libv8 3.11.8.17 → 3.16.14.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (754) hide show
  1. checksums.yaml +4 -4
  2. data/.travis.yml +1 -2
  3. data/Gemfile +1 -1
  4. data/Rakefile +6 -7
  5. data/lib/libv8/version.rb +1 -1
  6. data/vendor/v8/.gitignore +24 -3
  7. data/vendor/v8/AUTHORS +7 -0
  8. data/vendor/v8/ChangeLog +839 -0
  9. data/vendor/v8/DEPS +1 -1
  10. data/vendor/v8/Makefile.android +92 -0
  11. data/vendor/v8/OWNERS +11 -0
  12. data/vendor/v8/PRESUBMIT.py +71 -0
  13. data/vendor/v8/SConstruct +34 -39
  14. data/vendor/v8/build/android.gypi +56 -37
  15. data/vendor/v8/build/common.gypi +112 -30
  16. data/vendor/v8/build/gyp_v8 +1 -1
  17. data/vendor/v8/build/standalone.gypi +15 -11
  18. data/vendor/v8/include/v8-debug.h +9 -1
  19. data/vendor/v8/include/v8-preparser.h +4 -3
  20. data/vendor/v8/include/v8-profiler.h +25 -25
  21. data/vendor/v8/include/v8-testing.h +4 -3
  22. data/vendor/v8/include/v8.h +994 -540
  23. data/vendor/v8/preparser/preparser-process.cc +3 -3
  24. data/vendor/v8/samples/lineprocessor.cc +20 -27
  25. data/vendor/v8/samples/process.cc +18 -14
  26. data/vendor/v8/samples/shell.cc +16 -15
  27. data/vendor/v8/src/SConscript +15 -14
  28. data/vendor/v8/src/accessors.cc +169 -77
  29. data/vendor/v8/src/accessors.h +4 -0
  30. data/vendor/v8/src/allocation-inl.h +2 -2
  31. data/vendor/v8/src/allocation.h +7 -7
  32. data/vendor/v8/src/api.cc +810 -497
  33. data/vendor/v8/src/api.h +85 -60
  34. data/vendor/v8/src/arm/assembler-arm-inl.h +179 -22
  35. data/vendor/v8/src/arm/assembler-arm.cc +633 -264
  36. data/vendor/v8/src/arm/assembler-arm.h +264 -197
  37. data/vendor/v8/src/arm/builtins-arm.cc +117 -27
  38. data/vendor/v8/src/arm/code-stubs-arm.cc +1241 -700
  39. data/vendor/v8/src/arm/code-stubs-arm.h +35 -138
  40. data/vendor/v8/src/arm/codegen-arm.cc +285 -16
  41. data/vendor/v8/src/arm/codegen-arm.h +22 -0
  42. data/vendor/v8/src/arm/constants-arm.cc +5 -3
  43. data/vendor/v8/src/arm/constants-arm.h +24 -11
  44. data/vendor/v8/src/arm/debug-arm.cc +3 -3
  45. data/vendor/v8/src/arm/deoptimizer-arm.cc +382 -92
  46. data/vendor/v8/src/arm/disasm-arm.cc +61 -12
  47. data/vendor/v8/src/arm/frames-arm.h +0 -14
  48. data/vendor/v8/src/arm/full-codegen-arm.cc +332 -304
  49. data/vendor/v8/src/arm/ic-arm.cc +180 -259
  50. data/vendor/v8/src/arm/lithium-arm.cc +364 -316
  51. data/vendor/v8/src/arm/lithium-arm.h +512 -275
  52. data/vendor/v8/src/arm/lithium-codegen-arm.cc +1768 -809
  53. data/vendor/v8/src/arm/lithium-codegen-arm.h +97 -35
  54. data/vendor/v8/src/arm/lithium-gap-resolver-arm.cc +12 -5
  55. data/vendor/v8/src/arm/macro-assembler-arm.cc +439 -228
  56. data/vendor/v8/src/arm/macro-assembler-arm.h +116 -70
  57. data/vendor/v8/src/arm/regexp-macro-assembler-arm.cc +54 -44
  58. data/vendor/v8/src/arm/regexp-macro-assembler-arm.h +3 -10
  59. data/vendor/v8/src/arm/simulator-arm.cc +272 -238
  60. data/vendor/v8/src/arm/simulator-arm.h +38 -8
  61. data/vendor/v8/src/arm/stub-cache-arm.cc +522 -895
  62. data/vendor/v8/src/array.js +101 -70
  63. data/vendor/v8/src/assembler.cc +270 -19
  64. data/vendor/v8/src/assembler.h +110 -15
  65. data/vendor/v8/src/ast.cc +79 -69
  66. data/vendor/v8/src/ast.h +255 -301
  67. data/vendor/v8/src/atomicops.h +7 -1
  68. data/vendor/v8/src/atomicops_internals_tsan.h +335 -0
  69. data/vendor/v8/src/bootstrapper.cc +481 -418
  70. data/vendor/v8/src/bootstrapper.h +4 -4
  71. data/vendor/v8/src/builtins.cc +498 -311
  72. data/vendor/v8/src/builtins.h +75 -47
  73. data/vendor/v8/src/checks.cc +2 -1
  74. data/vendor/v8/src/checks.h +8 -0
  75. data/vendor/v8/src/code-stubs-hydrogen.cc +253 -0
  76. data/vendor/v8/src/code-stubs.cc +249 -84
  77. data/vendor/v8/src/code-stubs.h +501 -169
  78. data/vendor/v8/src/codegen.cc +36 -18
  79. data/vendor/v8/src/codegen.h +25 -3
  80. data/vendor/v8/src/collection.js +54 -17
  81. data/vendor/v8/src/compilation-cache.cc +24 -16
  82. data/vendor/v8/src/compilation-cache.h +15 -6
  83. data/vendor/v8/src/compiler.cc +497 -195
  84. data/vendor/v8/src/compiler.h +246 -38
  85. data/vendor/v8/src/contexts.cc +64 -24
  86. data/vendor/v8/src/contexts.h +60 -29
  87. data/vendor/v8/src/conversions-inl.h +24 -14
  88. data/vendor/v8/src/conversions.h +7 -4
  89. data/vendor/v8/src/counters.cc +21 -12
  90. data/vendor/v8/src/counters.h +44 -16
  91. data/vendor/v8/src/cpu-profiler.h +1 -1
  92. data/vendor/v8/src/d8-debug.cc +2 -2
  93. data/vendor/v8/src/d8-readline.cc +13 -2
  94. data/vendor/v8/src/d8.cc +681 -273
  95. data/vendor/v8/src/d8.gyp +4 -4
  96. data/vendor/v8/src/d8.h +38 -18
  97. data/vendor/v8/src/d8.js +0 -617
  98. data/vendor/v8/src/data-flow.h +55 -0
  99. data/vendor/v8/src/date.js +1 -42
  100. data/vendor/v8/src/dateparser-inl.h +5 -1
  101. data/vendor/v8/src/debug-agent.cc +10 -15
  102. data/vendor/v8/src/debug-debugger.js +147 -149
  103. data/vendor/v8/src/debug.cc +323 -164
  104. data/vendor/v8/src/debug.h +26 -14
  105. data/vendor/v8/src/deoptimizer.cc +765 -290
  106. data/vendor/v8/src/deoptimizer.h +130 -28
  107. data/vendor/v8/src/disassembler.cc +10 -4
  108. data/vendor/v8/src/elements-kind.cc +7 -2
  109. data/vendor/v8/src/elements-kind.h +19 -0
  110. data/vendor/v8/src/elements.cc +607 -285
  111. data/vendor/v8/src/elements.h +36 -13
  112. data/vendor/v8/src/execution.cc +52 -31
  113. data/vendor/v8/src/execution.h +4 -4
  114. data/vendor/v8/src/extensions/externalize-string-extension.cc +5 -4
  115. data/vendor/v8/src/extensions/gc-extension.cc +5 -1
  116. data/vendor/v8/src/extensions/statistics-extension.cc +153 -0
  117. data/vendor/v8/src/{inspector.h → extensions/statistics-extension.h} +12 -23
  118. data/vendor/v8/src/factory.cc +101 -134
  119. data/vendor/v8/src/factory.h +36 -31
  120. data/vendor/v8/src/flag-definitions.h +102 -25
  121. data/vendor/v8/src/flags.cc +9 -5
  122. data/vendor/v8/src/frames-inl.h +10 -0
  123. data/vendor/v8/src/frames.cc +116 -26
  124. data/vendor/v8/src/frames.h +96 -12
  125. data/vendor/v8/src/full-codegen.cc +219 -74
  126. data/vendor/v8/src/full-codegen.h +63 -21
  127. data/vendor/v8/src/func-name-inferrer.cc +8 -7
  128. data/vendor/v8/src/func-name-inferrer.h +5 -3
  129. data/vendor/v8/src/gdb-jit.cc +71 -57
  130. data/vendor/v8/src/global-handles.cc +230 -101
  131. data/vendor/v8/src/global-handles.h +26 -27
  132. data/vendor/v8/src/globals.h +17 -19
  133. data/vendor/v8/src/handles-inl.h +59 -12
  134. data/vendor/v8/src/handles.cc +180 -200
  135. data/vendor/v8/src/handles.h +80 -11
  136. data/vendor/v8/src/hashmap.h +60 -40
  137. data/vendor/v8/src/heap-inl.h +107 -45
  138. data/vendor/v8/src/heap-profiler.cc +38 -19
  139. data/vendor/v8/src/heap-profiler.h +24 -14
  140. data/vendor/v8/src/heap.cc +1123 -738
  141. data/vendor/v8/src/heap.h +385 -146
  142. data/vendor/v8/src/hydrogen-instructions.cc +700 -217
  143. data/vendor/v8/src/hydrogen-instructions.h +1158 -472
  144. data/vendor/v8/src/hydrogen.cc +3319 -1662
  145. data/vendor/v8/src/hydrogen.h +411 -170
  146. data/vendor/v8/src/ia32/assembler-ia32-inl.h +46 -16
  147. data/vendor/v8/src/ia32/assembler-ia32.cc +131 -61
  148. data/vendor/v8/src/ia32/assembler-ia32.h +115 -57
  149. data/vendor/v8/src/ia32/builtins-ia32.cc +99 -5
  150. data/vendor/v8/src/ia32/code-stubs-ia32.cc +787 -495
  151. data/vendor/v8/src/ia32/code-stubs-ia32.h +10 -100
  152. data/vendor/v8/src/ia32/codegen-ia32.cc +227 -23
  153. data/vendor/v8/src/ia32/codegen-ia32.h +14 -0
  154. data/vendor/v8/src/ia32/deoptimizer-ia32.cc +428 -87
  155. data/vendor/v8/src/ia32/disasm-ia32.cc +28 -1
  156. data/vendor/v8/src/ia32/frames-ia32.h +6 -16
  157. data/vendor/v8/src/ia32/full-codegen-ia32.cc +280 -272
  158. data/vendor/v8/src/ia32/ic-ia32.cc +150 -250
  159. data/vendor/v8/src/ia32/lithium-codegen-ia32.cc +1600 -517
  160. data/vendor/v8/src/ia32/lithium-codegen-ia32.h +90 -24
  161. data/vendor/v8/src/ia32/lithium-gap-resolver-ia32.cc +10 -6
  162. data/vendor/v8/src/ia32/lithium-gap-resolver-ia32.h +2 -2
  163. data/vendor/v8/src/ia32/lithium-ia32.cc +405 -302
  164. data/vendor/v8/src/ia32/lithium-ia32.h +526 -271
  165. data/vendor/v8/src/ia32/macro-assembler-ia32.cc +378 -119
  166. data/vendor/v8/src/ia32/macro-assembler-ia32.h +62 -28
  167. data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.cc +43 -30
  168. data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.h +2 -10
  169. data/vendor/v8/src/ia32/stub-cache-ia32.cc +492 -678
  170. data/vendor/v8/src/ic-inl.h +9 -4
  171. data/vendor/v8/src/ic.cc +836 -923
  172. data/vendor/v8/src/ic.h +228 -247
  173. data/vendor/v8/src/incremental-marking-inl.h +26 -30
  174. data/vendor/v8/src/incremental-marking.cc +276 -248
  175. data/vendor/v8/src/incremental-marking.h +29 -37
  176. data/vendor/v8/src/interface.cc +34 -25
  177. data/vendor/v8/src/interface.h +69 -25
  178. data/vendor/v8/src/interpreter-irregexp.cc +2 -2
  179. data/vendor/v8/src/isolate.cc +382 -76
  180. data/vendor/v8/src/isolate.h +109 -56
  181. data/vendor/v8/src/json-parser.h +217 -104
  182. data/vendor/v8/src/json-stringifier.h +745 -0
  183. data/vendor/v8/src/json.js +10 -132
  184. data/vendor/v8/src/jsregexp-inl.h +106 -0
  185. data/vendor/v8/src/jsregexp.cc +517 -285
  186. data/vendor/v8/src/jsregexp.h +145 -117
  187. data/vendor/v8/src/list-inl.h +35 -22
  188. data/vendor/v8/src/list.h +46 -19
  189. data/vendor/v8/src/lithium-allocator-inl.h +22 -2
  190. data/vendor/v8/src/lithium-allocator.cc +85 -70
  191. data/vendor/v8/src/lithium-allocator.h +21 -39
  192. data/vendor/v8/src/lithium.cc +259 -5
  193. data/vendor/v8/src/lithium.h +131 -32
  194. data/vendor/v8/src/liveedit-debugger.js +52 -3
  195. data/vendor/v8/src/liveedit.cc +393 -113
  196. data/vendor/v8/src/liveedit.h +7 -3
  197. data/vendor/v8/src/log-utils.cc +4 -2
  198. data/vendor/v8/src/log.cc +170 -140
  199. data/vendor/v8/src/log.h +62 -11
  200. data/vendor/v8/src/macro-assembler.h +17 -0
  201. data/vendor/v8/src/macros.py +2 -0
  202. data/vendor/v8/src/mark-compact-inl.h +3 -23
  203. data/vendor/v8/src/mark-compact.cc +801 -830
  204. data/vendor/v8/src/mark-compact.h +154 -47
  205. data/vendor/v8/src/marking-thread.cc +85 -0
  206. data/vendor/v8/src/{inspector.cc → marking-thread.h} +32 -24
  207. data/vendor/v8/src/math.js +12 -18
  208. data/vendor/v8/src/messages.cc +18 -8
  209. data/vendor/v8/src/messages.js +314 -261
  210. data/vendor/v8/src/mips/assembler-mips-inl.h +58 -6
  211. data/vendor/v8/src/mips/assembler-mips.cc +92 -75
  212. data/vendor/v8/src/mips/assembler-mips.h +54 -60
  213. data/vendor/v8/src/mips/builtins-mips.cc +116 -17
  214. data/vendor/v8/src/mips/code-stubs-mips.cc +919 -556
  215. data/vendor/v8/src/mips/code-stubs-mips.h +22 -131
  216. data/vendor/v8/src/mips/codegen-mips.cc +281 -6
  217. data/vendor/v8/src/mips/codegen-mips.h +22 -0
  218. data/vendor/v8/src/mips/constants-mips.cc +2 -0
  219. data/vendor/v8/src/mips/constants-mips.h +12 -2
  220. data/vendor/v8/src/mips/deoptimizer-mips.cc +286 -50
  221. data/vendor/v8/src/mips/disasm-mips.cc +13 -0
  222. data/vendor/v8/src/mips/full-codegen-mips.cc +297 -284
  223. data/vendor/v8/src/mips/ic-mips.cc +182 -263
  224. data/vendor/v8/src/mips/lithium-codegen-mips.cc +1208 -556
  225. data/vendor/v8/src/mips/lithium-codegen-mips.h +72 -19
  226. data/vendor/v8/src/mips/lithium-gap-resolver-mips.cc +9 -2
  227. data/vendor/v8/src/mips/lithium-mips.cc +290 -302
  228. data/vendor/v8/src/mips/lithium-mips.h +463 -266
  229. data/vendor/v8/src/mips/macro-assembler-mips.cc +208 -115
  230. data/vendor/v8/src/mips/macro-assembler-mips.h +67 -24
  231. data/vendor/v8/src/mips/regexp-macro-assembler-mips.cc +40 -25
  232. data/vendor/v8/src/mips/regexp-macro-assembler-mips.h +3 -9
  233. data/vendor/v8/src/mips/simulator-mips.cc +112 -40
  234. data/vendor/v8/src/mips/simulator-mips.h +5 -0
  235. data/vendor/v8/src/mips/stub-cache-mips.cc +502 -884
  236. data/vendor/v8/src/mirror-debugger.js +157 -30
  237. data/vendor/v8/src/mksnapshot.cc +88 -14
  238. data/vendor/v8/src/object-observe.js +235 -0
  239. data/vendor/v8/src/objects-debug.cc +178 -176
  240. data/vendor/v8/src/objects-inl.h +1333 -486
  241. data/vendor/v8/src/objects-printer.cc +125 -43
  242. data/vendor/v8/src/objects-visiting-inl.h +578 -6
  243. data/vendor/v8/src/objects-visiting.cc +2 -2
  244. data/vendor/v8/src/objects-visiting.h +172 -79
  245. data/vendor/v8/src/objects.cc +3533 -2885
  246. data/vendor/v8/src/objects.h +1352 -1131
  247. data/vendor/v8/src/optimizing-compiler-thread.cc +152 -0
  248. data/vendor/v8/src/optimizing-compiler-thread.h +111 -0
  249. data/vendor/v8/src/parser.cc +390 -500
  250. data/vendor/v8/src/parser.h +45 -33
  251. data/vendor/v8/src/platform-cygwin.cc +10 -21
  252. data/vendor/v8/src/platform-freebsd.cc +36 -41
  253. data/vendor/v8/src/platform-linux.cc +160 -124
  254. data/vendor/v8/src/platform-macos.cc +30 -27
  255. data/vendor/v8/src/platform-nullos.cc +17 -1
  256. data/vendor/v8/src/platform-openbsd.cc +19 -50
  257. data/vendor/v8/src/platform-posix.cc +14 -0
  258. data/vendor/v8/src/platform-solaris.cc +20 -53
  259. data/vendor/v8/src/platform-win32.cc +49 -26
  260. data/vendor/v8/src/platform.h +40 -1
  261. data/vendor/v8/src/preparser.cc +8 -5
  262. data/vendor/v8/src/preparser.h +2 -2
  263. data/vendor/v8/src/prettyprinter.cc +16 -0
  264. data/vendor/v8/src/prettyprinter.h +2 -0
  265. data/vendor/v8/src/profile-generator-inl.h +1 -0
  266. data/vendor/v8/src/profile-generator.cc +209 -147
  267. data/vendor/v8/src/profile-generator.h +15 -12
  268. data/vendor/v8/src/property-details.h +46 -31
  269. data/vendor/v8/src/property.cc +27 -46
  270. data/vendor/v8/src/property.h +163 -83
  271. data/vendor/v8/src/proxy.js +7 -2
  272. data/vendor/v8/src/regexp-macro-assembler-irregexp.cc +4 -13
  273. data/vendor/v8/src/regexp-macro-assembler-irregexp.h +1 -2
  274. data/vendor/v8/src/regexp-macro-assembler-tracer.cc +1 -11
  275. data/vendor/v8/src/regexp-macro-assembler-tracer.h +0 -1
  276. data/vendor/v8/src/regexp-macro-assembler.cc +31 -14
  277. data/vendor/v8/src/regexp-macro-assembler.h +14 -11
  278. data/vendor/v8/src/regexp-stack.cc +1 -0
  279. data/vendor/v8/src/regexp.js +9 -8
  280. data/vendor/v8/src/rewriter.cc +18 -7
  281. data/vendor/v8/src/runtime-profiler.cc +52 -43
  282. data/vendor/v8/src/runtime-profiler.h +0 -25
  283. data/vendor/v8/src/runtime.cc +2006 -2023
  284. data/vendor/v8/src/runtime.h +56 -49
  285. data/vendor/v8/src/safepoint-table.cc +12 -18
