Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / chromium_org / v8 / a74f0daeb278665869b4b6a3bc2739e88fed93b1 / . / src / ic-arm.cc
blob: dc352561e932f50f16df66fa594c4cc2b4c0c458 [file] [log] [blame]
ager@chromium.org9258b6b2008-09-11 09:11:10 +0000[diff] [blame]1// Copyright 2006-2008 the V8 project authors. All rights reserved.
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]2// Redistribution and use in source and binary forms, with or without
3// modification, are permitted provided that the following conditions are
4// met:
5//
6// * Redistributions of source code must retain the above copyright
7// notice, this list of conditions and the following disclaimer.
8// * Redistributions in binary form must reproduce the above
9// copyright notice, this list of conditions and the following
10// disclaimer in the documentation and/or other materials provided
11// with the distribution.
12// * Neither the name of Google Inc. nor the names of its
13// contributors may be used to endorse or promote products derived
14// from this software without specific prior written permission.
15//
16// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
17// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
18// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
19// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
20// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
21// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
22// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
23// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
24// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
25// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
26// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27
28#include "v8.h"
29
30#include "codegen-inl.h"
31#include "ic-inl.h"
32#include "runtime.h"
33#include "stub-cache.h"
34
35namespace v8 { namespace internal {
36
37
38// ----------------------------------------------------------------------------
39// Static IC stub generators.
40//
41
42#define __ masm->
43
44
45// Helper function used from LoadIC/CallIC GenerateNormal.
46static void GenerateDictionaryLoad(MacroAssembler* masm,
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]47 Label* miss,
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]48 Register t0,
49 Register t1) {
50 // Register use:
51 //
52 // t0 - used to hold the property dictionary.
53 //
54 // t1 - initially the receiver
55 // - used for the index into the property dictionary
56 // - holds the result on exit.
57 //
58 // r3 - used as temporary and to hold the capacity of the property
59 // dictionary.
60 //
61 // r2 - holds the name of the property and is unchanges.
62
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]63 Label done;
64
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]65 // Check for the absence of an interceptor.
66 // Load the map into t0.
67 __ ldr(t0, FieldMemOperand(t1, JSObject::kMapOffset));
68 // Test the has_named_interceptor bit in the map.
69 __ ldr(t0, FieldMemOperand(t1, Map::kInstanceAttributesOffset));
70 __ tst(t0, Operand(1 << (Map::kHasNamedInterceptor + (3 * 8))));
71 // Jump to miss if the interceptor bit is set.
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]72 __ b(ne, miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]73
74
75 // Check that the properties array is a dictionary.
76 __ ldr(t0, FieldMemOperand(t1, JSObject::kPropertiesOffset));
77 __ ldr(r3, FieldMemOperand(t0, HeapObject::kMapOffset));
78 __ cmp(r3, Operand(Factory::hash_table_map()));
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]79 __ b(ne, miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]80
81 // Compute the capacity mask.
82 const int kCapacityOffset =
83 Array::kHeaderSize + Dictionary::kCapacityIndex * kPointerSize;
84 __ ldr(r3, FieldMemOperand(t0, kCapacityOffset));
85 __ mov(r3, Operand(r3, ASR, kSmiTagSize)); // convert smi to int
86 __ sub(r3, r3, Operand(1));
87
88 const int kElementsStartOffset =
89 Array::kHeaderSize + Dictionary::kElementsStartIndex * kPointerSize;
90
91 // Generate an unrolled loop that performs a few probes before
92 // giving up. Measurements done on Gmail indicate that 2 probes
93 // cover ~93% of loads from dictionaries.
94 static const int kProbes = 4;
95 for (int i = 0; i < kProbes; i++) {
96 // Compute the masked index: (hash + i + i * i) & mask.
97 __ ldr(t1, FieldMemOperand(r2, String::kLengthOffset));
ager@chromium.org7c537e22008-10-16 08:43:32 +0000[diff] [blame]98 __ mov(t1, Operand(t1, LSR, String::kHashShift));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]99 if (i > 0) __ add(t1, t1, Operand(Dictionary::GetProbeOffset(i)));
100 __ and_(t1, t1, Operand(r3));
101
102 // Scale the index by multiplying by the element size.
103 ASSERT(Dictionary::kElementSize == 3);
104 __ add(t1, t1, Operand(t1, LSL, 1)); // t1 = t1 * 3
105
106 // Check if the key is identical to the name.
