[webkit-changes] [161313] branches/jsCStack/Source/JavaScriptCore

Title: [161313] branches/jsCStack/Source/_javascript_Core Revision 161313 Author msab...@apple.com Date 2014-01-04 10:31:57 -0800 (Sat, 04 Jan 2014) Log Message CStack Branch: ARM64 add of stack pointer not valid as second source operand https://bugs.webkit.org/show_bug.cgi?id=126486 Rev

[webkit-changes] [161300] branches/jsCStack/Source/JavaScriptCore

Title: [161300] branches/jsCStack/Source/_javascript_Core Revision 161300 Author msab...@apple.com Date 2014-01-03 17:27:01 -0800 (Fri, 03 Jan 2014) Log Message cstack Branch: ARM64 LLInt fails to compile due to instructions limitations with sp https://bugs.webkit.org/show_bug.cgi?id=1264

[webkit-changes] [161298] branches/jsCStack/Source/JavaScriptCore

Title: [161298] branches/jsCStack/Source/_javascript_Core Revision 161298 Author msab...@apple.com Date 2014-01-03 16:58:11 -0800 (Fri, 03 Jan 2014) Log Message CStack Branch: Make emitPutToCallFrameHeaderBeforePrologue and friends work for all platforms https://bugs.webkit.org/show_bug.c

[webkit-changes] [161061] branches/jsCStack/Source/JavaScriptCore

Title: [161061] branches/jsCStack/Source/_javascript_Core Revision 161061 Author msab...@apple.com Date 2013-12-24 16:41:59 -0800 (Tue, 24 Dec 2013) Log Message CStack Branch: ecma/ExecutionContexts/10.1.4-2.js test fails https://bugs.webkit.org/show_bug.cgi?id=126213 Reviewed by Filip P

[webkit-changes] [161057] branches/jsCStack/Source/JavaScriptCore

Title: [161057] branches/jsCStack/Source/_javascript_Core Revision 161057 Author msab...@apple.com Date 2013-12-24 07:32:19 -0800 (Tue, 24 Dec 2013) Log Message CStack Branch: throwExceptionFromCallSlowPathGenerator() shouldn't pop frame https://bugs.webkit.org/show_bug.cgi?id=126204 Rev

[webkit-changes] [160935] branches/jsCStack/PerformanceTests/SunSpider

Title: [160935] branches/jsCStack/PerformanceTests/SunSpider Revision 160935 Author msab...@apple.com Date 2013-12-20 15:30:20 -0800 (Fri, 20 Dec 2013) Log Message Unreviewed change. Restoring v8-crypto.js back to trunk. Removing print()'s that are no longer needed. * tests/v8-v6/v8-cr

[webkit-changes] [160931] branches/jsCStack/Source/JavaScriptCore

Title: [160931] branches/jsCStack/Source/_javascript_Core Revision 160931 Author msab...@apple.com Date 2013-12-20 15:04:25 -0800 (Fri, 20 Dec 2013) Log Message CStack Branch: CodeBlocks aren't being marked by garbage collector https://bugs.webkit.org/show_bug.cgi?id=126084 Reviewed by F

[webkit-changes] [160929] branches/jsCStack/Source/JavaScriptCore

Title: [160929] branches/jsCStack/Source/_javascript_Core Revision 160929 Author msab...@apple.com Date 2013-12-20 14:59:46 -0800 (Fri, 20 Dec 2013) Log Message Unreviewed build fix for building without the FTL. * jit/RegisterPreservationWrapperGenerator.cpp: (JSC::generateRegisterPreser

[webkit-changes] [160874] branches/jsCStack/Source/JavaScriptCore

Title: [160874] branches/jsCStack/Source/_javascript_Core Revision 160874 Author msab...@apple.com Date 2013-12-19 16:38:31 -0800 (Thu, 19 Dec 2013) Log Message CStack Branch: Fix call operationStackCheck to check the proper stack https://bugs.webkit.org/show_bug.cgi?id=126026 Unreviewed

[webkit-changes] [160871] branches/jsCStack/Source/JavaScriptCore

Title: [160871] branches/jsCStack/Source/_javascript_Core Revision 160871 Author msab...@apple.com Date 2013-12-19 16:22:22 -0800 (Thu, 19 Dec 2013) Log Message CStack Branch: Fix call operationStackCheck to check the proper stack https://bugs.webkit.org/show_bug.cgi?id=126026 Reviewed b

[webkit-changes] [160867] branches/jsCStack/Source/JavaScriptCore

Title: [160867] branches/jsCStack/Source/_javascript_Core Revision 160867 Author msab...@apple.com Date 2013-12-19 15:37:45 -0800 (Thu, 19 Dec 2013) Log Message CStack Branch: Fix call eval in baseline JIT https://bugs.webkit.org/show_bug.cgi?id=126020 Reviewed by Geoffrey Garen. Added

[webkit-changes] [160831] branches/jsCStack/Source/JavaScriptCore

Title: [160831] branches/jsCStack/Source/_javascript_Core Revision 160831 Author msab...@apple.com Date 2013-12-19 07:48:36 -0800 (Thu, 19 Dec 2013) Log Message CStack Branch: Remove "AndAlloc" from sizeAndAllocFrameForVarargs and friends https://bugs.webkit.org/show_bug.cgi?id=125980 Re

