| # Copyright (C) 2011-2018 Apple Inc. All rights reserved. |
| # |
| # Redistribution and use in source and binary forms, with or without |
| # modification, are permitted provided that the following conditions |
| # are met: |
| # 1. Redistributions of source code must retain the above copyright |
| # notice, this list of conditions and the following disclaimer. |
| # 2. Redistributions in binary form must reproduce the above copyright |
| # notice, this list of conditions and the following disclaimer in the |
| # documentation and/or other materials provided with the distribution. |
| # |
| # THIS SOFTWARE IS PROVIDED BY APPLE INC. AND ITS CONTRIBUTORS ``AS IS'' |
| # AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, |
| # THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR |
| # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR ITS CONTRIBUTORS |
| # BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR |
| # CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF |
| # SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS |
| # INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN |
| # CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF |
| # THE POSSIBILITY OF SUCH DAMAGE. |
| |
| |
| # Utilities. |
| macro jumpToInstruction() |
| jmp [PB, PC, 8], BytecodePtrTag |
| end |
| |
| macro dispatch(advance) |
| addp advance, PC |
| jumpToInstruction() |
| end |
| |
| macro dispatchInt(advance) |
| addi advance, PC |
| jumpToInstruction() |
| end |
| |
| macro dispatchIntIndirect(offset) |
| dispatchInt(offset * 8[PB, PC, 8]) |
| end |
| |
| macro dispatchAfterCall() |
| loadi ArgumentCount + TagOffset[cfr], PC |
| loadp CodeBlock[cfr], PB |
| loadp CodeBlock::m_instructions[PB], PB |
| unpoison(_g_CodeBlockPoison, PB, t1) |
| loadisFromInstruction(1, t1) |
| storeq r0, [cfr, t1, 8] |
| valueProfile(r0, (CallOpCodeSize - 1), t3) |
| dispatch(CallOpCodeSize) |
| end |
| |
| macro cCall2(function) |
| checkStackPointerAlignment(t4, 0xbad0c002) |
| if X86_64 or ARM64 or ARM64E |
| call function |
| elsif X86_64_WIN |
| # Note: this implementation is only correct if the return type size is > 8 bytes. |
| # See macro cCall2Void for an implementation when the return type <= 8 bytes. |
| # On Win64, when the return type is larger than 8 bytes, we need to allocate space on the stack for the return value. |
| # On entry rcx (a0), should contain a pointer to this stack space. The other parameters are shifted to the right, |
| # rdx (a1) should contain the first argument, and r8 (a2) should contain the second argument. |
| # On return, rax contains a pointer to this stack value, and we then need to copy the 16 byte return value into rax (r0) and rdx (r1) |
| # since the return value is expected to be split between the two. |
| # See http://msdn.microsoft.com/en-us/library/7572ztz4.aspx |
| move a1, a2 |
| move a0, a1 |
| subp 48, sp |
| move sp, a0 |
| addp 32, a0 |
| call function |
| addp 48, sp |
| move 8[r0], r1 |
| move [r0], r0 |
| elsif C_LOOP |
| cloopCallSlowPath function, a0, a1 |
| else |
| error |
| end |
| end |
| |
| macro cCall2Void(function) |
| if C_LOOP |
| cloopCallSlowPathVoid function, a0, a1 |
| elsif X86_64_WIN |
| # Note: we cannot use the cCall2 macro for Win64 in this case, |
| # as the Win64 cCall2 implemenation is only correct when the return type size is > 8 bytes. |
| # On Win64, rcx and rdx are used for passing the first two parameters. |
| # We also need to make room on the stack for all four parameter registers. |
| # See http://msdn.microsoft.com/en-us/library/ms235286.aspx |
| subp 32, sp |
| call function |
| addp 32, sp |
| else |
| cCall2(function) |
| end |
| end |
| |
| # This barely works. arg3 and arg4 should probably be immediates. |
| macro cCall4(function) |
| checkStackPointerAlignment(t4, 0xbad0c004) |
| if X86_64 or ARM64 or ARM64E |
| call function |
| elsif X86_64_WIN |
| # On Win64, rcx, rdx, r8, and r9 are used for passing the first four parameters. |
| # We also need to make room on the stack for all four parameter registers. |
| # See http://msdn.microsoft.com/en-us/library/ms235286.aspx |
| subp 64, sp |
| call function |
| addp 64, sp |
| else |
| error |
| end |
| end |
| |
| macro doVMEntry(makeCall) |
| functionPrologue() |
| pushCalleeSaves() |
| |
| const entry = a0 |
| const vm = a1 |
| const protoCallFrame = a2 |
| |
| vmEntryRecord(cfr, sp) |
| |
| checkStackPointerAlignment(t4, 0xbad0dc01) |
| |
| storep vm, VMEntryRecord::m_vm[sp] |
| loadp VM::topCallFrame[vm], t4 |
| storep t4, VMEntryRecord::m_prevTopCallFrame[sp] |
| loadp VM::topEntryFrame[vm], t4 |
| storep t4, VMEntryRecord::m_prevTopEntryFrame[sp] |
| |
| loadi ProtoCallFrame::paddedArgCount[protoCallFrame], t4 |
| addp CallFrameHeaderSlots, t4, t4 |
| lshiftp 3, t4 |
| subp sp, t4, t3 |
| bqbeq sp, t3, .throwStackOverflow |
| |
| # Ensure that we have enough additional stack capacity for the incoming args, |
| # and the frame for the JS code we're executing. We need to do this check |
| # before we start copying the args from the protoCallFrame below. |
| if C_LOOP |
| bpaeq t3, VM::m_cloopStackLimit[vm], .stackHeightOK |
| else |
| bpaeq t3, VM::m_softStackLimit[vm], .stackHeightOK |
| end |
| |
| if C_LOOP |
| move entry, t4 |
| move vm, t5 |
| cloopCallSlowPath _llint_stack_check_at_vm_entry, vm, t3 |
| bpeq t0, 0, .stackCheckFailed |
| move t4, entry |
| move t5, vm |
| jmp .stackHeightOK |
| |
| .stackCheckFailed: |
| move t4, entry |
| move t5, vm |
| end |
| |
| .throwStackOverflow: |
| move vm, a0 |
| move protoCallFrame, a1 |
| cCall2(_llint_throw_stack_overflow_error) |
| |
| vmEntryRecord(cfr, t4) |
| |
| loadp VMEntryRecord::m_vm[t4], vm |
| loadp VMEntryRecord::m_prevTopCallFrame[t4], extraTempReg |
| storep extraTempReg, VM::topCallFrame[vm] |
| loadp VMEntryRecord::m_prevTopEntryFrame[t4], extraTempReg |
| storep extraTempReg, VM::topEntryFrame[vm] |
| |
| subp cfr, CalleeRegisterSaveSize, sp |
| |
| popCalleeSaves() |
| functionEpilogue() |
| ret |
| |
| .stackHeightOK: |
| move t3, sp |
| move 4, t3 |
| |
| .copyHeaderLoop: |
| # Copy the CodeBlock/Callee/ArgumentCount/|this| from protoCallFrame into the callee frame. |
| subi 1, t3 |
| loadq [protoCallFrame, t3, 8], extraTempReg |
| storeq extraTempReg, CodeBlock[sp, t3, 8] |
| btinz t3, .copyHeaderLoop |
| |
| loadi PayloadOffset + ProtoCallFrame::argCountAndCodeOriginValue[protoCallFrame], t4 |
| subi 1, t4 |
| loadi ProtoCallFrame::paddedArgCount[protoCallFrame], extraTempReg |
| subi 1, extraTempReg |
| |
| bieq t4, extraTempReg, .copyArgs |
| move ValueUndefined, t3 |
| .fillExtraArgsLoop: |
| subi 1, extraTempReg |
| storeq t3, ThisArgumentOffset + 8[sp, extraTempReg, 8] |
| bineq t4, extraTempReg, .fillExtraArgsLoop |
| |
| .copyArgs: |
| loadp ProtoCallFrame::args[protoCallFrame], t3 |
| |
| .copyArgsLoop: |
| btiz t4, .copyArgsDone |
| subi 1, t4 |
| loadq [t3, t4, 8], extraTempReg |
| storeq extraTempReg, ThisArgumentOffset + 8[sp, t4, 8] |
| jmp .copyArgsLoop |
| |
| .copyArgsDone: |
| if ARM64 or ARM64E |
| move sp, t4 |
| storep t4, VM::topCallFrame[vm] |
| else |
| storep sp, VM::topCallFrame[vm] |
| end |
| storep cfr, VM::topEntryFrame[vm] |
| |
| checkStackPointerAlignment(extraTempReg, 0xbad0dc02) |
| |
| makeCall(entry, t3) |
| |
| # We may have just made a call into a JS function, so we can't rely on sp |
| # for anything but the fact that our own locals (ie the VMEntryRecord) are |
| # not below it. It also still has to be aligned, though. |
| checkStackPointerAlignment(t2, 0xbad0dc03) |
| |
| vmEntryRecord(cfr, t4) |
| |
| loadp VMEntryRecord::m_vm[t4], vm |
| loadp VMEntryRecord::m_prevTopCallFrame[t4], t2 |
| storep t2, VM::topCallFrame[vm] |
| loadp VMEntryRecord::m_prevTopEntryFrame[t4], t2 |
| storep t2, VM::topEntryFrame[vm] |
| |
| subp cfr, CalleeRegisterSaveSize, sp |
| |
| popCalleeSaves() |
| functionEpilogue() |
| |
| ret |
| end |
| |
| |
| macro makeJavaScriptCall(entry, temp) |
| addp 16, sp |
| if C_LOOP |
| cloopCallJSFunction entry |
| else |
| call entry, JSEntryPtrTag |
| end |
| subp 16, sp |
| end |
| |
| |
| macro makeHostFunctionCall(entry, temp) |
| move entry, temp |
| storep cfr, [sp] |
| move sp, a0 |
| if C_LOOP |
| storep lr, 8[sp] |
| cloopCallNative temp |
| elsif X86_64_WIN |
| # We need to allocate 32 bytes on the stack for the shadow space. |
| subp 32, sp |
| call temp, JSEntryPtrTag |
| addp 32, sp |
| else |
| call temp, JSEntryPtrTag |
| end |
| end |
| |
| _handleUncaughtException: |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| restoreCalleeSavesFromVMEntryFrameCalleeSavesBuffer(t3, t0) |
| loadp VM::callFrameForCatch[t3], cfr |
| storep 0, VM::callFrameForCatch[t3] |
| |
| loadp CallerFrame[cfr], cfr |
| vmEntryRecord(cfr, t2) |
| |
| loadp VMEntryRecord::m_vm[t2], t3 |
| loadp VMEntryRecord::m_prevTopCallFrame[t2], extraTempReg |
| storep extraTempReg, VM::topCallFrame[t3] |
| loadp VMEntryRecord::m_prevTopEntryFrame[t2], extraTempReg |
| storep extraTempReg, VM::topEntryFrame[t3] |
| |
| subp cfr, CalleeRegisterSaveSize, sp |
| |
| popCalleeSaves() |
| functionEpilogue() |
| ret |
| |
| |
| macro prepareStateForCCall() |
| leap [PB, PC, 8], PC |
| end |
| |
| macro restoreStateAfterCCall() |
| move r0, PC |
| subp PB, PC |
| rshiftp 3, PC |
| end |
| |
| macro callSlowPath(slowPath) |
| prepareStateForCCall() |
| move cfr, a0 |
| move PC, a1 |
| cCall2(slowPath) |
| restoreStateAfterCCall() |
| end |
| |
| macro traceOperand(fromWhere, operand) |
| prepareStateForCCall() |
| move fromWhere, a2 |
| move operand, a3 |
| move cfr, a0 |
| move PC, a1 |
| cCall4(_llint_trace_operand) |
| restoreStateAfterCCall() |
| end |
| |
| macro traceValue(fromWhere, operand) |
