RubyGems - libv8 - Versions diffs - 3.11.8.17 → 3.16.14.0 - Mend

libv8 3.11.8.17 → 3.16.14.0

Files changed (754) hide show

checksums.yaml +4 -4
data/.travis.yml +1 -2
data/Gemfile +1 -1
data/Rakefile +6 -7
data/lib/libv8/version.rb +1 -1
data/vendor/v8/.gitignore +24 -3
data/vendor/v8/AUTHORS +7 -0
data/vendor/v8/ChangeLog +839 -0
data/vendor/v8/DEPS +1 -1
data/vendor/v8/Makefile.android +92 -0
data/vendor/v8/OWNERS +11 -0
data/vendor/v8/PRESUBMIT.py +71 -0
data/vendor/v8/SConstruct +34 -39
data/vendor/v8/build/android.gypi +56 -37
data/vendor/v8/build/common.gypi +112 -30
data/vendor/v8/build/gyp_v8 +1 -1
data/vendor/v8/build/standalone.gypi +15 -11
data/vendor/v8/include/v8-debug.h +9 -1
data/vendor/v8/include/v8-preparser.h +4 -3
data/vendor/v8/include/v8-profiler.h +25 -25
data/vendor/v8/include/v8-testing.h +4 -3
data/vendor/v8/include/v8.h +994 -540
data/vendor/v8/preparser/preparser-process.cc +3 -3
data/vendor/v8/samples/lineprocessor.cc +20 -27
data/vendor/v8/samples/process.cc +18 -14
data/vendor/v8/samples/shell.cc +16 -15
data/vendor/v8/src/SConscript +15 -14
data/vendor/v8/src/accessors.cc +169 -77
data/vendor/v8/src/accessors.h +4 -0
data/vendor/v8/src/allocation-inl.h +2 -2
data/vendor/v8/src/allocation.h +7 -7
data/vendor/v8/src/api.cc +810 -497
data/vendor/v8/src/api.h +85 -60
data/vendor/v8/src/arm/assembler-arm-inl.h +179 -22
data/vendor/v8/src/arm/assembler-arm.cc +633 -264
data/vendor/v8/src/arm/assembler-arm.h +264 -197
data/vendor/v8/src/arm/builtins-arm.cc +117 -27
data/vendor/v8/src/arm/code-stubs-arm.cc +1241 -700
data/vendor/v8/src/arm/code-stubs-arm.h +35 -138
data/vendor/v8/src/arm/codegen-arm.cc +285 -16
data/vendor/v8/src/arm/codegen-arm.h +22 -0
data/vendor/v8/src/arm/constants-arm.cc +5 -3
data/vendor/v8/src/arm/constants-arm.h +24 -11
data/vendor/v8/src/arm/debug-arm.cc +3 -3
data/vendor/v8/src/arm/deoptimizer-arm.cc +382 -92
data/vendor/v8/src/arm/disasm-arm.cc +61 -12
data/vendor/v8/src/arm/frames-arm.h +0 -14
data/vendor/v8/src/arm/full-codegen-arm.cc +332 -304
data/vendor/v8/src/arm/ic-arm.cc +180 -259
data/vendor/v8/src/arm/lithium-arm.cc +364 -316
data/vendor/v8/src/arm/lithium-arm.h +512 -275
data/vendor/v8/src/arm/lithium-codegen-arm.cc +1768 -809
data/vendor/v8/src/arm/lithium-codegen-arm.h +97 -35
data/vendor/v8/src/arm/lithium-gap-resolver-arm.cc +12 -5
data/vendor/v8/src/arm/macro-assembler-arm.cc +439 -228
data/vendor/v8/src/arm/macro-assembler-arm.h +116 -70
data/vendor/v8/src/arm/regexp-macro-assembler-arm.cc +54 -44
data/vendor/v8/src/arm/regexp-macro-assembler-arm.h +3 -10
data/vendor/v8/src/arm/simulator-arm.cc +272 -238
data/vendor/v8/src/arm/simulator-arm.h +38 -8
data/vendor/v8/src/arm/stub-cache-arm.cc +522 -895
data/vendor/v8/src/array.js +101 -70
data/vendor/v8/src/assembler.cc +270 -19
data/vendor/v8/src/assembler.h +110 -15
data/vendor/v8/src/ast.cc +79 -69
data/vendor/v8/src/ast.h +255 -301
data/vendor/v8/src/atomicops.h +7 -1
data/vendor/v8/src/atomicops_internals_tsan.h +335 -0
data/vendor/v8/src/bootstrapper.cc +481 -418
data/vendor/v8/src/bootstrapper.h +4 -4
data/vendor/v8/src/builtins.cc +498 -311
data/vendor/v8/src/builtins.h +75 -47
data/vendor/v8/src/checks.cc +2 -1
data/vendor/v8/src/checks.h +8 -0
data/vendor/v8/src/code-stubs-hydrogen.cc +253 -0
data/vendor/v8/src/code-stubs.cc +249 -84
data/vendor/v8/src/code-stubs.h +501 -169
data/vendor/v8/src/codegen.cc +36 -18
data/vendor/v8/src/codegen.h +25 -3
data/vendor/v8/src/collection.js +54 -17
data/vendor/v8/src/compilation-cache.cc +24 -16
data/vendor/v8/src/compilation-cache.h +15 -6
data/vendor/v8/src/compiler.cc +497 -195
data/vendor/v8/src/compiler.h +246 -38
data/vendor/v8/src/contexts.cc +64 -24
data/vendor/v8/src/contexts.h +60 -29
data/vendor/v8/src/conversions-inl.h +24 -14
data/vendor/v8/src/conversions.h +7 -4
data/vendor/v8/src/counters.cc +21 -12
data/vendor/v8/src/counters.h +44 -16
data/vendor/v8/src/cpu-profiler.h +1 -1
data/vendor/v8/src/d8-debug.cc +2 -2
data/vendor/v8/src/d8-readline.cc +13 -2
data/vendor/v8/src/d8.cc +681 -273
data/vendor/v8/src/d8.gyp +4 -4
data/vendor/v8/src/d8.h +38 -18
data/vendor/v8/src/d8.js +0 -617
data/vendor/v8/src/data-flow.h +55 -0
data/vendor/v8/src/date.js +1 -42
data/vendor/v8/src/dateparser-inl.h +5 -1
data/vendor/v8/src/debug-agent.cc +10 -15
data/vendor/v8/src/debug-debugger.js +147 -149
data/vendor/v8/src/debug.cc +323 -164
data/vendor/v8/src/debug.h +26 -14
data/vendor/v8/src/deoptimizer.cc +765 -290
data/vendor/v8/src/deoptimizer.h +130 -28
data/vendor/v8/src/disassembler.cc +10 -4
data/vendor/v8/src/elements-kind.cc +7 -2
data/vendor/v8/src/elements-kind.h +19 -0
data/vendor/v8/src/elements.cc +607 -285
data/vendor/v8/src/elements.h +36 -13
data/vendor/v8/src/execution.cc +52 -31
data/vendor/v8/src/execution.h +4 -4
data/vendor/v8/src/extensions/externalize-string-extension.cc +5 -4
data/vendor/v8/src/extensions/gc-extension.cc +5 -1
data/vendor/v8/src/extensions/statistics-extension.cc +153 -0
data/vendor/v8/src/{inspector.h → extensions/statistics-extension.h} +12 -23
data/vendor/v8/src/factory.cc +101 -134
data/vendor/v8/src/factory.h +36 -31
data/vendor/v8/src/flag-definitions.h +102 -25
data/vendor/v8/src/flags.cc +9 -5
data/vendor/v8/src/frames-inl.h +10 -0
data/vendor/v8/src/frames.cc +116 -26
data/vendor/v8/src/frames.h +96 -12
data/vendor/v8/src/full-codegen.cc +219 -74
data/vendor/v8/src/full-codegen.h +63 -21
data/vendor/v8/src/func-name-inferrer.cc +8 -7
data/vendor/v8/src/func-name-inferrer.h +5 -3
data/vendor/v8/src/gdb-jit.cc +71 -57
data/vendor/v8/src/global-handles.cc +230 -101
data/vendor/v8/src/global-handles.h +26 -27
data/vendor/v8/src/globals.h +17 -19
data/vendor/v8/src/handles-inl.h +59 -12
data/vendor/v8/src/handles.cc +180 -200
data/vendor/v8/src/handles.h +80 -11
data/vendor/v8/src/hashmap.h +60 -40
data/vendor/v8/src/heap-inl.h +107 -45
data/vendor/v8/src/heap-profiler.cc +38 -19
data/vendor/v8/src/heap-profiler.h +24 -14
data/vendor/v8/src/heap.cc +1123 -738
data/vendor/v8/src/heap.h +385 -146
data/vendor/v8/src/hydrogen-instructions.cc +700 -217
data/vendor/v8/src/hydrogen-instructions.h +1158 -472
data/vendor/v8/src/hydrogen.cc +3319 -1662
data/vendor/v8/src/hydrogen.h +411 -170
data/vendor/v8/src/ia32/assembler-ia32-inl.h +46 -16
data/vendor/v8/src/ia32/assembler-ia32.cc +131 -61
data/vendor/v8/src/ia32/assembler-ia32.h +115 -57
data/vendor/v8/src/ia32/builtins-ia32.cc +99 -5
data/vendor/v8/src/ia32/code-stubs-ia32.cc +787 -495
data/vendor/v8/src/ia32/code-stubs-ia32.h +10 -100
data/vendor/v8/src/ia32/codegen-ia32.cc +227 -23
data/vendor/v8/src/ia32/codegen-ia32.h +14 -0
data/vendor/v8/src/ia32/deoptimizer-ia32.cc +428 -87
data/vendor/v8/src/ia32/disasm-ia32.cc +28 -1
data/vendor/v8/src/ia32/frames-ia32.h +6 -16
data/vendor/v8/src/ia32/full-codegen-ia32.cc +280 -272
data/vendor/v8/src/ia32/ic-ia32.cc +150 -250
data/vendor/v8/src/ia32/lithium-codegen-ia32.cc +1600 -517
data/vendor/v8/src/ia32/lithium-codegen-ia32.h +90 -24
data/vendor/v8/src/ia32/lithium-gap-resolver-ia32.cc +10 -6
data/vendor/v8/src/ia32/lithium-gap-resolver-ia32.h +2 -2
data/vendor/v8/src/ia32/lithium-ia32.cc +405 -302
data/vendor/v8/src/ia32/lithium-ia32.h +526 -271
data/vendor/v8/src/ia32/macro-assembler-ia32.cc +378 -119
data/vendor/v8/src/ia32/macro-assembler-ia32.h +62 -28
data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.cc +43 -30
data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.h +2 -10
data/vendor/v8/src/ia32/stub-cache-ia32.cc +492 -678
data/vendor/v8/src/ic-inl.h +9 -4
data/vendor/v8/src/ic.cc +836 -923
data/vendor/v8/src/ic.h +228 -247
data/vendor/v8/src/incremental-marking-inl.h +26 -30
data/vendor/v8/src/incremental-marking.cc +276 -248
data/vendor/v8/src/incremental-marking.h +29 -37
data/vendor/v8/src/interface.cc +34 -25
data/vendor/v8/src/interface.h +69 -25
data/vendor/v8/src/interpreter-irregexp.cc +2 -2
data/vendor/v8/src/isolate.cc +382 -76
data/vendor/v8/src/isolate.h +109 -56
data/vendor/v8/src/json-parser.h +217 -104
data/vendor/v8/src/json-stringifier.h +745 -0
data/vendor/v8/src/json.js +10 -132
data/vendor/v8/src/jsregexp-inl.h +106 -0
data/vendor/v8/src/jsregexp.cc +517 -285
data/vendor/v8/src/jsregexp.h +145 -117
data/vendor/v8/src/list-inl.h +35 -22
data/vendor/v8/src/list.h +46 -19
data/vendor/v8/src/lithium-allocator-inl.h +22 -2
data/vendor/v8/src/lithium-allocator.cc +85 -70
data/vendor/v8/src/lithium-allocator.h +21 -39
data/vendor/v8/src/lithium.cc +259 -5
data/vendor/v8/src/lithium.h +131 -32
data/vendor/v8/src/liveedit-debugger.js +52 -3
data/vendor/v8/src/liveedit.cc +393 -113
data/vendor/v8/src/liveedit.h +7 -3
data/vendor/v8/src/log-utils.cc +4 -2
data/vendor/v8/src/log.cc +170 -140
data/vendor/v8/src/log.h +62 -11
data/vendor/v8/src/macro-assembler.h +17 -0
data/vendor/v8/src/macros.py +2 -0
data/vendor/v8/src/mark-compact-inl.h +3 -23
data/vendor/v8/src/mark-compact.cc +801 -830
data/vendor/v8/src/mark-compact.h +154 -47
data/vendor/v8/src/marking-thread.cc +85 -0
data/vendor/v8/src/{inspector.cc → marking-thread.h} +32 -24
data/vendor/v8/src/math.js +12 -18
data/vendor/v8/src/messages.cc +18 -8
data/vendor/v8/src/messages.js +314 -261
data/vendor/v8/src/mips/assembler-mips-inl.h +58 -6
data/vendor/v8/src/mips/assembler-mips.cc +92 -75
data/vendor/v8/src/mips/assembler-mips.h +54 -60
data/vendor/v8/src/mips/builtins-mips.cc +116 -17
data/vendor/v8/src/mips/code-stubs-mips.cc +919 -556
data/vendor/v8/src/mips/code-stubs-mips.h +22 -131
data/vendor/v8/src/mips/codegen-mips.cc +281 -6
data/vendor/v8/src/mips/codegen-mips.h +22 -0
data/vendor/v8/src/mips/constants-mips.cc +2 -0
data/vendor/v8/src/mips/constants-mips.h +12 -2
data/vendor/v8/src/mips/deoptimizer-mips.cc +286 -50
data/vendor/v8/src/mips/disasm-mips.cc +13 -0
data/vendor/v8/src/mips/full-codegen-mips.cc +297 -284
data/vendor/v8/src/mips/ic-mips.cc +182 -263
data/vendor/v8/src/mips/lithium-codegen-mips.cc +1208 -556
data/vendor/v8/src/mips/lithium-codegen-mips.h +72 -19
data/vendor/v8/src/mips/lithium-gap-resolver-mips.cc +9 -2
data/vendor/v8/src/mips/lithium-mips.cc +290 -302
data/vendor/v8/src/mips/lithium-mips.h +463 -266
data/vendor/v8/src/mips/macro-assembler-mips.cc +208 -115
data/vendor/v8/src/mips/macro-assembler-mips.h +67 -24
data/vendor/v8/src/mips/regexp-macro-assembler-mips.cc +40 -25
data/vendor/v8/src/mips/regexp-macro-assembler-mips.h +3 -9
data/vendor/v8/src/mips/simulator-mips.cc +112 -40
data/vendor/v8/src/mips/simulator-mips.h +5 -0
data/vendor/v8/src/mips/stub-cache-mips.cc +502 -884
data/vendor/v8/src/mirror-debugger.js +157 -30
data/vendor/v8/src/mksnapshot.cc +88 -14
data/vendor/v8/src/object-observe.js +235 -0
data/vendor/v8/src/objects-debug.cc +178 -176
data/vendor/v8/src/objects-inl.h +1333 -486
data/vendor/v8/src/objects-printer.cc +125 -43
data/vendor/v8/src/objects-visiting-inl.h +578 -6
data/vendor/v8/src/objects-visiting.cc +2 -2
data/vendor/v8/src/objects-visiting.h +172 -79
data/vendor/v8/src/objects.cc +3533 -2885
data/vendor/v8/src/objects.h +1352 -1131
data/vendor/v8/src/optimizing-compiler-thread.cc +152 -0
data/vendor/v8/src/optimizing-compiler-thread.h +111 -0
data/vendor/v8/src/parser.cc +390 -500
data/vendor/v8/src/parser.h +45 -33
data/vendor/v8/src/platform-cygwin.cc +10 -21
data/vendor/v8/src/platform-freebsd.cc +36 -41
data/vendor/v8/src/platform-linux.cc +160 -124
data/vendor/v8/src/platform-macos.cc +30 -27
data/vendor/v8/src/platform-nullos.cc +17 -1
data/vendor/v8/src/platform-openbsd.cc +19 -50
data/vendor/v8/src/platform-posix.cc +14 -0
data/vendor/v8/src/platform-solaris.cc +20 -53
data/vendor/v8/src/platform-win32.cc +49 -26
data/vendor/v8/src/platform.h +40 -1
data/vendor/v8/src/preparser.cc +8 -5
data/vendor/v8/src/preparser.h +2 -2
data/vendor/v8/src/prettyprinter.cc +16 -0
data/vendor/v8/src/prettyprinter.h +2 -0
data/vendor/v8/src/profile-generator-inl.h +1 -0
data/vendor/v8/src/profile-generator.cc +209 -147
data/vendor/v8/src/profile-generator.h +15 -12
data/vendor/v8/src/property-details.h +46 -31
data/vendor/v8/src/property.cc +27 -46
data/vendor/v8/src/property.h +163 -83
data/vendor/v8/src/proxy.js +7 -2
data/vendor/v8/src/regexp-macro-assembler-irregexp.cc +4 -13
data/vendor/v8/src/regexp-macro-assembler-irregexp.h +1 -2
data/vendor/v8/src/regexp-macro-assembler-tracer.cc +1 -11
data/vendor/v8/src/regexp-macro-assembler-tracer.h +0 -1
data/vendor/v8/src/regexp-macro-assembler.cc +31 -14
data/vendor/v8/src/regexp-macro-assembler.h +14 -11
data/vendor/v8/src/regexp-stack.cc +1 -0
data/vendor/v8/src/regexp.js +9 -8
data/vendor/v8/src/rewriter.cc +18 -7
data/vendor/v8/src/runtime-profiler.cc +52 -43
data/vendor/v8/src/runtime-profiler.h +0 -25
data/vendor/v8/src/runtime.cc +2006 -2023
data/vendor/v8/src/runtime.h +56 -49
data/vendor/v8/src/safepoint-table.cc +12 -18
data/vendor/v8/src/safepoint-table.h +11 -8
data/vendor/v8/src/scanner.cc +1 -0
data/vendor/v8/src/scanner.h +4 -10
data/vendor/v8/src/scopeinfo.cc +35 -9
data/vendor/v8/src/scopeinfo.h +64 -3
data/vendor/v8/src/scopes.cc +251 -156
data/vendor/v8/src/scopes.h +61 -27
data/vendor/v8/src/serialize.cc +348 -396
data/vendor/v8/src/serialize.h +125 -114
data/vendor/v8/src/small-pointer-list.h +11 -11
data/vendor/v8/src/{smart-array-pointer.h → smart-pointers.h} +64 -15
data/vendor/v8/src/snapshot-common.cc +64 -15
data/vendor/v8/src/snapshot-empty.cc +7 -1
data/vendor/v8/src/snapshot.h +9 -2
data/vendor/v8/src/spaces-inl.h +17 -0
data/vendor/v8/src/spaces.cc +477 -183
data/vendor/v8/src/spaces.h +238 -58
