Google Git
Sign in
webkit / WebKit / dcadf9dcea49a8ed507191eaf41100b0171a390d / . / Source / JavaScriptCore / wasm / js / JSToWasm.cpp
blob: 0f624e0b61dbb78fb6324181b362477d02a5b22f [file] [log] [blame]
/*
* Copyright (C) 2016-2019 Apple Inc. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY APPLE INC. ``AS IS'' AND ANY
* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR
* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
* OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include "config.h"
#include "JSToWasm.h"
#if ENABLE(WEBASSEMBLY)
#include "CCallHelpers.h"
#include "JSCJSValueInlines.h"
#include "JSWebAssemblyInstance.h"
#include "MaxFrameExtentForSlowPathCall.h"
#include "WasmCallingConvention.h"
#include "WasmContextInlines.h"
#include "WasmOperations.h"
#include "WasmToJS.h"
namespace JSC { namespace Wasm {
void marshallJSResult(CCallHelpers& jit, const TypeDefinition& typeDefinition, const CallInformation& wasmFrameConvention, const RegisterAtOffsetList& savedResultRegisters)
{
const auto& signature = *typeDefinition.as<FunctionSignature>();
auto boxWasmResult = [](CCallHelpers& jit, Type type, ValueLocation src, JSValueRegs dst) {
switch (type.kind) {
case TypeKind::Void:
jit.moveTrustedValue(jsUndefined(), dst);
break;
case TypeKind::I32:
jit.zeroExtend32ToWord(src.jsr().payloadGPR(), dst.payloadGPR());
jit.boxInt32(dst.payloadGPR(), dst, DoNotHaveTagRegisters);
break;
case TypeKind::F32:
jit.convertFloatToDouble(src.fpr(), src.fpr());
FALLTHROUGH;
case TypeKind::F64: {
jit.moveTrustedValue(jsNumber(pureNaN()), dst);
auto isNaN = jit.branchIfNaN(src.fpr());
#if USE(JSVALUE64)
jit.boxDouble(src.fpr(), dst, DoNotHaveTagRegisters);
#else
jit.boxDouble(src.fpr(), dst);
#endif
isNaN.link(&jit);
break;
}
default: {
if (isFuncref(type) || isExternref(type))
jit.moveValueRegs(src.jsr(), dst);
else
jit.breakpoint();
}
}
};
if (signature.returnsVoid())
jit.moveTrustedValue(jsUndefined(), JSRInfo::returnValueJSR);
else if (signature.returnCount() == 1) {
if (signature.returnType(0).isI64()) {
JSValueRegs inputJSR = wasmFrameConvention.results[0].jsr();
GPRReg wasmContextInstanceGPR = PinnedRegisterInfo::get().wasmContextInstancePointer;
if (Context::useFastTLS()) {
wasmContextInstanceGPR = inputJSR.payloadGPR() == GPRInfo::argumentGPR1 ? GPRInfo::argumentGPR0 : GPRInfo::argumentGPR1;
ASSERT(!inputJSR.uses(wasmContextInstanceGPR));
static_assert(std::is_same_v<Wasm::Instance*, typename FunctionTraits<decltype(operationConvertToBigInt)>::ArgumentType<1>>);
jit.loadWasmContextInstance(wasmContextInstanceGPR);
}
jit.setupArguments<decltype(operationConvertToBigInt)>(wasmContextInstanceGPR, inputJSR);
jit.callOperation(FunctionPtr<OperationPtrTag>(operationConvertToBigInt));
} else
boxWasmResult(jit, signature.returnType(0), wasmFrameConvention.results[0], JSRInfo::returnValueJSR);
} else {
IndexingType indexingType = ArrayWithUndecided;
JSValueRegs scratchJSR = JSValueRegs {
#if USE(JSVALUE32_64)
wasmCallingConvention().prologueScratchGPRs[2],
#endif
wasmCallingConvention().prologueScratchGPRs[1]
};
ASSERT(scratchJSR.payloadGPR() != GPRReg::InvalidGPRReg);
#if USE(JSVALUE32_64)
ASSERT(scratchJSR.tagGPR() != GPRReg::InvalidGPRReg);
ASSERT(scratchJSR.payloadGPR() != scratchJSR.tagGPR());
#endif
// We can use the first floating point register as a scratch since it will always be moved onto the stack before other values.
