Title: [201589] trunk/Source/_javascript_Core
Revision 201589
Author msab...@apple.com
Date 2016-06-01 21:07:14 -0700 (Wed, 01 Jun 2016)
Log Message
Runaway WebContent process CPU & memory @ foxnews.com
https://bugs.webkit.org/show_bug.cgi?id=158290
Reviewed by Mark Lam.
Clear the throw
Title: [201172] trunk/Source/_javascript_Core
Revision 201172
Author msab...@apple.com
Date 2016-05-19 11:39:04 -0700 (Thu, 19 May 2016)
Log Message
Unreviewed build fix.
Skipping this new test as it times out on the bots.
Issue tracked in https://bugs.webkit.org/show_bug.cgi?id=157903
Title: [201105] trunk
Revision 201105
Author msab...@apple.com
Date 2016-05-18 15:36:01 -0700 (Wed, 18 May 2016)
Log Message
r199812 broke test262
https://bugs.webkit.org/show_bug.cgi?id=157595
Reviewed by Filip Pizlo.
Source/_javascript_Core:
Added a reasonable limit to the size of th
Title: [200993] trunk/Source/WTF
Revision 200993
Author msab...@apple.com
Date 2016-05-16 21:02:40 -0700 (Mon, 16 May 2016)
Log Message
ARMV7K: Crash at _javascript_Core: WTF::ScopedLambdaFunctor
Modified Paths
trunk/Source/WTF/ChangeLog
trunk/Source/WTF/wtf/ParkingLot.cpp
trunk/Source/
Title: [200946] trunk
Revision 200946
Author msab...@apple.com
Date 2016-05-16 10:40:15 -0700 (Mon, 16 May 2016)
Log Message
RegExp /y flag incorrect handling of mixed-length alternation
https://bugs.webkit.org/show_bug.cgi?id=157723
Reviewed by Filip Pizlo.
Source/_javascript_Core:
Pr
Title: [200666] trunk/Source/_javascript_Core
Revision 200666
Author msab...@apple.com
Date 2016-05-10 18:56:00 -0700 (Tue, 10 May 2016)
Log Message
REGRESSION(r200447): Unable to build C_LOOP with clang version 800.0.12 or higher
https://bugs.webkit.org/show_bug.cgi?id=157549
Reviewed b
Title: [200610] trunk/Source/_javascript_Core
Revision 200610
Author msab...@apple.com
Date 2016-05-09 20:22:39 -0700 (Mon, 09 May 2016)
Log Message
Crash beneath ObjCCallbackFunctionImpl::call
https://bugs.webkit.org/show_bug.cgi?id=157491
Reviewed by Saam Barati.
Clear any exceptions
Title: [200458] trunk/Source/_javascript_Core
Revision 200458
Author msab...@apple.com
Date 2016-05-05 10:14:49 -0700 (Thu, 05 May 2016)
Log Message
Unreviewed build fix after change set r200447.
Made the detection of clang version XCode build specific.
Now shouldEnableDebugAnnotations(
Title: [200447] trunk/Source/_javascript_Core
Revision 200447
Author msab...@apple.com
Date 2016-05-04 18:06:59 -0700 (Wed, 04 May 2016)
Log Message
Enable Dwarf2 debug information in offline assembler for clang compiler
https://bugs.webkit.org/show_bug.cgi?id=157364.
Reviewed by Mark La
Title: [200387] trunk/Source/_javascript_Core
Revision 200387
Author msab...@apple.com
Date 2016-05-03 14:42:44 -0700 (Tue, 03 May 2016)
Log Message
Crash: Array.prototype.slice() and .splice() can call fastSlice() after an array is truncated
https://bugs.webkit.org/show_bug.cgi?id=157322
Title: [200147] trunk/Source/_javascript_Core
Revision 200147
Author msab...@apple.com
Date 2016-04-27 13:37:49 -0700 (Wed, 27 Apr 2016)
Log Message
REGRESSION(r200117): Crash in lowerDFGToB3::compileStringReplace()
https://bugs.webkit.org/show_bug.cgi?id=157099
Reviewed by Saam Barati.
Title: [200117] trunk
Revision 200117
Author msab...@apple.com
Date 2016-04-26 18:28:03 -0700 (Tue, 26 Apr 2016)
Log Message
[ES] Implement RegExp.prototype.@@replace and use it for String.prototype.replace
https://bugs.webkit.org/show_bug.cgi?id=156562
Reviewed by Filip Pizlo.
Source/_
Title: [200048] trunk/Source/_javascript_Core
Revision 200048
Author msab...@apple.com
Date 2016-04-25 13:59:39 -0700 (Mon, 25 Apr 2016)
Log Message
Crash using @tryGetById in DFG
https://bugs.webkit.org/show_bug.cgi?id=156992
Reviewed by Filip Pizlo.
