2009-04-06 14:55:01 +00:00
|
|
|
// Copyright 2006-2009 the V8 project authors. All rights reserved.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Redistribution and use in source and binary forms, with or without
|
|
|
|
|
// modification, are permitted provided that the following conditions are
|
|
|
|
|
// met:
|
|
|
|
|
//
|
|
|
|
|
// * Redistributions of source code must retain the above copyright
|
|
|
|
|
// notice, this list of conditions and the following disclaimer.
|
|
|
|
|
// * Redistributions in binary form must reproduce the above
|
|
|
|
|
// copyright notice, this list of conditions and the following
|
|
|
|
|
// disclaimer in the documentation and/or other materials provided
|
|
|
|
|
// with the distribution.
|
|
|
|
|
// * Neither the name of Google Inc. nor the names of its
|
|
|
|
|
// contributors may be used to endorse or promote products derived
|
|
|
|
|
// from this software without specific prior written permission.
|
|
|
|
|
//
|
|
|
|
|
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
|
|
|
// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
|
|
|
// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
|
|
|
// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
|
|
|
// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
|
// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
|
|
|
// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
|
// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
|
// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
|
// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
|
// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
|
|
|
|
|
#include "v8.h"
|
|
|
|
|
|
|
|
|
|
#include "api.h"
|
2009-09-30 12:25:46 +00:00
|
|
|
#include "arguments.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "bootstrapper.h"
|
|
|
|
|
#include "debug.h"
|
|
|
|
|
#include "execution.h"
|
|
|
|
|
#include "objects-inl.h"
|
|
|
|
|
#include "macro-assembler.h"
|
|
|
|
|
#include "scanner.h"
|
|
|
|
|
#include "scopeinfo.h"
|
|
|
|
|
#include "string-stream.h"
|
2009-11-24 14:10:06 +00:00
|
|
|
#include "utils.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-13 09:32:07 +00:00
|
|
|
#ifdef ENABLE_DISASSEMBLER
|
|
|
|
|
#include "disassembler.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2009-05-25 10:05:56 +00:00
|
|
|
namespace v8 {
|
|
|
|
|
namespace internal {
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Getters and setters are stored in a fixed array property. These are
|
|
|
|
|
// constants for their indices.
|
|
|
|
|
const int kGetterIndex = 0;
|
|
|
|
|
const int kSetterIndex = 1;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static Object* CreateJSValue(JSFunction* constructor, Object* value) {
|
|
|
|
|
Object* result = Heap::AllocateJSObject(constructor);
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
JSValue::cast(result)->set_value(value);
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::ToObject(Context* global_context) {
|
|
|
|
|
if (IsNumber()) {
|
|
|
|
|
return CreateJSValue(global_context->number_function(), this);
|
|
|
|
|
} else if (IsBoolean()) {
|
|
|
|
|
return CreateJSValue(global_context->boolean_function(), this);
|
|
|
|
|
} else if (IsString()) {
|
|
|
|
|
return CreateJSValue(global_context->string_function(), this);
|
|
|
|
|
}
|
|
|
|
|
ASSERT(IsJSObject());
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::ToObject() {
|
|
|
|
|
Context* global_context = Top::context()->global_context();
|
|
|
|
|
if (IsJSObject()) {
|
|
|
|
|
return this;
|
|
|
|
|
} else if (IsNumber()) {
|
|
|
|
|
return CreateJSValue(global_context->number_function(), this);
|
|
|
|
|
} else if (IsBoolean()) {
|
|
|
|
|
return CreateJSValue(global_context->boolean_function(), this);
|
|
|
|
|
} else if (IsString()) {
|
|
|
|
|
return CreateJSValue(global_context->string_function(), this);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Throw a type error.
|
|
|
|
|
return Failure::InternalError();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::ToBoolean() {
|
|
|
|
|
if (IsTrue()) return Heap::true_value();
|
|
|
|
|
if (IsFalse()) return Heap::false_value();
|
|
|
|
|
if (IsSmi()) {
|
|
|
|
|
return Heap::ToBoolean(Smi::cast(this)->value() != 0);
|
|
|
|
|
}
|
|
|
|
|
if (IsUndefined() || IsNull()) return Heap::false_value();
|
|
|
|
|
// Undetectable object is false
|
|
|
|
|
if (IsUndetectableObject()) {
|
|
|
|
|
return Heap::false_value();
|
|
|
|
|
}
|
|
|
|
|
if (IsString()) {
|
|
|
|
|
return Heap::ToBoolean(String::cast(this)->length() != 0);
|
|
|
|
|
}
|
|
|
|
|
if (IsHeapNumber()) {
|
|
|
|
|
return HeapNumber::cast(this)->HeapNumberToBoolean();
|
|
|
|
|
}
|
|
|
|
|
return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Object::Lookup(String* name, LookupResult* result) {
|
|
|
|
|
if (IsJSObject()) return JSObject::cast(this)->Lookup(name, result);
|
|
|
|
|
Object* holder = NULL;
|
|
|
|
|
Context* global_context = Top::context()->global_context();
|
|
|
|
|
if (IsString()) {
|
|
|
|
|
holder = global_context->string_function()->instance_prototype();
|
|
|
|
|
} else if (IsNumber()) {
|
|
|
|
|
holder = global_context->number_function()->instance_prototype();
|
|
|
|
|
} else if (IsBoolean()) {
|
|
|
|
|
holder = global_context->boolean_function()->instance_prototype();
|
|
|
|
|
}
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(holder != NULL); // Cannot handle null or undefined.
|
2008-07-03 15:10:15 +00:00
|
|
|
JSObject::cast(holder)->Lookup(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::GetPropertyWithReceiver(Object* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
Lookup(name, &result);
|
2008-12-08 10:29:03 +00:00
|
|
|
Object* value = GetProperty(receiver, &result, name, attributes);
|
|
|
|
|
ASSERT(*attributes <= ABSENT);
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::GetPropertyWithCallback(Object* receiver,
|
|
|
|
|
Object* structure,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* holder) {
|
|
|
|
|
// To accommodate both the old and the new api we switch on the
|
|
|
|
|
// data structure used to store the callbacks. Eventually proxy
|
|
|
|
|
// callbacks should be phased out.
|
|
|
|
|
if (structure->IsProxy()) {
|
|
|
|
|
AccessorDescriptor* callback =
|
|
|
|
|
reinterpret_cast<AccessorDescriptor*>(Proxy::cast(structure)->proxy());
|
|
|
|
|
Object* value = (callback->getter)(receiver, callback->data);
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// api style callbacks.
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* data = AccessorInfo::cast(structure);
|
|
|
|
|
Object* fun_obj = data->getter();
|
|
|
|
|
v8::AccessorGetter call_fun = v8::ToCData<v8::AccessorGetter>(fun_obj);
|
|
|
|
|
HandleScope scope;
|
2009-09-30 12:25:46 +00:00
|
|
|
JSObject* self = JSObject::cast(receiver);
|
|
|
|
|
JSObject* holder_handle = JSObject::cast(holder);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<String> key(name);
|
2009-09-30 12:25:46 +00:00
|
|
|
LOG(ApiNamedPropertyAccess("load", self, name));
|
|
|
|
|
CustomArguments args(data->data(), self, holder_handle);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = call_fun(v8::Utils::ToLocal(key), info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (result.IsEmpty()) return Heap::undefined_value();
|
|
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// __defineGetter__ callback
|
|
|
|
|
if (structure->IsFixedArray()) {
|
|
|
|
|
Object* getter = FixedArray::cast(structure)->get(kGetterIndex);
|
|
|
|
|
if (getter->IsJSFunction()) {
|
2009-03-13 11:40:09 +00:00
|
|
|
return Object::GetPropertyWithDefinedGetter(receiver,
|
|
|
|
|
JSFunction::cast(getter));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Getter is not a function.
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* Object::GetPropertyWithDefinedGetter(Object* receiver,
|
|
|
|
|
JSFunction* getter) {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSFunction> fun(JSFunction::cast(getter));
|
|
|
|
|
Handle<Object> self(receiver);
|
2009-07-16 07:07:51 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
|
|
|
|
// Handle stepping into a getter if step into is active.
|
|
|
|
|
if (Debug::StepInActive()) {
|
|
|
|
|
Debug::HandleStepIn(fun, Handle<Object>::null(), 0, false);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
2009-03-13 11:40:09 +00:00
|
|
|
bool has_pending_exception;
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(fun, self, 0, NULL, &has_pending_exception);
|
|
|
|
|
// Check for pending exception and return the result.
|
|
|
|
|
if (has_pending_exception) return Failure::Exception();
|
|
|
|
|
return *result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Only deal with CALLBACKS and INTERCEPTOR
|
2008-12-08 10:29:03 +00:00
|
|
|
Object* JSObject::GetPropertyWithFailedAccessCheck(
|
|
|
|
|
Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsValid()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
// Only allow API accessors.
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_read()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
*attributes = result->GetAttributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
return GetPropertyWithCallback(receiver,
|
|
|
|
|
result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
result->holder());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case NORMAL:
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
|
|
|
|
// Search ALL_CAN_READ accessors in prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedPropertyInPrototypes(name, &r);
|
|
|
|
|
if (r.IsValid()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
return GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// If the object has an interceptor, try real named properties.
|
|
|
|
|
// No access check in GetPropertyAttributeWithInterceptor.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedProperty(name, &r);
|
|
|
|
|
if (r.IsValid()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
return GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
default: {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-12-08 10:29:03 +00:00
|
|
|
// No accessible property found.
|
|
|
|
|
*attributes = ABSENT;
|
2008-07-03 15:10:15 +00:00
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_GET);
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-31 09:42:14 +00:00
|
|
|
PropertyAttributes JSObject::GetPropertyAttributeWithFailedAccessCheck(
|
|
|
|
|
Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
|
|
|
|
if (result->IsValid()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
// Only allow API accessors.
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_read()) {
|
|
|
|
|
return result->GetAttributes();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case NORMAL:
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
2008-10-31 10:11:39 +00:00
|
|
|
if (!continue_search) break;
|
2008-10-31 09:42:14 +00:00
|
|
|
// Search ALL_CAN_READ accessors in prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedPropertyInPrototypes(name, &r);
|
2008-10-31 10:11:39 +00:00
|
|
|
if (r.IsValid()) {
|
2008-10-31 09:42:14 +00:00
|
|
|
return GetPropertyAttributeWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// If the object has an interceptor, try real named properties.
|
|
|
|
|
// No access check in GetPropertyAttributeWithInterceptor.
|
|
|
|
|
LookupResult r;
|
2008-10-31 10:11:39 +00:00
|
|
|
if (continue_search) {
|
|
|
|
|
result->holder()->LookupRealNamedProperty(name, &r);
|
|
|
|
|
} else {
|
|
|
|
|
result->holder()->LocalLookupRealNamedProperty(name, &r);
|
|
|
|
|
}
|
|
|
|
|
if (r.IsValid()) {
|
2008-10-31 09:42:14 +00:00
|
|
|
return GetPropertyAttributeWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
default: {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* JSObject::GetLazyProperty(Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<Object> this_handle(this);
|
|
|
|
|
Handle<Object> receiver_handle(receiver);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
bool pending_exception;
|
2009-04-24 08:13:09 +00:00
|
|
|
LoadLazy(Handle<JSObject>(JSObject::cast(result->GetLazyValue())),
|
2008-07-03 15:10:15 +00:00
|
|
|
&pending_exception);
|
|
|
|
|
if (pending_exception) return Failure::Exception();
|
|
|
|
|
return this_handle->GetPropertyWithReceiver(*receiver_handle,
|
|
|
|
|
*name_handle,
|
|
|
|
|
attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetLazyProperty(LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
ASSERT(!IsJSGlobalProxy());
|
2008-07-03 15:10:15 +00:00
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
bool pending_exception;
|
2009-04-24 08:13:09 +00:00
|
|
|
LoadLazy(Handle<JSObject>(JSObject::cast(result->GetLazyValue())),
|
2008-07-03 15:10:15 +00:00
|
|
|
&pending_exception);
|
|
|
|
|
if (pending_exception) return Failure::Exception();
|
|
|
|
|
return this_handle->SetProperty(*name_handle, *value_handle, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* JSObject::DeleteLazyProperty(LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
DeleteMode mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
bool pending_exception;
|
2009-04-24 08:13:09 +00:00
|
|
|
LoadLazy(Handle<JSObject>(JSObject::cast(result->GetLazyValue())),
|
2008-07-03 15:10:15 +00:00
|
|
|
&pending_exception);
|
|
|
|
|
if (pending_exception) return Failure::Exception();
|
2009-06-08 09:46:09 +00:00
|
|
|
return this_handle->DeleteProperty(*name_handle, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* JSObject::GetNormalizedProperty(LookupResult* result) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(result->GetDictionaryEntry());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
value = JSGlobalPropertyCell::cast(value)->value();
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!value->IsJSGlobalPropertyCell());
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetNormalizedProperty(LookupResult* result, Object* value) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(
|
|
|
|
|
property_dictionary()->ValueAt(result->GetDictionaryEntry()));
|
|
|
|
|
cell->set_value(value);
|
|
|
|
|
} else {
|
|
|
|
|
property_dictionary()->ValueAtPut(result->GetDictionaryEntry(), value);
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetNormalizedProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry == StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* store_value = value;
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
store_value = Heap::AllocateJSGlobalPropertyCell(value);
|
|
|
|
|
if (store_value->IsFailure()) return store_value;
|
|
|
|
|
}
|
2009-07-10 09:40:47 +00:00
|
|
|
Object* dict = property_dictionary()->Add(name, store_value, details);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (dict->IsFailure()) return dict;
|
2009-07-02 06:50:43 +00:00
|
|
|
set_properties(StringDictionary::cast(dict));
|
2009-06-30 10:05:36 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
// Preserve enumeration index.
|
|
|
|
|
details = PropertyDetails(details.attributes(),
|
|
|
|
|
details.type(),
|
|
|
|
|
property_dictionary()->DetailsAt(entry).index());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(property_dictionary()->ValueAt(entry));
|
|
|
|
|
cell->set_value(value);
|
|
|
|
|
// Please note we have to update the property details.
|
|
|
|
|
property_dictionary()->DetailsAtPut(entry, details);
|
|
|
|
|
} else {
|
2009-07-02 06:50:43 +00:00
|
|
|
property_dictionary()->SetEntry(entry, name, value, details);
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::DeleteNormalizedProperty(String* name, DeleteMode mode) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = property_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
// If we have a global object set the cell to the hole.
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
2009-07-08 11:32:03 +00:00
|
|
|
if (details.IsDontDelete()) {
|
|
|
|
|
if (mode != FORCE_DELETION) return Heap::false_value();
|
|
|
|
|
// When forced to delete global properties, we have to make a
|
|
|
|
|
// map change to invalidate any ICs that think they can load
|
|
|
|
|
// from the DontDelete cell without checking if it contains
|
|
|
|
|
// the hole value.
|
|
|
|
|
Object* new_map = map()->CopyDropDescriptors();
|
|
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
set_map(Map::cast(new_map));
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(dictionary->ValueAt(entry));
|
|
|
|
|
cell->set_value(Heap::the_hole_value());
|
|
|
|
|
dictionary->DetailsAtPut(entry, details.AsDeleted());
|
|
|
|
|
} else {
|
|
|
|
|
return dictionary->DeleteProperty(entry, mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-09-17 08:58:06 +00:00
|
|
|
bool JSObject::IsDirty() {
|
|
|
|
|
Object* cons_obj = map()->constructor();
|
|
|
|
|
if (!cons_obj->IsJSFunction())
|
|
|
|
|
return true;
|
|
|
|
|
JSFunction* fun = JSFunction::cast(cons_obj);
|
|
|
|
|
if (!fun->shared()->function_data()->IsFunctionTemplateInfo())
|
|
|
|
|
return true;
|
|
|
|
|
// If the object is fully fast case and has the same map it was
|
|
|
|
|
// created with then no changes can have been made to it.
|
|
|
|
|
return map() != fun->initial_map()
|
|
|
|
|
|| !HasFastElements()
|
|
|
|
|
|| !HasFastProperties();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* Object::GetProperty(Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
// Traverse the prototype chain from the current object (this) to
|
|
|
|
|
// the holder and check for access rights. This avoid traversing the
|
|
|
|
|
// objects more than once in case of interceptors, because the
|
|
|
|
|
// holder will always be the interceptor holder and the search may
|
|
|
|
|
// only continue with a current object just after the interceptor
|
|
|
|
|
// holder in the prototype chain.
|
|
|
|
|
Object* last = result->IsValid() ? result->holder() : Heap::null_value();
|
|
|
|
|
for (Object* current = this; true; current = current->GetPrototype()) {
|
|
|
|
|
if (current->IsAccessCheckNeeded()) {
|
|
|
|
|
// Check if we're allowed to read from the current object. Note
|
|
|
|
|
// that even though we may not actually end up loading the named
|
|
|
|
|
// property from the current object, we still check that we have
|
2008-10-29 10:37:14 +00:00
|
|
|
// access to it.
|
2008-07-03 15:10:15 +00:00
|
|
|
JSObject* checked = JSObject::cast(current);
|
|
|
|
|
if (!Top::MayNamedAccess(checked, name, v8::ACCESS_GET)) {
|
|
|
|
|
return checked->GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
result,
|
2008-12-08 10:29:03 +00:00
|
|
|
name,
|
|
|
|
|
attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Stop traversing the chain once we reach the last object in the
|
|
|
|
|
// chain; either the holder of the result or null in case of an
|
|
|
|
|
// absent property.
|
|
|
|
|
if (current == last) break;
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-25 07:37:58 +00:00
|
|
|
if (!result->IsProperty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*attributes = ABSENT;
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
*attributes = result->GetAttributes();
|
|
|
|
|
if (!result->IsLoaded()) {
|
|
|
|
|
return JSObject::cast(this)->GetLazyProperty(receiver,
|
|
|
|
|
result,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
|
|
|
|
}
|
|
|
|
|
Object* value;
|
|
|
|
|
JSObject* holder = result->holder();
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
2009-06-30 10:05:36 +00:00
|
|
|
value = holder->GetNormalizedProperty(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(!value->IsTheHole() || result->IsReadOnly());
|
|
|
|
|
return value->IsTheHole() ? Heap::undefined_value() : value;
|
|
|
|
|
case FIELD:
|
2008-10-15 06:03:26 +00:00
|
|
|
value = holder->FastPropertyAt(result->GetFieldIndex());
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(!value->IsTheHole() || result->IsReadOnly());
|
|
|
|
|
return value->IsTheHole() ? Heap::undefined_value() : value;
|
|
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
return result->GetConstantFunction();
|
|
|
|
|
case CALLBACKS:
|
|
|
|
|
return GetPropertyWithCallback(receiver,
|
|
|
|
|
result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
holder);
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
JSObject* recvr = JSObject::cast(receiver);
|
|
|
|
|
return holder->GetPropertyWithInterceptor(recvr, name, attributes);
|
|
|
|
|
}
|
2008-07-25 07:37:58 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::GetElementWithReceiver(Object* receiver, uint32_t index) {
|
|
|
|
|
// Non-JS objects do not have integer indexed properties.
|
|
|
|
|
if (!IsJSObject()) return Heap::undefined_value();
|
|
|
|
|
return JSObject::cast(this)->GetElementWithReceiver(JSObject::cast(receiver),
|
|
|
|
|
index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::GetPrototype() {
|
|
|
|
|
// The object is either a number, a string, a boolean, or a real JS object.
|
|
|
|
|
if (IsJSObject()) return JSObject::cast(this)->map()->prototype();
|
|
|
|
|
Context* context = Top::context()->global_context();
|
|
|
|
|
|
|
|
|
|
if (IsNumber()) return context->number_function()->instance_prototype();
|
|
|
|
|
if (IsString()) return context->string_function()->instance_prototype();
|
|
|
|
|
if (IsBoolean()) {
|
|
|
|
|
return context->boolean_function()->instance_prototype();
|
|
|
|
|
} else {
|
|
|
|
|
return Heap::null_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Object::ShortPrint() {
|
|
|
|
|
HeapStringAllocator allocator;
|
|
|
|
|
StringStream accumulator(&allocator);
|
|
|
|
|
ShortPrint(&accumulator);
|
|
|
|
|
accumulator.OutputToStdOut();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Object::ShortPrint(StringStream* accumulator) {
|
|
|
|
|
if (IsSmi()) {
|
|
|
|
|
Smi::cast(this)->SmiPrint(accumulator);
|
|
|
|
|
} else if (IsFailure()) {
|
|
|
|
|
Failure::cast(this)->FailurePrint(accumulator);
|
|
|
|
|
} else {
|
|
|
|
|
HeapObject::cast(this)->HeapObjectShortPrint(accumulator);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Smi::SmiPrint() {
|
|
|
|
|
PrintF("%d", value());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Smi::SmiPrint(StringStream* accumulator) {
|
|
|
|
|
accumulator->Add("%d", value());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Failure::FailurePrint(StringStream* accumulator) {
|
2009-10-14 09:26:16 +00:00
|
|
|
accumulator->Add("Failure(%p)", reinterpret_cast<void*>(value()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Failure::FailurePrint() {
|
2009-10-14 09:26:16 +00:00
|
|
|
PrintF("Failure(%p)", reinterpret_cast<void*>(value()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Failure* Failure::RetryAfterGC(int requested_bytes, AllocationSpace space) {
|
|
|
|
|
ASSERT((space & ~kSpaceTagMask) == 0);
|
2009-05-22 14:01:06 +00:00
|
|
|
// TODO(X64): Stop using Smi validation for non-smi checks, even if they
|
|
|
|
|
// happen to be identical at the moment.
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
int requested = requested_bytes >> kObjectAlignmentBits;
|
|
|
|
|
int value = (requested << kSpaceTagSize) | space;
|
|
|
|
|
// We can't very well allocate a heap number in this situation, and if the
|
|
|
|
|
// requested memory is so large it seems reasonable to say that this is an
|
|
|
|
|
// out of memory situation. This fixes a crash in
|
|
|
|
|
// js1_5/Regress/regress-303213.js.
|
|
|
|
|
if (value >> kSpaceTagSize != requested ||
|
|
|
|
|
!Smi::IsValid(value) ||
|
|
|
|
|
value != ((value << kFailureTypeTagSize) >> kFailureTypeTagSize) ||
|
|
|
|
|
!Smi::IsValid(value << kFailureTypeTagSize)) {
|
|
|
|
|
Top::context()->mark_out_of_memory();
|
|
|
|
|
return Failure::OutOfMemoryException();
|
|
|
|
|
}
|
|
|
|
|
return Construct(RETRY_AFTER_GC, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Should a word be prefixed by 'a' or 'an' in order to read naturally in
|
|
|
|
|
// English? Returns false for non-ASCII or words that don't start with
|
|
|
|
|
// a capital letter. The a/an rule follows pronunciation in English.
|
|
|
|
|
// We don't use the BBC's overcorrect "an historic occasion" though if
|
|
|
|
|
// you speak a dialect you may well say "an 'istoric occasion".
|
|
|
|
|
static bool AnWord(String* str) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (str->length() == 0) return false; // A nothing.
|
|
|
|
|
int c0 = str->Get(0);
|
|
|
|
|
int c1 = str->length() > 1 ? str->Get(1) : 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (c0 == 'U') {
|
|
|
|
|
if (c1 > 'Z') {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An Umpire, but a UTF8String, a U.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
} else if (c0 == 'A' || c0 == 'E' || c0 == 'I' || c0 == 'O') {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An Ape, an ABCBook.
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if ((c1 == 0 || (c1 >= 'A' && c1 <= 'Z')) &&
|
|
|
|
|
(c0 == 'F' || c0 == 'H' || c0 == 'M' || c0 == 'N' || c0 == 'R' ||
|
|
|
|
|
c0 == 'S' || c0 == 'X')) {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An MP3File, an M.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
Object* String::TryFlatten() {
|
2008-07-03 15:10:15 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
// Do not attempt to flatten in debug mode when allocation is not
|
|
|
|
|
// allowed. This is to avoid an assertion failure when allocating.
|
|
|
|
|
// Flattening strings is the only case where we always allow
|
|
|
|
|
// allocation because no GC is performed if the allocation fails.
|
|
|
|
|
if (!Heap::IsAllocationAllowed()) return this;
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(this).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kConsStringTag: {
|
|
|
|
|
ConsString* cs = ConsString::cast(this);
|
2008-11-03 10:16:05 +00:00
|
|
|
if (cs->second()->length() == 0) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
// There's little point in putting the flat string in new space if the
|
|
|
|
|
// cons string is in old space. It can never get GCed until there is
|
|
|
|
|
// an old space GC.
|
|
|
|
|
PretenureFlag tenure = Heap::InNewSpace(this) ? NOT_TENURED : TENURED;
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
2008-10-22 09:09:07 +00:00
|
|
|
Object* object;
|
|
|
|
|
String* result;
|
2009-05-01 11:16:29 +00:00
|
|
|
if (IsAsciiRepresentation()) {
|
2008-10-22 09:09:07 +00:00
|
|
|
object = Heap::AllocateRawAsciiString(len, tenure);
|
|
|
|
|
if (object->IsFailure()) return object;
|
|
|
|
|
result = String::cast(object);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cs->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int first_length = first->length();
|
2008-10-22 09:09:07 +00:00
|
|
|
char* dest = SeqAsciiString::cast(result)->GetChars();
|
2009-03-17 09:33:06 +00:00
|
|
|
WriteToFlat(first, dest, 0, first_length);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cs->second();
|
|
|
|
|
WriteToFlat(second,
|
2008-10-22 09:09:07 +00:00
|
|
|
dest + first_length,
|
|
|
|
|
0,
|
|
|
|
|
len - first_length);
|
|
|
|
|
} else {
|
|
|
|
|
object = Heap::AllocateRawTwoByteString(len, tenure);
|
|
|
|
|
if (object->IsFailure()) return object;
|
|
|
|
|
result = String::cast(object);
|
|
|
|
|
uc16* dest = SeqTwoByteString::cast(result)->GetChars();
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cs->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int first_length = first->length();
|
|
|
|
|
WriteToFlat(first, dest, 0, first_length);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cs->second();
|
|
|
|
|
WriteToFlat(second,
|
2008-10-22 09:09:07 +00:00
|
|
|
dest + first_length,
|
|
|
|
|
0,
|
|
|
|
|
len - first_length);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
cs->set_first(result);
|
|
|
|
|
cs->set_second(Heap::empty_string());
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-02-11 23:52:52 +00:00
|
|
|
bool String::MakeExternal(v8::String::ExternalStringResource* resource) {
|
|
|
|
|
#ifdef DEBUG
|
2009-10-20 09:10:26 +00:00
|
|
|
if (FLAG_enable_slow_asserts) {
|
2009-02-11 23:52:52 +00:00
|
|
|
// Assert that the resource and the string are equivalent.
|
|
|
|
|
ASSERT(static_cast<size_t>(this->length()) == resource->length());
|
2009-10-21 12:14:50 +00:00
|
|
|
SmartPointer<uc16> smart_chars(NewArray<uc16>(this->length()));
|
|
|
|
|
String::WriteToFlat(this, *smart_chars, 0, this->length());
|
2009-02-11 23:52:52 +00:00
|
|
|
ASSERT(memcmp(*smart_chars,
|
|
|
|
|
resource->data(),
|
2009-04-14 12:00:56 +00:00
|
|
|
resource->length() * sizeof(**smart_chars)) == 0);
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
#endif // DEBUG
|
|
|
|
|
|
|
|
|
|
int size = this->Size(); // Byte size of the original string.
|
|
|
|
|
if (size < ExternalString::kSize) {
|
|
|
|
|
// The string is too small to fit an external String in its place. This can
|
|
|
|
|
// only happen for zero length strings.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(size >= ExternalString::kSize);
|
|
|
|
|
bool is_symbol = this->IsSymbol();
|
|
|
|
|
int length = this->length();
|
2009-11-24 14:10:06 +00:00
|
|
|
int hash_field = this->hash_field();
|
2009-02-11 23:52:52 +00:00
|
|
|
|
|
|
|
|
// Morph the object to an external string by adjusting the map and
|
|
|
|
|
// reinitializing the fields.
|
2009-11-24 14:10:06 +00:00
|
|
|
this->set_map(Heap::external_string_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
ExternalTwoByteString* self = ExternalTwoByteString::cast(this);
|
|
|
|
|
self->set_length(length);
|
2009-11-24 14:10:06 +00:00
|
|
|
self->set_hash_field(hash_field);
|
2009-02-11 23:52:52 +00:00
|
|
|
self->set_resource(resource);
|
|
|
|
|
// Additionally make the object into an external symbol if the original string
|
|
|
|
|
// was a symbol to start with.
|
|
|
|
|
if (is_symbol) {
|
|
|
|
|
self->Hash(); // Force regeneration of the hash value.
|
|
|
|
|
// Now morph this external string into a external symbol.
|
2009-11-24 14:10:06 +00:00
|
|
|
this->set_map(Heap::external_symbol_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Fill the remainder of the string with dead wood.
|
|
|
|
|
int new_size = this->Size(); // Byte size of the external String object.
|
|
|
|
|
Heap::CreateFillerObjectAt(this->address() + new_size, size - new_size);
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::MakeExternal(v8::String::ExternalAsciiStringResource* resource) {
|
|
|
|
|
#ifdef DEBUG
|
2009-10-20 09:10:26 +00:00
|
|
|
if (FLAG_enable_slow_asserts) {
|
2009-02-11 23:52:52 +00:00
|
|
|
// Assert that the resource and the string are equivalent.
|
|
|
|
|
ASSERT(static_cast<size_t>(this->length()) == resource->length());
|
2009-10-21 12:14:50 +00:00
|
|
|
SmartPointer<char> smart_chars(NewArray<char>(this->length()));
|
|
|
|
|
String::WriteToFlat(this, *smart_chars, 0, this->length());
|
2009-02-11 23:52:52 +00:00
|
|
|
ASSERT(memcmp(*smart_chars,
|
|
|
|
|
resource->data(),
|
|
|
|
|
resource->length()*sizeof(**smart_chars)) == 0);
|
|
|
|
|
}
|
|
|
|
|
#endif // DEBUG
|
|
|
|
|
|
|
|
|
|
int size = this->Size(); // Byte size of the original string.
|
|
|
|
|
if (size < ExternalString::kSize) {
|
|
|
|
|
// The string is too small to fit an external String in its place. This can
|
|
|
|
|
// only happen for zero length strings.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(size >= ExternalString::kSize);
|
|
|
|
|
bool is_symbol = this->IsSymbol();
|
|
|
|
|
int length = this->length();
|
2009-11-24 14:10:06 +00:00
|
|
|
int hash_field = this->hash_field();
|
2009-02-11 23:52:52 +00:00
|
|
|
|
|
|
|
|
// Morph the object to an external string by adjusting the map and
|
|
|
|
|
// reinitializing the fields.
|
2009-11-24 14:10:06 +00:00
|
|
|
this->set_map(Heap::external_ascii_string_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
ExternalAsciiString* self = ExternalAsciiString::cast(this);
|
|
|
|
|
self->set_length(length);
|
2009-11-24 14:10:06 +00:00
|
|
|
self->set_hash_field(hash_field);
|
2009-02-11 23:52:52 +00:00
|
|
|
self->set_resource(resource);
|
|
|
|
|
// Additionally make the object into an external symbol if the original string
|
|
|
|
|
// was a symbol to start with.
|
|
|
|
|
if (is_symbol) {
|
|
|
|
|
self->Hash(); // Force regeneration of the hash value.
|
|
|
|
|
// Now morph this external string into a external symbol.
|
2009-11-24 14:10:06 +00:00
|
|
|
this->set_map(Heap::external_ascii_symbol_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Fill the remainder of the string with dead wood.
|
|
|
|
|
int new_size = this->Size(); // Byte size of the external String object.
|
|
|
|
|
Heap::CreateFillerObjectAt(this->address() + new_size, size - new_size);
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void String::StringShortPrint(StringStream* accumulator) {
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
2009-11-24 14:10:06 +00:00
|
|
|
if (len > kMaxShortPrintLength) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("<Very long string[%u]>", len);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!LooksValid()) {
|
|
|
|
|
accumulator->Add("<Invalid String>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
StringInputBuffer buf(this);
|
|
|
|
|
|
|
|
|
|
bool truncated = false;
|
2008-07-30 08:49:36 +00:00
|
|
|
if (len > kMaxShortPrintLength) {
|
|
|
|
|
len = kMaxShortPrintLength;
|
2008-07-03 15:10:15 +00:00
|
|
|
truncated = true;
|
|
|
|
|
}
|
|
|
|
|
bool ascii = true;
|
|
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
int c = buf.GetNext();
|
|
|
|
|
|
|
|
|
|
if (c < 32 || c >= 127) {
|
|
|
|
|
ascii = false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
buf.Reset(this);
|
|
|
|
|
if (ascii) {
|
2009-03-17 09:33:06 +00:00
|
|
|
accumulator->Add("<String[%u]: ", length());
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
accumulator->Put(buf.GetNext());
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
} else {
|
|
|
|
|
// Backslash indicates that the string contains control
|
|
|
|
|
// characters and that backslashes are therefore escaped.
|
2009-03-17 09:33:06 +00:00
|
|
|
accumulator->Add("<String[%u]\\: ", length());
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
int c = buf.GetNext();
|
|
|
|
|
if (c == '\n') {
|
|
|
|
|
accumulator->Add("\\n");
|
|
|
|
|
} else if (c == '\r') {
|
|
|
|
|
accumulator->Add("\\r");
|
|
|
|
|
} else if (c == '\\') {
|
|
|
|
|
accumulator->Add("\\\\");
|
|
|
|
|
} else if (c < 32 || c > 126) {
|
|
|
|
|
accumulator->Add("\\x%02x", c);
|
|
|
|
|
} else {
|
|
|
|
|
accumulator->Put(c);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (truncated) {
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::JSObjectShortPrint(StringStream* accumulator) {
|
|
|
|
|
switch (map()->instance_type()) {
|
|
|
|
|
case JS_ARRAY_TYPE: {
|
|
|
|
|
double length = JSArray::cast(this)->length()->Number();
|
|
|
|
|
accumulator->Add("<JS array[%u]>", static_cast<uint32_t>(length));
|
|
|
|
|
break;
|
|
|
|
|
}
|
2008-09-23 11:45:43 +00:00
|
|
|
case JS_REGEXP_TYPE: {
|
|
|
|
|
accumulator->Add("<JS RegExp>");
|
|
|
|
|
break;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_FUNCTION_TYPE: {
|
|
|
|
|
Object* fun_name = JSFunction::cast(this)->shared()->name();
|
|
|
|
|
bool printed = false;
|
|
|
|
|
if (fun_name->IsString()) {
|
|
|
|
|
String* str = String::cast(fun_name);
|
|
|
|
|
if (str->length() > 0) {
|
|
|
|
|
accumulator->Add("<JS Function ");
|
|
|
|
|
accumulator->Put(str);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
printed = true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!printed) {
|
|
|
|
|
accumulator->Add("<JS Function>");
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
// All other JSObjects are rather similar to each other (JSObject,
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// JSGlobalProxy, JSGlobalObject, JSUndetectableObject, JSValue).
