[WebKit-https.git] / JavaScriptCore / ChangeLog

2010-10-15  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Gavin Barraclough.

        The parenthetical assertion checking isn't working in some cases with YARR
        Interpreter
        https://bugs.webkit.org/show_bug.cgi?id=46893

        Calculate the countToCheck value of a TypeParentheticalAssertion by
        subtracting the number of characters which follows
        a TypeParentheticalAssertion term with the number of characters which should
        be matched by terms which are contained
        in the TypeParentheticalAssertion term (minimumSize).

        * yarr/RegexInterpreter.cpp:
        (JSC::Yarr::ByteCompiler::emitDisjunction):

2010-10-14  Nathan Vander Wilt  <nate@andyet.net>

        Reviewed by Darin Adler.

        Added parser for ECMAScript 5 standard date format, so Date.parse can handle RFC 3339 timestamps: https://bugs.webkit.org/show_bug.cgi?id=44632

        * runtime/DateConversion.cpp:
        (JSC::parseDate):
        * wtf/DateMath.cpp:
        (WTF::ymdhmsToSeconds):
        (WTF::parseES5DateFromNullTerminatedCharacters):
        * wtf/DateMath.h:

2010-10-14  Nikolas Zimmermann  <nzimmermann@rim.com>

        Reviewed by Gavin Barraclough.

        Replace lots of String::format() usages by StringConcatenate
        https://bugs.webkit.org/show_bug.cgi?id=47664

        Add StringTypeAdapter<char> to accept single characters for makeString().

        * wtf/text/StringConcatenate.h:
        (WTF::makeString):

2010-10-14  David Goodwin  <david_goodwin@apple.com>

        Reviewed by Darin Adler.

        need way to measure size of JITed ARM code
        https://bugs.webkit.org/show_bug.cgi?id=47121

        * assembler/LinkBuffer.h:
        (JSC::LinkBuffer::linkCode):
        (JSC::LinkBuffer::dumpLinkStats):
        (JSC::LinkBuffer::dumpCode):

2010-10-14  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Gavin Barraclough.

        The backreference checking isn't working in some cases with YARR Interpreter
        https://bugs.webkit.org/show_bug.cgi?id=46904

        The Interpreter::matchBackReference() function returns true without matching
        when a backreference points to the same parentheses where it is.

        * yarr/RegexInterpreter.cpp:
        (JSC::Yarr::Interpreter::matchBackReference):

2010-10-14  No'am Rosenthal  <noam.rosenthal@nokia.com>

        Reviewed by Andreas Kling.

        [Qt] Text breaking is slow: enable ICU as an opt-in
        https://bugs.webkit.org/show_bug.cgi?id=40332

        Added a config flag that enables ICU as an opt-in instead of the Qt specific code.
        Because of the inclusion of ICU headers, some explicit casting was necessary in UnicodeQt4.h

        * JavaScriptCore.pri:
        * wtf/unicode/qt4/UnicodeQt4.h:
        (WTF::Unicode::toLower):
        (WTF::Unicode::toUpper):
        (WTF::Unicode::toTitleCase):
        (WTF::Unicode::foldCase):
        (WTF::Unicode::isPrintableChar):
        (WTF::Unicode::isSeparatorSpace):
        (WTF::Unicode::isPunct):
        (WTF::Unicode::isLower):
        (WTF::Unicode::mirroredChar):
        (WTF::Unicode::combiningClass):
        (WTF::Unicode::direction):
        (WTF::Unicode::category):

2010-10-14  Anton Faern  <anton@bladehawke.com>

        Reviewed by Csaba Osztrogonác.

        https://bugs.webkit.org/show_bug.cgi?id=47658
        NetBSD was not included in the WTF_PLATFORM_FOO to WTF_OS_FOO
        change.  This means that OS(NETBSD) is also undefined.

        * wtf/Platform.h: s/_PLATFORM_/_OS_/ for NetBSD

2010-10-13  David Goodwin  <david_goodwin@apple.com>

        Reviewed by Oliver Hunt.

        ARMv7 JIT should generated conditional branches when possible
        https://bugs.webkit.org/show_bug.cgi?id=47384

        Use different jump padding sizes for conditional and unconditional
        jumps (12 bytes and 10 bytes respectively). This allows the JIT to
        include the IT instruction as part of the conditional jump sequence
        which in turn allows it to optimize away the IT using an ARMv7 
        conditional branch instruction. Use 2-byte B(T1) and 4-byte B(T3) for
        conditional branches when displacement is in range. Also use IT/B(T4)
        for conditional branch when displacement does not fit in B(T3).

        For unconditional jump, instruction selection options are:
        B(T2), B(T4), MOVW/MOVT/BX. For conditional jump, instruction selection
        options are: B(T1), B(T3), IT/B(T4), ITTT/MOVW/MOVT/BX.

        * assembler/ARMv7Assembler.cpp:
        * assembler/ARMv7Assembler.h:
        (JSC::ARMv7Assembler::JmpSrc::JmpSrc):
        (JSC::ARMv7Assembler::ifThenElse):
        (JSC::ARMv7Assembler::jumpSizeDelta):
        (JSC::ARMv7Assembler::canCompact):
        (JSC::ARMv7Assembler::computeJumpType):
        (JSC::ARMv7Assembler::link):
        (JSC::ARMv7Assembler::canBeJumpT1):
        (JSC::ARMv7Assembler::canBeJumpT3):
        (JSC::ARMv7Assembler::canBeJumpT4):
        (JSC::ARMv7Assembler::linkJumpT1):
        (JSC::ARMv7Assembler::linkJumpT3):
        (JSC::ARMv7Assembler::linkJumpT4):
        (JSC::ARMv7Assembler::linkConditionalJumpT4):
        (JSC::ARMv7Assembler::linkBX):
        (JSC::ARMv7Assembler::linkConditionalBX):
        (JSC::ARMv7Assembler::linkJumpAbsolute):
        * assembler/LinkBuffer.h:
        (JSC::LinkBuffer::linkCode):
        * assembler/MacroAssemblerARMv7.h:
        (JSC::MacroAssemblerARMv7::canCompact):
        (JSC::MacroAssemblerARMv7::computeJumpType):
        (JSC::MacroAssemblerARMv7::jumpSizeDelta):
        (JSC::MacroAssemblerARMv7::jump):
        (JSC::MacroAssemblerARMv7::nearCall):
        (JSC::MacroAssemblerARMv7::call):
        (JSC::MacroAssemblerARMv7::ret):
        (JSC::MacroAssemblerARMv7::tailRecursiveCall):
        (JSC::MacroAssemblerARMv7::makeJump):
        (JSC::MacroAssemblerARMv7::makeBranch):

2010-10-13  Fridrich Strba  <fridrich.strba@bluewin.ch>

        Reviewed by Darin Adler.

        Don't depend on Windows on sched_yield and sched.h
        https://bugs.webkit.org/show_bug.cgi?id=45543

        sched.h is part of pthreads and sched_yield is implemented
        in pthreads-win32 as Sleep(0). This patch avoids a gratuitous
        dependency on pthreads-win32 in this file.

        * wtf/TCSpinLock.h:
        (TCMalloc_SlowLock):

2010-10-13  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Port unicode
        https://bugs.webkit.org/show_bug.cgi?id=45716

        Brew MP port uses only the subset of ICU library to reduce the binary size.
        Follow the WinCE's implementation.

        * wtf/Platform.h:
        * wtf/unicode/Unicode.h:
        * wtf/unicode/brew/UnicodeBrew.cpp: Added.
        (WTF::Unicode::toLower):
        (WTF::Unicode::toUpper):
        (WTF::Unicode::foldCase):
        (WTF::Unicode::isPrintableChar):
        (WTF::Unicode::isUpper):
        (WTF::Unicode::isLower):
        (WTF::Unicode::isDigit):
        (WTF::Unicode::isPunct):
        (WTF::Unicode::isAlphanumeric):
        (WTF::Unicode::toTitleCase):
        (WTF::Unicode::direction):
        (WTF::Unicode::category):
        (WTF::Unicode::decompositionType):
        (WTF::Unicode::combiningClass):
        (WTF::Unicode::mirroredChar):
        (WTF::Unicode::digitValue):
        (WTF::Unicode::isSpace):
        (WTF::Unicode::isLetter):
        * wtf/unicode/brew/UnicodeBrew.h: Added.
        (WTF::Unicode::isArabicChar):
        (WTF::Unicode::isSeparatorSpace):
        (WTF::Unicode::hasLineBreakingPropertyComplexContext):
        (WTF::Unicode::hasLineBreakingPropertyComplexContextOrIdeographic):
        (WTF::Unicode::umemcasecmp):

2010-10-13  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-10-13  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        [WTFURL] Add URLQueryCanonicalizer
        https://bugs.webkit.org/show_bug.cgi?id=45088

        This class canonicalizes the query component of URLs.  The main tricky
        bit there is the convertCharset function, which I've moved to a
        templated dependency.  There'll likely be more about that in future
        patches.

        * JavaScriptCore.xcodeproj/project.pbxproj:
        * wtf/url/src/URLEscape.cpp: Added.
        * wtf/url/src/URLEscape.h: Added.
        (WTF::appendEscapedCharacter):
        * wtf/url/src/URLQueryCanonicalizer.h: Added.
        (WTF::URLQueryCanonicalizer::canonicalize):
        (WTF::URLQueryCanonicalizer::isAllASCII):
        (WTF::URLQueryCanonicalizer::appendRaw8BitQueryString):
        (WTF::URLQueryCanonicalizer::convertToQueryEncoding):

2010-10-13  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        Bug 43987 - Downloading using XHR is much slower than before
        Change StringBuilder to use overcapacity in a StringImpl, rather than a Vector.
        Fundamentally this should be the same (copies current contents to expand capacity,
        rather than using a rope), but this approach allows the intermadiate state of the
        String to be inspected in the buffer without copying to resolve.

        * runtime/JSONObject.cpp:
        (JSC::Stringifier::appendQuotedString):
        (JSC::Stringifier::Holder::appendNextProperty):
            Renamed StringBuilder::size() -> length() (to match other String types).

        * runtime/UStringBuilder.h:
        (JSC::UStringBuilder::append):
        (JSC::UStringBuilder::toUString):
            Update for changes in parent class, can just 'using' the append methods.

        * wtf/text/StringBuilder.cpp: Added.
        (WTF::StringBuilder::reifyString):
        (WTF::StringBuilder::resize):
        (WTF::StringBuilder::reserveCapacity):
        (WTF::StringBuilder::allocateBuffer):
        (WTF::StringBuilder::appendUninitialized):
        (WTF::StringBuilder::append):
        (WTF::StringBuilder::shrinkToFit):
        * wtf/text/StringBuilder.h:
        (WTF::StringBuilder::StringBuilder):
        (WTF::StringBuilder::append):
        (WTF::StringBuilder::toString):
        (WTF::StringBuilder::toStringPreserveCapacity):
        (WTF::StringBuilder::length):
        (WTF::StringBuilder::isEmpty):
        (WTF::StringBuilder::operator[]):
        (WTF::StringBuilder::clear):
            Class updated to use overcapacity in a StringImpl, rather than a Vector.

        * Android.mk:
        * Android.v8.wtf.mk:
        * GNUmakefile.am:
        * JavaScriptCore.exp:
        * JavaScriptCore.gypi:
        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCoreCommon.vsprops:
        * JavaScriptCore.vcproj/WTF/WTF.vcproj:
        * JavaScriptCore.vcproj/jsc/jsc.vcproj:
        * JavaScriptCore.xcodeproj/project.pbxproj:
        * wtf/CMakeLists.txt:
        * wtf/wtf.pri:

2010-10-13  Adam Roben  <aroben@apple.com>

        Export tryFastRealloc for WebKit2's benefit

        Rubber-stamped by Anders Carlsson.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def: Added
        tryFastRealloc. Removed RegExpObject::info, which is now exported via
        JS_EXPORTDATA.

2010-10-13  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        [WTFURL] Add a mechanism for classifying types of characters
        https://bugs.webkit.org/show_bug.cgi?id=45085

        Various characters have different escaping rules depending on where
        they are in URLs.  This patch adds a table containing that information.

        * JavaScriptCore.xcodeproj/project.pbxproj:
        * wtf/url/src/URLCharacterTypes.cpp: Added.
        * wtf/url/src/URLCharacterTypes.h: Added.
        (WTF::URLCharacterTypes::isQueryChar):
        (WTF::URLCharacterTypes::isIPv4Char):
        (WTF::URLCharacterTypes::isHexChar):
        (WTF::URLCharacterTypes::isCharOfType):

2010-10-13  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Csaba Osztrogonác.

        Missing parameters for bytecode dump of next_pname
        https://bugs.webkit.org/show_bug.cgi?id=47590

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump): add missing parameters to the dump.

2010-10-13  Nikolas Zimmermann  <nzimmermann@rim.com>

        Reviewed by Dirk Schulze.

        Add wtf/text/StringConcatenate
        https://bugs.webkit.org/show_bug.cgi?id=47584

        Move runtime/StringConcatenate.h to wtf/text, make it work for Strings too.
        Add a special runtime/UStringConcatenate.h class that inherits from StringConcatenate, and extends it for use with UString.
        Exactly the same design that has been followed while refactoring StringBuilder.

        The UString variants can all be removed as soon as WTF::String & JSC::UString converge.

        * GNUmakefile.am: Add wtf/text/StringConcatenate.h and runtime/UStringConcatenate.h.
        * JavaScriptCore.gypi: Ditto.
        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.vcproj: Ditto.
        * JavaScriptCore.vcproj/WTF/WTF.vcproj: Ditto.
        * JavaScriptCore.xcodeproj/project.pbxproj: Ditto.
        * bytecode/CodeBlock.cpp: s/makeString/makeUString/
        (JSC::escapeQuotes):
        (JSC::valueToSourceString):
        (JSC::constantName):
        (JSC::idName):
        (JSC::CodeBlock::registerName):
        (JSC::regexpToSourceString):
        (JSC::regexpName):
        * bytecompiler/NodesCodegen.cpp: Ditto.
        (JSC::substitute):
        * profiler/Profiler.cpp: Ditto.
        (JSC::Profiler::createCallIdentifier):
        * runtime/ExceptionHelpers.cpp: Ditto.
        (JSC::createUndefinedVariableError):
        (JSC::createErrorMessage):
        (JSC::createInvalidParamError):
        * runtime/FunctionConstructor.cpp: Ditto.
        (JSC::constructFunction):
        * runtime/FunctionPrototype.cpp: Ditto.
        (JSC::insertSemicolonIfNeeded):
        * runtime/JSONObject.cpp: Ditto.
        (JSC::Stringifier::indent):
        * runtime/JSStringBuilder.h:
        (JSC::jsMakeNontrivialString):
        * runtime/RegExpConstructor.cpp: Ditto.
        (JSC::constructRegExp):
        * runtime/RegExpObject.cpp: Ditto.
        (JSC::RegExpObject::match):
        * runtime/RegExpPrototype.cpp: Ditto.
        (JSC::regExpProtoFuncCompile):
        * runtime/StringConcatenate.h: Removed.
        * runtime/UStringConcatenate.h: Added. Only contains the StringTypeAdapter<JSC::UString> code and the makeUString variants, the rest lives in wtf/text/StringConcatenate.h
        (JSC::makeUString):
        * wtf/text/StringConcatenate.h: Copied from runtime/StringConcatenate.h.
        (WTF::makeString):

2010-10-12  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * wtf/text/StringBuilder.h:
        (WTF::StringBuilder::length):

2010-10-12  Nikolas Zimmermann  <nzimmermann@rim.com>

        Reviewed by Gavin Barraclough.

        Unify JSC::StringBuilder & WebCore::StringBuilder
        https://bugs.webkit.org/show_bug.cgi?id=47538

        Move runtime/StringBuilder.h to wtf/text/StringBuilder.h. Rename build() to toString() and return a WTF::String().
        Move the append(const JSC::UString&) method into runtime/UStringBuilder.h.
        UStringBuilder inherits from StringBuilder.h and adds append(const JSC::UString&) and UString toUString() functionality.

        No new code, just move code around.

        * GNUmakefile.am: Add wtf/text/StringBuilder.h / runtime/UStringBuilder.h. Remove runtime/StringBuilder.h.
        * JavaScriptCore.gypi: Ditto.
        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.vcproj: Ditto.
        * JavaScriptCore.vcproj/WTF/WTF.vcproj: Ditto.
        * JavaScriptCore.xcodeproj/project.pbxproj: Ditto.
        * runtime/Executable.cpp:
        (JSC::FunctionExecutable::paramString): Use UStringBuilder, instead of StringBuilder. Rename build() -> toUString().
        * runtime/FunctionConstructor.cpp:
        (JSC::constructFunction): Ditto.
        * runtime/JSGlobalObjectFunctions.cpp:
        (JSC::globalFuncUnescape): Ditto.
        * runtime/JSONObject.cpp:
        (JSC::Stringifier::stringify): Ditto.
        (JSC::Stringifier::appendQuotedString): Ditto.
        (JSC::Stringifier::appendStringifiedValue): Ditto.
        (JSC::Stringifier::startNewLine): Ditto.
        (JSC::Stringifier::Holder::appendNextProperty): Ditto.
        * runtime/LiteralParser.cpp:
        (JSC::LiteralParser::Lexer::lexString): Ditto.
        * runtime/NumberPrototype.cpp: Remove unneeded JSStringBuilder.h / StringBuilder.h include.
        * runtime/StringBuilder.h: Removed.
        * runtime/UStringBuilder.h: Added. Inherits from WTF::StringBuilder, extending it by two methods.
        (JSC::UStringBuilder::append): append(const JSC::UString&)
        (JSC::UStringBuilder::toUString):
        * wtf/text/StringBuilder.h: Copied from runtime/StringBuilder.h. Move JSC::UString parts into runtime/UStringBuilder.h
        (WTF::StringBuilder::append): Renamed m_buffer to buffer everywhere.
        (WTF::StringBuilder::isEmpty): Ditto (+ constify method). 
        (WTF::StringBuilder::reserveCapacity): Ditto.
        (WTF::StringBuilder::resize): Ditto.
        (WTF::StringBuilder::size): Ditto.
        (WTF::StringBuilder::operator[]): Ditto.
        (WTF::StringBuilder::toString): Ditto (+ renamed from build()). Returns a String, not an UString. The old build() method is now named toUString() and lives in UStringBuilder.

2010-10-12  Michael Saboff  <msaboff@apple.com>

        Reviewed by Oliver Hunt.

        Cleaned up the processing of replacements after regular expression
        processing, especially the case where there wasn't a match.
        Changed to use empty strings instead of computing a zero length sub
        string.
        https://bugs.webkit.org/show_bug.cgi?id=47506

        * runtime/StringPrototype.cpp:
        (JSC::jsSpliceSubstringsWithSeparators):
        (JSC::stringProtoFuncReplace):

2010-10-11  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Clang build fix after r69472.
        https://bugs.webkit.org/show_bug.cgi?id=46523

        * wtf/text/StringHash.h:

2010-10-11  Oliver Hunt  <oliver@apple.com>

        Undo last minute change to 32bit build.

