Blame - Source/JavaScriptCore/dfg/DFGOperations.cpp - WebKit

blob: 942b4adaecb4192a219ecf159c7701768d13d414 [file] [log] [blame]

barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	1	/*
keith_miller@apple.com	3793b13	2016-01-11 21:31:04 +0000	[diff] [blame]	2	* Copyright (C) 2011, 2013-2016 Apple Inc. All rights reserved.
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	3	*
				4	* Redistribution and use in source and binary forms, with or without
				5	* modification, are permitted provided that the following conditions
				6	* are met:
				7	* 1. Redistributions of source code must retain the above copyright
				8	* notice, this list of conditions and the following disclaimer.
				9	* 2. Redistributions in binary form must reproduce the above copyright
				10	* notice, this list of conditions and the following disclaimer in the
				11	* documentation and/or other materials provided with the distribution.
				12	*
				13	* THIS SOFTWARE IS PROVIDED BY APPLE INC. ``AS IS'' AND ANY
				14	* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
				15	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
				16	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR
				17	* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
				18	* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
				19	* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
				20	* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
				21	* OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
				22	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
				23	* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
				24	*/
				25
				26	#include "config.h"
				27	#include "DFGOperations.h"
				28
mark.lam@apple.com	a4fe7ab	2012-11-09 03:03:44 +0000	[diff] [blame]	29	#include "ButterflyInlines.h"
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	30	#include "ClonedArguments.h"
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	31	#include "CodeBlock.h"
oliver@apple.com	b3e5acb	2013-07-25 04:02:53 +0000	[diff] [blame]	32	#include "CommonSlowPaths.h"
mark.lam@apple.com	a4fe7ab	2012-11-09 03:03:44 +0000	[diff] [blame]	33	#include "CopiedSpaceInlines.h"
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	34	#include "DFGDriver.h"
fpizlo@apple.com	b426f86	2014-02-10 02:51:13 +0000	[diff] [blame]	35	#include "DFGJITCode.h"
fpizlo@apple.com	0bef2a1	2014-02-10 19:26:29 +0000	[diff] [blame]	36	#include "DFGOSRExit.h"
fpizlo@apple.com	5e13577	2012-07-12 00:12:03 +0000	[diff] [blame]	37	#include "DFGThunks.h"
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	38	#include "DFGToFTLDeferredCompilationCallback.h"
				39	#include "DFGToFTLForOSREntryDeferredCompilationCallback.h"
				40	#include "DFGWorklist.h"
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	41	#include "DirectArguments.h"
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	42	#include "FTLForOSREntryJITCode.h"
				43	#include "FTLOSREntry.h"
fpizlo@apple.com	7bbcaab	2012-02-22 05:23:19 +0000	[diff] [blame]	44	#include "HostCallReturnValue.h"
fpizlo@apple.com	dc03dc5	2012-01-17 00:53:40 +0000	[diff] [blame]	45	#include "GetterSetter.h"
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	46	#include "Interpreter.h"
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	47	#include "JIT.h"
oliver@apple.com	c55314a	2012-05-30 19:45:20 +0000	[diff] [blame]	48	#include "JITExceptions.h"
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	49	#include "JSCInlines.h"
oliver@apple.com	a7dfb4d	2014-09-11 18:18:14 +0000	[diff] [blame]	50	#include "JSLexicalEnvironment.h"
ggaren@apple.com	c862eac	2013-01-29 05:48:01 +0000	[diff] [blame]	51	#include "ObjectConstructor.h"
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	52	#include "Repatch.h"
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	53	#include "ScopedArguments.h"
commit-queue@webkit.org	aa31a5e	2013-04-09 06:45:16 +0000	[diff] [blame]	54	#include "StringConstructor.h"
utatane.tea@gmail.com	947fa4e	2015-01-31 01:23:56 +0000	[diff] [blame]	55	#include "Symbol.h"
saambarati1@gmail.com	daf1020	2014-10-01 20:47:51 +0000	[diff] [blame]	56	#include "TypeProfilerLog.h"
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	57	#include "TypedArrayInlines.h"
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	58	#include "VM.h"
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	59	#include <wtf/InlineASM.h>
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	60
commit-queue@webkit.org	b841948	2012-08-30 22:21:48 +0000	[diff] [blame]	61	#if ENABLE(JIT)
fpizlo@apple.com	7bbcaab	2012-02-22 05:23:19 +0000	[diff] [blame]	62	#if ENABLE(DFG_JIT)
				63
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	64	namespace JSC { namespace DFG {
				65
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	66	template<bool strict, bool direct>
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	67	static inline void putByVal(ExecState* exec, JSValue baseValue, uint32_t index, JSValue value)
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	68	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	69	VM& vm = exec->vm();
				70	NativeCallFrameTracer tracer(&vm, exec);
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	71	ASSERT(isIndex(index));
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	72	if (direct) {
				73	RELEASE_ASSERT(baseValue.isObject());
				74	asObject(baseValue)->putDirectIndex(exec, index, value, 0, strict ? PutDirectIndexShouldThrow : PutDirectIndexShouldNotThrow);
				75	return;
				76	}
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	77	if (baseValue.isObject()) {
				78	JSObject* object = asObject(baseValue);
				79	if (object->canSetIndexQuickly(index)) {
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	80	object->setIndexQuickly(vm, index, value);
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	81	return;
				82	}
				83
mhahnenberg@apple.com	b6f8519	2014-02-27 01:27:18 +0000	[diff] [blame]	84	object->methodTable(vm)->putByIndex(object, exec, index, value, strict);
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	85	return;
				86	}
				87
barraclough@apple.com	a4d51f2	2012-03-06 01:18:42 +0000	[diff] [blame]	88	baseValue.putByIndex(exec, index, value, strict);
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	89	}
				90
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	91	template<bool strict, bool direct>
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	92	ALWAYS_INLINE static void JIT_OPERATION operationPutByValInternal(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	93	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	94	VM* vm = &exec->vm();
				95	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	96
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	97	JSValue baseValue = JSValue::decode(encodedBase);
				98	JSValue property = JSValue::decode(encodedProperty);
				99	JSValue value = JSValue::decode(encodedValue);
				100
				101	if (LIKELY(property.isUInt32())) {
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	102	// Despite its name, JSValue::isUInt32 will return true only for positive boxed int32_t; all those values are valid array indices.
				103	ASSERT(isIndex(property.asUInt32()));
commit-queue@webkit.org	e3549c6	2015-01-22 19:34:34 +0000	[diff] [blame]	104	putByVal<strict, direct>(exec, baseValue, property.asUInt32(), value);
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	105	return;
				106	}
				107
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	108	if (property.isDouble()) {
				109	double propertyAsDouble = property.asDouble();
				110	uint32_t propertyAsUInt32 = static_cast<uint32_t>(propertyAsDouble);
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	111	if (propertyAsDouble == propertyAsUInt32 && isIndex(propertyAsUInt32)) {
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	112	putByVal<strict, direct>(exec, baseValue, propertyAsUInt32, value);
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	113	return;
				114	}
				115	}
				116
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	117	// Don't put to an object if toString throws an exception.
utatane.tea@gmail.com	e16e15d	2015-03-20 21:35:17 +0000	[diff] [blame]	118	auto propertyName = property.toPropertyKey(exec);
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	119	if (vm->exception())
				120	return;
				121
				122	PutPropertySlot slot(baseValue, strict);
				123	if (direct) {
				124	RELEASE_ASSERT(baseValue.isObject());
				125	if (Optional<uint32_t> index = parseIndex(propertyName))
				126	asObject(baseValue)->putDirectIndex(exec, index.value(), value, 0, strict ? PutDirectIndexShouldThrow : PutDirectIndexShouldNotThrow);
				127	else
utatane.tea@gmail.com	947fa4e	2015-01-31 01:23:56 +0000	[diff] [blame]	128	asObject(baseValue)->putDirect(*vm, propertyName, value, slot);
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	129	} else
				130	baseValue.put(exec, propertyName, value, slot);
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	131	}
				132
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	133	template<typename ViewClass>
				134	char* newTypedArrayWithSize(ExecState* exec, Structure* structure, int32_t size)
				135	{
				136	VM& vm = exec->vm();
				137	NativeCallFrameTracer tracer(&vm, exec);
				138	if (size < 0) {
commit-queue@webkit.org	29e710c	2014-08-29 21:33:30 +0000	[diff] [blame]	139	vm.throwException(exec, createRangeError(exec, ASCIILiteral("Requested length is negative")));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	140	return 0;
				141	}
				142	return bitwise_cast<char*>(ViewClass::create(exec, structure, size));
				143	}
				144
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	145	extern "C" {
				146
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	147	EncodedJSValue JIT_OPERATION operationToThis(ExecState* exec, EncodedJSValue encodedOp)
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	148	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	149	VM* vm = &exec->vm();
				150	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	151
fpizlo@apple.com	018818d	2013-09-13 23:18:19 +0000	[diff] [blame]	152	return JSValue::encode(JSValue::decode(encodedOp).toThis(exec, NotStrictMode));
				153	}
				154
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	155	EncodedJSValue JIT_OPERATION operationToThisStrict(ExecState* exec, EncodedJSValue encodedOp)
fpizlo@apple.com	018818d	2013-09-13 23:18:19 +0000	[diff] [blame]	156	{
				157	VM* vm = &exec->vm();
				158	NativeCallFrameTracer tracer(vm, exec);
				159
				160	return JSValue::encode(JSValue::decode(encodedOp).toThis(exec, StrictMode));
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	161	}
				162
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	163	JSCell* JIT_OPERATION operationCreateThis(ExecState* exec, JSObject* constructor, int32_t inlineCapacity)
fpizlo@apple.com	bb159ec	2011-09-21 22:17:06 +0000	[diff] [blame]	164	{
mhahnenberg@apple.com	b6f8519	2014-02-27 01:27:18 +0000	[diff] [blame]	165	VM& vm = exec->vm();
				166	NativeCallFrameTracer tracer(&vm, exec);
sbarati@apple.com	e5315aa	2016-02-20 23:51:33 +0000	[diff] [blame]	167	if (constructor->type() == JSFunctionType)
				168	return constructEmptyObject(exec, jsCast<JSFunction*>(constructor)->rareData(exec, inlineCapacity)->objectAllocationProfile()->structure());
barraclough@apple.com	cef11dc	2012-05-10 18:40:29 +0000	[diff] [blame]	169
sbarati@apple.com	e5315aa	2016-02-20 23:51:33 +0000	[diff] [blame]	170	return constructEmptyObject(exec);
fpizlo@apple.com	133c9ac	2011-11-08 00:37:33 +0000	[diff] [blame]	171	}
				172
mark.lam@apple.com	c000865	2015-12-15 21:19:31 +0000	[diff] [blame]	173	EncodedJSValue JIT_OPERATION operationValueBitAnd(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				174	{
				175	VM* vm = &exec->vm();
				176	NativeCallFrameTracer tracer(vm, exec);
				177
				178	JSValue op1 = JSValue::decode(encodedOp1);
				179	JSValue op2 = JSValue::decode(encodedOp2);
				180
				181	int32_t a = op1.toInt32(exec);
				182	int32_t b = op2.toInt32(exec);
				183	return JSValue::encode(jsNumber(a & b));
				184	}
				185
				186	EncodedJSValue JIT_OPERATION operationValueBitOr(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				187	{
				188	VM* vm = &exec->vm();
				189	NativeCallFrameTracer tracer(vm, exec);
				190
				191	JSValue op1 = JSValue::decode(encodedOp1);
				192	JSValue op2 = JSValue::decode(encodedOp2);