| prepareStateForCCall() |
| move fromWhere, a2 |
| move operand, a3 |
| move cfr, a0 |
| move PC, a1 |
| cCall4(_llint_trace_value) |
| restoreStateAfterCCall() |
| end |
| |
| # Call a slow path for call call opcodes. |
| macro callCallSlowPath(slowPath, action) |
| storei PC, ArgumentCount + TagOffset[cfr] |
| prepareStateForCCall() |
| move cfr, a0 |
| move PC, a1 |
| cCall2(slowPath) |
| action(r0, r1) |
| end |
| |
| macro callTrapHandler(throwHandler) |
| storei PC, ArgumentCount + TagOffset[cfr] |
| prepareStateForCCall() |
| move cfr, a0 |
| move PC, a1 |
| cCall2(_llint_slow_path_handle_traps) |
| btpnz r0, throwHandler |
| loadi ArgumentCount + TagOffset[cfr], PC |
| end |
| |
| macro checkSwitchToJITForLoop() |
| checkSwitchToJIT( |
| 1, |
| macro() |
| storei PC, ArgumentCount + TagOffset[cfr] |
| prepareStateForCCall() |
| move cfr, a0 |
| move PC, a1 |
| cCall2(_llint_loop_osr) |
| btpz r0, .recover |
| move r1, sp |
| jmp r0, JSEntryPtrTag |
| .recover: |
| loadi ArgumentCount + TagOffset[cfr], PC |
| end) |
| end |
| |
| macro uncage(basePtr, mask, ptr, scratch) |
| if GIGACAGE_ENABLED and not C_LOOP |
| loadp basePtr, scratch |
| btpz scratch, .done |
| andp mask, ptr |
| addp scratch, ptr |
| .done: |
| end |
| end |
| |
| macro loadCaged(basePtr, mask, source, dest, scratch) |
| loadp source, dest |
| uncage(basePtr, mask, dest, scratch) |
| end |
| |
| macro loadVariable(operand, value) |
| loadisFromInstruction(operand, value) |
| loadq [cfr, value, 8], value |
| end |
| |
| # Index and value must be different registers. Index may be clobbered. |
| macro loadConstantOrVariable(index, value) |
| bpgteq index, FirstConstantRegisterIndex, .constant |
| loadq [cfr, index, 8], value |
| jmp .done |
| .constant: |
| loadp CodeBlock[cfr], value |
| loadp CodeBlock::m_constantRegisters + VectorBufferOffset[value], value |
| subp FirstConstantRegisterIndex, index |
| loadq [value, index, 8], value |
| .done: |
| end |
| |
| macro loadConstantOrVariableInt32(index, value, slow) |
| loadConstantOrVariable(index, value) |
| bqb value, tagTypeNumber, slow |
| end |
| |
| macro loadConstantOrVariableCell(index, value, slow) |
| loadConstantOrVariable(index, value) |
| btqnz value, tagMask, slow |
| end |
| |
| macro writeBarrierOnOperand(cellOperand) |
| loadisFromInstruction(cellOperand, t1) |
| loadConstantOrVariableCell(t1, t2, .writeBarrierDone) |
| skipIfIsRememberedOrInEden( |
| t2, |
| macro() |
| push PB, PC |
| move t2, a1 # t2 can be a0 (not on 64 bits, but better safe than sorry) |
| move cfr, a0 |
| cCall2Void(_llint_write_barrier_slow) |
| pop PC, PB |
| end) |
| .writeBarrierDone: |
| end |
| |
| macro writeBarrierOnOperands(cellOperand, valueOperand) |
| loadisFromInstruction(valueOperand, t1) |
| loadConstantOrVariableCell(t1, t0, .writeBarrierDone) |
| btpz t0, .writeBarrierDone |
| |
| writeBarrierOnOperand(cellOperand) |
| .writeBarrierDone: |
| end |
| |
| macro writeBarrierOnGlobal(valueOperand, loadHelper) |
| loadisFromInstruction(valueOperand, t1) |
| loadConstantOrVariableCell(t1, t0, .writeBarrierDone) |
| btpz t0, .writeBarrierDone |
| |
| loadHelper(t3) |
| skipIfIsRememberedOrInEden( |
| t3, |
| macro() |
| push PB, PC |
| move cfr, a0 |
| move t3, a1 |
| cCall2Void(_llint_write_barrier_slow) |
| pop PC, PB |
| end |
| ) |
| .writeBarrierDone: |
| end |
| |
| macro writeBarrierOnGlobalObject(valueOperand) |
| writeBarrierOnGlobal(valueOperand, |
| macro(registerToStoreGlobal) |
| loadp CodeBlock[cfr], registerToStoreGlobal |
| loadp CodeBlock::m_globalObject[registerToStoreGlobal], registerToStoreGlobal |
| end) |
| end |
| |
| macro writeBarrierOnGlobalLexicalEnvironment(valueOperand) |
| writeBarrierOnGlobal(valueOperand, |
| macro(registerToStoreGlobal) |
| loadp CodeBlock[cfr], registerToStoreGlobal |
| loadp CodeBlock::m_globalObject[registerToStoreGlobal], registerToStoreGlobal |
| loadp JSGlobalObject::m_globalLexicalEnvironment[registerToStoreGlobal], registerToStoreGlobal |
| end) |
| end |
| |
| macro valueProfile(value, operand, scratch) |
| loadpFromInstruction(operand, scratch) |
| storeq value, ValueProfile::m_buckets[scratch] |
| end |
| |
| macro structureIDToStructureWithScratch(structureIDThenStructure, scratch, scratch2) |
| loadp CodeBlock[cfr], scratch |
| loadp CodeBlock::m_poisonedVM[scratch], scratch |
| unpoison(_g_CodeBlockPoison, scratch, scratch2) |
| loadp VM::heap + Heap::m_structureIDTable + StructureIDTable::m_table[scratch], scratch |
| loadp [scratch, structureIDThenStructure, 8], structureIDThenStructure |
| end |
| |
| macro loadStructureWithScratch(cell, structure, scratch, scratch2) |
| loadi JSCell::m_structureID[cell], structure |
| structureIDToStructureWithScratch(structure, scratch, scratch2) |
| end |
| |
| # Entrypoints into the interpreter. |
| |
| # Expects that CodeBlock is in t1, which is what prologue() leaves behind. |
| macro functionArityCheck(doneLabel, slowPath) |
| loadi PayloadOffset + ArgumentCount[cfr], t0 |
| biaeq t0, CodeBlock::m_numParameters[t1], doneLabel |
| prepareStateForCCall() |
| move cfr, a0 |
| move PC, a1 |
| cCall2(slowPath) # This slowPath has the protocol: r0 = 0 => no error, r0 != 0 => error |
| btiz r0, .noError |
| move r1, cfr # r1 contains caller frame |
| jmp _llint_throw_from_slow_path_trampoline |
| |
| .noError: |
| move r1, t1 # r1 contains slotsToAdd. |
| btiz t1, .continue |
| loadi PayloadOffset + ArgumentCount[cfr], t2 |
| addi CallFrameHeaderSlots, t2 |
| |
| // Check if there are some unaligned slots we can use |
| move t1, t3 |
| andi StackAlignmentSlots - 1, t3 |
| btiz t3, .noExtraSlot |
| move ValueUndefined, t0 |
| .fillExtraSlots: |
| storeq t0, [cfr, t2, 8] |
| addi 1, t2 |
| bsubinz 1, t3, .fillExtraSlots |
| andi ~(StackAlignmentSlots - 1), t1 |
| btiz t1, .continue |
| |
| .noExtraSlot: |
| if POINTER_PROFILING |
| if ARM64 or ARM64E |
| loadp 8[cfr], lr |
| end |
| |
| addp 16, cfr, t3 |
| untagReturnAddress t3 |
| end |
| |
| // Move frame up t1 slots |
| negq t1 |
| move cfr, t3 |
| subp CalleeSaveSpaceAsVirtualRegisters * 8, t3 |
| addi CalleeSaveSpaceAsVirtualRegisters, t2 |
| move t1, t0 |
| lshiftp 3, t0 |
| addp t0, cfr |
| addp t0, sp |
| .copyLoop: |
| loadq [t3], t0 |
| storeq t0, [t3, t1, 8] |
| addp 8, t3 |
| bsubinz 1, t2, .copyLoop |
| |
| // Fill new slots with JSUndefined |
| move t1, t2 |
| move ValueUndefined, t0 |
| .fillLoop: |
| storeq t0, [t3, t1, 8] |
| addp 8, t3 |
| baddinz 1, t2, .fillLoop |
| |
| if POINTER_PROFILING |
| addp 16, cfr, t1 |
| tagReturnAddress t1 |
| |
| if ARM64 or ARM64E |
| storep lr, 8[cfr] |
| end |
| end |
| |
| .continue: |
| # Reload CodeBlock and reset PC, since the slow_path clobbered them. |
| loadp CodeBlock[cfr], t1 |
| loadp CodeBlock::m_instructions[t1], PB |
| unpoison(_g_CodeBlockPoison, PB, t2) |
| move 0, PC |
| jmp doneLabel |
| end |
| |
| macro branchIfException(label) |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| btqz VM::m_exception[t3], .noException |
| jmp label |
| .noException: |
| end |
| |
| |
| # Instruction implementations |
| _llint_op_enter: |
| traceExecution() |
| checkStackPointerAlignment(t2, 0xdead00e1) |
| loadp CodeBlock[cfr], t2 // t2<CodeBlock> = cfr.CodeBlock |
| loadi CodeBlock::m_numVars[t2], t2 // t2<size_t> = t2<CodeBlock>.m_numVars |
| subq CalleeSaveSpaceAsVirtualRegisters, t2 |
| move cfr, t1 |
| subq CalleeSaveSpaceAsVirtualRegisters * 8, t1 |
| btiz t2, .opEnterDone |
| move ValueUndefined, t0 |
| negi t2 |
| sxi2q t2, t2 |
| .opEnterLoop: |
| storeq t0, [t1, t2, 8] |
| addq 1, t2 |
| btqnz t2, .opEnterLoop |
| .opEnterDone: |
| callSlowPath(_slow_path_enter) |
| dispatch(constexpr op_enter_length) |
| |
| |
| _llint_op_get_argument: |
| traceExecution() |
| loadisFromInstruction(1, t1) |
| loadisFromInstruction(2, t2) |
| loadi PayloadOffset + ArgumentCount[cfr], t0 |
| bilteq t0, t2, .opGetArgumentOutOfBounds |
| loadq ThisArgumentOffset[cfr, t2, 8], t0 |
| storeq t0, [cfr, t1, 8] |
| valueProfile(t0, 3, t2) |
| dispatch(constexpr op_get_argument_length) |
| |
| .opGetArgumentOutOfBounds: |
| storeq ValueUndefined, [cfr, t1, 8] |
| valueProfile(ValueUndefined, 3, t2) |
| dispatch(constexpr op_get_argument_length) |
| |
| |
| _llint_op_argument_count: |
| traceExecution() |
| loadisFromInstruction(1, t1) |
| loadi PayloadOffset + ArgumentCount[cfr], t0 |
| subi 1, t0 |
| orq TagTypeNumber, t0 |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_argument_count_length) |
| |
| |
| _llint_op_get_scope: |
| traceExecution() |
| loadp Callee[cfr], t0 |
| loadp JSCallee::m_scope[t0], t0 |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_get_scope_length) |
| |
| |
| _llint_op_to_this: |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadq [cfr, t0, 8], t0 |
| btqnz t0, tagMask, .opToThisSlow |
| bbneq JSCell::m_type[t0], FinalObjectType, .opToThisSlow |
| loadStructureWithScratch(t0, t1, t2, t3) |
| loadpFromInstruction(2, t2) |
| bpneq t1, t2, .opToThisSlow |
| dispatch(constexpr op_to_this_length) |
| |
| .opToThisSlow: |
| callSlowPath(_slow_path_to_this) |
| dispatch(constexpr op_to_this_length) |
| |
| |
| _llint_op_check_tdz: |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadConstantOrVariable(t0, t1) |
| bqneq t1, ValueEmpty, .opNotTDZ |
| callSlowPath(_slow_path_throw_tdz_error) |
| |
| .opNotTDZ: |
| dispatch(constexpr op_check_tdz_length) |
| |
| |
| _llint_op_mov: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t0) |
| loadConstantOrVariable(t1, t2) |
| storeq t2, [cfr, t0, 8] |
| dispatch(constexpr op_mov_length) |
| |
| |
| _llint_op_not: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t0, t2) |
| xorq ValueFalse, t2 |
| btqnz t2, ~1, .opNotSlow |
| xorq ValueTrue, t2 |
| storeq t2, [cfr, t1, 8] |
| dispatch(constexpr op_not_length) |
| |
| .opNotSlow: |
| callSlowPath(_slow_path_not) |
| dispatch(constexpr op_not_length) |
| |
| |
| macro equalityComparison(integerComparison, slowPath) |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariableInt32(t0, t1, .slow) |
| loadConstantOrVariableInt32(t2, t0, .slow) |
| integerComparison(t0, t1, t0) |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t3, 8] |
| dispatch(4) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(4) |
| end |
| |
| |
| macro equalityJump(integerComparison, slowPath) |
| loadisFromInstruction(1, t2) |
| loadisFromInstruction(2, t3) |
| loadConstantOrVariableInt32(t2, t0, .slow) |
| loadConstantOrVariableInt32(t3, t1, .slow) |
| integerComparison(t0, t1, .jumpTarget) |
| dispatch(constexpr op_jeq_length) |
| |
| .jumpTarget: |
| dispatchIntIndirect(3) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(0) |
| end |
| |
| |
| macro equalNullComparison() |
| loadisFromInstruction(2, t0) |
| loadq [cfr, t0, 8], t0 |
| btqnz t0, tagMask, .immediate |
| btbnz JSCell::m_flags[t0], MasqueradesAsUndefined, .masqueradesAsUndefined |
| move 0, t0 |
| jmp .done |
| .masqueradesAsUndefined: |
| loadStructureWithScratch(t0, t2, t1, t3) |
| loadp CodeBlock[cfr], t0 |
| loadp CodeBlock::m_globalObject[t0], t0 |
| cpeq Structure::m_globalObject[t2], t0, t0 |
| jmp .done |
| .immediate: |
| andq ~TagBitUndefined, t0 |
| cqeq t0, ValueNull, t0 |
| .done: |
| end |
| |
| _llint_op_eq_null: |
| traceExecution() |
| equalNullComparison() |
| loadisFromInstruction(1, t1) |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_eq_null_length) |
| |
| |
| _llint_op_neq_null: |
| traceExecution() |
| equalNullComparison() |
| loadisFromInstruction(1, t1) |
| xorq ValueTrue, t0 |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_neq_null_length) |
| |
| |
| macro strictEq(equalityOperation, slowPath) |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t2) |
| loadConstantOrVariable(t0, t1) |
| loadConstantOrVariable(t2, t0) |
| move t0, t2 |
| orq t1, t2 |
| btqz t2, tagMask, .slow |
| bqaeq t0, tagTypeNumber, .leftOK |
| btqnz t0, tagTypeNumber, .slow |
| .leftOK: |
| bqaeq t1, tagTypeNumber, .rightOK |
| btqnz t1, tagTypeNumber, .slow |
| .rightOK: |
| equalityOperation(t0, t1, t0) |
| loadisFromInstruction(1, t1) |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t1, 8] |
| dispatch(4) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(4) |
| end |
| |
| |
| macro strictEqualityJump(equalityOperation, slowPath) |
| loadisFromInstruction(1, t2) |
| loadisFromInstruction(2, t3) |
| loadConstantOrVariable(t2, t0) |
| loadConstantOrVariable(t3, t1) |
| move t0, t2 |
| orq t1, t2 |
| btqz t2, tagMask, .slow |
| bqaeq t0, tagTypeNumber, .leftOK |
| btqnz t0, tagTypeNumber, .slow |
| .leftOK: |
| bqaeq t1, tagTypeNumber, .rightOK |
| btqnz t1, tagTypeNumber, .slow |
| .rightOK: |
| equalityOperation(t0, t1, .jumpTarget) |
| dispatch(constexpr op_jstricteq_length) |
| |
| .jumpTarget: |
| dispatchIntIndirect(3) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(0) |
| end |
| |
| |
| _llint_op_stricteq: |
| traceExecution() |
| strictEq( |
| macro (left, right, result) cqeq left, right, result end, |
| _slow_path_stricteq) |
| |
| |
| _llint_op_nstricteq: |
| traceExecution() |
| strictEq( |
| macro (left, right, result) cqneq left, right, result end, |
| _slow_path_nstricteq) |
| |
| |
| _llint_op_jstricteq: |
| traceExecution() |
| strictEqualityJump( |
| macro (left, right, target) bqeq left, right, target end, |
| _llint_slow_path_jstricteq) |
| |
| |
| _llint_op_jnstricteq: |
| traceExecution() |
| strictEqualityJump( |
| macro (left, right, target) bqneq left, right, target end, |
| _llint_slow_path_jnstricteq) |
| |
| |
| macro preOp(arithmeticOperation, slowPath) |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadq [cfr, t0, 8], t1 |
| bqb t1, tagTypeNumber, .slow |
| arithmeticOperation(t1, .slow) |
| orq tagTypeNumber, t1 |
| storeq t1, [cfr, t0, 8] |
| dispatch(2) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(2) |
| end |
| |
| _llint_op_inc: |
| preOp( |
| macro (value, slow) baddio 1, value, slow end, |
| _slow_path_inc) |
| |
| |
| _llint_op_dec: |
| preOp( |
| macro (value, slow) bsubio 1, value, slow end, |
| _slow_path_dec) |
| |
| |
| _llint_op_to_number: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t0, t2) |
| bqaeq t2, tagTypeNumber, .opToNumberIsImmediate |
| btqz t2, tagTypeNumber, .opToNumberSlow |
| .opToNumberIsImmediate: |
| storeq t2, [cfr, t1, 8] |
| valueProfile(t2, 3, t0) |
| dispatch(constexpr op_to_number_length) |
| |
| .opToNumberSlow: |
| callSlowPath(_slow_path_to_number) |
| dispatch(constexpr op_to_number_length) |
| |
| |
| _llint_op_to_string: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| btqnz t0, tagMask, .opToStringSlow |
| bbneq JSCell::m_type[t0], StringType, .opToStringSlow |
| .opToStringIsString: |
| storeq t0, [cfr, t2, 8] |
| dispatch(constexpr op_to_string_length) |
| |
| .opToStringSlow: |
| callSlowPath(_slow_path_to_string) |
| dispatch(constexpr op_to_string_length) |
| |
| |
| _llint_op_to_object: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t0, t2) |
| btqnz t2, tagMask, .opToObjectSlow |
| bbb JSCell::m_type[t2], ObjectType, .opToObjectSlow |
| storeq t2, [cfr, t1, 8] |
| valueProfile(t2, 4, t0) |
| dispatch(constexpr op_to_object_length) |
| |
| .opToObjectSlow: |
| callSlowPath(_slow_path_to_object) |
| dispatch(constexpr op_to_object_length) |
| |
| |
| _llint_op_negate: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t0, t3) |
| loadisFromInstruction(3, t2) |
| bqb t3, tagTypeNumber, .opNegateNotInt |
| btiz t3, 0x7fffffff, .opNegateSlow |
| negi t3 |
| ori ArithProfileInt, t2 |
| orq tagTypeNumber, t3 |
| storeisToInstruction(t2, 3) |
| storeq t3, [cfr, t1, 8] |
| dispatch(constexpr op_negate_length) |
| .opNegateNotInt: |
| btqz t3, tagTypeNumber, .opNegateSlow |
| xorq 0x8000000000000000, t3 |
| ori ArithProfileNumber, t2 |
| storeq t3, [cfr, t1, 8] |
| storeisToInstruction(t2, 3) |
| dispatch(constexpr op_negate_length) |
| |
| .opNegateSlow: |
| callSlowPath(_slow_path_negate) |
| dispatch(constexpr op_negate_length) |
| |
| |
| macro binaryOpCustomStore(integerOperationAndStore, doubleOperation, slowPath) |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t2) |
| loadConstantOrVariable(t0, t1) |
| loadConstantOrVariable(t2, t0) |
| bqb t0, tagTypeNumber, .op1NotInt |
| bqb t1, tagTypeNumber, .op2NotInt |
| loadisFromInstruction(1, t2) |
| integerOperationAndStore(t1, t0, .slow, t2) |
| loadisFromInstruction(4, t1) |
| ori ArithProfileIntInt, t1 |
| storeisToInstruction(t1, 4) |
| dispatch(5) |
| |
| .op1NotInt: |
| # First operand is definitely not an int, the second operand could be anything. |
| btqz t0, tagTypeNumber, .slow |
| bqaeq t1, tagTypeNumber, .op1NotIntOp2Int |
| btqz t1, tagTypeNumber, .slow |
| addq tagTypeNumber, t1 |
| fq2d t1, ft1 |
| loadisFromInstruction(4, t2) |
| ori ArithProfileNumberNumber, t2 |
| storeisToInstruction(t2, 4) |
| jmp .op1NotIntReady |
| .op1NotIntOp2Int: |
| loadisFromInstruction(4, t2) |
| ori ArithProfileNumberInt, t2 |
| storeisToInstruction(t2, 4) |
| ci2d t1, ft1 |
| .op1NotIntReady: |
| loadisFromInstruction(1, t2) |
| addq tagTypeNumber, t0 |
| fq2d t0, ft0 |
| doubleOperation(ft1, ft0) |
| fd2q ft0, t0 |
| subq tagTypeNumber, t0 |
| storeq t0, [cfr, t2, 8] |
| dispatch(5) |
| |
| .op2NotInt: |
| # First operand is definitely an int, the second is definitely not. |
| loadisFromInstruction(1, t2) |
| btqz t1, tagTypeNumber, .slow |
| loadisFromInstruction(4, t3) |
| ori ArithProfileIntNumber, t3 |
| storeisToInstruction(t3, 4) |
| ci2d t0, ft0 |
| addq tagTypeNumber, t1 |
| fq2d t1, ft1 |
| doubleOperation(ft1, ft0) |
| fd2q ft0, t0 |
| subq tagTypeNumber, t0 |
| storeq t0, [cfr, t2, 8] |
| dispatch(5) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(5) |
| end |
| |
| macro binaryOp(integerOperation, doubleOperation, slowPath) |
| binaryOpCustomStore( |
| macro (left, right, slow, index) |
| integerOperation(left, right, slow) |
| orq tagTypeNumber, right |
| storeq right, [cfr, index, 8] |
| end, |
| doubleOperation, slowPath) |
| end |
| |
| _llint_op_add: |
| traceExecution() |
| binaryOp( |
| macro (left, right, slow) baddio left, right, slow end, |
| macro (left, right) addd left, right end, |
| _slow_path_add) |
| |
| |
| _llint_op_mul: |
| traceExecution() |
| binaryOpCustomStore( |
| macro (left, right, slow, index) |
| # Assume t3 is scratchable. |
| move right, t3 |
| bmulio left, t3, slow |
| btinz t3, .done |
| bilt left, 0, slow |
| bilt right, 0, slow |
| .done: |
| orq tagTypeNumber, t3 |
| storeq t3, [cfr, index, 8] |
| end, |
| macro (left, right) muld left, right end, |
| _slow_path_mul) |
| |
| |
| _llint_op_sub: |
| traceExecution() |
| binaryOp( |
| macro (left, right, slow) bsubio left, right, slow end, |
| macro (left, right) subd left, right end, |
| _slow_path_sub) |
| |
| |
| _llint_op_div: |
| traceExecution() |
| if X86_64 or X86_64_WIN |
| binaryOpCustomStore( |
| macro (left, right, slow, index) |
| # Assume t3 is scratchable. |
| btiz left, slow |
| bineq left, -1, .notNeg2TwoThe31DivByNeg1 |
| bieq right, -2147483648, .slow |
| .notNeg2TwoThe31DivByNeg1: |
| btinz right, .intOK |
| bilt left, 0, slow |
| .intOK: |
| move left, t3 |
| move right, t0 |
| cdqi |
| idivi t3 |
| btinz t1, slow |
| orq tagTypeNumber, t0 |
| storeq t0, [cfr, index, 8] |
| end, |
| macro (left, right) divd left, right end, |
| _slow_path_div) |
| else |
| callSlowPath(_slow_path_div) |
| dispatch(constexpr op_div_length) |
| end |
| |
| |
| macro bitOp(operation, slowPath, advance) |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t0, t1) |
| loadConstantOrVariable(t2, t0) |
| bqb t0, tagTypeNumber, .slow |
| bqb t1, tagTypeNumber, .slow |
| operation(t1, t0) |
| orq tagTypeNumber, t0 |
| storeq t0, [cfr, t3, 8] |
| dispatch(advance) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(advance) |
| end |
| |
| _llint_op_lshift: |
| traceExecution() |
| bitOp( |
| macro (left, right) lshifti left, right end, |
| _slow_path_lshift, |
| constexpr op_lshift_length) |
| |
| |
| _llint_op_rshift: |
| traceExecution() |
| bitOp( |
| macro (left, right) rshifti left, right end, |
| _slow_path_rshift, |
| constexpr op_rshift_length) |
| |
| |
| _llint_op_urshift: |
| traceExecution() |
| bitOp( |
| macro (left, right) urshifti left, right end, |
| _slow_path_urshift, |
| constexpr op_urshift_length) |
| |
| |
| _llint_op_unsigned: |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadisFromInstruction(2, t1) |
| loadConstantOrVariable(t1, t2) |
| bilt t2, 0, .opUnsignedSlow |
| storeq t2, [cfr, t0, 8] |
| dispatch(constexpr op_unsigned_length) |
| .opUnsignedSlow: |
| callSlowPath(_slow_path_unsigned) |
| dispatch(constexpr op_unsigned_length) |
| |
| |
| _llint_op_bitand: |
| traceExecution() |
| bitOp( |
| macro (left, right) andi left, right end, |
| _slow_path_bitand, |
| constexpr op_bitand_length) |
| |
| |
| _llint_op_bitxor: |
| traceExecution() |
| bitOp( |
| macro (left, right) xori left, right end, |
| _slow_path_bitxor, |
| constexpr op_bitxor_length) |
| |
| |
| _llint_op_bitor: |
| traceExecution() |
| bitOp( |
| macro (left, right) ori left, right end, |
| _slow_path_bitor, |
| constexpr op_bitor_length) |
| |
| |
| _llint_op_overrides_has_instance: |
| traceExecution() |
| loadisFromStruct(OpOverridesHasInstance::m_dst, t3) |
| |
| loadisFromStruct(OpOverridesHasInstance::m_hasInstanceValue, t1) |
| loadConstantOrVariable(t1, t0) |
| loadp CodeBlock[cfr], t2 |
| loadp CodeBlock::m_globalObject[t2], t2 |
| loadp JSGlobalObject::m_functionProtoHasInstanceSymbolFunction[t2], t2 |
| bqneq t0, t2, .opOverridesHasInstanceNotDefaultSymbol |
| |
| loadisFromStruct(OpOverridesHasInstance::m_constructor, t1) |
| loadConstantOrVariable(t1, t0) |
| tbz JSCell::m_flags[t0], ImplementsDefaultHasInstance, t1 |
| orq ValueFalse, t1 |
| storeq t1, [cfr, t3, 8] |
| dispatch(constexpr op_overrides_has_instance_length) |
| |
| .opOverridesHasInstanceNotDefaultSymbol: |
| storeq ValueTrue, [cfr, t3, 8] |
| dispatch(constexpr op_overrides_has_instance_length) |
| |
| |
| _llint_op_instanceof_custom: |
| traceExecution() |
| callSlowPath(_llint_slow_path_instanceof_custom) |
| dispatch(constexpr op_instanceof_custom_length) |
| |
| |
| _llint_op_is_empty: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| cqeq t0, ValueEmpty, t3 |
| orq ValueFalse, t3 |
| storeq t3, [cfr, t2, 8] |
| dispatch(constexpr op_is_empty_length) |
| |
| |
| _llint_op_is_undefined: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| btqz t0, tagMask, .opIsUndefinedCell |
| cqeq t0, ValueUndefined, t3 |
| orq ValueFalse, t3 |
| storeq t3, [cfr, t2, 8] |
| dispatch(constexpr op_is_undefined_length) |
| .opIsUndefinedCell: |
| btbnz JSCell::m_flags[t0], MasqueradesAsUndefined, .masqueradesAsUndefined |
| move ValueFalse, t1 |
| storeq t1, [cfr, t2, 8] |
| dispatch(constexpr op_is_undefined_length) |
| .masqueradesAsUndefined: |
| loadStructureWithScratch(t0, t3, t1, t5) |
| loadp CodeBlock[cfr], t1 |
| loadp CodeBlock::m_globalObject[t1], t1 |
| cpeq Structure::m_globalObject[t3], t1, t0 |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t2, 8] |
| dispatch(constexpr op_is_undefined_length) |
| |
| |
| _llint_op_is_boolean: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| xorq ValueFalse, t0 |
| tqz t0, ~1, t0 |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t2, 8] |
| dispatch(constexpr op_is_boolean_length) |
| |
| |
| _llint_op_is_number: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| tqnz t0, tagTypeNumber, t1 |
| orq ValueFalse, t1 |
| storeq t1, [cfr, t2, 8] |
| dispatch(constexpr op_is_number_length) |
| |
| |
| _llint_op_is_cell_with_type: |
| traceExecution() |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t3) |
| btqnz t3, tagMask, .notCellCase |
| cbeq JSCell::m_type[t3], t0, t1 |
| orq ValueFalse, t1 |
| storeq t1, [cfr, t2, 8] |
| dispatch(constexpr op_is_cell_with_type_length) |
| .notCellCase: |
| storeq ValueFalse, [cfr, t2, 8] |
| dispatch(constexpr op_is_cell_with_type_length) |
| |
| |
| _llint_op_is_object: |
| traceExecution() |
| loadisFromInstruction(2, t1) |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t1, t0) |
| btqnz t0, tagMask, .opIsObjectNotCell |
| cbaeq JSCell::m_type[t0], ObjectType, t1 |
| orq ValueFalse, t1 |
| storeq t1, [cfr, t2, 8] |
| dispatch(constexpr op_is_object_length) |
| .opIsObjectNotCell: |
| storeq ValueFalse, [cfr, t2, 8] |
| dispatch(constexpr op_is_object_length) |
| |
| |
| macro loadPropertyAtVariableOffset(propertyOffsetAsInt, objectAndStorage, value) |
| bilt propertyOffsetAsInt, firstOutOfLineOffset, .isInline |
| loadp JSObject::m_butterfly[objectAndStorage], objectAndStorage |
| negi propertyOffsetAsInt |
| sxi2q propertyOffsetAsInt, propertyOffsetAsInt |
| jmp .ready |
| .isInline: |
| addp sizeof JSObject - (firstOutOfLineOffset - 2) * 8, objectAndStorage |
| .ready: |
| loadq (firstOutOfLineOffset - 2) * 8[objectAndStorage, propertyOffsetAsInt, 8], value |
| end |
| |
| |
| macro storePropertyAtVariableOffset(propertyOffsetAsInt, objectAndStorage, value) |
| bilt propertyOffsetAsInt, firstOutOfLineOffset, .isInline |
| loadp JSObject::m_butterfly[objectAndStorage], objectAndStorage |
| negi propertyOffsetAsInt |
| sxi2q propertyOffsetAsInt, propertyOffsetAsInt |
| jmp .ready |
| .isInline: |
| addp sizeof JSObject - (firstOutOfLineOffset - 2) * 8, objectAndStorage |
| .ready: |
| storeq value, (firstOutOfLineOffset - 2) * 8[objectAndStorage, propertyOffsetAsInt, 8] |
| end |
| |
| |
| _llint_op_get_by_id_direct: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadConstantOrVariableCell(t0, t3, .opGetByIdDirectSlow) |
| loadi JSCell::m_structureID[t3], t1 |
| loadisFromInstruction(4, t2) |
| bineq t2, t1, .opGetByIdDirectSlow |
| loadisFromInstruction(5, t1) |
| loadisFromInstruction(1, t2) |
| loadPropertyAtVariableOffset(t1, t3, t0) |
| storeq t0, [cfr, t2, 8] |
| valueProfile(t0, 6, t1) |
| dispatch(constexpr op_get_by_id_direct_length) |
| |
| .opGetByIdDirectSlow: |
| callSlowPath(_llint_slow_path_get_by_id_direct) |
| dispatch(constexpr op_get_by_id_direct_length) |
| |
| |
| _llint_op_get_by_id: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadConstantOrVariableCell(t0, t3, .opGetByIdSlow) |
| loadi JSCell::m_structureID[t3], t1 |
| loadisFromInstruction(4, t2) |
| bineq t2, t1, .opGetByIdSlow |
| loadisFromInstruction(5, t1) |
| loadisFromInstruction(1, t2) |
| loadPropertyAtVariableOffset(t1, t3, t0) |
| storeq t0, [cfr, t2, 8] |
| valueProfile(t0, 8, t1) |
| dispatch(constexpr op_get_by_id_length) |
| |
| .opGetByIdSlow: |
| callSlowPath(_llint_slow_path_get_by_id) |
| dispatch(constexpr op_get_by_id_length) |
| |
| |
| _llint_op_get_by_id_proto_load: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadConstantOrVariableCell(t0, t3, .opGetByIdProtoSlow) |
| loadi JSCell::m_structureID[t3], t1 |
| loadisFromInstruction(4, t2) |
| bineq t2, t1, .opGetByIdProtoSlow |
| loadisFromInstruction(5, t1) |
| loadpFromInstruction(6, t3) |
| loadisFromInstruction(1, t2) |
| loadPropertyAtVariableOffset(t1, t3, t0) |
| storeq t0, [cfr, t2, 8] |
| valueProfile(t0, 8, t1) |
| dispatch(constexpr op_get_by_id_proto_load_length) |
| |
| .opGetByIdProtoSlow: |
| callSlowPath(_llint_slow_path_get_by_id) |
| dispatch(constexpr op_get_by_id_proto_load_length) |
| |
| |
| _llint_op_get_by_id_unset: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadConstantOrVariableCell(t0, t3, .opGetByIdUnsetSlow) |
| loadi JSCell::m_structureID[t3], t1 |
| loadisFromInstruction(4, t2) |
| bineq t2, t1, .opGetByIdUnsetSlow |
| loadisFromInstruction(1, t2) |
| storeq ValueUndefined, [cfr, t2, 8] |
| valueProfile(ValueUndefined, 8, t1) |
| dispatch(constexpr op_get_by_id_unset_length) |
| |
| .opGetByIdUnsetSlow: |
| callSlowPath(_llint_slow_path_get_by_id) |
| dispatch(constexpr op_get_by_id_unset_length) |
| |
| |
| _llint_op_get_array_length: |
| traceExecution() |
| loadisFromInstruction(2, t0) |
| loadpFromInstruction(4, t1) |
| loadConstantOrVariableCell(t0, t3, .opGetArrayLengthSlow) |
| move t3, t2 |
| arrayProfile(t2, t1, t0) |
| btiz t2, IsArray, .opGetArrayLengthSlow |
| btiz t2, IndexingShapeMask, .opGetArrayLengthSlow |
| loadisFromInstruction(1, t1) |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::jsValue, constexpr JSVALUE_GIGACAGE_MASK, JSObject::m_butterfly[t3], t0, t2) |
| loadi -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t0], t0 |
| bilt t0, 0, .opGetArrayLengthSlow |
| orq tagTypeNumber, t0 |
| valueProfile(t0, 8, t2) |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_get_array_length_length) |
| |
| .opGetArrayLengthSlow: |
| callSlowPath(_llint_slow_path_get_by_id) |
| dispatch(constexpr op_get_array_length_length) |
| |
| |
| _llint_op_put_by_id: |
| traceExecution() |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariableCell(t3, t0, .opPutByIdSlow) |
| loadisFromInstruction(4, t2) |
| bineq t2, JSCell::m_structureID[t0], .opPutByIdSlow |
| |
| # At this point, we have: |
| # t2 -> current structure ID |
| # t0 -> object base |
| |
| loadisFromInstruction(3, t1) |
| loadConstantOrVariable(t1, t3) |
| |
| loadpFromInstruction(8, t1) |
| |
| # At this point, we have: |
| # t0 -> object base |
| # t1 -> put by id flags |
| # t2 -> current structure ID |
| # t3 -> value to put |
