Changeset 90602 in webkit

Timestamp:

Jul 7, 2011 4:54:57 PM (13 years ago)

Author:

commit-queue@webkit.org

Message:

DFG JIT does not implement op_construct.
​https://bugs.webkit.org/show_bug.cgi?id=64066

Patch by Filip Pizlo <​fpizlo@apple.com> on 2011-07-07
Reviewed by Gavin Barraclough.

• dfg/DFGAliasTracker.h:

(JSC::DFG::AliasTracker::recordConstruct):

• dfg/DFGByteCodeParser.cpp:

(JSC::DFG::ByteCodeParser::addCall):
(JSC::DFG::ByteCodeParser::parseBlock):

• dfg/DFGJITCodeGenerator.cpp:

(JSC::DFG::JITCodeGenerator::emitCall):

• dfg/DFGNode.h:
• dfg/DFGNonSpeculativeJIT.cpp:

(JSC::DFG::NonSpeculativeJIT::compile):

• dfg/DFGOperations.cpp:
• dfg/DFGOperations.h:
• dfg/DFGRepatch.cpp:

(JSC::DFG::dfgLinkFor):

• dfg/DFGRepatch.h:
• dfg/DFGSpeculativeJIT.cpp:

(JSC::DFG::SpeculativeJIT::compile):

Location:

trunk/Source/JavaScriptCore

Files:

• ChangeLog (modified) (1 diff)
• dfg/DFGAliasTracker.h (modified) (1 diff)
• dfg/DFGByteCodeParser.cpp (modified) (2 diffs)
• dfg/DFGJITCodeGenerator.cpp (modified) (5 diffs)
• dfg/DFGNode.h (modified) (1 diff)
• dfg/DFGNonSpeculativeJIT.cpp (modified) (1 diff)
• dfg/DFGOperations.cpp (modified) (6 diffs)
• dfg/DFGOperations.h (modified) (2 diffs)
• dfg/DFGRepatch.cpp (modified) (2 diffs)
• dfg/DFGRepatch.h (modified) (1 diff)
• dfg/DFGSpeculativeJIT.cpp (modified) (1 diff)

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2011-07-07  Filip Pizlo  <fpizlo@apple.com>
+
+        DFG JIT does not implement op_construct.
+        https://bugs.webkit.org/show_bug.cgi?id=64066
+
+        Reviewed by Gavin Barraclough.
+
+        * dfg/DFGAliasTracker.h:
+        (JSC::DFG::AliasTracker::recordConstruct):
+        * dfg/DFGByteCodeParser.cpp:
+        (JSC::DFG::ByteCodeParser::addCall):
+        (JSC::DFG::ByteCodeParser::parseBlock):
+        * dfg/DFGJITCodeGenerator.cpp:
+        (JSC::DFG::JITCodeGenerator::emitCall):
+        * dfg/DFGNode.h:
+        * dfg/DFGNonSpeculativeJIT.cpp:
+        (JSC::DFG::NonSpeculativeJIT::compile):
+        * dfg/DFGOperations.cpp:
+        * dfg/DFGOperations.h:
+        * dfg/DFGRepatch.cpp:
+        (JSC::DFG::dfgLinkFor):
+        * dfg/DFGRepatch.h:
+        * dfg/DFGSpeculativeJIT.cpp:
+        (JSC::DFG::SpeculativeJIT::compile):
+
 2011-07-07  Filip Pizlo  <fpizlo@apple.com>
 

trunk/Source/JavaScriptCore/dfg/DFGAliasTracker.h

@@ -108 +108 @@
     }
 
+    void recordConstruct(NodeIndex construct)
+    {
+        ASSERT_UNUSED(construct, m_graph[construct].op == Construct);
+        m_candidateAliasGetByVal = NoNode;
+    }
+
 private:
     // This method returns true for arguments:

trunk/Source/JavaScriptCore/dfg/DFGByteCodeParser.cpp

@@ -411 +411 @@
         m_graph.m_varArgChildren.append(child);
         m_numPassedVarArgs++;
+    }
+    
+    NodeIndex addCall(Interpreter* interpreter, Instruction* currentInstruction, NodeType op)
+    {
+        addVarArgChild(get(currentInstruction[1].u.operand));
+        int argCount = currentInstruction[2].u.operand;
+        int registerOffset = currentInstruction[3].u.operand;
+        int firstArg = registerOffset - argCount - RegisterFile::CallFrameHeaderSize;
+        for (int argIdx = firstArg; argIdx < firstArg + argCount; argIdx++)
+            addVarArgChild(get(argIdx));
+        NodeIndex call = addToGraph(Node::VarArg, op);
+        Instruction* putInstruction = currentInstruction + OPCODE_LENGTH(op_call);
+        if (interpreter->getOpcodeID(putInstruction->u.opcode) == op_call_put_result)
+            set(putInstruction[1].u.operand, call);
+        if (RegisterFile::CallFrameHeaderSize + (unsigned)argCount > m_parameterSlots)
+            m_parameterSlots = RegisterFile::CallFrameHeaderSize + argCount;
+        return call;
     }
 
@@ -1102 +1119 @@
             
         case op_call: {
-            addVarArgChild(get(currentInstruction[1].u.operand));
-            int argCount = currentInstruction[2].u.operand;
-            int registerOffset = currentInstruction[3].u.operand;
-            int firstArg = registerOffset - argCount - RegisterFile::CallFrameHeaderSize;
-            for (int argIdx = firstArg; argIdx < firstArg + argCount; argIdx++)
-                addVarArgChild(get(argIdx));
-            NodeIndex call = addToGraph(Node::VarArg, Call);
+            NodeIndex call = addCall(interpreter, currentInstruction, Call);
             aliases.recordCall(call);
-            Instruction* putInstruction = currentInstruction + OPCODE_LENGTH(op_call);
-            if (interpreter->getOpcodeID(putInstruction->u.opcode) == op_call_put_result)
-                set(putInstruction[1].u.operand, call);
-            if (RegisterFile::CallFrameHeaderSize + (unsigned)argCount > m_parameterSlots)
-                m_parameterSlots = RegisterFile::CallFrameHeaderSize + argCount;
             NEXT_OPCODE(op_call);
+        }
+            
+        case op_construct: {
+            NodeIndex construct = addCall(interpreter, currentInstruction, Construct);
+            aliases.recordConstruct(construct);
+            NEXT_OPCODE(op_construct);
         }
             
         case op_call_put_result: {
-#if !ASSERT_DISABLED
-            Instruction* callInstruction = currentInstruction - OPCODE_LENGTH(op_call);
-            ASSERT(interpreter->getOpcodeID(callInstruction->u.opcode) == op_call);
-#endif
             NEXT_OPCODE(op_call_put_result);
         }

trunk/Source/JavaScriptCore/dfg/DFGJITCodeGenerator.cpp

@@ -471 +471 @@
 void JITCodeGenerator::emitCall(Node& node)
 {
+    P_DFGOperation_E slowCallFunction;
+    bool isCall;
+    
+    if (node.op == Call) {
+        slowCallFunction = operationLinkCall;
+        isCall = true;
+    } else {
+        ASSERT(node.op == Construct);
+        slowCallFunction = operationLinkConstruct;
+        isCall = false;
+    }
+    
     NodeIndex calleeNodeIndex = m_jit.graph().m_varArgChildren[node.firstChild()];
     JSValueOperand callee(this, calleeNodeIndex);
@@ -502 +514 @@
     }
     
-    switch (node.op) {
-    case Call:
-        m_jit.storePtr(calleeGPR, addressOfCallData(RegisterFile::Callee));
-        break;
-        
-    default:
-        ASSERT_NOT_REACHED();
-    }
+    m_jit.storePtr(calleeGPR, addressOfCallData(RegisterFile::Callee));
     
     flushRegisters();
@@ -519 +524 @@
     JITCompiler::Jump slowPath;
     
-    switch (node.op) {
-    case Call:
-        slowPath = m_jit.branchPtrWithPatch(MacroAssembler::NotEqual, calleeGPR, targetToCheck, MacroAssembler::TrustedImmPtr(JSValue::encode(JSValue())));
-        m_jit.loadPtr(MacroAssembler::Address(calleeGPR, OBJECT_OFFSETOF(JSFunction, m_scopeChain)), resultGPR);
-        m_jit.storePtr(resultGPR, addressOfCallData(RegisterFile::ScopeChain));
-        break;
-        
-    default:
-        ASSERT_NOT_REACHED();
-    }
+    slowPath = m_jit.branchPtrWithPatch(MacroAssembler::NotEqual, calleeGPR, targetToCheck, MacroAssembler::TrustedImmPtr(JSValue::encode(JSValue())));
+    m_jit.loadPtr(MacroAssembler::Address(calleeGPR, OBJECT_OFFSETOF(JSFunction, m_scopeChain)), resultGPR);
+    m_jit.storePtr(resultGPR, addressOfCallData(RegisterFile::ScopeChain));
 
