The Tor Browser: js/src/jit/IonFrames.h@129ffea94266 (annotated)

js/src/jit/IonFrames.h@129ffea94266 (annotated)

js/src/jit/IonFrames.h

Sat, 03 Jan 2015 20:18:00 +0100

author: Michael Schloh von Bennewitz <michael@schloh.com>
date: Sat, 03 Jan 2015 20:18:00 +0100
branch: TOR_BUG_3246
changeset 7: 129ffea94266
permissions: -rw-r--r--

Conditionally enable double key logic according to:
private browsing mode or privacy.thirdparty.isolate preference and
implement in GetCookieStringCommon and FindCookie where it counts...
With some reservations of how to convince FindCookie users to test
condition and pass a nullptr when disabling double key logic.

 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*-
  * vim: set ts=8 sts=4 et sw=4 tw=99:
  * This Source Code Form is subject to the terms of the Mozilla Public
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 #ifndef jit_IonFrames_h
 #define jit_IonFrames_h
 #ifdef JS_ION
 #include <stdint.h>
 #include "jscntxt.h"
 #include "jsfun.h"
 #include "jit/JitFrameIterator.h"
 namespace js {
 namespace jit {
 typedef void * CalleeToken;
 enum CalleeTokenTag
 {
     CalleeToken_Function = 0x0, // untagged
     CalleeToken_Script = 0x1
 };
 static inline CalleeTokenTag
 GetCalleeTokenTag(CalleeToken token)
 {
     CalleeTokenTag tag = CalleeTokenTag(uintptr_t(token) & 0x3);
     JS_ASSERT(tag <= CalleeToken_Script);
     return tag;
 }
 static inline CalleeToken
 CalleeToToken(JSFunction *fun)
 {
     return CalleeToken(uintptr_t(fun) | uintptr_t(CalleeToken_Function));
 }
 static inline CalleeToken
 CalleeToToken(JSScript *script)
 {
     return CalleeToken(uintptr_t(script) | uintptr_t(CalleeToken_Script));
 }
 static inline bool
 CalleeTokenIsFunction(CalleeToken token)
 {
     return GetCalleeTokenTag(token) == CalleeToken_Function;
 }
 static inline JSFunction *
 CalleeTokenToFunction(CalleeToken token)
 {
     JS_ASSERT(CalleeTokenIsFunction(token));
     return (JSFunction *)token;
 }
 static inline JSScript *
 CalleeTokenToScript(CalleeToken token)
 {
     JS_ASSERT(GetCalleeTokenTag(token) == CalleeToken_Script);
     return (JSScript *)(uintptr_t(token) & ~uintptr_t(0x3));
 }
 static inline JSScript *
 ScriptFromCalleeToken(CalleeToken token)
 {
     switch (GetCalleeTokenTag(token)) {
       case CalleeToken_Script:
         return CalleeTokenToScript(token);
       case CalleeToken_Function:
         return CalleeTokenToFunction(token)->nonLazyScript();
     }
     MOZ_ASSUME_UNREACHABLE("invalid callee token tag");
 }
 // In between every two frames lies a small header describing both frames. This
 // header, minimally, contains a returnAddress word and a descriptor word. The
 // descriptor describes the size and type of the previous frame, whereas the
 // returnAddress describes the address the newer frame (the callee) will return
 // to. The exact mechanism in which frames are laid out is architecture
 // dependent.