  286. data/vendor/v8/src/safepoint-table.h +11 -8
  287. data/vendor/v8/src/scanner.cc +1 -0
  288. data/vendor/v8/src/scanner.h +4 -10
  289. data/vendor/v8/src/scopeinfo.cc +35 -9
  290. data/vendor/v8/src/scopeinfo.h +64 -3
  291. data/vendor/v8/src/scopes.cc +251 -156
  292. data/vendor/v8/src/scopes.h +61 -27
  293. data/vendor/v8/src/serialize.cc +348 -396
  294. data/vendor/v8/src/serialize.h +125 -114
  295. data/vendor/v8/src/small-pointer-list.h +11 -11
  296. data/vendor/v8/src/{smart-array-pointer.h → smart-pointers.h} +64 -15
  297. data/vendor/v8/src/snapshot-common.cc +64 -15
  298. data/vendor/v8/src/snapshot-empty.cc +7 -1
  299. data/vendor/v8/src/snapshot.h +9 -2
  300. data/vendor/v8/src/spaces-inl.h +17 -0
  301. data/vendor/v8/src/spaces.cc +477 -183
  302. data/vendor/v8/src/spaces.h +238 -58
  303. data/vendor/v8/src/splay-tree-inl.h +8 -7
  304. data/vendor/v8/src/splay-tree.h +24 -10
  305. data/vendor/v8/src/store-buffer.cc +12 -5
  306. data/vendor/v8/src/store-buffer.h +2 -4
  307. data/vendor/v8/src/string-search.h +22 -6
  308. data/vendor/v8/src/string-stream.cc +11 -8
  309. data/vendor/v8/src/string.js +47 -15
  310. data/vendor/v8/src/stub-cache.cc +461 -224
  311. data/vendor/v8/src/stub-cache.h +164 -102
  312. data/vendor/v8/src/sweeper-thread.cc +105 -0
  313. data/vendor/v8/src/sweeper-thread.h +81 -0
  314. data/vendor/v8/src/token.h +1 -0
  315. data/vendor/v8/src/transitions-inl.h +220 -0
  316. data/vendor/v8/src/transitions.cc +160 -0
  317. data/vendor/v8/src/transitions.h +207 -0
  318. data/vendor/v8/src/type-info.cc +182 -181
  319. data/vendor/v8/src/type-info.h +31 -19
  320. data/vendor/v8/src/unicode-inl.h +62 -106
  321. data/vendor/v8/src/unicode.cc +57 -67
  322. data/vendor/v8/src/unicode.h +45 -91
  323. data/vendor/v8/src/uri.js +57 -29
  324. data/vendor/v8/src/utils.h +105 -5
  325. data/vendor/v8/src/v8-counters.cc +54 -11
  326. data/vendor/v8/src/v8-counters.h +134 -19
  327. data/vendor/v8/src/v8.cc +29 -29
  328. data/vendor/v8/src/v8.h +1 -0
  329. data/vendor/v8/src/v8conversions.cc +26 -22
  330. data/vendor/v8/src/v8globals.h +56 -43
  331. data/vendor/v8/src/v8natives.js +83 -30
  332. data/vendor/v8/src/v8threads.cc +42 -21
  333. data/vendor/v8/src/v8threads.h +4 -1
  334. data/vendor/v8/src/v8utils.cc +9 -93
  335. data/vendor/v8/src/v8utils.h +37 -33
  336. data/vendor/v8/src/variables.cc +6 -3
  337. data/vendor/v8/src/variables.h +6 -13
  338. data/vendor/v8/src/version.cc +2 -2
  339. data/vendor/v8/src/vm-state-inl.h +11 -0
  340. data/vendor/v8/src/x64/assembler-x64-inl.h +39 -8
  341. data/vendor/v8/src/x64/assembler-x64.cc +78 -64
  342. data/vendor/v8/src/x64/assembler-x64.h +38 -33
  343. data/vendor/v8/src/x64/builtins-x64.cc +105 -7
  344. data/vendor/v8/src/x64/code-stubs-x64.cc +790 -413
  345. data/vendor/v8/src/x64/code-stubs-x64.h +10 -106
  346. data/vendor/v8/src/x64/codegen-x64.cc +210 -8
  347. data/vendor/v8/src/x64/codegen-x64.h +20 -1
  348. data/vendor/v8/src/x64/deoptimizer-x64.cc +336 -75
  349. data/vendor/v8/src/x64/disasm-x64.cc +15 -0
  350. data/vendor/v8/src/x64/frames-x64.h +0 -14
  351. data/vendor/v8/src/x64/full-codegen-x64.cc +293 -270
  352. data/vendor/v8/src/x64/ic-x64.cc +153 -251
  353. data/vendor/v8/src/x64/lithium-codegen-x64.cc +1379 -531
  354. data/vendor/v8/src/x64/lithium-codegen-x64.h +67 -23
  355. data/vendor/v8/src/x64/lithium-gap-resolver-x64.cc +2 -2
  356. data/vendor/v8/src/x64/lithium-x64.cc +349 -289
  357. data/vendor/v8/src/x64/lithium-x64.h +460 -250
  358. data/vendor/v8/src/x64/macro-assembler-x64.cc +350 -177
  359. data/vendor/v8/src/x64/macro-assembler-x64.h +67 -49
  360. data/vendor/v8/src/x64/regexp-macro-assembler-x64.cc +46 -33
  361. data/vendor/v8/src/x64/regexp-macro-assembler-x64.h +2 -3
  362. data/vendor/v8/src/x64/stub-cache-x64.cc +484 -653
  363. data/vendor/v8/src/zone-inl.h +9 -27
  364. data/vendor/v8/src/zone.cc +5 -5
  365. data/vendor/v8/src/zone.h +53 -27
  366. data/vendor/v8/test/benchmarks/testcfg.py +5 -0
  367. data/vendor/v8/test/cctest/cctest.cc +4 -0
  368. data/vendor/v8/test/cctest/cctest.gyp +3 -1
  369. data/vendor/v8/test/cctest/cctest.h +57 -9
  370. data/vendor/v8/test/cctest/cctest.status +15 -15
  371. data/vendor/v8/test/cctest/test-accessors.cc +26 -0
  372. data/vendor/v8/test/cctest/test-alloc.cc +22 -30
  373. data/vendor/v8/test/cctest/test-api.cc +1943 -314
  374. data/vendor/v8/test/cctest/test-assembler-arm.cc +133 -13
  375. data/vendor/v8/test/cctest/test-assembler-ia32.cc +1 -1
  376. data/vendor/v8/test/cctest/test-assembler-mips.cc +12 -0
  377. data/vendor/v8/test/cctest/test-ast.cc +4 -2
  378. data/vendor/v8/test/cctest/test-compiler.cc +61 -29
  379. data/vendor/v8/test/cctest/test-dataflow.cc +2 -2
  380. data/vendor/v8/test/cctest/test-debug.cc +212 -33
  381. data/vendor/v8/test/cctest/test-decls.cc +257 -11
  382. data/vendor/v8/test/cctest/test-dictionary.cc +24 -10
  383. data/vendor/v8/test/cctest/test-disasm-arm.cc +118 -1
  384. data/vendor/v8/test/cctest/test-disasm-ia32.cc +3 -2
  385. data/vendor/v8/test/cctest/test-flags.cc +14 -1
  386. data/vendor/v8/test/cctest/test-func-name-inference.cc +7 -4
  387. data/vendor/v8/test/cctest/test-global-object.cc +51 -0
  388. data/vendor/v8/test/cctest/test-hashing.cc +32 -23
  389. data/vendor/v8/test/cctest/test-heap-profiler.cc +131 -77
  390. data/vendor/v8/test/cctest/test-heap.cc +1084 -143
  391. data/vendor/v8/test/cctest/test-list.cc +1 -1
  392. data/vendor/v8/test/cctest/test-liveedit.cc +3 -2
  393. data/vendor/v8/test/cctest/test-lockers.cc +12 -13
  394. data/vendor/v8/test/cctest/test-log.cc +10 -8
  395. data/vendor/v8/test/cctest/test-macro-assembler-x64.cc +2 -2
  396. data/vendor/v8/test/cctest/test-mark-compact.cc +44 -22
  397. data/vendor/v8/test/cctest/test-object-observe.cc +434 -0
  398. data/vendor/v8/test/cctest/test-parsing.cc +86 -39
  399. data/vendor/v8/test/cctest/test-platform-linux.cc +6 -0
  400. data/vendor/v8/test/cctest/test-platform-win32.cc +7 -0
  401. data/vendor/v8/test/cctest/test-random.cc +5 -4
  402. data/vendor/v8/test/cctest/test-regexp.cc +137 -101
  403. data/vendor/v8/test/cctest/test-serialize.cc +150 -230
  404. data/vendor/v8/test/cctest/test-sockets.cc +1 -1
  405. data/vendor/v8/test/cctest/test-spaces.cc +139 -0
  406. data/vendor/v8/test/cctest/test-strings.cc +736 -74
  407. data/vendor/v8/test/cctest/test-thread-termination.cc +10 -11
  408. data/vendor/v8/test/cctest/test-threads.cc +4 -4
  409. data/vendor/v8/test/cctest/test-utils.cc +16 -0
  410. data/vendor/v8/test/cctest/test-weakmaps.cc +7 -3
  411. data/vendor/v8/test/cctest/testcfg.py +64 -5
  412. data/vendor/v8/test/es5conform/testcfg.py +5 -0
  413. data/vendor/v8/test/message/message.status +1 -1
  414. data/vendor/v8/test/message/overwritten-builtins.out +3 -0
  415. data/vendor/v8/test/message/testcfg.py +89 -8
  416. data/vendor/v8/test/message/try-catch-finally-no-message.out +26 -26
  417. data/vendor/v8/test/mjsunit/accessor-map-sharing.js +18 -2
  418. data/vendor/v8/test/mjsunit/allocation-site-info.js +126 -0
  419. data/vendor/v8/test/mjsunit/array-bounds-check-removal.js +62 -1
  420. data/vendor/v8/test/mjsunit/array-iteration.js +1 -1
  421. data/vendor/v8/test/mjsunit/array-literal-transitions.js +2 -0
  422. data/vendor/v8/test/mjsunit/array-natives-elements.js +317 -0
  423. data/vendor/v8/test/mjsunit/array-reduce.js +8 -8
  424. data/vendor/v8/test/mjsunit/array-slice.js +12 -0
  425. data/vendor/v8/test/mjsunit/array-store-and-grow.js +4 -1
  426. data/vendor/v8/test/mjsunit/assert-opt-and-deopt.js +1 -1
  427. data/vendor/v8/test/mjsunit/bugs/bug-2337.js +53 -0
  428. data/vendor/v8/test/mjsunit/compare-known-objects-slow.js +69 -0
  429. data/vendor/v8/test/mjsunit/compiler/alloc-object-huge.js +3 -1
  430. data/vendor/v8/test/mjsunit/compiler/inline-accessors.js +368 -0
  431. data/vendor/v8/test/mjsunit/compiler/inline-arguments.js +87 -1
  432. data/vendor/v8/test/mjsunit/compiler/inline-closures.js +49 -0
  433. data/vendor/v8/test/mjsunit/compiler/inline-construct.js +55 -43
  434. data/vendor/v8/test/mjsunit/compiler/inline-literals.js +39 -0
  435. data/vendor/v8/test/mjsunit/compiler/multiply-add.js +69 -0
  436. data/vendor/v8/test/mjsunit/compiler/optimized-closures.js +57 -0
  437. data/vendor/v8/test/mjsunit/compiler/parallel-proto-change.js +44 -0
  438. data/vendor/v8/test/mjsunit/compiler/property-static.js +69 -0
  439. data/vendor/v8/test/mjsunit/compiler/proto-chain-constant.js +55 -0
  440. data/vendor/v8/test/mjsunit/compiler/proto-chain-load.js +44 -0
  441. data/vendor/v8/test/mjsunit/compiler/regress-gvn.js +3 -2
  442. data/vendor/v8/test/mjsunit/compiler/regress-or.js +6 -2
  443. data/vendor/v8/test/mjsunit/compiler/rotate.js +224 -0
  444. data/vendor/v8/test/mjsunit/compiler/uint32.js +173 -0
  445. data/vendor/v8/test/mjsunit/count-based-osr.js +2 -1
  446. data/vendor/v8/test/mjsunit/d8-os.js +3 -3
  447. data/vendor/v8/test/mjsunit/date-parse.js +3 -0
  448. data/vendor/v8/test/mjsunit/date.js +22 -0
  449. data/vendor/v8/test/mjsunit/debug-break-inline.js +1 -0
  450. data/vendor/v8/test/mjsunit/debug-evaluate-locals-optimized-double.js +22 -12
  451. data/vendor/v8/test/mjsunit/debug-evaluate-locals-optimized.js +21 -10
  452. data/vendor/v8/test/mjsunit/debug-liveedit-compile-error.js +60 -0
  453. data/vendor/v8/test/mjsunit/debug-liveedit-double-call.js +142 -0
  454. data/vendor/v8/test/mjsunit/debug-liveedit-literals.js +94 -0
  455. data/vendor/v8/test/mjsunit/debug-liveedit-restart-frame.js +153 -0
  456. data/vendor/v8/test/mjsunit/debug-multiple-breakpoints.js +1 -1
  457. data/vendor/v8/test/mjsunit/debug-script-breakpoints-closure.js +67 -0
  458. data/vendor/v8/test/mjsunit/debug-script-breakpoints-nested.js +82 -0
  459. data/vendor/v8/test/mjsunit/debug-script.js +4 -2
  460. data/vendor/v8/test/mjsunit/debug-set-variable-value.js +308 -0
  461. data/vendor/v8/test/mjsunit/debug-stepout-scope-part1.js +190 -0
  462. data/vendor/v8/test/mjsunit/debug-stepout-scope-part2.js +83 -0
  463. data/vendor/v8/test/mjsunit/debug-stepout-scope-part3.js +80 -0
  464. data/vendor/v8/test/mjsunit/debug-stepout-scope-part4.js +80 -0
  465. data/vendor/v8/test/mjsunit/debug-stepout-scope-part5.js +77 -0
  466. data/vendor/v8/test/mjsunit/debug-stepout-scope-part6.js +79 -0
  467. data/vendor/v8/test/mjsunit/debug-stepout-scope-part7.js +79 -0
  468. data/vendor/v8/test/mjsunit/{debug-stepout-scope.js → debug-stepout-scope-part8.js} +0 -189
  469. data/vendor/v8/test/mjsunit/delete-non-configurable.js +74 -0
  470. data/vendor/v8/test/mjsunit/deopt-minus-zero.js +56 -0
  471. data/vendor/v8/test/mjsunit/elements-kind.js +6 -4
  472. data/vendor/v8/test/mjsunit/elements-length-no-holey.js +33 -0
  473. data/vendor/v8/test/mjsunit/elements-transition-hoisting.js +46 -19
  474. data/vendor/v8/test/mjsunit/error-accessors.js +54 -0
  475. data/vendor/v8/test/mjsunit/error-constructors.js +1 -14
  476. data/vendor/v8/test/mjsunit/error-tostring.js +8 -0
  477. data/vendor/v8/test/mjsunit/eval-stack-trace.js +204 -0
  478. data/vendor/v8/test/mjsunit/external-array.js +364 -1
  479. data/vendor/v8/test/mjsunit/fast-array-length.js +37 -0
  480. data/vendor/v8/test/mjsunit/fast-non-keyed.js +113 -0
  481. data/vendor/v8/test/mjsunit/fast-prototype.js +117 -0
  482. data/vendor/v8/test/mjsunit/function-call.js +14 -18
  483. data/vendor/v8/test/mjsunit/fuzz-natives-part1.js +230 -0
  484. data/vendor/v8/test/mjsunit/fuzz-natives-part2.js +229 -0
  485. data/vendor/v8/test/mjsunit/fuzz-natives-part3.js +229 -0
  486. data/vendor/v8/test/mjsunit/{fuzz-natives.js → fuzz-natives-part4.js} +12 -2
  487. data/vendor/v8/test/mjsunit/generated-transition-stub.js +218 -0
  488. data/vendor/v8/test/mjsunit/greedy.js +1 -1
  489. data/vendor/v8/test/mjsunit/harmony/block-conflicts.js +2 -1
  490. data/vendor/v8/test/mjsunit/harmony/block-let-crankshaft.js +1 -1
  491. data/vendor/v8/test/mjsunit/harmony/collections.js +69 -11
  492. data/vendor/v8/test/mjsunit/harmony/debug-blockscopes.js +2 -2
  493. data/vendor/v8/test/mjsunit/harmony/module-linking.js +180 -3
  494. data/vendor/v8/test/mjsunit/harmony/module-parsing.js +31 -0
  495. data/vendor/v8/test/mjsunit/harmony/module-recompile.js +87 -0
  496. data/vendor/v8/test/mjsunit/harmony/module-resolution.js +15 -2
  497. data/vendor/v8/test/mjsunit/harmony/object-observe.js +1056 -0
  498. data/vendor/v8/test/mjsunit/harmony/proxies-json.js +178 -0
  499. data/vendor/v8/test/mjsunit/harmony/proxies.js +25 -10
  500. data/vendor/v8/test/mjsunit/json-parser-recursive.js +33 -0
  501. data/vendor/v8/test/mjsunit/json-stringify-recursive.js +52 -0
  502. data/vendor/v8/test/mjsunit/json.js +38 -2
  503. data/vendor/v8/test/mjsunit/json2.js +153 -0
  504. data/vendor/v8/test/mjsunit/limit-locals.js +5 -4
  505. data/vendor/v8/test/mjsunit/manual-parallel-recompile.js +79 -0
  506. data/vendor/v8/test/mjsunit/math-exp-precision.js +64 -0
  507. data/vendor/v8/test/mjsunit/math-floor-negative.js +59 -0
  508. data/vendor/v8/test/mjsunit/math-floor-of-div-minus-zero.js +41 -0
  509. data/vendor/v8/test/mjsunit/math-floor-of-div-nosudiv.js +288 -0
  510. data/vendor/v8/test/mjsunit/math-floor-of-div.js +81 -9
  511. data/vendor/v8/test/mjsunit/{math-floor.js → math-floor-part1.js} +1 -72
  512. data/vendor/v8/test/mjsunit/math-floor-part2.js +76 -0
  513. data/vendor/v8/test/mjsunit/math-floor-part3.js +78 -0
  514. data/vendor/v8/test/mjsunit/math-floor-part4.js +76 -0
  515. data/vendor/v8/test/mjsunit/mirror-object.js +43 -9
  516. data/vendor/v8/test/mjsunit/mjsunit.js +1 -1
  517. data/vendor/v8/test/mjsunit/mjsunit.status +52 -27
  518. data/vendor/v8/test/mjsunit/mul-exhaustive-part1.js +491 -0
  519. data/vendor/v8/test/mjsunit/mul-exhaustive-part10.js +470 -0
  520. data/vendor/v8/test/mjsunit/mul-exhaustive-part2.js +525 -0
  521. data/vendor/v8/test/mjsunit/mul-exhaustive-part3.js +532 -0
  522. data/vendor/v8/test/mjsunit/mul-exhaustive-part4.js +509 -0
  523. data/vendor/v8/test/mjsunit/mul-exhaustive-part5.js +505 -0
  524. data/vendor/v8/test/mjsunit/mul-exhaustive-part6.js +554 -0
  525. data/vendor/v8/test/mjsunit/mul-exhaustive-part7.js +497 -0
  526. data/vendor/v8/test/mjsunit/mul-exhaustive-part8.js +526 -0
  527. data/vendor/v8/test/mjsunit/mul-exhaustive-part9.js +533 -0
  528. data/vendor/v8/test/mjsunit/new-function.js +34 -0
  529. data/vendor/v8/test/mjsunit/numops-fuzz-part1.js +1172 -0
  530. data/vendor/v8/test/mjsunit/numops-fuzz-part2.js +1178 -0
