| // Copyright 2012 the V8 project authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "src/code-stubs.h" |
| |
| #include <sstream> |
| |
| #include "src/arguments.h" |
| #include "src/assembler-inl.h" |
| #include "src/ast/ast.h" |
| #include "src/bootstrapper.h" |
| #include "src/code-factory.h" |
| #include "src/code-stub-assembler.h" |
| #include "src/code-stubs-utils.h" |
| #include "src/counters.h" |
| #include "src/factory.h" |
| #include "src/gdb-jit.h" |
| #include "src/heap/heap-inl.h" |
| #include "src/ic/ic-stats.h" |
| #include "src/ic/ic.h" |
| #include "src/macro-assembler.h" |
| #include "src/objects-inl.h" |
| #include "src/tracing/tracing-category-observer.h" |
| |
| namespace v8 { |
| namespace internal { |
| |
| using compiler::CodeAssemblerState; |
| |
| RUNTIME_FUNCTION(UnexpectedStubMiss) { |
| FATAL("Unexpected deopt of a stub"); |
| return Smi::kZero; |
| } |
| |
| CodeStubDescriptor::CodeStubDescriptor(CodeStub* stub) |
| : isolate_(stub->isolate()), |
| call_descriptor_(stub->GetCallInterfaceDescriptor()), |
| stack_parameter_count_(no_reg), |
| hint_stack_parameter_count_(-1), |
| function_mode_(NOT_JS_FUNCTION_STUB_MODE), |
| deoptimization_handler_(NULL), |
| miss_handler_(), |
| has_miss_handler_(false) { |
| stub->InitializeDescriptor(this); |
| } |
| |
| CodeStubDescriptor::CodeStubDescriptor(Isolate* isolate, uint32_t stub_key) |
| : isolate_(isolate), |
| stack_parameter_count_(no_reg), |
| hint_stack_parameter_count_(-1), |
| function_mode_(NOT_JS_FUNCTION_STUB_MODE), |
| deoptimization_handler_(NULL), |
| miss_handler_(), |
| has_miss_handler_(false) { |
| CodeStub::InitializeDescriptor(isolate, stub_key, this); |
| } |
| |
| |
| void CodeStubDescriptor::Initialize(Address deoptimization_handler, |
| int hint_stack_parameter_count, |
| StubFunctionMode function_mode) { |
| deoptimization_handler_ = deoptimization_handler; |
| hint_stack_parameter_count_ = hint_stack_parameter_count; |
| function_mode_ = function_mode; |
| } |
| |
| |
| void CodeStubDescriptor::Initialize(Register stack_parameter_count, |
| Address deoptimization_handler, |
| int hint_stack_parameter_count, |
| StubFunctionMode function_mode) { |
| Initialize(deoptimization_handler, hint_stack_parameter_count, function_mode); |
| stack_parameter_count_ = stack_parameter_count; |
| } |
| |
| |
| bool CodeStub::FindCodeInCache(Code** code_out) { |
| UnseededNumberDictionary* stubs = isolate()->heap()->code_stubs(); |
| int index = stubs->FindEntry(isolate(), GetKey()); |
| if (index != UnseededNumberDictionary::kNotFound) { |
| *code_out = Code::cast(stubs->ValueAt(index)); |
| return true; |
| } |
| return false; |
| } |
| |
| |
| void CodeStub::RecordCodeGeneration(Handle<Code> code) { |
| std::ostringstream os; |
| os << *this; |
| PROFILE(isolate(), |
| CodeCreateEvent(CodeEventListener::STUB_TAG, |
| AbstractCode::cast(*code), os.str().c_str())); |
| Counters* counters = isolate()->counters(); |
| counters->total_stubs_code_size()->Increment(code->instruction_size()); |
| #ifdef DEBUG |
| code->VerifyEmbeddedObjects(); |
| #endif |
| } |
| |
| |
| Code::Kind CodeStub::GetCodeKind() const { |
| return Code::STUB; |
| } |
| |
| |
| Code::Flags CodeStub::GetCodeFlags() const { |
| return Code::ComputeFlags(GetCodeKind(), GetExtraICState()); |
| } |
| |
| Handle<Code> CodeStub::GetCodeCopy(const FindAndReplacePattern& pattern) { |
| Handle<Code> ic = GetCode(); |
| ic = isolate()->factory()->CopyCode(ic); |
| ic->FindAndReplace(pattern); |
| RecordCodeGeneration(ic); |
| return ic; |
| } |
| |
| void CodeStub::DeleteStubFromCacheForTesting() { |
| Heap* heap = isolate_->heap(); |
| Handle<UnseededNumberDictionary> dict(heap->code_stubs()); |
| dict = UnseededNumberDictionary::DeleteKey(dict, GetKey()); |
| heap->SetRootCodeStubs(*dict); |
| } |
| |
| Handle<Code> PlatformCodeStub::GenerateCode() { |
| Factory* factory = isolate()->factory(); |
| |
| // Generate the new code. |
| MacroAssembler masm(isolate(), NULL, 256, CodeObjectRequired::kYes); |
| |
| { |
| // Update the static counter each time a new code stub is generated. |
| isolate()->counters()->code_stubs()->Increment(); |
| |
| // Generate the code for the stub. |
| masm.set_generating_stub(true); |
| // TODO(yangguo): remove this once we can serialize IC stubs. |
| masm.enable_serializer(); |
| NoCurrentFrameScope scope(&masm); |
| Generate(&masm); |
| } |
| |
| // Create the code object. |
| CodeDesc desc; |
| masm.GetCode(&desc); |
| // Copy the generated code into a heap object. |
| Code::Flags flags = Code::ComputeFlags(GetCodeKind(), GetExtraICState()); |
| Handle<Code> new_object = factory->NewCode( |
| desc, flags, masm.CodeObject(), NeedsImmovableCode()); |
| return new_object; |
| } |
| |
| |
| Handle<Code> CodeStub::GetCode() { |
| Heap* heap = isolate()->heap(); |
| Code* code; |
| if (UseSpecialCache() ? FindCodeInSpecialCache(&code) |
| : FindCodeInCache(&code)) { |
