src/ia32/macro-assembler-ia32.cc - Issue 1845463003: Remove usages of Heap::NewSpaceStart and its external reference

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/ia32/macro-assembler-ia32.cc

Issue 1845463003: Remove usages of Heap::NewSpaceStart and its external reference (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master

Patch Set: Do not access mementos when the array is allocated on a page boundary Created 4 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/ia32/macro-assembler-ia32.cc

diff --git a/src/ia32/macro-assembler-ia32.cc b/src/ia32/macro-assembler-ia32.cc

index 556e71076b2ce54919416e547f8e349a365277b1..9fcf263e0fefaf86b56a6d93f0f82e927c83e25b 100644

--- a/src/ia32/macro-assembler-ia32.cc

+++ b/src/ia32/macro-assembler-ia32.cc

@@ -3327,19 +3327,37 @@ void MacroAssembler::TestJSArrayForAllocationMemento(

Label* no_memento_found) {

- ExternalReference new_space_start =

- ExternalReference::new_space_start(isolate());

+ Label map_check;

ExternalReference new_space_allocation_top =

ExternalReference::new_space_allocation_top_address(isolate());

- lea(scratch_reg, Operand(receiver_reg,

- JSArray::kSize + AllocationMemento::kSize - kHeapObjectTag));

- cmp(scratch_reg, Immediate(new_space_start));

- j(less, no_memento_found);

+ const int kMementoMapOffset = JSArray::kSize - kHeapObjectTag;

+ const int kMementoEndOffset = kMementoMapOffset + AllocationMemento::kSize;

+ // Bail out if the object sits on the page boundary as no memento can follow

+ // and we cannot touch the memory following it.

+ lea(scratch_reg, Operand(receiver_reg, kMementoEndOffset));

+ xor_(scratch_reg, receiver_reg);

+ cmp(scratch_reg, Immediate(Page::kPageSize));

+ j(greater, no_memento_found);

+ // Bail out if the object is not in new space.

+ lea(scratch_reg, Operand(receiver_reg, kMementoEndOffset));

+ JumpIfNotInNewSpace(scratch_reg, scratch_reg, no_memento_found);

+ // If the object is in new space, we need to check whether it is on the same

+ // page as the current top.

+ lea(scratch_reg, Operand(receiver_reg, kMementoEndOffset));

+ xor_(scratch_reg, Operand::StaticVariable(new_space_allocation_top));

+ test(scratch_reg, Immediate(~Page::kPageAlignmentMask));

+ // If top is not on the same page as the current object, we can just continue

+ // with the map check.

+ j(not_zero, &map_check);

+ // Otherwise, we have to check whether we are still below top, to ensure that

+ // we are not checking against a stale memento.

+ lea(scratch_reg, Operand(receiver_reg, kMementoEndOffset));

cmp(scratch_reg, Operand::StaticVariable(new_space_allocation_top));

j(greater, no_memento_found);

- cmp(MemOperand(scratch_reg, -AllocationMemento::kSize),

- Immediate(isolate()->factory()->allocation_memento_map()));

+ bind(&map_check);

+ mov(scratch_reg, Operand(receiver_reg, kMementoMapOffset));

+ cmp(scratch_reg, Immediate(isolate()->factory()->allocation_memento_map()));

}

« no previous file with comments | « src/heap/spaces.cc ('k') | src/mips/macro-assembler-mips.h » ('j') | src/mips/macro-assembler-mips.cc » ('J')