				193
				194	int32_t a = op1.toInt32(exec);
				195	int32_t b = op2.toInt32(exec);
				196	return JSValue::encode(jsNumber(a \| b));
				197	}
				198
				199	EncodedJSValue JIT_OPERATION operationValueBitXor(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				200	{
				201	VM* vm = &exec->vm();
				202	NativeCallFrameTracer tracer(vm, exec);
				203
				204	JSValue op1 = JSValue::decode(encodedOp1);
				205	JSValue op2 = JSValue::decode(encodedOp2);
				206
				207	int32_t a = op1.toInt32(exec);
				208	int32_t b = op2.toInt32(exec);
				209	return JSValue::encode(jsNumber(a ^ b));
				210	}
				211
				212	EncodedJSValue JIT_OPERATION operationValueBitLShift(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				213	{
				214	VM* vm = &exec->vm();
				215	NativeCallFrameTracer tracer(vm, exec);
				216
				217	JSValue op1 = JSValue::decode(encodedOp1);
				218	JSValue op2 = JSValue::decode(encodedOp2);
				219
				220	int32_t a = op1.toInt32(exec);
				221	uint32_t b = op2.toUInt32(exec);
				222	return JSValue::encode(jsNumber(a << (b & 0x1f)));
				223	}
				224
				225	EncodedJSValue JIT_OPERATION operationValueBitRShift(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				226	{
				227	VM* vm = &exec->vm();
				228	NativeCallFrameTracer tracer(vm, exec);
				229
				230	JSValue op1 = JSValue::decode(encodedOp1);
				231	JSValue op2 = JSValue::decode(encodedOp2);
				232
				233	int32_t a = op1.toInt32(exec);
				234	uint32_t b = op2.toUInt32(exec);
				235	return JSValue::encode(jsNumber(a >> (b & 0x1f)));
				236	}
				237
				238	EncodedJSValue JIT_OPERATION operationValueBitURShift(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				239	{
				240	VM* vm = &exec->vm();
				241	NativeCallFrameTracer tracer(vm, exec);
				242
				243	JSValue op1 = JSValue::decode(encodedOp1);
				244	JSValue op2 = JSValue::decode(encodedOp2);
				245
				246	uint32_t a = op1.toUInt32(exec);
				247	uint32_t b = op2.toUInt32(exec);
				248	return JSValue::encode(jsNumber(static_cast<int32_t>(a >> (b & 0x1f))));
				249	}
				250
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	251	EncodedJSValue JIT_OPERATION operationValueAdd(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	252	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	253	VM* vm = &exec->vm();
				254	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	255
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	256	JSValue op1 = JSValue::decode(encodedOp1);
				257	JSValue op2 = JSValue::decode(encodedOp2);
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	258
fpizlo@apple.com	5c90704	2011-09-15 01:24:39 +0000	[diff] [blame]	259	return JSValue::encode(jsAdd(exec, op1, op2));
				260	}
				261
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	262	EncodedJSValue JIT_OPERATION operationValueAddNotNumber(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
fpizlo@apple.com	5c90704	2011-09-15 01:24:39 +0000	[diff] [blame]	263	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	264	VM* vm = &exec->vm();
				265	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	266
fpizlo@apple.com	5c90704	2011-09-15 01:24:39 +0000	[diff] [blame]	267	JSValue op1 = JSValue::decode(encodedOp1);
				268	JSValue op2 = JSValue::decode(encodedOp2);
				269
fpizlo@apple.com	5df0cd8	2011-08-19 00:18:49 +0000	[diff] [blame]	270	ASSERT(!op1.isNumber() \|\| !op2.isNumber());
fpizlo@apple.com	5c90704	2011-09-15 01:24:39 +0000	[diff] [blame]	271
ggaren@apple.com	64be5e9	2012-01-24 07:34:10 +0000	[diff] [blame]	272	if (op1.isString() && !op2.isObject())
				273	return JSValue::encode(jsString(exec, asString(op1), op2.toString(exec)));
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	274
				275	return JSValue::encode(jsAddSlowCase(exec, op1, op2));
				276	}
				277
mark.lam@apple.com	224ce4d	2015-12-08 21:44:12 +0000	[diff] [blame]	278	EncodedJSValue JIT_OPERATION operationValueDiv(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				279	{
				280	VM* vm = &exec->vm();
				281	NativeCallFrameTracer tracer(vm, exec);
				282
				283	JSValue op1 = JSValue::decode(encodedOp1);
				284	JSValue op2 = JSValue::decode(encodedOp2);
				285
				286	double a = op1.toNumber(exec);
				287	double b = op2.toNumber(exec);
				288	return JSValue::encode(jsNumber(a / b));
				289	}
				290
mark.lam@apple.com	1d93614	2015-12-03 05:42:56 +0000	[diff] [blame]	291	EncodedJSValue JIT_OPERATION operationValueMul(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				292	{
				293	VM* vm = &exec->vm();
				294	NativeCallFrameTracer tracer(vm, exec);
				295
				296	JSValue op1 = JSValue::decode(encodedOp1);
				297	JSValue op2 = JSValue::decode(encodedOp2);
				298
				299	double a = op1.toNumber(exec);
				300	double b = op2.toNumber(exec);
				301	return JSValue::encode(jsNumber(a * b));
				302	}
				303
mark.lam@apple.com	7524909	2015-10-16 23:26:14 +0000	[diff] [blame]	304	EncodedJSValue JIT_OPERATION operationValueSub(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
				305	{
				306	VM* vm = &exec->vm();
				307	NativeCallFrameTracer tracer(vm, exec);
				308
				309	JSValue op1 = JSValue::decode(encodedOp1);
				310	JSValue op2 = JSValue::decode(encodedOp2);
				311
				312	double a = op1.toNumber(exec);
				313	double b = op2.toNumber(exec);
				314	return JSValue::encode(jsNumber(a - b));
				315	}
				316
akling@apple.com	6d3d181	2014-04-26 06:00:43 +0000	[diff] [blame]	317	static ALWAYS_INLINE EncodedJSValue getByVal(ExecState* exec, JSCell* base, uint32_t index)
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	318	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	319	VM& vm = exec->vm();
				320	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	034a5e1	2012-05-01 21:34:53 +0000	[diff] [blame]	321
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	322	if (base->isObject()) {
				323	JSObject* object = asObject(base);
				324	if (object->canGetIndexQuickly(index))
				325	return JSValue::encode(object->getIndexQuickly(index));
				326	}
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	327
mhahnenberg@apple.com	c58d54d	2011-12-16 19:06:44 +0000	[diff] [blame]	328	if (isJSString(base) && asString(base)->canGetIndex(index))
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	329	return JSValue::encode(asString(base)->getIndex(exec, index));
				330
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	331	return JSValue::encode(JSValue(base).get(exec, index));
				332	}
				333
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	334	EncodedJSValue JIT_OPERATION operationGetByVal(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty)
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	335	{
akling@apple.com	b6d91ab	2014-02-09 21:33:17 +0000	[diff] [blame]	336	VM& vm = exec->vm();
				337	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	338
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	339	JSValue baseValue = JSValue::decode(encodedBase);
				340	JSValue property = JSValue::decode(encodedProperty);
				341
				342	if (LIKELY(baseValue.isCell())) {
				343	JSCell* base = baseValue.asCell();
				344
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	345	if (property.isUInt32()) {
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	346	return getByVal(exec, base, property.asUInt32());
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	347	} else if (property.isDouble()) {
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	348	double propertyAsDouble = property.asDouble();
				349	uint32_t propertyAsUInt32 = static_cast<uint32_t>(propertyAsDouble);
utatane.tea@gmail.com	20b6e30	2015-04-07 07:26:08 +0000	[diff] [blame]	350	if (propertyAsUInt32 == propertyAsDouble && isIndex(propertyAsUInt32))
weinig@apple.com	a96509f	2011-06-15 21:57:17 +0000	[diff] [blame]	351	return getByVal(exec, base, propertyAsUInt32);
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	352	} else if (property.isString()) {
akling@apple.com	baca5e8	2014-05-06 00:53:29 +0000	[diff] [blame]	353	Structure& structure = *base->structure(vm);
				354	if (JSCell::canUseFastGetOwnProperty(structure)) {
utatane.tea@gmail.com	e0741fb	2015-06-02 17:36:16 +0000	[diff] [blame]	355	if (RefPtr<AtomicStringImpl> existingAtomicString = asString(property)->toExistingAtomicString(exec)) {
				356	if (JSValue result = base->fastGetOwnProperty(vm, structure, existingAtomicString.get()))
akling@apple.com	cad8904	2014-09-02 22:29:59 +0000	[diff] [blame]	357	return JSValue::encode(result);
				358	}
akling@apple.com	baca5e8	2014-05-06 00:53:29 +0000	[diff] [blame]	359	}
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	360	}
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	361	}
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	362
utatane.tea@gmail.com	9f61d13	2015-03-27 11:08:49 +0000	[diff] [blame]	363	baseValue.requireObjectCoercible(exec);
				364	if (exec->hadException())
				365	return JSValue::encode(jsUndefined());
utatane.tea@gmail.com	e16e15d	2015-03-20 21:35:17 +0000	[diff] [blame]	366	auto propertyName = property.toPropertyKey(exec);
utatane.tea@gmail.com	9f61d13	2015-03-27 11:08:49 +0000	[diff] [blame]	367	if (exec->hadException())
				368	return JSValue::encode(jsUndefined());
utatane.tea@gmail.com	947fa4e	2015-01-31 01:23:56 +0000	[diff] [blame]	369	return JSValue::encode(baseValue.get(exec, propertyName));
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	370	}
				371
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	372	EncodedJSValue JIT_OPERATION operationGetByValCell(ExecState* exec, JSCell* base, EncodedJSValue encodedProperty)
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	373	{
akling@apple.com	b6d91ab	2014-02-09 21:33:17 +0000	[diff] [blame]	374	VM& vm = exec->vm();
				375	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	376
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	377	JSValue property = JSValue::decode(encodedProperty);
				378
				379	if (property.isUInt32())
				380	return getByVal(exec, base, property.asUInt32());
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	381	if (property.isDouble()) {
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	382	double propertyAsDouble = property.asDouble();
				383	uint32_t propertyAsUInt32 = static_cast<uint32_t>(propertyAsDouble);
				384	if (propertyAsUInt32 == propertyAsDouble)
				385	return getByVal(exec, base, propertyAsUInt32);
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	386	} else if (property.isString()) {
akling@apple.com	baca5e8	2014-05-06 00:53:29 +0000	[diff] [blame]	387	Structure& structure = *base->structure(vm);
				388	if (JSCell::canUseFastGetOwnProperty(structure)) {
utatane.tea@gmail.com	e0741fb	2015-06-02 17:36:16 +0000	[diff] [blame]	389	if (RefPtr<AtomicStringImpl> existingAtomicString = asString(property)->toExistingAtomicString(exec)) {
				390	if (JSValue result = base->fastGetOwnProperty(vm, structure, existingAtomicString.get()))
akling@apple.com	cad8904	2014-09-02 22:29:59 +0000	[diff] [blame]	391	return JSValue::encode(result);
				392	}
akling@apple.com	baca5e8	2014-05-06 00:53:29 +0000	[diff] [blame]	393	}
mhahnenberg@apple.com	871ffe6	2013-03-15 21:52:35 +0000	[diff] [blame]	394	}
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	395
utatane.tea@gmail.com	e16e15d	2015-03-20 21:35:17 +0000	[diff] [blame]	396	auto propertyName = property.toPropertyKey(exec);
utatane.tea@gmail.com	9f61d13	2015-03-27 11:08:49 +0000	[diff] [blame]	397	if (exec->hadException())
				398	return JSValue::encode(jsUndefined());
utatane.tea@gmail.com	947fa4e	2015-01-31 01:23:56 +0000	[diff] [blame]	399	return JSValue::encode(JSValue(base).get(exec, propertyName));
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	400	}
				401
oliver@apple.com	211b3be	2013-07-25 04:03:39 +0000	[diff] [blame]	402	ALWAYS_INLINE EncodedJSValue getByValCellInt(ExecState* exec, JSCell* base, int32_t index)
fpizlo@apple.com	fa34ff8	2012-09-05 01:27:50 +0000	[diff] [blame]	403	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	404	VM* vm = &exec->vm();
				405	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	fa34ff8	2012-09-05 01:27:50 +0000	[diff] [blame]	406
				407	if (index < 0) {
				408	// Go the slowest way possible becase negative indices don't use indexed storage.
				409	return JSValue::encode(JSValue(base).get(exec, Identifier::from(exec, index)));
				410	}
				411
				412	// Use this since we know that the value is out of bounds.