107 __ add(t1, t0, Operand(t1, LSL, 2));
108 __ ldr(ip, FieldMemOperand(t1, kElementsStartOffset));
109 __ cmp(r2, Operand(ip));
110 if (i != kProbes - 1) {
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]111 __ b(eq, &done);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]112 } else {
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]113 __ b(ne, miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]114 }
115 }
116
117 // Check that the value is a normal property.
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]118 __ bind(&done); // t1 == t0 + 4*index
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]119 __ ldr(r3, FieldMemOperand(t1, kElementsStartOffset + 2 * kPointerSize));
120 __ tst(r3, Operand(PropertyDetails::TypeField::mask() << kSmiTagSize));
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]121 __ b(ne, miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]122
123 // Get the value at the masked, scaled index and return.
124 __ ldr(t1, FieldMemOperand(t1, kElementsStartOffset + 1 * kPointerSize));
125}
126
127
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]128// Helper function used to check that a value is either not a function
129// or is loaded if it is a function.
130static void GenerateCheckNonFunctionOrLoaded(MacroAssembler* masm,
131 Label* miss,
132 Register value,
133 Register scratch) {
134 Label done;
135 // Check if the value is a Smi.
136 __ tst(value, Operand(kSmiTagMask));
137 __ b(eq, &done);
138 // Check if the value is a function.
139 __ ldr(scratch, FieldMemOperand(value, HeapObject::kMapOffset));
140 __ ldrb(scratch, FieldMemOperand(scratch, Map::kInstanceTypeOffset));
141 __ cmp(scratch, Operand(JS_FUNCTION_TYPE));
142 __ b(ne, &done);
143 // Check if the function has been loaded.
144 __ ldr(scratch,
145 FieldMemOperand(value, JSFunction::kSharedFunctionInfoOffset));
146 __ ldr(scratch,
147 FieldMemOperand(scratch, SharedFunctionInfo::kLazyLoadDataOffset));
148 __ cmp(scratch, Operand(Factory::undefined_value()));
149 __ b(ne, miss);
150 __ bind(&done);
151}
152
153
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]154void LoadIC::GenerateArrayLength(MacroAssembler* masm) {
155 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]156 // -- r2 : name
157 // -- lr : return address
158 // -- [sp] : receiver
159 // -----------------------------------
160
161 Label miss;
162
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]163 __ ldr(r0, MemOperand(sp, 0));
164
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]165 StubCompiler::GenerateLoadArrayLength(masm, r0, r3, &miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]166 __ bind(&miss);
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]167 StubCompiler::GenerateLoadMiss(masm, Code::LOAD_IC);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]168}
169
170
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]171void LoadIC::GenerateStringLength(MacroAssembler* masm) {
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]172 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]173 // -- r2 : name
174 // -- lr : return address
175 // -- [sp] : receiver
176 // -----------------------------------
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]177 Label miss;
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]178
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]179 __ ldr(r0, MemOperand(sp, 0));
180
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]181 StubCompiler::GenerateLoadStringLength2(masm, r0, r1, r3, &miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]182 // Cache miss: Jump to runtime.
183 __ bind(&miss);
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]184 StubCompiler::GenerateLoadMiss(masm, Code::LOAD_IC);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]185}
186
187
188void LoadIC::GenerateFunctionPrototype(MacroAssembler* masm) {
189 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]190 // -- r2 : name
191 // -- lr : return address
192 // -- [sp] : receiver
193 // -----------------------------------
194
195 // NOTE: Right now, this code always misses on ARM which is
196 // sub-optimal. We should port the fast case code from IA-32.
197
198 Handle<Code> ic(Builtins::builtin(Builtins::LoadIC_Miss));
ager@chromium.org236ad962008-09-25 09:45:57 +0000[diff] [blame]199 __ Jump(ic, RelocInfo::CODE_TARGET);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]200}
201
202
203// Defined in ic.cc.
204Object* CallIC_Miss(Arguments args);
205
206void CallIC::GenerateMegamorphic(MacroAssembler* masm, int argc) {
207 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]208 // -- lr: return address
209 // -----------------------------------
210 Label number, non_number, non_string, boolean, probe, miss;
211
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]212 // Get the receiver of the function from the stack into r1.
213 __ ldr(r1, MemOperand(sp, argc * kPointerSize));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]214 // Get the name of the function from the stack; 1 ~ receiver.
