Source code

Revision control

Copy as Markdown

Other Tools

/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*-
* vim: set ts=8 sts=2 et sw=2 tw=80:
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at */
#ifndef jit_shared_CodeGenerator_shared_h
#define jit_shared_CodeGenerator_shared_h
#include "mozilla/Alignment.h"
#include <utility>
#include "jit/InlineScriptTree.h"
#include "jit/JitcodeMap.h"
#include "jit/LIR.h"
#include "jit/MacroAssembler.h"
#include "jit/MIRGenerator.h"
#include "jit/MIRGraph.h"
#include "jit/SafepointIndex.h"
#include "jit/Safepoints.h"
#include "jit/Snapshots.h"
namespace js {
namespace jit {
class OutOfLineCode;
class CodeGenerator;
class MacroAssembler;
class IonIC;
class OutOfLineTruncateSlow;
class CodeGeneratorShared : public LElementVisitor {
js::Vector<OutOfLineCode*, 0, SystemAllocPolicy> outOfLineCode_;
MacroAssembler& ensureMasm(MacroAssembler* masm, TempAllocator& alloc,
CompileRealm* realm);
mozilla::Maybe<IonHeapMacroAssembler> maybeMasm_;
MacroAssembler& masm;
MIRGenerator* gen;
LIRGraph& graph;
LBlock* current;
SnapshotWriter snapshots_;
RecoverWriter recovers_;
#ifdef DEBUG
uint32_t pushedArgs_;
uint32_t lastOsiPointOffset_;
SafepointWriter safepoints_;
Label invalidate_;
CodeOffset invalidateEpilogueData_;
// Label for the common return path.
NonAssertingLabel returnLabel_;
// Amount of bytes allocated for incoming args. Used for Wasm return calls.
uint32_t inboundStackArgBytes_;
js::Vector<CodegenSafepointIndex, 0, SystemAllocPolicy> safepointIndices_;
js::Vector<OsiIndex, 0, SystemAllocPolicy> osiIndices_;
// Allocated data space needed at runtime.
js::Vector<uint8_t, 0, SystemAllocPolicy> runtimeData_;
// Vector mapping each IC index to its offset in runtimeData_.
js::Vector<uint32_t, 0, SystemAllocPolicy> icList_;
// IC data we need at compile-time. Discarded after creating the IonScript.
struct CompileTimeICInfo {
CodeOffset icOffsetForJump;
CodeOffset icOffsetForPush;
js::Vector<CompileTimeICInfo, 0, SystemAllocPolicy> icInfo_;
js::Vector<NativeToBytecode, 0, SystemAllocPolicy> nativeToBytecodeList_;
UniquePtr<uint8_t> nativeToBytecodeMap_;
uint32_t nativeToBytecodeMapSize_;
uint32_t nativeToBytecodeTableOffset_;
bool isProfilerInstrumentationEnabled() {
return gen->isProfilerInstrumentationEnabled();
gc::Heap initialStringHeap() const { return gen->initialStringHeap(); }
gc::Heap initialBigIntHeap() const { return gen->initialBigIntHeap(); }
// The offset of the first instruction of the OSR entry block from the
// beginning of the code buffer.
mozilla::Maybe<size_t> osrEntryOffset_ = {};
TempAllocator& alloc() const { return graph.mir().alloc(); }
void setOsrEntryOffset(size_t offset) { osrEntryOffset_.emplace(offset); }
size_t getOsrEntryOffset() const {
return *osrEntryOffset_;
typedef js::Vector<CodegenSafepointIndex, 8, SystemAllocPolicy>
// See JitOptions.checkOsiPointRegisters. We set this here to avoid
// races when enableOsiPointRegisterChecks is called while we're generating
// code off-thread.
bool checkOsiPointRegisters;
// The initial size of the frame in bytes. These are bytes beyond the
// constant header present for every Ion frame, used for pre-determined
// spills.
uint32_t frameDepth_;
// Offset in bytes to the incoming arguments, relative to the frame pointer.
uint32_t offsetOfArgsFromFP_ = 0;
// Offset in bytes of the stack region reserved for passed argument Values.
uint32_t offsetOfPassedArgSlots_ = 0;
// For argument construction for calls. Argslots are Value-sized.
inline Address AddressOfPassedArg(uint32_t slot) const;
inline uint32_t UnusedStackBytesForCall(uint32_t numArgSlots) const;
template <BaseRegForAddress Base = BaseRegForAddress::Default>
inline Address ToAddress(const LAllocation& a) const;
template <BaseRegForAddress Base = BaseRegForAddress::Default>
inline Address ToAddress(const LAllocation* a) const;
static inline Address ToAddress(Register elements, const LAllocation* index,
Scalar::Type type,
int32_t offsetAdjustment = 0);
uint32_t frameSize() const { return frameDepth_; }
bool addNativeToBytecodeEntry(const BytecodeSite* site);
void dumpNativeToBytecodeEntries();
void dumpNativeToBytecodeEntry(uint32_t idx);
MIRGenerator& mirGen() const { return *gen; }
// When appending to runtimeData_, the vector might realloc, leaving pointers
// int the origianl vector stale and unusable. DataPtr acts like a pointer,
// but allows safety in the face of potentially realloc'ing vector appends.