| DCHECK(GetCodeKind() == code->kind()); |
| return Handle<Code>(code); |
| } |
| |
| { |
| HandleScope scope(isolate()); |
| |
| Handle<Code> new_object = GenerateCode(); |
| new_object->set_stub_key(GetKey()); |
| FinishCode(new_object); |
| RecordCodeGeneration(new_object); |
| |
| #ifdef ENABLE_DISASSEMBLER |
| if (FLAG_print_code_stubs) { |
| CodeTracer::Scope trace_scope(isolate()->GetCodeTracer()); |
| OFStream os(trace_scope.file()); |
| std::ostringstream name; |
| name << *this; |
| new_object->Disassemble(name.str().c_str(), os); |
| os << "\n"; |
| } |
| #endif |
| |
| if (UseSpecialCache()) { |
| AddToSpecialCache(new_object); |
| } else { |
| // Update the dictionary and the root in Heap. |
| Handle<UnseededNumberDictionary> dict = |
| UnseededNumberDictionary::AtNumberPut( |
| Handle<UnseededNumberDictionary>(heap->code_stubs()), |
| GetKey(), |
| new_object); |
| heap->SetRootCodeStubs(*dict); |
| } |
| code = *new_object; |
| } |
| |
| Activate(code); |
| DCHECK(!NeedsImmovableCode() || Heap::IsImmovable(code) || |
| heap->code_space()->FirstPage()->Contains(code->address())); |
| return Handle<Code>(code, isolate()); |
| } |
| |
| |
| const char* CodeStub::MajorName(CodeStub::Major major_key) { |
| switch (major_key) { |
| #define DEF_CASE(name) case name: return #name "Stub"; |
| CODE_STUB_LIST(DEF_CASE) |
| #undef DEF_CASE |
| case NoCache: |
| return "<NoCache>Stub"; |
| case NUMBER_OF_IDS: |
| UNREACHABLE(); |
| return NULL; |
| } |
| return NULL; |
| } |
| |
| |
| void CodeStub::PrintBaseName(std::ostream& os) const { // NOLINT |
| os << MajorName(MajorKey()); |
| } |
| |
| |
| void CodeStub::PrintName(std::ostream& os) const { // NOLINT |
| PrintBaseName(os); |
| PrintState(os); |
| } |
| |
| |
| void CodeStub::Dispatch(Isolate* isolate, uint32_t key, void** value_out, |
| DispatchedCall call) { |
| switch (MajorKeyFromKey(key)) { |
| #define DEF_CASE(NAME) \ |
| case NAME: { \ |
| NAME##Stub stub(key, isolate); \ |
| CodeStub* pstub = &stub; \ |
| call(pstub, value_out); \ |
| break; \ |
| } |
| CODE_STUB_LIST(DEF_CASE) |
| #undef DEF_CASE |
| case NUMBER_OF_IDS: |
| case NoCache: |
| UNREACHABLE(); |
| break; |
| } |
| } |
| |
| |
| static void InitializeDescriptorDispatchedCall(CodeStub* stub, |
| void** value_out) { |
| CodeStubDescriptor* descriptor_out = |
| reinterpret_cast<CodeStubDescriptor*>(value_out); |
| stub->InitializeDescriptor(descriptor_out); |
| descriptor_out->set_call_descriptor(stub->GetCallInterfaceDescriptor()); |
| } |
| |
| |
| void CodeStub::InitializeDescriptor(Isolate* isolate, uint32_t key, |
| CodeStubDescriptor* desc) { |
| void** value_out = reinterpret_cast<void**>(desc); |
| Dispatch(isolate, key, value_out, &InitializeDescriptorDispatchedCall); |
| } |
| |
| |
| void CodeStub::GetCodeDispatchCall(CodeStub* stub, void** value_out) { |
| Handle<Code>* code_out = reinterpret_cast<Handle<Code>*>(value_out); |
| // Code stubs with special cache cannot be recreated from stub key. |
| *code_out = stub->UseSpecialCache() ? Handle<Code>() : stub->GetCode(); |
| } |
| |
| |
| MaybeHandle<Code> CodeStub::GetCode(Isolate* isolate, uint32_t key) { |
| HandleScope scope(isolate); |
| Handle<Code> code; |
| void** value_out = reinterpret_cast<void**>(&code); |
| Dispatch(isolate, key, value_out, &GetCodeDispatchCall); |
| return scope.CloseAndEscape(code); |
| } |
| |
| |
| // static |
| void BinaryOpICStub::GenerateAheadOfTime(Isolate* isolate) { |
| if (FLAG_minimal) return; |
| // Generate the uninitialized versions of the stub. |
| for (int op = Token::BIT_OR; op <= Token::MOD; ++op) { |
| BinaryOpICStub stub(isolate, static_cast<Token::Value>(op)); |
| stub.GetCode(); |
| } |
| |
| // Generate special versions of the stub. |
| BinaryOpICState::GenerateAheadOfTime(isolate, &GenerateAheadOfTime); |
| } |
| |
| |
| void BinaryOpICStub::PrintState(std::ostream& os) const { // NOLINT |
| os << state(); |
| } |
| |
| |
| // static |
| void BinaryOpICStub::GenerateAheadOfTime(Isolate* isolate, |
| const BinaryOpICState& state) { |
| if (FLAG_minimal) return; |
| BinaryOpICStub stub(isolate, state); |
| stub.GetCode(); |
| } |
| |
| |
| // static |
| void BinaryOpICWithAllocationSiteStub::GenerateAheadOfTime(Isolate* isolate) { |
| // Generate special versions of the stub. |
| BinaryOpICState::GenerateAheadOfTime(isolate, &GenerateAheadOfTime); |
| } |
| |
| |
| void BinaryOpICWithAllocationSiteStub::PrintState( |
| std::ostream& os) const { // NOLINT |
| os << state(); |
| } |
| |
| |
| // static |
| void BinaryOpICWithAllocationSiteStub::GenerateAheadOfTime( |
| Isolate* isolate, const BinaryOpICState& state) { |
| if (state.CouldCreateAllocationMementos()) { |
| BinaryOpICWithAllocationSiteStub stub(isolate, state); |
| stub.GetCode(); |
| } |
| } |
| |
| void StringAddStub::PrintBaseName(std::ostream& os) const { // NOLINT |
| os << "StringAddStub_" << flags() << "_" << pretenure_flag(); |