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]215 __ ldr(r2, MemOperand(sp, (argc + 1) * kPointerSize));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]216
217 // Probe the stub cache.
218 Code::Flags flags =
219 Code::ComputeFlags(Code::CALL_IC, MONOMORPHIC, NORMAL, argc);
220 StubCache::GenerateProbe(masm, flags, r1, r2, r3);
221
222 // If the stub cache probing failed, the receiver might be a value.
223 // For value objects, we use the map of the prototype objects for
224 // the corresponding JSValue for the cache and that is what we need
225 // to probe.
226 //
227 // Check for number.
228 __ tst(r1, Operand(kSmiTagMask));
229 __ b(eq, &number);
230 __ ldr(r3, FieldMemOperand(r1, HeapObject::kMapOffset));
231 __ ldrb(r3, FieldMemOperand(r3, Map::kInstanceTypeOffset));
232 __ cmp(r3, Operand(HEAP_NUMBER_TYPE));
233 __ b(ne, &non_number);
234 __ bind(&number);
235 StubCompiler::GenerateLoadGlobalFunctionPrototype(
236 masm, Context::NUMBER_FUNCTION_INDEX, r1);
237 __ b(&probe);
238
239 // Check for string.
240 __ bind(&non_number);
241 __ cmp(r3, Operand(FIRST_NONSTRING_TYPE));
242 __ b(hs, &non_string);
243 StubCompiler::GenerateLoadGlobalFunctionPrototype(
244 masm, Context::STRING_FUNCTION_INDEX, r1);
245 __ b(&probe);
246
247 // Check for boolean.
248 __ bind(&non_string);
249 __ cmp(r1, Operand(Factory::true_value()));
250 __ b(eq, &boolean);
251 __ cmp(r1, Operand(Factory::false_value()));
252 __ b(ne, &miss);
253 __ bind(&boolean);
254 StubCompiler::GenerateLoadGlobalFunctionPrototype(
255 masm, Context::BOOLEAN_FUNCTION_INDEX, r1);
256
257 // Probe the stub cache for the value object.
258 __ bind(&probe);
259 StubCache::GenerateProbe(masm, flags, r1, r2, r3);
260
261 // Cache miss: Jump to runtime.
262 __ bind(&miss);
263 Generate(masm, argc, ExternalReference(IC_Utility(kCallIC_Miss)));
264}
265
266
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]267static void GenerateNormalHelper(MacroAssembler* masm,
268 int argc,
269 bool is_global_object,
270 Label* miss) {
271 // Search dictionary - put result in register r1.
272 GenerateDictionaryLoad(masm, miss, r0, r1);
273
274 // Check that the value isn't a smi.
275 __ tst(r1, Operand(kSmiTagMask));
276 __ b(eq, miss);
277
278 // Check that the value is a JSFunction.
279 __ ldr(r0, FieldMemOperand(r1, HeapObject::kMapOffset));
280 __ ldrb(r0, FieldMemOperand(r0, Map::kInstanceTypeOffset));
281 __ cmp(r0, Operand(JS_FUNCTION_TYPE));
282 __ b(ne, miss);
283
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]284 // Check that the function has been loaded.
285 __ ldr(r0, FieldMemOperand(r1, JSFunction::kSharedFunctionInfoOffset));
286 __ ldr(r0, FieldMemOperand(r0, SharedFunctionInfo::kLazyLoadDataOffset));
287 __ cmp(r0, Operand(Factory::undefined_value()));
288 __ b(ne, miss);
289
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]290 // Patch the receiver with the global proxy if necessary.
291 if (is_global_object) {
292 __ ldr(r2, MemOperand(sp, argc * kPointerSize));
293 __ ldr(r2, FieldMemOperand(r2, GlobalObject::kGlobalReceiverOffset));
294 __ str(r2, MemOperand(sp, argc * kPointerSize));
295 }
296
297 // Invoke the function.
298 ParameterCount actual(argc);
299 __ InvokeFunction(r1, actual, JUMP_FUNCTION);
300}
301
302
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]303void CallIC::GenerateNormal(MacroAssembler* masm, int argc) {
304 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]305 // -- lr: return address
306 // -----------------------------------
307
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]308 Label miss, global_object, non_global_object;
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]309
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]310 // Get the receiver of the function from the stack into r1.