| |
| btpnz t1, PutByIdPrimaryTypeMask, .opPutByIdTypeCheckObjectWithStructureOrOther |
| |
| # We have one of the non-structure type checks. Find out which one. |
| andp PutByIdSecondaryTypeMask, t1 |
| bplt t1, PutByIdSecondaryTypeString, .opPutByIdTypeCheckLessThanString |
| |
| # We are one of the following: String, Symbol, Object, ObjectOrOther, Top |
| bplt t1, PutByIdSecondaryTypeObjectOrOther, .opPutByIdTypeCheckLessThanObjectOrOther |
| |
| # We are either ObjectOrOther or Top. |
| bpeq t1, PutByIdSecondaryTypeTop, .opPutByIdDoneCheckingTypes |
| |
| # Check if we are ObjectOrOther. |
| btqz t3, tagMask, .opPutByIdTypeCheckObject |
| .opPutByIdTypeCheckOther: |
| andq ~TagBitUndefined, t3 |
| bqeq t3, ValueNull, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckLessThanObjectOrOther: |
| # We are either String, Symbol or Object. |
| btqnz t3, tagMask, .opPutByIdSlow |
| bpeq t1, PutByIdSecondaryTypeObject, .opPutByIdTypeCheckObject |
| bpeq t1, PutByIdSecondaryTypeSymbol, .opPutByIdTypeCheckSymbol |
| bbeq JSCell::m_type[t3], StringType, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| .opPutByIdTypeCheckObject: |
| bbaeq JSCell::m_type[t3], ObjectType, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| .opPutByIdTypeCheckSymbol: |
| bbeq JSCell::m_type[t3], SymbolType, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckLessThanString: |
| # We are one of the following: Bottom, Boolean, Other, Int32, Number |
| bplt t1, PutByIdSecondaryTypeInt32, .opPutByIdTypeCheckLessThanInt32 |
| |
| # We are either Int32 or Number. |
| bpeq t1, PutByIdSecondaryTypeNumber, .opPutByIdTypeCheckNumber |
| |
| bqaeq t3, tagTypeNumber, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckNumber: |
| btqnz t3, tagTypeNumber, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckLessThanInt32: |
| # We are one of the following: Bottom, Boolean, Other. |
| bpneq t1, PutByIdSecondaryTypeBoolean, .opPutByIdTypeCheckBottomOrOther |
| xorq ValueFalse, t3 |
| btqz t3, ~1, .opPutByIdDoneCheckingTypes |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckBottomOrOther: |
| bpeq t1, PutByIdSecondaryTypeOther, .opPutByIdTypeCheckOther |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckObjectWithStructureOrOther: |
| btqz t3, tagMask, .opPutByIdTypeCheckObjectWithStructure |
| btpnz t1, PutByIdPrimaryTypeObjectWithStructureOrOther, .opPutByIdTypeCheckOther |
| jmp .opPutByIdSlow |
| |
| .opPutByIdTypeCheckObjectWithStructure: |
| urshiftp 3, t1 |
| bineq t1, JSCell::m_structureID[t3], .opPutByIdSlow |
| |
| .opPutByIdDoneCheckingTypes: |
| loadisFromInstruction(6, t1) |
| |
| btiz t1, .opPutByIdNotTransition |
| |
| # This is the transition case. t1 holds the new structureID. t2 holds the old structure ID. |
| # If we have a chain, we need to check it. t0 is the base. We may clobber t1 to use it as |
| # scratch. |
| loadpFromInstruction(7, t3) |
| btpz t3, .opPutByIdTransitionDirect |
| |
| loadp StructureChain::m_vector[t3], t3 |
| assert(macro (ok) btpnz t3, ok end) |
| |
| structureIDToStructureWithScratch(t2, t1, t5) |
| loadq Structure::m_prototype[t2], t2 |
| bqeq t2, ValueNull, .opPutByIdTransitionChainDone |
| .opPutByIdTransitionChainLoop: |
| # At this point, t2 contains a prototye, and [t3] contains the Structure* that we want that |
| # prototype to have. We don't want to have to load the Structure* for t2. Instead, we load |
| # the Structure* from [t3], and then we compare its id to the id in the header of t2. |
| loadp [t3], t1 |
| loadi JSCell::m_structureID[t2], t2 |
| # Now, t1 has the Structure* and t2 has the StructureID that we want that Structure* to have. |
| bineq t2, Structure::m_blob + StructureIDBlob::u.fields.structureID[t1], .opPutByIdSlow |
| addp 8, t3 |
| loadq Structure::m_prototype[t1], t2 |
| bqneq t2, ValueNull, .opPutByIdTransitionChainLoop |
| |
| .opPutByIdTransitionChainDone: |
| # Reload the new structure, since we clobbered it above. |
| loadisFromInstruction(6, t1) |
| |
| .opPutByIdTransitionDirect: |
| storei t1, JSCell::m_structureID[t0] |
| writeBarrierOnOperand(1) |
| # Reload base into t0 |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t1, t0) |
| |
| .opPutByIdNotTransition: |
| # The only thing live right now is t0, which holds the base. |
| loadisFromInstruction(3, t1) |
| loadConstantOrVariable(t1, t2) |
| loadisFromInstruction(5, t1) |
| storePropertyAtVariableOffset(t1, t0, t2) |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_by_id_length) |
| |
| .opPutByIdSlow: |
| callSlowPath(_llint_slow_path_put_by_id) |
| dispatch(constexpr op_put_by_id_length) |
| |
| macro finishGetByVal(result, scratch) |
| loadisFromInstruction(1, scratch) |
| storeq result, [cfr, scratch, 8] |
| valueProfile(result, 5, scratch) |
| dispatch(6) |
| end |
| |
| macro finishIntGetByVal(result, scratch) |
| orq tagTypeNumber, result |
| finishGetByVal(result, scratch) |
| end |
| |
| macro finishDoubleGetByVal(result, scratch1, scratch2) |
| fd2q result, scratch1 |
| subq tagTypeNumber, scratch1 |
| finishGetByVal(scratch1, scratch2) |
| end |
| |
| _llint_op_get_by_val: |
| traceExecution() |
| loadisFromInstruction(2, t2) |
| loadConstantOrVariableCell(t2, t0, .opGetByValSlow) |
| loadpFromInstruction(4, t3) |
| move t0, t2 |
| arrayProfile(t2, t3, t1) |
| loadisFromInstruction(3, t3) |
| loadConstantOrVariableInt32(t3, t1, .opGetByValSlow) |
| sxi2q t1, t1 |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::jsValue, constexpr JSVALUE_GIGACAGE_MASK, JSObject::m_butterfly[t0], t3, t5) |
| andi IndexingShapeMask, t2 |
| bieq t2, Int32Shape, .opGetByValIsContiguous |
| bineq t2, ContiguousShape, .opGetByValNotContiguous |
| |
| .opGetByValIsContiguous: |
| biaeq t1, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t3], .opGetByValSlow |
| loadisFromInstruction(1, t0) |
| loadq [t3, t1, 8], t2 |
| btqz t2, .opGetByValSlow |
| jmp .opGetByValDone |
| |
| .opGetByValNotContiguous: |
| bineq t2, DoubleShape, .opGetByValNotDouble |
| biaeq t1, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t3], .opGetByValSlow |
| loadisFromInstruction(1 ,t0) |
| loadd [t3, t1, 8], ft0 |
| bdnequn ft0, ft0, .opGetByValSlow |
| fd2q ft0, t2 |
| subq tagTypeNumber, t2 |
| jmp .opGetByValDone |
| |
| .opGetByValNotDouble: |
| subi ArrayStorageShape, t2 |
| bia t2, SlowPutArrayStorageShape - ArrayStorageShape, .opGetByValNotIndexedStorage |
| biaeq t1, -sizeof IndexingHeader + IndexingHeader::u.lengths.vectorLength[t3], .opGetByValSlow |
| loadisFromInstruction(1, t0) |
| loadq ArrayStorage::m_vector[t3, t1, 8], t2 |
| btqz t2, .opGetByValSlow |
| |
| .opGetByValDone: |
| storeq t2, [cfr, t0, 8] |
| valueProfile(t2, 5, t0) |
| dispatch(constexpr op_get_by_val_length) |
| |
| .opGetByValNotIndexedStorage: |
| # First lets check if we even have a typed array. This lets us do some boilerplate up front. |
| loadb JSCell::m_type[t0], t2 |
| subi FirstTypedArrayType, t2 |
| biaeq t2, NumberOfTypedArrayTypesExcludingDataView, .opGetByValSlow |
| |
| # Sweet, now we know that we have a typed array. Do some basic things now. |
| biaeq t1, JSArrayBufferView::m_length[t0], .opGetByValSlow |
| |
| # Now bisect through the various types: |
| # Int8ArrayType, |
| # Uint8ArrayType, |
| # Uint8ClampedArrayType, |
| # Int16ArrayType, |
| # Uint16ArrayType, |
| # Int32ArrayType, |
| # Uint32ArrayType, |
| # Float32ArrayType, |
| # Float64ArrayType, |
| |
| bia t2, Uint16ArrayType - FirstTypedArrayType, .opGetByValAboveUint16Array |
| |
| # We have one of Int8ArrayType .. Uint16ArrayType. |
| bia t2, Uint8ClampedArrayType - FirstTypedArrayType, .opGetByValInt16ArrayOrUint16Array |
| |
| # We have one of Int8ArrayType ... Uint8ClampedArrayType |
| bia t2, Int8ArrayType - FirstTypedArrayType, .opGetByValUint8ArrayOrUint8ClampedArray |
| |
| # We have Int8ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadbs [t3, t1], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValUint8ArrayOrUint8ClampedArray: |
| bia t2, Uint8ArrayType - FirstTypedArrayType, .opGetByValUint8ClampedArray |
| |
| # We have Uint8ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadb [t3, t1], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValUint8ClampedArray: |
| # We have Uint8ClampedArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadb [t3, t1], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValInt16ArrayOrUint16Array: |
| # We have either Int16ArrayType or Uint16ClampedArrayType. |
| bia t2, Int16ArrayType - FirstTypedArrayType, .opGetByValUint16Array |
| |
| # We have Int16ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadhs [t3, t1, 2], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValUint16Array: |
| # We have Uint16ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadh [t3, t1, 2], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValAboveUint16Array: |
| # We have one of Int32ArrayType .. Float64ArrayType. |
| bia t2, Uint32ArrayType - FirstTypedArrayType, .opGetByValFloat32ArrayOrFloat64Array |
| |
| # We have either Int32ArrayType or Uint32ArrayType |
| bia t2, Int32ArrayType - FirstTypedArrayType, .opGetByValUint32Array |
| |
| # We have Int32ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadi [t3, t1, 4], t0 |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValUint32Array: |
| # We have Uint32ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| # This is the hardest part because of large unsigned values. |
| loadi [t3, t1, 4], t0 |
| bilt t0, 0, .opGetByValSlow # This case is still awkward to implement in LLInt. |
| finishIntGetByVal(t0, t1) |
| |
| .opGetByValFloat32ArrayOrFloat64Array: |
| # We have one of Float32ArrayType or Float64ArrayType. Sadly, we cannot handle Float32Array |