data/vendor/v8/src/splay-tree-inl.h +8 -7
data/vendor/v8/src/splay-tree.h +24 -10
data/vendor/v8/src/store-buffer.cc +12 -5
data/vendor/v8/src/store-buffer.h +2 -4
data/vendor/v8/src/string-search.h +22 -6
data/vendor/v8/src/string-stream.cc +11 -8
data/vendor/v8/src/string.js +47 -15
data/vendor/v8/src/stub-cache.cc +461 -224
data/vendor/v8/src/stub-cache.h +164 -102
data/vendor/v8/src/sweeper-thread.cc +105 -0
data/vendor/v8/src/sweeper-thread.h +81 -0
data/vendor/v8/src/token.h +1 -0
data/vendor/v8/src/transitions-inl.h +220 -0
data/vendor/v8/src/transitions.cc +160 -0
data/vendor/v8/src/transitions.h +207 -0
data/vendor/v8/src/type-info.cc +182 -181
data/vendor/v8/src/type-info.h +31 -19
data/vendor/v8/src/unicode-inl.h +62 -106
data/vendor/v8/src/unicode.cc +57 -67
data/vendor/v8/src/unicode.h +45 -91
data/vendor/v8/src/uri.js +57 -29
data/vendor/v8/src/utils.h +105 -5
data/vendor/v8/src/v8-counters.cc +54 -11
data/vendor/v8/src/v8-counters.h +134 -19
data/vendor/v8/src/v8.cc +29 -29
data/vendor/v8/src/v8.h +1 -0
data/vendor/v8/src/v8conversions.cc +26 -22
data/vendor/v8/src/v8globals.h +56 -43
data/vendor/v8/src/v8natives.js +83 -30
data/vendor/v8/src/v8threads.cc +42 -21
data/vendor/v8/src/v8threads.h +4 -1
data/vendor/v8/src/v8utils.cc +9 -93
data/vendor/v8/src/v8utils.h +37 -33
data/vendor/v8/src/variables.cc +6 -3
data/vendor/v8/src/variables.h +6 -13
data/vendor/v8/src/version.cc +2 -2
data/vendor/v8/src/vm-state-inl.h +11 -0
data/vendor/v8/src/x64/assembler-x64-inl.h +39 -8
data/vendor/v8/src/x64/assembler-x64.cc +78 -64
data/vendor/v8/src/x64/assembler-x64.h +38 -33
data/vendor/v8/src/x64/builtins-x64.cc +105 -7
data/vendor/v8/src/x64/code-stubs-x64.cc +790 -413
data/vendor/v8/src/x64/code-stubs-x64.h +10 -106
data/vendor/v8/src/x64/codegen-x64.cc +210 -8
data/vendor/v8/src/x64/codegen-x64.h +20 -1
data/vendor/v8/src/x64/deoptimizer-x64.cc +336 -75
data/vendor/v8/src/x64/disasm-x64.cc +15 -0
data/vendor/v8/src/x64/frames-x64.h +0 -14
data/vendor/v8/src/x64/full-codegen-x64.cc +293 -270
data/vendor/v8/src/x64/ic-x64.cc +153 -251
data/vendor/v8/src/x64/lithium-codegen-x64.cc +1379 -531
data/vendor/v8/src/x64/lithium-codegen-x64.h +67 -23
data/vendor/v8/src/x64/lithium-gap-resolver-x64.cc +2 -2
data/vendor/v8/src/x64/lithium-x64.cc +349 -289
data/vendor/v8/src/x64/lithium-x64.h +460 -250
data/vendor/v8/src/x64/macro-assembler-x64.cc +350 -177
data/vendor/v8/src/x64/macro-assembler-x64.h +67 -49
data/vendor/v8/src/x64/regexp-macro-assembler-x64.cc +46 -33
data/vendor/v8/src/x64/regexp-macro-assembler-x64.h +2 -3
data/vendor/v8/src/x64/stub-cache-x64.cc +484 -653
data/vendor/v8/src/zone-inl.h +9 -27
data/vendor/v8/src/zone.cc +5 -5
data/vendor/v8/src/zone.h +53 -27
data/vendor/v8/test/benchmarks/testcfg.py +5 -0
data/vendor/v8/test/cctest/cctest.cc +4 -0
data/vendor/v8/test/cctest/cctest.gyp +3 -1
data/vendor/v8/test/cctest/cctest.h +57 -9
data/vendor/v8/test/cctest/cctest.status +15 -15
data/vendor/v8/test/cctest/test-accessors.cc +26 -0
data/vendor/v8/test/cctest/test-alloc.cc +22 -30
data/vendor/v8/test/cctest/test-api.cc +1943 -314
data/vendor/v8/test/cctest/test-assembler-arm.cc +133 -13
data/vendor/v8/test/cctest/test-assembler-ia32.cc +1 -1
data/vendor/v8/test/cctest/test-assembler-mips.cc +12 -0
data/vendor/v8/test/cctest/test-ast.cc +4 -2
data/vendor/v8/test/cctest/test-compiler.cc +61 -29
data/vendor/v8/test/cctest/test-dataflow.cc +2 -2
data/vendor/v8/test/cctest/test-debug.cc +212 -33
data/vendor/v8/test/cctest/test-decls.cc +257 -11
data/vendor/v8/test/cctest/test-dictionary.cc +24 -10
data/vendor/v8/test/cctest/test-disasm-arm.cc +118 -1
data/vendor/v8/test/cctest/test-disasm-ia32.cc +3 -2
data/vendor/v8/test/cctest/test-flags.cc +14 -1
data/vendor/v8/test/cctest/test-func-name-inference.cc +7 -4
data/vendor/v8/test/cctest/test-global-object.cc +51 -0
data/vendor/v8/test/cctest/test-hashing.cc +32 -23
data/vendor/v8/test/cctest/test-heap-profiler.cc +131 -77
data/vendor/v8/test/cctest/test-heap.cc +1084 -143
data/vendor/v8/test/cctest/test-list.cc +1 -1
data/vendor/v8/test/cctest/test-liveedit.cc +3 -2
data/vendor/v8/test/cctest/test-lockers.cc +12 -13
data/vendor/v8/test/cctest/test-log.cc +10 -8
data/vendor/v8/test/cctest/test-macro-assembler-x64.cc +2 -2
data/vendor/v8/test/cctest/test-mark-compact.cc +44 -22
data/vendor/v8/test/cctest/test-object-observe.cc +434 -0
data/vendor/v8/test/cctest/test-parsing.cc +86 -39
data/vendor/v8/test/cctest/test-platform-linux.cc +6 -0
data/vendor/v8/test/cctest/test-platform-win32.cc +7 -0
data/vendor/v8/test/cctest/test-random.cc +5 -4
data/vendor/v8/test/cctest/test-regexp.cc +137 -101
data/vendor/v8/test/cctest/test-serialize.cc +150 -230
data/vendor/v8/test/cctest/test-sockets.cc +1 -1
data/vendor/v8/test/cctest/test-spaces.cc +139 -0
data/vendor/v8/test/cctest/test-strings.cc +736 -74
data/vendor/v8/test/cctest/test-thread-termination.cc +10 -11
data/vendor/v8/test/cctest/test-threads.cc +4 -4
data/vendor/v8/test/cctest/test-utils.cc +16 -0
data/vendor/v8/test/cctest/test-weakmaps.cc +7 -3
data/vendor/v8/test/cctest/testcfg.py +64 -5
data/vendor/v8/test/es5conform/testcfg.py +5 -0
data/vendor/v8/test/message/message.status +1 -1
data/vendor/v8/test/message/overwritten-builtins.out +3 -0
data/vendor/v8/test/message/testcfg.py +89 -8
data/vendor/v8/test/message/try-catch-finally-no-message.out +26 -26
data/vendor/v8/test/mjsunit/accessor-map-sharing.js +18 -2
data/vendor/v8/test/mjsunit/allocation-site-info.js +126 -0
data/vendor/v8/test/mjsunit/array-bounds-check-removal.js +62 -1
data/vendor/v8/test/mjsunit/array-iteration.js +1 -1
data/vendor/v8/test/mjsunit/array-literal-transitions.js +2 -0
data/vendor/v8/test/mjsunit/array-natives-elements.js +317 -0
data/vendor/v8/test/mjsunit/array-reduce.js +8 -8
data/vendor/v8/test/mjsunit/array-slice.js +12 -0
data/vendor/v8/test/mjsunit/array-store-and-grow.js +4 -1
data/vendor/v8/test/mjsunit/assert-opt-and-deopt.js +1 -1
data/vendor/v8/test/mjsunit/bugs/bug-2337.js +53 -0
data/vendor/v8/test/mjsunit/compare-known-objects-slow.js +69 -0
data/vendor/v8/test/mjsunit/compiler/alloc-object-huge.js +3 -1
data/vendor/v8/test/mjsunit/compiler/inline-accessors.js +368 -0
data/vendor/v8/test/mjsunit/compiler/inline-arguments.js +87 -1
data/vendor/v8/test/mjsunit/compiler/inline-closures.js +49 -0
data/vendor/v8/test/mjsunit/compiler/inline-construct.js +55 -43
data/vendor/v8/test/mjsunit/compiler/inline-literals.js +39 -0
data/vendor/v8/test/mjsunit/compiler/multiply-add.js +69 -0
data/vendor/v8/test/mjsunit/compiler/optimized-closures.js +57 -0
data/vendor/v8/test/mjsunit/compiler/parallel-proto-change.js +44 -0
data/vendor/v8/test/mjsunit/compiler/property-static.js +69 -0
data/vendor/v8/test/mjsunit/compiler/proto-chain-constant.js +55 -0
data/vendor/v8/test/mjsunit/compiler/proto-chain-load.js +44 -0
data/vendor/v8/test/mjsunit/compiler/regress-gvn.js +3 -2
data/vendor/v8/test/mjsunit/compiler/regress-or.js +6 -2
data/vendor/v8/test/mjsunit/compiler/rotate.js +224 -0
data/vendor/v8/test/mjsunit/compiler/uint32.js +173 -0
data/vendor/v8/test/mjsunit/count-based-osr.js +2 -1
data/vendor/v8/test/mjsunit/d8-os.js +3 -3
data/vendor/v8/test/mjsunit/date-parse.js +3 -0
data/vendor/v8/test/mjsunit/date.js +22 -0
data/vendor/v8/test/mjsunit/debug-break-inline.js +1 -0
data/vendor/v8/test/mjsunit/debug-evaluate-locals-optimized-double.js +22 -12
data/vendor/v8/test/mjsunit/debug-evaluate-locals-optimized.js +21 -10
data/vendor/v8/test/mjsunit/debug-liveedit-compile-error.js +60 -0
data/vendor/v8/test/mjsunit/debug-liveedit-double-call.js +142 -0
data/vendor/v8/test/mjsunit/debug-liveedit-literals.js +94 -0
data/vendor/v8/test/mjsunit/debug-liveedit-restart-frame.js +153 -0
data/vendor/v8/test/mjsunit/debug-multiple-breakpoints.js +1 -1
data/vendor/v8/test/mjsunit/debug-script-breakpoints-closure.js +67 -0
data/vendor/v8/test/mjsunit/debug-script-breakpoints-nested.js +82 -0
data/vendor/v8/test/mjsunit/debug-script.js +4 -2
data/vendor/v8/test/mjsunit/debug-set-variable-value.js +308 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part1.js +190 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part2.js +83 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part3.js +80 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part4.js +80 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part5.js +77 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part6.js +79 -0
data/vendor/v8/test/mjsunit/debug-stepout-scope-part7.js +79 -0
data/vendor/v8/test/mjsunit/{debug-stepout-scope.js → debug-stepout-scope-part8.js} +0 -189
data/vendor/v8/test/mjsunit/delete-non-configurable.js +74 -0
data/vendor/v8/test/mjsunit/deopt-minus-zero.js +56 -0
data/vendor/v8/test/mjsunit/elements-kind.js +6 -4
data/vendor/v8/test/mjsunit/elements-length-no-holey.js +33 -0
data/vendor/v8/test/mjsunit/elements-transition-hoisting.js +46 -19
data/vendor/v8/test/mjsunit/error-accessors.js +54 -0
data/vendor/v8/test/mjsunit/error-constructors.js +1 -14
data/vendor/v8/test/mjsunit/error-tostring.js +8 -0
data/vendor/v8/test/mjsunit/eval-stack-trace.js +204 -0
data/vendor/v8/test/mjsunit/external-array.js +364 -1
data/vendor/v8/test/mjsunit/fast-array-length.js +37 -0
data/vendor/v8/test/mjsunit/fast-non-keyed.js +113 -0
data/vendor/v8/test/mjsunit/fast-prototype.js +117 -0
data/vendor/v8/test/mjsunit/function-call.js +14 -18
data/vendor/v8/test/mjsunit/fuzz-natives-part1.js +230 -0
data/vendor/v8/test/mjsunit/fuzz-natives-part2.js +229 -0
data/vendor/v8/test/mjsunit/fuzz-natives-part3.js +229 -0
data/vendor/v8/test/mjsunit/{fuzz-natives.js → fuzz-natives-part4.js} +12 -2
data/vendor/v8/test/mjsunit/generated-transition-stub.js +218 -0
data/vendor/v8/test/mjsunit/greedy.js +1 -1
data/vendor/v8/test/mjsunit/harmony/block-conflicts.js +2 -1
data/vendor/v8/test/mjsunit/harmony/block-let-crankshaft.js +1 -1
data/vendor/v8/test/mjsunit/harmony/collections.js +69 -11
data/vendor/v8/test/mjsunit/harmony/debug-blockscopes.js +2 -2
data/vendor/v8/test/mjsunit/harmony/module-linking.js +180 -3
data/vendor/v8/test/mjsunit/harmony/module-parsing.js +31 -0
data/vendor/v8/test/mjsunit/harmony/module-recompile.js +87 -0
data/vendor/v8/test/mjsunit/harmony/module-resolution.js +15 -2
data/vendor/v8/test/mjsunit/harmony/object-observe.js +1056 -0
data/vendor/v8/test/mjsunit/harmony/proxies-json.js +178 -0
data/vendor/v8/test/mjsunit/harmony/proxies.js +25 -10
data/vendor/v8/test/mjsunit/json-parser-recursive.js +33 -0
data/vendor/v8/test/mjsunit/json-stringify-recursive.js +52 -0
data/vendor/v8/test/mjsunit/json.js +38 -2
data/vendor/v8/test/mjsunit/json2.js +153 -0
data/vendor/v8/test/mjsunit/limit-locals.js +5 -4
data/vendor/v8/test/mjsunit/manual-parallel-recompile.js +79 -0
data/vendor/v8/test/mjsunit/math-exp-precision.js +64 -0
data/vendor/v8/test/mjsunit/math-floor-negative.js +59 -0
data/vendor/v8/test/mjsunit/math-floor-of-div-minus-zero.js +41 -0
data/vendor/v8/test/mjsunit/math-floor-of-div-nosudiv.js +288 -0
data/vendor/v8/test/mjsunit/math-floor-of-div.js +81 -9
data/vendor/v8/test/mjsunit/{math-floor.js → math-floor-part1.js} +1 -72
data/vendor/v8/test/mjsunit/math-floor-part2.js +76 -0
data/vendor/v8/test/mjsunit/math-floor-part3.js +78 -0
data/vendor/v8/test/mjsunit/math-floor-part4.js +76 -0
data/vendor/v8/test/mjsunit/mirror-object.js +43 -9
data/vendor/v8/test/mjsunit/mjsunit.js +1 -1
data/vendor/v8/test/mjsunit/mjsunit.status +52 -27
data/vendor/v8/test/mjsunit/mul-exhaustive-part1.js +491 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part10.js +470 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part2.js +525 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part3.js +532 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part4.js +509 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part5.js +505 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part6.js +554 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part7.js +497 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part8.js +526 -0
data/vendor/v8/test/mjsunit/mul-exhaustive-part9.js +533 -0
data/vendor/v8/test/mjsunit/new-function.js +34 -0
data/vendor/v8/test/mjsunit/numops-fuzz-part1.js +1172 -0
data/vendor/v8/test/mjsunit/numops-fuzz-part2.js +1178 -0
data/vendor/v8/test/mjsunit/numops-fuzz-part3.js +1178 -0
data/vendor/v8/test/mjsunit/numops-fuzz-part4.js +1177 -0
data/vendor/v8/test/mjsunit/object-define-property.js +107 -2
data/vendor/v8/test/mjsunit/override-read-only-property.js +6 -4
data/vendor/v8/test/mjsunit/packed-elements.js +2 -2
data/vendor/v8/test/mjsunit/parse-int-float.js +4 -4
data/vendor/v8/test/mjsunit/pixel-array-rounding.js +1 -1
data/vendor/v8/test/mjsunit/readonly.js +228 -0
data/vendor/v8/test/mjsunit/regexp-capture-3.js +16 -18
data/vendor/v8/test/mjsunit/regexp-capture.js +2 -0
data/vendor/v8/test/mjsunit/regexp-global.js +122 -0
data/vendor/v8/test/mjsunit/regexp-results-cache.js +78 -0
data/vendor/v8/test/mjsunit/regress/regress-1117.js +12 -3
data/vendor/v8/test/mjsunit/regress/regress-1118.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-115100.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-1199637.js +1 -3
data/vendor/v8/test/mjsunit/regress/regress-121407.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-131923.js +30 -0
data/vendor/v8/test/mjsunit/regress/regress-131994.js +70 -0
data/vendor/v8/test/mjsunit/regress/regress-133211.js +35 -0
data/vendor/v8/test/mjsunit/regress/regress-133211b.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-136048.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-137768.js +73 -0
