AuroraMiddleware/v8 - v8 - Gitea: Git with a cup of tea

Author	SHA1	Message	Date
Nico Hartmann	ec4f19d530	[turbofan] Properly perform range check for array access Turbofan optimized array access returned incorrect values in some cases when a negative index was provided. This CL fixes this by changing the way those bounds checks are performed in JSNativeContextSpecialization. Bug: chromium:1320641 Change-Id: Id1f06680ccf7964994d179f7fb44199a0b1245b1 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147622 Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Commit-Queue: Nico Hartmann <nicohartmann@chromium.org> Cr-Commit-Position: refs/heads/main@{#85207}	2023-01-11 10:49:41 +00:00
Leszek Swirski	ce59644aab	Revert "[heap] Move methods from LocalEmbedderHeapTracer to CppHeap" This reverts commit `40b002ffbc`. Reason for revert: Speculative revert for roll failures (e.g. https://chromium-swarm.appspot.com/task?id=5fb7fceb6da89111) Original change's description: > [heap] Move methods from LocalEmbedderHeapTracer to CppHeap > > Move methods around tracing to CppHeap and simplifies overall tracing > logic. > > Bug: v8:13207 > Change-Id: I539fba924ba3f8f329405e084b999b18a7adfe7e > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147610 > Reviewed-by: Omer Katz <omerkatz@chromium.org> > Commit-Queue: Michael Lippautz <mlippautz@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85152} Bug: v8:13207 Change-Id: Icf20310eaf3bbb7b11cd136f6ed242f98659d863 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4155014 Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Owners-Override: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85206}	2023-01-11 10:34:54 +00:00
Michael Achenbach	0199cde71f	[trials] Add new contradictions after readonly-flags introduction No-Try: true Bug: v8:10577 Change-Id: I9d17d907f900dbb734ed6e6c22bf7a75766082c0 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4154412 Commit-Queue: Jakob Linke <jgruber@chromium.org> Auto-Submit: Michael Achenbach <machenbach@chromium.org> Reviewed-by: Jakob Linke <jgruber@chromium.org> Cr-Commit-Position: refs/heads/main@{#85205}	2023-01-11 10:17:41 +00:00
Manos Koukoutos	08eb7fec3d	[wasm-gc] Fix typing of phis Phis should be typed correctly in the wasm typer even if the branch of the first phi input is unreachable. Bug: v8:7748 Change-Id: I9276127c0f92f9b74f61dd19502790c779ae3393 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151198 Reviewed-by: Jakob Kummerow <jkummerow@chromium.org> Commit-Queue: Manos Koukoutos <manoskouk@chromium.org> Cr-Commit-Position: refs/heads/main@{#85204}	2023-01-11 10:05:36 +00:00
Leszek Swirski	734795c1a0	Revert "Reland "[heap] Adjust pretenuring heuristic for MinorMC"" This reverts commit `47405154da`. Reason for revert: Speculative revert for roll failures: (https://ci.chromium.org/ui/p/chromium/builders/try/linux_chromium_tsan_rel_ng/1395090/overview and others) Original change's description: > Reland "[heap] Adjust pretenuring heuristic for MinorMC" > > This is a reland of commit `a614ccb8f7` > > This CL will cause a performance regression when running with MinorMC on > the bots. However this regression is expected (due to delaying pretenuring > decisions) and we anyway result from relanding crrev.com/c/4092734. > > Original change's description: > > [heap] Adjust pretenuring heuristic for MinorMC > > > > MinorMC needed to process pretenuring feedback both after sweeping and > > at the end of the atomic pause, despite having no new feedback at the > > end of the atomic pause, because the heuristics didn't hold after > > sweeping. This CL adjusts the heuristics for MinorMC so that processing > > twice is no longer needed. > > > > Bug: v8:12612 > > Change-Id: I4d3ebaeaa6e7868bcdcae6fbdb3bcecb0ebcb8bf > > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4085983 > > Reviewed-by: Michael Lippautz <mlippautz@chromium.org> > > Commit-Queue: Omer Katz <omerkatz@chromium.org> > > Cr-Commit-Position: refs/heads/main@{#84730} > > Bug: v8:12612 > Change-Id: I3101f8c8b4c1d34ff95802fbc8c8d1fff81e8ddd > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147607 > Commit-Queue: Omer Katz <omerkatz@chromium.org> > Reviewed-by: Michael Lippautz <mlippautz@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85161} Bug: v8:12612 Change-Id: Ib3efee6a75f4267dcdee74cac97d2ee785f35361 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151748 Owners-Override: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85203}	2023-01-11 09:25:08 +00:00