We need to spill live registers whe
Title: [199812] trunk/Source/_javascript_Core
Revision 199812
Author msab...@apple.com
Date 2016-04-21 03:57:45 -0700 (Thu, 21 Apr 2016)
Log Message
Align RegExp[@@match] with other @@ methods
https://bugs.webkit.org/show_bug.cgi?id=156832
Reviewed by Mark Lam.
Various changes to align
Title: [199783] trunk/Source/_javascript_Core
Revision 199783
Author msab...@apple.com
Date 2016-04-20 13:31:21 -0700 (Wed, 20 Apr 2016)
Log Message
REGRESSION(r190289): Spin trying to view/sign in to hbogo.com
https://bugs.webkit.org/show_bug.cgi?id=156765
Reviewed by Saam Barati.
In t
Title: [199762] trunk
Revision 199762
Author msab...@apple.com
Date 2016-04-19 22:13:28 -0700 (Tue, 19 Apr 2016)
Log Message
iTunes crashing _javascript_Core.dll
https://bugs.webkit.org/show_bug.cgi?id=156647
Reviewed by Filip Pizlo.
Source/_javascript_Core:
Given that there there are
Title: [199726] trunk
Revision 199726
Author msab...@apple.com
Date 2016-04-19 07:11:19 -0700 (Tue, 19 Apr 2016)
Log Message
iTunes crashing _javascript_Core.dll
https://bugs.webkit.org/show_bug.cgi?id=156647
Reviewed by Saam Barati.
Source/_javascript_Core:
Given that there there are
Title: [199621] trunk/Source/WTF
Revision 199621
Author msab...@apple.com
Date 2016-04-15 21:52:18 -0700 (Fri, 15 Apr 2016)
Log Message
iTunes crashing _javascript_Core.dll
https://bugs.webkit.org/show_bug.cgi?id=156647
Reviewed by Geoffrey Garen.
If a thread was created without using t
Title: [199523] trunk
Revision 199523
Author msab...@apple.com
Date 2016-04-13 17:47:40 -0700 (Wed, 13 Apr 2016)
Log Message
Some tests fail with ES6 `u` (Unicode) flag for regular expressions
https://bugs.webkit.org/show_bug.cgi?id=151597
Reviewed by Geoffrey Garen.
Source/_javascript_
Title: [198866] trunk
Revision 198866
Author msab...@apple.com
Date 2016-03-30 17:38:20 -0700 (Wed, 30 Mar 2016)
Log Message
[ES6] Quantified unicode regular expressions do not work for counts greater than 1
https://bugs.webkit.org/show_bug.cgi?id=156044
Reviewed by Mark Lam.
Source/_ja
Title: [198647] trunk/Source/_javascript_Core
Revision 198647
Author msab...@apple.com
Date 2016-03-24 15:35:35 -0700 (Thu, 24 Mar 2016)
Log Message
Create private builtin helper advanceStringIndexUnicode() for use by RegExp builtins
https://bugs.webkit.org/show_bug.cgi?id=155855
Reviewe
Title: [198625] trunk/Source/_javascript_Core
Revision 198625
Author msab...@apple.com
Date 2016-03-24 09:13:46 -0700 (Thu, 24 Mar 2016)
Log Message
[ES6] Add Proxy based tests for RegExp.prototype[@@match]
https://bugs.webkit.org/show_bug.cgi?id=155807
Reviewed by Saam Barati.
Added ne
Title: [198624] trunk
Revision 198624
Author msab...@apple.com
Date 2016-03-24 07:19:37 -0700 (Thu, 24 Mar 2016)
Log Message
[ES6] Greedy unicode RegExp's don't properly backtrack past non BMP characters
https://bugs.webkit.org/show_bug.cgi?id=155829
Reviewed by Saam Barati.
Source/_jav
Title: [198592] trunk
Revision 198592
Author msab...@apple.com
Date 2016-03-23 14:03:02 -0700 (Wed, 23 Mar 2016)
Log Message
_javascript_Core ArrayPrototype::join shouldn't cache butterfly when it makes effectful calls
https://bugs.webkit.org/show_bug.cgi?id=155776
Reviewed by Saam Barat
Title: [198554] trunk
Revision 198554
Author msab...@apple.com
Date 2016-03-22 14:42:06 -0700 (Tue, 22 Mar 2016)
Log Message
[ES6] Implement RegExp.prototype[@@match]
https://bugs.webkit.org/show_bug.cgi?id=155711
Reviewed by Filip Pizlo.