friend class DataPtr;
template <typename T>
class DataPtr {
CodeGeneratorShared* cg_;
size_t index_;
T* lookup() { return reinterpret_cast<T*>(&cg_->runtimeData_[index_]); }
DataPtr(CodeGeneratorShared* cg, size_t index) : cg_(cg), index_(index) {}
T* operator->() { return lookup(); }
T* operator*() { return lookup(); }
[[nodiscard]] bool allocateData(size_t size, size_t* offset) {
MOZ_ASSERT(size % sizeof(void*) == 0);
*offset = runtimeData_.length();
masm.propagateOOM(runtimeData_.appendN(0, size));
return !masm.oom();
template <typename T>
inline size_t allocateIC(const T& cache) {
static_assert(std::is_base_of_v<IonIC, T>, "T must inherit from IonIC");
size_t index;
allocateData(sizeof(mozilla::AlignedStorage2<T>), &index));
if (masm.oom()) {
return SIZE_MAX;
// Use the copy constructor on the allocated space.
MOZ_ASSERT(index == icList_.back());
new (&runtimeData_[index]) T(cache);
return index;
// Encodes an LSnapshot into the compressed snapshot buffer.
void encode(LRecoverInfo* recover);
void encode(LSnapshot* snapshot);
void encodeAllocation(LSnapshot* snapshot, MDefinition* def,
uint32_t* startIndex, bool hasSideEffects);
// Encode all encountered safepoints in CG-order, and resolve |indices| for
// safepoint offsets.
bool encodeSafepoints();
// Fixup offsets of native-to-bytecode map.
bool createNativeToBytecodeScriptList(JSContext* cx,
IonEntry::ScriptList& scripts);
bool generateCompactNativeToBytecodeMap(JSContext* cx, JitCode* code,
IonEntry::ScriptList& scripts);
void verifyCompactNativeToBytecodeMap(JitCode* code,
const IonEntry::ScriptList& scripts,
uint32_t numRegions);
// Mark the safepoint on |ins| as corresponding to the current assembler
// location. The location should be just after a call.
void markSafepoint(LInstruction* ins);
void markSafepointAt(uint32_t offset, LInstruction* ins);
// Mark the OSI point |ins| as corresponding to the current
// assembler location inside the |osiIndices_|. Return the assembler
// location for the OSI point return location.
uint32_t markOsiPoint(LOsiPoint* ins);
// Ensure that there is enough room between the last OSI point and the
// current instruction, such that:
// (1) Invalidation will not overwrite the current instruction, and
// (2) Overwriting the current instruction will not overwrite
// an invalidation marker.
void ensureOsiSpace();
OutOfLineCode* oolTruncateDouble(
FloatRegister src, Register dest, MInstruction* mir,
wasm::BytecodeOffset callOffset = wasm::BytecodeOffset(),
bool preserveInstance = false);
void emitTruncateDouble(FloatRegister src, Register dest, MInstruction* mir);
void emitTruncateFloat32(FloatRegister src, Register dest, MInstruction* mir);
void emitPreBarrier(Register elements, const LAllocation* index);
void emitPreBarrier(Address address);
// We don't emit code for trivial blocks, so if we want to branch to the
// given block, and it's trivial, return the ultimate block we should
// actually branch directly to.
MBasicBlock* skipTrivialBlocks(MBasicBlock* block) {
while (block->lir()->isTrivial()) {
LGoto* ins = block->lir()->rbegin()->toGoto();
MOZ_ASSERT(ins->numSuccessors() == 1);
block = ins->getSuccessor(0);
return block;
// Test whether the given block can be reached via fallthrough from the
// current block.
inline bool isNextBlock(LBlock* block) {
uint32_t target = skipTrivialBlocks(block->mir())->id();
uint32_t i = current->mir()->id() + 1;
if (target < i) {
return false;
// Trivial blocks can be crossed via fallthrough.
for (; i != target; ++i) {
if (!graph.getBlock(i)->isTrivial()) {
return false;
return true;
// Save and restore all volatile registers to/from the stack, excluding the
// specified register(s), before a function call made using callWithABI and
// after storing the function call's return value to an output register.
// (The only registers that don't need to be saved/restored are 1) the
// temporary register used to store the return value of the function call,
// if there is one [otherwise that stored value would be overwritten]; and
// 2) temporary registers whose values aren't needed in the rest of the LIR
// instruction [this is purely an optimization]. All other volatiles must
// be saved and restored in case future LIR instructions need those values.)
void saveVolatile(Register output) {
LiveRegisterSet regs(RegisterSet::Volatile());
void restoreVolatile(Register output) {
LiveRegisterSet regs(RegisterSet::Volatile());
void saveVolatile(FloatRegister output) {
LiveRegisterSet regs(RegisterSet::Volatile());
void restoreVolatile(FloatRegister output) {
LiveRegisterSet regs(RegisterSet::Volatile());
void saveVolatile(LiveRegisterSet temps) {
void restoreVolatile(LiveRegisterSet temps) {
void saveVolatile() {
void restoreVolatile() {
// These functions have to be called before and after any callVM and before
// any modifications of the stack. Modification of the stack made after
// these calls should update the framePushed variable, needed by the exit
// frame produced by callVM.