data/vendor/v8/test/mjsunit/regress/regress-143967.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-145201.js +107 -0
data/vendor/v8/test/mjsunit/regress/regress-147497.js +45 -0
data/vendor/v8/test/mjsunit/regress/regress-148378.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-1563.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-1591.js +48 -0
data/vendor/v8/test/mjsunit/regress/regress-164442.js +45 -0
data/vendor/v8/test/mjsunit/regress/regress-165637.js +61 -0
data/vendor/v8/test/mjsunit/regress/regress-166379.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-166553.js +33 -0
data/vendor/v8/test/mjsunit/regress/regress-1692.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-171641.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-1980.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-2073.js +99 -0
data/vendor/v8/test/mjsunit/regress/regress-2119.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2156.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-2163.js +70 -0
data/vendor/v8/test/mjsunit/regress/regress-2170.js +58 -0
data/vendor/v8/test/mjsunit/regress/regress-2172.js +35 -0
data/vendor/v8/test/mjsunit/regress/regress-2185-2.js +145 -0
data/vendor/v8/test/mjsunit/regress/regress-2185.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-2186.js +49 -0
data/vendor/v8/test/mjsunit/regress/regress-2193.js +58 -0
data/vendor/v8/test/mjsunit/regress/regress-2219.js +32 -0
data/vendor/v8/test/mjsunit/regress/regress-2225.js +65 -0
data/vendor/v8/test/mjsunit/regress/regress-2226.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2234.js +41 -0
data/vendor/v8/test/mjsunit/regress/regress-2243.js +31 -0
data/vendor/v8/test/mjsunit/regress/regress-2249.js +33 -0
data/vendor/v8/test/mjsunit/regress/regress-2250.js +68 -0
data/vendor/v8/test/mjsunit/regress/regress-2261.js +113 -0
data/vendor/v8/test/mjsunit/regress/regress-2263.js +30 -0
data/vendor/v8/test/mjsunit/regress/regress-2284.js +32 -0
data/vendor/v8/test/mjsunit/regress/regress-2285.js +32 -0
data/vendor/v8/test/mjsunit/regress/regress-2286.js +32 -0
data/vendor/v8/test/mjsunit/regress/regress-2289.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-2291.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2294.js +70 -0
data/vendor/v8/test/mjsunit/regress/regress-2296.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-2315.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-2318.js +66 -0
data/vendor/v8/test/mjsunit/regress/regress-2322.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2326.js +54 -0
data/vendor/v8/test/mjsunit/regress/regress-2336.js +53 -0
data/vendor/v8/test/mjsunit/regress/regress-2339.js +59 -0
data/vendor/v8/test/mjsunit/regress/regress-2346.js +123 -0
data/vendor/v8/test/mjsunit/regress/regress-2373.js +29 -0
data/vendor/v8/test/mjsunit/regress/regress-2374.js +33 -0
data/vendor/v8/test/mjsunit/regress/regress-2398.js +41 -0
data/vendor/v8/test/mjsunit/regress/regress-2410.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2416.js +75 -0
data/vendor/v8/test/mjsunit/regress/regress-2419.js +37 -0
data/vendor/v8/test/mjsunit/regress/regress-2433.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-2437.js +156 -0
data/vendor/v8/test/mjsunit/regress/regress-2438.js +52 -0
data/vendor/v8/test/mjsunit/regress/regress-2443.js +129 -0
data/vendor/v8/test/mjsunit/regress/regress-2444.js +120 -0
data/vendor/v8/test/mjsunit/regress/regress-2489.js +50 -0
data/vendor/v8/test/mjsunit/regress/regress-2499.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-334.js +1 -1
data/vendor/v8/test/mjsunit/regress/regress-492.js +39 -1
data/vendor/v8/test/mjsunit/regress/regress-builtin-array-op.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-cnlt-elements.js +43 -0
data/vendor/v8/test/mjsunit/regress/regress-cnlt-enum-indices.js +45 -0
data/vendor/v8/test/mjsunit/regress/regress-cntl-descriptors-enum.js +46 -0
data/vendor/v8/test/mjsunit/regress/regress-convert-enum.js +60 -0
data/vendor/v8/test/mjsunit/regress/regress-convert-enum2.js +46 -0
data/vendor/v8/test/mjsunit/regress/regress-convert-transition.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-119926.js +3 -1
data/vendor/v8/test/mjsunit/regress/regress-crbug-125148.js +90 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-134055.js +63 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-134609.js +59 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-135008.js +45 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-135066.js +55 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-137689.js +47 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-138887.js +48 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-140083.js +44 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-142087.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-142218.js +44 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-145961.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-146910.js +33 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-147475.js +48 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-148376.js +35 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-150545.js +53 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-150729.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-157019.js +54 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-157520.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-158185.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-160010.js +35 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-162085.js +71 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-168545.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-170856.js +33 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-172345.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-173974.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-crbug-18639.js +9 -5
data/vendor/v8/test/mjsunit/regress/regress-debug-code-recompilation.js +2 -1
data/vendor/v8/test/mjsunit/regress/regress-deep-proto.js +45 -0
data/vendor/v8/test/mjsunit/regress/regress-delete-empty-double.js +40 -0
data/vendor/v8/test/mjsunit/regress/regress-iteration-order.js +42 -0
data/vendor/v8/test/mjsunit/regress/regress-json-stringify-gc.js +41 -0
data/vendor/v8/test/mjsunit/regress/regress-latin-1.js +78 -0
data/vendor/v8/test/mjsunit/regress/regress-load-elements.js +49 -0
data/vendor/v8/test/mjsunit/regress/regress-observe-empty-double-array.js +38 -0
data/vendor/v8/test/mjsunit/regress/regress-undefined-store-keyed-fast-element.js +37 -0
data/vendor/v8/test/mjsunit/shift-for-integer-div.js +59 -0
data/vendor/v8/test/mjsunit/stack-traces-gc.js +119 -0
data/vendor/v8/test/mjsunit/stack-traces-overflow.js +122 -0
data/vendor/v8/test/mjsunit/stack-traces.js +39 -1
data/vendor/v8/test/mjsunit/str-to-num.js +7 -2
data/vendor/v8/test/mjsunit/strict-mode.js +36 -11
data/vendor/v8/test/mjsunit/string-charcodeat.js +3 -0
data/vendor/v8/test/mjsunit/string-natives.js +72 -0
data/vendor/v8/test/mjsunit/string-split.js +17 -0
data/vendor/v8/test/mjsunit/testcfg.py +76 -6
data/vendor/v8/test/mjsunit/tools/tickprocessor.js +4 -1
data/vendor/v8/test/mjsunit/try-finally-continue.js +72 -0
data/vendor/v8/test/mjsunit/typed-array-slice.js +61 -0
data/vendor/v8/test/mjsunit/unbox-double-arrays.js +2 -0
data/vendor/v8/test/mjsunit/uri.js +12 -0
data/vendor/v8/test/mjsunit/with-readonly.js +4 -2
data/vendor/v8/test/mozilla/mozilla.status +19 -113
data/vendor/v8/test/mozilla/testcfg.py +122 -3
data/vendor/v8/test/preparser/preparser.status +5 -0
data/vendor/v8/test/preparser/strict-identifiers.pyt +1 -1
data/vendor/v8/test/preparser/testcfg.py +101 -5
data/vendor/v8/test/sputnik/sputnik.status +1 -1
data/vendor/v8/test/sputnik/testcfg.py +5 -0
data/vendor/v8/test/test262/README +2 -2
data/vendor/v8/test/test262/test262.status +13 -36
data/vendor/v8/test/test262/testcfg.py +102 -8
data/vendor/v8/tools/android-build.sh +0 -0
data/vendor/v8/tools/android-ll-prof.sh +69 -0
data/vendor/v8/tools/android-run.py +109 -0
data/vendor/v8/tools/android-sync.sh +105 -0
data/vendor/v8/tools/bash-completion.sh +0 -0
data/vendor/v8/tools/check-static-initializers.sh +0 -0
data/vendor/v8/tools/common-includes.sh +15 -22
data/vendor/v8/tools/disasm.py +4 -4
data/vendor/v8/tools/fuzz-harness.sh +0 -0
data/vendor/v8/tools/gen-postmortem-metadata.py +6 -8
data/vendor/v8/tools/grokdump.py +404 -129
data/vendor/v8/tools/gyp/v8.gyp +105 -43
data/vendor/v8/tools/linux-tick-processor +5 -5
data/vendor/v8/tools/ll_prof.py +75 -15
data/vendor/v8/tools/merge-to-branch.sh +2 -2
data/vendor/v8/tools/plot-timer-events +70 -0
data/vendor/v8/tools/plot-timer-events.js +510 -0
data/vendor/v8/tools/presubmit.py +1 -0
data/vendor/v8/tools/push-to-trunk.sh +14 -4
data/vendor/v8/tools/run-llprof.sh +69 -0
data/vendor/v8/tools/run-tests.py +372 -0
data/vendor/v8/tools/run-valgrind.py +1 -1
data/vendor/v8/tools/status-file-converter.py +39 -0
data/vendor/v8/tools/test-server.py +224 -0
data/vendor/v8/tools/test-wrapper-gypbuild.py +13 -16
data/vendor/v8/tools/test.py +10 -19
data/vendor/v8/tools/testrunner/README +174 -0
data/vendor/v8/tools/testrunner/__init__.py +26 -0
data/vendor/v8/tools/testrunner/local/__init__.py +26 -0
data/vendor/v8/tools/testrunner/local/commands.py +153 -0
data/vendor/v8/tools/testrunner/local/execution.py +182 -0
data/vendor/v8/tools/testrunner/local/old_statusfile.py +460 -0
data/vendor/v8/tools/testrunner/local/progress.py +238 -0
data/vendor/v8/tools/testrunner/local/statusfile.py +145 -0
data/vendor/v8/tools/testrunner/local/testsuite.py +187 -0
data/vendor/v8/tools/testrunner/local/utils.py +108 -0
data/vendor/v8/tools/testrunner/local/verbose.py +99 -0
data/vendor/v8/tools/testrunner/network/__init__.py +26 -0
data/vendor/v8/tools/testrunner/network/distro.py +90 -0
data/vendor/v8/tools/testrunner/network/endpoint.py +124 -0
data/vendor/v8/tools/testrunner/network/network_execution.py +253 -0
data/vendor/v8/tools/testrunner/network/perfdata.py +120 -0
data/vendor/v8/tools/testrunner/objects/__init__.py +26 -0
data/vendor/v8/tools/testrunner/objects/context.py +50 -0
data/vendor/v8/tools/testrunner/objects/output.py +60 -0
data/vendor/v8/tools/testrunner/objects/peer.py +80 -0
data/vendor/v8/tools/testrunner/objects/testcase.py +83 -0
data/vendor/v8/tools/testrunner/objects/workpacket.py +90 -0
data/vendor/v8/tools/testrunner/server/__init__.py +26 -0
data/vendor/v8/tools/testrunner/server/compression.py +111 -0
data/vendor/v8/tools/testrunner/server/constants.py +51 -0
data/vendor/v8/tools/testrunner/server/daemon.py +147 -0
data/vendor/v8/tools/testrunner/server/local_handler.py +119 -0
data/vendor/v8/tools/testrunner/server/main.py +245 -0
data/vendor/v8/tools/testrunner/server/presence_handler.py +120 -0
data/vendor/v8/tools/testrunner/server/signatures.py +63 -0
data/vendor/v8/tools/testrunner/server/status_handler.py +112 -0
data/vendor/v8/tools/testrunner/server/work_handler.py +150 -0
data/vendor/v8/tools/tick-processor.html +168 -0
data/vendor/v8/tools/tickprocessor-driver.js +5 -3
data/vendor/v8/tools/tickprocessor.js +58 -15
metadata +534 -30
data/patches/add-freebsd9-and-freebsd10-to-gyp-GetFlavor.patch +0 -11
data/patches/do-not-imply-vfp3-and-armv7.patch +0 -44
data/patches/fPIC-on-x64.patch +0 -14
data/vendor/v8/src/liveobjectlist-inl.h +0 -126
data/vendor/v8/src/liveobjectlist.cc +0 -2631
data/vendor/v8/src/liveobjectlist.h +0 -319
data/vendor/v8/test/mjsunit/mul-exhaustive.js +0 -4629
data/vendor/v8/test/mjsunit/numops-fuzz.js +0 -4609
data/vendor/v8/test/mjsunit/regress/regress-1969.js +0 -5045

data/vendor/v8/src/arm/lithium-codegen-arm.h CHANGED Viewed

@@ -44,21 +44,26 @@ class SafepointGenerator;
 class LCodeGen BASE_EMBEDDED {
  public:
   LCodeGen(LChunk* chunk, MacroAssembler* assembler, CompilationInfo* info)
-      : chunk_(chunk),
+      : zone_(info->zone()),
+        chunk_(static_cast<LPlatformChunk*>(chunk)),
         masm_(assembler),
         info_(info),
         current_block_(-1),
         current_instruction_(-1),
         instructions_(chunk->instructions()),
-        deoptimizations_(4),
-        deopt_jump_table_(4),
-        deoptimization_literals_(8),
+        deoptimizations_(4, info->zone()),
+        deopt_jump_table_(4, info->zone()),
+        deoptimization_literals_(8, info->zone()),
         inlined_function_count_(0),
         scope_(info->scope()),
         status_(UNUSED),
-        deferred_(8),
+        translations_(info->zone()),
+        deferred_(8, info->zone()),
+        support_aligned_spilled_doubles_(false),
         osr_pc_offset_(-1),
         last_lazy_deopt_pc_(0),
+        frame_is_built_(false),
+        safepoints_(info->zone()),
         resolver_(this),
         expected_safepoint_kind_(Safepoint::kSimple) {
     PopulateDeoptimizationLiteralsWithInlinedFunctions();
@@ -71,6 +76,16 @@ class LCodeGen BASE_EMBEDDED {
   Isolate* isolate() const { return info_->isolate(); }
   Factory* factory() const { return isolate()->factory(); }
   Heap* heap() const { return isolate()->heap(); }
+  Zone* zone() const { return zone_; }
+  bool NeedsEagerFrame() const {
+    return GetStackSlotCount() > 0 ||
+        info()->is_non_deferred_calling() ||
+        !info()->IsStub();
+  }
+  bool NeedsDeferredFrame() const {
+    return !NeedsEagerFrame() && info()->is_deferred_calling();
+  }
   // Support for converting LOperands to assembler types.
