[MERGE #1760 @MikeHolman] fix issue when polymorphic inline info layouts differ in JIT and runtime data

MikeHolman · MikeHolman · commit 4706ddf3643d · 2016-10-23T18:34:56.000-07:00
Merge pull request #1760 from MikeHolman:polyinlining Exact order of next pointers for polymorphic CodeGen JIT and CodeGen Runtime data may differ. So, while walking CodeGen JIT data during BuildJITTimeData data we should pass along the head CodeGen Runtime pointer, otherwise inner calls will not be able to find inlinees who appear earlier in the list.
diff --git a/lib/Backend/FunctionJITTimeInfo.cpp b/lib/Backend/FunctionJITTimeInfo.cpp
@@ -40,6 +40,12 @@ FunctionJITTimeInfo::BuildJITTimeData(
     if (codeGenData->GetFunctionInfo()->HasBody())
     {
         Assert(isInlinee == !!runtimeData);
+        const Js::FunctionCodeGenRuntimeData * targetRuntimeData = nullptr;
+        if (runtimeData)
+        {
+            // may be polymorphic, so seek the runtime data matching our JIT time data
+            targetRuntimeData = runtimeData->GetForTarget(codeGenData->GetFunctionInfo()->GetFunctionBody());
+        }
         Js::FunctionBody * functionBody = codeGenData->GetFunctionBody();
         if (functionBody->HasDynamicProfileInfo())
         {
@@ -79,25 +85,21 @@ FunctionJITTimeInfo::BuildJITTimeData(
                     const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = nullptr;
                     if (inlineeJITData->GetFunctionInfo()->HasBody())
                     {
-                        Js::FunctionBody * inlinee = inlineeJITData->GetFunctionInfo()->GetFunctionBody();
-                        inlineeRuntimeData = isInlinee ? runtimeData->GetInlineeForTargetInlinee(i, inlinee) : functionBody->GetInlineeCodeGenRuntimeDataForTargetInlinee(i, inlinee);
+                        inlineeRuntimeData = isInlinee ? targetRuntimeData->GetInlinee(i) : functionBody->GetInlineeCodeGenRuntimeData(i);
                     }
                     jitData->inlinees[i] = AnewStructZ(alloc, FunctionJITTimeDataIDL);
                     BuildJITTimeData(alloc, inlineeJITData, inlineeRuntimeData, jitData->inlinees[i], true, isForegroundJIT);
                 }
             }
         }
-        // TODO: OOP JIT, cleanup these checks
         jitData->profiledRuntimeData = AnewStructZ(alloc, FunctionJITRuntimeIDL);
-        if (isInlinee && runtimeData->ClonedInlineCaches()->HasInlineCaches())
+        if (isInlinee && targetRuntimeData->ClonedInlineCaches()->HasInlineCaches())
         {
-            // REVIEW: OOP JIT is this safe to be doing in background?
             jitData->profiledRuntimeData->clonedCacheCount = jitData->bodyData->inlineCacheCount;
             jitData->profiledRuntimeData->clonedInlineCaches = AnewArray(alloc, intptr_t, jitData->profiledRuntimeData->clonedCacheCount);
             for (uint j = 0; j < jitData->bodyData->inlineCacheCount; ++j)
             {
-                // REVIEW: OOP JIT, what to do with WriteBarrierPtr?
-                jitData->profiledRuntimeData->clonedInlineCaches[j] = (intptr_t)runtimeData->ClonedInlineCaches()->GetInlineCache(j);
+                jitData->profiledRuntimeData->clonedInlineCaches[j] = (intptr_t)targetRuntimeData->ClonedInlineCaches()->GetInlineCache(j);
             }
         }
         if (jitData->bodyData->inlineCacheCount > 0)
@@ -115,7 +117,7 @@ FunctionJITTimeInfo::BuildJITTimeData(
             for (Js::InlineCacheIndex i = 0; i < jitData->bodyData->inlineCacheCount; ++i)
             {
                 const Js::FunctionCodeGenJitTimeData * inlineeJITData = codeGenData->GetLdFldInlinee(i);
-                const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = isInlinee ? runtimeData->GetLdFldInlinee(i) : functionBody->GetLdFldInlineeCodeGenRuntimeData(i);
+                const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = isInlinee ? targetRuntimeData->GetLdFldInlinee(i) : functionBody->GetLdFldInlineeCodeGenRuntimeData(i);