Source/_javascript_Core:
Implemented ES6 spec f
Title: [198478] trunk/Source/_javascript_Core
Revision 198478
Author msab...@apple.com
Date 2016-03-20 16:08:51 -0700 (Sun, 20 Mar 2016)
Log Message
Crash in stress/regexp-matches-array-slow-put.js due to stomping on memory when having bad time
https://bugs.webkit.org/show_bug.cgi?id=1556
Title: [198348] trunk/Source/_javascript_Core
Revision 198348
Author msab...@apple.com
Date 2016-03-17 13:13:18 -0700 (Thu, 17 Mar 2016)
Log Message
[ES6] Getters and Setters should be prefixed appropriately
https://bugs.webkit.org/show_bug.cgi?id=155593
Reviewed by Mark Lam.
Changed th
Title: [197963] trunk/Source/_javascript_Core
Revision 197963
Author msab...@apple.com
Date 2016-03-10 15:48:58 -0800 (Thu, 10 Mar 2016)
Log Message
[ES6] RegExp sticky flag should be ignored in String.match when global flag is given
https://bugs.webkit.org/show_bug.cgi?id=155332
Reviewe
Title: [197962] trunk
Revision 197962
Author msab...@apple.com
Date 2016-03-10 15:38:15 -0800 (Thu, 10 Mar 2016)
Log Message
[ES6] Allow RegExp constructor to take pattern from an existing RegExp with new flags
https://bugs.webkit.org/show_bug.cgi?id=155315
Reviewed by Saam Barati.
Sour
Title: [197869] trunk
Revision 197869
Author msab...@apple.com
Date 2016-03-09 12:11:46 -0800 (Wed, 09 Mar 2016)
Log Message
[ES6] Implement RegExp sticky flag and related functionality
https://bugs.webkit.org/show_bug.cgi?id=155177
Reviewed by Saam Barati.
Source/_javascript_Core:
Imp
Title: [197862] trunk/Source/_javascript_Core
Revision 197862
Author msab...@apple.com
Date 2016-03-09 10:10:59 -0800 (Wed, 09 Mar 2016)
Log Message
Harden JSC Root element functions from bad values
https://bugs.webkit.org/show_bug.cgi?id=155234
Reviewed by Saam Barati.
Changed jsCast()
Title: [197534] trunk
Revision 197534
Author msab...@apple.com
Date 2016-03-03 17:24:28 -0800 (Thu, 03 Mar 2016)
Log Message
[ES6] Make Unicode RegExp pattern parsing conform to the spec
https://bugs.webkit.org/show_bug.cgi?id=154988
Reviewed by Benjamin Poulain.
Source/_javascript_Core
Title: [197437] trunk/Source/WebCore
Revision 197437
Author msab...@apple.com
Date 2016-03-01 19:22:29 -0800 (Tue, 01 Mar 2016)
Log Message
REGRESSION (r197426): Missed adding unicode parameter to call to Yarr::parse() in URLFilterParser::addPattern()
https://bugs.webkit.org/show_bug.cgi?
Title: [197423] trunk
Revision 197423
Author msab...@apple.com
Date 2016-03-01 16:00:02 -0800 (Tue, 01 Mar 2016)
Log Message
ASSERT in platform/graphics/mac/ComplexTextController.cpp::capitalize()
https://bugs.webkit.org/show_bug.cgi?id=154875
Reviewed by Myles C. Maxfield.
Source/WebCo
Title: [196981] trunk/PerformanceTests
Revision 196981
Author msab...@apple.com
Date 2016-02-23 09:42:12 -0800 (Tue, 23 Feb 2016)
Log Message
Unreviewed change to revert extraneous changes made part of change set 196955.
* MallocBench/MallocBench/Interpreter.cpp:
(Interpreter::doMallocOp
Title: [196963] trunk/PerformanceTests/MallocBench/MallocBench/Benchmark.cpp
Revision 196963
Author msab...@apple.com
Date 2016-02-22 16:03:54 -0800 (Mon, 22 Feb 2016)
Log Message
Unreviewed build fix.
Eliminated the include of simple.h as that benchmark wasn't meant to be checked in.
