2011-04-12 08:27:38 +00:00
|
|
|
// Copyright 2011 the V8 project authors. All rights reserved.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Redistribution and use in source and binary forms, with or without
|
|
|
|
|
// modification, are permitted provided that the following conditions are
|
|
|
|
|
// met:
|
|
|
|
|
//
|
|
|
|
|
// * Redistributions of source code must retain the above copyright
|
|
|
|
|
// notice, this list of conditions and the following disclaimer.
|
|
|
|
|
// * Redistributions in binary form must reproduce the above
|
|
|
|
|
// copyright notice, this list of conditions and the following
|
|
|
|
|
// disclaimer in the documentation and/or other materials provided
|
|
|
|
|
// with the distribution.
|
|
|
|
|
// * Neither the name of Google Inc. nor the names of its
|
|
|
|
|
// contributors may be used to endorse or promote products derived
|
|
|
|
|
// from this software without specific prior written permission.
|
|
|
|
|
//
|
|
|
|
|
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
|
|
|
// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
|
|
|
// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
|
|
|
// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
|
|
|
// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
|
// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
|
|
|
// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
|
// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
|
// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
|
// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
|
// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
|
|
|
|
|
#include "v8.h"
|
|
|
|
|
|
|
|
|
|
#include "api.h"
|
2009-09-30 12:25:46 +00:00
|
|
|
#include "arguments.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "bootstrapper.h"
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "codegen.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "debug.h"
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "deoptimizer.h"
|
2011-08-03 11:12:46 +00:00
|
|
|
#include "elements.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "execution.h"
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "full-codegen.h"
|
|
|
|
|
#include "hydrogen.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "objects-inl.h"
|
2010-08-11 14:30:14 +00:00
|
|
|
#include "objects-visiting.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "macro-assembler.h"
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "safepoint-table.h"
|
2010-11-16 08:01:45 +00:00
|
|
|
#include "scanner-base.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
#include "string-stream.h"
|
2009-11-24 14:10:06 +00:00
|
|
|
#include "utils.h"
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "vm-state-inl.h"
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-13 09:32:07 +00:00
|
|
|
#ifdef ENABLE_DISASSEMBLER
|
2010-12-07 11:31:57 +00:00
|
|
|
#include "disasm.h"
|
2008-08-13 09:32:07 +00:00
|
|
|
#include "disassembler.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-05-25 10:05:56 +00:00
|
|
|
namespace v8 {
|
|
|
|
|
namespace internal {
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Getters and setters are stored in a fixed array property. These are
|
|
|
|
|
// constants for their indices.
|
|
|
|
|
const int kGetterIndex = 0;
|
|
|
|
|
const int kSetterIndex = 1;
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MUST_USE_RESULT static MaybeObject* CreateJSValue(JSFunction* constructor,
|
|
|
|
|
Object* value) {
|
|
|
|
|
Object* result;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
constructor->GetHeap()->AllocateJSObject(constructor);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
JSValue::cast(result)->set_value(value);
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::ToObject(Context* global_context) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsNumber()) {
|
|
|
|
|
return CreateJSValue(global_context->number_function(), this);
|
|
|
|
|
} else if (IsBoolean()) {
|
|
|
|
|
return CreateJSValue(global_context->boolean_function(), this);
|
|
|
|
|
} else if (IsString()) {
|
|
|
|
|
return CreateJSValue(global_context->string_function(), this);
|
|
|
|
|
}
|
|
|
|
|
ASSERT(IsJSObject());
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::ToObject() {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsJSObject()) {
|
|
|
|
|
return this;
|
|
|
|
|
} else if (IsNumber()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = Isolate::Current();
|
|
|
|
|
Context* global_context = isolate->context()->global_context();
|
2008-07-03 15:10:15 +00:00
|
|
|
return CreateJSValue(global_context->number_function(), this);
|
|
|
|
|
} else if (IsBoolean()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = HeapObject::cast(this)->GetIsolate();
|
|
|
|
|
Context* global_context = isolate->context()->global_context();
|
2008-07-03 15:10:15 +00:00
|
|
|
return CreateJSValue(global_context->boolean_function(), this);
|
|
|
|
|
} else if (IsString()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = HeapObject::cast(this)->GetIsolate();
|
|
|
|
|
Context* global_context = isolate->context()->global_context();
|
2008-07-03 15:10:15 +00:00
|
|
|
return CreateJSValue(global_context->string_function(), this);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Throw a type error.
|
|
|
|
|
return Failure::InternalError();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::ToBoolean() {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (IsTrue()) return this;
|
|
|
|
|
if (IsFalse()) return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsSmi()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return Isolate::Current()->heap()->ToBoolean(Smi::cast(this)->value() != 0);
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
HeapObject* heap_object = HeapObject::cast(this);
|
|
|
|
|
if (heap_object->IsUndefined() || heap_object->IsNull()) {
|
|
|
|
|
return heap_object->GetHeap()->false_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Undetectable object is false
|
2011-03-31 10:55:53 +00:00
|
|
|
if (heap_object->IsUndetectableObject()) {
|
|
|
|
|
return heap_object->GetHeap()->false_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
if (heap_object->IsString()) {
|
|
|
|
|
return heap_object->GetHeap()->ToBoolean(
|
2011-03-18 20:35:07 +00:00
|
|
|
String::cast(this)->length() != 0);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
if (heap_object->IsHeapNumber()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return HeapNumber::cast(this)->HeapNumberToBoolean();
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
return heap_object->GetHeap()->true_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Object::Lookup(String* name, LookupResult* result) {
|
|
|
|
|
Object* holder = NULL;
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsSmi()) {
|
2011-05-13 10:58:25 +00:00
|
|
|
Context* global_context = Isolate::Current()->context()->global_context();
|
2008-07-03 15:10:15 +00:00
|
|
|
holder = global_context->number_function()->instance_prototype();
|
2011-03-31 10:55:53 +00:00
|
|
|
} else {
|
|
|
|
|
HeapObject* heap_object = HeapObject::cast(this);
|
|
|
|
|
if (heap_object->IsJSObject()) {
|
|
|
|
|
return JSObject::cast(this)->Lookup(name, result);
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
} else if (heap_object->IsJSProxy()) {
|
|
|
|
|
return result->HandlerResult();
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
2011-05-13 10:58:25 +00:00
|
|
|
Context* global_context = Isolate::Current()->context()->global_context();
|
2011-03-31 10:55:53 +00:00
|
|
|
if (heap_object->IsString()) {
|
|
|
|
|
holder = global_context->string_function()->instance_prototype();
|
|
|
|
|
} else if (heap_object->IsHeapNumber()) {
|
|
|
|
|
holder = global_context->number_function()->instance_prototype();
|
|
|
|
|
} else if (heap_object->IsBoolean()) {
|
|
|
|
|
holder = global_context->boolean_function()->instance_prototype();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(holder != NULL); // Cannot handle null or undefined.
|
2008-07-03 15:10:15 +00:00
|
|
|
JSObject::cast(holder)->Lookup(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::GetPropertyWithReceiver(Object* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
2008-07-03 15:10:15 +00:00
|
|
|
LookupResult result;
|
|
|
|
|
Lookup(name, &result);
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* value = GetProperty(receiver, &result, name, attributes);
|
2008-12-08 10:29:03 +00:00
|
|
|
ASSERT(*attributes <= ABSENT);
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::GetPropertyWithCallback(Object* receiver,
|
|
|
|
|
Object* structure,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* holder) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = name->GetIsolate();
|
2008-07-03 15:10:15 +00:00
|
|
|
// To accommodate both the old and the new api we switch on the
|
2011-05-19 11:47:34 +00:00
|
|
|
// data structure used to store the callbacks. Eventually foreign
|
2008-07-03 15:10:15 +00:00
|
|
|
// callbacks should be phased out.
|
2011-05-19 11:47:34 +00:00
|
|
|
if (structure->IsForeign()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
AccessorDescriptor* callback =
|
2011-05-19 11:47:34 +00:00
|
|
|
reinterpret_cast<AccessorDescriptor*>(
|
|
|
|
|
Foreign::cast(structure)->address());
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* value = (callback->getter)(receiver, callback->data);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// api style callbacks.
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* data = AccessorInfo::cast(structure);
|
|
|
|
|
Object* fun_obj = data->getter();
|
|
|
|
|
v8::AccessorGetter call_fun = v8::ToCData<v8::AccessorGetter>(fun_obj);
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(isolate);
|
2009-09-30 12:25:46 +00:00
|
|
|
JSObject* self = JSObject::cast(receiver);
|
|
|
|
|
JSObject* holder_handle = JSObject::cast(holder);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<String> key(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate, ApiNamedPropertyAccess("load", self, name));
|
|
|
|
|
CustomArguments args(isolate, data->data(), self, holder_handle);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = call_fun(v8::Utils::ToLocal(key), info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
|
|
|
|
if (result.IsEmpty()) {
|
|
|
|
|
return isolate->heap()->undefined_value();
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// __defineGetter__ callback
|
|
|
|
|
if (structure->IsFixedArray()) {
|
|
|
|
|
Object* getter = FixedArray::cast(structure)->get(kGetterIndex);
|
|
|
|
|
if (getter->IsJSFunction()) {
|
2009-03-13 11:40:09 +00:00
|
|
|
return Object::GetPropertyWithDefinedGetter(receiver,
|
|
|
|
|
JSFunction::cast(getter));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Getter is not a function.
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
2010-05-25 12:14:49 +00:00
|
|
|
return NULL;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-05-16 16:33:58 +00:00
|
|
|
MaybeObject* Object::GetPropertyWithHandler(Object* receiver_raw,
|
|
|
|
|
String* name_raw,
|
|
|
|
|
Object* handler_raw) {
|
|
|
|
|
Isolate* isolate = name_raw->GetIsolate();
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(isolate);
|
2011-05-16 16:33:58 +00:00
|
|
|
Handle<Object> receiver(receiver_raw);
|
|
|
|
|
Handle<Object> name(name_raw);
|
|
|
|
|
Handle<Object> handler(handler_raw);
|
|
|
|
|
|
|
|
|
|
// Extract trap function.
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
Handle<String> trap_name = isolate->factory()->LookupAsciiSymbol("get");
|
|
|
|
|
Handle<Object> trap(v8::internal::GetProperty(handler, trap_name));
|
|
|
|
|
if (trap->IsUndefined()) {
|
2011-05-16 16:33:58 +00:00
|
|
|
// Get the derived `get' property.
|
2011-05-18 14:00:34 +00:00
|
|
|
trap = isolate->derived_get_trap();
|
2011-05-16 16:33:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Call trap function.
|
|
|
|
|
Object** args[] = { receiver.location(), name.location() };
|
|
|
|
|
bool has_exception;
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(trap, handler, ARRAY_SIZE(args), args, &has_exception);
|
|
|
|
|
if (has_exception) return Failure::Exception();
|
|
|
|
|
|
|
|
|
|
return *result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::GetPropertyWithDefinedGetter(Object* receiver,
|
|
|
|
|
JSFunction* getter) {
|
2009-03-13 11:40:09 +00:00
|
|
|
HandleScope scope;
|
|
|
|
|
Handle<JSFunction> fun(JSFunction::cast(getter));
|
|
|
|
|
Handle<Object> self(receiver);
|
2009-07-16 07:07:51 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
2011-03-18 20:35:07 +00:00
|
|
|
Debug* debug = fun->GetHeap()->isolate()->debug();
|
2009-07-16 07:07:51 +00:00
|
|
|
// Handle stepping into a getter if step into is active.
|
2011-03-18 20:35:07 +00:00
|
|
|
if (debug->StepInActive()) {
|
|
|
|
|
debug->HandleStepIn(fun, Handle<Object>::null(), 0, false);
|
2009-07-16 07:07:51 +00:00
|
|
|
}
|
|
|
|
|
#endif
|
2009-03-13 11:40:09 +00:00
|
|
|
bool has_pending_exception;
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(fun, self, 0, NULL, &has_pending_exception);
|
|
|
|
|
// Check for pending exception and return the result.
|
|
|
|
|
if (has_pending_exception) return Failure::Exception();
|
|
|
|
|
return *result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Only deal with CALLBACKS and INTERCEPTOR
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::GetPropertyWithFailedAccessCheck(
|
2008-12-08 10:29:03 +00:00
|
|
|
Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
// Only allow API accessors.
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_read()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
*attributes = result->GetAttributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
return GetPropertyWithCallback(receiver,
|
|
|
|
|
result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
result->holder());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case NORMAL:
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
|
|
|
|
// Search ALL_CAN_READ accessors in prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedPropertyInPrototypes(name, &r);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (r.IsProperty()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
return GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// If the object has an interceptor, try real named properties.
|
|
|
|
|
// No access check in GetPropertyAttributeWithInterceptor.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedProperty(name, &r);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (r.IsProperty()) {
|
2008-12-08 10:29:03 +00:00
|
|
|
return GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-02-19 12:10:46 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-02-18 15:10:35 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-12-08 10:29:03 +00:00
|
|
|
// No accessible property found.
|
|
|
|
|
*attributes = ABSENT;
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = name->GetHeap();
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_GET);
|
|
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-31 09:42:14 +00:00
|
|
|
PropertyAttributes JSObject::GetPropertyAttributeWithFailedAccessCheck(
|
|
|
|
|
Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty()) {
|
2008-10-31 09:42:14 +00:00
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
// Only allow API accessors.
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_read()) {
|
|
|
|
|
return result->GetAttributes();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case NORMAL:
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
2008-10-31 10:11:39 +00:00
|
|
|
if (!continue_search) break;
|
2008-10-31 09:42:14 +00:00
|
|
|
// Search ALL_CAN_READ accessors in prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
result->holder()->LookupRealNamedPropertyInPrototypes(name, &r);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (r.IsProperty()) {
|
2008-10-31 09:42:14 +00:00
|
|
|
return GetPropertyAttributeWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// If the object has an interceptor, try real named properties.
|
|
|
|
|
// No access check in GetPropertyAttributeWithInterceptor.
|
|
|
|
|
LookupResult r;
|
2008-10-31 10:11:39 +00:00
|
|
|
if (continue_search) {
|
|
|
|
|
result->holder()->LookupRealNamedProperty(name, &r);
|
|
|
|
|
} else {
|
|
|
|
|
result->holder()->LocalLookupRealNamedProperty(name, &r);
|
|
|
|
|
}
|
2010-02-18 15:10:35 +00:00
|
|
|
if (r.IsProperty()) {
|
2008-10-31 09:42:14 +00:00
|
|
|
return GetPropertyAttributeWithFailedAccessCheck(receiver,
|
|
|
|
|
&r,
|
|
|
|
|
name,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2010-02-18 15:10:35 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-10-31 09:42:14 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
GetHeap()->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
2008-10-31 09:42:14 +00:00
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* JSObject::GetNormalizedProperty(LookupResult* result) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(result->GetDictionaryEntry());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
value = JSGlobalPropertyCell::cast(value)->value();
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!value->IsJSGlobalPropertyCell());
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SetNormalizedProperty(LookupResult* result, Object* value) {
|
|
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(
|
|
|
|
|
property_dictionary()->ValueAt(result->GetDictionaryEntry()));
|
|
|
|
|
cell->set_value(value);
|
|
|
|
|
} else {
|
|
|
|
|
property_dictionary()->ValueAtPut(result->GetDictionaryEntry(), value);
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetNormalizedProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry == StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* store_value = value;
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = name->GetHeap();
|
2011-03-18 20:35:07 +00:00
|
|
|
MaybeObject* maybe_store_value =
|
|
|
|
|
heap->AllocateJSGlobalPropertyCell(value);
|
|
|
|
|
if (!maybe_store_value->ToObject(&store_value)) return maybe_store_value;
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
|
|
|
|
Object* dict;
|
|
|
|
|
{ MaybeObject* maybe_dict =
|
|
|
|
|
property_dictionary()->Add(name, store_value, details);
|
|
|
|
|
if (!maybe_dict->ToObject(&dict)) return maybe_dict;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
set_properties(StringDictionary::cast(dict));
|
2009-06-30 10:05:36 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
// Preserve enumeration index.
|
|
|
|
|
details = PropertyDetails(details.attributes(),
|
|
|
|
|
details.type(),
|
|
|
|
|
property_dictionary()->DetailsAt(entry).index());
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(property_dictionary()->ValueAt(entry));
|
|
|
|
|
cell->set_value(value);
|
|
|
|
|
// Please note we have to update the property details.
|
|
|
|
|
property_dictionary()->DetailsAtPut(entry, details);
|
|
|
|
|
} else {
|
2009-07-02 06:50:43 +00:00
|
|
|
property_dictionary()->SetEntry(entry, name, value, details);
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeleteNormalizedProperty(String* name, DeleteMode mode) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = property_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
// If we have a global object set the cell to the hole.
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
2009-07-08 11:32:03 +00:00
|
|
|
if (details.IsDontDelete()) {
|
2011-03-31 10:55:53 +00:00
|
|
|
if (mode != FORCE_DELETION) return GetHeap()->false_value();
|
2009-07-08 11:32:03 +00:00
|
|
|
// When forced to delete global properties, we have to make a
|
|
|
|
|
// map change to invalidate any ICs that think they can load
|
|
|
|
|
// from the DontDelete cell without checking if it contains
|
|
|
|
|
// the hole value.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_map;
|
|
|
|
|
{ MaybeObject* maybe_new_map = map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
2009-07-08 11:32:03 +00:00
|
|
|
set_map(Map::cast(new_map));
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
JSGlobalPropertyCell* cell =
|
|
|
|
|
JSGlobalPropertyCell::cast(dictionary->ValueAt(entry));
|
2011-03-31 10:55:53 +00:00
|
|
|
cell->set_value(cell->heap()->the_hole_value());
|
2009-06-30 10:05:36 +00:00
|
|
|
dictionary->DetailsAtPut(entry, details.AsDeleted());
|
|
|
|
|
} else {
|
2011-06-23 09:30:39 +00:00
|
|
|
Object* deleted = dictionary->DeleteProperty(entry, mode);
|
|
|
|
|
if (deleted == GetHeap()->true_value()) {
|
|
|
|
|
FixedArray* new_properties = NULL;
|
|
|
|
|
MaybeObject* maybe_properties = dictionary->Shrink(name);
|
|
|
|
|
if (!maybe_properties->To(&new_properties)) {
|
|
|
|
|
return maybe_properties;
|
|
|
|
|
}
|
|
|
|
|
set_properties(new_properties);
|
|
|
|
|
}
|
|
|
|
|
return deleted;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->true_value();
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-09-17 08:58:06 +00:00
|
|
|
bool JSObject::IsDirty() {
|
|
|
|
|
Object* cons_obj = map()->constructor();
|
|
|
|
|
if (!cons_obj->IsJSFunction())
|
|
|
|
|
return true;
|
|
|
|
|
JSFunction* fun = JSFunction::cast(cons_obj);
|
2010-03-11 16:24:31 +00:00
|
|
|
if (!fun->shared()->IsApiFunction())
|
2009-09-17 08:58:06 +00:00
|
|
|
return true;
|
|
|
|
|
// If the object is fully fast case and has the same map it was
|
|
|
|
|
// created with then no changes can have been made to it.
|
|
|
|
|
return map() != fun->initial_map()
|
|
|
|
|
|| !HasFastElements()
|
|
|
|
|
|| !HasFastProperties();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::GetProperty(Object* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = name->GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Traverse the prototype chain from the current object (this) to
|
2011-05-13 10:58:25 +00:00
|
|
|
// the holder and check for access rights. This avoids traversing the
|
2008-07-03 15:10:15 +00:00
|
|
|
// objects more than once in case of interceptors, because the
|
|
|
|
|
// holder will always be the interceptor holder and the search may
|
|
|
|
|
// only continue with a current object just after the interceptor
|
|
|
|
|
// holder in the prototype chain.
|
2011-05-16 16:33:58 +00:00
|
|
|
// Proxy handlers do not use the proxy's prototype, so we can skip this.
|
|
|
|
|
if (!result->IsHandler()) {
|
|
|
|
|
Object* last = result->IsProperty() ? result->holder() : heap->null_value();
|
|
|
|
|
ASSERT(this != this->GetPrototype());
|
|
|
|
|
for (Object* current = this; true; current = current->GetPrototype()) {
|
|
|
|
|
if (current->IsAccessCheckNeeded()) {
|
|
|
|
|
// Check if we're allowed to read from the current object. Note
|
|
|
|
|
// that even though we may not actually end up loading the named
|
|
|
|
|
// property from the current object, we still check that we have
|
|
|
|
|
// access to it.
|
|
|
|
|
JSObject* checked = JSObject::cast(current);
|
|
|
|
|
if (!heap->isolate()->MayNamedAccess(checked, name, v8::ACCESS_GET)) {
|
|
|
|
|
return checked->GetPropertyWithFailedAccessCheck(receiver,
|
|
|
|
|
result,
|
|
|
|
|
name,
|
|
|
|
|
attributes);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-05-16 16:33:58 +00:00
|
|
|
// Stop traversing the chain once we reach the last object in the
|
|
|
|
|
// chain; either the holder of the result or null in case of an
|
|
|
|
|
// absent property.
|
|
|
|
|
if (current == last) break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-25 07:37:58 +00:00
|
|
|
if (!result->IsProperty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*attributes = ABSENT;
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
*attributes = result->GetAttributes();
|
|
|
|
|
Object* value;
|
|
|
|
|
JSObject* holder = result->holder();
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
2009-06-30 10:05:36 +00:00
|
|
|
value = holder->GetNormalizedProperty(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(!value->IsTheHole() || result->IsReadOnly());
|
2011-03-18 20:35:07 +00:00
|
|
|
return value->IsTheHole() ? heap->undefined_value() : value;
|
2008-07-03 15:10:15 +00:00
|
|
|
case FIELD:
|
2008-10-15 06:03:26 +00:00
|
|
|
value = holder->FastPropertyAt(result->GetFieldIndex());
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(!value->IsTheHole() || result->IsReadOnly());
|
2011-03-18 20:35:07 +00:00
|
|
|
return value->IsTheHole() ? heap->undefined_value() : value;
|
2008-07-03 15:10:15 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
return result->GetConstantFunction();
|
|
|
|
|
case CALLBACKS:
|
|
|
|
|
return GetPropertyWithCallback(receiver,
|
|
|
|
|
result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
holder);
|
2011-05-16 16:33:58 +00:00
|
|
|
case HANDLER: {
|
|
|
|
|
JSProxy* proxy = JSProxy::cast(this);
|
|
|
|
|
return GetPropertyWithHandler(receiver, name, proxy->handler());
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
JSObject* recvr = JSObject::cast(receiver);
|
|
|
|
|
return holder->GetPropertyWithInterceptor(recvr, name, attributes);
|
|
|
|
|
}
|
2011-05-16 16:33:58 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
case EXTERNAL_ARRAY_TRANSITION:
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
case NULL_DESCRIPTOR:
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-05-16 16:33:58 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Object::GetElementWithReceiver(Object* receiver, uint32_t index) {
|
2011-08-03 12:42:04 +00:00
|
|
|
Heap* heap = IsSmi()
|
|
|
|
|
? Isolate::Current()->heap()
|
|
|
|
|
: HeapObject::cast(this)->GetHeap();
|
|
|
|
|
Object* holder = this;
|
|
|
|
|
|
|
|
|
|
// Iterate up the prototype chain until an element is found or the null
|
|
|
|
|
// prototype is encountered.
|
|
|
|
|
for (holder = this;
|
|
|
|
|
holder != heap->null_value();
|
|
|
|
|
holder = holder->GetPrototype()) {
|
|
|
|
|
if (holder->IsSmi()) {
|
|
|
|
|
Context* global_context = Isolate::Current()->context()->global_context();
|
|
|
|
|
holder = global_context->number_function()->instance_prototype();
|
|
|
|
|
} else {
|
|
|
|
|
HeapObject* heap_object = HeapObject::cast(holder);
|
|
|
|
|
if (!heap_object->IsJSObject()) {
|
|
|
|
|
Isolate* isolate = heap->isolate();
|
|
|
|
|
Context* global_context = isolate->context()->global_context();
|
|
|
|
|
if (heap_object->IsString()) {
|
|
|
|
|
holder = global_context->string_function()->instance_prototype();
|
|
|
|
|
} else if (heap_object->IsHeapNumber()) {
|
|
|
|
|
holder = global_context->number_function()->instance_prototype();
|
|
|
|
|
} else if (heap_object->IsBoolean()) {
|
|
|
|
|
holder = global_context->boolean_function()->instance_prototype();
|
|
|
|
|
} else if (heap_object->IsJSProxy()) {
|
|
|
|
|
return heap->undefined_value(); // For now...
|
|
|
|
|
} else {
|
|
|
|
|
// Undefined and null have no indexed properties.
|
|
|
|
|
ASSERT(heap_object->IsUndefined() || heap_object->IsNull());
|
|
|
|
|
return heap->undefined_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
|
2011-08-03 12:42:04 +00:00
|
|
|
// Inline the case for JSObjects. Doing so significantly improves the
|
|
|
|
|
// performance of fetching elements where checking the prototype chain is
|
|
|
|
|
// necessary.