[webkit-changes] [160815] branches/jsCStack/Source/JavaScriptCore

Title: [160815] branches/jsCStack/Source/_javascript_Core Revision 160815 Author msab...@apple.com Date 2013-12-18 18:21:33 -0800 (Wed, 18 Dec 2013) Log Message CStack Branch: Stop threading callFrameRegister through LLIntSlowCalls https://bugs.webkit.org/show_bug.cgi?id=125964 Reviewed

[webkit-changes] [160784] branches/jsCStack/Source/JavaScriptCore

Title: [160784] branches/jsCStack/Source/_javascript_Core Revision 160784 Author msab...@apple.com Date 2013-12-18 11:54:22 -0800 (Wed, 18 Dec 2013) Log Message CStack Branch: getHostCallReturnValue shouldn't pop the callFrame https://bugs.webkit.org/show_bug.cgi?id=125931 Reviewed by Ge

[webkit-changes] [160783] branches/jsCStack/Source/JavaScriptCore

Title: [160783] branches/jsCStack/Source/_javascript_Core Revision 160783 Author msab...@apple.com Date 2013-12-18 11:46:24 -0800 (Wed, 18 Dec 2013) Log Message CStack Branch: Exceptions in LLIntSlowPaths shouldn't pop call frame https://bugs.webkit.org/show_bug.cgi?id=125932 Reviewed by

[webkit-changes] [160746] branches/jsCStack/Source/JavaScriptCore

Title: [160746] branches/jsCStack/Source/_javascript_Core Revision 160746 Author msab...@apple.com Date 2013-12-17 19:45:57 -0800 (Tue, 17 Dec 2013) Log Message CStack Branch: Fix varargs calls to work on C stack https://bugs.webkit.org/show_bug.cgi?id=125903 Reviewed by Filip Pizlo. Fi

[webkit-changes] [160714] branches/jsCStack/Source/JavaScriptCore

Title: [160714] branches/jsCStack/Source/_javascript_Core Revision 160714 Author msab...@apple.com Date 2013-12-17 10:25:27 -0800 (Tue, 17 Dec 2013) Log Message CStack Branch: Fix callee frame access in virtualForThunkGenerator when we don't emit prologue code https://bugs.webkit.org/show

[webkit-changes] [160694] branches/jsCStack/Source/JavaScriptCore

Title: [160694] branches/jsCStack/Source/_javascript_Core Revision 160694 Author msab...@apple.com Date 2013-12-16 22:09:43 -0800 (Mon, 16 Dec 2013) Log Message CStack Branch: Need an implementation of sanitizeStack for C stack https://bugs.webkit.org/show_bug.cgi?id=125719 Reviewed by G

[webkit-changes] [160660] branches/jsCStack/Source/JavaScriptCore

Title: [160660] branches/jsCStack/Source/_javascript_Core Revision 160660 Author msab...@apple.com Date 2013-12-16 13:31:42 -0800 (Mon, 16 Dec 2013) Log Message CStack Branch: Eliminate topOfStack parameter from callToJavaScript() and callToNativeFunction() https://bugs.webkit.org/show_bu

[webkit-changes] [160658] branches/jsCStack/Source/JavaScriptCore

Title: [160658] branches/jsCStack/Source/_javascript_Core Revision 160658 Author msab...@apple.com Date 2013-12-16 13:23:53 -0800 (Mon, 16 Dec 2013) Log Message CStack Branch: REGRESSION(r160600) ASSERT failure in Heap::collect() https://bugs.webkit.org/show_bug.cgi?id=125789 Reviewed by

[webkit-changes] [160591] branches/jsCStack/Source

Title: [160591] branches/jsCStack/Source Revision 160591 Author msab...@apple.com Date 2013-12-13 23:43:56 -0800 (Fri, 13 Dec 2013) Log Message CStack Branch: Remove WTF_USE_SEPARATE_C_AND_JS_STACK https://bugs.webkit.org/show_bug.cgi?id=125733 Reviewed by Mark Lam. WTF_USE_SEPARATE_C_A

[webkit-changes] [160589] branches/jsCStack/Source

Title: [160589] branches/jsCStack/Source Revision 160589 Author msab...@apple.com Date 2013-12-13 23:17:59 -0800 (Fri, 13 Dec 2013) Log Message cStack: Crypto crashes in GC https://bugs.webkit.org/show_bug.cgi?id=125730 Reviewed by Filip Pizlo. Need to disable visiting the JSStack when

[webkit-changes] [160586] branches/jsCStack/Source/JavaScriptCore

Title: [160586] branches/jsCStack/Source/_javascript_Core Revision 160586 Author msab...@apple.com Date 2013-12-13 22:25:17 -0800 (Fri, 13 Dec 2013) Log Message cStack: Crypto doesn't work at all unless LLInt is disabled https://bugs.webkit.org/show_bug.cgi?id=125729 Reviewed by Filip Pi

[webkit-changes] [160562] branches/jsCStack/Source/JavaScriptCore

Title: [160562] branches/jsCStack/Source/_javascript_Core Revision 160562 Author msab...@apple.com Date 2013-12-13 13:36:55 -0800 (Fri, 13 Dec 2013) Log Message jsCStack:REGRESSION: "print(“My object: “ + { });” crashes LLINT in op_call https://bugs.webkit.org/show_bug.cgi?id=125694 Revi

[webkit-changes] [160527] branches/jsCStack/Source/JavaScriptCore

Title: [160527] branches/jsCStack/Source/_javascript_Core Revision 160527 Author msab...@apple.com Date 2013-12-12 21:51:32 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Use proper values for stack checks https://bugs.webkit.org/show_bug.cgi?id=125677 Reviewed by Filip Pizlo. For