				413	return JSValue::encode(JSValue(base).get(exec, index));
				414	}
				415
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	416	EncodedJSValue JIT_OPERATION operationGetByValArrayInt(ExecState* exec, JSArray* base, int32_t index)
oliver@apple.com	211b3be	2013-07-25 04:03:39 +0000	[diff] [blame]	417	{
				418	return getByValCellInt(exec, base, index);
				419	}
				420
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	421	EncodedJSValue JIT_OPERATION operationGetByValStringInt(ExecState* exec, JSString* base, int32_t index)
oliver@apple.com	211b3be	2013-07-25 04:03:39 +0000	[diff] [blame]	422	{
				423	return getByValCellInt(exec, base, index);
				424	}
				425
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	426	void JIT_OPERATION operationPutByValStrict(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	427	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	428	VM* vm = &exec->vm();
				429	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	430
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	431	operationPutByValInternal<true, false>(exec, encodedBase, encodedProperty, encodedValue);
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	432	}
				433
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	434	void JIT_OPERATION operationPutByValNonStrict(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	435	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	436	VM* vm = &exec->vm();
				437	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	438
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	439	operationPutByValInternal<false, false>(exec, encodedBase, encodedProperty, encodedValue);
barraclough@apple.com	2302c04	2011-03-14 23:31:00 +0000	[diff] [blame]	440	}
				441
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	442	void JIT_OPERATION operationPutByValCellStrict(ExecState* exec, JSCell* cell, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	443	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	444	VM* vm = &exec->vm();
				445	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	446
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	447	operationPutByValInternal<true, false>(exec, JSValue::encode(cell), encodedProperty, encodedValue);
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	448	}
				449
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	450	void JIT_OPERATION operationPutByValCellNonStrict(ExecState* exec, JSCell* cell, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	451	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	452	VM* vm = &exec->vm();
				453	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	454
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	455	operationPutByValInternal<false, false>(exec, JSValue::encode(cell), encodedProperty, encodedValue);
fpizlo@apple.com	dc41f7f	2011-10-09 20:07:36 +0000	[diff] [blame]	456	}
				457
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	458	void JIT_OPERATION operationPutByValBeyondArrayBoundsStrict(ExecState* exec, JSObject* array, int32_t index, EncodedJSValue encodedValue)
barraclough@apple.com	e2130ff	2011-06-07 23:03:32 +0000	[diff] [blame]	459	{
mhahnenberg@apple.com	b6f8519	2014-02-27 01:27:18 +0000	[diff] [blame]	460	VM& vm = exec->vm();
				461	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	462
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	463	if (index >= 0) {
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	464	array->putByIndexInline(exec, index, JSValue::decode(encodedValue), true);
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	465	return;
				466	}
				467
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	468	PutPropertySlot slot(array, true);
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	469	array->methodTable()->put(
				470	array, exec, Identifier::from(exec, index), JSValue::decode(encodedValue), slot);
barraclough@apple.com	b1db28d8	2012-03-06 07:23:21 +0000	[diff] [blame]	471	}
				472
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	473	void JIT_OPERATION operationPutByValBeyondArrayBoundsNonStrict(ExecState* exec, JSObject* array, int32_t index, EncodedJSValue encodedValue)
barraclough@apple.com	b1db28d8	2012-03-06 07:23:21 +0000	[diff] [blame]	474	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	475	VM* vm = &exec->vm();
				476	NativeCallFrameTracer tracer(vm, exec);
barraclough@apple.com	b1db28d8	2012-03-06 07:23:21 +0000	[diff] [blame]	477
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	478	if (index >= 0) {
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	479	array->putByIndexInline(exec, index, JSValue::decode(encodedValue), false);
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	480	return;
				481	}
				482
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	483	PutPropertySlot slot(array, false);
fpizlo@apple.com	73fbdf6	2012-05-18 01:34:01 +0000	[diff] [blame]	484	array->methodTable()->put(
				485	array, exec, Identifier::from(exec, index), JSValue::decode(encodedValue), slot);
barraclough@apple.com	e2130ff	2011-06-07 23:03:32 +0000	[diff] [blame]	486	}
				487
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	488	void JIT_OPERATION operationPutDoubleByValBeyondArrayBoundsStrict(ExecState* exec, JSObject* array, int32_t index, double value)
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	489	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	490	VM* vm = &exec->vm();
				491	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	492
				493	JSValue jsValue = JSValue(JSValue::EncodeAsDouble, value);
				494
				495	if (index >= 0) {
				496	array->putByIndexInline(exec, index, jsValue, true);
				497	return;
				498	}
				499
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	500	PutPropertySlot slot(array, true);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	501	array->methodTable()->put(
				502	array, exec, Identifier::from(exec, index), jsValue, slot);
				503	}
				504
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	505	void JIT_OPERATION operationPutDoubleByValBeyondArrayBoundsNonStrict(ExecState* exec, JSObject* array, int32_t index, double value)
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	506	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	507	VM* vm = &exec->vm();
				508	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	509
				510	JSValue jsValue = JSValue(JSValue::EncodeAsDouble, value);
				511
				512	if (index >= 0) {
				513	array->putByIndexInline(exec, index, jsValue, false);
				514	return;
				515	}
				516
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	517	PutPropertySlot slot(array, false);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	518	array->methodTable()->put(
				519	array, exec, Identifier::from(exec, index), jsValue, slot);
				520	}
				521
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	522	void JIT_OPERATION operationPutByValDirectStrict(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
				523	{
				524	VM* vm = &exec->vm();
				525	NativeCallFrameTracer tracer(vm, exec);
				526
				527	operationPutByValInternal<true, true>(exec, encodedBase, encodedProperty, encodedValue);
				528	}
				529
				530	void JIT_OPERATION operationPutByValDirectNonStrict(ExecState* exec, EncodedJSValue encodedBase, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
				531	{
				532	VM* vm = &exec->vm();
				533	NativeCallFrameTracer tracer(vm, exec);
				534
				535	operationPutByValInternal<false, true>(exec, encodedBase, encodedProperty, encodedValue);
				536	}
				537
				538	void JIT_OPERATION operationPutByValDirectCellStrict(ExecState* exec, JSCell* cell, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
				539	{
				540	VM* vm = &exec->vm();
				541	NativeCallFrameTracer tracer(vm, exec);
				542
				543	operationPutByValInternal<true, true>(exec, JSValue::encode(cell), encodedProperty, encodedValue);
				544	}
				545
				546	void JIT_OPERATION operationPutByValDirectCellNonStrict(ExecState* exec, JSCell* cell, EncodedJSValue encodedProperty, EncodedJSValue encodedValue)
				547	{
				548	VM* vm = &exec->vm();
				549	NativeCallFrameTracer tracer(vm, exec);
				550
				551	operationPutByValInternal<false, true>(exec, JSValue::encode(cell), encodedProperty, encodedValue);
				552	}
				553
				554	void JIT_OPERATION operationPutByValDirectBeyondArrayBoundsStrict(ExecState* exec, JSObject* array, int32_t index, EncodedJSValue encodedValue)
				555	{
				556	VM* vm = &exec->vm();
				557	NativeCallFrameTracer tracer(vm, exec);
				558	if (index >= 0) {
				559	array->putDirectIndex(exec, index, JSValue::decode(encodedValue), 0, PutDirectIndexShouldThrow);
				560	return;
				561	}
				562
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	563	PutPropertySlot slot(array, true);
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	564	array->putDirect(exec->vm(), Identifier::from(exec, index), JSValue::decode(encodedValue), slot);
				565	}
				566
				567	void JIT_OPERATION operationPutByValDirectBeyondArrayBoundsNonStrict(ExecState* exec, JSObject* array, int32_t index, EncodedJSValue encodedValue)
				568	{
				569	VM* vm = &exec->vm();
				570	NativeCallFrameTracer tracer(vm, exec);
				571
				572	if (index >= 0) {
				573	array->putDirectIndex(exec, index, JSValue::decode(encodedValue));
				574	return;
				575	}
				576
oliver@apple.com	6884841	2014-01-02 20:56:20 +0000	[diff] [blame]	577	PutPropertySlot slot(array, false);
oliver@apple.com	e050d64	2013-10-19 00:09:28 +0000	[diff] [blame]	578	array->putDirect(exec->vm(), Identifier::from(exec, index), JSValue::decode(encodedValue), slot);
				579	}
				580
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	581	EncodedJSValue JIT_OPERATION operationArrayPush(ExecState* exec, EncodedJSValue encodedValue, JSArray* array)
fpizlo@apple.com	24d24e5	2011-10-04 02:55:54 +0000	[diff] [blame]	582	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	583	VM* vm = &exec->vm();
				584	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	585
fpizlo@apple.com	24d24e5	2011-10-04 02:55:54 +0000	[diff] [blame]	586	array->push(exec, JSValue::decode(encodedValue));
				587	return JSValue::encode(jsNumber(array->length()));
				588	}
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	589
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	590	EncodedJSValue JIT_OPERATION operationArrayPushDouble(ExecState* exec, double value, JSArray* array)
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	591	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	592	VM* vm = &exec->vm();
				593	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	594
				595	array->push(exec, JSValue(JSValue::EncodeAsDouble, value));
				596	return JSValue::encode(jsNumber(array->length()));
				597	}
				598
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	599	EncodedJSValue JIT_OPERATION operationArrayPop(ExecState* exec, JSArray* array)
fpizlo@apple.com	04c1974	2012-08-26 22:35:26 +0000	[diff] [blame]	600	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	601	VM* vm = &exec->vm();
				602	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	04c1974	2012-08-26 22:35:26 +0000	[diff] [blame]	603
				604	return JSValue::encode(array->pop(exec));
				605	}
				606
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	607	EncodedJSValue JIT_OPERATION operationArrayPopAndRecoverLength(ExecState* exec, JSArray* array)
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	608	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	609	VM* vm = &exec->vm();
				610	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	611
				612	array->butterfly()->setPublicLength(array->butterfly()->publicLength() + 1);
				613
				614	return JSValue::encode(array->pop(exec));
				615	}
				616
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	617	EncodedJSValue JIT_OPERATION operationRegExpExec(ExecState* exec, JSCell* base, JSCell* argument)
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	618	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	619	VM& vm = exec->vm();
				620	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	034a5e1	2012-05-01 21:34:53 +0000	[diff] [blame]	621
fpizlo@apple.com	10ae2d0	2013-08-14 02:41:47 +0000	[diff] [blame]	622	if (!base->inherits(RegExpObject::info()))
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	623	return throwVMTypeError(exec);
				624
				625	ASSERT(argument->isString() \|\| argument->isObject());
				626	JSString* input = argument->isString() ? asString(argument) : asObject(argument)->toString(exec);
				627	return JSValue::encode(asRegExpObject(base)->exec(exec, input));
				628	}
				629
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	630	size_t JIT_OPERATION operationRegExpTest(ExecState* exec, JSCell* base, JSCell* argument)
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	631	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	632	VM& vm = exec->vm();
				633	NativeCallFrameTracer tracer(&vm, exec);
oliver@apple.com	034a5e1	2012-05-01 21:34:53 +0000	[diff] [blame]	634
fpizlo@apple.com	10ae2d0	2013-08-14 02:41:47 +0000	[diff] [blame]	635	if (!base->inherits(RegExpObject::info())) {
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	636	throwTypeError(exec);
				637	return false;
				638	}
				639
				640	ASSERT(argument->isString() \|\| argument->isObject());
				641	JSString* input = argument->isString() ? asString(argument) : asObject(argument)->toString(exec);
barraclough@apple.com	9db2c54	2012-03-21 20:55:41 +0000	[diff] [blame]	642	return asRegExpObject(base)->test(exec, input);
barraclough@apple.com	077fdd4	2012-03-18 01:08:16 +0000	[diff] [blame]	643	}
fpizlo@apple.com	ee10e45	2013-04-09 00:10:16 +0000	[diff] [blame]	644
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	645	size_t JIT_OPERATION operationCompareStrictEqCell(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
commit-queue@webkit.org	6efa2ca	2011-07-19 00:36:37 +0000	[diff] [blame]	646	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	647	VM* vm = &exec->vm();
				648	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	649
commit-queue@webkit.org	6efa2ca	2011-07-19 00:36:37 +0000	[diff] [blame]	650	JSValue op1 = JSValue::decode(encodedOp1);
				651	JSValue op2 = JSValue::decode(encodedOp2);
				652
				653	ASSERT(op1.isCell());
				654	ASSERT(op2.isCell());
				655
				656	return JSValue::strictEqualSlowCaseInline(exec, op1, op2);
				657	}
				658
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	659	size_t JIT_OPERATION operationCompareStrictEq(ExecState* exec, EncodedJSValue encodedOp1, EncodedJSValue encodedOp2)
barraclough@apple.com	848a0cc	2011-04-08 20:33:24 +0000	[diff] [blame]	660	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	661	VM* vm = &exec->vm();
				662	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	82acbbf	2012-02-28 00:37:58 +0000	[diff] [blame]	663
				664	JSValue src1 = JSValue::decode(encodedOp1);
				665	JSValue src2 = JSValue::decode(encodedOp2);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	666
fpizlo@apple.com	82acbbf	2012-02-28 00:37:58 +0000	[diff] [blame]	667	return JSValue::strictEqual(exec, src1, src2);
barraclough@apple.com	848a0cc	2011-04-08 20:33:24 +0000	[diff] [blame]	668	}
				669
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	670	EncodedJSValue JIT_OPERATION operationToPrimitive(ExecState* exec, EncodedJSValue value)
fpizlo@apple.com	90e5f0e	2011-09-22 22:42:54 +0000	[diff] [blame]	671	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	672	VM* vm = &exec->vm();
				673	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	674
fpizlo@apple.com	90e5f0e	2011-09-22 22:42:54 +0000	[diff] [blame]	675	return JSValue::encode(JSValue::decode(value).toPrimitive(exec));
				676	}
				677
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	678	char* JIT_OPERATION operationNewArray(ExecState* exec, Structure* arrayStructure, void* buffer, size_t size)
fpizlo@apple.com	98a693c	2011-09-28 05:33:21 +0000	[diff] [blame]	679	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	680	VM* vm = &exec->vm();
				681	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	1bc6848	2012-10-13 03:56:09 +0000	[diff] [blame]	682
fpizlo@apple.com	59d1ddb	2013-11-05 00:05:02 +0000	[diff] [blame]	683	return bitwise_cast<char>(constructArray(exec, arrayStructure, static_cast<JSValue>(buffer), size));
fpizlo@apple.com	6c89cd3	2012-06-26 19:42:05 +0000	[diff] [blame]	684	}
				685
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	686	char* JIT_OPERATION operationNewEmptyArray(ExecState* exec, Structure* arrayStructure)
fpizlo@apple.com	6c89cd3	2012-06-26 19:42:05 +0000	[diff] [blame]	687	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	688	VM* vm = &exec->vm();
				689	NativeCallFrameTracer tracer(vm, exec);
fpizlo@apple.com	1bc6848	2012-10-13 03:56:09 +0000	[diff] [blame]	690
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	691	return bitwise_cast<char>(JSArray::create(vm, arrayStructure));
fpizlo@apple.com	6c89cd3	2012-06-26 19:42:05 +0000	[diff] [blame]	692	}
				693
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	694	char* JIT_OPERATION operationNewArrayWithSize(ExecState* exec, Structure* arrayStructure, int32_t size)
fpizlo@apple.com	6c89cd3	2012-06-26 19:42:05 +0000	[diff] [blame]	695	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	696	VM* vm = &exec->vm();
				697	NativeCallFrameTracer tracer(vm, exec);
msaboff@apple.com	51d65f2	2013-04-10 20:01:14 +0000	[diff] [blame]	698
msaboff@apple.com	6ebf3b8	2013-04-11 16:19:35 +0000	[diff] [blame]	699	if (UNLIKELY(size < 0))
commit-queue@webkit.org	3f922f9	2013-08-29 00:28:42 +0000	[diff] [blame]	700	return bitwise_cast<char*>(exec->vm().throwException(exec, createRangeError(exec, ASCIILiteral("Array size is not a small enough positive integer."))));
msaboff@apple.com	51d65f2	2013-04-10 20:01:14 +0000	[diff] [blame]	701
fpizlo@apple.com	8dde06b	2015-10-12 22:41:01 +0000	[diff] [blame]	702	JSArray* result = JSArray::create(*vm, arrayStructure, size);
				703	result->butterfly(); // Ensure that the backing store is in to-space.