  531. data/vendor/v8/test/mjsunit/numops-fuzz-part3.js +1178 -0
  532. data/vendor/v8/test/mjsunit/numops-fuzz-part4.js +1177 -0
  533. data/vendor/v8/test/mjsunit/object-define-property.js +107 -2
  534. data/vendor/v8/test/mjsunit/override-read-only-property.js +6 -4
  535. data/vendor/v8/test/mjsunit/packed-elements.js +2 -2
  536. data/vendor/v8/test/mjsunit/parse-int-float.js +4 -4
  537. data/vendor/v8/test/mjsunit/pixel-array-rounding.js +1 -1
  538. data/vendor/v8/test/mjsunit/readonly.js +228 -0
  539. data/vendor/v8/test/mjsunit/regexp-capture-3.js +16 -18
  540. data/vendor/v8/test/mjsunit/regexp-capture.js +2 -0
  541. data/vendor/v8/test/mjsunit/regexp-global.js +122 -0
  542. data/vendor/v8/test/mjsunit/regexp-results-cache.js +78 -0
  543. data/vendor/v8/test/mjsunit/regress/regress-1117.js +12 -3
  544. data/vendor/v8/test/mjsunit/regress/regress-1118.js +1 -1
  545. data/vendor/v8/test/mjsunit/regress/regress-115100.js +36 -0
  546. data/vendor/v8/test/mjsunit/regress/regress-1199637.js +1 -3
  547. data/vendor/v8/test/mjsunit/regress/regress-121407.js +1 -1
  548. data/vendor/v8/test/mjsunit/regress/regress-131923.js +30 -0
  549. data/vendor/v8/test/mjsunit/regress/regress-131994.js +70 -0
  550. data/vendor/v8/test/mjsunit/regress/regress-133211.js +35 -0
  551. data/vendor/v8/test/mjsunit/regress/regress-133211b.js +39 -0
  552. data/vendor/v8/test/mjsunit/regress/regress-136048.js +34 -0
  553. data/vendor/v8/test/mjsunit/regress/regress-137768.js +73 -0
  554. data/vendor/v8/test/mjsunit/regress/regress-143967.js +34 -0
  555. data/vendor/v8/test/mjsunit/regress/regress-145201.js +107 -0
  556. data/vendor/v8/test/mjsunit/regress/regress-147497.js +45 -0
  557. data/vendor/v8/test/mjsunit/regress/regress-148378.js +38 -0
  558. data/vendor/v8/test/mjsunit/regress/regress-1563.js +1 -1
  559. data/vendor/v8/test/mjsunit/regress/regress-1591.js +48 -0
  560. data/vendor/v8/test/mjsunit/regress/regress-164442.js +45 -0
  561. data/vendor/v8/test/mjsunit/regress/regress-165637.js +61 -0
  562. data/vendor/v8/test/mjsunit/regress/regress-166379.js +39 -0
  563. data/vendor/v8/test/mjsunit/regress/regress-166553.js +33 -0
  564. data/vendor/v8/test/mjsunit/regress/regress-1692.js +1 -1
  565. data/vendor/v8/test/mjsunit/regress/regress-171641.js +40 -0
  566. data/vendor/v8/test/mjsunit/regress/regress-1980.js +1 -1
  567. data/vendor/v8/test/mjsunit/regress/regress-2073.js +99 -0
  568. data/vendor/v8/test/mjsunit/regress/regress-2119.js +36 -0
  569. data/vendor/v8/test/mjsunit/regress/regress-2156.js +39 -0
  570. data/vendor/v8/test/mjsunit/regress/regress-2163.js +70 -0
  571. data/vendor/v8/test/mjsunit/regress/regress-2170.js +58 -0
  572. data/vendor/v8/test/mjsunit/regress/regress-2172.js +35 -0
  573. data/vendor/v8/test/mjsunit/regress/regress-2185-2.js +145 -0
  574. data/vendor/v8/test/mjsunit/regress/regress-2185.js +38 -0
  575. data/vendor/v8/test/mjsunit/regress/regress-2186.js +49 -0
  576. data/vendor/v8/test/mjsunit/regress/regress-2193.js +58 -0
  577. data/vendor/v8/test/mjsunit/regress/regress-2219.js +32 -0
  578. data/vendor/v8/test/mjsunit/regress/regress-2225.js +65 -0
  579. data/vendor/v8/test/mjsunit/regress/regress-2226.js +36 -0
  580. data/vendor/v8/test/mjsunit/regress/regress-2234.js +41 -0
  581. data/vendor/v8/test/mjsunit/regress/regress-2243.js +31 -0
  582. data/vendor/v8/test/mjsunit/regress/regress-2249.js +33 -0
  583. data/vendor/v8/test/mjsunit/regress/regress-2250.js +68 -0
  584. data/vendor/v8/test/mjsunit/regress/regress-2261.js +113 -0
  585. data/vendor/v8/test/mjsunit/regress/regress-2263.js +30 -0
  586. data/vendor/v8/test/mjsunit/regress/regress-2284.js +32 -0
  587. data/vendor/v8/test/mjsunit/regress/regress-2285.js +32 -0
  588. data/vendor/v8/test/mjsunit/regress/regress-2286.js +32 -0
  589. data/vendor/v8/test/mjsunit/regress/regress-2289.js +34 -0
  590. data/vendor/v8/test/mjsunit/regress/regress-2291.js +36 -0
  591. data/vendor/v8/test/mjsunit/regress/regress-2294.js +70 -0
  592. data/vendor/v8/test/mjsunit/regress/regress-2296.js +40 -0
  593. data/vendor/v8/test/mjsunit/regress/regress-2315.js +40 -0
  594. data/vendor/v8/test/mjsunit/regress/regress-2318.js +66 -0
  595. data/vendor/v8/test/mjsunit/regress/regress-2322.js +36 -0
  596. data/vendor/v8/test/mjsunit/regress/regress-2326.js +54 -0
  597. data/vendor/v8/test/mjsunit/regress/regress-2336.js +53 -0
  598. data/vendor/v8/test/mjsunit/regress/regress-2339.js +59 -0
  599. data/vendor/v8/test/mjsunit/regress/regress-2346.js +123 -0
  600. data/vendor/v8/test/mjsunit/regress/regress-2373.js +29 -0
  601. data/vendor/v8/test/mjsunit/regress/regress-2374.js +33 -0
  602. data/vendor/v8/test/mjsunit/regress/regress-2398.js +41 -0
  603. data/vendor/v8/test/mjsunit/regress/regress-2410.js +36 -0
  604. data/vendor/v8/test/mjsunit/regress/regress-2416.js +75 -0
  605. data/vendor/v8/test/mjsunit/regress/regress-2419.js +37 -0
  606. data/vendor/v8/test/mjsunit/regress/regress-2433.js +36 -0
  607. data/vendor/v8/test/mjsunit/regress/regress-2437.js +156 -0
  608. data/vendor/v8/test/mjsunit/regress/regress-2438.js +52 -0
  609. data/vendor/v8/test/mjsunit/regress/regress-2443.js +129 -0
  610. data/vendor/v8/test/mjsunit/regress/regress-2444.js +120 -0
  611. data/vendor/v8/test/mjsunit/regress/regress-2489.js +50 -0
  612. data/vendor/v8/test/mjsunit/regress/regress-2499.js +40 -0
  613. data/vendor/v8/test/mjsunit/regress/regress-334.js +1 -1
  614. data/vendor/v8/test/mjsunit/regress/regress-492.js +39 -1
  615. data/vendor/v8/test/mjsunit/regress/regress-builtin-array-op.js +38 -0
  616. data/vendor/v8/test/mjsunit/regress/regress-cnlt-elements.js +43 -0
  617. data/vendor/v8/test/mjsunit/regress/regress-cnlt-enum-indices.js +45 -0
  618. data/vendor/v8/test/mjsunit/regress/regress-cntl-descriptors-enum.js +46 -0
  619. data/vendor/v8/test/mjsunit/regress/regress-convert-enum.js +60 -0
  620. data/vendor/v8/test/mjsunit/regress/regress-convert-enum2.js +46 -0
  621. data/vendor/v8/test/mjsunit/regress/regress-convert-transition.js +40 -0
  622. data/vendor/v8/test/mjsunit/regress/regress-crbug-119926.js +3 -1
  623. data/vendor/v8/test/mjsunit/regress/regress-crbug-125148.js +90 -0
  624. data/vendor/v8/test/mjsunit/regress/regress-crbug-134055.js +63 -0
  625. data/vendor/v8/test/mjsunit/regress/regress-crbug-134609.js +59 -0
  626. data/vendor/v8/test/mjsunit/regress/regress-crbug-135008.js +45 -0
  627. data/vendor/v8/test/mjsunit/regress/regress-crbug-135066.js +55 -0
  628. data/vendor/v8/test/mjsunit/regress/regress-crbug-137689.js +47 -0
  629. data/vendor/v8/test/mjsunit/regress/regress-crbug-138887.js +48 -0
  630. data/vendor/v8/test/mjsunit/regress/regress-crbug-140083.js +44 -0
  631. data/vendor/v8/test/mjsunit/regress/regress-crbug-142087.js +38 -0
  632. data/vendor/v8/test/mjsunit/regress/regress-crbug-142218.js +44 -0
  633. data/vendor/v8/test/mjsunit/regress/regress-crbug-145961.js +39 -0
  634. data/vendor/v8/test/mjsunit/regress/regress-crbug-146910.js +33 -0
  635. data/vendor/v8/test/mjsunit/regress/regress-crbug-147475.js +48 -0
  636. data/vendor/v8/test/mjsunit/regress/regress-crbug-148376.js +35 -0
  637. data/vendor/v8/test/mjsunit/regress/regress-crbug-150545.js +53 -0
  638. data/vendor/v8/test/mjsunit/regress/regress-crbug-150729.js +39 -0
  639. data/vendor/v8/test/mjsunit/regress/regress-crbug-157019.js +54 -0
  640. data/vendor/v8/test/mjsunit/regress/regress-crbug-157520.js +38 -0
  641. data/vendor/v8/test/mjsunit/regress/regress-crbug-158185.js +39 -0
  642. data/vendor/v8/test/mjsunit/regress/regress-crbug-160010.js +35 -0
  643. data/vendor/v8/test/mjsunit/regress/regress-crbug-162085.js +71 -0
  644. data/vendor/v8/test/mjsunit/regress/regress-crbug-168545.js +34 -0
  645. data/vendor/v8/test/mjsunit/regress/regress-crbug-170856.js +33 -0
  646. data/vendor/v8/test/mjsunit/regress/regress-crbug-172345.js +34 -0
  647. data/vendor/v8/test/mjsunit/regress/regress-crbug-173974.js +36 -0
  648. data/vendor/v8/test/mjsunit/regress/regress-crbug-18639.js +9 -5
  649. data/vendor/v8/test/mjsunit/regress/regress-debug-code-recompilation.js +2 -1
  650. data/vendor/v8/test/mjsunit/regress/regress-deep-proto.js +45 -0
  651. data/vendor/v8/test/mjsunit/regress/regress-delete-empty-double.js +40 -0
  652. data/vendor/v8/test/mjsunit/regress/regress-iteration-order.js +42 -0
  653. data/vendor/v8/test/mjsunit/regress/regress-json-stringify-gc.js +41 -0
  654. data/vendor/v8/test/mjsunit/regress/regress-latin-1.js +78 -0
  655. data/vendor/v8/test/mjsunit/regress/regress-load-elements.js +49 -0
  656. data/vendor/v8/test/mjsunit/regress/regress-observe-empty-double-array.js +38 -0
  657. data/vendor/v8/test/mjsunit/regress/regress-undefined-store-keyed-fast-element.js +37 -0
  658. data/vendor/v8/test/mjsunit/shift-for-integer-div.js +59 -0
  659. data/vendor/v8/test/mjsunit/stack-traces-gc.js +119 -0
  660. data/vendor/v8/test/mjsunit/stack-traces-overflow.js +122 -0
  661. data/vendor/v8/test/mjsunit/stack-traces.js +39 -1
  662. data/vendor/v8/test/mjsunit/str-to-num.js +7 -2
  663. data/vendor/v8/test/mjsunit/strict-mode.js +36 -11
  664. data/vendor/v8/test/mjsunit/string-charcodeat.js +3 -0
  665. data/vendor/v8/test/mjsunit/string-natives.js +72 -0
  666. data/vendor/v8/test/mjsunit/string-split.js +17 -0
  667. data/vendor/v8/test/mjsunit/testcfg.py +76 -6
  668. data/vendor/v8/test/mjsunit/tools/tickprocessor.js +4 -1
  669. data/vendor/v8/test/mjsunit/try-finally-continue.js +72 -0
  670. data/vendor/v8/test/mjsunit/typed-array-slice.js +61 -0
  671. data/vendor/v8/test/mjsunit/unbox-double-arrays.js +2 -0
  672. data/vendor/v8/test/mjsunit/uri.js +12 -0
  673. data/vendor/v8/test/mjsunit/with-readonly.js +4 -2
  674. data/vendor/v8/test/mozilla/mozilla.status +19 -113
  675. data/vendor/v8/test/mozilla/testcfg.py +122 -3
  676. data/vendor/v8/test/preparser/preparser.status +5 -0
  677. data/vendor/v8/test/preparser/strict-identifiers.pyt +1 -1
  678. data/vendor/v8/test/preparser/testcfg.py +101 -5
  679. data/vendor/v8/test/sputnik/sputnik.status +1 -1
  680. data/vendor/v8/test/sputnik/testcfg.py +5 -0
  681. data/vendor/v8/test/test262/README +2 -2
  682. data/vendor/v8/test/test262/test262.status +13 -36
  683. data/vendor/v8/test/test262/testcfg.py +102 -8
  684. data/vendor/v8/tools/android-build.sh +0 -0
  685. data/vendor/v8/tools/android-ll-prof.sh +69 -0
  686. data/vendor/v8/tools/android-run.py +109 -0
  687. data/vendor/v8/tools/android-sync.sh +105 -0
  688. data/vendor/v8/tools/bash-completion.sh +0 -0
  689. data/vendor/v8/tools/check-static-initializers.sh +0 -0
  690. data/vendor/v8/tools/common-includes.sh +15 -22
  691. data/vendor/v8/tools/disasm.py +4 -4
  692. data/vendor/v8/tools/fuzz-harness.sh +0 -0
  693. data/vendor/v8/tools/gen-postmortem-metadata.py +6 -8
  694. data/vendor/v8/tools/grokdump.py +404 -129
  695. data/vendor/v8/tools/gyp/v8.gyp +105 -43
  696. data/vendor/v8/tools/linux-tick-processor +5 -5
  697. data/vendor/v8/tools/ll_prof.py +75 -15
  698. data/vendor/v8/tools/merge-to-branch.sh +2 -2
  699. data/vendor/v8/tools/plot-timer-events +70 -0
  700. data/vendor/v8/tools/plot-timer-events.js +510 -0
  701. data/vendor/v8/tools/presubmit.py +1 -0
  702. data/vendor/v8/tools/push-to-trunk.sh +14 -4
  703. data/vendor/v8/tools/run-llprof.sh +69 -0
  704. data/vendor/v8/tools/run-tests.py +372 -0
  705. data/vendor/v8/tools/run-valgrind.py +1 -1
  706. data/vendor/v8/tools/status-file-converter.py +39 -0
  707. data/vendor/v8/tools/test-server.py +224 -0
  708. data/vendor/v8/tools/test-wrapper-gypbuild.py +13 -16
  709. data/vendor/v8/tools/test.py +10 -19
  710. data/vendor/v8/tools/testrunner/README +174 -0
  711. data/vendor/v8/tools/testrunner/__init__.py +26 -0
  712. data/vendor/v8/tools/testrunner/local/__init__.py +26 -0
  713. data/vendor/v8/tools/testrunner/local/commands.py +153 -0
  714. data/vendor/v8/tools/testrunner/local/execution.py +182 -0
  715. data/vendor/v8/tools/testrunner/local/old_statusfile.py +460 -0
  716. data/vendor/v8/tools/testrunner/local/progress.py +238 -0
  717. data/vendor/v8/tools/testrunner/local/statusfile.py +145 -0
  718. data/vendor/v8/tools/testrunner/local/testsuite.py +187 -0
  719. data/vendor/v8/tools/testrunner/local/utils.py +108 -0
  720. data/vendor/v8/tools/testrunner/local/verbose.py +99 -0
  721. data/vendor/v8/tools/testrunner/network/__init__.py +26 -0
  722. data/vendor/v8/tools/testrunner/network/distro.py +90 -0
  723. data/vendor/v8/tools/testrunner/network/endpoint.py +124 -0
  724. data/vendor/v8/tools/testrunner/network/network_execution.py +253 -0
  725. data/vendor/v8/tools/testrunner/network/perfdata.py +120 -0
  726. data/vendor/v8/tools/testrunner/objects/__init__.py +26 -0
  727. data/vendor/v8/tools/testrunner/objects/context.py +50 -0
  728. data/vendor/v8/tools/testrunner/objects/output.py +60 -0
  729. data/vendor/v8/tools/testrunner/objects/peer.py +80 -0
  730. data/vendor/v8/tools/testrunner/objects/testcase.py +83 -0
  731. data/vendor/v8/tools/testrunner/objects/workpacket.py +90 -0
  732. data/vendor/v8/tools/testrunner/server/__init__.py +26 -0
  733. data/vendor/v8/tools/testrunner/server/compression.py +111 -0
  734. data/vendor/v8/tools/testrunner/server/constants.py +51 -0
  735. data/vendor/v8/tools/testrunner/server/daemon.py +147 -0
  736. data/vendor/v8/tools/testrunner/server/local_handler.py +119 -0
  737. data/vendor/v8/tools/testrunner/server/main.py +245 -0
  738. data/vendor/v8/tools/testrunner/server/presence_handler.py +120 -0
  739. data/vendor/v8/tools/testrunner/server/signatures.py +63 -0
  740. data/vendor/v8/tools/testrunner/server/status_handler.py +112 -0
  741. data/vendor/v8/tools/testrunner/server/work_handler.py +150 -0
  742. data/vendor/v8/tools/tick-processor.html +168 -0
  743. data/vendor/v8/tools/tickprocessor-driver.js +5 -3
  744. data/vendor/v8/tools/tickprocessor.js +58 -15
  745. metadata +534 -30
  746. data/patches/add-freebsd9-and-freebsd10-to-gyp-GetFlavor.patch +0 -11
  747. data/patches/do-not-imply-vfp3-and-armv7.patch +0 -44
  748. data/patches/fPIC-on-x64.patch +0 -14
  749. data/vendor/v8/src/liveobjectlist-inl.h +0 -126
  750. data/vendor/v8/src/liveobjectlist.cc +0 -2631
  751. data/vendor/v8/src/liveobjectlist.h +0 -319
  752. data/vendor/v8/test/mjsunit/mul-exhaustive.js +0 -4629
  753. data/vendor/v8/test/mjsunit/numops-fuzz.js +0 -4609
  754. data/vendor/v8/test/mjsunit/regress/regress-1969.js +0 -5045
data/vendor/v8/src/debug.h CHANGED
@@ -189,7 +189,9 @@ class ScriptCache : private HashMap {
189
189
  void Clear();
190
190
 
