RubyGems - mustang - Versions diffs - 0.0.1 → 0.1.0 - Mend

mustang 0.0.1 → 0.1.0

Files changed (560) hide show

data/.rspec +1 -0
data/Isolate +9 -0
data/README.md +6 -12
data/Rakefile +30 -4
data/TODO.md +9 -0
data/ext/v8/extconf.rb +56 -0
data/ext/v8/v8.cpp +37 -0
data/ext/v8/v8_array.cpp +161 -0
data/ext/v8/v8_array.h +17 -0
data/ext/v8/v8_base.cpp +147 -0
data/ext/v8/v8_base.h +23 -0
data/ext/v8/v8_cast.cpp +151 -0
data/ext/v8/v8_cast.h +64 -0
data/ext/v8/v8_context.cpp +174 -0
data/ext/v8/v8_context.h +12 -0
data/ext/v8/v8_date.cpp +61 -0
data/ext/v8/v8_date.h +16 -0
data/ext/v8/v8_errors.cpp +147 -0
data/ext/v8/v8_errors.h +19 -0
data/ext/v8/v8_external.cpp +66 -0
data/ext/v8/v8_external.h +16 -0
data/ext/v8/v8_function.cpp +182 -0
data/ext/v8/v8_function.h +14 -0
data/ext/v8/v8_integer.cpp +70 -0
data/ext/v8/v8_integer.h +16 -0
data/ext/v8/v8_macros.h +30 -0
data/ext/v8/v8_main.cpp +53 -0
data/ext/v8/v8_main.h +13 -0
data/ext/v8/v8_number.cpp +62 -0
data/ext/v8/v8_number.h +16 -0
data/ext/v8/v8_object.cpp +172 -0
data/ext/v8/v8_object.h +17 -0
data/ext/v8/v8_ref.cpp +72 -0
data/ext/v8/v8_ref.h +43 -0
data/ext/v8/v8_regexp.cpp +148 -0
data/ext/v8/v8_regexp.h +16 -0
data/ext/v8/v8_string.cpp +78 -0
data/ext/v8/v8_string.h +16 -0
data/ext/v8/v8_value.cpp +370 -0
data/ext/v8/v8_value.h +19 -0
data/gemspec.yml +2 -1
data/lib/core_ext/class.rb +14 -0
data/lib/core_ext/object.rb +12 -0
data/lib/core_ext/symbol.rb +23 -0
data/lib/mustang.rb +44 -0
data/lib/mustang/context.rb +69 -0
data/lib/mustang/errors.rb +36 -0
data/lib/support/delegated.rb +25 -0
data/lib/v8/array.rb +21 -0
data/lib/v8/context.rb +13 -0
data/lib/v8/date.rb +20 -0
data/lib/v8/error.rb +15 -0
data/lib/v8/external.rb +16 -0
data/lib/v8/function.rb +11 -0
data/lib/v8/integer.rb +16 -0
data/lib/v8/number.rb +16 -0
data/lib/v8/object.rb +66 -0
data/lib/v8/regexp.rb +23 -0
data/lib/v8/string.rb +27 -0
data/mustang.gemspec +3 -0
data/spec/core_ext/class_spec.rb +19 -0
data/spec/core_ext/object_spec.rb +19 -0
data/spec/core_ext/symbol_spec.rb +27 -0
data/spec/fixtures/test1.js +2 -0
data/spec/fixtures/test2.js +2 -0
data/spec/spec_helper.rb +20 -0
data/spec/v8/array_spec.rb +88 -0
data/spec/v8/cast_spec.rb +151 -0
data/spec/v8/context_spec.rb +78 -0
data/spec/v8/data_spec.rb +39 -0
data/spec/v8/date_spec.rb +45 -0
data/spec/v8/empty_spec.rb +27 -0
data/spec/v8/errors_spec.rb +142 -0
data/spec/v8/external_spec.rb +44 -0
data/spec/v8/function_spec.rb +170 -0
data/spec/v8/integer_spec.rb +41 -0
data/spec/v8/main_spec.rb +18 -0
data/spec/v8/null_spec.rb +27 -0
data/spec/v8/number_spec.rb +40 -0
data/spec/v8/object_spec.rb +79 -0
data/spec/v8/primitive_spec.rb +9 -0
data/spec/v8/regexp_spec.rb +65 -0
data/spec/v8/string_spec.rb +48 -0
data/spec/v8/undefined_spec.rb +27 -0
data/spec/v8/value_spec.rb +215 -0
data/vendor/v8/.gitignore +2 -0
data/vendor/v8/AUTHORS +3 -1
data/vendor/v8/ChangeLog +117 -0
data/vendor/v8/SConstruct +334 -53
data/vendor/v8/include/v8-debug.h +21 -11
data/vendor/v8/include/v8-preparser.h +1 -1
data/vendor/v8/include/v8-profiler.h +122 -43
data/vendor/v8/include/v8-testing.h +5 -0
data/vendor/v8/include/v8.h +171 -17
data/vendor/v8/preparser/SConscript +38 -0
data/vendor/v8/preparser/preparser-process.cc +77 -114
data/vendor/v8/samples/shell.cc +232 -46
data/vendor/v8/src/SConscript +29 -5
data/vendor/v8/src/accessors.cc +70 -211
data/vendor/v8/{test/cctest/test-mips.cc → src/allocation-inl.h} +15 -18
data/vendor/v8/src/allocation.cc +0 -82
data/vendor/v8/src/allocation.h +9 -42
data/vendor/v8/src/api.cc +1645 -1156
data/vendor/v8/src/api.h +76 -12
data/vendor/v8/src/apiutils.h +0 -7
data/vendor/v8/src/arguments.h +15 -4
data/vendor/v8/src/arm/assembler-arm-inl.h +10 -9
data/vendor/v8/src/arm/assembler-arm.cc +62 -23
data/vendor/v8/src/arm/assembler-arm.h +76 -11
data/vendor/v8/src/arm/builtins-arm.cc +39 -33
data/vendor/v8/src/arm/code-stubs-arm.cc +1182 -402
data/vendor/v8/src/arm/code-stubs-arm.h +20 -54
data/vendor/v8/src/arm/codegen-arm.cc +159 -106
data/vendor/v8/src/arm/codegen-arm.h +6 -6
data/vendor/v8/src/arm/constants-arm.h +16 -1
data/vendor/v8/src/arm/cpu-arm.cc +7 -5
data/vendor/v8/src/arm/debug-arm.cc +6 -4
data/vendor/v8/src/arm/deoptimizer-arm.cc +51 -14
data/vendor/v8/src/arm/disasm-arm.cc +47 -15
data/vendor/v8/src/arm/frames-arm.h +1 -1
data/vendor/v8/src/arm/full-codegen-arm.cc +724 -408
data/vendor/v8/src/arm/ic-arm.cc +90 -85
data/vendor/v8/src/arm/lithium-arm.cc +140 -69
data/vendor/v8/src/arm/lithium-arm.h +161 -46
data/vendor/v8/src/arm/lithium-codegen-arm.cc +567 -297
data/vendor/v8/src/arm/lithium-codegen-arm.h +21 -9
data/vendor/v8/src/arm/lithium-gap-resolver-arm.cc +2 -0
data/vendor/v8/src/arm/macro-assembler-arm.cc +457 -96
data/vendor/v8/src/arm/macro-assembler-arm.h +115 -18
data/vendor/v8/src/arm/regexp-macro-assembler-arm.cc +20 -13
data/vendor/v8/src/arm/regexp-macro-assembler-arm.h +1 -0
data/vendor/v8/src/arm/simulator-arm.cc +184 -101
data/vendor/v8/src/arm/simulator-arm.h +26 -21
data/vendor/v8/src/arm/stub-cache-arm.cc +450 -467
data/vendor/v8/src/arm/virtual-frame-arm.cc +14 -12
data/vendor/v8/src/arm/virtual-frame-arm.h +11 -8
data/vendor/v8/src/array.js +35 -18
data/vendor/v8/src/assembler.cc +186 -92
data/vendor/v8/src/assembler.h +106 -69
data/vendor/v8/src/ast-inl.h +5 -0
data/vendor/v8/src/ast.cc +46 -35
data/vendor/v8/src/ast.h +107 -50
data/vendor/v8/src/atomicops.h +2 -0
data/vendor/v8/src/atomicops_internals_mips_gcc.h +169 -0
data/vendor/v8/src/bootstrapper.cc +649 -399
data/vendor/v8/src/bootstrapper.h +94 -27
data/vendor/v8/src/builtins.cc +359 -227
data/vendor/v8/src/builtins.h +157 -123
data/vendor/v8/src/checks.cc +2 -2
data/vendor/v8/src/checks.h +4 -0
data/vendor/v8/src/code-stubs.cc +27 -17
data/vendor/v8/src/code-stubs.h +38 -17
data/vendor/v8/src/codegen-inl.h +5 -1
data/vendor/v8/src/codegen.cc +27 -17
data/vendor/v8/src/codegen.h +9 -9
data/vendor/v8/src/compilation-cache.cc +92 -206
data/vendor/v8/src/compilation-cache.h +205 -30
data/vendor/v8/src/compiler.cc +107 -120
data/vendor/v8/src/compiler.h +17 -2
data/vendor/v8/src/contexts.cc +22 -15
data/vendor/v8/src/contexts.h +14 -8
data/vendor/v8/src/conversions.cc +86 -30
data/vendor/v8/src/counters.cc +19 -4
data/vendor/v8/src/counters.h +28 -16
data/vendor/v8/src/cpu-profiler-inl.h +4 -3
data/vendor/v8/src/cpu-profiler.cc +123 -72
data/vendor/v8/src/cpu-profiler.h +33 -19
data/vendor/v8/src/cpu.h +2 -0
data/vendor/v8/src/d8-debug.cc +3 -3
data/vendor/v8/src/d8-debug.h +7 -6
data/vendor/v8/src/d8-posix.cc +2 -0
data/vendor/v8/src/d8.cc +22 -12
data/vendor/v8/src/d8.gyp +3 -0
data/vendor/v8/src/d8.js +618 -0
data/vendor/v8/src/data-flow.h +3 -3
data/vendor/v8/src/dateparser.h +4 -2
data/vendor/v8/src/debug-agent.cc +10 -9
data/vendor/v8/src/debug-agent.h +9 -11
data/vendor/v8/src/debug-debugger.js +121 -0
data/vendor/v8/src/debug.cc +331 -227
data/vendor/v8/src/debug.h +248 -219
data/vendor/v8/src/deoptimizer.cc +173 -62
data/vendor/v8/src/deoptimizer.h +119 -19
data/vendor/v8/src/disasm.h +3 -0
data/vendor/v8/src/disassembler.cc +10 -9
data/vendor/v8/src/execution.cc +185 -129
data/vendor/v8/src/execution.h +47 -78
data/vendor/v8/src/extensions/experimental/break-iterator.cc +250 -0
data/vendor/v8/src/extensions/experimental/break-iterator.h +89 -0
data/vendor/v8/src/extensions/experimental/experimental.gyp +2 -0
data/vendor/v8/src/extensions/experimental/i18n-extension.cc +22 -2
data/vendor/v8/src/extensions/externalize-string-extension.cc +2 -2
data/vendor/v8/src/extensions/gc-extension.cc +1 -1
data/vendor/v8/src/factory.cc +261 -154
data/vendor/v8/src/factory.h +162 -158
data/vendor/v8/src/flag-definitions.h +17 -11
data/vendor/v8/src/frame-element.cc +0 -5
data/vendor/v8/src/frame-element.h +9 -13
data/vendor/v8/src/frames-inl.h +7 -0
data/vendor/v8/src/frames.cc +56 -46
data/vendor/v8/src/frames.h +36 -25
data/vendor/v8/src/full-codegen.cc +15 -24
data/vendor/v8/src/full-codegen.h +13 -41
data/vendor/v8/src/func-name-inferrer.cc +7 -6
data/vendor/v8/src/func-name-inferrer.h +1 -1
data/vendor/v8/src/gdb-jit.cc +1 -0
data/vendor/v8/src/global-handles.cc +118 -56
data/vendor/v8/src/global-handles.h +98 -40
data/vendor/v8/src/globals.h +2 -2
data/vendor/v8/src/handles-inl.h +106 -9
data/vendor/v8/src/handles.cc +220 -157
data/vendor/v8/src/handles.h +38 -59
data/vendor/v8/src/hashmap.h +3 -3
data/vendor/v8/src/heap-inl.h +141 -25
data/vendor/v8/src/heap-profiler.cc +117 -63
data/vendor/v8/src/heap-profiler.h +38 -21
data/vendor/v8/src/heap.cc +805 -564
data/vendor/v8/src/heap.h +640 -594
data/vendor/v8/src/hydrogen-instructions.cc +216 -73
data/vendor/v8/src/hydrogen-instructions.h +259 -124
data/vendor/v8/src/hydrogen.cc +996 -1171
data/vendor/v8/src/hydrogen.h +163 -144
data/vendor/v8/src/ia32/assembler-ia32-inl.h +12 -11
data/vendor/v8/src/ia32/assembler-ia32.cc +85 -39
data/vendor/v8/src/ia32/assembler-ia32.h +82 -16
data/vendor/v8/src/ia32/builtins-ia32.cc +64 -58
data/vendor/v8/src/ia32/code-stubs-ia32.cc +248 -324
data/vendor/v8/src/ia32/code-stubs-ia32.h +3 -44
data/vendor/v8/src/ia32/codegen-ia32.cc +217 -165
data/vendor/v8/src/ia32/codegen-ia32.h +3 -0
data/vendor/v8/src/ia32/cpu-ia32.cc +6 -5
data/vendor/v8/src/ia32/debug-ia32.cc +8 -5
data/vendor/v8/src/ia32/deoptimizer-ia32.cc +124 -14
data/vendor/v8/src/ia32/disasm-ia32.cc +85 -62
data/vendor/v8/src/ia32/frames-ia32.h +1 -1
data/vendor/v8/src/ia32/full-codegen-ia32.cc +348 -435
data/vendor/v8/src/ia32/ic-ia32.cc +91 -91
data/vendor/v8/src/ia32/lithium-codegen-ia32.cc +500 -255
data/vendor/v8/src/ia32/lithium-codegen-ia32.h +13 -4
data/vendor/v8/src/ia32/lithium-gap-resolver-ia32.cc +6 -0
data/vendor/v8/src/ia32/lithium-ia32.cc +122 -45
data/vendor/v8/src/ia32/lithium-ia32.h +128 -41
data/vendor/v8/src/ia32/macro-assembler-ia32.cc +109 -84
data/vendor/v8/src/ia32/macro-assembler-ia32.h +18 -9
data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.cc +26 -15
data/vendor/v8/src/ia32/regexp-macro-assembler-ia32.h +1 -0
data/vendor/v8/src/ia32/register-allocator-ia32.cc +30 -30
data/vendor/v8/src/ia32/simulator-ia32.h +4 -4
data/vendor/v8/src/ia32/stub-cache-ia32.cc +383 -400
data/vendor/v8/src/ia32/virtual-frame-ia32.cc +36 -13
data/vendor/v8/src/ia32/virtual-frame-ia32.h +11 -5
data/vendor/v8/src/ic-inl.h +12 -2
data/vendor/v8/src/ic.cc +304 -221
data/vendor/v8/src/ic.h +115 -58
data/vendor/v8/src/interpreter-irregexp.cc +25 -21
data/vendor/v8/src/interpreter-irregexp.h +2 -1
data/vendor/v8/src/isolate.cc +883 -0
data/vendor/v8/src/isolate.h +1304 -0
data/vendor/v8/src/json.js +10 -10
data/vendor/v8/src/jsregexp.cc +111 -80
data/vendor/v8/src/jsregexp.h +6 -7
data/vendor/v8/src/jump-target-heavy.cc +5 -8
data/vendor/v8/src/jump-target-heavy.h +0 -6
data/vendor/v8/src/jump-target-inl.h +1 -1
data/vendor/v8/src/jump-target-light.cc +3 -3
data/vendor/v8/src/lithium-allocator-inl.h +2 -0
data/vendor/v8/src/lithium-allocator.cc +42 -30
data/vendor/v8/src/lithium-allocator.h +8 -22
data/vendor/v8/src/lithium.cc +1 -0
data/vendor/v8/src/liveedit.cc +141 -99
data/vendor/v8/src/liveedit.h +7 -2
data/vendor/v8/src/liveobjectlist-inl.h +90 -0
data/vendor/v8/src/liveobjectlist.cc +2537 -1
data/vendor/v8/src/liveobjectlist.h +245 -35
data/vendor/v8/src/log-utils.cc +122 -35
data/vendor/v8/src/log-utils.h +33 -36
data/vendor/v8/src/log.cc +299 -241
data/vendor/v8/src/log.h +177 -110
data/vendor/v8/src/mark-compact.cc +612 -470
data/vendor/v8/src/mark-compact.h +153 -80
data/vendor/v8/src/messages.cc +16 -14
data/vendor/v8/src/messages.js +30 -7
data/vendor/v8/src/mips/assembler-mips-inl.h +155 -35
data/vendor/v8/src/mips/assembler-mips.cc +1093 -219
data/vendor/v8/src/mips/assembler-mips.h +552 -153
data/vendor/v8/src/mips/builtins-mips.cc +43 -100
data/vendor/v8/src/mips/code-stubs-mips.cc +752 -0
data/vendor/v8/src/mips/code-stubs-mips.h +511 -0
data/vendor/v8/src/mips/codegen-mips-inl.h +8 -14
data/vendor/v8/src/mips/codegen-mips.cc +672 -896
data/vendor/v8/src/mips/codegen-mips.h +271 -69
data/vendor/v8/src/mips/constants-mips.cc +44 -20
data/vendor/v8/src/mips/constants-mips.h +238 -40
data/vendor/v8/src/mips/cpu-mips.cc +20 -3
data/vendor/v8/src/mips/debug-mips.cc +35 -7
data/vendor/v8/src/mips/deoptimizer-mips.cc +91 -0
data/vendor/v8/src/mips/disasm-mips.cc +329 -93
data/vendor/v8/src/mips/frames-mips.cc +2 -50
data/vendor/v8/src/mips/frames-mips.h +24 -9
data/vendor/v8/src/mips/full-codegen-mips.cc +473 -23
data/vendor/v8/src/mips/ic-mips.cc +81 -45