311 __ ldr(r1, MemOperand(sp, argc * kPointerSize));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]312 // Get the name of the function from the stack; 1 ~ receiver.
mads.s.ager@gmail.com769cc962008-08-06 10:02:49 +0000[diff] [blame]313 __ ldr(r2, MemOperand(sp, (argc + 1) * kPointerSize));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]314
315 // Check that the receiver isn't a smi.
316 __ tst(r1, Operand(kSmiTagMask));
317 __ b(eq, &miss);
318
319 // Check that the receiver is a valid JS object.
320 __ ldr(r0, FieldMemOperand(r1, HeapObject::kMapOffset));
321 __ ldrb(r0, FieldMemOperand(r0, Map::kInstanceTypeOffset));
322 __ cmp(r0, Operand(FIRST_JS_OBJECT_TYPE));
323 __ b(lt, &miss);
324
325 // If this assert fails, we have to check upper bound too.
326 ASSERT(LAST_TYPE == JS_FUNCTION_TYPE);
327
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]328 // Check for access to global object.
329 __ cmp(r0, Operand(JS_GLOBAL_OBJECT_TYPE));
330 __ b(eq, &global_object);
331 __ cmp(r0, Operand(JS_BUILTINS_OBJECT_TYPE));
332 __ b(ne, &non_global_object);
333
334 // Accessing global object: Load and invoke.
335 __ bind(&global_object);
336 GenerateNormalHelper(masm, argc, true, &miss);
337
338 // Accessing non-global object: Check for access to global proxy.
339 Label global_proxy, invoke;
340 __ bind(&non_global_object);
kasperl@chromium.org5a8ca6c2008-10-23 13:57:19 +0000[diff] [blame]341 __ cmp(r0, Operand(JS_GLOBAL_PROXY_TYPE));
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]342 __ b(eq, &global_proxy);
343 __ bind(&invoke);
344 GenerateNormalHelper(masm, argc, false, &miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]345
346 // Global object access: Check access rights.
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]347 __ bind(&global_proxy);
kasperl@chromium.org5a8ca6c2008-10-23 13:57:19 +0000[diff] [blame]348 __ CheckAccessGlobalProxy(r1, r0, &miss);
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]349 __ b(&invoke);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]350
mads.s.ager@gmail.com769cc962008-08-06 10:02:49 +0000[diff] [blame]351 // Cache miss: Jump to runtime.
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]352 __ bind(&miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]353 Generate(masm, argc, ExternalReference(IC_Utility(kCallIC_Miss)));
354}
355
356
357void CallIC::Generate(MacroAssembler* masm,
358 int argc,
359 const ExternalReference& f) {
360 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]361 // -- lr: return address
362 // -----------------------------------
363
kasperl@chromium.orgb9123622008-09-17 14:05:56 +0000[diff] [blame]364 // Get the receiver of the function from the stack.
365 __ ldr(r2, MemOperand(sp, argc * kPointerSize));
366 // Get the name of the function to call from the stack.
367 __ ldr(r1, MemOperand(sp, (argc + 1) * kPointerSize));
368
369 __ EnterInternalFrame();
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]370
371 // Push the receiver and the name of the function.
kasperl@chromium.orgb9123622008-09-17 14:05:56 +0000[diff] [blame]372 __ stm(db_w, sp, r1.bit() | r2.bit());
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]373
374 // Call the entry.
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]375 __ mov(r0, Operand(2));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]376 __ mov(r1, Operand(f));
377
378 CEntryStub stub;
379 __ CallStub(&stub);
380
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]381 // Move result to r1 and leave the internal frame.
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]382 __ mov(r1, Operand(r0));
ager@chromium.org236ad962008-09-25 09:45:57 +0000[diff] [blame]383 __ LeaveInternalFrame();
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]384
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]385 // Check if the receiver is a global object of some sort.
386 Label invoke, global;
387 __ ldr(r2, MemOperand(sp, argc * kPointerSize)); // receiver
388 __ tst(r2, Operand(kSmiTagMask));
389 __ b(eq, &invoke);
390 __ ldr(r3, FieldMemOperand(r2, HeapObject::kMapOffset));
391 __ ldrb(r3, FieldMemOperand(r3, Map::kInstanceTypeOffset));
392 __ cmp(r3, Operand(JS_GLOBAL_OBJECT_TYPE));
393 __ b(eq, &global);
394 __ cmp(r3, Operand(JS_BUILTINS_OBJECT_TYPE));
395 __ b(ne, &invoke);
396
397 // Patch the receiver on the stack.
