search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Bug 1639153 - Part 6.2: Establish dependency from tls for x86 callWithABI div/mod...
[gecko.git] / js / src / jit / CacheIRCompiler.h
blob426453c8d8036bd0ebfb52c2e9052e77dd801d8c
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*-
2 * vim: set ts=8 sts=2 et sw=2 tw=80:
3 * This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
6
7 #ifndef jit_CacheIRCompiler_h
8 #define jit_CacheIRCompiler_h
9
10 #include "mozilla/Maybe.h"
11
12 #include "jit/CacheIR.h"
13 #include "jit/JitOptions.h"
14 #include "jit/SharedICRegisters.h"
15 #include "js/ScalarType.h" // js::Scalar::Type
16
17 namespace js {
18
19 class TypedArrayObject;
20
21 namespace jit {
22
23 class BaselineCacheIRCompiler;
24 class IonCacheIRCompiler;
25
26 // [SMDOC] CacheIR Value Representation and Tracking
27 //
28 // While compiling an IC stub the CacheIR compiler needs to keep track of the
29 // physical location for each logical piece of data we care about, as well as
30 // ensure that in the case of a stub failing, we are able to restore the input
31 // state so that a subsequent stub can attempt to provide a value.
32 //
33 // OperandIds are created in the CacheIR front-end to keep track of values that
34 // are passed between CacheIR ops during the execution of a given CacheIR stub.
35 // In the CacheRegisterAllocator these OperandIds are given OperandLocations,
36 // that represent the physical location of the OperandId at a given point in
37 // time during CacheRegister allocation.
38 //
39 // In the CacheRegisterAllocator physical locations include the stack, and
40 // registers, as well as whether or not the value has been unboxed or not.
41 // Constants are also represented separately to provide for on-demand
42 // materialization.
43 //
44 // Intra-op Register allocation:
45 //
46 // During the emission of a CacheIR op, code can ask the CacheRegisterAllocator
47 // for access to a particular OperandId, and the register allocator will
48 // generate the required code to fill that request.
49 //
50 // Input OperandIds should be considered as immutable, and should not be mutated
51 // during the execution of a stub.
52 //
53 // There are also a number of RAII classes that interact with the register
54 // allocator, in order to provide access to more registers than just those
55 // provided for by the OperandIds.
56 //
57 // - AutoOutputReg: The register which will hold the output value of the stub.
58 // - AutoScratchReg: By default, an arbitrary scratch register, however a
59 // specific register can be requested.
60 // - AutoScratchRegMaybeOutput: Any arbitrary scratch register, but the output
61 // register may be used as well.
62 //
63 // These RAII classes take ownership of a register for the duration of their
64 // lifetime so they can be used for computation or output. The register
65 // allocator can spill values with OperandLocations in order to try to ensure
66 // that a register is made available for use.
67 //
68 // If a specific register is required (via AutoScratchRegister), it should be
69 // the first register acquired, as the register rallocator will be unable to
70 // allocate the fixed register if the current op is using it for something else.
71 //
72 // If no register can be provided after attempting to spill, a
73 // MOZ_RELEASE_ASSERT ensures the browser will crash. The register allocator is
74 // not provided enough information in its current design to insert spills and
75 // fills at arbitrary locations, and so it can fail to find an allocation
76 // solution. However, this will only happen within the implementation of an
77 // operand emitter, and because the cache register allocator is mostly
78 // determinstic, so long as the operand id emitter is tested, this won't
79 // suddenly crop up in an arbitrary webpage. It's worth noting the most
80 // difficult platform to support is x86-32, because it has the least number of
81 // registers available.
82 //
83 // FailurePaths checkpoint the state of the register allocator so that the input
84 // state can be recomputed from the current state before jumping to the next
85 // stub in the IC chain. An important invariant is that the FailurePath must be
86 // allocated for each op after all the manipulation of OperandLocations has
87 // happened, so that its recording is correct.
88 //
89 // Inter-op Register Allocation:
90 //
91 // The RAII register management classes are RAII because all register state
92 // outside the OperandLocations is reset before the compilation of each
93 // individual CacheIR op. This means that you cannot rely on a value surviving
94 // between ops, even if you use the ability of AutoScratchRegister to name a
95 // specific register. Values that need to be preserved between ops must be given
96 // an OperandId.
97
98 // Represents a Value on the Baseline frame's expression stack. Slot 0 is the
99 // value on top of the stack (the most recently pushed value), slot 1 is the
100 // value pushed before that, etc.
101 class BaselineFrameSlot {
102 uint32_t slot_;
103
104 public:
105 explicit BaselineFrameSlot(uint32_t slot) : slot_(slot) {}
106 uint32_t slot() const { return slot_; }
107
108 bool operator==(const BaselineFrameSlot& other) const {
109 return slot_ == other.slot_;
110 }
111 bool operator!=(const BaselineFrameSlot& other) const {
112 return slot_ != other.slot_;
113 }
114 };
115
116 // OperandLocation represents the location of an OperandId. The operand is
117 // either in a register or on the stack, and is either boxed or unboxed.
