The storageLengthGPR is polluted by EmptyValueTag and later used to index the array, which results in abnormal behaviors in execution. This fix makes 32_64 DFG pass v8-deltablue and kraken crypto-sha256-iterative on Linux ia32.
Created attachment 110662 [details] the patch
Created attachment 110672 [details] the patch I think I was muddled when developing the previous wrong patch... :( Also, please help land it manually if you think it should be r+, as I'm not sure if the commit queue will be happy about the style warnings. Thanks a lot.
Attachment 110672 [details] did not pass style-queue: Failed to run "['Tools/Scripts/check-webkit-style', '--diff-files', u'Source/JavaScriptCore/ChangeLog', u'Source..." exit_code: 1 Source/JavaScriptCore/assembler/X86Assembler.h:1069: movl_i32m is incorrectly named. Don't use underscores in your identifier names. [readability/naming] [4] Total errors found: 1 in 4 files If any of these errors are false positives, please file a bug against check-webkit-style.
Ouch, I can't believe I created that bug.
Comment on attachment 110672 [details] the patch Clearing flags on attachment: 110672 Committed r97286: <http://trac.webkit.org/changeset/97286>
All reviewed patches have been landed. Closing bug.