 //
 // Two special frame types exist. Entry frames begin an ion activation, and
 // therefore there is exactly one per activation of jit::Cannon. Exit frames
 // are necessary to leave JIT code and enter C++, and thus, C++ code will
 // always begin iterating from the topmost exit frame.
 class LSafepoint;
 // Two-tuple that lets you look up the safepoint entry given the
 // displacement of a call instruction within the JIT code.
 class SafepointIndex
 {
     // The displacement is the distance from the first byte of the JIT'd code
     // to the return address (of the call that the safepoint was generated for).
     uint32_t displacement_;
     union {
         LSafepoint *safepoint_;
         // Offset to the start of the encoded safepoint in the safepoint stream.
         uint32_t safepointOffset_;
     };
 #ifdef DEBUG
     bool resolved;
 #endif
   public:
     SafepointIndex(uint32_t displacement, LSafepoint *safepoint)
       : displacement_(displacement),
         safepoint_(safepoint)
 #ifdef DEBUG
       , resolved(false)
 #endif
     { }
     void resolve();
     LSafepoint *safepoint() {
         JS_ASSERT(!resolved);
         return safepoint_;
     }
     uint32_t displacement() const {
         return displacement_;
     }
     uint32_t safepointOffset() const {
         return safepointOffset_;
     }
     void adjustDisplacement(uint32_t offset) {
         JS_ASSERT(offset >= displacement_);
         displacement_ = offset;
     }
     inline SnapshotOffset snapshotOffset() const;
     inline bool hasSnapshotOffset() const;
 };
 class MacroAssembler;
 // The OSI point is patched to a call instruction. Therefore, the
 // returnPoint for an OSI call is the address immediately following that
 // call instruction. The displacement of that point within the assembly
 // buffer is the |returnPointDisplacement|.
 class OsiIndex
 {
     uint32_t callPointDisplacement_;
     uint32_t snapshotOffset_;
   public:
     OsiIndex(uint32_t callPointDisplacement, uint32_t snapshotOffset)
       : callPointDisplacement_(callPointDisplacement),
         snapshotOffset_(snapshotOffset)
     { }
     uint32_t returnPointDisplacement() const;
     uint32_t callPointDisplacement() const {
         return callPointDisplacement_;
     }
     uint32_t snapshotOffset() const {
         return snapshotOffset_;
     }
     void fixUpOffset(MacroAssembler &masm);
 };
 // The layout of an Ion frame on the C stack is roughly:
 //      argN     _
 //      ...       \ - These are jsvals
 //      arg0      /
 //   -3 this    _/
 //   -2 callee
 //   -1 descriptor
 //    0 returnAddress
 //   .. locals ..
 // The descriptor is organized into three sections:
 // [ frame size | constructing bit | frame type ]
 // < highest - - - - - - - - - - - - - - lowest >
 static const uintptr_t FRAMESIZE_SHIFT = 4;
 static const uintptr_t FRAMETYPE_BITS = 4;
 static const uintptr_t FRAMETYPE_MASK = (1 << FRAMETYPE_BITS) - 1;
 // Ion frames have a few important numbers associated with them:
 //      Local depth:    The number of bytes required to spill local variables.
 //      Argument depth: The number of bytes required to push arguments and make
 //                      a function call.
 //      Slack:          A frame may temporarily use extra stack to resolve cycles.
 //
 // The (local + argument) depth determines the "fixed frame size". The fixed
 // frame size is the distance between the stack pointer and the frame header.
 // Thus, fixed >= (local + argument).
 //
 // In order to compress guards, we create shared jump tables that recover the
 // script from the stack and recover a snapshot pointer based on which jump was
 // taken. Thus, we create a jump table for each fixed frame size.
 //
 // Jump tables are big. To control the amount of jump tables we generate, each
 // platform chooses how to segregate stack size classes based on its
 // architecture.
 //
 // On some architectures, these jump tables are not used at all, or frame
 // size segregation is not needed. Thus, there is an option for a frame to not
 // have any frame size class, and to be totally dynamic.
 static const uint32_t NO_FRAME_SIZE_CLASS_ID = uint32_t(-1);
 class FrameSizeClass
 {
     uint32_t class_;
     explicit FrameSizeClass(uint32_t class_) : class_(class_)
     { }
   public:
     FrameSizeClass()
     { }
     static FrameSizeClass None() {
         return FrameSizeClass(NO_FRAME_SIZE_CLASS_ID);
     }
     static FrameSizeClass FromClass(uint32_t class_) {
         return FrameSizeClass(class_);
     }
     // These functions are implemented in specific CodeGenerator-* files.