                 if (inlineeJITData != nullptr)
                 {
                     jitData->ldFldInlinees[i] = AnewStructZ(alloc, FunctionJITTimeDataIDL);
@@ -138,12 +140,7 @@ FunctionJITTimeInfo::BuildJITTimeData(
             // only inlinee should be polymorphic
             Assert(isInlinee);
             jitData->next = AnewStructZ(alloc, FunctionJITTimeDataIDL);
-            const Js::FunctionCodeGenRuntimeData * nextRuntimeData = nullptr;
-            if (nextJITData->GetFunctionInfo()->HasBody())
-            {
-                nextRuntimeData = runtimeData->GetNextForTarget(nextJITData->GetFunctionInfo()->GetFunctionBody());
-            }
-            BuildJITTimeData(alloc, nextJITData, nextRuntimeData, jitData->next, true, isForegroundJIT);
+            BuildJITTimeData(alloc, nextJITData, runtimeData, jitData->next, true, isForegroundJIT);
         }
     }
 }
diff --git a/lib/Runtime/Language/FunctionCodeGenRuntimeData.cpp b/lib/Runtime/Language/FunctionCodeGenRuntimeData.cpp
@@ -27,14 +27,16 @@ namespace Js
         return &clonedInlineCaches;
     }
 
-    FunctionCodeGenRuntimeData * FunctionCodeGenRuntimeData::GetNextForTarget(FunctionBody *targetFuncBody) const
+    const FunctionCodeGenRuntimeData * FunctionCodeGenRuntimeData::GetForTarget(FunctionBody *targetFuncBody) const
     {
-        FunctionCodeGenRuntimeData * next = this->next;
-        if (next->GetFunctionBody() != targetFuncBody)
+        const FunctionCodeGenRuntimeData * target = this;
+        while (target && target->GetFunctionBody() != targetFuncBody)
         {
-            next = next->next;
+            target = target->next;
         }
-        return next;
+        // we should always find the info
+        Assert(target);
+        return target;
     }
 
     const FunctionCodeGenRuntimeData *FunctionCodeGenRuntimeData::GetInlinee(const ProfileId profiledCallSiteId) const
diff --git a/lib/Runtime/Language/FunctionCodeGenRuntimeData.h b/lib/Runtime/Language/FunctionCodeGenRuntimeData.h
@@ -36,7 +36,7 @@ namespace Js
     public:
         FunctionBody *GetFunctionBody() const;
         FunctionCodeGenRuntimeData *GetNext() const { return next; };
-        FunctionCodeGenRuntimeData *GetNextForTarget(FunctionBody *targetFuncBody) const;
+        const FunctionCodeGenRuntimeData *GetForTarget(FunctionBody *targetFuncBody) const;
         const InlineCachePointerArray<InlineCache> *ClonedInlineCaches() const;
         InlineCachePointerArray<InlineCache> *ClonedInlineCaches();
 

Original file line number	Diff line number	Diff line change
`@@ -40,6 +40,12 @@ FunctionJITTimeInfo::BuildJITTimeData(`
`40`	`40`	`if (codeGenData->GetFunctionInfo()->HasBody())`
`41`	`41`	`{`
`42`	`42`	`Assert(isInlinee == !!runtimeData);`
	`43`	`+ const Js::FunctionCodeGenRuntimeData * targetRuntimeData = nullptr;`
	`44`	`+ if (runtimeData)`
	`45`	`+ {`
	`46`	`+ // may be polymorphic, so seek the runtime data matching our JIT time data`
	`47`	`+ targetRuntimeData = runtimeData->GetForTarget(codeGenData->GetFunctionInfo()->GetFunctionBody());`
	`48`	`+ }`
`43`	`49`	`Js::FunctionBody * functionBody = codeGenData->GetFunctionBody();`
`44`	`50`	`if (functionBody->HasDynamicProfileInfo())`
`45`	`51`	`{`
`@@ -79,25 +85,21 @@ FunctionJITTimeInfo::BuildJITTimeData(`
`79`	`85`	`const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = nullptr;`
`80`	`86`	`if (inlineeJITData->GetFunctionInfo()->HasBody())`
`81`	`87`	`{`
`82`		`- Js::FunctionBody * inlinee = inlineeJITData->GetFunctionInfo()->GetFunctionBody();`
`83`		`- inlineeRuntimeData = isInlinee ? runtimeData->GetInlineeForTargetInlinee(i, inlinee) : functionBody->GetInlineeCodeGenRuntimeDataForTargetInlinee(i, inlinee);`
	`88`	`+ inlineeRuntimeData = isInlinee ? targetRuntimeData->GetInlinee(i) : functionBody->GetInlineeCodeGenRuntimeData(i);`
`84`	`89`	`}`