     m_jit.addPtr(Imm32(m_jit.codeBlock()->m_numCalleeRegisters * sizeof(Register)), GPRInfo::callFrameRegister);
@@ -540 +538 @@
     
     m_jit.addPtr(Imm32(m_jit.codeBlock()->m_numCalleeRegisters * sizeof(Register)), GPRInfo::callFrameRegister, GPRInfo::argumentGPR0);
-    JITCompiler::Call slowCall = m_jit.appendCallWithFastExceptionCheck(operationLinkCall, m_jit.graph()[m_compileIndex].exceptionInfo);
+    JITCompiler::Call slowCall = m_jit.appendCallWithFastExceptionCheck(slowCallFunction, m_jit.graph()[m_compileIndex].exceptionInfo);
     m_jit.move(Imm32(numArgs), GPRInfo::regT1);
     m_jit.addPtr(Imm32(m_jit.codeBlock()->m_numCalleeRegisters * sizeof(Register)), GPRInfo::callFrameRegister);
@@ -551 +549 @@
     jsValueResult(resultGPR, m_compileIndex, DataFormatJS, UseChildrenCalledExplicitly);
     
-    m_jit.addJSCall(fastCall, slowCall, targetToCheck, true, m_jit.graph()[m_compileIndex].exceptionInfo);
+    m_jit.addJSCall(fastCall, slowCall, targetToCheck, isCall, m_jit.graph()[m_compileIndex].exceptionInfo);
 }
 

trunk/Source/JavaScriptCore/dfg/DFGNode.h

@@ -143 +143 @@
     /* Calls. */\
     macro(Call, NodeResultJS | NodeMustGenerate | NodeHasVarArgs) \
+    macro(Construct, NodeResultJS | NodeMustGenerate | NodeHasVarArgs) \
     \
     /* Nodes for misc operations. */\

trunk/Source/JavaScriptCore/dfg/DFGNonSpeculativeJIT.cpp

@@ -1069 +1069 @@
         
     case Call:
+    case Construct:
         emitCall(node);
         break;

trunk/Source/JavaScriptCore/dfg/DFGOperations.cpp

@@ -432 +432 @@
 }
 
-static void* handleHostCall(ExecState* execCallee, JSValue callee)
+static void* handleHostCall(ExecState* execCallee, JSValue callee, CodeSpecializationKind kind)
 {
     ExecState* exec = execCallee->callerFrame();
     JSGlobalData* globalData = &exec->globalData();
-    CallData callData;
-    CallType callType = getCallData(callee, callData);
-    
-    ASSERT(callType != CallTypeJS);
-    
-    if (callType == CallTypeHost) {
-        if (!globalData->interpreter->registerFile().grow(execCallee->registers())) {
-            globalData->exception = createStackOverflowError(exec);
-            return 0;
-        }
+    if (kind == CodeForCall) {
+        CallData callData;
+        CallType callType = getCallData(callee, callData);
+    
+        ASSERT(callType != CallTypeJS);
+    
+        if (callType == CallTypeHost) {
+            if (!globalData->interpreter->registerFile().grow(execCallee->registers())) {
+                globalData->exception = createStackOverflowError(exec);
+                return 0;
+            }
         
-        execCallee->setScopeChain(exec->scopeChain());
+            execCallee->setScopeChain(exec->scopeChain());
         
-        globalData->hostCallReturnValue = JSValue::decode(callData.native.function(execCallee));
+            globalData->hostCallReturnValue = JSValue::decode(callData.native.function(execCallee));
         