        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_convert_this_strict):

2010-10-11  Brian Weinstein  <bweinstein@apple.com>

        Build fix for Windows. Add a necessary export from r69516.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-10-11  Oliver Hunt  <oliver@apple.com>

        Fix interpreter build -- was broken by incorrect merge.

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):

2010-10-01  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        [ES5] Implement strict mode
        https://bugs.webkit.org/show_bug.cgi?id=10701

        Initial strict mode implementation.  This is the simplest
        implementation that could possibly work and adds (hopefully)
        all of the restrictions required by strict mode.  There are
        a number of inefficiencies, especially in the handling of
        arguments and eval as smart implementations would make this
        patch more complicated.  

        The SyntaxChecker AST builder has become somewhat more complex
        as strict mode does require more parse tree information to
        validate the syntax.

        Summary of major changes to the parser:
            * We track when we enter strict mode (this may come as a surprise)
            * Strict mode actually requires a degree of AST knowledge to validate
              so the SyntaxChecker now produces values that can be used to distinguish
              "node" types.
            * We now track variables that are written to.  We do this to
              statically identify writes to global properties that don't exist
              and abort at that point.  This should actually make it possible
              to optimise some other cases in the future but for now it's
              purely for validity checking.  Currently writes are only tracked
              in strict mode code.
            * Labels are now tracked as it is now a syntax error to jump to a label
              that does not exist (or to use break, continue, or return in a context
              where they would be invalid).

        Runtime changes:
            * In order to get correct hanlding of the Arguments object all
              strict mode functions that reference arguments create and tearoff
              the arguments object on entry.  This is not strictly necessary
              but was the least work necessary to get the correct behaviour.
            * PutPropertySlot now tracks whether it is being used for a strict
              mode write, and if so Object::put will throw when a write can't be
              completed.
            * StrictEvalActivation was added as an "activation" object for strict
              mode eval (so that strict eval does not introduce new variables into
              the containing scope).

        * CMakeLists.txt:
        * GNUmakefile.am:
        * JavaScriptCore.exp:
        * JavaScriptCore.pro:
        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.vcproj:
        * JavaScriptCore.xcodeproj/project.pbxproj:
        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        (JSC::CodeBlock::CodeBlock):
        (JSC::CodeBlock::reparseForExceptionInfoIfNecessary):
        * bytecode/CodeBlock.h:
        (JSC::CodeBlock::isStrictMode):
        * bytecode/EvalCodeCache.h:
        (JSC::EvalCodeCache::get):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        (JSC::BytecodeGenerator::createArgumentsIfNecessary):
        (JSC::BytecodeGenerator::emitReturn):
        * bytecompiler/BytecodeGenerator.h:
        (JSC::BytecodeGenerator::isStrictMode):
        (JSC::BytecodeGenerator::makeFunction):
        * debugger/Debugger.cpp:
        (JSC::evaluateInGlobalCallFrame):
        * debugger/DebuggerCallFrame.cpp:
        (JSC::DebuggerCallFrame::evaluate):
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::callEval):
        (JSC::Interpreter::unwindCallFrame):
        (JSC::Interpreter::execute):
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        (JSC::JIT::privateCompileSlowCases):
        * jit/JIT.h:
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_get_pnames):
        (JSC::JIT::emit_op_convert_this_strict):
        (JSC::JIT::emitSlow_op_convert_this_strict):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_get_pnames):
        * jit/JITStubs.cpp:
        (JSC::DEFINE_STUB_FUNCTION):
        * jit/JITStubs.h:
        * parser/ASTBuilder.h:
        (JSC::ASTBuilder::createFunctionBody):
        (JSC::ASTBuilder::isResolve):
        * parser/JSParser.cpp:
        (JSC::JSParser::next):
        (JSC::JSParser::startLoop):
        (JSC::JSParser::endLoop):
        (JSC::JSParser::startSwitch):
        (JSC::JSParser::endSwitch):
        (JSC::JSParser::setStrictMode):
        (JSC::JSParser::strictMode):
        (JSC::JSParser::isValidStrictMode):
        (JSC::JSParser::declareParameter):
        (JSC::JSParser::breakIsValid):
        (JSC::JSParser::pushLabel):
        (JSC::JSParser::popLabel):
        (JSC::JSParser::hasLabel):
        (JSC::JSParser::DepthManager::DepthManager):
        (JSC::JSParser::DepthManager::~DepthManager):
        (JSC::JSParser::Scope::Scope):
        (JSC::JSParser::Scope::startSwitch):
        (JSC::JSParser::Scope::endSwitch):
        (JSC::JSParser::Scope::startLoop):
        (JSC::JSParser::Scope::endLoop):
        (JSC::JSParser::Scope::inLoop):
        (JSC::JSParser::Scope::breakIsValid):
        (JSC::JSParser::Scope::pushLabel):
        (JSC::JSParser::Scope::popLabel):
        (JSC::JSParser::Scope::hasLabel):
        (JSC::JSParser::Scope::isFunction):
        (JSC::JSParser::Scope::declareVariable):
        (JSC::JSParser::Scope::declareWrite):
        (JSC::JSParser::Scope::deleteProperty):
        (JSC::JSParser::Scope::declareParameter):
        (JSC::JSParser::Scope::setNeedsFullActivation):
        (JSC::JSParser::Scope::collectFreeVariables):
        (JSC::JSParser::Scope::getUncapturedWrittenVariables):
        (JSC::JSParser::Scope::getDeletedVariables):
        (JSC::JSParser::Scope::setStrictMode):
        (JSC::JSParser::Scope::strictMode):
        (JSC::JSParser::Scope::isValidStrictMode):
        (JSC::JSParser::pushScope):
        (JSC::JSParser::popScope):
        (JSC::JSParser::declareVariable):
        (JSC::JSParser::declareWrite):
        (JSC::JSParser::deleteProperty):
        (JSC::jsParse):
        (JSC::JSParser::JSParser):
        (JSC::JSParser::parseProgram):
        (JSC::JSParser::parseSourceElements):
        (JSC::JSParser::parseDoWhileStatement):
        (JSC::JSParser::parseWhileStatement):
        (JSC::JSParser::parseVarDeclarationList):
        (JSC::JSParser::parseConstDeclarationList):
        (JSC::JSParser::parseForStatement):
        (JSC::JSParser::parseBreakStatement):
        (JSC::JSParser::parseContinueStatement):
        (JSC::JSParser::parseReturnStatement):
        (JSC::JSParser::parseWithStatement):
        (JSC::JSParser::parseSwitchStatement):
        (JSC::JSParser::parseSwitchClauses):
        (JSC::JSParser::parseSwitchDefaultClause):
        (JSC::JSParser::parseTryStatement):
        (JSC::JSParser::parseBlockStatement):
        (JSC::JSParser::parseStatement):
        (JSC::JSParser::parseFormalParameters):
        (JSC::JSParser::parseFunctionBody):
        (JSC::JSParser::parseFunctionInfo):
        (JSC::JSParser::parseFunctionDeclaration):
        (JSC::JSParser::parseExpressionOrLabelStatement):
        (JSC::JSParser::parseIfStatement):
        (JSC::JSParser::parseExpression):
        (JSC::JSParser::parseAssignmentExpression):
        (JSC::JSParser::parseConditionalExpression):
        (JSC::JSParser::parseBinaryExpression):
        (JSC::JSParser::parseStrictObjectLiteral):
        (JSC::JSParser::parsePrimaryExpression):
        (JSC::JSParser::parseMemberExpression):
        (JSC::JSParser::parseUnaryExpression):
        * parser/JSParser.h:
        * parser/Lexer.cpp:
        (JSC::Lexer::parseString):
        (JSC::Lexer::lex):
        * parser/Lexer.h:
        (JSC::Lexer::isReparsing):
        * parser/Nodes.cpp:
        (JSC::ScopeNode::ScopeNode):
        (JSC::FunctionBodyNode::FunctionBodyNode):
        (JSC::FunctionBodyNode::create):
        * parser/Nodes.h:
        (JSC::ScopeNode::isStrictMode):
        * parser/Parser.cpp:
        (JSC::Parser::parse):
        * parser/Parser.h:
        (JSC::Parser::parse):
        * parser/SyntaxChecker.h:
        (JSC::SyntaxChecker::SyntaxChecker):
        (JSC::SyntaxChecker::makeFunctionCallNode):
        (JSC::SyntaxChecker::appendToComma):
        (JSC::SyntaxChecker::createCommaExpr):
        (JSC::SyntaxChecker::makeAssignNode):
        (JSC::SyntaxChecker::makePrefixNode):
        (JSC::SyntaxChecker::makePostfixNode):
        (JSC::SyntaxChecker::makeTypeOfNode):
        (JSC::SyntaxChecker::makeDeleteNode):
        (JSC::SyntaxChecker::makeNegateNode):
        (JSC::SyntaxChecker::makeBitwiseNotNode):
        (JSC::SyntaxChecker::createLogicalNot):
        (JSC::SyntaxChecker::createUnaryPlus):
        (JSC::SyntaxChecker::createVoid):
        (JSC::SyntaxChecker::thisExpr):
        (JSC::SyntaxChecker::createResolve):
        (JSC::SyntaxChecker::createObjectLiteral):
        (JSC::SyntaxChecker::createArray):
        (JSC::SyntaxChecker::createNumberExpr):
        (JSC::SyntaxChecker::createString):
        (JSC::SyntaxChecker::createBoolean):
        (JSC::SyntaxChecker::createNull):
        (JSC::SyntaxChecker::createBracketAccess):
        (JSC::SyntaxChecker::createDotAccess):
        (JSC::SyntaxChecker::createRegex):
        (JSC::SyntaxChecker::createNewExpr):
        (JSC::SyntaxChecker::createConditionalExpr):
        (JSC::SyntaxChecker::createAssignResolve):
        (JSC::SyntaxChecker::createFunctionExpr):
        (JSC::SyntaxChecker::createFunctionBody):
        (JSC::SyntaxChecker::appendBinaryExpressionInfo):
        (JSC::SyntaxChecker::operatorStackPop):
        * runtime/Arguments.cpp:
        (JSC::Arguments::createStrictModeCallerIfNecessary):
        (JSC::Arguments::createStrictModeCalleeIfNecessary):
        (JSC::Arguments::getOwnPropertySlot):
        (JSC::Arguments::getOwnPropertyDescriptor):
        (JSC::Arguments::put):
        (JSC::Arguments::deleteProperty):
        * runtime/Arguments.h:
        (JSC::Arguments::Arguments):
        * runtime/CommonIdentifiers.cpp:
        (JSC::CommonIdentifiers::CommonIdentifiers):
        * runtime/CommonIdentifiers.h:
        * runtime/Error.cpp:
        (JSC::StrictModeTypeErrorFunction::StrictModeTypeErrorFunction):
        (JSC::StrictModeTypeErrorFunction::constructThrowTypeError):
        (JSC::StrictModeTypeErrorFunction::getConstructData):
        (JSC::StrictModeTypeErrorFunction::callThrowTypeError):
        (JSC::StrictModeTypeErrorFunction::getCallData):
        (JSC::createTypeErrorFunction):
        * runtime/Error.h:
        * runtime/Executable.cpp:
        (JSC::EvalExecutable::EvalExecutable):
        (JSC::ProgramExecutable::ProgramExecutable):
        (JSC::FunctionExecutable::FunctionExecutable):
        (JSC::EvalExecutable::compileInternal):
        (JSC::ProgramExecutable::checkSyntax):
        (JSC::ProgramExecutable::compileInternal):
        (JSC::FunctionExecutable::compileForCallInternal):
        (JSC::FunctionExecutable::compileForConstructInternal):
        (JSC::FunctionExecutable::reparseExceptionInfo):
        (JSC::EvalExecutable::reparseExceptionInfo):
        (JSC::FunctionExecutable::fromGlobalCode):
        (JSC::ProgramExecutable::reparseExceptionInfo):
        * runtime/Executable.h:
        (JSC::ScriptExecutable::ScriptExecutable):
        (JSC::ScriptExecutable::isStrictMode):
        (JSC::EvalExecutable::create):
        (JSC::FunctionExecutable::create):
        * runtime/JSActivation.cpp:
        (JSC::JSActivation::toStrictThisObject):
        * runtime/JSActivation.h:
        * runtime/JSFunction.cpp:
        (JSC::createDescriptorForThrowingProperty):
        (JSC::JSFunction::getOwnPropertySlot):
        (JSC::JSFunction::getOwnPropertyDescriptor):
        (JSC::JSFunction::put):
        * runtime/JSGlobalData.cpp:
        (JSC::JSGlobalData::JSGlobalData):
        * runtime/JSGlobalData.h:
        * runtime/JSGlobalObject.cpp:
        (JSC::JSGlobalObject::reset):
        * runtime/JSGlobalObject.h:
        (JSC::JSGlobalObject::internalFunctionStructure):
        * runtime/JSGlobalObjectFunctions.cpp:
        (JSC::globalFuncEval):
        * runtime/JSObject.cpp:
        (JSC::JSObject::put):
        (JSC::JSObject::toStrictThisObject):
        (JSC::throwTypeError):
        * runtime/JSObject.h:
        (JSC::JSObject::isStrictModeFunction):
        (JSC::JSObject::putDirectInternal):
        (JSC::JSObject::putDirect):
        (JSC::JSValue::putDirect):
        (JSC::JSValue::toStrictThisObject):
        * runtime/JSStaticScopeObject.cpp:
        (JSC::JSStaticScopeObject::toStrictThisObject):
        * runtime/JSStaticScopeObject.h:
        * runtime/JSValue.h:
        * runtime/JSZombie.h:
        (JSC::JSZombie::toStrictThisObject):
        * runtime/PutPropertySlot.h:
        (JSC::PutPropertySlot::PutPropertySlot):
        (JSC::PutPropertySlot::isStrictMode):
        * runtime/StrictEvalActivation.cpp: Added.
        (JSC::StrictEvalActivation::StrictEvalActivation):
        (JSC::StrictEvalActivation::deleteProperty):
        (JSC::StrictEvalActivation::toThisObject):
        (JSC::StrictEvalActivation::toStrictThisObject):
        * runtime/StrictEvalActivation.h: Added.

2010-10-10  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Windows build fix after r69472.

        * wtf/text/StringHash.h:
        (WTF::CaseFoldingHash::hash):

2010-10-10  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Adam Barth.

        Use WTF::StringHasher in WTF::CaseFoldingHash
        https://bugs.webkit.org/show_bug.cgi?id=46523

        * wtf/text/StringHash.h:
        (WTF::CaseFoldingHash::foldCase):
        (WTF::CaseFoldingHash::hash):

2010-10-09  Pratik Solanki  <psolanki@apple.com>

        Reviewed by Xan Lopez.

        https://bugs.webkit.org/show_bug.cgi?id=47445
        Remove unused function WTFThreadData::initializeIdentifierTable()

        * wtf/WTFThreadData.h:

2010-10-08  Michael Saboff  <msaboff@apple.com>

        Reviewed by Darin Adler.

        Added check to start of subexpression being positive before using
        subexpression in replacement.
        https://bugs.webkit.org/show_bug.cgi?id=47324

        * runtime/StringPrototype.cpp:
        (JSC::substituteBackreferencesSlow):

2010-10-08  Chris Evans  <cevans@google.com>

        Reviewed by David Levin.

        https://bugs.webkit.org/show_bug.cgi?id=47393

        Use unsigned consistently to check for max StringImpl length.
        Add a few integer overflow checks.
        Uses the existing paradigm of CRASH() when we can't reasonably handle a crazily large request.

        * wtf/text/WTFString.cpp:
        * wtf/text/StringImpl.h:
        * wtf/text/StringImpl.cpp:
        Better use of size_t vs. unsigned; check for integer overflows.

2010-10-07  David Goodwin  <david_goodwin@apple.com>

        Reviewed by Oliver Hunt.

        ARM JIT generates undefined operations due to partially uninitialized ShiftTypeAndAmount
        https://bugs.webkit.org/show_bug.cgi?id=47356

        * assembler/ARMv7Assembler.h:

2010-10-06  Chris Evans  <cevans@google.com>

        Reviewed by David Levin.

        https://bugs.webkit.org/show_bug.cgi?id=47248

        Use size_t consistently in CString, to prevent theoretical trouble
        with > 4GB strings on 64-bit platforms.

        * wtf/text/CString.h:
        * wtf/text/CString.cpp:
        Use size_t for string lengths.
        * wtf/MD5.cpp:
        (WTF::expectMD5): use suitable format string + cast for size_t.
        * JavaScriptCore.exp:
        Update symbol name.

2010-10-06  Anders Carlsson  <andersca@apple.com>

        Reviewed by Sam Weinig.

        Start cleaning up Arguments.h
        https://bugs.webkit.org/show_bug.cgi?id=47304

        * wtf/TypeTraits.h:
        * wtf/TypeTraits.cpp:
        Add RemoveReference type trait.

2010-10-06  Rafael Antognolli  <antognolli@profusion.mobi>

        Unreviewed build fix.

        [EFL] Build fix for glib support.
        https://bugs.webkit.org/show_bug.cgi?id=47221

        If compiling with GLib support enabled, we also need to link wtf against
        glib library.

        * wtf/CMakeListsEfl.txt:

2010-10-05  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Gavin Barraclough.

        [BREWMP] Port ExecutableAllocator::cacheFlush to enable ARM JIT
        https://bugs.webkit.org/show_bug.cgi?id=47117

        Use IMemCache1 to flush data cache and invalidate instruction cache.

        * jit/ExecutableAllocator.h:
        (JSC::ExecutableAllocator::cacheFlush):

2010-10-05  Leandro Pereira  <leandro@profusion.mobi>

        Unreviewed. Build fix.

        Moved "jsc" directory to "shell", so that the name does not clash with the
        JavaScriptCore shell in some build systems.
        http://webkit.org/b/47049

        * CMakeLists.txt: Changed reference from "jsc" to "shell".
        * jsc: Removed.
        * jsc/CMakeLists.txt: Removed.
        * jsc/CMakeListsEfl.txt: Removed.
        * shell: Copied from JavaScriptCore/jsc.

2010-10-05  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Use PlatformRefPtr in randomNumber
        https://bugs.webkit.org/show_bug.cgi?id=46989

        Use PlatformRefPtr to free memory automatically.

        * wtf/RandomNumber.cpp:
        (WTF::randomNumber):

2010-10-05  Oliver Hunt  <oliver@apple.com>

        Reviewed by Darin Adler.

        REGRESSION(r68338): JavaScript error on PowerPC only (crashes on Interpreter built for x86_64)
        https://bugs.webkit.org/show_bug.cgi?id=46690

        Use the correct register value when initialising the arguments
        object in the interpreter.  This is covered by existing tests.

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):

2010-10-04  David Goodwin  <david_goodwin@apple.com>

        Reviewed by Oliver Hunt.