|
|
|
|
|
JSObject* js_object = JSObject::cast(holder);
|
|
|
|
|
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (js_object->IsAccessCheckNeeded()) {
|
|
|
|
|
Isolate* isolate = heap->isolate();
|
|
|
|
|
if (!isolate->MayIndexedAccess(js_object, index, v8::ACCESS_GET)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(js_object, v8::ACCESS_GET);
|
|
|
|
|
return heap->undefined_value();
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
|
|
|
|
|
2011-08-03 12:42:04 +00:00
|
|
|
if (js_object->HasIndexedInterceptor()) {
|
|
|
|
|
return js_object->GetElementWithInterceptor(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (js_object->elements() != heap->empty_fixed_array()) {
|
|
|
|
|
MaybeObject* result = js_object->GetElementsAccessor()->GetWithReceiver(
|
|
|
|
|
js_object,
|
|
|
|
|
receiver,
|
|
|
|
|
index);
|
|
|
|
|
if (result != heap->the_hole_value()) return result;
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
2011-02-16 12:10:48 +00:00
|
|
|
}
|
|
|
|
|
|
2011-08-03 12:42:04 +00:00
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Object::GetPrototype() {
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsSmi()) {
|
|
|
|
|
Heap* heap = Isolate::Current()->heap();
|
|
|
|
|
Context* context = heap->isolate()->context()->global_context();
|
|
|
|
|
return context->number_function()->instance_prototype();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
HeapObject* heap_object = HeapObject::cast(this);
|
|
|
|
|
|
2011-05-13 10:58:25 +00:00
|
|
|
// The object is either a number, a string, a boolean,
|
|
|
|
|
// a real JS object, or a Harmony proxy.
|
2011-06-03 10:15:49 +00:00
|
|
|
if (heap_object->IsJSReceiver()) {
|
2011-05-13 10:58:25 +00:00
|
|
|
return heap_object->map()->prototype();
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
|
|
|
|
Heap* heap = heap_object->GetHeap();
|
2011-03-18 20:35:07 +00:00
|
|
|
Context* context = heap->isolate()->context()->global_context();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
if (heap_object->IsHeapNumber()) {
|
|
|
|
|
return context->number_function()->instance_prototype();
|
|
|
|
|
}
|
|
|
|
|
if (heap_object->IsString()) {
|
|
|
|
|
return context->string_function()->instance_prototype();
|
|
|
|
|
}
|
|
|
|
|
if (heap_object->IsBoolean()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return context->boolean_function()->instance_prototype();
|
|
|
|
|
} else {
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void Object::ShortPrint(FILE* out) {
|
2008-07-03 15:10:15 +00:00
|
|
|
HeapStringAllocator allocator;
|
|
|
|
|
StringStream accumulator(&allocator);
|
|
|
|
|
ShortPrint(&accumulator);
|
2010-12-20 10:38:19 +00:00
|
|
|
accumulator.OutputToFile(out);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Object::ShortPrint(StringStream* accumulator) {
|
|
|
|
|
if (IsSmi()) {
|
|
|
|
|
Smi::cast(this)->SmiPrint(accumulator);
|
|
|
|
|
} else if (IsFailure()) {
|
|
|
|
|
Failure::cast(this)->FailurePrint(accumulator);
|
|
|
|
|
} else {
|
|
|
|
|
HeapObject::cast(this)->HeapObjectShortPrint(accumulator);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void Smi::SmiPrint(FILE* out) {
|
|
|
|
|
PrintF(out, "%d", value());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Smi::SmiPrint(StringStream* accumulator) {
|
|
|
|
|
accumulator->Add("%d", value());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Failure::FailurePrint(StringStream* accumulator) {
|
2009-10-14 09:26:16 +00:00
|
|
|
accumulator->Add("Failure(%p)", reinterpret_cast<void*>(value()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void Failure::FailurePrint(FILE* out) {
|
|
|
|
|
PrintF(out, "Failure(%p)", reinterpret_cast<void*>(value()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Should a word be prefixed by 'a' or 'an' in order to read naturally in
|
|
|
|
|
// English? Returns false for non-ASCII or words that don't start with
|
|
|
|
|
// a capital letter. The a/an rule follows pronunciation in English.
|
|
|
|
|
// We don't use the BBC's overcorrect "an historic occasion" though if
|
|
|
|
|
// you speak a dialect you may well say "an 'istoric occasion".
|
|
|
|
|
static bool AnWord(String* str) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (str->length() == 0) return false; // A nothing.
|
|
|
|
|
int c0 = str->Get(0);
|
|
|
|
|
int c1 = str->length() > 1 ? str->Get(1) : 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (c0 == 'U') {
|
|
|
|
|
if (c1 > 'Z') {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An Umpire, but a UTF8String, a U.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
} else if (c0 == 'A' || c0 == 'E' || c0 == 'I' || c0 == 'O') {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An Ape, an ABCBook.
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if ((c1 == 0 || (c1 >= 'A' && c1 <= 'Z')) &&
|
|
|
|
|
(c0 == 'F' || c0 == 'H' || c0 == 'M' || c0 == 'N' || c0 == 'R' ||
|
|
|
|
|
c0 == 'S' || c0 == 'X')) {
|
2008-11-03 10:16:05 +00:00
|
|
|
return true; // An MP3File, an M.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* String::SlowTryFlatten(PretenureFlag pretenure) {
|
2008-07-03 15:10:15 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
// Do not attempt to flatten in debug mode when allocation is not
|
|
|
|
|
// allowed. This is to avoid an assertion failure when allocating.
|
|
|
|
|
// Flattening strings is the only case where we always allow
|
|
|
|
|
// allocation because no GC is performed if the allocation fails.
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!HEAP->IsAllocationAllowed()) return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
#endif
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(this).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kConsStringTag: {
|
|
|
|
|
ConsString* cs = ConsString::cast(this);
|
2008-11-03 10:16:05 +00:00
|
|
|
if (cs->second()->length() == 0) {
|
2010-05-20 09:01:39 +00:00
|
|
|
return cs->first();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// There's little point in putting the flat string in new space if the
|
|
|
|
|
// cons string is in old space. It can never get GCed until there is
|
|
|
|
|
// an old space GC.
|
2011-03-18 20:35:07 +00:00
|
|
|
PretenureFlag tenure = heap->InNewSpace(this) ? pretenure : TENURED;
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
2008-10-22 09:09:07 +00:00
|
|
|
Object* object;
|
|
|
|
|
String* result;
|
2009-05-01 11:16:29 +00:00
|
|
|
if (IsAsciiRepresentation()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_object = heap->AllocateRawAsciiString(len, tenure);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_object->ToObject(&object)) return maybe_object;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
result = String::cast(object);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cs->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int first_length = first->length();
|
2008-10-22 09:09:07 +00:00
|
|
|
char* dest = SeqAsciiString::cast(result)->GetChars();
|
2009-03-17 09:33:06 +00:00
|
|
|
WriteToFlat(first, dest, 0, first_length);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cs->second();
|
|
|
|
|
WriteToFlat(second,
|
2008-10-22 09:09:07 +00:00
|
|
|
dest + first_length,
|
|
|
|
|
0,
|
|
|
|
|
len - first_length);
|
|
|
|
|
} else {
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_object =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateRawTwoByteString(len, tenure);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_object->ToObject(&object)) return maybe_object;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
result = String::cast(object);
|
|
|
|
|
uc16* dest = SeqTwoByteString::cast(result)->GetChars();
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cs->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int first_length = first->length();
|
|
|
|
|
WriteToFlat(first, dest, 0, first_length);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cs->second();
|
|
|
|
|
WriteToFlat(second,
|
2008-10-22 09:09:07 +00:00
|
|
|
dest + first_length,
|
|
|
|
|
0,
|
|
|
|
|
len - first_length);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
cs->set_first(result);
|
2011-03-18 20:35:07 +00:00
|
|
|
cs->set_second(heap->empty_string());
|
2010-05-20 09:01:39 +00:00
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-02-11 23:52:52 +00:00
|
|
|
bool String::MakeExternal(v8::String::ExternalStringResource* resource) {
|
2010-06-30 07:40:40 +00:00
|
|
|
// Externalizing twice leaks the external resource, so it's
|
2010-06-17 16:19:28 +00:00
|
|
|
// prohibited by the API.
|
|
|
|
|
ASSERT(!this->IsExternalString());
|
2009-02-11 23:52:52 +00:00
|
|
|
#ifdef DEBUG
|
2009-10-20 09:10:26 +00:00
|
|
|
if (FLAG_enable_slow_asserts) {
|
2009-02-11 23:52:52 +00:00
|
|
|
// Assert that the resource and the string are equivalent.
|
|
|
|
|
ASSERT(static_cast<size_t>(this->length()) == resource->length());
|
2010-05-05 12:25:58 +00:00
|
|
|
ScopedVector<uc16> smart_chars(this->length());
|
|
|
|
|
String::WriteToFlat(this, smart_chars.start(), 0, this->length());
|
|
|
|
|
ASSERT(memcmp(smart_chars.start(),
|
2009-02-11 23:52:52 +00:00
|
|
|
resource->data(),
|
2010-05-05 12:25:58 +00:00
|
|
|
resource->length() * sizeof(smart_chars[0])) == 0);
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
#endif // DEBUG
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-02-11 23:52:52 +00:00
|
|
|
int size = this->Size(); // Byte size of the original string.
|
|
|
|
|
if (size < ExternalString::kSize) {
|
|
|
|
|
// The string is too small to fit an external String in its place. This can
|
|
|
|
|
// only happen for zero length strings.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(size >= ExternalString::kSize);
|
2010-06-17 16:19:28 +00:00
|
|
|
bool is_ascii = this->IsAsciiRepresentation();
|
2009-02-11 23:52:52 +00:00
|
|
|
bool is_symbol = this->IsSymbol();
|
|
|
|
|
int length = this->length();
|
2009-11-24 14:10:06 +00:00
|
|
|
int hash_field = this->hash_field();
|
2009-02-11 23:52:52 +00:00
|
|
|
|
|
|
|
|
// Morph the object to an external string by adjusting the map and
|
|
|
|
|
// reinitializing the fields.
|
2010-06-17 16:19:28 +00:00
|
|
|
this->set_map(is_ascii ?
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->external_string_with_ascii_data_map() :
|
|
|
|
|
heap->external_string_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
ExternalTwoByteString* self = ExternalTwoByteString::cast(this);
|
|
|
|
|
self->set_length(length);
|
2009-11-24 14:10:06 +00:00
|
|
|
self->set_hash_field(hash_field);
|
2009-02-11 23:52:52 +00:00
|
|
|
self->set_resource(resource);
|
|
|
|
|
// Additionally make the object into an external symbol if the original string
|
|
|
|
|
// was a symbol to start with.
|
|
|
|
|
if (is_symbol) {
|
|
|
|
|
self->Hash(); // Force regeneration of the hash value.
|
|
|
|
|
// Now morph this external string into a external symbol.
|
2010-06-17 16:19:28 +00:00
|
|
|
this->set_map(is_ascii ?
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->external_symbol_with_ascii_data_map() :
|
|
|
|
|
heap->external_symbol_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Fill the remainder of the string with dead wood.
|
|
|
|
|
int new_size = this->Size(); // Byte size of the external String object.
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->CreateFillerObjectAt(this->address() + new_size, size - new_size);
|
2009-02-11 23:52:52 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::MakeExternal(v8::String::ExternalAsciiStringResource* resource) {
|
|
|
|
|
#ifdef DEBUG
|
2009-10-20 09:10:26 +00:00
|
|
|
if (FLAG_enable_slow_asserts) {
|
2009-02-11 23:52:52 +00:00
|
|
|
// Assert that the resource and the string are equivalent.
|
|
|
|
|
ASSERT(static_cast<size_t>(this->length()) == resource->length());
|
2010-05-05 12:25:58 +00:00
|
|
|
ScopedVector<char> smart_chars(this->length());
|
|
|
|
|
String::WriteToFlat(this, smart_chars.start(), 0, this->length());
|
|
|
|
|
ASSERT(memcmp(smart_chars.start(),
|
2009-02-11 23:52:52 +00:00
|
|
|
resource->data(),
|
2010-05-05 12:25:58 +00:00
|
|
|
resource->length() * sizeof(smart_chars[0])) == 0);
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
#endif // DEBUG
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-02-11 23:52:52 +00:00
|
|
|
int size = this->Size(); // Byte size of the original string.
|
|
|
|
|
if (size < ExternalString::kSize) {
|
|
|
|
|
// The string is too small to fit an external String in its place. This can
|
|
|
|
|
// only happen for zero length strings.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(size >= ExternalString::kSize);
|
|
|
|
|
bool is_symbol = this->IsSymbol();
|
|
|
|
|
int length = this->length();
|
2009-11-24 14:10:06 +00:00
|
|
|
int hash_field = this->hash_field();
|
2009-02-11 23:52:52 +00:00
|
|
|
|
|
|
|
|
// Morph the object to an external string by adjusting the map and
|
|
|
|
|
// reinitializing the fields.
|
2011-03-18 20:35:07 +00:00
|
|
|
this->set_map(heap->external_ascii_string_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
ExternalAsciiString* self = ExternalAsciiString::cast(this);
|
|
|
|
|
self->set_length(length);
|
2009-11-24 14:10:06 +00:00
|
|
|
self->set_hash_field(hash_field);
|
2009-02-11 23:52:52 +00:00
|
|
|
self->set_resource(resource);
|
|
|
|
|
// Additionally make the object into an external symbol if the original string
|
|
|
|
|
// was a symbol to start with.
|
|
|
|
|
if (is_symbol) {
|
|
|
|
|
self->Hash(); // Force regeneration of the hash value.
|
|
|
|
|
// Now morph this external string into a external symbol.
|
2011-03-18 20:35:07 +00:00
|
|
|
this->set_map(heap->external_ascii_symbol_map());
|
2009-02-11 23:52:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Fill the remainder of the string with dead wood.
|
|
|
|
|
int new_size = this->Size(); // Byte size of the external String object.
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->CreateFillerObjectAt(this->address() + new_size, size - new_size);
|
2009-02-11 23:52:52 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void String::StringShortPrint(StringStream* accumulator) {
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
2009-11-24 14:10:06 +00:00
|
|
|
if (len > kMaxShortPrintLength) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("<Very long string[%u]>", len);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!LooksValid()) {
|
|
|
|
|
accumulator->Add("<Invalid String>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
StringInputBuffer buf(this);
|
|
|
|
|
|
|
|
|
|
bool truncated = false;
|
2008-07-30 08:49:36 +00:00
|
|
|
if (len > kMaxShortPrintLength) {
|
|
|
|
|
len = kMaxShortPrintLength;
|
2008-07-03 15:10:15 +00:00
|
|
|
truncated = true;
|
|
|
|
|
}
|
|
|
|
|
bool ascii = true;
|
|
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
int c = buf.GetNext();
|
|
|
|
|
|
|
|
|
|
if (c < 32 || c >= 127) {
|
|
|
|
|
ascii = false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
buf.Reset(this);
|
|
|
|
|
if (ascii) {
|
2009-03-17 09:33:06 +00:00
|
|
|
accumulator->Add("<String[%u]: ", length());
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
accumulator->Put(buf.GetNext());
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
} else {
|
|
|
|
|
// Backslash indicates that the string contains control
|
|
|
|
|
// characters and that backslashes are therefore escaped.
|
2009-03-17 09:33:06 +00:00
|
|
|
accumulator->Add("<String[%u]\\: ", length());
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
int c = buf.GetNext();
|
|
|
|
|
if (c == '\n') {
|
|
|
|
|
accumulator->Add("\\n");
|
|
|
|
|
} else if (c == '\r') {
|
|
|
|
|
accumulator->Add("\\r");
|
|
|
|
|
} else if (c == '\\') {
|
|
|
|
|
accumulator->Add("\\\\");
|
|
|
|
|
} else if (c < 32 || c > 126) {
|
|
|
|
|
accumulator->Add("\\x%02x", c);
|
|
|
|
|
} else {
|
|
|
|
|
accumulator->Put(c);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (truncated) {
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
accumulator->Put('.');
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::JSObjectShortPrint(StringStream* accumulator) {
|
|
|
|
|
switch (map()->instance_type()) {
|
|
|
|
|
case JS_ARRAY_TYPE: {
|
|
|
|
|
double length = JSArray::cast(this)->length()->Number();
|
|
|
|
|
accumulator->Add("<JS array[%u]>", static_cast<uint32_t>(length));
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-08-03 11:55:13 +00:00
|
|
|
case JS_WEAK_MAP_TYPE: {
|
|
|
|
|
int elements = JSWeakMap::cast(this)->table()->NumberOfElements();
|
|
|
|
|
accumulator->Add("<JS WeakMap[%d]>", elements);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2008-09-23 11:45:43 +00:00
|
|
|
case JS_REGEXP_TYPE: {
|
|
|
|
|
accumulator->Add("<JS RegExp>");
|
|
|
|
|
break;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_FUNCTION_TYPE: {
|
|
|
|
|
Object* fun_name = JSFunction::cast(this)->shared()->name();
|
|
|
|
|
bool printed = false;
|
|
|
|
|
if (fun_name->IsString()) {
|
|
|
|
|
String* str = String::cast(fun_name);
|
|
|
|
|
if (str->length() > 0) {
|
|
|
|
|
accumulator->Add("<JS Function ");
|
|
|
|
|
accumulator->Put(str);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
printed = true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!printed) {
|
|
|
|
|
accumulator->Add("<JS Function>");
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
// All other JSObjects are rather similar to each other (JSObject,
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// JSGlobalProxy, JSGlobalObject, JSUndetectableObject, JSValue).
|
2008-07-03 15:10:15 +00:00
|
|
|
default: {
|
2011-03-31 10:55:53 +00:00
|
|
|
Map* map_of_this = map();
|
|
|
|
|
Heap* heap = map_of_this->heap();
|
|
|
|
|
Object* constructor = map_of_this->constructor();
|
2008-07-03 15:10:15 +00:00
|
|
|
bool printed = false;
|
|
|
|
|
if (constructor->IsHeapObject() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!heap->Contains(HeapObject::cast(constructor))) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("!!!INVALID CONSTRUCTOR!!!");
|
|
|
|
|
} else {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
bool global_object = IsJSGlobalProxy();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (constructor->IsJSFunction()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!heap->Contains(JSFunction::cast(constructor)->shared())) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("!!!INVALID SHARED ON CONSTRUCTOR!!!");
|
|
|
|
|
} else {
|
|
|
|
|
Object* constructor_name =
|
|
|
|
|
JSFunction::cast(constructor)->shared()->name();
|
|
|
|
|
if (constructor_name->IsString()) {
|
|
|
|
|
String* str = String::cast(constructor_name);
|
|
|
|
|
if (str->length() > 0) {
|
|
|
|
|
bool vowel = AnWord(str);
|
|
|
|
|
accumulator->Add("<%sa%s ",
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
global_object ? "Global Object: " : "",
|
2008-07-03 15:10:15 +00:00
|
|
|
vowel ? "n" : "");
|
|
|
|
|
accumulator->Put(str);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
printed = true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!printed) {
|
|
|
|
|
accumulator->Add("<JS %sObject", global_object ? "Global " : "");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (IsJSValue()) {
|
|
|
|
|
accumulator->Add(" value = ");
|
|
|
|
|
JSValue::cast(this)->value()->ShortPrint(accumulator);
|
|
|
|
|
}
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::HeapObjectShortPrint(StringStream* accumulator) {
|
2011-03-18 20:35:07 +00:00
|
|
|
// if (!HEAP->InNewSpace(this)) PrintF("*", this);
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->Contains(this)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("!!!INVALID POINTER!!!");
|
|
|
|
|
return;
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!heap->Contains(map())) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("!!!INVALID MAP!!!");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
accumulator->Add("%p ", this);
|
|
|
|
|
|
|
|
|
|
if (IsString()) {
|
|
|
|
|
String::cast(this)->StringShortPrint(accumulator);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
if (IsJSObject()) {
|
|
|
|
|
JSObject::cast(this)->JSObjectShortPrint(accumulator);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
switch (map()->instance_type()) {
|
|
|
|
|
case MAP_TYPE:
|
|
|
|
|
accumulator->Add("<Map>");
|
|
|
|
|
break;
|
|
|
|
|
case FIXED_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<FixedArray[%u]>", FixedArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ByteArray[%u]>", ByteArray::cast(this)->length());
|
|
|
|
|
break;
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalPixelArray[%u]>",
|
|
|
|
|
ExternalPixelArray::cast(this)->length());
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalByteArray[%u]>",
|
|
|
|
|
ExternalByteArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedByteArray[%u]>",
|
|
|
|
|
ExternalUnsignedByteArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_SHORT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalShortArray[%u]>",
|
|
|
|
|
ExternalShortArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedShortArray[%u]>",
|
|
|
|
|
ExternalUnsignedShortArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_INT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalIntArray[%u]>",
|
|
|
|
|
ExternalIntArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalUnsignedIntArray[%u]>",
|
|
|
|
|
ExternalUnsignedIntArray::cast(this)->length());
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_FLOAT_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalFloatArray[%u]>",
|
|
|
|
|
ExternalFloatArray::cast(this)->length());
|
|
|
|
|
break;
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ARRAY_TYPE:
|
|
|
|
|
accumulator->Add("<ExternalDoubleArray[%u]>",
|
|
|
|
|
ExternalDoubleArray::cast(this)->length());
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case SHARED_FUNCTION_INFO_TYPE:
|
|
|
|
|
accumulator->Add("<SharedFunctionInfo>");
|
|
|
|
|
break;
|
2011-02-02 13:31:52 +00:00
|
|
|
case JS_MESSAGE_OBJECT_TYPE:
|
|
|
|
|
accumulator->Add("<JSMessageObject>");
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
#define MAKE_STRUCT_CASE(NAME, Name, name) \
|
|
|
|
|
case NAME##_TYPE: \
|
2009-02-13 12:56:44 +00:00
|
|
|
accumulator->Put('<'); \
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add(#Name); \
|
2009-02-13 12:56:44 +00:00
|
|
|
accumulator->Put('>'); \
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
STRUCT_LIST(MAKE_STRUCT_CASE)
|
|
|
|
|
#undef MAKE_STRUCT_CASE
|
|
|
|
|
case CODE_TYPE:
|
|
|
|
|
accumulator->Add("<Code>");
|
|
|
|
|
break;
|
|
|
|
|
case ODDBALL_TYPE: {
|
|
|
|
|
if (IsUndefined())
|
|
|
|
|
accumulator->Add("<undefined>");
|
|
|
|
|
else if (IsTheHole())
|
|
|
|
|
accumulator->Add("<the hole>");
|
|
|
|
|
else if (IsNull())
|
|
|
|
|
accumulator->Add("<null>");
|
|
|
|
|
else if (IsTrue())
|
|
|
|
|
accumulator->Add("<true>");
|
|
|
|
|
else if (IsFalse())
|
|
|
|
|
accumulator->Add("<false>");
|
|
|
|
|
else
|
|
|
|
|
accumulator->Add("<Odd Oddball>");
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case HEAP_NUMBER_TYPE:
|
|
|
|
|
accumulator->Add("<Number: ");
|
|
|
|
|
HeapNumber::cast(this)->HeapNumberPrint(accumulator);
|
|
|
|
|
accumulator->Put('>');
|
|
|
|
|
break;
|
2011-05-19 11:47:34 +00:00
|
|
|
case FOREIGN_TYPE:
|
|
|
|
|
accumulator->Add("<Foreign>");
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
case JS_GLOBAL_PROPERTY_CELL_TYPE:
|
|
|
|
|
accumulator->Add("Cell for ");
|
|
|
|
|
JSGlobalPropertyCell::cast(this)->value()->ShortPrint(accumulator);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
|
|
|
|
accumulator->Add("<Other heap object (%d)>", map()->instance_type());
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::Iterate(ObjectVisitor* v) {
|
|
|
|
|
// Handle header
|
|
|
|
|
IteratePointer(v, kMapOffset);
|
|
|
|
|
// Handle object body
|
|
|
|
|
Map* m = map();
|
|
|
|
|
IterateBody(m->instance_type(), SizeFromMap(m), v);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapObject::IterateBody(InstanceType type, int object_size,
|
|
|
|
|
ObjectVisitor* v) {
|
|
|
|
|
// Avoiding <Type>::cast(this) because it accesses the map pointer field.
|
|
|
|
|
// During GC, the map pointer field is encoded.
|
|
|
|
|
if (type < FIRST_NONSTRING_TYPE) {
|
|
|
|
|
switch (type & kStringRepresentationMask) {
|
|
|
|
|
case kSeqStringTag:
|
|
|
|
|
break;
|
|
|
|
|
case kConsStringTag:
|
2010-08-11 14:30:14 +00:00
|
|
|
ConsString::BodyDescriptor::IterateBody(this, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2009-11-06 13:48:33 +00:00
|
|
|
case kExternalStringTag:
|
|
|
|
|
if ((type & kStringEncodingMask) == kAsciiStringTag) {
|
|
|
|
|
reinterpret_cast<ExternalAsciiString*>(this)->
|
|
|
|
|
ExternalAsciiStringIterateBody(v);
|
|
|
|
|
} else {
|
|
|
|
|
reinterpret_cast<ExternalTwoByteString*>(this)->
|
|
|
|
|
ExternalTwoByteStringIterateBody(v);
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
|
case FIXED_ARRAY_TYPE:
|
2010-08-11 14:30:14 +00:00
|
|
|
FixedArray::BodyDescriptor::IterateBody(this, object_size, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2011-06-09 10:03:35 +00:00
|
|
|
case FIXED_DOUBLE_ARRAY_TYPE:
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_OBJECT_TYPE:
|
2009-01-14 12:13:26 +00:00
|
|
|
case JS_CONTEXT_EXTENSION_OBJECT_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_VALUE_TYPE:
|
|
|
|
|
case JS_ARRAY_TYPE:
|
2011-08-03 11:55:13 +00:00
|
|
|
case JS_WEAK_MAP_TYPE:
|
2008-09-23 11:45:43 +00:00
|
|
|
case JS_REGEXP_TYPE:
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
case JS_GLOBAL_PROXY_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
case JS_GLOBAL_OBJECT_TYPE:
|
|
|
|
|
case JS_BUILTINS_OBJECT_TYPE:
|
2011-02-02 13:31:52 +00:00
|
|
|
case JS_MESSAGE_OBJECT_TYPE:
|
2010-08-11 14:30:14 +00:00
|
|
|
JSObject::BodyDescriptor::IterateBody(this, object_size, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2010-08-20 07:10:18 +00:00
|
|
|
case JS_FUNCTION_TYPE:
|
|
|
|
|
reinterpret_cast<JSFunction*>(this)
|
|
|
|
|
->JSFunctionIterateBody(object_size, v);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case ODDBALL_TYPE:
|
2010-08-11 14:30:14 +00:00
|
|
|
Oddball::BodyDescriptor::IterateBody(this, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2011-05-13 10:58:25 +00:00
|
|
|
case JS_PROXY_TYPE:
|
|
|
|
|
JSProxy::BodyDescriptor::IterateBody(this, v);
|
|
|
|
|
break;
|
2011-05-19 11:47:34 +00:00
|
|
|
case FOREIGN_TYPE:
|
|
|
|
|
reinterpret_cast<Foreign*>(this)->ForeignIterateBody(v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
case MAP_TYPE:
|
2010-08-11 14:30:14 +00:00
|
|
|
Map::BodyDescriptor::IterateBody(this, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
case CODE_TYPE:
|
|
|
|
|
reinterpret_cast<Code*>(this)->CodeIterateBody(v);
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
case JS_GLOBAL_PROPERTY_CELL_TYPE:
|
2010-08-11 14:30:14 +00:00
|
|
|
JSGlobalPropertyCell::BodyDescriptor::IterateBody(this, v);
|
2009-06-30 10:05:36 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
case HEAP_NUMBER_TYPE:
|
|
|
|
|
case FILLER_TYPE:
|
|
|
|
|
case BYTE_ARRAY_TYPE:
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ARRAY_TYPE:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_SHORT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_INT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ARRAY_TYPE:
|
|
|
|
|
case EXTERNAL_FLOAT_ARRAY_TYPE:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ARRAY_TYPE:
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2010-08-11 14:30:14 +00:00
|
|
|
case SHARED_FUNCTION_INFO_TYPE:
|
|
|
|
|
SharedFunctionInfo::BodyDescriptor::IterateBody(this, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
2010-08-11 14:30:14 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
#define MAKE_STRUCT_CASE(NAME, Name, name) \
|
|
|
|
|
case NAME##_TYPE:
|
|
|
|
|
STRUCT_LIST(MAKE_STRUCT_CASE)
|
|
|
|
|
#undef MAKE_STRUCT_CASE
|
2010-08-11 14:30:14 +00:00
|
|
|
StructBodyDescriptor::IterateBody(this, object_size, v);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
PrintF("Unknown type: %d\n", type);
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* HeapNumber::HeapNumberToBoolean() {
|
|
|
|
|
// NaN, +0, and -0 should return the false object
|
2010-08-16 07:52:49 +00:00
|
|
|
#if __BYTE_ORDER == __LITTLE_ENDIAN
|
|
|
|
|
union IeeeDoubleLittleEndianArchType u;
|
|
|
|
|
#elif __BYTE_ORDER == __BIG_ENDIAN
|
|
|
|
|
union IeeeDoubleBigEndianArchType u;
|
|
|
|
|
#endif
|
|
|
|
|
u.d = value();
|
|
|
|
|
if (u.bits.exp == 2047) {
|
|
|
|
|
// Detect NaN for IEEE double precision floating point.
|
|
|
|
|
if ((u.bits.man_low | u.bits.man_high) != 0)
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->false_value();
|
2010-08-16 07:52:49 +00:00
|
|
|
}
|
|
|
|
|
if (u.bits.exp == 0) {
|
|
|
|
|
// Detect +0, and -0 for IEEE double precision floating point.
|
|
|
|
|
if ((u.bits.man_low | u.bits.man_high) == 0)
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->false_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->true_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void HeapNumber::HeapNumberPrint(FILE* out) {
|
|
|
|
|
PrintF(out, "%.16g", Number());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void HeapNumber::HeapNumberPrint(StringStream* accumulator) {
|
|
|
|
|
// The Windows version of vsnprintf can allocate when printing a %g string
|
|
|
|
|
// into a buffer that may not be big enough. We don't want random memory
|
|
|
|
|
// allocation when producing post-crash stack traces, so we print into a
|
|
|
|
|
// buffer that is plenty big enough for any floating point number, then
|
|
|
|
|
// print that using vsnprintf (which may truncate but never allocate if
|
|
|
|
|
// there is no more space in the buffer).
|
2008-09-11 14:34:48 +00:00
|
|
|
EmbeddedVector<char, 100> buffer;
|
|
|
|
|
OS::SNPrintF(buffer, "%.16g", Number());
|
|
|
|
|
accumulator->Add("%s", buffer.start());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
String* JSReceiver::class_name() {
|
|
|
|
|
if (IsJSFunction() && IsJSFunctionProxy()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->function_class_symbol();
|
2009-09-09 11:46:09 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (map()->constructor()->IsJSFunction()) {
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
return String::cast(constructor->shared()->instance_class_name());
|
|
|
|
|
}
|
2008-10-20 06:35:28 +00:00
|
|
|
// If the constructor is not present, return "Object".
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->Object_symbol();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
String* JSReceiver::constructor_name() {
|
2009-09-09 11:46:09 +00:00
|
|
|
if (map()->constructor()->IsJSFunction()) {
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
|
|
|
|
String* name = String::cast(constructor->shared()->name());
|
2010-10-13 14:57:00 +00:00
|
|
|
if (name->length() > 0) return name;
|
|
|
|
|
String* inferred_name = constructor->shared()->inferred_name();
|
|
|
|
|
if (inferred_name->length() > 0) return inferred_name;
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsJSObject()) return JSObject::cast(proto)->constructor_name();
|
2009-09-09 11:46:09 +00:00
|
|
|
}
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
// TODO(rossberg): what about proxies?
|
2009-09-09 11:46:09 +00:00
|
|
|
// If the constructor is not present, return "Object".
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->Object_symbol();
|
2009-09-09 11:46:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::AddFastPropertyUsingMap(Map* new_map,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int index = new_map->PropertyIndexFor(name);
|
2008-10-15 06:03:26 +00:00
|
|
|
if (map()->unused_property_fields() == 0) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(map()->unused_property_fields() == 0);
|
|
|
|
|
int new_unused = new_map->unused_property_fields();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* values;
|
|
|
|
|
{ MaybeObject* maybe_values =
|
|
|
|
|
properties()->CopySize(properties()->length() + new_unused + 1);
|
|
|
|
|
if (!maybe_values->ToObject(&values)) return maybe_values;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
set_properties(FixedArray::cast(values));
|
|
|
|
|
}
|
|
|
|
|
set_map(new_map);
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-04-12 08:27:38 +00:00
|
|
|
static bool IsIdentifier(UnicodeCache* cache,
|
|
|
|
|
unibrow::CharacterStream* buffer) {
|
|
|
|
|
// Checks whether the buffer contains an identifier (no escape).
|
|
|
|
|
if (!buffer->has_more()) return false;
|
|
|
|
|
if (!cache->IsIdentifierStart(buffer->GetNext())) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
if (!cache->IsIdentifierPart(buffer->GetNext())) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::AddFastProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2011-02-03 19:29:10 +00:00
|
|
|
ASSERT(!IsJSGlobalProxy());
|
|
|
|
|
|
2009-04-22 07:38:08 +00:00
|
|
|
// Normalize the object if the name is an actual string (not the
|
|
|
|
|
// hidden symbols) and is not a real identifier.
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetHeap()->isolate();
|
2008-07-03 15:10:15 +00:00
|
|
|
StringInputBuffer buffer(name);
|
2011-04-12 08:27:38 +00:00
|
|
|
if (!IsIdentifier(isolate->unicode_cache(), &buffer)
|
2011-03-22 19:15:02 +00:00
|
|
|
&& name != isolate->heap()->hidden_symbol()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
DescriptorArray* old_descriptors = map()->instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Compute the new index for new field.
|
|
|
|
|
int index = map()->NextFreePropertyIndex();
|
|
|
|
|
|
|
|
|
|
// Allocate new instance descriptors with (name, index) added
|
2008-08-06 10:02:49 +00:00
|
|
|
FieldDescriptor new_field(name, index, attributes);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_descriptors;
|
|
|
|
|
{ MaybeObject* maybe_new_descriptors =
|
|
|
|
|
old_descriptors->CopyInsert(&new_field, REMOVE_TRANSITIONS);
|
|
|
|
|
if (!maybe_new_descriptors->ToObject(&new_descriptors)) {
|
|
|
|
|
return maybe_new_descriptors;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-03-23 09:57:12 +00:00
|
|
|
// Only allow map transition if the object isn't the global object and there
|
|
|
|
|
// is not a transition for the name, or there's a transition for the name but
|
|
|
|
|
// it's unrelated to properties.
|
|
|
|
|
int descriptor_index = old_descriptors->Search(name);
|
|
|
|
|
|
|
|
|
|
// External array transitions are stored in the descriptor for property "",
|
|
|
|
|
// which is not a identifier and should have forced a switch to slow
|
|
|
|
|
// properties above.
|
|
|
|
|
ASSERT(descriptor_index == DescriptorArray::kNotFound ||
|
|
|
|
|
old_descriptors->GetType(descriptor_index) != EXTERNAL_ARRAY_TRANSITION);
|
|
|
|
|
bool can_insert_transition = descriptor_index == DescriptorArray::kNotFound ||
|
|
|
|
|
old_descriptors->GetType(descriptor_index) == EXTERNAL_ARRAY_TRANSITION;
|
2008-07-03 15:10:15 +00:00
|
|
|
bool allow_map_transition =
|
2011-03-23 09:57:12 +00:00
|
|
|
can_insert_transition &&
|
|
|
|
|
(isolate->context()->global_context()->object_function()->map() != map());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-15 06:03:26 +00:00
|
|
|
ASSERT(index < map()->inobject_properties() ||
|
|
|
|
|
(index - map()->inobject_properties()) < properties()->length() ||
|
2008-10-09 12:18:48 +00:00
|
|
|
map()->unused_property_fields() == 0);
|
|
|
|
|
// Allocate a new map for the object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* r;
|
|
|
|
|
{ MaybeObject* maybe_r = map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_r->ToObject(&r)) return maybe_r;
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
Map* new_map = Map::cast(r);
|
|
|
|
|
if (allow_map_transition) {
|
|
|
|
|
// Allocate new instance descriptors for the old map with map transition.
|
|
|
|
|
MapTransitionDescriptor d(name, Map::cast(new_map), attributes);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* r;
|
|
|
|
|
{ MaybeObject* maybe_r = old_descriptors->CopyInsert(&d, KEEP_TRANSITIONS);
|
|
|
|
|
if (!maybe_r->ToObject(&r)) return maybe_r;
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
old_descriptors = DescriptorArray::cast(r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (map()->unused_property_fields() == 0) {
|
2010-07-02 11:27:57 +00:00
|
|
|
if (properties()->length() > MaxFastProperties()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
// Make room for the new value
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* values;
|
|
|
|
|
{ MaybeObject* maybe_values =
|
|
|
|
|
properties()->CopySize(properties()->length() + kFieldsAdded);
|
|
|
|
|
if (!maybe_values->ToObject(&values)) return maybe_values;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
set_properties(FixedArray::cast(values));
|
2008-10-09 12:18:48 +00:00
|
|
|
new_map->set_unused_property_fields(kFieldsAdded - 1);
|
|
|
|
|
} else {
|
|
|
|
|
new_map->set_unused_property_fields(map()->unused_property_fields() - 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
// We have now allocated all the necessary objects.
|
|
|
|
|
// All the changes can be applied at once, so they are atomic.
|
|
|
|
|
map()->set_instance_descriptors(old_descriptors);
|
|
|
|
|
new_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
set_map(new_map);
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::AddConstantFunctionProperty(
|
|
|
|
|
String* name,
|
|
|
|
|
JSFunction* function,
|
|
|
|
|
PropertyAttributes attributes) {
|
2011-03-31 10:55:53 +00:00
|
|
|
ASSERT(!GetHeap()->InNewSpace(function));
|
2009-12-16 15:43:20 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate new instance descriptors with (name, function) added
|
|
|
|
|
ConstantFunctionDescriptor d(name, function, attributes);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_descriptors;
|
|
|
|
|
{ MaybeObject* maybe_new_descriptors =
|
|
|
|
|
map()->instance_descriptors()->CopyInsert(&d, REMOVE_TRANSITIONS);
|
|
|
|
|
if (!maybe_new_descriptors->ToObject(&new_descriptors)) {
|
|
|
|
|
return maybe_new_descriptors;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate a new map for the object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_map;
|
|
|
|
|
{ MaybeObject* maybe_new_map = map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
DescriptorArray* descriptors = DescriptorArray::cast(new_descriptors);
|
|
|
|
|
Map::cast(new_map)->set_instance_descriptors(descriptors);
|
2008-08-06 10:02:49 +00:00
|
|
|
Map* old_map = map();
|
2008-07-03 15:10:15 +00:00
|
|
|
set_map(Map::cast(new_map));
|
|
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
// If the old map is the global object map (from new Object()),
|
|
|
|
|
// then transitions are not added to it, so we are done.
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = old_map->heap();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (old_map == heap->isolate()->context()->global_context()->
|
|
|
|
|
object_function()->map()) {
|
2008-08-06 10:02:49 +00:00
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Do not add CONSTANT_TRANSITIONS to global objects
|
|
|
|
|
if (IsGlobalObject()) {
|
|
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Add a CONSTANT_TRANSITION descriptor to the old map,
|
|
|
|
|
// so future assignments to this property on other objects
|
|
|
|
|
// of the same type will create a normal field, not a constant function.
|
|
|
|
|
// Don't do this for special properties, with non-trival attributes.
|
|
|
|
|
if (attributes != NONE) {
|
|
|
|
|
return function;
|
|
|
|
|
}
|
2010-08-12 14:51:59 +00:00
|
|
|
ConstTransitionDescriptor mark(name, Map::cast(new_map));
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_new_descriptors =
|
|
|
|
|
old_map->instance_descriptors()->CopyInsert(&mark, KEEP_TRANSITIONS);
|
|
|
|
|
if (!maybe_new_descriptors->ToObject(&new_descriptors)) {
|
|
|
|
|
// We have accomplished the main goal, so return success.
|
|
|
|
|
return function;
|
|
|
|
|
}
|
2008-08-06 10:02:49 +00:00
|
|
|
}
|
|
|
|
|
old_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
return function;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add property in slow mode
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::AddSlowProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dict = property_dictionary();
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* store_value = value;
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
// In case name is an orphaned property reuse the cell.
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = dict->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
store_value = dict->ValueAt(entry);
|
|
|
|
|
JSGlobalPropertyCell::cast(store_value)->set_value(value);
|
2009-07-02 06:50:43 +00:00
|
|
|
// Assign an enumeration index to the property and update
|
|
|
|
|
// SetNextEnumerationIndex.
|
|
|
|
|
int index = dict->NextEnumerationIndex();
|
|
|
|
|
PropertyDetails details = PropertyDetails(attributes, NORMAL, index);
|
|
|
|
|
dict->SetNextEnumerationIndex(index + 1);
|
|
|
|
|
dict->SetEntry(entry, name, store_value, details);
|
2009-06-30 10:05:36 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_store_value =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateJSGlobalPropertyCell(value);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_store_value->ToObject(&store_value)) return maybe_store_value;
|
|
|
|
|
}
|
2009-06-30 10:05:36 +00:00
|
|
|
JSGlobalPropertyCell::cast(store_value)->set_value(value);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, NORMAL);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = dict->Add(name, store_value, details);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
if (dict != result) set_properties(StringDictionary::cast(result));
|
2008-07-03 15:10:15 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::AddProperty(String* name,
|
|
|
|
|
Object* value,
|
2011-03-28 06:11:08 +00:00
|
|
|
PropertyAttributes attributes,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
ASSERT(!IsJSGlobalProxy());
|
2011-03-31 10:55:53 +00:00
|
|
|
Map* map_of_this = map();
|
|
|
|
|
Heap* heap = map_of_this->heap();
|
|
|
|
|
if (!map_of_this->is_extensible()) {
|
2011-03-28 06:11:08 +00:00
|
|
|
if (strict_mode == kNonStrictMode) {
|
|
|
|
|
return heap->undefined_value();
|
|
|
|
|
} else {
|
|
|
|
|
Handle<Object> args[1] = {Handle<String>(name)};
|
|
|
|
|
return heap->isolate()->Throw(
|
|
|
|
|
*FACTORY->NewTypeError("object_not_extensible",
|
|
|
|
|
HandleVector(args, 1)));
|
|
|
|
|
}
|
2010-07-02 14:36:34 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
|
|
|
|
// Ensure the descriptor array does not get too big.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (map_of_this->instance_descriptors()->number_of_descriptors() <
|
2008-07-03 15:10:15 +00:00
|
|
|
DescriptorArray::kMaxNumberOfDescriptors) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (value->IsJSFunction() && !heap->InNewSpace(value)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return AddConstantFunctionProperty(name,
|
|
|
|
|
JSFunction::cast(value),
|
|
|
|
|
attributes);
|
|
|
|
|
} else {
|
|
|
|
|
return AddFastProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Normalize the object to prevent very large instance descriptors.
|
|
|
|
|
// This eliminates unwanted N^2 allocation and lookup behavior.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return AddSlowProperty(name, value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyPostInterceptor(
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
2011-03-02 04:53:43 +00:00
|
|
|
PropertyAttributes attributes,
|
2011-03-03 16:17:28 +00:00
|
|
|
StrictModeFlag strict_mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsFound()) {
|
|
|
|
|
// An existing property, a map transition or a null descriptor was
|
|
|
|
|
// found. Use set property to handle all these cases.
|
2011-03-03 16:17:28 +00:00
|
|
|
return SetProperty(&result, name, value, attributes, strict_mode);
|
2010-02-18 15:10:35 +00:00
|
|
|
}
|
|
|
|
|
// Add a new real property.
|
2011-03-28 06:11:08 +00:00
|
|
|
return AddProperty(name, value, attributes, strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::ReplaceSlowProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = property_dictionary();
|
|
|
|
|
int old_index = dictionary->FindEntry(name);
|
2009-06-22 07:41:15 +00:00
|
|
|
int new_enumeration_index = 0; // 0 means "Use the next available index."
|
|
|
|
|
if (old_index != -1) {
|
|
|
|
|
// All calls to ReplaceSlowProperty have had all transitions removed.
|
|
|
|
|
ASSERT(!dictionary->DetailsAt(old_index).IsTransition());
|
|
|
|
|
new_enumeration_index = dictionary->DetailsAt(old_index).index();
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
|
2009-06-22 07:41:15 +00:00
|
|
|
PropertyDetails new_details(attributes, NORMAL, new_enumeration_index);
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(name, value, new_details);
|
2008-10-09 12:18:48 +00:00
|
|
|
}
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::ConvertDescriptorToFieldAndMapTransition(
|
2008-10-09 12:18:48 +00:00
|
|
|
String* name,
|
|
|
|
|
Object* new_value,
|
|
|
|
|
PropertyAttributes attributes) {
|
|
|
|
|
Map* old_map = map();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
ConvertDescriptorToField(name, new_value, attributes);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
// If we get to this point we have succeeded - do not return failure
|
|
|
|
|
// after this point. Later stuff is optional.
|
|
|
|
|
if (!HasFastProperties()) {
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
// Do not add transitions to the map of "new Object()".
|
2011-03-31 10:55:53 +00:00
|
|
|
if (map() == old_map->heap()->isolate()->context()->global_context()->
|
2011-03-18 20:35:07 +00:00
|
|
|
object_function()->map()) {
|
2008-10-09 12:18:48 +00:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MapTransitionDescriptor transition(name,
|
|
|
|
|
map(),
|
|
|
|
|
attributes);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_descriptors;
|
|
|
|
|
{ MaybeObject* maybe_new_descriptors = old_map->instance_descriptors()->
|
|
|
|
|
CopyInsert(&transition, KEEP_TRANSITIONS);
|
|
|
|
|
if (!maybe_new_descriptors->ToObject(&new_descriptors)) {
|
|
|
|
|
return result; // Yes, return _result_.
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
old_map->set_instance_descriptors(DescriptorArray::cast(new_descriptors));
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::ConvertDescriptorToField(String* name,
|
|
|
|
|
Object* new_value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2008-10-09 12:18:48 +00:00
|
|
|
if (map()->unused_property_fields() == 0 &&
|
2010-07-02 11:27:57 +00:00
|
|
|
properties()->length() > MaxFastProperties()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
return ReplaceSlowProperty(name, new_value, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int index = map()->NextFreePropertyIndex();
|
|
|
|
|
FieldDescriptor new_field(name, index, attributes);
|
|
|
|
|
// Make a new DescriptorArray replacing an entry with FieldDescriptor.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* descriptors_unchecked;
|
|
|
|
|
{ MaybeObject* maybe_descriptors_unchecked = map()->instance_descriptors()->
|
|
|
|
|
CopyInsert(&new_field, REMOVE_TRANSITIONS);
|
|
|
|
|
if (!maybe_descriptors_unchecked->ToObject(&descriptors_unchecked)) {
|
|
|
|
|
return maybe_descriptors_unchecked;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
DescriptorArray* new_descriptors =
|
|
|
|
|
DescriptorArray::cast(descriptors_unchecked);
|
|
|
|
|
|
|
|
|
|
// Make a new map for the object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_map_unchecked;
|
|
|
|
|
{ MaybeObject* maybe_new_map_unchecked = map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map_unchecked->ToObject(&new_map_unchecked)) {
|
|
|
|
|
return maybe_new_map_unchecked;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
Map* new_map = Map::cast(new_map_unchecked);
|
|
|
|
|
new_map->set_instance_descriptors(new_descriptors);
|
|
|
|
|
|
|
|
|
|
// Make new properties array if necessary.
|
|
|
|
|
FixedArray* new_properties = 0; // Will always be NULL or a valid pointer.
|
|
|
|
|
int new_unused_property_fields = map()->unused_property_fields() - 1;
|
|
|
|
|
if (map()->unused_property_fields() == 0) {
|
2010-09-23 09:15:26 +00:00
|
|
|
new_unused_property_fields = kFieldsAdded - 1;
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_properties_object;
|
|
|
|
|
{ MaybeObject* maybe_new_properties_object =
|
|
|
|
|
properties()->CopySize(properties()->length() + kFieldsAdded);
|
|
|
|
|
if (!maybe_new_properties_object->ToObject(&new_properties_object)) {
|
|
|
|
|
return maybe_new_properties_object;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
new_properties = FixedArray::cast(new_properties_object);
|
2008-10-09 12:18:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update pointers to commit changes.
|
|
|
|
|
// Object points to the new map.
|
|
|
|
|
new_map->set_unused_property_fields(new_unused_property_fields);
|
|
|
|
|
set_map(new_map);
|
|
|
|
|
if (new_properties) {
|
|
|
|
|
set_properties(FixedArray::cast(new_properties));
|
|
|
|
|
}
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(index, new_value);
|
2008-10-09 12:18:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyWithInterceptor(
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
2011-03-02 04:53:43 +00:00
|
|
|
PropertyAttributes attributes,
|
2011-03-03 16:17:28 +00:00
|
|
|
StrictModeFlag strict_mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> value_handle(value, isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
if (!interceptor->setter()->IsUndefined()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate, ApiNamedPropertyAccess("interceptor-named-set", this, name));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), this, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::NamedPropertySetter setter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertySetter>(interceptor->setter());
|
|
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<Object> value_unhole(value->IsTheHole() ?
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->heap()->undefined_value() :
|
|
|
|
|
value,
|
|
|
|
|
isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = setter(v8::Utils::ToLocal(name_handle),
|
|
|
|
|
v8::Utils::ToLocal(value_unhole),
|
|
|
|
|
info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!result.IsEmpty()) return *value_handle;
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* raw_result =
|
|
|
|
|
this_handle->SetPropertyPostInterceptor(*name_handle,
|
|
|
|
|
*value_handle,
|
2011-03-02 04:53:43 +00:00
|
|
|
attributes,
|
2011-03-03 16:17:28 +00:00
|
|
|
strict_mode);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MaybeObject* JSReceiver::SetProperty(String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
2011-03-03 16:17:28 +00:00
|
|
|
return SetProperty(&result, name, value, attributes, strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyWithCallback(Object* structure,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
2011-05-25 08:37:38 +00:00
|
|
|
JSObject* holder,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// We should never get here to initialize a const with the hole
|
|
|
|
|
// value since a const declaration would conflict with the setter.
|
|
|
|
|
ASSERT(!value->IsTheHole());
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> value_handle(value, isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// To accommodate both the old and the new api we switch on the
|
2011-05-19 11:47:34 +00:00
|
|
|
// data structure used to store the callbacks. Eventually foreign
|
2008-07-03 15:10:15 +00:00
|
|
|
// callbacks should be phased out.
|
2011-05-19 11:47:34 +00:00
|
|
|
if (structure->IsForeign()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
AccessorDescriptor* callback =
|
2011-05-19 11:47:34 +00:00
|
|
|
reinterpret_cast<AccessorDescriptor*>(
|
|
|
|
|
Foreign::cast(structure)->address());
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* obj = (callback->setter)(this, value, callback->data);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (obj->IsFailure()) return obj;
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
|
|
|
|
// api style callbacks
|
|
|
|
|
AccessorInfo* data = AccessorInfo::cast(structure);
|
|
|
|
|
Object* call_obj = data->setter();
|
|
|
|
|
v8::AccessorSetter call_fun = v8::ToCData<v8::AccessorSetter>(call_obj);
|
|
|
|
|
if (call_fun == NULL) return value;
|
|
|
|
|
Handle<String> key(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate, ApiNamedPropertyAccess("store", this, name));
|
|
|
|
|
CustomArguments args(isolate, data->data(), this, JSObject::cast(holder));
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
call_fun(v8::Utils::ToLocal(key),
|
|
|
|
|
v8::Utils::ToLocal(value_handle),
|
|
|
|
|
info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (structure->IsFixedArray()) {
|
|
|
|
|
Object* setter = FixedArray::cast(structure)->get(kSetterIndex);
|
|
|
|
|
if (setter->IsJSFunction()) {
|
2009-03-13 11:40:09 +00:00
|
|
|
return SetPropertyWithDefinedSetter(JSFunction::cast(setter), value);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2011-05-25 08:37:38 +00:00
|
|
|
if (strict_mode == kNonStrictMode) {
|
|
|
|
|
return value;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<String> key(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> holder_handle(holder, isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<Object> args[2] = { key, holder_handle };
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->Throw(
|
|
|
|
|
*isolate->factory()->NewTypeError("no_setter_in_callback",
|
|
|
|
|
HandleVector(args, 2)));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
2010-05-25 12:14:49 +00:00
|
|
|
return NULL;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyWithDefinedSetter(JSFunction* setter,
|
|
|
|
|
Object* value) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
Handle<Object> value_handle(value, isolate);
|
|
|
|
|
Handle<JSFunction> fun(JSFunction::cast(setter), isolate);
|
|
|
|
|
Handle<JSObject> self(this, isolate);
|
2009-07-16 07:07:51 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
2011-03-18 20:35:07 +00:00
|
|
|
Debug* debug = isolate->debug();
|
2009-07-16 07:07:51 +00:00
|
|
|
// Handle stepping into a setter if step into is active.
|
2011-03-18 20:35:07 +00:00
|
|
|
if (debug->StepInActive()) {
|
|
|
|
|
debug->HandleStepIn(fun, Handle<Object>::null(), 0, false);
|
2009-07-16 07:07:51 +00:00
|
|
|
}
|
|
|
|
|
#endif
|
2009-03-13 11:40:09 +00:00
|
|
|
bool has_pending_exception;
|
|
|
|
|
Object** argv[] = { value_handle.location() };
|
|
|
|
|
Execution::Call(fun, self, 1, argv, &has_pending_exception);
|
|
|
|
|
// Check for pending exception and return the result.
|
|
|
|
|
if (has_pending_exception) return Failure::Exception();
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-13 13:24:32 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LookupCallbackSetterInPrototypes(String* name,
|
|
|
|
|
LookupResult* result) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
pt != heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
pt = pt->GetPrototype()) {
|
|
|
|
|
JSObject::cast(pt)->LocalLookupRealNamedProperty(name, result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty()) {
|
2011-07-11 14:07:12 +00:00
|
|
|
if (result->type() == CALLBACKS && !result->IsReadOnly()) return;
|
|
|
|
|
// Found non-callback or read-only callback, stop looking.
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-05-25 08:37:38 +00:00
|
|
|
MaybeObject* JSObject::SetElementWithCallbackSetterInPrototypes(
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Object* value,
|
|
|
|
|
bool* found,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-03-13 11:40:09 +00:00
|
|
|
for (Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
pt != heap->null_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
pt = pt->GetPrototype()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
if (!JSObject::cast(pt)->HasDictionaryElements()) {
|
2011-06-16 14:12:58 +00:00
|
|
|
continue;
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dictionary = JSObject::cast(pt)->element_dictionary();
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
2009-07-13 13:24:32 +00:00
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
2009-03-13 11:40:09 +00:00
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
2011-02-08 19:42:14 +00:00
|
|
|
*found = true;
|
2011-05-25 08:37:38 +00:00
|
|
|
return SetElementWithCallback(dictionary->ValueAt(entry),
|
|
|
|
|
index,
|
|
|
|
|
value,
|
|
|
|
|
JSObject::cast(pt),
|
|
|
|
|
strict_mode);
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-02-08 19:42:14 +00:00
|
|
|
*found = false;
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->the_hole_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LookupInDescriptor(String* name, LookupResult* result) {
|
|
|
|
|
DescriptorArray* descriptors = map()->instance_descriptors();
|
2010-08-12 14:51:59 +00:00
|
|
|
int number = descriptors->SearchWithCache(name);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (number != DescriptorArray::kNotFound) {
|
|
|
|
|
result->DescriptorResult(this, descriptors->GetDetails(number), number);
|
|
|
|
|
} else {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
void Map::LookupInDescriptors(JSObject* holder,
|
|
|
|
|
String* name,
|
|
|
|
|
LookupResult* result) {
|
|
|
|
|
DescriptorArray* descriptors = instance_descriptors();
|
2011-03-18 20:35:07 +00:00
|
|
|
DescriptorLookupCache* cache = heap()->isolate()->descriptor_lookup_cache();
|
|
|
|
|
int number = cache->Lookup(descriptors, name);
|
2010-12-07 11:31:57 +00:00
|
|
|
if (number == DescriptorLookupCache::kAbsent) {
|
|
|
|
|
number = descriptors->Search(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
cache->Update(descriptors, name, number);
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
if (number != DescriptorArray::kNotFound) {
|
|
|
|
|
result->DescriptorResult(holder, descriptors->GetDetails(number), number);
|
|
|
|
|
} else {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-03 07:41:37 +00:00
|
|
|
static JSObject::ElementsKind GetElementsKindFromExternalArrayType(
|
|
|
|
|
ExternalArrayType array_type) {
|
|
|
|
|
switch (array_type) {
|
|
|
|
|
case kExternalByteArray:
|
|
|
|
|
return JSObject::EXTERNAL_BYTE_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalUnsignedByteArray:
|
|
|
|
|
return JSObject::EXTERNAL_UNSIGNED_BYTE_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalShortArray:
|
|
|
|
|
return JSObject::EXTERNAL_SHORT_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalUnsignedShortArray:
|
|
|
|
|
return JSObject::EXTERNAL_UNSIGNED_SHORT_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalIntArray:
|
|
|
|
|
return JSObject::EXTERNAL_INT_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalUnsignedIntArray:
|
|
|
|
|
return JSObject::EXTERNAL_UNSIGNED_INT_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalFloatArray:
|
|
|
|
|
return JSObject::EXTERNAL_FLOAT_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalDoubleArray:
|
|
|
|
|
return JSObject::EXTERNAL_DOUBLE_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
case kExternalPixelArray:
|
|
|
|
|
return JSObject::EXTERNAL_PIXEL_ELEMENTS;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return JSObject::DICTIONARY_ELEMENTS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-23 09:57:12 +00:00
|
|
|
MaybeObject* Map::GetExternalArrayElementsMap(ExternalArrayType array_type,
|
|
|
|
|
bool safe_to_add_transition) {
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* current_heap = heap();
|
2011-03-23 09:57:12 +00:00
|
|
|
DescriptorArray* descriptors = instance_descriptors();
|
2011-03-31 10:55:53 +00:00
|
|
|
String* external_array_sentinel_name = current_heap->empty_symbol();
|
2011-03-23 09:57:12 +00:00
|
|
|
|
|
|
|
|
if (safe_to_add_transition) {
|
|
|
|
|
// It's only safe to manipulate the descriptor array if it would be
|
|
|
|
|
// safe to add a transition.
|
|
|
|
|
|
|
|
|
|
ASSERT(!is_shared()); // no transitions can be added to shared maps.
|
|
|
|
|
// Check if the external array transition already exists.
|
2011-03-31 10:55:53 +00:00
|
|
|
DescriptorLookupCache* cache =
|
|
|
|
|
current_heap->isolate()->descriptor_lookup_cache();
|
2011-03-23 09:57:12 +00:00
|
|
|
int index = cache->Lookup(descriptors, external_array_sentinel_name);
|
|
|
|
|
if (index == DescriptorLookupCache::kAbsent) {
|
|
|
|
|
index = descriptors->Search(external_array_sentinel_name);
|
|
|
|
|
cache->Update(descriptors,
|
|
|
|
|
external_array_sentinel_name,
|
|
|
|
|
index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the transition already exists, check the type. If there is a match,
|
|
|
|
|
// return it.
|
|
|
|
|
if (index != DescriptorArray::kNotFound) {
|
|
|
|
|
PropertyDetails details(PropertyDetails(descriptors->GetDetails(index)));
|
|
|
|
|
if (details.type() == EXTERNAL_ARRAY_TRANSITION &&
|
|
|
|
|
details.array_type() == array_type) {
|
|
|
|
|
return descriptors->GetValue(index);
|
|
|
|
|
} else {
|
|
|
|
|
safe_to_add_transition = false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// No transition to an existing external array map. Make a new one.
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_map = CopyDropTransitions();
|
|
|
|
|
if (!maybe_map->ToObject(&obj)) return maybe_map;
|
|
|
|
|
}
|
|
|
|
|
Map* new_map = Map::cast(obj);
|
|
|
|
|
|
2011-06-03 07:41:37 +00:00
|
|
|
new_map->set_elements_kind(GetElementsKindFromExternalArrayType(array_type));
|
2011-03-23 09:57:12 +00:00
|
|
|
GetIsolate()->counters()->map_to_external_array_elements()->Increment();
|
|
|
|
|
|
|
|
|
|
// Only remember the map transition if the object's map is NOT equal to the
|
|
|
|
|
// global object_function's map and there is not an already existing
|
|
|
|
|
// non-matching external array transition.
|
|
|
|
|
bool allow_map_transition =
|
|
|
|
|
safe_to_add_transition &&
|
|
|
|
|
(GetIsolate()->context()->global_context()->object_function()->map() !=
|
|
|
|
|
map());
|
|
|
|
|
if (allow_map_transition) {
|
|
|
|
|
// Allocate new instance descriptors for the old map with map transition.
|
|
|
|
|
ExternalArrayTransitionDescriptor desc(external_array_sentinel_name,
|
|
|
|
|
Map::cast(new_map),
|
|
|
|
|
array_type);
|
|
|
|
|
Object* new_descriptors;
|
|
|
|
|
MaybeObject* maybe_new_descriptors = descriptors->CopyInsert(
|
|
|
|
|
&desc,
|
|
|
|
|
KEEP_TRANSITIONS);
|
|
|
|
|
if (!maybe_new_descriptors->ToObject(&new_descriptors)) {
|
|
|
|
|
return maybe_new_descriptors;
|
|
|
|
|
}
|
|
|
|
|
descriptors = DescriptorArray::cast(new_descriptors);
|
|
|
|
|
set_instance_descriptors(descriptors);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return new_map;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LocalLookupRealNamedProperty(String* name,
|
|
|
|
|
LookupResult* result) {
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return result->NotFound();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
|
|
|
|
LookupInDescriptor(name, result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsFound()) {
|
|
|
|
|
// A property, a map transition or a null descriptor was found.
|
|
|
|
|
// We return all of these result types because
|
|
|
|
|
// LocalLookupRealNamedProperty is used when setting properties
|
|
|
|
|
// where map transitions and null descriptors are handled.
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(result->holder() == this && result->type() != NORMAL);
|
|
|
|
|
// Disallow caching for uninitialized constants. These can only
|
|
|
|
|
// occur as fields.
|
|
|
|
|
if (result->IsReadOnly() && result->type() == FIELD &&
|
2008-10-15 06:03:26 +00:00
|
|
|
FastPropertyAt(result->GetFieldIndex())->IsTheHole()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DisallowCaching();
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry != StringDictionary::kNotFound) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* value = property_dictionary()->ValueAt(entry);
|
2009-07-01 11:44:37 +00:00
|
|
|
if (IsGlobalObject()) {
|
2009-06-30 10:05:36 +00:00
|
|
|
PropertyDetails d = property_dictionary()->DetailsAt(entry);
|
|
|
|
|
if (d.IsDeleted()) {
|
|
|
|
|
result->NotFound();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
value = JSGlobalPropertyCell::cast(value)->value();
|
|
|
|
|
}
|
2009-07-10 09:40:47 +00:00
|
|
|
// Make sure to disallow caching for uninitialized constants
|
|
|
|
|
// found in the dictionary-mode objects.
|
|
|
|
|
if (value->IsTheHole()) result->DisallowCaching();
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DictionaryResult(this, entry);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LookupRealNamedProperty(String* name, LookupResult* result) {
|
|
|
|
|
LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
if (result->IsProperty()) return;
|
|
|
|
|
|
|
|
|
|
LookupRealNamedPropertyInPrototypes(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::LookupRealNamedPropertyInPrototypes(String* name,
|
|
|
|
|
LookupResult* result) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
pt != heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
pt = JSObject::cast(pt)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(pt)->LocalLookupRealNamedProperty(name, result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty() && (result->type() != INTERCEPTOR)) return;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// We only need to deal with CALLBACKS and INTERCEPTORS
|
2011-05-25 08:37:38 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyWithFailedAccessCheck(
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
bool check_prototype,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2011-01-06 14:00:50 +00:00
|
|
|
if (check_prototype && !result->IsProperty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
LookupCallbackSetterInPrototypes(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (result->IsProperty()) {
|
|
|
|
|
if (!result->IsReadOnly()) {
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
Object* obj = result->GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo()) {
|
|
|
|
|
AccessorInfo* info = AccessorInfo::cast(obj);
|
|
|
|
|
if (info->all_can_write()) {
|
|
|
|
|
return SetPropertyWithCallback(result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
2011-05-25 08:37:38 +00:00
|
|
|
result->holder(),
|
|
|
|
|
strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case INTERCEPTOR: {
|
|
|
|
|
// Try lookup real named properties. Note that only property can be
|
|
|
|
|
// set is callbacks marked as ALL_CAN_WRITE on the prototype chain.
|
|
|
|
|
LookupResult r;
|
|
|
|
|
LookupRealNamedProperty(name, &r);
|
|
|
|
|
if (r.IsProperty()) {
|
2011-05-25 08:37:38 +00:00
|
|
|
return SetPropertyWithFailedAccessCheck(&r,
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
check_prototype,
|
|
|
|
|
strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default: {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
|
|
|
|
Handle<Object> value_handle(value);
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
2010-08-13 06:55:44 +00:00
|
|
|
return *value_handle;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MaybeObject* JSReceiver::SetProperty(LookupResult* result,
|
|
|
|
|
String* key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
|
|
|
|
if (result->IsFound() && result->type() == HANDLER) {
|
|
|
|
|
return JSProxy::cast(this)->SetPropertyWithHandler(
|
|
|
|
|
key, value, attributes, strict_mode);
|
|
|
|
|
} else {
|
|
|
|
|
return JSObject::cast(this)->SetPropertyForResult(
|
|
|
|
|
result, key, value, attributes, strict_mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-19 09:38:59 +00:00
|
|
|
bool JSProxy::HasPropertyWithHandler(String* name_raw) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
|
|
|
|
Handle<Object> receiver(this);
|
|
|
|
|
Handle<Object> name(name_raw);
|
|
|
|
|
Handle<Object> handler(this->handler());
|
|
|
|
|
|
|
|
|
|
// Extract trap function.
|
|
|
|
|
Handle<String> trap_name = isolate->factory()->LookupAsciiSymbol("has");
|
|
|
|
|
Handle<Object> trap(v8::internal::GetProperty(handler, trap_name));
|
|
|
|
|
if (trap->IsUndefined()) {
|
|
|
|
|
trap = isolate->derived_has_trap();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Call trap function.
|
|
|
|
|
Object** args[] = { name.location() };
|
|
|
|
|
bool has_exception;
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(trap, handler, ARRAY_SIZE(args), args, &has_exception);
|
|
|
|
|
if (has_exception) return Failure::Exception();
|
|
|
|
|
|
|
|
|
|
return result->ToBoolean()->IsTrue();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MUST_USE_RESULT MaybeObject* JSProxy::SetPropertyWithHandler(
|
|
|
|
|
String* name_raw,
|
|
|
|
|
Object* value_raw,
|
|
|
|
|
PropertyAttributes attributes,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(isolate);
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
Handle<Object> receiver(this);
|
|
|
|
|
Handle<Object> name(name_raw);
|
|
|
|
|
Handle<Object> value(value_raw);
|
|
|
|
|
Handle<Object> handler(this->handler());
|
|
|
|
|
|
|
|
|
|
// Extract trap function.
|
|
|
|
|
Handle<String> trap_name = isolate->factory()->LookupAsciiSymbol("set");
|
|
|
|
|
Handle<Object> trap(v8::internal::GetProperty(handler, trap_name));
|
|
|
|
|
if (trap->IsUndefined()) {
|
|
|
|
|
trap = isolate->derived_set_trap();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Call trap function.
|
|
|
|
|
Object** args[] = {
|
|
|
|
|
receiver.location(), name.location(), value.location()
|
|
|
|
|
};
|
|
|
|
|
bool has_exception;
|
2011-07-20 08:09:58 +00:00
|
|
|
Execution::Call(trap, handler, ARRAY_SIZE(args), args, &has_exception);
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
if (has_exception) return Failure::Exception();
|
|
|
|
|
|
2011-06-24 12:04:14 +00:00
|
|
|
return *value;
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-15 09:10:20 +00:00
|
|
|
MUST_USE_RESULT MaybeObject* JSProxy::DeletePropertyWithHandler(
|
|
|
|
|
String* name_raw, DeleteMode mode) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
|
|
|
|
Handle<Object> receiver(this);
|
|
|
|
|
Handle<Object> name(name_raw);
|
|
|
|
|
Handle<Object> handler(this->handler());
|
|
|
|
|
|
|
|
|
|
// Extract trap function.
|
|
|
|
|
Handle<String> trap_name = isolate->factory()->LookupAsciiSymbol("delete");
|
|
|
|
|
Handle<Object> trap(v8::internal::GetProperty(handler, trap_name));
|
|
|
|
|
if (trap->IsUndefined()) {
|
|
|
|
|
Handle<Object> args[] = { handler, trap_name };
|
|
|
|
|
Handle<Object> error = isolate->factory()->NewTypeError(
|
|
|
|
|
"handler_trap_missing", HandleVector(args, ARRAY_SIZE(args)));
|
|
|
|
|
isolate->Throw(*error);
|
|
|
|
|
return Failure::Exception();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Call trap function.
|
|
|
|
|
Object** args[] = { name.location() };
|
|
|
|
|
bool has_exception;
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(trap, handler, ARRAY_SIZE(args), args, &has_exception);
|
|
|
|
|
if (has_exception) return Failure::Exception();
|
|
|
|
|
|
|
|
|
|
Object* bool_result = result->ToBoolean();
|
2011-08-17 09:51:20 +00:00
|
|
|
if (mode == STRICT_DELETION &&
|
|
|
|
|
bool_result == isolate->heap()->false_value()) {
|
2011-07-15 09:10:20 +00:00
|
|
|
Handle<Object> args[] = { handler, trap_name };
|
|
|
|
|
Handle<Object> error = isolate->factory()->NewTypeError(
|
|
|
|
|
"handler_failed", HandleVector(args, ARRAY_SIZE(args)));
|
|
|
|
|
isolate->Throw(*error);
|
|
|
|
|
return Failure::Exception();
|
|
|
|
|
}
|
|
|
|
|
return bool_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MUST_USE_RESULT PropertyAttributes JSProxy::GetPropertyAttributeWithHandler(
|
|
|
|
|
JSReceiver* receiver_raw,
|
|
|
|
|
String* name_raw,
|
|
|
|
|
bool* has_exception) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(isolate);
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
Handle<JSReceiver> receiver(receiver_raw);
|
|
|
|
|
Handle<Object> name(name_raw);
|
|
|
|
|
Handle<Object> handler(this->handler());
|
|
|
|
|
|
|
|
|
|
// Extract trap function.
|
|
|
|
|
Handle<String> trap_name =
|
|
|
|
|
isolate->factory()->LookupAsciiSymbol("getPropertyDescriptor");
|
|
|
|
|
Handle<Object> trap(v8::internal::GetProperty(handler, trap_name));
|
|
|
|
|
if (trap->IsUndefined()) {
|
|
|
|
|
Handle<Object> args[] = { handler, trap_name };
|
|
|
|
|
Handle<Object> error = isolate->factory()->NewTypeError(
|
|
|
|
|
"handler_trap_missing", HandleVector(args, ARRAY_SIZE(args)));
|
|
|
|
|
isolate->Throw(*error);
|
|
|
|
|
*has_exception = true;
|
|
|
|
|
return NONE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Call trap function.
|
|
|
|
|
Object** args[] = { name.location() };
|
|
|
|
|
Handle<Object> result =
|
|
|
|
|
Execution::Call(trap, handler, ARRAY_SIZE(args), args, has_exception);
|
|
|
|
|
if (has_exception) return NONE;
|
|
|
|
|
|
|
|
|
|
// TODO(rossberg): convert result to PropertyAttributes
|
|
|
|
|
USE(result);
|
|
|
|
|
return NONE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-18 13:04:52 +00:00
|
|
|
void JSProxy::Fix() {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
|
|
|
|
Handle<JSProxy> self(this);
|
|
|
|
|
|
|
|
|
|
isolate->factory()->BecomeJSObject(self);
|
2011-07-21 11:28:18 +00:00
|
|
|
ASSERT(self->IsJSObject());
|
2011-07-18 13:04:52 +00:00
|
|
|
// TODO(rossberg): recognize function proxies.
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyForResult(LookupResult* result,
|
2011-07-11 14:07:12 +00:00
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
// Optimization for 2-byte strings often used as keys in a decompression
|
|
|
|
|
// dictionary. We make these short keys into symbols to avoid constantly
|
|
|
|
|
// reallocating them.
|
|
|
|
|
if (!name->IsSymbol() && name->length() <= 2) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* symbol_version;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_symbol_version = heap->LookupSymbol(name);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (maybe_symbol_version->ToObject(&symbol_version)) {
|
|
|
|
|
name = String::cast(symbol_version);
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-11-20 10:11:45 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded()
|
2011-03-18 20:35:07 +00:00
|
|
|
&& !heap->isolate()->MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
2011-05-25 08:37:38 +00:00
|
|
|
return SetPropertyWithFailedAccessCheck(result,
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
true,
|
|
|
|
|
strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2011-03-02 04:53:43 +00:00
|
|
|
return JSObject::cast(proto)->SetProperty(
|
2011-03-03 16:17:28 +00:00
|
|
|
result, name, value, attributes, strict_mode);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2009-01-15 11:31:08 +00:00
|
|
|
if (!result->IsProperty() && !IsJSContextExtensionObject()) {
|
2008-08-28 10:23:27 +00:00
|
|
|
// We could not find a local property so let's check whether there is an
|
|
|
|
|
// accessor that wants to handle the property.
|
|
|
|
|
LookupResult accessor_result;
|
|
|
|
|
LookupCallbackSetterInPrototypes(name, &accessor_result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (accessor_result.IsProperty()) {
|
2008-08-28 10:23:27 +00:00
|
|
|
return SetPropertyWithCallback(accessor_result.GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
2011-05-25 08:37:38 +00:00
|
|
|
accessor_result.holder(),
|
|
|
|
|
strict_mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
}
|
2010-02-18 15:10:35 +00:00
|
|
|
if (!result->IsFound()) {
|
|
|
|
|
// Neither properties nor transitions found.
|
2011-03-28 06:11:08 +00:00
|
|
|
return AddProperty(name, value, attributes, strict_mode);
|
2008-08-28 10:23:27 +00:00
|
|
|
}
|
2011-03-02 04:53:43 +00:00
|
|
|
if (result->IsReadOnly() && result->IsProperty()) {
|
2011-03-03 16:17:28 +00:00
|
|
|
if (strict_mode == kStrictMode) {
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
2011-03-02 04:53:43 +00:00
|
|
|
Handle<String> key(name);
|
|
|
|
|
Handle<Object> holder(this);
|
|
|
|
|
Handle<Object> args[2] = { key, holder };
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->isolate()->Throw(*heap->isolate()->factory()->NewTypeError(
|
|
|
|
|
"strict_read_only_property", HandleVector(args, 2)));
|
2011-03-02 04:53:43 +00:00
|
|
|
} else {
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
// This is a real property that is not read-only, or it is a
|
|
|
|
|
// transition or null descriptor and there are no setters in the prototypes.
|
|
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL:
|
2009-06-30 10:05:36 +00:00
|
|
|
return SetNormalizedProperty(result, value);
|
2008-08-28 10:23:27 +00:00
|
|
|
case FIELD:
|
2008-10-15 06:03:26 +00:00
|
|
|
return FastPropertyAtPut(result->GetFieldIndex(), value);
|
2008-08-28 10:23:27 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
if (attributes == result->GetAttributes()) {
|
|
|
|
|
// Only use map transition if the attributes match.
|
|
|
|
|
return AddFastPropertyUsingMap(result->GetTransitionMap(),
|
2008-07-03 15:10:15 +00:00
|
|
|
name,
|
2008-08-28 10:23:27 +00:00
|
|
|
value);
|
|
|
|
|
}
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
// Only replace the function if necessary.
|
2009-05-13 10:46:28 +00:00
|
|
|
if (value == result->GetConstantFunction()) return value;
|
|
|
|
|
// Preserve the attributes of this existing property.
|
|
|
|
|
attributes = result->GetAttributes();
|
2009-07-07 14:06:08 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
case CALLBACKS:
|
|
|
|
|
return SetPropertyWithCallback(result->GetCallbackObject(),
|
|
|
|
|
name,
|
|
|
|
|
value,
|
2011-05-25 08:37:38 +00:00
|
|
|
result->holder(),
|
|
|
|
|
strict_mode);
|
2008-08-28 10:23:27 +00:00
|
|
|
case INTERCEPTOR:
|
2011-03-03 16:17:28 +00:00
|
|
|
return SetPropertyWithInterceptor(name, value, attributes, strict_mode);
|
2010-08-12 14:51:59 +00:00
|
|
|
case CONSTANT_TRANSITION: {
|
|
|
|
|
// If the same constant function is being added we can simply
|
|
|
|
|
// transition to the target map.
|
|
|
|
|
Map* target_map = result->GetTransitionMap();
|
|
|
|
|
DescriptorArray* target_descriptors = target_map->instance_descriptors();
|
|
|
|
|
int number = target_descriptors->SearchWithCache(name);
|
|
|
|
|
ASSERT(number != DescriptorArray::kNotFound);
|
|
|
|
|
ASSERT(target_descriptors->GetType(number) == CONSTANT_FUNCTION);
|
|
|
|
|
JSFunction* function =
|
|
|
|
|
JSFunction::cast(target_descriptors->GetValue(number));
|
2011-03-18 20:35:07 +00:00
|
|
|
ASSERT(!HEAP->InNewSpace(function));
|
2010-08-12 14:51:59 +00:00
|
|
|
if (value == function) {
|
|
|
|
|
set_map(target_map);
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
// Otherwise, replace with a MAP_TRANSITION to a new map with a
|
|
|
|
|
// FIELD, even if the value is a constant function.