|
2008-07-03 15:10:15 +00:00
|
|
|
default: {
|
|
|
|
|
Object* constructor = map()->constructor();
|
|
|
|
|
bool printed = false;
|
|
|
|
|
if (constructor->IsHeapObject() &&
|
|
|
|
|
!Heap::Contains(HeapObject::cast(constructor))) {
|
|
|
|
|
accumulator->Add("!!!INVALID CONSTRUCTOR!!!");
|
|
|
|
|
} else {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
bool global_object = IsJSGlobalProxy();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (constructor->IsJSFunction()) {
|
|
|
|
|
if (!Heap::Contains(JSFunction::cast(constructor)->shared())) {
|
|
|
|
|
accumulator->Add("!!!INVALID SHARED ON CONSTRUCTOR!!!");
|
|
|
|
|
} else {
|
|
|
|
|
Object* constructor_name =
|
|
|
|
|
JSFunction::cast(constructor)->shared()->name();
|
|
|
|
|
if (constructor_name->IsString()) {
|
|
|
|
|
String* str = String::cast(constructor_name);
|
|
|
|
|
if (str->length() > 0) {
|
|
|
|
|
bool vowel = AnWord(str);
|
|
|
|
|
accumulator->Add("<%sa%s ",
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
global_object ? "Global Object: " : "",
|
2008-07-03 15:10:15 +00:00
|
|
|
vowel ? "n" : "");
|
|
|
|
|
accumulator->Put(str);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
printed = true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!printed) {
|
|
|
|
|
accumulator->Add("<JS %sObject", global_object ? "Global " : "");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (IsJSValue()) {
|
|
|
|
|
accumulator->Add(" value = ");
|
|
|
|
|
JSValue::cast(this)->value()->ShortPrint(accumulator);
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::HeapObjectShortPrint(StringStream* accumulator) {
|
|
|
|
|
// if (!Heap::InNewSpace(this)) PrintF("*", this);
|
|
|
|
|
if (!Heap::Contains(this)) {
|
|
|
|
|
accumulator->Add("!!!INVALID POINTER!!!");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
if (!Heap::Contains(map())) {
|
|
|
|
|
accumulator->Add("!!!INVALID MAP!!!");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
accumulator->Add("%p ", this);
|
|
|
|
|
|
|
|
|
|
if (IsString()) {
|
|
|
|
|
String::cast(this)->StringShortPrint(accumulator);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
if (IsJSObject()) {
|
|
|
|
|
JSObject::cast(this)->JSObjectShortPrint(accumulator);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
switch (map()->instance_type()) {
|
|
|
|
|
case MAP_TYPE:
|
|
|
|
|
accumulator->Add("<Map>");
|
|
|
|
|
break;
|
|
|
|
|
case FIXED_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<FixedArray[%u]>", FixedArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ByteArray[%u]>", ByteArray::cast(this)->length());
|
|
|
|
|
break;
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<PixelArray[%u]>", PixelArray::cast(this)->length());
|
|
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalByteArray[%u]>",
|
|
|
|
|
ExternalByteArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedByteArray[%u]>",
|
|
|
|
|
ExternalUnsignedByteArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_SHORT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalShortArray[%u]>",
|
|
|
|
|
ExternalShortArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedShortArray[%u]>",
|
|
|
|
|
ExternalUnsignedShortArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_INT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalIntArray[%u]>",
|
|
|
|
|
ExternalIntArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedIntArray[%u]>",
|
|
|
|
|
ExternalUnsignedIntArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_FLOAT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalFloatArray[%u]>",
|
|
|
|
|
ExternalFloatArray::cast(this)->length());
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case SHARED_FUNCTION_INFO_TYPE:
|
|
|
|
|
accumulator->Add("<SharedFunctionInfo>");
|
|
|
|
|
break;
|
|
|
|
|
#define MAKE_STRUCT_CASE(NAME, Name, name) \
|
|
|
|
|
case NAME##_TYPE: \
|
2009-02-13 12:56:44 +00:00
|
|
|
accumulator->Put('<'); \
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add(#Name); \
|
2009-02-13 12:56:44 +00:00
|
|
|
accumulator->Put('>'); \
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
STRUCT_LIST(MAKE_STRUCT_CASE)
|
|
|
|
|
#undef MAKE_STRUCT_CASE
|
|
|
|
|
case CODE_TYPE:
|
|
|
|
|
accumulator->Add("<Code>");
|
|
|
|
|
break;
|
|
|
|
|
case ODDBALL_TYPE: {
|
|
|
|
|
if (IsUndefined())
|
|
|
|
|
accumulator->Add("<undefined>");
|
|
|
|
|
else if (IsTheHole())
|
|
|
|
|
accumulator->Add("<the hole>");
|
|
|
|
|
else if (IsNull())
|
|
|
|
|
accumulator->Add("<null>");
|
|
|
|
|
else if (IsTrue())
|
|
|
|
|
accumulator->Add("<true>");
|
|
|
|
|
else if (IsFalse())
|
|
|
|
|
accumulator->Add("<false>");
|
|
|
|
|
else
|
|
|
|
|
accumulator->Add("<Odd Oddball>");
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case HEAP_NUMBER_TYPE:
|
|
|
|
|
accumulator->Add("<Number: ");
|
|
|
|
|
HeapNumber::cast(this)->HeapNumberPrint(accumulator);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
break;
|
|
|
|
|
case PROXY_TYPE:
|
|
|
|
|
accumulator->Add("<Proxy>");
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
case JS_GLOBAL_PROPERTY_CELL_TYPE:
|
|
|
|
|
accumulator->Add("Cell for ");
|
|
|
|
|
JSGlobalPropertyCell::cast(this)->value()->ShortPrint(accumulator);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
|
|
|
|
accumulator->Add("<Other heap object (%d)>", map()->instance_type());
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int HeapObject::SlowSizeFromMap(Map* map) {
|
|
|
|
|
// Avoid calling functions such as FixedArray::cast during GC, which
|
|
|
|
|
// read map pointer of this object again.
|
|
|
|
|
InstanceType instance_type = map->instance_type();
|
2009-05-01 11:16:29 +00:00
|
|
|
uint32_t type = static_cast<uint32_t>(instance_type);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
if (instance_type < FIRST_NONSTRING_TYPE
|
2008-11-03 10:16:05 +00:00
|
|
|
&& (StringShape(instance_type).IsSequential())) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if ((type & kStringEncodingMask) == kAsciiStringTag) {
|
2009-03-17 09:33:06 +00:00
|
|
|
SeqAsciiString* seq_ascii_this = reinterpret_cast<SeqAsciiString*>(this);
|
|
|
|
|
return seq_ascii_this->SeqAsciiStringSize(instance_type);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqTwoByteString* self = reinterpret_cast<SeqTwoByteString*>(this);
|
2009-03-17 09:33:06 +00:00
|
|
|
return self->SeqTwoByteStringSize(instance_type);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (instance_type) {
|
|
|
|
|
case FIXED_ARRAY_TYPE:
|
|
|
|
|
return reinterpret_cast<FixedArray*>(this)->FixedArraySize();
|
|
|
|
|
case BYTE_ARRAY_TYPE:
|
|
|
|
|
return reinterpret_cast<ByteArray*>(this)->ByteArraySize();
|
|
|
|
|
case CODE_TYPE:
|
|
|
|
|
return reinterpret_cast<Code*>(this)->CodeSize();
|
|
|
|
|
case MAP_TYPE:
|
|
|
|
|
return Map::kSize;
|
|
|
|
|
default:
|
|
|
|
|
return map->instance_size();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::Iterate(ObjectVisitor* v) {
|
|
|
|
|
// Handle header
|
|
|
|
|
IteratePointer(v, kMapOffset);
|
|
|
|
|
// Handle object body
|
|
|
|
|
Map* m = map();
|
|
|
|
|
IterateBody(m->instance_type(), SizeFromMap(m), v);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::IterateBody(InstanceType type, int object_size,
|
|
|
|
|
ObjectVisitor* v) {
|
|
|
|
|
// Avoiding <Type>::cast(this) because it accesses the map pointer field.
|
|
|
|
|
// During GC, the map pointer field is encoded.
|
|
|
|
|
if (type < FIRST_NONSTRING_TYPE) {
|
|
|
|
|
switch (type & kStringRepresentationMask) {
|
|
|
|
|
case kSeqStringTag:
|
|
|
|
|
break;
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
reinterpret_cast<ConsString*>(this)->ConsStringIterateBody(v);
|
|
|
|
|
break;
|
2009-11-06 13:48:33 +00:00
|
|
|
case kExternalStringTag:
|
|
|
|
|
if ((type & kStringEncodingMask) == kAsciiStringTag) {
|
|
|
|
|
reinterpret_cast<ExternalAsciiString*>(this)->
|
|
|
|
|
ExternalAsciiStringIterateBody(v);
|
|
|
|
|
} else {
|
|
|
|
|
reinterpret_cast<ExternalTwoByteString*>(this)->
|
|
|
|
|
ExternalTwoByteStringIterateBody(v);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
|
case FIXED_ARRAY_TYPE:
|
|
|
|
|
reinterpret_cast<FixedArray*>(this)->FixedArrayIterateBody(v);
|
|
|
|
|
break;
|
|
|
|
|
case JS_OBJECT_TYPE:
|
2009-01-14 12:13:26 +00:00
|
|
|
case JS_CONTEXT_EXTENSION_OBJECT_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_VALUE_TYPE:
|
|
|
|
|
case JS_ARRAY_TYPE:
|
2008-09-23 11:45:43 +00:00
|
|
|
case JS_REGEXP_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_FUNCTION_TYPE:
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
case JS_GLOBAL_PROXY_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_GLOBAL_OBJECT_TYPE:
|
|
|
|
|
case JS_BUILTINS_OBJECT_TYPE:
|
|
|
|
|
reinterpret_cast<JSObject*>(this)->JSObjectIterateBody(object_size, v);
|
|
|
|
|
break;
|
|
|
|
|
case ODDBALL_TYPE:
|
|
|
|
|
reinterpret_cast<Oddball*>(this)->OddballIterateBody(v);
|
|
|
|
|
break;
|
|
|
|
|
case PROXY_TYPE:
|
|
|
|
|
reinterpret_cast<Proxy*>(this)->ProxyIterateBody(v);
|
|
|
|
|
break;
|
|
|
|
|
case MAP_TYPE:
|
|
|
|
|
reinterpret_cast<Map*>(this)->MapIterateBody(v);
|
|
|
|
|
break;
|
|
|
|
|
case CODE_TYPE:
|
|
|
|
|
reinterpret_cast<Code*>(this)->CodeIterateBody(v);
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
case JS_GLOBAL_PROPERTY_CELL_TYPE:
|
|
|
|
|
reinterpret_cast<JSGlobalPropertyCell*>(this)
|
|
|
|
|
->JSGlobalPropertyCellIterateBody(v);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case HEAP_NUMBER_TYPE:
|
|
|
|
|
case FILLER_TYPE:
|
|
|
|
|
case BYTE_ARRAY_TYPE:
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ARRAY_TYPE:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_SHORT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_INT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_FLOAT_ARRAY_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
case SHARED_FUNCTION_INFO_TYPE: {
|
|
|
|
|
SharedFunctionInfo* shared = reinterpret_cast<SharedFunctionInfo*>(this);
|
|
|
|
|
shared->SharedFunctionInfoIterateBody(v);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
#define MAKE_STRUCT_CASE(NAME, Name, name) \
|
|
|
|
|
case NAME##_TYPE:
|
|
|
|
|
STRUCT_LIST(MAKE_STRUCT_CASE)
|
|
|
|
|
#undef MAKE_STRUCT_CASE
|
|
|
|
|
IterateStructBody(object_size, v);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
PrintF("Unknown type: %d\n", type);
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::IterateStructBody(int object_size, ObjectVisitor* v) {
|
2008-09-23 11:45:43 +00:00
|
|
|
IteratePointers(v, HeapObject::kHeaderSize, object_size);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* HeapNumber::HeapNumberToBoolean() {
|
|
|
|
|
// NaN, +0, and -0 should return the false object
|
|
|
|
|
switch (fpclassify(value())) {
|
|
|
|
|
case FP_NAN: // fall through
|
|
|
|
|
case FP_ZERO: return Heap::false_value();
|
|
|
|
|
default: return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapNumber::HeapNumberPrint() {
|
|
|
|
|
PrintF("%.16g", Number());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapNumber::HeapNumberPrint(StringStream* accumulator) {
|
|
|
|
|
// The Windows version of vsnprintf can allocate when printing a %g string
|
|
|
|
|
// into a buffer that may not be big enough. We don't want random memory
|
|
|
|
|
// allocation when producing post-crash stack traces, so we print into a
|
|
|
|
|
// buffer that is plenty big enough for any floating point number, then
|
|
|
|
|
// print that using vsnprintf (which may truncate but never allocate if
|
|
|
|
|
// there is no more space in the buffer).
|
2008-09-11 14:34:48 +00:00
|
|
|
EmbeddedVector<char, 100> buffer;
|
|
|
|
|
OS::SNPrintF(buffer, "%.16g", Number());
|
|
|
|
|
accumulator->Add("%s", buffer.start());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
String* JSObject::class_name() {
|
2009-09-09 11:46:09 +00:00
|
|
|
if (IsJSFunction()) {
|
|
|
|
|
return Heap::function_class_symbol();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (map()->constructor()->IsJSFunction()) {
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
return String::cast(constructor->shared()->instance_class_name());
|
|
|
|
|
}
|
2008-10-20 06:35:28 +00:00
|
|
|
// If the constructor is not present, return "Object".
|
|
|
|
|
return Heap::Object_symbol();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-09-09 11:46:09 +00:00
|
|
|
String* JSObject::constructor_name() {
|
|
|
|
|
if (IsJSFunction()) {
|
2009-10-26 10:51:30 +00:00
|
|
|
return JSFunction::cast(this)->IsBoilerplate() ?
|
|
|
|
|
Heap::function_class_symbol() : Heap::closure_symbol();
|
2009-09-09 11:46:09 +00:00
|
|
|
}
|
|
|
|
|
if (map()->constructor()->IsJSFunction()) {
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
String* name = String::cast(constructor->shared()->name());
|
|
|
|
|
return name->length() > 0 ? name : constructor->shared()->inferred_name();
|
|
|
|
|
}
|
|
|
|
|
// If the constructor is not present, return "Object".
|
|
|
|
|
return Heap::Object_symbol();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::JSObjectIterateBody(int object_size, ObjectVisitor* v) {
|
|
|
|
|
// Iterate over all fields in the body. Assumes all are Object*.
|
|
|
|
|
IteratePointers(v, kPropertiesOffset, object_size);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::AddFastPropertyUsingMap(Map* new_map,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value) {
|
|
|
|
|
int index = new_map->PropertyIndexFor(name);
|
2008-10-15 06:03:26 +00:00
|
|
|
if (map()->unused_property_fields() == 0) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(map()->unused_property_fields() == 0);
|
|
|
|
|
int new_unused = new_map->unused_property_fields();
|
|
|
|
|
Object* values =
|
|
|
|
|
properties()->CopySize(properties()->length() + new_unused + 1);
|
|
|
|
|
if (values->IsFailure()) return values;
|
|
|
|
|
set_properties(FixedArray::cast(values));
|
|
|
|
|
}
|
|
|
|
|
set_map(new_map);
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::AddFastProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-04-22 07:38:08 +00:00
|
|
|
// Normalize the object if the name is an actual string (not the
|
|
|
|
|
// hidden symbols) and is not a real identifier.
|
2008-07-03 15:10:15 +00:00
|
|
|
StringInputBuffer buffer(name);
|
2009-04-22 07:38:08 +00:00
|
|
|
if (!Scanner::IsIdentifier(&buffer) && name != Heap::hidden_symbol()) {
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
DescriptorArray* old_descriptors = map()->instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Compute the new index for new field.
|
|
|
|
|
int index = map()->NextFreePropertyIndex();
|
|
|
|
|
|
|
|
|
|
// Allocate new instance descriptors with (name, index) added
|
2008-08-06 10:02:49 +00:00
|
|
|
FieldDescriptor new_field(name, index, attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* new_descriptors =
|
2008-08-27 13:47:52 +00:00
|
|
|
old_descriptors->CopyInsert(&new_field, REMOVE_TRANSITIONS);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (new_descriptors->IsFailure()) return new_descriptors;
|
|
|
|
|
|
|
|
|
|
// Only allow map transition if the object's map is NOT equal to the
|
|
|
|
|
// global object_function's map and there is not a transition for name.
|
|
|
|
|
bool allow_map_transition =
|
2008-08-13 09:32:07 +00:00
|
|
|
!old_descriptors->Contains(name) &&
|
2008-07-03 15:10:15 +00:00
|
|
|
(Top::context()->global_context()->object_function()->map() != map());
|
|
|
|
|
|
2008-10-15 06:03:26 +00:00
|
|
|
ASSERT(index < map()->inobject_properties() ||
|
|
|
|
|
(index - map()->inobject_properties()) < properties()->length() ||
|
2008-10-09 12:18:48 +00:00
|
|
|
map()->unused_property_fields() == 0);
|
|
|
|
|
// Allocate a new map for the object.
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* r = map()->CopyDropDescriptors();
|
2008-10-09 12:18:48 +00:00
|
|
|
if (r->IsFailure()) return r;
|
|
|
|
|
Map* new_map = Map::cast(r);
|
|
|
|
|
if (allow_map_transition) {
|
|
|
|
|
// Allocate new instance descriptors for the old map with map transition.
|
|
|
|
|
MapTransitionDescriptor d(name, Map::cast(new_map), attributes);
|
|
|
|
|
Object* r = old_descriptors->CopyInsert(&d, KEEP_TRANSITIONS);
|
2008-08-13 09:32:07 +00:00
|
|
|
if (r->IsFailure()) return r;
|
2008-10-09 12:18:48 +00:00
|
|
|
old_descriptors = DescriptorArray::cast(r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (map()->unused_property_fields() == 0) {
|
2008-08-27 10:11:39 +00:00
|
|
|
if (properties()->length() > kMaxFastProperties) {
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
// Make room for the new value
|
|
|
|
|
Object* values =
|
2008-10-09 12:18:48 +00:00
|
|
|
properties()->CopySize(properties()->length() + kFieldsAdded);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (values->IsFailure()) return values;
|
|
|
|
|
set_properties(FixedArray::cast(values));
|
2008-10-09 12:18:48 +00:00
|
|
|
new_map->set_unused_property_fields(kFieldsAdded - 1);
|
|
|
|
|
} else {
|
|
|
|
|
new_map->set_unused_property_fields(map()->unused_property_fields() - 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
// We have now allocated all the necessary objects.
|
|
|
|
|
// All the changes can be applied at once, so they are atomic.
|
|
|
|
|
map()->set_instance_descriptors(old_descriptors);
|
|
|
|
|
new_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
set_map(new_map);
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::AddConstantFunctionProperty(String* name,
|
|
|
|
|
JSFunction* function,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-12-16 15:43:20 +00:00
|
|
|
ASSERT(!Heap::InNewSpace(function));
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate new instance descriptors with (name, function) added
|
|
|
|
|
ConstantFunctionDescriptor d(name, function, attributes);
|
|
|
|
|
Object* new_descriptors =
|
2008-08-27 13:47:52 +00:00
|
|
|
map()->instance_descriptors()->CopyInsert(&d, REMOVE_TRANSITIONS);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (new_descriptors->IsFailure()) return new_descriptors;
|
|
|
|
|
|
|
|
|
|
// Allocate a new map for the object.
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* new_map = map()->CopyDropDescriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
|
|
|
|
|
DescriptorArray* descriptors = DescriptorArray::cast(new_descriptors);
|
|
|
|
|
Map::cast(new_map)->set_instance_descriptors(descriptors);
|
2008-08-06 10:02:49 +00:00
|
|
|
Map* old_map = map();
|
2008-07-03 15:10:15 +00:00
|
|
|
set_map(Map::cast(new_map));
|
|
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
// If the old map is the global object map (from new Object()),
|
|
|
|
|
// then transitions are not added to it, so we are done.
|
|
|
|
|
if (old_map == Top::context()->global_context()->object_function()->map()) {
|
|
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Do not add CONSTANT_TRANSITIONS to global objects
|
|
|
|
|
if (IsGlobalObject()) {
|
|
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Add a CONSTANT_TRANSITION descriptor to the old map,
|
|
|
|
|
// so future assignments to this property on other objects
|
|
|
|
|
// of the same type will create a normal field, not a constant function.
|
|
|
|
|
// Don't do this for special properties, with non-trival attributes.
|
|
|
|
|
if (attributes != NONE) {
|
|
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
ConstTransitionDescriptor mark(name);
|
2008-08-27 13:47:52 +00:00
|
|
|
new_descriptors =
|
|
|
|
|
old_map->instance_descriptors()->CopyInsert(&mark, KEEP_TRANSITIONS);
|
2008-08-06 10:02:49 +00:00
|
|
|
if (new_descriptors->IsFailure()) {
|
2008-08-13 09:32:07 +00:00
|
|
|
return function; // We have accomplished the main goal, so return success.
|
2008-08-06 10:02:49 +00:00
|
|
|
}
|
|
|
|
|
old_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add property in slow mode
|
|
|
|
|
Object* JSObject::AddSlowProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dict = property_dictionary();
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* store_value = value;
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
// In case name is an orphaned property reuse the cell.
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = dict->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
store_value = dict->ValueAt(entry);
|
|
|
|
|
JSGlobalPropertyCell::cast(store_value)->set_value(value);
|
2009-07-02 06:50:43 +00:00
|
|
|
// Assign an enumeration index to the property and update
|
|
|
|
|
// SetNextEnumerationIndex.
|
|
|
|
|
int index = dict->NextEnumerationIndex();
|
|
|
|
|
PropertyDetails details = PropertyDetails(attributes, NORMAL, index);
|
|
|
|
|
dict->SetNextEnumerationIndex(index + 1);
|
|
|
|
|
dict->SetEntry(entry, name, store_value, details);
|
2009-06-30 10:05:36 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
store_value = Heap::AllocateJSGlobalPropertyCell(value);
|
|
|
|
|
if (store_value->IsFailure()) return store_value;
|
|
|
|
|
JSGlobalPropertyCell::cast(store_value)->set_value(value);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, NORMAL);
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* result = dict->Add(name, store_value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2009-07-02 06:50:43 +00:00
|
|
|
if (dict != result) set_properties(StringDictionary::cast(result));
|
2008-07-03 15:10:15 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::AddProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
ASSERT(!IsJSGlobalProxy());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
|
|
|
|
// Ensure the descriptor array does not get too big.
|
|
|
|
|
if (map()->instance_descriptors()->number_of_descriptors() <
|
|
|
|
|
DescriptorArray::kMaxNumberOfDescriptors) {
|
2009-12-16 15:43:20 +00:00
|
|
|
if (value->IsJSFunction() && !Heap::InNewSpace(value)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return AddConstantFunctionProperty(name,
|
|
|
|
|
JSFunction::cast(value),
|
|
|
|
|
attributes);
|
|
|
|
|
} else {
|
|
|
|
|
return AddFastProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Normalize the object to prevent very large instance descriptors.
|
|
|
|
|
// This eliminates unwanted N^2 allocation and lookup behavior.
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetPropertyPostInterceptor(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
|
|
|
|
if (result.IsValid()) return SetProperty(&result, name, value, attributes);
|
|
|
|
|
// Add real property.
|
|
|
|
|
return AddProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 12:18:48 +00:00
|
|
|
Object* JSObject::ReplaceSlowProperty(String* name,
|
2009-11-20 10:11:45 +00:00
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = property_dictionary();
|
|
|
|
|
int old_index = dictionary->FindEntry(name);
|
2009-06-22 07:41:15 +00:00
|
|
|
int new_enumeration_index = 0; // 0 means "Use the next available index."
|
|
|
|
|
if (old_index != -1) {
|
|
|
|
|
// All calls to ReplaceSlowProperty have had all transitions removed.
|
|
|
|
|
ASSERT(!dictionary->DetailsAt(old_index).IsTransition());
|
|
|
|
|
new_enumeration_index = dictionary->DetailsAt(old_index).index();
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
|
2009-06-22 07:41:15 +00:00
|
|
|
PropertyDetails new_details(attributes, NORMAL, new_enumeration_index);
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(name, value, new_details);
|
2008-10-09 12:18:48 +00:00
|
|
|
}
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
|
2008-10-09 12:18:48 +00:00
|
|
|
Object* JSObject::ConvertDescriptorToFieldAndMapTransition(
|
|
|
|
|
String* name,
|
|
|
|
|
Object* new_value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
Map* old_map = map();
|
|
|
|
|
Object* result = ConvertDescriptorToField(name, new_value, attributes);
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
// If we get to this point we have succeeded - do not return failure
|
|
|
|
|
// after this point. Later stuff is optional.
|
|
|
|
|
if (!HasFastProperties()) {
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
// Do not add transitions to the map of "new Object()".
|
|
|
|
|
if (map() == Top::context()->global_context()->object_function()->map()) {
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MapTransitionDescriptor transition(name,
|
|
|
|
|
map(),
|
|
|
|
|
attributes);
|
|
|
|
|
Object* new_descriptors =
|
|
|
|
|
old_map->instance_descriptors()->
|
|
|
|
|
CopyInsert(&transition, KEEP_TRANSITIONS);
|
|
|
|
|
if (new_descriptors->IsFailure()) return result; // Yes, return _result_.
|
|
|
|
|
old_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::ConvertDescriptorToField(String* name,
|
|
|
|
|
Object* new_value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
if (map()->unused_property_fields() == 0 &&
|
|
|
|
|
properties()->length() > kMaxFastProperties) {
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-10-09 12:18:48 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
return ReplaceSlowProperty(name, new_value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int index = map()->NextFreePropertyIndex();
|
|
|
|
|
FieldDescriptor new_field(name, index, attributes);
|
|
|
|
|
// Make a new DescriptorArray replacing an entry with FieldDescriptor.
|
|
|
|
|
Object* descriptors_unchecked = map()->instance_descriptors()->
|
|
|
|
|
CopyInsert(&new_field, REMOVE_TRANSITIONS);
|
|
|
|
|
if (descriptors_unchecked->IsFailure()) return descriptors_unchecked;
|
|
|
|
|
DescriptorArray* new_descriptors =
|
|
|
|
|
DescriptorArray::cast(descriptors_unchecked);
|
|
|
|
|
|
|
|
|
|
// Make a new map for the object.
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* new_map_unchecked = map()->CopyDropDescriptors();
|
2008-10-09 12:18:48 +00:00
|
|
|
if (new_map_unchecked->IsFailure()) return new_map_unchecked;
|
|
|
|
|
Map* new_map = Map::cast(new_map_unchecked);
|
|
|
|
|
new_map->set_instance_descriptors(new_descriptors);
|
|
|
|
|
|
|
|
|
|
// Make new properties array if necessary.
|
|
|
|
|
FixedArray* new_properties = 0; // Will always be NULL or a valid pointer.
|
|
|
|
|
int new_unused_property_fields = map()->unused_property_fields() - 1;
|
|
|
|
|
if (map()->unused_property_fields() == 0) {
|
|
|
|
|
new_unused_property_fields = kFieldsAdded - 1;
|
|
|
|
|
Object* new_properties_unchecked =
|
|
|
|
|
properties()->CopySize(properties()->length() + kFieldsAdded);
|
|
|
|
|
if (new_properties_unchecked->IsFailure()) return new_properties_unchecked;
|
|
|
|
|
new_properties = FixedArray::cast(new_properties_unchecked);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update pointers to commit changes.
|
|
|
|
|
// Object points to the new map.
|
|
|
|
|
new_map->set_unused_property_fields(new_unused_property_fields);
|
|
|
|
|
set_map(new_map);
|
|
|
|
|
if (new_properties) {
|
|
|
|
|
set_properties(FixedArray::cast(new_properties));
|
|
|
|
|
}
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, new_value);
|
2008-10-09 12:18:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* JSObject::SetPropertyWithInterceptor(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
if (!interceptor->setter()->IsUndefined()) {
|
|
|
|
|
LOG(ApiNamedPropertyAccess("interceptor-named-set", this, name));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), this, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::NamedPropertySetter setter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertySetter>(interceptor->setter());
|
|
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<Object> value_unhole(value->IsTheHole() ?
|
|
|
|
|
Heap::undefined_value() :
|
|
|
|
|
value);
|
|
|
|
|
result = setter(v8::Utils::ToLocal(name_handle),
|
|
|
|
|
v8::Utils::ToLocal(value_unhole),
|
|
|
|
|
info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
Object* raw_result = this_handle->SetPropertyPostInterceptor(*name_handle,
|
|
|
|
|
*value_handle,
|
|
|
|
|
attributes);
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
return SetProperty(&result, name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetPropertyWithCallback(Object* structure,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
JSObject* holder) {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
|
|
|
|
|
// We should never get here to initialize a const with the hole
|
|
|
|
|
// value since a const declaration would conflict with the setter.
|
|
|
|
|
ASSERT(!value->IsTheHole());
|
|
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
|
|
|
|
|
// To accommodate both the old and the new api we switch on the
|
|
|
|
|
// data structure used to store the callbacks. Eventually proxy
|
|
|
|
|
// callbacks should be phased out.
|
|
|
|
|
if (structure->IsProxy()) {
|
|
|
|
|
AccessorDescriptor* callback =
|
|
|
|
|
reinterpret_cast<AccessorDescriptor*>(Proxy::cast(structure)->proxy());
|
|
|
|
|
Object* obj = (callback->setter)(this, value, callback->data);
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
|
|
|
|
// api style callbacks
|
|
|
|
|
AccessorInfo* data = AccessorInfo::cast(structure);
|
|
|
|
|
Object* call_obj = data->setter();
|
|
|
|
|
v8::AccessorSetter call_fun = v8::ToCData<v8::AccessorSetter>(call_obj);
|
|
|
|
|
if (call_fun == NULL) return value;
|
|
|
|
|
Handle<String> key(name);
|
|
|
|
|
LOG(ApiNamedPropertyAccess("store", this, name));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(data->data(), this, JSObject::cast(holder));
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
call_fun(v8::Utils::ToLocal(key),
|
|
|
|
|
v8::Utils::ToLocal(value_handle),
|
|
|
|
|
info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (structure->IsFixedArray()) {
|
|
|
|
|
Object* setter = FixedArray::cast(structure)->get(kSetterIndex);
|
|
|
|
|
if (setter->IsJSFunction()) {
|
2009-03-13 11:40:09 +00:00
|
|
|
return SetPropertyWithDefinedSetter(JSFunction::cast(setter), value);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
Handle<String> key(name);
|
|
|
|
|
Handle<Object> holder_handle(holder);
|
|
|
|
|
Handle<Object> args[2] = { key, holder_handle };
|
|
|
|
|
return Top::Throw(*Factory::NewTypeError("no_setter_in_callback",
|
|
|
|
|
HandleVector(args, 2)));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* JSObject::SetPropertyWithDefinedSetter(JSFunction* setter,
|
|
|
|
|
Object* value) {
|
|
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
Handle<JSFunction> fun(JSFunction::cast(setter));
|
|
|
|
|
Handle<JSObject> self(this);
|
2009-07-16 07:07:51 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
|
|
|
|
// Handle stepping into a setter if step into is active.
|
|
|
|
|
if (Debug::StepInActive()) {
|
|
|
|
|
Debug::HandleStepIn(fun, Handle<Object>::null(), 0, false);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
2009-03-13 11:40:09 +00:00
|
|
|
bool has_pending_exception;
|
|
|
|
|
Object** argv[] = { value_handle.location() };
|
|
|
|
|
Execution::Call(fun, self, 1, argv, &has_pending_exception);
|
|
|
|
|
// Check for pending exception and return the result.
|
|
|
|
|
if (has_pending_exception) return Failure::Exception();
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-13 13:24:32 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LookupCallbackSetterInPrototypes(String* name,
|
|
|
|
|
LookupResult* result) {
|
|
|
|
|
for (Object* pt = GetPrototype();
|
|
|
|
|
pt != Heap::null_value();
|
|
|
|
|
pt = pt->GetPrototype()) {
|
|
|
|
|
JSObject::cast(pt)->LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
if (result->IsValid()) {
|
|
|
|
|
if (!result->IsTransitionType() && result->IsReadOnly()) {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
if (result->type() == CALLBACKS) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* JSObject::LookupCallbackSetterInPrototypes(uint32_t index) {
|
|
|
|
|
for (Object* pt = GetPrototype();
|
|
|
|
|
pt != Heap::null_value();
|
|
|
|
|
pt = pt->GetPrototype()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
if (!JSObject::cast(pt)->HasDictionaryElements()) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dictionary = JSObject::cast(pt)->element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
2009-07-13 13:24:32 +00:00
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
return FixedArray::cast(element)->get(kSetterIndex);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LookupInDescriptor(String* name, LookupResult* result) {
|
|
|
|
|
DescriptorArray* descriptors = map()->instance_descriptors();
|
2009-06-22 14:29:35 +00:00
|
|
|
int number = DescriptorLookupCache::Lookup(descriptors, name);
|
|
|
|
|
if (number == DescriptorLookupCache::kAbsent) {
|
|
|
|
|
number = descriptors->Search(name);
|
|
|
|
|
DescriptorLookupCache::Update(descriptors, name, number);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (number != DescriptorArray::kNotFound) {
|
|
|
|
|
result->DescriptorResult(this, descriptors->GetDetails(number), number);
|
|
|
|
|
} else {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LocalLookupRealNamedProperty(String* name,
|
|
|
|
|
LookupResult* result) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return result->NotFound();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
|
|
|
|
LookupInDescriptor(name, result);
|
|
|
|
|
if (result->IsValid()) {
|
|
|
|
|
ASSERT(result->holder() == this && result->type() != NORMAL);
|
|
|
|
|
// Disallow caching for uninitialized constants. These can only
|
|
|
|
|
// occur as fields.
|
|
|
|
|
if (result->IsReadOnly() && result->type() == FIELD &&
|
2008-10-15 06:03:26 +00:00
|
|
|
FastPropertyAt(result->GetFieldIndex())->IsTheHole()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DisallowCaching();
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* value = property_dictionary()->ValueAt(entry);
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
PropertyDetails d = property_dictionary()->DetailsAt(entry);
|
|
|
|
|
if (d.IsDeleted()) {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
value = JSGlobalPropertyCell::cast(value)->value();
|
|
|
|
|
ASSERT(result->IsLoaded());
|
|
|
|
|
}
|
2009-07-10 09:40:47 +00:00
|
|
|
// Make sure to disallow caching for uninitialized constants
|
|
|
|
|
// found in the dictionary-mode objects.
|
|
|
|
|
if (value->IsTheHole()) result->DisallowCaching();
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DictionaryResult(this, entry);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// Slow case object skipped during lookup. Do not use inline caching.
|
2009-07-10 09:40:47 +00:00
|
|
|
if (!IsGlobalObject()) result->DisallowCaching();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LookupRealNamedProperty(String* name, LookupResult* result) {
|
|
|
|
|
LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
if (result->IsProperty()) return;
|
|
|
|
|
|
|
|
|
|
LookupRealNamedPropertyInPrototypes(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LookupRealNamedPropertyInPrototypes(String* name,
|
|
|
|
|
LookupResult* result) {
|
|
|
|
|
for (Object* pt = GetPrototype();
|
|
|
|
|
pt != Heap::null_value();
|
|
|
|
|
pt = JSObject::cast(pt)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(pt)->LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
if (result->IsValid()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
case CALLBACKS:
|
|
|
|
|
return;
|
|
|
|
|
default: break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// We only need to deal with CALLBACKS and INTERCEPTORS
|
|
|
|
|
Object* JSObject::SetPropertyWithFailedAccessCheck(LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value) {
|
|
|
|
|
if (!result->IsProperty()) {
|
|
|
|
|
LookupCallbackSetterInPrototypes(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (result->IsProperty()) {
|
|
|
|
|
if (!result->IsReadOnly()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_write()) {
|
|
|
|
|
return SetPropertyWithCallback(result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
result->holder());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// Try lookup real named properties. Note that only property can be
|
|
|
|
|
// set is callbacks marked as ALL_CAN_WRITE on the prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
LookupRealNamedProperty(name, &r);
|
|
|
|
|
if (r.IsProperty()) {
|
|
|
|
|
return SetPropertyWithFailedAccessCheck(&r, name, value);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default: {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetProperty(LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
// Optimization for 2-byte strings often used as keys in a decompression
|
|
|
|
|
// dictionary. We make these short keys into symbols to avoid constantly
|
|
|
|
|
// reallocating them.
|
|
|
|
|
if (!name->IsSymbol() && name->length() <= 2) {
|
|
|
|
|
Object* symbol_version = Heap::LookupSymbol(name);
|
|
|
|
|
if (!symbol_version->IsFailure()) name = String::cast(symbol_version);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded()
|
2009-06-11 13:17:26 +00:00
|
|
|
&& !Top::MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return SetPropertyWithFailedAccessCheck(result, name, value);
|
|
|
|
|
}
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2008-10-21 20:08:49 +00:00
|
|
|
return JSObject::cast(proto)->SetProperty(result, name, value, attributes);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2009-01-15 11:31:08 +00:00
|
|
|
if (!result->IsProperty() && !IsJSContextExtensionObject()) {
|
2008-08-28 10:23:27 +00:00
|
|
|
// We could not find a local property so let's check whether there is an
|
|
|
|
|
// accessor that wants to handle the property.
|
|
|
|
|
LookupResult accessor_result;
|
|
|
|
|
LookupCallbackSetterInPrototypes(name, &accessor_result);
|
|
|
|
|
if (accessor_result.IsValid()) {
|
|
|
|
|
return SetPropertyWithCallback(accessor_result.GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
accessor_result.holder());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
}
|
|
|
|
|
if (result->IsNotFound()) {
|
|
|
|
|
return AddProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
if (!result->IsLoaded()) {
|
|
|
|
|
return SetLazyProperty(result, name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
if (result->IsReadOnly() && result->IsProperty()) return value;
|
|
|
|
|
// This is a real property that is not read-only, or it is a
|
|
|
|
|
// transition or null descriptor and there are no setters in the prototypes.
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(result, value);
|
2008-08-28 10:23:27 +00:00
|
|
|
case FIELD:
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(result->GetFieldIndex(), value);
|
2008-08-28 10:23:27 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
if (attributes == result->GetAttributes()) {
|
|
|
|
|
// Only use map transition if the attributes match.
|
|
|
|
|
return AddFastPropertyUsingMap(result->GetTransitionMap(),
|
2008-07-03 15:10:15 +00:00
|
|
|
name,
|
2008-08-28 10:23:27 +00:00
|
|
|
value);
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
// Only replace the function if necessary.
|
2009-05-13 10:46:28 +00:00
|
|
|
if (value == result->GetConstantFunction()) return value;
|
|
|
|
|
// Preserve the attributes of this existing property.
|
|
|
|
|
attributes = result->GetAttributes();
|
2009-07-07 14:06:08 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
case CALLBACKS:
|
|
|
|
|
return SetPropertyWithCallback(result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
result->holder());
|
|
|
|
|
case INTERCEPTOR:
|
|
|
|
|
return SetPropertyWithInterceptor(name, value, attributes);
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
// Replace with a MAP_TRANSITION to a new map with a FIELD, even
|
|
|
|
|
// if the value is a function.