FPRReg fprScratch = wasmCallingConvention().fprArgs[0];
bool hasI64 = false;
for (unsigned i = 0; i < signature.returnCount(); ++i) {
ValueLocation loc = wasmFrameConvention.results[i];
Type type = signature.returnType(i);
hasI64 |= type.isI64();
if (loc.isGPR() || loc.isFPR()) {
#if USE(JSVALUE32_64)
ASSERT(!loc.isGPR() || savedResultRegisters.find(loc.jsr().payloadGPR())->offset() + 4 == savedResultRegisters.find(loc.jsr().tagGPR())->offset());
#endif
auto address = CCallHelpers::Address(CCallHelpers::stackPointerRegister, wasmFrameConvention.headerAndArgumentStackSizeInBytes);
switch (type.kind) {
case TypeKind::F32:
case TypeKind::F64:
boxWasmResult(jit, type, loc, scratchJSR);
jit.storeValue(scratchJSR, address.withOffset(savedResultRegisters.find(loc.fpr())->offset()));
break;
case TypeKind::I64:
jit.storeValue(loc.jsr(), address.withOffset(savedResultRegisters.find(loc.jsr().payloadGPR())->offset()));
break;
default:
boxWasmResult(jit, type, loc, scratchJSR);
jit.storeValue(scratchJSR, address.withOffset(savedResultRegisters.find(loc.jsr().payloadGPR())->offset()));
break;
}
} else {
if (!type.isI64()) {
auto location = CCallHelpers::Address(CCallHelpers::stackPointerRegister, loc.offsetFromSP());
ValueLocation tmp;
switch (type.kind) {
case TypeKind::F32:
tmp = ValueLocation { fprScratch };
jit.loadFloat(location, fprScratch);
break;
case TypeKind::F64:
tmp = ValueLocation { fprScratch };
jit.loadDouble(location, fprScratch);
break;
case TypeKind::I32:
tmp = ValueLocation { scratchJSR };
jit.load32(location, scratchJSR.payloadGPR());
break;
default:
tmp = ValueLocation { scratchJSR };
jit.loadValue(location, scratchJSR);
break;
}
boxWasmResult(jit, type, tmp, scratchJSR);
jit.storeValue(scratchJSR, location);
}
}
switch (type.kind) {
case TypeKind::I32:
indexingType = leastUpperBoundOfIndexingTypes(indexingType, ArrayWithInt32);
break;
case TypeKind::F32:
case TypeKind::F64:
indexingType = leastUpperBoundOfIndexingTypes(indexingType, ArrayWithDouble);
break;
default:
indexingType = leastUpperBoundOfIndexingTypes(indexingType, ArrayWithContiguous);
break;
}
}
// Now, all return values are stored in memory. So we can call functions can clobber caller-save registers.
// This is required to convert values to BigInt.
if (hasI64) {
for (unsigned i = 0; i < signature.returnCount(); ++i) {
ValueLocation loc = wasmFrameConvention.results[i];
Type type = signature.returnType(i);
if (!type.isI64())
continue;
GPRReg wasmContextInstanceGPR = PinnedRegisterInfo::get().wasmContextInstancePointer;
if (Context::useFastTLS()) {
wasmContextInstanceGPR = preferredArgumentGPR<decltype(operationConvertToBigInt), 1>();
static_assert(std::is_same_v<Wasm::Instance*, typename FunctionTraits<decltype(operationConvertToBigInt)>::ArgumentType<1>>);
jit.loadWasmContextInstance(wasmContextInstanceGPR);
}
constexpr JSValueRegs valueJSR = preferredArgumentJSR<decltype(operationConvertToBigInt), 2>();
CCallHelpers::Address address { CCallHelpers::stackPointerRegister };
if (loc.isGPR() || loc.isFPR()) {
#if USE(JSVALUE32_64)
ASSERT(savedResultRegisters.find(loc.jsr().payloadGPR())->offset() + 4 == savedResultRegisters.find(loc.jsr().tagGPR())->offset());
#endif
address = address.withOffset(savedResultRegisters.find(loc.jsr().payloadGPR())->offset() + wasmFrameConvention.headerAndArgumentStackSizeInBytes);
} else
address = address.withOffset(loc.offsetFromSP());
jit.loadValue(address, valueJSR);
jit.setupArguments<decltype(operationConvertToBigInt)>(wasmContextInstanceGPR, valueJSR);
jit.callOperation(FunctionPtr<OperationPtrTag>(operationConvertToBigInt));
jit.storeValue(JSRInfo::returnValueJSR, address);
}
}
