Add %GetCallerJSFunction intrinsic

Only optimized for TF R=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/1146963002 Cr-Commit-Position: refs/heads/master@{#28812}

Add %GetCallerJSFunction intrinsic
Only optimized for TF R=mstarzinger@chromium.org Review URL: https://codereview.chromium.org/1146963002 Cr-Commit-Position: refs/heads/master@{#28812}
74f9d8c9 · danno · Commit bot · ca2f8d81 · 74f9d8c9 · 74f9d8c9
Commit 74f9d8c9 authored Jun 05, 2015 by danno Committed by Commit bot Jun 05, 2015
25 changed files
--- a/src/compiler/access-builder.cc
+++ b/src/compiler/access-builder.cc
@@ -197,6 +197,20 @@ FieldAccess AccessBuilder::ForSharedFunctionInfoTypeFeedbackVector() {
          Handle<Name>(), Type::Any(), kMachAnyTagged};
 }
+// static
+FieldAccess AccessBuilder::ForFrameCallerFramePtr() {
+  return {kUntaggedBase, StandardFrameConstants::kCallerFPOffset,
+          MaybeHandle<Name>(), Type::Internal(), kMachPtr};
+}
+// static
+FieldAccess AccessBuilder::ForFrameMarker() {
+  return {kUntaggedBase, StandardFrameConstants::kMarkerOffset,
+          MaybeHandle<Name>(), Type::Tagged(), kMachAnyTagged};
+}
 }  // namespace compiler
 }  // namespace internal
 }  // namespace v8
--- a/src/compiler/access-builder.h
+++ b/src/compiler/access-builder.h
@@ -83,6 +83,12 @@ class AccessBuilder final : public AllStatic {
  // Provides access to the TypeFeedbackVector in SharedFunctionInfo.
  static FieldAccess ForSharedFunctionInfoTypeFeedbackVector();
+  // Provides access to the next frame pointer in a stack frame.
+  static FieldAccess ForFrameCallerFramePtr();
+  // Provides access to the marker in a stack frame.
+  static FieldAccess ForFrameMarker();
 private:
  DISALLOW_IMPLICIT_CONSTRUCTORS(AccessBuilder);
 };

--- a/src/compiler/arm/code-generator-arm.cc
+++ b/src/compiler/arm/code-generator-arm.cc
@@ -403,6 +403,10 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
      __ mov(i.OutputRegister(), sp);
      DCHECK_EQ(LeaveCC, i.OutputSBit());
      break;
+    case kArchFramePointer:
+      __ mov(i.OutputRegister(), fp);
+      DCHECK_EQ(LeaveCC, i.OutputSBit());
+      break;
    case kArchTruncateDoubleToI:
      __ TruncateDoubleToI(i.OutputRegister(), i.InputFloat64Register(0));
      DCHECK_EQ(LeaveCC, i.OutputSBit());

--- a/src/compiler/arm64/code-generator-arm64.cc
+++ b/src/compiler/arm64/code-generator-arm64.cc
@@ -443,6 +443,9 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
    case kArchStackPointer:
      __ mov(i.OutputRegister(), masm()->StackPointer());
      break;
+    case kArchFramePointer:
+      __ mov(i.OutputRegister(), fp);
+      break;
    case kArchTruncateDoubleToI:
      __ TruncateDoubleToI(i.OutputRegister(), i.InputDoubleRegister(0));
      break;

--- a/src/compiler/ia32/code-generator-ia32.cc
+++ b/src/compiler/ia32/code-generator-ia32.cc
@@ -376,6 +376,9 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
    case kArchStackPointer:
      __ mov(i.OutputRegister(), esp);
      break;
+    case kArchFramePointer:
+      __ mov(i.OutputRegister(), ebp);
+      break;
    case kArchTruncateDoubleToI: {
      auto result = i.OutputRegister();
      auto input = i.InputDoubleRegister(0);

--- a/src/compiler/instruction-codes.h
+++ b/src/compiler/instruction-codes.h
@@ -45,6 +45,7 @@ namespace compiler {
  V(ArchDeoptimize)         \
  V(ArchRet)                \
  V(ArchStackPointer)       \
+  V(ArchFramePointer)       \
  V(ArchTruncateDoubleToI)  \
  V(CheckedLoadInt8)        \
  V(CheckedLoadUint8)       \