Manos Koukoutos	f918193221	[wasm-gc] Optimize call_indirect type checks Remove type check if declared signature exactly matches table signature. Remove null check if the table is non-nullable. Bug: v8:7748 Change-Id: Ie42bb77a40d76855dfa8379d58d9accd1e1c6d6d Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4136074 Commit-Queue: Manos Koukoutos <manoskouk@chromium.org> Reviewed-by: Jakob Kummerow <jkummerow@chromium.org> Cr-Commit-Position: refs/heads/main@{#85202}	2023-01-11 09:24:04 +00:00
Olivier Flückiger	77f99a6bb6	[static-roots] Expose static roots as symbols Create names for each static root. This is useful for debugging. It might also be useful to track changing names and ensure static-roots.h agrees with the actual name of the static root. Bug: v8:13466 Change-Id: I32e2b370d99aabe42c87e2a3db7a8e5ebaae3e04 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151189 Reviewed-by: Jakob Linke <jgruber@chromium.org> Commit-Queue: Olivier Flückiger <olivf@chromium.org> Cr-Commit-Position: refs/heads/main@{#85201}	2023-01-11 09:16:41 +00:00
Jakob Linke	355d6941d9	Remove jgruber from the maglev WATCHLISTS Change-Id: Id12d6f1e2470494731a18bbcb38f556947e8716e Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4154410 Auto-Submit: Jakob Linke <jgruber@chromium.org> Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85200}	2023-01-11 09:13:44 +00:00
Victor Gomes	92c9a4a84b	[maglev][arm64] Missing number load in CheckedObjectToIndex Bug: v8:7700 Change-Id: I841293e6a5190ed008e3e0d95bd0b9e8d304c770 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152478 Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Commit-Queue: Victor Gomes <victorgomes@chromium.org> Cr-Commit-Position: refs/heads/main@{#85199}	2023-01-11 08:32:44 +00:00
Michael Achenbach	8fe2791b37	[infra] Update Windows-10 version for testing No-Try: true Bug: chromium:1406448 Change-Id: Ife4643913e340c382eaf8738b13bdb47b4b6f46d Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4154411 Auto-Submit: Michael Achenbach <machenbach@chromium.org> Commit-Queue: Alexander Schulze <alexschulze@chromium.org> Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by: Alexander Schulze <alexschulze@chromium.org> Cr-Commit-Position: refs/heads/main@{#85198}	2023-01-11 08:26:56 +00:00
Clemens Backes	cb004862a3	[wasm] Mark validated functions as such Functions validated during streaming compilation (via {ValidateSingleFunction}) should get marked as validated, to avoid unnecessary re-validation before compiling them. R=ahaas@chromium.org Change-Id: If0285e41774158c018adfc1041c27bd9302fbb86 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152483 Reviewed-by: Andreas Haas <ahaas@chromium.org> Commit-Queue: Clemens Backes <clemensb@chromium.org> Cr-Commit-Position: refs/heads/main@{#85197}	2023-01-11 06:43:57 +00:00
Simon Zünd	b0861973d5	[inspector] Fix catch prediction in async generators This CL adds some tests for async generators to ensure that we correctly report caught/uncaught exceptions. Most of the cases were fixed by the for-of fix: https://crrev.com/c/4146420 The remaining broken test cases contain a throw directly after a `yield`. For each ".next" call we create a new promise that we need to push on the promise stack before we actually resume the generator. R=bmeurer@chromium.org Fixed: chromium:1270780 Change-Id: I8365d20490451be37cc6973d8d91aeffed7e3511 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4146421 Reviewed-by: Benedikt Meurer <bmeurer@chromium.org> Commit-Queue: Simon Zünd <szuend@chromium.org> Cr-Commit-Position: refs/heads/main@{#85196}	2023-01-11 05:41:25 +00:00
Jaroslav Sevcik	b5c727768e	[inspector] Fix calculation of breakpoint hint offset Bug: chromium:1406169 Bug: chromium:1404643 Change-Id: I03fa130e64cd84f1559c123ca77eb740e424cc70 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152475 Reviewed-by: Benedikt Meurer <bmeurer@chromium.org> Commit-Queue: Jaroslav Sevcik <jarin@chromium.org> Commit-Queue: Benedikt Meurer <bmeurer@chromium.org> Cr-Commit-Position: refs/heads/main@{#85195}	2023-01-11 05:18:31 +00:00
John Paul Adrian Glaubitz	3cea5d5425	[runtime] Avoid {Object::operator->} for 32-bit big endian targets `878ccb33bd` converted the runtime code to avoid {Object::operator->} but missed the conversion of 32-bit big endian targets. Fix this. Change-Id: Idf3a08f03995136a7cabd5cc136412f25de2ea32 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4124995 Reviewed-by: Clemens Backes <clemensb@chromium.org> Commit-Queue: Clemens Backes <clemensb@chromium.org> Cr-Commit-Position: refs/heads/main@{#85194}	2023-01-10 20:19:08 +00:00