        ARMv7 JIT should take advantage of 2-byte branches to reduce code size
        https://bugs.webkit.org/show_bug.cgi?id=47007

        * assembler/ARMv7Assembler.cpp:
        * assembler/ARMv7Assembler.h:
        (JSC::ARMv7Assembler::computeJumpType):
        (JSC::ARMv7Assembler::link):
        (JSC::ARMv7Assembler::canBeJumpT2):
        (JSC::ARMv7Assembler::canBeJumpT4):
        (JSC::ARMv7Assembler::linkBX):
        (JSC::ARMv7Assembler::linkJumpT4):
        (JSC::ARMv7Assembler::linkJumpT2):
        (JSC::ARMv7Assembler::linkJumpAbsolute):

2010-10-04  Gyuyoung Kim  <gyuyoung.kim@samsung.com>

        Reviewed by Antonio Gomes.

        [EFL] Use fast malloc for WebKit EFL
        https://bugs.webkit.org/show_bug.cgi?id=46691

        Use fast malloc for WebKit EFL because the fast malloc is to allocate
        memory quickly.

        * wtf/CMakeListsEfl.txt:

2010-10-04  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoff Garen.

        Lazily create activation objects
        https://bugs.webkit.org/show_bug.cgi?id=47107

        Make it possible to lazily create the activation object
        for a function that needs one.  This allows us to reduce
        the overhead of entering a function that may require
        an activation in some cases, but not always.

        This does make exception handling a little more complex as
        it's now necessary to verify that a callframes activation
        has been created, and create it if not, in all of the
        paths used in exception handling.

        We also need to add logic to check for the existence of
        the activation in the scoped_var opcodes, as well as
        op_ret, op_ret_object_or_this and op_tearoff_activation
        so that we can avoid creating an activation unnecesarily
        on function exit. 

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        (JSC::CodeBlock::reparseForExceptionInfoIfNecessary):
        (JSC::CodeBlock::createActivation):
        * bytecode/CodeBlock.h:
        (JSC::CodeBlock::setActivationRegister):
        (JSC::CodeBlock::activationRegister):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        (JSC::BytecodeGenerator::emitNewFunctionInternal):
        (JSC::BytecodeGenerator::emitNewFunctionExpression):
        (JSC::BytecodeGenerator::createActivationIfNecessary):
        * bytecompiler/BytecodeGenerator.h:
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::resolveSkip):
        (JSC::Interpreter::resolveGlobalDynamic):
        (JSC::Interpreter::resolveBase):
        (JSC::Interpreter::unwindCallFrame):
        (JSC::Interpreter::throwException):
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        * jit/JIT.h:
        * jit/JITCall32_64.cpp:
        (JSC::JIT::emit_op_ret):
        (JSC::JIT::emit_op_ret_object_or_this):
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_end):
        (JSC::JIT::emit_op_get_scoped_var):
        (JSC::JIT::emit_op_put_scoped_var):
        (JSC::JIT::emit_op_tear_off_activation):
        (JSC::JIT::emit_op_ret):
        (JSC::JIT::emit_op_ret_object_or_this):
        (JSC::JIT::emit_op_create_activation):
        (JSC::JIT::emit_op_resolve_global_dynamic):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_get_scoped_var):
        (JSC::JIT::emit_op_put_scoped_var):
        (JSC::JIT::emit_op_tear_off_activation):
        (JSC::JIT::emit_op_create_activation):
        * jit/JITStubs.cpp:
        (JSC::DEFINE_STUB_FUNCTION):

2010-10-04  Adam Barth  <abarth@webkit.org>

        Reviewed by Sam Weinig.

        Remove ENABLE_SANDBOX
        https://bugs.webkit.org/show_bug.cgi?id=47032

        * Configurations/FeatureDefines.xcconfig:

2010-10-01  Pratik Solanki  <psolanki@apple.com>

        Reviewed by Geoffrey Garen.
        Specify ALWAYS_INLINE at function declaration not function definition
        https://bugs.webkit.org/show_bug.cgi?id=46960

        For functions defined with ALWAYS_INLINE, add the attribute to the declaration as well.

        * bytecompiler/BytecodeGenerator.h:
        * wtf/FastMalloc.cpp:

2010-10-01  Kwang Yul Seo  <skyul@company100.net>

        Unreviewed.

        [BREWMP] Change Collector BLOCK_SIZE to 64KB
        https://bugs.webkit.org/show_bug.cgi?id=46436

        Lower BLOCK_SIZE to 64KB because Brew MP runs on low end devices.

        * runtime/Collector.h:

2010-10-01  Viatcheslav Ostapenko  <ostapenko.viatcheslav@nokia.com>

        Reviewed by Andreas Kling.

        [Qt] Stack overflow on symbian platform.
        https://bugs.webkit.org/show_bug.cgi?id=40598
        
        Move big allocation in arrayProtoFuncToString from stack to heap.
        JSC::arrayProtoFuncToString function can be called recursivly and
        1K allocation on stack cahse stack overflow.
        Can be useful for other platforms with limited stack size.

        * runtime/ArrayPrototype.cpp:
        (JSC::arrayProtoFuncToString):

2010-09-30  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Add a factory function which returns an instance wrapped in PlatformRefPtr.
        https://bugs.webkit.org/show_bug.cgi?id=46373

        A Brew MP instance has reference count 1 when it is created, so call adoptPlatformRef
        to wrap the instance in PlatformRefPtr.

        * wtf/brew/ShellBrew.h:
        (WTF::createRefPtrInstance):

2010-09-30  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Port PlatformRefPtr
        https://bugs.webkit.org/show_bug.cgi?id=46370

        Implement refPlatformPtr and derefPlatformPtr to use PlatformRefPtr in Brew MP.

        * wtf/brew/RefPtrBrew.h: Added.
        (WTF::refPlatformPtr):
        (WTF::derefPlatformPtr):

2010-09-29  Sam Weinig  <sam@webkit.org>

        Reviewed by Darin Adler.

        Add additional checks to StringBuffer.
        <rdar://problem/7756381>

        * wtf/text/StringBuffer.h:
        (WTF::StringBuffer::StringBuffer):
        (WTF::StringBuffer::resize):

2010-09-30  Chris Marrin  <cmarrin@apple.com>

        Reviewed by Simon Fraser.

        Make 2D accelerated canvas rendering build on Mac
        https://bugs.webkit.org/show_bug.cgi?id=46007
        
        Added ACCELERATED_2D_CANVAS to FeatureDefines

        * Configurations/FeatureDefines.xcconfig:

2010-09-30  Kevin Ollivier  <kevino@theolliviers.com>

        [wx] wxMSW build fix. Make sure we copy the compiler flags and remove exception handling from
        the copy so as not to alter global settings.

        * wscript:

2010-09-30  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Gavin Barraclough.

        The case-insensitivity backreference checking isn't working with YARR
        Interpreter
        https://bugs.webkit.org/show_bug.cgi?id=46882

        Add ignorecase checking to the Interpreter::tryConsumeBackReference() function.

        * yarr/RegexInterpreter.cpp:
        (JSC::Yarr::Interpreter::tryConsumeBackReference):

2010-09-30  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Andreas Kling.

        [BREWMP] Leave initializeRandomNumberGenerator empty.
        https://bugs.webkit.org/show_bug.cgi?id=46851

        On Brew MP, AEECLSID_RANDOM initializes itself.

        * wtf/RandomNumberSeed.h:
        (WTF::initializeRandomNumberGenerator):

2010-09-30  Gabor Loki  <loki@webkit.org>

        Reviewed by Csaba Osztrogonác.

        Remove unnecessary cacheFlush calls from Thumb-2
        https://bugs.webkit.org/show_bug.cgi?id=46702

        * assembler/ARMv7Assembler.h:
        (JSC::ARMv7Assembler::relinkCall):
        (JSC::ARMv7Assembler::repatchInt32):
        (JSC::ARMv7Assembler::repatchPointer):

2010-09-29  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Next try to fix cygwin build.

        * wtf/Assertions.cpp:

2010-09-29  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Build fix for cygwin #2. It's OS(WINDOWS), not OS(WIN).

        * wtf/Assertions.cpp:

2010-09-29  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Build fix for cygwin.

        * wtf/Assertions.cpp:

2010-09-29  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Andreas Kling.

        [WINCE] Buildfix for Assertions.cpp after r68511.
        https://bugs.webkit.org/show_bug.cgi?id=46807

        Some, but not all WinCE environments have support for IsDebuggerPresent().
        Add HAVE(ISDEBUGGERPRESENT) to make this a build option.
        HAVE(ISDEBUGGERPRESENT) will be 1 for all OS(WIN) by default.

        * wtf/Assertions.cpp:
        * wtf/Platform.h:

2010-09-29  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Csaba Osztrogonác.

        JSC compile fails on 32bit platform when Regexp Tracing is enabled
        https://bugs.webkit.org/show_bug.cgi?id=46713

        Fix the cast of pointer in regexp tracing to avoid the warning.

        * runtime/RegExp.cpp:
        (JSC::RegExp::match):

2010-09-28  Anders Carlsson  <andersca@apple.com>

        Reviewed by Sam Weinig.

        Begin hooking up painting in the plug-in process
        https://bugs.webkit.org/show_bug.cgi?id=46766

        * JavaScriptCore.exp:
        Add tryFastRealloc, used by WebKit2.

2010-09-28  Philippe Normand  <pnormand@igalia.com>

        Reviewed by Martin Robinson.

        Guard GRefPtr/GOwnPtr files with ENABLE(GLIB_SUPPORT)
        https://bugs.webkit.org/show_bug.cgi?id=46721

        Enable GOwnPtr/GRefPtr build only if glib support has been
        explicitly enabled using the WTF_ENABLE_GLIB_SUPPORT macro.

        * wtf/gobject/GOwnPtr.cpp:
        * wtf/gobject/GOwnPtr.h:
        * wtf/gobject/GRefPtr.cpp:
        * wtf/gobject/GRefPtr.h:

2010-09-28  İsmail Dönmez  <ismail@namtrac.org>

        Reviewed by Andreas Kling.

        Test for WINCE instead of WINCEBASIC, compiler always defines WINCE.
        Remove reference to unexisting path JavaScriptCore/os-wince.

        * JavaScriptCore.pri:
        * wtf/Assertions.cpp:

2010-09-27  Michael Saboff  <msaboff@apple.com>

        Reviewed by Geoffrey Garen.

        Changed the initialization of JSArray objects to have space for 
        3 elements for the constructor that takes a ArgList argument.
        This improves v8-deltablue performance by about 2.8% by reducing 
        the number of realloc() calls.
        https://bugs.webkit.org/show_bug.cgi?id=46664

        * runtime/JSArray.cpp:
        (JSC::JSArray::JSArray):

2010-09-27  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Darin Adler.

        Bug 46680 - Inlining string concatenation can regress interpreter performance
        <rdar://problem/8362752> REGRESSION: ~6.4% sunspider regression in interpreter
        Do not inline calls to string concatenation in the interpret loop.

        * interpreter/Interpreter.cpp:
        (JSC::concatenateStrings):
        (JSC::Interpreter::privateExecute):

2010-09-27  Anders Carlsson  <andersca@apple.com>

        Fix thinko.

        * runtime/JSCell.h:

2010-09-27  Anders Carlsson  <andersca@apple.com>

        Reviewed by Adam Roben.

        Try to fix Windows build.

        * runtime/JSCell.h:
        (JSC::MSVCBugWorkaround::MSVCBugWorkaround):
        (JSC::MSVCBugWorkaround::~MSVCBugWorkaround):

2010-09-27  Erik Arvidsson  <arv@chromium.org>

        Reviewed by Darin Adler.

        Add operator == for AtomicString and Vector<Uchar>
        https://bugs.webkit.org/show_bug.cgi?id=46509

        * JavaScriptCore.exp:
        * wtf/text/AtomicString.cpp:
        (WTF::operator==):
        * wtf/text/AtomicString.h:
        (WTF::operator==):
        (WTF::operator!=):

2010-09-27  Anders Carlsson  <andersca@apple.com>

        Try to fix the Windows build.

        * wtf/Noncopyable.h:

2010-09-26  Anders Carlsson  <andersca@apple.com>

        Reviewed by Alexey Proskuryakov and Adam Barth.

        Add WTF_MAKE_NONCOPYABLE macro
        https://bugs.webkit.org/show_bug.cgi?id=46589

        Going forward, we'd like to get rid of the Noncopyable and FastAllocBase classes. The
        reason for this is that the Itanium C++ ABI states that no empty classes of the same type
        can be laid out at the same offset in the class. This can result in objects getting larger
        which leads to memory regressions. (One example of this is the String class which grew by
        sizeof(void*) when both its base class and its first member variable inherited indirectly
        from FastAllocBase).

        * wtf/Noncopyable.h:
        Add a WTF_MAKE_NONCOPYABLE macro and get rid of NoncopyableCustomAllocated.
        
        * runtime/JSCell.h:
        * wtf/RefCounted.h:
        Don't inherit from NoncopyableCustomAllocated. Instead, use WTF_MAKE_NONCOPYABLE.

2010-09-27  Philippe Normand  <pnormand@igalia.com>

        Reviewed by Martin Robinson.

        [GTK] use ENABLE(GLIB_SUPPORT)
        https://bugs.webkit.org/show_bug.cgi?id=46630

        * wtf/Platform.h: Include GTypedefs.h only if glib support
        is explicitly enabled.

2010-09-25  Holger Hans Peter Freyther  <holger@moiji-mobile.com>

        Reviewed by Adam Barth.

        jsc: Document the strcat opcode.
        https://bugs.webkit.org/show_bug.cgi?id=46571

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):

2010-09-21  Holger Hans Peter Freyther  <holger@moiji-mobile.com>

        Reviewed by Adam Barth.

        make-bytecode-docs.pl: Add a comment to the generated HTML
        https://bugs.webkit.org/show_bug.cgi?id=46570

        Generate an HTML Comment that this file was generated from
        Interpreter.cpp with the make-bytecode-docs.pl script.

        * docs/make-bytecode-docs.pl:

2010-09-27  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Adam Barth.

        Remove WTF::stringHash functions
        https://bugs.webkit.org/show_bug.cgi?id=46520

        Since r68289 the stringHash functions are only wrappers around StringHasher::createHash.
        So use StringHasher::createHash directly and remove stringHash.

        * wtf/StringHashFunctions.h:
        * wtf/text/StringImpl.h:
        (WTF::StringImpl::computeHash): Use WTF::StringHasher::createHash directly.

2010-09-26  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Adam Barth.

        Add WTF::StringHasher::createBlobHash
        https://bugs.webkit.org/show_bug.cgi?id=46514

        Add this function for hashing FormElementKey and QualifiedNameComponents.

        * wtf/StringHashFunctions.h:
        (WTF::StringHasher::createBlobHash):

2010-09-26  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Adam Barth.

        REGRESSION (r68289): Assertion failure in StringHasher::addCharacter() (ch != invalidCharacterValue)
        running websocket/tests/bad-sub-protocol-non-ascii.html
        https://bugs.webkit.org/show_bug.cgi?id=46553

        Because we use StringHasher for binary data too, so the check for invalid unicode input is wrong.
        Add an additional member variable to indicate if we have an pending character
        instead of only using an invalid character for this purpose.

        * wtf/StringHashFunctions.h:
        (WTF::StringHasher::StringHasher):
        (WTF::StringHasher::addCharacters):
        (WTF::StringHasher::addCharacter):
        (WTF::StringHasher::hash):

2010-09-26  Mark Hahnenberg  <mhahnenb@gmail.com>

        Reviewed by Oliver Hunt.

        valueOf called in wrong order in atan2 and date constructors.
        https://bugs.webkit.org/show_bug.cgi?id=26978

        Fixed the bug where the arguments to atan2 were being evaluated 
        out of order.

        * runtime/MathObject.cpp:
        (JSC::mathProtoFuncATan2):

2010-09-26  Mark Hahnenberg  <mhahnenb@gmail.com>

        Reviewed by Oliver Hunt.

        valueOf called in wrong order in atan2 and date constructors.
        https://bugs.webkit.org/show_bug.cgi?id=26978

        Fixed the issue where the parameters to the Date constructor
        were being evaluated to numbers more than once.

        * runtime/DateConstructor.cpp:
        (JSC::constructDate):
        (JSC::dateUTC):

2010-09-25  Oliver Hunt  <oliver@apple.com>

        Fix various builds

        Relearning the lesson that last minute changes are bad.

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::emitGetArgumentsLength):
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emitSlow_op_get_argument_by_val):

2010-09-25  Oliver Hunt  <oliver@apple.com>

        Reviewed by Cameron Zwarich.

        Avoid constructing arguments object when accessing length and index properties
        https://bugs.webkit.org/show_bug.cgi?id=46572

        Add opcodes to read argument length and properties, and then implement them.
        Much like other lazy opcodes these opcodes take a fast path when the arguments
        object has not been instantiated, and fall back on generic access mechanisms
        if they are acting on an instantiated object.

        3% win on v8-earleyboyer, no change elsewhere.

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::emitGetArgumentsLength):
        (JSC::BytecodeGenerator::emitGetArgumentByVal):
        * bytecompiler/BytecodeGenerator.h:
        * bytecompiler/NodesCodegen.cpp:
        (JSC::BracketAccessorNode::emitBytecode):
        (JSC::DotAccessorNode::emitBytecode):
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        (JSC::JIT::privateCompileSlowCases):
        * jit/JIT.h:
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_get_arguments_length):
        (JSC::JIT::emitSlow_op_get_arguments_length):
        (JSC::JIT::emit_op_get_argument_by_val):
        (JSC::JIT::emitSlow_op_get_argument_by_val):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_get_arguments_length):
        (JSC::JIT::emitSlow_op_get_arguments_length):
        (JSC::JIT::emit_op_get_argument_by_val):
        (JSC::JIT::emitSlow_op_get_argument_by_val):

2010-09-25  Patrick Gansterer  <paroga@webkit.org>

        Unreviewed.

        Fix typo in StringHasher class
        https://bugs.webkit.org/show_bug.cgi?id=45970

        * wtf/StringHashFunctions.h:
        (WTF::StringHasher::createHash):

2010-09-24  Patrick Gansterer  <paroga@paroga.com>

        Reviewed by Gavin Barraclough.

        Add WTF::StringHasher
        https://bugs.webkit.org/show_bug.cgi?id=45970

        StringHasher is a class for calculation stringHash out of character string.
        This class will unify the different usages of the same algorithm.

        * wtf/StringHashFunctions.h:
        (WTF::StringHasher::StringHasher):
        (WTF::StringHasher::addCharacters):
        (WTF::StringHasher::addCharacter):
        (WTF::StringHasher::hash):
        (WTF::StringHasher::createHash):
        (WTF::StringHasher::defaultCoverter):
        (WTF::StringHasher::addCharactersToHash):
        (WTF::stringHash):

2010-09-24  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Variable declarations inside a catch scope don't get propogated to the parent scope
        https://bugs.webkit.org/show_bug.cgi?id=46501

        Add logic to make variable declaration look for a scope for the
        new variable.  This allows us to create a scope (eg. for catch)
        and then seal it, so that additional variable declarations
        contained are propogated to the correct target.  Strangely this
        comes out as a performance win, but I think it's mostly cache
        effects.