     static FrameSizeClass FromDepth(uint32_t frameDepth);
     static FrameSizeClass ClassLimit();
     uint32_t frameSize() const;
     uint32_t classId() const {
         JS_ASSERT(class_ != NO_FRAME_SIZE_CLASS_ID);
         return class_;
     }
     bool operator ==(const FrameSizeClass &other) const {
         return class_ == other.class_;
     }
     bool operator !=(const FrameSizeClass &other) const {
         return class_ != other.class_;
     }
 };
 struct BaselineBailoutInfo;
 // Data needed to recover from an exception.
 struct ResumeFromException
 {
     static const uint32_t RESUME_ENTRY_FRAME = 0;
     static const uint32_t RESUME_CATCH = 1;
     static const uint32_t RESUME_FINALLY = 2;
     static const uint32_t RESUME_FORCED_RETURN = 3;
     static const uint32_t RESUME_BAILOUT = 4;
     uint8_t *framePointer;
     uint8_t *stackPointer;
     uint8_t *target;
     uint32_t kind;
     // Value to push when resuming into a |finally| block.
     Value exception;
     BaselineBailoutInfo *bailoutInfo;
 };
 void HandleException(ResumeFromException *rfe);
 void HandleParallelFailure(ResumeFromException *rfe);
 void EnsureExitFrame(IonCommonFrameLayout *frame);
 void MarkJitActivations(JSRuntime *rt, JSTracer *trc);
 void MarkIonCompilerRoots(JSTracer *trc);
 #ifdef JSGC_GENERATIONAL
 void UpdateJitActivationsForMinorGC(JSRuntime *rt, JSTracer *trc);
 #endif
 static inline uint32_t
 MakeFrameDescriptor(uint32_t frameSize, FrameType type)
 {
     return (frameSize << FRAMESIZE_SHIFT) | type;
 }
 // Returns the JSScript associated with the topmost Ion frame.
 inline JSScript *
 GetTopIonJSScript(uint8_t *ionTop, void **returnAddrOut, ExecutionMode mode)
 {
     JitFrameIterator iter(ionTop, mode);
     JS_ASSERT(iter.type() == JitFrame_Exit);
     ++iter;
     JS_ASSERT(iter.returnAddressToFp() != nullptr);
     if (returnAddrOut)
         *returnAddrOut = (void *) iter.returnAddressToFp();
     if (iter.isBaselineStub()) {
         ++iter;
         JS_ASSERT(iter.isBaselineJS());
     }
     JS_ASSERT(iter.isScripted());
     return iter.script();
 }
 static JitCode *const ION_FRAME_DOMGETTER       = (JitCode *)0x1;
 static JitCode *const ION_FRAME_DOMSETTER       = (JitCode *)0x2;
 static JitCode *const ION_FRAME_DOMMETHOD       = (JitCode *)0x3;
 static JitCode *const ION_FRAME_OOL_NATIVE      = (JitCode *)0x4;
 static JitCode *const ION_FRAME_OOL_PROPERTY_OP = (JitCode *)0x5;
 static JitCode *const ION_FRAME_OOL_PROXY       = (JitCode *)0x6;
 // Layout of the frame prefix. This assumes the stack architecture grows down.
 // If this is ever not the case, we'll have to refactor.