--- a/src/compiler/instruction-selector.cc
+++ b/src/compiler/instruction-selector.cc
@@ -761,6 +761,8 @@ void InstructionSelector::VisitNode(Node* node) {
      return MarkAsFloat64(node), VisitFloat64InsertHighWord32(node);
    case IrOpcode::kLoadStackPointer:
      return VisitLoadStackPointer(node);
+    case IrOpcode::kLoadFramePointer:
+      return VisitLoadFramePointer(node);
    case IrOpcode::kCheckedLoad: {
      MachineType rep = OpParameter<MachineType>(node);
      MarkAsRepresentation(rep, node);
@@ -791,6 +793,12 @@ void InstructionSelector::VisitLoadStackPointer(Node* node) {
 }
+void InstructionSelector::VisitLoadFramePointer(Node* node) {
+  OperandGenerator g(this);
+  Emit(kArchFramePointer, g.DefineAsRegister(node));
+}
 void InstructionSelector::EmitTableSwitch(const SwitchInfo& sw,
                                          InstructionOperand& index_operand) {
  OperandGenerator g(this);

--- a/src/compiler/js-intrinsic-lowering.cc
+++ b/src/compiler/js-intrinsic-lowering.cc
@@ -84,6 +84,8 @@ Reduction JSIntrinsicLowering::Reduce(Node* node) {
      return ReduceFixedArraySet(node);
    case Runtime::kInlineGetTypeFeedbackVector:
      return ReduceGetTypeFeedbackVector(node);
+    case Runtime::kInlineGetCallerJSFunction:
+      return ReduceGetCallerJSFunction(node);
    default:
      break;
  }
@@ -455,6 +457,31 @@ Reduction JSIntrinsicLowering::ReduceGetTypeFeedbackVector(Node* node) {
 }
+Reduction JSIntrinsicLowering::ReduceGetCallerJSFunction(Node* node) {
+  Node* effect = NodeProperties::GetEffectInput(node);
+  Node* control = NodeProperties::GetControlInput(node);
+  Node* const frame_state = NodeProperties::GetFrameStateInput(node, 0);
+  Node* outer_frame = frame_state->InputAt(kFrameStateOuterStateInput);
+  if (outer_frame->opcode() == IrOpcode::kFrameState) {
+    // Use the runtime implementation to throw the appropriate error if the
+    // containing function is inlined.
+    return NoChange();
+  }
+  // TODO(danno): This implementation forces intrinsic lowering to happen after
+  // inlining, which is fine for now, but eventually the frame-querying logic
+  // probably should go later, e.g. in instruction selection, so that there is
+  // no phase-ordering dependency.
+  FieldAccess access = AccessBuilder::ForFrameCallerFramePtr();
+  Node* fp = graph()->NewNode(machine()->LoadFramePointer());
+  Node* next_fp =
+      graph()->NewNode(simplified()->LoadField(access), fp, effect, control);
+  return Change(node, simplified()->LoadField(AccessBuilder::ForFrameMarker()),
+                next_fp, effect, control);
+}
 Reduction JSIntrinsicLowering::Change(Node* node, const Operator* op, Node* a,
                                      Node* b) {
  node->set_op(op);

--- a/src/compiler/js-intrinsic-lowering.h
+++ b/src/compiler/js-intrinsic-lowering.h
@@ -53,6 +53,7 @@ class JSIntrinsicLowering final : public AdvancedReducer {
  Reduction ReduceValueOf(Node* node);
  Reduction ReduceFixedArraySet(Node* node);
  Reduction ReduceGetTypeFeedbackVector(Node* node);
+  Reduction ReduceGetCallerJSFunction(Node* node);
  Reduction Change(Node* node, const Operator* op);
  Reduction Change(Node* node, const Operator* op, Node* a, Node* b);

--- a/src/compiler/linkage.cc
+++ b/src/compiler/linkage.cc
@@ -134,6 +134,7 @@ bool Linkage::NeedsFrameState(Runtime::FunctionId function) {
    case Runtime::kInlineCallFunction:
    case Runtime::kInlineDateField:  // TODO(bmeurer): Remove this.
    case Runtime::kInlineDeoptimizeNow:
+    case Runtime::kInlineGetCallerJSFunction:
    case Runtime::kInlineGetPrototype:
    case Runtime::kInlineRegExpExec:
    case Runtime::kInlineThrowIfNotADate:

