git://git.webkit.org / WebKit-https.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 225c93f) | patch
Add testing tool to lie to the DFG about profiles
authorkeith_miller@apple.com <keith_miller@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Tue, 15 Aug 2017 04:18:56 +0000 (04:18 +0000)
committerkeith_miller@apple.com <keith_miller@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Tue, 15 Aug 2017 04:18:56 +0000 (04:18 +0000)
commit799b420434b51b05bbd904e7a03bafee97bbd419
treedc1ccf80476009b814e53be75159a6392128db8atree | snapshot
parent225c93f39880a5fcad8640b304b749077861e9c6commit | diff
Add testing tool to lie to the DFG about profiles
https://bugs.webkit.org/show_bug.cgi?id=175487

Reviewed by Saam Barati.

JSTests:

* stress/compare-eq-incomplete-profile.js: Added.
(const.test.createBuiltin):

Source/JavaScriptCore:

This patch adds a new bytecode identity_with_profile that lets
us lie to the DFG about what profiles it has seen as the input to
another bytecode. Previously, there was no reliable way to force
a given profile when we tired up.

* bytecode/BytecodeDumper.cpp:
(JSC::BytecodeDumper<Block>::dumpBytecode):
* bytecode/BytecodeIntrinsicRegistry.h:
* bytecode/BytecodeList.json:
* bytecode/BytecodeUseDef.h:
(JSC::computeUsesForBytecodeOffset):
(JSC::computeDefsForBytecodeOffset):
* bytecode/SpeculatedType.cpp:
(JSC::speculationFromString):
* bytecode/SpeculatedType.h:
* bytecompiler/BytecodeGenerator.cpp:
(JSC::BytecodeGenerator::emitIdWithProfile):
* bytecompiler/BytecodeGenerator.h:
* bytecompiler/NodesCodegen.cpp:
(JSC::BytecodeIntrinsicNode::emit_intrinsic_idWithProfile):
* dfg/DFGAbstractInterpreterInlines.h:
(JSC::DFG::AbstractInterpreter<AbstractStateType>::executeEffects):
* dfg/DFGByteCodeParser.cpp:
(JSC::DFG::ByteCodeParser::parseBlock):
* dfg/DFGCapabilities.cpp:
(JSC::DFG::capabilityLevel):
* dfg/DFGClobberize.h:
(JSC::DFG::clobberize):
* dfg/DFGDoesGC.cpp:
(JSC::DFG::doesGC):
* dfg/DFGFixupPhase.cpp:
(JSC::DFG::FixupPhase::fixupNode):
* dfg/DFGMayExit.cpp:
* dfg/DFGNode.h:
(JSC::DFG::Node::getForcedPrediction):
* dfg/DFGNodeType.h:
* dfg/DFGPredictionPropagationPhase.cpp:
* dfg/DFGSafeToExecute.h:
(JSC::DFG::safeToExecute):
* dfg/DFGSpeculativeJIT32_64.cpp:
(JSC::DFG::SpeculativeJIT::compile):
* dfg/DFGSpeculativeJIT64.cpp:
(JSC::DFG::SpeculativeJIT::compile):
* dfg/DFGValidate.cpp:
* jit/JIT.cpp:
(JSC::JIT::privateCompileMainPass):
* jit/JIT.h:
* jit/JITOpcodes.cpp:
(JSC::JIT::emit_op_identity_with_profile):
* jit/JITOpcodes32_64.cpp:
(JSC::JIT::emit_op_identity_with_profile):
* llint/LowLevelInterpreter.asm:

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@220735 268f45cc-cd09-0410-ab3c-d52691b4dbfc
31 files changed:
JSTests/ChangeLog diff | blob | history
JSTests/stress/compare-eq-incomplete-profile.js [new file with mode: 0644] blob
Source/JavaScriptCore/ChangeLog diff | blob | history
Source/JavaScriptCore/bytecode/BytecodeDumper.cpp diff | blob | history
Source/JavaScriptCore/bytecode/BytecodeIntrinsicRegistry.h diff | blob | history
Source/JavaScriptCore/bytecode/BytecodeList.json diff | blob | history
Source/JavaScriptCore/bytecode/BytecodeUseDef.h diff | blob | history
Source/JavaScriptCore/bytecode/SpeculatedType.cpp diff | blob | history
Source/JavaScriptCore/bytecode/SpeculatedType.h diff | blob | history
Source/JavaScriptCore/bytecompiler/BytecodeGenerator.cpp diff | blob | history
Source/JavaScriptCore/bytecompiler/BytecodeGenerator.h diff | blob | history
Source/JavaScriptCore/bytecompiler/NodesCodegen.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGAbstractInterpreterInlines.h diff | blob | history
Source/JavaScriptCore/dfg/DFGByteCodeParser.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGCapabilities.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGClobberize.h diff | blob | history
Source/JavaScriptCore/dfg/DFGDoesGC.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGFixupPhase.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGMayExit.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGNode.h diff | blob | history
Source/JavaScriptCore/dfg/DFGNodeType.h diff | blob | history
Source/JavaScriptCore/dfg/DFGPredictionPropagationPhase.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGSafeToExecute.h diff | blob | history
Source/JavaScriptCore/dfg/DFGSpeculativeJIT32_64.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGSpeculativeJIT64.cpp diff | blob | history
Source/JavaScriptCore/dfg/DFGValidate.cpp diff | blob | history
Source/JavaScriptCore/jit/JIT.cpp diff | blob | history
Source/JavaScriptCore/jit/JIT.h diff | blob | history
Source/JavaScriptCore/jit/JITOpcodes.cpp diff | blob | history
Source/JavaScriptCore/jit/JITOpcodes32_64.cpp diff | blob | history
Source/JavaScriptCore/llint/LowLevelInterpreter.asm diff | blob | history
Mirror of the WebKit open source project from svn.webkit.org.