Changeset 267820 in webkit for trunk/Source/JavaScriptCore/llint/LLIntThunks.cpp

Timestamp:

Sep 30, 2020, 10:15:14 PM (5 years ago)

Author:

[email protected]

Message:

[JSC] We should not tag C function with JIT code related ptr tag
​https://bugs.webkit.org/show_bug.cgi?id=217150

Reviewed by Mark Lam.

We are tagging getHostCallReturnValue function with JIT related PtrTag. As a part of JIT-caging effort, we are restricting our
PtrTag usage more for code types (e.g. JIT code should be tagged with JIT related PtrTag). So, we should not tag getHostCallReturnValue
with that. This patch implements getHostCallReturnValue in JIT code if JIT is enabled. If not, it is implemented by LLInt.

• JavaScriptCore.xcodeproj/project.pbxproj:
• Sources.txt:
• bytecode/BytecodeList.rb:
• dfg/DFGCapabilities.cpp:

(JSC::DFG::capabilityLevel):

• heap/MarkedBlock.h:

(JSC::MarkedBlock::Footer::offsetOfVM):

• heap/PreciseAllocation.h:

(JSC::PreciseAllocation::offsetOfWeakSet):

• heap/WeakSet.h:

(JSC::WeakSet::offsetOfVM):

• jit/HostCallReturnValue.cpp: Removed.
• jit/HostCallReturnValue.h: Removed.
• jit/JITOperations.cpp:
• jit/JITOperationsMSVC64.cpp: Removed.
• jit/JITStubsMSVC64.asm:
• llint/LLIntEntrypoint.cpp:

(JSC::LLInt::getHostCallReturnValueEntrypoint):

• llint/LLIntEntrypoint.h:
• llint/LLIntSlowPaths.cpp:

(JSC::LLInt::handleHostCall):
(JSC::LLInt::commonCallEval):

• llint/LLIntThunks.cpp:

(JSC::LLInt::getHostCallReturnValueThunk):

• llint/LLIntThunks.h:
• llint/LowLevelInterpreter.cpp:

(JSC::CLoop::execute):

• llint/LowLevelInterpreter32_64.asm:
• llint/LowLevelInterpreter64.asm:
• runtime/JSCellInlines.h:

(JSC::tryAllocateCellHelper):

• runtime/JSGlobalObject.h:

(JSC::JSGlobalObject::offsetOfVM):

• runtime/VM.cpp:

(JSC::VM::VM):

• runtime/VM.h:

(JSC::VM::offsetOfEncodedHostCallReturnValue):

File:

• trunk/Source/JavaScriptCore/llint/LLIntThunks.cpp (modified) (1 diff)

trunk/Source/JavaScriptCore/llint/LLIntThunks.cpp

@@ -153 +153 @@
 #endif // ENABLE(WEBASSEMBLY)
 
+MacroAssemblerCodeRef<JSEntryPtrTag> getHostCallReturnValueThunk()
+{
+    static LazyNeverDestroyed<MacroAssemblerCodeRef<JSEntryPtrTag>> codeRef;
+    static std::once_flag onceKey;
+    std::call_once(onceKey, [&] {
+        CCallHelpers jit;
+
+        jit.emitFunctionPrologue();
+        jit.emitGetFromCallFrameHeaderPtr(CallFrameSlot::callee, GPRInfo::regT0);
+
+        auto preciseAllocationCase = jit.branchTestPtr(CCallHelpers::NonZero, GPRInfo::regT0, CCallHelpers::TrustedImm32(PreciseAllocation::halfAlignment));
+        jit.andPtr(CCallHelpers::TrustedImmPtr(MarkedBlock::blockMask), GPRInfo::regT0);
+        jit.loadPtr(CCallHelpers::Address(GPRInfo::regT0, MarkedBlock::offsetOfFooter + MarkedBlock::Footer::offsetOfVM()), GPRInfo::regT0);
+        auto loadedCase = jit.jump();
+
+        preciseAllocationCase.link(&jit);
+        jit.loadPtr(CCallHelpers::Address(GPRInfo::regT0, PreciseAllocation::offsetOfWeakSet() + WeakSet::offsetOfVM() - PreciseAllocation::headerSize()), GPRInfo::regT0);
+
+        loadedCase.link(&jit);
+#if USE(JSVALUE64)
+        jit.loadValue(CCallHelpers::Address(GPRInfo::regT0, VM::offsetOfEncodedHostCallReturnValue()), JSValueRegs { GPRInfo::returnValueGPR });
+#else
+        jit.loadValue(CCallHelpers::Address(GPRInfo::regT0, VM::offsetOfEncodedHostCallReturnValue()), JSValueRegs { GPRInfo::returnValueGPR2, GPRInfo::returnValueGPR });
+#endif
+        jit.emitFunctionEpilogue();
+        jit.ret();
+
+        LinkBuffer patchBuffer(jit, GLOBAL_THUNK_ID);
+        codeRef.construct(FINALIZE_CODE(patchBuffer, JSEntryPtrTag, "LLInt::getHostCallReturnValue thunk"));
+    });
+    return codeRef;
+}
+
 } // namespace LLInt
 
-#endif
+#endif // ENABLE(JIT)
 
 #if ENABLE(C_LOOP)