Bug 122982 - Change native function call stubs to use JIT operations instead of ctiVMHandleException
Summary: Change native function call stubs to use JIT operations instead of ctiVMHandl...
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: JavaScriptCore (show other bugs)
Version: 528+ (Nightly build)
Hardware: All All
: P2 Normal
Assignee: Michael Saboff
URL:
Keywords:
: 122980 (view as bug list)
Depends on:
Blocks: 122758
  Show dependency treegraph
 
Reported: 2013-10-17 11:23 PDT by Michael Saboff
Modified: 2013-10-18 09:23 PDT (History)
1 user (show)

See Also:

Attachments
Patch (35.10 KB, patch)
2013-10-17 18:33 PDT, Michael Saboff 		ggaren: review+
buildbot: commit-queue-
Details | Formatted Diff | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Saboff 2013-10-17 11:23:57 PDT 
CTI Native call is the last user of ctiVMHandleException.  These need to be transitioned to JIT Operations
Comment 1 Michael Saboff 2013-10-17 18:33:49 PDT 
Created attachment 214538 [details]
Patch

This patch also fixes https://bugs.webkit.org/show_bug.cgi?id=122980 by eliminating the problem.
Comment 2 Michael Saboff 2013-10-17 18:36:03 PDT 
*** Bug 122980 has been marked as a duplicate of this bug. ***
Comment 3 Geoffrey Garen 2013-10-17 18:53:47 PDT 
Comment on attachment 214538 [details]
Patch

View in context: https://bugs.webkit.org/attachment.cgi?id=214538&action=review

r=me

> Source/JavaScriptCore/dfg/DFGJITCompiler.cpp:155
> +    // lookupExceptionHandler leaves the handler CallFrame* in vm->callFrameForThrow,
> +    // and the address of the handler in vm->targetMachinePCForThrow.
> +    move(TrustedImmPtr(m_vm), GPRInfo::regT0);
> +    loadPtr(Address(GPRInfo::regT0, VM::targetMachinePCForThrowOffset()), GPRInfo::regT1);
> +    loadPtr(Address(GPRInfo::regT0, VM::callFrameForThrowOffset()), GPRInfo::regT0);
> +    jump(GPRInfo::regT1);

Can you put this in a helper function?

> Source/JavaScriptCore/jit/JITOpcodes32_64.cpp:195
> +    // operationVMHandleException leaves the handler CallFrame* in vm->callFrameForThrow,
> +    // and the address of the handler in vm->targetMachinePCForThrow.
> +    move(TrustedImmPtr(vm), regT0);
> +    loadPtr(Address(regT0, VM::targetMachinePCForThrowOffset()), regT1);
> +    loadPtr(Address(regT0, VM::callFrameForThrowOffset()), regT0);
>      jump(regT1);

Can you put this in a helper function? (It should be the same on 32-bit: loadPtr in both cases.)

> Source/JavaScriptCore/jit/JITOperations.cpp:1642
> +void JIT_OPERATION operationVMHandleException(ExecState* exec, VM* vm)

Why do we need the VM* argument? Let's remove it, to simplify callers.

> Source/JavaScriptCore/jit/JITOperations.cpp:1654
> +    vm->topCallFrame = exec;

We don't need this. NativeCallFrameTracer takes care of this for us.

> Source/JavaScriptCore/runtime/VM.h:352
> +        static ptrdiff_t callFrameForThrowOffset()
> +        {
> +            return OBJECT_OFFSETOF(VM, callFrameForThrow);
> +        }
> +
> +        static ptrdiff_t targetMachinePCForThrowOffset()
> +        {
> +            return OBJECT_OFFSETOF(VM, targetMachinePCForThrow);
> +        }

Interesting: Looks like we were doing this already -- just inconsistently.
Comment 4 Build Bot 2013-10-17 19:15:40 PDT 
Comment on attachment 214538 [details]
Patch

Attachment 214538 [details] did not pass win-ews (win):
Output: http://webkit-queues.appspot.com/results/4578002
Comment 5 Alex Christensen 2013-10-17 20:12:25 PDT 
Delete "EXTERN cti_vm_handle_exception : near" in JITStubsMSVC64.asm and the MSVC ctiVMHandleException implementation in JITStubsX86.h and this compiles successfully.  It runs the tests successfully on Win32 but not on Win64.
Comment 6 Michael Saboff 2013-10-17 22:52:49 PDT 
(In reply to comment #3)
> (From update of attachment 214538 [details])
> View in context: https://bugs.webkit.org/attachment.cgi?id=214538&action=review
> 
> r=me
> 
> > Source/JavaScriptCore/jit/JITOperations.cpp:1642
> > +void JIT_OPERATION operationVMHandleException(ExecState* exec, VM* vm)
> 
> Why do we need the VM* argument? Let's remove it, to simplify callers.

The original code for cti_vm_handle_exception handled the case where callFrame is null.  That version was returning a struct with the catch callFrame/PC.  Given that we are now using the VM to pass back those values, we need a VM even if we don't have a callFrame.  That's why I passed it in as an argument.  Saying that, I have instrumented the code and it doesn't appear that we ever exercise that path.  Unless we can come up with a scenario where we need to unwind and exception and won't have a valid callFrame, I'll remove the VM argument and corresponding code.

> > Source/JavaScriptCore/jit/JITOperations.cpp:1654
> > +    vm->topCallFrame = exec;
> 
> We don't need this. NativeCallFrameTracer takes care of this for us.

I'll remove.
 
> > Source/JavaScriptCore/runtime/VM.h:352
> > +        static ptrdiff_t callFrameForThrowOffset()
> > +        {
> > +            return OBJECT_OFFSETOF(VM, callFrameForThrow);
> > +        }
> > +
> > +        static ptrdiff_t targetMachinePCForThrowOffset()
> > +        {
> > +            return OBJECT_OFFSETOF(VM, targetMachinePCForThrow);
> > +        }
> 
> Interesting: Looks like we were doing this already -- just inconsistently.

It appears we never consumed the values from the VM.

I'll make the helpers requested.
Comment 7 Michael Saboff 2013-10-17 22:54:05 PDT 
(In reply to comment #5)
> Delete "EXTERN cti_vm_handle_exception : near" in JITStubsMSVC64.asm and the MSVC ctiVMHandleException implementation in JITStubsX86.h and this compiles successfully.  It runs the tests successfully on Win32 but not on Win64.

Alex, thanks for the help.  I removed the dead references from those two files.  I also found another in jit/JITStubsARM.h.
Comment 8 Michael Saboff 2013-10-18 09:23:30 PDT 
Committed r157636: <http://trac.webkit.org/changeset/157636>