        * parser/JSParser.cpp:
        (JSC::JSParser::Scope::Scope):
        (JSC::JSParser::Scope::preventNewDecls):
        (JSC::JSParser::Scope::allowsNewDecls):
        (JSC::JSParser::declareVariable):
        (JSC::JSParser::parseVarDeclarationList):
        (JSC::JSParser::parseConstDeclarationList):
        (JSC::JSParser::parseTryStatement):
        (JSC::JSParser::parseFormalParameters):
        (JSC::JSParser::parseFunctionDeclaration):

2010-09-24  İsmail Dönmez  <ismail@namtrac.org>

       Reviewed by Csaba Osztrogonác.

       Add a Windows compatible inttypes.h header to fix WinCE build.
       https://bugs.webkit.org/show_bug.cgi?id=46463

       * os-win32/inttypes.h: Added.

2010-09-24  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        REGRESSION(r68223): It broke 2-3 tests on bots (Requested by Ossy on #webkit).
        https://bugs.webkit.org/show_bug.cgi?id=46448

        Roll this back in, with additional logic to prevent us from delaying construction
        of functions named "arguments"

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        (JSC::BytecodeGenerator::emitInitLazyRegister):
        (JSC::BytecodeGenerator::registerFor):
        (JSC::BytecodeGenerator::createLazyRegisterIfNecessary):
        (JSC::BytecodeGenerator::constRegisterFor):
        (JSC::BytecodeGenerator::emitNewFunction):
        (JSC::BytecodeGenerator::emitLazyNewFunction):
        (JSC::BytecodeGenerator::emitNewFunctionInternal):
        * bytecompiler/BytecodeGenerator.h:
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        * jit/JIT.h:
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_init_lazy_reg):
        (JSC::JIT::emit_op_new_func):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_init_lazy_reg):
        * parser/Nodes.h:
        (JSC::ScopeNode::needsActivationForMoreThanVariables):

2010-09-23  Sheriff Bot  <webkit.review.bot@gmail.com>

        Unreviewed, rolling out r68223.
        http://trac.webkit.org/changeset/68223
        https://bugs.webkit.org/show_bug.cgi?id=46448

        It broke 2-3 tests on bots (Requested by Ossy on #webkit).

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        (JSC::BytecodeGenerator::registerFor):
        (JSC::BytecodeGenerator::constRegisterFor):
        (JSC::BytecodeGenerator::emitNewFunction):
        * bytecompiler/BytecodeGenerator.h:
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        * jit/JIT.h:
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_new_func):
        (JSC::JIT::emit_op_init_arguments):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_new_func):
        (JSC::JIT::emit_op_init_arguments):
        * parser/Nodes.h:

2010-09-23  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Delay construction of functions that aren't captured
        https://bugs.webkit.org/show_bug.cgi?id=46433

        If a function isn't captured by an activation there's no
        way it can be accessed indirectly, so we can delay the
        construction until it's used (similar to what we do with
        arguments).  We rename the existing op_init_arguments to
        op_init_lazy_reg and removed its implicit handling of
        the anonymous argument register, and make op_new_function
        take a parameter to indicate whether it should null check
        the target slot before creating the function object.

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecode/Opcode.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        (JSC::BytecodeGenerator::emitInitLazyRegister):
        (JSC::BytecodeGenerator::registerFor):
        (JSC::BytecodeGenerator::createLazyRegisterIfNecessary):
        (JSC::BytecodeGenerator::constRegisterFor):
        (JSC::BytecodeGenerator::emitNewFunction):
        (JSC::BytecodeGenerator::emitLazyNewFunction):
        (JSC::BytecodeGenerator::emitNewFunctionInternal):
        * bytecompiler/BytecodeGenerator.h:
        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompileMainPass):
        * jit/JIT.h:
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_init_lazy_reg):
        (JSC::JIT::emit_op_new_func):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_init_lazy_reg):
        * parser/Nodes.h:
        (JSC::ScopeNode::needsActivationForMoreThanVariables):

2010-09-23  David Kilzer  <ddkilzer@apple.com>

        <rdar://problem/8460731> ~9.9% speedup when compiling interpreter with llvm-gcc-4.2
        https://bugs.webkit.org/show_bug.cgi?id=46423

        Reviewed by Oliver Hunt.

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute): Disable the gcc computed
        goto hacks added in r55564 when compiling with llvm-gcc-4.2.

2010-09-23  Lucas De Marchi  <lucas.demarchi@profusion.mobi>

        Reviewed by Darin Adler.

        Fix usage of enum as if it was a define
        https://bugs.webkit.org/show_bug.cgi?id=46355

        pthread.h defines PTHREAD_MUTEX_DEFAULT and PTHREAD_MUTEX_NORMAL as an
        enum.  Hence, it cannot be used by the preprocessor which always
        evaluates that condition as true. This was giving a warning when
        compiling with gcc and "-Wundef" flag.

        The second path, when PTHREAD_MUTEX_DEFAULT is not the same of
        PTHREAD_MUTEX_NORMAL, is not slow. So, let's eliminate the first path
        and get rid of that #if.

        * wtf/ThreadingPthreads.cpp: Always call pthread_mutexattr_init() to
        set mutex type to PTHREAD_MUTEX_NORMAL.
        (WTF::Mutex::Mutex):

2010-09-23  Michael Saboff  <msaboff@apple.com>

        Reviewed by Geoffrey Garen.

        Removed extraneous truncation of ovector on entry and error exit.
        Changed the initialization to -1 of vector to only initialize
        the start indecies, which is sufficient for the pattern/subpatterns.
        Changed the JIT code to not clear the end index for subpatterns
        as it isn't needed.  These changes are worth ~2.7% on v8-regexp.
        https://bugs.webkit.org/show_bug.cgi?id=46404

        * runtime/RegExp.cpp:
        (JSC::RegExp::match):
        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::generateParenthesesSingle):

2010-09-22  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoff Garen.

        Only copy captured variables into activation
        https://bugs.webkit.org/show_bug.cgi?id=46330

        We now track free variable information which means that
        we no longer need to copy every variable defined in a
        function.  With this patch activations only retain those
        variables needed for correctness.  In order to interact
        safely with the inspector this means that JSActivation
        now provides its own lookup functions so it can avoid 
        trying to read or write to variables that have been
        optimised out.

        * bytecode/CodeBlock.h:
        * bytecompiler/BytecodeGenerator.cpp:
        (JSC::BytecodeGenerator::BytecodeGenerator):
        * parser/Nodes.h:
        (JSC::ScopeNode::capturedVariableCount):
        (JSC::ScopeNode::captures):
        * runtime/Arguments.h:
        (JSC::JSActivation::copyRegisters):
        * runtime/Executable.cpp:
        (JSC::FunctionExecutable::FunctionExecutable):
        (JSC::FunctionExecutable::compileForCallInternal):
        (JSC::FunctionExecutable::compileForConstructInternal):
        * runtime/Executable.h:
        (JSC::FunctionExecutable::capturedVariableCount):
        * runtime/JSActivation.cpp:
        (JSC::JSActivation::markChildren):
        (JSC::JSActivation::symbolTableGet):
        (JSC::JSActivation::symbolTablePut):
        (JSC::JSActivation::getOwnPropertyNames):
        (JSC::JSActivation::symbolTablePutWithAttributes):
        * runtime/JSActivation.h:

2010-09-23  Ismail Donmez  <ismail@namtrac.org>

        Reviewed by Andreas Kling.

        Fix jsc.exe build for Windows CE

        * jsc.pro: Add mmtimer.lib for Windows CE.

2010-09-23  Ismail Donmez  <ismail@namtrac.org>

        Unreviewed.

        JIT should be disabled on Windows CE. Broken in r64176.

        * wtf/Platform.h:

2010-09-23  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Gavin Barraclough.

        Reduce the number of BOL checks in YARR Interpreter
        https://bugs.webkit.org/show_bug.cgi?id=46260

        Extend the YARR Interpreter with an optimization which reduces the number of
        BOL assertion checks. If a "TypeBodyAlternative" byteTerm is followed by a
        "TypeAssertionBOL" byteTerm it will be checked just one time.

        * yarr/RegexInterpreter.cpp:
        (JSC::Yarr::Interpreter::matchDisjunction):
        (JSC::Yarr::ByteCompiler::compile):
        (JSC::Yarr::ByteCompiler::regexBegin):
        (JSC::Yarr::ByteCompiler::alternativeBodyDisjunction):
        (JSC::Yarr::ByteCompiler::emitDisjunction):
        * yarr/RegexInterpreter.h:
        (JSC::Yarr::ByteTerm::BodyAlternativeBegin):
        (JSC::Yarr::ByteTerm::BodyAlternativeDisjunction):
        (JSC::Yarr::ByteTerm::BodyAlternativeEnd):
        (JSC::Yarr::ByteTerm::AlternativeBegin):
        (JSC::Yarr::ByteTerm::AlternativeDisjunction):
        (JSC::Yarr::ByteTerm::AlternativeEnd):

2010-09-22  Michael Saboff  <msaboff@apple.com>

        Reviewed by Gavin Barraclough.

        Fixed the cross over from alternatives executed once and
        those that loop.  This fixed the problem where the index
        was getting messed up for looping alternatives causing an
        infinite loop.
        https://bugs.webkit.org/show_bug.cgi?id=46189

        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::generateDisjunction):

2010-09-22  Steve Falkenburg  <sfalken@apple.com>

        Rubber stamped by Jon Honeycutt.

        Allow jsc.exe to be run against unversioned ICU.

        * JavaScriptCore.vcproj/jsc/jscCommon.vsprops:

2010-09-22  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Laszlo Gombos.

        Use "typedef wchar_t JSChar" when compiled with RVCT
        https://bugs.webkit.org/show_bug.cgi?id=40651

        Use wchar_t for JSChar and UChar when compiled with RVCT.
        Linux is the exception for this rule.

        * API/JSStringRef.h:
        * wtf/unicode/qt4/UnicodeQt4.h:

2010-09-22  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        [INTERPRETER] Two tests fail with SputnikError: #1.1: if argArray is neither an array nor an arguments object (see 10.1.8), a TypeError exception is thrown
        https://bugs.webkit.org/show_bug.cgi?id=44245

        Remove incorrect code from op_load_varargs in the interpreter.

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):

2010-09-22  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        [JIT] fast/js/sputnik/Conformance/15_Native_Objects/15.3_Function/15.3.5/S15.3.5.3_A2_T6.html fails
        https://bugs.webkit.org/show_bug.cgi?id=44246

        JIT code generated for instanceof was not checking to ensure that the prototype property was
        an object, this patch ensures that it does.

        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_instanceof):
        (JSC::JIT::emitSlow_op_instanceof):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::emit_op_instanceof):
        (JSC::JIT::emitSlow_op_instanceof):

2010-09-22  Patrick Gansterer  <paroga@webkit.org>

        Reviewed by Darin Adler.

        Inline UTF8SequenceLength
        https://bugs.webkit.org/show_bug.cgi?id=45589

        * wtf/unicode/UTF8.cpp:
        (WTF::Unicode::convertUTF8ToUTF16): Use inline version of UTF8SequenceLength to improve performance.

2010-09-21  Oliver Hunt  <oliver@apple.com>

        RS=Gavin Barraclough.

        Fix codeblock dumping

        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * runtime/Executable.h:
        (JSC::ScriptExecutable::ScriptExecutable):

2010-09-21  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Speed up function.apply(..., arguments)
        https://bugs.webkit.org/show_bug.cgi?id=46207

        Add code to do argument copying inline in the case
        where we're using Function.apply to forward our arguments
        directly.

        * jit/JIT.cpp:
        (JSC::JIT::privateCompileSlowCases):
           Splitted op_load_varargs into fast and slow paths, so add the call
           to the slow path generator.
        * jit/JIT.h:
        * jit/JITCall32_64.cpp:
          Remove 32bit specific emit_op_load_varargs as the logic is the
          same for all value representations
        * jit/JITOpcodes.cpp:
        (JSC::JIT::emit_op_load_varargs):
          Copy arguments inline
        (JSC::JIT::emitSlow_op_load_varargs):

2010-09-21  Geoffrey Garen  <ggaren@apple.com>

        Reviewed by Oliver Hunt.

        <rdar://problem/8363003> REGRESSION: ~1.4% sunspider regression in
        interpreter due to 54724 and 54596
        
        Fixed a typo (using "UNLIKELY" instead of "LIKELY").
        
        * wtf/PassRefPtr.h:
        (WTF::refIfNotNull):
        (WTF::derefIfNotNull): It is likely that m_ptr != 0 because most RefPtrs
        hold real data. Also, in cases where they do not hold real data, the
        compiler usually sees a call to release() right before the call to the
        destructor, so it can probably optimize out the test completely.

2010-09-21  Fridrich Strba  <fridrich.strba@bluewin.ch>

        Reviewed by Martin Robinson.

        Build issues with Windows versions of the GTK+ port
        https://bugs.webkit.org/show_bug.cgi?id=45844

        Link with winmm.dll when necessary and specify the executable extension
        explicitely so that the Programs/jsc-@WEBKITGTK_API_MAJOR_VERSION@
        rule actually works.

        Don't try to build the ThreadSpecificWin.cpp since GTK+ port uses
        a section in ThreadSpecific.cpp

        * GNUmakefile.am:

2010-09-21  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Xan Lopez.

        [GTK] 'make dist' should be fixed in preparation for the next release
        https://bugs.webkit.org/show_bug.cgi?id=46129

        * GNUmakefile.am: Update the sources list to include missing headers.

2010-09-21  Dave Tapuska  <dtapuska@rim.com>

        Reviewed by Csaba Osztrogonác.

        https://bugs.webkit.org/show_bug.cgi?id=45673

        r65596 caused ENABLE_PROFILER_REFERENCE_OFFSET to not be
        8 byte aligned. A non 8 byte divisible value for this will
        cause the sp to become non 8 byte aligned.

        Verify and correct offset values that r65596 effected that
        weren't updated.

        * jit/JITStubs.cpp:
        * jit/JITStubs.h:

2010-09-21  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Martin Robinson.

        Fix Opcode stats compilation
        https://bugs.webkit.org/show_bug.cgi?id=46079

        The FixedArray API had changed, and <stdio.h> was not included for
        printf.

        * bytecode/Opcode.cpp:
        (JSC::OpcodeStats::~OpcodeStats):

2010-09-20  Michael Saboff  <msaboff@apple.com>

        Reviewed by Gavin Barraclough.

        Fixed detection of alternative smaller than the first alternative
        to only check looping alternatives.
        https://bugs.webkit.org/show_bug.cgi?id=46049

        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::generateDisjunction):

2010-09-20  Peter Varga  <pvarga@inf.u-szeged.hu>

        Reviewed by Geoffrey Garen.

        REGRESSION(67790): jsc tests are failed with YARR interpreter
        https://bugs.webkit.org/show_bug.cgi?id=46083

        Fix the initializing of the lastSubpatternId member of
        parentheses.

        * yarr/RegexCompiler.cpp:
        (JSC::Yarr::RegexPatternConstructor::atomParenthesesEnd):

2010-09-20  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        Bug 46077 - ASSERT failure in YARR JIT

        We will currently attempt to loop if there are multiple alternatives, they are all
        BOL predicated, and the last alternative is longer then the first - however if all
        alternatives are BOL predicated the head of loop label will not have been set, and
        we'll try to link a jump to an undefined label. Stop doing so.

        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::generateDisjunction):

2010-09-20  Adam Roben  <aroben@apple.com>

        Export RegExpObject::info from JavaScriptCore

        This allows obj->inherits(&RegExpObject::info) to work correctly from
        outside JavaScriptCore.dll on Windows.

        Fixes <http://webkit.org/b/46098>
        fast/loader/stateobjects/pushstate-object-types.html fails on Windows

        Reviewed by John Sullivan.

        * runtime/RegExpObject.h: Added JS_EXPORTDATA to the info member, as
        we already have for some other classes whose info members have to be
        used from outside the DLL.

2010-09-19  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix pt 2.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-09-19  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix pt 1.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-09-19  Gavin Barraclough  <barraclough@apple.com>

        Build fix - implicit double-to-int conversion invalid on 32-bit.

        * runtime/DatePrototype.cpp:
        (JSC::fillStructuresUsingDateArgs):
        (JSC::dateProtoFuncSetYear):

2010-09-19  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        Bug 46065 - Unify implementation of ToInt32 and ToUInt32, don't use fmod.

        These methods implement the same conversion (see discussion in the notes
        of sections of 9.5 and 9.6 of the spec), only differing in how the result
        is interpretted.

        Date prototype is incorrectly using toInt32, and this is causing us to
        provide an output value indicating whether the input to ToInt32 was finite
        (the corresponding methods on Date are actually spec'ed to use ToInteger,
        not ToInt32).  This patch partially fixes this in order to remove this
        bogus output value, hoewever more work will be require to bring Date
        fully up to spec compliance (the constructor is still performing ToInt32
        conversions).

        * JavaScriptCore.exp:
        * runtime/DatePrototype.cpp:
        (JSC::fillStructuresUsingTimeArgs):
        (JSC::fillStructuresUsingDateArgs):
        (JSC::dateProtoFuncSetYear):
        * runtime/JSValue.cpp:
        (JSC::toInt32):
        * runtime/JSValue.h:
        (JSC::toUInt32):
        (JSC::JSValue::toInt32):
        (JSC::JSValue::toUInt32):

2010-09-18  Darin Adler  <darin@apple.com>

        First step in fixing Windows build.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
        Removed incorrect symbol. The build will probably still fail,
        but the failure will tell us what symbol to add.

2010-09-18  Michael Saboff  <msaboff@apple.com>

        Reviewed by Gavin Barraclough.

        Added code to unroll regular expressions containing ^.
        Alternatives that begin with ^ are tagged during parsing
        and rolled up in containing sub expression structs.
        After parsing, a regular expression flagged as containing
        a ^ (a.k.a. BOL) is processed further in optimizeBOL().
        A copy of the disjunction is made excluding alternatives that
        are rooted with BOL.  The original alternatives are flagged
        to only be executed once.  The copy of the other alternatives are
        added to the original expression.
        In the case that all original alternatives are flagged, there
        won't be any looping alternatives.
        The JIT generator will emit code accordingly, executing the
        original alternatives once and then looping over the
        alternatives that aren't anchored with a BOL (if any).
        https://bugs.webkit.org/show_bug.cgi?id=45787

        * yarr/RegexCompiler.cpp:
        (JSC::Yarr::RegexPatternConstructor::assertionBOL):
        (JSC::Yarr::RegexPatternConstructor::atomParenthesesEnd):
        (JSC::Yarr::RegexPatternConstructor::copyDisjunction):
        (JSC::Yarr::RegexPatternConstructor::copyTerm):
        (JSC::Yarr::RegexPatternConstructor::optimizeBOL):
        (JSC::Yarr::compileRegex):
        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::generateDisjunction):
        * yarr/RegexPattern.h:
        (JSC::Yarr::PatternAlternative::PatternAlternative):
        (JSC::Yarr::PatternAlternative::setOnceThrough):
        (JSC::Yarr::PatternAlternative::onceThrough):
        (JSC::Yarr::PatternDisjunction::PatternDisjunction):
        (JSC::Yarr::RegexPattern::RegexPattern):
        (JSC::Yarr::RegexPattern::reset):

2010-09-18  Patrick Gansterer  <paroga@paroga.com>

        Reviewed by Darin Adler.