 class IonCommonFrameLayout
 {
     uint8_t *returnAddress_;
     uintptr_t descriptor_;
     static const uintptr_t FrameTypeMask = (1 << FRAMETYPE_BITS) - 1;
   public:
     static size_t offsetOfDescriptor() {
         return offsetof(IonCommonFrameLayout, descriptor_);
     }
     static size_t offsetOfReturnAddress() {
         return offsetof(IonCommonFrameLayout, returnAddress_);
     }
     FrameType prevType() const {
         return FrameType(descriptor_ & FrameTypeMask);
     }
     void changePrevType(FrameType type) {
         descriptor_ &= ~FrameTypeMask;
         descriptor_ |= type;
     }
     size_t prevFrameLocalSize() const {
         return descriptor_ >> FRAMESIZE_SHIFT;
     }
     void setFrameDescriptor(size_t size, FrameType type) {
         descriptor_ = (size << FRAMESIZE_SHIFT) | type;
     }
     uint8_t *returnAddress() const {
         return returnAddress_;
     }
     void setReturnAddress(uint8_t *addr) {
         returnAddress_ = addr;
     }
 };
 class IonJSFrameLayout : public IonCommonFrameLayout
 {
     CalleeToken calleeToken_;
     uintptr_t numActualArgs_;
   public:
     CalleeToken calleeToken() const {
         return calleeToken_;
     }
     void replaceCalleeToken(CalleeToken calleeToken) {
         calleeToken_ = calleeToken;
     }
     static size_t offsetOfCalleeToken() {
         return offsetof(IonJSFrameLayout, calleeToken_);
     }
     static size_t offsetOfNumActualArgs() {
         return offsetof(IonJSFrameLayout, numActualArgs_);
     }
     static size_t offsetOfThis() {
         IonJSFrameLayout *base = nullptr;
         return reinterpret_cast<size_t>(&base->argv()[0]);
     }
     static size_t offsetOfActualArgs() {
         IonJSFrameLayout *base = nullptr;
         // +1 to skip |this|.
         return reinterpret_cast<size_t>(&base->argv()[1]);
     }
     static size_t offsetOfActualArg(size_t arg) {
         return offsetOfActualArgs() + arg * sizeof(Value);
     }
     Value thisv() {
         return argv()[0];
     }
     Value *argv() {
         return (Value *)(this + 1);
     }
     uintptr_t numActualArgs() const {
         return numActualArgs_;
     }
     // Computes a reference to a slot, where a slot is a distance from the base
     // frame pointer (as would be used for LStackSlot).
     uintptr_t *slotRef(uint32_t slot) {
         return (uintptr_t *)((uint8_t *)this - slot);
     }
     static inline size_t Size() {
         return sizeof(IonJSFrameLayout);
     }
 };
 // this is the layout of the frame that is used when we enter Ion code from platform ABI code
 class IonEntryFrameLayout : public IonJSFrameLayout
 {
   public:
     static inline size_t Size() {
         return sizeof(IonEntryFrameLayout);
     }
 };
 class IonRectifierFrameLayout : public IonJSFrameLayout
 {
   public:
     static inline size_t Size() {
         return sizeof(IonRectifierFrameLayout);
     }
 };
 // The callee token is now dead.
 class IonUnwoundRectifierFrameLayout : public IonRectifierFrameLayout
 {
   public:
     static inline size_t Size() {
         // It is not necessary to accout for an extra callee token here because
         // sizeof(IonExitFrameLayout) == sizeof(IonRectifierFrameLayout) due to
         // extra padding.
         return sizeof(IonUnwoundRectifierFrameLayout);
     }
 };
 // GC related data used to keep alive data surrounding the Exit frame.
