Commit 7f7d403d authored by Michael Starzinger's avatar Michael Starzinger Committed by Commit Bot

[asm.js] Test and fix call kind collisions.

R=clemensh@chromium.org
TEST=mjsunit/asm/call-collisions
BUG=v8:6202

Change-Id: Ie382ed011defb0146c07336b1fd65532ecc20e2e
Reviewed-on: https://chromium-review.googlesource.com/473146Reviewed-by: 's avatarClemens Hammacher <clemensh@chromium.org>
Commit-Queue: Michael Starzinger <mstarzinger@chromium.org>
Cr-Commit-Position: refs/heads/master@{#44554}
parent 0bd06a23
...@@ -2020,6 +2020,11 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2020,6 +2020,11 @@ AsmType* AsmJsParser::ValidateCall() {
int call_pos = static_cast<int>(scanner_.Position()); int call_pos = static_cast<int>(scanner_.Position());
int to_number_pos = static_cast<int>(call_coercion_position_); int to_number_pos = static_cast<int>(call_coercion_position_);
AsmJsScanner::token_t function_name = Consume(); AsmJsScanner::token_t function_name = Consume();
// Distinguish between ordinary function calls and function table calls. In
// both cases we might be seeing the {function_name} for the first time and
// hence allocate a {VarInfo} here, all subsequent uses of the same name then
// need to match the information stored at this point.
// TODO(mstarzinger): Consider using Chromiums base::Optional instead. // TODO(mstarzinger): Consider using Chromiums base::Optional instead.
std::unique_ptr<TemporaryVariableScope> tmp; std::unique_ptr<TemporaryVariableScope> tmp;
if (Check('[')) { if (Check('[')) {
...@@ -2059,7 +2064,21 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2059,7 +2064,21 @@ AsmType* AsmJsParser::ValidateCall() {
current_function_builder_->EmitSetLocal(tmp.get()->get()); current_function_builder_->EmitSetLocal(tmp.get()->get());
// The position of function table calls is after the table lookup. // The position of function table calls is after the table lookup.
call_pos = static_cast<int>(scanner_.Position()); call_pos = static_cast<int>(scanner_.Position());
} else {
VarInfo* function_info = GetVarInfo(function_name);
if (function_info->kind == VarKind::kUnused) {
function_info->kind = VarKind::kFunction;
function_info->function_builder = module_builder_->AddFunction();
function_info->index = function_info->function_builder->func_index();
} else {
if (function_info->kind != VarKind::kFunction &&
function_info->kind < VarKind::kImportedFunction) {
FAILn("Expected function as call target");
}
}
} }
// Parse argument list and gather types.
std::vector<AsmType*> param_types; std::vector<AsmType*> param_types;
ZoneVector<AsmType*> param_specific_types(zone()); ZoneVector<AsmType*> param_specific_types(zone());
EXPECT_TOKENn('('); EXPECT_TOKENn('(');
...@@ -2082,6 +2101,10 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2082,6 +2101,10 @@ AsmType* AsmJsParser::ValidateCall() {
} }
} }
EXPECT_TOKENn(')'); EXPECT_TOKENn(')');
// We potentially use lookahead in order to determine the return type in case
// it is not yet clear from the call context.
// TODO(mstarzinger,6183): Several issues with look-ahead are known. Fix!
// TODO(bradnelson): clarify how this binds, and why only float? // TODO(bradnelson): clarify how this binds, and why only float?
if (Peek('|') && if (Peek('|') &&
(return_type == nullptr || return_type->IsA(AsmType::Float()))) { (return_type == nullptr || return_type->IsA(AsmType::Float()))) {
...@@ -2091,29 +2114,24 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2091,29 +2114,24 @@ AsmType* AsmJsParser::ValidateCall() {
to_number_pos = call_pos; // No conversion. to_number_pos = call_pos; // No conversion.
return_type = AsmType::Void(); return_type = AsmType::Void();
} }
// Compute function type and signature based on gathered types.
AsmType* function_type = AsmType::Function(zone(), return_type); AsmType* function_type = AsmType::Function(zone(), return_type);
for (auto t : param_types) { for (auto t : param_types) {
function_type->AsFunctionType()->AddArgument(t); function_type->AsFunctionType()->AddArgument(t);
} }
FunctionSig* sig = ConvertSignature(return_type, param_types); FunctionSig* sig = ConvertSignature(return_type, param_types);
if (sig == nullptr) { if (sig == nullptr) {
FAILn("Invalid function signature"); FAILn("Invalid function signature");
} }
uint32_t signature_index = module_builder_->AddSignature(sig); uint32_t signature_index = module_builder_->AddSignature(sig);
// TODO(bradnelson): Fix this to use a less error prone pattern. // Emit actual function invocation depending on the kind. At this point we
// Reload as table might have grown. // also determined the complete function type and can perform checking against
// the expected type or update the expected type in case of first occurrence.
// Reload {VarInfo} as table might have grown.
VarInfo* function_info = GetVarInfo(function_name); VarInfo* function_info = GetVarInfo(function_name);
if (function_info->kind == VarKind::kUnused) { if (function_info->kind == VarKind::kImportedFunction) {
function_info->kind = VarKind::kFunction;