        Rename Wince files to WinCE
        https://bugs.webkit.org/show_bug.cgi?id=37287

        * wtf/unicode/Unicode.h:
        * wtf/unicode/wince/UnicodeWinCE.cpp: Copied from JavaScriptCore/wtf/unicode/wince/UnicodeWince.cpp.
        * wtf/unicode/wince/UnicodeWinCE.h: Copied from JavaScriptCore/wtf/unicode/wince/UnicodeWince.h.
        * wtf/unicode/wince/UnicodeWince.cpp: Removed.
        * wtf/unicode/wince/UnicodeWince.h: Removed.
        * wtf/wince/FastMallocWinCE.h: Copied from JavaScriptCore/wtf/wince/FastMallocWince.h.
        * wtf/wince/FastMallocWince.h: Removed.

2010-09-18  Ademar de Souza Reis Jr  <ademar.reis@openbossa.org>

        Reviewed by Kenneth Rohde Christiansen.

        Enable Platform Strategies on Qt

        [Qt] Turn on PLATFORM_STRATEGIES
        https://bugs.webkit.org/show_bug.cgi?id=45831

        * wtf/Platform.h: Enable Platform Strategies when building QtWebkit

2010-09-17  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        Imprecise tracking of variable capture leads to overly pessimistic creation of activations
        https://bugs.webkit.org/show_bug.cgi?id=46020

        The old logic for track free and captured variables would cause us
        to decide we needed an activation in every function along the scope
        chain between a variable capture and its declaration.  We now track
        captured variables precisely which requires a bit of additional work

        The most substantial change is that the parsing routine needs to
        be passed the list of function parameters when reparsing a function
        as when reparsing we don't parse the function declaration itself only
        its body.

        * JavaScriptCore.exp:
        * parser/JSParser.cpp:
        (JSC::JSParser::Scope::Scope):
        (JSC::JSParser::Scope::needsFullActivation):
           We need to distinguish between use of a feature that requires
           an activation and eval so we now get this additional flag.
        (JSC::JSParser::Scope::collectFreeVariables):
        (JSC::JSParser::Scope::getCapturedVariables):
           We can't simply return the list of "capturedVariables" now as
           is insufficiently precise, so we compute them instead.
        (JSC::JSParser::popScope):
        (JSC::jsParse):
        (JSC::JSParser::JSParser):
        (JSC::JSParser::parseProgram):
        (JSC::JSParser::parseWithStatement):
        (JSC::JSParser::parseTryStatement):
        (JSC::JSParser::parseFunctionInfo):
        (JSC::JSParser::parseFunctionDeclaration):
        (JSC::JSParser::parseProperty):
        (JSC::JSParser::parseMemberExpression):
        * parser/JSParser.h:
        * parser/Parser.cpp:
        (JSC::Parser::parse):
        * parser/Parser.h:
        (JSC::Parser::parse):
        * runtime/Executable.cpp:
        (JSC::EvalExecutable::compileInternal):
        (JSC::ProgramExecutable::checkSyntax):
        (JSC::ProgramExecutable::compileInternal):
        (JSC::FunctionExecutable::compileForCallInternal):
        (JSC::FunctionExecutable::compileForConstructInternal):
        (JSC::FunctionExecutable::reparseExceptionInfo):
        (JSC::EvalExecutable::reparseExceptionInfo):
        (JSC::FunctionExecutable::fromGlobalCode):
           Pass function parameters (if available) to the parser.

2010-09-17  Anders Carlsson  <andersca@apple.com>

        Reviewed by Sam Weinig.

        Add IsFloatingPoint and IsArithmetic type traits
        https://bugs.webkit.org/show_bug.cgi?id=46018

        * wtf/TypeTraits.h:
        * wtf/TypeTraits.cpp:

2010-09-17  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Oliver Hunt.

        [GTK] FontPlatformDataFreeType should use smart pointers to hold its members
        https://bugs.webkit.org/show_bug.cgi?id=45917

        Added support to PlatformRefPtr for handling HashTableDeletedValue.

        * wtf/PlatformRefPtr.h:
        (WTF::PlatformRefPtr::PlatformRefPtr): Added a constructor that takes HashTableDeletedValue.
        (WTF::PlatformRefPtr::isHashTableDeletedValue): Added.

2010-09-16  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Crash due to timer triggered GC on one heap while another heap is active
        https://bugs.webkit.org/show_bug.cgi?id=45932
        <rdar://problem/8318446>

        The GC timer may trigger for one heap while another heap is active.  This
        is safe, but requires us to ensure that we have temporarily associated the
        thread's identifierTable with the heap we're collecting on.  Otherwise we
        may end up with the identifier tables in an inconsistent state leading to
        an eventual crash.

        * runtime/Collector.cpp:
        (JSC::Heap::allocate):
        (JSC::Heap::reset):
        (JSC::Heap::collectAllGarbage):
           Add assertions to ensure we have the correct identifierTable active
           while collecting.
        * runtime/GCActivityCallbackCF.cpp:
        (JSC::DefaultGCActivityCallbackPlatformData::trigger):
           Temporarily make the expected IdentifierTable active
        * wtf/WTFThreadData.h:
        (JSC::IdentifierTable::remove):
           Make it possible to see when IdentifierTable::remove has succeeded
        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::~StringImpl):
           CRASH if an StringImpl is an Identifier but isn't present in the
           active IdentifierTable.  If we get to this state something has
           gone wrong and we should just crash immediately.

2010-09-16  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Xan Lopez.

        [GTK] Implement dissolveDragImageToFraction
        https://bugs.webkit.org/show_bug.cgi?id=45826

        * wtf/gobject/GTypedefs.h: Added forward declarations for GtkWindow and GdkEventExpose.

2010-09-16  Eric Uhrhane  <ericu@chromium.org>

        Reviewed by Jian Li.

        Unify FILE_SYSTEM and FILE_WRITER enables under the name FILE_SYSTEM.
        https://bugs.webkit.org/show_bug.cgi?id=45798

        * Configurations/FeatureDefines.xcconfig:

2010-09-15  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Use free variable analysis to improve activation performance
        https://bugs.webkit.org/show_bug.cgi?id=45837

        Adds free and captured variable tracking to the JS parser.  This
        allows us to avoid construction of an activation object in some
        cases.  Future patches will make more use of this information to
        improve those cases where activations are still needed.

        * parser/ASTBuilder.h:
        * parser/JSParser.cpp:
        (JSC::JSParser::Scope::Scope):
        (JSC::JSParser::Scope::declareVariable):
        (JSC::JSParser::Scope::useVariable):
        (JSC::JSParser::Scope::collectFreeVariables):
        (JSC::JSParser::Scope::capturedVariables):
        (JSC::JSParser::ScopeRef::ScopeRef):
        (JSC::JSParser::ScopeRef::operator->):
        (JSC::JSParser::ScopeRef::index):
        (JSC::JSParser::currentScope):
        (JSC::JSParser::pushScope):
        (JSC::JSParser::popScope):
        (JSC::JSParser::parseProgram):
        (JSC::JSParser::parseVarDeclarationList):
        (JSC::JSParser::parseConstDeclarationList):
        (JSC::JSParser::parseTryStatement):
        (JSC::JSParser::parseFormalParameters):
        (JSC::JSParser::parseFunctionInfo):
        (JSC::JSParser::parseFunctionDeclaration):
        (JSC::JSParser::parsePrimaryExpression):
        * parser/Nodes.cpp:
        (JSC::ScopeNodeData::ScopeNodeData):
        (JSC::ScopeNode::ScopeNode):
        (JSC::ProgramNode::ProgramNode):
        (JSC::ProgramNode::create):
        (JSC::EvalNode::EvalNode):
        (JSC::EvalNode::create):
        (JSC::FunctionBodyNode::FunctionBodyNode):
        (JSC::FunctionBodyNode::create):
        * parser/Nodes.h:
        (JSC::ScopeNode::needsActivation):
        (JSC::ScopeNode::hasCapturedVariables):
        * parser/Parser.cpp:
        (JSC::Parser::didFinishParsing):
        * parser/Parser.h:
        (JSC::Parser::parse):
        * parser/SyntaxChecker.h:
        * runtime/Executable.cpp:
        (JSC::EvalExecutable::compileInternal):
        (JSC::ProgramExecutable::compileInternal):
        (JSC::FunctionExecutable::compileForCallInternal):
        (JSC::FunctionExecutable::compileForConstructInternal):
        * runtime/Executable.h:
        (JSC::ScriptExecutable::needsActivation):
        (JSC::ScriptExecutable::recordParse):

2010-09-14  Hyung Song  <beergun@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Add IMemGroup and IMemSpace to OwnPtr type.
        https://bugs.webkit.org/show_bug.cgi?id=44764

        * wtf/OwnPtrCommon.h:
        * wtf/brew/OwnPtrBrew.cpp:
        (WTF::deleteOwnedPtr):

2010-09-14  Darin Adler  <darin@apple.com>

        Reviewed by Geoffrey Garen.

        Sort with non-numeric custom sort function fails on array with length but no values
        https://bugs.webkit.org/show_bug.cgi?id=45781

        * runtime/JSArray.cpp:
        (JSC::JSArray::sort): Replaced early exit for an array of length zero to instead
        exit for any array without values, even if it has a non-0 length.

2010-09-14  Steve Falkenburg  <sfalken@apple.com>

        Windows production build fix.
        Roll out r65143.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCoreGenerated.make:

2010-09-14  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Darin Adler.

        Share UnicodeMacrosFromICU.h
        https://bugs.webkit.org/show_bug.cgi?id=45710

        glib, qt4 and wince use the same macros from ICU.
        Remove the code duplication and use the same header file.

        * wtf/unicode/UnicodeMacrosFromICU.h: Copied from JavaScriptCore/wtf/unicode/glib/UnicodeMacrosFromICU.h.
        * wtf/unicode/glib/UnicodeMacrosFromICU.h: Removed.
        * wtf/unicode/qt4/UnicodeQt4.h:
        * wtf/unicode/wince/UnicodeWince.h:

2010-09-13  Darin Adler  <darin@apple.com>

        Reviewed by Adam Barth.

        Preparation for eliminating deprecatedParseURL
        https://bugs.webkit.org/show_bug.cgi?id=45695

        * wtf/text/WTFString.h: Added isAllSpecialCharacters, moved here from
        the HTML tree builder.

2010-09-13  Darin Fisher  <darin@chromium.org>

        Reviewed by David Levin.

        Add option to conditionally compile smooth scrolling support.
        https://bugs.webkit.org/show_bug.cgi?id=45689

        ENABLE(SMOOTH_SCROLLING) is disabled by default for all platforms.

        * wtf/Platform.h:

2010-09-13  Adam Roben  <aroben@apple.com>

        Copy JavaScriptCore's generated sources to the right directory

        * JavaScriptCore.vcproj/JavaScriptCore.make: Fixed typo.

2010-09-13  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Don't call _msize
        https://bugs.webkit.org/show_bug.cgi?id=45556

        Because Brew MP uses its own memory allocator, it is not correct to use
        _msize in fastMallocSize. Add !PLATFORM(BREWMP) guard.

        * wtf/FastMalloc.cpp:
        (WTF::fastMallocSize):

2010-09-11  Simon Hausmann  <simon.hausmann@nokia.com>

        Reviewed by Andreas Kling.

        [Qt] V8 port: webcore project files changes
        https://bugs.webkit.org/show_bug.cgi?id=45141

        * JavaScriptCore.pro: Moved wtf specific files to wtf.pri,
        so that they can also be used from WebCore.pro for v8 builds.
        * wtf/wtf.pri: Added.

2010-09-10  Fridrich Strba  <fridrich.strba@bluewin.ch>

        Reviewed by Andreas Kling.

        Add a define missing when building with glib unicode backend
        https://bugs.webkit.org/show_bug.cgi?id=45544

        * wtf/unicode/glib/UnicodeMacrosFromICU.h:

2010-09-10  Stephanie Lewis  <slewis@apple.com>

        Reviewed by Alexey Proskuryakov.
        
        Refactor JavaScriptCore memory statistics so that WebKit doesn't need to know 
        about the JIT and other implementation details of JavaScriptCore.  Necessary 
        to fix PPC build.
        
        https://bugs.webkit.org/show_bug.cgi?id=45528

        * JavaScriptCore.exp:
        * JavaScriptCore.xcodeproj/project.pbxproj:
        * runtime/MemoryStatistics.cpp: Added.
        (JSC::memoryStatistics):
        * runtime/MemoryStatistics.h: Added.

2010-09-09  Michael Saboff  <msaboff@apple.com>

        Reviewed by Gavin Barraclough.

        Added a regular expression tracing facility.  This tracing is connected
        to jsc.  Every compiled regular expression object is added to a list.
        When the process exits, each regular expression dumps its pattern,
        JIT address, number of times it was executed and the number of matches.
        This tracing is controlled by the macro ENABLE_REGEXP_TRACING in
        wtf/Platform.h.
        https://bugs.webkit.org/show_bug.cgi?id=45401

        * JavaScriptCore.exp:
        * jsc.cpp:
        (runWithScripts):
        * runtime/JSGlobalData.cpp:
        (JSC::JSGlobalData::JSGlobalData):
        (JSC::JSGlobalData::~JSGlobalData):
        (JSC::JSGlobalData::addRegExpToTrace):
        (JSC::JSGlobalData::dumpRegExpTrace):
        * runtime/JSGlobalData.h:
        * runtime/RegExp.cpp:
        (JSC::RegExp::RegExp):
        (JSC::RegExp::create):
        (JSC::RegExp::match):
        * runtime/RegExp.h:
        * wtf/Platform.h:
        * yarr/RegexJIT.h:
        (JSC::Yarr::RegexCodeBlock::getAddr):

2010-09-09  John Therrell  <jtherrell@apple.com>

        32-bit build fix.

        * jit/ExecutableAllocator.cpp:
        (JSC::ExecutableAllocator::committedByteCount):

2010-09-09  John Therrell  <jtherrell@apple.com>

        Reviewed by Alexey Proskuryakov.

        Added statistics sampling and reporting for JavaScriptCore's RegisterFile and ExecutableAllocator classes
        https://bugs.webkit.org/show_bug.cgi?id=45134

        Added thread-safe committed byte counting and reporting functionality to RegisterFile and 
        ExecutableAllocator.

        * JavaScriptCore.exp:
        Exported new symbols to allow for WebKit to get statistics from JavaScriptCore classes.
        
        * interpreter/RegisterFile.cpp:
        (JSC::registerFileStatisticsMutex):
        Added function which returns a static Mutex used for locking during read/write access to
        static committed byte count variable.
        (JSC::RegisterFile::~RegisterFile):
        Added call to addToStatistics since memory is decommitted here.
        (JSC::RegisterFile::releaseExcessCapacity):
        Added call to addToStatistics since memory is decommitted here.
        (JSC::RegisterFile::initializeThreading):
        Added function which calls registerFileStatisticsMutex().
        (JSC::RegisterFile::committedByteCount):
        Added function which returns the current committed byte count for RegisterFile.
        (JSC::RegisterFile::addToCommittedByteCount):
        Added function which updates committed byte count.
        
        * interpreter/RegisterFile.h:
        (JSC::RegisterFile::RegisterFile):
        Added call to addToStatistics since memory is committed here.
        (JSC::RegisterFile::grow):
        Added call to addToStatistics since memory is committed here.
        
        * jit/ExecutableAllocator.h:
        Added function prototype for public static function committedByteCount().
        
        * jit/ExecutableAllocatorFixedVMPool.cpp:
        (JSC::FixedVMPoolAllocator::release):
        Added call to addToStatistics since memory is decommitted here.
        (JSC::FixedVMPoolAllocator::reuse):
        Added call to addToStatistics since memory is committed here.
        (JSC::FixedVMPoolAllocator::addToCommittedByteCount):
        Added function which updates committed byte count.
        (JSC::ExecutableAllocator::committedByteCount):
        Added function which returns the current committed byte count for ExecutableAllocator.
        
        * runtime/InitializeThreading.cpp:
        (JSC::initializeThreadingOnce):
        Added call to RegisterFile::initializeThreading.

2010-09-09  Mark Rowe  <mrowe@apple.com>

        Reviewed by Oliver Hunt.

        <http://webkit.org/b/45502> JSObjectSetPrivateProperty does not handle NULL values as it claims

        * API/JSObjectRef.cpp:
        (JSObjectSetPrivateProperty): Don't call toJS if we have a NULL value as that will cause an assertion
        failure. Instead map NULL directly to the null JSValue.
        * API/tests/testapi.c:
        (main): Add test coverage for the NULL value case.

2010-09-09  Csaba Osztrogonác  <ossy@webkit.org>

        Reviewed by Gavin Barraclough.

        [Qt] JSVALUE32_64 not works on Windows platform with MinGW compiler
        https://bugs.webkit.org/show_bug.cgi?id=29268

        * wtf/Platform.h: Enable JSVALUE32_64 for Qt/Windows/MinGW, because it works now.

2010-09-08  Zoltan Herczeg  <zherczeg@webkit.org>

        Reviewed by Darin Adler.

        Removing doneSemicolon label in the lexer
        https://bugs.webkit.org/show_bug.cgi?id=45289

        As a side effect of moving the multiline comment parsing
        to a separate function, an opportunity raised to simplify
        the single line comment parsing, and removing doneSemicolon
        label. Slight performance increase on --parse-only
        tests (from 32.8ms to 31.5ms)

        * parser/Lexer.cpp:
        (JSC::Lexer::lex):

2010-09-08  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Alexey Proskuryakov.

        Remove accessor for private member variable in JSParser
        https://bugs.webkit.org/show_bug.cgi?id=45378

        m_token is private to JSParser, so it does not seem to be useful
        to have an accessor for it. On top of that, the file was both
        using the accessor and directly accessing the member variable,
        only one style should be used.

2010-09-08  Csaba Osztrogonác  <ossy@webkit.org>

        Reviewed by Oliver Hunt.

        [Qt] REGRESSION(63348): jsc is broken
        https://bugs.webkit.org/show_bug.cgi?id=42818

        Need fastcall conventions on Qt/Win/MinGW.
        Based on patches of Gavin Barraclough: r63947 and r63948.

        * jit/JITStubs.cpp:
        * jit/JITStubs.h:

2010-09-08  Robert Hogan  <robert@webkit.org>

        Reviewed by Antonio Gomes.

        Remove some unnecessary duplicate calls to string functions

        https://bugs.webkit.org/show_bug.cgi?id=45314

        * wtf/text/WTFString.cpp:
        (WTF::String::format):

2010-09-08  Jocelyn Turcotte  <jocelyn.turcotte@nokia.com>

        Reviewed by Andreas Kling.

        Re-Disable JIT for MSVC 64bit to fix the build on this compiler.
        https://bugs.webkit.org/show_bug.cgi?id=45382

        It was enabled in the cleanup made in r64176, though it is still
        not implemented.

        * wtf/Platform.h:

2010-09-08  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Xan Lopez.

        [GTK] Need a WebSocket implementation
        https://bugs.webkit.org/show_bug.cgi?id=45197

        Add a GIO-based WebSocket implementation.