data/vendor/v8/src/mips/jump-target-mips.cc +11 -106
data/vendor/v8/src/mips/lithium-codegen-mips.h +65 -0
data/vendor/v8/src/mips/lithium-mips.h +304 -0
data/vendor/v8/src/mips/macro-assembler-mips.cc +2391 -390
data/vendor/v8/src/mips/macro-assembler-mips.h +718 -121
data/vendor/v8/src/mips/regexp-macro-assembler-mips.cc +478 -0
data/vendor/v8/src/mips/regexp-macro-assembler-mips.h +250 -0
data/vendor/v8/src/mips/register-allocator-mips-inl.h +0 -3
data/vendor/v8/src/mips/register-allocator-mips.h +3 -2
data/vendor/v8/src/mips/simulator-mips.cc +1009 -221
data/vendor/v8/src/mips/simulator-mips.h +119 -36
data/vendor/v8/src/mips/stub-cache-mips.cc +331 -148
data/vendor/v8/src/mips/{fast-codegen-mips.cc → virtual-frame-mips-inl.h} +11 -30
data/vendor/v8/src/mips/virtual-frame-mips.cc +137 -149
data/vendor/v8/src/mips/virtual-frame-mips.h +294 -312
data/vendor/v8/src/mirror-debugger.js +9 -8
data/vendor/v8/src/mksnapshot.cc +2 -2
data/vendor/v8/src/objects-debug.cc +16 -16
data/vendor/v8/src/objects-inl.h +421 -195
data/vendor/v8/src/objects-printer.cc +7 -7
data/vendor/v8/src/objects-visiting.cc +1 -1
data/vendor/v8/src/objects-visiting.h +33 -12
data/vendor/v8/src/objects.cc +935 -658
data/vendor/v8/src/objects.h +234 -139
data/vendor/v8/src/parser.cc +484 -439
data/vendor/v8/src/parser.h +35 -14
data/vendor/v8/src/platform-cygwin.cc +173 -107
data/vendor/v8/src/platform-freebsd.cc +224 -72
data/vendor/v8/src/platform-linux.cc +234 -95
data/vendor/v8/src/platform-macos.cc +215 -82
data/vendor/v8/src/platform-nullos.cc +9 -3
data/vendor/v8/src/platform-openbsd.cc +22 -7
data/vendor/v8/src/platform-posix.cc +30 -5
data/vendor/v8/src/platform-solaris.cc +120 -38
data/vendor/v8/src/platform-tls-mac.h +62 -0
data/vendor/v8/src/platform-tls-win32.h +62 -0
data/vendor/v8/src/platform-tls.h +50 -0
data/vendor/v8/src/platform-win32.cc +195 -97
data/vendor/v8/src/platform.h +72 -15
data/vendor/v8/src/preparse-data.cc +2 -0
data/vendor/v8/src/preparser-api.cc +8 -2
data/vendor/v8/src/preparser.cc +1 -1
data/vendor/v8/src/prettyprinter.cc +43 -52
data/vendor/v8/src/prettyprinter.h +1 -1
data/vendor/v8/src/profile-generator-inl.h +0 -28
data/vendor/v8/src/profile-generator.cc +942 -685
data/vendor/v8/src/profile-generator.h +210 -176
data/vendor/v8/src/property.cc +6 -0
data/vendor/v8/src/property.h +14 -3
data/vendor/v8/src/regexp-macro-assembler-irregexp.cc +1 -1
data/vendor/v8/src/regexp-macro-assembler.cc +28 -19
data/vendor/v8/src/regexp-macro-assembler.h +11 -6
data/vendor/v8/src/regexp-stack.cc +18 -10
data/vendor/v8/src/regexp-stack.h +45 -21
data/vendor/v8/src/regexp.js +3 -3
data/vendor/v8/src/register-allocator-inl.h +3 -3
data/vendor/v8/src/register-allocator.cc +1 -7
data/vendor/v8/src/register-allocator.h +5 -15
data/vendor/v8/src/rewriter.cc +2 -1
data/vendor/v8/src/runtime-profiler.cc +158 -128
data/vendor/v8/src/runtime-profiler.h +131 -15
data/vendor/v8/src/runtime.cc +2409 -1692
data/vendor/v8/src/runtime.h +93 -17
data/vendor/v8/src/safepoint-table.cc +3 -0
data/vendor/v8/src/safepoint-table.h +9 -3
data/vendor/v8/src/scanner-base.cc +21 -28
data/vendor/v8/src/scanner-base.h +22 -11
data/vendor/v8/src/scanner.cc +3 -5
data/vendor/v8/src/scanner.h +4 -2
data/vendor/v8/src/scopeinfo.cc +11 -16
data/vendor/v8/src/scopeinfo.h +26 -15
data/vendor/v8/src/scopes.cc +67 -37
data/vendor/v8/src/scopes.h +26 -12
data/vendor/v8/src/serialize.cc +193 -154
data/vendor/v8/src/serialize.h +41 -36
data/vendor/v8/src/small-pointer-list.h +163 -0
data/vendor/v8/src/snapshot-common.cc +1 -1
data/vendor/v8/src/snapshot.h +3 -1
data/vendor/v8/src/spaces-inl.h +30 -25
data/vendor/v8/src/spaces.cc +263 -370
data/vendor/v8/src/spaces.h +178 -166
data/vendor/v8/src/string-search.cc +4 -3
data/vendor/v8/src/string-search.h +21 -20
data/vendor/v8/src/string-stream.cc +32 -24
data/vendor/v8/src/string.js +7 -7
data/vendor/v8/src/stub-cache.cc +324 -248
data/vendor/v8/src/stub-cache.h +181 -155
data/vendor/v8/src/token.cc +3 -3
data/vendor/v8/src/token.h +3 -3
data/vendor/v8/src/top.cc +218 -390
data/vendor/v8/src/type-info.cc +98 -32
data/vendor/v8/src/type-info.h +10 -3
data/vendor/v8/src/unicode.cc +1 -1
data/vendor/v8/src/unicode.h +1 -1
data/vendor/v8/src/utils.h +3 -0
data/vendor/v8/src/v8-counters.cc +18 -11
data/vendor/v8/src/v8-counters.h +34 -13
data/vendor/v8/src/v8.cc +66 -121
data/vendor/v8/src/v8.h +7 -4
data/vendor/v8/src/v8globals.h +18 -12
data/vendor/v8/src/{memory.h → v8memory.h} +0 -0
data/vendor/v8/src/v8natives.js +59 -18
data/vendor/v8/src/v8threads.cc +127 -114
data/vendor/v8/src/v8threads.h +42 -35
data/vendor/v8/src/v8utils.h +2 -39
data/vendor/v8/src/variables.h +1 -1
data/vendor/v8/src/version.cc +26 -5
data/vendor/v8/src/version.h +4 -0
data/vendor/v8/src/virtual-frame-heavy-inl.h +2 -4
data/vendor/v8/src/virtual-frame-light-inl.h +5 -4
data/vendor/v8/src/vm-state-inl.h +21 -17
data/vendor/v8/src/vm-state.h +7 -5
data/vendor/v8/src/win32-headers.h +1 -0
data/vendor/v8/src/x64/assembler-x64-inl.h +12 -11
data/vendor/v8/src/x64/assembler-x64.cc +80 -40
data/vendor/v8/src/x64/assembler-x64.h +67 -17
data/vendor/v8/src/x64/builtins-x64.cc +34 -33
data/vendor/v8/src/x64/code-stubs-x64.cc +636 -377
data/vendor/v8/src/x64/code-stubs-x64.h +14 -48
data/vendor/v8/src/x64/codegen-x64-inl.h +1 -1
data/vendor/v8/src/x64/codegen-x64.cc +158 -136
data/vendor/v8/src/x64/codegen-x64.h +4 -1
data/vendor/v8/src/x64/cpu-x64.cc +7 -5
data/vendor/v8/src/x64/debug-x64.cc +8 -6
data/vendor/v8/src/x64/deoptimizer-x64.cc +195 -20
data/vendor/v8/src/x64/disasm-x64.cc +42 -23
data/vendor/v8/src/x64/frames-x64.cc +1 -1
data/vendor/v8/src/x64/frames-x64.h +2 -2
data/vendor/v8/src/x64/full-codegen-x64.cc +780 -218
data/vendor/v8/src/x64/ic-x64.cc +77 -79
data/vendor/v8/src/x64/jump-target-x64.cc +1 -1
data/vendor/v8/src/x64/lithium-codegen-x64.cc +698 -181
data/vendor/v8/src/x64/lithium-codegen-x64.h +31 -6
data/vendor/v8/src/x64/lithium-x64.cc +136 -54
data/vendor/v8/src/x64/lithium-x64.h +142 -51
data/vendor/v8/src/x64/macro-assembler-x64.cc +456 -187
data/vendor/v8/src/x64/macro-assembler-x64.h +166 -34
data/vendor/v8/src/x64/regexp-macro-assembler-x64.cc +44 -28
data/vendor/v8/src/x64/regexp-macro-assembler-x64.h +8 -4
data/vendor/v8/src/x64/register-allocator-x64-inl.h +3 -3
data/vendor/v8/src/x64/register-allocator-x64.cc +12 -8
data/vendor/v8/src/x64/simulator-x64.h +5 -5
data/vendor/v8/src/x64/stub-cache-x64.cc +299 -344
data/vendor/v8/src/x64/virtual-frame-x64.cc +37 -13
data/vendor/v8/src/x64/virtual-frame-x64.h +13 -7
data/vendor/v8/src/zone-inl.h +49 -3
data/vendor/v8/src/zone.cc +42 -41
data/vendor/v8/src/zone.h +37 -34
data/vendor/v8/test/benchmarks/testcfg.py +100 -0
data/vendor/v8/test/cctest/SConscript +5 -4
data/vendor/v8/test/cctest/cctest.h +3 -2
data/vendor/v8/test/cctest/cctest.status +6 -11
data/vendor/v8/test/cctest/test-accessors.cc +3 -3
data/vendor/v8/test/cctest/test-alloc.cc +39 -33
data/vendor/v8/test/cctest/test-api.cc +1092 -205
data/vendor/v8/test/cctest/test-assembler-arm.cc +39 -25
data/vendor/v8/test/cctest/test-assembler-ia32.cc +36 -37
data/vendor/v8/test/cctest/test-assembler-mips.cc +1098 -40
data/vendor/v8/test/cctest/test-assembler-x64.cc +32 -25
data/vendor/v8/test/cctest/test-ast.cc +1 -0
data/vendor/v8/test/cctest/test-circular-queue.cc +8 -5
data/vendor/v8/test/cctest/test-compiler.cc +24 -24
data/vendor/v8/test/cctest/test-cpu-profiler.cc +140 -5
data/vendor/v8/test/cctest/test-dataflow.cc +1 -0
data/vendor/v8/test/cctest/test-debug.cc +136 -77
data/vendor/v8/test/cctest/test-decls.cc +1 -1
data/vendor/v8/test/cctest/test-deoptimization.cc +25 -24
data/vendor/v8/test/cctest/test-disasm-arm.cc +9 -4
data/vendor/v8/test/cctest/test-disasm-ia32.cc +10 -8
data/vendor/v8/test/cctest/test-func-name-inference.cc +10 -4
data/vendor/v8/test/cctest/test-heap-profiler.cc +226 -164
data/vendor/v8/test/cctest/test-heap.cc +240 -217
data/vendor/v8/test/cctest/test-liveedit.cc +1 -0
data/vendor/v8/test/cctest/test-log-stack-tracer.cc +18 -20
data/vendor/v8/test/cctest/test-log.cc +114 -108
data/vendor/v8/test/cctest/test-macro-assembler-x64.cc +247 -177
data/vendor/v8/test/cctest/test-mark-compact.cc +129 -90
data/vendor/v8/test/cctest/test-parsing.cc +15 -14
data/vendor/v8/test/cctest/test-platform-linux.cc +1 -0
data/vendor/v8/test/cctest/test-platform-tls.cc +66 -0
data/vendor/v8/test/cctest/test-platform-win32.cc +1 -0
data/vendor/v8/test/cctest/test-profile-generator.cc +1 -1
data/vendor/v8/test/cctest/test-regexp.cc +53 -41
data/vendor/v8/test/cctest/test-reloc-info.cc +18 -11
data/vendor/v8/test/cctest/test-serialize.cc +44 -43
data/vendor/v8/test/cctest/test-sockets.cc +8 -3
data/vendor/v8/test/cctest/test-spaces.cc +47 -29
data/vendor/v8/test/cctest/test-strings.cc +20 -20
data/vendor/v8/test/cctest/test-thread-termination.cc +8 -3
data/vendor/v8/test/cctest/test-threads.cc +5 -3
data/vendor/v8/test/cctest/test-utils.cc +5 -4
data/vendor/v8/test/cctest/testcfg.py +7 -3
data/vendor/v8/test/es5conform/es5conform.status +2 -77
data/vendor/v8/test/es5conform/testcfg.py +1 -1
data/vendor/v8/test/message/testcfg.py +1 -1
data/vendor/v8/test/mjsunit/accessors-on-global-object.js +3 -3
data/vendor/v8/test/mjsunit/array-concat.js +43 -1
data/vendor/v8/test/mjsunit/array-join.js +25 -0
data/vendor/v8/test/mjsunit/bitops-info.js +7 -1
data/vendor/v8/test/mjsunit/compiler/array-length.js +2 -2
data/vendor/v8/test/mjsunit/compiler/global-accessors.js +47 -0
data/vendor/v8/test/mjsunit/compiler/pic.js +1 -1
data/vendor/v8/test/mjsunit/compiler/regress-loadfield.js +65 -0
data/vendor/v8/test/mjsunit/math-sqrt.js +5 -1
data/vendor/v8/test/mjsunit/mjsunit.js +59 -8
data/vendor/v8/test/mjsunit/mjsunit.status +0 -12
data/vendor/v8/test/mjsunit/mul-exhaustive.js +129 -11
data/vendor/v8/test/mjsunit/negate-zero.js +1 -1
data/vendor/v8/test/mjsunit/object-freeze.js +5 -13
data/vendor/v8/test/mjsunit/object-prevent-extensions.js +9 -50
data/vendor/v8/test/mjsunit/object-seal.js +4 -13
data/vendor/v8/test/mjsunit/override-eval-with-non-function.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-1145.js +54 -0
data/vendor/v8/test/mjsunit/regress/regress-1172-bis.js +37 -0
data/vendor/v8/test/mjsunit/regress/regress-1181.js +54 -0
data/vendor/v8/test/mjsunit/regress/regress-1207.js +35 -0
data/vendor/v8/test/mjsunit/regress/regress-1209.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-1210.js +48 -0
data/vendor/v8/test/mjsunit/regress/regress-1213.js +43 -0
data/vendor/v8/test/mjsunit/regress/regress-1218.js +29 -0
data/vendor/v8/test/mjsunit/regress/regress-1229.js +79 -0
data/vendor/v8/test/mjsunit/regress/regress-1233.js +47 -0
data/vendor/v8/test/mjsunit/regress/regress-1236.js +34 -0
data/vendor/v8/test/mjsunit/regress/regress-1237.js +36 -0
data/vendor/v8/test/mjsunit/regress/regress-1240.js +39 -0
data/vendor/v8/test/mjsunit/regress/regress-1257.js +58 -0
data/vendor/v8/test/mjsunit/regress/regress-1278.js +69 -0
data/vendor/v8/test/mjsunit/regress/regress-create-exception.js +1 -0
data/vendor/v8/test/mjsunit/regress/regress-lazy-deopt-reloc.js +52 -0
data/vendor/v8/test/mjsunit/sin-cos.js +15 -10
data/vendor/v8/test/mjsunit/smi-negative-zero.js +2 -2
data/vendor/v8/test/mjsunit/str-to-num.js +1 -1
data/vendor/v8/test/mjsunit/strict-mode.js +435 -0
data/vendor/v8/test/mjsunit/testcfg.py +23 -6
data/vendor/v8/test/mozilla/mozilla.status +0 -2
data/vendor/v8/test/mozilla/testcfg.py +1 -1
data/vendor/v8/test/preparser/empty.js +28 -0
data/vendor/v8/test/preparser/functions-only.js +38 -0
data/vendor/v8/test/preparser/non-alphanum.js +34 -0
data/vendor/v8/test/preparser/symbols-only.js +49 -0
data/vendor/v8/test/preparser/testcfg.py +90 -0
data/vendor/v8/test/sputnik/testcfg.py +1 -1
data/vendor/v8/test/test262/README +16 -0
data/vendor/v8/test/test262/harness-adapt.js +80 -0
data/vendor/v8/test/test262/test262.status +1506 -0
data/vendor/v8/test/test262/testcfg.py +123 -0
data/vendor/v8/tools/freebsd-tick-processor +10 -0
data/vendor/v8/tools/gyp/v8.gyp +8 -33
data/vendor/v8/tools/linux-tick-processor +5 -3
data/vendor/v8/tools/test.py +37 -14
data/vendor/v8/tools/tickprocessor.js +22 -8
data/vendor/v8/tools/visual_studio/v8_base.vcproj +13 -1
data/vendor/v8/tools/visual_studio/v8_base_arm.vcproj +5 -1
data/vendor/v8/tools/visual_studio/v8_base_x64.vcproj +5 -1
data/vendor/v8/tools/visual_studio/x64.vsprops +1 -0
metadata +1495 -1341
data/ext/extconf.rb +0 -22
data/ext/mustang.cpp +0 -58
data/vendor/v8/src/top.h +0 -608