				704	return bitwise_cast<char*>(result);
fpizlo@apple.com	98a693c	2011-09-28 05:33:21 +0000	[diff] [blame]	705	}
				706
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	707	char* JIT_OPERATION operationNewArrayBuffer(ExecState* exec, Structure* arrayStructure, size_t start, size_t size)
fpizlo@apple.com	98a693c	2011-09-28 05:33:21 +0000	[diff] [blame]	708	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	709	VM& vm = exec->vm();
				710	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	59d1ddb	2013-11-05 00:05:02 +0000	[diff] [blame]	711	return bitwise_cast<char*>(constructArray(exec, arrayStructure, exec->codeBlock()->constantBuffer(start), size));
fpizlo@apple.com	98a693c	2011-09-28 05:33:21 +0000	[diff] [blame]	712	}
				713
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	714	char* JIT_OPERATION operationNewInt8ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	715	ExecState* exec, Structure* structure, int32_t length)
				716	{
				717	return newTypedArrayWithSize<JSInt8Array>(exec, structure, length);
				718	}
				719
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	720	char* JIT_OPERATION operationNewInt8ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	721	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				722	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	723	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSInt8Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	724	}
				725
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	726	char* JIT_OPERATION operationNewInt16ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	727	ExecState* exec, Structure* structure, int32_t length)
				728	{
				729	return newTypedArrayWithSize<JSInt16Array>(exec, structure, length);
				730	}
				731
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	732	char* JIT_OPERATION operationNewInt16ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	733	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				734	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	735	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSInt16Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	736	}
				737
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	738	char* JIT_OPERATION operationNewInt32ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	739	ExecState* exec, Structure* structure, int32_t length)
				740	{
				741	return newTypedArrayWithSize<JSInt32Array>(exec, structure, length);
				742	}
				743
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	744	char* JIT_OPERATION operationNewInt32ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	745	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				746	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	747	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSInt32Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	748	}
				749
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	750	char* JIT_OPERATION operationNewUint8ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	751	ExecState* exec, Structure* structure, int32_t length)
				752	{
				753	return newTypedArrayWithSize<JSUint8Array>(exec, structure, length);
				754	}
				755
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	756	char* JIT_OPERATION operationNewUint8ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	757	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				758	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	759	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSUint8Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	760	}
				761
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	762	char* JIT_OPERATION operationNewUint8ClampedArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	763	ExecState* exec, Structure* structure, int32_t length)
				764	{
				765	return newTypedArrayWithSize<JSUint8ClampedArray>(exec, structure, length);
				766	}
				767
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	768	char* JIT_OPERATION operationNewUint8ClampedArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	769	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				770	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	771	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSUint8ClampedArray>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	772	}
				773
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	774	char* JIT_OPERATION operationNewUint16ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	775	ExecState* exec, Structure* structure, int32_t length)
				776	{
				777	return newTypedArrayWithSize<JSUint16Array>(exec, structure, length);
				778	}
				779
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	780	char* JIT_OPERATION operationNewUint16ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	781	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				782	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	783	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSUint16Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	784	}
				785
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	786	char* JIT_OPERATION operationNewUint32ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	787	ExecState* exec, Structure* structure, int32_t length)
				788	{
				789	return newTypedArrayWithSize<JSUint32Array>(exec, structure, length);
				790	}
				791
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	792	char* JIT_OPERATION operationNewUint32ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	793	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				794	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	795	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSUint32Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	796	}
				797
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	798	char* JIT_OPERATION operationNewFloat32ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	799	ExecState* exec, Structure* structure, int32_t length)
				800	{
				801	return newTypedArrayWithSize<JSFloat32Array>(exec, structure, length);
				802	}
				803
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	804	char* JIT_OPERATION operationNewFloat32ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	805	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				806	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	807	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSFloat32Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	808	}
				809
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	810	char* JIT_OPERATION operationNewFloat64ArrayWithSize(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	811	ExecState* exec, Structure* structure, int32_t length)
				812	{
				813	return newTypedArrayWithSize<JSFloat64Array>(exec, structure, length);
				814	}
				815
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	816	char* JIT_OPERATION operationNewFloat64ArrayWithOneArgument(
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	817	ExecState* exec, Structure* structure, EncodedJSValue encodedValue)
				818	{
keith_miller@apple.com	a646a26	2015-10-16 21:40:21 +0000	[diff] [blame]	819	return reinterpret_cast<char*>(constructGenericTypedArrayViewWithArguments<JSFloat64Array>(exec, structure, encodedValue, 0, Nullopt));
fpizlo@apple.com	372fa82	2013-08-21 19:43:47 +0000	[diff] [blame]	820	}
				821
saambarati1@gmail.com	144f17c	2015-07-15 21:41:08 +0000	[diff] [blame]	822	JSCell* JIT_OPERATION operationCreateActivationDirect(ExecState* exec, Structure* structure, JSScope* scope, SymbolTable* table, EncodedJSValue initialValueEncoded)
fpizlo@apple.com	c644611	2012-05-23 20:52:42 +0000	[diff] [blame]	823	{
saambarati1@gmail.com	144f17c	2015-07-15 21:41:08 +0000	[diff] [blame]	824	JSValue initialValue = JSValue::decode(initialValueEncoded);
				825	ASSERT(initialValue == jsUndefined() \|\| initialValue == jsTDZValue());
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	826	VM& vm = exec->vm();
				827	NativeCallFrameTracer tracer(&vm, exec);
saambarati1@gmail.com	144f17c	2015-07-15 21:41:08 +0000	[diff] [blame]	828	return JSLexicalEnvironment::create(vm, structure, scope, table, initialValue);
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	829	}
				830
				831	JSCell* JIT_OPERATION operationCreateDirectArguments(ExecState* exec, Structure* structure, int32_t length, int32_t minCapacity)
				832	{
				833	VM& vm = exec->vm();
				834	NativeCallFrameTracer target(&vm, exec);
				835	DirectArguments* result = DirectArguments::create(
				836	vm, structure, length, std::max(length, minCapacity));
				837	// The caller will store to this object without barriers. Most likely, at this point, this is
				838	// still a young object and so no barriers are needed. But it's good to be careful anyway,
				839	// since the GC should be allowed to do crazy (like pretenuring, for example).
				840	vm.heap.writeBarrier(result);
fpizlo@apple.com	9a548f1	2012-05-24 05:33:09 +0000	[diff] [blame]	841	return result;
fpizlo@apple.com	c644611	2012-05-23 20:52:42 +0000	[diff] [blame]	842	}
				843
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	844	JSCell* JIT_OPERATION operationCreateScopedArguments(ExecState* exec, Structure* structure, Register* argumentStart, int32_t length, JSFunction* callee, JSLexicalEnvironment* scope)
fpizlo@apple.com	6d4456e	2012-05-23 03:48:52 +0000	[diff] [blame]	845	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	846	VM& vm = exec->vm();
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	847	NativeCallFrameTracer target(&vm, exec);
fpizlo@apple.com	d554749	2012-06-07 00:23:36 +0000	[diff] [blame]	848
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	849	// We could pass the ScopedArgumentsTable* as an argument. We currently don't because I
				850	// didn't feel like changing the max number of arguments for a slow path call from 6 to 7.