--- a/src/compiler/machine-operator.cc
+++ b/src/compiler/machine-operator.cc
@@ -148,7 +148,8 @@ CheckedStoreRepresentation CheckedStoreRepresentationOf(Operator const* op) {
  V(Float32Min, Operator::kNoProperties, 2, 0, 1)                             \
  V(Float64Max, Operator::kNoProperties, 2, 0, 1)                             \
  V(Float64Min, Operator::kNoProperties, 2, 0, 1)                             \
-  V(LoadStackPointer, Operator::kNoProperties, 0, 0, 1)
+  V(LoadStackPointer, Operator::kNoProperties, 0, 0, 1)                       \
+  V(LoadFramePointer, Operator::kNoProperties, 0, 0, 1)
 #define MACHINE_TYPE_LIST(V) \

--- a/src/compiler/machine-operator.h
+++ b/src/compiler/machine-operator.h
@@ -225,6 +225,7 @@ class MachineOperatorBuilder final : public ZoneObject {
  // Access to the machine stack.
  const Operator* LoadStackPointer();
+  const Operator* LoadFramePointer();
  // checked-load heap, index, length
  const Operator* CheckedLoad(CheckedLoadRepresentation);

--- a/src/compiler/mips/code-generator-mips.cc
+++ b/src/compiler/mips/code-generator-mips.cc
@@ -487,6 +487,9 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
    case kArchStackPointer:
      __ mov(i.OutputRegister(), sp);
      break;
+    case kArchFramePointer:
+      __ mov(i.OutputRegister(), fp);
+      break;
    case kArchTruncateDoubleToI:
      __ TruncateDoubleToI(i.OutputRegister(), i.InputDoubleRegister(0));
      break;

--- a/src/compiler/mips64/code-generator-mips64.cc
+++ b/src/compiler/mips64/code-generator-mips64.cc
@@ -487,6 +487,9 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
    case kArchStackPointer:
      __ mov(i.OutputRegister(), sp);
      break;
+    case kArchFramePointer:
+      __ mov(i.OutputRegister(), fp);
+      break;
    case kArchTruncateDoubleToI:
      __ TruncateDoubleToI(i.OutputRegister(), i.InputDoubleRegister(0));
      break;

--- a/src/compiler/opcodes.h
+++ b/src/compiler/opcodes.h
@@ -280,6 +280,7 @@
  V(Float64InsertLowWord32)     \
  V(Float64InsertHighWord32)    \
  V(LoadStackPointer)           \
+  V(LoadFramePointer)           \
  V(CheckedLoad)                \
  V(CheckedStore)

--- a/src/compiler/ppc/code-generator-ppc.cc
+++ b/src/compiler/ppc/code-generator-ppc.cc
@@ -687,6 +687,10 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
      __ mr(i.OutputRegister(), sp);
      DCHECK_EQ(LeaveRC, i.OutputRCBit());
      break;
+    case kArchFramePointer:
+      __ mr(i.OutputRegister(), fp);
+      DCHECK_EQ(LeaveRC, i.OutputRCBit());
+      break;
    case kArchTruncateDoubleToI:
      // TODO(mbrandy): move slow call to stub out of line.
      __ TruncateDoubleToI(i.OutputRegister(), i.InputDoubleRegister(0));

--- a/src/compiler/raw-machine-assembler.h
+++ b/src/compiler/raw-machine-assembler.h
@@ -441,6 +441,7 @@ class RawMachineAssembler : public GraphBuilder {
  // Stack operations.
  Node* LoadStackPointer() { return NewNode(machine()->LoadStackPointer()); }
+  Node* LoadFramePointer() { return NewNode(machine()->LoadFramePointer()); }
  // Parameters.
  Node* Parameter(size_t index);

--- a/src/compiler/simplified-lowering.cc
+++ b/src/compiler/simplified-lowering.cc
@@ -1038,6 +1038,7 @@ class RepresentationSelector {
      case IrOpcode::kFloat64InsertHighWord32:
        return VisitBinop(node, kMachFloat64, kMachInt32, kMachFloat64);
      case IrOpcode::kLoadStackPointer:
+      case IrOpcode::kLoadFramePointer:
        return VisitLeaf(node, kMachPtr);
      case IrOpcode::kStateValues:
        VisitStateValues(node);

