ftl
play

FTL WebKits LLVM based JIT Andrew Trick, Apple Juergen Ributzka, - PowerPoint PPT Presentation

Dec 04, 2022 •458 likes •749 views

FTL WebKits LLVM based JIT Andrew Trick, Apple Juergen Ributzka, Apple LLVM Developers Meeting 2014 San Jose, CA WebKit JS Execution Tiers OSR Entry LLInt DFG FTL Baseline JIT Interpret High-level opts bytecode

  1. FTL WebKit’s LLVM based JIT Andrew Trick, Apple Juergen Ributzka, Apple LLVM Developers’ Meeting 2014 
 San Jose, CA

  2. 
 
 
 WebKit JS Execution Tiers OSR Entry LLInt DFG FTL Baseline JIT Interpret High-level opts bytecode Splat code DFG + LLVM Inlining Profiling 
 function entries, 
 Continue More precise Done profiling 
 branches, types profiling type profiling OSR Exit JS LOC Time Spent in Tier Performance 2 LLInt Baseline DFG FTL

  3. Optimizing FTL Code As with any high-level FTL does… language… 1. Remove abstraction 
 Speculative Type Inference 2. Emit the best code Patchpoint sequence for common operations 3. Do everything else LLVM Pass Pipeline 3

  4. Patchpoint • What are they? • How do they work? 4

  5. Patchpoint Looks like an LLVM IR varargs call Patchable ID Target NumCallArgs Bytes %result = call i64 @patchpoint.i64 
 (i64 7, i32 15, i8* %rtcall, i32 2, 
 i64 %arg0, i64 %arg1, i64 %live0, i32 %live1) Call Args Live Values @patchpoint == (i64, i32, i8*, i32, ...)* @llvm.experimental.patchpoint 5

  6. Patchpoint - Lowering %result = call i64 @patchpoint.i64 
 (i64 7, i32 15, i8* %rtcall, i32 2, 
 i64 %arg0, i64 %arg1, i64 %live0, i32 %live1) Live Values 
 Call Args LLVM IR (may be spilled) to MI Calling Conv. ID PATCHPOINT 7, 15, 4276996625, 2, 0, %RDI, %RSI, 
 %RDX, %RCX, 
 <regmask>, %RSP<imp-def>, %RAX<imp-def >,… Call-Clobbers Return Value Scratch Regs 6

  7. Patchpoint - Assembly %result = call i64 @patchpoint.i64 
 (i64 7, i32 15, i8* %rtcall, i32 2, …) 15 bytes reserved 0x00 movabsq $0xfeedca11, %r11 
 The address and call are 
 0x0a callq *%r11 
 materialized within that space 0x0d nop 
 The rest is padded with nops 0x0e nop • fat nop optimization (x86) 
 runtime must repatch all bytes 7

  8. Patchpoint - Stack Maps Call args omitted PATCHPOINT 7, 15, 4276996625, 2, 0, %RDI, %RSI, 
 %RDX, %RCX, 
 <regmask>, %RSP<imp-def>, %RAX<imp-def >,… Map ID -> offset 
 __LLVM_STACKMAPS section: 
 (from function entry) callsite 7 @instroffset 
 has 2 locations 
 Live Value Locations 
 Loc 0: Register RDX 
 (can be register, constant, 
 Loc 1: Register RCX 
 or frame index) has 2 live-out registers 
 LO 0: RAX 
 Live Registers 
 LO 0: RSP (optional) 
 allow the runtime 
 to optimize spills 8

  9. Patchpoint • Use cases • Future designs 9

  10. Inline Cache Example WebKit patches fast field access code based on a speculated type cmpl $42, 4(%rax) 
 cmpl $53, 4(%rax) 
 jne Lslow 
 jne Lslow 
 leaq 8(%rax), %rax 
 movq 8(%rax), %rax 
 movq 8(%rax), %rax movq -16(%rax), %rax Type check 
 Type check 
 + direct field access + indirect field access ❖ The speculated shape of the object changes at runtime as types evolve. ❖ Inline caches allow type speculation without code invalidation - this is a delicate balance. 10

  11. AnyReg Calling Convention • A calling convention for fast inline caches • Preserve all registers (except scratch) • Call arguments and return value are allocatable 11

  12. llvm.experimental.stackmap • A stripped down patchpoint • No space reserved inline for patching 
 Patching will be destructive • Nice for invalidation points and partial compilation • Captures live state in the stack map the same way • No calling convention or call args • Preserves all but the scratch regs 12

