Changeset 160821 in webkit

Timestamp:

Dec 18, 2013, 7:48:08 PM (11 years ago)

Author:

mark.lam@apple.com

Message:

CStack: Fix baseline to DFG JIT OSR.
​https://bugs.webkit.org/show_bug.cgi?id=125969.

Reviewed by Filip Pizlo.

1. Change operationOptimize() to return a tuple of OSR target address and new topOfFrame value (as opposed to just the OSR target address).
2. Change emitEnterOptimizationCheck() and emitSlow_op_loop_hint() to emit code to set the stackPointer with the returned topOfFrame value if we take the OSR path.

• jit/JIT.cpp:

(JSC::JIT::emitEnterOptimizationCheck):

• jit/JIT.h:
• jit/JITInlines.h:

(JSC::JIT::callOperation):

• jit/JITOpcodes.cpp:

(JSC::JIT::emitSlow_op_loop_hint):

• jit/JITOperations.cpp:
• jit/JITOperations.h:
• runtime/Options.h:

Location:

branches/jsCStack/Source/JavaScriptCore

Files:

• ChangeLog (modified) (1 diff)
• jit/JIT.cpp (modified) (1 diff)
• jit/JIT.h (modified) (1 diff)
• jit/JITInlines.h (modified) (1 diff)
• jit/JITOpcodes.cpp (modified) (1 diff)
• jit/JITOperations.cpp (modified) (12 diffs)
• jit/JITOperations.h (modified) (5 diffs)
• runtime/Options.h (modified) (1 diff)

branches/jsCStack/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2013-12-18  Mark Lam  <mark.lam@apple.com>
+
+        CStack: Fix baseline to DFG JIT OSR.
+        https://bugs.webkit.org/show_bug.cgi?id=125969.
+
+        Reviewed by Filip Pizlo.
+
+        1. Change operationOptimize() to return a tuple of OSR target address
+           and new topOfFrame value (as opposed to just the OSR target address).
+        2. Change emitEnterOptimizationCheck() and emitSlow_op_loop_hint() to
+           emit code to set the stackPointer with the returned topOfFrame value
+           if we take the OSR path.
+
+        * jit/JIT.cpp:
+        (JSC::JIT::emitEnterOptimizationCheck):
+        * jit/JIT.h:
+        * jit/JITInlines.h:
+        (JSC::JIT::callOperation):
+        * jit/JITOpcodes.cpp:
+        (JSC::JIT::emitSlow_op_loop_hint):
+        * jit/JITOperations.cpp:
+        * jit/JITOperations.h:
+        * runtime/Options.h:
+
 2013-12-18  Michael Saboff  <msaboff@apple.com>
 

branches/jsCStack/Source/JavaScriptCore/jit/JIT.cpp

@@ -103 +103 @@
     callOperation(operationOptimize, m_bytecodeOffset);
     skipOptimize.append(branchTestPtr(Zero, returnValueGPR));
+    move(returnValueGPR2, stackPointerRegister);
     jump(returnValueGPR);
     skipOptimize.link(this);

branches/jsCStack/Source/JavaScriptCore/jit/JIT.h

@@ -691 +691 @@
         MacroAssembler::Call callOperation(J_JITOperation_EZ, int, int32_t);
         MacroAssembler::Call callOperation(P_JITOperation_EJS, GPRReg, size_t);
-        MacroAssembler::Call callOperation(P_JITOperation_EZ, int32_t);
         MacroAssembler::Call callOperation(S_JITOperation_ECC, RegisterID, RegisterID);
         MacroAssembler::Call callOperation(S_JITOperation_EJ, RegisterID);
         MacroAssembler::Call callOperation(S_JITOperation_EJJ, RegisterID, RegisterID);
         MacroAssembler::Call callOperation(S_JITOperation_EOJss, RegisterID, RegisterID);
+        MacroAssembler::Call callOperation(Sprt_JITOperation_EZ, int32_t);
         MacroAssembler::Call callOperation(V_JITOperation_E);
         MacroAssembler::Call callOperation(V_JITOperation_EC, RegisterID);

branches/jsCStack/Source/JavaScriptCore/jit/JITInlines.h

@@ -218 +218 @@
 }
 
-ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(P_JITOperation_EZ operation, int32_t op)
+ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(S_JITOperation_ECC operation, RegisterID regOp1, RegisterID regOp2)
+{
+    setupArgumentsWithExecState(regOp1, regOp2);
+    return appendCallWithExceptionCheck(operation);
+}
+
+ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(S_JITOperation_EOJss operation, RegisterID regOp1, RegisterID regOp2)
+{
+    setupArgumentsWithExecState(regOp1, regOp2);
+    return appendCallWithExceptionCheck(operation);
+}
+
+ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(Sprt_JITOperation_EZ operation, int32_t op)
 {
     setupArgumentsWithExecState(TrustedImm32(op));
-    return appendCallWithExceptionCheck(operation);
-}
-
-ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(S_JITOperation_ECC operation, RegisterID regOp1, RegisterID regOp2)
-{
-    setupArgumentsWithExecState(regOp1, regOp2);
-    return appendCallWithExceptionCheck(operation);
-}
-
-ALWAYS_INLINE MacroAssembler::Call JIT::callOperation(S_JITOperation_EOJss operation, RegisterID regOp1, RegisterID regOp2)
-{
-    setupArgumentsWithExecState(regOp1, regOp2);
     return appendCallWithExceptionCheck(operation);
 }

branches/jsCStack/Source/JavaScriptCore/jit/JITOpcodes.cpp

@@ -1117 +1117 @@
         callOperation(operationOptimize, m_bytecodeOffset);
         Jump noOptimizedEntry = branchTestPtr(Zero, returnValueGPR);
+        move(returnValueGPR2, stackPointerRegister);
         jump(returnValueGPR);
         noOptimizedEntry.link(this);

branches/jsCStack/Source/JavaScriptCore/jit/JITOperations.cpp

@@ -31 +31 @@
 #include "ArrayConstructor.h"
 #include "CallFrameInlines.h"
-#include "CommonSlowPaths.h"
 #include "DFGCompilationMode.h"
 #include "DFGDriver.h"
@@ -975 +974 @@
 