[webkit-changes] [160522] branches/jsCStack/Source/JavaScriptCore

Title: [160522] branches/jsCStack/Source/_javascript_Core Revision 160522 Author msab...@apple.com Date 2013-12-12 18:06:28 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Add equivalent values from MaxFrameExtentForSlowPathCall.h to lint files https://bugs.webkit.org/show_bug.cgi?id=

[webkit-changes] [160519] branches/jsCStack/Source/JavaScriptCore

Title: [160519] branches/jsCStack/Source/_javascript_Core Revision 160519 Author msab...@apple.com Date 2013-12-12 17:32:08 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Add the new assembler/MaxFrameExtentForSlowPathCall.h to build files https://bugs.webkit.org/show_bug.cgi?id=1256

[webkit-changes] [160516] branches/jsCStack/Source/JavaScriptCore

Title: [160516] branches/jsCStack/Source/_javascript_Core Revision 160516 Author msab...@apple.com Date 2013-12-12 16:30:30 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Put all stack saving and restoring callToJavaScript in {push/pop}CalleeSaves https://bugs.webkit.org/show_bug.cgi

[webkit-changes] [160514] branches/jsCStack/Source/JavaScriptCore

Title: [160514] branches/jsCStack/Source/_javascript_Core Revision 160514 Author msab...@apple.com Date 2013-12-12 16:18:00 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Eliminate unnecessary add/sub 16 to stack pointer https://bugs.webkit.org/show_bug.cgi?id=125653 Reviewed by Geo

[webkit-changes] [160506] branches/jsCStack/Source/JavaScriptCore

Title: [160506] branches/jsCStack/Source/_javascript_Core Revision 160506 Author msab...@apple.com Date 2013-12-12 14:54:00 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Eliminate unnecessary add/sub 16 to stack pointer https://bugs.webkit.org/show_bug.cgi?id=125653 Not yet reviewe

[webkit-changes] [160499] branches/jsCStack/Source/JavaScriptCore

Title: [160499] branches/jsCStack/Source/_javascript_Core Revision 160499 Author msab...@apple.com Date 2013-12-12 11:37:21 -0800 (Thu, 12 Dec 2013) Log Message CStack Branch: Change the disabling of DFG OSR entry to be based on an option https://bugs.webkit.org/show_bug.cgi?id=125645 Ru

[webkit-changes] [160477] branches/jsCStack/Source/JavaScriptCore

Title: [160477] branches/jsCStack/Source/_javascript_Core Revision 160477 Author msab...@apple.com Date 2013-12-11 22:38:56 -0800 (Wed, 11 Dec 2013) Log Message CStack Branch: Set stack pointer in OSR exit handler https://bugs.webkit.org/show_bug.cgi?id=125617 Not yet reviewed. Set the

[webkit-changes] [160468] branches/jsCStack/Source/JavaScriptCore

Title: [160468] branches/jsCStack/Source/_javascript_Core Revision 160468 Author msab...@apple.com Date 2013-12-11 17:57:43 -0800 (Wed, 11 Dec 2013) Log Message CStack Branch: enable use of DFG for simple _javascript_ https://bugs.webkit.org/show_bug.cgi?id=125599 Not yet reviewed. Adde

[webkit-changes] [160351] branches/jsCStack/Source/JavaScriptCore

Title: [160351] branches/jsCStack/Source/_javascript_Core Revision 160351 Author msab...@apple.com Date 2013-12-09 23:19:00 -0800 (Mon, 09 Dec 2013) Log Message CStack Branch: ctiNativeCallFallback and friends should renamed ...NativeTailCall https://bugs.webkit.org/show_bug.cgi?id=125485

[webkit-changes] [160350] branches/jsCStack/Source/JavaScriptCore/ChangeLog

Title: [160350] branches/jsCStack/Source/_javascript_Core/ChangeLog Revision 160350 Author msab...@apple.com Date 2013-12-09 22:54:32 -0800 (Mon, 09 Dec 2013) Log Message Fixed spelling errors in the ChangeLog entry for CStack Branch: Fix baseline JIT for basic operation Modified Paths

[webkit-changes] [160343] branches/jsCStack/Source/JavaScriptCore

Title: [160343] branches/jsCStack/Source/_javascript_Core Revision 160343 Author msab...@apple.com Date 2013-12-09 16:37:20 -0800 (Mon, 09 Dec 2013) Log Message CStack Branch: Change nativeForGenerator fallBack bool to an enum https://bugs.webkit.org/show_bug.cgi?id=125473 Reviewed by Fi

[webkit-changes] [160340] branches/jsCStack/Source/JavaScriptCore

Title: [160340] branches/jsCStack/Source/_javascript_Core Revision 160340 Author msab...@apple.com Date 2013-12-09 15:50:26 -0800 (Mon, 09 Dec 2013) Log Message CStack Branch: Fix baseline JIT for basic operation https://bugs.webkit.org/show_bug.cgi?id=125470 Not yet reviewed. Fixed com

[webkit-changes] [160268] branches/jsCStack/Source/JavaScriptCore

Title: [160268] branches/jsCStack/Source/_javascript_Core Revision 160268 Author msab...@apple.com Date 2013-12-06 22:41:33 -0800 (Fri, 06 Dec 2013) Log Message CStack Branch: Fix Specialized Thunks to use function prologues and epilogues https://bugs.webkit.org/show_bug.cgi?id=125381 No

