| Index: src/type-info.cc
|
| diff --git a/src/type-info.cc b/src/type-info.cc
|
| index 3fc929db3ca0c999e4851c9dbeee8fca6d83af76..dcada2ad2411e700ad63736a8bfbf92b4ad2e11e 100644
|
| --- a/src/type-info.cc
|
| +++ b/src/type-info.cc
|
| @@ -26,7 +26,15 @@
|
| // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
| #include "v8.h"
|
| +
|
| +#include "ast.h"
|
| +#include "compiler.h"
|
| +#include "ic.h"
|
| +#include "macro-assembler.h"
|
| +#include "stub-cache.h"
|
| #include "type-info.h"
|
| +
|
| +#include "ic-inl.h"
|
| #include "objects-inl.h"
|
|
|
| namespace v8 {
|
| @@ -50,4 +58,295 @@ TypeInfo TypeInfo::TypeFromValue(Handle<Object> value) {
|
| }
|
|
|
|
|
| +TypeFeedbackOracle::TypeFeedbackOracle(Handle<Code> code) {
|
| + Initialize(code);
|
| +}
|
| +
|
| +
|
| +void TypeFeedbackOracle::Initialize(Handle<Code> code) {
|
| + Isolate* isolate = Isolate::Current();
|
| + ASSERT(map_.is_null()); // Only initialize once.
|
| + map_ = isolate->factory()->NewJSObject(isolate->object_function());
|
| + PopulateMap(code);
|
| +}
|
| +
|
| +
|
| +bool TypeFeedbackOracle::LoadIsMonomorphic(Property* expr) {
|
| + return IsMonomorphic(expr->position());
|
| +}
|
| +
|
| +
|
| +bool TypeFeedbackOracle:: StoreIsMonomorphic(Assignment* expr) {
|
| + return IsMonomorphic(expr->position());
|
| +}
|
| +
|
| +
|
| +bool TypeFeedbackOracle::CallIsMonomorphic(Call* expr) {
|
| + return IsMonomorphic(expr->position());
|
| +}
|
| +
|
| +
|
| +Handle<Map> TypeFeedbackOracle::LoadMonomorphicReceiverType(Property* expr) {
|
| + ASSERT(LoadIsMonomorphic(expr));
|
| + return Handle<Map>::cast(GetElement(map_, expr->position()));
|
| +}
|
| +
|
| +
|
| +Handle<Map> TypeFeedbackOracle::StoreMonomorphicReceiverType(Assignment* expr) {
|
| + ASSERT(StoreIsMonomorphic(expr));
|
| + return Handle<Map>::cast(GetElement(map_, expr->position()));
|
| +}
|
| +
|
| +
|
| +Handle<Map> TypeFeedbackOracle::CallMonomorphicReceiverType(Call* expr) {
|
| + ASSERT(CallIsMonomorphic(expr));
|
| + return Handle<Map>::cast(GetElement(map_, expr->position()));
|
| +}
|
| +
|
| +
|
| +ZoneMapList* TypeFeedbackOracle::LoadReceiverTypes(Property* expr,
|
| + Handle<String> name) {
|
| + Code::Flags flags = Code::ComputeMonomorphicFlags(Code::LOAD_IC, NORMAL);
|
| + return CollectReceiverTypes(expr->position(), name, flags);
|
| +}
|
| +
|
| +
|
| +ZoneMapList* TypeFeedbackOracle::StoreReceiverTypes(Assignment* expr,
|
| + Handle<String> name) {
|
| + Code::Flags flags = Code::ComputeMonomorphicFlags(Code::STORE_IC, NORMAL);
|
| + return CollectReceiverTypes(expr->position(), name, flags);
|
| +}
|
| +
|
| +
|
| +ZoneMapList* TypeFeedbackOracle::CallReceiverTypes(Call* expr,
|
| + Handle<String> name) {
|
| + int arity = expr->arguments()->length();
|
| + Code::Flags flags = Code::ComputeMonomorphicFlags(
|
| + Code::CALL_IC, NORMAL, OWN_MAP, NOT_IN_LOOP, arity);
|
| + return CollectReceiverTypes(expr->position(), name, flags);
|
| +}
|
| +
|
| +
|
| +bool TypeFeedbackOracle::LoadIsBuiltin(Property* expr, Builtins::Name id) {
|
| + Handle<Object> object = GetElement(map_, expr->position());
|
| + return *object == Isolate::Current()->builtins()->builtin(id);
|
| +}
|
| +
|
| +
|
| +TypeInfo TypeFeedbackOracle::CompareType(CompareOperation* expr, Side side) {
|
| + Handle<Object> object = GetElement(map_, expr->position());
|
| + TypeInfo unknown = TypeInfo::Unknown();
|
| + if (!object->IsCode()) return unknown;
|
| + Handle<Code> code = Handle<Code>::cast(object);
|
| + if (!code->is_compare_ic_stub()) return unknown;
|
| +
|
| + CompareIC::State state = static_cast<CompareIC::State>(code->compare_state());
|
| + switch (state) {
|
| + case CompareIC::UNINITIALIZED:
|
| + case CompareIC::SMIS:
|
| + return TypeInfo::Smi();
|
| + case CompareIC::HEAP_NUMBERS:
|
| + return TypeInfo::Number();
|
| + case CompareIC::OBJECTS:
|
| + // TODO(kasperl): We really need a type for JS objects here.