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2010-08-12 14:51:59 +00:00
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
case NULL_DESCRIPTOR:
|
2011-03-23 09:57:12 +00:00
|
|
|
case EXTERNAL_ARRAY_TRANSITION:
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-08-28 10:23:27 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-08-28 10:23:27 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Set a real local property, even if it is READ_ONLY. If the property is not
|
2008-10-02 13:45:21 +00:00
|
|
|
// present, add it with attributes NONE. This code is an exact clone of
|
|
|
|
|
// SetProperty, with the check for IsReadOnly and the check for a
|
|
|
|
|
// callback setter removed. The two lines looking up the LookupResult
|
|
|
|
|
// result are also added. If one of the functions is changed, the other
|
|
|
|
|
// should be.
|
2011-07-25 15:01:45 +00:00
|
|
|
// Note that this method cannot be used to set the prototype of a function
|
|
|
|
|
// because ConvertDescriptorToField() which is called in "case CALLBACKS:"
|
|
|
|
|
// doesn't handle function prototypes correctly.
|
2011-01-06 14:00:50 +00:00
|
|
|
MaybeObject* JSObject::SetLocalPropertyIgnoreAttributes(
|
2008-10-02 13:45:21 +00:00
|
|
|
String* name,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyAttributes attributes) {
|
2011-03-18 20:35:07 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2010-02-18 15:10:35 +00:00
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
2011-05-25 08:37:38 +00:00
|
|
|
return SetPropertyWithFailedAccessCheck(&result,
|
|
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
false,
|
|
|
|
|
kNonStrictMode);
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-04-21 13:28:11 +00:00
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2011-01-06 14:00:50 +00:00
|
|
|
return JSObject::cast(proto)->SetLocalPropertyIgnoreAttributes(
|
2009-04-21 13:28:11 +00:00
|
|
|
name,
|
|
|
|
|
value,
|
|
|
|
|
attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2008-10-09 12:18:48 +00:00
|
|
|
// Check for accessor in prototype chain removed here in clone.
|
2010-02-18 15:10:35 +00:00
|
|
|
if (!result.IsFound()) {
|
|
|
|
|
// Neither properties nor transitions found.
|
2011-03-28 06:11:08 +00:00
|
|
|
return AddProperty(name, value, attributes, kNonStrictMode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-03-23 11:40:38 +00:00
|
|
|
|
2010-02-18 13:13:21 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, NORMAL);
|
|
|
|
|
|
2009-07-08 11:32:03 +00:00
|
|
|
// Check of IsReadOnly removed from here in clone.
|
2010-02-18 15:10:35 +00:00
|
|
|
switch (result.type()) {
|
2008-10-02 13:45:21 +00:00
|
|
|
case NORMAL:
|
2010-02-18 13:13:21 +00:00
|
|
|
return SetNormalizedProperty(name, value, details);
|
2008-10-02 13:45:21 +00:00
|
|
|
case FIELD:
|
2010-02-18 15:10:35 +00:00
|
|
|
return FastPropertyAtPut(result.GetFieldIndex(), value);
|
2008-10-02 13:45:21 +00:00
|
|
|
case MAP_TRANSITION:
|
2010-02-18 15:10:35 +00:00
|
|
|
if (attributes == result.GetAttributes()) {
|
2008-10-02 13:45:21 +00:00
|
|
|
// Only use map transition if the attributes match.
|
2010-02-18 15:10:35 +00:00
|
|
|
return AddFastPropertyUsingMap(result.GetTransitionMap(),
|
2008-10-02 13:45:21 +00:00
|
|
|
name,
|
|
|
|
|
value);
|
|
|
|
|
}
|
2009-04-21 13:28:11 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
// Only replace the function if necessary.
|
2010-02-18 15:10:35 +00:00
|
|
|
if (value == result.GetConstantFunction()) return value;
|
2009-05-13 10:46:28 +00:00
|
|
|
// Preserve the attributes of this existing property.
|
2010-02-18 15:10:35 +00:00
|
|
|
attributes = result.GetAttributes();
|
2009-07-07 14:06:08 +00:00
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2009-04-21 13:28:34 +00:00
|
|
|
case CALLBACKS:
|
|
|
|
|
case INTERCEPTOR:
|
2009-04-21 13:28:11 +00:00
|
|
|
// Override callback in clone
|
|
|
|
|
return ConvertDescriptorToField(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
// Replace with a MAP_TRANSITION to a new map with a FIELD, even
|
|
|
|
|
// if the value is a function.
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
case NULL_DESCRIPTOR:
|
2011-03-23 09:57:12 +00:00
|
|
|
case EXTERNAL_ARRAY_TRANSITION:
|
2008-10-09 12:18:48 +00:00
|
|
|
return ConvertDescriptorToFieldAndMapTransition(name, value, attributes);
|
2008-10-02 13:45:21 +00:00
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttributePostInterceptor(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
|
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2008-07-25 07:37:58 +00:00
|
|
|
if (result.IsProperty()) return result.GetAttributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
if (continue_search) {
|
|
|
|
|
// Continue searching via the prototype chain.
|
|
|
|
|
Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!pt->IsNull()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return JSObject::cast(pt)->
|
|
|
|
|
GetPropertyAttributeWithReceiver(receiver, name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PropertyAttributes JSObject::GetPropertyAttributeWithInterceptor(
|
|
|
|
|
JSObject* receiver,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
Handle<JSObject> receiver_handle(receiver);
|
|
|
|
|
Handle<JSObject> holder_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
2011-03-18 20:35:07 +00:00
|
|
|
CustomArguments args(isolate, interceptor->data(), receiver, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->query()->IsUndefined()) {
|
2010-06-15 17:01:02 +00:00
|
|
|
v8::NamedPropertyQuery query =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyQuery>(interceptor->query());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiNamedPropertyAccess("interceptor-named-has", *holder_handle, name));
|
2010-06-15 17:01:02 +00:00
|
|
|
v8::Handle<v8::Integer> result;
|
2008-07-03 15:10:15 +00:00
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = query(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
|
|
|
|
if (!result.IsEmpty()) {
|
2010-06-15 17:01:02 +00:00
|
|
|
ASSERT(result->IsInt32());
|
|
|
|
|
return static_cast<PropertyAttributes>(result->Int32Value());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
} else if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyGetter>(interceptor->getter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiNamedPropertyAccess("interceptor-named-get-has", this, name));
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
2010-05-28 11:54:58 +00:00
|
|
|
if (!result.IsEmpty()) return DONT_ENUM;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return holder_handle->GetPropertyAttributePostInterceptor(*receiver_handle,
|
|
|
|
|
*name_handle,
|
|
|
|
|
continue_search);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
PropertyAttributes JSReceiver::GetPropertyAttributeWithReceiver(
|
|
|
|
|
JSReceiver* receiver,
|
2008-07-03 15:10:15 +00:00
|
|
|
String* key) {
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
if (IsJSObject() && key->AsArrayIndex(&index)) {
|
|
|
|
|
if (JSObject::cast(this)->HasElementWithReceiver(receiver, index))
|
|
|
|
|
return NONE;
|
2008-07-03 15:10:15 +00:00
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
// Named property.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
Lookup(key, &result);
|
|
|
|
|
return GetPropertyAttribute(receiver, &result, key, true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
PropertyAttributes JSReceiver::GetPropertyAttribute(JSReceiver* receiver,
|
|
|
|
|
LookupResult* result,
|
|
|
|
|
String* name,
|
|
|
|
|
bool continue_search) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
JSObject* this_obj = JSObject::cast(this);
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
if (!heap->isolate()->MayNamedAccess(this_obj, name, v8::ACCESS_HAS)) {
|
|
|
|
|
return this_obj->GetPropertyAttributeWithFailedAccessCheck(
|
|
|
|
|
receiver, result, name, continue_search);
|
2011-03-31 10:55:53 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
switch (result->type()) {
|
|
|
|
|
case NORMAL: // fall through
|
|
|
|
|
case FIELD:
|
|
|
|
|
case CONSTANT_FUNCTION:
|
|
|
|
|
case CALLBACKS:
|
|
|
|
|
return result->GetAttributes();
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
case HANDLER: {
|
|
|
|
|
// TODO(rossberg): propagate exceptions properly.
|
|
|
|
|
bool has_exception = false;
|
|
|
|
|
return JSProxy::cast(this)->GetPropertyAttributeWithHandler(
|
|
|
|
|
receiver, name, &has_exception);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
case INTERCEPTOR:
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
return result->holder()->GetPropertyAttributeWithInterceptor(
|
|
|
|
|
JSObject::cast(receiver), name, continue_search);
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
2008-08-27 10:11:39 +00:00
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
PropertyAttributes JSReceiver::GetLocalPropertyAttribute(String* name) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check whether the name is an array index.
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
if (IsJSObject() && name->AsArrayIndex(&index)) {
|
|
|
|
|
if (JSObject::cast(this)->HasLocalElement(index)) return NONE;
|
2008-07-03 15:10:15 +00:00
|
|
|
return ABSENT;
|
|
|
|
|
}
|
|
|
|
|
// Named property.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
return GetPropertyAttribute(this, &result, name, false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* NormalizedMapCache::Get(JSObject* obj,
|
|
|
|
|
PropertyNormalizationMode mode) {
|
2011-03-23 11:13:07 +00:00
|
|
|
Isolate* isolate = obj->GetIsolate();
|
2010-08-25 13:25:54 +00:00
|
|
|
Map* fast = obj->map();
|
2011-06-06 13:15:11 +00:00
|
|
|
int index = fast->Hash() % kEntries;
|
2010-09-24 08:18:33 +00:00
|
|
|
Object* result = get(index);
|
2011-06-06 13:15:11 +00:00
|
|
|
if (result->IsMap() &&
|
|
|
|
|
Map::cast(result)->EquivalentToForNormalization(fast, mode)) {
|
2010-08-25 13:25:54 +00:00
|
|
|
#ifdef DEBUG
|
2011-06-06 13:15:11 +00:00
|
|
|
Map::cast(result)->SharedMapVerify();
|
2010-09-24 08:18:33 +00:00
|
|
|
if (FLAG_enable_slow_asserts) {
|
|
|
|
|
// The cached map should match newly created normalized map bit-by-bit.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* fresh;
|
|
|
|
|
{ MaybeObject* maybe_fresh =
|
|
|
|
|
fast->CopyNormalized(mode, SHARED_NORMALIZED_MAP);
|
|
|
|
|
if (maybe_fresh->ToObject(&fresh)) {
|
|
|
|
|
ASSERT(memcmp(Map::cast(fresh)->address(),
|
|
|
|
|
Map::cast(result)->address(),
|
|
|
|
|
Map::kSize) == 0);
|
|
|
|
|
}
|
2010-08-25 13:25:54 +00:00
|
|
|
}
|
|
|
|
|
}
|
2010-09-24 08:18:33 +00:00
|
|
|
#endif
|
|
|
|
|
return result;
|
2010-08-25 13:25:54 +00:00
|
|
|
}
|
2010-09-24 08:18:33 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
fast->CopyNormalized(mode, SHARED_NORMALIZED_MAP);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2010-09-24 08:18:33 +00:00
|
|
|
set(index, result);
|
2011-03-23 11:13:07 +00:00
|
|
|
isolate->counters()->normalized_maps()->Increment();
|
2010-08-25 13:25:54 +00:00
|
|
|
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void NormalizedMapCache::Clear() {
|
|
|
|
|
int entries = length();
|
|
|
|
|
for (int i = 0; i != entries; i++) {
|
|
|
|
|
set_undefined(i);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::UpdateMapCodeCache(String* name, Code* code) {
|
2010-09-24 08:18:33 +00:00
|
|
|
if (map()->is_shared()) {
|
|
|
|
|
// Fast case maps are never marked as shared.
|
|
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
// Replace the map with an identical copy that can be safely modified.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = map()->CopyNormalized(KEEP_INOBJECT_PROPERTIES,
|
|
|
|
|
UNIQUE_NORMALIZED_MAP);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2011-03-23 11:13:07 +00:00
|
|
|
GetIsolate()->counters()->normalized_maps()->Increment();
|
2010-08-25 13:25:54 +00:00
|
|
|
|
|
|
|
|
set_map(Map::cast(obj));
|
|
|
|
|
}
|
|
|
|
|
return map()->UpdateCodeCache(name, code);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::NormalizeProperties(PropertyNormalizationMode mode,
|
|
|
|
|
int expected_additional_properties) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!HasFastProperties()) return this;
|
|
|
|
|
|
2009-07-30 07:33:05 +00:00
|
|
|
// The global object is always normalized.
|
|
|
|
|
ASSERT(!IsGlobalObject());
|
2011-02-03 19:29:10 +00:00
|
|
|
// JSGlobalProxy must never be normalized
|
|
|
|
|
ASSERT(!IsJSGlobalProxy());
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Map* map_of_this = map();
|
2011-03-18 20:35:07 +00:00
|
|
|
|
2009-07-30 07:33:05 +00:00
|
|
|
// Allocate new content.
|
2011-03-31 10:55:53 +00:00
|
|
|
int property_count = map_of_this->NumberOfDescribedProperties();
|
2009-07-30 09:13:48 +00:00
|
|
|
if (expected_additional_properties > 0) {
|
|
|
|
|
property_count += expected_additional_properties;
|
|
|
|
|
} else {
|
|
|
|
|
property_count += 2; // Make space for two more properties.
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
StringDictionary::Allocate(property_count);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
StringDictionary* dictionary = StringDictionary::cast(obj);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
DescriptorArray* descs = map_of_this->instance_descriptors();
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
2011-04-11 11:38:34 +00:00
|
|
|
PropertyDetails details(descs->GetDetails(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
switch (details.type()) {
|
|
|
|
|
case CONSTANT_FUNCTION: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), NORMAL, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = descs->GetConstantFunction(i);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
dictionary->Add(descs->GetKey(i), value, d);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case FIELD: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), NORMAL, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = FastPropertyAt(descs->GetFieldIndex(i));
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
dictionary->Add(descs->GetKey(i), value, d);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case CALLBACKS: {
|
|
|
|
|
PropertyDetails d =
|
|
|
|
|
PropertyDetails(details.attributes(), CALLBACKS, details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
Object* value = descs->GetCallbacksObject(i);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
dictionary->Add(descs->GetKey(i), value, d);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = StringDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
break;
|
|
|
|
|
}
|
2008-08-27 10:11:39 +00:00
|
|
|
case MAP_TRANSITION:
|
|
|
|
|
case CONSTANT_TRANSITION:
|
|
|
|
|
case NULL_DESCRIPTOR:
|
|
|
|
|
case INTERCEPTOR:
|
2011-05-11 11:25:03 +00:00
|
|
|
case EXTERNAL_ARRAY_TRANSITION:
|
2008-08-27 10:11:39 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
default:
|
2008-08-27 10:11:39 +00:00
|
|
|
UNREACHABLE();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* current_heap = map_of_this->heap();
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Copy the next enumeration index from instance descriptor.
|
2011-03-31 10:55:53 +00:00
|
|
|
int index = map_of_this->instance_descriptors()->NextEnumerationIndex();
|
2008-07-03 15:10:15 +00:00
|
|
|
dictionary->SetNextEnumerationIndex(index);
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
current_heap->isolate()->context()->global_context()->
|
2011-03-18 20:35:07 +00:00
|
|
|
normalized_map_cache()->Get(this, mode);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-01-12 10:59:58 +00:00
|
|
|
Map* new_map = Map::cast(obj);
|
|
|
|
|
|
2009-01-15 19:08:34 +00:00
|
|
|
// We have now successfully allocated all the necessary objects.
|
2008-08-27 10:11:39 +00:00
|
|
|
// Changes can now be made with the guarantee that all of them take effect.
|
2010-08-25 13:25:54 +00:00
|
|
|
|
|
|
|
|
// Resize the object in the heap if necessary.
|
|
|
|
|
int new_instance_size = new_map->instance_size();
|
2011-03-31 10:55:53 +00:00
|
|
|
int instance_size_delta = map_of_this->instance_size() - new_instance_size;
|
2010-08-25 13:25:54 +00:00
|
|
|
ASSERT(instance_size_delta >= 0);
|
2011-03-31 10:55:53 +00:00
|
|
|
current_heap->CreateFillerObjectAt(this->address() + new_instance_size,
|
|
|
|
|
instance_size_delta);
|
2010-08-25 13:25:54 +00:00
|
|
|
|
2009-01-12 10:59:58 +00:00
|
|
|
set_map(new_map);
|
2011-05-23 15:59:38 +00:00
|
|
|
new_map->clear_instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
set_properties(dictionary);
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
current_heap->isolate()->counters()->props_to_dictionary()->Increment();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object properties have been normalized:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::TransformToFastProperties(int unused_property_fields) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) return this;
|
2009-07-01 11:44:37 +00:00
|
|
|
ASSERT(!IsGlobalObject());
|
2008-07-03 15:10:15 +00:00
|
|
|
return property_dictionary()->
|
2009-07-01 11:44:37 +00:00
|
|
|
TransformPropertiesToFastFor(this, unused_property_fields);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::NormalizeElements() {
|
2011-03-09 15:01:16 +00:00
|
|
|
ASSERT(!HasExternalArrayElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Find the backing store.
|
2011-07-13 13:50:27 +00:00
|
|
|
FixedArrayBase* array = FixedArrayBase::cast(elements());
|
2011-06-16 14:12:58 +00:00
|
|
|
Map* old_map = array->map();
|
|
|
|
|
bool is_arguments =
|
|
|
|
|
(old_map == old_map->heap()->non_strict_arguments_elements_map());
|
|
|
|
|
if (is_arguments) {
|
2011-07-13 13:50:27 +00:00
|
|
|
array = FixedArrayBase::cast(FixedArray::cast(array)->get(1));
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
|
|
|
|
if (array->IsDictionary()) return array;
|
|
|
|
|
|
2011-07-13 13:50:27 +00:00
|
|
|
ASSERT(HasFastElements() ||
|
|
|
|
|
HasFastDoubleElements() ||
|
|
|
|
|
HasFastArgumentsElements());
|
2011-06-16 14:12:58 +00:00
|
|
|
// Compute the effective length and allocate a new backing store.
|
|
|
|
|
int length = IsJSArray()
|
|
|
|
|
? Smi::cast(JSArray::cast(this)->length())->value()
|
|
|
|
|
: array->length();
|
2011-07-26 13:56:21 +00:00
|
|
|
int old_capacity = 0;
|
|
|
|
|
int used_elements = 0;
|
|
|
|
|
GetElementsCapacityAndUsage(&old_capacity, &used_elements);
|
2011-06-16 14:12:58 +00:00
|
|
|
NumberDictionary* dictionary = NULL;
|
|
|
|
|
{ Object* object;
|
2011-07-26 13:56:21 +00:00
|
|
|
MaybeObject* maybe = NumberDictionary::Allocate(used_elements);
|
2011-06-16 14:12:58 +00:00
|
|
|
if (!maybe->ToObject(&object)) return maybe;
|
|
|
|
|
dictionary = NumberDictionary::cast(object);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Copy the elements to the new backing store.
|
2011-07-13 13:50:27 +00:00
|
|
|
bool has_double_elements = array->IsFixedDoubleArray();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < length; i++) {
|
2011-06-09 10:03:35 +00:00
|
|
|
Object* value = NULL;
|
|
|
|
|
if (has_double_elements) {
|
|
|
|
|
FixedDoubleArray* double_array = FixedDoubleArray::cast(array);
|
|
|
|
|
if (double_array->is_the_hole(i)) {
|
|
|
|
|
value = GetIsolate()->heap()->the_hole_value();
|
|
|
|
|
} else {
|
|
|
|
|
// Objects must be allocated in the old object space, since the
|
|
|
|
|
// overall number of HeapNumbers needed for the conversion might
|
|
|
|
|
// exceed the capacity of new space, and we would fail repeatedly
|
|
|
|
|
// trying to convert the FixedDoubleArray.
|
|
|
|
|
MaybeObject* maybe_value_object =
|
2011-08-03 11:12:46 +00:00
|
|
|
GetHeap()->AllocateHeapNumber(double_array->get_scalar(i), TENURED);
|
2011-06-09 10:03:35 +00:00
|
|
|
if (!maybe_value_object->ToObject(&value)) return maybe_value_object;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
ASSERT(old_map->has_fast_elements());
|
2011-07-13 13:50:27 +00:00
|
|
|
value = FixedArray::cast(array)->get(i);
|
2011-06-09 10:03:35 +00:00
|
|
|
}
|
|
|
|
|
PropertyDetails details = PropertyDetails(NONE, NORMAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!value->IsTheHole()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
2011-06-09 10:03:35 +00:00
|
|
|
MaybeObject* maybe_result =
|
|
|
|
|
dictionary->AddNumberEntry(i, value, details);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
2009-07-02 06:50:43 +00:00
|
|
|
dictionary = NumberDictionary::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Switch to using the dictionary as the backing storage for elements.
|
|
|
|
|
if (is_arguments) {
|
|
|
|
|
FixedArray::cast(elements())->set(1, dictionary);
|
|
|
|
|
} else {
|
|
|
|
|
// Set the new map first to satify the elements type assert in
|
|
|
|
|
// set_elements().
|
|
|
|
|
Object* new_map;
|
|
|
|
|
MaybeObject* maybe = map()->GetSlowElementsMap();
|
|
|
|
|
if (!maybe->ToObject(&new_map)) return maybe;
|
|
|
|
|
set_map(Map::cast(new_map));
|
|
|
|
|
set_elements(dictionary);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
old_map->isolate()->counters()->elements_to_dictionary()->Increment();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object elements have been normalized:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
ASSERT(HasDictionaryElements() || HasDictionaryArgumentsElements());
|
|
|
|
|
return dictionary;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-28 17:21:22 +00:00
|
|
|
MaybeObject* JSObject::GetHiddenProperties(HiddenPropertiesFlag flag) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
Heap* heap = isolate->heap();
|
|
|
|
|
Object* holder = BypassGlobalProxy();
|
|
|
|
|
if (holder->IsUndefined()) return heap->undefined_value();
|
|
|
|
|
JSObject* obj = JSObject::cast(holder);
|
|
|
|
|
if (obj->HasFastProperties()) {
|
|
|
|
|
// If the object has fast properties, check whether the first slot
|
|
|
|
|
// in the descriptor array matches the hidden symbol. Since the
|
|
|
|
|
// hidden symbols hash code is zero (and no other string has hash
|
|
|
|
|
// code zero) it will always occupy the first entry if present.
|
|
|
|
|
DescriptorArray* descriptors = obj->map()->instance_descriptors();
|
|
|
|
|
if ((descriptors->number_of_descriptors() > 0) &&
|
|
|
|
|
(descriptors->GetKey(0) == heap->hidden_symbol()) &&
|
|
|
|
|
descriptors->IsProperty(0)) {
|
|
|
|
|
ASSERT(descriptors->GetType(0) == FIELD);
|
|
|
|
|
return obj->FastPropertyAt(descriptors->GetFieldIndex(0));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Only attempt to find the hidden properties in the local object and not
|
|
|
|
|
// in the prototype chain.
|
|
|
|
|
if (!obj->HasHiddenPropertiesObject()) {
|
|
|
|
|
// Hidden properties object not found. Allocate a new hidden properties
|
|
|
|
|
// object if requested. Otherwise return the undefined value.
|
|
|
|
|
if (flag == ALLOW_CREATION) {
|
|
|
|
|
Object* hidden_obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = heap->AllocateJSObject(
|
|
|
|
|
isolate->context()->global_context()->object_function());
|
|
|
|
|
if (!maybe_obj->ToObject(&hidden_obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
return obj->SetHiddenPropertiesObject(hidden_obj);
|
|
|
|
|
} else {
|
|
|
|
|
return heap->undefined_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return obj->GetHiddenPropertiesObject();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* JSObject::GetIdentityHash(HiddenPropertiesFlag flag) {
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
Object* hidden_props_obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = GetHiddenProperties(flag);
|
|
|
|
|
if (!maybe_obj->ToObject(&hidden_props_obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
if (!hidden_props_obj->IsJSObject()) {
|
|
|
|
|
// We failed to create hidden properties. That's a detached
|
|
|
|
|
// global proxy.
|
|
|
|
|
ASSERT(hidden_props_obj->IsUndefined());
|
|
|
|
|
return Smi::FromInt(0);
|
|
|
|
|
}
|
|
|
|
|
JSObject* hidden_props = JSObject::cast(hidden_props_obj);
|
|
|
|
|
String* hash_symbol = isolate->heap()->identity_hash_symbol();
|
|
|
|
|
{
|
|
|
|
|
// Note that HasLocalProperty() can cause a GC in the general case in the
|
|
|
|
|
// presence of interceptors.