-        if (globalData->exception)
-            return 0;
-        return reinterpret_cast<void*>(getHostCallReturnValue);
-    }
-    
-    ASSERT(callType == CallTypeNone);
+            if (globalData->exception)
+                return 0;
+            return reinterpret_cast<void*>(getHostCallReturnValue);
+        }
+    
+        ASSERT(callType == CallTypeNone);
+    } else {
+        ASSERT(kind == CodeForConstruct);
+        
+        ConstructData constructData;
+        ConstructType constructType = getConstructData(callee, constructData);
+        
+        ASSERT(constructType = ConstructTypeJS);
+        
+        if (constructType == ConstructTypeHost) {
+            if (!globalData->interpreter->registerFile().grow(execCallee->registers())) {
+                globalData->exception = createStackOverflowError(exec);
+                return 0;
+            }
+            
+            execCallee->setScopeChain(exec->scopeChain());
+            
+            globalData->hostCallReturnValue = JSValue::decode(constructData.native.function(execCallee));
+            
+            if (globalData->exception)
+                return 0;
+            return reinterpret_cast<void*>(getHostCallReturnValue);
+        }
+        
+        ASSERT(constructType == ConstructTypeNone);
+    }
     exec->globalData().exception = createNotAFunctionError(exec, callee);
     return 0;
 }
 
-void* operationLinkCallWithReturnAddress(ExecState*, ReturnAddressPtr);
-FUNCTION_WRAPPER_WITH_ARG2_RETURN_ADDRESS(operationLinkCall);
-void* operationLinkCallWithReturnAddress(ExecState* execCallee, ReturnAddressPtr returnAddress)
+inline void* linkFor(ExecState* execCallee, ReturnAddressPtr returnAddress, CodeSpecializationKind kind)
 {
     ExecState* exec = execCallee->callerFrame();
@@ -470 +494 @@
     JSCell* calleeAsFunctionCell = getJSFunction(*globalData, calleeAsValue);
     if (!calleeAsFunctionCell)
-        return handleHostCall(execCallee, calleeAsValue);
+        return handleHostCall(execCallee, calleeAsValue, kind);
     JSFunction* callee = asFunction(calleeAsFunctionCell);
     ExecutableBase* executable = callee->executable();
@@ -477 +501 @@
     CodeBlock* codeBlock = 0;
     if (executable->isHostFunction())
-        codePtr = executable->generatedJITCodeForCall().addressForCall();
+        codePtr = executable->generatedJITCodeFor(kind).addressForCall();
     else {
         FunctionExecutable* functionExecutable = static_cast<FunctionExecutable*>(executable);
-        JSObject* error = functionExecutable->compileForCall(exec, callee->scope());
+        JSObject* error = functionExecutable->compileFor(exec, callee->scope(), kind);
         if (error) {
             globalData->exception = createStackOverflowError(exec);
             return 0;
         }
-        codeBlock = &functionExecutable->generatedBytecodeForCall();
+        codeBlock = &functionExecutable->generatedBytecodeFor(kind);
         if (execCallee->argumentCountIncludingThis() == static_cast<size_t>(codeBlock->m_numParameters))
-            codePtr = functionExecutable->generatedJITCodeForCall().addressForCall();
+            codePtr = functionExecutable->generatedJITCodeFor(kind).addressForCall();
         else
-            codePtr = functionExecutable->generatedJITCodeForCallWithArityCheck();
+            codePtr = functionExecutable->generatedJITCodeWithArityCheckFor(kind);
         execCallee->setScopeChain(callee->scope());
     }
@@ -496 +520 @@
         callLinkInfo.setSeen();
     else
-        dfgLinkCall(execCallee, callLinkInfo, codeBlock, callee, codePtr);
+        dfgLinkFor(execCallee, callLinkInfo, codeBlock, callee, codePtr, kind);
     return codePtr.executableAddress();
 }
 
-void* operationVirtualCall(ExecState* execCallee)
+void* operationLinkCallWithReturnAddress(ExecState*, ReturnAddressPtr);
+FUNCTION_WRAPPER_WITH_ARG2_RETURN_ADDRESS(operationLinkCall);
+void* operationLinkCallWithReturnAddress(ExecState* execCallee, ReturnAddressPtr returnAddress)
+{
+    return linkFor(execCallee, returnAddress, CodeForCall);
+}
+
+void* operationLinkConstructWithReturnAddress(ExecState*, ReturnAddressPtr);
+FUNCTION_WRAPPER_WITH_ARG2_RETURN_ADDRESS(operationLinkConstruct);
+void* operationLinkConstructWithReturnAddress(ExecState* execCallee, ReturnAddressPtr returnAddress)
+{
+    return linkFor(execCallee, returnAddress, CodeForConstruct);
+}
+
+inline void* virtualFor(ExecState* execCallee, CodeSpecializationKind kind)
 {
     ExecState* exec = execCallee->callerFrame();
@@ -507 +545 @@
     JSCell* calleeAsFunctionCell = getJSFunction(*globalData, calleeAsValue);
     if (UNLIKELY(!calleeAsFunctionCell))
-        return handleHostCall(execCallee, calleeAsValue);
+        return handleHostCall(execCallee, calleeAsValue, kind);
     