--- a/src/compiler/typer.cc
+++ b/src/compiler/typer.cc
@@ -2312,6 +2312,11 @@ Bounds Typer::Visitor::TypeLoadStackPointer(Node* node) {
 }
+Bounds Typer::Visitor::TypeLoadFramePointer(Node* node) {
+  return Bounds(Type::Internal());
+}
 Bounds Typer::Visitor::TypeCheckedLoad(Node* node) {
  return Bounds::Unbounded(zone());
 }

--- a/src/compiler/verifier.cc
+++ b/src/compiler/verifier.cc
@@ -867,6 +867,7 @@ void Verifier::Visitor::Check(Node* node) {
    case IrOpcode::kFloat64InsertLowWord32:
    case IrOpcode::kFloat64InsertHighWord32:
    case IrOpcode::kLoadStackPointer:
+    case IrOpcode::kLoadFramePointer:
    case IrOpcode::kCheckedLoad:
    case IrOpcode::kCheckedStore:
      // TODO(rossberg): Check.

--- a/src/compiler/x64/code-generator-x64.cc
+++ b/src/compiler/x64/code-generator-x64.cc
@@ -626,6 +626,9 @@ void CodeGenerator::AssembleArchInstruction(Instruction* instr) {
    case kArchStackPointer:
      __ movq(i.OutputRegister(), rsp);
      break;
+    case kArchFramePointer:
+      __ movq(i.OutputRegister(), rbp);
+      break;
    case kArchTruncateDoubleToI: {
      auto result = i.OutputRegister();
      auto input = i.InputDoubleRegister(0);

--- a/src/runtime/runtime-internal.cc
+++ b/src/runtime/runtime-internal.cc
@@ -416,5 +416,15 @@ RUNTIME_FUNCTION(Runtime_GetTypeFeedbackVector) {
  CONVERT_ARG_CHECKED(JSFunction, function, 0);
  return function->shared()->feedback_vector();
 }
+RUNTIME_FUNCTION(Runtime_GetCallerJSFunction) {
+  SealHandleScope shs(isolate);
+  StackFrameIterator it(isolate);
+  RUNTIME_ASSERT(it.frame()->type() == StackFrame::STUB);
+  it.Advance();
+  RUNTIME_ASSERT(it.frame()->type() == StackFrame::JAVA_SCRIPT);
+  return JavaScriptFrame::cast(it.frame())->function();
+}
 }  // namespace internal
 }  // namespace v8
--- a/src/runtime/runtime.h
+++ b/src/runtime/runtime.h
@@ -325,7 +325,8 @@ namespace internal {
  F(Likely, 1, 1)                             \
  F(Unlikely, 1, 1)                           \
  F(HarmonyToString, 0, 1)                    \
-  F(GetTypeFeedbackVector, 1, 1)
+  F(GetTypeFeedbackVector, 1, 1)              \
+  F(GetCallerJSFunction, 0, 1)
 #define FOR_EACH_INTRINSIC_JSON(F) \

--- a/test/mjsunit/get-caller-js-function-throws.js
+++ b/test/mjsunit/get-caller-js-function-throws.js
+// Copyright 2015 the V8 project authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+// Flags: --allow-natives-syntax --noalways-opt --nostress-opt
+// Ensure that "real" js functions that call GetCallerJSFunction get an
+// exception, since they are not stubs.
+(function() {
+  var a = function() {
+    return %_GetCallerJSFunction();
+  }
+  assertThrows(a);
+}());
--- a/test/mjsunit/get-caller-js-function.js
+++ b/test/mjsunit/get-caller-js-function.js
+// Copyright 2015 the V8 project authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+// Flags: --allow-natives-syntax --turbo-filter=* --nostress-opt
+// Test that for fully optimized but non inlined code, GetCallerJSFunction walks
+// up a single stack frame to get the calling function. Full optimization elides
+// the check in the runtime version of the intrinsic that would throw since the
+// caller isn't a stub. It's a bit of a hack, but allows minimal testing of the
+// intrinsic without writing a full-blown cctest.
+(function() {
+  var a = function() {
+    return %_GetCallerJSFunction();
+  };
+  var b = function() {
+    return a();
+  };
+  %OptimizeFunctionOnNextCall(a);
+  assertEquals(b, b());
+}());