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
if (hidden_props->HasLocalProperty(hash_symbol)) {
|
|
|
|
|
MaybeObject* hash = hidden_props->GetProperty(hash_symbol);
|
|
|
|
|
return Smi::cast(hash->ToObjectChecked());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int hash_value;
|
|
|
|
|
int attempts = 0;
|
|
|
|
|
do {
|
|
|
|
|
// Generate a random 32-bit hash value but limit range to fit
|
|
|
|
|
// within a smi.
|
|
|
|
|
hash_value = V8::Random(isolate) & Smi::kMaxValue;
|
|
|
|
|
attempts++;
|
|
|
|
|
} while (hash_value == 0 && attempts < 30);
|
|
|
|
|
hash_value = hash_value != 0 ? hash_value : 1; // never return 0
|
|
|
|
|
|
|
|
|
|
Smi* hash = Smi::FromInt(hash_value);
|
|
|
|
|
{ MaybeObject* result = hidden_props->SetLocalPropertyIgnoreAttributes(
|
|
|
|
|
hash_symbol,
|
|
|
|
|
hash,
|
|
|
|
|
static_cast<PropertyAttributes>(None));
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeletePropertyPostInterceptor(String* name,
|
|
|
|
|
DeleteMode mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check local property, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2011-03-31 10:55:53 +00:00
|
|
|
if (!result.IsProperty()) return GetHeap()->true_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Normalize object if needed.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
return DeleteNormalizedProperty(name, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeletePropertyWithInterceptor(String* name) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetNamedInterceptor());
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
|
|
|
|
if (!interceptor->deleter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyDeleter deleter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyDeleter>(interceptor->deleter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiNamedPropertyAccess("interceptor-named-delete", *this_handle, name));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), this, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = deleter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!result.IsEmpty()) {
|
|
|
|
|
ASSERT(result->IsBoolean());
|
|
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* raw_result =
|
2009-06-08 09:46:09 +00:00
|
|
|
this_handle->DeletePropertyPostInterceptor(*name_handle, NORMAL_DELETION);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeleteElementWithInterceptor(uint32_t index) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
Heap* heap = isolate->heap();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
2011-03-18 20:35:07 +00:00
|
|
|
if (interceptor->deleter()->IsUndefined()) return heap->false_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::IndexedPropertyDeleter deleter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyDeleter>(interceptor->deleter());
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiIndexedPropertyAccess("interceptor-indexed-delete", this, index));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), this, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Boolean> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = deleter(index, info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!result.IsEmpty()) {
|
|
|
|
|
ASSERT(result->IsBoolean());
|
|
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
2011-08-16 15:51:49 +00:00
|
|
|
MaybeObject* raw_result = this_handle->GetElementsAccessor()->Delete(
|
|
|
|
|
*this_handle,
|
|
|
|
|
index,
|
|
|
|
|
NORMAL_DELETION);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeleteElement(uint32_t index, DeleteMode mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!isolate->MayIndexedAccess(this, index, v8::ACCESS_DELETE)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(this, v8::ACCESS_DELETE);
|
|
|
|
|
return isolate->heap()->false_value();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (proto->IsNull()) return isolate->heap()->false_value();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-06-08 09:46:09 +00:00
|
|
|
return JSGlobalObject::cast(proto)->DeleteElement(index, mode);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasIndexedInterceptor()) {
|
2009-06-08 09:46:09 +00:00
|
|
|
// Skip interceptor if forcing deletion.
|
2011-08-04 11:42:14 +00:00
|
|
|
if (mode != FORCE_DELETION) {
|
|
|
|
|
return DeleteElementWithInterceptor(index);
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2011-08-04 11:42:14 +00:00
|
|
|
mode = JSReceiver::FORCE_DELETION;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-08-04 11:42:14 +00:00
|
|
|
|
|
|
|
|
return GetElementsAccessor()->Delete(this, index, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-15 09:10:20 +00:00
|
|
|
MaybeObject* JSReceiver::DeleteProperty(String* name, DeleteMode mode) {
|
|
|
|
|
if (IsJSProxy()) {
|
|
|
|
|
return JSProxy::cast(this)->DeletePropertyWithHandler(name, mode);
|
|
|
|
|
} else {
|
|
|
|
|
return JSObject::cast(this)->DeleteProperty(name, mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DeleteProperty(String* name, DeleteMode mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// ECMA-262, 3rd, 8.6.2.5
|
|
|
|
|
ASSERT(name->IsString());
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!isolate->MayNamedAccess(this, name, v8::ACCESS_DELETE)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(this, v8::ACCESS_DELETE);
|
|
|
|
|
return isolate->heap()->false_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (proto->IsNull()) return isolate->heap()->false_value();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-06-08 09:46:09 +00:00
|
|
|
return JSGlobalObject::cast(proto)->DeleteProperty(name, mode);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-09-26 15:53:42 +00:00
|
|
|
uint32_t index = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (name->AsArrayIndex(&index)) {
|
2009-06-08 09:46:09 +00:00
|
|
|
return DeleteElement(index, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!result.IsProperty()) return isolate->heap()->true_value();
|
2009-06-08 09:46:09 +00:00
|
|
|
// Ignore attributes if forcing a deletion.
|
|
|
|
|
if (result.IsDontDelete() && mode != FORCE_DELETION) {
|
2011-02-14 23:41:47 +00:00
|
|
|
if (mode == STRICT_DELETION) {
|
|
|
|
|
// Deleting a non-configurable property in strict mode.
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2011-02-14 23:41:47 +00:00
|
|
|
Handle<Object> args[2] = { Handle<Object>(name), Handle<Object>(this) };
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->Throw(*isolate->factory()->NewTypeError(
|
|
|
|
|
"strict_delete_property", HandleVector(args, 2)));
|
2011-02-14 23:41:47 +00:00
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->false_value();
|
2009-06-08 09:46:09 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check for interceptor.
|
|
|
|
|
if (result.type() == INTERCEPTOR) {
|
2009-06-08 09:46:09 +00:00
|
|
|
// Skip interceptor if forcing a deletion.
|
|
|
|
|
if (mode == FORCE_DELETION) {
|
|
|
|
|
return DeletePropertyPostInterceptor(name, mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return DeletePropertyWithInterceptor(name);
|
|
|
|
|
}
|
|
|
|
|
// Normalize object if needed.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure the properties are normalized before removing the entry.
|
2009-06-30 10:05:36 +00:00
|
|
|
return DeleteNormalizedProperty(name, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
bool JSObject::ReferencesObjectFromElements(FixedArray* elements,
|
|
|
|
|
ElementsKind kind,
|
|
|
|
|
Object* object) {
|
|
|
|
|
ASSERT(kind == FAST_ELEMENTS || kind == DICTIONARY_ELEMENTS);
|
|
|
|
|
if (kind == FAST_ELEMENTS) {
|
|
|
|
|
int length = IsJSArray()
|
|
|
|
|
? Smi::cast(JSArray::cast(this)->length())->value()
|
|
|
|
|
: elements->length();
|
|
|
|
|
for (int i = 0; i < length; ++i) {
|
|
|
|
|
Object* element = elements->get(i);
|
|
|
|
|
if (!element->IsTheHole() && element == object) return true;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
Object* key = NumberDictionary::cast(elements)->SlowReverseLookup(object);
|
|
|
|
|
if (!key->IsUndefined()) return true;
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check whether this object references another object.
|
|
|
|
|
bool JSObject::ReferencesObject(Object* obj) {
|
2011-03-31 10:55:53 +00:00
|
|
|
Map* map_of_this = map();
|
|
|
|
|
Heap* heap = map_of_this->heap();
|
2008-07-03 15:10:15 +00:00
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
// Is the object the constructor for this object?
|
2011-03-31 10:55:53 +00:00
|
|
|
if (map_of_this->constructor() == obj) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Is the object the prototype for this object?
|
2011-03-31 10:55:53 +00:00
|
|
|
if (map_of_this->prototype() == obj) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the object is among the named properties.
|
|
|
|
|
Object* key = SlowReverseLookup(obj);
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!key->IsUndefined()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the object is among the indexed properties.
|
2011-06-16 14:12:58 +00:00
|
|
|
ElementsKind kind = GetElementsKind();
|
|
|
|
|
switch (kind) {
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
2011-06-16 14:12:58 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
// Raw pixels and external arrays do not reference other
|
|
|
|
|
// objects.
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
case FAST_ELEMENTS:
|
2011-06-16 06:37:49 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
2011-06-16 14:12:58 +00:00
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
|
|
|
|
if (ReferencesObjectFromElements(elements, kind, obj)) return true;
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-06-15 15:09:28 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
// Check the mapped parameters.
|
|
|
|
|
int length = parameter_map->length();
|
|
|
|
|
for (int i = 2; i < length; ++i) {
|
|
|
|
|
Object* value = parameter_map->get(i);
|
|
|
|
|
if (!value->IsTheHole() && value == obj) return true;
|
|
|
|
|
}
|
|
|
|
|
// Check the arguments.
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
kind = arguments->IsDictionary() ? DICTIONARY_ELEMENTS : FAST_ELEMENTS;
|
|
|
|
|
if (ReferencesObjectFromElements(arguments, kind, obj)) return true;
|
2011-06-16 06:37:49 +00:00
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2010-04-19 12:39:07 +00:00
|
|
|
// For functions check the context.
|
|
|
|
|
if (IsJSFunction()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Get the constructor function for arguments array.
|
|
|
|
|
JSObject* arguments_boilerplate =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->isolate()->context()->global_context()->
|
|
|
|
|
arguments_boilerplate();
|
2008-07-03 15:10:15 +00:00
|
|
|
JSFunction* arguments_function =
|
|
|
|
|
JSFunction::cast(arguments_boilerplate->map()->constructor());
|
|
|
|
|
|
|
|
|
|
// Get the context and don't check if it is the global context.
|
|
|
|
|
JSFunction* f = JSFunction::cast(this);
|
|
|
|
|
Context* context = f->context();
|
|
|
|
|
if (context->IsGlobalContext()) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check the non-special context slots.
|
|
|
|
|
for (int i = Context::MIN_CONTEXT_SLOTS; i < context->length(); i++) {
|
|
|
|
|
// Only check JS objects.
|
|
|
|
|
if (context->get(i)->IsJSObject()) {
|
|
|
|
|
JSObject* ctxobj = JSObject::cast(context->get(i));
|
|
|
|
|
// If it is an arguments array check the content.
|
|
|
|
|
if (ctxobj->map()->constructor() == arguments_function) {
|
|
|
|
|
if (ctxobj->ReferencesObject(obj)) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
} else if (ctxobj == obj) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-16 06:37:49 +00:00
|
|
|
// Check the context extension (if any) if it can have references.
|
|
|
|
|
if (context->has_extension() && !context->IsCatchContext()) {
|
|
|
|
|
return JSObject::cast(context->extension())->ReferencesObject(obj);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// No references to object.
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::PreventExtensions() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2011-02-18 10:39:02 +00:00
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!isolate->MayNamedAccess(this,
|
|
|
|
|
isolate->heap()->undefined_value(),
|
|
|
|
|
v8::ACCESS_KEYS)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(this, v8::ACCESS_KEYS);
|
|
|
|
|
return isolate->heap()->false_value();
|
2011-02-18 10:39:02 +00:00
|
|
|
}
|
|
|
|
|
|
2011-02-08 12:41:16 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return this;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->PreventExtensions();
|
|
|
|
|
}
|
|
|
|
|
|
2010-07-02 14:36:34 +00:00
|
|
|
// If there are fast elements we normalize.
|
2011-07-11 06:48:19 +00:00
|
|
|
NumberDictionary* dictionary = NULL;
|
|
|
|
|
{ MaybeObject* maybe = NormalizeElements();
|
|
|
|
|
if (!maybe->To<NumberDictionary>(&dictionary)) return maybe;
|
2010-07-02 14:36:34 +00:00
|
|
|
}
|
2011-07-11 06:48:19 +00:00
|
|
|
ASSERT(HasDictionaryElements() || HasDictionaryArgumentsElements());
|
2010-07-02 14:36:34 +00:00
|
|
|
// Make sure that we never go back to fast case.
|
2011-07-11 06:48:19 +00:00
|
|
|
dictionary->set_requires_slow_elements();
|
2010-07-02 14:36:34 +00:00
|
|
|
|
|
|
|
|
// Do a map transition, other objects with this map may still
|
|
|
|
|
// be extensible.
|
2011-07-11 06:48:19 +00:00
|
|
|
Map* new_map;
|
|
|
|
|
{ MaybeObject* maybe = map()->CopyDropTransitions();
|
|
|
|
|
if (!maybe->To<Map>(&new_map)) return maybe;
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2011-07-11 06:48:19 +00:00
|
|
|
new_map->set_is_extensible(false);
|
|
|
|
|
set_map(new_map);
|
2010-07-02 14:36:34 +00:00
|
|
|
ASSERT(!map()->is_extensible());
|
|
|
|
|
return new_map;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Tests for the fast common case for property enumeration:
|
2009-12-01 10:25:29 +00:00
|
|
|
// - This object and all prototypes has an enum cache (which means that it has
|
|
|
|
|
// no interceptors and needs no access checks).
|
|
|
|
|
// - This object has no elements.
|
|
|
|
|
// - No prototype has enumerable properties/elements.
|
2008-07-03 15:10:15 +00:00
|
|
|
bool JSObject::IsSimpleEnum() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (Object* o = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
o != heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
o = JSObject::cast(o)->GetPrototype()) {
|
|
|
|
|
JSObject* curr = JSObject::cast(o);
|
|
|
|
|
if (!curr->map()->instance_descriptors()->HasEnumCache()) return false;
|
2009-12-01 10:25:29 +00:00
|
|
|
ASSERT(!curr->HasNamedInterceptor());
|
|
|
|
|
ASSERT(!curr->HasIndexedInterceptor());
|
|
|
|
|
ASSERT(!curr->IsAccessCheckNeeded());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (curr->NumberOfEnumElements() > 0) return false;
|
|
|
|
|
if (curr != this) {
|
|
|
|
|
FixedArray* curr_fixed_array =
|
|
|
|
|
FixedArray::cast(curr->map()->instance_descriptors()->GetEnumCache());
|
2009-12-01 10:25:29 +00:00
|
|
|
if (curr_fixed_array->length() > 0) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::NumberOfDescribedProperties() {
|
|
|
|
|
int result = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->IsProperty(i)) result++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::PropertyIndexFor(String* name) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (name->Equals(descs->GetKey(i)) && !descs->IsNullDescriptor(i)) {
|
|
|
|
|
return descs->GetFieldIndex(i);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int Map::NextFreePropertyIndex() {
|
2009-07-10 19:25:18 +00:00
|
|
|
int max_index = -1;
|
|
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->GetType(i) == FIELD) {
|
|
|
|
|
int current_index = descs->GetFieldIndex(i);
|
|
|
|
|
if (current_index > max_index) max_index = current_index;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
return max_index + 1;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
AccessorDescriptor* Map::FindAccessor(String* name) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (name->Equals(descs->GetKey(i)) && descs->GetType(i) == CALLBACKS) {
|
|
|
|
|
return descs->GetCallbacks(i);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
void JSReceiver::LocalLookup(String* name, LookupResult* result) {
|
|
|
|
|
if (IsJSProxy()) {
|
|
|
|
|
result->HandlerResult();
|
|
|
|
|
} else {
|
|
|
|
|
JSObject::cast(this)->LocalLookup(name, result);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void JSObject::LocalLookup(String* name, LookupResult* result) {
|
|
|
|
|
ASSERT(name->IsString());
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return result->NotFound();
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->LocalLookup(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Do not use inline caching if the object is a non-global object
|
|
|
|
|
// that requires access checks.
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (!IsJSGlobalProxy() && IsAccessCheckNeeded()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->DisallowCaching();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check __proto__ before interceptor.
|
2011-06-03 10:15:49 +00:00
|
|
|
if (name->Equals(heap->Proto_symbol()) && !IsJSContextExtensionObject()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->ConstantResult(this);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for lookup interceptor except when bootstrapping.
|
2011-03-18 20:35:07 +00:00
|
|
|
if (HasNamedInterceptor() && !heap->isolate()->bootstrapper()->IsActive()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result->InterceptorResult(this);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LocalLookupRealNamedProperty(name, result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
void JSReceiver::Lookup(String* name, LookupResult* result) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Ecma-262 3rd 8.6.2.4
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (Object* current = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
current != heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
current = JSObject::cast(current)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(current)->LocalLookup(name, result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty()) return;
|
2008-10-30 12:51:06 +00:00
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Search object and it's prototype chain for callback properties.
|
|
|
|
|
void JSObject::LookupCallback(String* name, LookupResult* result) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-10-30 12:51:06 +00:00
|
|
|
for (Object* current = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
current != heap->null_value();
|
2008-10-30 12:51:06 +00:00
|
|
|
current = JSObject::cast(current)->GetPrototype()) {
|
|
|
|
|
JSObject::cast(current)->LocalLookupRealNamedProperty(name, result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result->IsProperty() && result->type() == CALLBACKS) return;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
result->NotFound();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Search for a getter or setter in an elements dictionary. Returns either
|
|
|
|
|
// undefined if the element is read-only, or the getter/setter pair (fixed
|
|
|
|
|
// array) if there is an existing one, or the hole value if the element does
|
|
|
|
|
// not exist or is a normal non-getter/setter data element.
|
|
|
|
|
static Object* FindGetterSetterInDictionary(NumberDictionary* dictionary,
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Heap* heap) {
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* result = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.IsReadOnly()) return heap->undefined_value();
|
|
|
|
|
if (details.type() == CALLBACKS && result->IsFixedArray()) return result;
|
|
|
|
|
}
|
|
|
|
|
return heap->the_hole_value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DefineGetterSetter(String* name,
|
|
|
|
|
PropertyAttributes attributes) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
2009-01-26 08:35:41 +00:00
|
|
|
// Try to flatten before operating on the string.
|
2010-02-26 14:37:33 +00:00
|
|
|
name->TryFlatten();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-05-25 12:14:49 +00:00
|
|
|
if (!CanSetCallback(name)) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2008-10-30 12:51:06 +00:00
|
|
|
}
|
|
|
|
|
|
2010-06-02 08:58:44 +00:00
|
|
|
uint32_t index = 0;
|
2009-03-13 11:40:09 +00:00
|
|
|
bool is_element = name->AsArrayIndex(&index);
|
|
|
|
|
|
|
|
|
|
if (is_element) {
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS:
|
2011-07-20 13:41:50 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
2009-10-20 15:26:17 +00:00
|
|
|
// Ignore getters and setters on pixel and external array
|
|
|
|
|
// elements.
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
2011-06-16 14:12:58 +00:00
|
|
|
Object* probe =
|
|
|
|
|
FindGetterSetterInDictionary(element_dictionary(), index, heap);
|
|
|
|
|
if (!probe->IsTheHole()) return probe;
|
|
|
|
|
// Otherwise allow to override it.
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
// Ascertain whether we have read-only properties or an existing
|
|
|
|
|
// getter/setter pair in an arguments elements dictionary backing
|
|
|
|
|
// store.
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
uint32_t length = parameter_map->length();
|
|
|
|
|
Object* probe =
|
2011-06-21 09:27:38 +00:00
|
|
|
index < (length - 2) ? parameter_map->get(index + 2) : NULL;
|
2011-06-16 14:12:58 +00:00
|
|
|
if (probe == NULL || probe->IsTheHole()) {
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
if (arguments->IsDictionary()) {
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(arguments);
|
|
|
|
|
probe = FindGetterSetterInDictionary(dictionary, index, heap);
|
|
|
|
|
if (!probe->IsTheHole()) return probe;
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Lookup the name.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsProperty()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (result.IsReadOnly()) return heap->undefined_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
if (result.type() == CALLBACKS) {
|
|
|
|
|
Object* obj = result.GetCallbackObject();
|
2010-05-25 12:14:49 +00:00
|
|
|
// Need to preserve old getters/setters.
|
2010-01-27 13:53:19 +00:00
|
|
|
if (obj->IsFixedArray()) {
|
2010-05-25 12:14:49 +00:00
|
|
|
// Use set to update attributes.
|
|
|
|
|
return SetPropertyCallback(name, obj, attributes);
|
2010-01-27 13:53:19 +00:00
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the fixed array to hold getter and setter.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* structure;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_structure = heap->AllocateFixedArray(2, TENURED);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_structure->ToObject(&structure)) return maybe_structure;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
if (is_element) {
|
2010-05-25 12:14:49 +00:00
|
|
|
return SetElementCallback(index, structure, attributes);
|
|
|
|
|
} else {
|
|
|
|
|
return SetPropertyCallback(name, structure, attributes);
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
|
|
|
|
|
|
2010-05-25 12:14:49 +00:00
|
|
|
bool JSObject::CanSetCallback(String* name) {
|
|
|
|
|
ASSERT(!IsAccessCheckNeeded()
|
2011-03-18 20:35:07 +00:00
|
|
|
|| Isolate::Current()->MayNamedAccess(this, name, v8::ACCESS_SET));
|
2009-03-13 11:40:09 +00:00
|
|
|
|
2010-05-25 12:14:49 +00:00
|
|
|
// Check if there is an API defined callback object which prohibits
|
|
|
|
|
// callback overwriting in this object or it's prototype chain.
|
|
|
|
|
// This mechanism is needed for instance in a browser setting, where
|
|
|
|
|
// certain accessors such as window.location should not be allowed
|
|
|
|
|
// to be overwritten because allowing overwriting could potentially
|
|
|
|
|
// cause security problems.
|
|
|
|
|
LookupResult callback_result;
|
|
|
|
|
LookupCallback(name, &callback_result);
|
|
|
|
|
if (callback_result.IsProperty()) {
|
|
|
|
|
Object* obj = callback_result.GetCallbackObject();
|
|
|
|
|
if (obj->IsAccessorInfo() &&
|
|
|
|
|
AccessorInfo::cast(obj)->prohibits_overwriting()) {
|
|
|
|
|
return false;
|
2009-07-01 11:20:33 +00:00
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
|
2010-05-25 12:14:49 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetElementCallback(uint32_t index,
|
|
|
|
|
Object* structure,
|
|
|
|
|
PropertyAttributes attributes) {
|
2010-05-25 12:14:49 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, CALLBACKS);
|
|
|
|
|
|
|
|
|
|
// Normalize elements to make this operation simple.
|
2011-06-16 14:12:58 +00:00
|
|
|
NumberDictionary* dictionary = NULL;
|
|
|
|
|
{ Object* result;
|
|
|
|
|
MaybeObject* maybe = NormalizeElements();
|
|
|
|
|
if (!maybe->ToObject(&result)) return maybe;
|
|
|
|
|
dictionary = NumberDictionary::cast(result);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
ASSERT(HasDictionaryElements() || HasDictionaryArgumentsElements());
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// Update the dictionary with the new CALLBACKS property.
|
2011-06-16 14:12:58 +00:00
|
|
|
{ Object* result;
|
|
|
|
|
MaybeObject* maybe = dictionary->Set(index, structure, details);
|
|
|
|
|
if (!maybe->ToObject(&result)) return maybe;
|
|
|
|
|
dictionary = NumberDictionary::cast(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
dictionary->set_requires_slow_elements();
|
|
|
|
|
// Update the dictionary backing store on the object.
|
|
|
|
|
if (elements()->map() == GetHeap()->non_strict_arguments_elements_map()) {
|
|
|
|
|
// Also delete any parameter alias.
|
|
|
|
|
//
|
|
|
|
|
// TODO(kmillikin): when deleting the last parameter alias we could
|
|
|
|
|
// switch to a direct backing store without the parameter map. This
|
|
|
|
|
// would allow GC of the context.
