AuroraMiddleware/v8 - v8 - Gitea: Git with a cup of tea

Author	SHA1	Message	Date
ishell@chromium.org	9be0c4d378	Fixed jump in non-SSE4.1 implementation of LMathFloor instruction on x64. BUG=chromium:370384 LOG=N R=ulan@chromium.org Review URL: https://codereview.chromium.org/261853009 git-svn-id: https://v8.googlecode.com/svn/branches/bleeding_edge@21171 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-06 14:20:46 +00:00
ulan@chromium.org	a872ffdabc	Do not call setters of read-only accessors. BUG= TEST=mjsunit/readonly-accessor R=jkummerow@chromium.org Review URL: https://codereview.chromium.org/271433002 git-svn-id: https://v8.googlecode.com/svn/branches/bleeding_edge@21158 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-06 08:34:48 +00:00
hpayer@chromium.org	dde49c9dc3	Set max new space size in tests to proper MB value. Revert "Limit old space size in test which require a large new space." This reverts commit r21103. Revert "Remove max space limits in tests." This reverts commit r21104. BUG= R=jkummerow@chromium.org Review URL: https://codereview.chromium.org/263103006 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21149 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-05 16:48:33 +00:00
wingo@igalia.com	275bfa1b61	Relocate suspended generator activations when enabling debug mode R=yangguo@chromium.org BUG=v8:3289 LOG=N Review URL: https://codereview.chromium.org/264973014 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21145 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-05 14:31:51 +00:00
jochen@chromium.org	8554da5c68	Revert r21141. Relocate suspended generator activations when enabling debug mode BUG=v8:3289 LOG=N R=yangguo@chromium.org Review URL: https://codereview.chromium.org/262193003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21142 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-05 13:28:21 +00:00
wingo@igalia.com	9a9943b564	Relocate suspended generator activations when enabling debug mode R=yangguo@chromium.org BUG=v8:3289 LOG=N Review URL: https://codereview.chromium.org/260423002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21141 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-05 12:57:14 +00:00
adamk@chromium.org	5ea893074c	Fix ObjectNotifierPerformChange leak after r21126 Due to overlapping names of natives and runtime functions, the wrong context was used for Notifier.prototype.performChange. The leak test has been augmented to properly cover the leaky case, and the test now passes. Also tightened up type checks in runtime.cc and removed Object.observe functions from knownIssues in fuzz-natives-part2.js. R=jkummerow@chromium.org Review URL: https://codereview.chromium.org/264793015 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21129 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-02 21:29:15 +00:00
rafaelw@chromium.org	72a090f3ee	Build cleanup following r21126. Marking Native* methods in object-observe.js as knownProblems in fuzz-natives TBR=verwaest Review URL: https://codereview.chromium.org/265883009 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21127 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-02 17:31:27 +00:00
rafaelw@chromium.org	1b270ef5ea	Re-enable Object.observe and add enforcement for security invariants. This patch reverts r21062 which disabled Object.observe and the relevant tests. It also adds enforcement for the following three invariants: 1) No observer may receive a change record describing changes to an object which is in different security origin (context have differing security tokens) 2) No observer may receive a change record whose context's security token is different from that of the object described by the change. 3) Object.getNotifier will return null if the caller and the provided object are in differing security origins Further, it ensures that the global object can never be observed nor a notifier retrieved for it. Tests are included. R=verwaest@chromium.org, rossberg LOG=Y Review URL: https://codereview.chromium.org/265503002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21122 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-02 13:55:11 +00:00
ishell@chromium.org	b4c1eda032	Checks for empty array case added before casting elements to FixedDoubleArray. BUG=chromium:369450 LOG=N R=bmeurer@chromium.org Review URL: https://codereview.chromium.org/264973008 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21118 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-02 11:30:24 +00:00
svenpanne@chromium.org	7bfc426fc9	Object.defineProperty shouldn't be a hint that we're constructing a dictionary. BUG=362870 LOG=y R=bmeurer@chromium.org Review URL: https://codereview.chromium.org/261583004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21109 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-05-02 06:02:00 +00:00
hpayer@chromium.org	56d0b9757e	Remove max space limits in tests. BUG= Review URL: https://codereview.chromium.org/263703003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21104 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 19:32:47 +00:00