118 class OperandLocation {
119 public:
120 enum Kind {
121 Uninitialized = 0,
122 PayloadReg,
123 DoubleReg,
124 ValueReg,
125 PayloadStack,
126 ValueStack,
127 BaselineFrame,
128 Constant,
129 };
130
131 private:
132 Kind kind_;
133
134 union Data {
135 struct {
136 Register reg;
137 JSValueType type;
138 } payloadReg;
139 FloatRegister doubleReg;
140 ValueOperand valueReg;
141 struct {
142 uint32_t stackPushed;
143 JSValueType type;
144 } payloadStack;
145 uint32_t valueStackPushed;
146 BaselineFrameSlot baselineFrameSlot;
147 Value constant;
148
149 Data() : valueStackPushed(0) {}
150 };
151 Data data_;
152
153 public:
154 OperandLocation() : kind_(Uninitialized) {}
155
156 Kind kind() const { return kind_; }
157
158 void setUninitialized() { kind_ = Uninitialized; }
159
160 ValueOperand valueReg() const {
161 MOZ_ASSERT(kind_ == ValueReg);
162 return data_.valueReg;
163 }
164 Register payloadReg() const {
165 MOZ_ASSERT(kind_ == PayloadReg);
166 return data_.payloadReg.reg;
167 }
168 FloatRegister doubleReg() const {
169 MOZ_ASSERT(kind_ == DoubleReg);
170 return data_.doubleReg;
171 }
172 uint32_t payloadStack() const {
173 MOZ_ASSERT(kind_ == PayloadStack);
174 return data_.payloadStack.stackPushed;
175 }
176 uint32_t valueStack() const {
177 MOZ_ASSERT(kind_ == ValueStack);
178 return data_.valueStackPushed;
179 }
180 JSValueType payloadType() const {
181 if (kind_ == PayloadReg) {
182 return data_.payloadReg.type;
183 }
184 MOZ_ASSERT(kind_ == PayloadStack);
185 return data_.payloadStack.type;
186 }
187 Value constant() const {
188 MOZ_ASSERT(kind_ == Constant);
189 return data_.constant;
190 }
191 BaselineFrameSlot baselineFrameSlot() const {
192 MOZ_ASSERT(kind_ == BaselineFrame);
193 return data_.baselineFrameSlot;
194 }
195
196 void setPayloadReg(Register reg, JSValueType type) {
197 kind_ = PayloadReg;
198 data_.payloadReg.reg = reg;
199 data_.payloadReg.type = type;
200 }
201 void setDoubleReg(FloatRegister reg) {
202 kind_ = DoubleReg;
203 data_.doubleReg = reg;
204 }
205 void setValueReg(ValueOperand reg) {
206 kind_ = ValueReg;
207 data_.valueReg = reg;
208 }
209 void setPayloadStack(uint32_t stackPushed, JSValueType type) {
210 kind_ = PayloadStack;
211 data_.payloadStack.stackPushed = stackPushed;
212 data_.payloadStack.type = type;
213 }
214 void setValueStack(uint32_t stackPushed) {
215 kind_ = ValueStack;
216 data_.valueStackPushed = stackPushed;
217 }
218 void setConstant(const Value& v) {
219 kind_ = Constant;
220 data_.constant = v;
221 }
222 void setBaselineFrame(BaselineFrameSlot slot) {
223 kind_ = BaselineFrame;
224 data_.baselineFrameSlot = slot;
225 }
226
227 bool isUninitialized() const { return kind_ == Uninitialized; }
228 bool isInRegister() const { return kind_ == PayloadReg || kind_ == ValueReg; }
229 bool isOnStack() const {
230 return kind_ == PayloadStack || kind_ == ValueStack;
231 }
232
233 size_t stackPushed() const {
234 if (kind_ == PayloadStack) {
235 return data_.payloadStack.stackPushed;
236 }
237 MOZ_ASSERT(kind_ == ValueStack);
238 return data_.valueStackPushed;
239 }
240 size_t stackSizeInBytes() const {
241 if (kind_ == PayloadStack) {
242 return sizeof(uintptr_t);
243 }
244 MOZ_ASSERT(kind_ == ValueStack);
245 return sizeof(js::Value);
246 }
247 void adjustStackPushed(int32_t diff) {
248 if (kind_ == PayloadStack) {
249 data_.payloadStack.stackPushed += diff;
250 return;
251 }
252 MOZ_ASSERT(kind_ == ValueStack);
253 data_.valueStackPushed += diff;
254 }
255
256 bool aliasesReg(Register reg) const {
257 if (kind_ == PayloadReg) {
258 return payloadReg() == reg;
259 }
260 if (kind_ == ValueReg) {
261 return valueReg().aliases(reg);
262 }
263 return false;
264 }
265 bool aliasesReg(ValueOperand reg) const {
266 #if defined(JS_NUNBOX32)
267 return aliasesReg(reg.typeReg()) || aliasesReg(reg.payloadReg());
268 #else
269 return aliasesReg(reg.valueReg());
270 #endif
271 }
272
273 bool aliasesReg(const OperandLocation& other) const;
274
275 bool operator==(const OperandLocation& other) const;
276 bool operator!=(const OperandLocation& other) const {
277 return !operator==(other);
278 }
279 };
280
281 struct SpilledRegister {
282 Register reg;
283 uint32_t stackPushed;
284
285 SpilledRegister(Register reg, uint32_t stackPushed)
286 : reg(reg), stackPushed(stackPushed) {}
287 bool operator==(const SpilledRegister& other) const {
288 return reg == other.reg && stackPushed == other.stackPushed;
289 }
290 bool operator!=(const SpilledRegister& other) const {
291 return !(*this == other);
292 }
293 };
294
295 using SpilledRegisterVector = Vector<SpilledRegister, 2, SystemAllocPolicy>;
296
297 // Class to track and allocate registers while emitting IC code.
298 class MOZ_RAII CacheRegisterAllocator {
299 // The original location of the inputs to the cache.
300 Vector<OperandLocation, 4, SystemAllocPolicy> origInputLocations_;
301
302 // The current location of each operand.
303 Vector<OperandLocation, 8, SystemAllocPolicy> operandLocations_;
304
305 // Free lists for value- and payload-slots on stack
306 Vector<uint32_t, 2, SystemAllocPolicy> freeValueSlots_;
307 Vector<uint32_t, 2, SystemAllocPolicy> freePayloadSlots_;
308
309 // The registers allocated while emitting the current CacheIR op.
310 // This prevents us from allocating a register and then immediately
311 // clobbering it for something else, while we're still holding on to it.
312 LiveGeneralRegisterSet currentOpRegs_;
313
314 const AllocatableGeneralRegisterSet allocatableRegs_;
315
316 // Registers that are currently unused and available.
317 AllocatableGeneralRegisterSet availableRegs_;
318
319 // Registers that are available, but before use they must be saved and
320 // then restored when returning from the stub.
321 AllocatableGeneralRegisterSet availableRegsAfterSpill_;
322
323 // Registers we took from availableRegsAfterSpill_ and spilled to the stack.
324 SpilledRegisterVector spilledRegs_;
325
326 // The number of bytes pushed on the native stack.
327 uint32_t stackPushed_;
328
329 #ifdef DEBUG
330 // Flag used to assert individual CacheIR instructions don't allocate
331 // registers after calling addFailurePath.
332 bool addedFailurePath_;
333 #endif
334
335 // The index of the CacheIR instruction we're currently emitting.
336 uint32_t currentInstruction_;
337
338 // Whether the stack contains a double spilled by AutoScratchFloatRegister.
