[wasm] Support validation of asm.js modules with != 3 args.

src/builtins/arm64/builtins-arm64.cc

 // Copyright 2013 the V8 project authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #if V8_TARGET_ARCH_ARM64
 
 #include "src/arm64/frames-arm64.h"
 #include "src/codegen.h"
 #include "src/debug/debug.h"
 #include "src/deoptimizer.h"
@@ skipping 1428 matching lines @@
 
 void Builtins::Generate_InstantiateAsmJs(MacroAssembler* masm) {
   // ----------- S t a t e -------------
   //  -- x0 : argument count (preserved for callee)
   //  -- x1 : new target (preserved for callee)
   //  -- x3 : target function (preserved for callee)
   // -----------------------------------
   Label failed;
   {
     FrameScope scope(masm, StackFrame::INTERNAL);
+    // Preserve argument count for later compare.
+    __ Move(x4, x0);
     // Push a copy of the target function and the new target.
     __ SmiTag(x0);
     // Push another copy as a parameter to the runtime call.
     __ Push(x0, x1, x3, x1);
 
     // Copy arguments from caller (stdlib, foreign, heap).
-    for (int i = 2; i >= 0; --i) {
-      __ ldr(x4, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
-                                    i * kPointerSize));
-      __ push(x4);
-    }
+    Label args_done;
+    __ cmp(x4, Operand(0));
+    __ B(eq, &args_done);
+
+    Label args2;
+    __ cmp(x4, Operand(1));
+    __ B(ne, &args2);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  0 * kPointerSize));
+    __ push(x5);
+    __ jmp(&args_done);
+
+    __ bind(&args2);
+    Label args3;
+    __ cmp(x4, Operand(2));
+    __ B(ne, &args3);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  1 * kPointerSize));
+    __ push(x5);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  0 * kPointerSize));
+    __ push(x5);
+    __ jmp(&args_done);
+
+    __ bind(&args3);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  2 * kPointerSize));
+    __ push(x5);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  1 * kPointerSize));
+    __ push(x5);
+    __ ldr(x5, MemOperand(fp, StandardFrameConstants::kCallerSPOffset +
+                                  0 * kPointerSize));
+    __ push(x5);
+    __ bind(&args_done);
+
+    // Increment and restore argument count to call runtime method
+    // with function as extra argument.
+    __ add(x4, x4, Operand(1));
+    __ Move(x0, x4);
     // Call runtime, on success unwind frame, and parent frame.
-    __ CallRuntime(Runtime::kInstantiateAsmJs, 4);
+    __ CallRuntime(Runtime::kInstantiateAsmJs, -1);
     // A smi 0 is returned on failure, an object on success.
     __ JumpIfSmi(x0, &failed);
+
+    __ pop(x4);
+    __ pop(x4);
+    __ pop(x4);
+    __ SmiUntag(x4);
     scope.GenerateLeaveFrame();
-    __ Drop(4);
+
+    __ pop(x5);
+    __ add(x4, x4, Operand(1));
+    __ add(jssp, jssp, Operand(x4, LSL, kPointerSizeLog2));
+    __ push(x5);
     __ Ret();
 
     __ bind(&failed);
     // Restore target function and new target.
     __ Pop(x3, x1, x0);
     __ SmiUntag(x0);
   }
   // On failure, tail call back to regular js.
-  GenerateTailCallToReturnedCode(masm, Runtime::kCompileLazy);
+  GenerateTailCallToReturnedCode(masm, Runtime::kCompileBaseline);
 }
 
 static void GenerateMakeCodeYoungAgainCommon(MacroAssembler* masm) {
   // For now, we are relying on the fact that make_code_young doesn't do any
   // garbage collection which allows us to save/restore the registers without
   // worrying about which of them contain pointers. We also don't build an
   // internal frame to make the code fast, since we shouldn't have to do stack
   // crawls in MakeCodeYoung. This seems a bit fragile.
 
   // The following caller-saved registers must be saved and restored when
@@ skipping 1548 matching lines @@
     __ Unreachable();
   }
 }
 
 #undef __
 
 }  // namespace internal
 }  // namespace v8
 
 #endif  // V8_TARGET_ARCH_ARM