 #if ENABLE(DFG_JIT)
-char* JIT_OPERATION operationOptimize(ExecState* exec, int32_t bytecodeIndex)
+SlowPathReturnType JIT_OPERATION operationOptimize(ExecState* exec, int32_t bytecodeIndex)
 {
     VM& vm = exec->vm();
@@ -1025 +1024 @@
         if (Options::verboseOSR())
             dataLog("Choosing not to optimize ", *codeBlock, " yet, because the threshold hasn't been reached.\n");
-        return 0;
+        return encodeResult(0, 0);
     }
     
@@ -1033 +1032 @@
         if (Options::verboseOSR())
             dataLog("Choosing not to optimize ", *codeBlock, " yet, because m_shouldAlwaysBeInlined == true.\n");
-        return 0;
+        return encodeResult(0, 0);
     }
 
@@ -1073 +1072 @@
         RELEASE_ASSERT(!codeBlock->hasOptimizedReplacement());
         codeBlock->setOptimizationThresholdBasedOnCompilationResult(CompilationDeferred);
-        return 0;
+        return encodeResult(0, 0);
     }
 
@@ -1086 +1085 @@
             if (Options::verboseOSR())
                 dataLog("Code block ", *codeBlock, " was compiled but it doesn't have an optimized replacement.\n");
-            return 0;
+            return encodeResult(0, 0);
         }
     } else if (codeBlock->hasOptimizedReplacement()) {
@@ -1111 +1110 @@
             }
             codeBlock->replacement()->jettison(CountReoptimization);
-            return 0;
+            return encodeResult(0, 0);
         }
     } else {
@@ -1120 +1119 @@
                     " because of insufficient profiling.\n");
             }
-            return 0;
+            return encodeResult(0, 0);
         }
 
@@ -1153 +1152 @@
         
         if (result != CompilationSuccessful)
-            return 0;
+            return encodeResult(0, 0);
     }
     
@@ -1167 +1166 @@
 
         codeBlock->optimizeSoon();
-        return static_cast<char*>(address);
+        ASSERT(exec->codeBlock() == optimizedCodeBlock);
+        return encodeResult(address, exec->topOfFrame());
     }
 
@@ -1196 +1196 @@
         }
         optimizedCodeBlock->jettison(CountReoptimization);
-        return 0;
+        return encodeResult(0, 0);
     }
 
@@ -1203 +1203 @@
     codeBlock->optimizeAfterWarmUp();
     
-    return 0;
+    return encodeResult(0, 0);
 }
 #endif

branches/jsCStack/Source/JavaScriptCore/jit/JITOperations.h

@@ -30 +30 @@
 
 #include "CallFrame.h"
+#include "CommonSlowPaths.h"
 #include "JITExceptions.h"
 #include "JSArray.h"
@@ -73 +74 @@
     R: Register
     S: size_t
+    Sprt: SlowPathReturnType
     Ssi: StructureStubInfo*
     St: Structure*
@@ -134 +136 @@
 typedef size_t JIT_OPERATION (*S_JITOperation_EOJss)(ExecState*, JSObject*, JSString*);
 typedef size_t JIT_OPERATION (*S_JITOperation_J)(EncodedJSValue);
+typedef SlowPathReturnType JIT_OPERATION (*Sprt_JITOperation_EZ)(ExecState*, int32_t);
 typedef void JIT_OPERATION (*V_JITOperation_E)(ExecState*);
 typedef void JIT_OPERATION (*V_JITOperation_EC)(ExecState*, JSCell*);
@@ -174 +177 @@
 typedef char* JIT_OPERATION (*P_JITOperation_EStSS)(ExecState*, Structure*, size_t, size_t);
 typedef char* JIT_OPERATION (*P_JITOperation_EStZ)(ExecState*, Structure*, int32_t);
-typedef char* JIT_OPERATION (*P_JITOperation_EZ)(ExecState*, int32_t);
 typedef char* JIT_OPERATION (*P_JITOperation_EZZ)(ExecState*, int32_t, int32_t);
 typedef StringImpl* JIT_OPERATION (*I_JITOperation_EJss)(ExecState*, JSString*);
@@ -242 +244 @@
 void JIT_OPERATION operationDebug(ExecState*, int32_t) WTF_INTERNAL;
 #if ENABLE(DFG_JIT)
-char* JIT_OPERATION operationOptimize(ExecState*, int32_t) WTF_INTERNAL;
+SlowPathReturnType JIT_OPERATION operationOptimize(ExecState*, int32_t) WTF_INTERNAL;
 #endif
 void JIT_OPERATION operationPutByIndex(ExecState*, EncodedJSValue, int32_t, EncodedJSValue);

branches/jsCStack/Source/JavaScriptCore/runtime/Options.h

@@ -121 +121 @@
     v(bool, verboseCFA, false) \
     \
-    v(bool, enableOSREntryToDFG, false) \
+    v(bool, enableOSREntryToDFG, true) \
     \
     v(bool, useExperimentalFTL, false) \