339 bool hasAutoScratchFloatRegisterSpill_ = false;
340
341 const CacheIRWriter& writer_;
342
343 CacheRegisterAllocator(const CacheRegisterAllocator&) = delete;
344 CacheRegisterAllocator& operator=(const CacheRegisterAllocator&) = delete;
345
346 void freeDeadOperandLocations(MacroAssembler& masm);
347
348 void spillOperandToStack(MacroAssembler& masm, OperandLocation* loc);
349 void spillOperandToStackOrRegister(MacroAssembler& masm,
350 OperandLocation* loc);
351
352 void popPayload(MacroAssembler& masm, OperandLocation* loc, Register dest);
353 void popValue(MacroAssembler& masm, OperandLocation* loc, ValueOperand dest);
354 Address valueAddress(MacroAssembler& masm, const OperandLocation* loc) const;
355
356 #ifdef DEBUG
357 void assertValidState() const;
358 #endif
359
360 public:
361 friend class AutoScratchRegister;
362 friend class AutoScratchRegisterExcluding;
363
364 explicit CacheRegisterAllocator(const CacheIRWriter& writer)
365 : allocatableRegs_(GeneralRegisterSet::All()),
366 stackPushed_(0),
367 #ifdef DEBUG
368 addedFailurePath_(false),
369 #endif
370 currentInstruction_(0),
371 writer_(writer) {
372 }
373
374 MOZ_MUST_USE bool init();
375
376 void initAvailableRegs(const AllocatableGeneralRegisterSet& available) {
377 availableRegs_ = available;
378 }
379 void initAvailableRegsAfterSpill();
380
381 void fixupAliasedInputs(MacroAssembler& masm);
382
383 OperandLocation operandLocation(size_t i) const {
384 return operandLocations_[i];
385 }
386 void setOperandLocation(size_t i, const OperandLocation& loc) {
387 operandLocations_[i] = loc;
388 }
389
390 OperandLocation origInputLocation(size_t i) const {
391 return origInputLocations_[i];
392 }
393 void initInputLocation(size_t i, ValueOperand reg) {
394 origInputLocations_[i].setValueReg(reg);
395 operandLocations_[i].setValueReg(reg);
396 }
397 void initInputLocation(size_t i, Register reg, JSValueType type) {
398 origInputLocations_[i].setPayloadReg(reg, type);
399 operandLocations_[i].setPayloadReg(reg, type);
400 }
401 void initInputLocation(size_t i, FloatRegister reg) {
402 origInputLocations_[i].setDoubleReg(reg);
403 operandLocations_[i].setDoubleReg(reg);
404 }
405 void initInputLocation(size_t i, const Value& v) {
406 origInputLocations_[i].setConstant(v);
407 operandLocations_[i].setConstant(v);
408 }
409 void initInputLocation(size_t i, BaselineFrameSlot slot) {
410 origInputLocations_[i].setBaselineFrame(slot);
411 operandLocations_[i].setBaselineFrame(slot);
412 }
413
414 void initInputLocation(size_t i, const TypedOrValueRegister& reg);
415 void initInputLocation(size_t i, const ConstantOrRegister& value);
416
417 const SpilledRegisterVector& spilledRegs() const { return spilledRegs_; }
418
419 MOZ_MUST_USE bool setSpilledRegs(const SpilledRegisterVector& regs) {
420 spilledRegs_.clear();
421 return spilledRegs_.appendAll(regs);
422 }
423
424 bool hasAutoScratchFloatRegisterSpill() const {
425 return hasAutoScratchFloatRegisterSpill_;
426 }
427 void setHasAutoScratchFloatRegisterSpill(bool b) {
428 MOZ_ASSERT(hasAutoScratchFloatRegisterSpill_ != b);
429 hasAutoScratchFloatRegisterSpill_ = b;
430 }
431
432 void nextOp() {
433 #ifdef DEBUG
434 assertValidState();
435 addedFailurePath_ = false;
436 #endif
437 currentOpRegs_.clear();
438 currentInstruction_++;
439 }
440
441 #ifdef DEBUG
442 void setAddedFailurePath() {
443 MOZ_ASSERT(!addedFailurePath_, "multiple failure paths for instruction");
444 addedFailurePath_ = true;
445 }
446 #endif
447
448 bool isDeadAfterInstruction(OperandId opId) const {
449 return writer_.operandIsDead(opId.id(), currentInstruction_ + 1);
450 }
451
452 uint32_t stackPushed() const { return stackPushed_; }
453 void setStackPushed(uint32_t pushed) { stackPushed_ = pushed; }
454
455 bool isAllocatable(Register reg) const { return allocatableRegs_.has(reg); }
456
457 // Allocates a new register.
458 Register allocateRegister(MacroAssembler& masm);
459 ValueOperand allocateValueRegister(MacroAssembler& masm);
460
461 void allocateFixedRegister(MacroAssembler& masm, Register reg);
462 void allocateFixedValueRegister(MacroAssembler& masm, ValueOperand reg);
463
464 // Releases a register so it can be reused later.
465 void releaseRegister(Register reg) {
466 MOZ_ASSERT(currentOpRegs_.has(reg));
467 availableRegs_.add(reg);
468 currentOpRegs_.take(reg);
469 }
470 void releaseValueRegister(ValueOperand reg) {
471 #ifdef JS_NUNBOX32
472 releaseRegister(reg.payloadReg());
473 releaseRegister(reg.typeReg());
474 #else
475 releaseRegister(reg.valueReg());
476 #endif
477 }
478
479 // Removes spilled values from the native stack. This should only be
480 // called after all registers have been allocated.
481 void discardStack(MacroAssembler& masm);
482
483 Address addressOf(MacroAssembler& masm, BaselineFrameSlot slot) const;
484 BaseValueIndex addressOf(MacroAssembler& masm, Register argcReg,
485 BaselineFrameSlot slot) const;
486
487 // Returns the register for the given operand. If the operand is currently
488 // not in a register, it will load it into one.
489 ValueOperand useValueRegister(MacroAssembler& masm, ValOperandId val);
490 ValueOperand useFixedValueRegister(MacroAssembler& masm, ValOperandId valId,
491 ValueOperand reg);
492 Register useRegister(MacroAssembler& masm, TypedOperandId typedId);
493
494 ConstantOrRegister useConstantOrRegister(MacroAssembler& masm,
495 ValOperandId val);
496
497 // Allocates an output register for the given operand.