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
case NULL_DESCRIPTOR:
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Set a real local property, even if it is READ_ONLY. If the property is not
|
2008-10-02 13:45:21 +00:00
|
|
|
// present, add it with attributes NONE. This code is an exact clone of
|
|
|
|
|
// SetProperty, with the check for IsReadOnly and the check for a
|
|
|
|
|
// callback setter removed. The two lines looking up the LookupResult
|
|
|
|
|
// result are also added. If one of the functions is changed, the other
|
|
|
|
|
// should be.
|
|
|
|
|
Object* JSObject::IgnoreAttributesAndSetLocalProperty(
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2008-10-02 13:45:21 +00:00
|
|
|
// ADDED TO CLONE
|
|
|
|
|
LookupResult result_struct;
|
|
|
|
|
LocalLookup(name, &result_struct);
|
|
|
|
|
LookupResult* result = &result_struct;
|
|
|
|
|
// END ADDED TO CLONE
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2008-10-02 13:45:21 +00:00
|
|
|
if (IsAccessCheckNeeded()
|
|
|
|
|
&& !Top::MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
|
|
|
|
return SetPropertyWithFailedAccessCheck(result, name, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-04-21 13:28:11 +00:00
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->IgnoreAttributesAndSetLocalProperty(
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2008-10-09 12:18:48 +00:00
|
|
|
// Check for accessor in prototype chain removed here in clone.
|
2008-10-02 13:45:21 +00:00
|
|
|
if (result->IsNotFound()) {
|
|
|
|
|
return AddProperty(name, value, attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-10-02 13:45:21 +00:00
|
|
|
if (!result->IsLoaded()) {
|
|
|
|
|
return SetLazyProperty(result, name, value, attributes);
|
|
|
|
|
}
|
2009-07-08 11:32:03 +00:00
|
|
|
// Check of IsReadOnly removed from here in clone.
|
2008-10-02 13:45:21 +00:00
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(result, value);
|
2008-10-02 13:45:21 +00:00
|
|
|
case FIELD:
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(result->GetFieldIndex(), value);
|
2008-10-02 13:45:21 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
if (attributes == result->GetAttributes()) {
|
|
|
|
|
// Only use map transition if the attributes match.
|
|
|
|
|
return AddFastPropertyUsingMap(result->GetTransitionMap(),
|
|
|
|
|
name,
|
|
|
|
|
value);
|
|
|
|
|
}
|
2009-04-21 13:28:11 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
// Only replace the function if necessary.
|
2009-05-13 10:46:28 +00:00
|
|
|
if (value == result->GetConstantFunction()) return value;
|
|
|
|
|
// Preserve the attributes of this existing property.
|
|
|
|
|
attributes = result->GetAttributes();
|
2009-07-07 14:06:08 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2009-04-21 13:28:34 +00:00
|
|
|
case CALLBACKS:
|
|
|
|
|
case INTERCEPTOR:
|
2009-04-21 13:28:11 +00:00
|
|
|
// Override callback in clone
|
|
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
// Replace with a MAP_TRANSITION to a new map with a FIELD, even
|
|
|
|
|
// if the value is a function.
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case NULL_DESCRIPTOR:
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttributePostInterceptor(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
|
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2008-07-25 07:37:58 +00:00
|
|
|
if (result.IsProperty()) return result.GetAttributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
if (continue_search) {
|
|
|
|
|
// Continue searching via the prototype chain.
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
if (pt != Heap::null_value()) {
|
|
|
|
|
return JSObject::cast(pt)->
|
|
|
|
|
GetPropertyAttributeWithReceiver(receiver, name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttributeWithInterceptor(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
Handle<JSObject> receiver_handle(receiver);
|
|
|
|
|
Handle<JSObject> holder_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), receiver, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->query()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyQuery query =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyQuery>(interceptor->query());
|
|
|
|
|
LOG(ApiNamedPropertyAccess("interceptor-named-has", *holder_handle, name));
|
|
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = query(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
|
|
|
|
if (!result.IsEmpty()) {
|
|
|
|
|
// Convert the boolean result to a property attribute
|
|
|
|
|
// specification.
|
|
|
|
|
return result->IsTrue() ? NONE : ABSENT;
|
|
|
|
|
}
|
|
|
|
|
} else if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyGetter>(interceptor->getter());
|
|
|
|
|
LOG(ApiNamedPropertyAccess("interceptor-named-get-has", this, name));
|
|
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
|
|
|
|
if (!result.IsEmpty()) return NONE;
|
|
|
|
|
}
|
|
|
|
|
return holder_handle->GetPropertyAttributePostInterceptor(*receiver_handle,
|
|
|
|
|
*name_handle,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttributeWithReceiver(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* key) {
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (key->AsArrayIndex(&index)) {
|
|
|
|
|
if (HasElementWithReceiver(receiver, index)) return NONE;
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
// Named property.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
Lookup(key, &result);
|
|
|
|
|
return GetPropertyAttribute(receiver, &result, key, true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttribute(JSObject* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, name, v8::ACCESS_HAS)) {
|
2008-10-31 09:42:14 +00:00
|
|
|
return GetPropertyAttributeWithFailedAccessCheck(receiver,
|
|
|
|
|
result,
|
|
|
|
|
name,
|
|
|
|
|
continue_search);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
if (result->IsValid()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL: // fall through
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
case CALLBACKS:
|
|
|
|
|
return result->GetAttributes();
|
|
|
|
|
case INTERCEPTOR:
|
|
|
|
|
return result->holder()->
|
|
|
|
|
GetPropertyAttributeWithInterceptor(receiver, name, continue_search);
|
2008-08-27 10:11:39 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
case NULL_DESCRIPTOR:
|
|
|
|
|
return ABSENT;
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
2008-08-27 10:11:39 +00:00
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetLocalPropertyAttribute(String* name) {
|
|
|
|
|
// Check whether the name is an array index.
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (name->AsArrayIndex(&index)) {
|
|
|
|
|
if (HasLocalElement(index)) return NONE;
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
// Named property.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
return GetPropertyAttribute(this, &result, name, false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* JSObject::NormalizeProperties(PropertyNormalizationMode mode,
|
|
|
|
|
int expected_additional_properties) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!HasFastProperties()) return this;
|
|
|
|
|
|
2009-07-30 07:33:05 +00:00
|
|
|
// The global object is always normalized.
|
|
|
|
|
ASSERT(!IsGlobalObject());
|
|
|
|
|
|
|
|
|
|
// Allocate new content.
|
2009-07-30 09:13:48 +00:00
|
|
|
int property_count = map()->NumberOfDescribedProperties();
|
|
|
|
|
if (expected_additional_properties > 0) {
|
|
|
|
|
property_count += expected_additional_properties;
|
|
|
|
|
} else {
|
|
|
|
|
property_count += 2; // Make space for two more properties.
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* obj =
|
2009-07-30 09:13:48 +00:00
|
|
|
StringDictionary::Allocate(property_count * 2);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = StringDictionary::cast(obj);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
PropertyDetails details = descs->GetDetails(i);
|
2008-07-03 15:10:15 +00:00
|
|
|
switch (details.type()) {
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), NORMAL, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = descs->GetConstantFunction(i);
|
|
|
|
|
Object* result = dictionary->Add(descs->GetKey(i), value, d);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case FIELD: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), NORMAL, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = FastPropertyAt(descs->GetFieldIndex(i));
|
|
|
|
|
Object* result = dictionary->Add(descs->GetKey(i), value, d);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), CALLBACKS, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = descs->GetCallbacksObject(i);
|
|
|
|
|
Object* result = dictionary->Add(descs->GetKey(i), value, d);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
2008-08-27 10:11:39 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
case NULL_DESCRIPTOR:
|
|
|
|
|
case INTERCEPTOR:
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
2008-08-27 10:11:39 +00:00
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Copy the next enumeration index from instance descriptor.
|
|
|
|
|
int index = map()->instance_descriptors()->NextEnumerationIndex();
|
|
|
|
|
dictionary->SetNextEnumerationIndex(index);
|
|
|
|
|
|
|
|
|
|
// Allocate new map.
|
2009-04-24 12:45:29 +00:00
|
|
|
obj = map()->CopyDropDescriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
2009-01-12 10:59:58 +00:00
|
|
|
Map* new_map = Map::cast(obj);
|
|
|
|
|
|
2009-02-11 23:52:52 +00:00
|
|
|
// Clear inobject properties if needed by adjusting the instance size and
|
|
|
|
|
// putting in a filler object instead of the inobject properties.
|
2009-01-12 10:59:58 +00:00
|
|
|
if (mode == CLEAR_INOBJECT_PROPERTIES && map()->inobject_properties() > 0) {
|
|
|
|
|
int instance_size_delta = map()->inobject_properties() * kPointerSize;
|
|
|
|
|
int new_instance_size = map()->instance_size() - instance_size_delta;
|
|
|
|
|
new_map->set_inobject_properties(0);
|
|
|
|
|
new_map->set_instance_size(new_instance_size);
|
2009-02-11 23:52:52 +00:00
|
|
|
Heap::CreateFillerObjectAt(this->address() + new_instance_size,
|
|
|
|
|
instance_size_delta);
|
2009-01-12 10:59:58 +00:00
|
|
|
}
|
|
|
|
|
new_map->set_unused_property_fields(0);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-01-15 19:08:34 +00:00
|
|
|
// We have now successfully allocated all the necessary objects.
|
2008-08-27 10:11:39 +00:00
|
|
|
// Changes can now be made with the guarantee that all of them take effect.
|
2009-01-12 10:59:58 +00:00
|
|
|
set_map(new_map);
|
2008-08-27 10:11:39 +00:00
|
|
|
map()->set_instance_descriptors(Heap::empty_descriptor_array());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
set_properties(dictionary);
|
|
|
|
|
|
|
|
|
|
Counters::props_to_dictionary.Increment();
|
|
|
|
|
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object properties have been normalized:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::TransformToFastProperties(int unused_property_fields) {
|
|
|
|
|
if (HasFastProperties()) return this;
|
2009-07-01 11:44:37 +00:00
|
|
|
ASSERT(!IsGlobalObject());
|
2008-07-03 15:10:15 +00:00
|
|
|
return property_dictionary()->
|
2009-07-01 11:44:37 +00:00
|
|
|
TransformPropertiesToFastFor(this, unused_property_fields);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::NormalizeElements() {
|
2009-10-20 15:26:17 +00:00
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
if (HasDictionaryElements()) return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Get number of entries.
|
|
|
|
|
FixedArray* array = FixedArray::cast(elements());
|
|
|
|
|
|
|
|
|
|
// Compute the effective length.
|
|
|
|
|
int length = IsJSArray() ?
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value() :
|
|
|
|
|
array->length();
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* obj = NumberDictionary::Allocate(length);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(obj);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Copy entries.
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
Object* value = array->get(i);
|
|
|
|
|
if (!value->IsTheHole()) {
|
|
|
|
|
PropertyDetails details = PropertyDetails(NONE, NORMAL);
|
|
|
|
|
Object* result = dictionary->AddNumberEntry(i, array->get(i), details);
|
|
|
|
|
if (result->IsFailure()) return result;
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = NumberDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Switch to using the dictionary as the backing storage for elements.
|
|
|
|
|
set_elements(dictionary);
|
|
|
|
|
|
|
|
|
|
Counters::elements_to_dictionary.Increment();
|
|
|
|
|
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object elements have been normalized:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* JSObject::DeletePropertyPostInterceptor(String* name, DeleteMode mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
|
|
|
|
if (!result.IsValid()) return Heap::true_value();
|
|
|
|
|
|
|
|
|
|
// Normalize object if needed.
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
return DeleteNormalizedProperty(name, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::DeletePropertyWithInterceptor(String* name) {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
if (!interceptor->deleter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyDeleter deleter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyDeleter>(interceptor->deleter());
|
|
|
|
|
LOG(ApiNamedPropertyAccess("interceptor-named-delete", *this_handle, name));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), this, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = deleter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) {
|
|
|
|
|
ASSERT(result->IsBoolean());
|
|
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* raw_result =
|
|
|
|
|
this_handle->DeletePropertyPostInterceptor(*name_handle, NORMAL_DELETION);
|
2008-07-03 15:10:15 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* JSObject::DeleteElementPostInterceptor(uint32_t index,
|
|
|
|
|
DeleteMode mode) {
|
2009-10-20 15:26:17 +00:00
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
2008-07-03 15:10:15 +00:00
|
|
|
static_cast<uint32_t>(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
2009-07-28 08:43:51 +00:00
|
|
|
if (index < length) {
|
|
|
|
|
FixedArray::cast(elements())->set_the_hole(index);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
return dictionary->DeleteProperty(entry, mode);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::DeleteElementWithInterceptor(uint32_t index) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
|
|
|
|
if (interceptor->deleter()->IsUndefined()) return Heap::false_value();
|
|
|
|
|
v8::IndexedPropertyDeleter deleter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyDeleter>(interceptor->deleter());
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
LOG(ApiIndexedPropertyAccess("interceptor-indexed-delete", this, index));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), this, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = deleter(index, info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) {
|
|
|
|
|
ASSERT(result->IsBoolean());
|
|
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* raw_result =
|
|
|
|
|
this_handle->DeleteElementPostInterceptor(index, NORMAL_DELETION);
|
2008-07-03 15:10:15 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* JSObject::DeleteElement(uint32_t index, DeleteMode mode) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_DELETE)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_DELETE);
|
|
|
|
|
return Heap::false_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return Heap::false_value();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-06-08 09:46:09 +00:00
|
|
|
return JSGlobalObject::cast(proto)->DeleteElement(index, mode);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasIndexedInterceptor()) {
|
2009-06-08 09:46:09 +00:00
|
|
|
// Skip interceptor if forcing deletion.
|
|
|
|
|
if (mode == FORCE_DELETION) {
|
|
|
|
|
return DeleteElementPostInterceptor(index, mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return DeleteElementWithInterceptor(index);
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
2008-07-03 15:10:15 +00:00
|
|
|
static_cast<uint32_t>(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
2009-07-28 08:43:51 +00:00
|
|
|
if (index < length) {
|
|
|
|
|
FixedArray::cast(elements())->set_the_hole(index);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case PIXEL_ELEMENTS:
|
|
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
// Pixel and external array elements cannot be deleted. Just
|
|
|
|
|
// silently ignore here.
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
return dictionary->DeleteProperty(entry, mode);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-08 09:46:09 +00:00
|
|
|
Object* JSObject::DeleteProperty(String* name, DeleteMode mode) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// ECMA-262, 3rd, 8.6.2.5
|
|
|
|
|
ASSERT(name->IsString());
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, name, v8::ACCESS_DELETE)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_DELETE);
|
|
|
|
|
return Heap::false_value();
|
|
|
|
|
}
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return Heap::false_value();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-06-08 09:46:09 +00:00
|
|
|
return JSGlobalObject::cast(proto)->DeleteProperty(name, mode);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (name->AsArrayIndex(&index)) {
|
2009-06-08 09:46:09 +00:00
|
|
|
return DeleteElement(index, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
if (!result.IsValid()) return Heap::true_value();
|
2009-06-08 09:46:09 +00:00
|
|
|
// Ignore attributes if forcing a deletion.
|
|
|
|
|
if (result.IsDontDelete() && mode != FORCE_DELETION) {
|
|
|
|
|
return Heap::false_value();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check for interceptor.
|
|
|
|
|
if (result.type() == INTERCEPTOR) {
|
2009-06-08 09:46:09 +00:00
|
|
|
// Skip interceptor if forcing a deletion.
|
|
|
|
|
if (mode == FORCE_DELETION) {
|
|
|
|
|
return DeletePropertyPostInterceptor(name, mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return DeletePropertyWithInterceptor(name);
|
|
|
|
|
}
|
|
|
|
|
if (!result.IsLoaded()) {
|
2009-06-08 09:46:09 +00:00
|
|
|
return JSObject::cast(this)->DeleteLazyProperty(&result,
|
|
|
|
|
name,
|
|
|
|
|
mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Normalize object if needed.
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
// Make sure the properties are normalized before removing the entry.
|
2009-06-30 10:05:36 +00:00
|
|
|
return DeleteNormalizedProperty(name, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Check whether this object references another object.
|
|
|
|
|
bool JSObject::ReferencesObject(Object* obj) {
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
// Is the object the constructor for this object?
|
|
|
|
|
if (map()->constructor() == obj) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Is the object the prototype for this object?
|
|
|
|
|
if (map()->prototype() == obj) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the object is among the named properties.
|
|
|
|
|
Object* key = SlowReverseLookup(obj);
|
|
|
|
|
if (key != Heap::undefined_value()) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the object is among the indexed properties.
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case PIXEL_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
// Raw pixels and external arrays do not reference other
|
|
|
|
|
// objects.
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
int length = IsJSArray() ?
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value() :
|
|
|
|
|
FixedArray::cast(elements())->length();
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
Object* element = FixedArray::cast(elements())->get(i);
|
|
|
|
|
if (!element->IsTheHole() && element == obj) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
key = element_dictionary()->SlowReverseLookup(obj);
|
|
|
|
|
if (key != Heap::undefined_value()) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// For functions check the context. Boilerplate functions do
|
|
|
|
|
// not have to be traversed since they have no real context.
|
|
|
|
|
if (IsJSFunction() && !JSFunction::cast(this)->IsBoilerplate()) {
|
|
|
|
|
// Get the constructor function for arguments array.
|
|
|
|
|
JSObject* arguments_boilerplate =
|
|
|
|
|
Top::context()->global_context()->arguments_boilerplate();
|
|
|
|
|
JSFunction* arguments_function =
|
|
|
|
|
JSFunction::cast(arguments_boilerplate->map()->constructor());
|
|
|
|
|
|
|
|
|
|
// Get the context and don't check if it is the global context.
|
|
|
|
|
JSFunction* f = JSFunction::cast(this);
|
|
|
|
|
Context* context = f->context();
|
|
|
|
|
if (context->IsGlobalContext()) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check the non-special context slots.
|
|
|
|
|
for (int i = Context::MIN_CONTEXT_SLOTS; i < context->length(); i++) {
|
|
|
|
|
// Only check JS objects.
|
|
|
|
|
if (context->get(i)->IsJSObject()) {
|
|
|
|
|
JSObject* ctxobj = JSObject::cast(context->get(i));
|
|
|
|
|
// If it is an arguments array check the content.
|
|
|
|
|
if (ctxobj->map()->constructor() == arguments_function) {
|
|
|
|
|
if (ctxobj->ReferencesObject(obj)) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
} else if (ctxobj == obj) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check the context extension if any.
|
2008-10-24 10:59:40 +00:00
|
|
|
if (context->has_extension()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return context->extension()->ReferencesObject(obj);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// No references to object.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Tests for the fast common case for property enumeration:
|
2009-12-01 10:25:29 +00:00
|
|
|
// - This object and all prototypes has an enum cache (which means that it has
|
|
|
|
|
// no interceptors and needs no access checks).
|
|
|
|
|
// - This object has no elements.
|
|
|
|
|
// - No prototype has enumerable properties/elements.
|
2008-07-03 15:10:15 +00:00
|
|
|
bool JSObject::IsSimpleEnum() {
|
|
|
|
|
for (Object* o = this;
|
|
|
|
|
o != Heap::null_value();
|
|
|
|
|
o = JSObject::cast(o)->GetPrototype()) {
|
|
|
|
|
JSObject* curr = JSObject::cast(o);
|
|
|
|
|
if (!curr->map()->instance_descriptors()->HasEnumCache()) return false;
|
2009-12-01 10:25:29 +00:00
|
|
|
ASSERT(!curr->HasNamedInterceptor());
|
|
|
|
|
ASSERT(!curr->HasIndexedInterceptor());
|
|
|
|
|
ASSERT(!curr->IsAccessCheckNeeded());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (curr->NumberOfEnumElements() > 0) return false;
|
|
|
|
|
if (curr != this) {
|
|
|
|
|
FixedArray* curr_fixed_array =
|
|
|
|
|
FixedArray::cast(curr->map()->instance_descriptors()->GetEnumCache());
|
2009-12-01 10:25:29 +00:00
|
|
|
if (curr_fixed_array->length() > 0) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::NumberOfDescribedProperties() {
|
|
|
|
|
int result = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->IsProperty(i)) result++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::PropertyIndexFor(String* name) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (name->Equals(descs->GetKey(i)) && !descs->IsNullDescriptor(i)) {
|
|
|
|
|
return descs->GetFieldIndex(i);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::NextFreePropertyIndex() {
|
2009-07-10 19:25:18 +00:00
|
|
|
int max_index = -1;
|
|
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->GetType(i) == FIELD) {
|
|
|
|
|
int current_index = descs->GetFieldIndex(i);
|
|
|
|
|
if (current_index > max_index) max_index = current_index;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
return max_index + 1;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
AccessorDescriptor* Map::FindAccessor(String* name) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (name->Equals(descs->GetKey(i)) && descs->GetType(i) == CALLBACKS) {
|
|
|
|
|
return descs->GetCallbacks(i);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LocalLookup(String* name, LookupResult* result) {
|
|
|
|
|
ASSERT(name->IsString());
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return result->NotFound();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->LocalLookup(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Do not use inline caching if the object is a non-global object
|
|
|
|
|
// that requires access checks.
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (!IsJSGlobalProxy() && IsAccessCheckNeeded()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DisallowCaching();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check __proto__ before interceptor.
|
2009-01-14 12:13:26 +00:00
|
|
|
if (name->Equals(Heap::Proto_symbol()) && !IsJSContextExtensionObject()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->ConstantResult(this);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for lookup interceptor except when bootstrapping.
|
|
|
|
|
if (HasNamedInterceptor() && !Bootstrapper::IsActive()) {
|
|
|
|
|
result->InterceptorResult(this);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::Lookup(String* name, LookupResult* result) {
|
|
|
|
|
// Ecma-262 3rd 8.6.2.4
|
|
|
|
|
for (Object* current = this;
|
|
|
|
|
current != Heap::null_value();
|
|
|
|
|
current = JSObject::cast(current)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(current)->LocalLookup(name, result);
|
2008-10-30 12:51:06 +00:00
|
|
|
if (result->IsValid() && !result->IsTransitionType()) return;
|
|
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Search object and it's prototype chain for callback properties.
|
|
|
|
|
void JSObject::LookupCallback(String* name, LookupResult* result) {
|
|
|
|
|
for (Object* current = this;
|
|
|
|
|
current != Heap::null_value();
|
|
|
|
|
current = JSObject::cast(current)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(current)->LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
if (result->IsValid() && result->type() == CALLBACKS) return;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::DefineGetterSetter(String* name,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
2009-01-26 08:35:41 +00:00
|
|
|
// Try to flatten before operating on the string.
|
2009-03-17 09:33:06 +00:00
|
|
|
name->TryFlattenIfNotFlat();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-30 12:51:06 +00:00
|
|
|
// Check if there is an API defined callback object which prohibits
|
|
|
|
|
// callback overwriting in this object or it's prototype chain.
|
|
|
|
|
// This mechanism is needed for instance in a browser setting, where
|
|
|
|
|
// certain accessors such as window.location should not be allowed
|
2009-01-15 19:08:34 +00:00
|
|
|
// to be overwritten because allowing overwriting could potentially
|
2008-10-30 12:51:06 +00:00
|
|
|
// cause security problems.
|
|
|
|
|
LookupResult callback_result;
|
|
|
|
|
LookupCallback(name, &callback_result);
|
|
|
|
|
if (callback_result.IsValid()) {
|
|
|
|
|
Object* obj = callback_result.GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo() &&
|
|
|
|
|
AccessorInfo::cast(obj)->prohibits_overwriting()) {
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
uint32_t index;
|
|
|
|
|
bool is_element = name->AsArrayIndex(&index);
|
|
|
|
|
if (is_element && IsJSArray()) return Heap::undefined_value();
|
|
|
|
|
|
|
|
|
|
if (is_element) {
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS:
|
|
|
|
|
break;
|
|
|
|
|
case PIXEL_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
// Ignore getters and setters on pixel and external array
|
|
|
|
|
// elements.
|
2009-07-28 08:43:51 +00:00
|
|
|
return Heap::undefined_value();
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
// Lookup the index.
|
|
|
|
|
NumberDictionary* dictionary = element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* result = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.IsReadOnly()) return Heap::undefined_value();
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
ASSERT(result->IsFixedArray());
|
|
|
|
|
return result;
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Lookup the name.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
if (result.IsValid()) {
|
|
|
|
|
if (result.IsReadOnly()) return Heap::undefined_value();
|
|
|
|
|
if (result.type() == CALLBACKS) {
|
|
|
|
|
Object* obj = result.GetCallbackObject();
|
2010-01-27 13:53:19 +00:00
|
|
|
if (obj->IsFixedArray()) {
|
|
|
|
|
PropertyDetails details = PropertyDetails(attributes, CALLBACKS);
|
|
|
|
|
SetNormalizedProperty(name, obj, details);
|
|
|
|
|
return obj;
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the fixed array to hold getter and setter.
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* structure = Heap::AllocateFixedArray(2, TENURED);
|
|
|
|
|
if (structure->IsFailure()) return structure;
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, CALLBACKS);
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
if (is_element) {
|
|
|
|
|
// Normalize object to make this operation simple.
|
|
|
|
|
Object* ok = NormalizeElements();
|
|
|
|
|
if (ok->IsFailure()) return ok;
|
|
|
|
|
|
|
|
|
|
// Update the dictionary with the new CALLBACKS property.
|
|
|
|
|
Object* dict =
|
2009-07-02 06:50:43 +00:00
|
|
|
element_dictionary()->Set(index, structure, details);
|
2009-03-13 11:40:09 +00:00
|
|
|
if (dict->IsFailure()) return dict;
|
|
|
|
|
|
|
|
|
|
// If name is an index we need to stay in slow case.
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* elements = NumberDictionary::cast(dict);
|
2009-03-13 11:40:09 +00:00
|
|
|
elements->set_requires_slow_elements();
|
|
|
|
|
// Set the potential new dictionary on the object.
|
2009-07-02 06:50:43 +00:00
|
|
|
set_elements(NumberDictionary::cast(dict));
|
2009-03-13 11:40:09 +00:00
|
|
|
} else {
|
|
|
|
|
// Normalize object to make this operation simple.
|
2009-07-30 09:13:48 +00:00
|
|
|
Object* ok = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
2009-03-13 11:40:09 +00:00
|
|
|
if (ok->IsFailure()) return ok;
|
|
|
|
|
|
2009-07-01 11:20:33 +00:00
|
|
|
// For the global object allocate a new map to invalidate the global inline
|
|
|
|
|
// caches which have a global property cell reference directly in the code.
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-07-01 11:20:33 +00:00
|
|
|
Object* new_map = map()->CopyDropDescriptors();
|
|
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
set_map(Map::cast(new_map));
|
|
|
|
|
}
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
// Update the dictionary with the new CALLBACKS property.
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(name, structure, details);
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return structure;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-19 15:06:00 +00:00
|
|
|
Object* JSObject::DefineAccessor(String* name, bool is_getter, JSFunction* fun,
|
|
|
|
|
PropertyAttributes attributes) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, name, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return this;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-03-19 15:06:00 +00:00
|
|
|
return JSObject::cast(proto)->DefineAccessor(name, is_getter,
|
|
|
|
|
fun, attributes);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* array = DefineGetterSetter(name, attributes);
|
|
|
|
|
if (array->IsFailure() || array->IsUndefined()) return array;
|
|
|
|
|
FixedArray::cast(array)->set(is_getter ? 0 : 1, fun);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::LookupAccessor(String* name, bool is_getter) {
|
|
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, name, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Make the lookup and include prototypes.
|
2009-03-13 11:40:09 +00:00
|
|
|
int accessor_index = is_getter ? kGetterIndex : kSetterIndex;
|
|
|
|
|
uint32_t index;
|
|
|
|
|
if (name->AsArrayIndex(&index)) {
|
|
|
|
|
for (Object* obj = this;
|
|
|
|
|
obj != Heap::null_value();
|
|
|
|
|
obj = JSObject::cast(obj)->GetPrototype()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
JSObject* js_object = JSObject::cast(obj);
|
|
|
|
|
if (js_object->HasDictionaryElements()) {
|
|
|
|
|
NumberDictionary* dictionary = js_object->element_dictionary();
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
return FixedArray::cast(element)->get(accessor_index);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
for (Object* obj = this;
|
|
|
|
|
obj != Heap::null_value();
|
|
|
|
|
obj = JSObject::cast(obj)->GetPrototype()) {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
JSObject::cast(obj)->LocalLookup(name, &result);
|
|
|
|
|
if (result.IsValid()) {
|
|
|
|
|
if (result.IsReadOnly()) return Heap::undefined_value();
|
|
|
|
|
if (result.type() == CALLBACKS) {
|
|
|
|
|
Object* obj = result.GetCallbackObject();
|
|
|
|
|
if (obj->IsFixedArray()) {
|
|
|
|
|
return FixedArray::cast(obj)->get(accessor_index);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SlowReverseLookup(Object* value) {
|
|
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->GetType(i) == FIELD) {
|
|
|
|
|
if (FastPropertyAt(descs->GetFieldIndex(i)) == value) {
|
|
|
|
|
return descs->GetKey(i);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
} else if (descs->GetType(i) == CONSTANT_FUNCTION) {
|
|
|
|
|
if (descs->GetConstantFunction(i) == value) {
|
|
|
|
|
return descs->GetKey(i);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
} else {
|
|
|
|
|
return property_dictionary()->SlowReverseLookup(value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* Map::CopyDropDescriptors() {
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* result = Heap::AllocateMap(instance_type(), instance_size());
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
Map::cast(result)->set_prototype(prototype());
|
|
|
|
|
Map::cast(result)->set_constructor(constructor());
|
2008-08-27 13:47:52 +00:00
|
|
|
// Don't copy descriptors, so map transitions always remain a forest.
|
2009-04-24 12:45:29 +00:00
|
|
|
// If we retained the same descriptors we would have two maps
|
|
|
|
|
// pointing to the same transition which is bad because the garbage
|
|
|
|
|
// collector relies on being able to reverse pointers from transitions
|
|
|
|
|
// to maps. If properties need to be retained use CopyDropTransitions.
|
2008-08-27 13:47:52 +00:00
|
|
|
Map::cast(result)->set_instance_descriptors(Heap::empty_descriptor_array());
|
2008-07-03 15:10:15 +00:00
|
|
|
// Please note instance_type and instance_size are set when allocated.
|
2008-10-15 06:03:26 +00:00
|
|
|
Map::cast(result)->set_inobject_properties(inobject_properties());
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->set_unused_property_fields(unused_property_fields());
|
2009-08-26 11:03:07 +00:00
|
|
|
|
|
|
|
|
// If the map has pre-allocated properties always start out with a descriptor
|
|
|
|
|
// array describing these properties.
|
|
|
|
|
if (pre_allocated_property_fields() > 0) {
|
|
|
|
|
ASSERT(constructor()->IsJSFunction());
|
|
|
|
|
JSFunction* ctor = JSFunction::cast(constructor());
|
2009-08-28 11:10:33 +00:00
|
|
|
Object* descriptors =
|
|
|
|
|
ctor->initial_map()->instance_descriptors()->RemoveTransitions();
|
|
|
|
|
if (descriptors->IsFailure()) return descriptors;
|
2009-08-26 11:03:07 +00:00
|
|
|
Map::cast(result)->set_instance_descriptors(
|
2009-08-28 11:10:33 +00:00
|
|
|
DescriptorArray::cast(descriptors));
|
2009-08-26 11:03:07 +00:00
|
|
|
Map::cast(result)->set_pre_allocated_property_fields(
|
|
|
|
|
pre_allocated_property_fields());
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->set_bit_field(bit_field());
|
2009-04-24 08:13:09 +00:00
|
|
|
Map::cast(result)->set_bit_field2(bit_field2());
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->ClearCodeCache();
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
Object* Map::CopyDropTransitions() {
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* new_map = CopyDropDescriptors();
|
2008-08-27 13:47:52 +00:00
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
Object* descriptors = instance_descriptors()->RemoveTransitions();
|
|
|
|
|
if (descriptors->IsFailure()) return descriptors;
|
|
|
|
|
cast(new_map)->set_instance_descriptors(DescriptorArray::cast(descriptors));
|
|
|
|
|
return cast(new_map);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* Map::UpdateCodeCache(String* name, Code* code) {
|
2008-07-30 08:49:36 +00:00
|
|
|
ASSERT(code->ic_state() == MONOMORPHIC);
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* cache = code_cache();
|
|
|
|
|
|
|
|
|
|
// When updating the code cache we disregard the type encoded in the
|
|
|
|
|
// flags. This allows call constant stubs to overwrite call field
|
|
|
|
|
// stubs, etc.
|
|
|
|
|
Code::Flags flags = Code::RemoveTypeFromFlags(code->flags());
|
|
|
|
|
|
|
|
|
|
// First check whether we can update existing code cache without
|
|
|
|
|
// extending it.
|
|
|
|
|
int length = cache->length();
|
2008-09-18 11:18:27 +00:00
|
|
|
int deleted_index = -1;
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < length; i += 2) {
|
|
|
|
|
Object* key = cache->get(i);
|
2008-09-18 11:18:27 +00:00
|
|
|
if (key->IsNull()) {
|
|
|
|
|
if (deleted_index < 0) deleted_index = i;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (key->IsUndefined()) {
|
2008-09-18 11:18:27 +00:00
|
|
|
if (deleted_index >= 0) i = deleted_index;
|
2008-07-03 15:10:15 +00:00
|
|
|
cache->set(i + 0, name);
|
|
|
|
|
cache->set(i + 1, code);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
if (name->Equals(String::cast(key))) {
|
|
|
|
|
Code::Flags found = Code::cast(cache->get(i + 1))->flags();
|
|
|
|
|
if (Code::RemoveTypeFromFlags(found) == flags) {
|
|
|
|
|
cache->set(i + 1, code);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-09-18 11:18:27 +00:00
|
|
|
// Reached the end of the code cache. If there were deleted
|
|
|
|
|
// elements, reuse the space for the first of them.
|
|
|
|
|
if (deleted_index >= 0) {
|
|
|
|
|
cache->set(deleted_index + 0, name);
|
|
|
|
|
cache->set(deleted_index + 1, code);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Extend the code cache with some new entries (at least one).
|
|
|
|
|
int new_length = length + ((length >> 1) & ~1) + 2;
|
|
|
|
|
ASSERT((new_length & 1) == 0); // must be a multiple of two
|
|
|
|
|
Object* result = cache->CopySize(new_length);
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
|
|
|
|
|
// Add the (name, code) pair to the new cache.
|
|
|
|
|
cache = FixedArray::cast(result);
|
|
|
|
|
cache->set(length + 0, name);
|
|
|
|
|
cache->set(length + 1, code);
|
|
|
|
|
set_code_cache(cache);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-18 10:22:46 +00:00
|
|
|
Object* Map::FindInCodeCache(String* name, Code::Flags flags) {
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* cache = code_cache();
|
|
|
|
|
int length = cache->length();
|
|
|
|
|
for (int i = 0; i < length; i += 2) {
|
|
|
|
|
Object* key = cache->get(i);
|
2008-09-18 11:18:27 +00:00
|
|
|
// Skip deleted elements.
|
|
|
|
|
if (key->IsNull()) continue;
|
|
|
|
|
if (key->IsUndefined()) return key;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (name->Equals(String::cast(key))) {
|
|
|
|
|
Code* code = Code::cast(cache->get(i + 1));
|
2008-09-18 10:22:46 +00:00
|
|
|
if (code->flags() == flags) return code;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-18 10:22:46 +00:00
|
|
|
int Map::IndexInCodeCache(Code* code) {
|
|
|
|
|
FixedArray* array = code_cache();
|
|
|
|
|
int len = array->length();
|
|
|
|
|
for (int i = 0; i < len; i += 2) {
|
|
|
|
|
if (array->get(i + 1) == code) return i + 1;
|
|
|
|
|
}
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Map::RemoveFromCodeCache(int index) {
|
|
|
|
|
FixedArray* array = code_cache();
|
|
|
|
|
ASSERT(array->length() >= index && array->get(index)->IsCode());
|
2008-09-18 11:18:27 +00:00
|
|
|
// Use null instead of undefined for deleted elements to distinguish
|
|
|
|
|
// deleted elements from unused elements. This distinction is used
|
|
|
|
|
// when looking up in the cache and when updating the cache.
|
|
|
|
|
array->set_null(index - 1); // key
|
|
|
|
|
array->set_null(index); // code
|
2008-09-18 10:22:46 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void FixedArray::FixedArrayIterateBody(ObjectVisitor* v) {
|
|
|
|
|
IteratePointers(v, kHeaderSize, kHeaderSize + length() * kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static bool HasKey(FixedArray* array, Object* key) {
|
|
|
|
|
int len0 = array->length();
|
|
|
|
|
for (int i = 0; i < len0; i++) {
|
|
|
|
|
Object* element = array->get(i);
|
|
|
|
|
if (element->IsSmi() && key->IsSmi() && (element == key)) return true;
|
|
|
|
|
if (element->IsString() &&
|
|
|
|
|
key->IsString() && String::cast(element)->Equals(String::cast(key))) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* FixedArray::AddKeysFromJSArray(JSArray* array) {
|
2009-10-20 15:26:17 +00:00
|
|
|
ASSERT(!array->HasPixelElements() && !array->HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (array->GetElementsKind()) {
|
|
|
|
|
case JSObject::FAST_ELEMENTS:
|
|
|
|
|
return UnionOfKeys(FixedArray::cast(array->elements()));
|
|
|
|
|
case JSObject::DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dict = array->element_dictionary();
|
|
|
|
|
int size = dict->NumberOfElements();
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
// Allocate a temporary fixed array.
|
|
|
|
|
Object* object = Heap::AllocateFixedArray(size);
|
|
|
|
|
if (object->IsFailure()) return object;
|
|
|
|
|
FixedArray* key_array = FixedArray::cast(object);
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
int capacity = dict->Capacity();
|
|
|
|
|
int pos = 0;
|
|
|
|
|
// Copy the elements from the JSArray to the temporary fixed array.