191
191
  // Weak handle callback for scripts in the cache.
192
- static void HandleWeakScript(v8::Persistent<v8::Value> obj, void* data);
192
+ static void HandleWeakScript(v8::Isolate* isolate,
193
+ v8::Persistent<v8::Value> obj,
194
+ void* data);
193
195
 
194
196
  // List used during GC to temporarily store id's of collected scripts.
195
197
  List<int> collected_scripts_;
@@ -232,19 +234,16 @@ class Debug {
232
234
  void PreemptionWhileInDebugger();
233
235
  void Iterate(ObjectVisitor* v);
234
236
 
235
- NO_INLINE(void PutValuesOnStackAndDie(int start,
236
- Address c_entry_fp,
237
- Address last_fp,
238
- Address larger_fp,
239
- int count,
240
- int end));
241
237
  Object* Break(Arguments args);
242
- void SetBreakPoint(Handle<SharedFunctionInfo> shared,
238
+ void SetBreakPoint(Handle<JSFunction> function,
243
239
  Handle<Object> break_point_object,
244
240
  int* source_position);
241
+ bool SetBreakPointForScript(Handle<Script> script,
242
+ Handle<Object> break_point_object,
243
+ int* source_position);
245
244
  void ClearBreakPoint(Handle<Object> break_point_object);
246
245
  void ClearAllBreakPoints();
247
- void FloodWithOneShot(Handle<SharedFunctionInfo> shared);
246
+ void FloodWithOneShot(Handle<JSFunction> function);
248
247
  void FloodBoundFunctionWithOneShot(Handle<JSFunction> function);
249
248
  void FloodHandlerWithOneShot();
250
249
  void ChangeBreakOnException(ExceptionBreakType type, bool enable);
@@ -260,8 +259,14 @@ class Debug {
260
259
 
261
260
  void PrepareForBreakPoints();
262
261
 
263
- // Returns whether the operation succeeded.
264
- bool EnsureDebugInfo(Handle<SharedFunctionInfo> shared);
262
+ // This function is used in FunctionNameUsing* tests.
263
+ Object* FindSharedFunctionInfoInScript(Handle<Script> script, int position);
264
+
265
+ // Returns whether the operation succeeded. Compilation can only be triggered
266
+ // if a valid closure is passed as the second argument, otherwise the shared
267
+ // function needs to be compiled already.
268
+ bool EnsureDebugInfo(Handle<SharedFunctionInfo> shared,
269
+ Handle<JSFunction> function);
265
270
 
266
271
  // Returns true if the current stub call is patched to call the debugger.
267
272
  static bool IsDebugBreak(Address addr);
@@ -381,7 +386,9 @@ class Debug {
381
386
  static const int kEstimatedNofBreakPointsInFunction = 16;
382
387
 
383
388
  // Passed to MakeWeak.
384
- static void HandleWeakDebugInfo(v8::Persistent<v8::Value> obj, void* data);
389
+ static void HandleWeakDebugInfo(v8::Isolate* isolate,
390
+ v8::Persistent<v8::Value> obj,
391
+ void* data);
385
392
 
386
393
  friend class Debugger;
387
394
  friend Handle<FixedArray> GetDebuggedFunctions(); // In test-debug.cc
@@ -440,7 +447,8 @@ class Debug {
440
447
  // The top JS frame had been calling some C++ function. The return address
441
448
  // gets patched automatically.
442
449
  FRAME_DROPPED_IN_DIRECT_CALL,
443
- FRAME_DROPPED_IN_RETURN_CALL
450
+ FRAME_DROPPED_IN_RETURN_CALL,
451
+ CURRENTLY_SET_MODE
444
452
  };
445
453
 
446
454
  void FramesHaveBeenDropped(StackFrame::Id new_break_frame_id,
@@ -789,7 +797,6 @@ class Debugger {
789
797
  };
790
798
  void OnAfterCompile(Handle<Script> script,
791
799
  AfterCompileFlags after_compile_flags);
792
- void OnNewFunction(Handle<JSFunction> fun);
793
800
  void OnScriptCollected(int id);
794
801
  void ProcessDebugEvent(v8::DebugEvent event,
795
802
  Handle<JSObject> event_data,
@@ -871,6 +878,10 @@ class Debugger {
871
878
  bool compiling_natives() const { return compiling_natives_; }
872
879
  void set_loading_debugger(bool v) { is_loading_debugger_ = v; }
873
880
  bool is_loading_debugger() const { return is_loading_debugger_; }
881
+ void set_live_edit_enabled(bool v) { live_edit_enabled_ = v; }
882
+ bool live_edit_enabled() const {
883
+ return FLAG_enable_liveedit && live_edit_enabled_ ;
884
+ }
874
885
  void set_force_debugger_active(bool force_debugger_active) {
875
886
  force_debugger_active_ = force_debugger_active;
876
887
  }
@@ -899,6 +910,7 @@ class Debugger {
899
910
  Handle<Object> event_listener_data_;
900
911
  bool compiling_natives_; // Are we compiling natives?
901
912
  bool is_loading_debugger_; // Are we loading the debugger?
913
+ bool live_edit_enabled_; // Enable LiveEdit.
902
914
  bool never_unload_debugger_; // Can we unload the debugger?
903
915
  bool force_debugger_active_; // Activate debugger without event listeners.
904
916
  v8::Debug::MessageHandler2 message_handler_;
data/vendor/v8/src/deoptimizer.cc CHANGED
@@ -1,4 +1,4 @@
1
- // Copyright 2012 the V8 project authors. All rights reserved.
1
+ // Copyright 2013 the V8 project authors. All rights reserved.
2
2
  // Redistribution and use in source and binary forms, with or without
3
3
  // modification, are permitted provided that the following conditions are
4
4
  // met:
@@ -27,6 +27,7 @@
27
27
 
28
28
  #include "v8.h"
29
29
 
30
+ #include "accessors.h"
30
31
  #include "codegen.h"
31
32
  #include "deoptimizer.h"
32
33
  #include "disasm.h"
@@ -40,8 +41,21 @@ namespace v8 {
40
41
  namespace internal {
41
42
 
42
43
  DeoptimizerData::DeoptimizerData() {
43
- eager_deoptimization_entry_code_ = NULL;
44
- lazy_deoptimization_entry_code_ = NULL;
44
+ eager_deoptimization_entry_code_entries_ = -1;
45
+ lazy_deoptimization_entry_code_entries_ = -1;
46
+ size_t deopt_table_size = Deoptimizer::GetMaxDeoptTableSize();
47
+ MemoryAllocator* allocator = Isolate::Current()->memory_allocator();
48
+ size_t initial_commit_size = OS::CommitPageSize();
49
+ eager_deoptimization_entry_code_ =
50
+ allocator->AllocateChunk(deopt_table_size,
51
+ initial_commit_size,
52
+ EXECUTABLE,
53
+ NULL);
54
+ lazy_deoptimization_entry_code_ =
55
+ allocator->AllocateChunk(deopt_table_size,
56
+ initial_commit_size,
57
+ EXECUTABLE,
58
+ NULL);
45
59
  current_ = NULL;
46
60
  deoptimizing_code_list_ = NULL;
47
61
  #ifdef ENABLE_DEBUGGER_SUPPORT
@@ -51,16 +65,20 @@ DeoptimizerData::DeoptimizerData() {
51
65
 
52
66
 
53
67
  DeoptimizerData::~DeoptimizerData() {
54
- if (eager_deoptimization_entry_code_ != NULL) {
55
- Isolate::Current()->memory_allocator()->Free(
56
- eager_deoptimization_entry_code_);
57
- eager_deoptimization_entry_code_ = NULL;
58
- }
59
- if (lazy_deoptimization_entry_code_ != NULL) {
60
- Isolate::Current()->memory_allocator()->Free(
61
- lazy_deoptimization_entry_code_);
62
- lazy_deoptimization_entry_code_ = NULL;
68
+ Isolate::Current()->memory_allocator()->Free(
69
+ eager_deoptimization_entry_code_);
70
+ eager_deoptimization_entry_code_ = NULL;
71
+ Isolate::Current()->memory_allocator()->Free(
72
+ lazy_deoptimization_entry_code_);
73
+ lazy_deoptimization_entry_code_ = NULL;
74
+
75
+ DeoptimizingCodeListNode* current = deoptimizing_code_list_;
76
+ while (current != NULL) {
77
+ DeoptimizingCodeListNode* prev = current;
78
+ current = current->next();
79
+ delete prev;
63
80
  }
81
+ deoptimizing_code_list_ = NULL;
64
82
  }
65
83
 
66
84
 
@@ -73,6 +91,36 @@ void DeoptimizerData::Iterate(ObjectVisitor* v) {
73
91
  #endif
74
92
 
75
93
 
94
+ Code* DeoptimizerData::FindDeoptimizingCode(Address addr) {
95
+ for (DeoptimizingCodeListNode* node = deoptimizing_code_list_;
96
+ node != NULL;
97
+ node = node->next()) {
98
+ if (node->code()->contains(addr)) return *node->code();
99
+ }
100
+ return NULL;
101
+ }
102
+
103
+
104
+ void DeoptimizerData::RemoveDeoptimizingCode(Code* code) {
105
+ for (DeoptimizingCodeListNode *prev = NULL, *cur = deoptimizing_code_list_;
106
+ cur != NULL;
107
+ prev = cur, cur = cur->next()) {
108
+ if (*cur->code() == code) {
109
+ if (prev == NULL) {
110
+ deoptimizing_code_list_ = cur->next();
111
+ } else {
112
+ prev->set_next(cur->next());
113
+ }
114
+ delete cur;
115
+ return;
116
+ }
117
+ }
118
+ // Deoptimizing code is removed through weak callback. Each object is expected
119
+ // to be removed once and only once.
120
+ UNREACHABLE();
121
+ }
122
+
123
+
76
124
  // We rely on this function not causing a GC. It is called from generated code
77
125
  // without having a real stack frame in place.
78
126
  Deoptimizer* Deoptimizer::New(JSFunction* function,
@@ -95,6 +143,20 @@ Deoptimizer* Deoptimizer::New(JSFunction* function,
95
143
  }
96
144
 
97
145
 
146
+ // No larger than 2K on all platforms
147
+ static const int kDeoptTableMaxEpilogueCodeSize = 2 * KB;
148
+
149
+
150
+ size_t Deoptimizer::GetMaxDeoptTableSize() {
151
+ int entries_size =
152
+ Deoptimizer::kMaxNumberOfEntries * Deoptimizer::table_entry_size_;
153
+ int commit_page_size = static_cast<int>(OS::CommitPageSize());
154
+ int page_count = ((kDeoptTableMaxEpilogueCodeSize + entries_size - 1) /
155
+ commit_page_size) + 1;
156
+ return static_cast<size_t>(commit_page_size * page_count);
157
+ }
158
+
159
+
98
160
  Deoptimizer* Deoptimizer::Grab(Isolate* isolate) {
99
161
  ASSERT(isolate == Isolate::Current());
100
162
  Deoptimizer* result = isolate->deoptimizer_data()->current_;
@@ -227,110 +289,198 @@ void Deoptimizer::GenerateDeoptimizationEntries(MacroAssembler* masm,
227
289
  }
228
290
 
229
291
 
230
- class DeoptimizingVisitor : public OptimizedFunctionVisitor {
231
- public:
232
- virtual void EnterContext(Context* context) {
233
- if (FLAG_trace_deopt) {
234
- PrintF("[deoptimize context: %" V8PRIxPTR "]\n",
235
- reinterpret_cast<intptr_t>(context));
236
- }
237
- }
292
+ void Deoptimizer::VisitAllOptimizedFunctionsForContext(
293
+ Context* context, OptimizedFunctionVisitor* visitor) {
294
+ Isolate* isolate = context->GetIsolate();
295
+ ZoneScope zone_scope(isolate->runtime_zone(), DELETE_ON_EXIT);
296
+ AssertNoAllocation no_allocation;
238
297
 