[webkit-changes] [160267] branches/jsCStack/Source/JavaScriptCore

Title: [160267] branches/jsCStack/Source/_javascript_Core Revision 160267 Author msab...@apple.com Date 2013-12-06 21:46:22 -0800 (Fri, 06 Dec 2013) Log Message CStack Branch: Enable basic _javascript_ functionality in LLInt https://bugs.webkit.org/show_bug.cgi?id=125378 Reviewed by Fili

[webkit-changes] [160253] branches/jsCStack/Source/JavaScriptCore

Title: [160253] branches/jsCStack/Source/_javascript_Core Revision 160253 Author msab...@apple.com Date 2013-12-06 14:54:41 -0800 (Fri, 06 Dec 2013) Log Message Merged from trunk r160244: Split sizing of VarArgs frames from loading arguments for the frame https://bug

[webkit-changes] [160244] trunk/Source/JavaScriptCore

Title: [160244] trunk/Source/_javascript_Core Revision 160244 Author msab...@apple.com Date 2013-12-06 13:38:26 -0800 (Fri, 06 Dec 2013) Log Message Split sizing of VarArgs frames from loading arguments for the frame https://bugs.webkit.org/show_bug.cgi?id=125331 Reviewed by Filip Pizlo.

[webkit-changes] [160221] trunk/Source/JavaScriptCore

Title: [160221] trunk/Source/_javascript_Core Revision 160221 Author msab...@apple.com Date 2013-12-06 06:54:06 -0800 (Fri, 06 Dec 2013) Log Message REGRESSION(r160213): Crash in js/dom/JSON-parse.html https://bugs.webkit.org/show_bug.cgi?id=125335 Reviewed by Mark Lam. Changed _llint_o

[webkit-changes] [160213] trunk/Source/JavaScriptCore

Title: [160213] trunk/Source/_javascript_Core Revision 160213 Author msab...@apple.com Date 2013-12-05 21:32:06 -0800 (Thu, 05 Dec 2013) Log Message JSC: Simplify interface between throw and catch handler https://bugs.webkit.org/show_bug.cgi?id=125328 Reviewed by Geoffrey Garen. Simplif

[webkit-changes] [160056] trunk/Source/JavaScriptCore

Title: [160056] trunk/Source/_javascript_Core Revision 160056 Author msab...@apple.com Date 2013-12-03 15:56:31 -0800 (Tue, 03 Dec 2013) Log Message ARM64: Crash in JIT code due to improper reuse of cached memory temp register https://bugs.webkit.org/show_bug.cgi?id=125181 Reviewed by Ge

[webkit-changes] [160042] trunk/Source/JavaScriptCore

Title: [160042] trunk/Source/_javascript_Core Revision 160042 Author msab...@apple.com Date 2013-12-03 14:38:13 -0800 (Tue, 03 Dec 2013) Log Message jit/JITArithmetic.cpp doesn't build for non-X86 ports https://bugs.webkit.org/show_bug.cgi?id=125185 Rubber stamped by Mark Hahnenberg. Re

[webkit-changes] [159655] trunk/Source/JavaScriptCore

Title: [159655] trunk/Source/_javascript_Core Revision 159655 Author msab...@apple.com Date 2013-11-21 17:11:54 -0800 (Thu, 21 Nov 2013) Log Message ARM64: Implement push/pop equivalents in LLInt https://bugs.webkit.org/show_bug.cgi?id=124721 Reviewed by Filip Pizlo. Added pushLRAndFP a

[webkit-changes] [159654] trunk/Source/JavaScriptCore

Title: [159654] trunk/Source/_javascript_Core Revision 159654 Author msab...@apple.com Date 2013-11-21 16:46:09 -0800 (Thu, 21 Nov 2013) Log Message JSC: Removed unused opcodes from offline assembler https://bugs.webkit.org/show_bug.cgi?id=124749 Reviewed by Mark Hahnenberg. Removed the

[webkit-changes] [159653] trunk/Source/JavaScriptCore

Title: [159653] trunk/Source/_javascript_Core Revision 159653 Author msab...@apple.com Date 2013-11-21 16:31:55 -0800 (Thu, 21 Nov 2013) Log Message REGRESSION(159395) Fix branch8(…, AbsoluteAddress, …) in ARM64 MacroAssembler https://bugs.webkit.org/show_bug.cgi?id=124688 Reviewed by Ge

[webkit-changes] [159593] trunk/Source/JavaScriptCore

Title: [159593] trunk/Source/_javascript_Core Revision 159593 Author msab...@apple.com Date 2013-11-20 16:42:38 -0800 (Wed, 20 Nov 2013) Log Message [Win] _javascript_ JIT crash (with DFG enabled). https://bugs.webkit.org/show_bug.cgi?id=124675 Reviewed by Geoffrey Garen. Similar to the

[webkit-changes] [159577] trunk/Source/JavaScriptCore

Title: [159577] trunk/Source/_javascript_Core Revision 159577 Author msab...@apple.com Date 2013-11-20 13:15:18 -0800 (Wed, 20 Nov 2013) Log Message ARMv7: Crash due to use after free of AssemblerBuffer https://bugs.webkit.org/show_bug.cgi?id=124611 Reviewed by Geoffrey Garen. Changed J