498 Register defineRegister(MacroAssembler& masm, TypedOperandId typedId);
499 ValueOperand defineValueRegister(MacroAssembler& masm, ValOperandId val);
500
501 // Loads (potentially coercing) and unboxes a value into a float register
502 // This is infallible, as there should have been a previous guard
503 // to ensure the value is already a number.
504 // Does not change the allocator's state.
505 void ensureDoubleRegister(MacroAssembler& masm, NumberOperandId op,
506 FloatRegister dest) const;
507
508 // Loads an unboxed value into a scratch register. This can be useful
509 // especially on 32-bit x86 when there are not enough registers for
510 // useRegister.
511 // Does not change the allocator's state.
512 void copyToScratchRegister(MacroAssembler& masm, TypedOperandId typedId,
513 Register dest) const;
514
515 // Returns |val|'s JSValueType or JSVAL_TYPE_UNKNOWN.
516 JSValueType knownType(ValOperandId val) const;
517
518 // Emits code to restore registers and stack to the state at the start of
519 // the stub.
520 void restoreInputState(MacroAssembler& masm, bool discardStack = true);
521
522 // Returns the set of registers storing the IC input operands.
523 GeneralRegisterSet inputRegisterSet() const;
524
525 void saveIonLiveRegisters(MacroAssembler& masm, LiveRegisterSet liveRegs,
526 Register scratch, IonScript* ionScript);
527 void restoreIonLiveRegisters(MacroAssembler& masm, LiveRegisterSet liveRegs);
528 };
529
530 // RAII class to allocate a scratch register and release it when we're done
531 // with it.
532 class MOZ_RAII AutoScratchRegister {
533 CacheRegisterAllocator& alloc_;
534 Register reg_;
535
536 AutoScratchRegister(const AutoScratchRegister&) = delete;
537 void operator=(const AutoScratchRegister&) = delete;
538
539 public:
540 AutoScratchRegister(CacheRegisterAllocator& alloc, MacroAssembler& masm,
541 Register reg = InvalidReg)
542 : alloc_(alloc) {
543 if (reg != InvalidReg) {
544 alloc.allocateFixedRegister(masm, reg);
545 reg_ = reg;
546 } else {
547 reg_ = alloc.allocateRegister(masm);
548 }
549 MOZ_ASSERT(alloc_.currentOpRegs_.has(reg_));
550 }
551 ~AutoScratchRegister() { alloc_.releaseRegister(reg_); }
552
553 Register get() const { return reg_; }
554 operator Register() const { return reg_; }
555 };
556
557 // On x86, spectreBoundsCheck32 can emit better code if it has a scratch
558 // register and index masking is enabled.
559 class MOZ_RAII AutoSpectreBoundsScratchRegister {
560 mozilla::Maybe<AutoScratchRegister> scratch_;
561 Register reg_ = InvalidReg;
562
563 AutoSpectreBoundsScratchRegister(const AutoSpectreBoundsScratchRegister&) =
564 delete;
565 void operator=(const AutoSpectreBoundsScratchRegister&) = delete;
566
567 public:
568 AutoSpectreBoundsScratchRegister(CacheRegisterAllocator& alloc,
569 MacroAssembler& masm) {
570 #ifdef JS_CODEGEN_X86
571 if (JitOptions.spectreIndexMasking) {
572 scratch_.emplace(alloc, masm);
573 reg_ = scratch_->get();
574 }
575 #endif
576 }
577
578 Register get() const { return reg_; }
579 operator Register() const { return reg_; }
580 };
581
582 // Scratch Register64. Implemented with a single AutoScratchRegister on 64-bit
583 // platforms and two AutoScratchRegisters on 32-bit platforms.
584 class MOZ_RAII AutoScratchRegister64 {
585 AutoScratchRegister reg1_;
586 #if JS_BITS_PER_WORD == 32
587 AutoScratchRegister reg2_;
588 #endif
589
590 public:
591 AutoScratchRegister64(const AutoScratchRegister64&) = delete;
592 void operator=(const AutoScratchRegister64&) = delete;
593
594 #if JS_BITS_PER_WORD == 32
595 AutoScratchRegister64(CacheRegisterAllocator& alloc, MacroAssembler& masm)
596 : reg1_(alloc, masm), reg2_(alloc, masm) {}
597
598 Register64 get() const { return Register64(reg1_, reg2_); }
599 #else
600 AutoScratchRegister64(CacheRegisterAllocator& alloc, MacroAssembler& masm)
601 : reg1_(alloc, masm) {}
602
603 Register64 get() const { return Register64(reg1_); }
604 #endif
605
606 operator Register64() const { return get(); }
607 };
608
609 // The FailurePath class stores everything we need to generate a failure path
610 // at the end of the IC code. The failure path restores the input registers, if
611 // needed, and jumps to the next stub.
612 class FailurePath {
613 Vector<OperandLocation, 4, SystemAllocPolicy> inputs_;
614 SpilledRegisterVector spilledRegs_;
615 NonAssertingLabel label_;
616 uint32_t stackPushed_;
617 #ifdef DEBUG
618 // Flag to ensure FailurePath::label() isn't taken while there's a scratch
619 // float register which still needs to be restored.
620 bool hasAutoScratchFloatRegister_ = false;
621 #endif
622
623 public:
624 FailurePath() = default;
625
626 FailurePath(FailurePath&& other)
627 : inputs_(std::move(other.inputs_)),
628 spilledRegs_(std::move(other.spilledRegs_)),
629 label_(other.label_),
630 stackPushed_(other.stackPushed_) {}
631
632 Label* labelUnchecked() { return &label_; }
633 Label* label() {
634 MOZ_ASSERT(!hasAutoScratchFloatRegister_);
635 return labelUnchecked();
636 }
637
638 void setStackPushed(uint32_t i) { stackPushed_ = i; }
639 uint32_t stackPushed() const { return stackPushed_; }
640
641 MOZ_MUST_USE bool appendInput(const OperandLocation& loc) {
642 return inputs_.append(loc);
643 }
644 OperandLocation input(size_t i) const { return inputs_[i]; }
645
646 const SpilledRegisterVector& spilledRegs() const { return spilledRegs_; }
647
648 MOZ_MUST_USE bool setSpilledRegs(const SpilledRegisterVector& regs) {
649 MOZ_ASSERT(spilledRegs_.empty());
650 return spilledRegs_.appendAll(regs);
651 }
652
653 // If canShareFailurePath(other) returns true, the same machine code will
654 // be emitted for two failure paths, so we can share them.