Jakob Kummerow	fe7f2350de	Only install conditional features if global is extensible Fixed: chromium:1404076 Change-Id: I6af834ff3b6082b01ea192a7792268c4c8e764f0 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151206 Reviewed-by: Andreas Haas <ahaas@chromium.org> Commit-Queue: Andreas Haas <ahaas@chromium.org> Auto-Submit: Jakob Kummerow <jkummerow@chromium.org> Cr-Commit-Position: refs/heads/main@{#85193}	2023-01-10 20:16:47 +00:00
Shu-yu Guo	b0be4f8ddb	[shared-struct] Fix shared barrier for always shared objects Currently the shared value barrier manually fast paths instance types for objects that are always in the shared heap. This CL makes a common superclass, AlwaysSharedSpaceJSObject, and uses that for the fast path. Bug: chromium:1402920, v8:12547 Fixed: chromium:1402920 Change-Id: I84421802791a4dc72925341eeb0cfc5949b8938a Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4134475 Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Shu-yu Guo <syg@chromium.org> Cr-Commit-Position: refs/heads/main@{#85192}	2023-01-10 19:07:40 +00:00
Omer Katz	59657281c2	[heap] Fix false OLD_TO_OLD remembered set in MinorMC A MinorMC in a client isolate while incremental marking is active in the main isolate may observe an object in the shared heap as residing on an evacuation candidate. It would then treat it as OLD_TO_OLD rather than OLD_TO_SHARED. This logic is obsolete and no longer needed since MinorMC is not interleaved with full GCs and only need to record OLD_TO_NEW and OLD_TO_SHARED slots. Fix by removing OLD_TO_OLD and OLD_TO_CODE recording. Bug: chromium:1402660 Change-Id: I5482d3fe7d7a4eeb00be13445d66f178a3ffe2fb Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152485 Commit-Queue: Omer Katz <omerkatz@chromium.org> Reviewed-by: Dominik Inführ <dinfuehr@chromium.org> Cr-Commit-Position: refs/heads/main@{#85191}	2023-01-10 19:05:47 +00:00
Victor Gomes	12a2fc2aad	[maglev][arm64] Add MaterialiseValueNode Drive-by fixes: 1. On x64, avoid reloading from memory a value already in a register. 2. On arm64, pop has the wrong order of the padding/value. Bug: v8:7700 Change-Id: I3baedcc280f5c544cc9d44b37aaf80e4eb8bd636 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152472 Commit-Queue: Victor Gomes <victorgomes@chromium.org> Reviewed-by: Patrick Thier <pthier@chromium.org> Commit-Queue: Patrick Thier <pthier@chromium.org> Auto-Submit: Victor Gomes <victorgomes@chromium.org> Cr-Commit-Position: refs/heads/main@{#85190}	2023-01-10 17:05:01 +00:00
Leszek Swirski	41e79f0f24	[maglev] Re-enable on foozie Bug: v8:7700 Change-Id: I96a43e1497245cddf17e898fe36dd67ce88b8874 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151202 Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by: Michael Achenbach <machenbach@chromium.org> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85189}	2023-01-10 15:37:17 +00:00
Jakob Kummerow	6bc1c1f2b6	[wasm] Drop overly aggressive DCHECK in TriggerTierUp Fixed: chromium:1404074 Change-Id: Ic8171d035f5eb758a6f60674a21635d0dceff23c Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151205 Commit-Queue: Jakob Kummerow <jkummerow@chromium.org> Reviewed-by: Andreas Haas <ahaas@chromium.org> Commit-Queue: Andreas Haas <ahaas@chromium.org> Auto-Submit: Jakob Kummerow <jkummerow@chromium.org> Cr-Commit-Position: refs/heads/main@{#85188}	2023-01-10 14:55:40 +00:00
Qifan Pan	5cf5e8184b	[js-perf-test] Clean up BigInt perf tests This CL removes - redundant perf tests for addition and subtraction - deprecated perf tests of addition without optimization - perf tests for error throwing Bug: v8:9407 Change-Id: Ib6c6015e1547ed87de071c430661cb2ad084c9ca Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151201 Reviewed-by: Jakob Kummerow <jkummerow@chromium.org> Reviewed-by: Nico Hartmann <nicohartmann@chromium.org> Commit-Queue: Qifan Pan <panq@google.com> Cr-Commit-Position: refs/heads/main@{#85187}	2023-01-10 14:52:10 +00:00
George Wort	22ec1bc787	[turbolizer] Allow live range view to be narrowed by instructions Allow the user to specify the range of instructions that are shown on the live ranges grid so as to ease performance issues. Bug: v8:7327 Change-Id: I431e4464155427f59adf3a2229806c6f11c471be Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4110973 Commit-Queue: George Wort <george.wort@arm.com> Reviewed-by: Nico Hartmann <nicohartmann@chromium.org> Cr-Commit-Position: refs/heads/main@{#85186}	2023-01-10 14:51:04 +00:00