| } |
| |
| TF_STUB(StringAddStub, CodeStubAssembler) { |
| StringAddFlags flags = stub->flags(); |
| PretenureFlag pretenure_flag = stub->pretenure_flag(); |
| |
| Node* left = Parameter(Descriptor::kLeft); |
| Node* right = Parameter(Descriptor::kRight); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| if ((flags & STRING_ADD_CHECK_LEFT) != 0) { |
| DCHECK((flags & STRING_ADD_CONVERT) != 0); |
| // TODO(danno): The ToString and JSReceiverToPrimitive below could be |
| // combined to avoid duplicate smi and instance type checks. |
| left = ToString(context, JSReceiverToPrimitive(context, left)); |
| } |
| if ((flags & STRING_ADD_CHECK_RIGHT) != 0) { |
| DCHECK((flags & STRING_ADD_CONVERT) != 0); |
| // TODO(danno): The ToString and JSReceiverToPrimitive below could be |
| // combined to avoid duplicate smi and instance type checks. |
| right = ToString(context, JSReceiverToPrimitive(context, right)); |
| } |
| |
| if ((flags & STRING_ADD_CHECK_BOTH) == 0) { |
| CodeStubAssembler::AllocationFlag allocation_flags = |
| (pretenure_flag == TENURED) ? CodeStubAssembler::kPretenured |
| : CodeStubAssembler::kNone; |
| Return(StringAdd(context, left, right, allocation_flags)); |
| } else { |
| Callable callable = CodeFactory::StringAdd(isolate(), STRING_ADD_CHECK_NONE, |
| pretenure_flag); |
| TailCallStub(callable, context, left, right); |
| } |
| } |
| |
| InlineCacheState CompareICStub::GetICState() const { |
| CompareICState::State state = Max(left(), right()); |
| switch (state) { |
| case CompareICState::UNINITIALIZED: |
| return ::v8::internal::UNINITIALIZED; |
| case CompareICState::BOOLEAN: |
| case CompareICState::SMI: |
| case CompareICState::NUMBER: |
| case CompareICState::INTERNALIZED_STRING: |
| case CompareICState::STRING: |
| case CompareICState::UNIQUE_NAME: |
| case CompareICState::RECEIVER: |
| case CompareICState::KNOWN_RECEIVER: |
| return MONOMORPHIC; |
| case CompareICState::GENERIC: |
| return ::v8::internal::GENERIC; |
| } |
| UNREACHABLE(); |
| return ::v8::internal::UNINITIALIZED; |
| } |
| |
| |
| Condition CompareICStub::GetCondition() const { |
| return CompareIC::ComputeCondition(op()); |
| } |
| |
| |
| void CompareICStub::Generate(MacroAssembler* masm) { |
| switch (state()) { |
| case CompareICState::UNINITIALIZED: |
| GenerateMiss(masm); |
| break; |
| case CompareICState::BOOLEAN: |
| GenerateBooleans(masm); |
| break; |
| case CompareICState::SMI: |
| GenerateSmis(masm); |
| break; |
| case CompareICState::NUMBER: |
| GenerateNumbers(masm); |
| break; |
| case CompareICState::STRING: |
| GenerateStrings(masm); |
| break; |
| case CompareICState::INTERNALIZED_STRING: |
| GenerateInternalizedStrings(masm); |
| break; |
| case CompareICState::UNIQUE_NAME: |
| GenerateUniqueNames(masm); |
| break; |
| case CompareICState::RECEIVER: |
| GenerateReceivers(masm); |
| break; |
| case CompareICState::KNOWN_RECEIVER: |
| DCHECK(*known_map_ != NULL); |
| GenerateKnownReceivers(masm); |
| break; |
| case CompareICState::GENERIC: |
| GenerateGeneric(masm); |
| break; |
| } |
| } |
| |
| Handle<Code> TurboFanCodeStub::GenerateCode() { |
| const char* name = CodeStub::MajorName(MajorKey()); |
| Zone zone(isolate()->allocator(), ZONE_NAME); |
| CallInterfaceDescriptor descriptor(GetCallInterfaceDescriptor()); |
| compiler::CodeAssemblerState state(isolate(), &zone, descriptor, |
| GetCodeFlags(), name); |
| GenerateAssembly(&state); |
| return compiler::CodeAssembler::GenerateCode(&state); |
| } |
| |
| TF_STUB(ElementsTransitionAndStoreStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* key = Parameter(Descriptor::kName); |
| Node* value = Parameter(Descriptor::kValue); |
| Node* map = Parameter(Descriptor::kMap); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Comment( |
| "ElementsTransitionAndStoreStub: from_kind=%s, to_kind=%s," |
| " is_jsarray=%d, store_mode=%d", |
| ElementsKindToString(stub->from_kind()), |
| ElementsKindToString(stub->to_kind()), stub->is_jsarray(), |
| stub->store_mode()); |
| |
| Label miss(this); |
| |
| if (FLAG_trace_elements_transitions) { |
| // Tracing elements transitions is the job of the runtime. |
| Goto(&miss); |
| } else { |
| TransitionElementsKind(receiver, map, stub->from_kind(), stub->to_kind(), |
| stub->is_jsarray(), &miss); |
| EmitElementStore(receiver, key, value, stub->is_jsarray(), stub->to_kind(), |
| stub->store_mode(), &miss); |
| Return(value); |
| } |
| |
| Bind(&miss); |
| { |
| Comment("Miss"); |
| TailCallRuntime(Runtime::kElementsTransitionAndStoreIC_Miss, context, |
| receiver, key, value, map, slot, vector); |
| } |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(AllocateHeapNumberStub, CodeStubAssembler) { |
| Node* result = AllocateHeapNumber(); |
| Return(result); |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(StringLengthStub, CodeStubAssembler) { |
| Node* value = Parameter(Descriptor::kReceiver); |