| # inline yet. That would require some offlineasm changes. |
| bieq t2, Float32ArrayType - FirstTypedArrayType, .opGetByValSlow |
| |
| # We have Float64ArrayType. |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::primitive, constexpr PRIMITIVE_GIGACAGE_MASK, JSArrayBufferView::m_vector[t0], t3, t2) |
| loadd [t3, t1, 8], ft0 |
| bdnequn ft0, ft0, .opGetByValSlow |
| finishDoubleGetByVal(ft0, t0, t1) |
| |
| .opGetByValSlow: |
| callSlowPath(_llint_slow_path_get_by_val) |
| dispatch(constexpr op_get_by_val_length) |
| |
| |
| macro contiguousPutByVal(storeCallback) |
| biaeq t3, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t0], .outOfBounds |
| .storeResult: |
| loadisFromInstruction(3, t2) |
| storeCallback(t2, t1, [t0, t3, 8]) |
| dispatch(5) |
| |
| .outOfBounds: |
| biaeq t3, -sizeof IndexingHeader + IndexingHeader::u.lengths.vectorLength[t0], .opPutByValOutOfBounds |
| loadp 32[PB, PC, 8], t2 |
| storeb 1, ArrayProfile::m_mayStoreToHole[t2] |
| addi 1, t3, t2 |
| storei t2, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t0] |
| jmp .storeResult |
| end |
| |
| macro putByVal(slowPath) |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadConstantOrVariableCell(t0, t1, .opPutByValSlow) |
| loadpFromInstruction(4, t3) |
| move t1, t2 |
| arrayProfile(t2, t3, t0) |
| loadisFromInstruction(2, t0) |
| loadConstantOrVariableInt32(t0, t3, .opPutByValSlow) |
| sxi2q t3, t3 |
| loadCaged(_g_gigacageBasePtrs + Gigacage::BasePtrs::jsValue, constexpr JSVALUE_GIGACAGE_MASK, JSObject::m_butterfly[t1], t0, t5) |
| andi IndexingShapeMask, t2 |
| bineq t2, Int32Shape, .opPutByValNotInt32 |
| contiguousPutByVal( |
| macro (operand, scratch, address) |
| loadConstantOrVariable(operand, scratch) |
| bpb scratch, tagTypeNumber, .opPutByValSlow |
| storep scratch, address |
| writeBarrierOnOperands(1, 3) |
| end) |
| |
| .opPutByValNotInt32: |
| bineq t2, DoubleShape, .opPutByValNotDouble |
| contiguousPutByVal( |
| macro (operand, scratch, address) |
| loadConstantOrVariable(operand, scratch) |
| bqb scratch, tagTypeNumber, .notInt |
| ci2d scratch, ft0 |
| jmp .ready |
| .notInt: |
| addp tagTypeNumber, scratch |
| fq2d scratch, ft0 |
| bdnequn ft0, ft0, .opPutByValSlow |
| .ready: |
| stored ft0, address |
| writeBarrierOnOperands(1, 3) |
| end) |
| |
| .opPutByValNotDouble: |
| bineq t2, ContiguousShape, .opPutByValNotContiguous |
| contiguousPutByVal( |
| macro (operand, scratch, address) |
| loadConstantOrVariable(operand, scratch) |
| storep scratch, address |
| writeBarrierOnOperands(1, 3) |
| end) |
| |
| .opPutByValNotContiguous: |
| bineq t2, ArrayStorageShape, .opPutByValSlow |
| biaeq t3, -sizeof IndexingHeader + IndexingHeader::u.lengths.vectorLength[t0], .opPutByValOutOfBounds |
| btqz ArrayStorage::m_vector[t0, t3, 8], .opPutByValArrayStorageEmpty |
| .opPutByValArrayStorageStoreResult: |
| loadisFromInstruction(3, t2) |
| loadConstantOrVariable(t2, t1) |
| storeq t1, ArrayStorage::m_vector[t0, t3, 8] |
| writeBarrierOnOperands(1, 3) |
| dispatch(5) |
| |
| .opPutByValArrayStorageEmpty: |
| loadpFromInstruction(4, t1) |
| storeb 1, ArrayProfile::m_mayStoreToHole[t1] |
| addi 1, ArrayStorage::m_numValuesInVector[t0] |
| bib t3, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t0], .opPutByValArrayStorageStoreResult |
| addi 1, t3, t1 |
| storei t1, -sizeof IndexingHeader + IndexingHeader::u.lengths.publicLength[t0] |
| jmp .opPutByValArrayStorageStoreResult |
| |
| .opPutByValOutOfBounds: |
| loadpFromInstruction(4, t0) |
| storeb 1, ArrayProfile::m_outOfBounds[t0] |
| .opPutByValSlow: |
| callSlowPath(slowPath) |
| dispatch(5) |
| end |
| |
| _llint_op_put_by_val: |
| putByVal(_llint_slow_path_put_by_val) |
| |
| _llint_op_put_by_val_direct: |
| putByVal(_llint_slow_path_put_by_val_direct) |
| |
| |
| _llint_op_jmp: |
| traceExecution() |
| dispatchIntIndirect(1) |
| |
| |
| macro jumpTrueOrFalse(conditionOp, slow) |
| loadisFromInstruction(1, t1) |
| loadConstantOrVariable(t1, t0) |
| xorq ValueFalse, t0 |
| btqnz t0, -1, .slow |
| conditionOp(t0, .target) |
| dispatch(3) |
| |
| .target: |
| dispatchIntIndirect(2) |
| |
| .slow: |
| callSlowPath(slow) |
| dispatch(0) |
| end |
| |
| |
| macro equalNull(cellHandler, immediateHandler) |
| loadisFromInstruction(1, t0) |
| assertNotConstant(t0) |
| loadq [cfr, t0, 8], t0 |
| btqnz t0, tagMask, .immediate |
| loadStructureWithScratch(t0, t2, t1, t3) |
| cellHandler(t2, JSCell::m_flags[t0], .target) |
| dispatch(3) |
| |
| .target: |
| dispatchIntIndirect(2) |
| |
| .immediate: |
| andq ~TagBitUndefined, t0 |
| immediateHandler(t0, .target) |
| dispatch(3) |
| end |
| |
| _llint_op_jeq_null: |
| traceExecution() |
| equalNull( |
| macro (structure, value, target) |
| btbz value, MasqueradesAsUndefined, .notMasqueradesAsUndefined |
| loadp CodeBlock[cfr], t0 |
| loadp CodeBlock::m_globalObject[t0], t0 |
| bpeq Structure::m_globalObject[structure], t0, target |
| .notMasqueradesAsUndefined: |
| end, |
| macro (value, target) bqeq value, ValueNull, target end) |
| |
| |
| _llint_op_jneq_null: |
| traceExecution() |
| equalNull( |
| macro (structure, value, target) |
| btbz value, MasqueradesAsUndefined, target |
| loadp CodeBlock[cfr], t0 |
| loadp CodeBlock::m_globalObject[t0], t0 |
| bpneq Structure::m_globalObject[structure], t0, target |
| end, |
| macro (value, target) bqneq value, ValueNull, target end) |
| |
| |
| _llint_op_jneq_ptr: |
| traceExecution() |
| loadisFromInstruction(1, t0) |
| loadisFromInstruction(2, t1) |
| loadp CodeBlock[cfr], t2 |
| loadp CodeBlock::m_globalObject[t2], t2 |
| loadp JSGlobalObject::m_specialPointers[t2, t1, 8], t1 |
| bpneq t1, [cfr, t0, 8], .opJneqPtrTarget |
| dispatch(5) |
| |
| .opJneqPtrTarget: |
| storei 1, 32[PB, PC, 8] |
| dispatchIntIndirect(3) |
| |
| |
| macro compareJump(integerCompare, doubleCompare, slowPath) |
| loadisFromInstruction(1, t2) |
| loadisFromInstruction(2, t3) |
| loadConstantOrVariable(t2, t0) |
| loadConstantOrVariable(t3, t1) |
| bqb t0, tagTypeNumber, .op1NotInt |
| bqb t1, tagTypeNumber, .op2NotInt |
| integerCompare(t0, t1, .jumpTarget) |
| dispatch(4) |
| |
| .op1NotInt: |
| btqz t0, tagTypeNumber, .slow |
| bqb t1, tagTypeNumber, .op1NotIntOp2NotInt |
| ci2d t1, ft1 |
| jmp .op1NotIntReady |
| .op1NotIntOp2NotInt: |
| btqz t1, tagTypeNumber, .slow |
| addq tagTypeNumber, t1 |
| fq2d t1, ft1 |
| .op1NotIntReady: |
| addq tagTypeNumber, t0 |
| fq2d t0, ft0 |
| doubleCompare(ft0, ft1, .jumpTarget) |
| dispatch(4) |
| |
| .op2NotInt: |
| ci2d t0, ft0 |
| btqz t1, tagTypeNumber, .slow |
| addq tagTypeNumber, t1 |
| fq2d t1, ft1 |
| doubleCompare(ft0, ft1, .jumpTarget) |
| dispatch(4) |
| |
| .jumpTarget: |
| dispatchIntIndirect(3) |
| |
| .slow: |
| callSlowPath(slowPath) |
| dispatch(0) |
| end |
| |
| |
| macro compareUnsignedJump(integerCompare) |
| loadisFromInstruction(1, t2) |
| loadisFromInstruction(2, t3) |
| loadConstantOrVariable(t2, t0) |
| loadConstantOrVariable(t3, t1) |
| integerCompare(t0, t1, .jumpTarget) |
| dispatch(4) |
| |
| .jumpTarget: |
| dispatchIntIndirect(3) |
| end |
| |
| |
| macro compareUnsigned(integerCompareAndSet) |
| loadisFromInstruction(3, t0) |
| loadisFromInstruction(2, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t0, t1) |
| loadConstantOrVariable(t2, t0) |
| integerCompareAndSet(t0, t1, t0) |
| orq ValueFalse, t0 |
| storeq t0, [cfr, t3, 8] |
| dispatch(4) |
| end |
| |
| |
| _llint_op_switch_imm: |
| traceExecution() |
| loadisFromInstruction(3, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t2, t1) |
| loadp CodeBlock[cfr], t2 |
| loadp CodeBlock::m_rareData[t2], t2 |
| muli sizeof SimpleJumpTable, t3 # FIXME: would be nice to peephole this! |
| loadp CodeBlock::RareData::m_switchJumpTables + VectorBufferOffset[t2], t2 |
| addp t3, t2 |
| bqb t1, tagTypeNumber, .opSwitchImmNotInt |
| subi SimpleJumpTable::min[t2], t1 |
| biaeq t1, SimpleJumpTable::branchOffsets + VectorSizeOffset[t2], .opSwitchImmFallThrough |
| loadp SimpleJumpTable::branchOffsets + VectorBufferOffset[t2], t3 |
| loadis [t3, t1, 4], t1 |
| btiz t1, .opSwitchImmFallThrough |
| dispatch(t1) |
| |
| .opSwitchImmNotInt: |
| btqnz t1, tagTypeNumber, .opSwitchImmSlow # Go slow if it's a double. |
| .opSwitchImmFallThrough: |
| dispatchIntIndirect(2) |
| |
| .opSwitchImmSlow: |
| callSlowPath(_llint_slow_path_switch_imm) |
| dispatch(0) |
| |
| |
| _llint_op_switch_char: |
| traceExecution() |
| loadisFromInstruction(3, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t2, t1) |
| loadp CodeBlock[cfr], t2 |
| loadp CodeBlock::m_rareData[t2], t2 |
| muli sizeof SimpleJumpTable, t3 |
| loadp CodeBlock::RareData::m_switchJumpTables + VectorBufferOffset[t2], t2 |
| addp t3, t2 |
| btqnz t1, tagMask, .opSwitchCharFallThrough |
| bbneq JSCell::m_type[t1], StringType, .opSwitchCharFallThrough |
| bineq JSString::m_length[t1], 1, .opSwitchCharFallThrough |
| loadp JSString::m_value[t1], t0 |
| btpz t0, .opSwitchOnRope |
| loadp StringImpl::m_data8[t0], t1 |
| btinz StringImpl::m_hashAndFlags[t0], HashFlags8BitBuffer, .opSwitchChar8Bit |
| loadh [t1], t0 |
| jmp .opSwitchCharReady |
| .opSwitchChar8Bit: |
| loadb [t1], t0 |
| .opSwitchCharReady: |
| subi SimpleJumpTable::min[t2], t0 |
| biaeq t0, SimpleJumpTable::branchOffsets + VectorSizeOffset[t2], .opSwitchCharFallThrough |
| loadp SimpleJumpTable::branchOffsets + VectorBufferOffset[t2], t2 |
| loadis [t2, t0, 4], t1 |
| btiz t1, .opSwitchCharFallThrough |
| dispatch(t1) |
| |
| .opSwitchCharFallThrough: |
| dispatchIntIndirect(2) |
| |
| .opSwitchOnRope: |
| callSlowPath(_llint_slow_path_switch_char) |
| dispatch(0) |
| |
| |
| macro arrayProfileForCall() |
| loadisFromInstruction(4, t3) |
| negp t3 |
| loadq ThisArgumentOffset[cfr, t3, 8], t0 |
| btqnz t0, tagMask, .done |