pthier	40f3d61836	[maglev] Fix Function.prototype.apply with spread Bug: v8:7700, chromium:1405445 Change-Id: I5faeb7e5229f55fdbd5cf11d79fc44d285b4bea9 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151200 Commit-Queue: Patrick Thier <pthier@chromium.org> Reviewed-by: Victor Gomes <victorgomes@chromium.org> Cr-Commit-Position: refs/heads/main@{#85185}	2023-01-10 14:50:00 +00:00
Clemens Backes	5134d16904	[wasm] Skip second pass over signature if not needed Most Wasm signatures still do not contain any tagged parameters. Thus skip the second pass over the signature if we did not see any tagged parameter before. R=ahaas@chromium.org Bug: v8:13565 Change-Id: Icf0df86bc96125b38adb65f074166b6b3c47b722 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147615 Reviewed-by: Andreas Haas <ahaas@chromium.org> Commit-Queue: Clemens Backes <clemensb@chromium.org> Cr-Commit-Position: refs/heads/main@{#85184}	2023-01-10 14:45:42 +00:00
Olivier Flückiger	643b458b07	[static-roots] Use static roots in CSA Like in https://chromium-review.googlesource.com/c/v8/v8/+/4130075 we add the same optimizations to non-C++ builtins. Bug: v8:13466 Change-Id: I20600f01c6966ef5b3e66cdf934cf895d60d6847 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151195 Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Olivier Flückiger <olivf@chromium.org> Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Cr-Commit-Position: refs/heads/main@{#85183}	2023-01-10 14:15:49 +00:00
Victor Gomes	50a20711c7	[maglev][arm64] Fix instance load in CheckedInternalizedString InstanceType is a 16bit word. Bug: v8:7700 Change-Id: Id73d2bf42fd682d3fa5136e17a9f85e353edbe4d Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151199 Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Auto-Submit: Victor Gomes <victorgomes@chromium.org> Commit-Queue: Victor Gomes <victorgomes@chromium.org> Commit-Queue: Darius Mercadier <dmercadier@chromium.org> Cr-Commit-Position: refs/heads/main@{#85182}	2023-01-10 14:01:28 +00:00
Manos Koukoutos	a2d33fcf5f	[wasm-gc][turbofan] Struct and array operators We add simplified Turbofan operators for the following wasm-gc operations: struct.get/set, array.get/set, array.length, and array length initialization. We then lower them to object load/store operators in WasmGCOperatorReducer. Bug: v8:7748 Change-Id: I3b40df1419e5ad98562e6bec6c4a3d1a4de63c71 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4146428 Reviewed-by: Maya Lekova <mslekova@chromium.org> Reviewed-by: Jakob Kummerow <jkummerow@chromium.org> Commit-Queue: Manos Koukoutos <manoskouk@chromium.org> Cr-Commit-Position: refs/heads/main@{#85181}	2023-01-10 14:00:22 +00:00
Leszek Swirski	b08d76e22d	Reland "[maglev] Force (U)Int32 values to always be zero extended" This is a reland of commit `fe54336953` The reland fixes an arm64 compilation error. Original change's description: > [maglev] Force (U)Int32 values to always be zero extended > > Ensure that (U)Int32 values are always zero extended (in particular, > after Float64 truncation and constant materialisation), and add debug > code which asserts that (U)Int32 register inputs to nodes are zero > extended at input read time. > > Bug: v8:7700 > Change-Id: Idbebabdd48bc7a6d2d73f1dfce7da629b5814ca5 > Fixed: chromium:1404066 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147621 > Reviewed-by: Victor Gomes <victorgomes@chromium.org> > Auto-Submit: Leszek Swirski <leszeks@chromium.org> > Commit-Queue: Leszek Swirski <leszeks@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85169} Bug: v8:7700 Fixed: chromium:1404066 Change-Id: I4f61acfd3a1cdbc8c1976bb1731441cb1e8fe784 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151569 Reviewed-by: Victor Gomes <victorgomes@chromium.org> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85180}	2023-01-10 13:31:54 +00:00
Nico Hartmann	d25d23f54d	[turboshaft] Type-based reduction verification Bug: v8:12783 Change-Id: Icb0ff1ff228acf84c8fd4e5a0896ef6558f57248 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4120260 Commit-Queue: Nico Hartmann <nicohartmann@chromium.org> Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Cr-Commit-Position: refs/heads/main@{#85179}	2023-01-10 13:26:47 +00:00
Victor Gomes	edd7739b63	Reland "[maglev] Remove kScratchRegister in maglev-ir" This is a reland of commit `3cc300558e` Original change's description: > [maglev] Remove kScratchRegister in maglev-ir > > The use of kScratchRegister in arm64 code is unsafe. Since a scratch > scope could re-use the same register. Ideally, we should remove it > altogether, but we still currently require it for the ParallelMover. > > Bug: v8:7700 > Change-Id: I46c93874632a3d505ef71a7bf790c31fb5fd46d6 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147617 > Commit-Queue: Victor Gomes <victorgomes@chromium.org> > Reviewed-by: Darius Mercadier <dmercadier@chromium.org> > Commit-Queue: Darius Mercadier <dmercadier@chromium.org> > Auto-Submit: Victor Gomes <victorgomes@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85156} Bug: v8:7700 Change-Id: I7de621b19da48c234ccb18ca702aa041673a1c2e Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151489 Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Commit-Queue: Victor Gomes <victorgomes@chromium.org> Cr-Commit-Position: refs/heads/main@{#85178}	2023-01-10 13:22:31 +00:00
Leszek Swirski	d18fc97189	Revert "[maglev] Test maglev on Mac Arm64 bots" This reverts commit `c6e96cf622`. Reason for revert: Not yet... https://ci.chromium.org/ui/p/v8/builders/ci/V8%20Linux%20-%20arm64%20-%20sim%20-%20MSAN/47672/overview Original change's description: > [maglev] Test maglev on Mac Arm64 bots > > Also remove unnecessary maglev runs on x64 FYI bots, since maglev runs > on the main waterfall's x64 bots already. > > Bug: v8:7700 > Change-Id: I5bb23c3ba7696b48f2fe1af4036a3de8c5b1801a > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4128092 > Reviewed-by: Alexander Schulze <alexschulze@chromium.org> > Commit-Queue: Leszek Swirski <leszeks@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85174} Bug: v8:7700 Change-Id: Ic9318aacc16086ab5bc31e7c24926121e7096964 No-Presubmit: true No-Tree-Checks: true No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4152250 Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Commit-Queue: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Owners-Override: Leszek Swirski <leszeks@chromium.org> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85177}	2023-01-10 12:39:09 +00:00
Dominik Inführ	40a5a963e6	[heap] Turn SLOW_DCHECK into DCHECK The condition is a simple page flag check so shouldn't be too expensive. This will help investigate the linked issue which is currently not reproducible. Bug: v8:13267, chromium:1405324 Change-Id: I3e93dd120884e81814b3bb59626ea45721d1a86d Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151196 Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Commit-Queue: Dominik Inführ <dinfuehr@chromium.org> Commit-Queue: Michael Lippautz <mlippautz@chromium.org> Auto-Submit: Dominik Inführ <dinfuehr@chromium.org> Cr-Commit-Position: refs/heads/main@{#85176}	2023-01-10 12:15:36 +00:00
Dominik Inführ	f8eebf3365	[heap] Enable --shared-space by default Bug: v8:13267 Change-Id: Ie887ff8183fd3a115fd95a7e24b46c654bc15b28 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151188 Auto-Submit: Dominik Inführ <dinfuehr@chromium.org> Commit-Queue: Michael Lippautz <mlippautz@chromium.org> Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Cr-Commit-Position: refs/heads/main@{#85175}	2023-01-10 11:58:30 +00:00
Leszek Swirski	c6e96cf622	[maglev] Test maglev on Mac Arm64 bots Also remove unnecessary maglev runs on x64 FYI bots, since maglev runs on the main waterfall's x64 bots already. Bug: v8:7700 Change-Id: I5bb23c3ba7696b48f2fe1af4036a3de8c5b1801a Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4128092 Reviewed-by: Alexander Schulze <alexschulze@chromium.org> Commit-Queue: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85174}	2023-01-10 11:48:50 +00:00
Al Muthanna Athamina	966f5a4037	Modify tracking bug for test skip for better tracking Bug: chromium:1394659 Change-Id: I24a76965d624d18237cbd32ca7e149255ad70baf No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151192 Reviewed-by: Andreas Haas <ahaas@chromium.org> Commit-Queue: Almothana Athamneh <almuthanna@chromium.org> Auto-Submit: Almothana Athamneh <almuthanna@chromium.org> Cr-Commit-Position: refs/heads/main@{#85173}	2023-01-10 11:42:15 +00:00
Jakob Linke	6e1b9141ec	Reland "[flags,testrunner] Consider readonly flags for conflict detection" This is a reland of commit `ebd933037e` Original change's description: > [flags,testrunner] Consider readonly flags for conflict detection > > Flag conflict detection 1) bails out on incompatible flag values (e.g. > --jitless and --turbofan) and 2) handles such bailouts transparently in > the test runner by marking affected tests as OUTCOMES_FAIL. > > This CL adds full support for readonly flags to this system, together > with required additional annotations in variants.py. > > Drive-by: assert proper use of v8_enable_slow_dchecks, and add > support when dcheck_always_on is set. > Drive-by: introduce has_maglev build variable detection based on > v8_enable_maglev and use that for .status file annotations. > Drive-by: protect against unintended overwrites of build variables > in statusfile.py. > > Cq-Include-Trybots: luci.v8.try:v8_linux64_fyi_rel > Bug: v8:13629,v8:10577 > Change-Id: I04de399139a0490806df8bfee7e75e2ec767b4b5 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4135879 > Reviewed-by: Tobias Tebbi <tebbi@chromium.org> > Reviewed-by: Victor Gomes <victorgomes@chromium.org> > Commit-Queue: Jakob Linke <jgruber@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85130} Bug: v8:13629,v8:10577 Change-Id: I49ce322c3fda00a1e1e280d99d2d818772533927 Cq-Include-Trybots: luci.v8.try:v8_linux64_fyi_rel Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151087 Reviewed-by: Victor Gomes <victorgomes@chromium.org> Commit-Queue: Victor Gomes <victorgomes@chromium.org> Auto-Submit: Jakob Linke <jgruber@chromium.org> Reviewed-by: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85172}	2023-01-10 10:52:11 +00:00
Victor Gomes	eb00054f61	[maglev] Consider DataView/TypedArray backed by RAB and GSAB - For TypedArrays, we bail out trying to reduce the access. - For DataView, we check dynamically the DataView object bitfield and call a builtin on a slow path. Drive by: fix presubmit lint to allow assertOptimized when passing --maglev flag. Bug: v8:7700, v8:13645 Change-Id: I3ce4773466f045ff10c86c41734e00fbb94eb331 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4146435 Commit-Queue: Victor Gomes <victorgomes@chromium.org> Reviewed-by: Marja Hölttä <marja@chromium.org> Reviewed-by: Darius Mercadier <dmercadier@chromium.org> Auto-Submit: Victor Gomes <victorgomes@chromium.org> Cr-Commit-Position: refs/heads/main@{#85171}	2023-01-10 10:51:07 +00:00
Leszek Swirski	82c7f93aeb	Revert "[maglev] Force (U)Int32 values to always be zero extended" This reverts commit `fe54336953`. Reason for revert: Android build failure: https://ci.chromium.org/ui/p/v8/builders/ci/V8%20Android%20Arm64%20-%20debug%20builder/28804/overview Original change's description: > [maglev] Force (U)Int32 values to always be zero extended > > Ensure that (U)Int32 values are always zero extended (in particular, > after Float64 truncation and constant materialisation), and add debug > code which asserts that (U)Int32 register inputs to nodes are zero > extended at input read time. > > Bug: v8:7700 > Change-Id: Idbebabdd48bc7a6d2d73f1dfce7da629b5814ca5 > Fixed: chromium:1404066 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147621 > Reviewed-by: Victor Gomes <victorgomes@chromium.org> > Auto-Submit: Leszek Swirski <leszeks@chromium.org> > Commit-Queue: Leszek Swirski <leszeks@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85169} Bug: v8:7700 Change-Id: Ifa7a5541fda93522d1ea34dafdfc88d2561a8795 No-Presubmit: true No-Tree-Checks: true No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151488 Auto-Submit: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Cr-Commit-Position: refs/heads/main@{#85170}	2023-01-10 10:28:15 +00:00
Leszek Swirski	fe54336953	[maglev] Force (U)Int32 values to always be zero extended Ensure that (U)Int32 values are always zero extended (in particular, after Float64 truncation and constant materialisation), and add debug code which asserts that (U)Int32 register inputs to nodes are zero extended at input read time. Bug: v8:7700 Change-Id: Idbebabdd48bc7a6d2d73f1dfce7da629b5814ca5 Fixed: chromium:1404066 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147621 Reviewed-by: Victor Gomes <victorgomes@chromium.org> Auto-Submit: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Leszek Swirski <leszeks@chromium.org> Cr-Commit-Position: refs/heads/main@{#85169}	2023-01-10 10:20:05 +00:00
Al Muthanna Athamina	5c9560658b	Skip intl/overrides/caching Bug: v8:13649 Change-Id: I49d6d51b1c762d21717569bae0db89a476ab1b77 No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4151191 Auto-Submit: Almothana Athamneh <almuthanna@chromium.org> Commit-Queue: Michael Achenbach <machenbach@chromium.org> Reviewed-by: Michael Achenbach <machenbach@chromium.org> Cr-Commit-Position: refs/heads/main@{#85168}	2023-01-10 09:45:05 +00:00