| Node* string = LoadJSValueValue(value); |
| Node* result = LoadStringLength(string); |
| Return(result); |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(NumberToStringStub, CodeStubAssembler) { |
| Node* context = Parameter(Descriptor::kContext); |
| Node* argument = Parameter(Descriptor::kArgument); |
| Return(NumberToString(context, argument)); |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(SubStringStub, CodeStubAssembler) { |
| Node* context = Parameter(Descriptor::kContext); |
| Node* string = Parameter(Descriptor::kString); |
| Node* from = Parameter(Descriptor::kFrom); |
| Node* to = Parameter(Descriptor::kTo); |
| |
| Return(SubString(context, string, from, to)); |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(KeyedLoadSloppyArgumentsStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* key = Parameter(Descriptor::kName); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Label miss(this); |
| |
| Node* result = LoadKeyedSloppyArguments(receiver, key, &miss); |
| Return(result); |
| |
| Bind(&miss); |
| { |
| Comment("Miss"); |
| TailCallRuntime(Runtime::kKeyedLoadIC_Miss, context, receiver, key, slot, |
| vector); |
| } |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(KeyedStoreSloppyArgumentsStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* key = Parameter(Descriptor::kName); |
| Node* value = Parameter(Descriptor::kValue); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Label miss(this); |
| |
| StoreKeyedSloppyArguments(receiver, key, value, &miss); |
| Return(value); |
| |
| Bind(&miss); |
| { |
| Comment("Miss"); |
| TailCallRuntime(Runtime::kKeyedStoreIC_Miss, context, value, slot, vector, |
| receiver, key); |
| } |
| } |
| |
| TF_STUB(LoadScriptContextFieldStub, CodeStubAssembler) { |
| Comment("LoadScriptContextFieldStub: context_index=%d, slot=%d", |
| stub->context_index(), stub->slot_index()); |
| |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Node* script_context = LoadScriptContext(context, stub->context_index()); |
| Node* result = LoadFixedArrayElement(script_context, stub->slot_index()); |
| Return(result); |
| } |
| |
| TF_STUB(StoreScriptContextFieldStub, CodeStubAssembler) { |
| Comment("StoreScriptContextFieldStub: context_index=%d, slot=%d", |
| stub->context_index(), stub->slot_index()); |
| |
| Node* value = Parameter(Descriptor::kValue); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Node* script_context = LoadScriptContext(context, stub->context_index()); |
| StoreFixedArrayElement(script_context, IntPtrConstant(stub->slot_index()), |
| value); |
| Return(value); |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(StoreInterceptorStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* name = Parameter(Descriptor::kName); |
| Node* value = Parameter(Descriptor::kValue); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| TailCallRuntime(Runtime::kStorePropertyWithInterceptor, context, value, slot, |
| vector, receiver, name); |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(LoadIndexedInterceptorStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* key = Parameter(Descriptor::kName); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Label if_keyispositivesmi(this), if_keyisinvalid(this); |
| Branch(TaggedIsPositiveSmi(key), &if_keyispositivesmi, &if_keyisinvalid); |
| Bind(&if_keyispositivesmi); |
| TailCallRuntime(Runtime::kLoadElementWithInterceptor, context, receiver, key); |
| |
| Bind(&if_keyisinvalid); |
| TailCallRuntime(Runtime::kKeyedLoadIC_Miss, context, receiver, key, slot, |
| vector); |
| } |
| |
| void CallICStub::PrintState(std::ostream& os) const { // NOLINT |
| os << convert_mode() << ", " << tail_call_mode(); |
| } |
| |
| // TODO(ishell): Move to CallICAssembler. |
| TF_STUB(CallICStub, CodeStubAssembler) { |
| Node* context = Parameter(Descriptor::kContext); |
| Node* target = Parameter(Descriptor::kTarget); |
| Node* argc = Parameter(Descriptor::kActualArgumentsCount); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| |
| // TODO(bmeurer): The slot should actually be an IntPtr, but TurboFan's |
| // SimplifiedLowering cannot deal with IntPtr machine type properly yet. |
| slot = ChangeInt32ToIntPtr(slot); |
| |
| // Static checks to assert it is safe to examine the type feedback element. |
| // We don't know that we have a weak cell. We might have a private symbol |
| // or an AllocationSite, but the memory is safe to examine. |
| // AllocationSite::kTransitionInfoOffset - contains a Smi or pointer to |
| // FixedArray. |
| // WeakCell::kValueOffset - contains a JSFunction or Smi(0) |
| // Symbol::kHashFieldSlot - if the low bit is 1, then the hash is not |
| // computed, meaning that it can't appear to be a pointer. If the low bit is |
| // 0, then hash is computed, but the 0 bit prevents the field from appearing |
| // to be a pointer. |
| STATIC_ASSERT(WeakCell::kSize >= kPointerSize); |