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
if (dict->IsKey(dict->KeyAt(i))) {
|
|
|
|
|
key_array->set(pos++, dict->ValueAt(i));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Compute the union of this and the temporary fixed array.
|
|
|
|
|
return UnionOfKeys(key_array);
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
return Heap::null_value(); // Failure case needs to "return" a value.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* FixedArray::UnionOfKeys(FixedArray* other) {
|
|
|
|
|
int len0 = length();
|
|
|
|
|
int len1 = other->length();
|
|
|
|
|
// Optimize if either is empty.
|
|
|
|
|
if (len0 == 0) return other;
|
|
|
|
|
if (len1 == 0) return this;
|
|
|
|
|
|
|
|
|
|
// Compute how many elements are not in this.
|
|
|
|
|
int extra = 0;
|
|
|
|
|
for (int y = 0; y < len1; y++) {
|
2009-04-27 11:16:59 +00:00
|
|
|
Object* value = other->get(y);
|
|
|
|
|
if (!value->IsTheHole() && !HasKey(this, value)) extra++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-04-27 11:16:59 +00:00
|
|
|
if (extra == 0) return this;
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate the result
|
|
|
|
|
Object* obj = Heap::AllocateFixedArray(len0 + extra);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
// Fill in the content
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* result = FixedArray::cast(obj);
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode mode = result->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len0; i++) {
|
2008-10-23 14:55:45 +00:00
|
|
|
result->set(i, get(i), mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Fill in the extra keys.
|
|
|
|
|
int index = 0;
|
|
|
|
|
for (int y = 0; y < len1; y++) {
|
2009-04-27 11:16:59 +00:00
|
|
|
Object* value = other->get(y);
|
|
|
|
|
if (!value->IsTheHole() && !HasKey(this, value)) {
|
2008-10-23 14:55:45 +00:00
|
|
|
result->set(len0 + index, other->get(y), mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
index++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(extra == index);
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* FixedArray::CopySize(int new_length) {
|
|
|
|
|
if (new_length == 0) return Heap::empty_fixed_array();
|
|
|
|
|
Object* obj = Heap::AllocateFixedArray(new_length);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
FixedArray* result = FixedArray::cast(obj);
|
|
|
|
|
// Copy the content
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
2008-07-03 15:10:15 +00:00
|
|
|
int len = length();
|
|
|
|
|
if (new_length < len) len = new_length;
|
2008-10-23 14:55:45 +00:00
|
|
|
result->set_map(map());
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode mode = result->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
result->set(i, get(i), mode);
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void FixedArray::CopyTo(int pos, FixedArray* dest, int dest_pos, int len) {
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = dest->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int index = 0; index < len; index++) {
|
|
|
|
|
dest->set(dest_pos+index, get(pos+index), mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
bool FixedArray::IsEqualTo(FixedArray* other) {
|
|
|
|
|
if (length() != other->length()) return false;
|
|
|
|
|
for (int i = 0 ; i < length(); ++i) {
|
|
|
|
|
if (get(i) != other->get(i)) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* DescriptorArray::Allocate(int number_of_descriptors) {
|
2008-08-27 10:11:39 +00:00
|
|
|
if (number_of_descriptors == 0) {
|
|
|
|
|
return Heap::empty_descriptor_array();
|
|
|
|
|
}
|
|
|
|
|
// Allocate the array of keys.
|
2009-12-16 15:43:20 +00:00
|
|
|
Object* array =
|
|
|
|
|
Heap::AllocateFixedArray(ToKeyIndex(number_of_descriptors));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (array->IsFailure()) return array;
|
2008-08-27 10:11:39 +00:00
|
|
|
// Do not use DescriptorArray::cast on incomplete object.
|
|
|
|
|
FixedArray* result = FixedArray::cast(array);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate the content array and set it in the descriptor array.
|
|
|
|
|
array = Heap::AllocateFixedArray(number_of_descriptors << 1);
|
|
|
|
|
if (array->IsFailure()) return array;
|
|
|
|
|
result->set(kContentArrayIndex, array);
|
2008-08-27 10:11:39 +00:00
|
|
|
result->set(kEnumerationIndexIndex,
|
2010-01-29 11:46:55 +00:00
|
|
|
Smi::FromInt(PropertyDetails::kInitialIndex));
|
2008-07-03 15:10:15 +00:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void DescriptorArray::SetEnumCache(FixedArray* bridge_storage,
|
|
|
|
|
FixedArray* new_cache) {
|
|
|
|
|
ASSERT(bridge_storage->length() >= kEnumCacheBridgeLength);
|
|
|
|
|
if (HasEnumCache()) {
|
|
|
|
|
FixedArray::cast(get(kEnumerationIndexIndex))->
|
|
|
|
|
set(kEnumCacheBridgeCacheIndex, new_cache);
|
|
|
|
|
} else {
|
2008-08-27 10:11:39 +00:00
|
|
|
if (IsEmpty()) return; // Do nothing for empty descriptor array.
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray::cast(bridge_storage)->
|
|
|
|
|
set(kEnumCacheBridgeCacheIndex, new_cache);
|
|
|
|
|
fast_set(FixedArray::cast(bridge_storage),
|
|
|
|
|
kEnumCacheBridgeEnumIndex,
|
|
|
|
|
get(kEnumerationIndexIndex));
|
|
|
|
|
set(kEnumerationIndexIndex, bridge_storage);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
Object* DescriptorArray::CopyInsert(Descriptor* descriptor,
|
|
|
|
|
TransitionFlag transition_flag) {
|
|
|
|
|
// Transitions are only kept when inserting another transition.
|
|
|
|
|
// This precondition is not required by this function's implementation, but
|
|
|
|
|
// is currently required by the semantics of maps, so we check it.
|
|
|
|
|
// Conversely, we filter after replacing, so replacing a transition and
|
|
|
|
|
// removing all other transitions is not supported.
|
|
|
|
|
bool remove_transitions = transition_flag == REMOVE_TRANSITIONS;
|
|
|
|
|
ASSERT(remove_transitions == !descriptor->GetDetails().IsTransition());
|
|
|
|
|
ASSERT(descriptor->GetDetails().type() != NULL_DESCRIPTOR);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Ensure the key is a symbol.
|
2008-08-27 13:47:52 +00:00
|
|
|
Object* result = descriptor->KeyToSymbol();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
int transitions = 0;
|
|
|
|
|
int null_descriptors = 0;
|
|
|
|
|
if (remove_transitions) {
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsTransition(i)) transitions++;
|
|
|
|
|
if (IsNullDescriptor(i)) null_descriptors++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsNullDescriptor(i)) null_descriptors++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
int new_size = number_of_descriptors() - transitions - null_descriptors;
|
|
|
|
|
|
|
|
|
|
// If key is in descriptor, we replace it in-place when filtering.
|
2009-03-09 16:24:46 +00:00
|
|
|
// Count a null descriptor for key as inserted, not replaced.
|
2008-09-10 11:35:05 +00:00
|
|
|
int index = Search(descriptor->GetKey());
|
2008-08-27 13:47:52 +00:00
|
|
|
const bool inserting = (index == kNotFound);
|
|
|
|
|
const bool replacing = !inserting;
|
|
|
|
|
bool keep_enumeration_index = false;
|
|
|
|
|
if (inserting) {
|
|
|
|
|
++new_size;
|
|
|
|
|
}
|
|
|
|
|
if (replacing) {
|
|
|
|
|
// We are replacing an existing descriptor. We keep the enumeration
|
|
|
|
|
// index of a visible property.
|
|
|
|
|
PropertyType t = PropertyDetails(GetDetails(index)).type();
|
|
|
|
|
if (t == CONSTANT_FUNCTION ||
|
|
|
|
|
t == FIELD ||
|
|
|
|
|
t == CALLBACKS ||
|
|
|
|
|
t == INTERCEPTOR) {
|
|
|
|
|
keep_enumeration_index = true;
|
2009-03-09 16:24:46 +00:00
|
|
|
} else if (remove_transitions) {
|
|
|
|
|
// Replaced descriptor has been counted as removed if it is
|
|
|
|
|
// a transition that will be replaced. Adjust count in this case.
|
2008-08-27 13:47:52 +00:00
|
|
|
++new_size;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
result = Allocate(new_size);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2008-08-27 13:47:52 +00:00
|
|
|
DescriptorArray* new_descriptors = DescriptorArray::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Set the enumeration index in the descriptors and set the enumeration index
|
|
|
|
|
// in the result.
|
2008-08-27 13:47:52 +00:00
|
|
|
int enumeration_index = NextEnumerationIndex();
|
|
|
|
|
if (!descriptor->GetDetails().IsTransition()) {
|
|
|
|
|
if (keep_enumeration_index) {
|
|
|
|
|
descriptor->SetEnumerationIndex(
|
|
|
|
|
PropertyDetails(GetDetails(index)).index());
|
|
|
|
|
} else {
|
|
|
|
|
descriptor->SetEnumerationIndex(enumeration_index);
|
|
|
|
|
++enumeration_index;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
new_descriptors->SetNextEnumerationIndex(enumeration_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
// Copy the descriptors, filtering out transitions and null descriptors,
|
|
|
|
|
// and inserting or replacing a descriptor.
|
2008-09-10 11:35:05 +00:00
|
|
|
uint32_t descriptor_hash = descriptor->GetKey()->Hash();
|
2009-07-10 19:25:18 +00:00
|
|
|
int from_index = 0;
|
|
|
|
|
int to_index = 0;
|
2008-08-27 13:47:52 +00:00
|
|
|
|
2009-07-10 19:25:18 +00:00
|
|
|
for (; from_index < number_of_descriptors(); from_index++) {
|
|
|
|
|
String* key = GetKey(from_index);
|
|
|
|
|
if (key->Hash() > descriptor_hash || key == descriptor->GetKey()) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (IsNullDescriptor(from_index)) continue;
|
|
|
|
|
if (remove_transitions && IsTransition(from_index)) continue;
|
|
|
|
|
new_descriptors->CopyFrom(to_index++, this, from_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
|
|
|
|
|
new_descriptors->Set(to_index++, descriptor);
|
|
|
|
|
if (replacing) from_index++;
|
|
|
|
|
|
|
|
|
|
for (; from_index < number_of_descriptors(); from_index++) {
|
|
|
|
|
if (IsNullDescriptor(from_index)) continue;
|
|
|
|
|
if (remove_transitions && IsTransition(from_index)) continue;
|
|
|
|
|
new_descriptors->CopyFrom(to_index++, this, from_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
|
|
|
|
|
ASSERT(to_index == new_descriptors->number_of_descriptors());
|
|
|
|
|
SLOW_ASSERT(new_descriptors->IsSortedNoDuplicates());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
return new_descriptors;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
Object* DescriptorArray::RemoveTransitions() {
|
2009-03-09 16:24:46 +00:00
|
|
|
// Remove all transitions and null descriptors. Return a copy of the array
|
|
|
|
|
// with all transitions removed, or a Failure object if the new array could
|
|
|
|
|
// not be allocated.
|
2008-08-27 13:47:52 +00:00
|
|
|
|
|
|
|
|
// Compute the size of the map transition entries to be removed.
|
2009-03-09 16:24:46 +00:00
|
|
|
int num_removed = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (!IsProperty(i)) num_removed++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the new descriptor array.
|
2009-03-09 16:24:46 +00:00
|
|
|
Object* result = Allocate(number_of_descriptors() - num_removed);
|
2008-08-27 13:47:52 +00:00
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
DescriptorArray* new_descriptors = DescriptorArray::cast(result);
|
|
|
|
|
|
|
|
|
|
// Copy the content.
|
2009-07-10 19:25:18 +00:00
|
|
|
int next_descriptor = 0;
|
|
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsProperty(i)) new_descriptors->CopyFrom(next_descriptor++, this, i);
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
ASSERT(next_descriptor == new_descriptors->number_of_descriptors());
|
2008-08-27 13:47:52 +00:00
|
|
|
|
|
|
|
|
return new_descriptors;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void DescriptorArray::Sort() {
|
|
|
|
|
// In-place heap sort.
|
|
|
|
|
int len = number_of_descriptors();
|
|
|
|
|
|
|
|
|
|
// Bottom-up max-heap construction.
|
|
|
|
|
for (int i = 1; i < len; ++i) {
|
|
|
|
|
int child_index = i;
|
|
|
|
|
while (child_index > 0) {
|
|
|
|
|
int parent_index = ((child_index + 1) >> 1) - 1;
|
|
|
|
|
uint32_t parent_hash = GetKey(parent_index)->Hash();
|
|
|
|
|
uint32_t child_hash = GetKey(child_index)->Hash();
|
|
|
|
|
if (parent_hash < child_hash) {
|
|
|
|
|
Swap(parent_index, child_index);
|
|
|
|
|
} else {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
child_index = parent_index;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Extract elements and create sorted array.
|
|
|
|
|
for (int i = len - 1; i > 0; --i) {
|
|
|
|
|
// Put max element at the back of the array.
|
|
|
|
|
Swap(0, i);
|
|
|
|
|
// Sift down the new top element.
|
|
|
|
|
int parent_index = 0;
|
|
|
|
|
while (true) {
|
|
|
|
|
int child_index = ((parent_index + 1) << 1) - 1;
|
|
|
|
|
if (child_index >= i) break;
|
|
|
|
|
uint32_t child1_hash = GetKey(child_index)->Hash();
|
|
|
|
|
uint32_t child2_hash = GetKey(child_index + 1)->Hash();
|
|
|
|
|
uint32_t parent_hash = GetKey(parent_index)->Hash();
|
|
|
|
|
if (child_index + 1 >= i || child1_hash > child2_hash) {
|
|
|
|
|
if (parent_hash > child1_hash) break;
|
|
|
|
|
Swap(parent_index, child_index);
|
|
|
|
|
parent_index = child_index;
|
|
|
|
|
} else {
|
|
|
|
|
if (parent_hash > child2_hash) break;
|
|
|
|
|
Swap(parent_index, child_index + 1);
|
|
|
|
|
parent_index = child_index + 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SLOW_ASSERT(IsSortedNoDuplicates());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int DescriptorArray::BinarySearch(String* name, int low, int high) {
|
|
|
|
|
uint32_t hash = name->Hash();
|
|
|
|
|
|
|
|
|
|
while (low <= high) {
|
|
|
|
|
int mid = (low + high) / 2;
|
|
|
|
|
String* mid_name = GetKey(mid);
|
|
|
|
|
uint32_t mid_hash = mid_name->Hash();
|
|
|
|
|
|
|
|
|
|
if (mid_hash > hash) {
|
|
|
|
|
high = mid - 1;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
if (mid_hash < hash) {
|
|
|
|
|
low = mid + 1;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// Found an element with the same hash-code.
|
|
|
|
|
ASSERT(hash == mid_hash);
|
|
|
|
|
// There might be more, so we find the first one and
|
|
|
|
|
// check them all to see if we have a match.
|
2009-03-09 16:24:46 +00:00
|
|
|
if (name == mid_name && !is_null_descriptor(mid)) return mid;
|
2008-07-03 15:10:15 +00:00
|
|
|
while ((mid > low) && (GetKey(mid - 1)->Hash() == hash)) mid--;
|
|
|
|
|
for (; (mid <= high) && (GetKey(mid)->Hash() == hash); mid++) {
|
2009-03-09 16:24:46 +00:00
|
|
|
if (GetKey(mid)->Equals(name) && !is_null_descriptor(mid)) return mid;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return kNotFound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-26 20:50:05 +00:00
|
|
|
int DescriptorArray::LinearSearch(String* name, int len) {
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t hash = name->Hash();
|
2008-10-26 20:50:05 +00:00
|
|
|
for (int number = 0; number < len; number++) {
|
2009-03-19 18:50:00 +00:00
|
|
|
String* entry = GetKey(number);
|
|
|
|
|
if ((entry->Hash() == hash) &&
|
|
|
|
|
name->Equals(entry) &&
|
|
|
|
|
!is_null_descriptor(number)) {
|
2009-03-09 16:24:46 +00:00
|
|
|
return number;
|
|
|
|
|
}
|
2008-10-26 20:50:05 +00:00
|
|
|
}
|
|
|
|
|
return kNotFound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
bool DescriptorArray::IsEqualTo(DescriptorArray* other) {
|
|
|
|
|
if (IsEmpty()) return other->IsEmpty();
|
|
|
|
|
if (other->IsEmpty()) return false;
|
|
|
|
|
if (length() != other->length()) return false;
|
|
|
|
|
for (int i = 0; i < length(); ++i) {
|
|
|
|
|
if (get(i) != other->get(i) && i != kContentArrayIndex) return false;
|
|
|
|
|
}
|
|
|
|
|
return GetContentArray()->IsEqualTo(other->GetContentArray());
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
static StaticResource<StringInputBuffer> string_input_buffer;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::LooksValid() {
|
2008-11-03 10:16:05 +00:00
|
|
|
if (!Heap::Contains(this)) return false;
|
|
|
|
|
return true;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-05 13:39:14 +00:00
|
|
|
int String::Utf8Length() {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (IsAsciiRepresentation()) return length();
|
2008-09-05 13:39:14 +00:00
|
|
|
// Attempt to flatten before accessing the string. It probably
|
|
|
|
|
// doesn't make Utf8Length faster, but it is very likely that
|
|
|
|
|
// the string will be accessed later (for example by WriteUtf8)
|
|
|
|
|
// so it's still a good idea.
|
2009-03-17 09:33:06 +00:00
|
|
|
TryFlattenIfNotFlat();
|
2008-09-05 13:39:14 +00:00
|
|
|
Access<StringInputBuffer> buffer(&string_input_buffer);
|
|
|
|
|
buffer->Reset(0, this);
|
|
|
|
|
int result = 0;
|
|
|
|
|
while (buffer->has_more())
|
|
|
|
|
result += unibrow::Utf8::Length(buffer->GetNext());
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
Vector<const char> String::ToAsciiVector() {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(IsAsciiRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(IsFlat());
|
2008-10-09 08:08:04 +00:00
|
|
|
|
|
|
|
|
int offset = 0;
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
|
|
|
|
StringRepresentationTag string_tag = StringShape(this).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
String* string = this;
|
2009-11-10 13:23:05 +00:00
|
|
|
if (string_tag == kConsStringTag) {
|
2008-10-21 14:11:22 +00:00
|
|
|
ConsString* cons = ConsString::cast(string);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(cons->second()->length() == 0);
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
string_tag = StringShape(string).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
if (string_tag == kSeqStringTag) {
|
|
|
|
|
SeqAsciiString* seq = SeqAsciiString::cast(string);
|
2008-10-22 09:09:07 +00:00
|
|
|
char* start = seq->GetChars();
|
2008-10-09 08:08:04 +00:00
|
|
|
return Vector<const char>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
ASSERT(string_tag == kExternalStringTag);
|
|
|
|
|
ExternalAsciiString* ext = ExternalAsciiString::cast(string);
|
|
|
|
|
const char* start = ext->resource()->data();
|
|
|
|
|
return Vector<const char>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Vector<const uc16> String::ToUC16Vector() {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(IsTwoByteRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(IsFlat());
|
2008-10-09 08:08:04 +00:00
|
|
|
|
|
|
|
|
int offset = 0;
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
|
|
|
|
StringRepresentationTag string_tag = StringShape(this).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
String* string = this;
|
2009-11-10 13:23:05 +00:00
|
|
|
if (string_tag == kConsStringTag) {
|
2008-10-21 14:11:22 +00:00
|
|
|
ConsString* cons = ConsString::cast(string);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(cons->second()->length() == 0);
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
string_tag = StringShape(string).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
if (string_tag == kSeqStringTag) {
|
|
|
|
|
SeqTwoByteString* seq = SeqTwoByteString::cast(string);
|
2008-10-22 09:09:07 +00:00
|
|
|
return Vector<const uc16>(seq->GetChars() + offset, length);
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
ASSERT(string_tag == kExternalStringTag);
|
|
|
|
|
ExternalTwoByteString* ext = ExternalTwoByteString::cast(string);
|
|
|
|
|
const uc16* start =
|
|
|
|
|
reinterpret_cast<const uc16*>(ext->resource()->data());
|
|
|
|
|
return Vector<const uc16>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
SmartPointer<char> String::ToCString(AllowNullsFlag allow_nulls,
|
|
|
|
|
RobustnessFlag robust_flag,
|
|
|
|
|
int offset,
|
|
|
|
|
int length,
|
|
|
|
|
int* length_return) {
|
|
|
|
|
ASSERT(NativeAllocationChecker::allocation_allowed());
|
|
|
|
|
if (robust_flag == ROBUST_STRING_TRAVERSAL && !LooksValid()) {
|
|
|
|
|
return SmartPointer<char>(NULL);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Negative length means the to the end of the string.
|
|
|
|
|
if (length < 0) length = kMaxInt - offset;
|
|
|
|
|
|
|
|
|
|
// Compute the size of the UTF-8 string. Start at the specified offset.
|
|
|
|
|
Access<StringInputBuffer> buffer(&string_input_buffer);
|
|
|
|
|
buffer->Reset(offset, this);
|
|
|
|
|
int character_position = offset;
|
|
|
|
|
int utf8_bytes = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
if (character_position < offset + length) {
|
|
|
|
|
utf8_bytes += unibrow::Utf8::Length(character);
|
|
|
|
|
}
|
|
|
|
|
character_position++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (length_return) {
|
|
|
|
|
*length_return = utf8_bytes;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char* result = NewArray<char>(utf8_bytes + 1);
|
|
|
|
|
|
|
|
|
|
// Convert the UTF-16 string to a UTF-8 buffer. Start at the specified offset.
|
|
|
|
|
buffer->Rewind();
|
|
|
|
|
buffer->Seek(offset);
|
|
|
|
|
character_position = offset;
|
|
|
|
|
int utf8_byte_position = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
if (character_position < offset + length) {
|
|
|
|
|
if (allow_nulls == DISALLOW_NULLS && character == 0) {
|
|
|
|
|
character = ' ';
|
|
|
|
|
}
|
|
|
|
|
utf8_byte_position +=
|
|
|
|
|
unibrow::Utf8::Encode(result + utf8_byte_position, character);
|
|
|
|
|
}
|
|
|
|
|
character_position++;
|
|
|
|
|
}
|
|
|
|
|
result[utf8_byte_position] = 0;
|
|
|
|
|
return SmartPointer<char>(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-04 13:09:12 +00:00
|
|
|
SmartPointer<char> String::ToCString(AllowNullsFlag allow_nulls,
|
|
|
|
|
RobustnessFlag robust_flag,
|
|
|
|
|
int* length_return) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return ToCString(allow_nulls, robust_flag, 0, -1, length_return);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* String::GetTwoByteData() {
|
|
|
|
|
return GetTwoByteData(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* String::GetTwoByteData(unsigned start) {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(!IsAsciiRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(this).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2008-10-09 08:08:04 +00:00
|
|
|
return SeqTwoByteString::cast(this)->SeqTwoByteStringGetData(start);
|
2008-07-03 15:10:15 +00:00
|
|
|
case kExternalStringTag:
|
|
|
|
|
return ExternalTwoByteString::cast(this)->
|
|
|
|
|
ExternalTwoByteStringGetData(start);
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-11 11:24:45 +00:00
|
|
|
SmartPointer<uc16> String::ToWideCString(RobustnessFlag robust_flag) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(NativeAllocationChecker::allocation_allowed());
|
|
|
|
|
|
|
|
|
|
if (robust_flag == ROBUST_STRING_TRAVERSAL && !LooksValid()) {
|
2008-09-11 11:24:45 +00:00
|
|
|
return SmartPointer<uc16>();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Access<StringInputBuffer> buffer(&string_input_buffer);
|
|
|
|
|
buffer->Reset(this);
|
|
|
|
|
|
|
|
|
|
uc16* result = NewArray<uc16>(length() + 1);
|
|
|
|
|
|
|
|
|
|
int i = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
result[i++] = character;
|
|
|
|
|
}
|
|
|
|
|
result[i] = 0;
|
2008-09-11 11:24:45 +00:00
|
|
|
return SmartPointer<uc16>(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
const uc16* SeqTwoByteString::SeqTwoByteStringGetData(unsigned start) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return reinterpret_cast<uc16*>(
|
|
|
|
|
reinterpret_cast<char*>(this) - kHeapObjectTag + kHeaderSize) + start;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
void SeqTwoByteString::SeqTwoByteStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
2009-05-14 07:12:58 +00:00
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2008-07-03 15:10:15 +00:00
|
|
|
unsigned chars_read = 0;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
while (chars_read < max_chars) {
|
|
|
|
|
uint16_t c = *reinterpret_cast<uint16_t*>(
|
|
|
|
|
reinterpret_cast<char*>(this) -
|
|
|
|
|
kHeapObjectTag + kHeaderSize + offset * kShortSize);
|
|
|
|
|
if (c <= kMaxAsciiCharCode) {
|
|
|
|
|
// Fast case for ASCII characters. Cursor is an input output argument.
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor)) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeNonAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor)) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
offset++;
|
|
|
|
|
chars_read++;
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset;
|
|
|
|
|
rbb->remaining += chars_read;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
const unibrow::byte* SeqAsciiString::SeqAsciiStringReadBlock(
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2008-07-03 15:10:15 +00:00
|
|
|
const unibrow::byte* b = reinterpret_cast<unibrow::byte*>(this) -
|
|
|
|
|
kHeapObjectTag + kHeaderSize + *offset_ptr * kCharSize;
|
|
|
|
|
*remaining = max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
return b;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This will iterate unless the block of string data spans two 'halves' of
|
|
|
|
|
// a ConsString, in which case it will recurse. Since the block of string
|
|
|
|
|
// data to be read has a maximum size this limits the maximum recursion
|
|
|
|
|
// depth to something sane. Since C++ does not have tail call recursion
|
|
|
|
|
// elimination, the iteration must be explicit. Since this is not an
|
|
|
|
|
// -IntoBuffer method it can delegate to one of the efficient
|
|
|
|
|
// *AsciiStringReadBlock routines.
|
|
|
|
|
const unibrow::byte* ConsString::ConsStringReadBlock(ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ConsString* current = this;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
int offset_correction = 0;
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = current->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
unsigned left_length = (unsigned)left->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (left_length > offset &&
|
|
|
|
|
(max_chars <= left_length - offset ||
|
|
|
|
|
(rbb->capacity <= left_length - offset &&
|
|
|
|
|
(max_chars = left_length - offset, true)))) { // comma operator!
|
|
|
|
|
// Left hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree. The assignment on the left of the comma operator is
|
|
|
|
|
// in order to make use of the fact that the -IntoBuffer routines can
|
|
|
|
|
// produce at most 'capacity' characters. This enables us to postpone
|
|
|
|
|
// the point where we switch to the -IntoBuffer routines (below) in order
|
|
|
|
|
// to maximize the chances of delegating a big chunk of work to the
|
|
|
|
|
// efficient *AsciiStringReadBlock routines.
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(left).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(left);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
const unibrow::byte* answer =
|
|
|
|
|
String::ReadBlock(left, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
} else if (left_length <= offset) {
|
|
|
|
|
// Right hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
2008-11-03 10:16:05 +00:00
|
|
|
String* right = current->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
2008-11-03 10:16:05 +00:00
|
|
|
if (StringShape(right).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(right);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
const unibrow::byte* answer =
|
|
|
|
|
String::ReadBlock(right, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// The block to be read spans two sides of the ConsString, so we call the
|
|
|
|
|
// -IntoBuffer version, which will recurse. The -IntoBuffer methods
|
|
|
|
|
// are able to assemble data from several part strings because they use
|
|
|
|
|
// the util_buffer to store their data and never return direct pointers
|
|
|
|
|
// to their storage. We don't try to read more than the buffer capacity
|
|
|
|
|
// here or we can get too much recursion.
|
|
|
|
|
ASSERT(rbb->remaining == 0);
|
|
|
|
|
ASSERT(rbb->cursor == 0);
|
|
|
|
|
current->ConsStringReadBlockIntoBuffer(
|
|
|
|
|
rbb,
|
|
|
|
|
&offset,
|
|
|
|
|
max_chars > rbb->capacity ? rbb->capacity : max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint16_t ExternalAsciiString::ExternalAsciiStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < length());
|
|
|
|
|
return resource()->data()[index];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* ExternalAsciiString::ExternalAsciiStringReadBlock(
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
// Cast const char* to unibrow::byte* (signedness difference).
|
|
|
|
|
const unibrow::byte* b =
|
|
|
|
|
reinterpret_cast<const unibrow::byte*>(resource()->data()) + *offset_ptr;
|
|
|
|
|
*remaining = max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
return b;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* ExternalTwoByteString::ExternalTwoByteStringGetData(
|
|
|
|
|
unsigned start) {
|
|
|
|
|
return resource()->data() + start;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint16_t ExternalTwoByteString::ExternalTwoByteStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < length());
|
|
|
|
|
return resource()->data()[index];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ExternalTwoByteString::ExternalTwoByteStringReadBlockIntoBuffer(
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned chars_read = 0;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
const uint16_t* data = resource()->data();
|
|
|
|
|
while (chars_read < max_chars) {
|
|
|
|
|
uint16_t c = data[offset];
|
|
|
|
|
if (c <= kMaxAsciiCharCode) {
|
2009-04-17 09:17:04 +00:00
|
|
|
// Fast case for ASCII characters. Cursor is an input output argument.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!unibrow::CharacterStream::EncodeAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor))
|
|
|
|
|
break;
|
|
|
|
|
} else {
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeNonAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor))
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
offset++;
|
|
|
|
|
chars_read++;
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset;
|
|
|
|
|
rbb->remaining += chars_read;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
void SeqAsciiString::SeqAsciiStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned capacity = rbb->capacity - rbb->cursor;
|
|
|
|
|
if (max_chars > capacity) max_chars = capacity;
|
|
|
|
|
memcpy(rbb->util_buffer + rbb->cursor,
|
|
|
|
|
reinterpret_cast<char*>(this) - kHeapObjectTag + kHeaderSize +
|
|
|
|
|
*offset_ptr * kCharSize,
|
|
|
|
|
max_chars);
|
|
|
|
|
rbb->remaining += max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
rbb->cursor += max_chars;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ExternalAsciiString::ExternalAsciiStringReadBlockIntoBuffer(
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned capacity = rbb->capacity - rbb->cursor;
|
|
|
|
|
if (max_chars > capacity) max_chars = capacity;
|
|
|
|
|
memcpy(rbb->util_buffer + rbb->cursor,
|
|
|
|
|
resource()->data() + *offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
rbb->remaining += max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
rbb->cursor += max_chars;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This method determines the type of string involved and then copies
|
|
|
|
|
// a whole chunk of characters into a buffer, or returns a pointer to a buffer
|
|
|
|
|
// where they can be found. The pointer is not necessarily valid across a GC
|
|
|
|
|
// (see AsciiStringReadBlock).
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String* input,
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ASSERT(*offset_ptr <= static_cast<unsigned>(input->length()));
|
|
|
|
|
if (max_chars == 0) {
|
|
|
|
|
rbb->remaining = 0;
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(input).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqAsciiString* str = SeqAsciiString::cast(input);
|
|
|
|
|
return str->SeqAsciiStringReadBlock(&rbb->remaining,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqTwoByteString* str = SeqTwoByteString::cast(input);
|
|
|
|
|
str->SeqTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
return ConsString::cast(input)->ConsStringReadBlock(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
case kExternalStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return ExternalAsciiString::cast(input)->ExternalAsciiStringReadBlock(
|
|
|
|
|
&rbb->remaining,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
} else {
|
|
|
|
|
ExternalTwoByteString::cast(input)->
|
|
|
|
|
ExternalTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-09-30 12:25:46 +00:00
|
|
|
Relocatable* Relocatable::top_ = NULL;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Relocatable::PostGarbageCollectionProcessing() {
|
|
|
|
|
Relocatable* current = top_;
|
|
|
|
|
while (current != NULL) {
|
|
|
|
|
current->PostGarbageCollection();
|
|
|
|
|
current = current->prev_;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Reserve space for statics needing saving and restoring.
|
|
|
|
|
int Relocatable::ArchiveSpacePerThread() {
|
|
|
|
|
return sizeof(top_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Archive statics that are thread local.
|
|
|
|
|
char* Relocatable::ArchiveState(char* to) {
|
|
|
|
|
*reinterpret_cast<Relocatable**>(to) = top_;
|
|
|
|
|
top_ = NULL;
|
|
|
|
|
return to + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Restore statics that are thread local.
|
|
|
|
|
char* Relocatable::RestoreState(char* from) {
|
|
|
|
|
top_ = *reinterpret_cast<Relocatable**>(from);
|
|
|
|
|
return from + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
char* Relocatable::Iterate(ObjectVisitor* v, char* thread_storage) {
|
|
|
|
|
Relocatable* top = *reinterpret_cast<Relocatable**>(thread_storage);
|
|
|
|
|
Iterate(v, top);
|
|
|
|
|
return thread_storage + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Relocatable::Iterate(ObjectVisitor* v) {
|
|
|
|
|
Iterate(v, top_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Relocatable::Iterate(ObjectVisitor* v, Relocatable* top) {
|
|
|
|
|
Relocatable* current = top;
|
|
|
|
|
while (current != NULL) {
|
|
|
|
|
current->IterateInstance(v);
|
|
|
|
|
current = current->prev_;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-11-25 11:07:48 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
FlatStringReader::FlatStringReader(Handle<String> str)
|
2008-11-26 08:03:55 +00:00
|
|
|
: str_(str.location()),
|
2009-09-30 12:25:46 +00:00
|
|
|
length_(str->length()) {
|
|
|
|
|
PostGarbageCollection();
|
2008-11-25 11:07:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
FlatStringReader::FlatStringReader(Vector<const char> input)
|
2009-09-30 12:25:46 +00:00
|
|
|
: str_(0),
|
2008-11-26 08:03:55 +00:00
|
|
|
is_ascii_(true),
|
|
|
|
|
length_(input.length()),
|
2009-09-30 12:25:46 +00:00
|
|
|
start_(input.start()) { }
|
2008-11-25 11:07:48 +00:00
|
|
|
|
|
|
|
|
|
2009-09-30 12:25:46 +00:00
|
|
|
void FlatStringReader::PostGarbageCollection() {
|
2008-11-25 11:07:48 +00:00
|
|
|
if (str_ == NULL) return;
|
|
|
|
|
Handle<String> str(str_);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(str->IsFlat());
|
2009-05-01 11:16:29 +00:00
|
|
|
is_ascii_ = str->IsAsciiRepresentation();
|
2008-11-25 11:07:48 +00:00
|
|
|
if (is_ascii_) {
|
|
|
|
|
start_ = str->ToAsciiVector().start();
|
|
|
|
|
} else {
|
|
|
|
|
start_ = str->ToUC16Vector().start();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void StringInputBuffer::Seek(unsigned pos) {
|
|
|
|
|
Reset(pos, input_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SafeStringInputBuffer::Seek(unsigned pos) {
|
|
|
|
|
Reset(pos, input_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This method determines the type of string involved and then copies
|
|
|
|
|
// a whole chunk of characters into a buffer. It can be used with strings
|
|
|
|
|
// that have been glued together to form a ConsString and which must cooperate
|
|
|
|
|
// to fill up a buffer.
|
|
|
|
|
void String::ReadBlockIntoBuffer(String* input,
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (max_chars == 0) return;
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(input).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqAsciiString::cast(input)->SeqAsciiStringReadBlockIntoBuffer(rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqTwoByteString::cast(input)->SeqTwoByteStringReadBlockIntoBuffer(rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
ConsString::cast(input)->ConsStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
case kExternalStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2009-11-06 13:48:33 +00:00
|
|
|
ExternalAsciiString::cast(input)->
|
|
|
|
|
ExternalAsciiStringReadBlockIntoBuffer(rbb, offset_ptr, max_chars);
|
|
|
|
|
} else {
|
|
|
|
|
ExternalTwoByteString::cast(input)->
|
|
|
|
|
ExternalTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String* input,
|
|
|
|
|
unibrow::byte* util_buffer,
|
|
|
|
|
unsigned capacity,
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
|
|
|
|
unsigned chars = input->length() - *offset_ptr;
|
2008-07-03 15:10:15 +00:00
|
|
|
ReadBlockBuffer rbb(util_buffer, 0, capacity, 0);
|
|
|
|
|
const unibrow::byte* answer = ReadBlock(input, &rbb, offset_ptr, chars);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(rbb.remaining <= static_cast<unsigned>(input->length()));
|
2008-07-03 15:10:15 +00:00
|
|
|
*remaining = rbb.remaining;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String** raw_input,
|
|
|
|
|
unibrow::byte* util_buffer,
|
|
|
|
|
unsigned capacity,
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr) {
|
|
|
|
|
Handle<String> input(raw_input);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
|
|
|
|
unsigned chars = input->length() - *offset_ptr;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (chars > capacity) chars = capacity;
|
|
|
|
|
ReadBlockBuffer rbb(util_buffer, 0, capacity, 0);
|
|
|
|
|
ReadBlockIntoBuffer(*input, &rbb, offset_ptr, chars);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(rbb.remaining <= static_cast<unsigned>(input->length()));
|
2008-07-03 15:10:15 +00:00
|
|
|
*remaining = rbb.remaining;
|
|
|
|
|
return rbb.util_buffer;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This will iterate unless the block of string data spans two 'halves' of
|
|
|
|
|
// a ConsString, in which case it will recurse. Since the block of string
|
|
|
|
|
// data to be read has a maximum size this limits the maximum recursion
|
|
|
|
|
// depth to something sane. Since C++ does not have tail call recursion
|
|
|
|
|
// elimination, the iteration must be explicit.
|
|
|
|
|
void ConsString::ConsStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ConsString* current = this;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
int offset_correction = 0;
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = current->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
unsigned left_length = (unsigned)left->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (left_length > offset &&
|
|
|
|
|
max_chars <= left_length - offset) {
|
|
|
|
|
// Left hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(left).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(left);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
String::ReadBlockIntoBuffer(left, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else if (left_length <= offset) {
|
|
|
|
|
// Right hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
|
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
2008-11-03 10:16:05 +00:00
|
|
|
String* right = current->second();
|
|
|
|
|
if (StringShape(right).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(right);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
String::ReadBlockIntoBuffer(right, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// The block to be read spans two sides of the ConsString, so we recurse.
|
|
|
|
|
// First recurse on the left.