`85`	`90`	`jitData->inlinees[i] = AnewStructZ(alloc, FunctionJITTimeDataIDL);`
`86`	`91`	`BuildJITTimeData(alloc, inlineeJITData, inlineeRuntimeData, jitData->inlinees[i], true, isForegroundJIT);`
`87`	`92`	`}`
`88`	`93`	`}`
`89`	`94`	`}`
`90`		`- // TODO: OOP JIT, cleanup these checks`
`91`	`95`	`jitData->profiledRuntimeData = AnewStructZ(alloc, FunctionJITRuntimeIDL);`
`92`		`- if (isInlinee && runtimeData->ClonedInlineCaches()->HasInlineCaches())`
	`96`	`+ if (isInlinee && targetRuntimeData->ClonedInlineCaches()->HasInlineCaches())`
`93`	`97`	`{`
`94`		`- // REVIEW: OOP JIT is this safe to be doing in background?`
`95`	`98`	`jitData->profiledRuntimeData->clonedCacheCount = jitData->bodyData->inlineCacheCount;`
`96`	`99`	`jitData->profiledRuntimeData->clonedInlineCaches = AnewArray(alloc, intptr_t, jitData->profiledRuntimeData->clonedCacheCount);`
`97`	`100`	`for (uint j = 0; j < jitData->bodyData->inlineCacheCount; ++j)`
`98`	`101`	`{`
`99`		`- // REVIEW: OOP JIT, what to do with WriteBarrierPtr?`
`100`		`- jitData->profiledRuntimeData->clonedInlineCaches[j] = (intptr_t)runtimeData->ClonedInlineCaches()->GetInlineCache(j);`
	`102`	`+ jitData->profiledRuntimeData->clonedInlineCaches[j] = (intptr_t)targetRuntimeData->ClonedInlineCaches()->GetInlineCache(j);`
`101`	`103`	`}`
`102`	`104`	`}`
`103`	`105`	`if (jitData->bodyData->inlineCacheCount > 0)`
`@@ -115,7 +117,7 @@ FunctionJITTimeInfo::BuildJITTimeData(`
`115`	`117`	`for (Js::InlineCacheIndex i = 0; i < jitData->bodyData->inlineCacheCount; ++i)`
`116`	`118`	`{`
`117`	`119`	`const Js::FunctionCodeGenJitTimeData * inlineeJITData = codeGenData->GetLdFldInlinee(i);`
`118`		`- const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = isInlinee ? runtimeData->GetLdFldInlinee(i) : functionBody->GetLdFldInlineeCodeGenRuntimeData(i);`
	`120`	`+ const Js::FunctionCodeGenRuntimeData * inlineeRuntimeData = isInlinee ? targetRuntimeData->GetLdFldInlinee(i) : functionBody->GetLdFldInlineeCodeGenRuntimeData(i);`
`119`	`121`	`if (inlineeJITData != nullptr)`
`120`	`122`	`{`
`121`	`123`	`jitData->ldFldInlinees[i] = AnewStructZ(alloc, FunctionJITTimeDataIDL);`
`@@ -138,12 +140,7 @@ FunctionJITTimeInfo::BuildJITTimeData(`
`138`	`140`	`// only inlinee should be polymorphic`
`139`	`141`	`Assert(isInlinee);`
`140`	`142`	`jitData->next = AnewStructZ(alloc, FunctionJITTimeDataIDL);`
`141`		`- const Js::FunctionCodeGenRuntimeData * nextRuntimeData = nullptr;`
`142`		`- if (nextJITData->GetFunctionInfo()->HasBody())`
`143`		`- {`
`144`		`- nextRuntimeData = runtimeData->GetNextForTarget(nextJITData->GetFunctionInfo()->GetFunctionBody());`
`145`		`- }`
`146`		`- BuildJITTimeData(alloc, nextJITData, nextRuntimeData, jitData->next, true, isForegroundJIT);`
	`143`	`+ BuildJITTimeData(alloc, nextJITData, runtimeData, jitData->next, true, isForegroundJIT);`
`147`	`144`	`}`
`148`	`145`	`}`
`149`	`146`	`}`
Original file line number	Diff line number	Diff line change
`@@ -27,14 +27,16 @@ namespace Js`
`27`	`27`	`return &clonedInlineCaches;`
`28`	`28`	`}`
`29`	`29`
`30`		`- FunctionCodeGenRuntimeData * FunctionCodeGenRuntimeData::GetNextForTarget(FunctionBody *targetFuncBody) const`
	`30`	`+ const FunctionCodeGenRuntimeData * FunctionCodeGenRuntimeData::GetForTarget(FunctionBody *targetFuncBody) const`
`31`	`31`	`{`
`32`		`- FunctionCodeGenRuntimeData * next = this->next;`
`33`		`- if (next->GetFunctionBody() != targetFuncBody)`
	`32`	`+ const FunctionCodeGenRuntimeData * target = this;`
	`33`	`+ while (target && target->GetFunctionBody() != targetFuncBody)`
`34`	`34`	`{`
`35`		`- next = next->next;`
	`35`	`+ target = target->next;`
`36`	`36`	`}`
`37`		`- return next;`
	`37`	`+ // we should always find the info`
	`38`	`+ Assert(target);`
	`39`	`+ return target;`
`38`	`40`	`}`
`39`	`41`
`40`	`42`	`const FunctionCodeGenRuntimeData *FunctionCodeGenRuntimeData::GetInlinee(const ProfileId profiledCallSiteId) const`