Changeset 167591 in webkit
- Timestamp:
- Apr 21, 2014 8:11:33 AM (10 years ago)
- Location:
- trunk/Source/JavaScriptCore
- Files:
-
- 6 edited
-
ChangeLog (modified) (1 diff)
-
dfg/DFGSpeculativeJIT.cpp (modified) (1 diff)
-
dfg/DFGSpeculativeJIT.h (modified) (2 diffs)
-
dfg/DFGSpeculativeJIT32_64.cpp (modified) (1 diff)
-
dfg/DFGSpeculativeJIT64.cpp (modified) (1 diff)
-
runtime/Arguments.h (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/JavaScriptCore/ChangeLog
r167577 r167591 1 2014-04-21 Mark Hahnenberg <mhahnenberg@apple.com> 2 3 Inline allocate Arguments objects in the DFG 4 https://bugs.webkit.org/show_bug.cgi?id=131897 5 6 Reviewed by Geoffrey Garen. 7 8 Many libraries/frameworks depend on the arguments object for overloaded API entry points. 9 This is the first step to making Arguments fast(er). We'll duplicate the logic in Arguments::create 10 for now and take the slow path for complicated cases like slow arguments, tearing off for strict mode, etc. 11 12 * dfg/DFGSpeculativeJIT.cpp: 13 (JSC::DFG::SpeculativeJIT::emitAllocateArguments): 14 * dfg/DFGSpeculativeJIT.h: 15 (JSC::DFG::SpeculativeJIT::emitAllocateDestructibleObject): 16 * dfg/DFGSpeculativeJIT32_64.cpp: 17 (JSC::DFG::SpeculativeJIT::compile): 18 * dfg/DFGSpeculativeJIT64.cpp: 19 (JSC::DFG::SpeculativeJIT::compile): 20 * runtime/Arguments.h: 21 (JSC::Arguments::offsetOfActivation): 22 (JSC::Arguments::offsetOfOverrodeLength): 23 (JSC::Arguments::offsetOfIsStrictMode): 24 (JSC::Arguments::offsetOfRegisterArray): 25 (JSC::Arguments::offsetOfCallee): 26 (JSC::Arguments::allocationSize): 27 1 28 2014-04-20 Andreas Kling <akling@apple.com> 2 29 -
trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT.cpp
r167418 r167591 105 105 slowCases, this, operationNewArrayWithSize, resultGPR, storageGPR, 106 106 structure, numElements))); 107 } 108 109 void SpeculativeJIT::emitAllocateArguments(GPRReg resultGPR, GPRReg scratchGPR1, GPRReg scratchGPR2, MacroAssembler::JumpList& slowPath) 110 { 111 Structure* structure = m_jit.graph().globalObjectFor(m_currentNode->origin.semantic)->argumentsStructure(); 112 emitAllocateDestructibleObject<Arguments>(resultGPR, structure, scratchGPR1, scratchGPR2, slowPath); 113 114 m_jit.storePtr(TrustedImmPtr(0), MacroAssembler::Address(resultGPR, Arguments::offsetOfActivation())); 115 116 m_jit.load32(JITCompiler::payloadFor(JSStack::ArgumentCount), scratchGPR1); 117 m_jit.sub32(TrustedImm32(1), scratchGPR1); 118 m_jit.store32(scratchGPR1, MacroAssembler::Address(resultGPR, Arguments::offsetOfNumArguments())); 119 120 m_jit.store32(TrustedImm32(0), MacroAssembler::Address(resultGPR, Arguments::offsetOfOverrodeLength())); 121 m_jit.store8(TrustedImm32(m_jit.isStrictModeFor(m_currentNode->origin.semantic)), 122 MacroAssembler::Address(resultGPR, Arguments::offsetOfIsStrictMode())); 123 124 m_jit.storePtr(GPRInfo::callFrameRegister, MacroAssembler::Address(resultGPR, Arguments::offsetOfRegisters())); 125 m_jit.storePtr(TrustedImmPtr(0), MacroAssembler::Address(resultGPR, Arguments::offsetOfRegisterArray())); 126 m_jit.storePtr(TrustedImmPtr(0), MacroAssembler::Address(resultGPR, Arguments::offsetOfSlowArgumentData())); 127 128 m_jit.loadPtr(JITCompiler::addressFor(JSStack::Callee), scratchGPR1); 129 m_jit.storePtr(scratchGPR1, MacroAssembler::Address(resultGPR, Arguments::offsetOfCallee())); 107 130 } 108 131 -
trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT.h
r167325 r167591 2179 2179 } 2180 2180 2181 // Convenience allocator for a bui t-in object.2181 // Convenience allocator for a built-in object. 2182 2182 template <typename ClassType, typename StructureType, typename StorageType> // StructureType and StorageType can be GPR or ImmPtr. 2183 2183 void emitAllocateJSObject(GPRReg resultGPR, StructureType structure, StorageType storage, … … 2196 2196 } 2197 2197 2198 template <typename T> 2199 void emitAllocateDestructibleObject(GPRReg resultGPR, Structure* structure, 2200 GPRReg scratchGPR1, GPRReg scratchGPR2, MacroAssembler::JumpList& slowPath) 2201 { 2202 emitAllocateJSObject<T>(resultGPR, TrustedImmPtr(structure), TrustedImmPtr(0), scratchGPR1, scratchGPR2, slowPath); 2203 m_jit.storePtr(TrustedImmPtr(structure->classInfo()), MacroAssembler::Address(resultGPR, JSDestructibleObject::classInfoOffset())); 2204 } 2205 2198 2206 void emitAllocateJSArray(GPRReg resultGPR, Structure*, GPRReg storageGPR, unsigned numElements); 2207 void emitAllocateArguments(GPRReg resultGPR, GPRReg scratchGPR1, GPRReg scratchGPR2, MacroAssembler::JumpList& slowPath); 2199 2208 2200 2209 // Add a speculation check. -
trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT32_64.cpp
r167433 r167591 4168 4168 case CreateArguments: { 4169 4169 JSValueOperand value(this, node->child1()); 4170 GPRTemporary scratch1(this); 4171 GPRTemporary scratch2(this); 4170 4172 GPRTemporary result(this, Reuse, value, PayloadWord); 4171 4173 4172 4174 GPRReg valueTagGPR = value.tagGPR(); 4173 4175 GPRReg valuePayloadGPR = value.payloadGPR(); 4176 GPRReg scratch1GPR = scratch1.gpr(); 4177 GPRReg scratch2GPR = scratch2.gpr(); 4174 4178 GPRReg resultGPR = result.gpr(); 4175 4179 4176 4180 m_jit.move(valuePayloadGPR, resultGPR); 4177 4181 4178 JITCompiler::Jump notCreated = m_jit.branch32(JITCompiler::Equal, valueTagGPR, TrustedImm32(JSValue::EmptyValueTag));4179 4180 4182 if (node->origin.semantic.inlineCallFrame) { 4183 JITCompiler::Jump notCreated = m_jit.branch32(JITCompiler::Equal, valueTagGPR, TrustedImm32(JSValue::EmptyValueTag)); 4181 4184 addSlowPathGenerator( 4182 4185 slowPathCall( 4183 4186 notCreated, this, operationCreateInlinedArguments, resultGPR, 4184 4187 node->origin.semantic.inlineCallFrame)); 4185 } else { 4188 cellResult(resultGPR, node); 4189 break; 4190 } 4191 4192 FunctionExecutable* executable = jsCast<FunctionExecutable*>(m_jit.graph().executableFor(node->origin.semantic)); 4193 if (m_jit.codeBlock()->hasSlowArguments() 4194 || executable->isStrictMode() 4195 || !executable->parameterCount()) { 4196 JITCompiler::Jump notCreated = m_jit.branch32(JITCompiler::Equal, valueTagGPR, TrustedImm32(JSValue::EmptyValueTag)); 4186 4197 addSlowPathGenerator( 4187 4198 slowPathCall(notCreated, this, operationCreateArguments, resultGPR)); 4188 } 4189 4199 cellResult(resultGPR, node); 4200 break; 4201 } 4202 4203 JITCompiler::Jump alreadyCreated = m_jit.branch32(JITCompiler::NotEqual, valueTagGPR, TrustedImm32(JSValue::EmptyValueTag)); 4204 4205 MacroAssembler::JumpList slowPaths; 4206 emitAllocateArguments(resultGPR, scratch1GPR, scratch2GPR, slowPaths); 4207 addSlowPathGenerator( 4208 slowPathCall(slowPaths, this, operationCreateArguments, resultGPR)); 4209 4210 alreadyCreated.link(&m_jit); 4190 4211 cellResult(resultGPR, node); 4191 4212 break; -
trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT64.cpp
r167433 r167591 4225 4225 case CreateArguments: { 4226 4226 JSValueOperand value(this, node->child1()); 4227 GPRTemporary scratch1(this); 4228 GPRTemporary scratch2(this); 4227 4229 GPRTemporary result(this, Reuse, value); 4228 4230 4229 4231 GPRReg valueGPR = value.gpr(); 4232 GPRReg scratchGPR1 = scratch1.gpr(); 4233 GPRReg scratchGPR2 = scratch2.gpr(); 4230 4234 GPRReg resultGPR = result.gpr(); 4231 4235 4232 4236 m_jit.move(valueGPR, resultGPR); 4233 4237 4234 JITCompiler::Jump notCreated = m_jit.branchTest64(JITCompiler::Zero, resultGPR);4235 4236 4238 if (node->origin.semantic.inlineCallFrame) { 4239 JITCompiler::Jump notCreated = m_jit.branchTest64(JITCompiler::Zero, resultGPR); 4237 4240 addSlowPathGenerator( 4238 4241 slowPathCall( 4239 4242 notCreated, this, operationCreateInlinedArguments, resultGPR, 4240 4243 node->origin.semantic.inlineCallFrame)); 4241 } else { 4244 cellResult(resultGPR, node); 4245 break; 4246 } 4247 4248 FunctionExecutable* executable = jsCast<FunctionExecutable*>(m_jit.graph().executableFor(node->origin.semantic)); 4249 if (m_jit.codeBlock()->hasSlowArguments() 4250 || executable->isStrictMode() 4251 || !executable->parameterCount()) { 4252 JITCompiler::Jump notCreated = m_jit.branchTest64(JITCompiler::Zero, resultGPR); 4242 4253 addSlowPathGenerator( 4243 4254 slowPathCall(notCreated, this, operationCreateArguments, resultGPR)); 4244 } 4245 4255 cellResult(resultGPR, node); 4256 break; 4257 } 4258 4259 JITCompiler::Jump alreadyCreated = m_jit.branchTest64(JITCompiler::NonZero, resultGPR); 4260 4261 MacroAssembler::JumpList slowPaths; 4262 emitAllocateArguments(resultGPR, scratchGPR1, scratchGPR2, slowPaths); 4263 addSlowPathGenerator( 4264 slowPathCall(slowPaths, this, operationCreateArguments, resultGPR)); 4265 4266 alreadyCreated.link(&m_jit); 4246 4267 cellResult(resultGPR, node); 4247 4268 break; -
trunk/Source/JavaScriptCore/runtime/Arguments.h
r164764 r167591 90 90 } 91 91 92 static ptrdiff_t offsetOfActivation() { return OBJECT_OFFSETOF(Arguments, m_activation); } 92 93 static ptrdiff_t offsetOfNumArguments() { return OBJECT_OFFSETOF(Arguments, m_numArguments); } 94 static ptrdiff_t offsetOfOverrodeLength() { return OBJECT_OFFSETOF(Arguments, m_overrodeLength); } 95 static ptrdiff_t offsetOfIsStrictMode() { return OBJECT_OFFSETOF(Arguments, m_isStrictMode); } 93 96 static ptrdiff_t offsetOfRegisters() { return OBJECT_OFFSETOF(Arguments, m_registers); } 97 static ptrdiff_t offsetOfRegisterArray() { return OBJECT_OFFSETOF(Arguments, m_registerArray); } 94 98 static ptrdiff_t offsetOfSlowArgumentData() { return OBJECT_OFFSETOF(Arguments, m_slowArgumentData); } 95 static ptrdiff_t offsetOfOverrodeLength() { return OBJECT_OFFSETOF(Arguments, m_overrodeLength); } 99 static ptrdiff_t offsetOfCallee() { return OBJECT_OFFSETOF(Arguments, m_callee); } 100 101 static size_t allocationSize(size_t inlineCapacity) 102 { 103 ASSERT_UNUSED(inlineCapacity, !inlineCapacity); 104 return sizeof(Arguments); 105 } 96 106 97 107 protected:
Note: See TracChangeset
for help on using the changeset viewer.