data/vendor/v8/src/arm/codegen-arm.h CHANGED Viewed

@@ -268,10 +268,10 @@ class CodeGenerator: public AstVisitor {
   static int GetInlinedKeyedLoadInstructionsAfterPatch() {
     return FLAG_debug_code ? 32 : 13;
   }
-  static const int kInlinedKeyedStoreInstructionsAfterPatch = 5;
+  static const int kInlinedKeyedStoreInstructionsAfterPatch = 8;
   static int GetInlinedNamedStoreInstructionsAfterPatch() {
-    ASSERT(inlined_write_barrier_size_ != -1);
-    return inlined_write_barrier_size_ + 4;
+    ASSERT(Isolate::Current()->inlined_write_barrier_size() != -1);
+    return Isolate::Current()->inlined_write_barrier_size() + 4;
   }
  private:
@@ -287,6 +287,7 @@ class CodeGenerator: public AstVisitor {
   // Accessors
   inline bool is_eval();
   inline Scope* scope();
+  inline bool is_strict_mode();
   inline StrictModeFlag strict_mode_flag();
   // Generating deferred code.
@@ -575,15 +576,14 @@ class CodeGenerator: public AstVisitor {
   // to some unlinking code).
   bool function_return_is_shadowed_;
-  // Size of inlined write barriers generated by EmitNamedStore.
-  static int inlined_write_barrier_size_;
   friend class VirtualFrame;
+  friend class Isolate;
   friend class JumpTarget;
   friend class Reference;
   friend class FastCodeGenerator;
   friend class FullCodeGenerator;
   friend class FullCodeGenSyntaxChecker;
+  friend class InlineRuntimeFunctionsTable;
   friend class LCodeGen;
   DISALLOW_COPY_AND_ASSIGN(CodeGenerator);

data/vendor/v8/src/arm/constants-arm.h CHANGED Viewed

@@ -89,6 +89,11 @@
 namespace v8 {
 namespace internal {
+// Constant pool marker.
+static const int kConstantPoolMarkerMask = 0xffe00000;
+static const int kConstantPoolMarker = 0x0c000000;
+static const int kConstantPoolLengthMask = 0x001ffff;
 // Number of registers in normal ARM mode.
 static const int kNumRegisters = 16;
@@ -385,9 +390,14 @@ enum VFPConversionMode {
   kDefaultRoundToZero = 1
 };
+// This mask does not include the "inexact" or "input denormal" cumulative
+// exceptions flags, because we usually don't want to check for it.
 static const uint32_t kVFPExceptionMask = 0xf;
+static const uint32_t kVFPInvalidOpExceptionBit = 1 << 0;
+static const uint32_t kVFPOverflowExceptionBit = 1 << 2;
+static const uint32_t kVFPUnderflowExceptionBit = 1 << 3;
+static const uint32_t kVFPInexactExceptionBit = 1 << 4;
 static const uint32_t kVFPFlushToZeroMask = 1 << 24;
-static const uint32_t kVFPInvalidExceptionBit = 1;
 static const uint32_t kVFPNConditionFlagBit = 1 << 31;
 static const uint32_t kVFPZConditionFlagBit = 1 << 30;
@@ -411,6 +421,11 @@ enum VFPRoundingMode {
 static const uint32_t kVFPRoundingModeMask = 3 << 22;
+enum CheckForInexactConversion {
+  kCheckForInexactConversion,
+  kDontCheckForInexactConversion
+};
 // -----------------------------------------------------------------------------
 // Hints.

data/vendor/v8/src/arm/cpu-arm.cc CHANGED Viewed

@@ -42,10 +42,12 @@ namespace v8 {
 namespace internal {
 void CPU::Setup() {
-  CpuFeatures::Probe(true);
-  if (!CpuFeatures::IsSupported(VFP3) || Serializer::enabled()) {
-    V8::DisableCrankshaft();
-  }
+  CpuFeatures::Probe();
+}
+bool CPU::SupportsCrankshaft() {
+  return CpuFeatures::IsSupported(VFP3);
 }
@@ -61,7 +63,7 @@ void CPU::FlushICache(void* start, size_t size) {
   // that the Icache was flushed.
   // None of this code ends up in the snapshot so there are no issues
   // around whether or not to generate the code when building snapshots.
-  Simulator::FlushICache(start, size);
+  Simulator::FlushICache(Isolate::Current()->simulator_i_cache(), start, size);
 #else
   // Ideally, we would call
   //   syscall(__ARM_NR_cacheflush, start,

data/vendor/v8/src/arm/debug-arm.cc CHANGED Viewed

@@ -65,7 +65,7 @@ void BreakLocationIterator::SetDebugBreakAtReturn() {
   patcher.masm()->mov(v8::internal::lr, v8::internal::pc);
   patcher.masm()->ldr(v8::internal::pc, MemOperand(v8::internal::pc, -4));
 #endif
-  patcher.Emit(Debug::debug_break_return()->entry());
+  patcher.Emit(Isolate::Current()->debug()->debug_break_return()->entry());
   patcher.masm()->bkpt(0);
 }
@@ -115,7 +115,7 @@ void BreakLocationIterator::SetDebugBreakAtSlot() {
   patcher.masm()->mov(v8::internal::lr, v8::internal::pc);
   patcher.masm()->ldr(v8::internal::pc, MemOperand(v8::internal::pc, -4));
 #endif
-  patcher.Emit(Debug::debug_break_return()->entry());
+  patcher.Emit(Isolate::Current()->debug()->debug_break_slot()->entry());
 }
@@ -159,7 +159,7 @@ static void Generate_DebugBreakCallHelper(MacroAssembler* masm,
   __ RecordComment("// Calling from debug break to runtime - come in - over");
 #endif
   __ mov(r0, Operand(0, RelocInfo::NONE));  // no arguments
-  __ mov(r1, Operand(ExternalReference::debug_break()));
+  __ mov(r1, Operand(ExternalReference::debug_break(masm->isolate())));
   CEntryStub ceb(1);
   __ CallStub(&ceb);
@@ -185,7 +185,9 @@ static void Generate_DebugBreakCallHelper(MacroAssembler* masm,
   // Now that the break point has been handled, resume normal execution by
   // jumping to the target address intended by the caller and that was
   // overwritten by the address of DebugBreakXXX.
-  __ mov(ip, Operand(ExternalReference(Debug_Address::AfterBreakTarget())));
+  ExternalReference after_break_target =
+      ExternalReference(Debug_Address::AfterBreakTarget(), masm->isolate());
+  __ mov(ip, Operand(after_break_target));
   __ ldr(ip, MemOperand(ip));
   __ Jump(ip);
 }

data/vendor/v8/src/arm/deoptimizer-arm.cc CHANGED Viewed

@@ -44,8 +44,14 @@ int Deoptimizer::patch_size() {
 }
+void Deoptimizer::EnsureRelocSpaceForLazyDeoptimization(Handle<Code> code) {
+  // Nothing to do. No new relocation information is written for lazy
+  // deoptimization on ARM.
+}
 void Deoptimizer::DeoptimizeFunction(JSFunction* function) {
+  HandleScope scope;
   AssertNoAllocation no_allocation;
   if (!function->IsOptimized()) return;
@@ -69,8 +75,6 @@ void Deoptimizer::DeoptimizeFunction(JSFunction* function) {
     int deoptimization_index = safepoint_entry.deoptimization_index();
     int gap_code_size = safepoint_entry.gap_code_size();
     // Check that we did not shoot past next safepoint.
-    // TODO(srdjan): How do we guarantee that safepoint code does not
-    // overlap other safepoint patching code?
     CHECK(pc_offset >= last_pc_offset);
 #ifdef DEBUG
     // Destroy the code which is not supposed to be run again.
@@ -107,8 +111,9 @@ void Deoptimizer::DeoptimizeFunction(JSFunction* function) {
   // Add the deoptimizing code to the list.
   DeoptimizingCodeListNode* node = new DeoptimizingCodeListNode(code);
-  node->set_next(deoptimizing_code_list_);
-  deoptimizing_code_list_ = node;
+  DeoptimizerData* data = code->GetIsolate()->deoptimizer_data();
+  node->set_next(data->deoptimizing_code_list_);
+  data->deoptimizing_code_list_ = node;
   // Set the code for the function to non-optimized version.
   function->ReplaceCode(function->shared()->code());
@@ -117,6 +122,11 @@ void Deoptimizer::DeoptimizeFunction(JSFunction* function) {
     PrintF("[forced deoptimization: ");
     function->PrintName();
     PrintF(" / %x]\n", reinterpret_cast<uint32_t>(function));
+#ifdef DEBUG
+    if (FLAG_print_code) {
+      code->PrintLn();
+    }
+#endif
   }
 }
@@ -278,14 +288,33 @@ void Deoptimizer::DoComputeOsrOutputFrame() {
   // There are no translation commands for the caller's pc and fp, the
   // context, and the function.  Set them up explicitly.
-  for (int i = 0; ok && i < 4; i++) {
+  for (int i =  StandardFrameConstants::kCallerPCOffset;
+       ok && i >=  StandardFrameConstants::kMarkerOffset;
+       i -= kPointerSize) {
     uint32_t input_value = input_->GetFrameSlot(input_offset);
     if (FLAG_trace_osr) {
-      PrintF("    [sp + %d] <- 0x%08x ; [sp + %d] (fixed part)\n",
+      const char* name = "UNKNOWN";
+      switch (i) {
+        case StandardFrameConstants::kCallerPCOffset:
+          name = "caller's pc";
+          break;
+        case StandardFrameConstants::kCallerFPOffset:
+          name = "fp";
+          break;
+        case StandardFrameConstants::kContextOffset:
+          name = "context";
+          break;
+        case StandardFrameConstants::kMarkerOffset:
+          name = "function";
+          break;
+      }
+      PrintF("    [sp + %d] <- 0x%08x ; [sp + %d] (fixed part - %s)\n",
              output_offset,
              input_value,
-             input_offset);
+             input_offset,
+             name);
     }
     output_[0]->SetFrameSlot(output_offset, input_->GetFrameSlot(input_offset));
     input_offset -= kPointerSize;
     output_offset -= kPointerSize;
@@ -311,7 +340,7 @@ void Deoptimizer::DoComputeOsrOutputFrame() {
         optimized_code_->entry() + pc_offset);
     output_[0]->SetPc(pc);
   }
-  Code* continuation = Builtins::builtin(Builtins::NotifyOSR);
+  Code* continuation = isolate_->builtins()->builtin(Builtins::kNotifyOSR);
   output_[0]->SetContinuation(
       reinterpret_cast<uint32_t>(continuation->entry()));
@@ -485,11 +514,13 @@ void Deoptimizer::DoComputeFrame(TranslationIterator* iterator,
       FullCodeGenerator::StateField::decode(pc_and_state);
   output_frame->SetState(Smi::FromInt(state));
   // Set the continuation for the topmost frame.
   if (is_topmost) {
+    Builtins* builtins = isolate_->builtins();
     Code* continuation = (bailout_type_ == EAGER)
-        ? Builtins::builtin(Builtins::NotifyDeoptimized)
-        : Builtins::builtin(Builtins::NotifyLazyDeoptimized);
+        ? builtins->builtin(Builtins::kNotifyDeoptimized)
+        : builtins->builtin(Builtins::kNotifyLazyDeoptimized);
     output_frame->SetContinuation(
         reinterpret_cast<uint32_t>(continuation->entry()));
   }
@@ -505,6 +536,9 @@ void Deoptimizer::DoComputeFrame(TranslationIterator* iterator,
 // easily ported.
 void Deoptimizer::EntryGenerator::Generate() {
   GeneratePrologue();
+  Isolate* isolate = masm()->isolate();
   CpuFeatures::Scope scope(VFP3);
   // Save all general purpose registers before messing with them.
   const int kNumberOfRegisters = Register::kNumRegisters;
@@ -552,14 +586,16 @@ void Deoptimizer::EntryGenerator::Generate() {
   // Allocate a new deoptimizer object.
   // Pass four arguments in r0 to r3 and fifth argument on stack.
-  __ PrepareCallCFunction(5, r5);
+  __ PrepareCallCFunction(6, r5);
   __ ldr(r0, MemOperand(fp, JavaScriptFrameConstants::kFunctionOffset));
   __ mov(r1, Operand(type()));  // bailout type,
   // r2: bailout id already loaded.
   // r3: code address or 0 already loaded.
   __ str(r4, MemOperand(sp, 0 * kPointerSize));  // Fp-to-sp delta.
+  __ mov(r5, Operand(ExternalReference::isolate_address()));
+  __ str(r5, MemOperand(sp, 1 * kPointerSize));  // Isolate.
   // Call Deoptimizer::New().
-  __ CallCFunction(ExternalReference::new_deoptimizer_function(), 5);
+  __ CallCFunction(ExternalReference::new_deoptimizer_function(isolate), 6);
   // Preserve "deoptimizer" object in register r0 and get the input
   // frame descriptor pointer to r1 (deoptimizer->input_);
@@ -613,7 +649,8 @@ void Deoptimizer::EntryGenerator::Generate() {
   // r0: deoptimizer object; r1: scratch.
   __ PrepareCallCFunction(1, r1);
   // Call Deoptimizer::ComputeOutputFrames().
-  __ CallCFunction(ExternalReference::compute_output_frames_function(), 1);
+  __ CallCFunction(
+      ExternalReference::compute_output_frames_function(isolate), 1);
   __ pop(r0);  // Restore deoptimizer object (class Deoptimizer).
   // Replace the current (input) frame with the output frames.
@@ -663,7 +700,7 @@ void Deoptimizer::EntryGenerator::Generate() {
   __ pop(ip);  // remove lr
   // Set up the roots register.
-  ExternalReference roots_address = ExternalReference::roots_address();
+  ExternalReference roots_address = ExternalReference::roots_address(isolate);
   __ mov(r10, Operand(roots_address));
   __ pop(ip);  // remove pc