M
Title: [196955] trunk/PerformanceTests
Revision 196955
Author msab...@apple.com
Date 2016-02-22 14:02:24 -0800 (Mon, 22 Feb 2016)
Log Message
MallocBench: Added recording for nimlang website, new recording details and added new options
https://bugs.webkit.org/show_bug.cgi?id=154485
Revie
Title: [196541] trunk/Source/_javascript_Core
Revision 196541
Author msab...@apple.com
Date 2016-02-12 18:37:19 -0800 (Fri, 12 Feb 2016)
Log Message
offlineasm: Emit Dwarf2 file and location directives to allow for debugging .asm files
https://bugs.webkit.org/show_bug.cgi?id=152703
Revie
Title: [196536] trunk/Source/bmalloc
Revision 196536
Author msab...@apple.com
Date 2016-02-12 17:10:22 -0800 (Fri, 12 Feb 2016)
Log Message
BASSERTs added in r196421 are causing debug test failures
https://bugs.webkit.org/show_bug.cgi?id=154113
Reviewed by Geoffrey Garen.
In VMHeap::dea
Title: [196424] trunk/Source/bmalloc
Revision 196424
Author msab...@apple.com
Date 2016-02-11 10:51:06 -0800 (Thu, 11 Feb 2016)
Log Message
Unreviewed build fix after r196421.
Removed BASSERTs that are firing to eliminate Debug build crashes. I'll debug locally and
enable or alter after
Title: [196421] trunk/Source/bmalloc
Revision 196421
Author msab...@apple.com
Date 2016-02-11 08:01:55 -0800 (Thu, 11 Feb 2016)
Log Message
bmalloc: large aligned allocations will put 1 or 2 free object on free list without merging with free neighbors
https://bugs.webkit.org/show_bug.cgi?
Title: [194208] trunk/Source/_javascript_Core
Revision 194208
Author msab...@apple.com
Date 2015-12-16 21:02:49 -0800 (Wed, 16 Dec 2015)
Log Message
ARM64 MacroAssembler improperly reuses data temp register in test32() and test8() calls
https://bugs.webkit.org/show_bug.cgi?id=152370
Revi
Title: [193674] trunk/Source/_javascript_Core
Revision 193674
Author msab...@apple.com
Date 2015-12-07 16:31:49 -0800 (Mon, 07 Dec 2015)
Log Message
CRASH: CodeBlock::setOptimizationThresholdBasedOnCompilationResult + 567
https://bugs.webkit.org/show_bug.cgi?id=151892
Reviewed by Geoffre
Title: [193491] trunk/Source/_javascript_Core
Revision 193491
Author msab...@apple.com
Date 2015-12-04 17:04:20 -0800 (Fri, 04 Dec 2015)
Log Message
CRASH: CodeBlock::setOptimizationThresholdBasedOnCompilationResult + 567
https://bugs.webkit.org/show_bug.cgi?id=151892
Reviewed by Mark La
Title: [193373] trunk/Source/bmalloc
Revision 193373
Author msab...@apple.com
Date 2015-12-03 13:44:51 -0800 (Thu, 03 Dec 2015)
Log Message
bmalloc: extra large allocations could be more efficient
https://bugs.webkit.org/show_bug.cgi?id=151817
Reviewed by Geoffrey Garen.
Reduced the sup
Title: [192527] trunk/Source/_javascript_Core
Revision 192527
Author msab...@apple.com
Date 2015-11-17 13:30:01 -0800 (Tue, 17 Nov 2015)
Log Message
Reserved VM pool established in r187125 is likely too conservative
https://bugs.webkit.org/show_bug.cgi?id=151351
Reviewed by Filip Pizlo.
Title: [192457] trunk
Revision 192457
Author msab...@apple.com
Date 2015-11-14 13:13:02 -0800 (Sat, 14 Nov 2015)
Log Message
REGRESSION (r190370): CrashTracer: [USER] com.apple.WebKit.WebContent at com.apple._javascript_Core: JSC::JITCode::execute + 158
https://bugs.webkit.org/show_bug.cg
Title: [192267] trunk/Source/_javascript_Core
Revision 192267
Author msab...@apple.com
Date 2015-11-10 13:52:01 -0800 (Tue, 10 Nov 2015)
Log Message
X86_64 support for compareDouble(DoubleCondition, FPRegisterID left, FPRegisterID right, RegisterID dest)
https://bugs.webkit.org/show_bug.c
Title: [192168] trunk/Source/_javascript_Core
Revision 192168
Author msab...@apple.com
Date 2015-11-09 11:39:27 -0800 (Mon, 09 Nov 2015)
Log Message
Need a function that will provide Nth argument register
https://bugs.webkit.org/show_bug.cgi?id=151041
Reviewed by Filip Pizlo.
For 64 bit
Title: [192131] trunk/Source/_javascript_Core
Revision 192131
Author msab...@apple.com
Date 2015-11-07 10:11:39 -0800 (Sat, 07 Nov 2015)
Log Message
Add conditional moves to the MacroAssembler
https://bugs.webkit.org/show_bug.cgi?id=150761
Reviewed by Filip Pizlo.
