Changeset 254788 in webkit
- Timestamp:
- Jan 17, 2020 7:24:31 PM (4 years ago)
- Location:
- trunk
- Files:
-
- 1 added
- 5 edited
-
JSTests/ChangeLog (modified) (1 diff)
-
JSTests/wasm/stress/dont-stack-overflow-in-air.js (added)
-
Source/JavaScriptCore/ChangeLog (modified) (1 diff)
-
Source/JavaScriptCore/b3/air/AirAllocateRegistersAndStackAndGenerateCode.cpp (modified) (10 diffs)
-
Source/JavaScriptCore/b3/air/AirAllocateRegistersAndStackAndGenerateCode.h (modified) (2 diffs)
-
Source/JavaScriptCore/b3/air/AirLiveness.h (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/JSTests/ChangeLog
r254783 r254788 1 2020-01-17 Saam Barati <sbarati@apple.com> 2 3 Air O0 should have better stack allocation 4 https://bugs.webkit.org/show_bug.cgi?id=206436 5 6 Reviewed by Tadeu Zagallo. 7 8 * wasm/stress/dont-stack-overflow-in-air.js: Added. 9 1 10 2020-01-17 Mark Lam <mark.lam@apple.com> 2 11 -
trunk/Source/JavaScriptCore/ChangeLog
r254787 r254788 1 2020-01-17 Saam Barati <sbarati@apple.com> 2 3 Air O0 should have better stack allocation 4 https://bugs.webkit.org/show_bug.cgi?id=206436 5 6 Reviewed by Tadeu Zagallo. 7 8 This patch adds a simple stack slot allocator to Air O0 to make code 9 use smaller stack frames. The huge stack frames from the old stack 10 allocator were leading to stack overflows in some programs. Before, 11 each Tmp got its own stack slot. The new allocator works similar to O0's 12 register allocator. This stack allocator linearizes the program and uses live 13 range end as an opportunity to place the stack slot on a free list of 14 available stack slots. This patch also fixes an issue in our linearization code 15 where the head of a block and the tail of another block would share the 16 same linearization index. This didn't matter for register allocation, but 17 does matter for the stack allocator. So "live at head", and "live at tail" 18 now get their own linearization index. 19 20 * b3/air/AirAllocateRegistersAndStackAndGenerateCode.cpp: 21 (JSC::B3::Air::GenerateAndAllocateRegisters::buildLiveRanges): 22 (JSC::B3::Air::GenerateAndAllocateRegisters::prepareForGeneration): 23 (JSC::B3::Air::GenerateAndAllocateRegisters::generate): 24 * b3/air/AirAllocateRegistersAndStackAndGenerateCode.h: 25 * b3/air/AirLiveness.h: 26 1 27 2020-01-17 David Kilzer <ddkilzer@apple.com> 2 28 -
trunk/Source/JavaScriptCore/b3/air/AirAllocateRegistersAndStackAndGenerateCode.cpp
r254087 r254788 85 85 m_liveRangeEnd[tmp] = m_globalInstIndex; 86 86 } 87 ++m_globalInstIndex; 87 88 for (Inst& inst : *block) { 88 89 inst.forEachTmpFast([&] (Tmp tmp) { … … 96 97 m_liveRangeEnd[tmp] = m_globalInstIndex; 97 98 } 99 ++m_globalInstIndex; 98 100 } 99 101 } … … 281 283 allocateEscapedStackSlots(m_code); 282 284 283 // Each Tmp gets its own stack slot. 284 auto createStackSlot = [&] (const Tmp& tmp) { 285 TmpData data; 286 data.spillSlot = m_code.addStackSlot(8, StackSlotKind::Spill); 287 data.reg = Reg(); 288 m_map[tmp] = data; 285 insertBlocksForFlushAfterTerminalPatchpoints(); 286 289 287 #if ASSERT_ENABLED 290 m_allTmps[tmp.bank()].append(tmp);291 #endif292 };293 294 288 m_code.forEachTmp([&] (Tmp tmp) { 295 289 ASSERT(!tmp.isReg()); 296 createStackSlot(tmp);290 m_allTmps[tmp.bank()].append(tmp); 297 291 }); 292 #endif 293 294 m_liveness = makeUnique<UnifiedTmpLiveness>(m_code); 295 296 { 297 buildLiveRanges(*m_liveness); 298 299 Vector<StackSlot*, 16> freeSlots; 300 Vector<StackSlot*, 4> toFree; 301 m_globalInstIndex = 0; 302 for (BasicBlock* block : m_code) { 303 auto assignStackSlotToTmp = [&] (Tmp tmp) { 304 if (tmp.isReg()) 305 return; 306 307 TmpData& data = m_map[tmp]; 308 if (data.spillSlot) { 309 if (m_liveRangeEnd[tmp] == m_globalInstIndex) 310 toFree.append(data.spillSlot); 311 return; 312 } 313 314 if (freeSlots.size()) 315 data.spillSlot = freeSlots.takeLast(); 316 else 317 data.spillSlot = m_code.addStackSlot(8, StackSlotKind::Spill); 318 data.reg = Reg(); 319 }; 320 321 auto flushToFreeList = [&] { 322 for (auto* stackSlot : toFree) 323 freeSlots.append(stackSlot); 324 toFree.clear(); 325 }; 326 327 for (Tmp tmp : m_liveness->liveAtHead(block)) 328 assignStackSlotToTmp(tmp); 329 flushToFreeList(); 330 331 ++m_globalInstIndex; 332 333 for (Inst& inst : *block) { 334 Vector<Tmp, 4> seenTmps; 335 inst.forEachTmpFast([&] (Tmp tmp) { 336 if (seenTmps.contains(tmp)) 337 return; 338 seenTmps.append(tmp); 339 assignStackSlotToTmp(tmp); 340 }); 341 342 flushToFreeList(); 343 ++m_globalInstIndex; 344 } 345 346 for (Tmp tmp : m_liveness->liveAtTail(block)) 347 assignStackSlotToTmp(tmp); 348 flushToFreeList(); 349 350 ++m_globalInstIndex; 351 } 352 } 298 353 299 354 m_allowedRegisters = RegisterSet(); … … 304 359 for (Reg reg : m_registers[bank]) { 305 360 m_allowedRegisters.set(reg); 306 createStackSlot(Tmp(reg)); 361 TmpData& data = m_map[Tmp(reg)]; 362 data.spillSlot = m_code.addStackSlot(8, StackSlotKind::Spill); 363 data.reg = Reg(); 307 364 } 308 365 }); … … 324 381 lowerStackArgs(m_code); 325 382 383 #if ASSERT_ENABLED 326 384 // Verify none of these passes add any tmps. 327 #if ASSERT_ENABLED328 385 forEachBank([&] (Bank bank) { 329 ASSERT(m_allTmps[bank].size() - m_registers[bank].size()== m_code.numTmps(bank));386 ASSERT(m_allTmps[bank].size() == m_code.numTmps(bank)); 330 387 }); 388 389 { 390 // Verify that lowerStackArgs didn't change Tmp liveness at the boundaries for the Tmps and Registers we model. 391 UnifiedTmpLiveness liveness(m_code); 392 for (BasicBlock* block : m_code) { 393 auto assertLivenessAreEqual = [&] (auto a, auto b) { 394 HashSet<Tmp> livenessA; 395 HashSet<Tmp> livenessB; 396 for (Tmp tmp : a) { 397 if (tmp.isReg() && isDisallowedRegister(tmp.reg())) 398 continue; 399 livenessA.add(tmp); 400 } 401 for (Tmp tmp : b) { 402 if (tmp.isReg() && isDisallowedRegister(tmp.reg())) 403 continue; 404 livenessB.add(tmp); 405 } 406 407 ASSERT(livenessA == livenessB); 408 }; 409 410 assertLivenessAreEqual(m_liveness->liveAtHead(block), liveness.liveAtHead(block)); 411 assertLivenessAreEqual(m_liveness->liveAtTail(block), liveness.liveAtTail(block)); 412 } 413 } 331 414 #endif 332 415 } … … 338 421 TimingScope timingScope("Air::generateAndAllocateRegisters"); 339 422 340 insertBlocksForFlushAfterTerminalPatchpoints();341 342 423 DisallowMacroScratchRegisterUsage disallowScratch(*m_jit); 343 424 344 UnifiedTmpLiveness liveness(m_code); 345 buildLiveRanges(liveness); 425 buildLiveRanges(*m_liveness); 346 426 347 427 IndexMap<BasicBlock*, IndexMap<Reg, Tmp>> currentAllocationMap(m_code.size()); … … 356 436 for (unsigned i = m_code.numEntrypoints(); i--;) { 357 437 BasicBlock* entrypoint = m_code.entrypoint(i).block(); 358 for (Tmp tmp : liveness.liveAtHead(entrypoint)) {438 for (Tmp tmp : m_liveness->liveAtHead(entrypoint)) { 359 439 if (tmp.isReg()) 360 440 currentAllocationMap[entrypoint][tmp.reg()] = tmp; … … 443 523 m_availableRegs[tmp.bank()].clear(reg); 444 524 } 525 526 ++m_globalInstIndex; 445 527 446 528 bool isReplayingSameInst = false; … … 674 756 } 675 757 if (!everySuccessorGetsOurRegisterState) { 676 for (Tmp tmp : liveness.liveAtTail(block)) {758 for (Tmp tmp : m_liveness->liveAtTail(block)) { 677 759 if (tmp.isReg() && isDisallowedRegister(tmp.reg())) 678 760 continue; … … 753 835 m_map[tmp].reg = Reg(); 754 836 } 837 838 ++m_globalInstIndex; 755 839 } 756 840 -
trunk/Source/JavaScriptCore/b3/air/AirAllocateRegistersAndStackAndGenerateCode.h
r254087 r254788 44 44 45 45 struct TmpData { 46 StackSlot* spillSlot ;46 StackSlot* spillSlot { nullptr }; 47 47 Reg reg; 48 48 }; … … 85 85 RegisterSet m_namedDefdRegs; 86 86 RegisterSet m_allowedRegisters; 87 std::unique_ptr<UnifiedTmpLiveness> m_liveness; 87 88 88 89 struct PatchSpillData { -
trunk/Source/JavaScriptCore/b3/air/AirLiveness.h
r218794 r254788 37 37 template<typename Adapter> 38 38 class Liveness : public WTF::Liveness<Adapter> { 39 WTF_MAKE_FAST_ALLOCATED; 39 40 public: 40 41 Liveness(Code& code)
Note: See TracChangeset
for help on using the changeset viewer.