   // LOperand must be a register.
@@ -80,12 +95,12 @@ class LCodeGen BASE_EMBEDDED {
   Register EmitLoadRegister(LOperand* op, Register scratch);
   // LOperand must be a double register.
-  DoubleRegister ToDoubleRegister(LOperand* op) const;
+  DwVfpRegister ToDoubleRegister(LOperand* op) const;
   // LOperand is loaded into dbl_scratch, unless already a double register.
-  DoubleRegister EmitLoadDoubleRegister(LOperand* op,
-                                        SwVfpRegister flt_scratch,
-                                        DoubleRegister dbl_scratch);
+  DwVfpRegister EmitLoadDoubleRegister(LOperand* op,
+                                       SwVfpRegister flt_scratch,
+                                       DwVfpRegister dbl_scratch);
   int ToInteger32(LConstantOperand* op) const;
   double ToDouble(LConstantOperand* op) const;
   Operand ToOperand(LOperand* op);
@@ -106,11 +121,17 @@ class LCodeGen BASE_EMBEDDED {
   void FinishCode(Handle<Code> code);
   // Deferred code support.
-  template<int T>
-  void DoDeferredBinaryOpStub(LTemplateInstruction<1, 2, T>* instr,
+  void DoDeferredBinaryOpStub(LPointerMap* pointer_map,
+                              LOperand* left_argument,
+                              LOperand* right_argument,
                               Token::Value op);
   void DoDeferredNumberTagD(LNumberTagD* instr);
-  void DoDeferredNumberTagI(LNumberTagI* instr);
+  enum IntegerSignedness { SIGNED_INT32, UNSIGNED_INT32 };
+  void DoDeferredNumberTagI(LInstruction* instr,
+                            LOperand* value,
+                            IntegerSignedness signedness);
   void DoDeferredTaggedToI(LTaggedToI* instr);
   void DoDeferredMathAbsTaggedHeapNumber(LUnaryMathOperation* instr);
   void DoDeferredStackCheck(LStackCheck* instr);
@@ -118,18 +139,31 @@ class LCodeGen BASE_EMBEDDED {
   void DoDeferredStringCharCodeAt(LStringCharCodeAt* instr);
   void DoDeferredStringCharFromCode(LStringCharFromCode* instr);
   void DoDeferredAllocateObject(LAllocateObject* instr);
+  void DoDeferredAllocate(LAllocate* instr);
   void DoDeferredInstanceOfKnownGlobal(LInstanceOfKnownGlobal* instr,
                                        Label* map_check);
-  void DoCheckMapCommon(Register reg, Register scratch, Handle<Map> map,
+  void DoCheckMapCommon(Register map_reg, Handle<Map> map,
                         CompareMapMode mode, LEnvironment* env);
   // Parallel move support.
   void DoParallelMove(LParallelMove* move);
   void DoGap(LGap* instr);
+  MemOperand PrepareKeyedOperand(Register key,
+                                 Register base,
+                                 bool key_is_constant,
+                                 int constant_key,
+                                 int element_size,
+                                 int shift_size,
+                                 int additional_index,
+                                 int additional_offset);
   // Emit frame translation commands for an environment.
-  void WriteTranslation(LEnvironment* environment, Translation* translation);
+  void WriteTranslation(LEnvironment* environment,
+                        Translation* translation,
+                        int* arguments_index,
+                        int* arguments_count);
   // Declare methods that deal with the individual node types.
 #define DECLARE_DO(type) void Do##type(L##type* node);
@@ -153,7 +187,7 @@ class LCodeGen BASE_EMBEDDED {
     return info()->is_classic_mode() ? kNonStrictMode : kStrictMode;
   }
-  LChunk* chunk() const { return chunk_; }
+  LPlatformChunk* chunk() const { return chunk_; }
   Scope* scope() const { return scope_; }
   HGraph* graph() const { return chunk_->graph(); }
@@ -171,12 +205,12 @@ class LCodeGen BASE_EMBEDDED {
                        Register temporary2);
   int GetStackSlotCount() const { return chunk()->spill_slot_count(); }
-  int GetParameterCount() const { return scope()->num_parameters(); }
+  int GetParameterCount() const { return info()->num_parameters(); }
-  void Abort(const char* format, ...);
+  void Abort(const char* reason);
   void Comment(const char* format, ...);
-  void AddDeferredCode(LDeferredCode* code) { deferred_.Add(code); }
+  void AddDeferredCode(LDeferredCode* code) { deferred_.Add(code, zone()); }
   // Code generation passes.  Returns true if code generation should
   // continue.
@@ -191,14 +225,18 @@ class LCodeGen BASE_EMBEDDED {
     RECORD_SAFEPOINT_WITH_REGISTERS_AND_NO_ARGUMENTS
   };
-  void CallCode(Handle<Code> code,
-                RelocInfo::Mode mode,
-                LInstruction* instr);
+  void CallCode(
+      Handle<Code> code,
+      RelocInfo::Mode mode,
+      LInstruction* instr,
+      TargetAddressStorageMode storage_mode = CAN_INLINE_TARGET_ADDRESS);
-  void CallCodeGeneric(Handle<Code> code,
-                       RelocInfo::Mode mode,
-                       LInstruction* instr,
-                       SafepointMode safepoint_mode);
+  void CallCodeGeneric(
+      Handle<Code> code,
+      RelocInfo::Mode mode,
+      LInstruction* instr,
+      SafepointMode safepoint_mode,
+      TargetAddressStorageMode storage_mode = CAN_INLINE_TARGET_ADDRESS);
   void CallRuntime(const Runtime::Function* function,
                    int num_arguments,
@@ -239,14 +277,17 @@ class LCodeGen BASE_EMBEDDED {
   void AddToTranslation(Translation* translation,
                         LOperand* op,
-                        bool is_tagged);
+                        bool is_tagged,
+                        bool is_uint32,
+                        int arguments_index,
+                        int arguments_count);
   void PopulateDeoptimizationData(Handle<Code> code);
   int DefineDeoptimizationLiteral(Handle<Object> literal);
   void PopulateDeoptimizationLiteralsWithInlinedFunctions();
   Register ToRegister(int index) const;
-  DoubleRegister ToDoubleRegister(int index) const;
+  DwVfpRegister ToDoubleRegister(int index) const;
   // Specific math operations - used from DoUnaryMathOperation.
   void EmitIntegerMathAbs(LUnaryMathOperation* instr);
@@ -279,10 +320,15 @@ class LCodeGen BASE_EMBEDDED {
   void EmitGoto(int block);
   void EmitBranch(int left_block, int right_block, Condition cc);
   void EmitNumberUntagD(Register input,
-                        DoubleRegister result,
+                        DwVfpRegister result,
                         bool deoptimize_on_undefined,
                         bool deoptimize_on_minus_zero,
-                        LEnvironment* env);
+                        LEnvironment* env,
+                        NumberUntagDMode mode);
+  void DeoptIfTaggedButNotSmi(LEnvironment* environment,
+                              HValue* value,
+                              LOperand* operand);
   // Emits optimized code for typeof x == "y".  Modifies input register.
   // Returns the condition on which a final split to
@@ -314,14 +360,16 @@ class LCodeGen BASE_EMBEDDED {
   void EmitLoadFieldOrConstantFunction(Register result,
                                        Register object,
                                        Handle<Map> type,
-                                       Handle<String> name);
+                                       Handle<String> name,
+                                       LEnvironment* env);
   // Emits optimized code to deep-copy the contents of statically known
   // object graphs (e.g. object literal boilerplate).
   void EmitDeepCopy(Handle<JSObject> object,
                     Register result,
                     Register source,
-                    int* offset);
+                    int* offset,
+                    AllocationSiteMode mode);
   // Emit optimized code for integer division.
   // Inputs are signed.
@@ -335,16 +383,27 @@ class LCodeGen BASE_EMBEDDED {
                                            LEnvironment* environment);
   struct JumpTableEntry {
-    explicit inline JumpTableEntry(Address entry)
+    inline JumpTableEntry(Address entry, bool frame, bool is_lazy)
         : label(),
-          address(entry) { }
+          address(entry),
+          needs_frame(frame),
+          is_lazy_deopt(is_lazy) { }
     Label label;
     Address address;
+    bool needs_frame;
+    bool is_lazy_deopt;
   };
   void EnsureSpaceForLazyDeopt();
-  LChunk* const chunk_;
+  void DoLoadKeyedExternalArray(LLoadKeyed* instr);
+  void DoLoadKeyedFixedDoubleArray(LLoadKeyed* instr);
+  void DoLoadKeyedFixedArray(LLoadKeyed* instr);
+  void DoStoreKeyedExternalArray(LStoreKeyed* instr);
+  void DoStoreKeyedFixedDoubleArray(LStoreKeyed* instr);
+  void DoStoreKeyedFixedArray(LStoreKeyed* instr);
+  Zone* zone_;
+  LPlatformChunk* const chunk_;
   MacroAssembler* const masm_;
   CompilationInfo* const info_;
@@ -359,8 +418,10 @@ class LCodeGen BASE_EMBEDDED {
   Status status_;
   TranslationBuffer translations_;
   ZoneList<LDeferredCode*> deferred_;
+  bool support_aligned_spilled_doubles_;
   int osr_pc_offset_;
   int last_lazy_deopt_pc_;
+  bool frame_is_built_;
   // Builder that keeps track of safepoints in the code. The table
   // itself is emitted at the end of the generated code.
@@ -376,6 +437,7 @@ class LCodeGen BASE_EMBEDDED {
     PushSafepointRegistersScope(LCodeGen* codegen,
                                 Safepoint::Kind kind)
         : codegen_(codegen) {
+      ASSERT(codegen_->info()->is_calling());
       ASSERT(codegen_->expected_safepoint_kind_ == Safepoint::kSimple);
       codegen_->expected_safepoint_kind_ = kind;

data/vendor/v8/src/arm/lithium-gap-resolver-arm.cc CHANGED Viewed

@@ -36,7 +36,7 @@ namespace internal {
 static const Register kSavedValueRegister = { 9 };
 LGapResolver::LGapResolver(LCodeGen* owner)
-    : cgen_(owner), moves_(32), root_index_(0), in_cycle_(false),
+    : cgen_(owner), moves_(32, owner->zone()), root_index_(0), in_cycle_(false),
       saved_destination_(NULL) { }
@@ -79,7 +79,7 @@ void LGapResolver::BuildInitialMoveList(LParallelMove* parallel_move) {
   const ZoneList<LMoveOperands>* moves = parallel_move->move_operands();
   for (int i = 0; i < moves->length(); ++i) {
     LMoveOperands move = moves->at(i);
-    if (!move.IsRedundant()) moves_.Add(move);
+    if (!move.IsRedundant()) moves_.Add(move, cgen_->zone());
   }
   Verify();
 }
@@ -171,8 +171,10 @@ void LGapResolver::BreakCycle(int index) {
   } else if (source->IsStackSlot()) {
     __ ldr(kSavedValueRegister, cgen_->ToMemOperand(source));
   } else if (source->IsDoubleRegister()) {
+    CpuFeatures::Scope scope(VFP2);
     __ vmov(kScratchDoubleReg, cgen_->ToDoubleRegister(source));
   } else if (source->IsDoubleStackSlot()) {
+    CpuFeatures::Scope scope(VFP2);
     __ vldr(kScratchDoubleReg, cgen_->ToMemOperand(source));
   } else {
     UNREACHABLE();
@@ -192,8 +194,10 @@ void LGapResolver::RestoreValue() {
   } else if (saved_destination_->IsStackSlot()) {
     __ str(kSavedValueRegister, cgen_->ToMemOperand(saved_destination_));
   } else if (saved_destination_->IsDoubleRegister()) {
+    CpuFeatures::Scope scope(VFP2);
     __ vmov(cgen_->ToDoubleRegister(saved_destination_), kScratchDoubleReg);
   } else if (saved_destination_->IsDoubleStackSlot()) {
+    CpuFeatures::Scope scope(VFP2);
     __ vstr(kScratchDoubleReg, cgen_->ToMemOperand(saved_destination_));
   } else {
     UNREACHABLE();
@@ -229,7 +233,8 @@ void LGapResolver::EmitMove(int index) {
       MemOperand destination_operand = cgen_->ToMemOperand(destination);
       if (in_cycle_) {
         if (!destination_operand.OffsetIsUint12Encodable()) {
-          // ip is overwritten while saving the value to the destination.
+          CpuFeatures::Scope scope(VFP2);
+            // ip is overwritten while saving the value to the destination.
           // Therefore we can't use ip.  It is OK if the read from the source
           // destroys ip, since that happens before the value is read.