655 bool canShareFailurePath(const FailurePath& other) const;
656
657 void setHasAutoScratchFloatRegister() {
658 #ifdef DEBUG
659 MOZ_ASSERT(!hasAutoScratchFloatRegister_);
660 hasAutoScratchFloatRegister_ = true;
661 #endif
662 }
663
664 void clearHasAutoScratchFloatRegister() {
665 #ifdef DEBUG
666 MOZ_ASSERT(hasAutoScratchFloatRegister_);
667 hasAutoScratchFloatRegister_ = false;
668 #endif
669 }
670 };
671
672 /**
673 * Wrap an offset so that a call can decide to embed a constant
674 * or load from the stub data.
675 */
676 class StubFieldOffset {
677 private:
678 uint32_t offset_;
679 StubField::Type type_;
680
681 public:
682 StubFieldOffset(uint32_t offset, StubField::Type type)
683 : offset_(offset), type_(type) {}
684
685 uint32_t getOffset() { return offset_; }
686 StubField::Type getStubFieldType() { return type_; }
687 };
688
689 class AutoOutputRegister;
690
691 // Base class for BaselineCacheIRCompiler and IonCacheIRCompiler.
692 class MOZ_RAII CacheIRCompiler {
693 protected:
694 friend class AutoOutputRegister;
695 friend class AutoStubFrame;
696 friend class AutoSaveLiveRegisters;
697 friend class AutoCallVM;
698 friend class AutoScratchFloatRegister;
699 friend class AutoAvailableFloatRegister;
700
701 enum class Mode { Baseline, Ion };
702
703 bool preparedForVMCall_;
704
705 bool isBaseline();
706 bool isIon();
707 BaselineCacheIRCompiler* asBaseline();
708 IonCacheIRCompiler* asIon();
709
710 JSContext* cx_;
711 const CacheIRWriter& writer_;
712 StackMacroAssembler masm;
713
714 CacheRegisterAllocator allocator;
715 Vector<FailurePath, 4, SystemAllocPolicy> failurePaths;
716
717 // Float registers that are live. Registers not in this set can be
718 // clobbered and don't need to be saved before performing a VM call.
719 // Doing this for non-float registers is a bit more complicated because
720 // the IC register allocator allocates GPRs.
721 LiveFloatRegisterSet liveFloatRegs_;
722
723 mozilla::Maybe<TypedOrValueRegister> outputUnchecked_;
724 Mode mode_;
725
726 // Whether this IC may read double values from uint32 arrays.
727 mozilla::Maybe<bool> allowDoubleResult_;
728
729 // Distance from the IC to the stub data; mostly will be
730 // sizeof(stubType)
731 uint32_t stubDataOffset_;
732
733 enum class StubFieldPolicy { Address, Constant };
734
735 StubFieldPolicy stubFieldPolicy_;
736
737 CacheIRCompiler(JSContext* cx, const CacheIRWriter& writer,
738 uint32_t stubDataOffset, Mode mode, StubFieldPolicy policy)
739 : preparedForVMCall_(false),
740 cx_(cx),
741 writer_(writer),
742 allocator(writer_),
743 liveFloatRegs_(FloatRegisterSet::All()),
744 mode_(mode),
745 stubDataOffset_(stubDataOffset),
746 stubFieldPolicy_(policy) {
747 MOZ_ASSERT(!writer.failed());
748 }
749
750 MOZ_MUST_USE bool addFailurePath(FailurePath** failure);
751 MOZ_MUST_USE bool emitFailurePath(size_t i);
752
753 // Returns the set of volatile float registers that are live. These
754 // registers need to be saved when making non-GC calls with callWithABI.
755 FloatRegisterSet liveVolatileFloatRegs() const {
756 return FloatRegisterSet::Intersect(liveFloatRegs_.set(),
757 FloatRegisterSet::Volatile());
758 }
759
760 bool objectGuardNeedsSpectreMitigations(ObjOperandId objId) const {
761 // Instructions like GuardShape need Spectre mitigations if
762 // (1) mitigations are enabled and (2) the object is used by other
763 // instructions (if the object is *not* used by other instructions,
764 // zeroing its register is pointless).
765 return JitOptions.spectreObjectMitigationsMisc &&
766 !allocator.isDeadAfterInstruction(objId);
767 }
768
769 bool emitLoadTypedElementResult(ObjOperandId objId, Int32OperandId indexId,
770 TypedThingLayout layout,
771 Scalar::Type elementType, bool handleOOB,
772 bool allowDoubleForUint32);
773
774 bool emitStoreTypedElement(ObjOperandId objId, TypedThingLayout layout,
775 Scalar::Type elementType, Int32OperandId indexId,
776 uint32_t rhsId, bool handleOOB);
777
778 void emitStoreTypedObjectReferenceProp(ValueOperand val, ReferenceType type,
779 const Address& dest, Register scratch);
780
781 void emitRegisterEnumerator(Register enumeratorsList, Register iter,
782 Register scratch);
783
784 private:
785 void emitPostBarrierShared(Register obj, const ConstantOrRegister& val,
786 Register scratch, Register maybeIndex);
787
788 void emitPostBarrierShared(Register obj, ValueOperand val, Register scratch,
789 Register maybeIndex) {
790 emitPostBarrierShared(obj, ConstantOrRegister(val), scratch, maybeIndex);
791 }
792
793 protected:
794 template <typename T>
795 void emitPostBarrierSlot(Register obj, const T& val, Register scratch) {
796 emitPostBarrierShared(obj, val, scratch, InvalidReg);
797 }
798
799 template <typename T>
800 void emitPostBarrierElement(Register obj, const T& val, Register scratch,
801 Register index) {
802 MOZ_ASSERT(index != InvalidReg);
803 emitPostBarrierShared(obj, val, scratch, index);
804 }
805
806 bool emitComparePointerResultShared(JSOp op, TypedOperandId lhsId,
807 TypedOperandId rhsId);
808
809 bool emitCompareBigIntInt32ResultShared(Register bigInt, Register int32,
810 Register scratch1, Register scratch2,
811 JSOp op,
812 const AutoOutputRegister& output);
813
814 template <typename Fn, Fn fn>
815 MOZ_MUST_USE bool emitBigIntBinaryOperationShared(BigIntOperandId lhsId,
816 BigIntOperandId rhsId);
817
818 template <typename Fn, Fn fn>
819 MOZ_MUST_USE bool emitBigIntUnaryOperationShared(BigIntOperandId inputId);
820
821 bool emitDoubleIncDecResult(bool isInc, NumberOperandId inputId);
822
823 using AtomicsReadWriteModifyFn = int32_t (*)(TypedArrayObject*, int32_t,
824 int32_t);
825
