[webkit-changes] [WebKit/WebKit] 73c4a7: Clobber first two argument GPRs across OMG loop ti...
Commit Queue
noreply at github.com
Thu Mar 9 08:14:20 PST 2023
Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 73c4a75b5bf16db40a4600874ccb0588591b8819
https://github.com/WebKit/WebKit/commit/73c4a75b5bf16db40a4600874ccb0588591b8819
Author: David Degazio <d_degazio at apple.com>
Date: 2023-03-09 (Thu, 09 Mar 2023)
Changed paths:
A JSTests/wasm/stress/live-funcref-across-loop-tier-up.js
M Source/JavaScriptCore/wasm/WasmBBQJIT.cpp
Log Message:
-----------
Clobber first two argument GPRs across OMG loop tier-up check in BBQ JIT
https://bugs.webkit.org/show_bug.cgi?id=253584
rdar://106360294
Reviewed by Justin Michaud and Yusuke Suzuki.
Our current BBQ JIT implementation only clobbers argumentGPR0 and argumentGPR1
across the entry tier-up check, not loop tier-up checks. This patch adds this
clobbering to loop tier-up checks as well, preventing values in these registers
from being overwritten when we return from the tier-up operation.
* JSTests/wasm/stress/live-funcref-across-loop-tier-up.js: Added.
* Source/JavaScriptCore/wasm/WasmBBQJIT.cpp:
(JSC::Wasm::BBQJIT::emitLoopTierUpCheck):
Canonical link: https://commits.webkit.org/261435@main
More information about the webkit-changes
mailing list