Added moveConditionall
Title: [191965] trunk/Source/_javascript_Core
Revision 191965
Author msab...@apple.com
Date 2015-11-03 12:02:02 -0800 (Tue, 03 Nov 2015)
Log Message
Rename InlineCallFrame:: getCallerSkippingDeadFrames to something more descriptive
https://bugs.webkit.org/show_bug.cgi?id=150832
Reviewed
Title: [191937] trunk
Revision 191937
Author msab...@apple.com
Date 2015-11-02 21:34:01 -0800 (Mon, 02 Nov 2015)
Log Message
WebInspector crashed while viewing Timeline when refreshing cnn.com while it was already loading
https://bugs.webkit.org/show_bug.cgi?id=150745
Reviewed by Geoffre
Title: [191835] trunk/Source/_javascript_Core
Revision 191835
Author msab...@apple.com
Date 2015-10-30 19:11:01 -0700 (Fri, 30 Oct 2015)
Log Message
Windows X86-64 change for Crash making a tail call from a getter to a host function
https://bugs.webkit.org/show_bug.cgi?id=150737
Reviewed
Title: [191765] trunk
Revision 191765
Author msab...@apple.com
Date 2015-10-29 17:03:22 -0700 (Thu, 29 Oct 2015)
Log Message
Crash making a tail call from a getter to a host function
https://bugs.webkit.org/show_bug.cgi?id=150663
Reviewed by Geoffrey Garen.
Source/_javascript_Core:
Cha
Title: [191625] trunk
Revision 191625
Author msab...@apple.com
Date 2015-10-27 10:48:51 -0700 (Tue, 27 Oct 2015)
Log Message
REGRESSION (r191360): Crash: com.apple.WebKit.WebContent at com.apple._javascript_Core: JSC::FTL:: + 386
https://bugs.webkit.org/show_bug.cgi?id=150580
Reviewed by
Title: [191530] trunk
Revision 191530
Author msab...@apple.com
Date 2015-10-23 18:45:30 -0700 (Fri, 23 Oct 2015)
Log Message
REGRESSION (r179357-r179359): WebContent Crash using AOL Mail @ com.apple._javascript_Core JSC::linkPolymorphicCall(JSC::ExecState*, JSC::CallLinkInfo&, JSC::CallVa
Title: [191455] trunk
Revision 191455
Author msab...@apple.com
Date 2015-10-22 09:12:42 -0700 (Thu, 22 Oct 2015)
Log Message
REGRESSION(r191360): Repro Crash: com.apple.WebKit.WebContent at _javascript_Core:JSC::ExecState::bytecodeOffset + 174
https://bugs.webkit.org/show_bug.cgi?id=15043
Title: [191360] trunk
Revision 191360
Author msab...@apple.com
Date 2015-10-20 15:02:37 -0700 (Tue, 20 Oct 2015)
Log Message
REGRESSION (r191175): OSR Exit from an inlined tail callee trashes callee save registers
https://bugs.webkit.org/show_bug.cgi?id=150336
Reviewed by Mark Lam.
Sour
Title: [191206] trunk
Revision 191206
Author msab...@apple.com
Date 2015-10-16 14:06:00 -0700 (Fri, 16 Oct 2015)
Log Message
REGRESSION (r191175): Still crashing when clicking back button on netflix.com
https://bugs.webkit.org/show_bug.cgi?id=150251
Rubber stamped by Filip Pizlo.
Turnin
Title: [191175] trunk
Revision 191175
Author msab...@apple.com
Date 2015-10-16 07:43:02 -0700 (Fri, 16 Oct 2015)
Log Message
REGRESSION (r190289): Repro crash clicking back button on netflix.com
https://bugs.webkit.org/show_bug.cgi?id=150220
Reviewed by Geoffrey Garen.
Source/_javascrip
Title: [190373] trunk/Source/_javascript_Core/ChangeLog
Revision 190373
Author msab...@apple.com
Date 2015-09-30 16:34:23 -0700 (Wed, 30 Sep 2015)
Log Message
Fixed change set order to match reality. Some how the tools messed up the merge of ChangeLog entries.