| loadpFromInstruction((CallOpCodeSize - 2), t1) |
| loadi JSCell::m_structureID[t0], t3 |
| storei t3, ArrayProfile::m_lastSeenStructureID[t1] |
| .done: |
| end |
| |
| macro doCall(slowPath, prepareCall) |
| loadisFromInstruction(2, t0) |
| loadpFromInstruction(5, t1) |
| if POINTER_PROFILING |
| move t1, t5 |
| end |
| loadp LLIntCallLinkInfo::callee[t1], t2 |
| loadConstantOrVariable(t0, t3) |
| bqneq t3, t2, .opCallSlow |
| loadisFromInstruction(4, t3) |
| lshifti 3, t3 |
| negp t3 |
| addp cfr, t3 |
| storeq t2, Callee[t3] |
| loadisFromInstruction(3, t2) |
| storei PC, ArgumentCount + TagOffset[cfr] |
| storei t2, ArgumentCount + PayloadOffset[t3] |
| move t3, sp |
| if POISON |
| loadp _g_JITCodePoison, t2 |
| xorp LLIntCallLinkInfo::machineCodeTarget[t1], t2 |
| prepareCall(t2, t1, t3, t4, JSEntryPtrTag) |
| callTargetFunction(t2, JSEntryPtrTag) |
| else |
| prepareCall(LLIntCallLinkInfo::machineCodeTarget[t1], t2, t3, t4, JSEntryPtrTag) |
| callTargetFunction(LLIntCallLinkInfo::machineCodeTarget[t1], JSEntryPtrTag) |
| end |
| |
| .opCallSlow: |
| slowPathForCall(slowPath, prepareCall) |
| end |
| |
| _llint_op_ret: |
| traceExecution() |
| checkSwitchToJITForEpilogue() |
| loadisFromInstruction(1, t2) |
| loadConstantOrVariable(t2, r0) |
| doReturn() |
| |
| |
| _llint_op_to_primitive: |
| traceExecution() |
| loadisFromInstruction(2, t2) |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t2, t0) |
| btqnz t0, tagMask, .opToPrimitiveIsImm |
| bbaeq JSCell::m_type[t0], ObjectType, .opToPrimitiveSlowCase |
| .opToPrimitiveIsImm: |
| storeq t0, [cfr, t3, 8] |
| dispatch(constexpr op_to_primitive_length) |
| |
| .opToPrimitiveSlowCase: |
| callSlowPath(_slow_path_to_primitive) |
| dispatch(constexpr op_to_primitive_length) |
| |
| |
| _llint_op_catch: |
| # This is where we end up from the JIT's throw trampoline (because the |
| # machine code return address will be set to _llint_op_catch), and from |
| # the interpreter's throw trampoline (see _llint_throw_trampoline). |
| # The throwing code must have known that we were throwing to the interpreter, |
| # and have set VM::targetInterpreterPCForThrow. |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| restoreCalleeSavesFromVMEntryFrameCalleeSavesBuffer(t3, t0) |
| loadp VM::callFrameForCatch[t3], cfr |
| storep 0, VM::callFrameForCatch[t3] |
| restoreStackPointerAfterCall() |
| |
| loadp CodeBlock[cfr], PB |
| loadp CodeBlock::m_instructions[PB], PB |
| unpoison(_g_CodeBlockPoison, PB, t2) |
| loadp VM::targetInterpreterPCForThrow[t3], PC |
| subp PB, PC |
| rshiftp 3, PC |
| |
| callSlowPath(_llint_slow_path_check_if_exception_is_uncatchable_and_notify_profiler) |
| bpeq r1, 0, .isCatchableException |
| jmp _llint_throw_from_slow_path_trampoline |
| |
| .isCatchableException: |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| |
| loadq VM::m_exception[t3], t0 |
| storeq 0, VM::m_exception[t3] |
| loadisFromInstruction(1, t2) |
| storeq t0, [cfr, t2, 8] |
| |
| loadq Exception::m_value[t0], t3 |
| loadisFromInstruction(2, t2) |
| storeq t3, [cfr, t2, 8] |
| |
| traceExecution() |
| |
| callSlowPath(_llint_slow_path_profile_catch) |
| |
| dispatch(constexpr op_catch_length) |
| |
| |
| _llint_op_end: |
| traceExecution() |
| checkSwitchToJITForEpilogue() |
| loadisFromInstruction(1, t0) |
| assertNotConstant(t0) |
| loadq [cfr, t0, 8], r0 |
| doReturn() |
| |
| |
| _llint_throw_from_slow_path_trampoline: |
| loadp Callee[cfr], t1 |
| andp MarkedBlockMask, t1 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t1], t1 |
| copyCalleeSavesToVMEntryFrameCalleeSavesBuffer(t1, t2) |
| |
| callSlowPath(_llint_slow_path_handle_exception) |
| |
| # When throwing from the interpreter (i.e. throwing from LLIntSlowPaths), so |
| # the throw target is not necessarily interpreted code, we come to here. |
| # This essentially emulates the JIT's throwing protocol. |
| loadp Callee[cfr], t1 |
| andp MarkedBlockMask, t1 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t1], t1 |
| jmp VM::targetMachinePCForThrow[t1], ExceptionHandlerPtrTag |
| |
| |
| _llint_throw_during_call_trampoline: |
| preserveReturnAddressAfterCall(t2) |
| jmp _llint_throw_from_slow_path_trampoline |
| |
| |
| macro nativeCallTrampoline(executableOffsetToFunction) |
| |
| functionPrologue() |
| storep 0, CodeBlock[cfr] |
| loadp Callee[cfr], t0 |
| andp MarkedBlockMask, t0, t1 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t1], t1 |
| storep cfr, VM::topCallFrame[t1] |
| if ARM64 or ARM64E or C_LOOP |
| storep lr, ReturnPC[cfr] |
| end |
| move cfr, a0 |
| loadp Callee[cfr], t1 |
| loadp JSFunction::m_executable[t1], t1 |
| unpoison(_g_JSFunctionPoison, t1, t2) |
| checkStackPointerAlignment(t3, 0xdead0001) |
| if C_LOOP |
| loadp _g_NativeCodePoison, t2 |
| xorp executableOffsetToFunction[t1], t2 |
| cloopCallNative t2 |
| else |
| if X86_64_WIN |
| subp 32, sp |
| call executableOffsetToFunction[t1], JSEntryPtrTag |
| addp 32, sp |
| else |
| loadp _g_NativeCodePoison, t2 |
| xorp executableOffsetToFunction[t1], t2 |
| call t2, JSEntryPtrTag |
| end |
| end |
| |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| |
| btqnz VM::m_exception[t3], .handleException |
| |
| functionEpilogue() |
| ret |
| |
| .handleException: |
| storep cfr, VM::topCallFrame[t3] |
| jmp _llint_throw_from_slow_path_trampoline |
| end |
| |
| macro internalFunctionCallTrampoline(offsetOfFunction) |
| functionPrologue() |
| storep 0, CodeBlock[cfr] |
| loadp Callee[cfr], t0 |
| andp MarkedBlockMask, t0, t1 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t1], t1 |
| storep cfr, VM::topCallFrame[t1] |
| if ARM64 or ARM64E or C_LOOP |
| storep lr, ReturnPC[cfr] |
| end |
| move cfr, a0 |
| loadp Callee[cfr], t1 |
| checkStackPointerAlignment(t3, 0xdead0001) |
| if C_LOOP |
| loadp _g_NativeCodePoison, t2 |
| xorp offsetOfFunction[t1], t2 |
| cloopCallNative t2 |
| else |
| if X86_64_WIN |
| subp 32, sp |
| call offsetOfFunction[t1], JSEntryPtrTag |
| addp 32, sp |
| else |
| loadp _g_NativeCodePoison, t2 |
| xorp offsetOfFunction[t1], t2 |
| call t2, JSEntryPtrTag |
| end |
| end |
| |
| loadp Callee[cfr], t3 |
| andp MarkedBlockMask, t3 |
| loadp MarkedBlockFooterOffset + MarkedBlock::Footer::m_vm[t3], t3 |
| |
| btqnz VM::m_exception[t3], .handleException |
| |
| functionEpilogue() |
| ret |
| |
| .handleException: |
| storep cfr, VM::topCallFrame[t3] |
| jmp _llint_throw_from_slow_path_trampoline |
| end |
| |
| macro getConstantScope(dst) |
| loadpFromInstruction(6, t0) |
| loadisFromInstruction(dst, t1) |
| storeq t0, [cfr, t1, 8] |
| end |
| |
| macro varInjectionCheck(slowPath) |
| loadp CodeBlock[cfr], t0 |
| loadp CodeBlock::m_globalObject[t0], t0 |
| loadp JSGlobalObject::m_varInjectionWatchpoint[t0], t0 |
| bbeq WatchpointSet::m_state[t0], IsInvalidated, slowPath |
| end |
| |
| macro resolveScope() |
| loadisFromInstruction(5, t2) |
| loadisFromInstruction(2, t0) |
| loadp [cfr, t0, 8], t0 |
| btiz t2, .resolveScopeLoopEnd |
| |
| .resolveScopeLoop: |
| loadp JSScope::m_next[t0], t0 |
| subi 1, t2 |
| btinz t2, .resolveScopeLoop |
| |
| .resolveScopeLoopEnd: |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| end |
| |
| |
| _llint_op_resolve_scope: |
| traceExecution() |
| loadisFromInstruction(4, t0) |
| |
| #rGlobalProperty: |
| bineq t0, GlobalProperty, .rGlobalVar |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rGlobalVar: |
| bineq t0, GlobalVar, .rGlobalLexicalVar |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rGlobalLexicalVar: |
| bineq t0, GlobalLexicalVar, .rClosureVar |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rClosureVar: |
| bineq t0, ClosureVar, .rModuleVar |
| resolveScope() |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rModuleVar: |
| bineq t0, ModuleVar, .rGlobalPropertyWithVarInjectionChecks |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rGlobalPropertyWithVarInjectionChecks: |
| bineq t0, GlobalPropertyWithVarInjectionChecks, .rGlobalVarWithVarInjectionChecks |
| varInjectionCheck(.rDynamic) |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rGlobalVarWithVarInjectionChecks: |
| bineq t0, GlobalVarWithVarInjectionChecks, .rGlobalLexicalVarWithVarInjectionChecks |
| varInjectionCheck(.rDynamic) |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rGlobalLexicalVarWithVarInjectionChecks: |
| bineq t0, GlobalLexicalVarWithVarInjectionChecks, .rClosureVarWithVarInjectionChecks |
| varInjectionCheck(.rDynamic) |
| getConstantScope(1) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rClosureVarWithVarInjectionChecks: |
| bineq t0, ClosureVarWithVarInjectionChecks, .rDynamic |
| varInjectionCheck(.rDynamic) |
| resolveScope() |
| dispatch(constexpr op_resolve_scope_length) |
| |
| .rDynamic: |
| callSlowPath(_slow_path_resolve_scope) |
| dispatch(constexpr op_resolve_scope_length) |
| |
| |
| macro loadWithStructureCheck(operand, slowPath) |
| loadisFromInstruction(operand, t0) |
| loadq [cfr, t0, 8], t0 |
| loadStructureWithScratch(t0, t2, t1, t3) |
| loadpFromInstruction(5, t1) |
| bpneq t2, t1, slowPath |
| end |
| |
| macro getProperty() |
| loadisFromInstruction(6, t1) |
| loadPropertyAtVariableOffset(t1, t0, t2) |
| valueProfile(t2, 7, t0) |
| loadisFromInstruction(1, t0) |
| storeq t2, [cfr, t0, 8] |
| end |
| |
| macro getGlobalVar(tdzCheckIfNecessary) |
| loadpFromInstruction(6, t0) |
| loadq [t0], t0 |
| tdzCheckIfNecessary(t0) |
| valueProfile(t0, 7, t1) |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| end |
| |
| macro getClosureVar() |
| loadisFromInstruction(6, t1) |
| loadq JSLexicalEnvironment_variables[t0, t1, 8], t0 |
| valueProfile(t0, 7, t1) |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| end |
| |
| _llint_op_get_from_scope: |