GPRReg wasmContextInstanceGPR = PinnedRegisterInfo::get().wasmContextInstancePointer;
if (Context::useFastTLS()) {
wasmContextInstanceGPR = preferredArgumentGPR<decltype(operationAllocateResultsArray), 1>();
static_assert(std::is_same_v<Wasm::Instance*, typename FunctionTraits<decltype(operationAllocateResultsArray)>::ArgumentType<1>>);
jit.loadWasmContextInstance(wasmContextInstanceGPR);
}
constexpr GPRReg savedResultsGPR = preferredArgumentGPR<decltype(operationAllocateResultsArray), 4>();
jit.move(CCallHelpers::stackPointerRegister, savedResultsGPR);
if constexpr (maxFrameExtentForSlowPathCall)
jit.subPtr(CCallHelpers::TrustedImm32(maxFrameExtentForSlowPathCall), CCallHelpers::stackPointerRegister);
ASSERT(wasmContextInstanceGPR != savedResultsGPR);
jit.setupArguments<decltype(operationAllocateResultsArray)>(wasmContextInstanceGPR, CCallHelpers::TrustedImmPtr(&typeDefinition), indexingType, savedResultsGPR);
jit.callOperation(FunctionPtr<OperationPtrTag>(operationAllocateResultsArray));
if constexpr (maxFrameExtentForSlowPathCall)
jit.addPtr(CCallHelpers::TrustedImm32(maxFrameExtentForSlowPathCall), CCallHelpers::stackPointerRegister);
jit.boxCell(GPRInfo::returnValueGPR, JSRInfo::returnValueJSR);
}
}
std::unique_ptr<InternalFunction> createJSToWasmWrapper(CCallHelpers& jit, const TypeDefinition& typeDefinition, Vector<UnlinkedWasmToWasmCall>* unlinkedWasmToWasmCalls, const ModuleInformation& info, MemoryMode mode, unsigned functionIndex)
{
auto result = makeUnique<InternalFunction>();
jit.emitFunctionPrologue();
// FIXME Stop using 0 as codeBlocks. https://bugs.webkit.org/show_bug.cgi?id=165321
jit.emitZeroToCallFrameHeader(CallFrameSlot::codeBlock);
MacroAssembler::DataLabelPtr calleeMoveLocation = jit.moveWithPatch(MacroAssembler::TrustedImmPtr(nullptr), GPRInfo::nonPreservedNonReturnGPR);
CCallHelpers::Address calleeSlot { GPRInfo::callFrameRegister, CallFrameSlot::callee * sizeof(Register) };
jit.storePtr(GPRInfo::nonPreservedNonReturnGPR, calleeSlot.withOffset(PayloadOffset));
#if USE(JSVALUE32_64)
jit.store32(CCallHelpers::TrustedImm32(JSValue::WasmTag), calleeSlot.withOffset(TagOffset));
#endif
Vector<CodeLocationDataLabelPtr<WasmEntryPtrTag>>* linkedCalleeMove = &result->calleeMoveLocations;
jit.addLinkTask([=] (LinkBuffer& linkBuffer) {
linkedCalleeMove->append(linkBuffer.locationOf<WasmEntryPtrTag>(calleeMoveLocation));
});
const PinnedRegisterInfo& pinnedRegs = PinnedRegisterInfo::get();
RegisterSet toSave = pinnedRegs.toSave(mode);
#if ASSERT_ENABLED
unsigned toSaveSize = toSave.numberOfSetGPRs();
// They should all be callee saves.
toSave.filter(RegisterSet::calleeSaveRegisters());
ASSERT(toSave.numberOfSetGPRs() == toSaveSize);
#endif
RegisterAtOffsetList registersToSpill(toSave, RegisterAtOffsetList::OffsetBaseType::FramePointerBased);
result->entrypoint.calleeSaveRegisters = registersToSpill;
size_t totalFrameSize = registersToSpill.sizeOfAreaInBytes();
CallInformation wasmFrameConvention = wasmCallingConvention().callInformationFor(typeDefinition);
RegisterAtOffsetList savedResultRegisters = wasmFrameConvention.computeResultsOffsetList();
totalFrameSize += wasmFrameConvention.headerAndArgumentStackSizeInBytes;
totalFrameSize += savedResultRegisters.sizeOfAreaInBytes();
totalFrameSize = WTF::roundUpToMultipleOf(stackAlignmentBytes(), totalFrameSize);
jit.subPtr(MacroAssembler::TrustedImm32(totalFrameSize), MacroAssembler::stackPointerRegister);
// We save all these registers regardless of having a memory or not.
// The reason is that we use one of these as a scratch. That said,
// almost all real wasm programs use memory, so it's not really
// worth optimizing for the case that they don't.