           __ vldr(kScratchDoubleReg.low(), source_operand);
@@ -267,7 +272,8 @@ void LGapResolver::EmitMove(int index) {
     }
   } else if (source->IsDoubleRegister()) {
-    DoubleRegister source_register = cgen_->ToDoubleRegister(source);
+    CpuFeatures::Scope scope(VFP2);
+    DwVfpRegister source_register = cgen_->ToDoubleRegister(source);
     if (destination->IsDoubleRegister()) {
       __ vmov(cgen_->ToDoubleRegister(destination), source_register);
     } else {
@@ -276,7 +282,8 @@ void LGapResolver::EmitMove(int index) {
     }
   } else if (source->IsDoubleStackSlot()) {
-    MemOperand source_operand = cgen_->ToMemOperand(source);
+    CpuFeatures::Scope scope(VFP2);
+      MemOperand source_operand = cgen_->ToMemOperand(source);
     if (destination->IsDoubleRegister()) {
       __ vldr(cgen_->ToDoubleRegister(destination), source_operand);
     } else {

data/vendor/v8/src/arm/macro-assembler-arm.cc CHANGED Viewed

@@ -108,7 +108,7 @@ void MacroAssembler::Jump(Handle<Code> code, RelocInfo::Mode rmode,
 int MacroAssembler::CallSize(Register target, Condition cond) {
-#if USE_BLX
+#ifdef USE_BLX
   return kInstrSize;
 #else
   return 2 * kInstrSize;
@@ -121,7 +121,7 @@ void MacroAssembler::Call(Register target, Condition cond) {
   BlockConstPoolScope block_const_pool(this);
   Label start;
   bind(&start);
-#if USE_BLX
+#ifdef USE_BLX
   blx(target, cond);
 #else
   // set lr for return at current pc + 8
@@ -137,7 +137,19 @@ int MacroAssembler::CallSize(
   int size = 2 * kInstrSize;
   Instr mov_instr = cond | MOV | LeaveCC;
   intptr_t immediate = reinterpret_cast<intptr_t>(target);
-  if (!Operand(immediate, rmode).is_single_instruction(mov_instr)) {
+  if (!Operand(immediate, rmode).is_single_instruction(this, mov_instr)) {
+    size += kInstrSize;
+  }
+  return size;
+}
+int MacroAssembler::CallSizeNotPredictableCodeSize(
+    Address target, RelocInfo::Mode rmode, Condition cond) {
+  int size = 2 * kInstrSize;
+  Instr mov_instr = cond | MOV | LeaveCC;
+  intptr_t immediate = reinterpret_cast<intptr_t>(target);
+  if (!Operand(immediate, rmode).is_single_instruction(NULL, mov_instr)) {
     size += kInstrSize;
   }
   return size;
@@ -146,15 +158,29 @@ int MacroAssembler::CallSize(
 void MacroAssembler::Call(Address target,
                           RelocInfo::Mode rmode,
-                          Condition cond) {
+                          Condition cond,
+                          TargetAddressStorageMode mode) {
   // Block constant pool for the call instruction sequence.
   BlockConstPoolScope block_const_pool(this);
   Label start;
   bind(&start);
-#if USE_BLX
-  // On ARMv5 and after the recommended call sequence is:
-  //  ldr ip, [pc, #...]
-  //  blx ip
+  bool old_predictable_code_size = predictable_code_size();
+  if (mode == NEVER_INLINE_TARGET_ADDRESS) {
+    set_predictable_code_size(true);
+  }
+#ifdef USE_BLX
+  // Call sequence on V7 or later may be :
+  //  movw  ip, #... @ call address low 16
+  //  movt  ip, #... @ call address high 16
+  //  blx   ip
+  //                      @ return address
+  // Or for pre-V7 or values that may be back-patched
+  // to avoid ICache flushes:
+  //  ldr   ip, [pc, #...] @ call address
+  //  blx   ip
+  //                      @ return address
   // Statement positions are expected to be recorded when the target
   // address is loaded. The mov method will automatically record
@@ -165,21 +191,22 @@ void MacroAssembler::Call(Address target,
   mov(ip, Operand(reinterpret_cast<int32_t>(target), rmode));
   blx(ip, cond);
-  ASSERT(kCallTargetAddressOffset == 2 * kInstrSize);
 #else
   // Set lr for return at current pc + 8.
   mov(lr, Operand(pc), LeaveCC, cond);
   // Emit a ldr<cond> pc, [pc + offset of target in constant pool].
   mov(pc, Operand(reinterpret_cast<int32_t>(target), rmode), LeaveCC, cond);
-  ASSERT(kCallTargetAddressOffset == kInstrSize);
 #endif
   ASSERT_EQ(CallSize(target, rmode, cond), SizeOfCodeGeneratedSince(&start));
+  if (mode == NEVER_INLINE_TARGET_ADDRESS) {
+    set_predictable_code_size(old_predictable_code_size);
+  }
 }
 int MacroAssembler::CallSize(Handle<Code> code,
                              RelocInfo::Mode rmode,
-                             unsigned ast_id,
+                             TypeFeedbackId ast_id,
                              Condition cond) {
   return CallSize(reinterpret_cast<Address>(code.location()), rmode, cond);
 }
@@ -187,19 +214,18 @@ int MacroAssembler::CallSize(Handle<Code> code,
 void MacroAssembler::Call(Handle<Code> code,
                           RelocInfo::Mode rmode,
-                          unsigned ast_id,
-                          Condition cond) {
+                          TypeFeedbackId ast_id,
+                          Condition cond,
+                          TargetAddressStorageMode mode) {
   Label start;
   bind(&start);
   ASSERT(RelocInfo::IsCodeTarget(rmode));
-  if (rmode == RelocInfo::CODE_TARGET && ast_id != kNoASTId) {
+  if (rmode == RelocInfo::CODE_TARGET && !ast_id.IsNone()) {
     SetRecordedAstId(ast_id);
     rmode = RelocInfo::CODE_TARGET_WITH_ID;
   }
   // 'code' is always generated ARM code, never THUMB code
-  Call(reinterpret_cast<Address>(code.location()), rmode, cond);
-  ASSERT_EQ(CallSize(code, rmode, ast_id, cond),
-            SizeOfCodeGeneratedSince(&start));
+  Call(reinterpret_cast<Address>(code.location()), rmode, cond, mode);
 }
@@ -264,9 +290,9 @@ void MacroAssembler::Move(Register dst, Register src, Condition cond) {
 }
-void MacroAssembler::Move(DoubleRegister dst, DoubleRegister src) {
-  ASSERT(CpuFeatures::IsSupported(VFP3));
-  CpuFeatures::Scope scope(VFP3);
+void MacroAssembler::Move(DwVfpRegister dst, DwVfpRegister src) {
+  ASSERT(CpuFeatures::IsSupported(VFP2));
+  CpuFeatures::Scope scope(VFP2);
   if (!dst.is(src)) {
     vmov(dst, src);
   }
@@ -276,17 +302,15 @@ void MacroAssembler::Move(DoubleRegister dst, DoubleRegister src) {
 void MacroAssembler::And(Register dst, Register src1, const Operand& src2,
                          Condition cond) {
   if (!src2.is_reg() &&
-      !src2.must_use_constant_pool() &&
+      !src2.must_output_reloc_info(this) &&
       src2.immediate() == 0) {
-    mov(dst, Operand(0, RelocInfo::NONE), LeaveCC, cond);
-  } else if (!src2.is_single_instruction() &&
-             !src2.must_use_constant_pool() &&
+    mov(dst, Operand::Zero(), LeaveCC, cond);
+  } else if (!src2.is_single_instruction(this) &&
+             !src2.must_output_reloc_info(this) &&
              CpuFeatures::IsSupported(ARMv7) &&
              IsPowerOf2(src2.immediate() + 1)) {
     ubfx(dst, src1, 0,
         WhichPowerOf2(static_cast<uint32_t>(src2.immediate()) + 1), cond);
   } else {
     and_(dst, src1, src2, LeaveCC, cond);
   }
@@ -296,7 +320,7 @@ void MacroAssembler::And(Register dst, Register src1, const Operand& src2,
 void MacroAssembler::Ubfx(Register dst, Register src1, int lsb, int width,
                           Condition cond) {
   ASSERT(lsb < 32);
-  if (!CpuFeatures::IsSupported(ARMv7)) {
+  if (!CpuFeatures::IsSupported(ARMv7) || predictable_code_size()) {
     int mask = (1 << (width + lsb)) - 1 - ((1 << lsb) - 1);
     and_(dst, src1, Operand(mask), LeaveCC, cond);
     if (lsb != 0) {
@@ -311,7 +335,7 @@ void MacroAssembler::Ubfx(Register dst, Register src1, int lsb, int width,
 void MacroAssembler::Sbfx(Register dst, Register src1, int lsb, int width,
                           Condition cond) {
   ASSERT(lsb < 32);
-  if (!CpuFeatures::IsSupported(ARMv7)) {
+  if (!CpuFeatures::IsSupported(ARMv7) || predictable_code_size()) {
     int mask = (1 << (width + lsb)) - 1 - ((1 << lsb) - 1);
     and_(dst, src1, Operand(mask), LeaveCC, cond);
     int shift_up = 32 - lsb - width;
@@ -339,7 +363,7 @@ void MacroAssembler::Bfi(Register dst,
   ASSERT(lsb + width < 32);
   ASSERT(!scratch.is(dst));
   if (width == 0) return;
-  if (!CpuFeatures::IsSupported(ARMv7)) {
+  if (!CpuFeatures::IsSupported(ARMv7) || predictable_code_size()) {
     int mask = (1 << (width + lsb)) - 1 - ((1 << lsb) - 1);
     bic(dst, dst, Operand(mask));
     and_(scratch, src, Operand((1 << width) - 1));
@@ -351,12 +375,14 @@ void MacroAssembler::Bfi(Register dst,
 }
-void MacroAssembler::Bfc(Register dst, int lsb, int width, Condition cond) {
+void MacroAssembler::Bfc(Register dst, Register src, int lsb, int width,
+                         Condition cond) {
   ASSERT(lsb < 32);
-  if (!CpuFeatures::IsSupported(ARMv7)) {
+  if (!CpuFeatures::IsSupported(ARMv7) || predictable_code_size()) {
     int mask = (1 << (width + lsb)) - 1 - ((1 << lsb) - 1);
-    bic(dst, dst, Operand(mask));
+    bic(dst, src, Operand(mask));
   } else {
+    Move(dst, src, cond);
     bfc(dst, lsb, width, cond);
   }
 }
@@ -364,7 +390,7 @@ void MacroAssembler::Bfc(Register dst, int lsb, int width, Condition cond) {
 void MacroAssembler::Usat(Register dst, int satpos, const Operand& src,
                           Condition cond) {
-  if (!CpuFeatures::IsSupported(ARMv7)) {
+  if (!CpuFeatures::IsSupported(ARMv7) || predictable_code_size()) {
     ASSERT(!dst.is(pc) && !src.rm().is(pc));
     ASSERT((satpos >= 0) && (satpos <= 31));
@@ -384,7 +410,7 @@ void MacroAssembler::Usat(Register dst, int satpos, const Operand& src,
     }
     tst(dst, Operand(~satval));
     b(eq, &done);
-    mov(dst, Operand(0, RelocInfo::NONE), LeaveCC, mi);  // 0 if negative.
+    mov(dst, Operand::Zero(), LeaveCC, mi);  // 0 if negative.
     mov(dst, Operand(satval), LeaveCC, pl);  // satval if positive.
     bind(&done);
   } else {
@@ -396,6 +422,17 @@ void MacroAssembler::Usat(Register dst, int satpos, const Operand& src,
 void MacroAssembler::LoadRoot(Register destination,
                               Heap::RootListIndex index,
                               Condition cond) {
+  if (CpuFeatures::IsSupported(MOVW_MOVT_IMMEDIATE_LOADS) &&
+      !Heap::RootCanBeWrittenAfterInitialization(index) &&
+      !predictable_code_size()) {
+    Handle<Object> root(isolate()->heap()->roots_array_start()[index]);
+    if (!isolate()->heap()->InNewSpace(*root)) {
+      // The CPU supports fast immediate values, and this root will never
+      // change. We will load it as a relocatable immediate value.
+      mov(destination, Operand(root), LeaveCC, cond);
+      return;
+    }
+  }
   ldr(destination, MemOperand(kRootRegister, index << kPointerSizeLog2), cond);
 }
@@ -605,20 +642,24 @@ void MacroAssembler::PopSafepointRegisters() {
 void MacroAssembler::PushSafepointRegistersAndDoubles() {
+  // Number of d-regs not known at snapshot time.
+  ASSERT(!Serializer::enabled());
   PushSafepointRegisters();
-  sub(sp, sp, Operand(DwVfpRegister::kNumAllocatableRegisters *
+  sub(sp, sp, Operand(DwVfpRegister::NumAllocatableRegisters() *
                       kDoubleSize));
-  for (int i = 0; i < DwVfpRegister::kNumAllocatableRegisters; i++) {
+  for (int i = 0; i < DwVfpRegister::NumAllocatableRegisters(); i++) {
     vstr(DwVfpRegister::FromAllocationIndex(i), sp, i * kDoubleSize);
   }
 }
 void MacroAssembler::PopSafepointRegistersAndDoubles() {
-  for (int i = 0; i < DwVfpRegister::kNumAllocatableRegisters; i++) {
+  // Number of d-regs not known at snapshot time.
+  ASSERT(!Serializer::enabled());
+  for (int i = 0; i < DwVfpRegister::NumAllocatableRegisters(); i++) {
     vldr(DwVfpRegister::FromAllocationIndex(i), sp, i * kDoubleSize);
   }
-  add(sp, sp, Operand(DwVfpRegister::kNumAllocatableRegisters *
+  add(sp, sp, Operand(DwVfpRegister::NumAllocatableRegisters() *
                       kDoubleSize));
   PopSafepointRegisters();
 }
@@ -653,8 +694,10 @@ MemOperand MacroAssembler::SafepointRegisterSlot(Register reg) {
 MemOperand MacroAssembler::SafepointRegistersAndDoublesSlot(Register reg) {
+  // Number of d-regs not known at snapshot time.
+  ASSERT(!Serializer::enabled());
   // General purpose registers are pushed last on the stack.
-  int doubles_size = DwVfpRegister::kNumAllocatableRegisters * kDoubleSize;
+  int doubles_size = DwVfpRegister::NumAllocatableRegisters() * kDoubleSize;
   int register_offset = SafepointRegisterStackIndex(reg.code()) * kPointerSize;
   return MemOperand(sp, doubles_size + register_offset);
 }
@@ -672,7 +715,7 @@ void MacroAssembler::Ldrd(Register dst1, Register dst2,
   ASSERT((src.am() != PreIndex) && (src.am() != NegPreIndex));
   // Generate two ldr instructions if ldrd is not available.
-  if (CpuFeatures::IsSupported(ARMv7)) {
+  if (CpuFeatures::IsSupported(ARMv7) && !predictable_code_size()) {
     CpuFeatures::Scope scope(ARMv7);
     ldrd(dst1, dst2, src, cond);
   } else {
@@ -714,7 +757,7 @@ void MacroAssembler::Strd(Register src1, Register src2,
   ASSERT((dst.am() != PreIndex) && (dst.am() != NegPreIndex));
   // Generate two str instructions if strd is not available.
-  if (CpuFeatures::IsSupported(ARMv7)) {
+  if (CpuFeatures::IsSupported(ARMv7) && !predictable_code_size()) {
     CpuFeatures::Scope scope(ARMv7);
     strd(src1, src2, dst, cond);
   } else {
@@ -733,15 +776,6 @@ void MacroAssembler::Strd(Register src1, Register src2,
 }
-void MacroAssembler::ClearFPSCRBits(const uint32_t bits_to_clear,
-                                    const Register scratch,
-                                    const Condition cond) {
-  vmrs(scratch, cond);
-  bic(scratch, scratch, Operand(bits_to_clear), LeaveCC, cond);
-  vmsr(scratch, cond);
-}
 void MacroAssembler::VFPCompareAndSetFlags(const DwVfpRegister src1,
                                            const DwVfpRegister src2,
                                            const Condition cond) {
@@ -777,8 +811,9 @@ void MacroAssembler::VFPCompareAndLoadFlags(const DwVfpRegister src1,
 void MacroAssembler::Vmov(const DwVfpRegister dst,
                           const double imm,
+                          const Register scratch,
                           const Condition cond) {
-  ASSERT(CpuFeatures::IsEnabled(VFP3));
+  ASSERT(CpuFeatures::IsEnabled(VFP2));
   static const DoubleRepresentation minus_zero(-0.0);
   static const DoubleRepresentation zero(0.0);
   DoubleRepresentation value(imm);
@@ -788,7 +823,7 @@ void MacroAssembler::Vmov(const DwVfpRegister dst,
   } else if (value.bits == minus_zero.bits) {
     vneg(dst, kDoubleRegZero, cond);
   } else {
-    vmov(dst, imm, cond);
+    vmov(dst, imm, scratch, cond);
   }
 }
@@ -826,7 +861,7 @@ void MacroAssembler::EnterExitFrame(bool save_doubles, int stack_space) {
   // Reserve room for saved entry sp and code object.
   sub(sp, sp, Operand(2 * kPointerSize));
   if (emit_debug_code()) {
-    mov(ip, Operand(0));
+    mov(ip, Operand::Zero());
     str(ip, MemOperand(fp, ExitFrameConstants::kSPOffset));
   }
   mov(ip, Operand(CodeObject()));
@@ -840,12 +875,17 @@ void MacroAssembler::EnterExitFrame(bool save_doubles, int stack_space) {
   // Optionally save all double registers.
   if (save_doubles) {
-    DwVfpRegister first = d0;
-    DwVfpRegister last =
-        DwVfpRegister::from_code(DwVfpRegister::kNumRegisters - 1);
-    vstm(db_w, sp, first, last);
+    CpuFeatures::Scope scope(VFP2);
+    // Check CPU flags for number of registers, setting the Z condition flag.