-This line, and those below
Title: [190370] trunk
Revision 190370
Author msab...@apple.com
Date 2015-09-30 15:28:08 -0700 (Wed, 30 Sep 2015)
Log Message
Source/_javascript_Core:
Relanding r190289 with the following two fixes:
1. REGRESSION(r190289): It made Speedometer/Full.html performance test fail
https://b
Title: [190289] trunk
Revision 190289
Author msab...@apple.com
Date 2015-09-28 15:37:36 -0700 (Mon, 28 Sep 2015)
Log Message
[ES6] Implement tail calls in the FTL
https://bugs.webkit.org/show_bug.cgi?id=148664
Source/_javascript_Core:
Patch by basile_clem...@apple.com on 2015-09-28
Rev
Title: [190258] trunk/Source/_javascript_Core
Revision 190258
Author msab...@apple.com
Date 2015-09-25 16:52:42 -0700 (Fri, 25 Sep 2015)
Log Message
FTLOSRExitCompiler incorrectly excludes FPR registers in callee saves loop
https://bugs.webkit.org/show_bug.cgi?id=149540
Reviewed by Saam
Title: [190220] trunk/Source/_javascript_Core
Revision 190220
Author msab...@apple.com
Date 2015-09-24 14:42:59 -0700 (Thu, 24 Sep 2015)
Log Message
[ES6] Implement tail calls in the DFG
https://bugs.webkit.org/show_bug.cgi?id=148663
Reviewed by Filip Pizlo.
jsc-tailcall: Implement the
Title: [189967] trunk/Source/_javascript_Core
Revision 189967
Author msab...@apple.com
Date 2015-09-18 09:21:08 -0700 (Fri, 18 Sep 2015)
Log Message
Remove register preservation and restoration stub code
https://bugs.webkit.org/show_bug.cgi?id=149335
Reviewed by Mark Lam.
Delete the reg
Title: [189818] trunk/Source/_javascript_Core
Revision 189818
Author msab...@apple.com
Date 2015-09-15 12:00:13 -0700 (Tue, 15 Sep 2015)
Log Message
REGRESSION(r189774): CLoop doesn't build after r189774
https://bugs.webkit.org/show_bug.cgi?id=149171
Unreviewed build fix for the C Loop.
Title: [189639] trunk/Tools
Revision 189639
Author msab...@apple.com
Date 2015-09-11 17:15:51 -0700 (Fri, 11 Sep 2015)
Log Message
LayoutTestHelper crashes if a color profile isn't set for a 3rd party monitor
https://bugs.webkit.org/show_bug.cgi?id=149083
Reviewed by Alexey Proskuryakov.
Title: [189588] trunk/Source/_javascript_Core
Revision 189588
Author msab...@apple.com
Date 2015-09-10 13:50:33 -0700 (Thu, 10 Sep 2015)
Log Message
REGRESSION(r189575): Appears to break ARM64 linux builds
https://bugs.webkit.org/show_bug.cgi?id=149044
Reviewed by Filip Pizlo.
Changed t
Title: [189280] branches/jsc-tailcall/Source/_javascript_Core
Revision 189280
Author msab...@apple.com
Date 2015-09-03 12:56:35 -0700 (Thu, 03 Sep 2015)
Log Message
jsc-tailcall: Need to handle all architected callee saves for ARM64
https://bugs.webkit.org/show_bug.cgi?id=148652
Reviewed
Title: [189074] branches/jsc-tailcall/Source/_javascript_Core
Revision 189074
Author msab...@apple.com
Date 2015-08-27 16:53:17 -0700 (Thu, 27 Aug 2015)
Log Message
jsc-tailcall: ARM64 crashes running most any test
https://bugs.webkit.org/show_bug.cgi?id=148547
Reviewed by Basile Clement
Title: [189036] branches/jsc-tailcall/Source/_javascript_Core
Revision 189036
Author msab...@apple.com
Date 2015-08-27 10:54:29 -0700 (Thu, 27 Aug 2015)
Log Message
jsc-tailcall: Test failures with FTL enabled after r188986
https://bugs.webkit.org/show_bug.cgi?id=148494
Reviewed by Basil
Title: [188986] branches/jsc-tailcall/Source/_javascript_Core
Revision 188986
Author msab...@apple.com
Date 2015-08-26 13:43:35 -0700 (Wed, 26 Aug 2015)
Log Message
jsc-tailcall: Integrate FTL OSR entry / exit and exceptions handling of callee save registers with other tiers
https://bugs.
Title: [188970] branches/jsc-tailcall/Source/_javascript_Core
Revision 188970
Author msab...@apple.com
Date 2015-08-26 10:54:28 -0700 (Wed, 26 Aug 2015)
Log Message
Unreviewed build fix for release builds after r188937.
