RESOLVED FIXED 171527
How we build polymorphic cases is wrong when making a call from Wasm 
https://bugs.webkit.org/show_bug.cgi?id=171527
Summary How we build polymorphic cases is wrong when making a call from Wasm
Saam Barati
Reported 2017-05-01 17:22:13 PDT
We do a totally borked thing and assume the case does not have a code block when it totally does.
Attachments
patch (18.01 KB, patch)
2017-05-01 19:38 PDT, Saam Barati 		jfbastien: review+
DetailsFormatted DiffDiff
patch for landing (18.15 KB, patch)
2017-05-03 19:18 PDT, Saam Barati 		no flags
DetailsFormatted DiffDiff
patch for landing (18.15 KB, patch)
2017-05-03 19:51 PDT, Saam Barati 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
Saam Barati
Comment 1 2017-05-01 18:34:37 PDT
*** Bug 171518 has been marked as a duplicate of this bug. ***
Saam Barati
Comment 2 2017-05-01 18:34:55 PDT
*** Bug 171507 has been marked as a duplicate of this bug. ***
Saam Barati
Comment 3 2017-05-01 19:38:30 PDT
Created attachment 308798 [details] patch
Saam Barati
Comment 4 2017-05-01 19:39:19 PDT
Comment on attachment 308798 [details] patch View in context: https://bugs.webkit.org/attachment.cgi?id=308798&action=review > Source/JavaScriptCore/jit/Repatch.cpp:765 > + if (variant.executable()->isHostFunction()) This is the fix for the bug.
Build Bot
Comment 5 2017-05-01 19:40:24 PDT
Attachment 308798 [details] did not pass style-queue: ERROR: Source/JavaScriptCore/wasm/WasmBinding.cpp:192: Weird number of spaces at line-start. Are you using a 4-space indent? [whitespace/indent] [3] ERROR: Source/JavaScriptCore/wasm/WasmBinding.cpp:193: Weird number of spaces at line-start. Are you using a 4-space indent? [whitespace/indent] [3] Total errors found: 2 in 9 files If any of these errors are false positives, please file a bug against check-webkit-style.
JF Bastien
Comment 6 2017-05-02 22:35:44 PDT
Comment on attachment 308798 [details] patch View in context: https://bugs.webkit.org/attachment.cgi?id=308798&action=review A few comments, but overall looks good. > Source/JavaScriptCore/wasm/WasmBinding.cpp:128 > + if (!Options::useCallICsForWebAssemblyToJSCalls()) { This versus the code below are kinda hard to tell apart. Aren't the mostly similar? Could you pull the common bits out, or is it too weird? > Source/JavaScriptCore/wasm/WasmBinding.cpp:136 > + jit.subPtr(MacroAssembler::TrustedImm32(16), MacroAssembler::stackPointerRegister); Why 16 instead of 8?
Saam Barati
Comment 7 2017-05-03 10:11:30 PDT
Comment on attachment 308798 [details] patch View in context: https://bugs.webkit.org/attachment.cgi?id=308798&action=review thanks for the review >> Source/JavaScriptCore/wasm/WasmBinding.cpp:128 >> + if (!Options::useCallICsForWebAssemblyToJSCalls()) { > > This versus the code below are kinda hard to tell apart. Aren't the mostly similar? Could you pull the common bits out, or is it too weird? I think it's different enough (note we only loop over signature once, not twice) that pulling out the common bits will just make everything less readable. >> Source/JavaScriptCore/wasm/WasmBinding.cpp:136 >> + jit.subPtr(MacroAssembler::TrustedImm32(16), MacroAssembler::stackPointerRegister); > > Why 16 instead of 8? This is probably an anti pattern to use 16 directly, but the reason is it's rounded to stack alignment bytes. I'll do this instead (which is the same as 16, but at least not hard coded): uint32_t bytes = WTF::roundToMultipleOf(stackAlignmentBytes(), sizeof(Register));
Saam Barati
Comment 8 2017-05-03 19:18:24 PDT
Created attachment 309003 [details] patch for landing
Build Bot
Comment 9 2017-05-03 19:19:41 PDT
Attachment 309003 [details] did not pass style-queue: ERROR: Source/JavaScriptCore/wasm/WasmBinding.cpp:192: Weird number of spaces at line-start. Are you using a 4-space indent? [whitespace/indent] [3] ERROR: Source/JavaScriptCore/wasm/WasmBinding.cpp:193: Weird number of spaces at line-start. Are you using a 4-space indent? [whitespace/indent] [3] Total errors found: 2 in 9 files If any of these errors are false positives, please file a bug against check-webkit-style.
Saam Barati
Comment 10 2017-05-03 19:51:01 PDT
Created attachment 309005 [details] patch for landing fix style.
WebKit Commit Bot
Comment 11 2017-05-03 22:50:05 PDT
Comment on attachment 309005 [details] patch for landing Clearing flags on attachment: 309005 Committed r216173: <http://trac.webkit.org/changeset/216173>
WebKit Commit Bot
Comment 12 2017-05-03 22:50:06 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.