumps require such a scope to be
    around, which should help ensure that we don't forget to add
    them to any future code we write.
    
    Drive-by cleanup: drop {pinned} lists from a few Load helper
    functions. They don't allocate registers (and shouldn't), so
    they don't need to know about pinned registers.
    
    Fixed: chromium:1339321
    Change-Id: I1c7660418a85259e96c5e0dcfeaf12dab2114e8c
    Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3724787Reviewed-by: 's avatarManos Koukoutos <manoskouk@chromium.org>
    Commit-Queue: Jakob Kummerow <jkummerow@chromium.org>
    Cr-Commit-Position: refs/heads/main@{#81411}
    b9c4a849
Name
Last commit
Last update
..
benchmarks Loading commit data...
bigint Loading commit data...
cctest Loading commit data...
common Loading commit data...
debugger Loading commit data...
debugging Loading commit data...
fuzzer Loading commit data...
fuzzilli Loading commit data...
inspector Loading commit data...
intl Loading commit data...
js-perf-test Loading commit data...
memory Loading commit data...
message Loading commit data...
mjsunit Loading commit data...
mkgrokdump Loading commit data...
mozilla Loading commit data...
test262 Loading commit data...
torque Loading commit data...
unittests Loading commit data...
wasm-api-tests Loading commit data...
wasm-js Loading commit data...
wasm-spec-tests Loading commit data...
webkit Loading commit data...
BUILD.gn Loading commit data...
OWNERS Loading commit data...