  13. 
 Code Invalidation Example Speculatively Optimized Code call @RuntimeCall(…) Type event triggered 
 Lstackmap: (watchpoint) 
 addq …, %rax jmp Ltrap OSR Exit nop (deoptimization) Lstackmap+5: … branch target 13

  14. Speculation Check Example Type Check Speculation 
 Failure Lstackmap: call Ltrap 
 Speculatively (unreachable) optimized code … OSR Exit 
 (deoptimization) 14

  15. Using Patchpoints for Deoptimization • Deoptimization (bailout) is safe at any point that a valid stackmap exists • The runtime only needs a stackmap location to recover, and a valid reason for the deopt (for profiling) • Deopt can also happen late if no side-effects occurred - the runtime effectively rolls back state • Exploit this feature to reduce the number of patchpoints by combining checks 15

  16. Got Patchpoints? • Dynamic Relocation • Polymorphic Inline Caches • Deoptimization • Speculation Checks • Code Invalidation • Partial Compilation • GC Safepoints 
 *Not in FTL 16

  17. Proposal for llvm.patchpoint • Pending community acceptance • Only one intrinsic: llvm.patchpoint • Call attributes will select behavior • "deopt" patchpoints may be executed early • "destructive" patchpoints will not emit code or reserve space • Symbolic target implies callee semantics • Add a condition to allow hoisting/combining at LLVM level 17

  18. Proposal for llvm.patchpoint Optimizing Runtime Checks Using Deoptimization %a = cmp <TrapConditionA> 
 call @patchpoint(1, %a, <state-before-loop>) deopt 
 Loop: 
 %b = cmp <TrapConditionB> 
 call @patchpoint(2, %b, <state-in-loop>) deopt 
 (do something…) Can be optimized to this… 
 As long as C implies (A or B) %c = cmp <TrapConditionC> 
 @patchpoint(1, %c, <state-before-loop>) 
 Loop: 
 (do something…) 18

  19. FTL LLVM as a high performance JIT 19

  20. Anatomy of FTL’s LLVM IR ; <label>:13 ; preds = %0 %14 = add i64 %8, 48 %15 = inttoptr i64 %14 to i64* 8 Instructions %16 = load i64* %15, !tbaa !4 %17 = add i64 %8, 56 %18 = inttoptr i64 %17 to i64* %19 = load i64* %18, !tbaa !5 %20 = icmp ult i64 %19, -281474976710656 br i1 %20, label %21, label %22, !prof !3 ; <label>:21 ; preds = %13 1 Instruction call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 3, i32 5, i64 %19) unreachable ; <label>:22 ; preds = %13 %23 = trunc i64 %19 to i32 6 Instructions %24 = add i64 %8, 64 %25 = inttoptr i64 %24 to i64* • Many small BBs %26 = load i64* %25, !tbaa !6 %27 = icmp ult i64 %26, -281474976710656 br i1 %27, label %28, label %29, !prof !3 ; <label>:28 ; preds = %22 1 Instruction call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 4, i32 5, i64 %26) unreachable ; <label>:29 ; preds = %22 %30 = trunc i64 %26 to i32 %31 = add i64 %8, 72 7 Instructions %32 = inttoptr i64 %31 to i64* %33 = load i64* %32, !tbaa !7 %34 = and i64 %33, -281474976710656 %35 = icmp eq i64 %34, 0 br i1 %35, label %36, label %37, !prof !3 ; <label>:36 ; preds = %29 1 Instruction call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 5, i32 5, i64 %33, i32 %23, i32 %30) unreachable 20

  21. Anatomy of FTL’s LLVM IR ; <label>:13 ; preds = %0 %14 = add i64 %8, 48 %15 = inttoptr i64 %14 to i64* %16 = load i64* %15, !tbaa !4 %17 = add i64 %8, 56 %18 = inttoptr i64 %17 to i64* -281474976710656 %19 = load i64* %18, !tbaa !5 %20 = icmp ult i64 %19, -281474976710656 br i1 %20, label %21, label %22, !prof !3 ; <label>:21 ; preds = %13 call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 3, i32 5, i64 %19) unreachable ; <label>:22 ; preds = %13 • Many small BBs %23 = trunc i64 %19 to i32 %24 = add i64 %8, 64 %25 = inttoptr i64 %24 to i64* %26 = load i64* %25, !tbaa !6 -281474976710656 %27 = icmp ult i64 %26, -281474976710656 br i1 %27, label %28, label %29, !prof !3 • Many large constants ; <label>:28 ; preds = %22 call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 4, i32 5, i64 %26) unreachable ; <label>:29 ; preds = %22 %30 = trunc i64 %26 to i32 %31 = add i64 %8, 72 %32 = inttoptr i64 %31 to i64* %33 = load i64* %32, !tbaa !7 -281474976710656 %34 = and i64 %33, -281474976710656 %35 = icmp eq i64 %34, 0 br i1 %35, label %36, label %37, !prof !3 ; <label>:36 ; preds = %29 call void (i64, i32, ...)* @llvm.experimental.stackmap(i64 5, i32 5, i64 %33, i32 %23, i32 %30) unreachable 21

  22. Anatomy of FTL’s LLVM IR • Many small BBs 5699271192 5682233400 store i64 %54, i64* inttoptr (i64 5699271192 to i64*) • Many large constants %55 = load double* inttoptr (i64 5682233400 to double*) %56 = load double* inttoptr (i64 5682233456 to double*) 5682233456 %57 = load double* inttoptr (i64 5682233512 to double*) %58 = load double* inttoptr (i64 5682233568 to double*) %59 = load double* inttoptr (i64 5682233624 to double*) 5682233512 %60 = load double* inttoptr (i64 5682233384 to double*) • Many similar … constants 22

  23. Anatomy of FTL’s LLVM IR • Many small BBs • Many large constants • Many similar constants • Some Arithmetic with overflow checks • Lots of patchpoint/stackmap intrinsics 23

  24. Constant Hoisting • Reduce materialization of common constants in every basic block • Coalesce similar constants into base + offset • Works around SelectionDAG limitations • Optimizes on function level 24

  25. LLVM Optimizations for FTL • Reduced OPT pipeline • InstCombine • SimplifyCFG • GVN • DSE • TBAA • Better ISEL • Good register allocation 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Generalized Koszul duality applied to complete intersection rings Jesse Burke, UCLA Dave

Generalized Koszul duality applied to complete intersection rings Jesse Burke, UCLA Dave

Generalized Koszul duality applied to complete intersection rings Jesse Burke, UCLA Dave Bensons Birthday Isle of Skye June 26, 2015 BGG (Bernstein-Gelfand-Gelfand) Correspondence Q commutative ring S = Q [ T 1 , . . . , T c ] with | T

1.2k views • 109 slides
The Spatial Skyline Queries Mehdi Sharifzadeh and Cyrus Shahabi VLDB 2006 VLDB 2006 Presented

The Spatial Skyline Queries Mehdi Sharifzadeh and Cyrus Shahabi VLDB 2006 VLDB 2006 Presented

10/27/2009 Coffee shop The Spatial Skyline Queries Mehdi Sharifzadeh and Cyrus Shahabi VLDB 2006 VLDB 2006 Presented by Ali Khodaei Coffee shop Coffee shop Dont choose this Three friends Three friends place p is closer to each three

751 views • 6 slides
CALIBRATION AND IMAGING WITH LOFAR Emanuela Orru on behalf of the Calibration and Imaging

CALIBRATION AND IMAGING WITH LOFAR Emanuela Orru on behalf of the Calibration and Imaging

CALIBRATION AND IMAGING WITH LOFAR Emanuela Orru on behalf of the Calibration and Imaging Tiger Team (CITT) Wednesday, 7 December 16 BASIC COMPONENTS Calibration and imaging software HBA Goal: Facilitate the Radio Observatory to provide

431 views • 32 slides
Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G. Paterson Information Security Group Royal Holloway, University of London Outline of the Talk Hierarchical Key Assignment Schemes Definition of

802 views • 48 slides
So, how many are familiar with IRC?

So, how many are familiar with IRC?