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
uint32_t length = parameter_map->length();
|
2011-06-21 09:27:38 +00:00
|
|
|
if (index < length - 2) {
|
2011-06-16 14:12:58 +00:00
|
|
|
parameter_map->set(index + 2, GetHeap()->the_hole_value());
|
|
|
|
|
}
|
|
|
|
|
parameter_map->set(1, dictionary);
|
|
|
|
|
} else {
|
|
|
|
|
set_elements(dictionary);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
return structure;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetPropertyCallback(String* name,
|
|
|
|
|
Object* structure,
|
|
|
|
|
PropertyAttributes attributes) {
|
2010-05-25 12:14:49 +00:00
|
|
|
PropertyDetails details = PropertyDetails(attributes, CALLBACKS);
|
|
|
|
|
|
|
|
|
|
bool convert_back_to_fast = HasFastProperties() &&
|
|
|
|
|
(map()->instance_descriptors()->number_of_descriptors()
|
|
|
|
|
< DescriptorArray::kMaxNumberOfDescriptors);
|
|
|
|
|
|
|
|
|
|
// Normalize object to make this operation simple.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* ok;
|
|
|
|
|
{ MaybeObject* maybe_ok = NormalizeProperties(CLEAR_INOBJECT_PROPERTIES, 0);
|
|
|
|
|
if (!maybe_ok->ToObject(&ok)) return maybe_ok;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// For the global object allocate a new map to invalidate the global inline
|
|
|
|
|
// caches which have a global property cell reference directly in the code.
|
|
|
|
|
if (IsGlobalObject()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_map;
|
|
|
|
|
{ MaybeObject* maybe_new_map = map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
set_map(Map::cast(new_map));
|
2010-12-07 11:31:57 +00:00
|
|
|
// When running crankshaft, changing the map is not enough. We
|
|
|
|
|
// need to deoptimize all functions that rely on this global
|
|
|
|
|
// object.
|
|
|
|
|
Deoptimizer::DeoptimizeGlobalObject(this);
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the dictionary with the new CALLBACKS property.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = SetNormalizedProperty(name, structure, details);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
if (convert_back_to_fast) {
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_ok = TransformToFastProperties(0);
|
|
|
|
|
if (!maybe_ok->ToObject(&ok)) return maybe_ok;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DefineAccessor(String* name,
|
|
|
|
|
bool is_getter,
|
2010-12-16 12:21:08 +00:00
|
|
|
Object* fun,
|
2010-10-25 15:22:03 +00:00
|
|
|
PropertyAttributes attributes) {
|
2010-12-16 12:21:08 +00:00
|
|
|
ASSERT(fun->IsJSFunction() || fun->IsUndefined());
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!isolate->MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return isolate->heap()->undefined_value();
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return this;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2009-03-19 15:06:00 +00:00
|
|
|
return JSObject::cast(proto)->DefineAccessor(name, is_getter,
|
|
|
|
|
fun, attributes);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* array;
|
|
|
|
|
{ MaybeObject* maybe_array = DefineGetterSetter(name, attributes);
|
|
|
|
|
if (!maybe_array->ToObject(&array)) return maybe_array;
|
|
|
|
|
}
|
|
|
|
|
if (array->IsUndefined()) return array;
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray::cast(array)->set(is_getter ? 0 : 1, fun);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::DefineAccessor(AccessorInfo* info) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2010-05-25 12:14:49 +00:00
|
|
|
String* name = String::cast(info->name());
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!isolate->MayNamedAccess(this, name, v8::ACCESS_SET)) {
|
|
|
|
|
isolate->ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return this;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->DefineAccessor(info);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
// Try to flatten before operating on the string.
|
|
|
|
|
name->TryFlatten();
|
|
|
|
|
|
|
|
|
|
if (!CanSetCallback(name)) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t index = 0;
|
|
|
|
|
bool is_element = name->AsArrayIndex(&index);
|
|
|
|
|
|
|
|
|
|
if (is_element) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (IsJSArray()) return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// Accessors overwrite previous callbacks (cf. with getters/setters).
|
|
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS:
|
2011-07-20 13:41:50 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS:
|
2010-05-25 12:14:49 +00:00
|
|
|
break;
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2010-05-25 12:14:49 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
2010-05-25 12:14:49 +00:00
|
|
|
// Ignore getters and setters on pixel and external array
|
|
|
|
|
// elements.
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
case DICTIONARY_ELEMENTS:
|
|
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
|
|
|
|
UNIMPLEMENTED();
|
2010-05-25 12:14:49 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* ok;
|
|
|
|
|
{ MaybeObject* maybe_ok =
|
|
|
|
|
SetElementCallback(index, info, info->property_attributes());
|
|
|
|
|
if (!maybe_ok->ToObject(&ok)) return maybe_ok;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
} else {
|
|
|
|
|
// Lookup the name.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookup(name, &result);
|
|
|
|
|
// ES5 forbids turning a property into an accessor if it's not
|
|
|
|
|
// configurable (that is IsDontDelete in ES3 and v8), see 8.6.1 (Table 5).
|
|
|
|
|
if (result.IsProperty() && (result.IsReadOnly() || result.IsDontDelete())) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* ok;
|
|
|
|
|
{ MaybeObject* maybe_ok =
|
|
|
|
|
SetPropertyCallback(name, info, info->property_attributes());
|
|
|
|
|
if (!maybe_ok->ToObject(&ok)) return maybe_ok;
|
|
|
|
|
}
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* JSObject::LookupAccessor(String* name, bool is_getter) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing callbacks or
|
|
|
|
|
// interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
|
|
|
|
|
|
|
|
|
// Check access rights if needed.
|
|
|
|
|
if (IsAccessCheckNeeded() &&
|
2011-03-18 20:35:07 +00:00
|
|
|
!heap->isolate()->MayNamedAccess(this, name, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Make the lookup and include prototypes.
|
2009-03-13 11:40:09 +00:00
|
|
|
int accessor_index = is_getter ? kGetterIndex : kSetterIndex;
|
2010-06-02 08:58:44 +00:00
|
|
|
uint32_t index = 0;
|
2009-03-13 11:40:09 +00:00
|
|
|
if (name->AsArrayIndex(&index)) {
|
|
|
|
|
for (Object* obj = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
obj != heap->null_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
obj = JSObject::cast(obj)->GetPrototype()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
JSObject* js_object = JSObject::cast(obj);
|
|
|
|
|
if (js_object->HasDictionaryElements()) {
|
|
|
|
|
NumberDictionary* dictionary = js_object->element_dictionary();
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
2009-03-13 11:40:09 +00:00
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
2010-05-25 12:14:49 +00:00
|
|
|
if (element->IsFixedArray()) {
|
|
|
|
|
return FixedArray::cast(element)->get(accessor_index);
|
|
|
|
|
}
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
for (Object* obj = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
obj != heap->null_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
obj = JSObject::cast(obj)->GetPrototype()) {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
JSObject::cast(obj)->LocalLookup(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsProperty()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (result.IsReadOnly()) return heap->undefined_value();
|
2009-03-13 11:40:09 +00:00
|
|
|
if (result.type() == CALLBACKS) {
|
|
|
|
|
Object* obj = result.GetCallbackObject();
|
|
|
|
|
if (obj->IsFixedArray()) {
|
|
|
|
|
return FixedArray::cast(obj)->get(accessor_index);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* JSObject::SlowReverseLookup(Object* value) {
|
|
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->GetType(i) == FIELD) {
|
|
|
|
|
if (FastPropertyAt(descs->GetFieldIndex(i)) == value) {
|
|
|
|
|
return descs->GetKey(i);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
} else if (descs->GetType(i) == CONSTANT_FUNCTION) {
|
|
|
|
|
if (descs->GetConstantFunction(i) == value) {
|
|
|
|
|
return descs->GetKey(i);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
return property_dictionary()->SlowReverseLookup(value);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Map::CopyDropDescriptors() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateMap(instance_type(), instance_size());
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->set_prototype(prototype());
|
|
|
|
|
Map::cast(result)->set_constructor(constructor());
|
2008-08-27 13:47:52 +00:00
|
|
|
// Don't copy descriptors, so map transitions always remain a forest.
|
2009-04-24 12:45:29 +00:00
|
|
|
// If we retained the same descriptors we would have two maps
|
|
|
|
|
// pointing to the same transition which is bad because the garbage
|
|
|
|
|
// collector relies on being able to reverse pointers from transitions
|
|
|
|
|
// to maps. If properties need to be retained use CopyDropTransitions.
|
2011-05-23 15:59:38 +00:00
|
|
|
Map::cast(result)->clear_instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Please note instance_type and instance_size are set when allocated.
|
2008-10-15 06:03:26 +00:00
|
|
|
Map::cast(result)->set_inobject_properties(inobject_properties());
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->set_unused_property_fields(unused_property_fields());
|
2009-08-26 11:03:07 +00:00
|
|
|
|
|
|
|
|
// If the map has pre-allocated properties always start out with a descriptor
|
|
|
|
|
// array describing these properties.
|
|
|
|
|
if (pre_allocated_property_fields() > 0) {
|
|
|
|
|
ASSERT(constructor()->IsJSFunction());
|
|
|
|
|
JSFunction* ctor = JSFunction::cast(constructor());
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* descriptors;
|
|
|
|
|
{ MaybeObject* maybe_descriptors =
|
|
|
|
|
ctor->initial_map()->instance_descriptors()->RemoveTransitions();
|
|
|
|
|
if (!maybe_descriptors->ToObject(&descriptors)) return maybe_descriptors;
|
|
|
|
|
}
|
2009-08-26 11:03:07 +00:00
|
|
|
Map::cast(result)->set_instance_descriptors(
|
2009-08-28 11:10:33 +00:00
|
|
|
DescriptorArray::cast(descriptors));
|
2009-08-26 11:03:07 +00:00
|
|
|
Map::cast(result)->set_pre_allocated_property_fields(
|
|
|
|
|
pre_allocated_property_fields());
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
Map::cast(result)->set_bit_field(bit_field());
|
2009-04-24 08:13:09 +00:00
|
|
|
Map::cast(result)->set_bit_field2(bit_field2());
|
2011-05-23 15:59:38 +00:00
|
|
|
Map::cast(result)->set_bit_field3(bit_field3());
|
2010-09-24 08:18:33 +00:00
|
|
|
Map::cast(result)->set_is_shared(false);
|
2011-03-18 20:35:07 +00:00
|
|
|
Map::cast(result)->ClearCodeCache(heap);
|
2008-07-03 15:10:15 +00:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Map::CopyNormalized(PropertyNormalizationMode mode,
|
|
|
|
|
NormalizedMapSharingMode sharing) {
|
2010-08-25 13:25:54 +00:00
|
|
|
int new_instance_size = instance_size();
|
|
|
|
|
if (mode == CLEAR_INOBJECT_PROPERTIES) {
|
|
|
|
|
new_instance_size -= inobject_properties() * kPointerSize;
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
2011-03-18 20:35:07 +00:00
|
|
|
GetHeap()->AllocateMap(instance_type(), new_instance_size);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2010-08-25 13:25:54 +00:00
|
|
|
|
|
|
|
|
if (mode != CLEAR_INOBJECT_PROPERTIES) {
|
|
|
|
|
Map::cast(result)->set_inobject_properties(inobject_properties());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Map::cast(result)->set_prototype(prototype());
|
|
|
|
|
Map::cast(result)->set_constructor(constructor());
|
|
|
|
|
|
|
|
|
|
Map::cast(result)->set_bit_field(bit_field());
|
|
|
|
|
Map::cast(result)->set_bit_field2(bit_field2());
|
2011-05-23 15:59:38 +00:00
|
|
|
Map::cast(result)->set_bit_field3(bit_field3());
|
2010-08-25 13:25:54 +00:00
|
|
|
|
2010-09-24 08:18:33 +00:00
|
|
|
Map::cast(result)->set_is_shared(sharing == SHARED_NORMALIZED_MAP);
|
|
|
|
|
|
2010-08-25 13:25:54 +00:00
|
|
|
#ifdef DEBUG
|
2010-09-24 08:18:33 +00:00
|
|
|
if (Map::cast(result)->is_shared()) {
|
|
|
|
|
Map::cast(result)->SharedMapVerify();
|
|
|
|
|
}
|
2010-08-25 13:25:54 +00:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Map::CopyDropTransitions() {
|
|
|
|
|
Object* new_map;
|
|
|
|
|
{ MaybeObject* maybe_new_map = CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
|
|
|
|
Object* descriptors;
|
|
|
|
|
{ MaybeObject* maybe_descriptors =
|
|
|
|
|
instance_descriptors()->RemoveTransitions();
|
|
|
|
|
if (!maybe_descriptors->ToObject(&descriptors)) return maybe_descriptors;
|
|
|
|
|
}
|
2008-08-27 13:47:52 +00:00
|
|
|
cast(new_map)->set_instance_descriptors(DescriptorArray::cast(descriptors));
|
2010-07-02 14:36:34 +00:00
|
|
|
return new_map;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Map::UpdateCodeCache(String* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
// Allocate the code cache if not present.
|
|
|
|
|
if (code_cache()->IsFixedArray()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_result = code->heap()->AllocateCodeCache();
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
set_code_cache(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the code cache.
|
|
|
|
|
return CodeCache::cast(code_cache())->Update(name, code);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* Map::FindInCodeCache(String* name, Code::Flags flags) {
|
|
|
|
|
// Do a lookup if a code cache exists.
|
|
|
|
|
if (!code_cache()->IsFixedArray()) {
|
|
|
|
|
return CodeCache::cast(code_cache())->Lookup(name, flags);
|
|
|
|
|
} else {
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2010-03-09 10:49:41 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-03-11 08:52:31 +00:00
|
|
|
int Map::IndexInCodeCache(Object* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
// Get the internal index if a code cache exists.
|
|
|
|
|
if (!code_cache()->IsFixedArray()) {
|
|
|
|
|
return CodeCache::cast(code_cache())->GetIndex(name, code);
|
|
|
|
|
}
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Map::RemoveFromCodeCache(String* name, Code* code, int index) {
|
|
|
|
|
// No GC is supposed to happen between a call to IndexInCodeCache and
|
|
|
|
|
// RemoveFromCodeCache so the code cache must be there.
|
|
|
|
|
ASSERT(!code_cache()->IsFixedArray());
|
|
|
|
|
CodeCache::cast(code_cache())->RemoveByIndex(name, code, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-23 09:15:26 +00:00
|
|
|
void Map::TraverseTransitionTree(TraverseCallback callback, void* data) {
|
2011-06-03 14:48:09 +00:00
|
|
|
// Traverse the transition tree without using a stack. We do this by
|
|
|
|
|
// reversing the pointers in the maps and descriptor arrays.
|
2010-09-23 09:15:26 +00:00
|
|
|
Map* current = this;
|
2011-03-18 20:35:07 +00:00
|
|
|
Map* meta_map = heap()->meta_map();
|
2011-06-03 14:48:09 +00:00
|
|
|
Object** map_or_index_field = NULL;
|
2011-03-18 20:35:07 +00:00
|
|
|
while (current != meta_map) {
|
2010-09-23 09:15:26 +00:00
|
|
|
DescriptorArray* d = reinterpret_cast<DescriptorArray*>(
|
2011-05-23 15:59:38 +00:00
|
|
|
*RawField(current, Map::kInstanceDescriptorsOrBitField3Offset));
|
2011-06-03 14:48:09 +00:00
|
|
|
if (!d->IsEmpty()) {
|
|
|
|
|
FixedArray* contents = reinterpret_cast<FixedArray*>(
|
|
|
|
|
d->get(DescriptorArray::kContentArrayIndex));
|
|
|
|
|
map_or_index_field = RawField(contents, HeapObject::kMapOffset);
|
|
|
|
|
Object* map_or_index = *map_or_index_field;
|
|
|
|
|
bool map_done = true; // Controls a nested continue statement.
|
|
|
|
|
for (int i = map_or_index->IsSmi() ? Smi::cast(map_or_index)->value() : 0;
|
|
|
|
|
i < contents->length();
|
|
|
|
|
i += 2) {
|
|
|
|
|
PropertyDetails details(Smi::cast(contents->get(i + 1)));
|
|
|
|
|
if (details.IsTransition()) {
|
|
|
|
|
// Found a map in the transition array. We record our progress in
|
|
|
|
|
// the transition array by recording the current map in the map field
|
|
|
|
|
// of the next map and recording the index in the transition array in
|
|
|
|
|
// the map field of the array.
|
|
|
|
|
Map* next = Map::cast(contents->get(i));
|
|
|
|
|
next->set_map(current);
|
|
|
|
|
*map_or_index_field = Smi::FromInt(i + 2);
|
|
|
|
|
current = next;
|
|
|
|
|
map_done = false;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!map_done) continue;
|
2011-07-11 12:06:35 +00:00
|
|
|
} else {
|
|
|
|
|
map_or_index_field = NULL;
|
2011-06-03 14:48:09 +00:00
|
|
|
}
|
|
|
|
|
// That was the regular transitions, now for the prototype transitions.
|
|
|
|
|
FixedArray* prototype_transitions =
|
|
|
|
|
current->unchecked_prototype_transitions();
|
|
|
|
|
Object** proto_map_or_index_field =
|
|
|
|
|
RawField(prototype_transitions, HeapObject::kMapOffset);
|
|
|
|
|
Object* map_or_index = *proto_map_or_index_field;
|
|
|
|
|
const int start = kProtoTransitionHeaderSize + kProtoTransitionMapOffset;
|
|
|
|
|
int i = map_or_index->IsSmi() ? Smi::cast(map_or_index)->value() : start;
|
|
|
|
|
if (i < prototype_transitions->length()) {
|
|
|
|
|
// Found a map in the prototype transition array. Record progress in
|
|
|
|
|
// an analogous way to the regular transitions array above.
|
|
|
|
|
Object* perhaps_map = prototype_transitions->get(i);
|
|
|
|
|
if (perhaps_map->IsMap()) {
|
|
|
|
|
Map* next = Map::cast(perhaps_map);
|
2010-09-23 09:15:26 +00:00
|
|
|
next->set_map(current);
|
2011-06-03 14:48:09 +00:00
|
|
|
*proto_map_or_index_field =
|
|
|
|
|
Smi::FromInt(i + kProtoTransitionElementsPerEntry);
|
2010-09-23 09:15:26 +00:00
|
|
|
current = next;
|
2011-06-03 14:48:09 +00:00
|
|
|
continue;
|
2010-09-23 09:15:26 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-06-03 14:48:09 +00:00
|
|
|
*proto_map_or_index_field = heap()->fixed_array_map();
|
|
|
|
|
if (map_or_index_field != NULL) {
|
|
|
|
|
*map_or_index_field = heap()->fixed_array_map();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// The callback expects a map to have a real map as its map, so we save
|
|
|
|
|
// the map field, which is being used to track the traversal and put the
|
|
|
|
|
// correct map (the meta_map) in place while we do the callback.
|
2010-09-23 09:15:26 +00:00
|
|
|
Map* prev = current->map();
|
2011-03-18 20:35:07 +00:00
|
|
|
current->set_map(meta_map);
|
2010-09-23 09:15:26 +00:00
|
|
|
callback(current, data);
|
|
|
|
|
current = prev;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CodeCache::Update(String* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
// The number of monomorphic stubs for normal load/store/call IC's can grow to
|
|
|
|
|
// a large number and therefore they need to go into a hash table. They are
|
|
|
|
|
// used to load global properties from cells.
|
|
|
|
|
if (code->type() == NORMAL) {
|
|
|
|
|
// Make sure that a hash table is allocated for the normal load code cache.
|
|
|
|
|
if (normal_type_cache()->IsUndefined()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
CodeCacheHashTable::Allocate(CodeCacheHashTable::kInitialSize);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
set_normal_type_cache(result);
|
|
|
|
|
}
|
|
|
|
|
return UpdateNormalTypeCache(name, code);
|
|
|
|
|
} else {
|
|
|
|
|
ASSERT(default_cache()->IsFixedArray());
|
|
|
|
|
return UpdateDefaultCache(name, code);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CodeCache::UpdateDefaultCache(String* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
// When updating the default code cache we disregard the type encoded in the
|
2008-07-03 15:10:15 +00:00
|
|
|
// flags. This allows call constant stubs to overwrite call field
|
|
|
|
|
// stubs, etc.
|
|
|
|
|
Code::Flags flags = Code::RemoveTypeFromFlags(code->flags());
|
|
|
|
|
|
|
|
|
|
// First check whether we can update existing code cache without
|
|
|
|
|
// extending it.
|
2010-03-09 10:49:41 +00:00
|
|
|
FixedArray* cache = default_cache();
|
2008-07-03 15:10:15 +00:00
|
|
|
int length = cache->length();
|
2008-09-18 11:18:27 +00:00
|
|
|
int deleted_index = -1;
|
2010-03-09 10:49:41 +00:00
|
|
|
for (int i = 0; i < length; i += kCodeCacheEntrySize) {
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* key = cache->get(i);
|
2008-09-18 11:18:27 +00:00
|
|
|
if (key->IsNull()) {
|
|
|
|
|
if (deleted_index < 0) deleted_index = i;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
if (key->IsUndefined()) {
|
2008-09-18 11:18:27 +00:00
|
|
|
if (deleted_index >= 0) i = deleted_index;
|
2010-03-09 10:49:41 +00:00
|
|
|
cache->set(i + kCodeCacheEntryNameOffset, name);
|
|
|
|
|
cache->set(i + kCodeCacheEntryCodeOffset, code);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
if (name->Equals(String::cast(key))) {
|
2010-03-09 10:49:41 +00:00
|
|
|
Code::Flags found =
|
|
|
|
|
Code::cast(cache->get(i + kCodeCacheEntryCodeOffset))->flags();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (Code::RemoveTypeFromFlags(found) == flags) {
|
2010-03-09 10:49:41 +00:00
|
|
|
cache->set(i + kCodeCacheEntryCodeOffset, code);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-09-18 11:18:27 +00:00
|
|
|
// Reached the end of the code cache. If there were deleted
|
|
|
|
|
// elements, reuse the space for the first of them.
|
|
|
|
|
if (deleted_index >= 0) {
|
2010-03-09 10:49:41 +00:00
|
|
|
cache->set(deleted_index + kCodeCacheEntryNameOffset, name);
|
|
|
|
|
cache->set(deleted_index + kCodeCacheEntryCodeOffset, code);
|
2008-09-18 11:18:27 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
2010-03-09 10:49:41 +00:00
|
|
|
// Extend the code cache with some new entries (at least one). Must be a
|
|
|
|
|
// multiple of the entry size.
|
|
|
|
|
int new_length = length + ((length >> 1)) + kCodeCacheEntrySize;
|
|
|
|
|
new_length = new_length - new_length % kCodeCacheEntrySize;
|
|
|
|
|
ASSERT((new_length % kCodeCacheEntrySize) == 0);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = cache->CopySize(new_length);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Add the (name, code) pair to the new cache.
|
|
|
|
|
cache = FixedArray::cast(result);
|
2010-03-09 10:49:41 +00:00
|
|
|
cache->set(length + kCodeCacheEntryNameOffset, name);
|
|
|
|
|
cache->set(length + kCodeCacheEntryCodeOffset, code);
|
|
|
|
|
set_default_cache(cache);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CodeCache::UpdateNormalTypeCache(String* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
// Adding a new entry can cause a new cache to be allocated.
|
|
|
|
|
CodeCacheHashTable* cache = CodeCacheHashTable::cast(normal_type_cache());
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_cache;
|
|
|
|
|
{ MaybeObject* maybe_new_cache = cache->Put(name, code);
|
|
|
|
|
if (!maybe_new_cache->ToObject(&new_cache)) return maybe_new_cache;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
set_normal_type_cache(new_cache);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* CodeCache::Lookup(String* name, Code::Flags flags) {
|
|
|
|
|
if (Code::ExtractTypeFromFlags(flags) == NORMAL) {
|
|
|
|
|
return LookupNormalTypeCache(name, flags);
|
|
|
|
|
} else {
|
|
|
|
|
return LookupDefaultCache(name, flags);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* CodeCache::LookupDefaultCache(String* name, Code::Flags flags) {
|
|
|
|
|
FixedArray* cache = default_cache();
|
2008-07-03 15:10:15 +00:00
|
|
|
int length = cache->length();
|
2010-03-09 10:49:41 +00:00
|
|
|
for (int i = 0; i < length; i += kCodeCacheEntrySize) {
|
|
|
|
|
Object* key = cache->get(i + kCodeCacheEntryNameOffset);
|
2008-09-18 11:18:27 +00:00
|
|
|
// Skip deleted elements.
|
|
|
|
|
if (key->IsNull()) continue;
|
|
|
|
|
if (key->IsUndefined()) return key;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (name->Equals(String::cast(key))) {
|
2010-03-09 10:49:41 +00:00
|
|
|
Code* code = Code::cast(cache->get(i + kCodeCacheEntryCodeOffset));
|
|
|
|
|
if (code->flags() == flags) {
|
|
|
|
|
return code;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-03-09 10:49:41 +00:00
|
|
|
Object* CodeCache::LookupNormalTypeCache(String* name, Code::Flags flags) {
|
|
|
|
|
if (!normal_type_cache()->IsUndefined()) {
|
|
|
|
|
CodeCacheHashTable* cache = CodeCacheHashTable::cast(normal_type_cache());
|
|
|
|
|
return cache->Lookup(name, flags);
|
|
|
|
|
} else {
|
2011-03-18 20:35:07 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2010-03-09 10:49:41 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-03-11 08:52:31 +00:00
|
|
|
int CodeCache::GetIndex(Object* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
if (code->type() == NORMAL) {
|
|
|
|
|
if (normal_type_cache()->IsUndefined()) return -1;
|
|
|
|
|
CodeCacheHashTable* cache = CodeCacheHashTable::cast(normal_type_cache());
|
2010-03-11 08:52:31 +00:00
|
|
|
return cache->GetIndex(String::cast(name), code->flags());
|
2010-03-09 10:49:41 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
FixedArray* array = default_cache();
|
2008-09-18 10:22:46 +00:00
|
|
|
int len = array->length();
|
2010-03-09 10:49:41 +00:00
|
|
|
for (int i = 0; i < len; i += kCodeCacheEntrySize) {
|
|
|
|
|
if (array->get(i + kCodeCacheEntryCodeOffset) == code) return i + 1;
|
2008-09-18 10:22:46 +00:00
|
|
|
}
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-03-11 08:52:31 +00:00
|
|
|
void CodeCache::RemoveByIndex(Object* name, Code* code, int index) {
|
2010-03-09 10:49:41 +00:00
|
|
|
if (code->type() == NORMAL) {
|
|
|
|
|
ASSERT(!normal_type_cache()->IsUndefined());
|
|
|
|
|
CodeCacheHashTable* cache = CodeCacheHashTable::cast(normal_type_cache());
|
2010-03-11 08:52:31 +00:00
|
|
|
ASSERT(cache->GetIndex(String::cast(name), code->flags()) == index);
|
2010-03-09 10:49:41 +00:00
|
|
|
cache->RemoveByIndex(index);
|
|
|
|
|
} else {
|
|
|
|
|
FixedArray* array = default_cache();
|
|
|
|
|
ASSERT(array->length() >= index && array->get(index)->IsCode());
|
|
|
|
|
// Use null instead of undefined for deleted elements to distinguish
|
|
|
|
|
// deleted elements from unused elements. This distinction is used
|
|
|
|
|
// when looking up in the cache and when updating the cache.
|
|
|
|
|
ASSERT_EQ(1, kCodeCacheEntryCodeOffset - kCodeCacheEntryNameOffset);
|
|
|
|
|
array->set_null(index - 1); // Name.
|
|
|
|
|
array->set_null(index); // Code.