398 __ bind(&global);
399 __ ldr(r2, FieldMemOperand(r2, GlobalObject::kGlobalReceiverOffset));
400 __ str(r2, MemOperand(sp, argc * kPointerSize));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]401
mads.s.ager@gmail.com769cc962008-08-06 10:02:49 +0000[diff] [blame]402 // Invoke the function.
403 ParameterCount actual(argc);
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]404 __ bind(&invoke);
mads.s.ager@gmail.com769cc962008-08-06 10:02:49 +0000[diff] [blame]405 __ InvokeFunction(r1, actual, JUMP_FUNCTION);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]406}
407
408
409// Defined in ic.cc.
410Object* LoadIC_Miss(Arguments args);
411
412void LoadIC::GenerateMegamorphic(MacroAssembler* masm) {
413 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]414 // -- r2 : name
415 // -- lr : return address
416 // -- [sp] : receiver
417 // -----------------------------------
418
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]419 __ ldr(r0, MemOperand(sp, 0));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]420 // Probe the stub cache.
421 Code::Flags flags = Code::ComputeFlags(Code::LOAD_IC, MONOMORPHIC);
422 StubCache::GenerateProbe(masm, flags, r0, r2, r3);
423
424 // Cache miss: Jump to runtime.
425 Generate(masm, ExternalReference(IC_Utility(kLoadIC_Miss)));
426}
427
428
429void LoadIC::GenerateNormal(MacroAssembler* masm) {
430 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]431 // -- r2 : name
432 // -- lr : return address
433 // -- [sp] : receiver
434 // -----------------------------------
435
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]436 Label miss, probe, global;
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]437
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]438 __ ldr(r0, MemOperand(sp, 0));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]439 // Check that the receiver isn't a smi.
440 __ tst(r0, Operand(kSmiTagMask));
441 __ b(eq, &miss);
442
443 // Check that the receiver is a valid JS object.
444 __ ldr(r1, FieldMemOperand(r0, HeapObject::kMapOffset));
445 __ ldrb(r1, FieldMemOperand(r1, Map::kInstanceTypeOffset));
446 __ cmp(r1, Operand(FIRST_JS_OBJECT_TYPE));
447 __ b(lt, &miss);
448 // If this assert fails, we have to check upper bound too.
449 ASSERT(LAST_TYPE == JS_FUNCTION_TYPE);
450
451 // Check for access to global object (unlikely).
kasperl@chromium.org5a8ca6c2008-10-23 13:57:19 +0000[diff] [blame]452 __ cmp(r1, Operand(JS_GLOBAL_PROXY_TYPE));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]453 __ b(eq, &global);
454
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]455 __ bind(&probe);
kasperl@chromium.org9fe21c62008-10-28 08:53:51 +0000[diff] [blame]456 GenerateDictionaryLoad(masm, &miss, r1, r0);
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]457 GenerateCheckNonFunctionOrLoaded(masm, &miss, r0, r1);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]458 __ Ret();
459
460 // Global object access: Check access rights.
461 __ bind(&global);
kasperl@chromium.org5a8ca6c2008-10-23 13:57:19 +0000[diff] [blame]462 __ CheckAccessGlobalProxy(r0, r1, &miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]463 __ b(&probe);
464
465 // Cache miss: Restore receiver from stack and jump to runtime.
466 __ bind(&miss);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]467 Generate(masm, ExternalReference(IC_Utility(kLoadIC_Miss)));
468}
469
470
471void LoadIC::GenerateMiss(MacroAssembler* masm) {
472 Generate(masm, ExternalReference(IC_Utility(kLoadIC_Miss)));
473}
474
475
476void LoadIC::Generate(MacroAssembler* masm, const ExternalReference& f) {
477 // ----------- S t a t e -------------
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]478 // -- r2 : name
479 // -- lr : return address
480 // -- [sp] : receiver
481 // -----------------------------------
482
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]483 __ ldr(r3, MemOperand(sp, 0));
484 __ stm(db_w, sp, r2.bit() | r3.bit());
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]485
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]486 // Perform tail call to the entry.
