Download as PDF, PPTX
![AST Rewriter javascript Spread var x = [1,2,3]; var y = […x]; V8 AltJS](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-20-2048.jpg)
![AST Rewriter do { $R = []; for ($i of x) %AppendElement($R, $i); $R } // src/parsing/parser.cc do for-of](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-21-2048.jpg)
![Abstract Syntax Tree var EXPRESSION STATEMENT CALL RUNTIME [IniOalizeVarGlobal] LITERAL (x) LITERAL (100) x 100 ?](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-24-2048.jpg)
![// 擬似的なjavascriptコード ! var Bytecodes = [0,1,2,3] var index = 0; function dispatch(next) { BytecodeHandlers[next](); } const BytecodeHandlers = { ['0']() {...; dispatch(Bytecodes[index++])}, ['1']() {...; dispatch(Bytecodes[index++])}, ['2']() {...; dispatch(Bytecodes[index++])}, ['3']() {...; dispatch(Bytecodes[index++])} } const firstBytecode = Bytecodes[index++]; BytecodeHandlers[firstBytecode](firstBytecode);](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-30-2048.jpg)
![Map function Point(x, y) { this.x = x; this.y = y; } Map FixedArray [ {a: {offset: 0}}, {b: {offset: 1}} ]](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-52-2048.jpg)
![Map Transition function Point(x, y) { this.x = x; this.y = y; } Map FixedArray [ {x: {offset: 0}}, {y: {offset: 1}}, transiOon: {address: …} ] var x = new Point(1, 1); x.z = 1; Map FixedArray [ {x: {offset: 0}}, {y: {offset: 1}}, {z: {offset: 2}} ] transition](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-55-2048.jpg)
![class X {add() {return 1}}! class Y {add() {return 2}}! var m = [new X(), new X(), new Y()];! for (let i = 0; i < m.length; i++) {! m[i].add();! }! !](https://image.slidesharecdn.com/v8-170527074744/75/V8-javascript-engine-for-57-2048.jpg)
Uploaded byTaketoshi 青野健利
V8 javascript engine for フロントエンドデベロッパー
V8 is Google's open source JavaScript engine that is used in Chrome and Node.js. It uses several optimization techniques like hidden classes, inline caching, and TurboFan to improve JavaScript performance. V8 first parses JavaScript into an AST, then compiles it into bytecode which is executed by the Ignition bytecode interpreter or optimized by TurboFan into machine code using techniques like hidden classes to optimize property access and inline caching to optimize function calls.
In this document
Powered by AI
Introduction to V8, a JavaScript engine by Google. It incorporates features like hidden classes and inline caching, with references to CPU architectures.
Introduction to V8, a JavaScript engine by Google. It incorporates features like hidden classes and inline caching, with references to CPU architectures.
Explains V8's parsing process, the creation of Abstract Syntax Trees (AST), and lazy parsing techniques.
Explains V8's parsing process, the creation of Abstract Syntax Trees (AST), and lazy parsing techniques.
This section discusses how V8 rewrites AST for JavaScript code, example use of spread operator, and transition from AST to bytecode.
This section discusses how V8 rewrites AST for JavaScript code, example use of spread operator, and transition from AST to bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Discusses Ignition's role in generating bytecode from AST, including mechanisms for dispatching bytecode.
Focuses on various optimization techniques in V8 like JIT compilation, hidden classes, and inline caching.
Focuses on various optimization techniques in V8 like JIT compilation, hidden classes, and inline caching.
Focuses on various optimization techniques in V8 like JIT compilation, hidden classes, and inline caching.
Focuses on various optimization techniques in V8 like JIT compilation, hidden classes, and inline caching.
Describes how inline caching functions to optimize method calls in V8, including various types of caching.
Describes how inline caching functions to optimize method calls in V8, including various types of caching.
Describes how inline caching functions to optimize method calls in V8, including various types of caching.
Details the compilation process in V8 using TurboFan, including optimizations and deoptimization techniques.
Details the compilation process in V8 using TurboFan, including optimizations and deoptimization techniques.
Details the compilation process in V8 using TurboFan, including optimizations and deoptimization techniques.
A brief overview of garbage collection mechanisms utilized in the V8 engine.
V8 javascript engine for フロントエンドデベロッパー
- 1.
- 2. : @brn () : : Cyberagent RightSegment AI Messenger : http://abcdef.gets.b6n.ch/ Twitter: https://twitter.com/brn227
- 3. V8 V8 Google javascript Google Chrome javascript
- 4. V8 V8 • • Hidden Class • Inline Caching • GC • 2016 • CPU Mips Arm X64 X86 7
- 5.
- 6. V8 Code base V8 108 C++ …
- 7. V8 Source AST BytecodeGraph Assembly
- 8. Parsing V8 AST ASTAbstractSyntaxTree
- 9.
- 10. Abstract Syntax Tree IF CONDITION THEN BLOCK EXPRESSION STATEMENT ASSIGN VAR PROXY (X)LITERAL (100) if (x) { x = 100
- 11.
