Changeset 160919 in webkit

Timestamp:

Dec 20, 2013 12:19:59 PM (10 years ago)

Author:

mhahnenberg@apple.com

Message:

Clean up DFG write barriers
​https://bugs.webkit.org/show_bug.cgi?id=126047

Reviewed by Filip Pizlo.

• dfg/DFGSpeculativeJIT.cpp:

(JSC::DFG::SpeculativeJIT::storeToWriteBarrierBuffer): Use the register allocator to
determine which registers need saving instead of saving every single one of them.
(JSC::DFG::SpeculativeJIT::osrWriteBarrier): We don't need to save live register state
because the write barriers during OSR execute when there are no live registers. Also we
don't need to use pushes to pad the stack pointer for pokes on x86; we can just use an add.
(JSC::DFG::SpeculativeJIT::writeBarrier):

• dfg/DFGSpeculativeJIT.h:
• jit/Repatch.cpp:

(JSC::emitPutReplaceStub):
(JSC::emitPutTransitionStub):

• runtime/VM.h: Get rid of writeBarrierRegisterBuffer since it's no longer used.

Location:

trunk/Source/JavaScriptCore

Files:

• ChangeLog (modified) (1 diff)
• dfg/DFGSpeculativeJIT.cpp (modified) (4 diffs)
• dfg/DFGSpeculativeJIT.h (modified) (2 diffs)
• heap/Heap.h (modified) (1 diff)
• jit/Repatch.cpp (modified) (3 diffs)
• runtime/VM.h (modified) (1 diff)

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2013-12-19  Mark Hahnenberg  <mhahnenberg@apple.com>
+
+        Clean up DFG write barriers
+        https://bugs.webkit.org/show_bug.cgi?id=126047
+
+        Reviewed by Filip Pizlo.
+
+        * dfg/DFGSpeculativeJIT.cpp:
+        (JSC::DFG::SpeculativeJIT::storeToWriteBarrierBuffer): Use the register allocator to 
+        determine which registers need saving instead of saving every single one of them.
+        (JSC::DFG::SpeculativeJIT::osrWriteBarrier): We don't need to save live register state 
+        because the write barriers during OSR execute when there are no live registers. Also we  
+        don't need to use pushes to pad the stack pointer for pokes on x86; we can just use an add.
+        (JSC::DFG::SpeculativeJIT::writeBarrier):
+        * dfg/DFGSpeculativeJIT.h:
+        * jit/Repatch.cpp:
+        (JSC::emitPutReplaceStub):
+        (JSC::emitPutTransitionStub):
+        * runtime/VM.h: Get rid of writeBarrierRegisterBuffer since it's no longer used.
+
 2013-12-20  Balazs Kilvady  <kilvadyb@homejinni.com>
 

trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT.cpp

@@ -38 +38 @@
 #include "JSCJSValueInlines.h"
 #include "LinkBuffer.h"
+#include "ScratchRegisterAllocator.h"
 #include "WriteBarrierBuffer.h"
 #include <wtf/MathExtras.h>
@@ -5480 +5481 @@
 }
 