| STATIC_ASSERT(AllocationSite::kTransitionInfoOffset == |
| WeakCell::kValueOffset && |
| WeakCell::kValueOffset == Symbol::kHashFieldSlot); |
| |
| // Increment the call count. |
| // TODO(bmeurer): Would it be beneficial to use Int32Add on 64-bit? |
| Comment("increment call count"); |
| Node* call_count = LoadFixedArrayElement(vector, slot, 1 * kPointerSize); |
| Node* new_count = SmiAdd(call_count, SmiConstant(1)); |
| // Count is Smi, so we don't need a write barrier. |
| StoreFixedArrayElement(vector, slot, new_count, SKIP_WRITE_BARRIER, |
| 1 * kPointerSize); |
| |
| Label call_function(this), extra_checks(this), call(this); |
| |
| // The checks. First, does function match the recorded monomorphic target? |
| Node* feedback_element = LoadFixedArrayElement(vector, slot); |
| Node* feedback_value = LoadWeakCellValueUnchecked(feedback_element); |
| Node* is_monomorphic = WordEqual(target, feedback_value); |
| GotoIfNot(is_monomorphic, &extra_checks); |
| |
| // The compare above could have been a SMI/SMI comparison. Guard against |
| // this convincing us that we have a monomorphic JSFunction. |
| Node* is_smi = TaggedIsSmi(target); |
| Branch(is_smi, &extra_checks, &call_function); |
| |
| Bind(&call_function); |
| { |
| // Call using CallFunction builtin. |
| Callable callable = CodeFactory::CallFunction( |
| isolate(), stub->convert_mode(), stub->tail_call_mode()); |
| TailCallStub(callable, context, target, argc); |
| } |
| |
| Bind(&extra_checks); |
| { |
| Label check_initialized(this), mark_megamorphic(this), |
| create_allocation_site(this, Label::kDeferred), |
| create_weak_cell(this, Label::kDeferred); |
| |
| Comment("check if megamorphic"); |
| // Check if it is a megamorphic target. |
| Node* is_megamorphic = |
| WordEqual(feedback_element, |
| HeapConstant(FeedbackVector::MegamorphicSentinel(isolate()))); |
| GotoIf(is_megamorphic, &call); |
| |
| Comment("check if it is an allocation site"); |
| GotoIfNot(IsAllocationSiteMap(LoadMap(feedback_element)), |
| &check_initialized); |
| |
| // If it is not the Array() function, mark megamorphic. |
| Node* context_slot = LoadContextElement(LoadNativeContext(context), |
| Context::ARRAY_FUNCTION_INDEX); |
| Node* is_array_function = WordEqual(context_slot, target); |
| GotoIfNot(is_array_function, &mark_megamorphic); |
| |
| // Call ArrayConstructorStub. |
| Callable callable = CodeFactory::ArrayConstructor(isolate()); |
| TailCallStub(callable, context, target, target, argc, feedback_element); |
| |
| Bind(&check_initialized); |
| { |
| Comment("check if uninitialized"); |
| // Check if it is uninitialized target first. |
| Node* is_uninitialized = WordEqual( |
| feedback_element, |
| HeapConstant(FeedbackVector::UninitializedSentinel(isolate()))); |
| GotoIfNot(is_uninitialized, &mark_megamorphic); |
| |
| Comment("handle unitinitialized"); |
| // If it is not a JSFunction mark it as megamorphic. |
| Node* is_smi = TaggedIsSmi(target); |
| GotoIf(is_smi, &mark_megamorphic); |
| |
| // Check if function is an object of JSFunction type. |
| Node* is_js_function = IsJSFunction(target); |
| GotoIfNot(is_js_function, &mark_megamorphic); |
| |
| // Check if it is the Array() function. |
| Node* context_slot = LoadContextElement(LoadNativeContext(context), |
| Context::ARRAY_FUNCTION_INDEX); |
| Node* is_array_function = WordEqual(context_slot, target); |
| GotoIf(is_array_function, &create_allocation_site); |
| |
| // Check if the function belongs to the same native context. |
| Node* native_context = LoadNativeContext( |
| LoadObjectField(target, JSFunction::kContextOffset)); |
| Node* is_same_native_context = |
| WordEqual(native_context, LoadNativeContext(context)); |
| Branch(is_same_native_context, &create_weak_cell, &mark_megamorphic); |
| } |
| |
| Bind(&create_weak_cell); |
| { |
| // Wrap the {target} in a WeakCell and remember it. |
| Comment("create weak cell"); |
| CreateWeakCellInFeedbackVector(vector, SmiTag(slot), target); |
| |
| // Call using CallFunction builtin. |
| Goto(&call_function); |
| } |
| |
| Bind(&create_allocation_site); |
| { |
| // Create an AllocationSite for the {target}. |
| Comment("create allocation site"); |
| CreateAllocationSiteInFeedbackVector(vector, SmiTag(slot)); |
| |
| // Call using CallFunction builtin. CallICs have a PREMONOMORPHIC state. |
| // They start collecting feedback only when a call is executed the second |
| // time. So, do not pass any feedback here. |
| Goto(&call_function); |
| } |
| |
| Bind(&mark_megamorphic); |
| { |
| // Mark it as a megamorphic. |
| // MegamorphicSentinel is created as a part of Heap::InitialObjects |
| // and will not move during a GC. So it is safe to skip write barrier. |
| DCHECK(Heap::RootIsImmortalImmovable(Heap::kmegamorphic_symbolRootIndex)); |
| StoreFixedArrayElement( |
| vector, slot, |
| HeapConstant(FeedbackVector::MegamorphicSentinel(isolate())), |
| SKIP_WRITE_BARRIER); |
| Goto(&call); |
| } |
| } |
| |