data/vendor/v8/src/arm/disasm-arm.cc CHANGED Viewed

@@ -89,6 +89,9 @@ class Decoder {
   // Returns the length of the disassembled machine instruction in bytes.
   int InstructionDecode(byte* instruction);
+  static bool IsConstantPoolAt(byte* instr_ptr);
+  static int ConstantPoolSizeAt(byte* instr_ptr);
  private:
   // Bottleneck functions to print into the out_buffer.
   void PrintChar(const char ch);
@@ -899,6 +902,7 @@ void Decoder::DecodeType2(Instruction* instr) {
     case da_x: {
       if (instr->HasW()) {
         Unknown(instr);  // not used in V8
+        return;
       }
       Format(instr, "'memop'cond'b 'rd, ['rn], #-'off12");
       break;
@@ -906,6 +910,7 @@ void Decoder::DecodeType2(Instruction* instr) {
     case ia_x: {
       if (instr->HasW()) {
         Unknown(instr);  // not used in V8
+        return;
       }
       Format(instr, "'memop'cond'b 'rd, ['rn], #+'off12");
       break;
@@ -992,11 +997,15 @@ void Decoder::DecodeType3(Instruction* instr) {
 void Decoder::DecodeType4(Instruction* instr) {
-  ASSERT(instr->Bit(22) == 0);  // Privileged mode currently not supported.
-  if (instr->HasL()) {
-    Format(instr, "ldm'cond'pu 'rn'w, 'rlist");
+  if (instr->Bit(22) != 0) {
+    // Privileged mode currently not supported.
+    Unknown(instr);
   } else {
-    Format(instr, "stm'cond'pu 'rn'w, 'rlist");
+    if (instr->HasL()) {
+      Format(instr, "ldm'cond'pu 'rn'w, 'rlist");
+    } else {
+      Format(instr, "stm'cond'pu 'rn'w, 'rlist");
+    }
   }
 }
@@ -1042,6 +1051,8 @@ int Decoder::DecodeType7(Instruction* instr) {
 // vmov: Rt = Sn
 // vcvt: Dd = Sm
 // vcvt: Sd = Dm
+// Dd = vabs(Dm)
+// Dd = vneg(Dm)
 // Dd = vadd(Dn, Dm)
 // Dd = vsub(Dn, Dm)
 // Dd = vmul(Dn, Dm)
@@ -1067,6 +1078,9 @@ void Decoder::DecodeTypeVFP(Instruction* instr) {
       } else if ((instr->Opc2Value() == 0x0) && (instr->Opc3Value() == 0x3)) {
         // vabs
         Format(instr, "vabs'cond 'Dd, 'Dm");
+      } else if ((instr->Opc2Value() == 0x1) && (instr->Opc3Value() == 0x1)) {
+        // vneg
+        Format(instr, "vneg'cond 'Dd, 'Dm");
       } else if ((instr->Opc2Value() == 0x7) && (instr->Opc3Value() == 0x3)) {
         DecodeVCVTBetweenDoubleAndSingle(instr);
       } else if ((instr->Opc2Value() == 0x8) && (instr->Opc3Value() & 0x1)) {
@@ -1294,7 +1308,23 @@ void Decoder::DecodeType6CoprocessorIns(Instruction* instr) {
         break;
     }
   } else {
-    UNIMPLEMENTED();  // Not used by V8.
+    Unknown(instr);  // Not used by V8.
+  }
+}
+bool Decoder::IsConstantPoolAt(byte* instr_ptr) {
+  int instruction_bits = *(reinterpret_cast<int*>(instr_ptr));
+  return (instruction_bits & kConstantPoolMarkerMask) == kConstantPoolMarker;
+}
+int Decoder::ConstantPoolSizeAt(byte* instr_ptr) {
+  if (IsConstantPoolAt(instr_ptr)) {
+    int instruction_bits = *(reinterpret_cast<int*>(instr_ptr));
+    return instruction_bits & kConstantPoolLengthMask;
+  } else {
+    return -1;
   }
 }
@@ -1307,7 +1337,15 @@ int Decoder::InstructionDecode(byte* instr_ptr) {
                                   "%08x       ",
                                   instr->InstructionBits());
   if (instr->ConditionField() == kSpecialCondition) {
-    UNIMPLEMENTED();
+    Unknown(instr);
+    return Instruction::kInstrSize;
+  }
+  int instruction_bits = *(reinterpret_cast<int*>(instr_ptr));
+  if ((instruction_bits & kConstantPoolMarkerMask) == kConstantPoolMarker) {
+    out_buffer_pos_ += OS::SNPrintF(out_buffer_ + out_buffer_pos_,
+                                    "constant pool begin (length %d)",
+                                    instruction_bits &
+                                    kConstantPoolLengthMask);
     return Instruction::kInstrSize;
   }
   switch (instr->TypeValue()) {
@@ -1359,9 +1397,8 @@ namespace disasm {
 const char* NameConverter::NameOfAddress(byte* addr) const {
-  static v8::internal::EmbeddedVector<char, 32> tmp_buffer;
-  v8::internal::OS::SNPrintF(tmp_buffer, "%p", addr);
-  return tmp_buffer.start();
+  v8::internal::OS::SNPrintF(tmp_buffer_, "%p", addr);
+  return tmp_buffer_.start();
 }
@@ -1411,12 +1448,7 @@ int Disassembler::InstructionDecode(v8::internal::Vector<char> buffer,
 int Disassembler::ConstantPoolSizeAt(byte* instruction) {
-  int instruction_bits = *(reinterpret_cast<int*>(instruction));
-  if ((instruction_bits & 0xfff00000) == 0x03000000) {
-    return instruction_bits & 0x0000ffff;
-  } else {
-    return -1;
-  }
+  return v8::internal::Decoder::ConstantPoolSizeAt(instruction);
 }

data/vendor/v8/src/arm/frames-arm.h CHANGED Viewed

@@ -136,7 +136,7 @@ class JavaScriptFrameConstants : public AllStatic {
  public:
   // FP-relative.
   static const int kLocal0Offset = StandardFrameConstants::kExpressionsOffset;
-  static const int kSavedRegistersOffset = +2 * kPointerSize;
+  static const int kLastParameterOffset = +2 * kPointerSize;
   static const int kFunctionOffset = StandardFrameConstants::kMarkerOffset;
   // Caller SP-relative.