-MacroAssembler::Call SpeculativeJIT::storeToWriteBarrierBuffer(CCallHelpers& jit, GPRReg cell, GPRReg scratch1, GPRReg scratch2)
-{
-    ASSERT(scratch1 != scratch2);
-    // Load WriteBarrierBuffer from Heap
-    WriteBarrierBuffer* writeBarrierBuffer = &jit.vm()->heap.m_writeBarrierBuffer;
-    jit.move(TrustedImmPtr(writeBarrierBuffer), scratch1);
-    // Load currentIndex
-    jit.load32(MacroAssembler::Address(scratch1, WriteBarrierBuffer::currentIndexOffset()), scratch2);
-    // Branch if currentIndex >= capacity
-    JITCompiler::Jump needToFlush = jit.branch32(MacroAssembler::AboveOrEqual, scratch2, MacroAssembler::Address(scratch1, WriteBarrierBuffer::capacityOffset()));
-
-    // Store new currentIndex
-    jit.add32(TrustedImm32(1), scratch2);
-    jit.store32(scratch2, MacroAssembler::Address(scratch1, WriteBarrierBuffer::currentIndexOffset()));
-
-    // Load buffer
-    jit.loadPtr(MacroAssembler::Address(scratch1, WriteBarrierBuffer::bufferOffset()), scratch1);
-    // Store cell into buffer. We use an offset of -sizeof(void*) because we already added 1 to scratch2.
-    jit.storePtr(cell, MacroAssembler::BaseIndex(scratch1, scratch2, MacroAssembler::ScalePtr, static_cast<int32_t>(-sizeof(void*))));
-
-    // Jump to done
-    JITCompiler::Jump done = jit.jump();
-    // Link from branch
-    needToFlush.link(&jit);
-
-    // Call C slow path.
-    for (unsigned i = 0; i < GPRInfo::numberOfRegisters; ++i)
-        jit.storePtr(GPRInfo::toRegister(i), &jit.vm()->writeBarrierRegisterBuffer[i]);
-
-#if CPU(X86)
-    jit.push(scratch1);
-    jit.push(scratch1);
-#endif
-
-    jit.setupArgumentsWithExecState(cell);
-    MacroAssembler::Call call = jit.call();
-
-#if CPU(X86)
-    jit.pop(scratch1);
-    jit.pop(scratch1);
-#endif
-
-    for (unsigned i = GPRInfo::numberOfRegisters; i--;)
-        jit.loadPtr(&jit.vm()->writeBarrierRegisterBuffer[i], GPRInfo::toRegister(i));
-
-    // Link Done
-    done.link(&jit);
-
-    return call;
-}
-
 void SpeculativeJIT::storeToWriteBarrierBuffer(GPRReg cell, GPRReg scratch1, GPRReg scratch2)
 {
@@ -5594 +5544 @@
 void SpeculativeJIT::osrWriteBarrier(CCallHelpers& jit, GPRReg owner, GPRReg scratch1, GPRReg scratch2)
 {
-    UNUSED_PARAM(jit);
-    UNUSED_PARAM(owner);
-    UNUSED_PARAM(scratch1);
-    UNUSED_PARAM(scratch2);
-    ASSERT(owner != scratch1);
-    ASSERT(owner != scratch2);
-
     JITCompiler::Jump definitelyNotMarked = genericWriteBarrier(jit, owner, scratch1, scratch2);
-
-    for (unsigned i = 0; i < GPRInfo::numberOfRegisters; ++i)
-        jit.storePtr(GPRInfo::toRegister(i), &jit.vm()->writeBarrierRegisterBuffer[i]);
 
     // We need these extra slots because setupArgumentsWithExecState will use poke on x86.
 #if CPU(X86)
-    jit.push(scratch1);
-    jit.push(scratch1);
-    jit.push(scratch1);
+    jit.subPtr(TrustedImm32(sizeof(void*) * 3), MacroAssembler::stackPointerRegister);
 #endif
 
@@ -5618 +5556 @@
 
 #if CPU(X86)
-    jit.pop(scratch1);
-    jit.pop(scratch1);
-    jit.pop(scratch1);
+    jit.addPtr(TrustedImm32(sizeof(void*) * 3), MacroAssembler::stackPointerRegister);
 #endif
-    for (unsigned i = GPRInfo::numberOfRegisters; i--;)
-        jit.loadPtr(&jit.vm()->writeBarrierRegisterBuffer[i], GPRInfo::toRegister(i)); 
 
     definitelyNotMarked.link(&jit);
-}
-
-MacroAssembler::Call SpeculativeJIT::writeBarrier(CCallHelpers& jit, GPRReg owner, GPRReg scratch1, GPRReg scratch2)
-{
-    ASSERT(owner != scratch1);
-    ASSERT(owner != scratch2);
-
-    JITCompiler::Jump definitelyNotMarked = genericWriteBarrier(jit, owner, scratch1, scratch2);
-    MacroAssembler::Call call = storeToWriteBarrierBuffer(jit, owner, scratch1, scratch2);
-    definitelyNotMarked.link(&jit);
-    return call;
 }
 

trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT.h

@@ -291 +291 @@
 
 #if ENABLE(GGC)
-    static MacroAssembler::Call storeToWriteBarrierBuffer(CCallHelpers& jit, GPRReg cell, GPRReg scratch1, GPRReg scratch2);
     void storeToWriteBarrierBuffer(GPRReg cell, GPRReg scratch1, GPRReg scratch2);
     void storeToWriteBarrierBuffer(JSCell*, GPRReg scratch1, GPRReg scratch2);
@@ -298 +297 @@
     static JITCompiler::Jump genericWriteBarrier(CCallHelpers& jit, JSCell* owner);
     static void osrWriteBarrier(CCallHelpers&, GPRReg owner, GPRReg scratch1, GPRReg scratch2);
-    static MacroAssembler::Call writeBarrier(CCallHelpers&, GPRReg owner, GPRReg scratch1, GPRReg scratch2);
     void writeBarrier(GPRReg owner, GPRReg scratch1, GPRReg scratch2);
     void writeBarrier(GPRReg owner, JSCell* value, GPRReg scratch1, GPRReg scratch2);

trunk/Source/JavaScriptCore/heap/Heap.h

@@ -101 +101 @@
         static uint8_t* addressOfCardFor(JSCell*);
 