487 __ TailCallRuntime(f, 2);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]488}
489
490
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]491Object* KeyedLoadIC_Miss(Arguments args);
492
493
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]494void KeyedLoadIC::GenerateMiss(MacroAssembler* masm) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]495 Generate(masm, ExternalReference(IC_Utility(kKeyedLoadIC_Miss)));
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]496}
497
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]498
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]499void KeyedLoadIC::Generate(MacroAssembler* masm, const ExternalReference& f) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]500 // ---------- S t a t e --------------
501 // -- lr : return address
502 // -- sp[0] : key
503 // -- sp[4] : receiver
504 __ ldm(ia, sp, r2.bit() | r3.bit());
505 __ stm(db_w, sp, r2.bit() | r3.bit());
506
507 __ TailCallRuntime(f, 2);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]508}
509
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]510
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]511void KeyedLoadIC::GenerateGeneric(MacroAssembler* masm) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]512 // ---------- S t a t e --------------
513 // -- lr : return address
514 // -- sp[0] : key
515 // -- sp[4] : receiver
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]516 Label slow, fast;
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]517
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]518 // Get the key and receiver object from the stack.
519 __ ldm(ia, sp, r0.bit() | r1.bit());
520 // Check that the key is a smi.
521 __ tst(r0, Operand(kSmiTagMask));
522 __ b(ne, &slow);
523 __ mov(r0, Operand(r0, ASR, kSmiTagSize));
524 // Check that the object isn't a smi.
525 __ tst(r1, Operand(kSmiTagMask));
526 __ b(eq, &slow);
527
528 // Check that the object is some kind of JS object EXCEPT JS Value type.
529 // In the case that the object is a value-wrapper object,
530 // we enter the runtime system to make sure that indexing into string
531 // objects work as intended.
532 ASSERT(JS_OBJECT_TYPE > JS_VALUE_TYPE);
533 __ ldr(r2, FieldMemOperand(r1, HeapObject::kMapOffset));
534 __ ldrb(r2, FieldMemOperand(r2, Map::kInstanceTypeOffset));
535 __ cmp(r2, Operand(JS_OBJECT_TYPE));
536 __ b(lt, &slow);
537
538 // Get the elements array of the object.
539 __ ldr(r1, FieldMemOperand(r1, JSObject::kElementsOffset));
540 // Check that the object is in fast mode (not dictionary).
541 __ ldr(r3, FieldMemOperand(r1, HeapObject::kMapOffset));
542 __ cmp(r3, Operand(Factory::hash_table_map()));
543 __ b(eq, &slow);
544 // Check that the key (index) is within bounds.
545 __ ldr(r3, FieldMemOperand(r1, Array::kLengthOffset));
546 __ cmp(r0, Operand(r3));
547 __ b(lo, &fast);
548
549 // Slow case: Push extra copies of the arguments (2).
550 __ bind(&slow);
551 __ IncrementCounter(&Counters::keyed_load_generic_slow, 1, r0, r1);
552 __ ldm(ia, sp, r0.bit() | r1.bit());
553 __ stm(db_w, sp, r0.bit() | r1.bit());
554 // Do tail-call to runtime routine.
555 __ TailCallRuntime(ExternalReference(Runtime::kGetProperty), 2);
556
557 // Fast case: Do the load.
558 __ bind(&fast);
559 __ add(r3, r1, Operand(Array::kHeaderSize - kHeapObjectTag));
560 __ ldr(r0, MemOperand(r3, r0, LSL, kPointerSizeLog2));
561 __ cmp(r0, Operand(Factory::the_hole_value()));
562 // In case the loaded value is the_hole we have to consult GetProperty
563 // to ensure the prototype chain is searched.
564 __ b(eq, &slow);
565
566 __ Ret();
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]567}
568
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]569
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]570void KeyedStoreIC::Generate(MacroAssembler* masm,
571 const ExternalReference& f) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]572 // ---------- S t a t e --------------
573 // -- r0 : value
574 // -- lr : return address
575 // -- sp[0] : key
576 // -- sp[1] : receiver
577
578 __ ldm(ia, sp, r2.bit() | r3.bit());
579 __ stm(db_w, sp, r0.bit() | r2.bit() | r3.bit());
580
581 __ TailCallRuntime(f, 3);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]582}
583
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]584
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]585void KeyedStoreIC::GenerateGeneric(MacroAssembler* masm) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]586 // ---------- S t a t e --------------
587 // -- r0 : value
588 // -- lr : return address
589 // -- sp[0] : key
590 // -- sp[1] : receiver
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]591 Label slow, fast, array, extra, exit;
592 // Get the key and the object from the stack.