data/vendor/v8/src/arm/full-codegen-arm.cc CHANGED Viewed

@@ -210,13 +210,18 @@ void FullCodeGenerator::Generate(CompilationInfo* info) {
     //   function, receiver address, parameter count.
     // The stub will rewrite receiever and parameter count if the previous
     // stack frame was an arguments adapter frame.
-    ArgumentsAccessStub stub(ArgumentsAccessStub::NEW_OBJECT);
+    ArgumentsAccessStub stub(
+        is_strict_mode() ? ArgumentsAccessStub::NEW_STRICT
+                         : ArgumentsAccessStub::NEW_NON_STRICT);
     __ CallStub(&stub);
-    // Duplicate the value; move-to-slot operation might clobber registers.
-    __ mov(r3, r0);
+    Variable* arguments_shadow = scope()->arguments_shadow();
+    if (arguments_shadow != NULL) {
+      // Duplicate the value; move-to-slot operation might clobber registers.
+      __ mov(r3, r0);
+      Move(arguments_shadow->AsSlot(), r3, r1, r2);
+    }
     Move(arguments->AsSlot(), r0, r1, r2);
-    Slot* dot_arguments_slot = scope()->arguments_shadow()->AsSlot();
-    Move(dot_arguments_slot, r3, r1, r2);
   }
   if (FLAG_trace) {
@@ -339,23 +344,6 @@ void FullCodeGenerator::EmitReturnSequence() {
 }
-FullCodeGenerator::ConstantOperand FullCodeGenerator::GetConstantOperand(
-    Token::Value op, Expression* left, Expression* right) {
-  ASSERT(ShouldInlineSmiCase(op));
-  if (op == Token::DIV || op == Token::MOD || op == Token::MUL) {
-    // We never generate inlined constant smi operations for these.
-    return kNoConstants;
-  } else if (right->IsSmiLiteral()) {
-    return kRightConstant;
-  } else if (left->IsSmiLiteral() && !Token::IsShiftOp(op)) {
-    // Don't inline shifts with constant left hand side.
-    return kLeftConstant;
-  } else {
-    return kNoConstants;
-  }
-}
 void FullCodeGenerator::EffectContext::Plug(Slot* slot) const {
 }
@@ -574,13 +562,38 @@ void FullCodeGenerator::TestContext::Plug(bool flag) const {
 void FullCodeGenerator::DoTest(Label* if_true,
                                Label* if_false,
                                Label* fall_through) {
-  // Call the runtime to find the boolean value of the source and then
-  // translate it into control flow to the pair of labels.
-  __ push(result_register());
-  __ CallRuntime(Runtime::kToBool, 1);
-  __ LoadRoot(ip, Heap::kTrueValueRootIndex);
-  __ cmp(r0, ip);
-  Split(eq, if_true, if_false, fall_through);
+  if (CpuFeatures::IsSupported(VFP3)) {
+    CpuFeatures::Scope scope(VFP3);
+    // Emit the inlined tests assumed by the stub.
+    __ LoadRoot(ip, Heap::kUndefinedValueRootIndex);
+    __ cmp(result_register(), ip);
+    __ b(eq, if_false);
+    __ LoadRoot(ip, Heap::kTrueValueRootIndex);
+    __ cmp(result_register(), ip);
+    __ b(eq, if_true);
+    __ LoadRoot(ip, Heap::kFalseValueRootIndex);
+    __ cmp(result_register(), ip);
+    __ b(eq, if_false);
+    STATIC_ASSERT(kSmiTag == 0);
+    __ tst(result_register(), result_register());
+    __ b(eq, if_false);
+    __ JumpIfSmi(result_register(), if_true);
+    // Call the ToBoolean stub for all other cases.
+    ToBooleanStub stub(result_register());
+    __ CallStub(&stub);
+    __ tst(result_register(), result_register());
+  } else {
+    // Call the runtime to find the boolean value of the source and then
+    // translate it into control flow to the pair of labels.
+    __ push(result_register());
+    __ CallRuntime(Runtime::kToBool, 1);
+    __ LoadRoot(ip, Heap::kFalseValueRootIndex);
+    __ cmp(r0, ip);
+  }
+  // The stub returns nonzero for true.
+  Split(ne, if_true, if_false, fall_through);
 }
@@ -768,7 +781,9 @@ void FullCodeGenerator::EmitDeclaration(Variable* variable,
              prop->key()->AsLiteral()->handle()->IsSmi());
       __ mov(r1, Operand(prop->key()->AsLiteral()->handle()));
-      Handle<Code> ic(Builtins::builtin(Builtins::KeyedStoreIC_Initialize));
+      Handle<Code> ic = is_strict_mode()
+          ? isolate()->builtins()->KeyedStoreIC_Initialize_Strict()
+          : isolate()->builtins()->KeyedStoreIC_Initialize();
       EmitCallIC(ic, RelocInfo::CODE_TARGET);
       // Value in r0 is ignored (declarations are statements).
     }
@@ -784,10 +799,11 @@ void FullCodeGenerator::VisitDeclaration(Declaration* decl) {
 void FullCodeGenerator::DeclareGlobals(Handle<FixedArray> pairs) {
   // Call the runtime to declare the globals.
   // The context is the first argument.
-  __ mov(r1, Operand(pairs));
-  __ mov(r0, Operand(Smi::FromInt(is_eval() ? 1 : 0)));
-  __ Push(cp, r1, r0);
-  __ CallRuntime(Runtime::kDeclareGlobals, 3);
+  __ mov(r2, Operand(pairs));
+  __ mov(r1, Operand(Smi::FromInt(is_eval() ? 1 : 0)));
+  __ mov(r0, Operand(Smi::FromInt(strict_mode_flag())));
+  __ Push(cp, r2, r1, r0);
+  __ CallRuntime(Runtime::kDeclareGlobals, 4);
   // Return value is ignored.
 }
@@ -796,9 +812,9 @@ void FullCodeGenerator::VisitSwitchStatement(SwitchStatement* stmt) {
   Comment cmnt(masm_, "[ SwitchStatement");
   Breakable nested_statement(this, stmt);
   SetStatementPosition(stmt);
   // Keep the switch value on the stack until a case matches.
   VisitForStackValue(stmt->tag());
   PrepareForBailoutForId(stmt->EntryId(), NO_REGISTERS);
   ZoneList<CaseClause*>* clauses = stmt->cases();
@@ -864,6 +880,7 @@ void FullCodeGenerator::VisitSwitchStatement(SwitchStatement* stmt) {
     Comment cmnt(masm_, "[ Case body");
     CaseClause* clause = clauses->at(i);
     __ bind(clause->body_target()->entry_label());
+    PrepareForBailoutForId(clause->EntryId(), NO_REGISTERS);
     VisitStatements(clause->statements());
   }
@@ -887,8 +904,9 @@ void FullCodeGenerator::VisitForInStatement(ForInStatement* stmt) {
   __ LoadRoot(ip, Heap::kUndefinedValueRootIndex);
   __ cmp(r0, ip);
   __ b(eq, &exit);
-  __ LoadRoot(ip, Heap::kNullValueRootIndex);
-  __ cmp(r0, ip);
+  Register null_value = r5;
+  __ LoadRoot(null_value, Heap::kNullValueRootIndex);
+  __ cmp(r0, null_value);
   __ b(eq, &exit);
   // Convert the object to a JS object.
@@ -902,12 +920,62 @@ void FullCodeGenerator::VisitForInStatement(ForInStatement* stmt) {
   __ bind(&done_convert);
   __ push(r0);
-  // BUG(867): Check cache validity in generated code. This is a fast
-  // case for the JSObject::IsSimpleEnum cache validity checks. If we
-  // cannot guarantee cache validity, call the runtime system to check
-  // cache validity or get the property names in a fixed array.
+  // Check cache validity in generated code. This is a fast case for
+  // the JSObject::IsSimpleEnum cache validity checks. If we cannot
+  // guarantee cache validity, call the runtime system to check cache
+  // validity or get the property names in a fixed array.
+  Label next, call_runtime;
+  // Preload a couple of values used in the loop.
+  Register  empty_fixed_array_value = r6;
+  __ LoadRoot(empty_fixed_array_value, Heap::kEmptyFixedArrayRootIndex);
+  Register empty_descriptor_array_value = r7;
+  __ LoadRoot(empty_descriptor_array_value,
+              Heap::kEmptyDescriptorArrayRootIndex);
+  __ mov(r1, r0);
+  __ bind(&next);
+  // Check that there are no elements.  Register r1 contains the
+  // current JS object we've reached through the prototype chain.
+  __ ldr(r2, FieldMemOperand(r1, JSObject::kElementsOffset));
+  __ cmp(r2, empty_fixed_array_value);
+  __ b(ne, &call_runtime);
+  // Check that instance descriptors are not empty so that we can
+  // check for an enum cache.  Leave the map in r2 for the subsequent
+  // prototype load.
+  __ ldr(r2, FieldMemOperand(r1, HeapObject::kMapOffset));
+  __ ldr(r3, FieldMemOperand(r2, Map::kInstanceDescriptorsOffset));
+  __ cmp(r3, empty_descriptor_array_value);
+  __ b(eq, &call_runtime);
+  // Check that there is an enum cache in the non-empty instance
+  // descriptors (r3).  This is the case if the next enumeration
+  // index field does not contain a smi.
+  __ ldr(r3, FieldMemOperand(r3, DescriptorArray::kEnumerationIndexOffset));
+  __ JumpIfSmi(r3, &call_runtime);
+  // For all objects but the receiver, check that the cache is empty.
+  Label check_prototype;
+  __ cmp(r1, r0);
+  __ b(eq, &check_prototype);
+  __ ldr(r3, FieldMemOperand(r3, DescriptorArray::kEnumCacheBridgeCacheOffset));
+  __ cmp(r3, empty_fixed_array_value);
+  __ b(ne, &call_runtime);
+  // Load the prototype from the map and loop if non-null.
+  __ bind(&check_prototype);
+  __ ldr(r1, FieldMemOperand(r2, Map::kPrototypeOffset));
+  __ cmp(r1, null_value);
+  __ b(ne, &next);
+  // The enum cache is valid.  Load the map of the object being
+  // iterated over and use the cache for the iteration.
+  Label use_cache;
+  __ ldr(r0, FieldMemOperand(r0, HeapObject::kMapOffset));
+  __ b(&use_cache);
   // Get the set of properties to enumerate.
+  __ bind(&call_runtime);
   __ push(r0);  // Duplicate the enumerable object on the stack.
   __ CallRuntime(Runtime::kGetPropertyNamesFast, 1);
@@ -922,6 +990,7 @@ void FullCodeGenerator::VisitForInStatement(ForInStatement* stmt) {
   __ b(ne, &fixed_array);
   // We got a map in register r0. Get the enumeration cache from it.
+  __ bind(&use_cache);
   __ ldr(r1, FieldMemOperand(r0, Map::kInstanceDescriptorsOffset));
   __ ldr(r1, FieldMemOperand(r1, DescriptorArray::kEnumerationIndexOffset));
   __ ldr(r2, FieldMemOperand(r1, DescriptorArray::kEnumCacheBridgeCacheOffset));
@@ -1010,11 +1079,17 @@ void FullCodeGenerator::VisitForInStatement(ForInStatement* stmt) {
 void FullCodeGenerator::EmitNewClosure(Handle<SharedFunctionInfo> info,
                                        bool pretenure) {
   // Use the fast case closure allocation code that allocates in new
-  // space for nested functions that don't need literals cloning.
-  if (scope()->is_function_scope() &&
-      info->num_literals() == 0 &&
-      !pretenure) {
-    FastNewClosureStub stub;
+  // space for nested functions that don't need literals cloning. If
+  // we're running with the --always-opt or the --prepare-always-opt
+  // flag, we need to use the runtime function so that the new function
+  // we are creating here gets a chance to have its code optimized and
+  // doesn't just get a copy of the existing unoptimized code.
+  if (!FLAG_always_opt &&
+      !FLAG_prepare_always_opt &&
+      !pretenure &&
+      scope()->is_function_scope() &&
+      info->num_literals() == 0) {
+    FastNewClosureStub stub(info->strict_mode() ? kStrictMode : kNonStrictMode);
     __ mov(r0, Operand(info));
     __ push(r0);
     __ CallStub(&stub);
@@ -1111,7 +1186,8 @@ void FullCodeGenerator::EmitDynamicLoadFromSlotFastCase(
                  ContextSlotOperandCheckExtensions(obj_proxy->var()->AsSlot(),
                                                    slow));
           __ mov(r0, Operand(key_literal->handle()));
-          Handle<Code> ic(Builtins::builtin(Builtins::KeyedLoadIC_Initialize));
+          Handle<Code> ic =
+              isolate()->builtins()->KeyedLoadIC_Initialize();
           EmitCallIC(ic, RelocInfo::CODE_TARGET);
           __ jmp(done);
         }
@@ -1177,7 +1253,7 @@ void FullCodeGenerator::EmitLoadGlobalSlotCheckExtensions(
   RelocInfo::Mode mode = (typeof_state == INSIDE_TYPEOF)
       ? RelocInfo::CODE_TARGET
       : RelocInfo::CODE_TARGET_CONTEXT;
-  Handle<Code> ic(Builtins::builtin(Builtins::LoadIC_Initialize));
+  Handle<Code> ic = isolate()->builtins()->LoadIC_Initialize();
   EmitCallIC(ic, mode);
 }
@@ -1195,7 +1271,7 @@ void FullCodeGenerator::EmitVariableLoad(Variable* var) {
     // object (receiver) in r0.
     __ ldr(r0, GlobalObjectOperand());
     __ mov(r2, Operand(var->name()));
-    Handle<Code> ic(Builtins::builtin(Builtins::LoadIC_Initialize));
+    Handle<Code> ic = isolate()->builtins()->LoadIC_Initialize();
     EmitCallIC(ic, RelocInfo::CODE_TARGET_CONTEXT);
     context()->Plug(r0);
@@ -1254,7 +1330,7 @@ void FullCodeGenerator::EmitVariableLoad(Variable* var) {
     __ mov(r0, Operand(key_literal->handle()));
     // Call keyed load IC. It has arguments key and receiver in r0 and r1.
-    Handle<Code> ic(Builtins::builtin(Builtins::KeyedLoadIC_Initialize));
+    Handle<Code> ic = isolate()->builtins()->KeyedLoadIC_Initialize();
     EmitCallIC(ic, RelocInfo::CODE_TARGET);
     context()->Plug(r0);
   }
@@ -1265,18 +1341,19 @@ void FullCodeGenerator::VisitRegExpLiteral(RegExpLiteral* expr) {
   Comment cmnt(masm_, "[ RegExpLiteral");
   Label materialized;
   // Registers will be used as follows:
+  // r5 = materialized value (RegExp literal)
   // r4 = JS function, literals array
   // r3 = literal index
   // r2 = RegExp pattern
   // r1 = RegExp flags
-  // r0 = temp + materialized value (RegExp literal)
+  // r0 = RegExp literal clone
   __ ldr(r0, MemOperand(fp, JavaScriptFrameConstants::kFunctionOffset));
   __ ldr(r4, FieldMemOperand(r0, JSFunction::kLiteralsOffset));
   int literal_offset =
       FixedArray::kHeaderSize + expr->literal_index() * kPointerSize;
-  __ ldr(r0, FieldMemOperand(r4, literal_offset));
+  __ ldr(r5, FieldMemOperand(r4, literal_offset));
   __ LoadRoot(ip, Heap::kUndefinedValueRootIndex);
-  __ cmp(r0, ip);
+  __ cmp(r5, ip);
   __ b(ne, &materialized);
   // Create regexp literal using runtime function.
@@ -1286,20 +1363,27 @@ void FullCodeGenerator::VisitRegExpLiteral(RegExpLiteral* expr) {
   __ mov(r1, Operand(expr->flags()));
   __ Push(r4, r3, r2, r1);
   __ CallRuntime(Runtime::kMaterializeRegExpLiteral, 4);
+  __ mov(r5, r0);
   __ bind(&materialized);
   int size = JSRegExp::kSize + JSRegExp::kInObjectFieldCount * kPointerSize;
-  __ push(r0);
+  Label allocated, runtime_allocate;
+  __ AllocateInNewSpace(size, r0, r2, r3, &runtime_allocate, TAG_OBJECT);
+  __ jmp(&allocated);
+  __ bind(&runtime_allocate);
+  __ push(r5);
   __ mov(r0, Operand(Smi::FromInt(size)));
   __ push(r0);
   __ CallRuntime(Runtime::kAllocateInNewSpace, 1);
+  __ pop(r5);
+  __ bind(&allocated);
   // After this, registers are used as follows:
   // r0: Newly allocated regexp.
-  // r1: Materialized regexp.
+  // r5: Materialized regexp.
   // r2: temp.
-  __ pop(r1);
-  __ CopyFields(r0, r1, r2.bit(), size / kPointerSize);
+  __ CopyFields(r0, r5, r2.bit(), size / kPointerSize);
   context()->Plug(r0);
 }
@@ -1310,7 +1394,13 @@ void FullCodeGenerator::VisitObjectLiteral(ObjectLiteral* expr) {
   __ ldr(r3, FieldMemOperand(r3, JSFunction::kLiteralsOffset));
   __ mov(r2, Operand(Smi::FromInt(expr->literal_index())));
   __ mov(r1, Operand(expr->constant_properties()));
-  __ mov(r0, Operand(Smi::FromInt(expr->fast_elements() ? 1 : 0)));
+  int flags = expr->fast_elements()
+      ? ObjectLiteral::kFastElements
+      : ObjectLiteral::kNoFlags;
+  flags |= expr->has_function()
+      ? ObjectLiteral::kHasFunction
+      : ObjectLiteral::kNoFlags;
+  __ mov(r0, Operand(Smi::FromInt(flags)));
   __ Push(r3, r2, r1, r0);
   if (expr->depth() > 1) {
     __ CallRuntime(Runtime::kCreateObjectLiteral, 4);
@@ -1349,7 +1439,7 @@ void FullCodeGenerator::VisitObjectLiteral(ObjectLiteral* expr) {
             VisitForAccumulatorValue(value);
             __ mov(r2, Operand(key->handle()));
             __ ldr(r1, MemOperand(sp));
-            Handle<Code> ic(Builtins::builtin(Builtins::StoreIC_Initialize));
+            Handle<Code> ic = isolate()->builtins()->StoreIC_Initialize();
             EmitCallIC(ic, RelocInfo::CODE_TARGET);
             PrepareForBailoutForId(key->id(), NO_REGISTERS);
           } else {
@@ -1365,7 +1455,9 @@ void FullCodeGenerator::VisitObjectLiteral(ObjectLiteral* expr) {
         VisitForStackValue(key);
         VisitForStackValue(value);
         if (property->emit_store()) {
-          __ CallRuntime(Runtime::kSetProperty, 3);
+          __ mov(r0, Operand(Smi::FromInt(NONE)));  // PropertyAttributes
+          __ push(r0);
+          __ CallRuntime(Runtime::kSetProperty, 4);
         } else {
           __ Drop(3);
         }
@@ -1386,6 +1478,13 @@ void FullCodeGenerator::VisitObjectLiteral(ObjectLiteral* expr) {
     }
   }
+  if (expr->has_function()) {
+    ASSERT(result_saved);
+    __ ldr(r0, MemOperand(sp));
+    __ push(r0);
+    __ CallRuntime(Runtime::kToFastProperties, 1);
+  }
   if (result_saved) {
     context()->PlugTOS();
   } else {
@@ -1405,11 +1504,13 @@ void FullCodeGenerator::VisitArrayLiteral(ArrayLiteral* expr) {