        * wtf/gobject/GRefPtr.cpp: Added PlatformRefPtr support for GSource.
        (WTF::refPlatformPtr):
        (WTF::derefPlatformPtr):
        * wtf/gobject/GRefPtr.h: Added new template specialization declarations.
        * wtf/gobject/GTypedefs.h: Add some more GLib/GIO forward declarations.

2010-08-30  Maciej Stachowiak  <mjs@apple.com>

        Reviewed by Darin Adler.

        Handle MediaQueryExp memory management exclusively with smart pointers
        https://bugs.webkit.org/show_bug.cgi?id=44874
        
        Implemented a non-copying sort function to make it possible to sort a Vector
        of OwnPtrs (which cannot be copied). This is required for the above.

        * wtf/NonCopyingSort.h: Added.
        (WTF::nonCopyingSort): It's secretly heapsort.
        (WTF::heapSort): heapsort implementation.
        (WTF::siftDown): Helper function for heapsort.
        (WTF::heapify): ditto

        Adjust build systems.
        
        * GNUmakefile.am:
        * JavaScriptCore.gypi:
        * JavaScriptCore.vcproj/WTF/WTF.vcproj:
        * JavaScriptCore.xcodeproj/project.pbxproj:

2010-09-08  Zoltan Herczeg  <zherczeg@webkit.org>

        Reviewed by Darin Adler.

        Refactoring multiline comments in the lexer
        https://bugs.webkit.org/show_bug.cgi?id=45289

        MultiLine comment parsing is moved to a separate function.

        Slight performance increase on --parse-only tests (from 33.6ms to 32.8ms)
        SunSpider reports no change (from 523.1ms to 521.2ms).

        * parser/Lexer.cpp:
        (JSC::Lexer::parseMultilineComment):
        (JSC::Lexer::lex):
        * parser/Lexer.h:

2010-09-07  James Robinson  <jamesr@chromium.org>

        Compile fix attempt for windows.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-09-07  Mihai Parparita  <mihaip@chromium.org>

        Reviewed by James Robinson.

        Fix Windows build after r66936
        https://bugs.webkit.org/show_bug.cgi?id=45348

        Add symbol names that were missing from r66936.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-09-07  Mihai Parparita  <mihaip@chromium.org>

        Reviewed by Oliver Hunt.

        pushState and replaceState do not clone RegExp objects correctly
        https://bugs.webkit.org/show_bug.cgi?id=44718
        
        Move internal representation of JSC::RegExp (which depends on wether
        YARR and YARR_JIT is enabled) into RegExpRepresentation which can live
        in the implementation only. This makes it feasible to use RegExp in
        WebCore without bringing in all of YARR.

        * JavaScriptCore.exp: Export RegExp and RegExpObject functions that are
        needed inside WebCore's JSC bindings.
        * runtime/RegExp.cpp:
        (JSC::RegExpRepresentation::~RegExpRepresentation):
        (JSC::RegExp::RegExp):
        (JSC::RegExp::~RegExp):
        (JSC::RegExp::compile):
        (JSC::RegExp::match):
        * runtime/RegExp.h:

2010-09-07  Anders Carlsson  <andersca@apple.com>

        Reviewed by Darin Adler.

        <rdar://problem/8381749> -Wcast-align warning emitted when building with clang

        Remove the -Wcast-align-warning since it isn't really useful, and clang is more aggressive about warning than gcc.

        * Configurations/Base.xcconfig:

2010-09-07  Zoltan Horvath  <zoltan@webkit.org>

        Reviewed by Darin Adler.

        REGRESSION(66741): Undefined pthread macros
        https://bugs.webkit.org/show_bug.cgi?id=45246

        PTHREAD_MUTEX_NORMAL and PTHREAD_MUTEX_DEFAULT (introduced in r60487) are not defined on Linux, 
        but used in a statement. Add an additional check to test this.

        * wtf/FastMalloc.cpp:
        (WTF::TCMalloc_PageHeap::initializeScavenger):

2010-09-06  Oliver Hunt  <oliver@apple.com>

        Windows build fix

2010-09-05  Oliver Hunt  <oliver@apple.com>

        Reviewed by Sam Weinig.

        SerializedScriptValue needs to use a flat storage mechanism
        https://bugs.webkit.org/show_bug.cgi?id=45244

        Export JSArray::put

        * JavaScriptCore.exp:

2010-09-06  Chao-ying Fu  <fu@mips.com>

        Reviewed by Oliver Hunt.

        Support JSVALUE32_64 on MIPS
        https://bugs.webkit.org/show_bug.cgi?id=43999

        Add missing functions to support JSVALUE32_64 on MIPS.
        Remove JSVALUE32 as the default for MIPS.

        * assembler/MIPSAssembler.h:
        (JSC::MIPSAssembler::divd):
        (JSC::MIPSAssembler::mthc1):
        (JSC::MIPSAssembler::cvtwd):
        * assembler/MacroAssemblerMIPS.h:
        (JSC::MacroAssemblerMIPS::neg32):
        (JSC::MacroAssemblerMIPS::branchOr32):
        (JSC::MacroAssemblerMIPS::set8):
        (JSC::MacroAssemblerMIPS::loadDouble):
        (JSC::MacroAssemblerMIPS::divDouble):
        (JSC::MacroAssemblerMIPS::convertInt32ToDouble):
        (JSC::MacroAssemblerMIPS::branchDouble):
        (JSC::MacroAssemblerMIPS::branchConvertDoubleToInt32):
        (JSC::MacroAssemblerMIPS::zeroDouble):
        * jit/JIT.h:
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::privateCompileCTINativeCall):
        * jit/JITPropertyAccess32_64.cpp:
        (JSC::JIT::privateCompilePutByIdTransition):
        * jit/JITStubs.cpp:
        (JSC::JITThunks::JITThunks):
        * jit/JITStubs.h:
        * wtf/Platform.h:

2010-09-06  Robert Hogan  <robert@webkit.org>

        Unreviewed, compile fix.

        Fix compile failure in r66843

        Revert to original patch in bugzilla. Leave bug open for
        discussion on potential removal of double utf8 conversion.

        https://bugs.webkit.org/show_bug.cgi?id=45240

        * wtf/text/WTFString.cpp:
        (WTF::String::format):

2010-09-06  Robert Hogan  <robert@webkit.org>

        Reviewed by Andreas Kling.

        [Qt] utf8 encoding of console() messages

        Unskip:
        http/tests/security/xssAuditor/embed-tag-null-char.html
        http/tests/security/xssAuditor/object-embed-tag-null-char.html

        Both tests failed because Qt's implementation of String::format()
        is casting a utf8 result to String, which assumes latin1 in
        its constructor. So instead of casting a QString to a String, use
        StringImpl::create() instead. Unfortunately, this involves a lot
        of extra casts but the end result is correct.

        https://bugs.webkit.org/show_bug.cgi?id=45240

        * wtf/text/WTFString.cpp:
        (WTF::String::format):

2010-09-03  Alexey Proskuryakov  <ap@apple.com>

        Reviewed by Darin Adler.

        https://bugs.webkit.org/show_bug.cgi?id=45135
        <rdar://problem/7823714> TCMalloc_PageHeap doesn't hold a mutex while manipulating shared data

        * wtf/FastMalloc.cpp:
        (WTF::TCMalloc_PageHeap::initializeScavenger): Make sure to create a non-recursive mutex
        regardless of platform default, so that we can assert that it's held (this is for platforms
        that don't have libdispatch).
        (WTF::TCMalloc_PageHeap::signalScavenger): Assert that the mutex is held, so we can look
        at m_scavengeThreadActive. For platforms that have libdispatch, assert that pageheap_lock
        is held.
        (WTF::TCMalloc_PageHeap::periodicScavenge): Make sure that pageheap_lock is held before
        manipulating m_scavengeThreadActive. Otherwise, there is an obvious race condition, and we
        can make unbalanced calls to dispatch_resume().

2010-09-03  Lucas De Marchi  <lucas.demarchi@profusion.mobi>

        Reviewed by Martin Robinson.

        [EFL] Regression (66531) Build break with Glib Support
        https://bugs.webkit.org/show_bug.cgi?id=45011

        Move GtkTypedefs.h to GTypedefs.h and let it inside gobject directory
        since when glib is enabled, EFL port needs it, too.

        * CMakeListsEfl.txt: Include gobject directory to find new header
        file.
        * GNUmakefile.am: Ditto.
        * wtf/CMakeListsEfl.txt: Ditto.
        * wtf/Platform.h: Include header if port is EFL and glib support is
        enabled.
        * wtf/gtk/GtkTypedefs.h: Removed.
        * wtf/gobject/GTypedefs.h: Added. Sections specific to GTK are now
        guarded by PLATFORM(GTK).

2010-09-03  Csaba Osztrogonác  <ossy@webkit.org>

        Reviewed by Simon Hausmann.

        Fix warning in wtf/ByteArray.h
        https://bugs.webkit.org/show_bug.cgi?id=44672

        * wtf/ByteArray.h: Use maximal sized array for MSVC and unsized array for other compilers.

2010-09-02  Adam Barth  <abarth@webkit.org>

        Reviewed by Eric Seidel.

        Actually parse a URL from ParsedURL
        https://bugs.webkit.org/show_bug.cgi?id=45080

        This patch only handles standard URLs.  At some point we'll need to
        distinguish between standard URLs and other kinds of URLs.

        * wtf/url/api/ParsedURL.cpp:
        (WTF::ParsedURL::ParsedURL):

2010-09-02  Adam Barth  <abarth@webkit.org>

        Reviewed by Eric Seidel.

        Add ParsedURL and URLString to WTFURL API
        https://bugs.webkit.org/show_bug.cgi?id=45078

        Currently there's no actual URL parsing going on, but this patch is a
        start to sketching out the API.

        * JavaScriptCore.xcodeproj/project.pbxproj:
        * wtf/url/api/ParsedURL.cpp: Added.
        (WTF::ParsedURL::ParsedURL):
        (WTF::ParsedURL::scheme):
        (WTF::ParsedURL::username):
        (WTF::ParsedURL::password):
        (WTF::ParsedURL::host):
        (WTF::ParsedURL::port):
        (WTF::ParsedURL::path):
        (WTF::ParsedURL::query):
        (WTF::ParsedURL::fragment):
        (WTF::ParsedURL::segment):
        * wtf/url/api/ParsedURL.h: Added.
        (WTF::ParsedURL::spec):
        * wtf/url/api/URLString.h: Added.
        (WTF::URLString::URLString):
        (WTF::URLString::string):

2010-09-02  Adam Barth  <abarth@webkit.org>

        Reviewed by Eric Seidel.

        Add WTFURL to the JavaScriptCore build on Mac
        https://bugs.webkit.org/show_bug.cgi?id=45075

        Building code is good.

        * JavaScriptCore.xcodeproj/project.pbxproj:

2010-09-02  Alexey Proskuryakov  <ap@apple.com>

        Reviewed by Oliver Hunt.

        https://bugs.webkit.org/show_bug.cgi?id=43230
        <rdar://problem/8254215> REGRESSION: Memory leak within JSParser::JSParser

        One can't delete a ThreadSpecific object that has data in it. It's not even possible to
        enumerate data objects in all threads, much less destroy them from a thread that's destroying
        the ThreadSpecific.

        * parser/JSParser.cpp:
        (JSC::JSParser::JSParser):
        * runtime/JSGlobalData.h: 
        * wtf/WTFThreadData.cpp:
        (WTF::WTFThreadData::WTFThreadData):
        * wtf/WTFThreadData.h:
        (WTF::WTFThreadData::approximatedStackStart):
        Moved stack guard tracking from JSGlobalData to WTFThreadData.

        * wtf/ThreadSpecific.h: Made destructor unimplemented. It's dangerous, and we probably won't
        ever face a situation where we'd want to delete a ThreadSpecific object.

2010-09-01  Gavin Barraclough  <barraclough@apple.com>

        Rubber stamped by Oliver Hunt.

        Ecma-262 15.11.1.1 states that if the argument is undefined then an
        Error object's message property should be set to the empty string.

        * runtime/ErrorInstance.cpp:
        (JSC::ErrorInstance::ErrorInstance):
        (JSC::ErrorInstance::create):
        * runtime/ErrorInstance.h:
        * runtime/ErrorPrototype.cpp:
        (JSC::ErrorPrototype::ErrorPrototype):

2010-08-31  Darin Adler  <darin@apple.com>

        Reviewed by Anders Carlsson.

        * wtf/FastMalloc.cpp:
        (WTF::TCMalloc_PageHeap::scavenge): Replaced somewhat-quirky code that
        mixed types with code that uses size_t.

        * wtf/TCPageMap.h: Removed names of unused arguments to avoid warning.

2010-08-31  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Gustavo Noronha Silva.

        [GTK] Isolate all GTK+ typedefs into one file
        https://bugs.webkit.org/show_bug.cgi?id=44900

        * GNUmakefile.am: Add GtkTypedefs.h to the source lists.
        * wtf/Platform.h: #include GtkTypedefs.h for the GTK+ build.
        * wtf/ThreadingPrimitives.h: Remove GTK+ typedefs.
        * wtf/gobject/GOwnPtr.h: Ditto.
        * wtf/gobject/GRefPtr.h: Ditto.
        * wtf/gtk/GtkTypedefs.h: Added.

2010-08-31  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Gustavo Noronha Silva.

        [GTK] Fix 'make dist' in preparation of the 1.3.3 release
        https://bugs.webkit.org/show_bug.cgi?id=44978

        * GNUmakefile.am: Adding missing headers to the sources list.

2010-08-31  Chao-ying Fu  <fu@mips.com>

        Reviewed by Oliver Hunt.

        Support emit_op_mod() for MIPS
        https://bugs.webkit.org/show_bug.cgi?id=42855

        This patch uses MIPS div instructions for op_mod to improve performance.

        * assembler/MIPSAssembler.h:
        (JSC::MIPSAssembler::div):
        * jit/JITArithmetic.cpp:
        (JSC::JIT::emit_op_mod):
        (JSC::JIT::emitSlow_op_mod):

2010-08-31  Csaba Osztrogonác  <ossy@webkit.org>

        Reviewed by Darin Adler.

        Modify ASSERT_UNUSED and UNUSED_PARAM similar to Qt's Q_UNUSED.
        https://bugs.webkit.org/show_bug.cgi?id=44870

        * wtf/Assertions.h:
        * wtf/UnusedParam.h:

2010-08-31  Benjamin Poulain  <benjamin.poulain@nokia.com>

        Reviewed by Kenneth Rohde Christiansen.

        JSC TimeoutChecker::didTimeOut overflows on ARM
        https://bugs.webkit.org/show_bug.cgi?id=38538

        Make getCPUTime() return values relative to the first call.
        The previous implementation relied on simply on currentTime(), which
        return a time since epoch and not a time since the thread started. This
        made the return value of getCPUTime() overflow on 32 bits.

        * runtime/TimeoutChecker.cpp:
        (JSC::getCPUTime):

2010-08-30  Mihai Parparita  <mihaip@chromium.org>

        Reviewed by Adam Barth.

        HISTORY_ALWAYS_ASYNC should be removed (history should always be async)
        https://bugs.webkit.org/show_bug.cgi?id=44315

        Remove ENABLE_HISTORY_ALWAYS_ASYNC #define.

        * wtf/Platform.h: 

2010-08-30  Chris Rogers  <crogers@google.com>

        Reviewed by Kenneth Russell.

        Fix namespace for wtf/Complex.h and wtf/Vector3.h
        https://bugs.webkit.org/show_bug.cgi?id=44892

        * wtf/Complex.h:
        * wtf/Vector3.h:

2010-08-30  Andy Estes  <aestes@apple.com>

        Reviewed by Eric Carlson.

        Strings returned by asciiDebug() should be NULL-terminated.
        https://bugs.webkit.org/show_bug.cgi?id=44866

        * wtf/text/WTFString.cpp:
        (asciiDebug):

2010-08-30  Zoltan Herczeg  <zherczeg@webkit.org>

        Reviewed by Darin Adler.

        Refactor number parsing in the lexer
        https://bugs.webkit.org/show_bug.cgi?id=44104

        Number parsing was full of gotos, and needed a complete
        redesign to remove them (Only one remained). Furthermore
        integer arithmetic is empolyed for fast cases (= small
        integer numbers).

        * parser/Lexer.cpp:
        (JSC::Lexer::parseHex):
        (JSC::Lexer::parseOctal):
        (JSC::Lexer::parseDecimal):
        (JSC::Lexer::parseNumberAfterDecimalPoint):
        (JSC::Lexer::parseNumberAfterExponentIndicator):
        (JSC::Lexer::lex):
        * parser/Lexer.h:

2010-08-29  Darin Adler  <darin@apple.com>

        Fix Qt build.

        * wtf/unicode/glib/UnicodeMacrosFromICU.h: Added U_IS_BMP.
        * wtf/unicode/qt4/UnicodeQt4.h: Ditto.
        * wtf/unicode/wince/UnicodeWince.h: Ditto.

2010-08-29  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kent Tamura.

        [BREWMP] Port vprintf_stderr_common
        https://bugs.webkit.org/show_bug.cgi?id=33568

        Use BREW's DBGPRINTF to output debug messages.

        * wtf/Assertions.cpp:

2010-08-28  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        Bug 44830 - In Array's prototype functyions we're incorrectly handing large index values

        We are in places casting doubles to unsigneds, and unsigneds to ints, without always check
        that the result is within bounds. This is problematic in the case of double-to-unsigned
        conversion because we should be saturating to array length.

        Also, the error return value from Array.splice should be [], not undefined.

        I don't see any security concerns here. These methods are spec'ed in such a way that they
        can be applied to non Array objects, so in all cases the (potentially bogus) indices are
        being passed to functions that will safely check accesses are within bounds.

        * runtime/ArrayPrototype.cpp:
        (JSC::argumentClampedIndexFromStartOrEnd):
        (JSC::arrayProtoFuncJoin):
        (JSC::arrayProtoFuncConcat):
        (JSC::arrayProtoFuncReverse):
        (JSC::arrayProtoFuncShift):
        (JSC::arrayProtoFuncSlice):
        (JSC::arrayProtoFuncSort):
        (JSC::arrayProtoFuncSplice):
        (JSC::arrayProtoFuncUnShift):
        (JSC::arrayProtoFuncFilter):
        (JSC::arrayProtoFuncMap):
        (JSC::arrayProtoFuncEvery):
        (JSC::arrayProtoFuncForEach):
        (JSC::arrayProtoFuncSome):
        (JSC::arrayProtoFuncReduce):
        (JSC::arrayProtoFuncReduceRight):
        (JSC::arrayProtoFuncIndexOf):
        (JSC::arrayProtoFuncLastIndexOf):
        * runtime/JSValue.h:
        (JSC::JSValue::toUInt32):

2010-08-28  Pratik Solanki  <psolanki@apple.com>

        Reviewed by Dan Bernstein.

        Add an ENABLE define for purgeable memory support
        https://bugs.webkit.org/show_bug.cgi?id=44777

        * wtf/Platform.h:

2010-08-27  Kimmo Kinnunen  <kimmo.t.kinnunen@nokia.com>

        Reviewed by Kenneth Rohde Christiansen.