+    CheckFor32DRegs(ip);
+    // Push registers d0-d15, and possibly d16-d31, on the stack.
+    // If d16-d31 are not pushed, decrease the stack pointer instead.
+    vstm(db_w, sp, d16, d31, ne);
+    sub(sp, sp, Operand(16 * kDoubleSize), LeaveCC, eq);
+    vstm(db_w, sp, d0, d15);
     // Note that d0 will be accessible at
-    //   fp - 2 * kPointerSize - DwVfpRegister::kNumRegisters * kDoubleSize,
+    //   fp - 2 * kPointerSize - DwVfpRegister::kMaxNumRegisters * kDoubleSize,
     // since the sp slot and code slot were pushed after the fp.
   }
@@ -900,17 +940,24 @@ void MacroAssembler::LeaveExitFrame(bool save_doubles,
                                     Register argument_count) {
   // Optionally restore all double registers.
   if (save_doubles) {
+    CpuFeatures::Scope scope(VFP2);
     // Calculate the stack location of the saved doubles and restore them.
     const int offset = 2 * kPointerSize;
-    sub(r3, fp, Operand(offset + DwVfpRegister::kNumRegisters * kDoubleSize));
-    DwVfpRegister first = d0;
-    DwVfpRegister last =
-        DwVfpRegister::from_code(DwVfpRegister::kNumRegisters - 1);
-    vldm(ia, r3, first, last);
+    sub(r3, fp,
+        Operand(offset + DwVfpRegister::kMaxNumRegisters * kDoubleSize));
+    // Check CPU flags for number of registers, setting the Z condition flag.
+    CheckFor32DRegs(ip);
+    // Pop registers d0-d15, and possibly d16-d31, from r3.
+    // If d16-d31 are not popped, increase r3 instead.
+    vldm(ia_w, r3, d0, d15);
+    vldm(ia_w, r3, d16, d31, ne);
+    add(r3, r3, Operand(16 * kDoubleSize), LeaveCC, eq);
   }
   // Clear top frame.
-  mov(r3, Operand(0, RelocInfo::NONE));
+  mov(r3, Operand::Zero());
   mov(ip, Operand(ExternalReference(Isolate::kCEntryFPAddress, isolate())));
   str(r3, MemOperand(ip));
@@ -929,7 +976,8 @@ void MacroAssembler::LeaveExitFrame(bool save_doubles,
   }
 }
-void MacroAssembler::GetCFunctionDoubleResult(const DoubleRegister dst) {
+void MacroAssembler::GetCFunctionDoubleResult(const DwVfpRegister dst) {
+  ASSERT(CpuFeatures::IsSupported(VFP2));
   if (use_eabi_hardfloat()) {
     Move(dst, d0);
   } else {
@@ -1179,7 +1227,7 @@ void MacroAssembler::IsObjectJSStringType(Register object,
 #ifdef ENABLE_DEBUGGER_SUPPORT
 void MacroAssembler::DebugBreak() {
-  mov(r0, Operand(0, RelocInfo::NONE));
+  mov(r0, Operand::Zero());
   mov(r1, Operand(ExternalReference(Runtime::kDebugBreak, isolate())));
   CEntryStub ces(1);
   ASSERT(AllowThisStubCall(&ces));
@@ -1210,7 +1258,7 @@ void MacroAssembler::PushTryHandler(StackHandler::Kind kind,
   // Push the frame pointer, context, state, and code object.
   if (kind == StackHandler::JS_ENTRY) {
     mov(r7, Operand(Smi::FromInt(0)));  // Indicates no context.
-    mov(ip, Operand(0, RelocInfo::NONE));  // NULL frame pointer.
+    mov(ip, Operand::Zero());  // NULL frame pointer.
     stm(db_w, sp, r5.bit() | r6.bit() | r7.bit() | ip.bit());
   } else {
     stm(db_w, sp, r5.bit() | r6.bit() | cp.bit() | fp.bit());
@@ -1334,35 +1382,36 @@ void MacroAssembler::CheckAccessGlobalProxy(Register holder_reg,
   ldr(scratch, MemOperand(fp, StandardFrameConstants::kContextOffset));
   // In debug mode, make sure the lexical context is set.
 #ifdef DEBUG
-  cmp(scratch, Operand(0, RelocInfo::NONE));
+  cmp(scratch, Operand::Zero());
   Check(ne, "we should not have an empty lexical context");
 #endif
-  // Load the global context of the current context.
-  int offset = Context::kHeaderSize + Context::GLOBAL_INDEX * kPointerSize;
+  // Load the native context of the current context.
+  int offset =
+      Context::kHeaderSize + Context::GLOBAL_OBJECT_INDEX * kPointerSize;
   ldr(scratch, FieldMemOperand(scratch, offset));
-  ldr(scratch, FieldMemOperand(scratch, GlobalObject::kGlobalContextOffset));
+  ldr(scratch, FieldMemOperand(scratch, GlobalObject::kNativeContextOffset));
-  // Check the context is a global context.
+  // Check the context is a native context.
   if (emit_debug_code()) {
     // TODO(119): avoid push(holder_reg)/pop(holder_reg)
     // Cannot use ip as a temporary in this verification code. Due to the fact
     // that ip is clobbered as part of cmp with an object Operand.
     push(holder_reg);  // Temporarily save holder on the stack.
-    // Read the first word and compare to the global_context_map.
+    // Read the first word and compare to the native_context_map.
     ldr(holder_reg, FieldMemOperand(scratch, HeapObject::kMapOffset));
-    LoadRoot(ip, Heap::kGlobalContextMapRootIndex);
+    LoadRoot(ip, Heap::kNativeContextMapRootIndex);
     cmp(holder_reg, ip);
-    Check(eq, "JSGlobalObject::global_context should be a global context.");
+    Check(eq, "JSGlobalObject::native_context should be a native context.");
     pop(holder_reg);  // Restore holder.
   }
   // Check if both contexts are the same.
-  ldr(ip, FieldMemOperand(holder_reg, JSGlobalProxy::kContextOffset));
+  ldr(ip, FieldMemOperand(holder_reg, JSGlobalProxy::kNativeContextOffset));
   cmp(scratch, Operand(ip));
   b(eq, &same_contexts);
-  // Check the context is a global context.
+  // Check the context is a native context.
   if (emit_debug_code()) {
     // TODO(119): avoid push(holder_reg)/pop(holder_reg)
     // Cannot use ip as a temporary in this verification code. Due to the fact
@@ -1374,13 +1423,13 @@ void MacroAssembler::CheckAccessGlobalProxy(Register holder_reg,
     Check(ne, "JSGlobalProxy::context() should not be null.");
     ldr(holder_reg, FieldMemOperand(holder_reg, HeapObject::kMapOffset));
-    LoadRoot(ip, Heap::kGlobalContextMapRootIndex);
+    LoadRoot(ip, Heap::kNativeContextMapRootIndex);
     cmp(holder_reg, ip);
-    Check(eq, "JSGlobalObject::global_context should be a global context.");
+    Check(eq, "JSGlobalObject::native_context should be a native context.");
     // Restore ip is not needed. ip is reloaded below.
     pop(holder_reg);  // Restore holder.
     // Restore ip to holder's context.
-    ldr(ip, FieldMemOperand(holder_reg, JSGlobalProxy::kContextOffset));
+    ldr(ip, FieldMemOperand(holder_reg, JSGlobalProxy::kNativeContextOffset));
   }
   // Check that the security token in the calling global object is
@@ -1553,7 +1602,11 @@ void MacroAssembler::AllocateInNewSpace(int object_size,
   Register topaddr = scratch1;
   Register obj_size_reg = scratch2;
   mov(topaddr, Operand(new_space_allocation_top));
-  mov(obj_size_reg, Operand(object_size));
+  Operand obj_size_operand = Operand(object_size);
+  if (!obj_size_operand.is_single_instruction(this)) {
+    // We are about to steal IP, so we need to load this value first
+    mov(obj_size_reg, obj_size_operand);
+  }
   // This code stores a temporary value in ip. This is OK, as the code below
   // does not need ip for implicit literal generation.
@@ -1573,9 +1626,27 @@ void MacroAssembler::AllocateInNewSpace(int object_size,
     ldr(ip, MemOperand(topaddr, limit - top));
   }
+  if ((flags & DOUBLE_ALIGNMENT) != 0) {
+    // Align the next allocation. Storing the filler map without checking top is
+    // always safe because the limit of the heap is always aligned.
+    ASSERT(kPointerAlignment * 2 == kDoubleAlignment);
+    and_(scratch2, result, Operand(kDoubleAlignmentMask), SetCC);
+    Label aligned;
+    b(eq, &aligned);
+    mov(scratch2, Operand(isolate()->factory()->one_pointer_filler_map()));
+    str(scratch2, MemOperand(result, kDoubleSize / 2, PostIndex));
+    bind(&aligned);
+  }
   // Calculate new top and bail out if new space is exhausted. Use result
   // to calculate the new top.
-  add(scratch2, result, Operand(obj_size_reg), SetCC);
+  if (obj_size_operand.is_single_instruction(this)) {
+    // We can add the size as an immediate
+    add(scratch2, result, obj_size_operand, SetCC);
+  } else {
+    // Doesn't fit in an immediate, we have to use the register
+    add(scratch2, result, obj_size_reg, SetCC);
+  }
   b(cs, gc_required);
   cmp(scratch2, Operand(ip));
   b(hi, gc_required);
@@ -1652,6 +1723,18 @@ void MacroAssembler::AllocateInNewSpace(Register object_size,
     ldr(ip, MemOperand(topaddr, limit - top));
   }
+  if ((flags & DOUBLE_ALIGNMENT) != 0) {
+    // Align the next allocation. Storing the filler map without checking top is
+    // always safe because the limit of the heap is always aligned.
+    ASSERT(kPointerAlignment * 2 == kDoubleAlignment);
+    and_(scratch2, result, Operand(kDoubleAlignmentMask), SetCC);
+    Label aligned;
+    b(eq, &aligned);
+    mov(scratch2, Operand(isolate()->factory()->one_pointer_filler_map()));
+    str(scratch2, MemOperand(result, kDoubleSize / 2, PostIndex));
+    bind(&aligned);
+  }
   // Calculate new top and bail out if new space is exhausted. Use result
   // to calculate the new top. Object size may be in words so a shift is
   // required to get the number of bytes.
@@ -1737,10 +1820,10 @@ void MacroAssembler::AllocateAsciiString(Register result,
                                          Label* gc_required) {
   // Calculate the number of bytes needed for the characters in the string while
   // observing object alignment.
-  ASSERT((SeqAsciiString::kHeaderSize & kObjectAlignmentMask) == 0);
+  ASSERT((SeqOneByteString::kHeaderSize & kObjectAlignmentMask) == 0);
   ASSERT(kCharSize == 1);
   add(scratch1, length,
-      Operand(kObjectAlignmentMask + SeqAsciiString::kHeaderSize));
+      Operand(kObjectAlignmentMask + SeqOneByteString::kHeaderSize));
   and_(scratch1, scratch1, Operand(~kObjectAlignmentMask));
   // Allocate ASCII string in new space.
@@ -1906,13 +1989,13 @@ void MacroAssembler::CheckFastSmiElements(Register map,
 void MacroAssembler::StoreNumberToDoubleElements(Register value_reg,
                                                  Register key_reg,
-                                                 Register receiver_reg,
                                                  Register elements_reg,
                                                  Register scratch1,
                                                  Register scratch2,
                                                  Register scratch3,
                                                  Register scratch4,
-                                                 Label* fail) {
+                                                 Label* fail,
+                                                 int elements_offset) {
   Label smi_value, maybe_nan, have_double_value, is_nan, done;
   Register mantissa_reg = scratch2;
   Register exponent_reg = scratch3;
@@ -1939,8 +2022,10 @@ void MacroAssembler::StoreNumberToDoubleElements(Register value_reg,
   bind(&have_double_value);
   add(scratch1, elements_reg,
       Operand(key_reg, LSL, kDoubleSizeLog2 - kSmiTagSize));
-  str(mantissa_reg, FieldMemOperand(scratch1, FixedDoubleArray::kHeaderSize));
-  uint32_t offset = FixedDoubleArray::kHeaderSize + sizeof(kHoleNanLower32);
+  str(mantissa_reg, FieldMemOperand(
+      scratch1, FixedDoubleArray::kHeaderSize - elements_offset));
+  uint32_t offset = FixedDoubleArray::kHeaderSize - elements_offset +
+      sizeof(kHoleNanLower32);
   str(exponent_reg, FieldMemOperand(scratch1, offset));
   jmp(&done);
@@ -1949,7 +2034,7 @@ void MacroAssembler::StoreNumberToDoubleElements(Register value_reg,
   // it's an Infinity, and the non-NaN code path applies.
   b(gt, &is_nan);
   ldr(mantissa_reg, FieldMemOperand(value_reg, HeapNumber::kMantissaOffset));
-  cmp(mantissa_reg, Operand(0));
+  cmp(mantissa_reg, Operand::Zero());
   b(eq, &have_double_value);
   bind(&is_nan);
   // Load canonical NaN for storing into the double array.
@@ -1961,19 +2046,20 @@ void MacroAssembler::StoreNumberToDoubleElements(Register value_reg,
   bind(&smi_value);
   add(scratch1, elements_reg,
-      Operand(FixedDoubleArray::kHeaderSize - kHeapObjectTag));
+      Operand(FixedDoubleArray::kHeaderSize - kHeapObjectTag -
+              elements_offset));
   add(scratch1, scratch1,
       Operand(key_reg, LSL, kDoubleSizeLog2 - kSmiTagSize));
   // scratch1 is now effective address of the double element
   FloatingPointHelper::Destination destination;
-  if (CpuFeatures::IsSupported(VFP3)) {
+  if (CpuFeatures::IsSupported(VFP2)) {
     destination = FloatingPointHelper::kVFPRegisters;
   } else {
     destination = FloatingPointHelper::kCoreRegisters;
   }
-  Register untagged_value = receiver_reg;
+  Register untagged_value = elements_reg;
   SmiUntag(untagged_value, value_reg);
   FloatingPointHelper::ConvertIntToDouble(this,
                                           untagged_value,
@@ -1984,7 +2070,7 @@ void MacroAssembler::StoreNumberToDoubleElements(Register value_reg,
                                           scratch4,
                                           s2);
   if (destination == FloatingPointHelper::kVFPRegisters) {
-    CpuFeatures::Scope scope(VFP3);
+    CpuFeatures::Scope scope(VFP2);
     vstr(d0, scratch1, 0);
   } else {
     str(mantissa_reg, MemOperand(scratch1, 0));
@@ -2000,7 +2086,15 @@ void MacroAssembler::CompareMap(Register obj,
                                 Label* early_success,
                                 CompareMapMode mode) {
   ldr(scratch, FieldMemOperand(obj, HeapObject::kMapOffset));
-  cmp(scratch, Operand(map));
+  CompareMap(scratch, map, early_success, mode);
+}
+void MacroAssembler::CompareMap(Register obj_map,
+                                Handle<Map> map,
+                                Label* early_success,
+                                CompareMapMode mode) {
+  cmp(obj_map, Operand(map));
   if (mode == ALLOW_ELEMENT_TRANSITION_MAPS) {
     ElementsKind kind = map->elements_kind();
     if (IsFastElementsKind(kind)) {
@@ -2008,10 +2102,10 @@ void MacroAssembler::CompareMap(Register obj,
       Map* current_map = *map;
       while (CanTransitionToMoreGeneralFastElementsKind(kind, packed)) {
         kind = GetNextMoreGeneralFastElementsKind(kind, packed);
-        current_map = current_map->LookupElementsTransitionMap(kind, NULL);
+        current_map = current_map->LookupElementsTransitionMap(kind);
         if (!current_map) break;
         b(eq, early_success);
-        cmp(scratch, Operand(Handle<Map>(current_map)));
+        cmp(obj_map, Operand(Handle<Map>(current_map)));
       }
     }
   }
@@ -2125,9 +2219,11 @@ void MacroAssembler::TryGetFunctionPrototype(Register function,
 }
-void MacroAssembler::CallStub(CodeStub* stub, Condition cond) {
+void MacroAssembler::CallStub(CodeStub* stub,
+                              TypeFeedbackId ast_id,
+                              Condition cond) {
   ASSERT(AllowThisStubCall(stub));  // Stub calls are not allowed in some stubs.
