| commit | e8faf62ca040df6b4dc7470474f9e48f286b1901 | [log] [tgz] |
|---|---|---|
| author | Jakob Kummerow <jkummerow@chromium.org> | Fri Jan 25 00:35:36 2019 |
| committer | Commit Bot <commit-bot@chromium.org> | Mon Jan 28 21:15:59 2019 |
| tree | 45982a8325177743de494cb5f1c0818a004aa69c | |
| parent | c640296e5a33ee0754babe9b60d93133ded060eb [diff] |
[ubsan][compiler] Avoid OOB array accesses in Node::inputs_ Since we allocate raw zone memory for its inputs right behind the Node object anyway, drop the previously OOB-accessed 1-element array within the Node and use address computation to get to the inputs storage. Note that this saves one pointer per Node, except for Nodes with zero inputs, where it uses 1*sizeof(Use) more memory than before. Bug: v8:3770 Change-Id: I7f5965c6f1b49013eb7f5a447b685d47decaa8fb Reviewed-on: https://chromium-review.googlesource.com/c/1436218 Reviewed-by: Tobias Tebbi <tebbi@chromium.org> Commit-Queue: Jakob Kummerow <jkummerow@chromium.org> Cr-Commit-Position: refs/heads/master@{#59141}
V8 is Google's open source JavaScript engine.
V8 implements ECMAScript as specified in ECMA-262.
V8 is written in C++ and is used in Google Chrome, the open source browser from Google.
V8 can run standalone, or can be embedded into any C++ application.
V8 Project page: https://github.com/v8/v8/wiki
Checkout depot tools, and run
fetch v8
This will checkout V8 into the directory v8 and fetch all of its dependencies. To stay up to date, run
git pull origin
gclient sync
For fetching all branches, add the following into your remote configuration in .git/config:
fetch = +refs/branch-heads/*:refs/remotes/branch-heads/*
fetch = +refs/tags/*:refs/tags/*
Please follow the instructions mentioned on the V8 wiki.