SunnyMirror/ChakraCore

Автор	SHA1 Сообщение	Дата
Taylor Woll	bdf3216cce Merge unreleased/rs3 to release/1.6	8 лет назад
Michael Holman	10c54a584e [CVE-2017-8752]fix missing bound check in asm.js in case of constant negative index	8 лет назад
Meghana Gupta	95235ee0c2 Do not peep closure stack symbols	8 лет назад
Paul Leathers	2500e1cdc1 17-08 ChakraCore servicing release	8 лет назад
Aneesh Divakarakurup	e41b46049a Handle strict mode in console scope	8 лет назад
Louis Lafreniere	6e39312394 Initialize locals	8 лет назад
Matt Gardner	00ee13950d OS#12528802 fix crash accessing FuncObjectOpnd when arguments object is inlined	8 лет назад
Michael Ferris	7d0bd1fd9b [MERGE #3333 @Cellule] WASM - int64 split live on back edge fix	8 лет назад
Michael Ferris	a6e2519268 Make sure to mark all int64 split symbol as Live on back edge if the original int64 was also live.	8 лет назад
Akrosh Gandhi	bf6ae644b6 [1.5>1.6] [MERGE #3341 @akroshg] 17-07 ChakraCore servicing release	8 лет назад
Paul Leathers	9326bda18a [CVE-2017-8601] Generate bailouts for cases of typed array stores where conversion of the source value can cause implicit calls. For BailOutOnImplicitCalls, check implicit call bit on return from the conversion helper. For BailOutOnArrayAccessHelperCall, bail out instead of calling the conversion helper.	8 лет назад
Matt Gardner	fb9b19bf65 fix bug with updating profile data on bailout	8 лет назад
Michael Ferris	bb4e9fa4f3 Keep the `Ret` instruction to extend the lifetime of the return register(s) then remove it in FinalLower.	8 лет назад
Michael Ferris	9a30325cef Remove the need to check the number of arguments to lower asm.js ArgIn.	8 лет назад
Michael Ferris	4cb8eab74a Fix x86 int64 comparison	8 лет назад
Michael Ferris	60f22b0f7c rename Unreachable_Void to ThrowRuntimeError	8 лет назад
Michael Ferris	44a362efdc Add LowerLdI4 method	8 лет назад
Michael Ferris	904e7f8abe wasm: Lower trap if min_int/-1 regardless of if div/rem is still present	8 лет назад
Michael Ferris	79c6ff2551 wasm: Lower trap if zero regardless of if div/rem is still present	8 лет назад
Jianchun Xu	7e520262fc [1.5>1.6] [MERGE #3166 @jianchun] 17-06 ChakraCore servicing release	8 лет назад
Paul Leathers	cd60f3b5c3 [CVE-2017-8548] In the case of a write to a typed array, the JIT emits inline code to do a bounds check. If the check fails, we convert the source value and jump to the end of the operation. But if the store should bail out on implicit calls, then we need to check for implicit calls caused by the conversion as well as the store itself.	8 лет назад
Meghana Gupta	5e025a6546 Fix retrieving return thunk label for nested non exception finally	8 лет назад
Michael Ferris	9d68f5cbe2 Create DivU_I4 and RemU_I4 to differentiate between signed and unsigned div/rem.	8 лет назад
Michael Ferris	137e9e0f75 Remove unused Add_ptr opcode.	8 лет назад
Michael Holman	8b29da66b0 fix bug with inlining isArray where src isn't RegOpnd	8 лет назад
Paul Leathers	f8797ade13 Fix perf regression in typed array tests. If we bail out on array access because we needed a helper call to, for instance, convert the value stored to a typed array, then when we interpret the array access the profile info needs to be updated to indicate that the helper call was needed. Otherwise, on re-jit, we'll generate the same code again, and we'll keep bailing out. Try to be proactive in the case of non-number value stored to a typed array, but also make use of the fact that we had BailOutOnArrayAccessHelperCall, since helper call cases can't be perfectly predicted in the interpreter.	8 лет назад
Meghana Gupta	82ff317978 Enable globopt for functions with try finally	9 лет назад
Michael Ferris	936b209d40 Fixed a bunch of bugs regarding int64 const prop	8 лет назад
Rajat Dua	6e6304df9d [2.0>master] [1.4>2.0] [MERGE #2959 @rajatd] 17-05 ChakraCore servicing release	8 лет назад
Rajat Dua	73d6109a24 [1.4>2.0] [MERGE #2959 @rajatd] 17-05 ChakraCore servicing release	8 лет назад

Новее Раньше

История коммитов Найти

История коммитов