| Bind(&call); |
| { |
| // Call using call builtin. |
| Comment("call using Call builtin"); |
| Callable callable_call = CodeFactory::Call(isolate(), stub->convert_mode(), |
| stub->tail_call_mode()); |
| TailCallStub(callable_call, context, target, argc); |
| } |
| } |
| |
| TF_STUB(CallICTrampolineStub, CodeStubAssembler) { |
| Node* context = Parameter(Descriptor::kContext); |
| Node* target = Parameter(Descriptor::kTarget); |
| Node* argc = Parameter(Descriptor::kActualArgumentsCount); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = LoadFeedbackVectorForStub(); |
| |
| Callable callable = CodeFactory::CallIC(isolate(), stub->convert_mode(), |
| stub->tail_call_mode()); |
| TailCallStub(callable, context, target, argc, slot, vector); |
| } |
| |
| void JSEntryStub::FinishCode(Handle<Code> code) { |
| Handle<FixedArray> handler_table = |
| code->GetIsolate()->factory()->NewFixedArray(1, TENURED); |
| handler_table->set(0, Smi::FromInt(handler_offset_)); |
| code->set_handler_table(*handler_table); |
| } |
| |
| void TransitionElementsKindStub::InitializeDescriptor( |
| CodeStubDescriptor* descriptor) { |
| descriptor->Initialize( |
| Runtime::FunctionForId(Runtime::kTransitionElementsKind)->entry); |
| } |
| |
| |
| void AllocateHeapNumberStub::InitializeDescriptor( |
| CodeStubDescriptor* descriptor) { |
| descriptor->Initialize( |
| Runtime::FunctionForId(Runtime::kAllocateHeapNumber)->entry); |
| } |
| |
| |
| void ToBooleanICStub::InitializeDescriptor(CodeStubDescriptor* descriptor) { |
| descriptor->Initialize(FUNCTION_ADDR(Runtime_ToBooleanIC_Miss)); |
| descriptor->SetMissHandler(Runtime::kToBooleanIC_Miss); |
| } |
| |
| |
| void BinaryOpICStub::InitializeDescriptor(CodeStubDescriptor* descriptor) { |
| descriptor->Initialize(FUNCTION_ADDR(Runtime_BinaryOpIC_Miss)); |
| descriptor->SetMissHandler(Runtime::kBinaryOpIC_Miss); |
| } |
| |
| |
| void BinaryOpWithAllocationSiteStub::InitializeDescriptor( |
| CodeStubDescriptor* descriptor) { |
| descriptor->Initialize( |
| FUNCTION_ADDR(Runtime_BinaryOpIC_MissWithAllocationSite)); |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(GetPropertyStub, CodeStubAssembler) { |
| Label call_runtime(this, Label::kDeferred), return_undefined(this), end(this); |
| |
| Node* object = Parameter(Descriptor::kObject); |
| Node* key = Parameter(Descriptor::kKey); |
| Node* context = Parameter(Descriptor::kContext); |
| Variable var_result(this, MachineRepresentation::kTagged); |
| |
| CodeStubAssembler::LookupInHolder lookup_property_in_holder = |
| [=, &var_result, &end](Node* receiver, Node* holder, Node* holder_map, |
| Node* holder_instance_type, Node* unique_name, |
| Label* next_holder, Label* if_bailout) { |
| Variable var_value(this, MachineRepresentation::kTagged); |
| Label if_found(this); |
| TryGetOwnProperty(context, receiver, holder, holder_map, |
| holder_instance_type, unique_name, &if_found, |
| &var_value, next_holder, if_bailout); |
| Bind(&if_found); |
| { |
| var_result.Bind(var_value.value()); |
| Goto(&end); |
| } |
| }; |
| |
| CodeStubAssembler::LookupInHolder lookup_element_in_holder = |
| [=](Node* receiver, Node* holder, Node* holder_map, |
| Node* holder_instance_type, Node* index, Label* next_holder, |
| Label* if_bailout) { |
| // Not supported yet. |
| Use(next_holder); |
| Goto(if_bailout); |
| }; |
| |
| TryPrototypeChainLookup(object, key, lookup_property_in_holder, |
| lookup_element_in_holder, &return_undefined, |
| &call_runtime); |
| |
| Bind(&return_undefined); |
| { |
| var_result.Bind(UndefinedConstant()); |
| Goto(&end); |
| } |
| |
| Bind(&call_runtime); |
| { |
| var_result.Bind(CallRuntime(Runtime::kGetProperty, context, object, key)); |
| Goto(&end); |
| } |
| |
| Bind(&end); |
| Return(var_result.value()); |
| } |
| |
| void CreateAllocationSiteStub::GenerateAheadOfTime(Isolate* isolate) { |
| CreateAllocationSiteStub stub(isolate); |
| stub.GetCode(); |
| } |
| |
| |
| void CreateWeakCellStub::GenerateAheadOfTime(Isolate* isolate) { |
| CreateWeakCellStub stub(isolate); |
| stub.GetCode(); |
| } |
| |
| // TODO(ishell): move to builtins-handler-gen. |
| TF_STUB(StoreSlowElementStub, CodeStubAssembler) { |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* name = Parameter(Descriptor::kName); |
| Node* value = Parameter(Descriptor::kValue); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| TailCallRuntime(Runtime::kKeyedStoreIC_Slow, context, value, slot, vector, |
| receiver, name); |
| } |
| |
| TF_STUB(StoreFastElementStub, CodeStubAssembler) { |
| Comment("StoreFastElementStub: js_array=%d, elements_kind=%s, store_mode=%d", |
| stub->is_js_array(), ElementsKindToString(stub->elements_kind()), |
| stub->store_mode()); |
| |
| Node* receiver = Parameter(Descriptor::kReceiver); |
| Node* key = Parameter(Descriptor::kName); |
| Node* value = Parameter(Descriptor::kValue); |
| Node* slot = Parameter(Descriptor::kSlot); |