   __ mov(r2, Operand(Smi::FromInt(expr->literal_index())));
   __ mov(r1, Operand(expr->constant_elements()));
   __ Push(r3, r2, r1);
-  if (expr->constant_elements()->map() == Heap::fixed_cow_array_map()) {
+  if (expr->constant_elements()->map() ==
+      isolate()->heap()->fixed_cow_array_map()) {
     FastCloneShallowArrayStub stub(
         FastCloneShallowArrayStub::COPY_ON_WRITE_ELEMENTS, length);
     __ CallStub(&stub);
-    __ IncrementCounter(&Counters::cow_arrays_created_stub, 1, r1, r2);
+    __ IncrementCounter(
+        isolate()->counters()->cow_arrays_created_stub(), 1, r1, r2);
   } else if (expr->depth() > 1) {
     __ CallRuntime(Runtime::kCreateArrayLiteral, 3);
   } else if (length > FastCloneShallowArrayStub::kMaximumClonedLength) {
@@ -1521,36 +1622,29 @@ void FullCodeGenerator::VisitAssignment(Assignment* expr) {
       break;
   }
+  // For compound assignments we need another deoptimization point after the
+  // variable/property load.
   if (expr->is_compound()) {
     { AccumulatorValueContext context(this);
       switch (assign_type) {
         case VARIABLE:
           EmitVariableLoad(expr->target()->AsVariableProxy()->var());
+          PrepareForBailout(expr->target(), TOS_REG);
           break;
         case NAMED_PROPERTY:
           EmitNamedPropertyLoad(property);
+          PrepareForBailoutForId(expr->CompoundLoadId(), TOS_REG);
           break;
         case KEYED_PROPERTY:
           EmitKeyedPropertyLoad(property);
+          PrepareForBailoutForId(expr->CompoundLoadId(), TOS_REG);
           break;
       }
     }
-    // For property compound assignments we need another deoptimization
-    // point after the property load.
-    if (property != NULL) {
-      PrepareForBailoutForId(expr->CompoundLoadId(), TOS_REG);
-    }
     Token::Value op = expr->binary_op();
-    ConstantOperand constant = ShouldInlineSmiCase(op)
-        ? GetConstantOperand(op, expr->target(), expr->value())
-        : kNoConstants;
-    ASSERT(constant == kRightConstant || constant == kNoConstants);
-    if (constant == kNoConstants) {
-      __ push(r0);  // Left operand goes on the stack.
-      VisitForAccumulatorValue(expr->value());
-    }
+    __ push(r0);  // Left operand goes on the stack.
+    VisitForAccumulatorValue(expr->value());
     OverwriteMode mode = expr->value()->ResultOverwriteAllowed()
         ? OVERWRITE_RIGHT
@@ -1562,8 +1656,7 @@ void FullCodeGenerator::VisitAssignment(Assignment* expr) {
                             op,
                             mode,
                             expr->target(),
-                            expr->value(),
-                            constant);
+                            expr->value());
     } else {
       EmitBinaryOp(op, mode);
     }
@@ -1600,7 +1693,7 @@ void FullCodeGenerator::EmitNamedPropertyLoad(Property* prop) {
   Literal* key = prop->key()->AsLiteral();
   __ mov(r2, Operand(key->handle()));
   // Call load IC. It has arguments receiver and property name r0 and r2.
-  Handle<Code> ic(Builtins::builtin(Builtins::LoadIC_Initialize));
+  Handle<Code> ic = isolate()->builtins()->LoadIC_Initialize();
   EmitCallIC(ic, RelocInfo::CODE_TARGET);
 }
@@ -1608,222 +1701,16 @@ void FullCodeGenerator::EmitNamedPropertyLoad(Property* prop) {
 void FullCodeGenerator::EmitKeyedPropertyLoad(Property* prop) {
   SetSourcePosition(prop->position());
   // Call keyed load IC. It has arguments key and receiver in r0 and r1.
-  Handle<Code> ic(Builtins::builtin(Builtins::KeyedLoadIC_Initialize));
+  Handle<Code> ic = isolate()->builtins()->KeyedLoadIC_Initialize();
   EmitCallIC(ic, RelocInfo::CODE_TARGET);
 }
-void FullCodeGenerator::EmitConstantSmiAdd(Expression* expr,
-                                           OverwriteMode mode,
-                                           bool left_is_constant_smi,
-                                           Smi* value) {
-  Label call_stub, done;
-  // Optimistically add smi value with unknown object. If result overflows or is
-  // not a smi then we had either a smi overflow or added a smi with a tagged
-  // pointer.
-  __ mov(r1, Operand(value));
-  __ add(r2, r0, r1, SetCC);
-  __ b(vs, &call_stub);
-  JumpPatchSite patch_site(masm_);
-  patch_site.EmitJumpIfNotSmi(r2, &call_stub);
-  __ mov(r0, r2);
-  __ b(&done);
-  // Call the shared stub.
-  __ bind(&call_stub);
-  if (!left_is_constant_smi) {
-    __ Swap(r0, r1, r2);
-  }
-  TypeRecordingBinaryOpStub stub(Token::ADD, mode);
-  EmitCallIC(stub.GetCode(), &patch_site);
-  __ bind(&done);
-  context()->Plug(r0);
-}
-void FullCodeGenerator::EmitConstantSmiSub(Expression* expr,
-                                           OverwriteMode mode,
-                                           bool left_is_constant_smi,
-                                           Smi* value) {
-  Label call_stub, done;
-  // Optimistically subtract smi value and unknown object. If result overflows
-  // or is not a smi then we had either a smi overflow or subtraction between a
-  // smi and a tagged pointer.
-  __ mov(r1, Operand(value));
-  if (left_is_constant_smi) {
-    __ sub(r2, r1, r0, SetCC);
-  } else {
-    __ sub(r2, r0, r1, SetCC);
-  }
-  __ b(vs, &call_stub);
-  JumpPatchSite patch_site(masm_);
-  patch_site.EmitJumpIfNotSmi(r2, &call_stub);
-  __ mov(r0, r2);
-  __ b(&done);
-  // Call the shared stub.
-  __ bind(&call_stub);
-  if (!left_is_constant_smi) {
-    __ Swap(r0, r1, r2);
-  }
-  TypeRecordingBinaryOpStub stub(Token::SUB, mode);
-  EmitCallIC(stub.GetCode(), &patch_site);
-  __ bind(&done);
-  context()->Plug(r0);
-}
-void FullCodeGenerator::EmitConstantSmiShiftOp(Expression* expr,
-                                               Token::Value op,
-                                               OverwriteMode mode,
-                                               Smi* value) {
-  Label call_stub, smi_case, done;
-  int shift_value = value->value() & 0x1f;
-  JumpPatchSite patch_site(masm_);
-  patch_site.EmitJumpIfSmi(r0, &smi_case);
-  // Call stub.
-  __ bind(&call_stub);
-  __ mov(r1, r0);
-  __ mov(r0, Operand(value));
-  TypeRecordingBinaryOpStub stub(op, mode);
-  EmitCallIC(stub.GetCode(), &patch_site);
-  __ b(&done);
-  // Smi case.
-  __ bind(&smi_case);
-  switch (op) {
-    case Token::SHL:
-      if (shift_value != 0) {
-        __ mov(r1, r0);
-        if (shift_value > 1) {
-          __ mov(r1, Operand(r1, LSL, shift_value - 1));
-        }
-        // Convert int result to smi, checking that it is in int range.
-        __ SmiTag(r1, SetCC);
-        __ b(vs, &call_stub);
-        __ mov(r0, r1);  // Put result back into r0.
-      }
-      break;
-    case Token::SAR:
-      if (shift_value != 0) {
-        __ mov(r0, Operand(r0, ASR, shift_value));
-        __ bic(r0, r0, Operand(kSmiTagMask));
-      }
-      break;
-    case Token::SHR:
-      // SHR must return a positive value. When shifting by 0 or 1 we need to
-      // check that smi tagging the result will not create a negative value.
-      if (shift_value < 2) {
-        __ mov(r2, Operand(shift_value));
-        __ SmiUntag(r1, r0);
-        if (shift_value != 0) {
-          __ mov(r1, Operand(r1, LSR, shift_value));
-        }
-        __ tst(r1, Operand(0xc0000000));
-        __ b(ne, &call_stub);
-        __ SmiTag(r0, r1);  // result in r0.
-      } else {
-        __ SmiUntag(r0);
-        __ mov(r0, Operand(r0, LSR, shift_value));
-        __ SmiTag(r0);
-      }
-      break;
-    default:
-      UNREACHABLE();
-  }
-  __ bind(&done);
-  context()->Plug(r0);
-}
-void FullCodeGenerator::EmitConstantSmiBitOp(Expression* expr,
-                                             Token::Value op,
-                                             OverwriteMode mode,
-                                             Smi* value) {
-  Label smi_case, done;
-  JumpPatchSite patch_site(masm_);
-  patch_site.EmitJumpIfSmi(r0, &smi_case);
-  // The order of the arguments does not matter for bit-ops with a
-  // constant operand.
-  __ mov(r1, Operand(value));
-  TypeRecordingBinaryOpStub stub(op, mode);
-  EmitCallIC(stub.GetCode(), &patch_site);
-  __ jmp(&done);
-  // Smi case.
-  __ bind(&smi_case);
-  __ mov(r1, Operand(value));
-  switch (op) {
-    case Token::BIT_OR:
-      __ orr(r0, r0, Operand(r1));
-      break;
-    case Token::BIT_XOR:
-      __ eor(r0, r0, Operand(r1));
-      break;
-    case Token::BIT_AND:
-      __ and_(r0, r0, Operand(r1));
-      break;
-    default:
-      UNREACHABLE();
-  }
-  __ bind(&done);
-  context()->Plug(r0);
-}
-void FullCodeGenerator::EmitConstantSmiBinaryOp(Expression* expr,
-                                                Token::Value op,
-                                                OverwriteMode mode,
-                                                bool left_is_constant_smi,
-                                                Smi* value) {
-  switch (op) {
-    case Token::BIT_OR:
-    case Token::BIT_XOR:
-    case Token::BIT_AND:
-      EmitConstantSmiBitOp(expr, op, mode, value);
-      break;
-    case Token::SHL:
-    case Token::SAR:
-    case Token::SHR:
-      ASSERT(!left_is_constant_smi);
-      EmitConstantSmiShiftOp(expr, op, mode, value);
-      break;
-    case Token::ADD:
-      EmitConstantSmiAdd(expr, mode, left_is_constant_smi, value);
-      break;
-    case Token::SUB:
-      EmitConstantSmiSub(expr, mode, left_is_constant_smi, value);
-      break;
-    default:
-      UNREACHABLE();
-  }
-}
 void FullCodeGenerator::EmitInlineSmiBinaryOp(Expression* expr,
                                               Token::Value op,
                                               OverwriteMode mode,
                                               Expression* left_expr,
-                                              Expression* right_expr,
-                                              ConstantOperand constant) {
-  if (constant == kRightConstant) {
-    Smi* value =  Smi::cast(*right_expr->AsLiteral()->handle());
-    EmitConstantSmiBinaryOp(expr, op, mode, false, value);
-    return;
-  } else if (constant == kLeftConstant) {
-    Smi* value =  Smi::cast(*left_expr->AsLiteral()->handle());
-    EmitConstantSmiBinaryOp(expr, op, mode, true, value);
-    return;
-  }
+                                              Expression* right_expr) {
   Label done, smi_case, stub_call;
   Register scratch1 = r2;
@@ -1959,7 +1846,9 @@ void FullCodeGenerator::EmitAssignment(Expression* expr, int bailout_ast_id) {
       __ mov(r1, r0);
       __ pop(r0);  // Restore value.
       __ mov(r2, Operand(prop->key()->AsLiteral()->handle()));
-      Handle<Code> ic(Builtins::builtin(Builtins::StoreIC_Initialize));
+      Handle<Code> ic = is_strict_mode()
+          ? isolate()->builtins()->StoreIC_Initialize_Strict()
+          : isolate()->builtins()->StoreIC_Initialize();
       EmitCallIC(ic, RelocInfo::CODE_TARGET);
       break;
     }
@@ -1980,7 +1869,9 @@ void FullCodeGenerator::EmitAssignment(Expression* expr, int bailout_ast_id) {
         __ pop(r2);
       }
       __ pop(r0);  // Restore value.
-      Handle<Code> ic(Builtins::builtin(Builtins::KeyedStoreIC_Initialize));
+      Handle<Code> ic = is_strict_mode()
+          ? isolate()->builtins()->KeyedStoreIC_Initialize_Strict()
+          : isolate()->builtins()->KeyedStoreIC_Initialize();
       EmitCallIC(ic, RelocInfo::CODE_TARGET);
       break;
     }
@@ -2004,9 +1895,9 @@ void FullCodeGenerator::EmitVariableAssignment(Variable* var,
     // r2, and the global object in r1.
     __ mov(r2, Operand(var->name()));
     __ ldr(r1, GlobalObjectOperand());
-    Handle<Code> ic(Builtins::builtin(is_strict()
-        ? Builtins::StoreIC_Initialize_Strict
-        : Builtins::StoreIC_Initialize));
+    Handle<Code> ic = is_strict_mode()
+        ? isolate()->builtins()->StoreIC_Initialize_Strict()
+        : isolate()->builtins()->StoreIC_Initialize();
     EmitCallIC(ic, RelocInfo::CODE_TARGET_CONTEXT);
   } else if (op == Token::INIT_CONST) {
@@ -2075,9 +1966,10 @@ void FullCodeGenerator::EmitVariableAssignment(Variable* var,
       case Slot::LOOKUP:
         // Call the runtime for the assignment.
         __ push(r0);  // Value.
-        __ mov(r0, Operand(slot->var()->name()));
-        __ Push(cp, r0);  // Context and name.
-        __ CallRuntime(Runtime::kStoreContextSlot, 3);
+        __ mov(r1, Operand(slot->var()->name()));
+        __ mov(r0, Operand(Smi::FromInt(strict_mode_flag())));
+        __ Push(cp, r1, r0);  // Context, name, strict mode.
+        __ CallRuntime(Runtime::kStoreContextSlot, 4);
         break;
     }
   }
@@ -2112,7 +2004,9 @@ void FullCodeGenerator::EmitNamedPropertyAssignment(Assignment* expr) {
     __ pop(r1);
   }
-  Handle<Code> ic(Builtins::builtin(Builtins::StoreIC_Initialize));
+  Handle<Code> ic = is_strict_mode()
+      ? isolate()->builtins()->StoreIC_Initialize_Strict()
+      : isolate()->builtins()->StoreIC_Initialize();
   EmitCallIC(ic, RelocInfo::CODE_TARGET);
   // If the assignment ends an initialization block, revert to fast case.
@@ -2156,7 +2050,9 @@ void FullCodeGenerator::EmitKeyedPropertyAssignment(Assignment* expr) {
     __ pop(r2);
   }
-  Handle<Code> ic(Builtins::builtin(Builtins::KeyedStoreIC_Initialize));
+  Handle<Code> ic = is_strict_mode()
+      ? isolate()->builtins()->KeyedStoreIC_Initialize_Strict()
+      : isolate()->builtins()->KeyedStoreIC_Initialize();
   EmitCallIC(ic, RelocInfo::CODE_TARGET);
   // If the assignment ends an initialization block, revert to fast case.
@@ -2207,7 +2103,8 @@ void FullCodeGenerator::EmitCallWithIC(Call* expr,
   SetSourcePosition(expr->position());
   // Call the IC initialization code.
   InLoopFlag in_loop = (loop_depth() > 0) ? IN_LOOP : NOT_IN_LOOP;
-  Handle<Code> ic = StubCache::ComputeCallInitialize(arg_count, in_loop);
+  Handle<Code> ic =
+      isolate()->stub_cache()->ComputeCallInitialize(arg_count, in_loop);
   EmitCallIC(ic, mode);
   RecordJSReturnSite(expr);
   // Restore context register.
@@ -2240,7 +2137,8 @@ void FullCodeGenerator::EmitKeyedCallWithIC(Call* expr,
   SetSourcePosition(expr->position());
   // Call the IC initialization code.
   InLoopFlag in_loop = (loop_depth() > 0) ? IN_LOOP : NOT_IN_LOOP;
-  Handle<Code> ic = StubCache::ComputeKeyedCallInitialize(arg_count, in_loop);
+  Handle<Code> ic =
+      isolate()->stub_cache()->ComputeKeyedCallInitialize(arg_count, in_loop);
   __ ldr(r2, MemOperand(sp, (arg_count + 1) * kPointerSize));  // Key.
   EmitCallIC(ic, mode);
   RecordJSReturnSite(expr);
@@ -2271,6 +2169,29 @@ void FullCodeGenerator::EmitCallWithStub(Call* expr) {
 }
+void FullCodeGenerator::EmitResolvePossiblyDirectEval(ResolveEvalFlag flag,
+                                                      int arg_count) {
+  // Push copy of the first argument or undefined if it doesn't exist.
+  if (arg_count > 0) {
+    __ ldr(r1, MemOperand(sp, arg_count * kPointerSize));
+  } else {
+    __ LoadRoot(r1, Heap::kUndefinedValueRootIndex);
+  }
+  __ push(r1);
+  // Push the receiver of the enclosing function and do runtime call.
+  __ ldr(r1, MemOperand(fp, (2 + scope()->num_parameters()) * kPointerSize));
+  __ push(r1);
+  // Push the strict mode flag.
+  __ mov(r1, Operand(Smi::FromInt(strict_mode_flag())));
+  __ push(r1);
+  __ CallRuntime(flag == SKIP_CONTEXT_LOOKUP
+                 ? Runtime::kResolvePossiblyDirectEvalNoLookup
+                 : Runtime::kResolvePossiblyDirectEval, 4);
+}
 void FullCodeGenerator::VisitCall(Call* expr) {
 #ifdef DEBUG
   // We want to verify that RecordJSReturnSite gets called on all paths
@@ -2300,26 +2221,31 @@ void FullCodeGenerator::VisitCall(Call* expr) {
         VisitForStackValue(args->at(i));
       }
-      // Push copy of the function - found below the arguments.
-      __ ldr(r1, MemOperand(sp, (arg_count + 1) * kPointerSize));
-      __ push(r1);
-      // Push copy of the first argument or undefined if it doesn't exist.
-      if (arg_count > 0) {
-        __ ldr(r1, MemOperand(sp, arg_count * kPointerSize));
-        __ push(r1);
-      } else {
-        __ push(r2);
+      // If we know that eval can only be shadowed by eval-introduced
+      // variables we attempt to load the global eval function directly