-  Call(stub->GetCode(), RelocInfo::CODE_TARGET, kNoASTId, cond);
+  Call(stub->GetCode(), RelocInfo::CODE_TARGET, ast_id, cond);
 }
@@ -2162,19 +2258,35 @@ void MacroAssembler::CallApiFunctionAndReturn(ExternalReference function,
   add(r6, r6, Operand(1));
   str(r6, MemOperand(r7, kLevelOffset));
+  if (FLAG_log_timer_events) {
+    FrameScope frame(this, StackFrame::MANUAL);
+    PushSafepointRegisters();
+    PrepareCallCFunction(0, r0);
+    CallCFunction(ExternalReference::log_enter_external_function(isolate()), 0);
+    PopSafepointRegisters();
+  }
   // Native call returns to the DirectCEntry stub which redirects to the
   // return address pushed on stack (could have moved after GC).
   // DirectCEntry stub itself is generated early and never moves.
   DirectCEntryStub stub;
   stub.GenerateCall(this, function);
+  if (FLAG_log_timer_events) {
+    FrameScope frame(this, StackFrame::MANUAL);
+    PushSafepointRegisters();
+    PrepareCallCFunction(0, r0);
+    CallCFunction(ExternalReference::log_leave_external_function(isolate()), 0);
+    PopSafepointRegisters();
+  }
   Label promote_scheduled_exception;
   Label delete_allocated_handles;
   Label leave_exit_frame;
   // If result is non-zero, dereference to get the result value
   // otherwise set it to undefined.
-  cmp(r0, Operand(0));
+  cmp(r0, Operand::Zero());
   LoadRoot(r0, Heap::kUndefinedValueRootIndex, eq);
   ldr(r0, MemOperand(r0), ne);
@@ -2323,8 +2435,8 @@ void MacroAssembler::ConvertToInt32(Register source,
                                     Register scratch2,
                                     DwVfpRegister double_scratch,
                                     Label *not_int32) {
-  if (CpuFeatures::IsSupported(VFP3)) {
-    CpuFeatures::Scope scope(VFP3);
+  if (CpuFeatures::IsSupported(VFP2)) {
+    CpuFeatures::Scope scope(VFP2);
     sub(scratch, source, Operand(kHeapObjectTag));
     vldr(double_scratch, scratch, HeapNumber::kValueOffset);
     vcvt_s32_f64(double_scratch.low(), double_scratch);
@@ -2353,7 +2465,7 @@ void MacroAssembler::ConvertToInt32(Register source,
          HeapNumber::kExponentBits);
     // Load dest with zero.  We use this either for the final shift or
     // for the answer.
-    mov(dest, Operand(0, RelocInfo::NONE));
+    mov(dest, Operand::Zero());
     // Check whether the exponent matches a 32 bit signed int that is not a Smi.
     // A non-Smi integer is 1.xxx * 2^30 so the exponent is 30 (biased). This is
     // the exponent that we are fastest at and also the highest exponent we can
@@ -2407,23 +2519,44 @@ void MacroAssembler::ConvertToInt32(Register source,
     // Move down according to the exponent.
     mov(dest, Operand(scratch, LSR, dest));
     // Fix sign if sign bit was set.
-    rsb(dest, dest, Operand(0, RelocInfo::NONE), LeaveCC, ne);
+    rsb(dest, dest, Operand::Zero(), LeaveCC, ne);
     bind(&done);
   }
 }
+void MacroAssembler::TryFastDoubleToInt32(Register result,
+                                          DwVfpRegister double_input,
+                                          DwVfpRegister double_scratch,
+                                          Label* done) {
+  ASSERT(!double_input.is(double_scratch));
+  vcvt_s32_f64(double_scratch.low(), double_input);
+  vmov(result, double_scratch.low());
+  vcvt_f64_s32(double_scratch, double_scratch.low());
+  VFPCompareAndSetFlags(double_input, double_scratch);
+  b(eq, done);
+}
 void MacroAssembler::EmitVFPTruncate(VFPRoundingMode rounding_mode,
-                                     SwVfpRegister result,
+                                     Register result,
                                      DwVfpRegister double_input,
-                                     Register scratch1,
-                                     Register scratch2,
+                                     Register scratch,
+                                     DwVfpRegister double_scratch,
                                      CheckForInexactConversion check_inexact) {
-  ASSERT(CpuFeatures::IsSupported(VFP3));
-  CpuFeatures::Scope scope(VFP3);
-  Register prev_fpscr = scratch1;
-  Register scratch = scratch2;
+  ASSERT(!result.is(scratch));
+  ASSERT(!double_input.is(double_scratch));
+  ASSERT(CpuFeatures::IsSupported(VFP2));
+  CpuFeatures::Scope scope(VFP2);
+  Register prev_fpscr = result;
+  Label done;
+  // Test for values that can be exactly represented as a signed 32-bit integer.
+  TryFastDoubleToInt32(result, double_input, double_scratch, &done);
+  // Convert to integer, respecting rounding mode.
   int32_t check_inexact_conversion =
     (check_inexact == kCheckForInexactConversion) ? kVFPInexactExceptionBit : 0;
@@ -2445,7 +2578,7 @@ void MacroAssembler::EmitVFPTruncate(VFPRoundingMode rounding_mode,
   vmsr(scratch);
   // Convert the argument to an integer.
-  vcvt_s32_f64(result,
+  vcvt_s32_f64(double_scratch.low(),
                double_input,
                (rounding_mode == kRoundToZero) ? kDefaultRoundToZero
                                                : kFPSCRRounding);
@@ -2454,8 +2587,12 @@ void MacroAssembler::EmitVFPTruncate(VFPRoundingMode rounding_mode,
   vmrs(scratch);
   // Restore FPSCR.
   vmsr(prev_fpscr);
+  // Move the converted value into the result register.
+  vmov(result, double_scratch.low());
   // Check for vfp exceptions.
   tst(scratch, Operand(kVFPExceptionMask | check_inexact_conversion));
+  bind(&done);
 }
@@ -2473,7 +2610,7 @@ void MacroAssembler::EmitOutOfInt32RangeTruncate(Register result,
   // Check for Infinity and NaNs, which should return 0.
   cmp(result, Operand(HeapNumber::kExponentMask));
-  mov(result, Operand(0), LeaveCC, eq);
+  mov(result, Operand::Zero(), LeaveCC, eq);
   b(eq, &done);
   // Express exponent as delta to (number of mantissa bits + 31).
@@ -2485,7 +2622,7 @@ void MacroAssembler::EmitOutOfInt32RangeTruncate(Register result,
   // If the delta is strictly positive, all bits would be shifted away,
   // which means that we can return 0.
   b(le, &normal_exponent);
-  mov(result, Operand(0));
+  mov(result, Operand::Zero());
   b(&done);
   bind(&normal_exponent);
@@ -2513,7 +2650,7 @@ void MacroAssembler::EmitOutOfInt32RangeTruncate(Register result,
   b(&pos_shift, ge);
   // Negate scratch.
-  rsb(scratch, scratch, Operand(0));
+  rsb(scratch, scratch, Operand::Zero());
   mov(input_low, Operand(input_low, LSL, scratch));
   b(&shift_done);
@@ -2523,10 +2660,10 @@ void MacroAssembler::EmitOutOfInt32RangeTruncate(Register result,
   bind(&shift_done);
   orr(input_high, input_high, Operand(input_low));
   // Restore sign if necessary.
-  cmp(sign, Operand(0));
+  cmp(sign, Operand::Zero());
   result = sign;
   sign = no_reg;
-  rsb(result, input_high, Operand(0), LeaveCC, ne);
+  rsb(result, input_high, Operand::Zero(), LeaveCC, ne);
   mov(result, input_high, LeaveCC, eq);
   bind(&done);
 }
@@ -2534,28 +2671,44 @@ void MacroAssembler::EmitOutOfInt32RangeTruncate(Register result,
 void MacroAssembler::EmitECMATruncate(Register result,
                                       DwVfpRegister double_input,
-                                      SwVfpRegister single_scratch,
+                                      DwVfpRegister double_scratch,
                                       Register scratch,
                                       Register input_high,
                                       Register input_low) {
-  CpuFeatures::Scope scope(VFP3);
+  CpuFeatures::Scope scope(VFP2);
   ASSERT(!input_high.is(result));
   ASSERT(!input_low.is(result));
   ASSERT(!input_low.is(input_high));
   ASSERT(!scratch.is(result) &&
          !scratch.is(input_high) &&
          !scratch.is(input_low));
-  ASSERT(!single_scratch.is(double_input.low()) &&
-         !single_scratch.is(double_input.high()));
+  ASSERT(!double_input.is(double_scratch));
   Label done;
+  // Test if the value can be exactly represented as a signed integer.
+  vcvt_s32_f64(double_scratch.low(), double_input);
+  vmov(result, double_scratch.low());
+  vcvt_f64_s32(double_scratch, double_scratch.low());
+  // Note: this comparison is cheaper than reading the FPSCR exception bits.
+  VFPCompareAndSetFlags(double_input, double_scratch);
+  b(eq, &done);
+  // Check the exception flags. If they are not set, we are done.
+  // If they are set, it could be because of the conversion above, or because
+  // they were set before this code.
+  vmrs(scratch);
+  tst(scratch, Operand(kVFPOverflowExceptionBit |
+                       kVFPUnderflowExceptionBit |
+                       kVFPInvalidOpExceptionBit));
+  b(eq, &done);
   // Clear cumulative exception flags.
-  ClearFPSCRBits(kVFPExceptionMask, scratch);
+  bic(scratch, scratch, Operand(kVFPExceptionMask));
+  vmsr(scratch);
   // Try a conversion to a signed integer.
-  vcvt_s32_f64(single_scratch, double_input);
-  vmov(result, single_scratch);
-  // Retrieve he FPSCR.
+  vcvt_s32_f64(double_scratch.low(), double_input);
+  // Retrieve the FPSCR.
   vmrs(scratch);
   // Check for overflow and NaNs.
   tst(scratch, Operand(kVFPOverflowExceptionBit |
@@ -2577,7 +2730,7 @@ void MacroAssembler::EmitECMATruncate(Register result,
 void MacroAssembler::GetLeastBitsFromSmi(Register dst,
                                          Register src,
                                          int num_least_bits) {
-  if (CpuFeatures::IsSupported(ARMv7)) {
+  if (CpuFeatures::IsSupported(ARMv7) && !predictable_code_size()) {
     ubfx(dst, src, kSmiTagSize, num_least_bits);
   } else {
     mov(dst, Operand(src, ASR, kSmiTagSize));
@@ -2625,7 +2778,10 @@ void MacroAssembler::CallRuntimeSaveDoubles(Runtime::FunctionId id) {
   const Runtime::Function* function = Runtime::FunctionForId(id);
   mov(r0, Operand(function->nargs));
   mov(r1, Operand(ExternalReference(function, isolate())));
-  CEntryStub stub(1, kSaveFPRegs);
+  SaveFPRegsMode mode = CpuFeatures::IsSupported(VFP2)
+      ? kSaveFPRegs
+      : kDontSaveFPRegs;
+  CEntryStub stub(1, mode);
   CallStub(&stub);
 }
@@ -2695,7 +2851,8 @@ void MacroAssembler::InvokeBuiltin(Builtins::JavaScript id,
 void MacroAssembler::GetBuiltinFunction(Register target,
                                         Builtins::JavaScript id) {
   // Load the builtins object into target register.
-  ldr(target, MemOperand(cp, Context::SlotOffset(Context::GLOBAL_INDEX)));
+  ldr(target,
+      MemOperand(cp, Context::SlotOffset(Context::GLOBAL_OBJECT_INDEX)));
   ldr(target, FieldMemOperand(target, GlobalObject::kBuiltinsOffset));
   // Load the JavaScript builtin function from the builtins object.
   ldr(target, FieldMemOperand(target,
@@ -2861,8 +3018,9 @@ void MacroAssembler::LoadTransitionedArrayMapConditional(
     Register scratch,
     Label* no_map_match) {
   // Load the global or builtins object from the current context.
-  ldr(scratch, MemOperand(cp, Context::SlotOffset(Context::GLOBAL_INDEX)));
-  ldr(scratch, FieldMemOperand(scratch, GlobalObject::kGlobalContextOffset));
+  ldr(scratch,
+      MemOperand(cp, Context::SlotOffset(Context::GLOBAL_OBJECT_INDEX)));
+  ldr(scratch, FieldMemOperand(scratch, GlobalObject::kNativeContextOffset));
   // Check that the function's map is the same as the expected cached map.
   ldr(scratch,
@@ -2870,7 +3028,8 @@ void MacroAssembler::LoadTransitionedArrayMapConditional(
                  Context::SlotOffset(Context::JS_ARRAY_MAPS_INDEX)));
   size_t offset = expected_kind * kPointerSize +
       FixedArrayBase::kHeaderSize;
-  cmp(map_in_out, scratch);
+  ldr(ip, FieldMemOperand(scratch, offset));
+  cmp(map_in_out, ip);
   b(ne, no_map_match);
   // Use the transitioned cached map.
@@ -2907,11 +3066,12 @@ void MacroAssembler::LoadInitialArrayMap(
 void MacroAssembler::LoadGlobalFunction(int index, Register function) {
   // Load the global or builtins object from the current context.
-  ldr(function, MemOperand(cp, Context::SlotOffset(Context::GLOBAL_INDEX)));
-  // Load the global context from the global or builtins object.
+  ldr(function,
+      MemOperand(cp, Context::SlotOffset(Context::GLOBAL_OBJECT_INDEX)));
+  // Load the native context from the global or builtins object.
   ldr(function, FieldMemOperand(function,
-                                GlobalObject::kGlobalContextOffset));
-  // Load the function from the global context.
+                                GlobalObject::kNativeContextOffset));
+  // Load the function from the native context.
   ldr(function, MemOperand(function, Context::SlotOffset(index)));
 }
@@ -2991,38 +3151,46 @@ void MacroAssembler::JumpIfEitherSmi(Register reg1,
 }
-void MacroAssembler::AbortIfSmi(Register object) {
-  STATIC_ASSERT(kSmiTag == 0);
-  tst(object, Operand(kSmiTagMask));
-  Assert(ne, "Operand is a smi");
+void MacroAssembler::AssertNotSmi(Register object) {
+  if (emit_debug_code()) {
+    STATIC_ASSERT(kSmiTag == 0);
+    tst(object, Operand(kSmiTagMask));
+    Check(ne, "Operand is a smi");
+  }
 }
-void MacroAssembler::AbortIfNotSmi(Register object) {
-  STATIC_ASSERT(kSmiTag == 0);
-  tst(object, Operand(kSmiTagMask));
-  Assert(eq, "Operand is not smi");
+void MacroAssembler::AssertSmi(Register object) {
+  if (emit_debug_code()) {
+    STATIC_ASSERT(kSmiTag == 0);
+    tst(object, Operand(kSmiTagMask));
+    Check(eq, "Operand is not smi");
+  }
 }
-void MacroAssembler::AbortIfNotString(Register object) {
-  STATIC_ASSERT(kSmiTag == 0);
-  tst(object, Operand(kSmiTagMask));
-  Assert(ne, "Operand is not a string");
-  push(object);
-  ldr(object, FieldMemOperand(object, HeapObject::kMapOffset));
-  CompareInstanceType(object, object, FIRST_NONSTRING_TYPE);
-  pop(object);
-  Assert(lo, "Operand is not a string");
+void MacroAssembler::AssertString(Register object) {
+  if (emit_debug_code()) {
+    STATIC_ASSERT(kSmiTag == 0);
+    tst(object, Operand(kSmiTagMask));
+    Check(ne, "Operand is a smi and not a string");
+    push(object);
+    ldr(object, FieldMemOperand(object, HeapObject::kMapOffset));
+    CompareInstanceType(object, object, FIRST_NONSTRING_TYPE);
+    pop(object);
+    Check(lo, "Operand is not a string");
+  }
 }
-void MacroAssembler::AbortIfNotRootValue(Register src,
-                                         Heap::RootListIndex root_value_index,
-                                         const char* message) {
-  CompareRoot(src, root_value_index);
-  Assert(eq, message);
+void MacroAssembler::AssertRootValue(Register src,
+                                     Heap::RootListIndex root_value_index,
+                                     const char* message) {
+  if (emit_debug_code()) {
+    CompareRoot(src, root_value_index);
+    Check(eq, message);
+  }
 }
@@ -3080,7 +3248,8 @@ void MacroAssembler::AllocateHeapNumber(Register result,
                                         Register scratch1,
                                         Register scratch2,
                                         Register heap_number_map,
-                                        Label* gc_required) {
+                                        Label* gc_required,
+                                        TaggingMode tagging_mode) {
   // Allocate an object in the heap for the heap number and tag it as a heap
   // object.