[webkit-changes] [159532] trunk/Source/JavaScriptCore

Title: [159532] trunk/Source/_javascript_Core Revision 159532 Author msab...@apple.com Date 2013-11-19 16:35:00 -0800 (Tue, 19 Nov 2013) Log Message REGRESSION(158384) ARMv7 point checks too restrictive for native calls to traditional ARM code https://bugs.webkit.org/show_bug.cgi?id=12461

[webkit-changes] [159521] trunk/Source/JavaScriptCore

Title: [159521] trunk/Source/_javascript_Core Revision 159521 Author msab...@apple.com Date 2013-11-19 13:59:40 -0800 (Tue, 19 Nov 2013) Log Message REGRESSION (r159395): Error compiling for ARMv7 https://bugs.webkit.org/show_bug.cgi?id=124552 Reviewed by Geoffrey Garen. Fixed the imple

[webkit-changes] [159469] trunk/Source/JavaScriptCore

Title: [159469] trunk/Source/_javascript_Core Revision 159469 Author msab...@apple.com Date 2013-11-18 16:35:15 -0800 (Mon, 18 Nov 2013) Log Message ARM64 CRASH: Debug builds crash in emitPointerValidation() https://bugs.webkit.org/show_bug.cgi?id=124545 Reviewed by Filip Pizlo. Changed

[webkit-changes] [159466] trunk/Source/JavaScriptCore

Title: [159466] trunk/Source/_javascript_Core Revision 159466 Author msab...@apple.com Date 2013-11-18 16:07:53 -0800 (Mon, 18 Nov 2013) Log Message ARM64: Update getHostCallReturnValue() to use architected frame pointer register https://bugs.webkit.org/show_bug.cgi?id=124520 Reviewed by

[webkit-changes] [159428] trunk/Source/JavaScriptCore

Title: [159428] trunk/Source/_javascript_Core Revision 159428 Author msab...@apple.com Date 2013-11-18 10:19:23 -0800 (Mon, 18 Nov 2013) Log Message ARM64 CRASH: Improper offset in getHostCallReturnValue() to access callerFrame in CallFrame https://bugs.webkit.org/show_bug.cgi?id=124481

[webkit-changes] [159427] trunk/Source/JavaScriptCore

Title: [159427] trunk/Source/_javascript_Core Revision 159427 Author msab...@apple.com Date 2013-11-18 09:56:27 -0800 (Mon, 18 Nov 2013) Log Message Crash in virtualForThunkGenerator generated code on ARM64 https://bugs.webkit.org/show_bug.cgi?id=124447 Reviewed by Geoffrey Garen. The b

[webkit-changes] [159346] trunk/Source/JavaScriptCore

Title: [159346] trunk/Source/_javascript_Core Revision 159346 Author msab...@apple.com Date 2013-11-15 11:07:01 -0800 (Fri, 15 Nov 2013) Log Message REGRESSION (r158586): callToJavaScript needs to save return PC to Sentinel frame https://bugs.webkit.org/show_bug.cgi?id=124420 Reviewed by

[webkit-changes] [159298] trunk/Source/JavaScriptCore

Title: [159298] trunk/Source/_javascript_Core Revision 159298 Author msab...@apple.com Date 2013-11-14 11:43:08 -0800 (Thu, 14 Nov 2013) Log Message REGRESSION (r159276): Fix lots of crashes for arm_traditional architecture. https://bugs.webkit.org/show_bug.cgi?id=124365 Reviewed by Oliv

[webkit-changes] [159290] trunk/Source/JavaScriptCore

Title: [159290] trunk/Source/_javascript_Core Revision 159290 Author msab...@apple.com Date 2013-11-14 10:13:17 -0800 (Thu, 14 Nov 2013) Log Message REGRESSION (r159276): rbp register overwritten in Win 64 version of callToJavascript stub https://bugs.webkit.org/show_bug.cgi?id=124361 Re

[webkit-changes] [158883] trunk/Source/JavaScriptCore

Title: [158883] trunk/Source/_javascript_Core Revision 158883 Author msab...@apple.com Date 2013-11-07 15:45:56 -0800 (Thu, 07 Nov 2013) Log Message Change CallFrameRegister to architected frame pointer register https://bugs.webkit.org/show_bug.cgi?id=123956 Reviewed by Geoffrey Garen.

[webkit-changes] [158858] trunk/Source/JavaScriptCore

Title: [158858] trunk/Source/_javascript_Core Revision 158858 Author msab...@apple.com Date 2013-11-07 11:33:17 -0800 (Thu, 07 Nov 2013) Log Message returnFromJavaScript() for ARM_THUMB2 uses push()s which should be pop()s https://bugs.webkit.org/show_bug.cgi?id=124006 Rubber stamped by

[webkit-changes] [158857] trunk/Source/JavaScriptCore

Title: [158857] trunk/Source/_javascript_Core Revision 158857 Author msab...@apple.com Date 2013-11-07 11:23:12 -0800 (Thu, 07 Nov 2013) Log Message Remove unneeded moving of ESP to ECX in callToJavaScript for COMPILER(MSVC) https://bugs.webkit.org/show_bug.cgi?id=123998 Reviewed by Mark

[webkit-changes] [158648] trunk

Title: [158648] trunk Revision 158648 Author msab...@apple.com Date 2013-11-04 22:06:03 -0800 (Mon, 04 Nov 2013) Log Message REGRESSION(r158586): plugins/refcount-leaks.html fails https://bugs.webkit.org/show_bug.cgi?id=123765 Source/_javascript_Core: We were leaving a hole of one slot