function_info->function_builder = module_builder_->AddFunction();
function_info->index = function_info->function_builder->func_index();
function_info->type = function_type;
current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos);
current_function_builder_->Emit(kExprCallFunction);
current_function_builder_->EmitDirectCallIndex(function_info->index);
} else if (function_info->kind == VarKind::kImportedFunction) {
for (auto t : param_specific_types) { for (auto t : param_specific_types) {
if (!t->IsA(AsmType::Extern())) { if (!t->IsA(AsmType::Extern())) {
FAILn("Imported function args must be type extern"); FAILn("Imported function args must be type extern");
...@@ -2138,19 +2156,6 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2138,19 +2156,6 @@ AsmType* AsmJsParser::ValidateCall() {
current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos); current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos);
current_function_builder_->Emit(kExprCallFunction); current_function_builder_->Emit(kExprCallFunction);
current_function_builder_->EmitVarUint(index); current_function_builder_->EmitVarUint(index);
} else if (function_info->type->IsA(AsmType::None())) {
function_info->type = function_type;
if (function_info->kind == VarKind::kTable) {
current_function_builder_->EmitGetLocal(tmp.get()->get());
current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos);
current_function_builder_->Emit(kExprCallIndirect);
current_function_builder_->EmitVarUint(signature_index);
current_function_builder_->EmitVarUint(0); // table index
} else {
current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos);
current_function_builder_->Emit(kExprCallFunction);
current_function_builder_->EmitDirectCallIndex(function_info->index);
}
} else if (function_info->kind > VarKind::kImportedFunction) { } else if (function_info->kind > VarKind::kImportedFunction) {
AsmCallableType* callable = function_info->type->AsCallableType(); AsmCallableType* callable = function_info->type->AsCallableType();
if (!callable) { if (!callable) {
...@@ -2269,21 +2274,20 @@ AsmType* AsmJsParser::ValidateCall() { ...@@ -2269,21 +2274,20 @@ AsmType* AsmJsParser::ValidateCall() {
UNREACHABLE(); UNREACHABLE();
} }
} else { } else {
if (function_info->kind != VarKind::kFunction && DCHECK(function_info->kind == VarKind::kFunction ||
function_info->kind != VarKind::kTable) { function_info->kind == VarKind::kTable);
FAILn("Function name collides with variable"); if (function_info->type->IsA(AsmType::None())) {
} function_info->type = function_type;
AsmCallableType* callable = function_info->type->AsCallableType(); } else {
if (!callable || AsmCallableType* callable = function_info->type->AsCallableType();
!callable->CanBeInvokedWith(return_type, param_specific_types)) { if (!callable ||
FAILn("Function use doesn't match definition"); !callable->CanBeInvokedWith(return_type, param_specific_types)) {
FAILn("Function use doesn't match definition");
}
} }
if (function_info->kind == VarKind::kTable) { if (function_info->kind == VarKind::kTable) {
current_function_builder_->EmitGetLocal(tmp.get()->get()); current_function_builder_->EmitGetLocal(tmp.get()->get());
// TODO(bradnelson): Figure out the right debug scanner offset and current_function_builder_->AddAsmWasmOffset(call_pos, to_number_pos);
// re-enable.
// current_function_builder_->AddAsmWasmOffset(scanner_.GetPosition(),
// scanner_.GetPosition());
current_function_builder_->Emit(kExprCallIndirect); current_function_builder_->Emit(kExprCallIndirect);
current_function_builder_->EmitVarUint(signature_index); current_function_builder_->EmitVarUint(signature_index);
current_function_builder_->EmitVarUint(0); // table index current_function_builder_->EmitVarUint(0); // table index
......
// Copyright 2017 the V8 project authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
// Flags: --allow-natives-syntax
(function CallCollisionFirstTableThenFunction() {
function Module(stdlib, imports, heap) {
"use asm";
function f(a) {
a = a | 0;
g[a & 0]();
g();
}
function g() {}
return { f:f };
}
var m = Module(this);
assertFalse(%IsAsmWasmCode(Module));
assertThrows(() => m.f(), TypeError);
})();
(function CallCollisionFirstFunctionThenTable() {
function Module(stdlib, imports, heap) {
"use asm";
function f(a) {
a = a | 0;
g();
g[a & 0]();
}
function g() {}
return { f:f };
}
var m = Module(this);
assertFalse(%IsAsmWasmCode(Module));
assertThrows(() => m.f(), TypeError);
})();
(function CallCollisionFunctionAsTable() {
function Module(stdlib, imports, heap) {
"use asm";
function g() {}
function f(a) {
a = a | 0;
g[a & 0]();
}
return { f:f };
}
var m = Module(this);
assertFalse(%IsAsmWasmCode(Module));
assertThrows(() => m.f(), TypeError);
})();
(function CallCollisionImportAsTable() {
function Module(stdlib, imports, heap) {
"use asm";
var g = imports.g;
function f(a) {
a = a | 0;
g[a & 0]();
}
return { f:f };
}
var m = Module(this, { g:Object });
assertFalse(%IsAsmWasmCode(Module));
assertThrows(() => m.f(), TypeError);
})();
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment