AuroraMiddleware/v8
1
0
Fork 0
Code Issues 2 Pull Requests Releases Wiki Activity
27900f17b8
v8/test
History
Georg Neis 27900f17b8 [compiler] Fix use of HeapObjectMatcher 
In a few places we incorrectly assumed to know the instance type of the
heap object. In particular, in JSCallReducer::ReduceDataViewAccess,
doing map inference on the receiver and determining that all maps are
JSDataView maps does not guarantee that the receiver is a JSDataView
constant because we might deopt before getting to the data view
operation.

Bug: chromium:1146652
Change-Id: I1611308c3ebe0d33fa6b0cf0938d777b4e6449ff
Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/2524440
Auto-Submit: Georg Neis <neis@chromium.org>
Commit-Queue: Maya Lekova <mslekova@chromium.org>
Reviewed-by: Maya Lekova <mslekova@chromium.org>
Cr-Commit-Position: refs/heads/master@{#71034}
2020-11-09 07:52:24 +00:00
..
benchmarks [test] Skip some slow benchmarks 2020-09-14 08:43:44 +00:00
cctest [cleanup][wasm] Replace min/max with std::min/std::max 2020-11-09 01:50:30 +00:00
common [cleanup][wasm] Replace min/max with std::min/std::max 2020-11-09 01:50:30 +00:00
debugger [inspector] Prepend isolateId to remoteObjectId 2020-10-18 10:39:57 +00:00
debugging Add DIR_METADATA files to v8. 2020-10-20 22:12:28 +00:00
fuzzer [inspector][test] Avoid leaks via tasks 2020-11-06 11:30:26 +00:00
fuzzilli Fix unhandled promise rejections in REPRL mode 2020-09-30 13:34:23 +00:00
inspector [inspector][test] Fix typo 2020-11-06 12:42:35 +00:00
intl Add DIR_METADATA files to v8. 2020-10-20 22:12:28 +00:00
js-perf-test [super property speed] Invert benchmark graphs 2020-08-31 09:24:46 +00:00
memory Reland^4 "[serializer] Allocate during deserialization" 2020-10-07 08:15:50 +00:00
message [flags] Remove --harmony-namespace-exports 2020-11-03 18:51:32 +00:00
mjsunit [compiler] Fix use of HeapObjectMatcher 2020-11-09 07:52:24 +00:00
mkgrokdump [heap] Move BaseSpace into base-space.h 2020-06-19 09:38:24 +00:00
mozilla [Respect] Prefer inclusive terms 2020-06-22 18:11:23 +00:00
test262 [flags] Remove --harmony-promise-all-settled 2020-11-03 19:34:42 +00:00
torque Reland "[torque] typed context slot access" 2020-08-06 11:32:38 +00:00
unittests [cleanup][wasm] Replace min/max with std::min/std::max 2020-11-09 01:50:30 +00:00
wasm-api-tests wasm/c-api: fix the index of StackTraceFrame 2020-10-13 07:34:26 +00:00
wasm-js [wasm] Update spec tests 2020-10-09 17:51:14 +00:00
wasm-spec-tests Add DIR_METADATA files to v8. 2020-10-20 22:12:28 +00:00
webkit Disallow \8 and \9 in strict mode and template literals 2020-08-03 18:05:14 +00:00
BUILD.gn [turbofan] Make OSR and stack slots compatible 2020-10-05 17:41:02 +00:00
OWNERS