* jit/CallFrameShuffler.cpp:
(JSC::CallFrameShuffler::prepareAny): C
Title: [19] branches/jsc-tailcall/Source/_javascript_Core
Revision 19
Author msab...@apple.com
Date 2015-08-24 15:40:45 -0700 (Mon, 24 Aug 2015)
Log Message
jsc-tailcall: Specialized thunks need to save / restore callee save "tag" registers
https://bugs.webkit.org/show_bug.cgi?id=
Title: [188706] branches/jsc-tailcall/Source/_javascript_Core
Revision 188706
Author msab...@apple.com
Date 2015-08-20 14:55:10 -0700 (Thu, 20 Aug 2015)
Log Message
jsc-tailcall: Stack pointer should be moved to protect saving callee saves in LLInt
https://bugs.webkit.org/show_bug.cgi?id=
Title: [188654] branches/jsc-tailcall/Source/_javascript_Core
Revision 188654
Author msab...@apple.com
Date 2015-08-19 15:26:29 -0700 (Wed, 19 Aug 2015)
Log Message
jsc-tailcall: Unify Register Offset classes
https://bugs.webkit.org/show_bug.cgi?id=148167
Reviewed by Basile Clement.
The
Title: [188568] branches/jsc-tailcall/Source/_javascript_Core
Revision 188568
Author msab...@apple.com
Date 2015-08-17 19:31:05 -0700 (Mon, 17 Aug 2015)
Log Message
jsc-tailcall: Stop saving and restoring all callee saves on vmEntry / exit for platforms with per function callee saves hand
Title: [188556] branches/jsc-tailcall/Source/_javascript_Core
Revision 188556
Author msab...@apple.com
Date 2015-08-17 16:59:03 -0700 (Mon, 17 Aug 2015)
Log Message
jsc-tailcall: REGRESSION(r188071): Crash when handling exception in Release builds
https://bugs.webkit.org/show_bug.cgi?id=1
Title: [188555] branches/jsc-tailcall/Source/_javascript_Core
Revision 188555
Author msab...@apple.com
Date 2015-08-17 16:58:00 -0700 (Mon, 17 Aug 2015)
Log Message
jsc-tailcall: Handling exception in caller frame cannot unwind past VMEntry frame
https://bugs.webkit.org/show_bug.cgi?id=14
Title: [188149] branches/jsc-tailcall/Source/_javascript_Core
Revision 188149
Author msab...@apple.com
Date 2015-08-07 13:06:24 -0700 (Fri, 07 Aug 2015)
Log Message
Unreviewed. Rollout r188072 as there are crashes with release builds.
The combination of r188071 and r188072 does not prope
Title: [188072] branches/jsc-tailcall/Source/_javascript_Core
Revision 188072
Author msab...@apple.com
Date 2015-08-06 15:45:20 -0700 (Thu, 06 Aug 2015)
Log Message
jsc-tailcall: Stop saving and restoring all callee saves on vmEntry / exit for platforms with per function callee saves hand
Title: [188071] branches/jsc-tailcall/Source/_javascript_Core
Revision 188071
Author msab...@apple.com
Date 2015-08-06 15:41:51 -0700 (Thu, 06 Aug 2015)
Log Message
jsc-tailcall: Exceptions should properly restore callee save register contents during unwinding
https://bugs.webkit.org/show
Title: [187877] branches/jsc-tailcall/Source/_javascript_Core
Revision 187877
Author msab...@apple.com
Date 2015-08-04 12:47:44 -0700 (Tue, 04 Aug 2015)
Log Message
jsc-tailcall: Align callee save registers names across LLInt and JITs
https://bugs.webkit.org/show_bug.cgi?id=147640
Review
Title: [187759] branches/jsc-tailcall/Source/_javascript_Core
Revision 187759
Author msab...@apple.com
Date 2015-08-03 13:46:01 -0700 (Mon, 03 Aug 2015)
Log Message
jsc-tailcall: Callee save registers should be saved after the stack pointer is set up
https://bugs.webkit.org/show_bug.cgi?i
Title: [187683] branches/jsc-tailcall/Source/_javascript_Core
Revision 187683
Author msab...@apple.com
Date 2015-07-31 14:40:39 -0700 (Fri, 31 Jul 2015)
Log Message
jsc-tailcall: REGRESSION(r187676): Broke stress/tail-call-no-stack-overflow.js
https://bugs.webkit.org/show_bug.cgi?id=14750
Title: [187674] branches/jsc-tailcall/Source/_javascript_Core
Revision 187674
Author msab...@apple.com
Date 2015-07-31 13:17:08 -0700 (Fri, 31 Jul 2015)
Log Message
jsc-tailcall: REGRESSION(r187639): Need to restore callee saves in LLInt before tail call
https://bugs.webkit.org/show_bug.c
Title: [187670] branches/jsc-tailcall/Source/_javascript_Core
Revision 187670
Author msab...@apple.com
Date 2015-07-31 13:01:59 -0700 (Fri, 31 Jul 2015)
Log Message
jsc-tailcall:Eliminate the unsafe use of regT5 in arityFixupGenerator() for X86-64 Windows
https://bugs.webkit.org/show_bug.