 class IonExitFooterFrame
 {
     const VMFunction *function_;
     JitCode *jitCode_;
   public:
     static inline size_t Size() {
         return sizeof(IonExitFooterFrame);
     }
     inline JitCode *jitCode() const {
         return jitCode_;
     }
     inline JitCode **addressOfJitCode() {
         return &jitCode_;
     }
     inline const VMFunction *function() const {
         return function_;
     }
     // This should only be called for function()->outParam == Type_Handle
     template <typename T>
     T *outParam() {
         return reinterpret_cast<T *>(reinterpret_cast<char *>(this) - sizeof(T));
     }
 };
 class IonNativeExitFrameLayout;
 class IonOOLNativeExitFrameLayout;
 class IonOOLPropertyOpExitFrameLayout;
 class IonOOLProxyExitFrameLayout;
 class IonDOMExitFrameLayout;
 // this is the frame layout when we are exiting ion code, and about to enter platform ABI code
 class IonExitFrameLayout : public IonCommonFrameLayout
 {
     inline uint8_t *top() {
         return reinterpret_cast<uint8_t *>(this + 1);
     }
   public:
     static inline size_t Size() {
         return sizeof(IonExitFrameLayout);
     }
     static inline size_t SizeWithFooter() {
         return Size() + IonExitFooterFrame::Size();
     }
     inline IonExitFooterFrame *footer() {
         uint8_t *sp = reinterpret_cast<uint8_t *>(this);
         return reinterpret_cast<IonExitFooterFrame *>(sp - IonExitFooterFrame::Size());
     }
     // argBase targets the point which precedes the exit frame. Arguments of VM
     // each wrapper are pushed before the exit frame.  This correspond exactly
     // to the value of the argBase register of the generateVMWrapper function.
     inline uint8_t *argBase() {
         JS_ASSERT(footer()->jitCode() != nullptr);
         return top();
     }
     inline bool isWrapperExit() {
         return footer()->function() != nullptr;
     }
     inline bool isNativeExit() {
         return footer()->jitCode() == nullptr;
     }
     inline bool isOOLNativeExit() {
         return footer()->jitCode() == ION_FRAME_OOL_NATIVE;
     }
     inline bool isOOLPropertyOpExit() {
         return footer()->jitCode() == ION_FRAME_OOL_PROPERTY_OP;
     }
     inline bool isOOLProxyExit() {
         return footer()->jitCode() == ION_FRAME_OOL_PROXY;
     }
     inline bool isDomExit() {
         JitCode *code = footer()->jitCode();
         return
             code == ION_FRAME_DOMGETTER ||
             code == ION_FRAME_DOMSETTER ||
             code == ION_FRAME_DOMMETHOD;
     }
     inline IonNativeExitFrameLayout *nativeExit() {
         // see CodeGenerator::visitCallNative
         JS_ASSERT(isNativeExit());
         return reinterpret_cast<IonNativeExitFrameLayout *>(footer());
     }
     inline IonOOLNativeExitFrameLayout *oolNativeExit() {
         JS_ASSERT(isOOLNativeExit());
         return reinterpret_cast<IonOOLNativeExitFrameLayout *>(footer());
     }
     inline IonOOLPropertyOpExitFrameLayout *oolPropertyOpExit() {
         JS_ASSERT(isOOLPropertyOpExit());
         return reinterpret_cast<IonOOLPropertyOpExitFrameLayout *>(footer());
     }
     inline IonOOLProxyExitFrameLayout *oolProxyExit() {
         JS_ASSERT(isOOLProxyExit());
         return reinterpret_cast<IonOOLProxyExitFrameLayout *>(footer());
     }
     inline IonDOMExitFrameLayout *DOMExit() {
         JS_ASSERT(isDomExit());
         return reinterpret_cast<IonDOMExitFrameLayout *>(footer());
     }
 };
 // Cannot inherit implementa<tion since we need to extend the top of
 // IonExitFrameLayout.
 class IonNativeExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     uintptr_t argc_;
     // We need to split the Value into 2 fields of 32 bits, otherwise the C++
     // compiler may add some padding between the fields.
     uint32_t loCalleeResult_;
     uint32_t hiCalleeResult_;
   public:
     static inline size_t Size() {
         return sizeof(IonNativeExitFrameLayout);
     }
     static size_t offsetOfResult() {
         return offsetof(IonNativeExitFrameLayout, loCalleeResult_);
     }
     inline Value *vp() {
         return reinterpret_cast<Value*>(&loCalleeResult_);
     }
     inline uintptr_t argc() const {
         return argc_;
     }
 };
 class IonOOLNativeExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     // pointer to root the stub's JitCode
     JitCode *stubCode_;
     uintptr_t argc_;
     // We need to split the Value into 2 fields of 32 bits, otherwise the C++
     // compiler may add some padding between the fields.