[webkit-changes] [157875] trunk/Source/JavaScriptCore

Title: [157875] trunk/Source/_javascript_Core Revision 157875 Author msab...@apple.com Date 2013-10-23 11:42:52 -0700 (Wed, 23 Oct 2013) Log Message LLInt arity check exception processing should start unwinding from caller https://bugs.webkit.org/show_bug.cgi?id=123209 Reviewed by Oliver

[webkit-changes] [157586] trunk/Source/JavaScriptCore

Title: [157586] trunk/Source/_javascript_Core Revision 157586 Author msab...@apple.com Date 2013-10-17 11:57:41 -0700 (Thu, 17 Oct 2013) Log Message Remove saving callFrameRegister to JITStackFrame in JITCompiler::compileFunction() https://bugs.webkit.org/show_bug.cgi?id=122974 Reviewed

[webkit-changes] [157581] trunk/Source/JavaScriptCore

Title: [157581] trunk/Source/_javascript_Core Revision 157581 Author msab...@apple.com Date 2013-10-17 11:12:28 -0700 (Thu, 17 Oct 2013) Log Message Transition cti_op_throw and cti_vm_throw to a JIT operation https://bugs.webkit.org/show_bug.cgi?id=122931 Reviewed by Filip Pizlo. Moved

[webkit-changes] [157546] trunk/Source/JavaScriptCore

Title: [157546] trunk/Source/_javascript_Core Revision 157546 Author msab...@apple.com Date 2013-10-16 18:23:56 -0700 (Wed, 16 Oct 2013) Log Message transition void cti_op_put_by_val* stubs to JIT operations https://bugs.webkit.org/show_bug.cgi?id=122903 Reviewed by Geoffrey Garen. Tran

[webkit-changes] [157176] trunk/Source/WTF

Title: [157176] trunk/Source/WTF Revision 157176 Author msab...@apple.com Date 2013-10-09 11:22:08 -0700 (Wed, 09 Oct 2013) Log Message Change to std::unique_ptr breaks wtf/DataLog.cpp when DATA_LOG_TO_FILE set to 1 https://bugs.webkit.org/show_bug.cgi?id=122557 Reviewed by Filip Pizlo.

[webkit-changes] [157164] trunk/Source/JavaScriptCore

Title: [157164] trunk/Source/_javascript_Core Revision 157164 Author msab...@apple.com Date 2013-10-09 06:29:00 -0700 (Wed, 09 Oct 2013) Log Message Transition call and construct JITStubs to CCallHelper functions https://bugs.webkit.org/show_bug.cgi?id=122453 Reviewed by Geoffrey Garen.

[webkit-changes] [157050] trunk/Source/JavaScriptCore

Title: [157050] trunk/Source/_javascript_Core Revision 157050 Author msab...@apple.com Date 2013-10-07 11:20:27 -0700 (Mon, 07 Oct 2013) Log Message Transition stack check JITStubs to CCallHelper functions https://bugs.webkit.org/show_bug.cgi?id=122289 Reviewed by Filip Pizlo. Replaced

[webkit-changes] [156906] trunk/Source/JavaScriptCore

Title: [156906] trunk/Source/_javascript_Core Revision 156906 Author msab...@apple.com Date 2013-10-04 12:36:12 -0700 (Fri, 04 Oct 2013) Log Message FTL::OSRExit::convertToForward() shouldn't misuse Operands<>::operator[] https://bugs.webkit.org/show_bug.cgi?id=122336 Reviewed by Geoffre

[webkit-changes] [156900] trunk/Source/JavaScriptCore

Title: [156900] trunk/Source/_javascript_Core Revision 156900 Author msab...@apple.com Date 2013-10-04 11:38:16 -0700 (Fri, 04 Oct 2013) Log Message FTL: Crash in OSRExit::convertToForward() using VirtualRegister.offset() as array index https://bugs.webkit.org/show_bug.cgi?id=122332 Revi

[webkit-changes] [156896] trunk/Source/JavaScriptCore

Title: [156896] trunk/Source/_javascript_Core Revision 156896 Author msab...@apple.com Date 2013-10-04 11:20:40 -0700 (Fri, 04 Oct 2013) Log Message Add callOperation to Baseline JIT https://bugs.webkit.org/show_bug.cgi?id=122306 Reviewed by Geoffrey Garen. Created baseline JIT compatib

[webkit-changes] [156858] trunk/Source/JavaScriptCore

Title: [156858] trunk/Source/_javascript_Core Revision 156858 Author msab...@apple.com Date 2013-10-03 14:14:35 -0700 (Thu, 03 Oct 2013) Log Message Eliminate unused JITStub function declarations https://bugs.webkit.org/show_bug.cgi?id=122288 Reviewed by Geoffrey Garen. Removed unused J

[webkit-changes] [156810] trunk/Source/JavaScriptCore

Title: [156810] trunk/Source/_javascript_Core Revision 156810 Author msab...@apple.com Date 2013-10-02 16:33:46 -0700 (Wed, 02 Oct 2013) Log Message Make Baseline JIT exception handling work like the DFG JIT https://bugs.webkit.org/show_bug.cgi?id=122244 Reviewed by Filip Pizlo. Added a