        [Qt] NPAPI Plugin metadata should be cached, and loading a plugin should not require loading every plugin
        https://bugs.webkit.org/show_bug.cgi?id=43179

        Add ENABLE_NETSCAPE_PLUGIN_METADATA_CACHE flag to enable persistent
        NPAPI Plugin Cache. The flag is enabled by default.

        * wtf/Platform.h: Add ENABLE_NETSCAPE_PLUGIN_METADATA_CACHE

2010-07-27  Jer Noble  <jer.noble@apple.com>

        Reviewed by Eric Carlson.

        Add JavaScript API to allow a page to go fullscreen.
        rdar://problem/6867795
        https://bugs.webkit.org/show_bug.cgi?id=43099

        * wtf/Platform.h: Enable FULLSCREEN_API mode for the Mac (except iOS).

2010-08-27  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix pt 2.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-27  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix pt 1.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-27  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        Bug 44745 - Number.toFixed/toExponential/toPrecision are inaccurate.

        These methods should be using a version of dtoa that can generate results accurate
        to the requested precision, whereas our version of dtoa is only currently able to
        support producing results sufficiently accurate to distinguish the value from any
        other IEEE-754 double precision number.

        This change has no impact on benchmarks we track.

        On microbenchmarks for these functions, this is a slight regression where a high
        precision is requested (dtoa now need to iterate further to generate a a greater
        number of digits), but with smaller precision values (hopefully more common) this
        improves performance, since it reduced the accurate of result dtoa is required,
        to produce, and removes the need to pre-round values before calling dtoa. 

        * JavaScriptCore.exp:
            doubleToStringInJavaScriptFormat renamed to numberToString

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
            doubleToStringInJavaScriptFormat renamed to numberToString

        * runtime/UString.cpp:
        (JSC::UString::number):
            doubleToStringInJavaScriptFormat renamed to numberToString

        * wtf/DecimalNumber.h:
        (WTF::DecimalNumber::DecimalNumber):
        (WTF::DecimalNumber::toStringDecimal):
        (WTF::DecimalNumber::toStringExponential):
            Remove all pre-rounding of values, instead call dtoa correctly.

        * wtf/dtoa.cpp:
        (WTF::dtoa):
        * wtf/dtoa.h:
            Reenable support for rounding to specific-figures/decimal-places in dtoa.
            Modify to remove unbiased rounding, provide ECMA required away-from-zero.
            Rewrite doubleToStringInJavaScriptFormat to use DecimalNumber, rename to
            numberToString.

2010-08-27  Chao-ying Fu  <fu@mips.com>

        Reviewed by Oliver Hunt.

        Byte alignment issue on MIPS
        https://bugs.webkit.org/show_bug.cgi?id=29415

        MIPS accesses one byte at a time for now to avoid the help from the
        kernel to fix unaligned accesses.

        * wtf/text/AtomicString.cpp:
        (WebCore::equal):
        * wtf/text/StringHash.h:
        (WebCore::StringHash::equal):

2010-08-27  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Tor Arne Vestbø.

        Fix a couple of typos in comment.

        * bytecode/CodeBlock.h:

2010-08-26  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * wtf/dtoa.cpp:

2010-08-26  Gavin Barraclough  <baraclough@apple.com>

        Reviewed by Sam Weinig.

        Bug 44735 - Clean up dtoa.cpp
        Remove unused & unmaintained code paths, reformat code to match
        coding standard & use platform #defines from Platform.h directly.

        * wtf/dtoa.cpp:
        (WTF::storeInc):
        (WTF::multadd):
        (WTF::s2b):
        (WTF::lo0bits):
        (WTF::mult):
        (WTF::pow5mult):
        (WTF::lshift):
        (WTF::diff):
        (WTF::ulp):
        (WTF::b2d):
        (WTF::d2b):
        (WTF::ratio):
        (WTF::):
        (WTF::strtod):
        (WTF::quorem):
        (WTF::dtoa):

2010-08-26  Gavin Barraclough  <barraclough@apple.com>

        Rubber Stamped by Oliver Hunt.

        Partially revert r65959. The toString changes regressed the v8 tests,
        but keep the toFixed/toExponential/toPrecision changes.

        * JavaScriptCore.exp:
        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
        * runtime/NumberPrototype.cpp:
        * runtime/UString.cpp:
        (JSC::UString::number):
        * wtf/DecimalNumber.h:
        * wtf/dtoa.cpp:
        (WTF::append):
        (WTF::doubleToStringInJavaScriptFormat):
        * wtf/dtoa.h:
        * wtf/text/WTFString.cpp:
        * wtf/text/WTFString.h:

2010-08-26  James Robinson  <jamesr@chromium.org>

        Reviewed by Darin Fisher.

        [chromium] Remove the USE(GLES2_RENDERING) define and associated code
        https://bugs.webkit.org/show_bug.cgi?id=43761

        Remove WTF_USE_GLES2_RENDERING from the list of defines in chromium, it's unused.

        * wtf/Platform.h:

2010-08-26  Gavin Barraclough  <barraclough@apple.com>

        Rolling out r64608, this regressed performance.

        * JavaScriptCore.xcodeproj/project.pbxproj:
        * assembler/ARMAssembler.cpp:
        (JSC::ARMAssembler::executableCopy):
        * assembler/LinkBuffer.h:
        (JSC::LinkBuffer::LinkBuffer):
        (JSC::LinkBuffer::~LinkBuffer):
        (JSC::LinkBuffer::performFinalization):
        * assembler/MIPSAssembler.h:
        (JSC::MIPSAssembler::executableCopy):
        * assembler/X86Assembler.h:
        (JSC::X86Assembler::executableCopy):
        * bytecode/StructureStubInfo.h:
        (JSC::StructureStubInfo::initGetByIdProto):
        (JSC::StructureStubInfo::initGetByIdChain):
        (JSC::StructureStubInfo::initGetByIdSelfList):
        (JSC::StructureStubInfo::initGetByIdProtoList):
        (JSC::StructureStubInfo::initPutByIdTransition):
        * jit/ExecutableAllocator.cpp:
        (JSC::ExecutablePool::systemAlloc):
        * jit/ExecutableAllocator.h:
        (JSC::ExecutablePool::create):
        (JSC::ExecutableAllocator::ExecutableAllocator):
        (JSC::ExecutableAllocator::poolForSize):
        (JSC::ExecutablePool::ExecutablePool):
        (JSC::ExecutablePool::poolAllocate):
        * jit/ExecutableAllocatorFixedVMPool.cpp:
        (JSC::FixedVMPoolAllocator::allocInternal):
        * jit/JIT.cpp:
        (JSC::JIT::privateCompile):
        * jit/JIT.h:
        (JSC::JIT::compileGetByIdProto):
        (JSC::JIT::compileGetByIdSelfList):
        (JSC::JIT::compileGetByIdProtoList):
        (JSC::JIT::compileGetByIdChainList):
        (JSC::JIT::compileGetByIdChain):
        (JSC::JIT::compilePutByIdTransition):
        (JSC::JIT::compilePatchGetArrayLength):
        * jit/JITOpcodes.cpp:
        (JSC::JIT::privateCompileCTIMachineTrampolines):
        * jit/JITOpcodes32_64.cpp:
        (JSC::JIT::privateCompileCTIMachineTrampolines):
        (JSC::JIT::privateCompileCTINativeCall):
        * jit/JITPropertyAccess.cpp:
        (JSC::JIT::stringGetByValStubGenerator):
        (JSC::JIT::privateCompilePutByIdTransition):
        (JSC::JIT::privateCompilePatchGetArrayLength):
        (JSC::JIT::privateCompileGetByIdProto):
        (JSC::JIT::privateCompileGetByIdSelfList):
        (JSC::JIT::privateCompileGetByIdProtoList):
        (JSC::JIT::privateCompileGetByIdChainList):
        (JSC::JIT::privateCompileGetByIdChain):
        * jit/JITPropertyAccess32_64.cpp:
        (JSC::JIT::stringGetByValStubGenerator):
        (JSC::JIT::privateCompilePutByIdTransition):
        (JSC::JIT::privateCompilePatchGetArrayLength):
        (JSC::JIT::privateCompileGetByIdProto):
        (JSC::JIT::privateCompileGetByIdSelfList):
        (JSC::JIT::privateCompileGetByIdProtoList):
        (JSC::JIT::privateCompileGetByIdChainList):
        (JSC::JIT::privateCompileGetByIdChain):
        * jit/JITStubs.cpp:
        (JSC::JITThunks::tryCachePutByID):
        (JSC::JITThunks::tryCacheGetByID):
        (JSC::DEFINE_STUB_FUNCTION):
        (JSC::getPolymorphicAccessStructureListSlot):
        * jit/JITStubs.h:
        * jit/SpecializedThunkJIT.h:
        (JSC::SpecializedThunkJIT::finalize):
        * runtime/ExceptionHelpers.cpp:
        * runtime/ExceptionHelpers.h:
        * runtime/Executable.cpp:
        (JSC::EvalExecutable::compileInternal):
        (JSC::ProgramExecutable::compileInternal):
        (JSC::FunctionExecutable::compileForCallInternal):
        (JSC::FunctionExecutable::compileForConstructInternal):
        (JSC::FunctionExecutable::reparseExceptionInfo):
        (JSC::EvalExecutable::reparseExceptionInfo):
        * yarr/RegexJIT.cpp:
        (JSC::Yarr::RegexGenerator::compile):

2010-08-26  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Brady Eidson.

        Bug 44655 - Add debug only convenience methods to obtain a Vector<char> from a String/StringImpl.

        * wtf/text/WTFString.cpp:
        (asciiDebug):
            Return a Vector<char> containing the contents of a string as ASCII.

2010-08-26  Sam Weinig  <sam@webkit.org>

        Reviewed by Darin Adler.

        Add PassOwnArrayPtr
        https://bugs.webkit.org/show_bug.cgi?id=44627

        * GNUmakefile.am:
        * JavaScriptCore.vcproj/WTF/WTF.vcproj:
        * JavaScriptCore.xcodeproj/project.pbxproj:
        Add the new files.

        * wtf/Forward.h:
        Forward declare PassOwnArrayPtr.
        
        * wtf/OwnArrayPtr.h:
        Mimic the OwnPtr interface.

        * wtf/OwnArrayPtrCommon.h: Added.
        (WTF::deleteOwnedArrayPtr):
        Move delete function here so it can be shared by OwnArrayPtr and
        PassOwnArrayPtr.

        * wtf/PassOwnArrayPtr.h: Added.
        Mimic the PassOwnPtr interface.

2010-08-26  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        [JSC] JavaScript parsing error when loading Equifax web page
        https://bugs.webkit.org/show_bug.cgi?id=42900

        '-->' is ostensibly only meant to occur when there is only
        whitespace preceeding it on the line.  However firefox treats
        multiline comments as a space character, so they are allowed.
        One side effect of the firefox model is that any line terminators
        inside the multiline comment are ignored, so

            foo/*
            */-->

        is treated as

            foo -->

        and so '-->' will not be a comment in this case.  Happily this simply
        means that to fix this issue all we need to do is stop updating
        m_atLineStart when handling multiline comments.

        * parser/Lexer.cpp:
        (JSC::Lexer::lex):

2010-08-25  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoffrey Garen.

        Improve overflow handling in StringImpl::Replace
        https://bugs.webkit.org/show_bug.cgi?id=42502
        <rdar://problem/8203794>

        Harden StringImpl::replace against overflow -- I can't see how this
        could be abused, but it's better to be safe than sorry.

        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::replace):

2010-08-26  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Xan Lopez.

        [GTK] The GNUmakefile.am files contain a myriad of confusing preprocessor and compiler flag definitions
        https://bugs.webkit.org/show_bug.cgi?id=44624

        Clean up GNUmakefile.am.

        * GNUmakefile.am: Alphabetize the include order in javascriptcore_cppflags. Move
        a couple include lines from the top-level GNUmakefile.am.

2010-08-25  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Kent Tamura.

        Local variables 'k' and 'y' in s2b() in dtoa.cpp are computed but not used
        https://bugs.webkit.org/show_bug.cgi?id=29259

        Remove unused code in dtoa.cpp, spotted by Wan-Teh Chang.

        * wtf/dtoa.cpp:
        (WTF::s2b):

2010-08-25  Kwang Yul Seo  <skyul@company100.net>

        Reviewed by Kevin Ollivier.

        [BREWMP] Add build system
        https://bugs.webkit.org/show_bug.cgi?id=44645

        Make waf script portable so that we can add more ports.

        * wscript:

2010-08-25  Michael Saboff  <msaboff@apple.com>

        Reviewed by Sam Weinig.

        Remove the single entry regular expression cache introduced as part of
        the fix for https://bugs.webkit.org/show_bug.cgi?id=41238.
        The performance problem in Dromaeo that initiated that bug is no 
        longer present. Dromaeo has been modified so that the regular
        expression tests are somewhat random and don't benefit from a
        single entry cache.

        * runtime/RegExp.cpp:
        (JSC::RegExp::RegExp):
        (JSC::RegExp::match):
        * runtime/RegExp.h:

2010-08-25  Martin Robinson  <mrobinson@igalia.com>

        Reviewed by Gustavo Noronha Silva.

        Cairo and EFL port shouldn't depend on glib.
        https://bugs.webkit.org/show_bug.cgi?id=44354

        Replace GRefPtr with PlatformRefPtr. Keep GLib specific bits in
        GRefPtr.h.

        * GNUmakefile.am: Add PlatformRefPtr.h to the source list.
        * wtf/PlatformRefPtr.h: Migrated from GRefPtr.h.
        (WTF::PlatformRefPtr::PlatformRefPtr): Ditto.
        (WTF::PlatformRefPtr::~PlatformRefPtr): Ditto.
        (WTF::PlatformRefPtr::clear): Ditto.
        (WTF::PlatformRefPtr::get): Ditto.
        (WTF::PlatformRefPtr::operator*): Ditto.
        (WTF::PlatformRefPtr::operator->): Ditto.
        (WTF::PlatformRefPtr::operator!): Ditto.
        (WTF::PlatformRefPtr::operator UnspecifiedBoolType): Ditto.
        (WTF::PlatformRefPtr::hashTableDeletedValue): Ditto.
        (WTF::::operator): Ditto.
        (WTF::::swap): Ditto.
        (WTF::swap): Ditto.
        (WTF::operator==): Ditto.
        (WTF::operator!=): Ditto.
        (WTF::static_pointer_cast): Ditto.
        (WTF::const_pointer_cast): Ditto.
        (WTF::getPtr): Ditto.
        (WTF::adoptPlatformRef): Ditto.
        * wtf/gobject/GRefPtr.cpp: Changes to reflect new names.
        (WTF::refPlatformPtr):
        (WTF::derefPlatformPtr):
        * wtf/gobject/GRefPtr.h: Ditto.
        (WTF::refPlatformPtr):
        (WTF::derefPlatformPtr):

2010-08-25  Xan Lopez  <xlopez@igalia.com>

        Reviewed by Alexey Proskuryakov.

        Remove dead code in JSGlobalObject
        https://bugs.webkit.org/show_bug.cgi?id=44615

        The recursion data member in the JSGlobalObject and its getter
        plus inc/dec methods seems to be unused, remove them.

        * runtime/JSGlobalObject.cpp:
        (JSC::JSGlobalObject::init):
        * runtime/JSGlobalObject.h:

2010-08-25  Michael Saboff  <msaboff@apple.com>

        Reviewed by Geoffrey Garen.

        Changed the initial and subsequent allocation of vector storage to
        Array()s. The changes are to limit sparse arrays to 100000 entries
        and fixed the sparse map to vector storage conversion to use the 
        minimum amount of memory needed to store the current number of entries.
        These changes address https://bugs.webkit.org/show_bug.cgi?id=43707

        * runtime/JSArray.cpp:
        (JSC::JSArray::putSlowCase):
        (JSC::JSArray::getNewVectorLength):

2010-08-16  Gabor Loki  <loki@webkit.org>

        Reviewed by Gavin Barraclough.

        Avoid increasing required alignment of target type warning
        https://bugs.webkit.org/show_bug.cgi?id=43963

        Fix platform independent alignment warnings.

        * wtf/ListHashSet.h:
        (WTF::ListHashSetNodeAllocator::pool):

2010-08-19  Gabor Loki  <loki@webkit.org>

        Reviewed by Gavin Barraclough.

        Enable truncated floating point feature on ARM
        https://bugs.webkit.org/show_bug.cgi?id=44233

        Enable truncated floating point feature with the help of VCVTR.S32.F64
        instruction. If VCVTR.S32.F64 can't fit the result into a 32-bit
        integer/register, it saturates at INT_MAX or INT_MIN. Testing this
        looks quicker than testing FPSCR for exception.

        Inspired by Jacob Bramley's patch from JaegerMonkey

        * assembler/ARMAssembler.h:
        (JSC::ARMAssembler::):
        (JSC::ARMAssembler::cmn_r):
        (JSC::ARMAssembler::vcvtr_s32_f64_r):
        * assembler/MacroAssemblerARM.h:
        (JSC::MacroAssemblerARM::supportsFloatingPointTruncate):
        (JSC::MacroAssemblerARM::branchTruncateDoubleToInt32):

2010-08-24  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-24  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
        * wtf/DecimalNumber.h:
        (WTF::DecimalNumber::intPow10):
        * wtf/dtoa.cpp:
        * wtf/dtoa.h:

2010-08-23  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Oliver Hunt.

        https://bugs.webkit.org/show_bug.cgi?id=44487

        Number.toExponential/toFixed/toPrecision all contain a spaghetti of duplicated
        code & unnecessary complexity. Add a new DecimalNumber class to encapsulate
        double to string conversion, share the implementations of rounding &
        decimal-fraction/exponential formatting.

        * JavaScriptCore.exp:
            Update exports.

        * runtime/NumberPrototype.cpp:
        (JSC::toThisNumber):
        (JSC::getIntegerArgumentInRange):
            Helper methods used in implementing toExponential/toFixed/toString.
        (JSC::numberProtoFuncToExponential):
        (JSC::numberProtoFuncToFixed):
        (JSC::numberProtoFuncToPrecision):
            Reimplemented using new DecimalNumber class.
            
        * runtime/UString.cpp:
        (JSC::UString::number):
            Updated to call numberToString.

        * wtf/DecimalNumber.h: Added.
        (WTF::):
        (WTF::DecimalNumber::DecimalNumber):
        (WTF::DecimalNumber::toStringDecimal):
        (WTF::DecimalNumber::toStringExponential):
        (WTF::DecimalNumber::sign):
        (WTF::DecimalNumber::exponent):
        (WTF::DecimalNumber::significand):
        (WTF::DecimalNumber::precision):
        (WTF::DecimalNumber::init):
        (WTF::DecimalNumber::isZero):
        (WTF::DecimalNumber::roundToPrecision):
            New class to perform double to string conversion.
            Has three constructors, which allow conversion with no rounding,
            rounding to significant-figures, or rounding to decimal-places,
            and two methods for formatting strings, either using decimal
            fraction or exponential encoding. Internal implementation uses
            pre-rounding of the values before calling dtoa rather than
            relying on dtoa to correctly round, which does not produce
            fully accurate results. Hopefully we can address this in the
            near future.