593 __ ldm(ia, sp, r1.bit() | r3.bit()); // r1 = key, r3 = receiver
594 // Check that the key is a smi.
595 __ tst(r1, Operand(kSmiTagMask));
596 __ b(ne, &slow);
597 // Check that the object isn't a smi.
598 __ tst(r3, Operand(kSmiTagMask));
599 __ b(eq, &slow);
600 // Get the type of the object from its map.
601 __ ldr(r2, FieldMemOperand(r3, HeapObject::kMapOffset));
602 __ ldrb(r2, FieldMemOperand(r2, Map::kInstanceTypeOffset));
603 // Check if the object is a JS array or not.
604 __ cmp(r2, Operand(JS_ARRAY_TYPE));
605 // r1 == key.
606 __ b(eq, &array);
607 // Check that the object is some kind of JS object.
608 __ cmp(r2, Operand(FIRST_JS_OBJECT_TYPE));
609 __ b(lt, &slow);
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]610
ager@chromium.orga74f0da2008-12-03 16:05:52 +0000[diff] [blame^]611
612 // Object case: Check key against length in the elements array.
613 __ ldr(r3, FieldMemOperand(r3, JSObject::kElementsOffset));
614 // Check that the object is in fast mode (not dictionary).
615 __ ldr(r2, FieldMemOperand(r3, HeapObject::kMapOffset));
616 __ cmp(r2, Operand(Factory::hash_table_map()));
617 __ b(eq, &slow);
618 // Untag the key (for checking against untagged length in the fixed array).
619 __ mov(r1, Operand(r1, ASR, kSmiTagSize));
620 // Compute address to store into and check array bounds.
621 __ add(r2, r3, Operand(Array::kHeaderSize - kHeapObjectTag));
622 __ add(r2, r2, Operand(r1, LSL, kPointerSizeLog2));
623 __ ldr(ip, FieldMemOperand(r3, Array::kLengthOffset));
624 __ cmp(r1, Operand(ip));
625 __ b(lo, &fast);
626
627
628 // Slow case: Push extra copies of the arguments (3).
629 __ bind(&slow);
630 __ ldm(ia, sp, r1.bit() | r3.bit()); // r0 == value, r1 == key, r3 == object
631 __ stm(db_w, sp, r0.bit() | r1.bit() | r3.bit());
632 // Do tail-call to runtime routine.
633 __ TailCallRuntime(ExternalReference(Runtime::kSetProperty), 3);
634
635 // Extra capacity case: Check if there is extra capacity to
636 // perform the store and update the length. Used for adding one
637 // element to the array by writing to array[array.length].
638 // r0 == value, r1 == key, r2 == elements, r3 == object
639 __ bind(&extra);
640 __ b(ne, &slow); // do not leave holes in the array
641 __ mov(r1, Operand(r1, ASR, kSmiTagSize)); // untag
642 __ ldr(ip, FieldMemOperand(r2, Array::kLengthOffset));
643 __ cmp(r1, Operand(ip));
644 __ b(hs, &slow);
645 __ mov(r1, Operand(r1, LSL, kSmiTagSize)); // restore tag
646 __ add(r1, r1, Operand(1 << kSmiTagSize)); // and increment
647 __ str(r1, FieldMemOperand(r3, JSArray::kLengthOffset));
648 __ mov(r3, Operand(r2));
649 // NOTE: Computing the address to store into must take the fact
650 // that the key has been incremented into account.
651 int displacement = Array::kHeaderSize - kHeapObjectTag -
652 ((1 << kSmiTagSize) * 2);
653 __ add(r2, r2, Operand(displacement));
654 __ add(r2, r2, Operand(r1, LSL, kPointerSizeLog2 - kSmiTagSize));
655 __ b(&fast);
656
657
658 // Array case: Get the length and the elements array from the JS
659 // array. Check that the array is in fast mode; if it is the
660 // length is always a smi.
661 // r0 == value, r3 == object
662 __ bind(&array);
663 __ ldr(r2, FieldMemOperand(r3, JSObject::kElementsOffset));
664 __ ldr(r1, FieldMemOperand(r2, HeapObject::kMapOffset));
665 __ cmp(r1, Operand(Factory::hash_table_map()));
666 __ b(eq, &slow);
667
668 // Check the key against the length in the array, compute the
669 // address to store into and fall through to fast case.
670 __ ldr(r1, MemOperand(sp)); // resotre key
671 // r0 == value, r1 == key, r2 == elements, r3 == object.