Title: [187639] branches/jsc-tailcall/Source/_javascript_Core
Revision 187639
Author msab...@apple.com
Date 2015-07-30 23:02:40 -0700 (Thu, 30 Jul 2015)
Log Message
jsc-tailcall: LLint, Baseline and DFG JIT should save & restore platform's callee-save registers
https://bugs.webkit.org/sho
Title: [187637] branches/jsc-tailcall/Source/_javascript_Core
Revision 187637
Author msab...@apple.com
Date 2015-07-30 20:40:56 -0700 (Thu, 30 Jul 2015)
Log Message
jsc-tailcall: Eliminate rdi from temp register list for X86-64 Windows
https://bugs.webkit.org/show_bug.cgi?id=147461
Revie
Title: [187228] trunk/LayoutTests
Revision 187228
Author msab...@apple.com
Date 2015-07-23 07:02:24 -0700 (Thu, 23 Jul 2015)
Log Message
Application cache abort() tests are flaky
https://bugs.webkit.org/show_bug.cgi?id=87633
These AppCache tests are flakey:
http/tests/appcache/deferred-e
Title: [186606] trunk
Revision 186606
Author msab...@apple.com
Date 2015-07-09 13:24:39 -0700 (Thu, 09 Jul 2015)
Log Message
REGRESSION (r180248): Repro Crash: com.apple.WebKit.WebContent at com.apple._javascript_Core: JSC::createRangeError + 20
https://bugs.webkit.org/show_bug.cgi?id=146
Title: [185959] trunk/Source/_javascript_Core
Revision 185959
Author msab...@apple.com
Date 2015-06-25 13:48:20 -0700 (Thu, 25 Jun 2015)
Log Message
Minor fix to idx bounds check after 185954
Rubber Stamped by Ryosuke Niwa.
Changed "idx > 1" to "idx > 0" in two places.
* runtime/Except
Title: [185954] trunk
Revision 185954
Author msab...@apple.com
Date 2015-06-25 10:35:12 -0700 (Thu, 25 Jun 2015)
Log Message
REGRESSION (r181889): basspro.com hangs on load under JSC::ErrorInstance::finishCreation(JSC::ExecState*, JSC::VM&, WTF::String const&, bool) + 2801 (_javascript_Co
Title: [185932] trunk/Source/_javascript_Core
Revision 185932
Author msab...@apple.com
Date 2015-06-24 15:50:44 -0700 (Wed, 24 Jun 2015)
Log Message
Crash on gog.com due to PolymorphicCallNode's having stale references to CallLinkInfo
https://bugs.webkit.org/show_bug.cgi?id=146285
Review
Title: [185930] trunk/Source/_javascript_Core
Revision 185930
Author msab...@apple.com
Date 2015-06-24 15:37:30 -0700 (Wed, 24 Jun 2015)
Log Message
Refactor CallLinkInfo from a struct to a class
https://bugs.webkit.org/show_bug.cgi?id=146292
Rubber stamped by Filip Pizlo.
Refactored Ca
Title: [185772] trunk/Source/_javascript_Core
Revision 185772
Author msab...@apple.com
Date 2015-06-19 15:28:18 -0700 (Fri, 19 Jun 2015)
Log Message
Crash in com.apple.WebKit.WebContent at com.apple._javascript_Core: JSC::FTL::fixFunctionBasedOnStackMaps + 17225
https://bugs.webkit.org/sh
Title: [185627] trunk
Revision 185627
Author msab...@apple.com
Date 2015-06-16 17:06:14 -0700 (Tue, 16 Jun 2015)
Log Message
Inlining in the DFG trashes ByteCodeParser::m_currentInstruction for the calling function
https://bugs.webkit.org/show_bug.cgi?id=146029
Reviewed by Benjamin Poula
Title: [185566] trunk
Revision 185566
Author msab...@apple.com
Date 2015-06-15 14:26:08 -0700 (Mon, 15 Jun 2015)
Log Message
JIT bug - fails when inspector closed, works when open
https://bugs.webkit.org/show_bug.cgi?id=145243
Reviewed by Oliver Hunt.
Source/_javascript_Core:
We need t
Title: [185158] trunk/Source/_javascript_Core
Revision 185158
Author msab...@apple.com
Date 2015-06-03 11:48:41 -0700 (Wed, 03 Jun 2015)
Log Message
Improve test coverage for changes made in 145527
https://bugs.webkit.org/show_bug.cgi?id=145578
Reviewed by Geoffrey Garen.
Added more com
301 - 400 of 949 matches
Mail list logo