+      // in generated code. If we succeed, there is no need to perform a
+      // context lookup in the runtime system.
+      Label done;
+      if (var->AsSlot() != NULL && var->mode() == Variable::DYNAMIC_GLOBAL) {
+        Label slow;
+        EmitLoadGlobalSlotCheckExtensions(var->AsSlot(),
+                                          NOT_INSIDE_TYPEOF,
+                                          &slow);
+        // Push the function and resolve eval.
+        __ push(r0);
+        EmitResolvePossiblyDirectEval(SKIP_CONTEXT_LOOKUP, arg_count);
+        __ jmp(&done);
+        __ bind(&slow);
       }
-      // Push the receiver of the enclosing function and do runtime call.
-      __ ldr(r1,
-             MemOperand(fp, (2 + scope()->num_parameters()) * kPointerSize));
-      __ push(r1);
-      // Push the strict mode flag.
-      __ mov(r1, Operand(Smi::FromInt(strict_mode_flag())));
+      // Push copy of the function (found below the arguments) and
+      // resolve eval.
+      __ ldr(r1, MemOperand(sp, (arg_count + 1) * kPointerSize));
       __ push(r1);
-      __ CallRuntime(Runtime::kResolvePossiblyDirectEval, 4);
+      EmitResolvePossiblyDirectEval(PERFORM_CONTEXT_LOOKUP, arg_count);
+      if (done.is_linked()) {
+        __ bind(&done);
+      }
       // The runtime call returns a pair of values in r0 (function) and
       // r1 (receiver). Touch up the stack with the right values.
@@ -2411,7 +2337,7 @@ void FullCodeGenerator::VisitCall(Call* expr) {
         // Record source code position for IC call.
         SetSourcePosition(prop->position());
-        Handle<Code> ic(Builtins::builtin(Builtins::KeyedLoadIC_Initialize));
+        Handle<Code> ic = isolate()->builtins()->KeyedLoadIC_Initialize();
         EmitCallIC(ic, RelocInfo::CODE_TARGET);
         __ ldr(r1, GlobalObjectOperand());
         __ ldr(r1, FieldMemOperand(r1, GlobalObject::kGlobalReceiverOffset));
@@ -2425,16 +2351,6 @@ void FullCodeGenerator::VisitCall(Call* expr) {
       }
     }
   } else {
-    // Call to some other expression.  If the expression is an anonymous
-    // function literal not called in a loop, mark it as one that should
-    // also use the fast code generator.
-    FunctionLiteral* lit = fun->AsFunctionLiteral();
-    if (lit != NULL &&
-        lit->name()->Equals(Heap::empty_string()) &&
-        loop_depth() == 0) {
-      lit->set_try_full_codegen(true);
-    }
     { PreservePositionScope scope(masm()->positions_recorder());
       VisitForStackValue(fun);
     }
@@ -2479,7 +2395,8 @@ void FullCodeGenerator::VisitCallNew(CallNew* expr) {
   __ mov(r0, Operand(arg_count));
   __ ldr(r1, MemOperand(sp, arg_count * kPointerSize));
-  Handle<Code> construct_builtin(Builtins::builtin(Builtins::JSConstructCall));
+  Handle<Code> construct_builtin =
+      isolate()->builtins()->JSConstructCall();
   __ Call(construct_builtin, RelocInfo::CONSTRUCT_CALL);
   context()->Plug(r0);
 }
@@ -2615,11 +2532,75 @@ void FullCodeGenerator::EmitIsStringWrapperSafeForDefaultValueOf(
   context()->PrepareTest(&materialize_true, &materialize_false,
                          &if_true, &if_false, &fall_through);
-  // Just indicate false, as %_IsStringWrapperSafeForDefaultValueOf() is only
-  // used in a few functions in runtime.js which should not normally be hit by
-  // this compiler.
+  if (FLAG_debug_code) __ AbortIfSmi(r0);
+  __ ldr(r1, FieldMemOperand(r0, HeapObject::kMapOffset));
+  __ ldrb(ip, FieldMemOperand(r1, Map::kBitField2Offset));
+  __ tst(ip, Operand(1 << Map::kStringWrapperSafeForDefaultValueOf));
+  __ b(ne, if_true);
+  // Check for fast case object. Generate false result for slow case object.
+  __ ldr(r2, FieldMemOperand(r0, JSObject::kPropertiesOffset));
+  __ ldr(r2, FieldMemOperand(r2, HeapObject::kMapOffset));
+  __ LoadRoot(ip, Heap::kHashTableMapRootIndex);
+  __ cmp(r2, ip);
+  __ b(eq, if_false);
+  // Look for valueOf symbol in the descriptor array, and indicate false if
+  // found. The type is not checked, so if it is a transition it is a false
+  // negative.
+  __ ldr(r4, FieldMemOperand(r1, Map::kInstanceDescriptorsOffset));
+  __ ldr(r3, FieldMemOperand(r4, FixedArray::kLengthOffset));
+  // r4: descriptor array
+  // r3: length of descriptor array
+  // Calculate the end of the descriptor array.
+  STATIC_ASSERT(kSmiTag == 0);
+  STATIC_ASSERT(kSmiTagSize == 1);
+  STATIC_ASSERT(kPointerSize == 4);
+  __ add(r2, r4, Operand(FixedArray::kHeaderSize - kHeapObjectTag));
+  __ add(r2, r2, Operand(r3, LSL, kPointerSizeLog2 - kSmiTagSize));
+  // Calculate location of the first key name.
+  __ add(r4,
+         r4,
+         Operand(FixedArray::kHeaderSize - kHeapObjectTag +
+                 DescriptorArray::kFirstIndex * kPointerSize));
+  // Loop through all the keys in the descriptor array. If one of these is the
+  // symbol valueOf the result is false.
+  Label entry, loop;
+  // The use of ip to store the valueOf symbol asumes that it is not otherwise
+  // used in the loop below.
+  __ mov(ip, Operand(FACTORY->value_of_symbol()));
+  __ jmp(&entry);
+  __ bind(&loop);
+  __ ldr(r3, MemOperand(r4, 0));
+  __ cmp(r3, ip);
+  __ b(eq, if_false);
+  __ add(r4, r4, Operand(kPointerSize));
+  __ bind(&entry);
+  __ cmp(r4, Operand(r2));
+  __ b(ne, &loop);
+  // If a valueOf property is not found on the object check that it's
+  // prototype is the un-modified String prototype. If not result is false.
+  __ ldr(r2, FieldMemOperand(r1, Map::kPrototypeOffset));
+  __ tst(r2, Operand(kSmiTagMask));
+  __ b(eq, if_false);
+  __ ldr(r2, FieldMemOperand(r2, HeapObject::kMapOffset));
+  __ ldr(r3, ContextOperand(cp, Context::GLOBAL_INDEX));
+  __ ldr(r3, FieldMemOperand(r3, GlobalObject::kGlobalContextOffset));
+  __ ldr(r3, ContextOperand(r3, Context::STRING_FUNCTION_PROTOTYPE_MAP_INDEX));
+  __ cmp(r2, r3);
+  __ b(ne, if_false);
+  // Set the bit in the map to indicate that it has been checked safe for
+  // default valueOf and set true result.
+  __ ldrb(r2, FieldMemOperand(r4, Map::kBitField2Offset));
+  __ orr(r2, r2, Operand(1 << Map::kStringWrapperSafeForDefaultValueOf));
+  __ strb(r2, FieldMemOperand(r4, Map::kBitField2Offset));
+  __ jmp(if_true);
   PrepareForBailoutBeforeSplit(TOS_REG, true, if_true, if_false);
-  __ jmp(if_false);
   context()->Plug(if_true, if_false);
 }
@@ -2875,8 +2856,9 @@ void FullCodeGenerator::EmitRandomHeapNumber(ZoneList<Expression*>* args) {
   // by computing:
   // ( 1.(20 0s)(32 random bits) x 2^20 ) - (1.0 x 2^20)).
   if (CpuFeatures::IsSupported(VFP3)) {
-    __ PrepareCallCFunction(0, r1);
-    __ CallCFunction(ExternalReference::random_uint32_function(), 0);
+    __ PrepareCallCFunction(1, r0);
+    __ mov(r0, Operand(ExternalReference::isolate_address()));
+    __ CallCFunction(ExternalReference::random_uint32_function(isolate()), 1);
     CpuFeatures::Scope scope(VFP3);
     // 0x41300000 is the top half of 1.0 x 2^20 as a double.
@@ -2894,10 +2876,11 @@ void FullCodeGenerator::EmitRandomHeapNumber(ZoneList<Expression*>* args) {
     __ vstr(d7, r0, HeapNumber::kValueOffset);
     __ mov(r0, r4);
   } else {
+    __ PrepareCallCFunction(2, r0);
     __ mov(r0, Operand(r4));
-    __ PrepareCallCFunction(1, r1);
+    __ mov(r1, Operand(ExternalReference::isolate_address()));
     __ CallCFunction(
-        ExternalReference::fill_heap_number_with_random_function(), 1);
+        ExternalReference::fill_heap_number_with_random_function(isolate()), 2);
   }
   context()->Plug(r0);
@@ -2952,7 +2935,8 @@ void FullCodeGenerator::EmitMathPow(ZoneList<Expression*>* args) {
   ASSERT(args->length() == 2);
   VisitForStackValue(args->at(0));
   VisitForStackValue(args->at(1));
-  __ CallRuntime(Runtime::kMath_pow, 2);
+  MathPowStub stub;
+  __ CallStub(&stub);
   context()->Plug(r0);
 }
@@ -3134,37 +3118,43 @@ void FullCodeGenerator::EmitStringCompare(ZoneList<Expression*>* args) {
 void FullCodeGenerator::EmitMathSin(ZoneList<Expression*>* args) {
-  // Load the argument on the stack and call the runtime.
+  // Load the argument on the stack and call the stub.
+  TranscendentalCacheStub stub(TranscendentalCache::SIN,
+                               TranscendentalCacheStub::TAGGED);
   ASSERT(args->length() == 1);
   VisitForStackValue(args->at(0));
-  __ CallRuntime(Runtime::kMath_sin, 1);
+  __ CallStub(&stub);
   context()->Plug(r0);
 }
 void FullCodeGenerator::EmitMathCos(ZoneList<Expression*>* args) {
-  // Load the argument on the stack and call the runtime.
+  // Load the argument on the stack and call the stub.
+  TranscendentalCacheStub stub(TranscendentalCache::COS,
+                               TranscendentalCacheStub::TAGGED);
   ASSERT(args->length() == 1);
   VisitForStackValue(args->at(0));
-  __ CallRuntime(Runtime::kMath_cos, 1);
+  __ CallStub(&stub);
   context()->Plug(r0);
 }
-void FullCodeGenerator::EmitMathSqrt(ZoneList<Expression*>* args) {
-  // Load the argument on the stack and call the runtime function.
+void FullCodeGenerator::EmitMathLog(ZoneList<Expression*>* args) {
+  // Load the argument on the stack and call the stub.
+  TranscendentalCacheStub stub(TranscendentalCache::LOG,
+                               TranscendentalCacheStub::TAGGED);
   ASSERT(args->length() == 1);
   VisitForStackValue(args->at(0));
-  __ CallRuntime(Runtime::kMath_sqrt, 1);
+  __ CallStub(&stub);
   context()->Plug(r0);
 }
-void FullCodeGenerator::EmitMathLog(ZoneList<Expression*>* args) {
+void FullCodeGenerator::EmitMathSqrt(ZoneList<Expression*>* args) {
   // Load the argument on the stack and call the runtime function.
   ASSERT(args->length() == 1);
   VisitForStackValue(args->at(0));
-  __ CallRuntime(Runtime::kMath_log, 1);
+  __ CallRuntime(Runtime::kMath_sqrt, 1);
   context()->Plug(r0);
 }
@@ -3204,7 +3194,79 @@ void FullCodeGenerator::EmitSwapElements(ZoneList<Expression*>* args) {
   VisitForStackValue(args->at(0));
   VisitForStackValue(args->at(1));
   VisitForStackValue(args->at(2));
+  Label done;
+  Label slow_case;
+  Register object = r0;
+  Register index1 = r1;
+  Register index2 = r2;
+  Register elements = r3;
+  Register scratch1 = r4;
+  Register scratch2 = r5;
+  __ ldr(object, MemOperand(sp, 2 * kPointerSize));
+  // Fetch the map and check if array is in fast case.
+  // Check that object doesn't require security checks and
+  // has no indexed interceptor.
+  __ CompareObjectType(object, scratch1, scratch2, JS_ARRAY_TYPE);
+  __ b(ne, &slow_case);
+  // Map is now in scratch1.
+  __ ldrb(scratch2, FieldMemOperand(scratch1, Map::kBitFieldOffset));
+  __ tst(scratch2, Operand(KeyedLoadIC::kSlowCaseBitFieldMask));
+  __ b(ne, &slow_case);
+  // Check the object's elements are in fast case and writable.
+  __ ldr(elements, FieldMemOperand(object, JSObject::kElementsOffset));
+  __ ldr(scratch1, FieldMemOperand(elements, HeapObject::kMapOffset));
+  __ LoadRoot(ip, Heap::kFixedArrayMapRootIndex);
+  __ cmp(scratch1, ip);
+  __ b(ne, &slow_case);
+  // Check that both indices are smis.
+  __ ldr(index1, MemOperand(sp, 1 * kPointerSize));
+  __ ldr(index2, MemOperand(sp, 0));
+  __ JumpIfNotBothSmi(index1, index2, &slow_case);
+  // Check that both indices are valid.
+  __ ldr(scratch1, FieldMemOperand(object, JSArray::kLengthOffset));
+  __ cmp(scratch1, index1);
+  __ cmp(scratch1, index2, hi);
+  __ b(ls, &slow_case);
+  // Bring the address of the elements into index1 and index2.
+  __ add(scratch1, elements, Operand(FixedArray::kHeaderSize - kHeapObjectTag));
+  __ add(index1,
+         scratch1,
+         Operand(index1, LSL, kPointerSizeLog2 - kSmiTagSize));
+  __ add(index2,
+         scratch1,
+         Operand(index2, LSL, kPointerSizeLog2 - kSmiTagSize));
+  // Swap elements.
+  __ ldr(scratch1, MemOperand(index1, 0));
+  __ ldr(scratch2, MemOperand(index2, 0));
+  __ str(scratch1, MemOperand(index2, 0));
+  __ str(scratch2, MemOperand(index1, 0));
+  Label new_space;
+  __ InNewSpace(elements, scratch1, eq, &new_space);
+  // Possible optimization: do a check that both values are Smis
+  // (or them and test against Smi mask.)
+  __ mov(scratch1, elements);
+  __ RecordWriteHelper(elements, index1, scratch2);
+  __ RecordWriteHelper(scratch1, index2, scratch2);  // scratch1 holds elements.
+  __ bind(&new_space);
+  // We are done. Drop elements from the stack, and return undefined.
+  __ Drop(3);
+  __ LoadRoot(r0, Heap::kUndefinedValueRootIndex);
+  __ jmp(&done);
+  __ bind(&slow_case);
   __ CallRuntime(Runtime::kSwapElements, 3);
+  __ bind(&done);
   context()->Plug(r0);
 }
@@ -3216,7 +3278,7 @@ void FullCodeGenerator::EmitGetFromCache(ZoneList<Expression*>* args) {
   int cache_id = Smi::cast(*(args->at(0)->AsLiteral()->handle()))->value();
   Handle<FixedArray> jsfunction_result_caches(
-      Top::global_context()->jsfunction_result_caches());
+      isolate()->global_context()->jsfunction_result_caches());
   if (jsfunction_result_caches->length() <= cache_id) {
     __ Abort("Attempt to use undefined cache.");
     __ LoadRoot(r0, Heap::kUndefinedValueRootIndex);
@@ -3323,16 +3385,248 @@ void FullCodeGenerator::EmitHasCachedArrayIndex(ZoneList<Expression*>* args) {
 void FullCodeGenerator::EmitGetCachedArrayIndex(ZoneList<Expression*>* args) {
   ASSERT(args->length() == 1);
   VisitForAccumulatorValue(args->at(0));
+  if (FLAG_debug_code) {
+    __ AbortIfNotString(r0);
+  }
   __ ldr(r0, FieldMemOperand(r0, String::kHashFieldOffset));
   __ IndexFromHash(r0, r0);
   context()->Plug(r0);
 }
 void FullCodeGenerator::EmitFastAsciiArrayJoin(ZoneList<Expression*>* args) {
+  Label bailout, done, one_char_separator, long_separator,
+      non_trivial_array, not_size_one_array, loop,
+      empty_separator_loop, one_char_separator_loop,
+      one_char_separator_loop_entry, long_separator_loop;
+  ASSERT(args->length() == 2);
+  VisitForStackValue(args->at(1));
+  VisitForAccumulatorValue(args->at(0));
+  // All aliases of the same register have disjoint lifetimes.
+  Register array = r0;
+  Register elements = no_reg;  // Will be r0.
+  Register result = no_reg;  // Will be r0.
+  Register separator = r1;
+  Register array_length = r2;
+  Register result_pos = no_reg;  // Will be r2
+  Register string_length = r3;
+  Register string = r4;
+  Register element = r5;
+  Register elements_end = r6;
+  Register scratch1 = r7;
+  Register scratch2 = r9;
+  // Separator operand is on the stack.
+  __ pop(separator);
+  // Check that the array is a JSArray.
+  __ JumpIfSmi(array, &bailout);
+  __ CompareObjectType(array, scratch1, scratch2, JS_ARRAY_TYPE);
+  __ b(ne, &bailout);
+  // Check that the array has fast elements.
+  __ ldrb(scratch2, FieldMemOperand(scratch1, Map::kBitField2Offset));
+  __ tst(scratch2, Operand(1 << Map::kHasFastElements));
+  __ b(eq, &bailout);
+  // If the array has length zero, return the empty string.
+  __ ldr(array_length, FieldMemOperand(array, JSArray::kLengthOffset));
+  __ SmiUntag(array_length, SetCC);
+  __ b(ne, &non_trivial_array);
+  __ LoadRoot(r0, Heap::kEmptyStringRootIndex);
+  __ b(&done);
+  __ bind(&non_trivial_array);
+  // Get the FixedArray containing array's elements.
+  elements = array;
+  __ ldr(elements, FieldMemOperand(array, JSArray::kElementsOffset));
+  array = no_reg;  // End of array's live range.
+  // Check that all array elements are sequential ASCII strings, and
+  // accumulate the sum of their lengths, as a smi-encoded value.
+  __ mov(string_length, Operand(0));
+  __ add(element,
+         elements, Operand(FixedArray::kHeaderSize - kHeapObjectTag));
+  __ add(elements_end, element, Operand(array_length, LSL, kPointerSizeLog2));
+  // Loop condition: while (element < elements_end).
+  // Live values in registers:
+  //   elements: Fixed array of strings.
+  //   array_length: Length of the fixed array of strings (not smi)
+  //   separator: Separator string
+  //   string_length: Accumulated sum of string lengths (smi).
+  //   element: Current array element.
+  //   elements_end: Array end.
+  if (FLAG_debug_code) {
+    __ cmp(array_length, Operand(0));
+    __ Assert(gt, "No empty arrays here in EmitFastAsciiArrayJoin");
+  }
+  __ bind(&loop);
+  __ ldr(string, MemOperand(element, kPointerSize, PostIndex));
+  __ JumpIfSmi(string, &bailout);
