/* * Copyright (C) 2011-2018 Apple Inc. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY APPLE INC. ``AS IS'' AND ANY * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY * OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #pragma once #if ENABLE(DFG_JIT) #include "DFGOSRExitBase.h" #include "DFGVariableEventStream.h" #include "GPRInfo.h" #include "MacroAssembler.h" #include "MethodOfGettingAValueProfile.h" #include "Operands.h" #include "ValueRecovery.h" #include namespace JSC { class ArrayProfile; class CCallHelpers; namespace Probe { class Context; } // namespace Probe namespace Profiler { class OSRExit; } // namespace Profiler namespace DFG { class SpeculativeJIT; struct BasicBlock; struct Node; // This enum describes the types of additional recovery that // may need be performed should a speculation check fail. enum SpeculationRecoveryType : uint8_t { SpeculativeAdd, SpeculativeAddSelf, SpeculativeAddImmediate, BooleanSpeculationCheck }; // === SpeculationRecovery === // // This class provides additional information that may be associated with a // speculation check - for example class SpeculationRecovery { public: SpeculationRecovery(SpeculationRecoveryType type, GPRReg dest, GPRReg src) : m_src(src) , m_dest(dest) , m_type(type) { ASSERT(m_type == SpeculativeAdd || m_type == SpeculativeAddSelf || m_type == BooleanSpeculationCheck); } SpeculationRecovery(SpeculationRecoveryType type, GPRReg dest, int32_t immediate) : m_immediate(immediate) , m_dest(dest) , m_type(type) { ASSERT(m_type == SpeculativeAddImmediate); } SpeculationRecoveryType type() { return m_type; } GPRReg dest() { return m_dest; } GPRReg src() { return m_src; } int32_t immediate() { return m_immediate; } private: // different recovery types may required different additional information here. union { GPRReg m_src; int32_t m_immediate; }; GPRReg m_dest; // Indicates the type of additional recovery to be performed. SpeculationRecoveryType m_type; }; enum class ExtraInitializationLevel; struct OSRExitState : RefCounted { OSRExitState(OSRExitBase& exit, CodeBlock* codeBlock, CodeBlock* baselineCodeBlock, Operands& operands, Vector&& undefinedOperandSpans, SpeculationRecovery* recovery, ptrdiff_t stackPointerOffset, int32_t activeThreshold, double memoryUsageAdjustedThreshold, void* jumpTarget, ArrayProfile* arrayProfile, bool isJumpToLLInt) : exit(exit) , codeBlock(codeBlock) , baselineCodeBlock(baselineCodeBlock) , operands(operands) , undefinedOperandSpans(undefinedOperandSpans) , recovery(recovery) , stackPointerOffset(stackPointerOffset) , activeThreshold(activeThreshold) , memoryUsageAdjustedThreshold(memoryUsageAdjustedThreshold) , jumpTarget(jumpTarget) , arrayProfile(arrayProfile) , isJumpToLLInt(isJumpToLLInt) { } OSRExitBase& exit; CodeBlock* codeBlock; CodeBlock* baselineCodeBlock; Operands operands; Vector undefinedOperandSpans; SpeculationRecovery* recovery; ptrdiff_t stackPointerOffset; uint32_t activeThreshold; double memoryUsageAdjustedThreshold; void* jumpTarget; ArrayProfile* arrayProfile; bool isJumpToLLInt; ExtraInitializationLevel extraInitializationLevel; Profiler::OSRExit* profilerExit { nullptr }; }; JSC_DECLARE_JIT_OPERATION(operationCompileOSRExit, void, (CallFrame*)); JSC_DECLARE_JIT_OPERATION(operationDebugPrintSpeculationFailure, void, (CallFrame*, void*, void*)); // === OSRExit === // // This structure describes how to exit the speculative path by // going into baseline code. struct OSRExit : public OSRExitBase { OSRExit(ExitKind, JSValueSource, MethodOfGettingAValueProfile, SpeculativeJIT*, unsigned streamIndex, unsigned recoveryIndex = UINT_MAX); friend void JIT_OPERATION_ATTRIBUTES operationCompileOSRExit(CallFrame*); CodeLocationLabel m_patchableJumpLocation; MacroAssemblerCodeRef m_code; RefPtr exitState; JSValueSource m_jsValueSource; MethodOfGettingAValueProfile m_valueProfile; unsigned m_recoveryIndex; CodeLocationJump codeLocationForRepatch() const; unsigned m_streamIndex; void considerAddingAsFrequentExitSite(CodeBlock* profiledCodeBlock) { OSRExitBase::considerAddingAsFrequentExitSite(profiledCodeBlock, ExitFromDFG); } private: static void compileExit(CCallHelpers&, VM&, const OSRExit&, const Operands&, SpeculationRecovery*); static void emitRestoreArguments(CCallHelpers&, VM&, const Operands&); friend void JIT_OPERATION_ATTRIBUTES operationDebugPrintSpeculationFailure(CallFrame*, void*, void*); }; struct SpeculationFailureDebugInfo { WTF_MAKE_STRUCT_FAST_ALLOCATED; CodeBlock* codeBlock; ExitKind kind; BytecodeIndex bytecodeIndex; }; } } // namespace JSC::DFG #endif // ENABLE(DFG_JIT)