826 MOZ_MUST_USE bool emitAtomicsReadModifyWriteResult(
827 ObjOperandId objId, Int32OperandId indexId, Int32OperandId valueId,
828 Scalar::Type elementType, AtomicsReadWriteModifyFn fn);
829
830 CACHE_IR_COMPILER_SHARED_GENERATED
831
832 void emitLoadStubField(StubFieldOffset val, Register dest);
833 void emitLoadStubFieldConstant(StubFieldOffset val, Register dest);
834 Address emitAddressFromStubField(StubFieldOffset val, Register base);
835
836 uintptr_t readStubWord(uint32_t offset, StubField::Type type) {
837 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
838 MOZ_ASSERT((offset % sizeof(uintptr_t)) == 0);
839 return writer_.readStubFieldForIon(offset, type).asWord();
840 }
841 uint64_t readStubInt64(uint32_t offset, StubField::Type type) {
842 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
843 MOZ_ASSERT((offset % sizeof(uintptr_t)) == 0);
844 return writer_.readStubFieldForIon(offset, type).asInt64();
845 }
846 int32_t int32StubField(uint32_t offset) {
847 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
848 return readStubWord(offset, StubField::Type::RawWord);
849 }
850 uint32_t uint32StubField(uint32_t offset) {
851 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
852 return readStubWord(offset, StubField::Type::RawWord);
853 }
854 Shape* shapeStubField(uint32_t offset) {
855 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
856 return (Shape*)readStubWord(offset, StubField::Type::Shape);
857 }
858 JSObject* objectStubField(uint32_t offset) {
859 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
860 return (JSObject*)readStubWord(offset, StubField::Type::JSObject);
861 }
862 // This accessor is for cases where the stubField policy is
863 // being respected through other means, so we don't check the
864 // policy here. (see LoadNewObjectFromTemplateResult)
865 JSObject* objectStubFieldUnchecked(uint32_t offset) {
866 return (JSObject*)writer_
867 .readStubFieldForIon(offset, StubField::Type::JSObject)
868 .asWord();
869 }
870 JSString* stringStubField(uint32_t offset) {
871 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
872 return (JSString*)readStubWord(offset, StubField::Type::String);
873 }
874 JS::Symbol* symbolStubField(uint32_t offset) {
875 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
876 return (JS::Symbol*)readStubWord(offset, StubField::Type::Symbol);
877 }
878 ObjectGroup* groupStubField(uint32_t offset) {
879 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
880 return (ObjectGroup*)readStubWord(offset, StubField::Type::ObjectGroup);
881 }
882 JS::Compartment* compartmentStubField(uint32_t offset) {
883 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
884 return (JS::Compartment*)readStubWord(offset, StubField::Type::RawWord);
885 }
886 const JSClass* classStubField(uintptr_t offset) {
887 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
888 return (const JSClass*)readStubWord(offset, StubField::Type::RawWord);
889 }
890 const void* proxyHandlerStubField(uintptr_t offset) {
891 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
892 return (const void*)readStubWord(offset, StubField::Type::RawWord);
893 }
894 jsid idStubField(uint32_t offset) {
895 MOZ_ASSERT(stubFieldPolicy_ == StubFieldPolicy::Constant);
896 return jsid::fromRawBits(readStubWord(offset, StubField::Type::Id));
897 }
898
899 #ifdef DEBUG
900 void assertFloatRegisterAvailable(FloatRegister reg);
901 #endif
902
903 public:
904 void callVMInternal(MacroAssembler& masm, VMFunctionId id);
905 template <typename Fn, Fn fn>
906 void callVM(MacroAssembler& masm);
907 };
908
909 // Ensures the IC's output register is available for writing.
910 class MOZ_RAII AutoOutputRegister {
911 TypedOrValueRegister output_;
912 CacheRegisterAllocator& alloc_;
913
914 AutoOutputRegister(const AutoOutputRegister&) = delete;
915 void operator=(const AutoOutputRegister&) = delete;
916
917 public:
918 explicit AutoOutputRegister(CacheIRCompiler& compiler);
919 ~AutoOutputRegister();
920
921 Register maybeReg() const {
922 if (output_.hasValue()) {
923 return output_.valueReg().scratchReg();
924 }
925 if (!output_.typedReg().isFloat()) {
926 return output_.typedReg().gpr();
927 }
928 return InvalidReg;
929 }
930
931 bool hasValue() const { return output_.hasValue(); }
932 ValueOperand valueReg() const { return output_.valueReg(); }
933 AnyRegister typedReg() const { return output_.typedReg(); }
934
935 JSValueType type() const {
936 MOZ_ASSERT(!hasValue());
937 return ValueTypeFromMIRType(output_.type());
938 }
939
940 operator TypedOrValueRegister() const { return output_; }
941 };
942
943 enum class CallCanGC { CanGC, CanNotGC };
944
945 // Instructions that have to perform a callVM require a stub frame. Call its
946 // enter() and leave() methods to enter/leave the stub frame.
947 // Hoisted from jit/BaselineCacheIRCompiler.cpp. See there for method
948 // definitions.
949 class MOZ_RAII AutoStubFrame {
950 BaselineCacheIRCompiler& compiler;
951 #ifdef DEBUG
952 uint32_t framePushedAtEnterStubFrame_;
953 #endif
954
955 AutoStubFrame(const AutoStubFrame&) = delete;
956 void operator=(const AutoStubFrame&) = delete;
957
958 public:
959 explicit AutoStubFrame(BaselineCacheIRCompiler& compiler);
960
961 void enter(MacroAssembler& masm, Register scratch,
962 CallCanGC canGC = CallCanGC::CanGC);
963 void leave(MacroAssembler& masm, bool calledIntoIon = false);
964
965 #ifdef DEBUG
966 ~AutoStubFrame();
967 #endif
968 };
969 // AutoSaveLiveRegisters must be used when we make a call that can GC. The
970 // constructor ensures all live registers are stored on the stack (where the GC
971 // expects them) and the destructor restores these registers.