   AllocateInNewSpace(HeapNumber::kSize,
@@ -3088,11 +3257,16 @@ void MacroAssembler::AllocateHeapNumber(Register result,
                      scratch1,
                      scratch2,
                      gc_required,
-                     TAG_OBJECT);
+                     tagging_mode == TAG_RESULT ? TAG_OBJECT :
+                                                  NO_ALLOCATION_FLAGS);
   // Store heap number map in the allocated object.
   AssertRegisterIsRoot(heap_number_map, Heap::kHeapNumberMapRootIndex);
-  str(heap_number_map, FieldMemOperand(result, HeapObject::kMapOffset));
+  if (tagging_mode == TAG_RESULT) {
+    str(heap_number_map, FieldMemOperand(result, HeapObject::kMapOffset));
+  } else {
+    str(heap_number_map, MemOperand(result, HeapObject::kMapOffset));
+  }
 }
@@ -3144,7 +3318,7 @@ void MacroAssembler::CopyBytes(Register src,
   // Align src before copying in word size chunks.
   bind(&align_loop);
-  cmp(length, Operand(0));
+  cmp(length, Operand::Zero());
   b(eq, &done);
   bind(&align_loop_1);
   tst(src, Operand(kPointerSize - 1));
@@ -3163,23 +3337,23 @@ void MacroAssembler::CopyBytes(Register src,
   cmp(length, Operand(kPointerSize));
   b(lt, &byte_loop);
   ldr(scratch, MemOperand(src, kPointerSize, PostIndex));
-#if CAN_USE_UNALIGNED_ACCESSES
-  str(scratch, MemOperand(dst, kPointerSize, PostIndex));
-#else
-  strb(scratch, MemOperand(dst, 1, PostIndex));
-  mov(scratch, Operand(scratch, LSR, 8));
-  strb(scratch, MemOperand(dst, 1, PostIndex));
-  mov(scratch, Operand(scratch, LSR, 8));
-  strb(scratch, MemOperand(dst, 1, PostIndex));
-  mov(scratch, Operand(scratch, LSR, 8));
-  strb(scratch, MemOperand(dst, 1, PostIndex));
-#endif
+  if (CpuFeatures::IsSupported(UNALIGNED_ACCESSES)) {
+    str(scratch, MemOperand(dst, kPointerSize, PostIndex));
+  } else {
+    strb(scratch, MemOperand(dst, 1, PostIndex));
+    mov(scratch, Operand(scratch, LSR, 8));
+    strb(scratch, MemOperand(dst, 1, PostIndex));
+    mov(scratch, Operand(scratch, LSR, 8));
+    strb(scratch, MemOperand(dst, 1, PostIndex));
+    mov(scratch, Operand(scratch, LSR, 8));
+    strb(scratch, MemOperand(dst, 1, PostIndex));
+  }
   sub(length, length, Operand(kPointerSize));
   b(&word_loop);
   // Copy the last bytes if any left.
   bind(&byte_loop);
-  cmp(length, Operand(0));
+  cmp(length, Operand::Zero());
   b(eq, &done);
   bind(&byte_loop_1);
   ldrb(scratch, MemOperand(src, 1, PostIndex));
@@ -3217,7 +3391,7 @@ void MacroAssembler::CountLeadingZeros(Register zeros,   // Answer.
   // Order of the next two lines is important: zeros register
   // can be the same as source register.
   Move(scratch, source);
-  mov(zeros, Operand(0, RelocInfo::NONE));
+  mov(zeros, Operand::Zero());
   // Top 16.
   tst(scratch, Operand(0xffff0000));
   add(zeros, zeros, Operand(16), LeaveCC, eq);
@@ -3241,6 +3415,13 @@ void MacroAssembler::CountLeadingZeros(Register zeros,   // Answer.
 }
+void MacroAssembler::CheckFor32DRegs(Register scratch) {
+  mov(scratch, Operand(ExternalReference::cpu_features()));
+  ldr(scratch, MemOperand(scratch));
+  tst(scratch, Operand(1u << VFP32DREGS));
+}
 void MacroAssembler::JumpIfBothInstanceTypesAreNotSequentialAscii(
     Register first,
     Register second,
@@ -3279,9 +3460,9 @@ int MacroAssembler::CalculateStackPassedWords(int num_reg_arguments,
   if (use_eabi_hardfloat()) {
     // In the hard floating point calling convention, we can use
     // all double registers to pass doubles.
-    if (num_double_arguments > DoubleRegister::kNumRegisters) {
+    if (num_double_arguments > DoubleRegister::NumRegisters()) {
       stack_passed_words +=
-          2 * (num_double_arguments - DoubleRegister::kNumRegisters);
+          2 * (num_double_arguments - DoubleRegister::NumRegisters());
     }
   } else {
     // In the soft floating point calling convention, every double
@@ -3322,7 +3503,8 @@ void MacroAssembler::PrepareCallCFunction(int num_reg_arguments,
 }
-void MacroAssembler::SetCallCDoubleArguments(DoubleRegister dreg) {
+void MacroAssembler::SetCallCDoubleArguments(DwVfpRegister dreg) {
+  ASSERT(CpuFeatures::IsSupported(VFP2));
   if (use_eabi_hardfloat()) {
     Move(d0, dreg);
   } else {
@@ -3331,8 +3513,9 @@ void MacroAssembler::SetCallCDoubleArguments(DoubleRegister dreg) {
 }
-void MacroAssembler::SetCallCDoubleArguments(DoubleRegister dreg1,
-                                             DoubleRegister dreg2) {
+void MacroAssembler::SetCallCDoubleArguments(DwVfpRegister dreg1,
+                                             DwVfpRegister dreg2) {
+  ASSERT(CpuFeatures::IsSupported(VFP2));
   if (use_eabi_hardfloat()) {
     if (dreg2.is(d0)) {
       ASSERT(!dreg1.is(d1));
@@ -3349,8 +3532,9 @@ void MacroAssembler::SetCallCDoubleArguments(DoubleRegister dreg1,
 }
-void MacroAssembler::SetCallCDoubleArguments(DoubleRegister dreg,
+void MacroAssembler::SetCallCDoubleArguments(DwVfpRegister dreg,
                                              Register reg) {
+  ASSERT(CpuFeatures::IsSupported(VFP2));
   if (use_eabi_hardfloat()) {
     Move(d0, dreg);
     Move(r0, reg);
@@ -3452,7 +3636,7 @@ void MacroAssembler::CheckPageFlag(
     int mask,
     Condition cc,
     Label* condition_met) {
-  and_(scratch, object, Operand(~Page::kPageAlignmentMask));
+  Bfc(scratch, object, 0, kPageSizeBits);
   ldr(scratch, MemOperand(scratch, MemoryChunk::kFlagsOffset));
   tst(scratch, Operand(mask));
   b(cc, condition_met);
@@ -3601,7 +3785,7 @@ void MacroAssembler::EnsureNotWhite(
   // For ASCII (char-size of 1) we shift the smi tag away to get the length.
   // For UC16 (char-size of 2) we just leave the smi tag in place, thereby
   // getting the length multiplied by 2.
-  ASSERT(kAsciiStringTag == 4 && kStringEncodingMask == 4);
+  ASSERT(kOneByteStringTag == 4 && kStringEncodingMask == 4);
   ASSERT(kSmiTag == 0 && kSmiTagSize == 1);
   ldr(ip, FieldMemOperand(value, String::kLengthOffset));
   tst(instance_type, Operand(kStringEncodingMask));
@@ -3631,8 +3815,8 @@ void MacroAssembler::ClampUint8(Register output_reg, Register input_reg) {
 void MacroAssembler::ClampDoubleToUint8(Register result_reg,
-                                        DoubleRegister input_reg,
-                                        DoubleRegister temp_double_reg) {
+                                        DwVfpRegister input_reg,
+                                        DwVfpRegister temp_double_reg) {
   Label above_zero;
   Label done;
   Label in_bounds;
@@ -3642,12 +3826,12 @@ void MacroAssembler::ClampDoubleToUint8(Register result_reg,
   b(gt, &above_zero);
   // Double value is less than zero, NaN or Inf, return 0.
-  mov(result_reg, Operand(0));
+  mov(result_reg, Operand::Zero());
   b(al, &done);
   // Double value is >= 255, return 255.
   bind(&above_zero);
-  Vmov(temp_double_reg, 255.0);
+  Vmov(temp_double_reg, 255.0, result_reg);
   VFPCompareAndSetFlags(input_reg, temp_double_reg);
   b(le, &in_bounds);
   mov(result_reg, Operand(255));
@@ -3655,71 +3839,99 @@ void MacroAssembler::ClampDoubleToUint8(Register result_reg,
   // In 0-255 range, round and truncate.
   bind(&in_bounds);
-  Vmov(temp_double_reg, 0.5);
-  vadd(temp_double_reg, input_reg, temp_double_reg);
-  vcvt_u32_f64(temp_double_reg.low(), temp_double_reg);
-  vmov(result_reg, temp_double_reg.low());
+  // Save FPSCR.
+  vmrs(ip);
+  // Set rounding mode to round to the nearest integer by clearing bits[23:22].
+  bic(result_reg, ip, Operand(kVFPRoundingModeMask));
+  vmsr(result_reg);
+  vcvt_s32_f64(input_reg.low(), input_reg, kFPSCRRounding);
+  vmov(result_reg, input_reg.low());
+  // Restore FPSCR.
+  vmsr(ip);
   bind(&done);
 }
 void MacroAssembler::LoadInstanceDescriptors(Register map,
                                              Register descriptors) {
-  ldr(descriptors,
-      FieldMemOperand(map, Map::kInstanceDescriptorsOrBitField3Offset));
-  Label not_smi;
-  JumpIfNotSmi(descriptors, &not_smi);
-  mov(descriptors, Operand(FACTORY->empty_descriptor_array()));
-  bind(&not_smi);
+  ldr(descriptors, FieldMemOperand(map, Map::kDescriptorsOffset));
+}
+void MacroAssembler::NumberOfOwnDescriptors(Register dst, Register map) {
+  ldr(dst, FieldMemOperand(map, Map::kBitField3Offset));
+  DecodeField<Map::NumberOfOwnDescriptorsBits>(dst);
+}
+void MacroAssembler::EnumLength(Register dst, Register map) {
+  STATIC_ASSERT(Map::EnumLengthBits::kShift == 0);
+  ldr(dst, FieldMemOperand(map, Map::kBitField3Offset));
+  and_(dst, dst, Operand(Smi::FromInt(Map::EnumLengthBits::kMask)));
 }
 void MacroAssembler::CheckEnumCache(Register null_value, Label* call_runtime) {
-  Label next;
-  // Preload a couple of values used in the loop.
   Register  empty_fixed_array_value = r6;
   LoadRoot(empty_fixed_array_value, Heap::kEmptyFixedArrayRootIndex);
-  Register empty_descriptor_array_value = r7;
-  LoadRoot(empty_descriptor_array_value,
-           Heap::kEmptyDescriptorArrayRootIndex);
-  mov(r1, r0);
-  bind(&next);
+  Label next, start;
+  mov(r2, r0);
-  // Check that there are no elements.  Register r1 contains the
-  // current JS object we've reached through the prototype chain.
-  ldr(r2, FieldMemOperand(r1, JSObject::kElementsOffset));
-  cmp(r2, empty_fixed_array_value);
-  b(ne, call_runtime);
+  // Check if the enum length field is properly initialized, indicating that
+  // there is an enum cache.
+  ldr(r1, FieldMemOperand(r2, HeapObject::kMapOffset));
-  // Check that instance descriptors are not empty so that we can
-  // check for an enum cache.  Leave the map in r2 for the subsequent
-  // prototype load.
-  ldr(r2, FieldMemOperand(r1, HeapObject::kMapOffset));
-  ldr(r3, FieldMemOperand(r2, Map::kInstanceDescriptorsOrBitField3Offset));
-  JumpIfSmi(r3, call_runtime);
+  EnumLength(r3, r1);
+  cmp(r3, Operand(Smi::FromInt(Map::kInvalidEnumCache)));
+  b(eq, call_runtime);
-  // Check that there is an enum cache in the non-empty instance
-  // descriptors (r3).  This is the case if the next enumeration
-  // index field does not contain a smi.
-  ldr(r3, FieldMemOperand(r3, DescriptorArray::kEnumerationIndexOffset));
-  JumpIfSmi(r3, call_runtime);
+  jmp(&start);
+  bind(&next);
+  ldr(r1, FieldMemOperand(r2, HeapObject::kMapOffset));
   // For all objects but the receiver, check that the cache is empty.
-  Label check_prototype;
-  cmp(r1, r0);
-  b(eq, &check_prototype);
-  ldr(r3, FieldMemOperand(r3, DescriptorArray::kEnumCacheBridgeCacheOffset));
-  cmp(r3, empty_fixed_array_value);
+  EnumLength(r3, r1);
+  cmp(r3, Operand(Smi::FromInt(0)));
+  b(ne, call_runtime);
+  bind(&start);
+  // Check that there are no elements. Register r2 contains the current JS
+  // object we've reached through the prototype chain.
+  ldr(r2, FieldMemOperand(r2, JSObject::kElementsOffset));
+  cmp(r2, empty_fixed_array_value);
   b(ne, call_runtime);
-  // Load the prototype from the map and loop if non-null.
-  bind(&check_prototype);
-  ldr(r1, FieldMemOperand(r2, Map::kPrototypeOffset));
-  cmp(r1, null_value);
+  ldr(r2, FieldMemOperand(r1, Map::kPrototypeOffset));
+  cmp(r2, null_value);
   b(ne, &next);
 }
+void MacroAssembler::TestJSArrayForAllocationSiteInfo(
+    Register receiver_reg,
+    Register scratch_reg) {
+  Label no_info_available;
+  ExternalReference new_space_start =
+      ExternalReference::new_space_start(isolate());
+  ExternalReference new_space_allocation_top =
+      ExternalReference::new_space_allocation_top_address(isolate());
+  add(scratch_reg, receiver_reg,
+      Operand(JSArray::kSize + AllocationSiteInfo::kSize - kHeapObjectTag));
+  cmp(scratch_reg, Operand(new_space_start));
+  b(lt, &no_info_available);
+  mov(ip, Operand(new_space_allocation_top));
+  ldr(ip, MemOperand(ip));
+  cmp(scratch_reg, ip);
+  b(gt, &no_info_available);
+  ldr(scratch_reg, MemOperand(scratch_reg, -AllocationSiteInfo::kSize));
+  cmp(scratch_reg,
+      Operand(Handle<Map>(isolate()->heap()->allocation_site_info_map())));
+  bind(&no_info_available);
+}
 #ifdef DEBUG
 bool AreAliased(Register reg1,
                 Register reg2,
@@ -3746,7 +3958,6 @@ bool AreAliased(Register reg1,
 CodePatcher::CodePatcher(byte* address, int instructions)
     : address_(address),
-      instructions_(instructions),
       size_(instructions * Assembler::kInstrSize),
       masm_(NULL, address, size_ + Assembler::kGap) {
   // Create a new macro assembler pointing to the address of the code to patch.