So, how many are familiar with IRC? How about ICQ? Presence: The ability to see when your friends (or whoever is on

485 views • 7 slides
Theory of Computation Textbook The Nature of Computation by Cristopher Moore and (CS

Theory of Computation Textbook The Nature of Computation by Cristopher Moore and (CS

CS422 CS422 Fall Semester 2014 Textbook Theory of Computation Textbook The Nature of Computation by Cristopher Moore and (CS 422/MAS480B) Stephan Mertens. Expensive and has about 1000 pages. The book is available on course reserve in the

500 views • 5 slides
Optimizing Impression Counts for Outdoor Advertising Yipeng Zhang, Yuchen Li, Zhifeng Bao,

Optimizing Impression Counts for Outdoor Advertising Yipeng Zhang, Yuchen Li, Zhifeng Bao,

Optimizing Impression Counts for Outdoor Advertising Yipeng Zhang, Yuchen Li, Zhifeng Bao, Songsong Mo and Ping Zhang RMIT University, Melbourne, Australia 1 $30 Billion 80% 2 I Impression I I mpression mpression mpression C C

993 views • 39 slides
Web Crawling gzsun@ustc.edu.cn Reference [ ACGPR01] Searching the Web , Arvind Arasu,

Web Crawling gzsun@ustc.edu.cn Reference [ ACGPR01] Searching the Web , Arvind Arasu,

Web Crawling gzsun@ustc.edu.cn Reference [ ACGPR01] Searching the Web , Arvind Arasu, Junghoo Cho, Hector Garcia- Molina, Andreas Paepcke, and Sriram Raghavan. ACM Transactions on Internet Technology, 1, p. 2-43, 2001. [ BP98] The

594 views • 23 slides
ToothPicker Apple Picking in the iOS Bluetooth Stack TOOTHP CKER Dennis Heinze Jiska Classen,

ToothPicker Apple Picking in the iOS Bluetooth Stack TOOTHP CKER Dennis Heinze Jiska Classen,

ToothPicker Apple Picking in the iOS Bluetooth Stack TOOTHP CKER Dennis Heinze Jiska Classen, Matthias Hollick Technische Universitt Darmstadt Technische Universitt Darmstadt Secure Mobile Networking Lab - SEEMOO Secure Mobile Networking

578 views • 37 slides
EECS 583 Class 5 Dataflow Analysis Intro University of Michigan September 17, 2014 Reading

EECS 583 Class 5 Dataflow Analysis Intro University of Michigan September 17, 2014 Reading

EECS 583 Class 5 Dataflow Analysis Intro University of Michigan September 17, 2014 Reading Material + Announcements Reminder HW 1 due Monday at midnight Before asking questions: 1) Read all threads on piazza, 2) Think a bit

484 views • 25 slides
SIM PTO TRAINING SEPTEMBER 26, 2018 9:00 AM Call Instructions: Please Mute your phone,

SIM PTO TRAINING SEPTEMBER 26, 2018 9:00 AM Call Instructions: Please Mute your phone,

SIM PTO TRAINING SEPTEMBER 26, 2018 9:00 AM Call Instructions: Please Mute your phone, microphone, and speakers on your computer/device Turn off the zoom video feature Enter your name/organization in the chat box feature for

676 views • 33 slides
MAVERIC: 6-Month Outcomes of Transcatheter MV Repair in Patients With Severe Secondary Mitral

MAVERIC: 6-Month Outcomes of Transcatheter MV Repair in Patients With Severe Secondary Mitral

MAVERIC: 6-Month Outcomes of Transcatheter MV Repair in Patients With Severe Secondary Mitral Regurgitation S.G. Worthley, MB, BS, PhD., S. Redwood, MD, PhD., D. Hildick-Smith, MD., T. Rafter, MB, BBS., F. Demarco, MD., M. Horrigan, MB., V.

207 views • 17 slides
Cal Poly Outline Jupyter + Computational Notebooks Data Science in Large, Complex

Cal Poly Outline Jupyter + Computational Notebooks Data Science in Large, Complex

@ellisonbg Project Jupyter: From Computational Notebooks to Large Scale Data Science with Sensitive Data Brian Granger Cal Poly, Physics/Data Science Project Jupyter, Co-Founder ACM Learning Seminar September 2018 Cal Poly Outline

353 views • 33 slides
Adiabatic limits, Theta functions, and Geometric Quantization 2019 CMS Winter Meeting Takahiko

Adiabatic limits, Theta functions, and Geometric Quantization 2019 CMS Winter Meeting Takahiko

Adiabatic limits, Theta functions, and Geometric Quantization 2019 CMS Winter Meeting Takahiko Yoshida Meiji University Based on arXiv:1904.04076 1 Purpose &amp; Main Theorems Geometric quantization Geometric quantization

472 views • 15 slides
Generation CMSC 426 - Computer Security Slides originally by Dr. Marron, modified by Robert Joyce