972 class MOZ_RAII AutoSaveLiveRegisters {
973 IonCacheIRCompiler& compiler_;
974
975 AutoSaveLiveRegisters(const AutoSaveLiveRegisters&) = delete;
976 void operator=(const AutoSaveLiveRegisters&) = delete;
977
978 public:
979 explicit AutoSaveLiveRegisters(IonCacheIRCompiler& compiler);
980
981 ~AutoSaveLiveRegisters();
982 };
983 // Like AutoScratchRegister, but reuse a register of |output| if possible.
984 class MOZ_RAII AutoScratchRegisterMaybeOutput {
985 mozilla::Maybe<AutoScratchRegister> scratch_;
986 Register scratchReg_;
987
988 AutoScratchRegisterMaybeOutput(const AutoScratchRegisterMaybeOutput&) =
989 delete;
990 void operator=(const AutoScratchRegisterMaybeOutput&) = delete;
991
992 public:
993 AutoScratchRegisterMaybeOutput(CacheRegisterAllocator& alloc,
994 MacroAssembler& masm,
995 const AutoOutputRegister& output) {
996 scratchReg_ = output.maybeReg();
997 if (scratchReg_ == InvalidReg) {
998 scratch_.emplace(alloc, masm);
999 scratchReg_ = scratch_.ref();
1000 }
1001 }
1002
1003 Register get() const { return scratchReg_; }
1004 operator Register() const { return scratchReg_; }
1005 };
1006
1007 // Like AutoScratchRegisterMaybeOutput, but tries to use the ValueOperand's
1008 // type register for the scratch register on 32-bit.
1009 //
1010 // Word of warning: Passing an instance of this class and AutoOutputRegister to
1011 // functions may not work correctly, because no guarantee is given that the type
1012 // register is used last when modifying the output's ValueOperand.
1013 class MOZ_RAII AutoScratchRegisterMaybeOutputType {
1014 mozilla::Maybe<AutoScratchRegister> scratch_;
1015 Register scratchReg_;
1016
1017 public:
1018 AutoScratchRegisterMaybeOutputType(CacheRegisterAllocator& alloc,
1019 MacroAssembler& masm,
1020 const AutoOutputRegister& output) {
1021 #if defined(JS_NUNBOX32)
1022 scratchReg_ = output.hasValue() ? output.valueReg().typeReg() : InvalidReg;
1023 #else
1024 scratchReg_ = InvalidReg;
1025 #endif
1026 if (scratchReg_ == InvalidReg) {
1027 scratch_.emplace(alloc, masm);
1028 scratchReg_ = scratch_.ref();
1029 }
1030 }
1031
1032 AutoScratchRegisterMaybeOutputType(
1033 const AutoScratchRegisterMaybeOutputType&) = delete;
1034
1035 void operator=(const AutoScratchRegisterMaybeOutputType&) = delete;
1036
1037 operator Register() const { return scratchReg_; }
1038 };
1039
1040 // AutoCallVM is a wrapper class that unifies methods shared by
1041 // IonCacheIRCompiler and BaselineCacheIRCompiler that perform a callVM, but
1042 // require stub specific functionality before performing the VM call.
1043 //
1044 // Expected Usage:
1045 //
1046 // OPs with implementations that may be unified by this class must:
1047 // - Be listed in the CACHEIR_OPS list but not in the CACHE_IR_SHARED_OPS
1048 // list
1049 // - Differ only in their use of `AutoSaveLiveRegisters`,
1050 // `AutoOutputRegister`, and `AutoScratchRegister`. The Ion
1051 // implementation will use `AutoSaveLiveRegisters` and
1052 // `AutoOutputRegister`, while the Baseline implementation will use
1053 // `AutoScratchRegister`.
1054 // - Both use the `callVM` method.
1055 //
1056 // Using AutoCallVM:
1057 // - The constructor initializes `AutoOutputRegister` for both compiler
1058 // types. Additionally it initializes an `AutoSaveLiveRegisters` for
1059 // CacheIRCompilers with the mode Ion, and initializes
1060 // `AutoScratchRegisterMaybeOutput` and `AutoStubFrame` variables for
1061 // compilers with mode Baseline.
1062 // - The `prepare()` method calls the IonCacheIRCompiler method
1063 // `prepareVMCall` for IonCacheIRCompilers, calls the `enter()` method of
1064 // `AutoStubFrame` for BaselineCacheIRCompilers, and calls the
1065 // `discardStack` method of the `Register` class for both compiler types.
1066 // - The `call()` method invokes `callVM` on the CacheIRCompiler and stores
1067 // the call result according to its type. Finally it calls the `leave`
1068 // method of `AutoStubFrame` for BaselineCacheIRCompilers.
1069 //
1070 // Expected Usage Example:
1071 // See: `CacheIRCompiler::emitCallGetSparseElementResult()`
1072 //
1073 // Restrictions:
1074 // - OPs that do not meet the criteria listed above can not be unified with
1075 // AutoCallVM
1076 //
1077
1078 class MOZ_RAII AutoCallVM {
1079 MacroAssembler& masm_;
1080 CacheIRCompiler* compiler_;
1081 CacheRegisterAllocator& allocator_;
1082 mozilla::Maybe<AutoOutputRegister> output_;
1083
1084 // Baseline specific stuff
1085 mozilla::Maybe<AutoStubFrame> stubFrame_;
1086 mozilla::Maybe<AutoScratchRegisterMaybeOutput> scratch_;
1087
1088 // Ion specific stuff
1089 mozilla::Maybe<AutoSaveLiveRegisters> save_;
1090
1091 void storeResult(JSValueType returnType);
1092
1093 template <typename Fn>
1094 void storeResult();
1095
1096 void leaveBaselineStubFrame();
1097
1098 public:
1099 AutoCallVM(MacroAssembler& masm, CacheIRCompiler* compiler,
1100 CacheRegisterAllocator& allocator);
1101
1102 void prepare();
1103
1104 template <typename Fn, Fn fn>
1105 void call() {
1106 compiler_->callVM<Fn, fn>(masm_);
1107 storeResult<Fn>();
1108 leaveBaselineStubFrame();
1109 }
1110
1111 template <typename Fn, Fn fn>
1112 void callNoResult() {
1113 compiler_->callVM<Fn, fn>(masm_);
1114 leaveBaselineStubFrame();
1115 }
1116
1117 ValueOperand outputValueReg() const { return output_->valueReg(); }
1118 };
1119
1120 // RAII class to allocate FloatReg0 as a scratch register and release it when
1121 // we're done with it. The previous contents of FloatReg0 may be spilled on the
1122 // stack and, if necessary, are restored when the destructor runs.