     uint32_t loCalleeResult_;
     uint32_t hiCalleeResult_;
     // Split Value for |this| and args above.
     uint32_t loThis_;
     uint32_t hiThis_;
   public:
     static inline size_t Size(size_t argc) {
         // The frame accounts for the callee/result and |this|, so we only need args.
         return sizeof(IonOOLNativeExitFrameLayout) + (argc * sizeof(Value));
     }
     static size_t offsetOfResult() {
         return offsetof(IonOOLNativeExitFrameLayout, loCalleeResult_);
     }
     inline JitCode **stubCode() {
         return &stubCode_;
     }
     inline Value *vp() {
         return reinterpret_cast<Value*>(&loCalleeResult_);
     }
     inline Value *thisp() {
         return reinterpret_cast<Value*>(&loThis_);
     }
     inline uintptr_t argc() const {
         return argc_;
     }
 };
 class IonOOLPropertyOpExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     // Object for HandleObject
     JSObject *obj_;
     // id for HandleId
     jsid id_;
     // space for MutableHandleValue result
     // use two uint32_t so compiler doesn't align.
     uint32_t vp0_;
     uint32_t vp1_;
     // pointer to root the stub's JitCode
     JitCode *stubCode_;
   public:
     static inline size_t Size() {
         return sizeof(IonOOLPropertyOpExitFrameLayout);
     }
     static size_t offsetOfResult() {
         return offsetof(IonOOLPropertyOpExitFrameLayout, vp0_);
     }
     inline JitCode **stubCode() {
         return &stubCode_;
     }
     inline Value *vp() {
         return reinterpret_cast<Value*>(&vp0_);
     }
     inline jsid *id() {
         return &id_;
     }
     inline JSObject **obj() {
         return &obj_;
     }
 };
 // Proxy::get(JSContext *cx, HandleObject proxy, HandleObject receiver, HandleId id,
 //            MutableHandleValue vp)
 // Proxy::set(JSContext *cx, HandleObject proxy, HandleObject receiver, HandleId id,
 //            bool strict, MutableHandleValue vp)
 class IonOOLProxyExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     // The proxy object.
     JSObject *proxy_;
     // Object for HandleObject
     JSObject *receiver_;
     // id for HandleId
     jsid id_;
     // space for MutableHandleValue result
     // use two uint32_t so compiler doesn't align.
     uint32_t vp0_;
     uint32_t vp1_;
     // pointer to root the stub's JitCode
     JitCode *stubCode_;
   public:
     static inline size_t Size() {
         return sizeof(IonOOLProxyExitFrameLayout);
     }
     static size_t offsetOfResult() {
         return offsetof(IonOOLProxyExitFrameLayout, vp0_);
     }
     inline JitCode **stubCode() {
         return &stubCode_;
     }
     inline Value *vp() {
         return reinterpret_cast<Value*>(&vp0_);
     }
     inline jsid *id() {
         return &id_;
     }
     inline JSObject **receiver() {
         return &receiver_;
     }
     inline JSObject **proxy() {
         return &proxy_;
     }
 };
 class IonDOMExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     JSObject *thisObj;
     // We need to split the Value into 2 fields of 32 bits, otherwise the C++
     // compiler may add some padding between the fields.
     uint32_t loCalleeResult_;
     uint32_t hiCalleeResult_;
   public:
     static inline size_t Size() {
         return sizeof(IonDOMExitFrameLayout);
     }
     static size_t offsetOfResult() {
         return offsetof(IonDOMExitFrameLayout, loCalleeResult_);
     }
     inline Value *vp() {
         return reinterpret_cast<Value*>(&loCalleeResult_);
     }
     inline JSObject **thisObjAddress() {
         return &thisObj;
     }
     inline bool isMethodFrame() {
         return footer_.jitCode() == ION_FRAME_DOMMETHOD;
     }
 };
 struct IonDOMMethodExitFrameLayoutTraits;
 class IonDOMMethodExitFrameLayout
 {
   protected: // only to silence a clang warning about unused private fields
     IonExitFooterFrame footer_;
     IonExitFrameLayout exit_;
     // This must be the last thing pushed, so as to stay common with
     // IonDOMExitFrameLayout.