Generation CMSC 426 - Computer Security Slides originally by Dr. Marron, modified by Robert Joyce

Random Number Generation CMSC 426 - Computer Security Slides originally by Dr. Marron, modified by Robert Joyce Outline Properties of PRNGs LCGs Blum, Blum, Shub NIST SP 800-90A Random Number Uses Generation of symmetric

540 views • 18 slides
Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th

Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th

Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th International Workshop Arnau Vives-Guasch 1 a 2 M. Magdalena Payeras-Capell` a Mut-Puigserver 2 a-Roca 1 Maci` Jordi Castell` s Ferrer-Gomila 2

605 views • 27 slides
News System Environment bbsd Innd Jail Server Requirement(Innd) Install INN news server

News System Environment bbsd Innd Jail Server Requirement(Innd) Install INN news server

News System Environment bbsd Innd Jail Server Requirement(Innd) Install INN news server and use news reader to read/post it properly Using CNFS and TradSpool for different newsgroups Create a newsgroup na.share to exchange

483 views • 10 slides
Management: Evidence from the Pension Fund Industry David Blake, Alberto Rossi, Allan Timmermann,

Management: Evidence from the Pension Fund Industry David Blake, Alberto Rossi, Allan Timmermann,

Decentralized Investment Management: Evidence from the Pension Fund Industry David Blake, Alberto Rossi, Allan Timmermann, Ian Tonks &amp; Russ Wermers Funded pensions: some numbers Total Assets = 1,797bn Auto-enrolment (from 2012),

395 views • 28 slides
Graph Analytics: Complexity, Scalability, and Architectures Peter M. Kogge McCourtney Prof. of

Graph Analytics: Complexity, Scalability, and Architectures Peter M. Kogge McCourtney Prof. of

Graph Analytics: Complexity, Scalability, and Architectures Peter M. Kogge McCourtney Prof. of CSE Univ. of Notre Dame IBM Fellow (retired) Please Sir, I want more GABB: May 23, 2016 1 Thesis Graph computation is increasing To

557 views • 34 slides
Recent results on branching Brownian motion on the positive real axis Pascal Maillard

Recent results on branching Brownian motion on the positive real axis Pascal Maillard

Recent results on branching Brownian motion on the positive real axis Pascal Maillard (Universit Paris-Sud (soon Paris-Saclay)) CMAP, Ecole Polytechnique, May 18 2017 Pascal Maillard Branching Brownian motion with selection 1 / 27 Outline

689 views • 36 slides
Symbolic Execution and Fuzz Testing ISSISP Summer School 2018 Prof. Abhik Roychoudhury National

Symbolic Execution and Fuzz Testing ISSISP Summer School 2018 Prof. Abhik Roychoudhury National

Symbolic Execution and Fuzz Testing ISSISP Summer School 2018 Prof. Abhik Roychoudhury National University of Singapore 1 Thanks to organizers and ISSISP Steve Blackburn Adrian Herrera ISSISP Summer School 2018 Tony Hosking

1.17k views • 99 slides
Automatic Groups Redux Robert Gilman Stevens Institute of Technology Geometric and Asymptotic

Automatic Groups Redux Robert Gilman Stevens Institute of Technology Geometric and Asymptotic

Automatic Groups Redux Robert Gilman Stevens Institute of Technology Geometric and Asymptotic Group Theory with Applications City College of New York May 28, 2013 Robert Gilman (Stevens) Automatic Groups Redux GAGTA 2013 1 / 11 Automatic

351 views • 11 slides
Security and Privacy at Scale Geetanjali Sampemane geta@google.com Cloud All your stuff is

Security and Privacy at Scale Geetanjali Sampemane geta@google.com Cloud All your stuff is

Security and Privacy at Scale Geetanjali Sampemane geta@google.com Cloud All your stuff is online All your stuff The cloud, aka &quot;online&quot; You Cloud v0? Shared multi-user computing: Multics, Unix, VMS, ... Online user

463 views • 22 slides
Progress on B-physics lattice calculations by ETMC Petros Dimopoulos University of Rome Tor

Progress on B-physics lattice calculations by ETMC Petros Dimopoulos University of Rome Tor

Progress on B-physics lattice calculations by ETMC Petros Dimopoulos University of Rome Tor Vergata on behalf of ETM Collaboration September 19, 2012 New Frontiers in Lattice Gauge Theory Galileo Galilei Institute for Theoretical

646 views • 36 slides

More recommend