- 12.
- 13.
- 14.
- 15.
- 16.
- 17. Dive into Parsing V8Parsing https://docs.google.com/presentation/d/1b- ALt6W01nIxutFVFmXMOyd_6ou_6qqP6S0Prmb1iDs/present? slide=id.p
- 18. Abstract Syntax Tree V8yacc lex
- 19.
- 20.
- 21.
- 22. Abstract Syntax Tree AST V8 AST AST …
- 23.
- 24.
- 25. Abstract Syntax Tree V8Runtime C++ AST AST
- 26. AST to Bytecode AST AST Bytecode V8 Bytecode 1Byte Bytecode VM Ignition
- 27.
- 28.
- 29.
- 30.
- 31. Igniton Dispatch Table 00 0102 04 08 0f 10 10 Node Node Node MachineCode MachineCode IGNITION_HANDLER Entry Function(Machine Code) グラフからコードを生成 生成したコードを、 DispatchTableの対応する バイトコードのインデックスへ 登録
- 32. Igniton Ignition AST V8AST v8::internal::AstVisitor<Subclass> AstVisitor Visitor AST
- 33.
- 34.
- 35. Igniton Dispatch Table Entry Function(MachineCode) BytecodeArray Dispatch Tableから対応するHandlerを取り出して実行 0 1 3 4 5 6 7 8 8 6 1
- 36.
- 37. Code Generation Bytecode Bytecode BytecodeHandler
- 38. IGNITION_HANDLER(JumpIfToBooleanFalse, InterpreterAssembler) {! Node*value = GetAccumulator();! // Accumulatorの値を取得! Node* relative_jump = BytecodeOperandUImmWord(0);! // 引数のoperandを取得! Label if_true(this), if_false(this);! BranchIfToBooleanIsTrue(value, &if_true, &if_false);! // valueがtrueならif_true、falseならif_false! Bind(&if_true);! Dispatch();! Bind(&if_false);! // operandのbytecodeまでjump! Jump(relative_jump);! }!
- 39.
- 40.
- 41. IGNITION_HANDLER(ForInContinue, InterpreterAssembler) {! ...! Branch(WordEqual(index,cache_length), &if_true, &if_false);! Bind(&if_true);! {! SetAccumulator(BooleanConstant(false));! Goto(&end);! }! Bind(&if_false);! {! SetAccumulator(BooleanConstant(true));! Goto(&end);! }! ...! }!
- 42. Code Generation MacroAssembler MacroAssembler Assembler V8masm MacroAssembler
- 43. #define __ ACCESS_MASM(masm)! ! staticvoid Generate_StackOverflowCheck(...) {! ! __ LoadRoot(kScratchRegister, Heap::kRealStackLimitRootIndex);! __ movp(scratch, rsp);! ! __ subp(scratch, kScratchRegister);! __ sarp(scratch, Immediate(kPointerSizeLog2));! ! __ cmpp(scratch, num_args);! ! __ j(less_equal, stack_overflow, stack_overflow_distance);! }!
- 44. Code Generation GraphResolver CodeGeneratorGraph MacroAssembler Assembler
- 45. Code Generation MacroAssembler Graph Graph • CodeStubAssembler • CodeAssembler • RawMachineAssembler • MachineOperatorBuilder
- 46.
- 47.
- 48. Optimization V8 3 • Hidden Class • Inline Caching • TurboFan
- 49. Hidden Class javascript class prototype • •
- 50.
- 51. Map V8 • • • Map Map Map
- 52.
- 53.
- 54. Map Transition V8 transitionMap Map
- 55.
- 56.
- 57. class X {add(){return 1}}! class Y {add() {return 2}}! var m = [new X(), new X(), new Y()];! for (let i = 0; i < m.length; i++) {! m[i].add();! }! !
- 58. Inline Caching 初回 V8 add Receiver Map Cached address 1. Search 2.Check 4. Cache 3. Call
- 59.
- 60. Inline Caching Inline Caching4 • Premonomorphic • Monomorphic • Polymorphic • Megamorphic
- 61.
- 62.
- 63. Polymorphic Polymorphic Receiver Polymorphic Map Monomorphic IC
- 64.
- 65.
- 66. (Load/Store)IC_Miss 二回目以降 V8 add Receiver (y) Map Cached address (x) 1. Search 2. CompareMap x !== y 3. (Load/Store)IC_Miss
- 67. Optimized Compilation V8 BytecodeGeneric Runtime
- 68.
- 69.
- 70.
- 71. Function Call Tracing IgnitionReturn Bytecode BytecodeHandler Interrupt Body
- 72.
- 73. TurboFan V8 Graph Graph TurboFan
- 74. TurboFan TurboFan • Looppeeling / Loop elimination • Escape analysis • Lowering • Effect and control linearize • Dead code elimination • Control flow optimization • Memory optimization
- 75. Deoptimization Map overlow 0… V8 Bytecode
- 76.
- 77. V8 GC V8GC