|
|
|
|
|
max_chars -= left_length - offset;
|
|
|
|
|
String::ReadBlockIntoBuffer(left, rbb, &offset, left_length - offset);
|
|
|
|
|
// We may have reached the max or there may not have been enough space
|
|
|
|
|
// in the buffer for the characters in the left hand side.
|
|
|
|
|
if (offset == left_length) {
|
|
|
|
|
// Recurse on the right.
|
|
|
|
|
String* right = String::cast(current->second());
|
|
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
|
|
|
|
String::ReadBlockIntoBuffer(right, rbb, &offset, max_chars);
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ConsString::ConsStringIterateBody(ObjectVisitor* v) {
|
|
|
|
|
IteratePointers(v, kFirstOffset, kSecondOffset + kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
void JSGlobalPropertyCell::JSGlobalPropertyCellIterateBody(ObjectVisitor* v) {
|
|
|
|
|
IteratePointers(v, kValueOffset, kValueOffset + kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
uint16_t ConsString::ConsStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < this->length());
|
|
|
|
|
|
|
|
|
|
// Check for a flattened cons string
|
2008-11-03 10:16:05 +00:00
|
|
|
if (second()->length() == 0) {
|
|
|
|
|
String* left = first();
|
2009-03-17 09:33:06 +00:00
|
|
|
return left->Get(index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string = String::cast(this);
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(string).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConsString* cons_string = ConsString::cast(string);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = cons_string->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (left->length() > index) {
|
2008-07-03 15:10:15 +00:00
|
|
|
string = left;
|
|
|
|
|
} else {
|
2009-03-17 09:33:06 +00:00
|
|
|
index -= left->length();
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons_string->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-03-17 09:33:06 +00:00
|
|
|
return string->Get(index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-22 09:09:07 +00:00
|
|
|
template <typename sinkchar>
|
|
|
|
|
void String::WriteToFlat(String* src,
|
|
|
|
|
sinkchar* sink,
|
|
|
|
|
int f,
|
|
|
|
|
int t) {
|
2008-07-03 15:10:15 +00:00
|
|
|
String* source = src;
|
|
|
|
|
int from = f;
|
|
|
|
|
int to = t;
|
|
|
|
|
while (true) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(0 <= from && from <= to && to <= source->length());
|
|
|
|
|
switch (StringShape(source).full_representation_tag()) {
|
2008-10-22 09:09:07 +00:00
|
|
|
case kAsciiStringTag | kExternalStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
ExternalAsciiString::cast(source)->resource()->data() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kTwoByteStringTag | kExternalStringTag: {
|
|
|
|
|
const uc16* data =
|
|
|
|
|
ExternalTwoByteString::cast(source)->resource()->data();
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
data + from,
|
|
|
|
|
to - from);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
case kAsciiStringTag | kSeqStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
SeqAsciiString::cast(source)->GetChars() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kTwoByteStringTag | kSeqStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
SeqTwoByteString::cast(source)->GetChars() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kAsciiStringTag | kConsStringTag:
|
|
|
|
|
case kTwoByteStringTag | kConsStringTag: {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConsString* cons_string = ConsString::cast(source);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cons_string->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int boundary = first->length();
|
2008-10-07 10:10:03 +00:00
|
|
|
if (to - boundary >= boundary - from) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Right hand side is longer. Recurse over left.
|
|
|
|
|
if (from < boundary) {
|
2009-03-17 09:33:06 +00:00
|
|
|
WriteToFlat(first, sink, from, boundary);
|
2008-10-22 09:09:07 +00:00
|
|
|
sink += boundary - from;
|
2008-07-03 15:10:15 +00:00
|
|
|
from = 0;
|
|
|
|
|
} else {
|
|
|
|
|
from -= boundary;
|
|
|
|
|
}
|
|
|
|
|
to -= boundary;
|
2008-11-03 10:16:05 +00:00
|
|
|
source = cons_string->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2008-10-22 09:09:07 +00:00
|
|
|
// Left hand side is longer. Recurse over right.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (to > boundary) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cons_string->second();
|
2008-10-22 09:09:07 +00:00
|
|
|
WriteToFlat(second,
|
|
|
|
|
sink + boundary - from,
|
|
|
|
|
0,
|
|
|
|
|
to - boundary);
|
2008-07-03 15:10:15 +00:00
|
|
|
to = boundary;
|
|
|
|
|
}
|
|
|
|
|
source = first;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-06 13:48:33 +00:00
|
|
|
#define FIELD_ADDR(p, offset) \
|
|
|
|
|
(reinterpret_cast<byte*>(p) + offset - kHeapObjectTag)
|
|
|
|
|
|
|
|
|
|
void ExternalAsciiString::ExternalAsciiStringIterateBody(ObjectVisitor* v) {
|
|
|
|
|
typedef v8::String::ExternalAsciiStringResource Resource;
|
|
|
|
|
v->VisitExternalAsciiString(
|
|
|
|
|
reinterpret_cast<Resource**>(FIELD_ADDR(this, kResourceOffset)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ExternalTwoByteString::ExternalTwoByteStringIterateBody(ObjectVisitor* v) {
|
|
|
|
|
typedef v8::String::ExternalStringResource Resource;
|
|
|
|
|
v->VisitExternalTwoByteString(
|
|
|
|
|
reinterpret_cast<Resource**>(FIELD_ADDR(this, kResourceOffset)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#undef FIELD_ADDR
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
template <typename IteratorA, typename IteratorB>
|
|
|
|
|
static inline bool CompareStringContents(IteratorA* ia, IteratorB* ib) {
|
|
|
|
|
// General slow case check. We know that the ia and ib iterators
|
|
|
|
|
// have the same length.
|
|
|
|
|
while (ia->has_more()) {
|
|
|
|
|
uc32 ca = ia->GetNext();
|
|
|
|
|
uc32 cb = ib->GetNext();
|
|
|
|
|
if (ca != cb)
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-20 11:38:32 +00:00
|
|
|
// Compares the contents of two strings by reading and comparing
|
|
|
|
|
// int-sized blocks of characters.
|
|
|
|
|
template <typename Char>
|
|
|
|
|
static inline bool CompareRawStringContents(Vector<Char> a, Vector<Char> b) {
|
|
|
|
|
int length = a.length();
|
|
|
|
|
ASSERT_EQ(length, b.length());
|
|
|
|
|
const Char* pa = a.start();
|
|
|
|
|
const Char* pb = b.start();
|
2008-10-23 08:25:23 +00:00
|
|
|
int i = 0;
|
2009-05-05 12:06:20 +00:00
|
|
|
#ifndef V8_HOST_CAN_READ_UNALIGNED
|
2008-10-22 12:00:19 +00:00
|
|
|
// If this architecture isn't comfortable reading unaligned ints
|
2008-10-23 08:25:23 +00:00
|
|
|
// then we have to check that the strings are aligned before
|
|
|
|
|
// comparing them blockwise.
|
2008-10-22 12:00:19 +00:00
|
|
|
const int kAlignmentMask = sizeof(uint32_t) - 1; // NOLINT
|
|
|
|
|
uint32_t pa_addr = reinterpret_cast<uint32_t>(pa);
|
|
|
|
|
uint32_t pb_addr = reinterpret_cast<uint32_t>(pb);
|
2008-11-12 01:05:41 +00:00
|
|
|
if (((pa_addr & kAlignmentMask) | (pb_addr & kAlignmentMask)) == 0) {
|
2008-10-22 12:00:19 +00:00
|
|
|
#endif
|
2008-10-23 08:25:23 +00:00
|
|
|
const int kStepSize = sizeof(int) / sizeof(Char); // NOLINT
|
|
|
|
|
int endpoint = length - kStepSize;
|
|
|
|
|
// Compare blocks until we reach near the end of the string.
|
|
|
|
|
for (; i <= endpoint; i += kStepSize) {
|
|
|
|
|
uint32_t wa = *reinterpret_cast<const uint32_t*>(pa + i);
|
|
|
|
|
uint32_t wb = *reinterpret_cast<const uint32_t*>(pb + i);
|
|
|
|
|
if (wa != wb) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2009-05-05 12:06:20 +00:00
|
|
|
#ifndef V8_HOST_CAN_READ_UNALIGNED
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2008-10-23 08:25:23 +00:00
|
|
|
#endif
|
2008-10-20 11:38:32 +00:00
|
|
|
// Compare the remaining characters that didn't fit into a block.
|
|
|
|
|
for (; i < length; i++) {
|
|
|
|
|
if (a[i] != b[i]) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
static StringInputBuffer string_compare_buffer_b;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
template <typename IteratorA>
|
|
|
|
|
static inline bool CompareStringContentsPartial(IteratorA* ia, String* b) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (b->IsFlat()) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (b->IsAsciiRepresentation()) {
|
2008-10-10 08:33:06 +00:00
|
|
|
VectorIterator<char> ib(b->ToAsciiVector());
|
2008-10-09 08:08:04 +00:00
|
|
|
return CompareStringContents(ia, &ib);
|
|
|
|
|
} else {
|
2009-05-05 10:15:05 +00:00
|
|
|
VectorIterator<uc16> ib(b->ToUC16Vector());
|
2008-10-09 08:08:04 +00:00
|
|
|
return CompareStringContents(ia, &ib);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
string_compare_buffer_b.Reset(0, b);
|
|
|
|
|
return CompareStringContents(ia, &string_compare_buffer_b);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static StringInputBuffer string_compare_buffer_a;
|
|
|
|
|
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
bool String::SlowEquals(String* other) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Fast check: negative check with lengths.
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
|
|
|
|
if (len != other->length()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (len == 0) return true;
|
|
|
|
|
|
|
|
|
|
// Fast check: if hash code is computed for both strings
|
|
|
|
|
// a fast negative check can be performed.
|
|
|
|
|
if (HasHashCode() && other->HasHashCode()) {
|
|
|
|
|
if (Hash() != other->Hash()) return false;
|
|
|
|
|
}
|
|
|
|
|
|
2009-03-17 10:46:53 +00:00
|
|
|
if (StringShape(this).IsSequentialAscii() &&
|
|
|
|
|
StringShape(other).IsSequentialAscii()) {
|
2008-10-20 11:38:32 +00:00
|
|
|
const char* str1 = SeqAsciiString::cast(this)->GetChars();
|
|
|
|
|
const char* str2 = SeqAsciiString::cast(other)->GetChars();
|
|
|
|
|
return CompareRawStringContents(Vector<const char>(str1, len),
|
|
|
|
|
Vector<const char>(str2, len));
|
|
|
|
|
}
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
if (this->IsFlat()) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (IsAsciiRepresentation()) {
|
2008-10-20 11:38:32 +00:00
|
|
|
Vector<const char> vec1 = this->ToAsciiVector();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (other->IsFlat()) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (other->IsAsciiRepresentation()) {
|
2008-10-20 11:38:32 +00:00
|
|
|
Vector<const char> vec2 = other->ToAsciiVector();
|
|
|
|
|
return CompareRawStringContents(vec1, vec2);
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<char> buf1(vec1);
|
2009-05-05 10:15:05 +00:00
|
|
|
VectorIterator<uc16> ib(other->ToUC16Vector());
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareStringContents(&buf1, &ib);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<char> buf1(vec1);
|
|
|
|
|
string_compare_buffer_b.Reset(0, other);
|
|
|
|
|
return CompareStringContents(&buf1, &string_compare_buffer_b);
|
|
|
|
|
}
|
2008-10-09 08:08:04 +00:00
|
|
|
} else {
|
2008-10-20 11:38:32 +00:00
|
|
|
Vector<const uc16> vec1 = this->ToUC16Vector();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (other->IsFlat()) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (other->IsAsciiRepresentation()) {
|
2008-10-20 11:38:32 +00:00
|
|
|
VectorIterator<uc16> buf1(vec1);
|
|
|
|
|
VectorIterator<char> ib(other->ToAsciiVector());
|
|
|
|
|
return CompareStringContents(&buf1, &ib);
|
|
|
|
|
} else {
|
2009-05-05 10:15:05 +00:00
|
|
|
Vector<const uc16> vec2(other->ToUC16Vector());
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareRawStringContents(vec1, vec2);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<uc16> buf1(vec1);
|
|
|
|
|
string_compare_buffer_b.Reset(0, other);
|
|
|
|
|
return CompareStringContents(&buf1, &string_compare_buffer_b);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-10-09 08:08:04 +00:00
|
|
|
} else {
|
|
|
|
|
string_compare_buffer_a.Reset(0, this);
|
|
|
|
|
return CompareStringContentsPartial(&string_compare_buffer_a, other);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::MarkAsUndetectable() {
|
2008-11-05 10:26:08 +00:00
|
|
|
if (StringShape(this).IsSymbol()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
Map* map = this->map();
|
2009-11-24 14:10:06 +00:00
|
|
|
if (map == Heap::string_map()) {
|
|
|
|
|
this->set_map(Heap::undetectable_string_map());
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
2009-11-24 14:10:06 +00:00
|
|
|
} else if (map == Heap::ascii_string_map()) {
|
|
|
|
|
this->set_map(Heap::undetectable_ascii_string_map());
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
// Rest cannot be marked as undetectable
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::IsEqualTo(Vector<const char> str) {
|
2009-03-17 09:33:06 +00:00
|
|
|
int slen = length();
|
2008-07-03 15:10:15 +00:00
|
|
|
Access<Scanner::Utf8Decoder> decoder(Scanner::utf8_decoder());
|
|
|
|
|
decoder->Reset(str.start(), str.length());
|
|
|
|
|
int i;
|
|
|
|
|
for (i = 0; i < slen && decoder->has_more(); i++) {
|
|
|
|
|
uc32 r = decoder->GetNext();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (Get(i) != r) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return i == slen && !decoder->has_more();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint32_t String::ComputeAndSetHash() {
|
2009-03-19 18:50:00 +00:00
|
|
|
// Should only be called if hash code has not yet been computed.
|
2009-11-24 14:10:06 +00:00
|
|
|
ASSERT(!(hash_field() & kHashComputedMask));
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Compute the hash code.
|
|
|
|
|
StringInputBuffer buffer(this);
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t field = ComputeHashField(&buffer, length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Store the hash code in the object.
|
2009-11-24 14:10:06 +00:00
|
|
|
set_hash_field(field);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Check the hash code is there.
|
2009-11-24 14:10:06 +00:00
|
|
|
ASSERT(hash_field() & kHashComputedMask);
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t result = field >> kHashShift;
|
|
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::ComputeArrayIndex(unibrow::CharacterStream* buffer,
|
|
|
|
|
uint32_t* index,
|
|
|
|
|
int length) {
|
2008-10-23 06:20:57 +00:00
|
|
|
if (length == 0 || length > kMaxArrayIndexSize) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
uc32 ch = buffer->GetNext();
|
|
|
|
|
|
|
|
|
|
// If the string begins with a '0' character, it must only consist
|
|
|
|
|
// of it to be a legal array index.
|
|
|
|
|
if (ch == '0') {
|
|
|
|
|
*index = 0;
|
|
|
|
|
return length == 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Convert string to uint32 array index; character by character.
|
|
|
|
|
int d = ch - '0';
|
|
|
|
|
if (d < 0 || d > 9) return false;
|
|
|
|
|
uint32_t result = d;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
d = buffer->GetNext() - '0';
|
|
|
|
|
if (d < 0 || d > 9) return false;
|
|
|
|
|
// Check that the new result is below the 32 bit limit.
|
|
|
|
|
if (result > 429496729U - ((d > 5) ? 1 : 0)) return false;
|
|
|
|
|
result = (result * 10) + d;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
*index = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::SlowAsArrayIndex(uint32_t* index) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (length() <= kMaxCachedArrayIndexLength) {
|
2008-10-23 06:20:57 +00:00
|
|
|
Hash(); // force computation of hash code
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t field = hash_field();
|
2008-10-23 06:20:57 +00:00
|
|
|
if ((field & kIsArrayIndexMask) == 0) return false;
|
2009-11-24 14:10:06 +00:00
|
|
|
// Isolate the array index form the full hash field.
|
|
|
|
|
*index = (kArrayIndexHashMask & field) >> kHashShift;
|
2008-10-23 06:20:57 +00:00
|
|
|
return true;
|
|
|
|
|
} else {
|
|
|
|
|
StringInputBuffer buffer(this);
|
2009-03-17 09:33:06 +00:00
|
|
|
return ComputeArrayIndex(&buffer, index, length());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-24 14:10:06 +00:00
|
|
|
static inline uint32_t HashField(uint32_t hash,
|
|
|
|
|
bool is_array_index,
|
|
|
|
|
int length = -1) {
|
2008-10-22 09:46:09 +00:00
|
|
|
uint32_t result =
|
2009-11-24 14:10:06 +00:00
|
|
|
(hash << String::kHashShift) | String::kHashComputedMask;
|
|
|
|
|
if (is_array_index) {
|
|
|
|
|
// For array indexes mix the length into the hash as an array index could
|
|
|
|
|
// be zero.
|
|
|
|
|
ASSERT(length > 0);
|
|
|
|
|
ASSERT(TenToThe(String::kMaxCachedArrayIndexLength) <
|
|
|
|
|
(1 << String::kArrayIndexValueBits));
|
|
|
|
|
result |= String::kIsArrayIndexMask;
|
|
|
|
|
result |= length << String::kArrayIndexHashLengthShift;
|
|
|
|
|
}
|
2008-10-22 09:46:09 +00:00
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
uint32_t StringHasher::GetHashField() {
|
|
|
|
|
ASSERT(is_valid());
|
2009-11-24 14:10:06 +00:00
|
|
|
if (length_ <= String::kMaxHashCalcLength) {
|
2008-10-07 10:10:03 +00:00
|
|
|
if (is_array_index()) {
|
2009-11-24 14:10:06 +00:00
|
|
|
return v8::internal::HashField(array_index(), true, length_);
|
2008-10-07 10:10:03 +00:00
|
|
|
} else {
|
2009-11-24 14:10:06 +00:00
|
|
|
return v8::internal::HashField(GetHash(), false);
|
2008-10-07 10:10:03 +00:00
|
|
|
}
|
|
|
|
|
uint32_t payload = v8::internal::HashField(GetHash(), false);
|
2009-11-24 14:10:06 +00:00
|
|
|
return payload;
|
2008-10-07 10:10:03 +00:00
|
|
|
} else {
|
|
|
|
|
return v8::internal::HashField(length_, false);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t String::ComputeHashField(unibrow::CharacterStream* buffer,
|
|
|
|
|
int length) {
|
2008-10-07 10:10:03 +00:00
|
|
|
StringHasher hasher(length);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
// Very long strings have a trivial hash that doesn't inspect the
|
|
|
|
|
// string contents.
|
2008-10-23 06:20:57 +00:00
|
|
|
if (hasher.has_trivial_hash()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
return hasher.GetHashField();
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-10-07 10:10:03 +00:00
|
|
|
|
|
|
|
|
// Do the iterative array index computation as long as there is a
|
|
|
|
|
// chance this is an array index.
|
2008-10-23 06:20:57 +00:00
|
|
|
while (buffer->has_more() && hasher.is_array_index()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
hasher.AddCharacter(buffer->GetNext());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-10-07 10:10:03 +00:00
|
|
|
|
|
|
|
|
// Process the remaining characters without updating the array
|
|
|
|
|
// index.
|
2008-10-23 06:20:57 +00:00
|
|
|
while (buffer->has_more()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
hasher.AddCharacterNoIndex(buffer->GetNext());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
return hasher.GetHashField();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-10 13:23:05 +00:00
|
|
|
Object* String::SubString(int start, int end) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (start == 0 && end == length()) return this;
|
2009-11-10 13:23:05 +00:00
|
|
|
Object* result = Heap::AllocateSubString(this, start, end);
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void String::PrintOn(FILE* file) {
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < length; i++) {
|
2009-03-17 09:33:06 +00:00
|
|
|
fprintf(file, "%c", Get(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-29 10:37:14 +00:00
|
|
|
void Map::CreateBackPointers() {
|
|
|
|
|
DescriptorArray* descriptors = instance_descriptors();
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < descriptors->number_of_descriptors(); i++) {
|
|
|
|
|
if (descriptors->GetType(i) == MAP_TRANSITION) {
|
2008-10-29 10:37:14 +00:00
|
|
|
// Get target.
|
2009-07-10 19:25:18 +00:00
|
|
|
Map* target = Map::cast(descriptors->GetValue(i));
|
2008-10-29 10:37:14 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
// Verify target.
|
|
|
|
|
Object* source_prototype = prototype();
|
|
|
|
|
Object* target_prototype = target->prototype();
|
|
|
|
|
ASSERT(source_prototype->IsJSObject() ||
|
|
|
|
|
source_prototype->IsMap() ||
|
|
|
|
|
source_prototype->IsNull());
|
|
|
|
|
ASSERT(target_prototype->IsJSObject() ||
|
|
|
|
|
target_prototype->IsNull());
|
|
|
|
|
ASSERT(source_prototype->IsMap() ||
|
2009-07-10 19:25:18 +00:00
|
|
|
source_prototype == target_prototype);
|
2008-10-29 10:37:14 +00:00
|
|
|
#endif
|
|
|
|
|
// Point target back to source. set_prototype() will not let us set
|
|
|
|
|
// the prototype to a map, as we do here.
|
|
|
|
|
*RawField(target, kPrototypeOffset) = this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Map::ClearNonLiveTransitions(Object* real_prototype) {
|
|
|
|
|
// Live DescriptorArray objects will be marked, so we must use
|
|
|
|
|
// low-level accessors to get and modify their data.
|
|
|
|
|
DescriptorArray* d = reinterpret_cast<DescriptorArray*>(
|
|
|
|
|
*RawField(this, Map::kInstanceDescriptorsOffset));
|
2009-07-08 19:12:58 +00:00
|
|
|
if (d == Heap::raw_unchecked_empty_descriptor_array()) return;
|
2008-10-29 10:37:14 +00:00
|
|
|
Smi* NullDescriptorDetails =
|
|
|
|
|
PropertyDetails(NONE, NULL_DESCRIPTOR).AsSmi();
|
|
|
|
|
FixedArray* contents = reinterpret_cast<FixedArray*>(
|
|
|
|
|
d->get(DescriptorArray::kContentArrayIndex));
|
|
|
|
|
ASSERT(contents->length() >= 2);
|
|
|
|
|
for (int i = 0; i < contents->length(); i += 2) {
|
|
|
|
|
// If the pair (value, details) is a map transition,
|
|
|
|
|
// check if the target is live. If not, null the descriptor.
|
|
|
|
|
// Also drop the back pointer for that map transition, so that this
|
|
|
|
|
// map is not reached again by following a back pointer from a
|
|
|
|
|
// non-live object.
|
|
|
|
|
PropertyDetails details(Smi::cast(contents->get(i + 1)));
|
|
|
|
|
if (details.type() == MAP_TRANSITION) {
|
|
|
|
|
Map* target = reinterpret_cast<Map*>(contents->get(i));
|
|
|
|
|
ASSERT(target->IsHeapObject());
|
|
|
|
|
if (!target->IsMarked()) {
|
|
|
|
|
ASSERT(target->IsMap());
|
2010-01-29 11:46:55 +00:00
|
|
|
contents->set(i + 1, NullDescriptorDetails);
|
|
|
|
|
contents->set_null(i);
|
2008-10-29 10:37:14 +00:00
|
|
|
ASSERT(target->prototype() == this ||
|
|
|
|
|
target->prototype() == real_prototype);
|
|
|
|
|
// Getter prototype() is read-only, set_prototype() has side effects.
|
|
|
|
|
*RawField(target, Map::kPrototypeOffset) = real_prototype;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void Map::MapIterateBody(ObjectVisitor* v) {
|
|
|
|
|
// Assumes all Object* members are contiguously allocated!
|
|
|
|
|
IteratePointers(v, kPrototypeOffset, kCodeCacheOffset + kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSFunction::SetInstancePrototype(Object* value) {
|
|
|
|
|
ASSERT(value->IsJSObject());
|
|
|
|
|
|
|
|
|
|
if (has_initial_map()) {
|
|
|
|
|
initial_map()->set_prototype(value);
|
|
|
|
|
} else {
|
|
|
|
|
// Put the value in the initial map field until an initial map is
|
|
|
|
|
// needed. At that point, a new initial map is created and the
|
|
|
|
|
// prototype is put into the initial map where it belongs.
|
|
|
|
|
set_prototype_or_initial_map(value);
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSFunction::SetPrototype(Object* value) {
|
|
|
|
|
Object* construct_prototype = value;
|
|
|
|
|
|
|
|
|
|
// If the value is not a JSObject, store the value in the map's
|
|
|
|
|
// constructor field so it can be accessed. Also, set the prototype
|
|
|
|
|
// used for constructing objects to the original object prototype.
|
|
|
|
|
// See ECMA-262 13.2.2.
|
|
|
|
|
if (!value->IsJSObject()) {
|
|
|
|
|
// Copy the map so this does not affect unrelated functions.
|
2008-08-27 13:47:52 +00:00
|
|
|
// Remove map transitions because they point to maps with a
|
|
|
|
|
// different prototype.
|
|
|
|
|
Object* new_map = map()->CopyDropTransitions();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
set_map(Map::cast(new_map));
|
|
|
|
|
map()->set_constructor(value);
|
|
|
|
|
map()->set_non_instance_prototype(true);
|
2008-08-27 10:11:39 +00:00
|
|
|
construct_prototype =
|
|
|
|
|
Top::context()->global_context()->initial_object_prototype();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
map()->set_non_instance_prototype(false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return SetInstancePrototype(construct_prototype);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSFunction::SetInstanceClassName(String* name) {
|
|
|
|
|
shared()->set_instance_class_name(name);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
Context* JSFunction::GlobalContextFromLiterals(FixedArray* literals) {
|
|
|
|
|
return Context::cast(literals->get(JSFunction::kLiteralGlobalContextIndex));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void Oddball::OddballIterateBody(ObjectVisitor* v) {
|
|
|
|
|
// Assumes all Object* members are contiguously allocated!
|
|
|
|
|
IteratePointers(v, kToStringOffset, kToNumberOffset + kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Oddball::Initialize(const char* to_string, Object* to_number) {
|
|
|
|
|
Object* symbol = Heap::LookupAsciiSymbol(to_string);
|
|
|
|
|
if (symbol->IsFailure()) return symbol;
|
|
|
|
|
set_to_string(String::cast(symbol));
|
|
|
|
|
set_to_number(to_number);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool SharedFunctionInfo::HasSourceCode() {
|
|
|
|
|
return !script()->IsUndefined() &&
|
|
|
|
|
!Script::cast(script())->source()->IsUndefined();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* SharedFunctionInfo::GetSourceCode() {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
if (script()->IsUndefined()) return Heap::undefined_value();
|
|
|
|
|
Object* source = Script::cast(script())->source();
|
|
|
|
|
if (source->IsUndefined()) return Heap::undefined_value();
|
|
|
|
|
return *SubString(Handle<String>(String::cast(source)),
|
|
|
|
|
start_position(), end_position());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-19 07:30:20 +00:00
|
|
|
int SharedFunctionInfo::CalculateInstanceSize() {
|
|
|
|
|
int instance_size =
|
|
|
|
|
JSObject::kHeaderSize +
|
|
|
|
|
expected_nof_properties() * kPointerSize;
|
|
|
|
|
if (instance_size > JSObject::kMaxInstanceSize) {
|
|
|
|
|
instance_size = JSObject::kMaxInstanceSize;
|
|
|
|
|
}
|
|
|
|
|
return instance_size;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int SharedFunctionInfo::CalculateInObjectProperties() {
|
|
|
|
|
return (CalculateInstanceSize() - JSObject::kHeaderSize) / kPointerSize;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SharedFunctionInfo::SetThisPropertyAssignmentsInfo(
|
|
|
|
|
bool only_simple_this_property_assignments,
|
|
|
|
|
FixedArray* assignments) {
|
|
|
|
|
set_compiler_hints(BooleanBit::set(compiler_hints(),
|
|
|
|
|
kHasOnlySimpleThisPropertyAssignments,
|
|
|
|
|
only_simple_this_property_assignments));
|
|
|
|
|
set_this_property_assignments(assignments);
|
|
|
|
|
set_this_property_assignments_count(assignments->length() / 3);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-26 12:22:44 +00:00
|
|
|
void SharedFunctionInfo::ClearThisPropertyAssignmentsInfo() {
|
|
|
|
|
set_compiler_hints(BooleanBit::set(compiler_hints(),
|
|
|
|
|
kHasOnlySimpleThisPropertyAssignments,
|
|
|
|
|
false));
|
|
|
|
|
set_this_property_assignments(Heap::undefined_value());
|
|
|
|
|
set_this_property_assignments_count(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-19 07:30:20 +00:00
|
|
|
String* SharedFunctionInfo::GetThisPropertyAssignmentName(int index) {
|
|
|
|
|
Object* obj = this_property_assignments();
|
|
|
|
|
ASSERT(obj->IsFixedArray());
|
|
|
|
|
ASSERT(index < this_property_assignments_count());
|
|
|
|
|
obj = FixedArray::cast(obj)->get(index * 3);
|
|
|
|
|
ASSERT(obj->IsString());
|
|
|
|
|
return String::cast(obj);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-26 12:22:44 +00:00
|
|
|
bool SharedFunctionInfo::IsThisPropertyAssignmentArgument(int index) {
|
|
|
|
|
Object* obj = this_property_assignments();
|
|
|
|
|
ASSERT(obj->IsFixedArray());
|
|
|
|
|
ASSERT(index < this_property_assignments_count());
|
|
|
|
|
obj = FixedArray::cast(obj)->get(index * 3 + 1);
|
|
|
|
|
return Smi::cast(obj)->value() != -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int SharedFunctionInfo::GetThisPropertyAssignmentArgument(int index) {
|
|
|
|
|
ASSERT(IsThisPropertyAssignmentArgument(index));
|
|
|
|
|
Object* obj =
|
|
|
|
|
FixedArray::cast(this_property_assignments())->get(index * 3 + 1);
|
|
|
|
|
return Smi::cast(obj)->value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* SharedFunctionInfo::GetThisPropertyAssignmentConstant(int index) {
|
|
|
|
|
ASSERT(!IsThisPropertyAssignmentArgument(index));
|
|
|
|
|
Object* obj =
|
|
|
|
|
FixedArray::cast(this_property_assignments())->get(index * 3 + 2);
|
|
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Support function for printing the source code to a StringStream
|
|
|
|
|
// without any allocation in the heap.
|
|
|
|
|
void SharedFunctionInfo::SourceCodePrint(StringStream* accumulator,
|
|
|
|
|
int max_length) {
|
|
|
|
|
// For some native functions there is no source.
|
|
|
|
|
if (script()->IsUndefined() ||
|
|
|
|
|
Script::cast(script())->source()->IsUndefined()) {
|
|
|
|
|
accumulator->Add("<No Source>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-10 13:23:05 +00:00
|
|
|
// Get the source for the script which this function came from.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Don't use String::cast because we don't want more assertion errors while
|
|
|
|
|
// we are already creating a stack dump.
|
|
|
|
|
String* script_source =
|
|
|
|
|
reinterpret_cast<String*>(Script::cast(script())->source());
|
|
|
|
|
|
|
|
|
|
if (!script_source->LooksValid()) {
|
|
|
|
|
accumulator->Add("<Invalid Source>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!is_toplevel()) {
|
|
|
|
|
accumulator->Add("function ");
|
|
|
|
|
Object* name = this->name();
|
|
|
|
|
if (name->IsString() && String::cast(name)->length() > 0) {
|
|
|
|
|
accumulator->PrintName(name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int len = end_position() - start_position();
|
|
|
|
|
if (len > max_length) {
|
|
|
|
|
accumulator->Put(script_source,
|
|
|
|
|
start_position(),
|
|
|
|
|
start_position() + max_length);
|
|
|
|
|
accumulator->Add("...\n");
|
|
|
|
|
} else {
|
|
|
|
|
accumulator->Put(script_source, start_position(), end_position());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SharedFunctionInfo::SharedFunctionInfoIterateBody(ObjectVisitor* v) {
|
2009-06-19 07:36:16 +00:00
|
|
|
IteratePointers(v, kNameOffset, kConstructStubOffset + kPointerSize);
|
2008-07-03 15:10:15 +00:00
|
|
|
IteratePointers(v, kInstanceClassNameOffset, kScriptOffset + kPointerSize);
|
2009-04-14 00:51:59 +00:00
|
|
|
IteratePointers(v, kDebugInfoOffset, kInferredNameOffset + kPointerSize);
|
2009-08-19 07:30:20 +00:00
|
|
|
IteratePointers(v, kThisPropertyAssignmentsOffset,
|
|
|
|
|
kThisPropertyAssignmentsOffset + kPointerSize);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ObjectVisitor::VisitCodeTarget(RelocInfo* rinfo) {
|
2008-09-22 13:57:03 +00:00
|
|
|
ASSERT(RelocInfo::IsCodeTarget(rinfo->rmode()));
|
2009-09-21 10:35:47 +00:00
|
|
|
Object* target = Code::GetCodeFromTargetAddress(rinfo->target_address());
|
|
|
|
|
Object* old_target = target;
|
|
|
|
|
VisitPointer(&target);
|
|
|
|
|
CHECK_EQ(target, old_target); // VisitPointer doesn't change Code* *target.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ObjectVisitor::VisitDebugTarget(RelocInfo* rinfo) {
|
2009-10-15 11:52:53 +00:00
|
|
|
ASSERT(RelocInfo::IsJSReturn(rinfo->rmode()) &&
|
|
|
|
|
rinfo->IsPatchedReturnSequence());
|
2009-09-21 10:35:47 +00:00
|
|
|
Object* target = Code::GetCodeFromTargetAddress(rinfo->call_address());
|
|
|
|
|
Object* old_target = target;
|
|
|
|
|
VisitPointer(&target);
|
|
|
|
|
CHECK_EQ(target, old_target); // VisitPointer doesn't change Code* *target.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Code::CodeIterateBody(ObjectVisitor* v) {
|
|
|
|
|
int mode_mask = RelocInfo::kCodeTargetMask |
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::ModeMask(RelocInfo::EMBEDDED_OBJECT) |
|
|
|
|
|
RelocInfo::ModeMask(RelocInfo::EXTERNAL_REFERENCE) |
|
|
|
|
|
RelocInfo::ModeMask(RelocInfo::JS_RETURN) |
|
|
|
|
|
RelocInfo::ModeMask(RelocInfo::RUNTIME_ENTRY);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
for (RelocIterator it(this, mode_mask); !it.done(); it.next()) {
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::Mode rmode = it.rinfo()->rmode();
|
|
|
|
|
if (rmode == RelocInfo::EMBEDDED_OBJECT) {
|
2008-07-03 15:10:15 +00:00
|
|
|
v->VisitPointer(it.rinfo()->target_object_address());
|
2008-09-22 13:57:03 +00:00
|
|
|
} else if (RelocInfo::IsCodeTarget(rmode)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
v->VisitCodeTarget(it.rinfo());
|
2008-09-22 13:57:03 +00:00
|
|
|
} else if (rmode == RelocInfo::EXTERNAL_REFERENCE) {
|
2008-07-03 15:10:15 +00:00
|
|
|
v->VisitExternalReference(it.rinfo()->target_reference_address());
|
2009-04-20 16:36:13 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (Debug::has_break_points() &&
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::IsJSReturn(rmode) &&
|
2009-10-15 11:52:53 +00:00
|
|
|
it.rinfo()->IsPatchedReturnSequence()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
v->VisitDebugTarget(it.rinfo());
|
2009-04-20 16:36:13 +00:00
|
|
|
#endif
|
2008-09-22 13:57:03 +00:00
|
|
|
} else if (rmode == RelocInfo::RUNTIME_ENTRY) {
|
2008-07-03 15:10:15 +00:00
|
|
|
v->VisitRuntimeEntry(it.rinfo());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ScopeInfo<>::IterateScopeInfo(this, v);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-11 09:50:06 +00:00
|
|
|
void Code::Relocate(intptr_t delta) {
|
2008-07-03 15:10:15 +00:00
|
|
|
for (RelocIterator it(this, RelocInfo::kApplyMask); !it.done(); it.next()) {
|
|
|
|
|
it.rinfo()->apply(delta);
|
|
|
|
|
}
|
2008-09-05 11:23:00 +00:00
|
|
|
CPU::FlushICache(instruction_start(), instruction_size());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Code::CopyFrom(const CodeDesc& desc) {
|
|
|
|
|
// copy code
|
|
|
|
|
memmove(instruction_start(), desc.buffer, desc.instr_size);
|
|
|
|
|
|
|
|
|
|
// fill gap with zero bytes
|
|
|
|
|
{ byte* p = instruction_start() + desc.instr_size;
|
|
|
|
|
byte* q = relocation_start();
|
|
|
|
|
while (p < q) {
|
|
|
|
|
*p++ = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// copy reloc info
|
|
|
|
|
memmove(relocation_start(),
|
|
|
|
|
desc.buffer + desc.buffer_size - desc.reloc_size,
|
|
|
|
|
desc.reloc_size);
|
|
|
|
|
|
|
|
|
|
// unbox handles and relocate
|
2009-10-15 11:52:53 +00:00
|
|
|
intptr_t delta = instruction_start() - desc.buffer;
|
2008-07-03 15:10:15 +00:00
|
|
|
int mode_mask = RelocInfo::kCodeTargetMask |
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::ModeMask(RelocInfo::EMBEDDED_OBJECT) |
|
2008-07-03 15:10:15 +00:00
|
|
|
RelocInfo::kApplyMask;
|
2009-10-06 13:11:05 +00:00
|
|
|
Assembler* origin = desc.origin; // Needed to find target_object on X64.