[webkit-changes] [156794] trunk

Title: [156794] trunk Revision 156794 Author msab...@apple.com Date 2013-10-02 14:22:11 -0700 (Wed, 02 Oct 2013) Log Message The LLInt should not use JITStackFrame https://bugs.webkit.org/show_bug.cgi?id=122231 Reviewed by Filip Pizlo. Replaced uses of JITStackFrame::vm with code to eit

[webkit-changes] [156111] trunk/Source/JavaScriptCore

Title: [156111] trunk/Source/_javascript_Core Revision 156111 Author msab...@apple.com Date 2013-09-19 13:07:25 -0700 (Thu, 19 Sep 2013) Log Message JSC: X86 disassembler shows 16, 32 and 64 bit displacements as unsigned https://bugs.webkit.org/show_bug.cgi?id=121625 Rubber-stamped by Fi

[webkit-changes] [156046] trunk/Source/JavaScriptCore

Title: [156046] trunk/Source/_javascript_Core Revision 156046 Author msab...@apple.com Date 2013-09-18 09:51:07 -0700 (Wed, 18 Sep 2013) Log Message REGRESSION(r155771): js/stack-overflow-arrity-catch.html is crashing on non-Mac platforms https://bugs.webkit.org/show_bug.cgi?id=121376 Re

[webkit-changes] [156010] trunk/Tools

Title: [156010] trunk/Tools Revision 156010 Author msab...@apple.com Date 2013-09-17 15:48:57 -0700 (Tue, 17 Sep 2013) Log Message Unreviewed typo fix after r155999 Changed en_US.UTB-8 to en_US.UTF-8 * Scripts/run-_javascript_core-tests: Modified Paths trunk/Tools/ChangeLog trunk/Tool

[webkit-changes] [155999] trunk/Tools

Title: [155999] trunk/Tools Revision 155999 Author msab...@apple.com Date 2013-09-17 14:44:09 -0700 (Tue, 17 Sep 2013) Log Message run-jsc-stress-tests fails with ruby version 2 https://bugs.webkit.org/show_bug.cgi?id=121521 Reviewed by Jessie Berlin. Explicitly set LANG to en_US.UTB-8

[webkit-changes] [155735] trunk/Source/JavaScriptCore

Title: [155735] trunk/Source/_javascript_Core Revision 155735 Author msab...@apple.com Date 2013-09-13 17:28:57 -0700 (Fri, 13 Sep 2013) Log Message FTL JIT broke after r155711 https://bugs.webkit.org/show_bug.cgi?id=121332 Reviewed by Geoffrey Garen. Fixed OSR entry to use the local va

[webkit-changes] [155420] trunk/Source/JavaScriptCore

Title: [155420] trunk/Source/_javascript_Core Revision 155420 Author msab...@apple.com Date 2013-09-09 23:09:40 -0700 (Mon, 09 Sep 2013) Log Message There should be one "invalid" virtual register constant https://bugs.webkit.org/show_bug.cgi?id=121057 Reviewed by Filip Pizlo. Unify all

[webkit-changes] [155399] trunk/Source/JavaScriptCore

Title: [155399] trunk/Source/_javascript_Core Revision 155399 Author msab...@apple.com Date 2013-09-09 16:03:19 -0700 (Mon, 09 Sep 2013) Log Message Wrong for SlowPathCall to load callFrame reg from vm.topCallFrame after call https://bugs.webkit.org/show_bug.cgi?id=120537 Reviewed by Geo

[webkit-changes] [154846] trunk/LayoutTests

Title: [154846] trunk/LayoutTests Revision 154846 Author msab...@apple.com Date 2013-08-29 15:47:20 -0700 (Thu, 29 Aug 2013) Log Message REGRESSION (r153222, 32-bit): NULL JSValue() seen when running peacekeeper benchmark https://bugs.webkit.org/show_bug.cgi?id=120080 Rubber stamped by O

[webkit-changes] [154506] trunk/LayoutTests

Title: [154506] trunk/LayoutTests Revision 154506 Author msab...@apple.com Date 2013-08-23 12:31:03 -0700 (Fri, 23 Aug 2013) Log Message regexp-match-reify-before-putbyval is not a JSRegress test https://bugs.webkit.org/show_bug.cgi?id=120181 Reviewed by Geoffrey Garen. Moved and re-bas

[webkit-changes] [154346] trunk

Title: [154346] trunk Revision 154346 Author msab...@apple.com Date 2013-08-20 11:47:23 -0700 (Tue, 20 Aug 2013) Log Message https://bugs.webkit.org/show_bug.cgi?id=120075 REGRESSION (r128400): BBC4 website not displaying pictures Reviewed by Oliver Hunt. Source/_javascript_Core: * ru

[webkit-changes] [154303] trunk/Source/JavaScriptCore

Title: [154303] trunk/Source/_javascript_Core Revision 154303 Author msab...@apple.com Date 2013-08-19 15:36:46 -0700 (Mon, 19 Aug 2013) Log Message https://bugs.webkit.org/show_bug.cgi?id=119995 Start removing custom implementations of getOwnPropertyDescriptor Patch by Gavin Barraclough

[webkit-changes] [154298] trunk/Source/JavaScriptCore

Title: [154298] trunk/Source/_javascript_Core Revision 154298 Author msab...@apple.com Date 2013-08-19 14:26:10 -0700 (Mon, 19 Aug 2013) Log Message https://bugs.webkit.org/show_bug.cgi?id=120020 Change Set 154207 causes wrong register to be used for 32 bit tests Reviewed by Benjamin Pou