1123 //
1124 // When FailurePath is passed to the constructor, FailurePath::label() must not
1125 // be used during the life time of the AutoScratchFloatRegister. Instead use
1126 // AutoScratchFloatRegister::failure().
1127 class MOZ_RAII AutoScratchFloatRegister {
1128 Label failurePopReg_{};
1129 CacheIRCompiler* compiler_;
1130 FailurePath* failure_;
1131
1132 AutoScratchFloatRegister(const AutoScratchFloatRegister&) = delete;
1133 void operator=(const AutoScratchFloatRegister&) = delete;
1134
1135 public:
1136 explicit AutoScratchFloatRegister(CacheIRCompiler* compiler)
1137 : AutoScratchFloatRegister(compiler, nullptr) {}
1138
1139 AutoScratchFloatRegister(CacheIRCompiler* compiler, FailurePath* failure);
1140
1141 ~AutoScratchFloatRegister();
1142
1143 Label* failure();
1144
1145 FloatRegister get() const { return FloatReg0; }
1146 operator FloatRegister() const { return FloatReg0; }
1147 };
1148
1149 // This class can be used to assert a certain FloatRegister is available. In
1150 // Baseline mode, all float registers are available. In Ion mode, only the
1151 // registers added as fixed temps in LIRGenerator are available.
1152 class MOZ_RAII AutoAvailableFloatRegister {
1153 FloatRegister reg_;
1154
1155 AutoAvailableFloatRegister(const AutoAvailableFloatRegister&) = delete;
1156 void operator=(const AutoAvailableFloatRegister&) = delete;
1157
1158 public:
1159 explicit AutoAvailableFloatRegister(CacheIRCompiler& compiler,
1160 FloatRegister reg)
1161 : reg_(reg) {
1162 #ifdef DEBUG
1163 compiler.assertFloatRegisterAvailable(reg);
1164 #endif
1165 }
1166
1167 FloatRegister get() const { return reg_; }
1168 operator FloatRegister() const { return reg_; }
1169 };
1170
1171 // See the 'Sharing Baseline stub code' comment in CacheIR.h for a description
1172 // of this class.
1173 class CacheIRStubInfo {
1174 // These fields don't require 8 bits, but GCC complains if these fields are
1175 // smaller than the size of the enums.
1176 CacheKind kind_ : 8;
1177 ICStubEngine engine_ : 8;
1178 bool makesGCCalls_ : 1;
1179 uint8_t stubDataOffset_;
1180
1181 const uint8_t* code_;
1182 uint32_t length_;
1183 const uint8_t* fieldTypes_;
1184
1185 CacheIRStubInfo(CacheKind kind, ICStubEngine engine, bool makesGCCalls,
1186 uint32_t stubDataOffset, const uint8_t* code,
1187 uint32_t codeLength, const uint8_t* fieldTypes)
1188 : kind_(kind),
1189 engine_(engine),
1190 makesGCCalls_(makesGCCalls),
1191 stubDataOffset_(stubDataOffset),
1192 code_(code),
1193 length_(codeLength),
1194 fieldTypes_(fieldTypes) {
1195 MOZ_ASSERT(kind_ == kind, "Kind must fit in bitfield");
1196 MOZ_ASSERT(engine_ == engine, "Engine must fit in bitfield");
1197 MOZ_ASSERT(stubDataOffset_ == stubDataOffset,
1198 "stubDataOffset must fit in uint8_t");
1199 }
1200
1201 CacheIRStubInfo(const CacheIRStubInfo&) = delete;
1202 CacheIRStubInfo& operator=(const CacheIRStubInfo&) = delete;
1203
1204 public:
1205 CacheKind kind() const { return kind_; }
1206 ICStubEngine engine() const { return engine_; }
1207 bool makesGCCalls() const { return makesGCCalls_; }
1208
1209 const uint8_t* code() const { return code_; }
1210 uint32_t codeLength() const { return length_; }
1211 uint32_t stubDataOffset() const { return stubDataOffset_; }
1212
1213 size_t stubDataSize() const;
1214
1215 StubField::Type fieldType(uint32_t i) const {
1216 return (StubField::Type)fieldTypes_[i];
1217 }
1218
1219 static CacheIRStubInfo* New(CacheKind kind, ICStubEngine engine,
1220 bool canMakeCalls, uint32_t stubDataOffset,
1221 const CacheIRWriter& writer);
1222
1223 template <class Stub, class T>
1224 js::GCPtr<T>& getStubField(Stub* stub, uint32_t offset) const;
1225
1226 template <class T>
1227 js::GCPtr<T>& getStubField(ICStub* stub, uint32_t offset) const {
1228 return getStubField<ICStub, T>(stub, offset);
1229 }
1230
1231 uintptr_t getStubRawWord(const uint8_t* stubData, uint32_t offset) const;
1232 uintptr_t getStubRawWord(ICStub* stub, uint32_t offset) const;
1233
1234 int64_t getStubRawInt64(const uint8_t* stubData, uint32_t offset) const;
1235 int64_t getStubRawInt64(ICStub* stub, uint32_t offset) const;
1236
1237 void replaceStubRawWord(uint8_t* stubData, uint32_t offset, uintptr_t oldWord,
1238 uintptr_t newWord) const;
1239 };
1240
1241 template <typename T>
1242 void TraceCacheIRStub(JSTracer* trc, T* stub, const CacheIRStubInfo* stubInfo);
1243
1244 void LoadTypedThingData(MacroAssembler& masm, TypedThingLayout layout,
1245 Register obj, Register result);
1246
1247 void LoadTypedThingLength(MacroAssembler& masm, TypedThingLayout layout,
1248 Register obj, Register result);
1249
1250 } // namespace jit
1251 } // namespace js
1252
1253 #endif /* jit_CacheIRCompiler_h */