pthier	69df64a75c	Remove GC post-processing check from externalizing strings This check was probably relevant in the past (when GC was different), but it is unknown today why it exists. It can cause races in a concurrent set-up though, as tracking the post-processing state is not atomic. Due to possible races and no reason to check whether we are in GC post-processing phase, this check is removed from String::SupportsExternalization(). SupportsExternalization() was the only user of the logic. Drive-by: Remove tracking of GC post-processing state, as Change-Id: Id0a6dd25a8dc6044504b40f1c754612dedcacf75 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147612 Auto-Submit: Patrick Thier <pthier@chromium.org> Commit-Queue: Dominik Inführ <dinfuehr@chromium.org> Reviewed-by: Dominik Inführ <dinfuehr@chromium.org> Cr-Commit-Position: refs/heads/main@{#85167}	2023-01-10 07:43:21 +00:00
jiepan	499697b157	[disasm][x64] Add missing disasm for opcode F6F7 Only byte displacement was handled for opcode F6F7, this CL adds 32-bit displacement support. Change-Id: I40b3140df582cd0dce008dbbb957e615751c2131 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4144627 Reviewed-by: Victor Gomes <victorgomes@chromium.org> Commit-Queue: Jie Pan <jie.pan@intel.com> Cr-Commit-Position: refs/heads/main@{#85166}	2023-01-10 07:15:05 +00:00
v8-ci-autoroll-builder	d6dc9a71fb	Update V8 DEPS (trusted) Rolling v8/build: `7ab406c..fc82049` Rolling v8/buildtools: `cf8d11e..f017c8f` Rolling v8/third_party/catapult: https://chromium.googlesource.com/catapult/+log/163b421..c470a55 Rolling v8/third_party/depot_tools: `6f90547..dcb79c7` Rolling v8/third_party/fuchsia-sdk/sdk: version:11.20230108.3.1..version:11.20230109.2.2 Rolling v8/tools/clang: `e8c31f9..341ed9b` Change-Id: I2124485ba0d4e82860412686a0e7c323bd2c441d Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4150727 Commit-Queue: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com> Bot-Commit: v8-ci-autoroll-builder <v8-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com> Cr-Commit-Position: refs/heads/main@{#85165}	2023-01-10 07:14:03 +00:00
Simon Zünd	e56fe00bc3	[debug] Fix catch prediction for for-of statement The bytecode generator currently uses the wrong catch prediction in the desugaring for for-of loops. This leads to unexpected pauses in DevTools when 'pause on uncaught exceptions' is enabled, e.g. for throwing generators. Specifically the call to .next of the iterator is unconditionally marked as 'uncaught' instead of using the surrounding catch prediction. Similarly, in the desugared "finally" block we call .return which can also throw. Note that if both the loop body and the ".return" throws, the exception from ".return" is caught and only the loop body exception is re-thrown. We still pause on both throw sites since we can't detect this case statically. R=leszeks@chromium.org Bug: chromium:1270780 Change-Id: I2e642ef3fbfcfc6ad19e92cf611188801ebf2450 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4146420 Reviewed-by: Leszek Swirski <leszeks@chromium.org> Commit-Queue: Simon Zünd <szuend@chromium.org> Cr-Commit-Position: refs/heads/main@{#85164}	2023-01-10 07:12:59 +00:00
Deepti Gandluri	06464a5985	Revert "[flags] Remove --harmony-class-static-blocks" This reverts commit `969fb7796a`. Reason for revert: Test fail on V8 Linux64 - minor mc - debug - https://logs.chromium.org/logs/v8/buildbucket/cr-buildbucket/8792401441362374289/+/u/Check_-_minor_mc/TyperTest.Monotonicity_ToObject Original change's description: > [flags] Remove --harmony-class-static-blocks > > The class static blocks proposal has shipped since M91. > > Bug: v8:11375 > Change-Id: Icec89ea7e4bbef325f2b12b5f7f829840d3f4575 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4144630 > Auto-Submit: Shu-yu Guo <syg@chromium.org> > Commit-Queue: Adam Klein <adamk@chromium.org> > Reviewed-by: Adam Klein <adamk@chromium.org> > Commit-Queue: Shu-yu Guo <syg@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85162} Bug: v8:11375 Change-Id: I51a4f68af456c3700606c5ddb5f32d244aca59dd No-Presubmit: true No-Tree-Checks: true No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4149236 Owners-Override: Deepti Gandluri <gdeepti@chromium.org> Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Commit-Queue: Deepti Gandluri <gdeepti@chromium.org> Auto-Submit: Deepti Gandluri <gdeepti@chromium.org> Cr-Commit-Position: refs/heads/main@{#85163}	2023-01-10 07:11:55 +00:00