				851	ScopedArgumentsTable* table = scope->symbolTable()->arguments();
fpizlo@apple.com	d554749	2012-06-07 00:23:36 +0000	[diff] [blame]	852
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	853	return ScopedArguments::createByCopyingFrom(
				854	vm, structure, argumentStart, length, callee, table, scope);
fpizlo@apple.com	d554749	2012-06-07 00:23:36 +0000	[diff] [blame]	855	}
				856
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	857	JSCell* JIT_OPERATION operationCreateClonedArguments(ExecState* exec, Structure* structure, Register* argumentStart, int32_t length, JSFunction* callee)
fpizlo@apple.com	d554749	2012-06-07 00:23:36 +0000	[diff] [blame]	858	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	859	VM& vm = exec->vm();
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	860	NativeCallFrameTracer target(&vm, exec);
				861	return ClonedArguments::createByCopyingFrom(
				862	exec, structure, argumentStart, length, callee);
fpizlo@apple.com	6d4456e	2012-05-23 03:48:52 +0000	[diff] [blame]	863	}
				864
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	865	JSCell* JIT_OPERATION operationCreateDirectArgumentsDuringExit(ExecState* exec, InlineCallFrame* inlineCallFrame, JSFunction* callee, int32_t argumentCount)
fpizlo@apple.com	17da7f3	2012-02-25 23:05:38 +0000	[diff] [blame]	866	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	867	VM& vm = exec->vm();
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	868	NativeCallFrameTracer target(&vm, exec);
				869
				870	DeferGCForAWhile deferGC(vm.heap);
				871
				872	CodeBlock* codeBlock;
				873	if (inlineCallFrame)
				874	codeBlock = baselineCodeBlockForInlineCallFrame(inlineCallFrame);
				875	else
				876	codeBlock = exec->codeBlock();
				877
				878	unsigned length = argumentCount - 1;
				879	unsigned capacity = std::max(length, static_cast<unsigned>(codeBlock->numParameters() - 1));
				880	DirectArguments* result = DirectArguments::create(
				881	vm, codeBlock->globalObject()->directArgumentsStructure(), length, capacity);
				882
				883	result->callee().set(vm, result, callee);
				884
				885	Register* arguments =
				886	exec->registers() + (inlineCallFrame ? inlineCallFrame->stackOffset : 0) +
				887	CallFrame::argumentOffset(0);
				888	for (unsigned i = length; i--;)
				889	result->setIndexQuickly(vm, i, arguments[i].jsValue());
				890
				891	return result;
				892	}
				893
				894	JSCell* JIT_OPERATION operationCreateClonedArgumentsDuringExit(ExecState* exec, InlineCallFrame* inlineCallFrame, JSFunction* callee, int32_t argumentCount)
				895	{
				896	VM& vm = exec->vm();
				897	NativeCallFrameTracer target(&vm, exec);
				898
				899	DeferGCForAWhile deferGC(vm.heap);
				900
				901	CodeBlock* codeBlock;
				902	if (inlineCallFrame)
				903	codeBlock = baselineCodeBlockForInlineCallFrame(inlineCallFrame);
				904	else
				905	codeBlock = exec->codeBlock();
				906
				907	unsigned length = argumentCount - 1;
				908	ClonedArguments* result = ClonedArguments::createEmpty(
				909	vm, codeBlock->globalObject()->outOfBandArgumentsStructure(), callee);
				910
				911	Register* arguments =
				912	exec->registers() + (inlineCallFrame ? inlineCallFrame->stackOffset : 0) +
				913	CallFrame::argumentOffset(0);
				914	for (unsigned i = length; i--;)
				915	result->putDirectIndex(exec, i, arguments[i].jsValue());
				916
				917	result->putDirect(vm, vm.propertyNames->length, jsNumber(length));
				918
				919	return result;
fpizlo@apple.com	17da7f3	2012-02-25 23:05:38 +0000	[diff] [blame]	920	}
				921
sbarati@apple.com	855d560	2015-11-30 20:36:54 +0000	[diff] [blame]	922	void JIT_OPERATION operationCopyRest(ExecState* exec, JSCell* arrayAsCell, Register* argumentStart, unsigned numberOfParamsToSkip, unsigned arraySize)
sbarati@apple.com	c0722da	2015-11-20 02:37:47 +0000	[diff] [blame]	923	{
sbarati@apple.com	855d560	2015-11-30 20:36:54 +0000	[diff] [blame]	924	ASSERT(arraySize);
sbarati@apple.com	c0722da	2015-11-20 02:37:47 +0000	[diff] [blame]	925	JSArray* array = jsCast<JSArray*>(arrayAsCell);
sbarati@apple.com	855d560	2015-11-30 20:36:54 +0000	[diff] [blame]	926	ASSERT(arraySize == array->length());
sbarati@apple.com	c0722da	2015-11-20 02:37:47 +0000	[diff] [blame]	927	array->setLength(exec, arraySize);
				928	for (unsigned i = 0; i < arraySize; i++)
				929	array->putDirectIndex(exec, i, argumentStart[i + numberOfParamsToSkip].jsValue());
				930	}
				931
fpizlo@apple.com	b8823d5	2015-05-03 00:15:27 +0000	[diff] [blame]	932	size_t JIT_OPERATION operationObjectIsObject(ExecState* exec, JSGlobalObject* globalObject, JSCell* object)
oliver@apple.com	e722ad0	2013-01-09 02:37:29 +0000	[diff] [blame]	933	{
mark.lam@apple.com	87a5b6f	2014-02-05 04:22:43 +0000	[diff] [blame]	934	VM& vm = exec->vm();
				935	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	b8823d5	2015-05-03 00:15:27 +0000	[diff] [blame]	936
				937	ASSERT(jsDynamicCast<JSObject*>(object));
				938
				939	if (object->structure(vm)->masqueradesAsUndefined(globalObject))
				940	return false;
				941	if (object->type() == JSFunctionType)
				942	return false;
				943	if (object->inlineTypeFlags() & TypeOfShouldCallGetCallData) {
				944	CallData callData;
				945	if (object->methodTable(vm)->getCallData(object, callData) != CallTypeNone)
				946	return false;
				947	}
				948
				949	return true;
				950	}
				951
				952	size_t JIT_OPERATION operationObjectIsFunction(ExecState* exec, JSGlobalObject* globalObject, JSCell* object)
				953	{
				954	VM& vm = exec->vm();
				955	NativeCallFrameTracer tracer(&vm, exec);
				956
				957	ASSERT(jsDynamicCast<JSObject*>(object));
				958
				959	if (object->structure(vm)->masqueradesAsUndefined(globalObject))
				960	return false;
				961	if (object->type() == JSFunctionType)
				962	return true;
				963	if (object->inlineTypeFlags() & TypeOfShouldCallGetCallData) {
				964	CallData callData;
				965	if (object->methodTable(vm)->getCallData(object, callData) != CallTypeNone)
				966	return true;
				967	}
				968
				969	return false;
				970	}
				971
				972	JSCell* JIT_OPERATION operationTypeOfObject(ExecState* exec, JSGlobalObject* globalObject, JSCell* object)
				973	{
				974	VM& vm = exec->vm();
				975	NativeCallFrameTracer tracer(&vm, exec);
				976
				977	ASSERT(jsDynamicCast<JSObject*>(object));
				978
				979	if (object->structure(vm)->masqueradesAsUndefined(globalObject))
				980	return vm.smallStrings.undefinedString();
				981	if (object->type() == JSFunctionType)
				982	return vm.smallStrings.functionString();
				983	if (object->inlineTypeFlags() & TypeOfShouldCallGetCallData) {
				984	CallData callData;
				985	if (object->methodTable(vm)->getCallData(object, callData) != CallTypeNone)
				986	return vm.smallStrings.functionString();
				987	}
				988
				989	return vm.smallStrings.objectString();
				990	}
				991
				992	int32_t JIT_OPERATION operationTypeOfObjectAsTypeofType(ExecState* exec, JSGlobalObject* globalObject, JSCell* object)
				993	{
				994	VM& vm = exec->vm();
				995	NativeCallFrameTracer tracer(&vm, exec);
				996
				997	ASSERT(jsDynamicCast<JSObject*>(object));
				998
				999	if (object->structure(vm)->masqueradesAsUndefined(globalObject))
				1000	return static_cast<int32_t>(TypeofType::Undefined);
				1001	if (object->type() == JSFunctionType)
				1002	return static_cast<int32_t>(TypeofType::Function);
				1003	if (object->inlineTypeFlags() & TypeOfShouldCallGetCallData) {
				1004	CallData callData;
				1005	if (object->methodTable(vm)->getCallData(object, callData) != CallTypeNone)
				1006	return static_cast<int32_t>(TypeofType::Function);
				1007	}
				1008
				1009	return static_cast<int32_t>(TypeofType::Object);
oliver@apple.com	e722ad0	2013-01-09 02:37:29 +0000	[diff] [blame]	1010	}
				1011
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1012	char* JIT_OPERATION operationAllocatePropertyStorageWithInitialCapacity(ExecState* exec)
fpizlo@apple.com	1ffdcff	2012-07-19 00:30:34 +0000	[diff] [blame]	1013	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1014	VM& vm = exec->vm();
				1015	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	c17054c	2012-09-18 15:22:29 +0000	[diff] [blame]	1016
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1017	return reinterpret_cast<char*>(
oliver@apple.com	a03796a	2013-07-25 04:01:20 +0000	[diff] [blame]	1018	Butterfly::createUninitialized(vm, 0, 0, initialOutOfLineCapacity, false, 0));
fpizlo@apple.com	1ffdcff	2012-07-19 00:30:34 +0000	[diff] [blame]	1019	}
				1020
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1021	char* JIT_OPERATION operationAllocatePropertyStorage(ExecState* exec, size_t newSize)
fpizlo@apple.com	1ffdcff	2012-07-19 00:30:34 +0000	[diff] [blame]	1022	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1023	VM& vm = exec->vm();
				1024	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	c17054c	2012-09-18 15:22:29 +0000	[diff] [blame]	1025
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1026	return reinterpret_cast<char*>(
oliver@apple.com	a03796a	2013-07-25 04:01:20 +0000	[diff] [blame]	1027	Butterfly::createUninitialized(vm, 0, 0, newSize, false, 0));
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1028	}
				1029
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1030	char* JIT_OPERATION operationReallocateButterflyToHavePropertyStorageWithInitialCapacity(ExecState* exec, JSObject* object)
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1031	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1032	VM& vm = exec->vm();
				1033	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	c17054c	2012-09-18 15:22:29 +0000	[diff] [blame]	1034
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1035	ASSERT(!object->structure()->outOfLineCapacity());
mhahnenberg@apple.com	3ddd7ac	2014-01-10 02:28:27 +0000	[diff] [blame]	1036	DeferGC deferGC(vm.heap);
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1037	Butterfly* result = object->growOutOfLineStorage(vm, 0, initialOutOfLineCapacity);
mhahnenberg@apple.com	ebf0191	2014-01-02 22:57:14 +0000	[diff] [blame]	1038	object->setButterflyWithoutChangingStructure(vm, result);
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1039	return reinterpret_cast<char*>(result);
				1040	}
				1041
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1042	char* JIT_OPERATION operationReallocateButterflyToGrowPropertyStorage(ExecState* exec, JSObject* object, size_t newSize)
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1043	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1044	VM& vm = exec->vm();
				1045	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	c17054c	2012-09-18 15:22:29 +0000	[diff] [blame]	1046
mhahnenberg@apple.com	3ddd7ac	2014-01-10 02:28:27 +0000	[diff] [blame]	1047	DeferGC deferGC(vm.heap);
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1048	Butterfly* result = object->growOutOfLineStorage(vm, object->structure()->outOfLineCapacity(), newSize);
mhahnenberg@apple.com	ebf0191	2014-01-02 22:57:14 +0000	[diff] [blame]	1049	object->setButterflyWithoutChangingStructure(vm, result);
fpizlo@apple.com	d8dd053	2012-09-13 04:18:52 +0000	[diff] [blame]	1050	return reinterpret_cast<char*>(result);
fpizlo@apple.com	1ffdcff	2012-07-19 00:30:34 +0000	[diff] [blame]	1051	}