239
- virtual void VisitFunction(JSFunction* function) {
240
- Deoptimizer::DeoptimizeFunction(function);
298
+ ASSERT(context->IsNativeContext());
299
+
300
+ visitor->EnterContext(context);
301
+
302
+ // Create a snapshot of the optimized functions list. This is needed because
303
+ // visitors might remove more than one link from the list at once.
304
+ ZoneList<JSFunction*> snapshot(1, isolate->runtime_zone());
305
+ Object* element = context->OptimizedFunctionsListHead();
306
+ while (!element->IsUndefined()) {
307
+ JSFunction* element_function = JSFunction::cast(element);
308
+ snapshot.Add(element_function, isolate->runtime_zone());
309
+ element = element_function->next_function_link();
241
310
  }
242
311
 
243
- virtual void LeaveContext(Context* context) {
244
- context->ClearOptimizedFunctions();
312
+ // Run through the snapshot of optimized functions and visit them.
313
+ for (int i = 0; i < snapshot.length(); ++i) {
314
+ visitor->VisitFunction(snapshot.at(i));
245
315
  }
246
- };
247
316
 
317
+ visitor->LeaveContext(context);
318
+ }
248
319
 
249
- void Deoptimizer::DeoptimizeAll() {
320
+
321
+ void Deoptimizer::VisitAllOptimizedFunctions(
322
+ OptimizedFunctionVisitor* visitor) {
250
323
  AssertNoAllocation no_allocation;
251
324
 
252
- if (FLAG_trace_deopt) {
253
- PrintF("[deoptimize all contexts]\n");
325
+ // Run through the list of all native contexts and deoptimize.
326
+ Object* context = Isolate::Current()->heap()->native_contexts_list();
327
+ while (!context->IsUndefined()) {
328
+ VisitAllOptimizedFunctionsForContext(Context::cast(context), visitor);
329
+ context = Context::cast(context)->get(Context::NEXT_CONTEXT_LINK);
254
330
  }
255
-
256
- DeoptimizingVisitor visitor;
257
- VisitAllOptimizedFunctions(&visitor);
258
331
  }
259
332
 
260
333
 
261
- void Deoptimizer::DeoptimizeGlobalObject(JSObject* object) {
334
+ // Removes the functions selected by the given filter from the optimized
335
+ // function list of the given context and partitions the removed functions
336
+ // into one or more lists such that all functions in a list share the same
337
+ // code. The head of each list is written in the deoptimizing_functions field
338
+ // of the corresponding code object.
339
+ // The found code objects are returned in the given zone list.
340
+ static void PartitionOptimizedFunctions(Context* context,
341
+ OptimizedFunctionFilter* filter,
342
+ ZoneList<Code*>* partitions,
343
+ Zone* zone,
344
+ Object* undefined) {
262
345
  AssertNoAllocation no_allocation;
263
-
264
- DeoptimizingVisitor visitor;
265
- VisitAllOptimizedFunctionsForGlobalObject(object, &visitor);
346
+ Object* current = context->get(Context::OPTIMIZED_FUNCTIONS_LIST);
347
+ Object* remainder_head = undefined;
348
+ Object* remainder_tail = undefined;
349
+ ASSERT_EQ(0, partitions->length());
350
+ while (current != undefined) {
351
+ JSFunction* function = JSFunction::cast(current);
352
+ current = function->next_function_link();
353
+ if (filter->TakeFunction(function)) {
354
+ Code* code = function->code();
355
+ if (code->deoptimizing_functions() == undefined) {
356
+ partitions->Add(code, zone);
357
+ } else {
358
+ ASSERT(partitions->Contains(code));
359
+ }
360
+ function->set_next_function_link(code->deoptimizing_functions());
361
+ code->set_deoptimizing_functions(function);
362
+ } else {
363
+ if (remainder_head == undefined) {
364
+ remainder_head = function;
365
+ } else {
366
+ JSFunction::cast(remainder_tail)->set_next_function_link(function);
367
+ }
368
+ remainder_tail = function;
369
+ }
370
+ }
371
+ if (remainder_tail != undefined) {
372
+ JSFunction::cast(remainder_tail)->set_next_function_link(undefined);
373
+ }
374
+ context->set(Context::OPTIMIZED_FUNCTIONS_LIST, remainder_head);
266
375
  }
267
376
 
268
377
 
269
- void Deoptimizer::VisitAllOptimizedFunctionsForContext(
270
- Context* context, OptimizedFunctionVisitor* visitor) {
271
- AssertNoAllocation no_allocation;
378
+ class DeoptimizeAllFilter : public OptimizedFunctionFilter {
379
+ public:
380
+ virtual bool TakeFunction(JSFunction* function) {
381
+ return true;
382
+ }
383
+ };
272
384
 
273
- ASSERT(context->IsGlobalContext());
274
385
 
275
- visitor->EnterContext(context);
276
- // Run through the list of optimized functions and deoptimize them.
277
- Object* element = context->OptimizedFunctionsListHead();
278
- while (!element->IsUndefined()) {
279
- JSFunction* element_function = JSFunction::cast(element);
280
- // Get the next link before deoptimizing as deoptimizing will clear the
281
- // next link.
282
- element = element_function->next_function_link();
283
- visitor->VisitFunction(element_function);
386
+ class DeoptimizeWithMatchingCodeFilter : public OptimizedFunctionFilter {
387
+ public:
388
+ explicit DeoptimizeWithMatchingCodeFilter(Code* code) : code_(code) {}
389
+ virtual bool TakeFunction(JSFunction* function) {
390
+ return function->code() == code_;
284
391
  }
285
- visitor->LeaveContext(context);
286
- }
392
+ private:
393
+ Code* code_;
394
+ };
287
395
 
288
396
 
289
- void Deoptimizer::VisitAllOptimizedFunctionsForGlobalObject(
290
- JSObject* object, OptimizedFunctionVisitor* visitor) {
397
+ void Deoptimizer::DeoptimizeAll() {
291
398
  AssertNoAllocation no_allocation;
292
399
 
400
+ if (FLAG_trace_deopt) {
401
+ PrintF("[deoptimize all contexts]\n");
402
+ }
403
+
404
+ DeoptimizeAllFilter filter;
405
+ DeoptimizeAllFunctionsWith(&filter);
406
+ }
407
+
408
+
409
+ void Deoptimizer::DeoptimizeGlobalObject(JSObject* object) {
410
+ AssertNoAllocation no_allocation;
411
+ DeoptimizeAllFilter filter;
293
412
  if (object->IsJSGlobalProxy()) {
294
413
  Object* proto = object->GetPrototype();
295
414
  ASSERT(proto->IsJSGlobalObject());
296
- VisitAllOptimizedFunctionsForContext(
297
- GlobalObject::cast(proto)->global_context(), visitor);
415
+ DeoptimizeAllFunctionsForContext(
416
+ GlobalObject::cast(proto)->native_context(), &filter);
298
417
  } else if (object->IsGlobalObject()) {
299
- VisitAllOptimizedFunctionsForContext(
300
- GlobalObject::cast(object)->global_context(), visitor);
418
+ DeoptimizeAllFunctionsForContext(
419
+ GlobalObject::cast(object)->native_context(), &filter);
301
420
  }
302
421
  }
303
422
 
304
423
 
305
- void Deoptimizer::VisitAllOptimizedFunctions(
306
- OptimizedFunctionVisitor* visitor) {
424
+ void Deoptimizer::DeoptimizeFunction(JSFunction* function) {
425
+ if (!function->IsOptimized()) return;
426
+ Code* code = function->code();
427
+ Context* context = function->context()->native_context();
428
+ Isolate* isolate = context->GetIsolate();
429
+ Object* undefined = isolate->heap()->undefined_value();
430
+ Zone* zone = isolate->runtime_zone();
431
+ ZoneScope zone_scope(zone, DELETE_ON_EXIT);
432
+ ZoneList<Code*> codes(1, zone);
433
+ DeoptimizeWithMatchingCodeFilter filter(code);
434
+ PartitionOptimizedFunctions(context, &filter, &codes, zone, undefined);
435
+ ASSERT_EQ(1, codes.length());
436
+ DeoptimizeFunctionWithPreparedFunctionList(
437
+ JSFunction::cast(codes.at(0)->deoptimizing_functions()));
438
+ codes.at(0)->set_deoptimizing_functions(undefined);
439
+ }
440
+
441
+
442
+ void Deoptimizer::DeoptimizeAllFunctionsForContext(
443
+ Context* context, OptimizedFunctionFilter* filter) {
444
+ ASSERT(context->IsNativeContext());
445
+ Isolate* isolate = context->GetIsolate();
446
+ Object* undefined = isolate->heap()->undefined_value();
447
+ Zone* zone = isolate->runtime_zone();
448
+ ZoneScope zone_scope(zone, DELETE_ON_EXIT);
449
+ ZoneList<Code*> codes(1, zone);
450
+ PartitionOptimizedFunctions(context, filter, &codes, zone, undefined);
451
+ for (int i = 0; i < codes.length(); ++i) {
452
+ DeoptimizeFunctionWithPreparedFunctionList(
453
+ JSFunction::cast(codes.at(i)->deoptimizing_functions()));
454
+ codes.at(i)->set_deoptimizing_functions(undefined);
455
+ }
456
+ }
457
+
458
+
459
+ void Deoptimizer::DeoptimizeAllFunctionsWith(OptimizedFunctionFilter* filter) {
307
460
  AssertNoAllocation no_allocation;
308
461
 
309
- // Run through the list of all global contexts and deoptimize.
310
- Object* context = Isolate::Current()->heap()->global_contexts_list();
462
+ // Run through the list of all native contexts and deoptimize.
463
+ Object* context = Isolate::Current()->heap()->native_contexts_list();
311
464
  while (!context->IsUndefined()) {
312
- // GC can happen when the context is not fully initialized,
313
- // so the global field of the context can be undefined.
314
- Object* global = Context::cast(context)->get(Context::GLOBAL_INDEX);
315
- if (!global->IsUndefined()) {
316
- VisitAllOptimizedFunctionsForGlobalObject(JSObject::cast(global),
317
- visitor);
318
- }
465
+ DeoptimizeAllFunctionsForContext(Context::cast(context), filter);
319
466
  context = Context::cast(context)->get(Context::NEXT_CONTEXT_LINK);
320
467
  }
321
468
  }
322
469
 
323
470
 
324
- void Deoptimizer::HandleWeakDeoptimizedCode(
325
- v8::Persistent<v8::Value> obj, void* data) {
471
+ void Deoptimizer::HandleWeakDeoptimizedCode(v8::Isolate* isolate,
472
+ v8::Persistent<v8::Value> obj,
473
+ void* parameter) {
326
474
  DeoptimizingCodeListNode* node =
327
- reinterpret_cast<DeoptimizingCodeListNode*>(data);
328
- RemoveDeoptimizingCode(*node->code());
475
+ reinterpret_cast<DeoptimizingCodeListNode*>(parameter);
476
+ DeoptimizerData* data =
477
+ reinterpret_cast<Isolate*>(isolate)->deoptimizer_data();
478
+ data->RemoveDeoptimizingCode(*node->code());
329
479
  #ifdef DEBUG
330
- node = Isolate::Current()->deoptimizer_data()->deoptimizing_code_list_;
331
- while (node != NULL) {
332
- ASSERT(node != reinterpret_cast<DeoptimizingCodeListNode*>(data));
333
- node = node->next();
480
+ for (DeoptimizingCodeListNode* current = data->deoptimizing_code_list_;
481
+ current != NULL;
482
+ current = current->next()) {
483
+ ASSERT(current != node);
334
484
  }
335
485
  #endif
336
486
  }
@@ -341,6 +491,38 @@ void Deoptimizer::ComputeOutputFrames(Deoptimizer* deoptimizer) {
341
491
  }
342
492
 
343
493
 
494
+ bool Deoptimizer::TraceEnabledFor(BailoutType deopt_type,
495
+ StackFrame::Type frame_type) {
496
+ switch (deopt_type) {
497
+ case EAGER:
498
+ case LAZY:
499
+ case DEBUGGER:
500
+ return (frame_type == StackFrame::STUB)
501
+ ? FLAG_trace_stub_failures
502
+ : FLAG_trace_deopt;
503
+ case OSR:
504
+ return FLAG_trace_osr;
505
+ }
506
+ UNREACHABLE();
507
+ return false;
508
+ }
509
+
510
+
511
+ const char* Deoptimizer::MessageFor(BailoutType type) {
512
+ switch (type) {
513
+ case EAGER:
514
+ case LAZY:
515
+ return "DEOPT";
516
+ case DEBUGGER:
517
+ return "DEOPT FOR DEBUGGER";
518
+ case OSR:
519
+ return "OSR";
520
+ }
521
+ UNREACHABLE();
522
+ return NULL;
523
+ }
524
+
525
+
344
526
  Deoptimizer::Deoptimizer(Isolate* isolate,
345
527
  JSFunction* function,
346
528
  BailoutType type,
@@ -354,72 +536,84 @@ Deoptimizer::Deoptimizer(Isolate* isolate,
354
536
  bailout_type_(type),
355
537
  from_(from),
356
538
  fp_to_sp_delta_(fp_to_sp_delta),
539
+ has_alignment_padding_(0),
357
540
  input_(NULL),
358
541
  output_count_(0),
359
542
  jsframe_count_(0),
360
543
  output_(NULL),
361
- deferred_heap_numbers_(0) {
362
- if (FLAG_trace_deopt && type != OSR) {
363
- if (type == DEBUGGER) {
364
- PrintF("**** DEOPT FOR DEBUGGER: ");
365
- } else {
366
- PrintF("**** DEOPT: ");
367
- }
368
- function->PrintName();
369
- PrintF(" at bailout #%u, address 0x%" V8PRIxPTR ", frame size %d\n",
370
- bailout_id,
371
- reinterpret_cast<intptr_t>(from),
372
- fp_to_sp_delta - (2 * kPointerSize));
373
- } else if (FLAG_trace_osr && type == OSR) {
374
- PrintF("**** OSR: ");
375
- function->PrintName();
376
- PrintF(" at ast id #%u, address 0x%" V8PRIxPTR ", frame size %d\n",
377
- bailout_id,
378
- reinterpret_cast<intptr_t>(from),
379
- fp_to_sp_delta - (2 * kPointerSize));
380
- }
381
- // Find the optimized code.
382
- if (type == EAGER) {
383
- ASSERT(from == NULL);
384
- optimized_code_ = function_->code();
385
- if (FLAG_trace_deopt && FLAG_code_comments) {
386
- // Print instruction associated with this bailout.
387
- const char* last_comment = NULL;
388
- int mask = RelocInfo::ModeMask(RelocInfo::COMMENT)
389
- | RelocInfo::ModeMask(RelocInfo::RUNTIME_ENTRY);
390
- for (RelocIterator it(optimized_code_, mask); !it.done(); it.next()) {
391
- RelocInfo* info = it.rinfo();
392
- if (info->rmode() == RelocInfo::COMMENT) {
393
- last_comment = reinterpret_cast<const char*>(info->data());
394
- }
395
- if (info->rmode() == RelocInfo::RUNTIME_ENTRY) {
396
- unsigned id = Deoptimizer::GetDeoptimizationId(
397
- info->target_address(), Deoptimizer::EAGER);
398
- if (id == bailout_id && last_comment != NULL) {
399
- PrintF(" %s\n", last_comment);
400
- break;
401
- }
402
- }
403
- }
404
- }
405
- } else if (type == LAZY) {
406
- optimized_code_ = FindDeoptimizingCodeFromAddress(from);
407
- ASSERT(optimized_code_ != NULL);
408
- } else if (type == OSR) {
409
- // The function has already been optimized and we're transitioning
410
- // from the unoptimized shared version to the optimized one in the
411
- // function. The return address (from) points to unoptimized code.
412
- optimized_code_ = function_->code();
413
- ASSERT(optimized_code_->kind() == Code::OPTIMIZED_FUNCTION);
414
- ASSERT(!optimized_code_->contains(from));
415
- } else if (type == DEBUGGER) {
416
- optimized_code_ = optimized_code;
417
- ASSERT(optimized_code_->contains(from));
544
+ deferred_arguments_objects_values_(0),
545
+ deferred_arguments_objects_(0),
546
+ deferred_heap_numbers_(0),
547
+ trace_(false) {
548
+ // For COMPILED_STUBs called from builtins, the function pointer is a SMI
549
+ // indicating an internal frame.
550
+ if (function->IsSmi()) {
551
+ function = NULL;
552
+ }
553
+ if (function != NULL && function->IsOptimized()) {
554
+ function->shared()->increment_deopt_count();
418
555
  }
556
+ compiled_code_ = FindOptimizedCode(function, optimized_code);
557
+ StackFrame::Type frame_type = function == NULL
558
+ ? StackFrame::STUB
559
+ : StackFrame::JAVA_SCRIPT;
560
+ trace_ = TraceEnabledFor(type, frame_type);
561
+ if (trace_) Trace();
419
562
  ASSERT(HEAP->allow_allocation(false));
420
563
  unsigned size = ComputeInputFrameSize();
421
564
  input_ = new(size) FrameDescription(size, function);
422
- input_->SetFrameType(StackFrame::JAVA_SCRIPT);
565
+ input_->SetFrameType(frame_type);
566
+ }
567
+
568
+
569
+ Code* Deoptimizer::FindOptimizedCode(JSFunction* function,
570
+ Code* optimized_code) {
571
+ switch (bailout_type_) {
572
+ case Deoptimizer::EAGER:
573
+ ASSERT(from_ == NULL);
574
+ return function->code();
575
+ case Deoptimizer::LAZY: {
576
+ Code* compiled_code =
577
+ isolate_->deoptimizer_data()->FindDeoptimizingCode(from_);
578
+ return (compiled_code == NULL)
579
+ ? static_cast<Code*>(isolate_->heap()->FindCodeObject(from_))
580
+ : compiled_code;
581
+ }
582
+ case Deoptimizer::OSR: {
583
+ // The function has already been optimized and we're transitioning
584
+ // from the unoptimized shared version to the optimized one in the
585
+ // function. The return address (from_) points to unoptimized code.
586
+ Code* compiled_code = function->code();
587
+ ASSERT(compiled_code->kind() == Code::OPTIMIZED_FUNCTION);
588
+ ASSERT(!compiled_code->contains(from_));
589
+ return compiled_code;
590
+ }
591
+ case Deoptimizer::DEBUGGER:
592
+ ASSERT(optimized_code->contains(from_));
593
+ return optimized_code;
594
+ }
595
+ UNREACHABLE();
596
+ return NULL;
597
+ }
598
+
599
+
600
+ void Deoptimizer::Trace() {
601
+ PrintF("**** %s: ", Deoptimizer::MessageFor(bailout_type_));
602
+ PrintFunctionName();
603
+ PrintF(" at id #%u, address 0x%" V8PRIxPTR ", frame size %d\n",
604
+ bailout_id_,
605
+ reinterpret_cast<intptr_t>(from_),
606
+ fp_to_sp_delta_ - (2 * kPointerSize));
607
+ if (bailout_type_ == EAGER) compiled_code_->PrintDeoptLocation(bailout_id_);
608
+ }
609
+
610
+
611
+ void Deoptimizer::PrintFunctionName() {
612
+ if (function_->IsJSFunction()) {
613
+ function_->PrintName();
614
+ } else {
615
+ PrintF("%s", Code::Kind2String(compiled_code_->kind()));
616
+ }
423
617
  }
424
618
 