+  __ ldr(scratch1, FieldMemOperand(string, HeapObject::kMapOffset));
+  __ ldrb(scratch1, FieldMemOperand(scratch1, Map::kInstanceTypeOffset));
+  __ JumpIfInstanceTypeIsNotSequentialAscii(scratch1, scratch2, &bailout);
+  __ ldr(scratch1, FieldMemOperand(string, SeqAsciiString::kLengthOffset));
+  __ add(string_length, string_length, Operand(scratch1));
+  __ b(vs, &bailout);
+  __ cmp(element, elements_end);
+  __ b(lt, &loop);
+  // If array_length is 1, return elements[0], a string.
+  __ cmp(array_length, Operand(1));
+  __ b(ne, &not_size_one_array);
+  __ ldr(r0, FieldMemOperand(elements, FixedArray::kHeaderSize));
+  __ b(&done);
+  __ bind(&not_size_one_array);
+  // Live values in registers:
+  //   separator: Separator string
+  //   array_length: Length of the array.
+  //   string_length: Sum of string lengths (smi).
+  //   elements: FixedArray of strings.
+  // Check that the separator is a flat ASCII string.
+  __ JumpIfSmi(separator, &bailout);
+  __ ldr(scratch1, FieldMemOperand(separator, HeapObject::kMapOffset));
+  __ ldrb(scratch1, FieldMemOperand(scratch1, Map::kInstanceTypeOffset));
+  __ JumpIfInstanceTypeIsNotSequentialAscii(scratch1, scratch2, &bailout);
+  // Add (separator length times array_length) - separator length to the
+  // string_length to get the length of the result string. array_length is not
+  // smi but the other values are, so the result is a smi
+  __ ldr(scratch1, FieldMemOperand(separator, SeqAsciiString::kLengthOffset));
+  __ sub(string_length, string_length, Operand(scratch1));
+  __ smull(scratch2, ip, array_length, scratch1);
+  // Check for smi overflow. No overflow if higher 33 bits of 64-bit result are
+  // zero.
+  __ cmp(ip, Operand(0));
+  __ b(ne, &bailout);
+  __ tst(scratch2, Operand(0x80000000));
+  __ b(ne, &bailout);
+  __ add(string_length, string_length, Operand(scratch2));
+  __ b(vs, &bailout);
+  __ SmiUntag(string_length);
+  // Get first element in the array to free up the elements register to be used
+  // for the result.
+  __ add(element,
+         elements, Operand(FixedArray::kHeaderSize - kHeapObjectTag));
+  result = elements;  // End of live range for elements.
+  elements = no_reg;
+  // Live values in registers:
+  //   element: First array element
+  //   separator: Separator string
+  //   string_length: Length of result string (not smi)
+  //   array_length: Length of the array.
+  __ AllocateAsciiString(result,
+                         string_length,
+                         scratch1,
+                         scratch2,
+                         elements_end,
+                         &bailout);
+  // Prepare for looping. Set up elements_end to end of the array. Set
+  // result_pos to the position of the result where to write the first
+  // character.
+  __ add(elements_end, element, Operand(array_length, LSL, kPointerSizeLog2));
+  result_pos = array_length;  // End of live range for array_length.
+  array_length = no_reg;
+  __ add(result_pos,
+         result,
+         Operand(SeqAsciiString::kHeaderSize - kHeapObjectTag));
+  // Check the length of the separator.
+  __ ldr(scratch1, FieldMemOperand(separator, SeqAsciiString::kLengthOffset));
+  __ cmp(scratch1, Operand(Smi::FromInt(1)));
+  __ b(eq, &one_char_separator);
+  __ b(gt, &long_separator);
+  // Empty separator case
+  __ bind(&empty_separator_loop);
+  // Live values in registers:
+  //   result_pos: the position to which we are currently copying characters.
+  //   element: Current array element.
+  //   elements_end: Array end.
+  // Copy next array element to the result.
+  __ ldr(string, MemOperand(element, kPointerSize, PostIndex));
+  __ ldr(string_length, FieldMemOperand(string, String::kLengthOffset));
+  __ SmiUntag(string_length);
+  __ add(string, string, Operand(SeqAsciiString::kHeaderSize - kHeapObjectTag));
+  __ CopyBytes(string, result_pos, string_length, scratch1);
+  __ cmp(element, elements_end);
+  __ b(lt, &empty_separator_loop);  // End while (element < elements_end).
+  ASSERT(result.is(r0));
+  __ b(&done);
+  // One-character separator case
+  __ bind(&one_char_separator);
+  // Replace separator with its ascii character value.
+  __ ldrb(separator, FieldMemOperand(separator, SeqAsciiString::kHeaderSize));
+  // Jump into the loop after the code that copies the separator, so the first
+  // element is not preceded by a separator
+  __ jmp(&one_char_separator_loop_entry);
+  __ bind(&one_char_separator_loop);
+  // Live values in registers:
+  //   result_pos: the position to which we are currently copying characters.
+  //   element: Current array element.
+  //   elements_end: Array end.
+  //   separator: Single separator ascii char (in lower byte).
+  // Copy the separator character to the result.
+  __ strb(separator, MemOperand(result_pos, 1, PostIndex));
+  // Copy next array element to the result.
+  __ bind(&one_char_separator_loop_entry);
+  __ ldr(string, MemOperand(element, kPointerSize, PostIndex));
+  __ ldr(string_length, FieldMemOperand(string, String::kLengthOffset));
+  __ SmiUntag(string_length);
+  __ add(string, string, Operand(SeqAsciiString::kHeaderSize - kHeapObjectTag));
+  __ CopyBytes(string, result_pos, string_length, scratch1);
+  __ cmp(element, elements_end);
+  __ b(lt, &one_char_separator_loop);  // End while (element < elements_end).
+  ASSERT(result.is(r0));
+  __ b(&done);
+  // Long separator case (separator is more than one character). Entry is at the
+  // label long_separator below.
+  __ bind(&long_separator_loop);
+  // Live values in registers:
+  //   result_pos: the position to which we are currently copying characters.
+  //   element: Current array element.
+  //   elements_end: Array end.
+  //   separator: Separator string.
+  // Copy the separator to the result.
+  __ ldr(string_length, FieldMemOperand(separator, String::kLengthOffset));
+  __ SmiUntag(string_length);
+  __ add(string,
+         separator,
+         Operand(SeqAsciiString::kHeaderSize - kHeapObjectTag));
+  __ CopyBytes(string, result_pos, string_length, scratch1);
+  __ bind(&long_separator);
+  __ ldr(string, MemOperand(element, kPointerSize, PostIndex));
+  __ ldr(string_length, FieldMemOperand(string, String::kLengthOffset));
+  __ SmiUntag(string_length);
+  __ add(string, string, Operand(SeqAsciiString::kHeaderSize - kHeapObjectTag));
+  __ CopyBytes(string, result_pos, string_length, scratch1);
+  __ cmp(element, elements_end);
+  __ b(lt, &long_separator_loop);  // End while (element < elements_end).
+  ASSERT(result.is(r0));
+  __ b(&done);
+  __ bind(&bailout);
   __ LoadRoot(r0, Heap::kUndefinedValueRootIndex);
+  __ bind(&done);
   context()->Plug(r0);
-  return;
 }
@@ -3363,7 +3657,8 @@ void FullCodeGenerator::VisitCallRuntime(CallRuntime* expr) {
   if (expr->is_jsruntime()) {
     // Call the JS runtime function.
     __ mov(r2, Operand(expr->name()));
-    Handle<Code> ic = StubCache::ComputeCallInitialize(arg_count, NOT_IN_LOOP);
+    Handle<Code> ic =
+        isolate()->stub_cache()->ComputeCallInitialize(arg_count, NOT_IN_LOOP);
     EmitCallIC(ic, RelocInfo::CODE_TARGET);
     // Restore context register.
     __ ldr(cp, MemOperand(fp, StandardFrameConstants::kContextOffset));
@@ -3486,9 +3781,7 @@ void FullCodeGenerator::VisitUnaryOperation(UnaryOperation* expr) {
       bool can_overwrite = expr->expression()->ResultOverwriteAllowed();
       UnaryOverwriteMode overwrite =
           can_overwrite ? UNARY_OVERWRITE : UNARY_NO_OVERWRITE;
-      GenericUnaryOpStub stub(Token::SUB,
-                              overwrite,
-                              NO_UNARY_FLAGS);
+      GenericUnaryOpStub stub(Token::SUB, overwrite, NO_UNARY_FLAGS);
       // GenericUnaryOpStub expects the argument to be in the
       // accumulator register r0.
       VisitForAccumulatorValue(expr->expression());
@@ -3589,7 +3882,11 @@ void FullCodeGenerator::VisitCountOperation(CountOperation* expr) {
   // We need a second deoptimization point after loading the value
   // in case evaluating the property load my have a side effect.
-  PrepareForBailout(expr->increment(), TOS_REG);
+  if (assign_type == VARIABLE) {
+    PrepareForBailout(expr->expression(), TOS_REG);
+  } else {
+    PrepareForBailout(expr->increment(), TOS_REG);
+  }
   // Call ToNumber only if operand is not a smi.
   Label no_conversion;
@@ -3669,7 +3966,9 @@ void FullCodeGenerator::VisitCountOperation(CountOperation* expr) {
     case NAMED_PROPERTY: {
       __ mov(r2, Operand(prop->key()->AsLiteral()->handle()));
       __ pop(r1);
-      Handle<Code> ic(Builtins::builtin(Builtins::StoreIC_Initialize));
+      Handle<Code> ic = is_strict_mode()
+          ? isolate()->builtins()->StoreIC_Initialize_Strict()
+          : isolate()->builtins()->StoreIC_Initialize();
       EmitCallIC(ic, RelocInfo::CODE_TARGET);
       PrepareForBailoutForId(expr->AssignmentId(), TOS_REG);
       if (expr->is_postfix()) {
@@ -3684,7 +3983,9 @@ void FullCodeGenerator::VisitCountOperation(CountOperation* expr) {
     case KEYED_PROPERTY: {
       __ pop(r1);  // Key.
       __ pop(r2);  // Receiver.
-      Handle<Code> ic(Builtins::builtin(Builtins::KeyedStoreIC_Initialize));
+      Handle<Code> ic = is_strict_mode()
+          ? isolate()->builtins()->KeyedStoreIC_Initialize_Strict()
+          : isolate()->builtins()->KeyedStoreIC_Initialize();
       EmitCallIC(ic, RelocInfo::CODE_TARGET);
       PrepareForBailoutForId(expr->AssignmentId(), TOS_REG);
       if (expr->is_postfix()) {
@@ -3708,7 +4009,7 @@ void FullCodeGenerator::VisitForTypeofValue(Expression* expr) {
     Comment cmnt(masm_, "Global variable");
     __ ldr(r0, GlobalObjectOperand());
     __ mov(r2, Operand(proxy->name()));
-    Handle<Code> ic(Builtins::builtin(Builtins::LoadIC_Initialize));
+    Handle<Code> ic = isolate()->builtins()->LoadIC_Initialize();
     // Use a regular load, not a contextual load, to avoid a reference
     // error.
     EmitCallIC(ic, RelocInfo::CODE_TARGET);
@@ -3761,72 +4062,53 @@ bool FullCodeGenerator::TryLiteralCompare(Token::Value op,
   }
   PrepareForBailoutBeforeSplit(TOS_REG, true, if_true, if_false);
-  if (check->Equals(Heap::number_symbol())) {
-    __ tst(r0, Operand(kSmiTagMask));
-    __ b(eq, if_true);
+  if (check->Equals(isolate()->heap()->number_symbol())) {
+    __ JumpIfSmi(r0, if_true);
     __ ldr(r0, FieldMemOperand(r0, HeapObject::kMapOffset));
     __ LoadRoot(ip, Heap::kHeapNumberMapRootIndex);
     __ cmp(r0, ip);
     Split(eq, if_true, if_false, fall_through);
-  } else if (check->Equals(Heap::string_symbol())) {
-    __ tst(r0, Operand(kSmiTagMask));
-    __ b(eq, if_false);
+  } else if (check->Equals(isolate()->heap()->string_symbol())) {
+    __ JumpIfSmi(r0, if_false);
     // Check for undetectable objects => false.
-    __ ldr(r0, FieldMemOperand(r0, HeapObject::kMapOffset));
+    __ CompareObjectType(r0, r0, r1, FIRST_NONSTRING_TYPE);
+    __ b(ge, if_false);
     __ ldrb(r1, FieldMemOperand(r0, Map::kBitFieldOffset));
-    __ and_(r1, r1, Operand(1 << Map::kIsUndetectable));
-    __ cmp(r1, Operand(1 << Map::kIsUndetectable));
-    __ b(eq, if_false);
-    __ ldrb(r1, FieldMemOperand(r0, Map::kInstanceTypeOffset));
-    __ cmp(r1, Operand(FIRST_NONSTRING_TYPE));
-    Split(lt, if_true, if_false, fall_through);
-  } else if (check->Equals(Heap::boolean_symbol())) {
-    __ LoadRoot(ip, Heap::kTrueValueRootIndex);
-    __ cmp(r0, ip);
+    __ tst(r1, Operand(1 << Map::kIsUndetectable));
+    Split(eq, if_true, if_false, fall_through);
+  } else if (check->Equals(isolate()->heap()->boolean_symbol())) {
+    __ CompareRoot(r0, Heap::kTrueValueRootIndex);
     __ b(eq, if_true);
-    __ LoadRoot(ip, Heap::kFalseValueRootIndex);
-    __ cmp(r0, ip);
+    __ CompareRoot(r0, Heap::kFalseValueRootIndex);
     Split(eq, if_true, if_false, fall_through);
-  } else if (check->Equals(Heap::undefined_symbol())) {
-    __ LoadRoot(ip, Heap::kUndefinedValueRootIndex);
-    __ cmp(r0, ip);
+  } else if (check->Equals(isolate()->heap()->undefined_symbol())) {
+    __ CompareRoot(r0, Heap::kUndefinedValueRootIndex);
     __ b(eq, if_true);
-    __ tst(r0, Operand(kSmiTagMask));
-    __ b(eq, if_false);
+    __ JumpIfSmi(r0, if_false);
     // Check for undetectable objects => true.
     __ ldr(r0, FieldMemOperand(r0, HeapObject::kMapOffset));
     __ ldrb(r1, FieldMemOperand(r0, Map::kBitFieldOffset));
-    __ and_(r1, r1, Operand(1 << Map::kIsUndetectable));
-    __ cmp(r1, Operand(1 << Map::kIsUndetectable));
-    Split(eq, if_true, if_false, fall_through);
-  } else if (check->Equals(Heap::function_symbol())) {
-    __ tst(r0, Operand(kSmiTagMask));
-    __ b(eq, if_false);
-    __ CompareObjectType(r0, r1, r0, JS_FUNCTION_TYPE);
-    __ b(eq, if_true);
-    // Regular expressions => 'function' (they are callable).
-    __ CompareInstanceType(r1, r0, JS_REGEXP_TYPE);
-    Split(eq, if_true, if_false, fall_through);
-  } else if (check->Equals(Heap::object_symbol())) {
-    __ tst(r0, Operand(kSmiTagMask));
-    __ b(eq, if_false);
-    __ LoadRoot(ip, Heap::kNullValueRootIndex);
-    __ cmp(r0, ip);
+    __ tst(r1, Operand(1 << Map::kIsUndetectable));
+    Split(ne, if_true, if_false, fall_through);
+  } else if (check->Equals(isolate()->heap()->function_symbol())) {
+    __ JumpIfSmi(r0, if_false);
+    __ CompareObjectType(r0, r1, r0, FIRST_FUNCTION_CLASS_TYPE);
+    Split(ge, if_true, if_false, fall_through);
+  } else if (check->Equals(isolate()->heap()->object_symbol())) {
+    __ JumpIfSmi(r0, if_false);
+    __ CompareRoot(r0, Heap::kNullValueRootIndex);
     __ b(eq, if_true);
-    // Regular expressions => 'function', not 'object'.
-    __ CompareObjectType(r0, r1, r0, JS_REGEXP_TYPE);
-    __ b(eq, if_false);
-    // Check for undetectable objects => false.
-    __ ldrb(r0, FieldMemOperand(r1, Map::kBitFieldOffset));
-    __ and_(r0, r0, Operand(1 << Map::kIsUndetectable));
-    __ cmp(r0, Operand(1 << Map::kIsUndetectable));
-    __ b(eq, if_false);
     // Check for JS objects => true.
-    __ ldrb(r0, FieldMemOperand(r1, Map::kInstanceTypeOffset));
-    __ cmp(r0, Operand(FIRST_JS_OBJECT_TYPE));
-    __ b(lt, if_false);
-    __ cmp(r0, Operand(LAST_JS_OBJECT_TYPE));
-    Split(le, if_true, if_false, fall_through);
+    __ CompareObjectType(r0, r0, r1, FIRST_JS_OBJECT_TYPE);
+    __ b(lo, if_false);
+    __ CompareInstanceType(r0, r1, FIRST_FUNCTION_CLASS_TYPE);
+    __ b(hs, if_false);
+    // Check for undetectable objects => false.
+    __ ldrb(r1, FieldMemOperand(r0, Map::kBitFieldOffset));
+    __ tst(r1, Operand(1 << Map::kIsUndetectable));
+    Split(eq, if_true, if_false, fall_through);
   } else {
     if (if_false != fall_through) __ jmp(if_false);
   }
@@ -3998,11 +4280,45 @@ Register FullCodeGenerator::context_register() {
 void FullCodeGenerator::EmitCallIC(Handle<Code> ic, RelocInfo::Mode mode) {
   ASSERT(mode == RelocInfo::CODE_TARGET ||
          mode == RelocInfo::CODE_TARGET_CONTEXT);
+  Counters* counters = isolate()->counters();
+  switch (ic->kind()) {
+    case Code::LOAD_IC:
+      __ IncrementCounter(counters->named_load_full(), 1, r1, r2);
+      break;
+    case Code::KEYED_LOAD_IC:
+      __ IncrementCounter(counters->keyed_load_full(), 1, r1, r2);
+      break;
+    case Code::STORE_IC:
+      __ IncrementCounter(counters->named_store_full(), 1, r1, r2);
+      break;
+    case Code::KEYED_STORE_IC:
+      __ IncrementCounter(counters->keyed_store_full(), 1, r1, r2);
+    default:
+      break;
+  }
   __ Call(ic, mode);
 }
 void FullCodeGenerator::EmitCallIC(Handle<Code> ic, JumpPatchSite* patch_site) {
+  Counters* counters = isolate()->counters();
+  switch (ic->kind()) {
+    case Code::LOAD_IC:
+      __ IncrementCounter(counters->named_load_full(), 1, r1, r2);
+      break;
+    case Code::KEYED_LOAD_IC:
+      __ IncrementCounter(counters->keyed_load_full(), 1, r1, r2);
+      break;
+    case Code::STORE_IC:
+      __ IncrementCounter(counters->named_store_full(), 1, r1, r2);
+      break;
+    case Code::KEYED_STORE_IC:
+      __ IncrementCounter(counters->keyed_store_full(), 1, r1, r2);
+    default:
+      break;
+  }
   __ Call(ic, RelocInfo::CODE_TARGET);
   if (patch_site != NULL && patch_site->is_bound()) {
     patch_site->EmitPatchInfo();