review.tizen.org Git - profile/ivi/webkit-efl.git/commit

Make write barriers actually do something when enabled
https://bugs.webkit.org/show_bug.cgi?id=68717

Reviewed by Geoffrey Garen.

../../../../Volumes/Data/git/WebKit/OpenSource/Source/JavaScriptCore:

Add a basic card marking style write barrier to JSC (currently
turned off). This requires two scratch registers in the JIT
so there was some register re-arranging to satisfy that requirement.
Happily this produced a minor perf bump in sunspider (~0.5%).

Turning the barriers on causes an overall regression of around 1.5%

* JavaScriptCore.exp:
* JavaScriptCore.xcodeproj/project.pbxproj:
* assembler/MacroAssemblerX86Common.h:
(JSC::MacroAssemblerX86Common::store8):
* assembler/X86Assembler.h:
(JSC::X86Assembler::movb_i8m):
* dfg/DFGJITCodeGenerator.cpp:
(JSC::DFG::JITCodeGenerator::isKnownNotCell):
(JSC::DFG::JITCodeGenerator::writeBarrier):
(JSC::DFG::JITCodeGenerator::markCellCard):
(JSC::DFG::JITCodeGenerator::cachedPutById):
* dfg/DFGJITCodeGenerator.h:
* dfg/DFGRepatch.cpp:
(JSC::DFG::tryCachePutByID):
* dfg/DFGSpeculativeJIT.cpp:
(JSC::DFG::SpeculativeJIT::compile):
* heap/CardSet.h: Added.
(JSC::CardSet::CardSet):
(JSC::::cardForAtom):
(JSC::::cardMarkedForAtom):
(JSC::::markCardForAtom):
* heap/Heap.cpp:
* heap/Heap.h:
(JSC::Heap::addressOfCardFor):
(JSC::Heap::writeBarrierFastCase):
* heap/MarkedBlock.h:
(JSC::MarkedBlock::setDirtyObject):
(JSC::MarkedBlock::addressOfCardFor):
(JSC::MarkedBlock::offsetOfCards):
* jit/JIT.h:
* jit/JITPropertyAccess.cpp:
(JSC::JIT::emit_op_put_by_val):
(JSC::JIT::emit_op_put_by_id):
(JSC::JIT::privateCompilePutByIdTransition):
(JSC::JIT::emit_op_put_scoped_var):
(JSC::JIT::emit_op_put_global_var):
(JSC::JIT::emitWriteBarrier):
* jit/JITPropertyAccess32_64.cpp:
(JSC::JIT::emit_op_put_by_val):
(JSC::JIT::emit_op_put_by_id):
(JSC::JIT::emitSlow_op_put_by_id):
(JSC::JIT::privateCompilePutByIdTransition):
(JSC::JIT::emit_op_put_scoped_var):
(JSC::JIT::emit_op_put_global_var):

../../../../Volumes/Data/git/WebKit/OpenSource/Source/WebCore:

Add a forwarding header, and fix an evaluation ordering
issue that shows up if you try to use write barriers.

* ForwardingHeaders/heap/CardSet.h: Added.
* bindings/js/JSEventListener.h:
(WebCore::JSEventListener::jsFunction):

git-svn-id: http://svn.webkit.org/repository/webkit/trunk@95865 268f45cc-cd09-0410-ab3c-d52691b4dbfc

author	oliver@apple.com <oliver@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
	Fri, 23 Sep 2011 22:05:24 +0000 (22:05 +0000)
committer	oliver@apple.com <oliver@apple.com@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
	Fri, 23 Sep 2011 22:05:24 +0000 (22:05 +0000)
commit	0cae6935b2ed50e055920d58925d78c15ee8f1b2
tree	3dd74a3e569699de0c1d960787b96a3c68cb8eb7	tree \| snapshot
parent	82c904012e9419f659eb6592c8aa42216cb32699	commit \| diff

Source/JavaScriptCore/ChangeLog		diff \| blob \| history
Source/JavaScriptCore/JavaScriptCore.exp		diff \| blob \| history
Source/JavaScriptCore/JavaScriptCore.xcodeproj/project.pbxproj		diff \| blob \| history
Source/JavaScriptCore/assembler/MacroAssemblerX86Common.h		diff \| blob \| history
Source/JavaScriptCore/assembler/X86Assembler.h		diff \| blob \| history
Source/JavaScriptCore/dfg/DFGJITCodeGenerator.cpp		diff \| blob \| history
Source/JavaScriptCore/dfg/DFGJITCodeGenerator.h		diff \| blob \| history
Source/JavaScriptCore/dfg/DFGRepatch.cpp		diff \| blob \| history
Source/JavaScriptCore/dfg/DFGSpeculativeJIT.cpp		diff \| blob \| history
Source/JavaScriptCore/heap/CardSet.h	[new file with mode: 0644]	blob
Source/JavaScriptCore/heap/Heap.cpp		diff \| blob \| history
Source/JavaScriptCore/heap/Heap.h		diff \| blob \| history
Source/JavaScriptCore/heap/MarkedBlock.h		diff \| blob \| history
Source/JavaScriptCore/jit/JIT.h		diff \| blob \| history
Source/JavaScriptCore/jit/JITPropertyAccess.cpp		diff \| blob \| history
Source/JavaScriptCore/jit/JITPropertyAccess32_64.cpp		diff \| blob \| history
Source/WebCore/ChangeLog		diff \| blob \| history
Source/WebCore/ForwardingHeaders/heap/CardSet.h	[new file with mode: 0644]	blob
Source/WebCore/bindings/js/JSEventListener.h		diff \| blob \| history