Shu-yu Guo	969fb7796a	[flags] Remove --harmony-class-static-blocks The class static blocks proposal has shipped since M91. Bug: v8:11375 Change-Id: Icec89ea7e4bbef325f2b12b5f7f829840d3f4575 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4144630 Auto-Submit: Shu-yu Guo <syg@chromium.org> Commit-Queue: Adam Klein <adamk@chromium.org> Reviewed-by: Adam Klein <adamk@chromium.org> Commit-Queue: Shu-yu Guo <syg@chromium.org> Cr-Commit-Position: refs/heads/main@{#85162}	2023-01-10 00:04:43 +00:00
Omer Katz	47405154da	Reland "[heap] Adjust pretenuring heuristic for MinorMC" This is a reland of commit `a614ccb8f7` This CL will cause a performance regression when running with MinorMC on the bots. However this regression is expected (due to delaying pretenuring decisions) and we anyway result from relanding crrev.com/c/4092734. Original change's description: > [heap] Adjust pretenuring heuristic for MinorMC > > MinorMC needed to process pretenuring feedback both after sweeping and > at the end of the atomic pause, despite having no new feedback at the > end of the atomic pause, because the heuristics didn't hold after > sweeping. This CL adjusts the heuristics for MinorMC so that processing > twice is no longer needed. > > Bug: v8:12612 > Change-Id: I4d3ebaeaa6e7868bcdcae6fbdb3bcecb0ebcb8bf > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4085983 > Reviewed-by: Michael Lippautz <mlippautz@chromium.org> > Commit-Queue: Omer Katz <omerkatz@chromium.org> > Cr-Commit-Position: refs/heads/main@{#84730} Bug: v8:12612 Change-Id: I3101f8c8b4c1d34ff95802fbc8c8d1fff81e8ddd Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147607 Commit-Queue: Omer Katz <omerkatz@chromium.org> Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Cr-Commit-Position: refs/heads/main@{#85161}	2023-01-09 20:57:40 +00:00
Luis Fernando Pardo Sixtos	6706d51d0e	[shared-struct] Disallow SharedArray inline element access. There is no path to handle inline element access requiring a shared barrier check. Change-Id: Ia16d4792a136adebb753cc1eee9d2f45baeb0e46 Bug: v8:12547, chromium:1402921 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4144619 Commit-Queue: Luis Fernando Pardo Sixtos <lpardosixtos@microsoft.com> Reviewed-by: Jakob Linke <jgruber@chromium.org> Cr-Commit-Position: refs/heads/main@{#85160}	2023-01-09 20:25:40 +00:00
Deepti Gandluri	4baa96c84c	Revert "[maglev] Remove kScratchRegister in maglev-ir" This reverts commit `3cc300558e`. Reason for revert: Reverting because of TSAN failures https://logs.chromium.org/logs/v8/buildbucket/cr-buildbucket/8792427956695159937/+/u/Check/regress-1394663 Original change's description: > [maglev] Remove kScratchRegister in maglev-ir > > The use of kScratchRegister in arm64 code is unsafe. Since a scratch > scope could re-use the same register. Ideally, we should remove it > altogether, but we still currently require it for the ParallelMover. > > Bug: v8:7700 > Change-Id: I46c93874632a3d505ef71a7bf790c31fb5fd46d6 > Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147617 > Commit-Queue: Victor Gomes <victorgomes@chromium.org> > Reviewed-by: Darius Mercadier <dmercadier@chromium.org> > Commit-Queue: Darius Mercadier <dmercadier@chromium.org> > Auto-Submit: Victor Gomes <victorgomes@chromium.org> > Cr-Commit-Position: refs/heads/main@{#85156} Bug: v8:7700 Change-Id: Ib5a47c20932c28163fc2627c5b433ca64ab55730 No-Presubmit: true No-Tree-Checks: true No-Try: true Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4148267 Commit-Queue: Deepti Gandluri <gdeepti@chromium.org> Owners-Override: Deepti Gandluri <gdeepti@chromium.org> Reviewed-by: Deepti Gandluri <gdeepti@chromium.org> Bot-Commit: Rubber Stamper <rubber-stamper@appspot.gserviceaccount.com> Auto-Submit: Deepti Gandluri <gdeepti@chromium.org> Cr-Commit-Position: refs/heads/main@{#85159}	2023-01-09 18:10:14 +00:00
Nico Hartmann	0b327a7c61	[turbofan] Split JSNativeContextSpecialization::BuildElementAccess Change-Id: I69a0ac55d5a9aeae91e913e223a58c37b81091d3 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/4147623 Commit-Queue: Maya Lekova <mslekova@chromium.org> Auto-Submit: Nico Hartmann <nicohartmann@chromium.org> Reviewed-by: Maya Lekova <mslekova@chromium.org> Commit-Queue: Nico Hartmann <nicohartmann@chromium.org> Cr-Commit-Position: refs/heads/main@{#85158}	2023-01-09 17:48:45 +00:00

... 4 5 6 7 8 ...

79949 Commits