				1052
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1053	char* JIT_OPERATION operationEnsureInt32(ExecState* exec, JSCell* cell)
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1054	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1055	VM& vm = exec->vm();
				1056	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1057
fpizlo@apple.com	274b6f1	2012-12-20 00:19:03 +0000	[diff] [blame]	1058	if (!cell->isObject())
				1059	return 0;
				1060
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1061	return reinterpret_cast<char*>(asObject(cell)->ensureInt32(vm).data());
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1062	}
				1063
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1064	char* JIT_OPERATION operationEnsureDouble(ExecState* exec, JSCell* cell)
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1065	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1066	VM& vm = exec->vm();
				1067	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1068
fpizlo@apple.com	274b6f1	2012-12-20 00:19:03 +0000	[diff] [blame]	1069	if (!cell->isObject())
				1070	return 0;
				1071
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1072	return reinterpret_cast<char*>(asObject(cell)->ensureDouble(vm).data());
fpizlo@apple.com	75c91a7	2012-11-08 22:28:25 +0000	[diff] [blame]	1073	}
				1074
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1075	char* JIT_OPERATION operationEnsureContiguous(ExecState* exec, JSCell* cell)
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	1076	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1077	VM& vm = exec->vm();
				1078	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	1079
fpizlo@apple.com	274b6f1	2012-12-20 00:19:03 +0000	[diff] [blame]	1080	if (!cell->isObject())
				1081	return 0;
				1082
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1083	return reinterpret_cast<char*>(asObject(cell)->ensureContiguous(vm).data());
fpizlo@apple.com	0e9910a	2012-10-09 23:39:53 +0000	[diff] [blame]	1084	}
				1085
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1086	char* JIT_OPERATION operationEnsureArrayStorage(ExecState* exec, JSCell* cell)
fpizlo@apple.com	497c751	2012-09-19 01:20:52 +0000	[diff] [blame]	1087	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1088	VM& vm = exec->vm();
				1089	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	274b6f1	2012-12-20 00:19:03 +0000	[diff] [blame]	1090
				1091	if (!cell->isObject())
				1092	return 0;
fpizlo@apple.com	497c751	2012-09-19 01:20:52 +0000	[diff] [blame]	1093
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1094	return reinterpret_cast<char*>(asObject(cell)->ensureArrayStorage(vm));
fpizlo@apple.com	497c751	2012-09-19 01:20:52 +0000	[diff] [blame]	1095	}
				1096
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1097	StringImpl* JIT_OPERATION operationResolveRope(ExecState* exec, JSString* string)
fpizlo@apple.com	70bb5c5	2012-12-11 05:22:49 +0000	[diff] [blame]	1098	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1099	VM& vm = exec->vm();
				1100	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	70bb5c5	2012-12-11 05:22:49 +0000	[diff] [blame]	1101
				1102	return string->value(exec).impl();
				1103	}
				1104
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1105	JSString* JIT_OPERATION operationSingleCharacterString(ExecState* exec, int32_t character)
oliver@apple.com	63af2d4	2013-07-25 04:03:33 +0000	[diff] [blame]	1106	{
				1107	VM& vm = exec->vm();
				1108	NativeCallFrameTracer tracer(&vm, exec);
				1109
				1110	return jsSingleCharacterString(exec, static_cast<UChar>(character));
				1111	}
				1112
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1113	JSCell* JIT_OPERATION operationNewStringObject(ExecState* exec, JSString* string, Structure* structure)
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1114	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1115	VM& vm = exec->vm();
				1116	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1117
akling@apple.com	019809c	2013-10-06 18:16:48 +0000	[diff] [blame]	1118	return StringObject::create(vm, structure, string);
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1119	}
				1120
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1121	JSCell* JIT_OPERATION operationToStringOnCell(ExecState* exec, JSCell* cell)
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1122	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1123	VM& vm = exec->vm();
				1124	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1125
				1126	return JSValue(cell).toString(exec);
				1127	}
				1128
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1129	JSCell* JIT_OPERATION operationToString(ExecState* exec, EncodedJSValue value)
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1130	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1131	VM& vm = exec->vm();
				1132	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	0e6e154	2013-03-18 18:09:22 +0000	[diff] [blame]	1133
				1134	return JSValue::decode(value).toString(exec);
				1135	}
				1136
utatane.tea@gmail.com	153559e	2015-04-06 19:07:12 +0000	[diff] [blame]	1137	JSCell* JIT_OPERATION operationCallStringConstructorOnCell(ExecState* exec, JSCell* cell)
				1138	{
				1139	VM& vm = exec->vm();
				1140	NativeCallFrameTracer tracer(&vm, exec);
				1141
				1142	return stringConstructor(exec, cell);
				1143	}
				1144
				1145	JSCell* JIT_OPERATION operationCallStringConstructor(ExecState* exec, EncodedJSValue value)
				1146	{
				1147	VM& vm = exec->vm();
				1148	NativeCallFrameTracer tracer(&vm, exec);
				1149
				1150	return stringConstructor(exec, JSValue::decode(value));
				1151	}
				1152
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1153	JSCell* JIT_OPERATION operationMakeRope2(ExecState* exec, JSString* left, JSString* right)
fpizlo@apple.com	8d22591	2013-03-19 00:44:57 +0000	[diff] [blame]	1154	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1155	VM& vm = exec->vm();
				1156	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	24c4999	2014-04-19 21:13:46 +0000	[diff] [blame]	1157
				1158	if (sumOverflows<int32_t>(left->length(), right->length())) {
fpizlo@apple.com	75104a3	2014-04-15 23:33:11 +0000	[diff] [blame]	1159	throwOutOfMemoryError(exec);
fpizlo@apple.com	e28731c	2014-04-19 20:36:58 +0000	[diff] [blame]	1160	return nullptr;
fpizlo@apple.com	75104a3	2014-04-15 23:33:11 +0000	[diff] [blame]	1161	}
fpizlo@apple.com	8d22591	2013-03-19 00:44:57 +0000	[diff] [blame]	1162
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1163	return JSRopeString::create(vm, left, right);
fpizlo@apple.com	8d22591	2013-03-19 00:44:57 +0000	[diff] [blame]	1164	}
				1165
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1166	JSCell* JIT_OPERATION operationMakeRope3(ExecState* exec, JSString* a, JSString* b, JSString* c)
fpizlo@apple.com	4463e44	2013-03-20 20:29:37 +0000	[diff] [blame]	1167	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1168	VM& vm = exec->vm();
				1169	NativeCallFrameTracer tracer(&vm, exec);
fpizlo@apple.com	4463e44	2013-03-20 20:29:37 +0000	[diff] [blame]	1170
fpizlo@apple.com	24c4999	2014-04-19 21:13:46 +0000	[diff] [blame]	1171	if (sumOverflows<int32_t>(a->length(), b->length(), c->length())) {
fpizlo@apple.com	75104a3	2014-04-15 23:33:11 +0000	[diff] [blame]	1172	throwOutOfMemoryError(exec);
fpizlo@apple.com	e28731c	2014-04-19 20:36:58 +0000	[diff] [blame]	1173	return nullptr;
fpizlo@apple.com	75104a3	2014-04-15 23:33:11 +0000	[diff] [blame]	1174	}
				1175
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1176	return JSRopeString::create(vm, a, b, c);
fpizlo@apple.com	4463e44	2013-03-20 20:29:37 +0000	[diff] [blame]	1177	}
				1178
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1179	JSCell* JIT_OPERATION operationStrCat2(ExecState* exec, EncodedJSValue a, EncodedJSValue b)
				1180	{
				1181	VM& vm = exec->vm();
				1182	NativeCallFrameTracer tracer(&vm, exec);
				1183
				1184	JSString* str1 = JSValue::decode(a).toString(exec);
fpizlo@apple.com	2b150e78	2015-08-27 23:59:57 +0000	[diff] [blame]	1185	ASSERT(!exec->hadException()); // Impossible, since we must have been given primitives.
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1186	JSString* str2 = JSValue::decode(b).toString(exec);
fpizlo@apple.com	2b150e78	2015-08-27 23:59:57 +0000	[diff] [blame]	1187	ASSERT(!exec->hadException());
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1188
				1189	if (sumOverflows<int32_t>(str1->length(), str2->length())) {
				1190	throwOutOfMemoryError(exec);
				1191	return nullptr;
				1192	}
				1193
				1194	return JSRopeString::create(vm, str1, str2);
				1195	}
				1196
				1197	JSCell* JIT_OPERATION operationStrCat3(ExecState* exec, EncodedJSValue a, EncodedJSValue b, EncodedJSValue c)
				1198	{
				1199	VM& vm = exec->vm();
				1200	NativeCallFrameTracer tracer(&vm, exec);
				1201
				1202	JSString* str1 = JSValue::decode(a).toString(exec);
fpizlo@apple.com	2b150e78	2015-08-27 23:59:57 +0000	[diff] [blame]	1203	ASSERT(!exec->hadException()); // Impossible, since we must have been given primitives.
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1204	JSString* str2 = JSValue::decode(b).toString(exec);
fpizlo@apple.com	2b150e78	2015-08-27 23:59:57 +0000	[diff] [blame]	1205	ASSERT(!exec->hadException());
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1206	JSString* str3 = JSValue::decode(c).toString(exec);
fpizlo@apple.com	2b150e78	2015-08-27 23:59:57 +0000	[diff] [blame]	1207	ASSERT(!exec->hadException());
fpizlo@apple.com	b3b187c	2015-08-22 18:35:47 +0000	[diff] [blame]	1208
				1209	if (sumOverflows<int32_t>(str1->length(), str2->length(), str3->length())) {
				1210	throwOutOfMemoryError(exec);
				1211	return nullptr;
				1212	}
				1213
				1214	return JSRopeString::create(vm, str1, str2, str3);
				1215	}
				1216
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1217	char* JIT_OPERATION operationFindSwitchImmTargetForDouble(
oliver@apple.com	9b7647b	2013-07-25 04:03:00 +0000	[diff] [blame]	1218	ExecState* exec, EncodedJSValue encodedValue, size_t tableIndex)
				1219	{
				1220	CodeBlock* codeBlock = exec->codeBlock();
oliver@apple.com	a14cea5	2013-07-25 04:03:23 +0000	[diff] [blame]	1221	SimpleJumpTable& table = codeBlock->switchJumpTable(tableIndex);
oliver@apple.com	9b7647b	2013-07-25 04:03:00 +0000	[diff] [blame]	1222	JSValue value = JSValue::decode(encodedValue);
				1223	ASSERT(value.isDouble());
				1224	double asDouble = value.asDouble();
				1225	int32_t asInt32 = static_cast<int32_t>(asDouble);
				1226	if (asDouble == asInt32)
				1227	return static_cast<char*>(table.ctiForValue(asInt32).executableAddress());
				1228	return static_cast<char*>(table.ctiDefault.executableAddress());
				1229	}
				1230
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1231	char* JIT_OPERATION operationSwitchString(ExecState* exec, size_t tableIndex, JSString* string)
oliver@apple.com	5c826c0	2013-07-25 04:03:51 +0000	[diff] [blame]	1232	{
				1233	VM& vm = exec->vm();
				1234	NativeCallFrameTracer tracer(&vm, exec);
				1235
				1236	return static_cast<char*>(exec->codeBlock()->stringSwitchJumpTable(tableIndex).ctiForValue(string->value(exec).impl()).executableAddress());