| Node* vector = Parameter(Descriptor::kVector); |
| Node* context = Parameter(Descriptor::kContext); |
| |
| Label miss(this); |
| |
| EmitElementStore(receiver, key, value, stub->is_js_array(), |
| stub->elements_kind(), stub->store_mode(), &miss); |
| Return(value); |
| |
| Bind(&miss); |
| { |
| Comment("Miss"); |
| TailCallRuntime(Runtime::kKeyedStoreIC_Miss, context, value, slot, vector, |
| receiver, key); |
| } |
| } |
| |
| // static |
| void StoreFastElementStub::GenerateAheadOfTime(Isolate* isolate) { |
| if (FLAG_minimal) return; |
| StoreFastElementStub(isolate, false, FAST_HOLEY_ELEMENTS, STANDARD_STORE) |
| .GetCode(); |
| StoreFastElementStub(isolate, false, FAST_HOLEY_ELEMENTS, |
| STORE_AND_GROW_NO_TRANSITION).GetCode(); |
| for (int i = FIRST_FAST_ELEMENTS_KIND; i <= LAST_FAST_ELEMENTS_KIND; i++) { |
| ElementsKind kind = static_cast<ElementsKind>(i); |
| StoreFastElementStub(isolate, true, kind, STANDARD_STORE).GetCode(); |
| StoreFastElementStub(isolate, true, kind, STORE_AND_GROW_NO_TRANSITION) |
| .GetCode(); |
| } |
| } |
| |
| bool ToBooleanICStub::UpdateStatus(Handle<Object> object) { |
| ToBooleanHints old_hints = hints(); |
| ToBooleanHints new_hints = old_hints; |
| bool to_boolean_value = false; // Dummy initialization. |
| if (object->IsUndefined(isolate())) { |
| new_hints |= ToBooleanHint::kUndefined; |
| to_boolean_value = false; |
| } else if (object->IsBoolean()) { |
| new_hints |= ToBooleanHint::kBoolean; |
| to_boolean_value = object->IsTrue(isolate()); |
| } else if (object->IsNull(isolate())) { |
| new_hints |= ToBooleanHint::kNull; |
| to_boolean_value = false; |
| } else if (object->IsSmi()) { |
| new_hints |= ToBooleanHint::kSmallInteger; |
| to_boolean_value = Smi::cast(*object)->value() != 0; |
| } else if (object->IsJSReceiver()) { |
| new_hints |= ToBooleanHint::kReceiver; |
| to_boolean_value = !object->IsUndetectable(); |
| } else if (object->IsString()) { |
| DCHECK(!object->IsUndetectable()); |
| new_hints |= ToBooleanHint::kString; |
| to_boolean_value = String::cast(*object)->length() != 0; |
| } else if (object->IsSymbol()) { |
| new_hints |= ToBooleanHint::kSymbol; |
| to_boolean_value = true; |
| } else if (object->IsHeapNumber()) { |
| DCHECK(!object->IsUndetectable()); |
| new_hints |= ToBooleanHint::kHeapNumber; |
| double value = HeapNumber::cast(*object)->value(); |
| to_boolean_value = value != 0 && !std::isnan(value); |
| } else { |
| // We should never see an internal object at runtime here! |
| UNREACHABLE(); |
| to_boolean_value = true; |
| } |
| |
| set_sub_minor_key(HintsBits::update(sub_minor_key(), new_hints)); |
| return to_boolean_value; |
| } |
| |
| void ToBooleanICStub::PrintState(std::ostream& os) const { // NOLINT |
| os << hints(); |
| } |
| |
| void StubFailureTrampolineStub::GenerateAheadOfTime(Isolate* isolate) { |
| StubFailureTrampolineStub stub1(isolate, NOT_JS_FUNCTION_STUB_MODE); |
| StubFailureTrampolineStub stub2(isolate, JS_FUNCTION_STUB_MODE); |
| stub1.GetCode(); |
| stub2.GetCode(); |
| } |
| |
| |
| void ProfileEntryHookStub::EntryHookTrampoline(intptr_t function, |
| intptr_t stack_pointer, |
| Isolate* isolate) { |
| FunctionEntryHook entry_hook = isolate->function_entry_hook(); |
| DCHECK(entry_hook != NULL); |
| entry_hook(function, stack_pointer); |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(CreateAllocationSiteStub, CodeStubAssembler) { |
| Return(CreateAllocationSiteInFeedbackVector(Parameter(Descriptor::kVector), |
| Parameter(Descriptor::kSlot))); |
| } |
| |
| // TODO(ishell): move to builtins. |
| TF_STUB(CreateWeakCellStub, CodeStubAssembler) { |
| Return(CreateWeakCellInFeedbackVector(Parameter(Descriptor::kVector), |
| Parameter(Descriptor::kSlot), |
| Parameter(Descriptor::kValue))); |
| } |
| |
| TF_STUB(ArrayNoArgumentConstructorStub, CodeStubAssembler) { |
| ElementsKind elements_kind = stub->elements_kind(); |
| Node* native_context = LoadObjectField(Parameter(Descriptor::kFunction), |
| JSFunction::kContextOffset); |
| bool track_allocation_site = |
| AllocationSite::GetMode(elements_kind) == TRACK_ALLOCATION_SITE && |
| stub->override_mode() != DISABLE_ALLOCATION_SITES; |
| Node* allocation_site = |
| track_allocation_site ? Parameter(Descriptor::kAllocationSite) : nullptr; |
| Node* array_map = LoadJSArrayElementsMap(elements_kind, native_context); |
| Node* array = |
| AllocateJSArray(elements_kind, array_map, |
| IntPtrConstant(JSArray::kPreallocatedArrayElements), |
| SmiConstant(Smi::kZero), allocation_site); |
| Return(array); |
| } |
| |
| TF_STUB(InternalArrayNoArgumentConstructorStub, CodeStubAssembler) { |
| Node* array_map = LoadObjectField(Parameter(Descriptor::kFunction), |
| JSFunction::kPrototypeOrInitialMapOffset); |
| Node* array = |
| AllocateJSArray(stub->elements_kind(), array_map, |
| IntPtrConstant(JSArray::kPreallocatedArrayElements), |
| SmiConstant(Smi::kZero)); |
| Return(array); |
| } |
| |