|
| + return TypeInfo::NonPrimitive();
|
| + case CompareIC::GENERIC:
|
| + default:
|
| + return unknown;
|
| + }
|
| +}
|
| +
|
| +
|
| +TypeInfo TypeFeedbackOracle::BinaryType(BinaryOperation* expr, Side side) {
|
| + Handle<Object> object = GetElement(map_, expr->position());
|
| + TypeInfo unknown = TypeInfo::Unknown();
|
| + if (!object->IsCode()) return unknown;
|
| + Handle<Code> code = Handle<Code>::cast(object);
|
| + if (code->is_binary_op_stub()) {
|
| + BinaryOpIC::TypeInfo type = static_cast<BinaryOpIC::TypeInfo>(
|
| + code->binary_op_type());
|
| + switch (type) {
|
| + case BinaryOpIC::UNINIT_OR_SMI:
|
| + return TypeInfo::Smi();
|
| + case BinaryOpIC::DEFAULT:
|
| + return (expr->op() == Token::DIV || expr->op() == Token::MUL)
|
| + ? TypeInfo::Double()
|
| + : TypeInfo::Integer32();
|
| + case BinaryOpIC::HEAP_NUMBERS:
|
| + return TypeInfo::Double();
|
| + default:
|
| + return unknown;
|
| + }
|
| + } else if (code->is_type_recording_binary_op_stub()) {
|
| + TRBinaryOpIC::TypeInfo type = static_cast<TRBinaryOpIC::TypeInfo>(
|
| + code->type_recording_binary_op_type());
|
| + TRBinaryOpIC::TypeInfo result_type = static_cast<TRBinaryOpIC::TypeInfo>(
|
| + code->type_recording_binary_op_result_type());
|
| +
|
| + switch (type) {
|
| + case TRBinaryOpIC::UNINITIALIZED:
|
| + case TRBinaryOpIC::SMI:
|
| + switch (result_type) {
|
| + case TRBinaryOpIC::UNINITIALIZED:
|
| + case TRBinaryOpIC::SMI:
|
| + return TypeInfo::Smi();
|
| + case TRBinaryOpIC::INT32:
|
| + return TypeInfo::Integer32();
|
| + case TRBinaryOpIC::HEAP_NUMBER:
|
| + return TypeInfo::Double();
|
| + default:
|
| + return unknown;
|
| + }
|
| + case TRBinaryOpIC::INT32:
|
| + if (expr->op() == Token::DIV ||
|
| + result_type == TRBinaryOpIC::HEAP_NUMBER) {
|
| + return TypeInfo::Double();
|
| + }
|
| + return TypeInfo::Integer32();
|
| + case TRBinaryOpIC::HEAP_NUMBER:
|
| + return TypeInfo::Double();
|
| + case TRBinaryOpIC::STRING:
|
| + case TRBinaryOpIC::GENERIC:
|
| + return unknown;
|
| + default:
|
| + return unknown;
|
| + }
|
| + }
|
| + return unknown;
|
| +}
|
| +
|
| +TypeInfo TypeFeedbackOracle::SwitchType(CaseClause* clause) {
|
| + Handle<Object> object = GetElement(map_, clause->position());
|
| + TypeInfo unknown = TypeInfo::Unknown();
|
| + if (!object->IsCode()) return unknown;
|
| + Handle<Code> code = Handle<Code>::cast(object);
|
| + if (!code->is_compare_ic_stub()) return unknown;
|
| +
|
| + CompareIC::State state = static_cast<CompareIC::State>(code->compare_state());
|
| + switch (state) {
|
| + case CompareIC::UNINITIALIZED:
|
| + case CompareIC::SMIS:
|
| + return TypeInfo::Smi();
|
| + case CompareIC::HEAP_NUMBERS:
|
| + return TypeInfo::Number();
|
| + case CompareIC::OBJECTS:
|
| + // TODO(kasperl): We really need a type for JS objects here.
|
| + return TypeInfo::NonPrimitive();
|
| + case CompareIC::GENERIC:
|
| + default:
|
| + return unknown;
|
| + }
|
| +}
|
| +
|
| +
|
| +
|
| +ZoneMapList* TypeFeedbackOracle::CollectReceiverTypes(int position,
|
| + Handle<String> name,
|
| + Code::Flags flags) {
|
| + Isolate* isolate = Isolate::Current();
|
| + Handle<Object> object = GetElement(map_, position);
|
| + if (object->IsUndefined()) return NULL;
|
| +
|
| + if (*object == isolate->builtins()->builtin(Builtins::StoreIC_GlobalProxy)) {
|
| + // TODO(fschneider): We could collect the maps and signal that
|
| + // we need a generic store (or load) here.