				1237	}
				1238
fpizlo@apple.com	5a3036b	2015-04-29 03:34:43 +0000	[diff] [blame]	1239	int32_t JIT_OPERATION operationSwitchStringAndGetBranchOffset(ExecState* exec, size_t tableIndex, JSString* string)
				1240	{
				1241	VM& vm = exec->vm();
				1242	NativeCallFrameTracer tracer(&vm, exec);
				1243
				1244	return exec->codeBlock()->stringSwitchJumpTable(tableIndex).offsetForValue(string->value(exec).impl(), std::numeric_limits<int32_t>::min());
				1245	}
				1246
fpizlo@apple.com	8dde06b	2015-10-12 22:41:01 +0000	[diff] [blame]	1247	char* JIT_OPERATION operationGetButterfly(ExecState* exec, JSCell* cell)
				1248	{
				1249	VM& vm = exec->vm();
				1250	NativeCallFrameTracer tracer(&vm, exec);
				1251
fpizlo@apple.com	8dde06b	2015-10-12 22:41:01 +0000	[diff] [blame]	1252	return bitwise_cast<char>(jsCast<JSObject>(cell)->butterfly());
				1253	}
				1254
				1255	char* JIT_OPERATION operationGetArrayBufferVector(ExecState* exec, JSCell* cell)
				1256	{
				1257	VM& vm = exec->vm();
				1258	NativeCallFrameTracer tracer(&vm, exec);
				1259
				1260	return bitwise_cast<char>(jsCast<JSArrayBufferView>(cell)->vector());
				1261	}
				1262
fpizlo@apple.com	3a2fa4c	2015-04-13 22:13:12 +0000	[diff] [blame]	1263	void JIT_OPERATION operationNotifyWrite(ExecState* exec, WatchpointSet* set)
fpizlo@apple.com	3396171	2013-11-20 05:49:05 +0000	[diff] [blame]	1264	{
				1265	VM& vm = exec->vm();
				1266	NativeCallFrameTracer tracer(&vm, exec);
				1267
fpizlo@apple.com	3a2fa4c	2015-04-13 22:13:12 +0000	[diff] [blame]	1268	set->touch("Executed NotifyWrite");
fpizlo@apple.com	3396171	2013-11-20 05:49:05 +0000	[diff] [blame]	1269	}
				1270
fpizlo@apple.com	da834ae	2015-03-26 04:28:43 +0000	[diff] [blame]	1271	void JIT_OPERATION operationThrowStackOverflowForVarargs(ExecState* exec)
				1272	{
				1273	VM& vm = exec->vm();
				1274	NativeCallFrameTracer tracer(&vm, exec);
				1275	throwStackOverflowError(exec);
				1276	}
				1277
fpizlo@apple.com	8fefdd3	2015-02-18 19:55:47 +0000	[diff] [blame]	1278	int32_t JIT_OPERATION operationSizeOfVarargs(ExecState* exec, EncodedJSValue encodedArguments, int32_t firstVarArgOffset)
				1279	{
				1280	VM& vm = exec->vm();
				1281	NativeCallFrameTracer tracer(&vm, exec);
				1282	JSValue arguments = JSValue::decode(encodedArguments);
				1283
				1284	return sizeOfVarargs(exec, arguments, firstVarArgOffset);
				1285	}
				1286
				1287	void JIT_OPERATION operationLoadVarargs(ExecState* exec, int32_t firstElementDest, EncodedJSValue encodedArguments, int32_t offset, int32_t length, int32_t mandatoryMinimum)
				1288	{
				1289	VM& vm = exec->vm();
				1290	NativeCallFrameTracer tracer(&vm, exec);
				1291	JSValue arguments = JSValue::decode(encodedArguments);
				1292
				1293	loadVarargs(exec, VirtualRegister(firstElementDest), arguments, offset, length);
				1294
				1295	for (int32_t i = length; i < mandatoryMinimum; ++i)
				1296	exec->r(firstElementDest + i) = jsUndefined();
				1297	}
				1298
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1299	double JIT_OPERATION operationFModOnInts(int32_t a, int32_t b)
fpizlo@apple.com	2c2536e	2012-03-21 01:29:28 +0000	[diff] [blame]	1300	{
				1301	return fmod(a, b);
				1302	}
				1303
utatane.tea@gmail.com	d2fca0a	2015-12-15 03:51:42 +0000	[diff] [blame]	1304	#if USE(JSVALUE32_64)
				1305	double JIT_OPERATION operationRandom(JSGlobalObject* globalObject)
				1306	{
				1307	return globalObject->weakRandomNumber();
				1308	}
				1309	#endif
				1310
mark.lam@apple.com	03a3e38	2016-01-08 18:44:36 +0000	[diff] [blame]	1311	JSCell* JIT_OPERATION operationStringFromCharCode(ExecState* exec, int32_t op1)
commit-queue@webkit.org	aa31a5e	2013-04-09 06:45:16 +0000	[diff] [blame]	1312	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1313	VM* vm = &exec->vm();
				1314	NativeCallFrameTracer tracer(vm, exec);
mark.lam@apple.com	03a3e38	2016-01-08 18:44:36 +0000	[diff] [blame]	1315	return JSC::stringFromCharCode(exec, op1);
commit-queue@webkit.org	aa31a5e	2013-04-09 06:45:16 +0000	[diff] [blame]	1316	}
				1317
mark.lam@apple.com	151fe10	2016-01-13 23:28:38 +0000	[diff] [blame]	1318	EncodedJSValue JIT_OPERATION operationStringFromCharCodeUntyped(ExecState* exec, EncodedJSValue encodedValue)
				1319	{
				1320	VM* vm = &exec->vm();
				1321	NativeCallFrameTracer tracer(vm, exec);
				1322	JSValue charValue = JSValue::decode(encodedValue);
				1323	int32_t chInt = charValue.toUInt32(exec);
				1324	return JSValue::encode(JSC::stringFromCharCode(exec, chInt));
				1325	}
				1326
fpizlo@apple.com	f299993	2014-07-15 00:41:39 +0000	[diff] [blame]	1327	int64_t JIT_OPERATION operationConvertBoxedDoubleToInt52(EncodedJSValue encodedValue)
				1328	{
				1329	JSValue value = JSValue::decode(encodedValue);
				1330	if (!value.isDouble())
				1331	return JSValue::notInt52;
				1332	return tryConvertToInt52(value.asDouble());
				1333	}
				1334
				1335	int64_t JIT_OPERATION operationConvertDoubleToInt52(double value)
				1336	{
				1337	return tryConvertToInt52(value);
				1338	}
				1339
saambarati1@gmail.com	daf1020	2014-10-01 20:47:51 +0000	[diff] [blame]	1340	void JIT_OPERATION operationProcessTypeProfilerLogDFG(ExecState* exec)
				1341	{
				1342	exec->vm().typeProfilerLog()->processLogEntries(ASCIILiteral("Log Full, called from inside DFG."));
				1343	}
				1344
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1345	void JIT_OPERATION debugOperationPrintSpeculationFailure(ExecState* exec, void* debugInfoRaw, void* scratch)
fpizlo@apple.com	746c6d07	2011-09-07 02:47:51 +0000	[diff] [blame]	1346	{
ggaren@apple.com	9a9a4b5	2013-04-18 19:32:17 +0000	[diff] [blame]	1347	VM* vm = &exec->vm();
				1348	NativeCallFrameTracer tracer(vm, exec);
oliver@apple.com	e07a459	2012-01-25 19:43:06 +0000	[diff] [blame]	1349
fpizlo@apple.com	746c6d07	2011-09-07 02:47:51 +0000	[diff] [blame]	1350	SpeculationFailureDebugInfo* debugInfo = static_cast<SpeculationFailureDebugInfo*>(debugInfoRaw);
fpizlo@apple.com	f2bf0dd	2011-09-26 04:05:28 +0000	[diff] [blame]	1351	CodeBlock* codeBlock = debugInfo->codeBlock;
fpizlo@apple.com	47d3b64	2011-10-05 21:36:23 +0000	[diff] [blame]	1352	CodeBlock* alternative = codeBlock->alternative();
mark.lam@apple.com	e7ecf83	2014-04-02 20:49:27 +0000	[diff] [blame]	1353	dataLog("Speculation failure in ", *codeBlock);
				1354	dataLog(" @ exit #", vm->osrExitIndex, " (bc#", debugInfo->bytecodeOffset, ", ", exitKindToString(debugInfo->kind), ") with ");
fpizlo@apple.com	0bfcc38	2012-11-30 03:42:29 +0000	[diff] [blame]	1355	if (alternative) {
				1356	dataLog(
				1357	"executeCounter = ", alternative->jitExecuteCounter(),
				1358	", reoptimizationRetryCounter = ", alternative->reoptimizationRetryCounter(),
				1359	", optimizationDelayCounter = ", alternative->optimizationDelayCounter());
				1360	} else
				1361	dataLog("no alternative code block (i.e. we've been jettisoned)");
				1362	dataLog(", osrExitCounter = ", codeBlock->osrExitCounter(), "\n");
fpizlo@apple.com	03e446e	2013-01-11 22:18:27 +0000	[diff] [blame]	1363	dataLog(" GPRs at time of exit:");
				1364	char* scratchPointer = static_cast<char*>(scratch);
				1365	for (unsigned i = 0; i < GPRInfo::numberOfRegisters; ++i) {
				1366	GPRReg gpr = GPRInfo::toRegister(i);
commit-queue@webkit.org	94ea812	2013-02-25 13:13:43 +0000	[diff] [blame]	1367	dataLog(" ", GPRInfo::debugName(gpr), ":", RawPointer(reinterpret_cast_ptr<void*>(scratchPointer)));
fpizlo@apple.com	03e446e	2013-01-11 22:18:27 +0000	[diff] [blame]	1368	scratchPointer += sizeof(EncodedJSValue);
				1369	}
				1370	dataLog("\n");
				1371	dataLog(" FPRs at time of exit:");
				1372	for (unsigned i = 0; i < FPRInfo::numberOfRegisters; ++i) {
				1373	FPRReg fpr = FPRInfo::toRegister(i);
				1374	dataLog(" ", FPRInfo::debugName(fpr), ":");
commit-queue@webkit.org	94ea812	2013-02-25 13:13:43 +0000	[diff] [blame]	1375	uint64_t bits = reinterpret_cast_ptr<uint64_t>(scratchPointer);
				1376	double value = reinterpret_cast_ptr<double>(scratchPointer);
ossy@webkit.org	71aebd7	2013-01-12 09:33:01 +0000	[diff] [blame]	1377	dataLogF("%llx:%lf", static_cast<long long>(bits), value);
fpizlo@apple.com	03e446e	2013-01-11 22:18:27 +0000	[diff] [blame]	1378	scratchPointer += sizeof(EncodedJSValue);
				1379	}
				1380	dataLog("\n");
fpizlo@apple.com	746c6d07	2011-09-07 02:47:51 +0000	[diff] [blame]	1381	}
fpizlo@apple.com	746c6d07	2011-09-07 02:47:51 +0000	[diff] [blame]	1382
fpizlo@apple.com	2c4a7e9	2014-08-06 05:27:46 +0000	[diff] [blame]	1383	extern "C" void JIT_OPERATION triggerReoptimizationNow(CodeBlock* codeBlock, OSRExitBase* exit)
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1384	{
fpizlo@apple.com	9822549	2013-09-10 18:29:45 +0000	[diff] [blame]	1385	// It's sort of preferable that we don't GC while in here. Anyways, doing so wouldn't
				1386	// really be profitable.
				1387	DeferGCForAWhile deferGC(codeBlock->vm()->heap);
				1388
oliver@apple.com	284cc3d	2013-07-25 04:00:33 +0000	[diff] [blame]	1389	if (Options::verboseOSR())
				1390	dataLog(*codeBlock, ": Entered reoptimize\n");
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1391	// We must be called with the baseline code block.
oliver@apple.com	5a24fdd	2013-07-25 04:00:54 +0000	[diff] [blame]	1392	ASSERT(JITCode::isBaselineCode(codeBlock->jitType()));
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1393
				1394	// If I am my own replacement, then reoptimization has already been triggered.
				1395	// This can happen in recursive functions.
oliver@apple.com	d2a1638	2013-07-25 04:04:18 +0000	[diff] [blame]	1396	if (codeBlock->replacement() == codeBlock) {
				1397	if (Options::verboseOSR())
				1398	dataLog(*codeBlock, ": Not reoptimizing because we've already been jettisoned.\n");
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1399	return;
oliver@apple.com	d2a1638	2013-07-25 04:04:18 +0000	[diff] [blame]	1400	}
				1401
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1402	// Otherwise, the replacement must be optimized code. Use this as an opportunity
				1403	// to check our logic.
				1404	ASSERT(codeBlock->hasOptimizedReplacement());
oliver@apple.com	d2a1638	2013-07-25 04:04:18 +0000	[diff] [blame]	1405	CodeBlock* optimizedCodeBlock = codeBlock->replacement();
				1406	ASSERT(JITCode::isOptimizingJIT(optimizedCodeBlock->jitType()));
fpizlo@apple.com	2c4a7e9	2014-08-06 05:27:46 +0000	[diff] [blame]	1407
				1408	bool didTryToEnterIntoInlinedLoops = false;
msaboff@apple.com	a3dc753	2015-09-24 21:42:59 +0000	[diff] [blame]	1409	for (InlineCallFrame* inlineCallFrame = exit->m_codeOrigin.inlineCallFrame; inlineCallFrame; inlineCallFrame = inlineCallFrame->directCaller.inlineCallFrame) {
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1410	if (inlineCallFrame->baselineCodeBlock->ownerScriptExecutable()->didTryToEnterInLoop()) {
fpizlo@apple.com	2c4a7e9	2014-08-06 05:27:46 +0000	[diff] [blame]	1411	didTryToEnterIntoInlinedLoops = true;
				1412	break;
				1413	}
				1414	}
oliver@apple.com	d2a1638	2013-07-25 04:04:18 +0000	[diff] [blame]	1415
				1416	// In order to trigger reoptimization, one of two things must have happened:
				1417	// 1) We exited more than some number of times.
				1418	// 2) We exited and got stuck in a loop, and now we're exiting again.