hpayer@chromium.org	3dd05f8fc7	Limit old space size in test which require a large new space. BUG= Review URL: https://codereview.chromium.org/265673003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21103 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 18:57:25 +00:00
yangguo@chromium.org	7e367ae0ed	Reland "Trigger exception debug event for promises at the throw site." R=rossberg@chromium.org Review URL: https://codereview.chromium.org/266533003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21097 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 15:17:51 +00:00
yangguo@chromium.org	792af58115	Revert "Trigger exception debug event for promises at the throw site." This reverts r21092. R=ishell@chromium.org Review URL: https://codereview.chromium.org/262533009 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21094 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 14:51:41 +00:00
mvstanton@chromium.org	287f65aec9	CallICStub with a "never patch" approach by default. Patching will occur only when custom feedback needs to be gathered (future CLs). Now rebased on https://codereview.chromium.org/254623002/, which moves the type feedback vector to the SharedFunctionInfo. R=verwaest@chromium.org Review URL: https://codereview.chromium.org/247373002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21093 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 14:33:35 +00:00
yangguo@chromium.org	eed0e7e7a3	Trigger exception debug event for promises at the throw site. R=rossberg@chromium.org Review URL: https://codereview.chromium.org/260723002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21092 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 14:17:40 +00:00
alexandre.rames@arm.com	67ea9e4b42	ARM64: Generate optimized code for Math.floor and Math.round with double outputs. R=jkummerow@chromium.org, ulan@chromium.org Review URL: https://codereview.chromium.org/258793002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21091 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 13:38:00 +00:00
mvstanton@chromium.org	5e2ee2bac2	A new test needs to exit early on non-internationalization builds. R=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/265513003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21078 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 09:04:17 +00:00
mstarzinger@chromium.org	129c58c47d	Fix some more missing ToObject on Array.prototype. R=mvstanton@chromium.org BUG= Review URL: https://codereview.chromium.org/254103002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21077 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 08:52:00 +00:00
dslomov@chromium.org	ace15fa612	ES6: Add support for Array.prototype.fill() BUG=v8:3273 LOG=Y R=dslomov@chromium.org Review URL: https://codereview.chromium.org/240873002 Patch from Adrian Perez <aperez@igalia.com>. git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21074 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 08:28:29 +00:00
mvstanton@chromium.org	0c3e70a3b6	Bugfix: internationalization routines fail on monkeypatching. Calls to Object.defineProperty() and Object.apply() are not safe. R=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/253903003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21071 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-30 07:36:12 +00:00
danno@chromium.org	55fbf13ec1	disable Object.observe R=danno@chromium.org, danno BUG= Review URL: https://codereview.chromium.org/252063003 Patch from Rafael Weinstein <rafaelw@chromium.org>. git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21062 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-29 15:11:57 +00:00
rossberg@chromium.org	cf3a3a8844	Revert "PromiseThen should ignore non-function parameters." Wrong Blink test expectations, need to fix later. TBR=machenbach@chromium.org BUG= Review URL: https://codereview.chromium.org/251813004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21028 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-28 15:57:25 +00:00
rossberg@chromium.org	f40feecb4d	PromiseThen should ignore non-function parameters. When non-function parameters are given, PromiseThen should work as if undefined parameters were given. BUG=347455 LOG=Y R=rossberg@chromium.org Review URL: https://codereview.chromium.org/180723011 Patch from Yutaka Hirano <yhirano@chromium.org>. git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21025 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-28 15:19:15 +00:00
yangguo@chromium.org	1a9649ae13	Error stack getter should not overwrite itself with a data property. R=ulan@chromium.org BUG=v8:3294 LOG=Y Review URL: https://codereview.chromium.org/258933007 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21016 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-28 12:14:36 +00:00