        * wtf/dtoa.cpp:
        (WTF::intPow10):
        * wtf/dtoa.h:
            intPow10 is used internally by DecimalNumber.
            
        * wtf/text/WTFString.cpp:
        (WTF::copyToString):
        (WTF::nanOrInfToString):
            Used internally in numberToString for NaN/Infinity handling.
        (WTF::numberToString):
            Added new method to convert doubles to strings.

        * wtf/text/WTFString.h:
            Added declaration for numberToString. This is here because
            we should switch over to using this for all double to string
            conversion in WebCore (see section 2.4.4.3 of the HTML5 spec).

2010-08-24  Oliver Hunt  <oliver@apple.com>

        Reviewed by Geoff Garen.

        Don't seed the JS random number generator from time()
        https://bugs.webkit.org/show_bug.cgi?id=41868
        <rdar://problem/8171025>

        Switch to using the secure random number generator to
        seed the fast random generator, and make the generator
        be per global object.

        * runtime/JSGlobalData.cpp:
        (JSC::JSGlobalData::JSGlobalData):
        * runtime/JSGlobalData.h:
        * runtime/JSGlobalObject.h:
        (JSC::JSGlobalObject::JSGlobalObjectData::JSGlobalObjectData):
        (JSC::JSGlobalObject::weakRandomNumber):
        * runtime/MathObject.cpp:
        (JSC::mathProtoFuncRandom):

2010-08-24  Oliver Hunt  <oliver@apple.com>

        Reviewed by Beth Dakin.

        Make overflow guards in UString::utf8 explicit
        https://bugs.webkit.org/show_bug.cgi?id=44540

        Add an explicit overflow check prior to allocating our buffer,
        rather than implicitly relying on the guard in convertUTF16ToUTF8.

        * runtime/UString.cpp:
        (JSC::UString::utf8):

2010-08-24  Yael Aharon  <yael.aharon@nokia.com>

        Reviewed by Simon Hausmann.

        [Symbian] Fix commit/decommit of system memory using RChunk

        Swap accidentially reversed start and m_base values for determining the
        offset within the RChunk.

        * wtf/PageReservation.h:
        (WTF::PageReservation::systemCommit):
        (WTF::PageReservation::systemDecommit):

2010-08-23  Patrick Gansterer  <paroga@paroga.com>

        Rubber-stamped by Gabor Loki.

        [WINCE] Buildfix for GeneratedJITStubs after r64818
        https://bugs.webkit.org/show_bug.cgi?id=44469

        Use " THUNK_RETURN_ADDRESS_OFFSET" instead of "#offset#".

        * jit/JITStubs.cpp:

2010-08-23  Oliver Hunt  <oliver@apple.com>

        Reviewed by Darin Adler.

        [REGRESSION] Interpreter incorrectly excludes prototype chain when validating put_by_id_transition
        https://bugs.webkit.org/show_bug.cgi?id=44240
        <rdar://problem/8328995>

        Fix an error I introduced when cleaning up the interpreter side of the logic
        to prevent setters being called in object initialisers.

        * interpreter/Interpreter.cpp:
        (JSC::Interpreter::privateExecute):

2010-08-23  Michael Saboff  <msaboff@apple.com>

        Reviewed by Oliver Hunt.

        Fixed case where a single character search string in a string.replace()
        did not properly handle back reference replacement.  The fix is to 
        check for a '$' as part of the check to see if we can execute the
        single character replace optimization.
        https://bugs.webkit.org/show_bug.cgi?id=44067

        * runtime/StringPrototype.cpp:
        (JSC::stringProtoFuncReplace):

2010-08-23  Oliver Hunt  <oliver@apple.com>

        Reviewed by Gavin Barraclough.

        JSON.stringify is much slower than Firefox on particular pathological input
        https://bugs.webkit.org/show_bug.cgi?id=44456

        Make StringBuilder::reserveCapacity reserve additional space so we don't end up
        repeatedly copying the entire result string.

        * runtime/StringBuilder.h:
        (JSC::StringBuilder::append):
        (JSC::StringBuilder::reserveCapacity):

2010-08-23  Jian Li  <jianli@chromium.org>

        Reviewed by Darin Fisher.

        Handle blob resource.
        https://bugs.webkit.org/show_bug.cgi?id=43941

        * JavaScriptCore.exp: Add an export that is neede by BlobResourceHandle.

2010-08-19  Andreas Kling  <andreas.kling@nokia.com>

        Reviewed by Geoffrey Garen.

        JSC: Move the static_cast into to(U)Int32 fast case
        https://bugs.webkit.org/show_bug.cgi?id=44037

        Do the static_cast<(u)int32_t> inline to avoid the function call overhead
        for easily converted values (within (u)int32_t range.)

        * runtime/JSValue.cpp:
        (JSC::toInt32SlowCase):
        (JSC::toUInt32SlowCase):
        * runtime/JSValue.h:
        (JSC::JSValue::toInt32):
        (JSC::JSValue::toUInt32):

2010-08-18  Andreas Kling  <andreas.kling@nokia.com>

        Reviewed by Geoffrey Garen.

        REGRESSION(r58469): Math.pow() always returns double-backed JSValue which is extremely slow as array subscript
        https://bugs.webkit.org/show_bug.cgi?id=43742

        Add codegen for pow() to return Int32 values when possible.

        * jit/ThunkGenerators.cpp:
        (JSC::powThunkGenerator):

2010-08-18  Gabor Loki  <loki@webkit.org>

        Reviewed by Gavin Barraclough.

        The JITStackFrame is wrong using Thumb-2 JIT with JSVALUE32_64
        https://bugs.webkit.org/show_bug.cgi?id=43897

        A 64 bits wide member in a structure is aligned to 8 bytes on ARM by
        default, but this is not taken into account in the offset defines of
        JITStackFrame.

        * jit/JITStubs.cpp:
        * jit/JITStubs.h:

2010-08-18  Gavin Barraclough  <barraclough@apple.com>

        Rubber stamped by Sam Weinig.

        Rename UString::substr to substringSharingImpl, add to WTF::String.
        Now WTF::String can do everything that JSC::UString can do!

        * JavaScriptCore.exp:
        * bytecode/CodeBlock.cpp:
        (JSC::escapeQuotes):
        * bytecompiler/NodesCodegen.cpp:
        (JSC::substitute):
        * parser/SourceProvider.h:
        (JSC::UStringSourceProvider::getRange):
        * runtime/FunctionPrototype.cpp:
        (JSC::insertSemicolonIfNeeded):
        * runtime/JSGlobalObjectFunctions.cpp:
        (JSC::parseInt):
        * runtime/JSONObject.cpp:
        (JSC::gap):
        (JSC::Stringifier::indent):
        (JSC::Stringifier::unindent):
        * runtime/JSString.cpp:
        (JSC::JSString::replaceCharacter):
        * runtime/NumberPrototype.cpp:
        (JSC::numberProtoFuncToFixed):
        (JSC::numberProtoFuncToPrecision):
        * runtime/StringPrototype.cpp:
        (JSC::stringProtoFuncReplace):
        (JSC::trimString):
        * runtime/UString.cpp:
        (JSC::UString::substringSharingImpl):
        * runtime/UString.h:
        * wtf/text/WTFString.cpp:
        (WTF::String::substringSharingImpl):
        * wtf/text/WTFString.h:

2010-08-18  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
        * JavaScriptCore.xcodeproj/project.pbxproj:

2010-08-18  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix.

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
        * JavaScriptCore.xcodeproj/project.pbxproj:

2010-08-17  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Sam Weinig.

        Bug 44146 - Remove toDouble/toUInt32 methods from UString.

        These methods all implement JavaScript language specific behaviour, and as such
        are not suited to being on a generic string object.  They are also inefficient
        and incorrectly used, refactor & cleanup.  Uses of these methods really divide
        out into two cases.

        ToNumber:
        Uses of toDouble from JSString and from parseFloat are implementing ecma's
        ToNumber conversion from strings (see ecma-262 9.3.1), so UString::toDouble
        should largely just be moved out to a global jsToNumber function.  ToNumber is
        capable of recognizing either decimal or hexadecimal numbers, but parseFloat
        should only recognize decimal values.  This is currently handled by testing for
        hexadecimal before calling toDouble, which should unnecessary - instead we can
        just split out the two parts to the grammar into separate functions. Also,
        strtod recognizes a set of literals (nan, inf, and infinity - all with any
        capitalization) - which are not defined by any of the specs we are implementing.
        To handle this we need to perform additional work in toDouble to convert the
        unsupported cases of infinities back to NaNs.  Instead we should simply remove
        support for this literals from strtod.  This should provide a more desirable
        behaviour for all clients of strtod.

        Indexed properties:
        Uses of the toStrictUInt32 methods are were all converting property names to
        indices, and all uses of toUInt32 were incorrect; in all cases we should have
        been calling toUInt32.  This error results in some incorrect behaviour in the
        DOM (accessing property "0 " of a NodeList should fail; it currently does not).
        Move this method onto Identifier (our canonical property name), and make it
        always perform a strict conversion. Add a layout test to check NodeList does
        convert indexed property names correctly.

        * JavaScriptCore.exp:
        * runtime/Arguments.cpp:
        (JSC::Arguments::getOwnPropertySlot):
        (JSC::Arguments::getOwnPropertyDescriptor):
        (JSC::Arguments::put):
        (JSC::Arguments::deleteProperty):
        * runtime/Identifier.cpp:
        (JSC::Identifier::toUInt32):
        * runtime/Identifier.h:
        (JSC::Identifier::toUInt32):
        * runtime/JSArray.cpp:
        (JSC::JSArray::getOwnPropertySlot):
        (JSC::JSArray::getOwnPropertyDescriptor):
        (JSC::JSArray::put):
        (JSC::JSArray::deleteProperty):
        * runtime/JSArray.h:
        (JSC::Identifier::toArrayIndex):
        * runtime/JSByteArray.cpp:
        (JSC::JSByteArray::getOwnPropertySlot):
        (JSC::JSByteArray::getOwnPropertyDescriptor):
        (JSC::JSByteArray::put):
        * runtime/JSGlobalObjectFunctions.cpp:
        (JSC::isInfinity):
        (JSC::jsHexIntegerLiteral):
        (JSC::jsStrDecimalLiteral):
        (JSC::jsToNumber):
        (JSC::parseFloat):
        * runtime/JSGlobalObjectFunctions.h:
        * runtime/JSString.cpp:
        (JSC::JSString::getPrimitiveNumber):
        (JSC::JSString::toNumber):
        (JSC::JSString::getStringPropertyDescriptor):
        * runtime/JSString.h:
        (JSC::JSString::getStringPropertySlot):
        * runtime/ObjectPrototype.cpp:
        (JSC::ObjectPrototype::put):
        * runtime/StringObject.cpp:
        (JSC::StringObject::deleteProperty):
        * runtime/UString.cpp:
        * runtime/UString.h:
        * wtf/dtoa.cpp:
        (WTF::strtod):

2010-08-17  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Sam Weinig.

        Bug 44099 - REGRESSION(r65468): Crashes in StringImpl::find

        Bug 44080 introuduced a couple of cases in which array bounds could be overrun.
        One of these was fixed in r65493, this patch fixes the other and address the
        concerns voiced in comment #6 by restructuring the loops to remove the code
        dupliction without introducing an additional if check.

        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::find):
        (WTF::StringImpl::findIgnoringCase):
        (WTF::StringImpl::reverseFind):
        (WTF::StringImpl::reverseFindIgnoringCase):

2010-08-17  No'am Rosenthal  <noam.rosenthal@nokia.com>

        Reviewed by Ariya Hidayat.

        [Qt] Move the accelerated compositing build flag to the right place
        https://bugs.webkit.org/show_bug.cgi?id=43882

        * wtf/Platform.h:

2010-08-17  Yuta Kitamura  <yutak@chromium.org>

        Reviewed by Shinichiro Hamaji.

        Avoid uninitialized memory read in StringImpl::find().

        REGRESSION(r65468): Crashes in StringImpl::find
        https://bugs.webkit.org/show_bug.cgi?id=44099

        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::find):

2010-08-16  Gavin Barraclough  <barraclough@apple.com>

        Rubber stamped by Sam Weinig

        Add VectorTraits to String & DefaultHash traits to UString to unify behaviour.

        * runtime/UString.h:
        (JSC::UStringHash::hash):
        (JSC::UStringHash::equal):
        (WTF::):
        * wtf/text/WTFString.h:
        (WTF::):

2010-08-16  Gavin Barraclough  <barraclough@apple.com>

        Rubber stamped by Sam Weinig

        Remove unnecessary includes from UString.h, add new includes as necessary.

        * profiler/CallIdentifier.h:
        * profiler/ProfileNode.h:
        * runtime/DateConversion.cpp:
        * runtime/Identifier.h:
        (JSC::IdentifierRepHash::hash):
        * runtime/RegExpCache.h:
        * runtime/RegExpKey.h:
        * runtime/UString.cpp:
        (JSC::UString::substr):
        * runtime/UString.h:
        * wtf/text/WTFString.h:

2010-08-16  Gavin Barraclough  <barraclough@apple.com>

        Reviewed by Sam Weinig

        Bug 44080 - String find/reverseFind methods need tidying up
        These methods have a couple of problems with their interface, and implementation.

        These methods take and int index, and return an int - however this is problematic
        since on 64-bit string indices may have a full 32-bit range.  This spills out into
        surrounding code, which unsafely casts string indices from unsigned to int. Code
        checking the result of these methods check for a mix of "== -1", "< 0", and
        "== notFound".  Clean this up by changing these methods to take an unsigned
        starting index, and return a size_t. with a failed match indicated by notFound.
        reverseFind also has a special meaning for the starting index argument, in that a
        negative index is interpreted as an offset back from the end of the string. Remove
        this functionality, in the (1!) case where it is used we should just calculate the
        offset by subtracting from the string's length.

        The implementation has a few problems too.  The code is not in webkit style, in
        using assorted abbreviations in variable names, and implementations of similar
        find methods with differing argument types were unnecessarily inconsistent. When
        find is passed const char* data the string would be handled as latin1 (zero
        extended to UTF-16) for all characters but the first; this is sign extended.
        Case-insensitive find is broken for unicode strings; the hashing optimization is
        not unicode safe, and could result in false negatives.

        Unify UString find methods to match String.

        * JavaScriptCore.exp:
        * bytecode/CodeBlock.cpp:
        (JSC::escapeQuotes):
        * bytecompiler/NodesCodegen.cpp:
        (JSC::substitute):
        * runtime/JSString.cpp:
        (JSC::JSString::replaceCharacter):
        * runtime/RegExp.cpp:
        (JSC::RegExp::RegExp):
        * runtime/RegExpKey.h:
        (JSC::RegExpKey::getFlagsValue):
        * runtime/StringPrototype.cpp:
        (JSC::substituteBackreferencesSlow):
        (JSC::substituteBackreferences):
        (JSC::stringProtoFuncReplace):
        (JSC::stringProtoFuncIndexOf):
        (JSC::stringProtoFuncLastIndexOf):
        (JSC::stringProtoFuncSplit):
        * runtime/UString.cpp:
        * runtime/UString.h:
        (JSC::UString::find):
        (JSC::UString::reverseFind):
        * wtf/text/AtomicString.h:
        (WTF::AtomicString::find):
        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::find):
        (WTF::StringImpl::findCaseInsensitive):
        (WTF::StringImpl::reverseFind):
        (WTF::StringImpl::reverseFindCaseInsensitive):
        (WTF::StringImpl::endsWith):
        (WTF::StringImpl::replace):
        * wtf/text/StringImpl.h:
        (WTF::StringImpl::startsWith):
        * wtf/text/WTFString.cpp:
        (WTF::String::split):
        * wtf/text/WTFString.h:
        (WTF::String::find):
        (WTF::String::reverseFind):
        (WTF::String::findCaseInsensitive):
        (WTF::String::reverseFindCaseInsensitive):
        (WTF::String::contains):
        (WTF::find):
        (WTF::reverseFind):

2010-08-16  Kevin Ollivier  <kevino@theolliviers.com>

        [wx] Build fix, do not build WebCore as a convenience library as this leads to
        errors in the Win build w/export symbols and causes problems with DOM bindings
        debugging in gdb. 

        * wscript:

2010-08-16  Leandro Pereira  <leandro@profusion.mobi>

        [EFL] Build fix after r65366.

        * CMakeLists.txt: Use if (VAR) instead of if (${VAR}) to check if
        they're empty.
        * jsc/CMakeLists.txt: Ditto.
        * wtf/CMakeLists.txt: Ditto.

2010-08-15  Kevin Ollivier  <kevino@theolliviers.com>

        [wx] Build fix, don't build intermediate source in DerivedSources dir.

        * wscript:

2010-08-14  Patrick Gansterer  <paroga@paroga.com>

        Reviewed by Kenneth Rohde Christiansen.

        [CMake] Add preprocessor detection for generator scripts
        https://bugs.webkit.org/show_bug.cgi?id=43984

        * CMakeLists.txt:

2010-08-14  Patrick Gansterer  <paroga@paroga.com>

        Reviewed by Kenneth Rohde Christiansen.

        [CMake] Set target properties only if available
        https://bugs.webkit.org/show_bug.cgi?id=43978

        * CMakeLists.txt:
        * jsc/CMakeLists.txt:
        * wtf/CMakeLists.txt:

2010-08-13  Kevin Ollivier  <kevino@theolliviers.com>

        [wx] Build fix, add CString to the list of forwards.

        * wtf/Forward.h:

2010-08-13  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-13  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-13  Gavin Barraclough  <barraclough@apple.com>

        Windows build fix

        * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:

2010-08-13  Gavin Barraclough  <barraclough@apple.com>

        Rubber stamped by Sam Weinig.
        Switch String::/UString::ascii() to return a CString.

        * JavaScriptCore.exp:
        * JavaScriptCore.xcodeproj/project.pbxproj:
        * bytecode/CodeBlock.cpp:
        (JSC::CodeBlock::dump):
        * bytecode/SamplingTool.cpp:
        (JSC::SamplingTool::dump):
        * interpreter/CallFrame.cpp:
        (JSC::CallFrame::dumpCaller):
        * jsc.cpp:
        (runWithScripts):
        (runInteractive):
        * runtime/Identifier.h:
        (JSC::Identifier::ascii):
        * runtime/ScopeChain.cpp:
        (JSC::ScopeChainNode::print):
        * runtime/UString.cpp:
        (JSC::UString::ascii):
        (JSC::UString::latin1):
        * runtime/UString.h:
        * wtf/text/StringImpl.cpp:
        (WTF::StringImpl::asciiOLD):
        * wtf/text/StringImpl.h:
        * wtf/text/WTFString.cpp:
        (WTF::String::ascii):
        (WTF::String::latin1):
        * wtf/text/WTFString.h:

2010-08-13  Gabor Loki  <loki@webkit.org>

        Reviewed by Gavin Barraclough.

        Avoid increasing required alignment of target type warning on ARM
        https://bugs.webkit.org/show_bug.cgi?id=38045

        The reinterpret_cast<Type1*>([pointer to Type2]) expressions - where
        sizeof(Type1) > sizeof(Type2) - cause the following warning on ARM:
        increases required alignment of target type warnings.