				1419	bool didExitABunch = optimizedCodeBlock->shouldReoptimizeNow();
				1420	bool didGetStuckInLoop =
fpizlo@apple.com	2c4a7e9	2014-08-06 05:27:46 +0000	[diff] [blame]	1421	(codeBlock->checkIfOptimizationThresholdReached() \|\| didTryToEnterIntoInlinedLoops)
oliver@apple.com	d2a1638	2013-07-25 04:04:18 +0000	[diff] [blame]	1422	&& optimizedCodeBlock->shouldReoptimizeFromLoopNow();
				1423
				1424	if (!didExitABunch && !didGetStuckInLoop) {
				1425	if (Options::verboseOSR())
				1426	dataLog(codeBlock, ": Not reoptimizing ", optimizedCodeBlock, " because it either didn't exit enough or didn't loop enough after exit.\n");
				1427	codeBlock->optimizeAfterLongWarmUp();
				1428	return;
				1429	}
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1430
fpizlo@apple.com	0dda6d7	2014-02-02 02:25:13 +0000	[diff] [blame]	1431	optimizedCodeBlock->jettison(Profiler::JettisonDueToOSRExit, CountReoptimization);
fpizlo@apple.com	16e2cbf	2012-06-22 23:32:59 +0000	[diff] [blame]	1432	}
				1433
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1434	#if ENABLE(FTL_JIT)
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1435	static bool shouldTriggerFTLCompile(CodeBlock* codeBlock, JITCode* jitCode)
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1436	{
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1437	if (codeBlock->baselineVersion()->m_didFailFTLCompilation) {
				1438	if (Options::verboseOSR())
				1439	dataLog("Deferring FTL-optimization of ", *codeBlock, " indefinitely because there was an FTL failure.\n");
				1440	jitCode->dontOptimizeAnytimeSoon(codeBlock);
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1441	return false;
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1442	}
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1443
				1444	if (!codeBlock->hasOptimizedReplacement()
				1445	&& !jitCode->checkIfOptimizationThresholdReached(codeBlock)) {
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1446	if (Options::verboseOSR())
				1447	dataLog("Choosing not to FTL-optimize ", *codeBlock, " yet.\n");
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1448	return false;
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1449	}
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1450	return true;
				1451	}
				1452
				1453	static void triggerFTLReplacementCompile(VM* vm, CodeBlock* codeBlock, JITCode* jitCode)
				1454	{
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1455	Worklist::State worklistState;
msaboff@apple.com	9589433	2014-01-29 19:18:54 +0000	[diff] [blame]	1456	if (Worklist* worklist = existingGlobalFTLWorklistOrNull()) {
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1457	worklistState = worklist->completeAllReadyPlansForVM(
				1458	*vm, CompilationKey(codeBlock->baselineVersion(), FTLMode));
				1459	} else
				1460	worklistState = Worklist::NotKnown;
				1461
				1462	if (worklistState == Worklist::Compiling) {
				1463	jitCode->setOptimizationThresholdBasedOnCompilationResult(
				1464	codeBlock, CompilationDeferred);
				1465	return;
				1466	}
				1467
				1468	if (codeBlock->hasOptimizedReplacement()) {
				1469	// That's great, we've compiled the code - next time we call this function,
				1470	// we'll enter that replacement.
				1471	jitCode->optimizeSoon(codeBlock);
				1472	return;
				1473	}
				1474
				1475	if (worklistState == Worklist::Compiled) {
				1476	// This means that we finished compiling, but failed somehow; in that case the
				1477	// thresholds will be set appropriately.
				1478	if (Options::verboseOSR())
				1479	dataLog("Code block ", *codeBlock, " was compiled but it doesn't have an optimized replacement.\n");
				1480	return;
				1481	}
				1482
				1483	// We need to compile the code.
				1484	compile(
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1485	*vm, codeBlock->newReplacement(), codeBlock, FTLMode, UINT_MAX,
				1486	Operands<JSValue>(), ToFTLDeferredCompilationCallback::create());
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1487
				1488	// If we reached here, the counter has not be reset. Do that now.
				1489	jitCode->setOptimizationThresholdBasedOnCompilationResult(
				1490	codeBlock, CompilationDeferred);
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1491	}
				1492
benjamin@webkit.org	8f62599	2015-05-18 20:45:34 +0000	[diff] [blame]	1493	static void triggerTierUpNowCommon(ExecState* exec, bool inLoop)
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1494	{
				1495	VM* vm = &exec->vm();
				1496	NativeCallFrameTracer tracer(vm, exec);
				1497	DeferGC deferGC(vm->heap);
				1498	CodeBlock* codeBlock = exec->codeBlock();
				1499
fpizlo@apple.com	8a5fd18	2015-02-02 18:38:08 +0000	[diff] [blame]	1500	if (codeBlock->jitType() != JITCode::DFGJIT) {
				1501	dataLog("Unexpected code block in DFG->FTL tier-up: ", *codeBlock, "\n");
				1502	RELEASE_ASSERT_NOT_REACHED();
				1503	}
				1504
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1505	JITCode* jitCode = codeBlock->jitCode()->dfg();
				1506
				1507	if (Options::verboseOSR()) {
				1508	dataLog(
				1509	*codeBlock, ": Entered triggerTierUpNow with executeCounter = ",
				1510	jitCode->tierUpCounter, "\n");
				1511	}
benjamin@webkit.org	8f62599	2015-05-18 20:45:34 +0000	[diff] [blame]	1512	if (inLoop)
				1513	jitCode->nestedTriggerIsSet = 1;
				1514
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1515	if (shouldTriggerFTLCompile(codeBlock, jitCode))
				1516	triggerFTLReplacementCompile(vm, codeBlock, jitCode);
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1517	}
				1518
benjamin@webkit.org	8f62599	2015-05-18 20:45:34 +0000	[diff] [blame]	1519	void JIT_OPERATION triggerTierUpNow(ExecState* exec)
				1520	{
				1521	triggerTierUpNowCommon(exec, false);
				1522	}
				1523
				1524	void JIT_OPERATION triggerTierUpNowInLoop(ExecState* exec)
				1525	{
				1526	triggerTierUpNowCommon(exec, true);
				1527	}
				1528
mark.lam@apple.com	9df8b83	2013-09-26 20:27:14 +0000	[diff] [blame]	1529	char* JIT_OPERATION triggerOSREntryNow(
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1530	ExecState* exec, int32_t bytecodeIndex, int32_t streamIndex)
				1531	{
				1532	VM* vm = &exec->vm();
				1533	NativeCallFrameTracer tracer(vm, exec);
				1534	DeferGC deferGC(vm->heap);
				1535	CodeBlock* codeBlock = exec->codeBlock();
				1536
fpizlo@apple.com	8a5fd18	2015-02-02 18:38:08 +0000	[diff] [blame]	1537	if (codeBlock->jitType() != JITCode::DFGJIT) {
				1538	dataLog("Unexpected code block in DFG->FTL tier-up: ", *codeBlock, "\n");
				1539	RELEASE_ASSERT_NOT_REACHED();
				1540	}
				1541
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1542	JITCode* jitCode = codeBlock->jitCode()->dfg();
benjamin@webkit.org	8f62599	2015-05-18 20:45:34 +0000	[diff] [blame]	1543	jitCode->nestedTriggerIsSet = 0;
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1544
				1545	if (Options::verboseOSR()) {
				1546	dataLog(
fpizlo@apple.com	2c4a7e9	2014-08-06 05:27:46 +0000	[diff] [blame]	1547	*codeBlock, ": Entered triggerOSREntryNow with executeCounter = ",
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1548	jitCode->tierUpCounter, "\n");
				1549	}
				1550
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1551	// - If we don't have an FTL code block, then try to compile one.
				1552	// - If we do have an FTL code block, then try to enter for a while.
				1553	// - If we couldn't enter for a while, then trigger OSR entry.
msaboff@apple.com	9589433	2014-01-29 19:18:54 +0000	[diff] [blame]	1554
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1555	if (!shouldTriggerFTLCompile(codeBlock, jitCode))
				1556	return nullptr;
				1557
				1558	if (!jitCode->neverExecutedEntry) {
				1559	triggerFTLReplacementCompile(vm, codeBlock, jitCode);
				1560
				1561	if (!codeBlock->hasOptimizedReplacement())
				1562	return nullptr;
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1563	}
				1564
				1565	// It's time to try to compile code for OSR entry.
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1566	Worklist::State worklistState;
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1567	if (Worklist* worklist = existingGlobalFTLWorklistOrNull()) {
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1568	worklistState = worklist->completeAllReadyPlansForVM(
				1569	*vm, CompilationKey(codeBlock->baselineVersion(), FTLForOSREntryMode));
				1570	} else
				1571	worklistState = Worklist::NotKnown;
				1572
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1573	if (worklistState == Worklist::Compiling) {
				1574	jitCode->setOptimizationThresholdBasedOnCompilationResult(
				1575	codeBlock, CompilationDeferred);
				1576	return nullptr;
				1577	}
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1578
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1579	if (CodeBlock* entryBlock = jitCode->osrEntryBlock()) {
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1580	void* address = FTL::prepareOSREntry(
				1581	exec, codeBlock, entryBlock, bytecodeIndex, streamIndex);
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1582	if (address)
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1583	return static_cast<char*>(address);
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1584
				1585	if (jitCode->osrEntryRetry < Options::ftlOSREntryRetryThreshold()) {
				1586	jitCode->osrEntryRetry++;
				1587	return nullptr;
				1588	}
				1589
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1590	FTL::ForOSREntryJITCode* entryCode = entryBlock->jitCode()->ftlForOSREntry();
				1591	entryCode->countEntryFailure();
				1592	if (entryCode->entryFailureCount() <
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1593	Options::ftlOSREntryFailureCountForReoptimization()) {
				1594	jitCode->optimizeSoon(codeBlock);
				1595	return nullptr;
				1596	}
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1597
				1598	// OSR entry failed. Oh no! This implies that we need to retry. We retry
				1599	// without exponential backoff and we only do this for the entry code block.
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1600	jitCode->clearOSREntryBlock();
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1601	jitCode->osrEntryRetry = 0;
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1602	return nullptr;
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1603	}
				1604
				1605	if (worklistState == Worklist::Compiled) {
				1606	// This means that compilation failed and we already set the thresholds.
				1607	if (Options::verboseOSR())
				1608	dataLog("Code block ", *codeBlock, " was compiled but it doesn't have an optimized replacement.\n");
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1609	return nullptr;
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1610	}
				1611
fpizlo@apple.com	0c60670	2014-02-06 07:11:48 +0000	[diff] [blame]	1612	// We aren't compiling and haven't compiled anything for OSR entry. So, try to compile
				1613	// something.
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1614	Operands<JSValue> mustHandleValues;
				1615	jitCode->reconstruct(
				1616	exec, codeBlock, CodeOrigin(bytecodeIndex), streamIndex, mustHandleValues);
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1617	CodeBlock* replacementCodeBlock = codeBlock->newReplacement();
msaboff@apple.com	9589433	2014-01-29 19:18:54 +0000	[diff] [blame]	1618	CompilationResult forEntryResult = compile(
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1619	*vm, replacementCodeBlock, codeBlock, FTLForOSREntryMode, bytecodeIndex,
				1620	mustHandleValues, ToFTLForOSREntryDeferredCompilationCallback::create());
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1621
				1622	if (jitCode->neverExecutedEntry)
				1623	triggerFTLReplacementCompile(vm, codeBlock, jitCode);
				1624
				1625	if (forEntryResult != CompilationSuccessful) {
				1626	jitCode->setOptimizationThresholdBasedOnCompilationResult(
				1627	codeBlock, CompilationDeferred);
				1628	return nullptr;
				1629	}
mark.lam@apple.com	aebf685	2014-03-03 21:39:21 +0000	[diff] [blame]	1630
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1631	// It's possible that the for-entry compile already succeeded. In that case OSR
				1632	// entry will succeed unless we ran out of stack. It's not clear what we should do.
				1633	// We signal to try again after a while if that happens.
				1634	void* address = FTL::prepareOSREntry(
ggaren@apple.com	81def5f	2015-10-09 23:10:16 +0000	[diff] [blame]	1635	exec, codeBlock, jitCode->osrEntryBlock(), bytecodeIndex, streamIndex);
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1636	return static_cast<char*>(address);
				1637	}
commit-queue@webkit.org	2ae563d	2016-02-26 05:59:48 +0000	[diff] [blame^]	1638
fpizlo@apple.com	532f1e5	2013-09-04 06:26:04 +0000	[diff] [blame]	1639	#endif // ENABLE(FTL_JIT)
				1640
barraclough@apple.com	c7af2d3	2011-05-26 21:37:05 +0000	[diff] [blame]	1641	} // extern "C"
fpizlo@apple.com	04659ba	2012-02-21 09:49:22 +0000	[diff] [blame]	1642	} } // namespace JSC::DFG
				1643
commit-queue@webkit.org	b841948	2012-08-30 22:21:48 +0000	[diff] [blame]	1644	#endif // ENABLE(DFG_JIT)
fpizlo@apple.com	7bbcaab	2012-02-22 05:23:19 +0000	[diff] [blame]	1645
commit-queue@webkit.org	b841948	2012-08-30 22:21:48 +0000	[diff] [blame]	1646	#endif // ENABLE(JIT)