+#if ENABLE(GGC)
+        WriteBarrierBuffer& writeBarrierBuffer() { return m_writeBarrierBuffer; }
+#endif
         void flushWriteBarrierBuffer(JSCell*);
 

trunk/Source/JavaScriptCore/jit/Repatch.cpp

@@ -774 +774 @@
 }
 
+#if ENABLE(GGC)
+static MacroAssembler::Call storeToWriteBarrierBuffer(CCallHelpers& jit, GPRReg cell, GPRReg scratch1, GPRReg scratch2, ScratchRegisterAllocator& allocator)
+{
+    ASSERT(scratch1 != scratch2);
+    WriteBarrierBuffer* writeBarrierBuffer = &jit.vm()->heap.writeBarrierBuffer();
+    jit.move(MacroAssembler::TrustedImmPtr(writeBarrierBuffer), scratch1);
+    jit.load32(MacroAssembler::Address(scratch1, WriteBarrierBuffer::currentIndexOffset()), scratch2);
+    MacroAssembler::Jump needToFlush = jit.branch32(MacroAssembler::AboveOrEqual, scratch2, MacroAssembler::Address(scratch1, WriteBarrierBuffer::capacityOffset()));
+
+    jit.add32(MacroAssembler::TrustedImm32(1), scratch2);
+    jit.store32(scratch2, MacroAssembler::Address(scratch1, WriteBarrierBuffer::currentIndexOffset()));
+
+    jit.loadPtr(MacroAssembler::Address(scratch1, WriteBarrierBuffer::bufferOffset()), scratch1);
+    // We use an offset of -sizeof(void*) because we already added 1 to scratch2.
+    jit.storePtr(cell, MacroAssembler::BaseIndex(scratch1, scratch2, MacroAssembler::ScalePtr, static_cast<int32_t>(-sizeof(void*))));
+
+    MacroAssembler::Jump done = jit.jump();
+    needToFlush.link(&jit);
+
+    ScratchBuffer* scratchBuffer = jit.vm()->scratchBufferForSize(allocator.desiredScratchBufferSize());
+    allocator.preserveUsedRegistersToScratchBuffer(jit, scratchBuffer, scratch1);
+
+    // We need these extra slots because setupArgumentsWithExecState will use poke on x86.
+#if CPU(X86)
+    jit.subPtr(MacroAssembler::TrustedImm32(sizeof(void*) * 3), MacroAssembler::stackPointerRegister);
+#endif
+
+    jit.setupArgumentsWithExecState(cell);
+    MacroAssembler::Call call = jit.call();
+
+#if CPU(X86)
+    jit.addPtr(MacroAssembler::TrustedImm32(sizeof(void*) * 3), MacroAssembler::stackPointerRegister);
+#endif
+    allocator.restoreUsedRegistersFromScratchBuffer(jit, scratchBuffer, scratch1);
+
+    done.link(&jit);
+
+    return call;
+}
+
+static MacroAssembler::Call writeBarrier(CCallHelpers& jit, GPRReg owner, GPRReg scratch1, GPRReg scratch2, ScratchRegisterAllocator& allocator)
+{
+    ASSERT(owner != scratch1);
+    ASSERT(owner != scratch2);
+
+    MacroAssembler::Jump definitelyNotMarked = DFG::SpeculativeJIT::genericWriteBarrier(jit, owner, scratch1, scratch2);
+    MacroAssembler::Call call = storeToWriteBarrierBuffer(jit, owner, scratch1, scratch2, allocator);
+    definitelyNotMarked.link(&jit);
+    return call;
+}
+#endif // ENABLE(GGC)
+
 static void emitPutReplaceStub(
     ExecState* exec,
@@ -832 +884 @@
     
 #if ENABLE(GGC)
-    MacroAssembler::Call writeBarrierOperation = DFG::SpeculativeJIT::writeBarrier(stubJit, baseGPR, scratchGPR1, scratchGPR2);
+    MacroAssembler::Call writeBarrierOperation = writeBarrier(stubJit, baseGPR, scratchGPR1, scratchGPR2, allocator);
 #endif
     
@@ -999 +1051 @@
     
 #if ENABLE(GGC)
-    MacroAssembler::Call writeBarrierOperation = DFG::SpeculativeJIT::writeBarrier(stubJit, baseGPR, scratchGPR1, scratchGPR2);
+    MacroAssembler::Call writeBarrierOperation = writeBarrier(stubJit, baseGPR, scratchGPR1, scratchGPR2, allocator);
 #endif
     

trunk/Source/JavaScriptCore/runtime/VM.h

@@ -389 +389 @@
         const ClassInfo* const jsFinalObjectClassInfo;
 
-#if ENABLE(JIT)
-        void* writeBarrierRegisterBuffer[GPRInfo::numberOfRegisters];
-#endif
-
         ReturnAddressPtr exceptionLocation;
         JSValue hostCallReturnValue;