yangguo@chromium.org	da0ca2afc2	Expose promise value through promise mirror. R=rossberg@chromium.org, yurys@chromium.org BUG=v8:3093 LOG=Y Review URL: https://codereview.chromium.org/258823012 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21003 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-28 08:33:23 +00:00
yangguo@chromium.org	81a101678f	Expose promise status through promise mirror. R=aandrey@chromium.org, rossberg@chromium.org, yurys@chromium.org BUG=v8:3093 LOG=Y Review URL: https://codereview.chromium.org/257803005 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20988 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 14:01:01 +00:00
jarin@chromium.org	ff884e06ae	Fix materialization of accessor frames with captured receivers I have fixed skipping of the receiver object to materialize captured objects. This is done with a new DoTranslateSkip method. We should consider unifying DoTranslateSkip, DoTranslateObject and DoTranslateCommand as they do the almost the same thing - they only differ in where they store the result. The change also turns bunch of ASSERTs into CHECKs. R=mstarzinger@chromium.org BUG=359441 TEST=test/mjsunit/regress/regress-359441.js LOG=N Review URL: https://codereview.chromium.org/225283006 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20978 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 12:58:15 +00:00
jarin@chromium.org	d557425a0c	Preserve Smi representation of non-escaping fields. R=mstarzinger@chromium.org BUG= Review URL: https://codereview.chromium.org/251493004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20971 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 11:29:02 +00:00
verwaest@chromium.org	d2179f2062	Don't adopt the AST id from previous if id is none, since previous may have mismatching expected stack height. Additionally, harden merging of simulates after instructions with side effects and ensure there's a simulate before HEnterInlined. R=jarin@chromium.org Review URL: https://codereview.chromium.org/252583004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20967 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 09:52:11 +00:00
hpayer@chromium.org	20107bf2d8	Remove lazy sweeping. BUG= R=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/254603002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20966 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 09:50:42 +00:00
wingo@igalia.com	df07a82771	Add tests for generator/debugger interaction R=yangguo@chromium.org BUG= Review URL: https://codereview.chromium.org/247003004 Review URL: https://codereview.chromium.org/256733004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20964 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 09:35:41 +00:00
yangguo@chromium.org	28f5cf398e	Trigger debug event on not yet caught exception in promises. R=aandrey@chromium.org, rossberg@chromium.org, yurys@chromium.org BUG=v8:3093 LOG=Y Review URL: https://codereview.chromium.org/249503002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20956 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-25 07:03:05 +00:00
verwaest@chromium.org	a55821eef2	Mark the simulate before EnterInlined with BailoutId::None(), and set ReturnId on EnterInlined. When merging simulates into the simulate before enter-inlined, adopt the last AST id that gets merged into it. BUG=v8:3282 LOG=n R=titzer@chromium.org Review URL: https://codereview.chromium.org/257583004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20949 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 15:20:53 +00:00
ulan@chromium.org	72358c7fed	Convert function.length to API-style accessor. TEST=mjsunit/function-length-accessor R=yangguo@chromium.org Review URL: https://codereview.chromium.org/257423009 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20937 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 11:24:13 +00:00
bmeurer@chromium.org	f95b815d5b	Revert "Add tests for generator/debugger interaction" This reverts commit r20921 for breaking the ARM/ARM64 bots. TBR=wingo@igalia.com Review URL: https://codereview.chromium.org/255563003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20923 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 08:26:16 +00:00
bmeurer@chromium.org	052f9e9b6d	Make DescriptorArray::IsMoreGeneralThan() and DescriptorArray::Merge() compatible again. BUG=365172 LOG=y TEST=mjsunit/regress/regress-365172-[1-3] R=svenpanne@chromium.org Review URL: https://codereview.chromium.org/255513005 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20922 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 08:07:14 +00:00
wingo@igalia.com	9d5d1764f9	Add tests for generator/debugger interaction R=yangguo@chromium.org BUG= Review URL: https://codereview.chromium.org/247003004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20921 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 07:24:38 +00:00
