Bug 141211

Summary: Remove BytecodeGenerator::preserveLastVar() and replace it with a more robust mechanism for preserving non-temporary registers
Product: WebKit Reporter: Filip Pizlo <fpizlo>
Component: JavaScriptCoreAssignee: Filip Pizlo <fpizlo>
Status: RESOLVED FIXED    
Severity: Normal CC: barraclough, ggaren, mark.lam, mhahnenb, mmirman, msaboff, nrotem, oliver, saam, sam
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Bug Depends on:    
Bug Blocks: 141174    
Attachments:
Description Flags
the patch
fpizlo: review-
the patch
none
the patch
mark.lam: review+
the patch mark.lam: review+

Filip Pizlo
Reported 2015-02-03 14:40:00 PST
Get rid of it.
Attachments
the patch (2.90 KB, patch)
2015-02-03 14:42 PST, Filip Pizlo 		fpizlo: review-
DetailsFormatted DiffDiff
the patch (4.34 KB, patch)
2015-02-03 14:57 PST, Filip Pizlo 		no flags
DetailsFormatted DiffDiff
the patch (5.78 KB, patch)
2015-02-03 15:07 PST, Filip Pizlo 		mark.lam: review+
DetailsFormatted DiffDiff
the patch (5.82 KB, patch)
2015-02-04 08:57 PST, Filip Pizlo 		mark.lam: review+
DetailsFormatted DiffDiff
Show Obsolete (3) View All Add attachment proposed patch, testcase, etc.
Filip Pizlo
Comment 1 2015-02-03 14:42:32 PST
Created attachment 245969 [details] the patch
Mark Lam
Comment 2 2015-02-03 14:43:23 PST
Comment on attachment 245969 [details] the patch r=me
Filip Pizlo
Comment 3 2015-02-03 14:51:44 PST
(In reply to comment #2) > Comment on attachment 245969 [details] > the patch > > r=me Invalid patch, will upload a new one.
Filip Pizlo
Comment 4 2015-02-03 14:57:27 PST
Created attachment 245970 [details] the patch
Filip Pizlo
Comment 5 2015-02-03 15:07:21 PST
Created attachment 245971 [details] the patch
Mark Lam
Comment 6 2015-02-03 15:08:39 PST
Comment on attachment 245971 [details] the patch r=me
Filip Pizlo
Comment 7 2015-02-03 15:13:32 PST
(In reply to comment #6) > Comment on attachment 245971 [details] > the patch > > r=me Lol, my patch is still wrong. ;-)
Filip Pizlo
Comment 8 2015-02-04 08:57:39 PST
Created attachment 246035 [details] the patch For real this time!
Mark Lam
Comment 9 2015-02-04 09:32:44 PST
Comment on attachment 246035 [details] the patch View in context: https://bugs.webkit.org/attachment.cgi?id=246035&action=review > Source/JavaScriptCore/ChangeLog:47 > +2015-02-03 Filip Pizlo <fpizlo@apple.com> > + > + Reviewed by NOBODY (OOPS!). > + > + Also removes the localArgumentsRegister local variable in BytecodeGenerator's > + constructor. It's not used. > + > + * bytecompiler/BytecodeGenerator.cpp: > + (JSC::BytecodeGenerator::BytecodeGenerator): > + (JSC::BytecodeGenerator::preserveLastVar): Deleted. > + * bytecompiler/BytecodeGenerator.h: > + (JSC::BytecodeGenerator::addVar): > + Leftover edit that should have been removed? > Source/JavaScriptCore/bytecompiler/RegisterID.h:75 > - ASSERT(!m_refCount); > #ifndef NDEBUG > m_didSetIndex = true; > #endif I think the main reason for the ASSERT(!m_refCount) is to ensure that the index is only set once before use. Though the previous implementation allows us to “change our minds” and set the index to something else (which I don’t think is likely to happen) as long as we haven’t started using the RegisterID yet, I think the real bug it’s trying to watch out for is that we don’t use the RegisterID’s index in one place and then change it before using it in another (which is also unlikely to happen but if it does, it can cause havoc). How about you replace this assert with ASSERT(!m_didSetIndex) in the #ifndef NDEBUG section instead? Would that work?
Filip Pizlo
Comment 10 2015-02-04 09:39:42 PST
(In reply to comment #9) > Comment on attachment 246035 [details] > the patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=246035&action=review > > > Source/JavaScriptCore/ChangeLog:47 > > +2015-02-03 Filip Pizlo <fpizlo@apple.com> > > + > > + Reviewed by NOBODY (OOPS!). > > + > > + Also removes the localArgumentsRegister local variable in BytecodeGenerator's > > + constructor. It's not used. > > + > > + * bytecompiler/BytecodeGenerator.cpp: > > + (JSC::BytecodeGenerator::BytecodeGenerator): > > + (JSC::BytecodeGenerator::preserveLastVar): Deleted. > > + * bytecompiler/BytecodeGenerator.h: > > + (JSC::BytecodeGenerator::addVar): > > + > > Leftover edit that should have been removed? Yup, I removed it locally. > > > Source/JavaScriptCore/bytecompiler/RegisterID.h:75 > > - ASSERT(!m_refCount); > > #ifndef NDEBUG > > m_didSetIndex = true; > > #endif > > I think the main reason for the ASSERT(!m_refCount) is to ensure that the > index is only set once before use. Though the previous implementation > allows us to “change our minds” and set the index to something else (which I > don’t think is likely to happen) as long as we haven’t started using the > RegisterID yet, I think the real bug it’s trying to watch out for is that we > don’t use the RegisterID’s index in one place and then change it before > using it in another (which is also unlikely to happen but if it does, it can > cause havoc). > > How about you replace this assert with ASSERT(!m_didSetIndex) in the #ifndef > NDEBUG section instead? Would that work? But this does get called when m_didSetIndex is true.
Mark Lam
Comment 11 2015-02-04 09:43:29 PST
Comment on attachment 246035 [details] the patch View in context: https://bugs.webkit.org/attachment.cgi?id=246035&action=review r=me with ChangeLog fix. >>> Source/JavaScriptCore/bytecompiler/RegisterID.h:75 >>> #endif >> >> I think the main reason for the ASSERT(!m_refCount) is to ensure that the index is only set once before use. Though the previous implementation allows us to “change our minds” and set the index to something else (which I don’t think is likely to happen) as long as we haven’t started using the RegisterID yet, I think the real bug it’s trying to watch out for is that we don’t use the RegisterID’s index in one place and then change it before using it in another (which is also unlikely to happen but if it does, it can cause havoc). >> >> How about you replace this assert with ASSERT(!m_didSetIndex) in the #ifndef NDEBUG section instead? Would that work? > > But this does get called when m_didSetIndex is true. OK. For Filip explained offline that for a scenario like: function(a) { var a; }, the var a overrides argument a. As such, the index for a’s RegisterID will be changed to match that of the argument’s. Hence, m_didSetIndex is already true there.
Mark Lam
Comment 12 2015-02-04 09:44:27 PST
(In reply to comment #11) > OK. For Filip explained offline that ... I meant: For the record, Filip explained ... Ahh typos.
Filip Pizlo
Comment 13 2015-02-06 08:05:04 PST
Landed in http://trac.webkit.org/changeset/179746
Note You need to log in before you can comment on or make changes to this bug.