     JSFunction* function = asFunction(calleeAsFunctionCell);
     ExecutableBase* executable = function->executable();
-    if (UNLIKELY(!executable->hasJITCodeForCall())) {
+    if (UNLIKELY(!executable->hasJITCodeFor(kind))) {
         FunctionExecutable* functionExecutable = static_cast<FunctionExecutable*>(executable);
         JSObject* error = functionExecutable->compileForCall(exec, function->scope());
@@ -520 +558 @@
     }
     execCallee->setScopeChain(function->scopeUnchecked());
-    return executable->generatedJITCodeForCallWithArityCheck().executableAddress();
+    return executable->generatedJITCodeWithArityCheckFor(kind).executableAddress();
+}
+
+void* operationVirtualCall(ExecState* execCallee)
+{
+    return virtualFor(execCallee, CodeForCall);
+}
+
+void* operationVirtualConstruct(ExecState* execCallee)
+{
+    return virtualFor(execCallee, CodeForConstruct);
 }
 

trunk/Source/JavaScriptCore/dfg/DFGOperations.h

@@ -49 +49 @@
 typedef void (*V_DFGOperation_EJJI)(ExecState*, EncodedJSValue, EncodedJSValue, Identifier*);
 typedef double (*D_DFGOperation_DD)(double, double);
+typedef void *(*P_DFGOperation_E)(ExecState*);
 
 // These routines are provide callbacks out to C++ implementations of operations too complex to JIT.
@@ -84 +85 @@
 void* operationVirtualCall(ExecState*);
 void* operationLinkCall(ExecState*);
+void* operationVirtualConstruct(ExecState*);
+void* operationLinkConstruct(ExecState*);
 
 // This method is used to lookup an exception hander, keyed by faultLocation, which is

trunk/Source/JavaScriptCore/dfg/DFGRepatch.cpp

@@ -514 +514 @@
 }
 
-void dfgLinkCall(ExecState* exec, CallLinkInfo& callLinkInfo, CodeBlock* calleeCodeBlock, JSFunction* callee, MacroAssemblerCodePtr codePtr)
+void dfgLinkFor(ExecState* exec, CallLinkInfo& callLinkInfo, CodeBlock* calleeCodeBlock, JSFunction* callee, MacroAssemblerCodePtr codePtr, CodeSpecializationKind kind)
 {
     CodeBlock* callerCodeBlock = exec->callerFrame()->codeBlock();
@@ -526 +526 @@
     }
     
-    repatchBuffer.relink(CodeLocationCall(callLinkInfo.callReturnLocation), operationVirtualCall);
+    if (kind == CodeForCall) {
+        repatchBuffer.relink(CodeLocationCall(callLinkInfo.callReturnLocation), operationVirtualCall);
+        return;
+    }
+    ASSERT(kind == CodeForConstruct);
+    repatchBuffer.relink(CodeLocationCall(callLinkInfo.callReturnLocation), operationVirtualConstruct);
 }
 

trunk/Source/JavaScriptCore/dfg/DFGRepatch.h

@@ -38 +38 @@
 void dfgBuildGetByIDList(ExecState*, JSValue, const Identifier&, const PropertySlot&, StructureStubInfo&);
 void dfgRepatchPutByID(ExecState*, JSValue, const Identifier&, const PutPropertySlot&, StructureStubInfo&, PutKind);
-void dfgLinkCall(ExecState*, CallLinkInfo&, CodeBlock*, JSFunction* callee, MacroAssemblerCodePtr);
+void dfgLinkFor(ExecState*, CallLinkInfo&, CodeBlock*, JSFunction* callee, MacroAssemblerCodePtr, CodeSpecializationKind);
 
 } } // namespace JSC::DFG

trunk/Source/JavaScriptCore/dfg/DFGSpeculativeJIT.cpp

@@ -1146 +1146 @@
         
     case Call:
+    case Construct:
         emitCall(node);
         break;