425
619
 
@@ -440,24 +634,24 @@ void Deoptimizer::DeleteFrameDescriptions() {
440
634
  }
441
635
 
442
636
 
443
- Address Deoptimizer::GetDeoptimizationEntry(int id, BailoutType type) {
637
+ Address Deoptimizer::GetDeoptimizationEntry(int id,
638
+ BailoutType type,
639
+ GetEntryMode mode) {
444
640
  ASSERT(id >= 0);
445
- if (id >= kNumberOfEntries) return NULL;
641
+ if (id >= kMaxNumberOfEntries) return NULL;
446
642
  MemoryChunk* base = NULL;
643
+ if (mode == ENSURE_ENTRY_CODE) {
644
+ EnsureCodeForDeoptimizationEntry(type, id);
645
+ } else {
646
+ ASSERT(mode == CALCULATE_ENTRY_ADDRESS);
647
+ }
447
648
  DeoptimizerData* data = Isolate::Current()->deoptimizer_data();
448
649
  if (type == EAGER) {
449
- if (data->eager_deoptimization_entry_code_ == NULL) {
450
- data->eager_deoptimization_entry_code_ = CreateCode(type);
451
- }
452
650
  base = data->eager_deoptimization_entry_code_;
453
651
  } else {
454
- if (data->lazy_deoptimization_entry_code_ == NULL) {
455
- data->lazy_deoptimization_entry_code_ = CreateCode(type);
456
- }
457
652
  base = data->lazy_deoptimization_entry_code_;
458
653
  }
459
- return
460
- static_cast<Address>(base->area_start()) + (id * table_entry_size_);
654
+ return base->area_start() + (id * table_entry_size_);
461
655
  }
462
656
 
463
657
 
@@ -469,32 +663,31 @@ int Deoptimizer::GetDeoptimizationId(Address addr, BailoutType type) {
469
663
  } else {
470
664
  base = data->lazy_deoptimization_entry_code_;
471
665
  }
666
+ Address start = base->area_start();
472
667
  if (base == NULL ||
473
- addr < base->area_start() ||
474
- addr >= base->area_start() +
475
- (kNumberOfEntries * table_entry_size_)) {
668
+ addr < start ||
669
+ addr >= start + (kMaxNumberOfEntries * table_entry_size_)) {
476
670
  return kNotDeoptimizationEntry;
477
671
  }
478
672
  ASSERT_EQ(0,
479
- static_cast<int>(addr - base->area_start()) % table_entry_size_);
480
- return static_cast<int>(addr - base->area_start()) / table_entry_size_;
673
+ static_cast<int>(addr - start) % table_entry_size_);
674
+ return static_cast<int>(addr - start) / table_entry_size_;
481
675
  }
482
676
 
483
677
 
484
678
  int Deoptimizer::GetOutputInfo(DeoptimizationOutputData* data,
485
- unsigned id,
679
+ BailoutId id,
486
680
  SharedFunctionInfo* shared) {
487
681
  // TODO(kasperl): For now, we do a simple linear search for the PC
488
682
  // offset associated with the given node id. This should probably be
489
683
  // changed to a binary search.
490
684
  int length = data->DeoptPoints();
491
- Smi* smi_id = Smi::FromInt(id);
492
685
  for (int i = 0; i < length; i++) {
493
- if (data->AstId(i) == smi_id) {
686
+ if (data->AstId(i) == id) {
494
687
  return data->PcAndState(i)->value();
495
688
  }
496
689
  }
497
- PrintF("[couldn't find pc offset for node=%u]\n", id);
690
+ PrintF("[couldn't find pc offset for node=%d]\n", id.ToInt());
498
691
  PrintF("[method: %s]\n", *shared->DebugName()->ToCString());
499
692
  // Print the source code if available.
500
693
  HeapStringAllocator string_allocator;
@@ -502,7 +695,7 @@ int Deoptimizer::GetOutputInfo(DeoptimizationOutputData* data,
502
695
  shared->SourceCodePrint(&stream, -1);
503
696
  PrintF("[source:\n%s\n]", *stream.ToCString());
504
697
 
505
- UNREACHABLE();
698
+ FATAL("unable to find pc offset during deoptimization");
506
699
  return -1;
507
700
  }
508
701
 
@@ -529,19 +722,19 @@ void Deoptimizer::DoComputeOutputFrames() {
529
722
 
530
723
  // Print some helpful diagnostic information.
531
724
  int64_t start = OS::Ticks();
532
- if (FLAG_trace_deopt) {
725
+ if (trace_) {
533
726
  PrintF("[deoptimizing%s: begin 0x%08" V8PRIxPTR " ",
534
727
  (bailout_type_ == LAZY ? " (lazy)" : ""),
535
728
  reinterpret_cast<intptr_t>(function_));
536
- function_->PrintName();
729
+ PrintFunctionName();
537
730
  PrintF(" @%d]\n", bailout_id_);
538
731
  }
539
732
 
540
733
  // Determine basic deoptimization information. The optimized frame is
541
734
  // described by the input data.
542
735
  DeoptimizationInputData* input_data =
543
- DeoptimizationInputData::cast(optimized_code_->deoptimization_data());
544
- unsigned node_id = input_data->AstId(bailout_id_)->value();
736
+ DeoptimizationInputData::cast(compiled_code_->deoptimization_data());
737
+ BailoutId node_id = input_data->AstId(bailout_id_);
545
738
  ByteArray* translations = input_data->TranslationByteArray();
546
739
  unsigned translation_index =
547
740
  input_data->TranslationIndex(bailout_id_)->value();
@@ -579,6 +772,27 @@ void Deoptimizer::DoComputeOutputFrames() {
579
772
  case Translation::CONSTRUCT_STUB_FRAME:
580
773
  DoComputeConstructStubFrame(&iterator, i);
581
774
  break;
775
+ case Translation::GETTER_STUB_FRAME:
776
+ DoComputeAccessorStubFrame(&iterator, i, false);
777
+ break;
778
+ case Translation::SETTER_STUB_FRAME:
779
+ DoComputeAccessorStubFrame(&iterator, i, true);
780
+ break;
781
+ case Translation::COMPILED_STUB_FRAME:
782
+ DoCompiledStubFrame(&iterator, i);
783
+ break;
784
+ case Translation::BEGIN:
785
+ case Translation::REGISTER:
786
+ case Translation::INT32_REGISTER:
787
+ case Translation::UINT32_REGISTER:
788
+ case Translation::DOUBLE_REGISTER:
789
+ case Translation::STACK_SLOT:
790
+ case Translation::INT32_STACK_SLOT:
791
+ case Translation::UINT32_STACK_SLOT:
792
+ case Translation::DOUBLE_STACK_SLOT:
793
+ case Translation::LITERAL:
794
+ case Translation::ARGUMENTS_OBJECT:
795
+ case Translation::DUPLICATE:
582
796
  default:
583
797
  UNREACHABLE();
584
798
  break;
@@ -586,38 +800,99 @@ void Deoptimizer::DoComputeOutputFrames() {
586
800
  }
587
801
 
588
802
  // Print some helpful diagnostic information.
589
- if (FLAG_trace_deopt) {
803
+ if (trace_) {
590
804
  double ms = static_cast<double>(OS::Ticks() - start) / 1000;
591
805
  int index = output_count_ - 1; // Index of the topmost frame.
592
806
  JSFunction* function = output_[index]->GetFunction();
593
807
  PrintF("[deoptimizing: end 0x%08" V8PRIxPTR " ",
594
808
  reinterpret_cast<intptr_t>(function));
595
- function->PrintName();
596
- PrintF(" => node=%u, pc=0x%08" V8PRIxPTR ", state=%s, took %0.3f ms]\n",
597
- node_id,
809
+ if (function != NULL) function->PrintName();
810
+ PrintF(" => node=%d, pc=0x%08" V8PRIxPTR ", state=%s, alignment=%s,"
811
+ " took %0.3f ms]\n",
812
+ node_id.ToInt(),
598
813
  output_[index]->GetPc(),
599
814
  FullCodeGenerator::State2String(
600
815
  static_cast<FullCodeGenerator::State>(
601
816
  output_[index]->GetState()->value())),
817
+ has_alignment_padding_ ? "with padding" : "no padding",
602
818
  ms);
603
819
  }
604
820
  }
605
821
 
606
822
 
607
- void Deoptimizer::MaterializeHeapNumbers() {
823
+ void Deoptimizer::MaterializeHeapObjects(JavaScriptFrameIterator* it) {
608
824
  ASSERT_NE(DEBUGGER, bailout_type_);
825
+
826
+ // Handlify all argument object values before triggering any allocation.
827
+ List<Handle<Object> > values(deferred_arguments_objects_values_.length());
828
+ for (int i = 0; i < deferred_arguments_objects_values_.length(); ++i) {
829
+ values.Add(Handle<Object>(deferred_arguments_objects_values_[i]));
830
+ }
831
+
832
+ // Play it safe and clear all unhandlified values before we continue.
833
+ deferred_arguments_objects_values_.Clear();
834
+
835
+ // Materialize all heap numbers before looking at arguments because when the
836
+ // output frames are used to materialize arguments objects later on they need
837
+ // to already contain valid heap numbers.
609
838
  for (int i = 0; i < deferred_heap_numbers_.length(); i++) {
610
839
  HeapNumberMaterializationDescriptor d = deferred_heap_numbers_[i];
611
840
  Handle<Object> num = isolate_->factory()->NewNumber(d.value());
612
- if (FLAG_trace_deopt) {
841
+ if (trace_) {
613
842
  PrintF("Materializing a new heap number %p [%e] in slot %p\n",
614
843
  reinterpret_cast<void*>(*num),
615
844
  d.value(),
616
845
  d.slot_address());
617
846
  }
618
-
619
847
  Memory::Object_at(d.slot_address()) = *num;
620
848
  }
849
+
850
+ // Materialize arguments objects one frame at a time.
851
+ for (int frame_index = 0; frame_index < jsframe_count(); ++frame_index) {
852
+ if (frame_index != 0) it->Advance();
853
+ JavaScriptFrame* frame = it->frame();
854
+ Handle<JSFunction> function(JSFunction::cast(frame->function()), isolate_);
855
+ Handle<JSObject> arguments;
856
+ for (int i = frame->ComputeExpressionsCount() - 1; i >= 0; --i) {
857
+ if (frame->GetExpression(i) == isolate_->heap()->arguments_marker()) {
858
+ ArgumentsObjectMaterializationDescriptor descriptor =
859
+ deferred_arguments_objects_.RemoveLast();
860
+ const int length = descriptor.arguments_length();
861
+ if (arguments.is_null()) {
862
+ if (frame->has_adapted_arguments()) {
863
+ // Use the arguments adapter frame we just built to materialize the
864
+ // arguments object. FunctionGetArguments can't throw an exception,
865
+ // so cast away the doubt with an assert.
866
+ arguments = Handle<JSObject>(JSObject::cast(
867
+ Accessors::FunctionGetArguments(*function,
868
+ NULL)->ToObjectUnchecked()));
869
+ values.RewindBy(length);
870
+ } else {
871
+ // Construct an arguments object and copy the parameters to a newly
872
+ // allocated arguments object backing store.
873
+ arguments =
874
+ isolate_->factory()->NewArgumentsObject(function, length);
875
+ Handle<FixedArray> array =
876
+ isolate_->factory()->NewFixedArray(length);
877
+ ASSERT(array->length() == length);
878
+ for (int i = length - 1; i >= 0 ; --i) {
879
+ array->set(i, *values.RemoveLast());
880
+ }
881
+ arguments->set_elements(*array);
882
+ }
883
+ }
884
+ frame->SetExpression(i, *arguments);
885
+ ASSERT_EQ(Memory::Object_at(descriptor.slot_address()), *arguments);
886
+ if (trace_) {
887
+ PrintF("Materializing %sarguments object for %p: ",
888
+ frame->has_adapted_arguments() ? "(adapted) " : "",
889
+ reinterpret_cast<void*>(descriptor.slot_address()));
890
+ arguments->ShortPrint();
891
+ PrintF("\n");
892
+ }
893
+ }
894
+ }
895
+ }
621
896
  }
622
897
 
623
898
 
@@ -643,7 +918,7 @@ void Deoptimizer::MaterializeHeapNumbersForDebuggerInspectableFrame(
643
918
  int index = (info->parameters_count() - 1) -
644
919
  static_cast<int>(slot - parameters_top) / kPointerSize;
645
920
 
646
- if (FLAG_trace_deopt) {
921
+ if (trace_) {
647
922
  PrintF("Materializing a new heap number %p [%e] in slot %p"
648
923
  "for parameter slot #%d\n",
649
924
  reinterpret_cast<void*>(*num),
@@ -659,7 +934,7 @@ void Deoptimizer::MaterializeHeapNumbersForDebuggerInspectableFrame(
659
934
  int index = info->expression_count() - 1 -
660
935
  static_cast<int>(slot - expressions_top) / kPointerSize;
661
936
 
662
- if (FLAG_trace_deopt) {
937
+ if (trace_) {
663
938
  PrintF("Materializing a new heap number %p [%e] in slot %p"
664
939
  "for expression slot #%d\n",
665
940
  reinterpret_cast<void*>(*num),
@@ -696,6 +971,9 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
696
971
  case Translation::JS_FRAME:
697
972
  case Translation::ARGUMENTS_ADAPTOR_FRAME:
698
973
  case Translation::CONSTRUCT_STUB_FRAME:
974
+ case Translation::GETTER_STUB_FRAME:
975
+ case Translation::SETTER_STUB_FRAME:
976
+ case Translation::COMPILED_STUB_FRAME:
699
977
  case Translation::DUPLICATE:
700
978
  UNREACHABLE();
701
979
  return;
@@ -703,7 +981,7 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
703
981
  case Translation::REGISTER: {
704
982
  int input_reg = iterator->Next();
705
983
  intptr_t input_value = input_->GetRegister(input_reg);
706
- if (FLAG_trace_deopt) {
984
+ if (trace_) {
707
985
  PrintF(
708
986
  " 0x%08" V8PRIxPTR ": [top + %d] <- 0x%08" V8PRIxPTR " ; %s ",
709
987
  output_[frame_index]->GetTop() + output_offset,
@@ -721,7 +999,7 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
721
999
  int input_reg = iterator->Next();
722
1000
  intptr_t value = input_->GetRegister(input_reg);
723
1001
  bool is_smi = Smi::IsValid(value);
724
- if (FLAG_trace_deopt) {
1002
+ if (trace_) {
725
1003
  PrintF(
726
1004
  " 0x%08" V8PRIxPTR ": [top + %d] <- %" V8PRIdPTR " ; %s (%s)\n",
727
1005
  output_[frame_index]->GetTop() + output_offset,
@@ -744,10 +1022,38 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
744
1022
  return;
745
1023
  }
746
1024
 