672 __ ldr(ip, FieldMemOperand(r3, JSArray::kLengthOffset));
673 __ cmp(r1, Operand(ip));
674 __ b(hs, &extra);
675 __ mov(r3, Operand(r2));
676 __ add(r2, r2, Operand(Array::kHeaderSize - kHeapObjectTag));
677 __ add(r2, r2, Operand(r1, LSL, kPointerSizeLog2 - kSmiTagSize));
678
679
680 // Fast case: Do the store.
681 // r0 == value, r2 == address to store into, r3 == elements
682 __ bind(&fast);
683 __ str(r0, MemOperand(r2));
684 // Skip write barrier if the written value is a smi.
685 __ tst(r0, Operand(kSmiTagMask));
686 __ b(eq, &exit);
687 // Update write barrier for the elements array address.
688 __ sub(r1, r2, Operand(r3));
689 __ RecordWrite(r3, r1, r2);
690
691 __ bind(&exit);
692 __ Ret();
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]693}
694
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]695
kasperl@chromium.org1accd572008-10-07 10:57:21 +0000[diff] [blame]696void KeyedStoreIC::GenerateExtendStorage(MacroAssembler* masm) {
ager@chromium.org3bf7b912008-11-17 09:09:45 +0000[diff] [blame]697 // ---------- S t a t e --------------
698 // -- r0 : value
699 // -- lr : return address
700 // -- sp[0] : key
701 // -- sp[1] : receiver
702 // ----------- S t a t e -------------
703
704 __ ldm(ia, sp, r2.bit() | r3.bit());
705 __ stm(db_w, sp, r0.bit() | r2.bit() | r3.bit());
706
707 // Perform tail call to the entry.
708 __ TailCallRuntime(
709 ExternalReference(IC_Utility(kSharedStoreIC_ExtendStorage)), 3);
kasperl@chromium.org1accd572008-10-07 10:57:21 +0000[diff] [blame]710}
711
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]712
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]713void StoreIC::GenerateMegamorphic(MacroAssembler* masm) {
714 // ----------- S t a t e -------------
715 // -- r0 : value
716 // -- r2 : name
717 // -- lr : return address
718 // -- [sp] : receiver
719 // -----------------------------------
720
721 // Get the receiver from the stack and probe the stub cache.
722 __ ldr(r1, MemOperand(sp));
723 Code::Flags flags = Code::ComputeFlags(Code::STORE_IC, MONOMORPHIC);
724 StubCache::GenerateProbe(masm, flags, r1, r2, r3);
725
726 // Cache miss: Jump to runtime.
727 Generate(masm, ExternalReference(IC_Utility(kStoreIC_Miss)));
728}
729
730
kasperl@chromium.org41044eb2008-10-06 08:24:46 +0000[diff] [blame]731void StoreIC::GenerateExtendStorage(MacroAssembler* masm) {
732 // ----------- S t a t e -------------
733 // -- r0 : value
734 // -- r2 : name
735 // -- lr : return address
736 // -- [sp] : receiver
737 // -----------------------------------
738
739 __ ldr(r3, MemOperand(sp)); // copy receiver
740 __ stm(db_w, sp, r0.bit() | r2.bit() | r3.bit());
741
742 // Perform tail call to the entry.
kasperl@chromium.org1accd572008-10-07 10:57:21 +0000[diff] [blame]743 __ TailCallRuntime(
744 ExternalReference(IC_Utility(kSharedStoreIC_ExtendStorage)), 3);
kasperl@chromium.org41044eb2008-10-06 08:24:46 +0000[diff] [blame]745}
746
747
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]748void StoreIC::Generate(MacroAssembler* masm, const ExternalReference& f) {
749 // ----------- S t a t e -------------
750 // -- r0 : value
751 // -- r2 : name
752 // -- lr : return address
753 // -- [sp] : receiver
754 // -----------------------------------
755
756 __ ldr(r3, MemOperand(sp)); // copy receiver
757 __ stm(db_w, sp, r0.bit() | r2.bit() | r3.bit());
758
mads.s.ager31e71382008-08-13 09:32:07 +0000[diff] [blame]759 // Perform tail call to the entry.
760 __ TailCallRuntime(f, 3);
christian.plesner.hansen43d26ec2008-07-03 15:10:15 +0000[diff] [blame]761}
762
763
764#undef __
765
766
767} } // namespace v8::internal