| traceExecution() |
| loadisFromInstruction(4, t0) |
| andi ResolveTypeMask, t0 |
| |
| #gGlobalProperty: |
| bineq t0, GlobalProperty, .gGlobalVar |
| loadWithStructureCheck(2, .gDynamic) |
| getProperty() |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gGlobalVar: |
| bineq t0, GlobalVar, .gGlobalLexicalVar |
| getGlobalVar(macro(v) end) |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gGlobalLexicalVar: |
| bineq t0, GlobalLexicalVar, .gClosureVar |
| getGlobalVar( |
| macro (value) |
| bqeq value, ValueEmpty, .gDynamic |
| end) |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gClosureVar: |
| bineq t0, ClosureVar, .gGlobalPropertyWithVarInjectionChecks |
| loadVariable(2, t0) |
| getClosureVar() |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gGlobalPropertyWithVarInjectionChecks: |
| bineq t0, GlobalPropertyWithVarInjectionChecks, .gGlobalVarWithVarInjectionChecks |
| loadWithStructureCheck(2, .gDynamic) |
| getProperty() |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gGlobalVarWithVarInjectionChecks: |
| bineq t0, GlobalVarWithVarInjectionChecks, .gGlobalLexicalVarWithVarInjectionChecks |
| varInjectionCheck(.gDynamic) |
| getGlobalVar(macro(v) end) |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gGlobalLexicalVarWithVarInjectionChecks: |
| bineq t0, GlobalLexicalVarWithVarInjectionChecks, .gClosureVarWithVarInjectionChecks |
| varInjectionCheck(.gDynamic) |
| getGlobalVar( |
| macro (value) |
| bqeq value, ValueEmpty, .gDynamic |
| end) |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gClosureVarWithVarInjectionChecks: |
| bineq t0, ClosureVarWithVarInjectionChecks, .gDynamic |
| varInjectionCheck(.gDynamic) |
| loadVariable(2, t0) |
| getClosureVar() |
| dispatch(constexpr op_get_from_scope_length) |
| |
| .gDynamic: |
| callSlowPath(_llint_slow_path_get_from_scope) |
| dispatch(constexpr op_get_from_scope_length) |
| |
| |
| macro putProperty() |
| loadisFromInstruction(3, t1) |
| loadConstantOrVariable(t1, t2) |
| loadisFromInstruction(6, t1) |
| storePropertyAtVariableOffset(t1, t0, t2) |
| end |
| |
| macro putGlobalVariable() |
| loadisFromInstruction(3, t0) |
| loadConstantOrVariable(t0, t1) |
| loadpFromInstruction(5, t2) |
| loadpFromInstruction(6, t0) |
| notifyWrite(t2, .pDynamic) |
| storeq t1, [t0] |
| end |
| |
| macro putClosureVar() |
| loadisFromInstruction(3, t1) |
| loadConstantOrVariable(t1, t2) |
| loadisFromInstruction(6, t1) |
| storeq t2, JSLexicalEnvironment_variables[t0, t1, 8] |
| end |
| |
| macro putLocalClosureVar() |
| loadisFromInstruction(3, t1) |
| loadConstantOrVariable(t1, t2) |
| loadpFromInstruction(5, t3) |
| btpz t3, .noVariableWatchpointSet |
| notifyWrite(t3, .pDynamic) |
| .noVariableWatchpointSet: |
| loadisFromInstruction(6, t1) |
| storeq t2, JSLexicalEnvironment_variables[t0, t1, 8] |
| end |
| |
| macro checkTDZInGlobalPutToScopeIfNecessary() |
| loadisFromInstruction(4, t0) |
| andi InitializationModeMask, t0 |
| rshifti InitializationModeShift, t0 |
| bineq t0, NotInitialization, .noNeedForTDZCheck |
| loadpFromInstruction(6, t0) |
| loadq [t0], t0 |
| bqeq t0, ValueEmpty, .pDynamic |
| .noNeedForTDZCheck: |
| end |
| |
| |
| _llint_op_put_to_scope: |
| traceExecution() |
| loadisFromInstruction(4, t0) |
| andi ResolveTypeMask, t0 |
| |
| #pLocalClosureVar: |
| bineq t0, LocalClosureVar, .pGlobalProperty |
| loadVariable(1, t0) |
| putLocalClosureVar() |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalProperty: |
| bineq t0, GlobalProperty, .pGlobalVar |
| loadWithStructureCheck(1, .pDynamic) |
| putProperty() |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalVar: |
| bineq t0, GlobalVar, .pGlobalLexicalVar |
| writeBarrierOnGlobalObject(3) |
| putGlobalVariable() |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalLexicalVar: |
| bineq t0, GlobalLexicalVar, .pClosureVar |
| writeBarrierOnGlobalLexicalEnvironment(3) |
| checkTDZInGlobalPutToScopeIfNecessary() |
| putGlobalVariable() |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pClosureVar: |
| bineq t0, ClosureVar, .pGlobalPropertyWithVarInjectionChecks |
| loadVariable(1, t0) |
| putClosureVar() |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalPropertyWithVarInjectionChecks: |
| bineq t0, GlobalPropertyWithVarInjectionChecks, .pGlobalVarWithVarInjectionChecks |
| loadWithStructureCheck(1, .pDynamic) |
| putProperty() |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalVarWithVarInjectionChecks: |
| bineq t0, GlobalVarWithVarInjectionChecks, .pGlobalLexicalVarWithVarInjectionChecks |
| writeBarrierOnGlobalObject(3) |
| varInjectionCheck(.pDynamic) |
| putGlobalVariable() |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pGlobalLexicalVarWithVarInjectionChecks: |
| bineq t0, GlobalLexicalVarWithVarInjectionChecks, .pClosureVarWithVarInjectionChecks |
| writeBarrierOnGlobalLexicalEnvironment(3) |
| varInjectionCheck(.pDynamic) |
| checkTDZInGlobalPutToScopeIfNecessary() |
| putGlobalVariable() |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pClosureVarWithVarInjectionChecks: |
| bineq t0, ClosureVarWithVarInjectionChecks, .pModuleVar |
| varInjectionCheck(.pDynamic) |
| loadVariable(1, t0) |
| putClosureVar() |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pModuleVar: |
| bineq t0, ModuleVar, .pDynamic |
| callSlowPath(_slow_path_throw_strict_mode_readonly_property_write_error) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| .pDynamic: |
| callSlowPath(_llint_slow_path_put_to_scope) |
| dispatch(constexpr op_put_to_scope_length) |
| |
| |
| _llint_op_get_from_arguments: |
| traceExecution() |
| loadVariable(2, t0) |
| loadi 24[PB, PC, 8], t1 |
| loadq DirectArguments_storage[t0, t1, 8], t0 |
| valueProfile(t0, 4, t1) |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_get_from_arguments_length) |
| |
| |
| _llint_op_put_to_arguments: |
| traceExecution() |
| loadVariable(1, t0) |
| loadi 16[PB, PC, 8], t1 |
| loadisFromInstruction(3, t3) |
| loadConstantOrVariable(t3, t2) |
| storeq t2, DirectArguments_storage[t0, t1, 8] |
| writeBarrierOnOperands(1, 3) |
| dispatch(constexpr op_put_to_arguments_length) |
| |
| |
| _llint_op_get_parent_scope: |
| traceExecution() |
| loadVariable(2, t0) |
| loadp JSScope::m_next[t0], t0 |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_get_parent_scope_length) |
| |
| |
| _llint_op_profile_type: |
| traceExecution() |
| loadp CodeBlock[cfr], t1 |
| loadp CodeBlock::m_poisonedVM[t1], t1 |
| unpoison(_g_CodeBlockPoison, t1, t3) |
| # t1 is holding the pointer to the typeProfilerLog. |
| loadp VM::m_typeProfilerLog[t1], t1 |
| # t2 is holding the pointer to the current log entry. |
| loadp TypeProfilerLog::m_currentLogEntryPtr[t1], t2 |
| |
| # t0 is holding the JSValue argument. |
| loadisFromInstruction(1, t3) |
| loadConstantOrVariable(t3, t0) |
| |
| bqeq t0, ValueEmpty, .opProfileTypeDone |
| # Store the JSValue onto the log entry. |
| storeq t0, TypeProfilerLog::LogEntry::value[t2] |
| |
| # Store the TypeLocation onto the log entry. |
| loadpFromInstruction(2, t3) |
| storep t3, TypeProfilerLog::LogEntry::location[t2] |
| |
| btqz t0, tagMask, .opProfileTypeIsCell |
| storei 0, TypeProfilerLog::LogEntry::structureID[t2] |
| jmp .opProfileTypeSkipIsCell |
| .opProfileTypeIsCell: |
| loadi JSCell::m_structureID[t0], t3 |
| storei t3, TypeProfilerLog::LogEntry::structureID[t2] |
| .opProfileTypeSkipIsCell: |
| |
| # Increment the current log entry. |
| addp sizeof TypeProfilerLog::LogEntry, t2 |
| storep t2, TypeProfilerLog::m_currentLogEntryPtr[t1] |
| |
| loadp TypeProfilerLog::m_logEndPtr[t1], t1 |
| bpneq t2, t1, .opProfileTypeDone |
| callSlowPath(_slow_path_profile_type_clear_log) |
| |
| .opProfileTypeDone: |
| dispatch(constexpr op_profile_type_length) |
| |
| _llint_op_profile_control_flow: |
| traceExecution() |
| loadpFromInstruction(1, t0) |
| addq 1, BasicBlockLocation::m_executionCount[t0] |
| dispatch(constexpr op_profile_control_flow_length) |
| |
| |
| _llint_op_get_rest_length: |
| traceExecution() |
| loadi PayloadOffset + ArgumentCount[cfr], t0 |
| subi 1, t0 |
| loadisFromInstruction(2, t1) |
| bilteq t0, t1, .storeZero |
| subi t1, t0 |
| jmp .boxUp |
| .storeZero: |
| move 0, t0 |
| .boxUp: |
| orq tagTypeNumber, t0 |
| loadisFromInstruction(1, t1) |
| storeq t0, [cfr, t1, 8] |
| dispatch(constexpr op_get_rest_length_length) |
| |
| |
| _llint_op_log_shadow_chicken_prologue: |
| traceExecution() |
| acquireShadowChickenPacket(.opLogShadowChickenPrologueSlow) |
| storep cfr, ShadowChicken::Packet::frame[t0] |
| loadp CallerFrame[cfr], t1 |
| storep t1, ShadowChicken::Packet::callerFrame[t0] |
| loadp Callee[cfr], t1 |
| storep t1, ShadowChicken::Packet::callee[t0] |
| loadVariable(1, t1) |
| storep t1, ShadowChicken::Packet::scope[t0] |
| dispatch(constexpr op_log_shadow_chicken_prologue_length) |
| .opLogShadowChickenPrologueSlow: |
| callSlowPath(_llint_slow_path_log_shadow_chicken_prologue) |
| dispatch(constexpr op_log_shadow_chicken_prologue_length) |
| |
| |
| _llint_op_log_shadow_chicken_tail: |
| traceExecution() |
| acquireShadowChickenPacket(.opLogShadowChickenTailSlow) |
| storep cfr, ShadowChicken::Packet::frame[t0] |
| storep ShadowChickenTailMarker, ShadowChicken::Packet::callee[t0] |
| loadVariable(1, t1) |
| storep t1, ShadowChicken::Packet::thisValue[t0] |
| loadVariable(2, t1) |
| storep t1, ShadowChicken::Packet::scope[t0] |
| loadp CodeBlock[cfr], t1 |
| storep t1, ShadowChicken::Packet::codeBlock[t0] |
| storei PC, ShadowChicken::Packet::callSiteIndex[t0] |
| dispatch(constexpr op_log_shadow_chicken_tail_length) |
| .opLogShadowChickenTailSlow: |
| callSlowPath(_llint_slow_path_log_shadow_chicken_tail) |
| dispatch(constexpr op_log_shadow_chicken_tail_length) |