inline void saveLive(LInstruction* ins);
inline void restoreLive(LInstruction* ins);
inline void restoreLiveIgnore(LInstruction* ins, LiveRegisterSet reg);
// Get/save/restore all registers that are both live and volatile.
inline LiveRegisterSet liveVolatileRegs(LInstruction* ins);
inline void saveLiveVolatile(LInstruction* ins);
inline void restoreLiveVolatile(LInstruction* ins);
template <typename T>
void pushArg(const T& t) {
#ifdef DEBUG
void pushArg(jsid id, Register temp) {
masm.Push(id, temp);
#ifdef DEBUG
template <typename T>
CodeOffset pushArgWithPatch(const T& t) {
#ifdef DEBUG
return masm.PushWithPatch(t);
void storePointerResultTo(Register reg) { masm.storeCallPointerResult(reg); }
void storeFloatResultTo(FloatRegister reg) { masm.storeCallFloatResult(reg); }
template <typename T>
void storeResultValueTo(const T& t) {
void addIC(LInstruction* lir, size_t cacheIndex);
bool generatePrologue();
bool generateEpilogue();
void addOutOfLineCode(OutOfLineCode* code, const MInstruction* mir);
void addOutOfLineCode(OutOfLineCode* code, const BytecodeSite* site);
bool generateOutOfLineCode();
Label* getJumpLabelForBranch(MBasicBlock* block);
// Generate a jump to the start of the specified block. Use this in place of
// jumping directly to mir->lir()->label(), or use getJumpLabelForBranch()
// if a label to use directly is needed.
void jumpToBlock(MBasicBlock* mir);
// This function is not used for MIPS. MIPS has branchToBlock.
#if !defined(JS_CODEGEN_MIPS32) && !defined(JS_CODEGEN_MIPS64)
void jumpToBlock(MBasicBlock* mir, Assembler::Condition cond);
void generateInvalidateEpilogue();
CodeGeneratorShared(MIRGenerator* gen, LIRGraph* graph, MacroAssembler* masm);
void visitOutOfLineTruncateSlow(OutOfLineTruncateSlow* ool);
bool omitOverRecursedCheck() const;
bool isGlobalObject(JSObject* object);
// An out-of-line path is generated at the end of the function.
class OutOfLineCode : public TempObject {
Label entry_;
Label rejoin_;
uint32_t framePushed_;
const BytecodeSite* site_;
OutOfLineCode() : framePushed_(0), site_() {}
virtual void generate(CodeGeneratorShared* codegen) = 0;
Label* entry() { return &entry_; }
virtual void bind(MacroAssembler* masm) { masm->bind(entry()); }
Label* rejoin() { return &rejoin_; }
void setFramePushed(uint32_t framePushed) { framePushed_ = framePushed; }
uint32_t framePushed() const { return framePushed_; }
void setBytecodeSite(const BytecodeSite* site) { site_ = site; }
const BytecodeSite* bytecodeSite() const { return site_; }
// For OOL paths that want a specific-typed code generator.
template <typename T>
class OutOfLineCodeBase : public OutOfLineCode {
virtual void generate(CodeGeneratorShared* codegen) override {
virtual void accept(T* codegen) = 0;
template <class CodeGen>
class OutOfLineWasmTruncateCheckBase : public OutOfLineCodeBase<CodeGen> {
MIRType fromType_;
MIRType toType_;
FloatRegister input_;
Register output_;
Register64 output64_;
TruncFlags flags_;
wasm::BytecodeOffset bytecodeOffset_;
OutOfLineWasmTruncateCheckBase(MWasmTruncateToInt32* mir, FloatRegister input,
Register output)
: fromType_(mir->input()->type()),
bytecodeOffset_(mir->bytecodeOffset()) {}
OutOfLineWasmTruncateCheckBase(MWasmBuiltinTruncateToInt64* mir,
FloatRegister input, Register64 output)
: fromType_(mir->input()->type()),
bytecodeOffset_(mir->bytecodeOffset()) {}
OutOfLineWasmTruncateCheckBase(MWasmTruncateToInt64* mir, FloatRegister input,
Register64 output)
: fromType_(mir->input()->type()),
bytecodeOffset_(mir->bytecodeOffset()) {}
void accept(CodeGen* codegen) override {
FloatRegister input() const { return input_; }
Register output() const { return output_; }
Register64 output64() const { return output64_; }
MIRType toType() const { return toType_; }
MIRType fromType() const { return fromType_; }
bool isUnsigned() const { return flags_ & TRUNC_UNSIGNED; }
bool isSaturating() const { return flags_ & TRUNC_SATURATING; }
TruncFlags flags() const { return flags_; }
wasm::BytecodeOffset bytecodeOffset() const { return bytecodeOffset_; }
} // namespace jit
} // namespace js
#endif /* jit_shared_CodeGenerator_shared_h */