for (const RegisterAtOffset& regAtOffset : registersToSpill) {
GPRReg reg = regAtOffset.reg().gpr();
ptrdiff_t offset = regAtOffset.offset();
jit.storePtr(reg, CCallHelpers::Address(GPRInfo::callFrameRegister, offset));
}
GPRReg wasmContextInstanceGPR = pinnedRegs.wasmContextInstancePointer;
{
CallInformation jsFrameConvention = jsCallingConvention().callInformationFor(typeDefinition, CallRole::Callee);
CCallHelpers::Address calleeFrame = CCallHelpers::Address(MacroAssembler::stackPointerRegister, 0);
JSValueRegs scratchJSR {
#if USE(JSVALUE32_64)
wasmCallingConvention().prologueScratchGPRs[2],
#endif
wasmCallingConvention().prologueScratchGPRs[1]
};
if (!Context::useFastTLS()) {
jit.loadPtr(CCallHelpers::Address(GPRInfo::callFrameRegister, JSCallingConvention::instanceStackOffset), wasmContextInstanceGPR);
jit.loadPtr(CCallHelpers::Address(wasmContextInstanceGPR, JSWebAssemblyInstance::offsetOfInstance()), wasmContextInstanceGPR);
}
const auto& signature = *typeDefinition.as<FunctionSignature>();
for (unsigned i = 0; i < signature.argumentCount(); i++) {
RELEASE_ASSERT(jsFrameConvention.params[i].isStack());
Type type = signature.argumentType(i);
CCallHelpers::Address jsParam(GPRInfo::callFrameRegister, jsFrameConvention.params[i].offsetFromFP());
if (wasmFrameConvention.params[i].isStackArgument()) {
CCallHelpers::Address addr { calleeFrame.withOffset(wasmFrameConvention.params[i].offsetFromSP()) };
if (type.isI32() || type.isF32()) {
jit.load32(jsParam, scratchJSR.payloadGPR());
jit.store32(scratchJSR.payloadGPR(), addr.withOffset(PayloadOffset));
#if USE(JSVALUE32_64)
jit.store32(CCallHelpers::TrustedImm32(0), addr.withOffset(TagOffset));
#endif
} else {
jit.loadValue(jsParam, scratchJSR);
jit.storeValue(scratchJSR, addr);
}
} else {
if (type.isF32())
jit.loadFloat(jsParam, wasmFrameConvention.params[i].fpr());
else if (type.isF64())
jit.loadDouble(jsParam, wasmFrameConvention.params[i].fpr());
else if (type.isI32()) {
jit.load32(jsParam, wasmFrameConvention.params[i].jsr().payloadGPR());
#if USE(JSVALUE32_64)
jit.move(CCallHelpers::TrustedImm32(0), wasmFrameConvention.params[i].jsr().tagGPR());
#endif
} else
jit.loadValue(jsParam, wasmFrameConvention.params[i].jsr());
}
}
}
#if !CPU(ARM) // ARM has no pinned registers for Wasm Memory, so no need to set them up
if (!!info.memory) {
GPRReg baseMemory = pinnedRegs.baseMemoryPointer;
GPRReg size = wasmCallingConvention().prologueScratchGPRs[0];
GPRReg scratch = wasmCallingConvention().prologueScratchGPRs[1];
if (Context::useFastTLS())
jit.loadWasmContextInstance(baseMemory);
GPRReg currentInstanceGPR = Context::useFastTLS() ? baseMemory : wasmContextInstanceGPR;
if (isARM64E()) {
if (mode == Wasm::MemoryMode::BoundsChecking)
size = pinnedRegs.boundsCheckingSizeRegister;
jit.loadPtr(CCallHelpers::Address(currentInstanceGPR, Wasm::Instance::offsetOfCachedBoundsCheckingSize()), size);
} else {
if (mode == Wasm::MemoryMode::BoundsChecking)
jit.loadPtr(CCallHelpers::Address(currentInstanceGPR, Wasm::Instance::offsetOfCachedBoundsCheckingSize()), pinnedRegs.boundsCheckingSizeRegister);
}
jit.loadPtr(CCallHelpers::Address(currentInstanceGPR, Wasm::Instance::offsetOfCachedMemory()), baseMemory);
jit.cageConditionallyAndUntag(Gigacage::Primitive, baseMemory, size, scratch);
}
#endif
CCallHelpers::Call call = jit.threadSafePatchableNearCall();
unsigned functionIndexSpace = functionIndex + info.importFunctionCount();
ASSERT(functionIndexSpace < info.functionIndexSpaceSize());
jit.addLinkTask([unlinkedWasmToWasmCalls, call, functionIndexSpace] (LinkBuffer& linkBuffer) {
unlinkedWasmToWasmCalls->append({ linkBuffer.locationOfNearCall<WasmEntryPtrTag>(call), functionIndexSpace });
});
marshallJSResult(jit, typeDefinition, wasmFrameConvention, savedResultRegisters);
for (const RegisterAtOffset& regAtOffset : registersToSpill) {
GPRReg reg = regAtOffset.reg().gpr();
ASSERT(!JSRInfo::returnValueJSR.uses(reg));
ptrdiff_t offset = regAtOffset.offset();
jit.loadPtr(CCallHelpers::Address(GPRInfo::callFrameRegister, offset), reg);
}
jit.emitFunctionEpilogue();
jit.ret();
return result;
}
} } // namespace JSC::Wasm
#endif // ENABLE(WEBASSEMBLY)