|
2008-07-03 15:10:15 +00:00
|
|
|
for (RelocIterator it(this, mode_mask); !it.done(); it.next()) {
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::Mode mode = it.rinfo()->rmode();
|
|
|
|
|
if (mode == RelocInfo::EMBEDDED_OBJECT) {
|
2009-10-06 13:11:05 +00:00
|
|
|
Handle<Object> p = it.rinfo()->target_object_handle(origin);
|
2008-07-03 15:10:15 +00:00
|
|
|
it.rinfo()->set_target_object(*p);
|
2008-09-22 13:57:03 +00:00
|
|
|
} else if (RelocInfo::IsCodeTarget(mode)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// rewrite code handles in inline cache targets to direct
|
|
|
|
|
// pointers to the first instruction in the code object
|
2009-10-06 13:11:05 +00:00
|
|
|
Handle<Object> p = it.rinfo()->target_object_handle(origin);
|
2008-07-03 15:10:15 +00:00
|
|
|
Code* code = Code::cast(*p);
|
|
|
|
|
it.rinfo()->set_target_address(code->instruction_start());
|
|
|
|
|
} else {
|
|
|
|
|
it.rinfo()->apply(delta);
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-09-05 11:23:00 +00:00
|
|
|
CPU::FlushICache(instruction_start(), instruction_size());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Locate the source position which is closest to the address in the code. This
|
|
|
|
|
// is using the source position information embedded in the relocation info.
|
|
|
|
|
// The position returned is relative to the beginning of the script where the
|
|
|
|
|
// source for this function is found.
|
|
|
|
|
int Code::SourcePosition(Address pc) {
|
|
|
|
|
int distance = kMaxInt;
|
2008-09-22 13:57:03 +00:00
|
|
|
int position = RelocInfo::kNoPosition; // Initially no position found.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Run through all the relocation info to find the best matching source
|
|
|
|
|
// position. All the code needs to be considered as the sequence of the
|
|
|
|
|
// instructions in the code does not necessarily follow the same order as the
|
|
|
|
|
// source.
|
|
|
|
|
RelocIterator it(this, RelocInfo::kPositionMask);
|
|
|
|
|
while (!it.done()) {
|
2008-09-18 08:51:43 +00:00
|
|
|
// Only look at positions after the current pc.
|
|
|
|
|
if (it.rinfo()->pc() < pc) {
|
|
|
|
|
// Get position and distance.
|
2009-11-11 09:50:06 +00:00
|
|
|
|
|
|
|
|
int dist = static_cast<int>(pc - it.rinfo()->pc());
|
|
|
|
|
int pos = static_cast<int>(it.rinfo()->data());
|
2008-09-18 08:51:43 +00:00
|
|
|
// If this position is closer than the current candidate or if it has the
|
|
|
|
|
// same distance as the current candidate and the position is higher then
|
|
|
|
|
// this position is the new candidate.
|
|
|
|
|
if ((dist < distance) ||
|
|
|
|
|
(dist == distance && pos > position)) {
|
|
|
|
|
position = pos;
|
|
|
|
|
distance = dist;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
it.next();
|
|
|
|
|
}
|
|
|
|
|
return position;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Same as Code::SourcePosition above except it only looks for statement
|
|
|
|
|
// positions.
|
|
|
|
|
int Code::SourceStatementPosition(Address pc) {
|
|
|
|
|
// First find the position as close as possible using all position
|
|
|
|
|
// information.
|
|
|
|
|
int position = SourcePosition(pc);
|
|
|
|
|
// Now find the closest statement position before the position.
|
|
|
|
|
int statement_position = 0;
|
|
|
|
|
RelocIterator it(this, RelocInfo::kPositionMask);
|
|
|
|
|
while (!it.done()) {
|
2008-09-22 13:57:03 +00:00
|
|
|
if (RelocInfo::IsStatementPosition(it.rinfo()->rmode())) {
|
2009-11-11 09:50:06 +00:00
|
|
|
int p = static_cast<int>(it.rinfo()->data());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (statement_position < p && p <= position) {
|
|
|
|
|
statement_position = p;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
it.next();
|
|
|
|
|
}
|
|
|
|
|
return statement_position;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
#ifdef ENABLE_DISASSEMBLER
|
|
|
|
|
// Identify kind of code.
|
|
|
|
|
const char* Code::Kind2String(Kind kind) {
|
|
|
|
|
switch (kind) {
|
|
|
|
|
case FUNCTION: return "FUNCTION";
|
|
|
|
|
case STUB: return "STUB";
|
|
|
|
|
case BUILTIN: return "BUILTIN";
|
|
|
|
|
case LOAD_IC: return "LOAD_IC";
|
|
|
|
|
case KEYED_LOAD_IC: return "KEYED_LOAD_IC";
|
|
|
|
|
case STORE_IC: return "STORE_IC";
|
|
|
|
|
case KEYED_STORE_IC: return "KEYED_STORE_IC";
|
|
|
|
|
case CALL_IC: return "CALL_IC";
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2008-08-13 09:32:07 +00:00
|
|
|
|
|
|
|
|
|
2008-09-17 12:38:50 +00:00
|
|
|
const char* Code::ICState2String(InlineCacheState state) {
|
|
|
|
|
switch (state) {
|
|
|
|
|
case UNINITIALIZED: return "UNINITIALIZED";
|
|
|
|
|
case PREMONOMORPHIC: return "PREMONOMORPHIC";
|
|
|
|
|
case MONOMORPHIC: return "MONOMORPHIC";
|
|
|
|
|
case MONOMORPHIC_PROTOTYPE_FAILURE: return "MONOMORPHIC_PROTOTYPE_FAILURE";
|
|
|
|
|
case MEGAMORPHIC: return "MEGAMORPHIC";
|
|
|
|
|
case DEBUG_BREAK: return "DEBUG_BREAK";
|
|
|
|
|
case DEBUG_PREPARE_STEP_IN: return "DEBUG_PREPARE_STEP_IN";
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
const char* Code::PropertyType2String(PropertyType type) {
|
|
|
|
|
switch (type) {
|
|
|
|
|
case NORMAL: return "NORMAL";
|
|
|
|
|
case FIELD: return "FIELD";
|
|
|
|
|
case CONSTANT_FUNCTION: return "CONSTANT_FUNCTION";
|
|
|
|
|
case CALLBACKS: return "CALLBACKS";
|
|
|
|
|
case INTERCEPTOR: return "INTERCEPTOR";
|
|
|
|
|
case MAP_TRANSITION: return "MAP_TRANSITION";
|
|
|
|
|
case CONSTANT_TRANSITION: return "CONSTANT_TRANSITION";
|
|
|
|
|
case NULL_DESCRIPTOR: return "NULL_DESCRIPTOR";
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-03-04 06:14:34 +00:00
|
|
|
void Code::Disassemble(const char* name) {
|
|
|
|
|
PrintF("kind = %s\n", Kind2String(kind()));
|
2009-06-30 10:05:36 +00:00
|
|
|
if (is_inline_cache_stub()) {
|
|
|
|
|
PrintF("ic_state = %s\n", ICState2String(ic_state()));
|
|
|
|
|
PrintF("ic_in_loop = %d\n", ic_in_loop() == IN_LOOP);
|
|
|
|
|
if (ic_state() == MONOMORPHIC) {
|
|
|
|
|
PrintF("type = %s\n", PropertyType2String(type()));
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-03-04 06:14:34 +00:00
|
|
|
if ((name != NULL) && (name[0] != '\0')) {
|
|
|
|
|
PrintF("name = %s\n", name);
|
|
|
|
|
}
|
2008-08-13 09:32:07 +00:00
|
|
|
|
2009-03-04 06:14:34 +00:00
|
|
|
PrintF("Instructions (size = %d)\n", instruction_size());
|
2008-08-13 09:32:07 +00:00
|
|
|
Disassembler::Decode(NULL, this);
|
|
|
|
|
PrintF("\n");
|
|
|
|
|
|
|
|
|
|
PrintF("RelocInfo (size = %d)\n", relocation_size());
|
|
|
|
|
for (RelocIterator it(this); !it.done(); it.next())
|
|
|
|
|
it.rinfo()->Print();
|
|
|
|
|
PrintF("\n");
|
|
|
|
|
}
|
2008-08-06 10:02:49 +00:00
|
|
|
#endif // ENABLE_DISASSEMBLER
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::SetFastElements(FixedArray* elems) {
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
|
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
// Check the provided array is filled with the_hole.
|
|
|
|
|
uint32_t len = static_cast<uint32_t>(elems->length());
|
|
|
|
|
for (uint32_t i = 0; i < len; i++) ASSERT(elems->get(i)->IsTheHole());
|
|
|
|
|
#endif
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = elems->GetWriteBarrierMode(no_gc);
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
FixedArray* old_elements = FixedArray::cast(elements());
|
|
|
|
|
uint32_t old_length = static_cast<uint32_t>(old_elements->length());
|
|
|
|
|
// Fill out the new array with this content and array holes.
|
|
|
|
|
for (uint32_t i = 0; i < old_length; i++) {
|
|
|
|
|
elems->set(i, old_elements->get(i), mode);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(elements());
|
|
|
|
|
for (int i = 0; i < dictionary->Capacity(); i++) {
|
|
|
|
|
Object* key = dictionary->KeyAt(i);
|
|
|
|
|
if (key->IsNumber()) {
|
|
|
|
|
uint32_t entry = static_cast<uint32_t>(key->Number());
|
|
|
|
|
elems->set(entry, dictionary->ValueAt(i), mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
set_elements(elems);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetSlowElements(Object* len) {
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
|
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t new_length = static_cast<uint32_t>(len->Number());
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
// Make sure we never try to shrink dense arrays into sparse arrays.
|
|
|
|
|
ASSERT(static_cast<uint32_t>(FixedArray::cast(elements())->length()) <=
|
|
|
|
|
new_length);
|
|
|
|
|
Object* obj = NormalizeElements();
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
// Update length for JSArrays.
|
|
|
|
|
if (IsJSArray()) JSArray::cast(this)->set_length(len);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
uint32_t old_length =
|
|
|
|
|
static_cast<uint32_t>(JSArray::cast(this)->length()->Number());
|
|
|
|
|
element_dictionary()->RemoveNumberEntries(new_length, old_length),
|
|
|
|
|
JSArray::cast(this)->set_length(len);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSArray::Initialize(int capacity) {
|
|
|
|
|
ASSERT(capacity >= 0);
|
2010-01-29 11:46:55 +00:00
|
|
|
set_length(Smi::FromInt(0));
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* new_elements;
|
|
|
|
|
if (capacity == 0) {
|
|
|
|
|
new_elements = Heap::empty_fixed_array();
|
|
|
|
|
} else {
|
|
|
|
|
Object* obj = Heap::AllocateFixedArrayWithHoles(capacity);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
new_elements = FixedArray::cast(obj);
|
|
|
|
|
}
|
|
|
|
|
set_elements(new_elements);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-17 10:55:58 +00:00
|
|
|
void JSArray::Expand(int required_size) {
|
2009-03-11 14:00:55 +00:00
|
|
|
Handle<JSArray> self(this);
|
2009-07-28 08:43:51 +00:00
|
|
|
Handle<FixedArray> old_backing(FixedArray::cast(elements()));
|
2009-03-11 14:00:55 +00:00
|
|
|
int old_size = old_backing->length();
|
2009-11-20 10:11:45 +00:00
|
|
|
int new_size = required_size > old_size ? required_size : old_size;
|
2009-03-11 14:00:55 +00:00
|
|
|
Handle<FixedArray> new_backing = Factory::NewFixedArray(new_size);
|
|
|
|
|
// Can't use this any more now because we may have had a GC!
|
|
|
|
|
for (int i = 0; i < old_size; i++) new_backing->set(i, old_backing->get(i));
|
|
|
|
|
self->SetContent(*new_backing);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Computes the new capacity when expanding the elements of a JSObject.
|
|
|
|
|
static int NewElementsCapacity(int old_capacity) {
|
|
|
|
|
// (old_capacity + 50%) + 16
|
|
|
|
|
return old_capacity + (old_capacity >> 1) + 16;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static Object* ArrayLengthRangeError() {
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
return Top::Throw(*Factory::NewRangeError("invalid_array_length",
|
|
|
|
|
HandleVector<Object>(NULL, 0)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetElementsLength(Object* len) {
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
|
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* smi_length = len->ToSmi();
|
|
|
|
|
if (smi_length->IsSmi()) {
|
|
|
|
|
int value = Smi::cast(smi_length)->value();
|
|
|
|
|
if (value < 0) return ArrayLengthRangeError();
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
int old_capacity = FixedArray::cast(elements())->length();
|
|
|
|
|
if (value <= old_capacity) {
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
int old_length = FastD2I(JSArray::cast(this)->length()->Number());
|
|
|
|
|
// NOTE: We may be able to optimize this by removing the
|
|
|
|
|
// last part of the elements backing storage array and
|
|
|
|
|
// setting the capacity to the new size.
|
|
|
|
|
for (int i = value; i < old_length; i++) {
|
|
|
|
|
FixedArray::cast(elements())->set_the_hole(i);
|
|
|
|
|
}
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::cast(smi_length));
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
int min = NewElementsCapacity(old_capacity);
|
|
|
|
|
int new_capacity = value > min ? value : min;
|
|
|
|
|
if (new_capacity <= kMaxFastElementsLength ||
|
|
|
|
|
!ShouldConvertToSlowElements(new_capacity)) {
|
|
|
|
|
Object* obj = Heap::AllocateFixedArrayWithHoles(new_capacity);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2010-01-29 11:46:55 +00:00
|
|
|
if (IsJSArray()) {
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::cast(smi_length));
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
SetFastElements(FixedArray::cast(obj));
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsJSArray()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
if (value == 0) {
|
|
|
|
|
// If the length of a slow array is reset to zero, we clear
|
|
|
|
|
// the array and flush backing storage. This has the added
|
|
|
|
|
// benefit that the array returns to fast mode.
|
|
|
|
|
initialize_elements();
|
|
|
|
|
} else {
|
|
|
|
|
// Remove deleted elements.
|
|
|
|
|
uint32_t old_length =
|
|
|
|
|
static_cast<uint32_t>(JSArray::cast(this)->length()->Number());
|
|
|
|
|
element_dictionary()->RemoveNumberEntries(value, old_length);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::cast(smi_length));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// General slow case.
|
|
|
|
|
if (len->IsNumber()) {
|
|
|
|
|
uint32_t length;
|
|
|
|
|
if (Array::IndexFromObject(len, &length)) {
|
|
|
|
|
return SetSlowElements(len);
|
|
|
|
|
} else {
|
|
|
|
|
return ArrayLengthRangeError();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// len is not a number so make the array size one and
|
|
|
|
|
// set only element to len.
|
|
|
|
|
Object* obj = Heap::AllocateFixedArray(1);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
FixedArray::cast(obj)->set(0, len);
|
2010-01-29 11:46:55 +00:00
|
|
|
if (IsJSArray()) JSArray::cast(this)->set_length(Smi::FromInt(1));
|
2008-07-03 15:10:15 +00:00
|
|
|
set_elements(FixedArray::cast(obj));
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-02-10 14:44:15 +00:00
|
|
|
Object* JSObject::SetPrototype(Object* value,
|
|
|
|
|
bool skip_hidden_prototypes) {
|
|
|
|
|
// Silently ignore the change if value is not a JSObject or null.
|
|
|
|
|
// SpiderMonkey behaves this way.
|
|
|
|
|
if (!value->IsJSObject() && !value->IsNull()) return value;
|
|
|
|
|
|
|
|
|
|
// Before we can set the prototype we need to be sure
|
|
|
|
|
// prototype cycles are prevented.
|
|
|
|
|
// It is sufficient to validate that the receiver is not in the new prototype
|
|
|
|
|
// chain.
|
|
|
|
|
for (Object* pt = value; pt != Heap::null_value(); pt = pt->GetPrototype()) {
|
|
|
|
|
if (JSObject::cast(pt) == this) {
|
|
|
|
|
// Cycle detected.
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
return Top::Throw(*Factory::NewError("cyclic_proto",
|
|
|
|
|
HandleVector<Object>(NULL, 0)));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
JSObject* real_receiver = this;
|
|
|
|
|
|
|
|
|
|
if (skip_hidden_prototypes) {
|
|
|
|
|
// Find the first object in the chain whose prototype object is not
|
|
|
|
|
// hidden and set the new prototype on that object.
|
|
|
|
|
Object* current_proto = real_receiver->GetPrototype();
|
|
|
|
|
while (current_proto->IsJSObject() &&
|
|
|
|
|
JSObject::cast(current_proto)->map()->is_hidden_prototype()) {
|
|
|
|
|
real_receiver = JSObject::cast(current_proto);
|
|
|
|
|
current_proto = current_proto->GetPrototype();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Set the new prototype of the object.
|
|
|
|
|
Object* new_map = real_receiver->map()->CopyDropTransitions();
|
|
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
Map::cast(new_map)->set_prototype(value);
|
|
|
|
|
real_receiver->set_map(Map::cast(new_map));
|
|
|
|
|
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
bool JSObject::HasElementPostInterceptor(JSObject* receiver, uint32_t index) {
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole()) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
// TODO(iposva): Add testcase.
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
// TODO(kbr): Add testcase.
|
|
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
if (pt == Heap::null_value()) return false;
|
|
|
|
|
return JSObject::cast(pt)->HasElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasElementWithInterceptor(JSObject* receiver, uint32_t index) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
|
|
|
|
Handle<JSObject> receiver_handle(receiver);
|
|
|
|
|
Handle<JSObject> holder_handle(this);
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), receiver, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->query()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertyQuery query =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyQuery>(interceptor->query());
|
|
|
|
|
LOG(ApiIndexedPropertyAccess("interceptor-indexed-has", this, index));
|
|
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = query(index, info);
|
|
|
|
|
}
|
|
|
|
|
if (!result.IsEmpty()) return result->IsTrue();
|
|
|
|
|
} else if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyGetter>(interceptor->getter());
|
|
|
|
|
LOG(ApiIndexedPropertyAccess("interceptor-indexed-has-get", this, index));
|
|
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(index, info);
|
|
|
|
|
}
|
2009-04-16 11:30:55 +00:00
|
|
|
if (!result.IsEmpty()) return true;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return holder_handle->HasElementPostInterceptor(*receiver_handle, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasLocalElement(uint32_t index) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
|
|
|
|
return HasElementWithInterceptor(this, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
return (index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole();
|
|
|
|
|
}
|
|
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
return (index < static_cast<uint32_t>(pixels->length()));
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
return (index < static_cast<uint32_t>(array->length()));
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
return element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
return Heap::null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasElementWithReceiver(JSObject* receiver, uint32_t index) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
|
|
|
|
return HasElementWithInterceptor(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole()) return true;
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
if (pt == Heap::null_value()) return false;
|
|
|
|
|
return JSObject::cast(pt)->HasElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetElementWithInterceptor(uint32_t index, Object* value) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
if (!interceptor->setter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertySetter setter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertySetter>(interceptor->setter());
|
|
|
|
|
LOG(ApiIndexedPropertyAccess("interceptor-indexed-set", this, index));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), this, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = setter(index, v8::Utils::ToLocal(value_handle), info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
Object* raw_result =
|
2009-06-10 15:33:31 +00:00
|
|
|
this_handle->SetElementWithoutInterceptor(index, *value_handle);
|
2008-07-03 15:10:15 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Adding n elements in fast case is O(n*n).
|
|
|
|
|
// Note: revisit design to have dual undefined values to capture absent
|
|
|
|
|
// elements.
|
|
|
|
|
Object* JSObject::SetFastElement(uint32_t index, Object* value) {
|
|
|
|
|
ASSERT(HasFastElements());
|
|
|
|
|
|
|
|
|
|
FixedArray* elms = FixedArray::cast(elements());
|
|
|
|
|
uint32_t elms_length = static_cast<uint32_t>(elms->length());
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
if (!IsJSArray() && (index >= elms_length || elms->get(index)->IsTheHole())) {
|
|
|
|
|
Object* setter = LookupCallbackSetterInPrototypes(index);
|
|
|
|
|
if (setter->IsJSFunction()) {
|
|
|
|
|
return SetPropertyWithDefinedSetter(JSFunction::cast(setter), value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check whether there is extra space in fixed array..
|
|
|
|
|
if (index < elms_length) {
|
|
|
|
|
elms->set(index, value);
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
// Update the length of the array if needed.
|
|
|
|
|
uint32_t array_length = 0;
|
|
|
|
|
CHECK(Array::IndexFromObject(JSArray::cast(this)->length(),
|
|
|
|
|
&array_length));
|
|
|
|
|
if (index >= array_length) {
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(index + 1));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-10-17 06:36:35 +00:00
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allow gap in fast case.
|
|
|
|
|
if ((index - elms_length) < kMaxGap) {
|
|
|
|
|
// Try allocating extra space.
|
|
|
|
|
int new_capacity = NewElementsCapacity(index+1);
|
2008-08-27 10:11:39 +00:00
|
|
|
if (new_capacity <= kMaxFastElementsLength ||
|
|
|
|
|
!ShouldConvertToSlowElements(new_capacity)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(static_cast<uint32_t>(new_capacity) > index);
|
|
|
|
|
Object* obj = Heap::AllocateFixedArrayWithHoles(new_capacity);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
SetFastElements(FixedArray::cast(obj));
|
2010-01-29 11:46:55 +00:00
|
|
|
if (IsJSArray()) {
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(index + 1));
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray::cast(elements())->set(index, value);
|
2008-10-17 06:36:35 +00:00
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Otherwise default to slow case.
|
|
|
|
|
Object* obj = NormalizeElements();
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(HasDictionaryElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
return SetElement(index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetElement(uint32_t index, Object* value) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_SET)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->SetElement(index, value);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
|
|
|
|
return SetElementWithInterceptor(index, value);
|
|
|
|
|
}
|
|
|
|
|
|
2009-06-10 15:33:31 +00:00
|
|
|
return SetElementWithoutInterceptor(index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetElementWithoutInterceptor(uint32_t index, Object* value) {
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS:
|
|
|
|
|
// Fast case.
|
|
|
|
|
return SetFastElement(index, value);
|
|
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
return pixels->SetValue(index, value);
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalByteArray* array = ExternalByteArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedByteArray* array =
|
|
|
|
|
ExternalUnsignedByteArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalShortArray* array = ExternalShortArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedShortArray* array =
|
|
|
|
|
ExternalUnsignedShortArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS: {
|
|
|
|
|
ExternalIntArray* array = ExternalIntArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedIntArray* array =
|
|
|
|
|
ExternalUnsignedIntArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalFloatArray* array = ExternalFloatArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
// Insert element in the dictionary.
|
|
|
|
|
FixedArray* elms = FixedArray::cast(elements());
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(elms);
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
FixedArray* structure = FixedArray::cast(element);
|
|
|
|
|
if (structure->get(kSetterIndex)->IsJSFunction()) {
|
|
|
|
|
JSFunction* setter = JSFunction::cast(structure->get(kSetterIndex));
|
|
|
|
|
return SetPropertyWithDefinedSetter(setter, value);
|
|
|
|
|
} else {
|
|
|
|
|
Handle<Object> self(this);
|
|
|
|
|
Handle<Object> key(Factory::NewNumberFromUint(index));
|
|
|
|
|
Handle<Object> args[2] = { key, self };
|
|
|
|
|
return Top::Throw(*Factory::NewTypeError("no_setter_in_callback",
|
|
|
|
|
HandleVector(args, 2)));
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
dictionary->UpdateMaxNumberKey(index);
|
|
|
|
|
dictionary->ValueAtPut(entry, value);
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
} else {
|
2009-07-28 08:43:51 +00:00
|
|
|
// Index not already used. Look for an accessor in the prototype chain.
|
|
|
|
|
if (!IsJSArray()) {
|
|
|
|
|
Object* setter = LookupCallbackSetterInPrototypes(index);
|
|
|
|
|
if (setter->IsJSFunction()) {
|
|
|
|
|
return SetPropertyWithDefinedSetter(JSFunction::cast(setter),
|
|
|
|
|
value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Object* result = dictionary->AtNumberPut(index, value);
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
if (elms != FixedArray::cast(result)) {
|
|
|
|
|
set_elements(FixedArray::cast(result));
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
// Update the array length if this JSObject is an array.
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
JSArray* array = JSArray::cast(this);
|
|
|
|
|
Object* return_value = array->JSArrayUpdateLengthFromIndex(index,
|
|
|
|
|
value);
|
|
|
|
|
if (return_value->IsFailure()) return return_value;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
// Attempt to put this object back in fast case.
|
|
|
|
|
if (ShouldConvertToFastElements()) {
|
|
|
|
|
uint32_t new_length = 0;
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
CHECK(Array::IndexFromObject(JSArray::cast(this)->length(),
|
|
|
|
|
&new_length));
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(new_length));
|
|
|
|
|
} else {
|
|
|
|
|
new_length = NumberDictionary::cast(elements())->max_number_key() + 1;
|
|
|
|
|
}
|
|
|
|
|
Object* obj = Heap::AllocateFixedArrayWithHoles(new_length);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
SetFastElements(FixedArray::cast(obj));
|
2008-07-03 15:10:15 +00:00
|
|
|
#ifdef DEBUG
|
2009-07-28 08:43:51 +00:00
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object elements are fast case again:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
#endif
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
// All possible cases have been handled above. Add a return to avoid the
|
|
|
|
|
// complaints from the compiler.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return Heap::null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSArray::JSArrayUpdateLengthFromIndex(uint32_t index, Object* value) {
|
|
|
|
|
uint32_t old_len = 0;
|
|
|
|
|
CHECK(Array::IndexFromObject(length(), &old_len));
|
|
|
|
|
// Check to see if we need to update the length. For now, we make
|
|
|
|
|
// sure that the length stays within 32-bits (unsigned).
|
|
|
|
|
if (index >= old_len && index != 0xffffffff) {
|
|
|
|
|
Object* len =
|
|
|
|
|
Heap::NumberFromDouble(static_cast<double>(index) + 1);
|
|
|
|
|
if (len->IsFailure()) return len;
|
|
|
|
|
set_length(len);
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::GetElementPostInterceptor(JSObject* receiver,
|
|
|
|
|
uint32_t index) {
|
|
|
|
|
// Get element works for both JSObject and JSArray since
|
|
|
|
|
// JSArray::length cannot change.
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
FixedArray* elms = FixedArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(elms->length())) {
|
|
|
|
|
Object* value = elms->get(index);
|
|
|
|
|
if (!value->IsTheHole()) return value;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
// TODO(iposva): Add testcase and implement.
|
|
|
|
|
UNIMPLEMENTED();
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
// TODO(kbr): Add testcase and implement.
|
|
|
|
|
UNIMPLEMENTED();
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
FixedArray* structure = FixedArray::cast(element);
|
|
|
|
|
Object* getter = structure->get(kGetterIndex);
|
|
|
|
|
if (getter->IsJSFunction()) {
|
|
|
|
|
return GetPropertyWithDefinedGetter(receiver,
|
|
|
|
|
JSFunction::cast(getter));
|
|
|
|
|
} else {
|
|
|
|
|
// Getter is not a function.
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
2009-06-10 15:33:31 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
return element;
|
2009-06-10 15:33:31 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Continue searching via the prototype chain.
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
if (pt == Heap::null_value()) return Heap::undefined_value();
|
|
|
|
|
return pt->GetElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::GetElementWithInterceptor(JSObject* receiver,
|
|
|
|
|
uint32_t index) {
|
|
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
|
|
|
|
Handle<JSObject> this_handle(receiver);
|
|
|
|
|
Handle<JSObject> holder_handle(this);
|
|
|
|
|
|
|
|
|
|
if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyGetter>(interceptor->getter());
|
|
|
|
|
LOG(ApiIndexedPropertyAccess("interceptor-indexed-get", this, index));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), receiver, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(index, info);
|
|
|
|
|
}
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* raw_result =
|
|
|
|
|
holder_handle->GetElementPostInterceptor(*this_handle, index);
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::GetElementWithReceiver(JSObject* receiver, uint32_t index) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_GET)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_GET);
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
|
|
|
|
return GetElementWithInterceptor(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Get element works for both JSObject and JSArray since
|
|
|
|
|
// JSArray::length cannot change.
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
FixedArray* elms = FixedArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(elms->length())) {
|
|
|
|
|
Object* value = elms->get(index);
|
|
|
|
|
if (!value->IsTheHole()) return value;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) {
|
|
|
|
|
uint8_t value = pixels->get(index);
|
|
|
|
|
return Smi::FromInt(value);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalByteArray* array = ExternalByteArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
int8_t value = array->get(index);
|
|
|
|
|
return Smi::FromInt(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedByteArray* array =
|
|
|
|
|
ExternalUnsignedByteArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
uint8_t value = array->get(index);
|
|
|
|
|
return Smi::FromInt(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalShortArray* array = ExternalShortArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
int16_t value = array->get(index);
|
|
|
|
|
return Smi::FromInt(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedShortArray* array =
|
|
|
|
|
ExternalUnsignedShortArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
uint16_t value = array->get(index);
|
|
|
|
|
return Smi::FromInt(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS: {
|
|
|
|
|
ExternalIntArray* array = ExternalIntArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
int32_t value = array->get(index);
|
|
|
|
|
return Heap::NumberFromInt32(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedIntArray* array =
|
|
|
|
|
ExternalUnsignedIntArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
uint32_t value = array->get(index);
|
|
|
|
|
return Heap::NumberFromUint32(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalFloatArray* array = ExternalFloatArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
float value = array->get(index);
|
|
|
|
|
return Heap::AllocateHeapNumber(value);
|
|
|
|
|
}
|
2009-10-23 09:19:17 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Only accessors allowed as elements.
|
|
|
|
|
FixedArray* structure = FixedArray::cast(element);
|
|
|
|
|
Object* getter = structure->get(kGetterIndex);
|
|
|
|
|
if (getter->IsJSFunction()) {
|
|
|
|
|
return GetPropertyWithDefinedGetter(receiver,
|
|
|
|
|
JSFunction::cast(getter));
|
|
|
|
|
} else {
|
|
|
|
|
// Getter is not a function.
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
return element;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
if (pt == Heap::null_value()) return Heap::undefined_value();
|
|
|
|
|
return pt->GetElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasDenseElements() {
|
|
|
|
|
int capacity = 0;
|
|
|
|
|
int number_of_elements = 0;
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
FixedArray* elms = FixedArray::cast(elements());
|
|
|
|
|
capacity = elms->length();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
if (!elms->get(i)->IsTheHole()) number_of_elements++;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case PIXEL_ELEMENTS:
|
|
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
2009-07-28 08:43:51 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(elements());
|
|
|
|
|
capacity = dictionary->Capacity();
|
|
|
|
|
number_of_elements = dictionary->NumberOfElements();
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (capacity == 0) return true;
|
|
|
|
|
return (number_of_elements > (capacity / 2));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
bool JSObject::ShouldConvertToSlowElements(int new_capacity) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(HasFastElements());
|
|
|
|
|
// Keep the array in fast case if the current backing storage is
|
|
|
|
|
// almost filled and if the new capacity is no more than twice the
|
|
|
|
|
// old capacity.
|
|
|
|
|
int elements_length = FixedArray::cast(elements())->length();
|
2008-08-27 10:11:39 +00:00
|
|
|
return !HasDenseElements() || ((new_capacity / 2) > elements_length);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
bool JSObject::ShouldConvertToFastElements() {
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(HasDictionaryElements());
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(elements());
|
2008-07-03 15:10:15 +00:00
|
|
|
// If the elements are sparse, we should not go back to fast case.
|
|
|
|
|
if (!HasDenseElements()) return false;
|
|
|
|
|
// If an element has been added at a very high index in the elements
|
|
|
|
|
// dictionary, we cannot go back to fast case.
|
|
|
|
|
if (dictionary->requires_slow_elements()) return false;
|
|
|
|
|
// An object requiring access checks is never allowed to have fast
|
|
|
|
|
// elements. If it had fast elements we would skip security checks.
|
|
|
|
|
if (IsAccessCheckNeeded()) return false;
|
|
|
|
|
// If the dictionary backing storage takes up roughly half as much
|
|
|
|
|
// space as a fast-case backing storage would the array should have
|
|
|
|
|
// fast elements.
|
|
|
|
|
uint32_t length = 0;
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
CHECK(Array::IndexFromObject(JSArray::cast(this)->length(), &length));
|
|
|
|
|
} else {
|
|
|
|
|
length = dictionary->max_number_key();
|
|
|
|
|
}
|
|
|
|
|
return static_cast<uint32_t>(dictionary->Capacity()) >=
|
2009-07-02 06:50:43 +00:00
|
|
|
(length / (2 * NumberDictionary::kEntrySize));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-06 06:57:32 +00:00
|
|
|
|
|
|
|
|
// Certain compilers request function template instantiation when they
|
|
|
|
|
// see the definition of the other template functions in the
|
|
|
|
|
// class. This requires us to have the template functions put
|
|
|
|
|
// together, so even though this function belongs in objects-debug.cc,
|
|
|
|
|
// we keep it here instead to satisfy certain compilers.
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void Dictionary<Shape, Key>::Print() {
|
|
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
|
|
|
|
PrintF(" ");
|
|
|
|
|
if (k->IsString()) {
|
|
|
|
|
String::cast(k)->StringPrint();
|
|
|
|
|
} else {
|
|
|
|
|
k->ShortPrint();
|
|
|
|
|
}
|
|
|
|
|
PrintF(": ");
|
|
|
|
|
ValueAt(i)->ShortPrint();
|
|
|
|
|
PrintF("\n");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void Dictionary<Shape, Key>::CopyValuesTo(FixedArray* elements) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int pos = 0;
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = elements->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = Dictionary<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (Dictionary<Shape, Key>::IsKey(k)) {
|
|
|
|
|
elements->set(pos++, ValueAt(i), mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
ASSERT(pos == elements->length());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
InterceptorInfo* JSObject::GetNamedInterceptor() {
|
|
|
|
|
ASSERT(map()->has_named_interceptor());
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
Object* template_info = constructor->shared()->function_data();
|
|
|
|
|
Object* result =
|
|
|
|
|
FunctionTemplateInfo::cast(template_info)->named_property_handler();
|
|
|
|
|
return InterceptorInfo::cast(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
InterceptorInfo* JSObject::GetIndexedInterceptor() {
|
|
|
|
|
ASSERT(map()->has_indexed_interceptor());
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
Object* template_info = constructor->shared()->function_data();
|
|
|
|
|
Object* result =
|
|
|
|
|
FunctionTemplateInfo::cast(template_info)->indexed_property_handler();
|
|
|
|
|
return InterceptorInfo::cast(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::GetPropertyPostInterceptor(JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
// Check local property in holder, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
|
|
|
|
if (result.IsValid()) return GetProperty(receiver, &result, name, attributes);
|
|
|
|
|
// Continue searching via the prototype chain.
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
*attributes = ABSENT;
|
|
|
|
|
if (pt == Heap::null_value()) return Heap::undefined_value();
|
|
|
|
|
return pt->GetPropertyWithReceiver(receiver, name, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-24 14:10:06 +00:00
|
|
|
|
2009-11-12 16:34:52 +00:00
|
|
|
Object* JSObject::GetLocalPropertyPostInterceptor(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
// Check local property in holder, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
|
|
|
|
if (!result.IsValid()) return Heap::undefined_value();
|
|
|
|
|
return GetProperty(receiver, &result, name, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-28 14:46:06 +00:00
|
|
|
Object* JSObject::GetPropertyWithInterceptor(
|
2009-06-05 08:07:15 +00:00
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
2009-07-06 11:00:53 +00:00
|
|
|
PropertyAttributes* attributes) {
|
2009-07-28 14:46:06 +00:00
|
|
|
InterceptorInfo* interceptor = GetNamedInterceptor();
|
2008-07-03 15:10:15 +00:00
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSObject> receiver_handle(receiver);
|
|
|
|
|
Handle<JSObject> holder_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
|
|
|
|
|
if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyGetter>(interceptor->getter());
|
|
|
|
|
LOG(ApiNamedPropertyAccess("interceptor-named-get", *holder_handle, name));
|
2009-09-30 12:25:46 +00:00
|
|
|
CustomArguments args(interceptor->data(), receiver, this);
|
|
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2009-03-27 12:32:28 +00:00
|
|
|
VMState state(EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
2009-07-28 14:46:06 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
|
|
|
|
if (!result.IsEmpty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*attributes = NONE;
|
2009-07-06 11:00:53 +00:00
|
|
|
return *v8::Utils::OpenHandle(*result);
|
2009-06-03 11:25:34 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-28 14:46:06 +00:00
|
|
|
Object* result = holder_handle->GetPropertyPostInterceptor(
|
2008-07-03 15:10:15 +00:00
|
|
|
*receiver_handle,
|
|
|
|
|
*name_handle,
|
|
|
|
|
attributes);
|
|
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION();
|
2009-06-05 08:07:15 +00:00
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealNamedProperty(String* key) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, key, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(key, &result);
|
|
|
|
|
if (result.IsValid()) {
|
|
|
|
|
switch (result.type()) {
|
|
|
|
|
case NORMAL: // fall through.
|
|
|
|
|
case FIELD: // fall through.
|
|
|
|
|
case CALLBACKS: // fall through.
|
2008-08-27 10:11:39 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
return true;
|
|
|
|
|
case INTERCEPTOR:
|
|
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
case NULL_DESCRIPTOR:
|
|
|
|
|
return false;
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealElementProperty(uint32_t index) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>(
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
return (index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole();
|
|
|
|
|
}
|
|
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
PixelArray* pixels = PixelArray::cast(elements());
|
|
|
|
|
return index < static_cast<uint32_t>(pixels->length());
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
return index < static_cast<uint32_t>(array->length());
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
return element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
// All possibilities have been handled above already.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return Heap::null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealNamedCallbackProperty(String* key) {
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
|
|
|
|
!Top::MayNamedAccess(this, key, v8::ACCESS_HAS)) {
|
|
|
|
|
Top::ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(key, &result);
|
|
|
|
|
return result.IsValid() && (result.type() == CALLBACKS);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfLocalProperties(PropertyAttributes filter) {
|
|
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
int result = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
PropertyDetails details = descs->GetDetails(i);
|
|
|
|
|
if (details.IsProperty() && (details.attributes() & filter) == 0) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
} else {
|
|
|
|
|
return property_dictionary()->NumberOfElementsFilterAttributes(filter);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfEnumProperties() {
|
|
|
|
|
return NumberOfLocalProperties(static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
void FixedArray::SwapPairs(FixedArray* numbers, int i, int j) {
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* temp = get(i);
|
|
|
|
|
set(i, get(j));
|
|
|
|
|
set(j, temp);
|
2009-04-16 11:30:55 +00:00
|
|
|
if (this != numbers) {
|
|
|
|
|
temp = numbers->get(i);
|
|
|
|
|
numbers->set(i, numbers->get(j));
|
|
|
|
|
numbers->set(j, temp);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
static void InsertionSortPairs(FixedArray* content,
|
|
|
|
|
FixedArray* numbers,
|
|
|
|
|
int len) {
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 1; i < len; i++) {
|
|
|
|
|
int j = i;
|
|
|
|
|
while (j > 0 &&
|
2009-04-16 11:30:55 +00:00
|
|
|
(NumberToUint32(numbers->get(j - 1)) >
|
|
|
|
|
NumberToUint32(numbers->get(j)))) {
|
|
|
|
|
content->SwapPairs(numbers, j - 1, j);
|
2008-07-03 15:10:15 +00:00
|
|
|
j--;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
void HeapSortPairs(FixedArray* content, FixedArray* numbers, int len) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// In-place heap sort.
|
2009-04-16 11:30:55 +00:00
|
|
|
ASSERT(content->length() == numbers->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Bottom-up max-heap construction.
|
|
|
|
|
for (int i = 1; i < len; ++i) {
|
|
|
|
|
int child_index = i;
|
|
|
|
|
while (child_index > 0) {
|
|
|
|
|
int parent_index = ((child_index + 1) >> 1) - 1;
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t parent_value = NumberToUint32(numbers->get(parent_index));
|
|
|
|
|
uint32_t child_value = NumberToUint32(numbers->get(child_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (parent_value < child_value) {
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
child_index = parent_index;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Extract elements and create sorted array.
|
|
|
|
|
for (int i = len - 1; i > 0; --i) {
|
|
|
|
|
// Put max element at the back of the array.
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, 0, i);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Sift down the new top element.
|
|
|
|
|
int parent_index = 0;
|
|
|
|
|
while (true) {
|
|
|
|
|
int child_index = ((parent_index + 1) << 1) - 1;
|
|
|
|
|
if (child_index >= i) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t child1_value = NumberToUint32(numbers->get(child_index));
|
|
|
|
|
uint32_t child2_value = NumberToUint32(numbers->get(child_index + 1));
|
|
|
|
|
uint32_t parent_value = NumberToUint32(numbers->get(parent_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (child_index + 1 >= i || child1_value > child2_value) {
|
|
|
|
|
if (parent_value > child1_value) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
parent_index = child_index;
|
|
|
|
|
} else {
|
|
|
|
|
if (parent_value > child2_value) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index + 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
parent_index = child_index + 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
// Sort this array and the numbers as pairs wrt. the (distinct) numbers.
|
|
|
|
|
void FixedArray::SortPairs(FixedArray* numbers, uint32_t len) {
|
|
|
|
|
ASSERT(this->length() == numbers->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
// For small arrays, simply use insertion sort.
|
|
|
|
|
if (len <= 10) {
|
2009-04-16 11:30:55 +00:00
|
|
|
InsertionSortPairs(this, numbers, len);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// Check the range of indices.
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t min_index = NumberToUint32(numbers->get(0));
|
|
|
|
|
uint32_t max_index = min_index;
|
|
|
|
|
uint32_t i;
|
2008-07-03 15:10:15 +00:00
|
|
|
for (i = 1; i < len; i++) {
|
2009-04-16 11:30:55 +00:00
|
|
|
if (NumberToUint32(numbers->get(i)) < min_index) {
|
|
|
|
|
min_index = NumberToUint32(numbers->get(i));
|
|
|
|
|
} else if (NumberToUint32(numbers->get(i)) > max_index) {
|
|
|
|
|
max_index = NumberToUint32(numbers->get(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (max_index - min_index + 1 == len) {
|
|
|
|
|
// Indices form a contiguous range, unless there are duplicates.
|
2009-04-16 11:30:55 +00:00
|
|
|
// Do an in-place linear time sort assuming distinct numbers, but
|
2008-07-03 15:10:15 +00:00
|
|
|
// avoid hanging in case they are not.
|
|
|
|
|
for (i = 0; i < len; i++) {
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t p;
|
|
|
|
|
uint32_t j = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
// While the current element at i is not at its correct position p,
|
|
|
|
|
// swap the elements at these two positions.
|
2009-04-16 11:30:55 +00:00
|
|
|
while ((p = NumberToUint32(numbers->get(i)) - min_index) != i &&
|
2008-07-03 15:10:15 +00:00
|
|
|
j++ < len) {
|
2009-04-16 11:30:55 +00:00
|
|
|
SwapPairs(numbers, i, p);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2009-04-16 11:30:55 +00:00
|
|
|
HeapSortPairs(this, numbers, len);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Fill in the names of local properties into the supplied storage. The main
|
|
|
|
|
// purpose of this function is to provide reflection information for the object
|
|
|
|
|
// mirrors.
|
2009-01-22 13:20:31 +00:00
|
|
|
void JSObject::GetLocalPropertyNames(FixedArray* storage, int index) {
|
2009-07-10 19:25:18 +00:00
|
|
|
ASSERT(storage->length() >= (NumberOfLocalProperties(NONE) - index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->IsProperty(i)) storage->set(index++, descs->GetKey(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-01-22 13:20:31 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
property_dictionary()->CopyKeysTo(storage);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfLocalElements(PropertyAttributes filter) {
|
|
|
|
|
return GetLocalElementKeys(NULL, filter);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfEnumElements() {
|
2009-12-01 10:25:29 +00:00
|
|
|
// Fast case for objects with no elements.
|
|
|
|
|
if (!IsJSValue() && HasFastElements()) {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>(
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if (length == 0) return 0;
|
|
|
|
|
}
|
|
|
|
|
// Compute the number of enumerable elements.
|
2008-07-03 15:10:15 +00:00
|
|
|
return NumberOfLocalElements(static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::GetLocalElementKeys(FixedArray* storage,
|
|
|
|
|
PropertyAttributes filter) {
|
|
|
|
|
int counter = 0;
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
int length = IsJSArray() ?
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value() :
|
|
|
|
|
FixedArray::cast(elements())->length();
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
if (!FixedArray::cast(elements())->get(i)->IsTheHole()) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(i));
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case PIXEL_ELEMENTS: {
|
|
|
|
|
int length = PixelArray::cast(elements())->length();
|
|
|
|
|
while (counter < length) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(counter));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
int length = ExternalArray::cast(elements())->length();
|
|
|
|
|
while (counter < length) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(counter));
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (storage != NULL) {
|
|
|
|
|
element_dictionary()->CopyKeysTo(storage, filter);
|
|
|
|
|
}
|
|
|
|
|
counter = element_dictionary()->NumberOfElementsFilterAttributes(filter);
|
|
|
|
|
break;
|
2008-08-27 10:11:39 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (this->IsJSValue()) {
|
|
|
|
|
Object* val = JSValue::cast(this)->value();
|
|
|
|
|
if (val->IsString()) {
|
|
|
|
|
String* str = String::cast(val);
|
|
|
|
|
if (storage) {
|
2009-03-17 09:33:06 +00:00
|
|
|
for (int i = 0; i < str->length(); i++) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter + i, Smi::FromInt(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-03-17 09:33:06 +00:00
|
|
|
counter += str->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() == counter);
|
|
|
|
|
return counter;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::GetEnumElementKeys(FixedArray* storage) {
|
|
|
|
|
return GetLocalElementKeys(storage,
|
|
|
|
|
static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
bool NumberDictionaryShape::IsMatch(uint32_t key, Object* other) {
|
|
|
|
|
ASSERT(other->IsNumber());
|
|
|
|
|
return key == static_cast<uint32_t>(other->Number());
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t NumberDictionaryShape::Hash(uint32_t key) {
|
|
|
|
|
return ComputeIntegerHash(key);
|
|
|
|
|
}
|
2009-07-01 15:38:25 +00:00
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t NumberDictionaryShape::HashForObject(uint32_t key, Object* other) {
|
|
|
|
|
ASSERT(other->IsNumber());
|
|
|
|
|
return ComputeIntegerHash(static_cast<uint32_t>(other->Number()));
|
|
|
|
|
}
|
2009-07-01 15:38:25 +00:00
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* NumberDictionaryShape::AsObject(uint32_t key) {
|
|
|
|
|
return Heap::NumberFromUint32(key);
|
|
|
|
|
}
|
2009-07-01 15:38:25 +00:00
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
bool StringDictionaryShape::IsMatch(String* key, Object* other) {
|
|
|
|
|
// We know that all entries in a hash table had their hash keys created.
|
|
|
|
|
// Use that knowledge to have fast failure.
|
|
|
|
|
if (key->Hash() != String::cast(other)->Hash()) return false;
|
|
|
|
|
return key->Equals(String::cast(other));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint32_t StringDictionaryShape::Hash(String* key) {
|
|
|
|
|
return key->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint32_t StringDictionaryShape::HashForObject(String* key, Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* StringDictionaryShape::AsObject(String* key) {
|
|
|
|
|
return key;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// StringKey simply carries a string object as key.
|
2008-09-05 16:27:56 +00:00
|
|
|
class StringKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2009-03-19 18:50:00 +00:00
|
|
|
explicit StringKey(String* string) :
|
|
|
|
|
string_(string),
|
2009-07-02 06:50:43 +00:00
|
|
|
hash_(HashForObject(string)) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
2009-03-19 18:50:00 +00:00
|
|
|
// We know that all entries in a hash table had their hash keys created.
|
|
|
|
|
// Use that knowledge to have fast failure.
|
2009-07-02 06:50:43 +00:00
|
|
|
if (hash_ != HashForObject(string)) {
|
2009-03-19 18:50:00 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
2008-10-17 12:36:23 +00:00
|
|
|
return string_->Equals(String::cast(string));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t Hash() { return hash_; }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) { return String::cast(other)->Hash(); }
|
2009-07-01 16:49:54 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() { return string_; }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
String* string_;
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t hash_;
|
2008-07-03 15:10:15 +00:00
|
|
|
};
|
|
|
|
|
|
2009-02-24 13:11:53 +00:00
|
|
|
|
|
|
|
|
// StringSharedKeys are used as keys in the eval cache.
|
|
|
|
|
class StringSharedKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
StringSharedKey(String* source, SharedFunctionInfo* shared)
|
|
|
|
|
: source_(source), shared_(shared) { }
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* other) {
|
|
|
|
|
if (!other->IsFixedArray()) return false;
|
|
|
|
|
FixedArray* pair = FixedArray::cast(other);
|
|
|
|
|
SharedFunctionInfo* shared = SharedFunctionInfo::cast(pair->get(0));
|
|
|
|
|
if (shared != shared_) return false;
|
|
|
|
|
String* source = String::cast(pair->get(1));
|
|
|
|
|
return source->Equals(source_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t StringSharedHashHelper(String* source,
|
|
|
|
|
SharedFunctionInfo* shared) {
|
|
|
|
|
uint32_t hash = source->Hash();
|
|
|
|
|
if (shared->HasSourceCode()) {
|
|
|
|
|
// Instead of using the SharedFunctionInfo pointer in the hash
|
|
|
|
|
// code computation, we use a combination of the hash of the
|
|
|
|
|
// script source code and the start and end positions. We do
|
|
|
|
|
// this to ensure that the cache entries can survive garbage
|
|
|
|
|
// collection.
|
|
|
|
|
Script* script = Script::cast(shared->script());
|
|
|
|
|
hash ^= String::cast(script->source())->Hash();
|
|
|
|
|
hash += shared->start_position();
|
|
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t Hash() {
|
|
|
|
|
return StringSharedHashHelper(source_, shared_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* obj) {
|
2009-02-24 13:11:53 +00:00
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
SharedFunctionInfo* shared = SharedFunctionInfo::cast(pair->get(0));
|
|
|
|
|
String* source = String::cast(pair->get(1));
|
|
|
|
|
return StringSharedHashHelper(source, shared);
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() {
|
2009-02-24 13:11:53 +00:00
|
|
|
Object* obj = Heap::AllocateFixedArray(2);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
pair->set(0, shared_);
|
|
|
|
|
pair->set(1, source_);
|
|
|
|
|
return pair;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
String* source_;
|
|
|
|
|
SharedFunctionInfo* shared_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-10-24 08:40:02 +00:00
|
|
|
// RegExpKey carries the source and flags of a regular expression as key.
|
|
|
|
|
class RegExpKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
RegExpKey(String* string, JSRegExp::Flags flags)
|
2008-11-26 08:03:55 +00:00
|
|
|
: string_(string),
|
|
|
|
|
flags_(Smi::FromInt(flags.value())) { }
|
2008-10-24 08:40:02 +00:00
|
|
|
|
2009-10-12 12:42:20 +00:00
|
|
|
// Rather than storing the key in the hash table, a pointer to the
|
|
|
|
|
// stored value is stored where the key should be. IsMatch then
|
|
|
|
|
// compares the search key to the found object, rather than comparing
|
|
|
|
|
// a key to a key.
|
2008-10-24 08:40:02 +00:00
|
|
|
bool IsMatch(Object* obj) {
|
|
|
|
|
FixedArray* val = FixedArray::cast(obj);
|
|
|
|
|
return string_->Equals(String::cast(val->get(JSRegExp::kSourceIndex)))
|
|
|
|
|
&& (flags_ == val->get(JSRegExp::kFlagsIndex));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return RegExpHash(string_, flags_); }
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() {
|
2008-10-24 08:40:02 +00:00
|
|
|
// Plain hash maps, which is where regexp keys are used, don't
|
|
|
|
|
// use this function.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* obj) {
|
2008-10-24 08:40:02 +00:00
|
|
|
FixedArray* val = FixedArray::cast(obj);
|
|
|
|
|
return RegExpHash(String::cast(val->get(JSRegExp::kSourceIndex)),
|
|
|
|
|
Smi::cast(val->get(JSRegExp::kFlagsIndex)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t RegExpHash(String* string, Smi* flags) {
|
|
|
|
|
return string->Hash() + flags->value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string_;
|
|
|
|
|
Smi* flags_;
|
|
|
|
|
};
|
|
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
// Utf8SymbolKey carries a vector of chars as key.
|
|
|
|
|
class Utf8SymbolKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2008-09-05 16:27:56 +00:00
|
|
|
explicit Utf8SymbolKey(Vector<const char> string)
|
2009-11-24 14:10:06 +00:00
|
|
|
: string_(string), hash_field_(0) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->IsEqualTo(string_);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() {
|
2009-11-24 14:10:06 +00:00
|
|
|
if (hash_field_ != 0) return hash_field_ >> String::kHashShift;
|
2008-07-03 15:10:15 +00:00
|
|
|
unibrow::Utf8InputBuffer<> buffer(string_.start(),
|
|
|
|
|
static_cast<unsigned>(string_.length()));
|
|
|
|
|
chars_ = buffer.Length();
|
2009-11-24 14:10:06 +00:00
|
|
|
hash_field_ = String::ComputeHashField(&buffer, chars_);
|
|
|
|
|
uint32_t result = hash_field_ >> String::kHashShift;
|
2009-03-19 18:50:00 +00:00
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() {
|
2009-11-24 14:10:06 +00:00
|
|
|
if (hash_field_ == 0) Hash();
|
|
|
|
|
return Heap::AllocateSymbol(string_, chars_, hash_field_);
|
2009-07-01 16:49:54 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Vector<const char> string_;
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t hash_field_;
|
2008-07-03 15:10:15 +00:00
|
|
|
int chars_; // Caches the number of characters when computing the hash code.
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
// SymbolKey carries a string/symbol object as key.
|
|
|
|
|
class SymbolKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2008-09-05 16:27:56 +00:00
|
|
|
explicit SymbolKey(String* string) : string_(string) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->Equals(string_);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return string_->Hash(); }
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* AsObject() {
|
2008-09-10 11:35:05 +00:00
|
|
|
// If the string is a cons string, attempt to flatten it so that
|
|
|
|
|
// symbols will most often be flat strings.
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(string_).IsCons()) {
|
2008-09-10 11:35:05 +00:00
|
|
|
ConsString* cons_string = ConsString::cast(string_);
|
2009-03-17 09:33:06 +00:00
|
|
|
cons_string->TryFlatten();
|
2009-04-14 12:00:56 +00:00
|
|
|
if (cons_string->second()->length() == 0) {
|
2008-11-03 10:16:05 +00:00
|
|
|
string_ = cons_string->first();
|
2008-09-10 11:35:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Transform string to symbol if possible.
|
|
|
|
|
Map* map = Heap::SymbolMapForString(string_);
|
|
|
|
|
if (map != NULL) {
|
|
|
|
|
string_->set_map(map);
|
2009-04-14 12:00:56 +00:00
|
|
|
ASSERT(string_->IsSymbol());
|
2008-07-03 15:10:15 +00:00
|
|
|
return string_;
|
|
|
|
|
}
|
|
|
|
|
// Otherwise allocate a new symbol.
|
|
|
|
|
StringInputBuffer buffer(string_);
|
2008-11-17 15:13:40 +00:00
|
|
|
return Heap::AllocateInternalSymbol(&buffer,
|
|
|
|
|
string_->length(),
|
2009-11-24 14:10:06 +00:00
|
|
|
string_->hash_field());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t StringHash(Object* obj) {
|
|
|
|
|
return String::cast(obj)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void HashTable<Shape, Key>::IteratePrefix(ObjectVisitor* v) {
|
2008-07-03 15:10:15 +00:00
|
|
|
IteratePointers(v, 0, kElementsStartOffset);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void HashTable<Shape, Key>::IterateElements(ObjectVisitor* v) {
|
2008-07-03 15:10:15 +00:00
|
|
|
IteratePointers(v,
|
|
|
|
|
kElementsStartOffset,
|
|
|
|
|
kHeaderSize + length() * kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-01-07 13:17:18 +00:00
|
|
|
Object* HashTable<Shape, Key>::Allocate(int at_least_space_for) {
|
2008-08-06 10:02:49 +00:00
|
|
|
int capacity = RoundUpToPowerOf2(at_least_space_for);
|
2010-01-07 13:17:18 +00:00
|
|
|
if (capacity < 4) {
|
|
|
|
|
capacity = 4; // Guarantee min capacity.
|
|
|
|
|
} else if (capacity > HashTable::kMaxCapacity) {
|
|
|
|
|
return Failure::OutOfMemoryException();
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* obj = Heap::AllocateHashTable(EntryToIndex(capacity));
|
|
|
|
|
if (!obj->IsFailure()) {
|
|
|
|
|
HashTable::cast(obj)->SetNumberOfElements(0);
|
2010-01-12 23:42:36 +00:00
|
|
|
HashTable::cast(obj)->SetNumberOfDeletedElements(0);
|
2008-07-03 15:10:15 +00:00
|
|
|
HashTable::cast(obj)->SetCapacity(capacity);
|
|
|
|
|
}
|
|
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-01-06 11:19:28 +00:00
|
|
|
// Find entry for key otherwise return kNotFound.
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
int HashTable<Shape, Key>::FindEntry(Key key) {
|
2009-07-17 04:57:17 +00:00
|
|
|
uint32_t capacity = Capacity();
|
2010-01-06 11:19:28 +00:00
|
|
|
uint32_t entry = FirstProbe(Shape::Hash(key), capacity);
|
|
|
|
|
uint32_t count = 1;
|
|
|
|
|
// EnsureCapacity will guarantee the hash table is never full.
|
|
|
|
|
while (true) {
|
|
|
|
|
Object* element = KeyAt(entry);
|
|
|
|
|
if (element->IsUndefined()) break; // Empty entry.
|
|
|
|
|
if (!element->IsNull() && Shape::IsMatch(key, element)) return entry;
|
|
|
|
|
entry = NextProbe(entry, count++, capacity);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-06-30 10:05:36 +00:00
|
|
|
return kNotFound;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* HashTable<Shape, Key>::EnsureCapacity(int n, Key key) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int capacity = Capacity();
|
|
|
|
|
int nof = NumberOfElements() + n;
|
2010-01-12 23:42:36 +00:00
|
|
|
int nod = NumberOfDeletedElements();
|
|
|
|
|
// Return if:
|
|
|
|
|
// 50% is still free after adding n elements and
|
|
|
|
|
// at most 50% of the free elements are deleted elements.
|
|
|
|
|
if ((nof + (nof >> 1) <= capacity) &&
|
|
|
|
|
(nod <= (capacity - nof) >> 1)) return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
Object* obj = Allocate(nof * 2);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2010-01-29 11:46:55 +00:00
|
|
|
|
|
|
|
|
AssertNoAllocation no_gc;
|
2008-09-25 07:46:07 +00:00
|
|
|
HashTable* table = HashTable::cast(obj);
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode mode = table->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Copy prefix to new array.
|
2009-07-02 06:50:43 +00:00
|
|
|
for (int i = kPrefixStartIndex;
|
|
|
|
|
i < kPrefixStartIndex + Shape::kPrefixSize;
|
|
|
|
|
i++) {
|
2008-09-25 07:46:07 +00:00
|
|
|
table->set(i, get(i), mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Rehash the elements.
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
uint32_t from_index = EntryToIndex(i);
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = get(from_index);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
uint32_t hash = Shape::HashForObject(key, k);
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t insertion_index =
|
2009-07-02 06:50:43 +00:00
|
|
|
EntryToIndex(table->FindInsertionEntry(hash));
|
|
|
|
|
for (int j = 0; j < Shape::kEntrySize; j++) {
|
2008-09-25 07:46:07 +00:00
|
|
|
table->set(insertion_index + j, get(from_index + j), mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-09-25 07:46:07 +00:00
|
|
|
table->SetNumberOfElements(NumberOfElements());
|
2010-01-12 23:42:36 +00:00
|
|
|
table->SetNumberOfDeletedElements(0);
|
2008-09-25 07:46:07 +00:00
|
|
|
return table;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-01-06 11:19:28 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
uint32_t HashTable<Shape, Key>::FindInsertionEntry(uint32_t hash) {
|
2009-07-17 04:57:17 +00:00
|
|
|
uint32_t capacity = Capacity();
|
2010-01-06 11:19:28 +00:00
|
|
|
uint32_t entry = FirstProbe(hash, capacity);
|
|
|
|
|
uint32_t count = 1;
|
|
|
|
|
// EnsureCapacity will guarantee the hash table is never full.
|
|
|
|
|
while (true) {
|
|
|
|
|
Object* element = KeyAt(entry);
|
|
|
|
|
if (element->IsUndefined() || element->IsNull()) break;
|
|
|
|
|
entry = NextProbe(entry, count++, capacity);
|
2009-07-17 04:57:17 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return entry;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
// Force instantiation of template instances class.
|
|
|
|
|
// Please note this list is compiler dependent.
|
|
|
|
|
|
|
|
|
|
template class HashTable<SymbolTableShape, HashTableKey*>;
|
|
|
|
|
|
|
|
|
|
template class HashTable<CompilationCacheShape, HashTableKey*>;
|
|
|
|
|
|
|
|
|
|
template class HashTable<MapCacheShape, HashTableKey*>;
|
|
|
|
|
|
|
|
|
|
template class Dictionary<StringDictionaryShape, String*>;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template class Dictionary<NumberDictionaryShape, uint32_t>;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::Allocate(
|
|
|
|
|
int);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::Allocate(
|
|
|
|
|
int);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::AtPut(
|
|
|
|
|
uint32_t, Object*);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::SlowReverseLookup(
|
|
|
|
|
Object*);
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::SlowReverseLookup(
|
|
|
|
|
Object*);
|
|
|
|
|
|
|
|
|
|
template void Dictionary<NumberDictionaryShape, uint32_t>::CopyKeysTo(
|
|
|
|
|
FixedArray*, PropertyAttributes);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::DeleteProperty(
|
|
|
|
|
int, JSObject::DeleteMode);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::DeleteProperty(
|
|
|
|
|
int, JSObject::DeleteMode);
|
|
|
|
|
|
|
|
|
|
template void Dictionary<StringDictionaryShape, String*>::CopyKeysTo(
|
|
|
|
|
FixedArray*);
|
|
|
|
|
|
|
|
|
|
template int
|
|
|
|
|
Dictionary<StringDictionaryShape, String*>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::Add(
|
|
|
|
|
String*, Object*, PropertyDetails);
|
|
|
|
|
|
|
|
|
|
template Object*
|
|
|
|
|
Dictionary<StringDictionaryShape, String*>::GenerateNewEnumerationIndices();
|
|
|
|
|
|
|
|
|
|
template int
|
|
|
|
|
Dictionary<NumberDictionaryShape, uint32_t>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::Add(
|
|
|
|
|
uint32_t, Object*, PropertyDetails);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::EnsureCapacity(
|
|
|
|
|
int, uint32_t);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::EnsureCapacity(
|
|
|
|
|
int, String*);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::AddEntry(
|
|
|
|
|
uint32_t, Object*, PropertyDetails, uint32_t);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::AddEntry(
|
|
|
|
|
String*, Object*, PropertyDetails, uint32_t);
|
|
|
|
|
|
|
|
|
|
template
|
|
|
|
|
int Dictionary<NumberDictionaryShape, uint32_t>::NumberOfEnumElements();
|
|
|
|
|
|
|
|
|
|
template
|
|
|
|
|
int Dictionary<StringDictionaryShape, String*>::NumberOfEnumElements();
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2010-01-06 11:19:28 +00:00
|
|
|
template
|
|
|
|
|
int HashTable<NumberDictionaryShape, uint32_t>::FindEntry(uint32_t);
|
|
|
|
|
|
|
|
|
|
|
2009-04-27 11:16:59 +00:00
|
|
|
// Collates undefined and unexisting elements below limit from position
|
|
|
|
|
// zero of the elements. The object stays in Dictionary mode.
|
|
|
|
|
Object* JSObject::PrepareSlowElementsForSort(uint32_t limit) {
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(HasDictionaryElements());
|
2009-04-27 11:16:59 +00:00
|
|
|
// Must stay in dictionary mode, either because of requires_slow_elements,
|
|
|
|
|
// or because we are not going to sort (and therefore compact) all of the
|
|
|
|
|
// elements.
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dict = element_dictionary();
|
2009-04-27 11:16:59 +00:00
|
|
|
HeapNumber* result_double = NULL;
|
|
|
|
|
if (limit > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Allocate space for result before we start mutating the object.
|
|
|
|
|
Object* new_double = Heap::AllocateHeapNumber(0.0);
|
|
|
|
|
if (new_double->IsFailure()) return new_double;
|
|
|
|
|
result_double = HeapNumber::cast(new_double);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int capacity = dict->Capacity();
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* obj = NumberDictionary::Allocate(dict->Capacity());
|
2009-04-27 11:16:59 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* new_dict = NumberDictionary::cast(obj);
|
2009-04-27 11:16:59 +00:00
|
|
|
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
uint32_t pos = 0;
|
|
|
|
|
uint32_t undefs = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = dict->KeyAt(i);
|
|
|
|
|
if (dict->IsKey(k)) {
|
|
|
|
|
ASSERT(k->IsNumber());
|
|
|
|
|
ASSERT(!k->IsSmi() || Smi::cast(k)->value() >= 0);
|
|
|
|
|
ASSERT(!k->IsHeapNumber() || HeapNumber::cast(k)->value() >= 0);
|
|
|
|
|
ASSERT(!k->IsHeapNumber() || HeapNumber::cast(k)->value() <= kMaxUInt32);
|
|
|
|
|
Object* value = dict->ValueAt(i);
|
2009-06-10 11:42:22 +00:00
|
|
|
PropertyDetails details = dict->DetailsAt(i);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Bail out and do the sorting of undefineds and array holes in JS.
|
|
|
|
|
return Smi::FromInt(-1);
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
uint32_t key = NumberToUint32(k);
|
|
|
|
|
if (key < limit) {
|
|
|
|
|
if (value->IsUndefined()) {
|
|
|
|
|
undefs++;
|
|
|
|
|
} else {
|
2009-06-10 11:42:22 +00:00
|
|
|
new_dict->AddNumberEntry(pos, value, details);
|
2009-04-27 11:16:59 +00:00
|
|
|
pos++;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2009-06-10 11:42:22 +00:00
|
|
|
new_dict->AddNumberEntry(key, value, details);
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t result = pos;
|
2009-06-10 11:42:22 +00:00
|
|
|
PropertyDetails no_details = PropertyDetails(NONE, NORMAL);
|
2009-04-27 11:16:59 +00:00
|
|
|
while (undefs > 0) {
|
|
|
|
|
new_dict->AddNumberEntry(pos, Heap::undefined_value(), no_details);
|
|
|
|
|
pos++;
|
|
|
|
|
undefs--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
set_elements(new_dict);
|
|
|
|
|
|
|
|
|
|
if (result <= static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
return Smi::FromInt(static_cast<int>(result));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ASSERT_NE(NULL, result_double);
|
|
|
|
|
result_double->set_value(static_cast<double>(result));
|
|
|
|
|
return result_double;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Collects all defined (non-hole) and non-undefined (array) elements at
|
|
|
|
|
// the start of the elements array.
|
|
|
|
|
// If the object is in dictionary mode, it is converted to fast elements
|
|
|
|
|
// mode.
|
|
|
|
|
Object* JSObject::PrepareElementsForSort(uint32_t limit) {
|
2009-10-20 15:26:17 +00:00
|
|
|
ASSERT(!HasPixelElements() && !HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
|
|
|
|
if (HasDictionaryElements()) {
|
2009-04-27 11:16:59 +00:00
|
|
|
// Convert to fast elements containing only the existing properties.
|
|
|
|
|
// Ordering is irrelevant, since we are going to sort anyway.
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dict = element_dictionary();
|
2009-04-27 11:16:59 +00:00
|
|
|
if (IsJSArray() || dict->requires_slow_elements() ||
|
|
|
|
|
dict->max_number_key() >= limit) {
|
|
|
|
|
return PrepareSlowElementsForSort(limit);
|
|
|
|
|
}
|
|
|
|
|
// Convert to fast elements.
|
|
|
|
|
|
|
|
|
|
PretenureFlag tenure = Heap::InNewSpace(this) ? NOT_TENURED: TENURED;
|
|
|
|
|
Object* new_array =
|
|
|
|
|
Heap::AllocateFixedArray(dict->NumberOfElements(), tenure);
|
|
|
|
|
if (new_array->IsFailure()) {
|
|
|
|
|
return new_array;
|
|
|
|
|
}
|
|
|
|
|
FixedArray* fast_elements = FixedArray::cast(new_array);
|
|
|
|
|
dict->CopyValuesTo(fast_elements);
|
|
|
|
|
set_elements(fast_elements);
|
|
|
|
|
}
|
|
|
|
|
ASSERT(HasFastElements());
|
|
|
|
|
|
|
|
|
|
// Collect holes at the end, undefined before that and the rest at the
|
|
|
|
|
// start, and return the number of non-hole, non-undefined values.
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
2009-04-27 11:16:59 +00:00
|
|
|
uint32_t elements_length = static_cast<uint32_t>(elements->length());
|
|
|
|
|
if (limit > elements_length) {
|
|
|
|
|
limit = elements_length ;
|
|
|
|
|
}
|
|
|
|
|
if (limit == 0) {
|
|
|
|
|
return Smi::FromInt(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
HeapNumber* result_double = NULL;
|
|
|
|
|
if (limit > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Pessimistically allocate space for return value before
|
|
|
|
|
// we start mutating the array.
|
|
|
|
|
Object* new_double = Heap::AllocateHeapNumber(0.0);
|
|
|
|
|
if (new_double->IsFailure()) return new_double;
|
|
|
|
|
result_double = HeapNumber::cast(new_double);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
// Split elements into defined, undefined and the_hole, in that order.
|
|
|
|
|
// Only count locations for undefined and the hole, and fill them afterwards.
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode write_barrier = elements->GetWriteBarrierMode(no_alloc);
|
2009-04-27 11:16:59 +00:00
|
|
|
unsigned int undefs = limit;
|
|
|
|
|
unsigned int holes = limit;
|
|
|
|
|
// Assume most arrays contain no holes and undefined values, so minimize the
|
|
|
|
|
// number of stores of non-undefined, non-the-hole values.
|
|
|
|
|
for (unsigned int i = 0; i < undefs; i++) {
|
|
|
|
|
Object* current = elements->get(i);
|
|
|
|
|
if (current->IsTheHole()) {
|
|
|
|
|
holes--;
|
|
|
|
|
undefs--;
|
|
|
|
|
} else if (current->IsUndefined()) {
|
|
|
|
|
undefs--;
|
|
|
|
|
} else {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// Position i needs to be filled.
|
|
|
|
|
while (undefs > i) {
|
|
|
|
|
current = elements->get(undefs);
|
|
|
|
|
if (current->IsTheHole()) {
|
|
|
|
|
holes--;
|
|
|
|
|
undefs--;
|
|
|
|
|
} else if (current->IsUndefined()) {
|
|
|
|
|
undefs--;
|
|
|
|
|
} else {
|
|
|
|
|
elements->set(i, current, write_barrier);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
uint32_t result = undefs;
|
|
|
|
|
while (undefs < holes) {
|
|
|
|
|
elements->set_undefined(undefs);
|
|
|
|
|
undefs++;
|
|
|
|
|
}
|
|
|
|
|
while (holes < limit) {
|
|
|
|
|
elements->set_the_hole(holes);
|
|
|
|
|
holes++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (result <= static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
return Smi::FromInt(static_cast<int>(result));
|
|
|
|
|
}
|
|
|
|
|
ASSERT_NE(NULL, result_double);
|
|
|
|
|
result_double->set_value(static_cast<double>(result));
|
|
|
|
|
return result_double;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
Object* PixelArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
uint8_t clamped_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
2009-07-28 18:11:12 +00:00
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
if (int_value < 0) {
|
|
|
|
|
clamped_value = 0;
|
|
|
|
|
} else if (int_value > 255) {
|
|
|
|
|
clamped_value = 255;
|
|
|
|
|
} else {
|
|
|
|
|
clamped_value = static_cast<uint8_t>(int_value);
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
} else if (value->IsHeapNumber()) {
|
2009-07-28 12:50:58 +00:00
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-07-28 18:11:12 +00:00
|
|
|
if (!(double_value > 0)) {
|
|
|
|
|
// NaN and less than zero clamp to zero.
|
|
|
|
|
clamped_value = 0;
|
|
|
|
|
} else if (double_value > 255) {
|
|
|
|
|
// Greater than 255 clamp to 255.
|
|
|
|
|
clamped_value = 255;
|
|
|
|
|
} else {
|
|
|
|
|
// Other doubles are rounded to the nearest integer.
|
|
|
|
|
clamped_value = static_cast<uint8_t>(double_value + 0.5);
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-28 12:50:58 +00:00
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
set(index, clamped_value);
|
|
|
|
|
}
|
|
|
|
|
return Smi::FromInt(clamped_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-10-20 15:26:17 +00:00
|
|
|
template<typename ExternalArrayClass, typename ValueType>
|
|
|
|
|
static Object* ExternalArrayIntSetter(ExternalArrayClass* receiver,
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Object* value) {
|
|
|
|
|
ValueType cast_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(receiver->length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<ValueType>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-10-22 14:49:00 +00:00
|
|
|
cast_value = static_cast<ValueType>(DoubleToInt32(double_value));
|
2009-10-20 15:26:17 +00:00
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
receiver->set(index, cast_value);
|
|
|
|
|
}
|
|
|
|
|
return Heap::NumberFromInt32(cast_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalByteArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
return ExternalArrayIntSetter<ExternalByteArray, int8_t>
|
|
|
|
|
(this, index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalUnsignedByteArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
return ExternalArrayIntSetter<ExternalUnsignedByteArray, uint8_t>
|
|
|
|
|
(this, index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalShortArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
return ExternalArrayIntSetter<ExternalShortArray, int16_t>
|
|
|
|
|
(this, index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalUnsignedShortArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
return ExternalArrayIntSetter<ExternalUnsignedShortArray, uint16_t>
|
|
|
|
|
(this, index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalIntArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
return ExternalArrayIntSetter<ExternalIntArray, int32_t>
|
|
|
|
|
(this, index, value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalUnsignedIntArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
uint32_t cast_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<uint32_t>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-10-22 14:49:00 +00:00
|
|
|
cast_value = static_cast<uint32_t>(DoubleToUint32(double_value));
|
2009-10-20 15:26:17 +00:00
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
set(index, cast_value);
|
|
|
|
|
}
|
|
|
|
|
return Heap::NumberFromUint32(cast_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* ExternalFloatArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
float cast_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<float>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<float>(double_value);
|
|
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
set(index, cast_value);
|
|
|
|
|
}
|
|
|
|
|
return Heap::AllocateHeapNumber(cast_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-01 11:44:37 +00:00
|
|
|
Object* GlobalObject::GetPropertyCell(LookupResult* result) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(result->GetDictionaryEntry());
|
|
|
|
|
ASSERT(value->IsJSGlobalPropertyCell());
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-10 09:40:47 +00:00
|
|
|
Object* GlobalObject::EnsurePropertyCell(String* name) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry == StringDictionary::kNotFound) {
|
|
|
|
|
Object* cell = Heap::AllocateJSGlobalPropertyCell(Heap::the_hole_value());
|
|
|
|
|
if (cell->IsFailure()) return cell;
|
|
|
|
|
PropertyDetails details(NONE, NORMAL);
|
|
|
|
|
details = details.AsDeleted();
|
|
|
|
|
Object* dictionary = property_dictionary()->Add(name, cell, details);
|
|
|
|
|
if (dictionary->IsFailure()) return dictionary;
|
|
|
|
|
set_properties(StringDictionary::cast(dictionary));
|
|
|
|
|
return cell;
|
|
|
|
|
} else {
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(entry);
|
|
|
|
|
ASSERT(value->IsJSGlobalPropertyCell());
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* SymbolTable::LookupString(String* string, Object** s) {
|
2008-09-05 16:27:56 +00:00
|
|
|
SymbolKey key(string);
|
2008-07-03 15:10:15 +00:00
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
// This class is used for looking up two character strings in the symbol table.
|
|
|
|
|
// If we don't have a hit we don't want to waste much time so we unroll the
|
|
|
|
|
// string hash calculation loop here for speed. Doesn't work if the two
|
|
|
|
|
// characters form a decimal integer, since such strings have a different hash
|
|
|
|
|
// algorithm.
|
|
|
|
|
class TwoCharHashTableKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
TwoCharHashTableKey(uint32_t c1, uint32_t c2)
|
|
|
|
|
: c1_(c1), c2_(c2) {
|
|
|
|
|
// Char 1.
|
|
|
|
|
uint32_t hash = c1 + (c1 << 10);
|
|
|
|
|
hash ^= hash >> 6;
|
|
|
|
|
// Char 2.
|
|
|
|
|
hash += c2;
|
|
|
|
|
hash += hash << 10;
|
|
|
|
|
hash ^= hash >> 6;
|
|
|
|
|
// GetHash.
|
|
|
|
|
hash += hash << 3;
|
|
|
|
|
hash ^= hash >> 11;
|
|
|
|
|
hash += hash << 15;
|
|
|
|
|
if (hash == 0) hash = 27;
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
StringHasher hasher(2);
|
|
|
|
|
hasher.AddCharacter(c1);
|
|
|
|
|
hasher.AddCharacter(c2);
|
|
|
|
|
// If this assert fails then we failed to reproduce the two-character
|
|
|
|
|
// version of the string hashing algorithm above. One reason could be
|
|
|
|
|
// that we were passed two digits as characters, since the hash
|
|
|
|
|
// algorithm is different in that case.
|
|
|
|
|
ASSERT_EQ(static_cast<int>(hasher.GetHash()), static_cast<int>(hash));
|
|
|
|
|
#endif
|
|
|
|
|
hash_ = hash;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* o) {
|
|
|
|
|
if (!o->IsString()) return false;
|
|
|
|
|
String* other = String::cast(o);
|
|
|
|
|
if (other->length() != 2) return false;
|
|
|
|
|
if (other->Get(0) != c1_) return false;
|
|
|
|
|
return other->Get(1) == c2_;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return hash_; }
|
|
|
|
|
uint32_t HashForObject(Object* key) {
|
|
|
|
|
if (!key->IsString()) return 0;
|
|
|
|
|
return String::cast(key)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* AsObject() {
|
|
|
|
|
// The TwoCharHashTableKey is only used for looking in the symbol
|
|
|
|
|
// table, not for adding to it.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
private:
|
|
|
|
|
uint32_t c1_;
|
|
|
|
|
uint32_t c2_;
|
|
|
|
|
uint32_t hash_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
bool SymbolTable::LookupSymbolIfExists(String* string, String** symbol) {
|
|
|
|
|
SymbolKey key(string);
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) {
|
2008-10-07 10:10:03 +00:00
|
|
|
return false;
|
|
|
|
|
} else {
|
|
|
|
|
String* result = String::cast(KeyAt(entry));
|
2008-11-03 10:16:05 +00:00
|
|
|
ASSERT(StringShape(result).IsSymbol());
|
2008-10-07 10:10:03 +00:00
|
|
|
*symbol = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
bool SymbolTable::LookupTwoCharsSymbolIfExists(uint32_t c1,
|
|
|
|
|
uint32_t c2,
|
|
|
|
|
String** symbol) {
|
|
|
|
|
TwoCharHashTableKey key(c1, c2);
|
|
|
|
|
int entry = FindEntry(&key);
|
|
|
|
|
if (entry == kNotFound) {
|
|
|
|
|
return false;
|
|
|
|
|
} else {
|
|
|
|
|
String* result = String::cast(KeyAt(entry));
|
|
|
|
|
ASSERT(StringShape(result).IsSymbol());
|
|
|
|
|
*symbol = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* SymbolTable::LookupSymbol(Vector<const char> str, Object** s) {
|
2008-09-05 16:27:56 +00:00
|
|
|
Utf8SymbolKey key(str);
|
2008-07-03 15:10:15 +00:00
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
Object* SymbolTable::LookupKey(HashTableKey* key, Object** s) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
|
|
|
|
|
// Symbol already in table.
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry != kNotFound) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*s = KeyAt(entry);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Adding new symbol. Grow table if needed.
|
|
|
|
|
Object* obj = EnsureCapacity(1, key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
|
|
|
|
// Create symbol object.
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* symbol = key->AsObject();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (symbol->IsFailure()) return symbol;
|
|
|
|
|
|
|
|
|
|
// If the symbol table grew as part of EnsureCapacity, obj is not
|
|
|
|
|
// the current symbol table and therefore we cannot use
|
|
|
|
|
// SymbolTable::cast here.
|
|
|
|
|
SymbolTable* table = reinterpret_cast<SymbolTable*>(obj);
|
|
|
|
|
|
|
|
|
|
// Add the new symbol and return it along with the symbol table.
|
2009-07-02 06:50:43 +00:00
|
|
|
entry = table->FindInsertionEntry(key->Hash());
|
2008-07-03 15:10:15 +00:00
|
|
|
table->set(EntryToIndex(entry), symbol);
|
|
|
|
|
table->ElementAdded();
|
|
|
|
|
*s = symbol;
|
|
|
|
|
return table;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-11 10:51:52 +00:00
|
|
|
Object* CompilationCacheTable::Lookup(String* src) {
|
2008-09-05 16:27:56 +00:00
|
|
|
StringKey key(src);
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) return Heap::undefined_value();
|
2008-10-23 07:04:56 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
2008-09-05 16:27:56 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-02-24 13:11:53 +00:00
|
|
|
Object* CompilationCacheTable::LookupEval(String* src, Context* context) {
|
|
|
|
|
StringSharedKey key(src, context->closure()->shared());
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) return Heap::undefined_value();
|
2009-02-24 13:11:53 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-24 08:40:02 +00:00
|
|
|
Object* CompilationCacheTable::LookupRegExp(String* src,
|
|
|
|
|
JSRegExp::Flags flags) {
|
|
|
|
|
RegExpKey key(src, flags);
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) return Heap::undefined_value();
|
2008-10-24 08:40:02 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-11 10:51:52 +00:00
|
|
|
Object* CompilationCacheTable::Put(String* src, Object* value) {
|
2008-09-05 16:27:56 +00:00
|
|
|
StringKey key(src);
|
|
|
|
|
Object* obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
2008-09-11 10:51:52 +00:00
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2008-09-05 16:27:56 +00:00
|
|
|
cache->set(EntryToIndex(entry), src);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
2008-10-24 08:40:02 +00:00
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-02-24 13:11:53 +00:00
|
|
|
Object* CompilationCacheTable::PutEval(String* src,
|
|
|
|
|
Context* context,
|
|
|
|
|
Object* value) {
|
|
|
|
|
StringSharedKey key(src, context->closure()->shared());
|
|
|
|
|
Object* obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
|
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2009-02-24 13:11:53 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = key.AsObject();
|
2009-02-24 13:11:53 +00:00
|
|
|
if (k->IsFailure()) return k;
|
|
|
|
|
|
|
|
|
|
cache->set(EntryToIndex(entry), k);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-24 08:40:02 +00:00
|
|
|
Object* CompilationCacheTable::PutRegExp(String* src,
|
|
|
|
|
JSRegExp::Flags flags,
|
|
|
|
|
FixedArray* value) {
|
|
|
|
|
RegExpKey key(src, flags);
|
|
|
|
|
Object* obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
|
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2009-10-12 12:42:20 +00:00
|
|
|
// We store the value in the key slot, and compare the search key
|
|
|
|
|
// to the stored value with a custon IsMatch function during lookups.
|
2008-10-24 08:40:02 +00:00
|
|
|
cache->set(EntryToIndex(entry), value);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
2008-09-05 16:27:56 +00:00
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
// SymbolsKey used for HashTable where key is array of symbols.
|
|
|
|
|
class SymbolsKey : public HashTableKey {
|
|
|
|
|
public:
|
2008-10-23 07:04:56 +00:00
|
|
|
explicit SymbolsKey(FixedArray* symbols) : symbols_(symbols) { }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* symbols) {
|
|
|
|
|
FixedArray* o = FixedArray::cast(symbols);
|
2008-09-25 07:46:07 +00:00
|
|
|
int len = symbols_->length();
|
|
|
|
|
if (o->length() != len) return false;
|
|
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
if (o->get(i) != symbols_->get(i)) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t Hash() { return HashForObject(symbols_); }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* obj) {
|
2008-10-23 07:04:56 +00:00
|
|
|
FixedArray* symbols = FixedArray::cast(obj);
|
|
|
|
|
int len = symbols->length();
|
2009-07-17 04:57:17 +00:00
|
|
|
uint32_t hash = 0;
|
2008-09-25 07:46:07 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
2008-10-23 07:04:56 +00:00
|
|
|
hash ^= String::cast(symbols->get(i))->Hash();
|
2008-09-25 07:46:07 +00:00
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() { return symbols_; }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
private:
|
2008-09-25 07:46:07 +00:00
|
|
|
FixedArray* symbols_;
|
|
|
|
|
};
|
|
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
Object* MapCache::Lookup(FixedArray* array) {
|
|
|
|
|
SymbolsKey key(array);
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) return Heap::undefined_value();
|
2008-10-23 07:04:56 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
2008-09-25 07:46:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* MapCache::Put(FixedArray* array, Map* value) {
|
|
|
|
|
SymbolsKey key(array);
|
|
|
|
|
Object* obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
|
|
|
|
|
MapCache* cache = reinterpret_cast<MapCache*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2008-09-25 07:46:07 +00:00
|
|
|
cache->set(EntryToIndex(entry), array);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::Allocate(int at_least_space_for) {
|
|
|
|
|
Object* obj = HashTable<Shape, Key>::Allocate(at_least_space_for);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Initialize the next enumeration index.
|
|
|
|
|
if (!obj->IsFailure()) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Dictionary<Shape, Key>::cast(obj)->
|
2008-07-03 15:10:15 +00:00
|
|
|
SetNextEnumerationIndex(PropertyDetails::kInitialIndex);
|
|
|
|
|
}
|
|
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::GenerateNewEnumerationIndices() {
|
|
|
|
|
int length = HashTable<Shape, Key>::NumberOfElements();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate and initialize iteration order array.
|
|
|
|
|
Object* obj = Heap::AllocateFixedArray(length);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
FixedArray* iteration_order = FixedArray::cast(obj);
|
2008-10-23 08:46:32 +00:00
|
|
|
for (int i = 0; i < length; i++) {
|
2010-01-29 11:46:55 +00:00
|
|
|
iteration_order->set(i, Smi::FromInt(i));
|
2008-10-23 08:46:32 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate array with enumeration order.
|
|
|
|
|
obj = Heap::AllocateFixedArray(length);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
FixedArray* enumeration_order = FixedArray::cast(obj);
|
|
|
|
|
|
|
|
|
|
// Fill the enumeration order array with property details.
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int pos = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Dictionary<Shape, Key>::IsKey(Dictionary<Shape, Key>::KeyAt(i))) {
|
2010-01-29 11:46:55 +00:00
|
|
|
enumeration_order->set(pos++, Smi::FromInt(DetailsAt(i).index()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Sort the arrays wrt. enumeration order.
|
2009-04-16 11:30:55 +00:00
|
|
|
iteration_order->SortPairs(enumeration_order, enumeration_order->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Overwrite the enumeration_order with the enumeration indices.
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
int index = Smi::cast(iteration_order->get(i))->value();
|
|
|
|
|
int enum_index = PropertyDetails::kInitialIndex + i;
|
2010-01-29 11:46:55 +00:00
|
|
|
enumeration_order->set(index, Smi::FromInt(enum_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the dictionary with new indices.
|
2009-07-02 06:50:43 +00:00
|
|
|
capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
pos = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Dictionary<Shape, Key>::IsKey(Dictionary<Shape, Key>::KeyAt(i))) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int enum_index = Smi::cast(enumeration_order->get(pos++))->value();
|
|
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
PropertyDetails new_details =
|
|
|
|
|
PropertyDetails(details.attributes(), details.type(), enum_index);
|
|
|
|
|
DetailsAtPut(i, new_details);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Set the next enumeration index.
|
|
|
|
|
SetNextEnumerationIndex(PropertyDetails::kInitialIndex+length);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::EnsureCapacity(int n, Key key) {
|
2008-08-27 10:11:39 +00:00
|
|
|
// Check whether there are enough enumeration indices to add n elements.
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Shape::kIsEnumerable &&
|
2008-07-03 15:10:15 +00:00
|
|
|
!PropertyDetails::IsValidIndex(NextEnumerationIndex() + n)) {
|
|
|
|
|
// If not, we generate new indices for the properties.
|
|
|
|
|
Object* result = GenerateNewEnumerationIndices();
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
return HashTable<Shape, Key>::EnsureCapacity(n, key);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void NumberDictionary::RemoveNumberEntries(uint32_t from, uint32_t to) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Do nothing if the interval [from, to) is empty.
|
|
|
|
|
if (from >= to) return;
|
|
|
|
|
|
|
|
|
|
int removed_entries = 0;
|
|
|
|
|
Object* sentinel = Heap::null_value();
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* key = KeyAt(i);
|
|
|
|
|
if (key->IsNumber()) {
|
|
|
|
|
uint32_t number = static_cast<uint32_t>(key->Number());
|
|
|
|
|
if (from <= number && number < to) {
|
|
|
|
|
SetEntry(i, sentinel, sentinel, Smi::FromInt(0));
|
|
|
|
|
removed_entries++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the number of elements.
|
2010-01-12 23:42:36 +00:00
|
|
|
ElementsRemoved(removed_entries);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-01 16:49:54 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::DeleteProperty(int entry,
|
|
|
|
|
JSObject::DeleteMode mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = DetailsAt(entry);
|
2009-06-08 09:46:09 +00:00
|
|
|
// Ignore attributes if forcing a deletion.
|
|
|
|
|
if (details.IsDontDelete() && mode == JSObject::NORMAL_DELETION) {
|
|
|
|
|
return Heap::false_value();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
SetEntry(entry, Heap::null_value(), Heap::null_value(), Smi::FromInt(0));
|
2009-07-02 06:50:43 +00:00
|
|
|
HashTable<Shape, Key>::ElementRemoved();
|
2008-07-03 15:10:15 +00:00
|
|
|
return Heap::true_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::AtPut(Key key, Object* value) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
|
|
|
|
|
// If the entry is present set the value;
|
2009-07-02 06:50:43 +00:00
|
|
|
if (entry != Dictionary<Shape, Key>::kNotFound) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ValueAtPut(entry, value);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check whether the dictionary should be extended.
|
|
|
|
|
Object* obj = EnsureCapacity(1, key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-02 06:50:43 +00:00
|
|
|
|
|
|
|
|
Object* k = Shape::AsObject(key);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (k->IsFailure()) return k;
|
|
|
|
|
PropertyDetails details = PropertyDetails(NONE, NORMAL);
|
2009-07-02 06:50:43 +00:00
|
|
|
return Dictionary<Shape, Key>::cast(obj)->
|
|
|
|
|
AddEntry(key, value, details, Shape::Hash(key));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::Add(Key key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
|
|
|
|
// Valdate key is absent.
|
|
|
|
|
SLOW_ASSERT((FindEntry(key) == Dictionary<Shape, Key>::kNotFound));
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check whether the dictionary should be extended.
|
|
|
|
|
Object* obj = EnsureCapacity(1, key);
|
|
|
|
|
if (obj->IsFailure()) return obj;
|
2009-07-02 06:50:43 +00:00
|
|
|
return Dictionary<Shape, Key>::cast(obj)->
|
|
|
|
|
AddEntry(key, value, details, Shape::Hash(key));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add a key, value pair to the dictionary.
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::AddEntry(Key key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details,
|
|
|
|
|
uint32_t hash) {
|
|
|
|
|
// Compute the key object.
|
|
|
|
|
Object* k = Shape::AsObject(key);
|
|
|
|
|
if (k->IsFailure()) return k;
|
|
|
|
|
|
|
|
|
|
uint32_t entry = Dictionary<Shape, Key>::FindInsertionEntry(hash);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Insert element at empty or deleted entry
|
2009-07-10 09:40:47 +00:00
|
|
|
if (!details.IsDeleted() && details.index() == 0 && Shape::kIsEnumerable) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Assign an enumeration index to the property and update
|
|
|
|
|
// SetNextEnumerationIndex.
|
|
|
|
|
int index = NextEnumerationIndex();
|
|
|
|
|
details = PropertyDetails(details.attributes(), details.type(), index);
|
|
|
|
|
SetNextEnumerationIndex(index + 1);
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
SetEntry(entry, k, value, details);
|
|
|
|
|
ASSERT((Dictionary<Shape, Key>::KeyAt(entry)->IsNumber()
|
|
|
|
|
|| Dictionary<Shape, Key>::KeyAt(entry)->IsString()));
|
|
|
|
|
HashTable<Shape, Key>::ElementAdded();
|
|
|
|
|
return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void NumberDictionary::UpdateMaxNumberKey(uint32_t key) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// If the dictionary requires slow elements an element has already
|
|
|
|
|
// been added at a high index.
|
|
|
|
|
if (requires_slow_elements()) return;
|
|
|
|
|
// Check if this index is high enough that we should require slow
|
|
|
|
|
// elements.
|
|
|
|
|
if (key > kRequiresSlowElementsLimit) {
|
2009-03-13 11:40:09 +00:00
|
|
|
set_requires_slow_elements();
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// Update max key value.
|
2008-10-22 09:46:09 +00:00
|
|
|
Object* max_index_object = get(kMaxNumberKeyIndex);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!max_index_object->IsSmi() || max_number_key() < key) {
|
2009-07-02 06:50:43 +00:00
|
|
|
FixedArray::set(kMaxNumberKeyIndex,
|
2010-01-29 11:46:55 +00:00
|
|
|
Smi::FromInt(key << kRequiresSlowElementsTagSize));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* NumberDictionary::AddNumberEntry(uint32_t key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
2008-07-03 15:10:15 +00:00
|
|
|
UpdateMaxNumberKey(key);
|
2009-07-02 06:50:43 +00:00
|
|
|
SLOW_ASSERT(FindEntry(key) == kNotFound);
|
|
|
|
|
return Add(key, value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* NumberDictionary::AtNumberPut(uint32_t key, Object* value) {
|
2008-07-03 15:10:15 +00:00
|
|
|
UpdateMaxNumberKey(key);
|
2009-07-02 06:50:43 +00:00
|
|
|
return AtPut(key, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* NumberDictionary::Set(uint32_t key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
|
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
if (entry == kNotFound) return AddNumberEntry(key, value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Preserve enumeration index.
|
|
|
|
|
details = PropertyDetails(details.attributes(),
|
|
|
|
|
details.type(),
|
|
|
|
|
DetailsAt(entry).index());
|
2009-07-02 06:50:43 +00:00
|
|
|
SetEntry(entry, NumberDictionaryShape::AsObject(key), value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
int Dictionary<Shape, Key>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes filter) {
|
|
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int result = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
|
|
|
|
PropertyAttributes attr = details.attributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
if ((attr & filter) == 0) result++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
int Dictionary<Shape, Key>::NumberOfEnumElements() {
|
2008-07-03 15:10:15 +00:00
|
|
|
return NumberOfElementsFilterAttributes(
|
|
|
|
|
static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void Dictionary<Shape, Key>::CopyKeysTo(FixedArray* storage,
|
|
|
|
|
PropertyAttributes filter) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfEnumElements());
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int index = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
|
|
|
|
PropertyAttributes attr = details.attributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
if ((attr & filter) == 0) storage->set(index++, k);
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-04-16 11:30:55 +00:00
|
|
|
storage->SortPairs(storage, index);
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void StringDictionary::CopyEnumKeysTo(FixedArray* storage,
|
|
|
|
|
FixedArray* sort_array) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfEnumElements());
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
int index = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
PropertyDetails details = DetailsAt(i);
|
2009-07-10 09:40:47 +00:00
|
|
|
if (details.IsDeleted() || details.IsDontEnum()) continue;
|
|
|
|
|
storage->set(index, k);
|
2010-01-29 11:46:55 +00:00
|
|
|
sort_array->set(index, Smi::FromInt(details.index()));
|
2009-07-10 09:40:47 +00:00
|
|
|
index++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-04-16 11:30:55 +00:00
|
|
|
storage->SortPairs(sort_array, sort_array->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void Dictionary<Shape, Key>::CopyKeysTo(FixedArray* storage) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfElementsFilterAttributes(
|
|
|
|
|
static_cast<PropertyAttributes>(NONE)));
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int index = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
2008-07-03 15:10:15 +00:00
|
|
|
storage->set(index++, k);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Backwards lookup (slow).
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::SlowReverseLookup(Object* value) {
|
|
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (Dictionary<Shape, Key>::IsKey(k)) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* e = ValueAt(i);
|
|
|
|
|
if (e->IsJSGlobalPropertyCell()) {
|
|
|
|
|
e = JSGlobalPropertyCell::cast(e)->value();
|
|
|
|
|
}
|
|
|
|
|
if (e == value) return k;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* StringDictionary::TransformPropertiesToFastFor(
|
|
|
|
|
JSObject* obj, int unused_property_fields) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure we preserve dictionary representation if there are too many
|
|
|
|
|
// descriptors.
|
|
|
|
|
if (NumberOfElements() > DescriptorArray::kMaxNumberOfDescriptors) return obj;
|
|
|
|
|
|
|
|
|
|
// Figure out if it is necessary to generate new enumeration indices.
|
|
|
|
|
int max_enumeration_index =
|
|
|
|
|
NextEnumerationIndex() +
|
2009-07-02 06:50:43 +00:00
|
|
|
(DescriptorArray::kMaxNumberOfDescriptors -
|
|
|
|
|
NumberOfElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!PropertyDetails::IsValidIndex(max_enumeration_index)) {
|
|
|
|
|
Object* result = GenerateNewEnumerationIndices();
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int instance_descriptor_length = 0;
|
|
|
|
|
int number_of_fields = 0;
|
|
|
|
|
|
|
|
|
|
// Compute the length of the instance descriptor.
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
Object* value = ValueAt(i);
|
|
|
|
|
PropertyType type = DetailsAt(i).type();
|
|
|
|
|
ASSERT(type != FIELD);
|
|
|
|
|
instance_descriptor_length++;
|
2009-12-16 15:43:20 +00:00
|
|
|
if (type == NORMAL &&
|
|
|
|
|
(!value->IsJSFunction() || Heap::InNewSpace(value))) {
|
|
|
|
|
number_of_fields += 1;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the instance descriptor.
|
2008-08-27 10:11:39 +00:00
|
|
|
Object* descriptors_unchecked =
|
2008-07-03 15:10:15 +00:00
|
|
|
DescriptorArray::Allocate(instance_descriptor_length);
|
2008-08-27 10:11:39 +00:00
|
|
|
if (descriptors_unchecked->IsFailure()) return descriptors_unchecked;
|
|
|
|
|
DescriptorArray* descriptors = DescriptorArray::cast(descriptors_unchecked);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-01-12 10:59:58 +00:00
|
|
|
int inobject_props = obj->map()->inobject_properties();
|
|
|
|
|
int number_of_allocated_fields =
|
|
|
|
|
number_of_fields + unused_property_fields - inobject_props;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate the fixed array for the fields.
|
|
|
|
|
Object* fields = Heap::AllocateFixedArray(number_of_allocated_fields);
|
|
|
|
|
if (fields->IsFailure()) return fields;
|
|
|
|
|
|
|
|
|
|
// Fill in the instance descriptor and the fields.
|
2009-07-10 19:25:18 +00:00
|
|
|
int next_descriptor = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
int current_offset = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
Object* value = ValueAt(i);
|
|
|
|
|
// Ensure the key is a symbol before writing into the instance descriptor.
|
|
|
|
|
Object* key = Heap::LookupSymbol(String::cast(k));
|
|
|
|
|
if (key->IsFailure()) return key;
|
|
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
PropertyType type = details.type();
|
2009-01-12 10:59:58 +00:00
|
|
|
|
2009-12-16 15:43:20 +00:00
|
|
|
if (value->IsJSFunction() && !Heap::InNewSpace(value)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConstantFunctionDescriptor d(String::cast(key),
|
|
|
|
|
JSFunction::cast(value),
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (type == NORMAL) {
|
2009-01-12 10:59:58 +00:00
|
|
|
if (current_offset < inobject_props) {
|
|
|
|
|
obj->InObjectPropertyAtPut(current_offset,
|
|
|
|
|
value,
|
|
|
|
|
UPDATE_WRITE_BARRIER);
|
|
|
|
|
} else {
|
|
|
|
|
int offset = current_offset - inobject_props;
|
|
|
|
|
FixedArray::cast(fields)->set(offset, value);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FieldDescriptor d(String::cast(key),
|
|
|
|
|
current_offset++,
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (type == CALLBACKS) {
|
|
|
|
|
CallbacksDescriptor d(String::cast(key),
|
|
|
|
|
value,
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(current_offset == number_of_fields);
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
descriptors->Sort();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate new map.
|
2009-04-24 12:45:29 +00:00
|
|
|
Object* new_map = obj->map()->CopyDropDescriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (new_map->IsFailure()) return new_map;
|
|
|
|
|
|
|
|
|
|
// Transform the object.
|
|
|
|
|
obj->set_map(Map::cast(new_map));
|
2008-08-27 10:11:39 +00:00
|
|
|
obj->map()->set_instance_descriptors(descriptors);
|
|
|
|
|
obj->map()->set_unused_property_fields(unused_property_fields);
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
obj->set_properties(FixedArray::cast(fields));
|
|
|
|
|
ASSERT(obj->IsJSObject());
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
descriptors->SetNextEnumerationIndex(NextEnumerationIndex());
|
2009-01-12 10:59:58 +00:00
|
|
|
// Check that it really works.
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(obj->HasFastProperties());
|
2009-01-12 10:59:58 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-20 16:36:13 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check if there is a break point at this code position.
|
|
|
|
|
bool DebugInfo::HasBreakPoint(int code_position) {
|
|
|
|
|
// Get the break point info object for this code position.
|
|
|
|
|
Object* break_point_info = GetBreakPointInfo(code_position);
|
|
|
|
|
|
|
|
|
|
// If there is no break point info object or no break points in the break
|
|
|
|
|
// point info object there is no break point at this code position.
|
|
|
|
|
if (break_point_info->IsUndefined()) return false;
|
|
|
|
|
return BreakPointInfo::cast(break_point_info)->GetBreakPointCount() > 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the break point info object for this code position.
|
|
|
|
|
Object* DebugInfo::GetBreakPointInfo(int code_position) {
|
|
|
|
|
// Find the index of the break point info object for this code position.
|
|
|
|
|
int index = GetBreakPointInfoIndex(code_position);
|
|
|
|
|
|
|
|
|
|
// Return the break point info object if any.
|
|
|
|
|
if (index == kNoBreakPointInfo) return Heap::undefined_value();
|
|
|
|
|
return BreakPointInfo::cast(break_points()->get(index));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Clear a break point at the specified code position.
|
|
|
|
|
void DebugInfo::ClearBreakPoint(Handle<DebugInfo> debug_info,
|
|
|
|
|
int code_position,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
Handle<Object> break_point_info(debug_info->GetBreakPointInfo(code_position));
|
|
|
|
|
if (break_point_info->IsUndefined()) return;
|
|
|
|
|
BreakPointInfo::ClearBreakPoint(
|
|
|
|
|
Handle<BreakPointInfo>::cast(break_point_info),
|
|
|
|
|
break_point_object);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void DebugInfo::SetBreakPoint(Handle<DebugInfo> debug_info,
|
|
|
|
|
int code_position,
|
|
|
|
|
int source_position,
|
|
|
|
|
int statement_position,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
Handle<Object> break_point_info(debug_info->GetBreakPointInfo(code_position));
|
|
|
|
|
if (!break_point_info->IsUndefined()) {
|
|
|
|
|
BreakPointInfo::SetBreakPoint(
|
|
|
|
|
Handle<BreakPointInfo>::cast(break_point_info),
|
|
|
|
|
break_point_object);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Adding a new break point for a code position which did not have any
|
|
|
|
|
// break points before. Try to find a free slot.
|
|
|
|
|
int index = kNoBreakPointInfo;
|
|
|
|
|
for (int i = 0; i < debug_info->break_points()->length(); i++) {
|
|
|
|
|
if (debug_info->break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
index = i;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (index == kNoBreakPointInfo) {
|
|
|
|
|
// No free slot - extend break point info array.
|
|
|
|
|
Handle<FixedArray> old_break_points =
|
|
|
|
|
Handle<FixedArray>(FixedArray::cast(debug_info->break_points()));
|
|
|
|
|
debug_info->set_break_points(*Factory::NewFixedArray(
|
|
|
|
|
old_break_points->length() +
|
|
|
|
|
Debug::kEstimatedNofBreakPointsInFunction));
|
|
|
|
|
Handle<FixedArray> new_break_points =
|
|
|
|
|
Handle<FixedArray>(FixedArray::cast(debug_info->break_points()));
|
|
|
|
|
for (int i = 0; i < old_break_points->length(); i++) {
|
|
|
|
|
new_break_points->set(i, old_break_points->get(i));
|
|
|
|
|
}
|
|
|
|
|
index = old_break_points->length();
|
|
|
|
|
}
|
|
|
|
|
ASSERT(index != kNoBreakPointInfo);
|
|
|
|
|
|
|
|
|
|
// Allocate new BreakPointInfo object and set the break point.
|
|
|
|
|
Handle<BreakPointInfo> new_break_point_info =
|
|
|
|
|
Handle<BreakPointInfo>::cast(Factory::NewStruct(BREAK_POINT_INFO_TYPE));
|
|
|
|
|
new_break_point_info->set_code_position(Smi::FromInt(code_position));
|
|
|
|
|
new_break_point_info->set_source_position(Smi::FromInt(source_position));
|
|
|
|
|
new_break_point_info->
|
|
|
|
|
set_statement_position(Smi::FromInt(statement_position));
|
|
|
|
|
new_break_point_info->set_break_point_objects(Heap::undefined_value());
|
|
|
|
|
BreakPointInfo::SetBreakPoint(new_break_point_info, break_point_object);
|
|
|
|
|
debug_info->break_points()->set(index, *new_break_point_info);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the break point objects for a code position.
|
|
|
|
|
Object* DebugInfo::GetBreakPointObjects(int code_position) {
|
|
|
|
|
Object* break_point_info = GetBreakPointInfo(code_position);
|
|
|
|
|
if (break_point_info->IsUndefined()) {
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
return BreakPointInfo::cast(break_point_info)->break_point_objects();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the total number of break points.
|
|
|
|
|
int DebugInfo::GetBreakPointCount() {
|
|
|
|
|
if (break_points()->IsUndefined()) return 0;
|
|
|
|
|
int count = 0;
|
|
|
|
|
for (int i = 0; i < break_points()->length(); i++) {
|
|
|
|
|
if (!break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
BreakPointInfo* break_point_info =
|
|
|
|
|
BreakPointInfo::cast(break_points()->get(i));
|
|
|
|
|
count += break_point_info->GetBreakPointCount();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return count;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* DebugInfo::FindBreakPointInfo(Handle<DebugInfo> debug_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
if (debug_info->break_points()->IsUndefined()) return Heap::undefined_value();
|
|
|
|
|
for (int i = 0; i < debug_info->break_points()->length(); i++) {
|
|
|
|
|
if (!debug_info->break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
Handle<BreakPointInfo> break_point_info =
|
|
|
|
|
Handle<BreakPointInfo>(BreakPointInfo::cast(
|
|
|
|
|
debug_info->break_points()->get(i)));
|
|
|
|
|
if (BreakPointInfo::HasBreakPointObject(break_point_info,
|
|
|
|
|
break_point_object)) {
|
|
|
|
|
return *break_point_info;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return Heap::undefined_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Find the index of the break point info object for the specified code
|
|
|
|
|
// position.
|
|
|
|
|
int DebugInfo::GetBreakPointInfoIndex(int code_position) {
|
|
|
|
|
if (break_points()->IsUndefined()) return kNoBreakPointInfo;
|
|
|
|
|
for (int i = 0; i < break_points()->length(); i++) {
|
|
|
|
|
if (!break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
BreakPointInfo* break_point_info =
|
|
|
|
|
BreakPointInfo::cast(break_points()->get(i));
|
|
|
|
|
if (break_point_info->code_position()->value() == code_position) {
|
|
|
|
|
return i;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return kNoBreakPointInfo;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Remove the specified break point object.
|
|
|
|
|
void BreakPointInfo::ClearBreakPoint(Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
// If there are no break points just ignore.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) return;
|
|
|
|
|
// If there is a single break point clear it if it is the same.
|
|
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
|
|
|
|
if (break_point_info->break_point_objects() == *break_point_object) {
|
|
|
|
|
break_point_info->set_break_point_objects(Heap::undefined_value());
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If there are multiple break points shrink the array
|
|
|
|
|
ASSERT(break_point_info->break_point_objects()->IsFixedArray());
|
|
|
|
|
Handle<FixedArray> old_array =
|
|
|
|
|
Handle<FixedArray>(
|
|
|
|
|
FixedArray::cast(break_point_info->break_point_objects()));
|
|
|
|
|
Handle<FixedArray> new_array =
|
|
|
|
|
Factory::NewFixedArray(old_array->length() - 1);
|
|
|
|
|
int found_count = 0;
|
|
|
|
|
for (int i = 0; i < old_array->length(); i++) {
|
|
|
|
|
if (old_array->get(i) == *break_point_object) {
|
|
|
|
|
ASSERT(found_count == 0);
|
|
|
|
|
found_count++;
|
|
|
|
|
} else {
|
|
|
|
|
new_array->set(i - found_count, old_array->get(i));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// If the break point was found in the list change it.
|
|
|
|
|
if (found_count > 0) break_point_info->set_break_point_objects(*new_array);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add the specified break point object.
|
|
|
|
|
void BreakPointInfo::SetBreakPoint(Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
// If there was no break point objects before just set it.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) {
|
|
|
|
|
break_point_info->set_break_point_objects(*break_point_object);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If the break point object is the same as before just ignore.
|
|
|
|
|
if (break_point_info->break_point_objects() == *break_point_object) return;
|
|
|
|
|
// If there was one break point object before replace with array.
|
|
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
|
|
|
|
Handle<FixedArray> array = Factory::NewFixedArray(2);
|
|
|
|
|
array->set(0, break_point_info->break_point_objects());
|
|
|
|
|
array->set(1, *break_point_object);
|
|
|
|
|
break_point_info->set_break_point_objects(*array);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If there was more than one break point before extend array.
|
|
|
|
|
Handle<FixedArray> old_array =
|
|
|
|
|
Handle<FixedArray>(
|
|
|
|
|
FixedArray::cast(break_point_info->break_point_objects()));
|
|
|
|
|
Handle<FixedArray> new_array =
|
|
|
|
|
Factory::NewFixedArray(old_array->length() + 1);
|
|
|
|
|
for (int i = 0; i < old_array->length(); i++) {
|
|
|
|
|
// If the break point was there before just ignore.
|
|
|
|
|
if (old_array->get(i) == *break_point_object) return;
|
|
|
|
|
new_array->set(i, old_array->get(i));
|
|
|
|
|
}
|
|
|
|
|
// Add the new break point.
|
|
|
|
|
new_array->set(old_array->length(), *break_point_object);
|
|
|
|
|
break_point_info->set_break_point_objects(*new_array);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool BreakPointInfo::HasBreakPointObject(
|
|
|
|
|
Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
// No break point.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) return false;
|
|
|
|
|
// Single beak point.
|
|
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
|
|
|
|
return break_point_info->break_point_objects() == *break_point_object;
|
|
|
|
|
}
|
|
|
|
|
// Multiple break points.
|
|
|
|
|
FixedArray* array = FixedArray::cast(break_point_info->break_point_objects());
|
|
|
|
|
for (int i = 0; i < array->length(); i++) {
|
|
|
|
|
if (array->get(i) == *break_point_object) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the number of break points.
|
|
|
|
|
int BreakPointInfo::GetBreakPointCount() {
|
|
|
|
|
// No break point.
|
|
|
|
|
if (break_point_objects()->IsUndefined()) return 0;
|
|
|
|
|
// Single beak point.
|
|
|
|
|
if (!break_point_objects()->IsFixedArray()) return 1;
|
|
|
|
|
// Multiple break points.
|
|
|
|
|
return FixedArray::cast(break_point_objects())->length();
|
|
|
|
|
}
|
2009-04-20 16:36:13 +00:00
|
|
|
#endif
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
} } // namespace v8::internal
|