jarin@chromium.org	8c57b45042	Fix C++ type of Factory::NewFixedDoubleArray. The change fixes the C++ type of Factory::NewFixedDoubleArray to reflect the empty array case, where we return an empty FixedArray (rather than FixedDoubleArray). R=mvstanton@chromium.org BUG= Review URL: https://codereview.chromium.org/249593002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20918 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-24 05:29:00 +00:00
wingo@igalia.com	2194f3f858	Move bug 3280 regression test to mjsunit/harmony R=yangguo@chromium.org BUG= Review URL: https://codereview.chromium.org/248483004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20913 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 15:01:30 +00:00
jarin@chromium.org	cd3b9b8950	Fix the Array.push simulate for non-effect context. R=danno@google.com, danno@chromium.org BUG= Review URL: https://codereview.chromium.org/246543007 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20912 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 14:26:53 +00:00
danno@chromium.org	2aa8941ad4	Fix deoptimization problem with inlined Array.push() R=jarin@chromium.org LOG=N Review URL: https://codereview.chromium.org/247573008 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20911 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 13:20:28 +00:00
mstarzinger@chromium.org	66ec299808	Fix ToObject and Object.isSealed in four Array builtins. R=mvstanton@chromium.org TEST=mjsunit/regress/regress-builtinbust-6 Review URL: https://codereview.chromium.org/240223006 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20909 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 12:48:32 +00:00
jarin@chromium.org	783eb25a8c	Avoid setting transitions in-place for cached maps when observed R=verwaest@chromium.org BUG= Review URL: https://codereview.chromium.org/246523004 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20900 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 09:21:24 +00:00
wingo@igalia.com	e12ae547cf	Avoid exposing compiler-allocated temporaries to the debugger R=yangguo@chromium.org BUG= Review URL: https://codereview.chromium.org/245963006 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20899 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-23 08:58:41 +00:00
adamk@chromium.org	71750f7be8	Fix issue with Map/SetIterator and types BUG=v8:3281 LOG=N R=jkummerow@chromium.org Review URL: https://codereview.chromium.org/246993003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20893 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-22 18:14:46 +00:00
danno@chromium.org	b4fa81dbca	Insert HSimulate immediately after Crankshaft-inlined push. R=jarin@chromium.org LOG=N Review URL: https://codereview.chromium.org/247383002 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20889 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-22 12:55:40 +00:00
wingo@igalia.com	a2ac40aca7	Context-allocate all parameters in generators Generator function scopes have forced context allocation. Ensure that all variables in such scopes get context allocation -- even unused variables. This fixes an assertion when reifying generator scopes in the debugger. R=yangguo@chromium.org LOG=Y BUG=v8:3280 Review URL: https://codereview.chromium.org/246733003 git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20883 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-22 11:34:16 +00:00
adamk@chromium.org	3308cb5857	ES6: Add support for Map/Set forEach This implements MapIterator and SetIterator which matches the same constructs in the ES6 spec. However, these 2 iterators are not exposed to user code yet. They are only used internally to implement Map.prototype.forEach and Set.prototype.forEach. Each iterator has a reference to the OrderedHashTable where it directly accesses the hash table's entries. The OrderedHashTable has a reference to the newest iterator and each iterator has a reference to the next and previous iterator, effectively creating a double linked list. When the OrderedHashTable is mutated (or replaced) all the iterators are updated. When the iterator iterates passed the end of the data table it closes itself. Closed iterators no longer have a reference to the OrderedHashTable and they are removed from the double linked list. In the case of Map/Set forEach, we manually call Close on the iterator in case an exception was thrown so that the iterator never reached the end. At this point the OrderedHashTable keeps all the non finished iterators alive but since the only thing we currently expose is forEach there are no unfinished iterators outside a forEach call. Once we expose the iterators to user code we will need to make the references from the OrderedHashTable to the iterators weak and have some mechanism to close an iterator when it is garbage collected. BUG=1793, 2323 LOG=Y R=adamk@chromium.org TBR=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/238063009 Patch from Erik Arvidsson <arv@chromium.org>. git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@20857 ce2b1a6d-e550-0410-aec6-3dcde31c8c00	2014-04-17 17:45:32 +00:00

1 2 3 4 5 ...

2836 Commits