1025
+ case Translation::UINT32_REGISTER: {
1026
+ int input_reg = iterator->Next();
1027
+ uintptr_t value = static_cast<uintptr_t>(input_->GetRegister(input_reg));
1028
+ bool is_smi = (value <= static_cast<uintptr_t>(Smi::kMaxValue));
1029
+ if (trace_) {
1030
+ PrintF(
1031
+ " 0x%08" V8PRIxPTR ": [top + %d] <- %" V8PRIuPTR
1032
+ " ; uint %s (%s)\n",
1033
+ output_[frame_index]->GetTop() + output_offset,
1034
+ output_offset,
1035
+ value,
1036
+ converter.NameOfCPURegister(input_reg),
1037
+ is_smi ? "smi" : "heap number");
1038
+ }
1039
+ if (is_smi) {
1040
+ intptr_t tagged_value =
1041
+ reinterpret_cast<intptr_t>(Smi::FromInt(static_cast<int>(value)));
1042
+ output_[frame_index]->SetFrameSlot(output_offset, tagged_value);
1043
+ } else {
1044
+ // We save the untagged value on the side and store a GC-safe
1045
+ // temporary placeholder in the frame.
1046
+ AddDoubleValue(output_[frame_index]->GetTop() + output_offset,
1047
+ static_cast<double>(static_cast<uint32_t>(value)));
1048
+ output_[frame_index]->SetFrameSlot(output_offset, kPlaceholder);
1049
+ }
1050
+ return;
1051
+ }
1052
+
747
1053
  case Translation::DOUBLE_REGISTER: {
748
1054
  int input_reg = iterator->Next();
749
1055
  double value = input_->GetDoubleRegister(input_reg);
750
- if (FLAG_trace_deopt) {
1056
+ if (trace_) {
751
1057
  PrintF(" 0x%08" V8PRIxPTR ": [top + %d] <- %e ; %s\n",
752
1058
  output_[frame_index]->GetTop() + output_offset,
753
1059
  output_offset,
@@ -766,10 +1072,10 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
766
1072
  unsigned input_offset =
767
1073
  input_->GetOffsetFromSlotIndex(input_slot_index);
768
1074
  intptr_t input_value = input_->GetFrameSlot(input_offset);
769
- if (FLAG_trace_deopt) {
1075
+ if (trace_) {
770
1076
  PrintF(" 0x%08" V8PRIxPTR ": ",
771
1077
  output_[frame_index]->GetTop() + output_offset);
772
- PrintF("[top + %d] <- 0x%08" V8PRIxPTR " ; [esp + %d] ",
1078
+ PrintF("[top + %d] <- 0x%08" V8PRIxPTR " ; [sp + %d] ",
773
1079
  output_offset,
774
1080
  input_value,
775
1081
  input_offset);
@@ -786,10 +1092,10 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
786
1092
  input_->GetOffsetFromSlotIndex(input_slot_index);
787
1093
  intptr_t value = input_->GetFrameSlot(input_offset);
788
1094
  bool is_smi = Smi::IsValid(value);
789
- if (FLAG_trace_deopt) {
1095
+ if (trace_) {
790
1096
  PrintF(" 0x%08" V8PRIxPTR ": ",
791
1097
  output_[frame_index]->GetTop() + output_offset);
792
- PrintF("[top + %d] <- %" V8PRIdPTR " ; [esp + %d] (%s)\n",
1098
+ PrintF("[top + %d] <- %" V8PRIdPTR " ; [sp + %d] (%s)\n",
793
1099
  output_offset,
794
1100
  value,
795
1101
  input_offset,
@@ -809,13 +1115,43 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
809
1115
  return;
810
1116
  }
811
1117
 
1118
+ case Translation::UINT32_STACK_SLOT: {
1119
+ int input_slot_index = iterator->Next();
1120
+ unsigned input_offset =
1121
+ input_->GetOffsetFromSlotIndex(input_slot_index);
1122
+ uintptr_t value =
1123
+ static_cast<uintptr_t>(input_->GetFrameSlot(input_offset));
1124
+ bool is_smi = (value <= static_cast<uintptr_t>(Smi::kMaxValue));
1125
+ if (trace_) {
1126
+ PrintF(" 0x%08" V8PRIxPTR ": ",
1127
+ output_[frame_index]->GetTop() + output_offset);
1128
+ PrintF("[top + %d] <- %" V8PRIuPTR " ; [sp + %d] (uint32 %s)\n",
1129
+ output_offset,
1130
+ value,
1131
+ input_offset,
1132
+ is_smi ? "smi" : "heap number");
1133
+ }
1134
+ if (is_smi) {
1135
+ intptr_t tagged_value =
1136
+ reinterpret_cast<intptr_t>(Smi::FromInt(static_cast<int>(value)));
1137
+ output_[frame_index]->SetFrameSlot(output_offset, tagged_value);
1138
+ } else {
1139
+ // We save the untagged value on the side and store a GC-safe
1140
+ // temporary placeholder in the frame.
1141
+ AddDoubleValue(output_[frame_index]->GetTop() + output_offset,
1142
+ static_cast<double>(static_cast<uint32_t>(value)));
1143
+ output_[frame_index]->SetFrameSlot(output_offset, kPlaceholder);
1144
+ }
1145
+ return;
1146
+ }
1147
+
812
1148
  case Translation::DOUBLE_STACK_SLOT: {
813
1149
  int input_slot_index = iterator->Next();
814
1150
  unsigned input_offset =
815
1151
  input_->GetOffsetFromSlotIndex(input_slot_index);
816
1152
  double value = input_->GetDoubleFrameSlot(input_offset);
817
- if (FLAG_trace_deopt) {
818
- PrintF(" 0x%08" V8PRIxPTR ": [top + %d] <- %e ; [esp + %d]\n",
1153
+ if (trace_) {
1154
+ PrintF(" 0x%08" V8PRIxPTR ": [top + %d] <- %e ; [sp + %d]\n",
819
1155
  output_[frame_index]->GetTop() + output_offset,
820
1156
  output_offset,
821
1157
  value,
@@ -830,7 +1166,7 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
830
1166
 
831
1167
  case Translation::LITERAL: {
832
1168
  Object* literal = ComputeLiteral(iterator->Next());
833
- if (FLAG_trace_deopt) {
1169
+ if (trace_) {
834
1170
  PrintF(" 0x%08" V8PRIxPTR ": [top + %d] <- ",
835
1171
  output_[frame_index]->GetTop() + output_offset,
836
1172
  output_offset);
@@ -843,24 +1179,85 @@ void Deoptimizer::DoTranslateCommand(TranslationIterator* iterator,
843
1179
  }
844
1180
 
845
1181
  case Translation::ARGUMENTS_OBJECT: {
846
- // Use the arguments marker value as a sentinel and fill in the arguments
847
- // object after the deoptimized frame is built.
848
- if (FLAG_trace_deopt) {
1182
+ int args_index = iterator->Next() + 1; // Skip receiver.
1183
+ int args_length = iterator->Next() - 1; // Skip receiver.
1184
+ if (trace_) {
849
1185
  PrintF(" 0x%08" V8PRIxPTR ": [top + %d] <- ",
850
1186
  output_[frame_index]->GetTop() + output_offset,
851
1187
  output_offset);
852
1188
  isolate_->heap()->arguments_marker()->ShortPrint();
853
1189
  PrintF(" ; arguments object\n");
854
1190
  }
1191
+ // Use the arguments marker value as a sentinel and fill in the arguments
1192
+ // object after the deoptimized frame is built.
855
1193
  intptr_t value = reinterpret_cast<intptr_t>(
856
1194
  isolate_->heap()->arguments_marker());
1195
+ AddArgumentsObject(
1196
+ output_[frame_index]->GetTop() + output_offset, args_length);
857
1197
  output_[frame_index]->SetFrameSlot(output_offset, value);
1198
+ // We save the tagged argument values on the side and materialize the
1199
+ // actual arguments object after the deoptimized frame is built.
1200
+ for (int i = 0; i < args_length; i++) {
1201
+ unsigned input_offset = input_->GetOffsetFromSlotIndex(args_index + i);
1202
+ intptr_t input_value = input_->GetFrameSlot(input_offset);
1203
+ AddArgumentsObjectValue(input_value);
1204
+ }
858
1205
  return;
859
1206
  }
860
1207
  }
861
1208
  }
862
1209
 
863
1210
 
1211
+ static bool ObjectToInt32(Object* obj, int32_t* value) {
1212
+ if (obj->IsSmi()) {
1213
+ *value = Smi::cast(obj)->value();
1214
+ return true;
1215
+ }
1216
+
1217
+ if (obj->IsHeapNumber()) {
1218
+ double num = HeapNumber::cast(obj)->value();
1219
+ if (FastI2D(FastD2I(num)) != num) {
1220
+ if (FLAG_trace_osr) {
1221
+ PrintF("**** %g could not be converted to int32 ****\n",
1222
+ HeapNumber::cast(obj)->value());
1223
+ }
1224
+ return false;
1225
+ }
1226
+
1227
+ *value = FastD2I(num);
1228
+ return true;
1229
+ }
1230
+
1231
+ return false;
1232
+ }
1233
+
1234
+
1235
+ static bool ObjectToUint32(Object* obj, uint32_t* value) {
1236
+ if (obj->IsSmi()) {
1237
+ if (Smi::cast(obj)->value() < 0) return false;
1238
+
1239
+ *value = static_cast<uint32_t>(Smi::cast(obj)->value());
1240
+ return true;
1241
+ }
1242
+
1243
+ if (obj->IsHeapNumber()) {
1244
+ double num = HeapNumber::cast(obj)->value();
1245
+ if ((num < 0) || (FastUI2D(FastD2UI(num)) != num)) {
1246
+ if (FLAG_trace_osr) {
1247
+ PrintF("**** %g could not be converted to uint32 ****\n",
1248
+ HeapNumber::cast(obj)->value());
1249
+ }
1250
+ return false;
1251
+ }
1252
+
1253
+ *value = FastD2UI(num);
1254
+ return true;
1255
+ }
1256
+
1257
+ return false;
1258
+ }
1259
+
1260
+
864
1261
  bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
865
1262
  int* input_offset) {
866
1263
  disasm::NameConverter converter;
@@ -883,6 +1280,9 @@ bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
883
1280
  case Translation::JS_FRAME:
884
1281
  case Translation::ARGUMENTS_ADAPTOR_FRAME:
885
1282
  case Translation::CONSTRUCT_STUB_FRAME:
1283
+ case Translation::GETTER_STUB_FRAME:
1284
+ case Translation::SETTER_STUB_FRAME:
1285
+ case Translation::COMPILED_STUB_FRAME:
886
1286
  case Translation::DUPLICATE:
887
1287
  UNREACHABLE(); // Malformed input.
888
1288
  return false;
@@ -900,22 +1300,10 @@ bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
900
1300
  }
901
1301
 
902
1302
  case Translation::INT32_REGISTER: {
903
- // Abort OSR if we don't have a number.
904
- if (!input_object->IsNumber()) return false;
1303
+ int32_t int32_value = 0;
1304
+ if (!ObjectToInt32(input_object, &int32_value)) return false;
905
1305
 
906
1306
  int output_reg = iterator->Next();
907
- int int32_value = input_object->IsSmi()
908
- ? Smi::cast(input_object)->value()
909
- : FastD2I(input_object->Number());
910
- // Abort the translation if the conversion lost information.
911
- if (!input_object->IsSmi() &&
912
- FastI2D(int32_value) != input_object->Number()) {
913
- if (FLAG_trace_osr) {
914
- PrintF("**** %g could not be converted to int32 ****\n",
915
- input_object->Number());
916
- }
917
- return false;
918
- }
919
1307
  if (FLAG_trace_osr) {
920
1308
  PrintF(" %s <- %d (int32) ; [sp + %d]\n",
921
1309
  converter.NameOfCPURegister(output_reg),
@@ -926,6 +1314,21 @@ bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
926
1314
  break;
927
1315
  }
928
1316
 
1317
+ case Translation::UINT32_REGISTER: {
1318
+ uint32_t uint32_value = 0;
1319
+ if (!ObjectToUint32(input_object, &uint32_value)) return false;
1320
+
1321
+ int output_reg = iterator->Next();
1322
+ if (FLAG_trace_osr) {
1323
+ PrintF(" %s <- %u (uint32) ; [sp + %d]\n",
1324
+ converter.NameOfCPURegister(output_reg),
1325
+ uint32_value,
1326
+ *input_offset);
1327
+ }
1328
+ output->SetRegister(output_reg, static_cast<int32_t>(uint32_value));
1329
+ }
1330
+
1331
+
929
1332
  case Translation::DOUBLE_REGISTER: {
930
1333
  // Abort OSR if we don't have a number.
931
1334
  if (!input_object->IsNumber()) return false;
@@ -959,24 +1362,12 @@ bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
959
1362
  }
960
1363
 
961
1364
  case Translation::INT32_STACK_SLOT: {
962
- // Abort OSR if we don't have a number.
963
- if (!input_object->IsNumber()) return false;
1365
+ int32_t int32_value = 0;
1366
+ if (!ObjectToInt32(input_object, &int32_value)) return false;
964
1367
 
965
1368
  int output_index = iterator->Next();
966
1369
  unsigned output_offset =
967
1370
  output->GetOffsetFromSlotIndex(output_index);
968
- int int32_value = input_object->IsSmi()
969
- ? Smi::cast(input_object)->value()
970
- : DoubleToInt32(input_object->Number());
971
- // Abort the translation if the conversion lost information.
972
- if (!input_object->IsSmi() &&
973
- FastI2D(int32_value) != input_object->Number()) {
974
- if (FLAG_trace_osr) {
975
- PrintF("**** %g could not be converted to int32 ****\n",
976
- input_object->Number());
977
- }
978
- return false;
979
- }
980
1371
  if (FLAG_trace_osr) {
981
1372
  PrintF(" [sp + %d] <- %d (int32) ; [sp + %d]\n",
982
1373
  output_offset,
@@ -987,6 +1378,23 @@ bool Deoptimizer::DoOsrTranslateCommand(TranslationIterator* iterator,
987
1378
  break;
988
1379
  }
989
1380
 
1381
+ case Translation::UINT32_STACK_SLOT: {
1382
+ uint32_t uint32_value = 0;
1383
+ if (!ObjectToUint32(input_object, &uint32_value)) return false;
1384
+
1385
+ int output_index = iterator->Next();
1386
+ unsigned output_offset =
1387
+ output->GetOffsetFromSlotIndex(output_index);
1388
+ if (FLAG_trace_osr) {
1389
+ PrintF(" [sp + %d] <- %u (uint32) ; [sp + %d]\n",
1390
+ output_offset,
1391
+ uint32_value,
1392
+ *input_offset);
1393
+ }
1394
+ output->SetFrameSlot(output_offset, static_cast<int32_t>(uint32_value));
1395
+ break;
1396
+ }
1397
+
990
1398
  case Translation::DOUBLE_STACK_SLOT: {
991
1399
  static const int kLowerOffset = 0 * kPointerSize;
992
1400
  static const int kUpperOffset = 1 * kPointerSize;
@@ -1094,8 +1502,8 @@ unsigned Deoptimizer::ComputeInputFrameSize() const {
1094
1502
  // size matches with the stack height we can compute based on the
1095
1503
  // environment at the OSR entry. The code for that his built into
1096
1504
  // the DoComputeOsrOutputFrame function for now.
1097
- } else {
1098
- unsigned stack_slots = optimized_code_->stack_slots();
1505
+ } else if (compiled_code_->kind() != Code::COMPILED_STUB) {
1506
+ unsigned stack_slots = compiled_code_->stack_slots();
1099
1507
  unsigned outgoing_size = ComputeOutgoingArgumentSize();
1100
1508
  ASSERT(result == fixed_size + (stack_slots * kPointerSize) + outgoing_size);
1101
1509
  }
@@ -1115,6 +1523,10 @@ unsigned Deoptimizer::ComputeFixedSize(JSFunction* function) const {
1115
1523
  unsigned Deoptimizer::ComputeIncomingArgumentSize(JSFunction* function) const {
1116
1524
  // The incoming arguments is the values for formal parameters and
1117
1525
  // the receiver. Every slot contains a pointer.
1526
+ if (function->IsSmi()) {
1527
+ ASSERT(Smi::cast(function) == Smi::FromInt(StackFrame::STUB));
1528
+ return 0;
1529
+ }
1118
1530
  unsigned arguments = function->shared()->formal_parameter_count() + 1;
1119
1531
  return arguments * kPointerSize;
1120
1532
  }
@@ -1122,7 +1534,7 @@ unsigned Deoptimizer::ComputeIncomingArgumentSize(JSFunction* function) const {
1122
1534
 
1123
1535
  unsigned Deoptimizer::ComputeOutgoingArgumentSize() const {
1124
1536
  DeoptimizationInputData* data = DeoptimizationInputData::cast(
1125
- optimized_code_->deoptimization_data());
1537
+ compiled_code_->deoptimization_data());
1126
1538
  unsigned height = data->ArgumentsStackHeight(bailout_id_)->value();
1127
1539
  return height * kPointerSize;
1128
1540
  }
@@ -1130,83 +1542,82 @@ unsigned Deoptimizer::ComputeOutgoingArgumentSize() const {
1130
1542
 
1131
1543
  Object* Deoptimizer::ComputeLiteral(int index) const {
1132
1544
  DeoptimizationInputData* data = DeoptimizationInputData::cast(
1133
- optimized_code_->deoptimization_data());
1545
+ compiled_code_->deoptimization_data());
1134
1546
  FixedArray* literals = data->LiteralArray();
1135
1547
  return literals->get(index);
1136
1548
  }
1137
1549
 
1138
1550
 
1139
- void Deoptimizer::AddDoubleValue(intptr_t slot_address,
1140
- double value) {
1551
+ void Deoptimizer::AddArgumentsObject(intptr_t slot_address, int argc) {
1552
+ ArgumentsObjectMaterializationDescriptor object_desc(
1553
+ reinterpret_cast<Address>(slot_address), argc);
1554
+ deferred_arguments_objects_.Add(object_desc);
1555
+ }
1556
+
1557
+
1558
+ void Deoptimizer::AddArgumentsObjectValue(intptr_t value) {
1559
+ deferred_arguments_objects_values_.Add(reinterpret_cast<Object*>(value));
1560
+ }
1561
+
1562
+
1563
+ void Deoptimizer::AddDoubleValue(intptr_t slot_address, double value) {
1141
1564
  HeapNumberMaterializationDescriptor value_desc(
1142
1565
  reinterpret_cast<Address>(slot_address), value);
1143
1566
  deferred_heap_numbers_.Add(value_desc);
1144
1567
  }
1145
1568
 
1146
1569
 
1147
- MemoryChunk* Deoptimizer::CreateCode(BailoutType type) {
1570
+ void Deoptimizer::EnsureCodeForDeoptimizationEntry(BailoutType type,
1571
+ int max_entry_id) {
1148
1572
  // We cannot run this if the serializer is enabled because this will
1149
1573
  // cause us to emit relocation information for the external
1150
1574
  // references. This is fine because the deoptimizer's code section
1151
1575
  // isn't meant to be serialized at all.
1152
- ASSERT(!Serializer::enabled());
1576
+ ASSERT(type == EAGER || type == LAZY);
1577
+ DeoptimizerData* data = Isolate::Current()->deoptimizer_data();
1578
+ int entry_count = (type == EAGER)
1579
+ ? data->eager_deoptimization_entry_code_entries_
1580
+ : data->lazy_deoptimization_entry_code_entries_;
1581
+ if (max_entry_id < entry_count) return;
1582
+ entry_count = Max(entry_count, Deoptimizer::kMinNumberOfEntries);
1583
+ while (max_entry_id >= entry_count) entry_count *= 2;
1584
+ ASSERT(entry_count <= Deoptimizer::kMaxNumberOfEntries);
1153
1585
 