| class ArrayConstructorAssembler : public CodeStubAssembler { |
| public: |
| typedef compiler::Node Node; |
| |
| explicit ArrayConstructorAssembler(compiler::CodeAssemblerState* state) |
| : CodeStubAssembler(state) {} |
| |
| void GenerateConstructor(Node* context, Node* array_function, Node* array_map, |
| Node* array_size, Node* allocation_site, |
| ElementsKind elements_kind, AllocationSiteMode mode); |
| }; |
| |
| void ArrayConstructorAssembler::GenerateConstructor( |
| Node* context, Node* array_function, Node* array_map, Node* array_size, |
| Node* allocation_site, ElementsKind elements_kind, |
| AllocationSiteMode mode) { |
| Label ok(this); |
| Label smi_size(this); |
| Label small_smi_size(this); |
| Label call_runtime(this, Label::kDeferred); |
| |
| Branch(TaggedIsSmi(array_size), &smi_size, &call_runtime); |
| |
| Bind(&smi_size); |
| |
| if (IsFastPackedElementsKind(elements_kind)) { |
| Label abort(this, Label::kDeferred); |
| Branch(SmiEqual(array_size, SmiConstant(Smi::kZero)), &small_smi_size, |
| &abort); |
| |
| Bind(&abort); |
| Node* reason = SmiConstant(Smi::FromInt(kAllocatingNonEmptyPackedArray)); |
| TailCallRuntime(Runtime::kAbort, context, reason); |
| } else { |
| int element_size = |
| IsFastDoubleElementsKind(elements_kind) ? kDoubleSize : kPointerSize; |
| int max_fast_elements = |
| (kMaxRegularHeapObjectSize - FixedArray::kHeaderSize - JSArray::kSize - |
| AllocationMemento::kSize) / |
| element_size; |
| Branch(SmiAboveOrEqual(array_size, |
| SmiConstant(Smi::FromInt(max_fast_elements))), |
| &call_runtime, &small_smi_size); |
| } |
| |
| Bind(&small_smi_size); |
| { |
| Node* array = AllocateJSArray( |
| elements_kind, array_map, array_size, array_size, |
| mode == DONT_TRACK_ALLOCATION_SITE ? nullptr : allocation_site, |
| CodeStubAssembler::SMI_PARAMETERS); |
| Return(array); |
| } |
| |
| Bind(&call_runtime); |
| { |
| TailCallRuntime(Runtime::kNewArray, context, array_function, array_size, |
| array_function, allocation_site); |
| } |
| } |
| |
| TF_STUB(ArraySingleArgumentConstructorStub, ArrayConstructorAssembler) { |
| ElementsKind elements_kind = stub->elements_kind(); |
| Node* context = Parameter(Descriptor::kContext); |
| Node* function = Parameter(Descriptor::kFunction); |
| Node* native_context = LoadObjectField(function, JSFunction::kContextOffset); |
| Node* array_map = LoadJSArrayElementsMap(elements_kind, native_context); |
| AllocationSiteMode mode = stub->override_mode() == DISABLE_ALLOCATION_SITES |
| ? DONT_TRACK_ALLOCATION_SITE |
| : AllocationSite::GetMode(elements_kind); |
| Node* array_size = Parameter(Descriptor::kArraySizeSmiParameter); |
| Node* allocation_site = Parameter(Descriptor::kAllocationSite); |
| |
| GenerateConstructor(context, function, array_map, array_size, allocation_site, |
| elements_kind, mode); |
| } |
| |
| TF_STUB(InternalArraySingleArgumentConstructorStub, ArrayConstructorAssembler) { |
| Node* context = Parameter(Descriptor::kContext); |
| Node* function = Parameter(Descriptor::kFunction); |
| Node* array_map = |
| LoadObjectField(function, JSFunction::kPrototypeOrInitialMapOffset); |
| Node* array_size = Parameter(Descriptor::kArraySizeSmiParameter); |
| Node* allocation_site = UndefinedConstant(); |
| |
| GenerateConstructor(context, function, array_map, array_size, allocation_site, |
| stub->elements_kind(), DONT_TRACK_ALLOCATION_SITE); |
| } |
| |
| TF_STUB(GrowArrayElementsStub, CodeStubAssembler) { |
| Label runtime(this, CodeStubAssembler::Label::kDeferred); |
| |
| Node* object = Parameter(Descriptor::kObject); |
| Node* key = Parameter(Descriptor::kKey); |
| Node* context = Parameter(Descriptor::kContext); |
| ElementsKind kind = stub->elements_kind(); |
| |
| Node* elements = LoadElements(object); |
| Node* new_elements = |
| TryGrowElementsCapacity(object, elements, kind, key, &runtime); |
| Return(new_elements); |
| |
| Bind(&runtime); |
| // TODO(danno): Make this a tail call when the stub is only used from TurboFan |
| // code. This musn't be a tail call for now, since the caller site in lithium |
| // creates a safepoint. This safepoint musn't have a different number of |
| // arguments on the stack in the case that a GC happens from the slow-case |
| // allocation path (zero, since all the stubs inputs are in registers) and |
| // when the call happens (it would be two in the tail call case due to the |
| // tail call pushing the arguments on the stack for the runtime call). By not |
| // tail-calling, the runtime call case also has zero arguments on the stack |
| // for the stub frame. |
| Return(CallRuntime(Runtime::kGrowArrayElements, context, object, key)); |
| } |
| |
| ArrayConstructorStub::ArrayConstructorStub(Isolate* isolate) |
| : PlatformCodeStub(isolate) {} |
| |
| InternalArrayConstructorStub::InternalArrayConstructorStub(Isolate* isolate) |
| : PlatformCodeStub(isolate) {} |
| |
| } // namespace internal |
| } // namespace v8 |