src/ia32/builtins-ia32.cc - Issue 1904093002: [interpreter] Heal closures when bytecode array is gone.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/ia32/builtins-ia32.cc

Issue 1904093002: [interpreter] Heal closures when bytecode array is gone. (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master

Patch Set: Ported to most architectures. Created 4 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/ia32/builtins-ia32.cc

diff --git a/src/ia32/builtins-ia32.cc b/src/ia32/builtins-ia32.cc

index 34dd73c33159338813c3f3a942430826e60d38e0..0c9c9993a069adfca7c793121903158012181728 100644

--- a/src/ia32/builtins-ia32.cc

+++ b/src/ia32/builtins-ia32.cc

@@ -554,10 +554,9 @@ void Builtins::Generate_InterpreterEntryTrampoline(MacroAssembler* masm) {

__ push(edi); // Callee's JS function.

__ push(edx); // Callee's new target.

- // Get the bytecode array from the function object and load the pointer to the

- // first entry into edi (InterpreterBytecodeRegister).

+ // Get the bytecode array from the function object (or from the DebugInfo if

+ // it is present) and load it into kInterpreterBytecodeArrayRegister.

__ mov(eax, FieldOperand(edi, JSFunction::kSharedFunctionInfoOffset));

Label load_debug_bytecode_array, bytecode_array_loaded;

__ cmp(FieldOperand(eax, SharedFunctionInfo::kDebugInfoOffset),

Immediate(DebugInfo::uninitialized()));

@@ -566,8 +565,12 @@ void Builtins::Generate_InterpreterEntryTrampoline(MacroAssembler* masm) {

FieldOperand(eax, SharedFunctionInfo::kFunctionDataOffset));

__ bind(&bytecode_array_loaded);

+ // Check function data field is actually a BytecodeArray object.

+ Label bytecode_array_not_present;

+ __ CompareRoot(kInterpreterBytecodeArrayRegister,

+ Heap::kUndefinedValueRootIndex);

+ __ j(equal, &bytecode_array_not_present);

if (FLAG_debug_code) {

- // Check function data field is actually a BytecodeArray object.

__ AssertNotSmi(kInterpreterBytecodeArrayRegister);

__ CmpObjectType(kInterpreterBytecodeArrayRegister, BYTECODE_ARRAY_TYPE,

eax);

@@ -638,6 +641,21 @@ void Builtins::Generate_InterpreterEntryTrampoline(MacroAssembler* masm) {

__ mov(kInterpreterBytecodeArrayRegister,

FieldOperand(debug_info, DebugInfo::kAbstractCodeIndex));

__ jmp(&bytecode_array_loaded);

+ // If the bytecode array is no longer present, then the underlying function

+ // has been switched to a different kind of code and we heal the closure by

+ // switching the code entry field over to the new code object as well.

+ __ bind(&bytecode_array_not_present);

+ __ pop(edx); // Callee's new target.

+ __ pop(edi); // Callee's JS function.

+ __ pop(esi); // Callee's context.

+ __ leave(); // Leave the frame so we can tail call.

+ __ mov(ecx, FieldOperand(edi, JSFunction::kSharedFunctionInfoOffset));

+ __ mov(ecx, FieldOperand(ecx, SharedFunctionInfo::kCodeOffset));

+ __ lea(ecx, FieldOperand(ecx, Code::kHeaderSize));

+ __ mov(FieldOperand(edi, JSFunction::kCodeEntryOffset), ecx);

+ __ RecordWriteCodeEntryField(edi, ecx, ebx);

+ __ jmp(ecx);

}

« no previous file with comments | « src/arm64/builtins-arm64.cc ('k') | src/mips/builtins-mips.cc » ('j') | no next file with comments »