[webkit-changes] [154075] trunk/Source/JavaScriptCore

Title: [154075] trunk/Source/_javascript_Core Revision 154075 Author msab...@apple.com Date 2013-08-14 14:49:45 -0700 (Wed, 14 Aug 2013) Log Message Fixed jit on Win64. https://bugs.webkit.org/show_bug.cgi?id=119601 Reviewed by Oliver Hunt. * jit/JITStubsMSVC64.asm: Added ctiVMThrowTram

[webkit-changes] [153789] trunk/Source/JavaScriptCore

Title: [153789] trunk/Source/_javascript_Core Revision 153789 Author msab...@apple.com Date 2013-08-07 09:17:33 -0700 (Wed, 07 Aug 2013) Log Message REGRESSION(FTL merge): Assertion fail on 32 bit with enabled DFG JIT https://bugs.webkit.org/show_bug.cgi?id=119405 Reviewed by Geoffrey Ga

[webkit-changes] [153646] trunk/Source/JavaScriptCore

Title: [153646] trunk/Source/_javascript_Core Revision 153646 Author msab...@apple.com Date 2013-08-02 07:46:05 -0700 (Fri, 02 Aug 2013) Log Message REGRESSION(r153612): It made jsc and layout tests crash https://bugs.webkit.org/show_bug.cgi?id=119440 Reviewed by Csaba Osztrogonác. Made

[webkit-changes] [153612] trunk/Source/JavaScriptCore

Title: [153612] trunk/Source/_javascript_Core Revision 153612 Author msab...@apple.com Date 2013-08-01 14:57:38 -0700 (Thu, 01 Aug 2013) Log Message REGRESSION: Crash beneath cti_vm_throw_slowpath due to invalid CallFrame pointer https://bugs.webkit.org/show_bug.cgi?id=119140 Reviewed by

[webkit-changes] [153527] trunk/Source/JavaScriptCore

Title: [153527] trunk/Source/_javascript_Core Revision 153527 Author msab...@apple.com Date 2013-07-31 11:03:47 -0700 (Wed, 31 Jul 2013) Log Message [Win] _javascript_ crash. https://bugs.webkit.org/show_bug.cgi?id=119339 Reviewed by Mark Hahnenberg. * jit/JITStubsX86.h: Implement ctiVM

[webkit-changes] [153387] trunk/Source/WTF

Title: [153387] trunk/Source/WTF Revision 153387 Author msab...@apple.com Date 2013-07-26 16:19:30 -0700 (Fri, 26 Jul 2013) Log Message ASSERT failure in wtf/CheckedBoolean.h line 43 on Windows https://bugs.webkit.org/show_bug.cgi?id=119170 Reviewed by Michael Saboff. Added a copy const

[webkit-changes] [153360] trunk/Source/JavaScriptCore

Title: [153360] trunk/Source/_javascript_Core Revision 153360 Author msab...@apple.com Date 2013-07-25 17:22:14 -0700 (Thu, 25 Jul 2013) Log Message [Windows] Speculative build fix. Moved interpreterThrowInCaller() out of LLintExceptions.cpp into new CommonSlowPathsExceptions.cpp that is

[webkit-changes] [151744] branches/dfgFourthTier/Source/JavaScriptCore

Title: [151744] branches/dfgFourthTier/Source/_javascript_Core Revision 151744 Author msab...@apple.com Date 2013-06-19 11:38:00 -0700 (Wed, 19 Jun 2013) Log Message fourthTier: Arity fixup should be done while on same stack https://bugs.webkit.org/show_bug.cgi?id=117102 Reviewed by Oliv

[webkit-changes] [151741] branches/dfgFourthTier/Source/JavaScriptCore

Title: [151741] branches/dfgFourthTier/Source/_javascript_Core Revision 151741 Author msab...@apple.com Date 2013-06-19 10:42:44 -0700 (Wed, 19 Jun 2013) Log Message FTL: arm build is broken in ToT https://bugs.webkit.org/show_bug.cgi?id=117800 Unreviewed build fixes. * assembler/ARMv7A

[webkit-changes] [151658] branches/dfgFourthTier/Source/JavaScriptCore

Title: [151658] branches/dfgFourthTier/Source/_javascript_Core Revision 151658 Author msab...@apple.com Date 2013-06-17 16:50:11 -0700 (Mon, 17 Jun 2013) Log Message FTL: Add another temp register regT4 to JSInterfaceJIT https://bugs.webkit.org/show_bug.cgi?id=117719 Reviewed by Geoffrey

[webkit-changes] [151273] trunk/Source/JavaScriptCore

Title: [151273] trunk/Source/_javascript_Core Revision 151273 Author msab...@apple.com Date 2013-06-06 08:35:00 -0700 (Thu, 06 Jun 2013) Log Message JSC: Crash beneath cti_op_div @ http://gmailblog.blogspot.com https://bugs.webkit.org/show_bug.cgi?id=117280 Reviewed by Filip Pizlo. Upda

[webkit-changes] [149552] trunk/Source/JavaScriptCore

Title: [149552] trunk/Source/_javascript_Core Revision 149552 Author msab...@apple.com Date 2013-05-04 00:30:35 -0700 (Sat, 04 May 2013) Log Message There should be a runtime option to constrain what functions get DFG compiled https://bugs.webkit.org/show_bug.cgi?id=115576 Reviewed by Ma

<    2   3   4   5   6   7   8   9   10   >