|
| + ASSERT(Handle<Code>::cast(object)->ic_state() == MEGAMORPHIC);
|
| + return NULL;
|
| + } else if (object->IsMap()) {
|
| + ZoneMapList* types = new ZoneMapList(1);
|
| + types->Add(Handle<Map>::cast(object));
|
| + return types;
|
| + } else if (Handle<Code>::cast(object)->ic_state() == MEGAMORPHIC) {
|
| + ZoneMapList* types = new ZoneMapList(4);
|
| + ASSERT(object->IsCode());
|
| + isolate->stub_cache()->CollectMatchingMaps(types, *name, flags);
|
| + return types->length() > 0 ? types : NULL;
|
| + } else {
|
| + return NULL;
|
| + }
|
| +}
|
| +
|
| +
|
| +void TypeFeedbackOracle::PopulateMap(Handle<Code> code) {
|
| + HandleScope scope;
|
| +
|
| + const int kInitialCapacity = 16;
|
| + List<int> code_positions(kInitialCapacity);
|
| + List<int> source_positions(kInitialCapacity);
|
| + CollectPositions(*code, &code_positions, &source_positions);
|
| +
|
| + int length = code_positions.length();
|
| + ASSERT(source_positions.length() == length);
|
| + for (int i = 0; i < length; i++) {
|
| + RelocInfo info(code->instruction_start() + code_positions[i],
|
| + RelocInfo::CODE_TARGET, 0);
|
| + Handle<Code> target(Code::GetCodeFromTargetAddress(info.target_address()));
|
| + int position = source_positions[i];
|
| + InlineCacheState state = target->ic_state();
|
| + Code::Kind kind = target->kind();
|
| + if (kind == Code::BINARY_OP_IC ||
|
| + kind == Code::TYPE_RECORDING_BINARY_OP_IC ||
|
| + kind == Code::COMPARE_IC) {
|
| + // TODO(kasperl): Avoid having multiple ICs with the same
|
| + // position by making sure that we have position information
|
| + // recorded for all binary ICs.
|
| + if (GetElement(map_, position)->IsUndefined()) {
|
| + SetElement(map_, position, target);
|
| + }
|
| + } else if (state == MONOMORPHIC) {
|
| + Map* map = target->FindFirstMap();
|
| + if (map == NULL) {
|
| + SetElement(map_, position, target);
|
| + } else {
|
| + SetElement(map_, position, Handle<Map>(map));
|
| + }
|
| + } else if (state == MEGAMORPHIC) {
|
| + SetElement(map_, position, target);
|
| + }
|
| + }
|
| +}
|
| +
|
| +
|
| +void TypeFeedbackOracle::CollectPositions(Code* code,
|
| + List<int>* code_positions,
|
| + List<int>* source_positions) {
|
| + AssertNoAllocation no_allocation;
|
| + int position = 0;
|
| + // Because the ICs we use for global variables access in the full
|
| + // code generator do not have any meaningful positions, we avoid
|
| + // collecting those by filtering out contextual code targets.
|
| + int mask = RelocInfo::ModeMask(RelocInfo::CODE_TARGET) |
|
| + RelocInfo::kPositionMask;
|
| + for (RelocIterator it(code, mask); !it.done(); it.next()) {
|
| + RelocInfo* info = it.rinfo();
|
| + RelocInfo::Mode mode = info->rmode();
|
| + if (RelocInfo::IsCodeTarget(mode)) {
|
| + Code* target = Code::GetCodeFromTargetAddress(info->target_address());
|
| + if (target->is_inline_cache_stub()) {
|
| + InlineCacheState state = target->ic_state();
|
| + Code::Kind kind = target->kind();
|
| + if (kind == Code::BINARY_OP_IC) {
|
| + if (target->binary_op_type() == BinaryOpIC::GENERIC) continue;
|
| + } else if (kind == Code::TYPE_RECORDING_BINARY_OP_IC) {
|
| + if (target->type_recording_binary_op_type() ==
|
| + TRBinaryOpIC::GENERIC) {
|
| + continue;
|
| + }
|
| + } else if (kind == Code::COMPARE_IC) {
|
| + if (target->compare_state() == CompareIC::GENERIC) continue;
|
| + } else {
|
| + if (kind == Code::CALL_IC && state == MONOMORPHIC &&
|
| + target->check_type() != RECEIVER_MAP_CHECK) continue;
|
| + if (state != MONOMORPHIC && state != MEGAMORPHIC) continue;
|
| + }
|
| + code_positions->Add(info->pc() - code->instruction_start());
|
| + source_positions->Add(position);
|
| + }
|
| + } else {
|
| + ASSERT(RelocInfo::IsPosition(mode));
|
| + position = info->data();
|
| + }
|
| + }
|
| +}
|
| +
|
| } } // namespace v8::internal
|
|
|
Chromium Code Reviews
Issue 6529055:
[Isolates] Merge crankshaft (r5922 from bleeding_edge). (Closed)