1154
1586
  MacroAssembler masm(Isolate::Current(), NULL, 16 * KB);
1155
1587
  masm.set_emit_debug_code(false);
1156
- GenerateDeoptimizationEntries(&masm, kNumberOfEntries, type);
1588
+ GenerateDeoptimizationEntries(&masm, entry_count, type);
1157
1589
  CodeDesc desc;
1158
1590
  masm.GetCode(&desc);
1159
- ASSERT(desc.reloc_size == 0);
1160
1591
 
1161
- MemoryChunk* chunk =
1162
- Isolate::Current()->memory_allocator()->AllocateChunk(desc.instr_size,
1163
- EXECUTABLE,
1164
- NULL);
1165
- ASSERT(chunk->area_size() >= desc.instr_size);
1166
- if (chunk == NULL) {
1167
- V8::FatalProcessOutOfMemory("Not enough memory for deoptimization table");
1168
- }
1592
+ MemoryChunk* chunk = type == EAGER
1593
+ ? data->eager_deoptimization_entry_code_
1594
+ : data->lazy_deoptimization_entry_code_;
1595
+ ASSERT(static_cast<int>(Deoptimizer::GetMaxDeoptTableSize()) >=
1596
+ desc.instr_size);
1597
+ chunk->CommitArea(desc.instr_size);
1169
1598
  memcpy(chunk->area_start(), desc.buffer, desc.instr_size);
1170
1599
  CPU::FlushICache(chunk->area_start(), desc.instr_size);
1171
- return chunk;
1172
- }
1173
-
1174
1600
 
1175
- Code* Deoptimizer::FindDeoptimizingCodeFromAddress(Address addr) {
1176
- DeoptimizingCodeListNode* node =
1177
- Isolate::Current()->deoptimizer_data()->deoptimizing_code_list_;
1178
- while (node != NULL) {
1179
- if (node->code()->contains(addr)) return *node->code();
1180
- node = node->next();
1601
+ if (type == EAGER) {
1602
+ data->eager_deoptimization_entry_code_entries_ = entry_count;
1603
+ } else {
1604
+ data->lazy_deoptimization_entry_code_entries_ = entry_count;
1181
1605
  }
1182
- return NULL;
1183
1606
  }
1184
1607
 
1185
1608
 
1186
- void Deoptimizer::RemoveDeoptimizingCode(Code* code) {
1187
- DeoptimizerData* data = Isolate::Current()->deoptimizer_data();
1188
- ASSERT(data->deoptimizing_code_list_ != NULL);
1189
- // Run through the code objects to find this one and remove it.
1190
- DeoptimizingCodeListNode* prev = NULL;
1191
- DeoptimizingCodeListNode* current = data->deoptimizing_code_list_;
1192
- while (current != NULL) {
1193
- if (*current->code() == code) {
1194
- // Unlink from list. If prev is NULL we are looking at the first element.
1195
- if (prev == NULL) {
1196
- data->deoptimizing_code_list_ = current->next();
1197
- } else {
1198
- prev->set_next(current->next());
1199
- }
1200
- delete current;
1201
- return;
1202
- }
1203
- // Move to next in list.
1204
- prev = current;
1205
- current = current->next();
1609
+ void Deoptimizer::ReplaceCodeForRelatedFunctions(JSFunction* function,
1610
+ Code* code) {
1611
+ SharedFunctionInfo* shared = function->shared();
1612
+ Object* undefined = Isolate::Current()->heap()->undefined_value();
1613
+ Object* current = function;
1614
+
1615
+ while (current != undefined) {
1616
+ JSFunction* func = JSFunction::cast(current);
1617
+ current = func->next_function_link();
1618
+ func->set_code(shared->code());
1619
+ func->set_next_function_link(undefined);
1206
1620
  }
1207
- // Deoptimizing code is removed through weak callback. Each object is expected
1208
- // to be removed once and only once.
1209
- UNREACHABLE();
1210
1621
  }
1211
1622
 
1212
1623
 
@@ -1260,6 +1671,8 @@ int FrameDescription::ComputeParametersCount() {
1260
1671
  // Can't use GetExpression(0) because it would cause infinite recursion.
1261
1672
  return reinterpret_cast<Smi*>(*GetFrameSlotPointer(0))->value();
1262
1673
  }
1674
+ case StackFrame::STUB:
1675
+ return 0;
1263
1676
  default:
1264
1677
  UNREACHABLE();
1265
1678
  return 0;
@@ -1290,7 +1703,7 @@ Object* FrameDescription::GetExpression(int index) {
1290
1703
  }
1291
1704
 
1292
1705
 
1293
- void TranslationBuffer::Add(int32_t value) {
1706
+ void TranslationBuffer::Add(int32_t value, Zone* zone) {
1294
1707
  // Encode the sign bit in the least significant bit.
1295
1708
  bool is_negative = (value < 0);
1296
1709
  uint32_t bits = ((is_negative ? -value : value) << 1) |
@@ -1299,7 +1712,7 @@ void TranslationBuffer::Add(int32_t value) {
1299
1712
  // each byte to indicate whether or not more bytes follow.
1300
1713
  do {
1301
1714
  uint32_t next = bits >> 7;
1302
- contents_.Add(((bits << 1) & 0xFF) | (next != 0));
1715
+ contents_.Add(((bits << 1) & 0xFF) | (next != 0), zone);
1303
1716
  bits = next;
1304
1717
  } while (bits != 0);
1305
1718
  }
@@ -1332,95 +1745,133 @@ Handle<ByteArray> TranslationBuffer::CreateByteArray() {
1332
1745
 
1333
1746
 
1334
1747
  void Translation::BeginConstructStubFrame(int literal_id, unsigned height) {
1335
- buffer_->Add(CONSTRUCT_STUB_FRAME);
1336
- buffer_->Add(literal_id);
1337
- buffer_->Add(height);
1748
+ buffer_->Add(CONSTRUCT_STUB_FRAME, zone());
1749
+ buffer_->Add(literal_id, zone());
1750
+ buffer_->Add(height, zone());
1751
+ }
1752
+
1753
+
1754
+ void Translation::BeginGetterStubFrame(int literal_id) {
1755
+ buffer_->Add(GETTER_STUB_FRAME, zone());
1756
+ buffer_->Add(literal_id, zone());
1757
+ }
1758
+
1759
+
1760
+ void Translation::BeginSetterStubFrame(int literal_id) {
1761
+ buffer_->Add(SETTER_STUB_FRAME, zone());
1762
+ buffer_->Add(literal_id, zone());
1338
1763
  }
1339
1764
 
1340
1765
 
1341
1766
  void Translation::BeginArgumentsAdaptorFrame(int literal_id, unsigned height) {
1342
- buffer_->Add(ARGUMENTS_ADAPTOR_FRAME);
1343
- buffer_->Add(literal_id);
1344
- buffer_->Add(height);
1767
+ buffer_->Add(ARGUMENTS_ADAPTOR_FRAME, zone());
1768
+ buffer_->Add(literal_id, zone());
1769
+ buffer_->Add(height, zone());
1345
1770
  }
1346
1771
 
1347
1772
 
1348
- void Translation::BeginJSFrame(int node_id, int literal_id, unsigned height) {
1349
- buffer_->Add(JS_FRAME);
1350
- buffer_->Add(node_id);
1351
- buffer_->Add(literal_id);
1352
- buffer_->Add(height);
1773
+ void Translation::BeginJSFrame(BailoutId node_id,
1774
+ int literal_id,
1775
+ unsigned height) {
1776
+ buffer_->Add(JS_FRAME, zone());
1777
+ buffer_->Add(node_id.ToInt(), zone());
1778
+ buffer_->Add(literal_id, zone());
1779
+ buffer_->Add(height, zone());
1780
+ }
1781
+
1782
+
1783
+ void Translation::BeginCompiledStubFrame() {
1784
+ buffer_->Add(COMPILED_STUB_FRAME, zone());
1353
1785
  }
1354
1786
 
1355
1787
 
1356
1788
  void Translation::StoreRegister(Register reg) {
1357
- buffer_->Add(REGISTER);
1358
- buffer_->Add(reg.code());
1789
+ buffer_->Add(REGISTER, zone());
1790
+ buffer_->Add(reg.code(), zone());
1359
1791
  }
1360
1792
 
1361
1793
 
1362
1794
  void Translation::StoreInt32Register(Register reg) {
1363
- buffer_->Add(INT32_REGISTER);
1364
- buffer_->Add(reg.code());
1795
+ buffer_->Add(INT32_REGISTER, zone());
1796
+ buffer_->Add(reg.code(), zone());
1797
+ }
1798
+
1799
+
1800
+ void Translation::StoreUint32Register(Register reg) {
1801
+ buffer_->Add(UINT32_REGISTER, zone());
1802
+ buffer_->Add(reg.code(), zone());
1365
1803
  }
1366
1804
 
1367
1805
 
1368
1806
  void Translation::StoreDoubleRegister(DoubleRegister reg) {
1369
- buffer_->Add(DOUBLE_REGISTER);
1370
- buffer_->Add(DoubleRegister::ToAllocationIndex(reg));
1807
+ buffer_->Add(DOUBLE_REGISTER, zone());
1808
+ buffer_->Add(DoubleRegister::ToAllocationIndex(reg), zone());
1371
1809
  }
1372
1810
 
1373
1811
 
1374
1812
  void Translation::StoreStackSlot(int index) {
1375
- buffer_->Add(STACK_SLOT);
1376
- buffer_->Add(index);
1813
+ buffer_->Add(STACK_SLOT, zone());
1814
+ buffer_->Add(index, zone());
1377
1815
  }
1378
1816
 
1379
1817
 
1380
1818
  void Translation::StoreInt32StackSlot(int index) {
1381
- buffer_->Add(INT32_STACK_SLOT);
1382
- buffer_->Add(index);
1819
+ buffer_->Add(INT32_STACK_SLOT, zone());
1820
+ buffer_->Add(index, zone());
1821
+ }
1822
+
1823
+
1824
+ void Translation::StoreUint32StackSlot(int index) {
1825
+ buffer_->Add(UINT32_STACK_SLOT, zone());
1826
+ buffer_->Add(index, zone());
1383
1827
  }
1384
1828
 
1385
1829
 
1386
1830
  void Translation::StoreDoubleStackSlot(int index) {
1387
- buffer_->Add(DOUBLE_STACK_SLOT);
1388
- buffer_->Add(index);
1831
+ buffer_->Add(DOUBLE_STACK_SLOT, zone());
1832
+ buffer_->Add(index, zone());
1389
1833
  }
1390
1834
 
1391
1835
 
1392
1836
  void Translation::StoreLiteral(int literal_id) {
1393
- buffer_->Add(LITERAL);
1394
- buffer_->Add(literal_id);
1837
+ buffer_->Add(LITERAL, zone());
1838
+ buffer_->Add(literal_id, zone());
1395
1839
  }
1396
1840
 
1397
1841
 
1398
- void Translation::StoreArgumentsObject() {
1399
- buffer_->Add(ARGUMENTS_OBJECT);
1842
+ void Translation::StoreArgumentsObject(int args_index, int args_length) {
1843
+ buffer_->Add(ARGUMENTS_OBJECT, zone());
1844
+ buffer_->Add(args_index, zone());
1845
+ buffer_->Add(args_length, zone());
1400
1846
  }
1401
1847
 
1402
1848
 
1403
1849
  void Translation::MarkDuplicate() {
1404
- buffer_->Add(DUPLICATE);
1850
+ buffer_->Add(DUPLICATE, zone());
1405
1851
  }
1406
1852
 
1407
1853
 
1408
1854
  int Translation::NumberOfOperandsFor(Opcode opcode) {
1409
1855
  switch (opcode) {
1410
- case ARGUMENTS_OBJECT:
1411
1856
  case DUPLICATE:
1412
1857
  return 0;
1858
+ case GETTER_STUB_FRAME:
1859
+ case SETTER_STUB_FRAME:
1413
1860
  case REGISTER:
1414
1861
  case INT32_REGISTER:
1862
+ case UINT32_REGISTER:
1415
1863
  case DOUBLE_REGISTER:
1416
1864
  case STACK_SLOT:
1417
1865
  case INT32_STACK_SLOT:
1866
+ case UINT32_STACK_SLOT:
1418
1867
  case DOUBLE_STACK_SLOT:
1419
1868
  case LITERAL:
1869
+ case COMPILED_STUB_FRAME:
1420
1870
  return 1;
1421
1871
  case BEGIN:
1422
1872
  case ARGUMENTS_ADAPTOR_FRAME:
1423
1873
  case CONSTRUCT_STUB_FRAME:
1874
+ case ARGUMENTS_OBJECT:
1424
1875
  return 2;
1425
1876
  case JS_FRAME:
1426
1877
  return 3;
@@ -1442,16 +1893,26 @@ const char* Translation::StringFor(Opcode opcode) {
1442
1893
  return "ARGUMENTS_ADAPTOR_FRAME";
1443
1894
  case CONSTRUCT_STUB_FRAME:
1444
1895
  return "CONSTRUCT_STUB_FRAME";
1896
+ case GETTER_STUB_FRAME:
1897
+ return "GETTER_STUB_FRAME";
1898
+ case SETTER_STUB_FRAME:
1899
+ return "SETTER_STUB_FRAME";
1900
+ case COMPILED_STUB_FRAME:
1901
+ return "COMPILED_STUB_FRAME";
1445
1902
  case REGISTER:
1446
1903
  return "REGISTER";
1447
1904
  case INT32_REGISTER:
1448
1905
  return "INT32_REGISTER";
1906
+ case UINT32_REGISTER:
1907
+ return "UINT32_REGISTER";
1449
1908
  case DOUBLE_REGISTER:
1450
1909
  return "DOUBLE_REGISTER";
1451
1910
  case STACK_SLOT:
1452
1911
  return "STACK_SLOT";
1453
1912
  case INT32_STACK_SLOT:
1454
1913
  return "INT32_STACK_SLOT";
1914
+ case UINT32_STACK_SLOT:
1915
+ return "UINT32_STACK_SLOT";
1455
1916
  case DOUBLE_STACK_SLOT:
1456
1917
  return "DOUBLE_STACK_SLOT";
1457
1918
  case LITERAL:
@@ -1474,6 +1935,7 @@ DeoptimizingCodeListNode::DeoptimizingCodeListNode(Code* code): next_(NULL) {
1474
1935
  code_ = Handle<Code>::cast(global_handles->Create(code));
1475
1936
  global_handles->MakeWeak(reinterpret_cast<Object**>(code_.location()),
1476
1937
  this,
1938
+ NULL,
1477
1939
  Deoptimizer::HandleWeakDeoptimizedCode);
1478
1940
  }
1479
1941
 
@@ -1498,6 +1960,8 @@ SlotRef SlotRef::ComputeSlotForNextArgument(TranslationIterator* iterator,
1498
1960
  case Translation::JS_FRAME:
1499
1961
  case Translation::ARGUMENTS_ADAPTOR_FRAME:
1500
1962
  case Translation::CONSTRUCT_STUB_FRAME:
1963
+ case Translation::GETTER_STUB_FRAME:
1964
+ case Translation::SETTER_STUB_FRAME:
1501
1965
  // Peeled off before getting here.
1502
1966
  break;
1503
1967
 
@@ -1507,6 +1971,7 @@ SlotRef SlotRef::ComputeSlotForNextArgument(TranslationIterator* iterator,
1507
1971
 
1508
1972
  case Translation::REGISTER:
1509
1973
  case Translation::INT32_REGISTER:
1974
+ case Translation::UINT32_REGISTER:
1510
1975
  case Translation::DOUBLE_REGISTER:
1511
1976
  case Translation::DUPLICATE:
1512
1977
  // We are at safepoint which corresponds to call. All registers are
@@ -1526,6 +1991,12 @@ SlotRef SlotRef::ComputeSlotForNextArgument(TranslationIterator* iterator,
1526
1991
  return SlotRef(slot_addr, SlotRef::INT32);
1527
1992
  }
1528
1993
 
1994
+ case Translation::UINT32_STACK_SLOT: {
1995
+ int slot_index = iterator->Next();
1996
+ Address slot_addr = SlotAddress(frame, slot_index);
1997
+ return SlotRef(slot_addr, SlotRef::UINT32);
1998
+ }
1999
+
1529
2000
  case Translation::DOUBLE_STACK_SLOT: {
1530
2001
  int slot_index = iterator->Next();
1531
2002
  Address slot_addr = SlotAddress(frame, slot_index);
@@ -1536,6 +2007,10 @@ SlotRef SlotRef::ComputeSlotForNextArgument(TranslationIterator* iterator,
1536
2007
  int literal_index = iterator->Next();
1537
2008
  return SlotRef(data->LiteralArray()->get(literal_index));
1538
2009
  }
2010
+
2011
+ case Translation::COMPILED_STUB_FRAME:
2012
+ UNREACHABLE();
2013
+ break;
1539
2014
  }
1540
2015
 
1541
2016
  UNREACHABLE();
@@ -1565,7 +2040,7 @@ Vector<SlotRef> SlotRef::ComputeSlotMappingForArguments(
1565
2040
  int inlined_jsframe_index,
1566
2041
  int formal_parameter_count) {
1567
2042
  AssertNoAllocation no_gc;
1568
- int deopt_index = AstNode::kNoNumber;
2043
+ int deopt_index = Safepoint::kNoDeoptimizationIndex;
1569
2044
  DeoptimizationInputData* data =
1570
2045
  static_cast<OptimizedFrame*>(frame)->GetDeoptimizationData(&deopt_index);
1571
2046
  TranslationIterator it(data->TranslationByteArray(),