     JSObject *thisObj_;
     Value *argv_;
     uintptr_t argc_;
     // We need to split the Value into 2 fields of 32 bits, otherwise the C++
     // compiler may add some padding between the fields.
     uint32_t loCalleeResult_;
     uint32_t hiCalleeResult_;
     friend struct IonDOMMethodExitFrameLayoutTraits;
   public:
     static inline size_t Size() {
         return sizeof(IonDOMMethodExitFrameLayout);
     }
     static size_t offsetOfResult() {
         return offsetof(IonDOMMethodExitFrameLayout, loCalleeResult_);
     }
     inline Value *vp() {
         // The code in visitCallDOMNative depends on this static assert holding
         JS_STATIC_ASSERT(offsetof(IonDOMMethodExitFrameLayout, loCalleeResult_) ==
                          (offsetof(IonDOMMethodExitFrameLayout, argc_) + sizeof(uintptr_t)));
         return reinterpret_cast<Value*>(&loCalleeResult_);
     }
     inline JSObject **thisObjAddress() {
         return &thisObj_;
     }
     inline uintptr_t argc() {
         return argc_;
     }
 };
 struct IonDOMMethodExitFrameLayoutTraits {
     static const size_t offsetOfArgcFromArgv =
         offsetof(IonDOMMethodExitFrameLayout, argc_) -
         offsetof(IonDOMMethodExitFrameLayout, argv_);
 };
 class ICStub;
 class IonBaselineStubFrameLayout : public IonCommonFrameLayout
 {
   public:
     static inline size_t Size() {
         return sizeof(IonBaselineStubFrameLayout);
     }
     static inline int reverseOffsetOfStubPtr() {
         return -int(sizeof(void *));
     }
     static inline int reverseOffsetOfSavedFramePtr() {
         return -int(2 * sizeof(void *));
     }
     inline ICStub *maybeStubPtr() {
         uint8_t *fp = reinterpret_cast<uint8_t *>(this);
         return *reinterpret_cast<ICStub **>(fp + reverseOffsetOfStubPtr());
     }
     inline void setStubPtr(ICStub *stub) {
         uint8_t *fp = reinterpret_cast<uint8_t *>(this);
         *reinterpret_cast<ICStub **>(fp + reverseOffsetOfStubPtr()) = stub;
     }
 };
 // An invalidation bailout stack is at the stack pointer for the callee frame.
 class InvalidationBailoutStack
 {
     mozilla::Array<double, FloatRegisters::Total> fpregs_;
     mozilla::Array<uintptr_t, Registers::Total> regs_;
     IonScript   *ionScript_;
     uint8_t       *osiPointReturnAddress_;
   public:
     uint8_t *sp() const {
         return (uint8_t *) this + sizeof(InvalidationBailoutStack);
     }
     IonJSFrameLayout *fp() const;
     MachineState machine() {
         return MachineState::FromBailout(regs_, fpregs_);
     }
     IonScript *ionScript() const {
         return ionScript_;
     }
     uint8_t *osiPointReturnAddress() const {
         return osiPointReturnAddress_;
     }
     void checkInvariants() const;
 };
 void
 GetPcScript(JSContext *cx, JSScript **scriptRes, jsbytecode **pcRes);
 CalleeToken
 MarkCalleeToken(JSTracer *trc, CalleeToken token);
 } /* namespace jit */
 } /* namespace js */
 #endif // JS_ION
 #endif /* jit_IonFrames_h */

The Tor Browser / annotate

js/src/jit/IonFrames.h@129ffea94266 (annotated)

js/src/jit/IonFrames.h