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// The key in the code cache hash table consists of the property name and the
|
|
|
|
|
// code object. The actual match is on the name and the code flags. If a key
|
|
|
|
|
// is created using the flags and not a code object it can only be used for
|
|
|
|
|
// lookup not to create a new entry.
|
|
|
|
|
class CodeCacheHashTableKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
CodeCacheHashTableKey(String* name, Code::Flags flags)
|
|
|
|
|
: name_(name), flags_(flags), code_(NULL) { }
|
|
|
|
|
|
|
|
|
|
CodeCacheHashTableKey(String* name, Code* code)
|
|
|
|
|
: name_(name),
|
|
|
|
|
flags_(code->flags()),
|
|
|
|
|
code_(code) { }
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* other) {
|
|
|
|
|
if (!other->IsFixedArray()) return false;
|
|
|
|
|
FixedArray* pair = FixedArray::cast(other);
|
|
|
|
|
String* name = String::cast(pair->get(0));
|
|
|
|
|
Code::Flags flags = Code::cast(pair->get(1))->flags();
|
|
|
|
|
if (flags != flags_) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return name_->Equals(name);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t NameFlagsHashHelper(String* name, Code::Flags flags) {
|
|
|
|
|
return name->Hash() ^ flags;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return NameFlagsHashHelper(name_, flags_); }
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* obj) {
|
|
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
String* name = String::cast(pair->get(0));
|
|
|
|
|
Code* code = Code::cast(pair->get(1));
|
|
|
|
|
return NameFlagsHashHelper(name, code->flags());
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MUST_USE_RESULT MaybeObject* AsObject() {
|
2010-03-09 10:49:41 +00:00
|
|
|
ASSERT(code_ != NULL);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_obj = code_->heap()->AllocateFixedArray(2);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
pair->set(0, name_);
|
|
|
|
|
pair->set(1, code_);
|
|
|
|
|
return pair;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
String* name_;
|
|
|
|
|
Code::Flags flags_;
|
2011-06-06 13:15:11 +00:00
|
|
|
// TODO(jkummerow): We should be able to get by without this.
|
2010-03-09 10:49:41 +00:00
|
|
|
Code* code_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* CodeCacheHashTable::Lookup(String* name, Code::Flags flags) {
|
|
|
|
|
CodeCacheHashTableKey key(name, flags);
|
|
|
|
|
int entry = FindEntry(&key);
|
2011-03-18 20:35:07 +00:00
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
2010-03-09 10:49:41 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CodeCacheHashTable::Put(String* name, Code* code) {
|
2010-03-09 10:49:41 +00:00
|
|
|
CodeCacheHashTableKey key(name, code);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
|
2011-06-06 13:15:11 +00:00
|
|
|
// Don't use |this|, as the table might have grown.
|
2010-03-09 10:49:41 +00:00
|
|
|
CodeCacheHashTable* cache = reinterpret_cast<CodeCacheHashTable*>(obj);
|
|
|
|
|
|
|
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* k;
|
|
|
|
|
{ MaybeObject* maybe_k = key.AsObject();
|
|
|
|
|
if (!maybe_k->ToObject(&k)) return maybe_k;
|
|
|
|
|
}
|
2010-03-09 10:49:41 +00:00
|
|
|
|
|
|
|
|
cache->set(EntryToIndex(entry), k);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, code);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int CodeCacheHashTable::GetIndex(String* name, Code::Flags flags) {
|
|
|
|
|
CodeCacheHashTableKey key(name, flags);
|
|
|
|
|
int entry = FindEntry(&key);
|
|
|
|
|
return (entry == kNotFound) ? -1 : entry;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void CodeCacheHashTable::RemoveByIndex(int index) {
|
|
|
|
|
ASSERT(index >= 0);
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
set(EntryToIndex(index), heap->null_value());
|
|
|
|
|
set(EntryToIndex(index) + 1, heap->null_value());
|
2010-03-09 10:49:41 +00:00
|
|
|
ElementRemoved();
|
2008-09-18 10:22:46 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
static bool HasKey(FixedArray* array, Object* key) {
|
|
|
|
|
int len0 = array->length();
|
|
|
|
|
for (int i = 0; i < len0; i++) {
|
|
|
|
|
Object* element = array->get(i);
|
|
|
|
|
if (element->IsSmi() && key->IsSmi() && (element == key)) return true;
|
|
|
|
|
if (element->IsString() &&
|
|
|
|
|
key->IsString() && String::cast(element)->Equals(String::cast(key))) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-06 13:15:11 +00:00
|
|
|
MaybeObject* PolymorphicCodeCache::Update(MapList* maps,
|
|
|
|
|
Code::Flags flags,
|
|
|
|
|
Code* code) {
|
|
|
|
|
// Initialize cache if necessary.
|
|
|
|
|
if (cache()->IsUndefined()) {
|
|
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result =
|
|
|
|
|
PolymorphicCodeCacheHashTable::Allocate(
|
|
|
|
|
PolymorphicCodeCacheHashTable::kInitialSize);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
|
|
|
|
set_cache(result);
|
|
|
|
|
} else {
|
|
|
|
|
// This entry shouldn't be contained in the cache yet.
|
|
|
|
|
ASSERT(PolymorphicCodeCacheHashTable::cast(cache())
|
|
|
|
|
->Lookup(maps, flags)->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
PolymorphicCodeCacheHashTable* hash_table =
|
|
|
|
|
PolymorphicCodeCacheHashTable::cast(cache());
|
|
|
|
|
Object* new_cache;
|
|
|
|
|
{ MaybeObject* maybe_new_cache = hash_table->Put(maps, flags, code);
|
|
|
|
|
if (!maybe_new_cache->ToObject(&new_cache)) return maybe_new_cache;
|
|
|
|
|
}
|
|
|
|
|
set_cache(new_cache);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* PolymorphicCodeCache::Lookup(MapList* maps, Code::Flags flags) {
|
|
|
|
|
if (!cache()->IsUndefined()) {
|
|
|
|
|
PolymorphicCodeCacheHashTable* hash_table =
|
|
|
|
|
PolymorphicCodeCacheHashTable::cast(cache());
|
|
|
|
|
return hash_table->Lookup(maps, flags);
|
|
|
|
|
} else {
|
|
|
|
|
return GetHeap()->undefined_value();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Despite their name, object of this class are not stored in the actual
|
|
|
|
|
// hash table; instead they're temporarily used for lookups. It is therefore
|
|
|
|
|
// safe to have a weak (non-owning) pointer to a MapList as a member field.
|
|
|
|
|
class PolymorphicCodeCacheHashTableKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
// Callers must ensure that |maps| outlives the newly constructed object.
|
|
|
|
|
PolymorphicCodeCacheHashTableKey(MapList* maps, int code_flags)
|
|
|
|
|
: maps_(maps),
|
|
|
|
|
code_flags_(code_flags) {}
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* other) {
|
|
|
|
|
MapList other_maps(kDefaultListAllocationSize);
|
|
|
|
|
int other_flags;
|
|
|
|
|
FromObject(other, &other_flags, &other_maps);
|
|
|
|
|
if (code_flags_ != other_flags) return false;
|
|
|
|
|
if (maps_->length() != other_maps.length()) return false;
|
|
|
|
|
// Compare just the hashes first because it's faster.
|
|
|
|
|
int this_hash = MapsHashHelper(maps_, code_flags_);
|
|
|
|
|
int other_hash = MapsHashHelper(&other_maps, other_flags);
|
|
|
|
|
if (this_hash != other_hash) return false;
|
|
|
|
|
|
|
|
|
|
// Full comparison: for each map in maps_, look for an equivalent map in
|
|
|
|
|
// other_maps. This implementation is slow, but probably good enough for
|
|
|
|
|
// now because the lists are short (<= 4 elements currently).
|
|
|
|
|
for (int i = 0; i < maps_->length(); ++i) {
|
|
|
|
|
bool match_found = false;
|
|
|
|
|
for (int j = 0; j < other_maps.length(); ++j) {
|
|
|
|
|
if (maps_->at(i)->EquivalentTo(other_maps.at(j))) {
|
|
|
|
|
match_found = true;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!match_found) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t MapsHashHelper(MapList* maps, int code_flags) {
|
|
|
|
|
uint32_t hash = code_flags;
|
|
|
|
|
for (int i = 0; i < maps->length(); ++i) {
|
|
|
|
|
hash ^= maps->at(i)->Hash();
|
|
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() {
|
|
|
|
|
return MapsHashHelper(maps_, code_flags_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* obj) {
|
|
|
|
|
MapList other_maps(kDefaultListAllocationSize);
|
|
|
|
|
int other_flags;
|
|
|
|
|
FromObject(obj, &other_flags, &other_maps);
|
|
|
|
|
return MapsHashHelper(&other_maps, other_flags);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MUST_USE_RESULT MaybeObject* AsObject() {
|
|
|
|
|
Object* obj;
|
|
|
|
|
// The maps in |maps_| must be copied to a newly allocated FixedArray,
|
|
|
|
|
// both because the referenced MapList is short-lived, and because C++
|
|
|
|
|
// objects can't be stored in the heap anyway.
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
HEAP->AllocateUninitializedFixedArray(maps_->length() + 1);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
FixedArray* list = FixedArray::cast(obj);
|
|
|
|
|
list->set(0, Smi::FromInt(code_flags_));
|
|
|
|
|
for (int i = 0; i < maps_->length(); ++i) {
|
|
|
|
|
list->set(i + 1, maps_->at(i));
|
|
|
|
|
}
|
|
|
|
|
return list;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
static MapList* FromObject(Object* obj, int* code_flags, MapList* maps) {
|
|
|
|
|
FixedArray* list = FixedArray::cast(obj);
|
|
|
|
|
maps->Rewind(0);
|
|
|
|
|
*code_flags = Smi::cast(list->get(0))->value();
|
|
|
|
|
for (int i = 1; i < list->length(); ++i) {
|
|
|
|
|
maps->Add(Map::cast(list->get(i)));
|
|
|
|
|
}
|
|
|
|
|
return maps;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MapList* maps_; // weak.
|
|
|
|
|
int code_flags_;
|
2011-06-20 10:19:00 +00:00
|
|
|
static const int kDefaultListAllocationSize = kMaxKeyedPolymorphism + 1;
|
2011-06-06 13:15:11 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* PolymorphicCodeCacheHashTable::Lookup(MapList* maps, int code_flags) {
|
|
|
|
|
PolymorphicCodeCacheHashTableKey key(maps, code_flags);
|
|
|
|
|
int entry = FindEntry(&key);
|
|
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
|
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* PolymorphicCodeCacheHashTable::Put(MapList* maps,
|
|
|
|
|
int code_flags,
|
|
|
|
|
Code* code) {
|
|
|
|
|
PolymorphicCodeCacheHashTableKey key(maps, code_flags);
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
PolymorphicCodeCacheHashTable* cache =
|
|
|
|
|
reinterpret_cast<PolymorphicCodeCacheHashTable*>(obj);
|
|
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
|
|
|
|
{ MaybeObject* maybe_obj = key.AsObject();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
cache->set(EntryToIndex(entry), obj);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, code);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* FixedArray::AddKeysFromJSArray(JSArray* array) {
|
2011-08-12 14:52:03 +00:00
|
|
|
ElementsAccessor* accessor = array->GetElementsAccessor();
|
|
|
|
|
MaybeObject* maybe_result =
|
|
|
|
|
accessor->AddElementsToFixedArray(array->elements(), this);
|
|
|
|
|
FixedArray* result;
|
|
|
|
|
if (!maybe_result->To<FixedArray>(&result)) return maybe_result;
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_enable_slow_asserts) {
|
|
|
|
|
for (int i = 0; i < result->length(); i++) {
|
|
|
|
|
Object* current = result->get(i);
|
|
|
|
|
ASSERT(current->IsNumber() || current->IsString());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* FixedArray::UnionOfKeys(FixedArray* other) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int len0 = length();
|
2010-10-05 13:10:43 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_enable_slow_asserts) {
|
|
|
|
|
for (int i = 0; i < len0; i++) {
|
|
|
|
|
ASSERT(get(i)->IsString() || get(i)->IsNumber());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
#endif
|
2008-07-03 15:10:15 +00:00
|
|
|
int len1 = other->length();
|
2010-10-05 13:10:43 +00:00
|
|
|
// Optimize if 'other' is empty.
|
|
|
|
|
// We cannot optimize if 'this' is empty, as other may have holes
|
|
|
|
|
// or non keys.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (len1 == 0) return this;
|
|
|
|
|
|
|
|
|
|
// Compute how many elements are not in this.
|
|
|
|
|
int extra = 0;
|
|
|
|
|
for (int y = 0; y < len1; y++) {
|
2009-04-27 11:16:59 +00:00
|
|
|
Object* value = other->get(y);
|
|
|
|
|
if (!value->IsTheHole() && !HasKey(this, value)) extra++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-04-27 11:16:59 +00:00
|
|
|
if (extra == 0) return this;
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate the result
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_obj = GetHeap()->AllocateFixedArray(len0 + extra);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Fill in the content
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* result = FixedArray::cast(obj);
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode mode = result->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len0; i++) {
|
2010-10-05 13:10:43 +00:00
|
|
|
Object* e = get(i);
|
|
|
|
|
ASSERT(e->IsString() || e->IsNumber());
|
|
|
|
|
result->set(i, e, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
// Fill in the extra keys.
|
|
|
|
|
int index = 0;
|
|
|
|
|
for (int y = 0; y < len1; y++) {
|
2009-04-27 11:16:59 +00:00
|
|
|
Object* value = other->get(y);
|
|
|
|
|
if (!value->IsTheHole() && !HasKey(this, value)) {
|
2010-10-05 13:10:43 +00:00
|
|
|
Object* e = other->get(y);
|
|
|
|
|
ASSERT(e->IsString() || e->IsNumber());
|
|
|
|
|
result->set(len0 + index, e, mode);
|
2008-07-03 15:10:15 +00:00
|
|
|
index++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(extra == index);
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* FixedArray::CopySize(int new_length) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (new_length == 0) return heap->empty_fixed_array();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = heap->AllocateFixedArray(new_length);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* result = FixedArray::cast(obj);
|
|
|
|
|
// Copy the content
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
2008-07-03 15:10:15 +00:00
|
|
|
int len = length();
|
|
|
|
|
if (new_length < len) len = new_length;
|
2008-10-23 14:55:45 +00:00
|
|
|
result->set_map(map());
|
2010-01-29 11:46:55 +00:00
|
|
|
WriteBarrierMode mode = result->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
result->set(i, get(i), mode);
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void FixedArray::CopyTo(int pos, FixedArray* dest, int dest_pos, int len) {
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = dest->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int index = 0; index < len; index++) {
|
|
|
|
|
dest->set(dest_pos+index, get(pos+index), mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
bool FixedArray::IsEqualTo(FixedArray* other) {
|
|
|
|
|
if (length() != other->length()) return false;
|
|
|
|
|
for (int i = 0 ; i < length(); ++i) {
|
|
|
|
|
if (get(i) != other->get(i)) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* DescriptorArray::Allocate(int number_of_descriptors) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = Isolate::Current()->heap();
|
2008-08-27 10:11:39 +00:00
|
|
|
if (number_of_descriptors == 0) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->empty_descriptor_array();
|
2008-08-27 10:11:39 +00:00
|
|
|
}
|
|
|
|
|
// Allocate the array of keys.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* array;
|
|
|
|
|
{ MaybeObject* maybe_array =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateFixedArray(ToKeyIndex(number_of_descriptors));
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_array->ToObject(&array)) return maybe_array;
|
|
|
|
|
}
|
2008-08-27 10:11:39 +00:00
|
|
|
// Do not use DescriptorArray::cast on incomplete object.
|
|
|
|
|
FixedArray* result = FixedArray::cast(array);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate the content array and set it in the descriptor array.
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_array =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateFixedArray(number_of_descriptors << 1);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_array->ToObject(&array)) return maybe_array;
|
|
|
|
|
}
|
2011-05-23 15:59:38 +00:00
|
|
|
result->set(kBitField3StorageIndex, Smi::FromInt(0));
|
2008-07-03 15:10:15 +00:00
|
|
|
result->set(kContentArrayIndex, array);
|
2008-08-27 10:11:39 +00:00
|
|
|
result->set(kEnumerationIndexIndex,
|
2010-01-29 11:46:55 +00:00
|
|
|
Smi::FromInt(PropertyDetails::kInitialIndex));
|
2008-07-03 15:10:15 +00:00
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void DescriptorArray::SetEnumCache(FixedArray* bridge_storage,
|
|
|
|
|
FixedArray* new_cache) {
|
|
|
|
|
ASSERT(bridge_storage->length() >= kEnumCacheBridgeLength);
|
|
|
|
|
if (HasEnumCache()) {
|
|
|
|
|
FixedArray::cast(get(kEnumerationIndexIndex))->
|
|
|
|
|
set(kEnumCacheBridgeCacheIndex, new_cache);
|
|
|
|
|
} else {
|
2008-08-27 10:11:39 +00:00
|
|
|
if (IsEmpty()) return; // Do nothing for empty descriptor array.
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray::cast(bridge_storage)->
|
|
|
|
|
set(kEnumCacheBridgeCacheIndex, new_cache);
|
|
|
|
|
fast_set(FixedArray::cast(bridge_storage),
|
|
|
|
|
kEnumCacheBridgeEnumIndex,
|
|
|
|
|
get(kEnumerationIndexIndex));
|
|
|
|
|
set(kEnumerationIndexIndex, bridge_storage);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* DescriptorArray::CopyInsert(Descriptor* descriptor,
|
|
|
|
|
TransitionFlag transition_flag) {
|
2008-08-27 13:47:52 +00:00
|
|
|
// Transitions are only kept when inserting another transition.
|
|
|
|
|
// This precondition is not required by this function's implementation, but
|
|
|
|
|
// is currently required by the semantics of maps, so we check it.
|
|
|
|
|
// Conversely, we filter after replacing, so replacing a transition and
|
|
|
|
|
// removing all other transitions is not supported.
|
|
|
|
|
bool remove_transitions = transition_flag == REMOVE_TRANSITIONS;
|
|
|
|
|
ASSERT(remove_transitions == !descriptor->GetDetails().IsTransition());
|
|
|
|
|
ASSERT(descriptor->GetDetails().type() != NULL_DESCRIPTOR);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Ensure the key is a symbol.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = descriptor->KeyToSymbol();
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
int transitions = 0;
|
|
|
|
|
int null_descriptors = 0;
|
|
|
|
|
if (remove_transitions) {
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsTransition(i)) transitions++;
|
|
|
|
|
if (IsNullDescriptor(i)) null_descriptors++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsNullDescriptor(i)) null_descriptors++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
int new_size = number_of_descriptors() - transitions - null_descriptors;
|
|
|
|
|
|
|
|
|
|
// If key is in descriptor, we replace it in-place when filtering.
|
2009-03-09 16:24:46 +00:00
|
|
|
// Count a null descriptor for key as inserted, not replaced.
|
2008-09-10 11:35:05 +00:00
|
|
|
int index = Search(descriptor->GetKey());
|
2008-08-27 13:47:52 +00:00
|
|
|
const bool inserting = (index == kNotFound);
|
|
|
|
|
const bool replacing = !inserting;
|
|
|
|
|
bool keep_enumeration_index = false;
|
|
|
|
|
if (inserting) {
|
|
|
|
|
++new_size;
|
|
|
|
|
}
|
|
|
|
|
if (replacing) {
|
|
|
|
|
// We are replacing an existing descriptor. We keep the enumeration
|
|
|
|
|
// index of a visible property.
|
|
|
|
|
PropertyType t = PropertyDetails(GetDetails(index)).type();
|
|
|
|
|
if (t == CONSTANT_FUNCTION ||
|
|
|
|
|
t == FIELD ||
|
|
|
|
|
t == CALLBACKS ||
|
|
|
|
|
t == INTERCEPTOR) {
|
|
|
|
|
keep_enumeration_index = true;
|
2009-03-09 16:24:46 +00:00
|
|
|
} else if (remove_transitions) {
|
|
|
|
|
// Replaced descriptor has been counted as removed if it is
|
|
|
|
|
// a transition that will be replaced. Adjust count in this case.
|
2008-08-27 13:47:52 +00:00
|
|
|
++new_size;
|
|
|
|
|
}
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_result = Allocate(new_size);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-08-27 13:47:52 +00:00
|
|
|
DescriptorArray* new_descriptors = DescriptorArray::cast(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Set the enumeration index in the descriptors and set the enumeration index
|
|
|
|
|
// in the result.
|
2008-08-27 13:47:52 +00:00
|
|
|
int enumeration_index = NextEnumerationIndex();
|
|
|
|
|
if (!descriptor->GetDetails().IsTransition()) {
|
|
|
|
|
if (keep_enumeration_index) {
|
|
|
|
|
descriptor->SetEnumerationIndex(
|
|
|
|
|
PropertyDetails(GetDetails(index)).index());
|
|
|
|
|
} else {
|
|
|
|
|
descriptor->SetEnumerationIndex(enumeration_index);
|
|
|
|
|
++enumeration_index;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
new_descriptors->SetNextEnumerationIndex(enumeration_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
// Copy the descriptors, filtering out transitions and null descriptors,
|
|
|
|
|
// and inserting or replacing a descriptor.
|
2008-09-10 11:35:05 +00:00
|
|
|
uint32_t descriptor_hash = descriptor->GetKey()->Hash();
|
2009-07-10 19:25:18 +00:00
|
|
|
int from_index = 0;
|
|
|
|
|
int to_index = 0;
|
2008-08-27 13:47:52 +00:00
|
|
|
|
2009-07-10 19:25:18 +00:00
|
|
|
for (; from_index < number_of_descriptors(); from_index++) {
|
|
|
|
|
String* key = GetKey(from_index);
|
|
|
|
|
if (key->Hash() > descriptor_hash || key == descriptor->GetKey()) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (IsNullDescriptor(from_index)) continue;
|
|
|
|
|
if (remove_transitions && IsTransition(from_index)) continue;
|
|
|
|
|
new_descriptors->CopyFrom(to_index++, this, from_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
|
|
|
|
|
new_descriptors->Set(to_index++, descriptor);
|
|
|
|
|
if (replacing) from_index++;
|
|
|
|
|
|
|
|
|
|
for (; from_index < number_of_descriptors(); from_index++) {
|
|
|
|
|
if (IsNullDescriptor(from_index)) continue;
|
|
|
|
|
if (remove_transitions && IsTransition(from_index)) continue;
|
|
|
|
|
new_descriptors->CopyFrom(to_index++, this, from_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
|
|
|
|
|
ASSERT(to_index == new_descriptors->number_of_descriptors());
|
|
|
|
|
SLOW_ASSERT(new_descriptors->IsSortedNoDuplicates());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-08-27 13:47:52 +00:00
|
|
|
return new_descriptors;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* DescriptorArray::RemoveTransitions() {
|
2009-03-09 16:24:46 +00:00
|
|
|
// Remove all transitions and null descriptors. Return a copy of the array
|
|
|
|
|
// with all transitions removed, or a Failure object if the new array could
|
|
|
|
|
// not be allocated.
|
2008-08-27 13:47:52 +00:00
|
|
|
|
|
|
|
|
// Compute the size of the map transition entries to be removed.
|
2009-03-09 16:24:46 +00:00
|
|
|
int num_removed = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (!IsProperty(i)) num_removed++;
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the new descriptor array.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = Allocate(number_of_descriptors() - num_removed);
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-08-27 13:47:52 +00:00
|
|
|
DescriptorArray* new_descriptors = DescriptorArray::cast(result);
|
|
|
|
|
|
|
|
|
|
// Copy the content.
|
2009-07-10 19:25:18 +00:00
|
|
|
int next_descriptor = 0;
|
|
|
|
|
for (int i = 0; i < number_of_descriptors(); i++) {
|
|
|
|
|
if (IsProperty(i)) new_descriptors->CopyFrom(next_descriptor++, this, i);
|
2008-08-27 13:47:52 +00:00
|
|
|
}
|
2009-07-10 19:25:18 +00:00
|
|
|
ASSERT(next_descriptor == new_descriptors->number_of_descriptors());
|
2008-08-27 13:47:52 +00:00
|
|
|
|
|
|
|
|
return new_descriptors;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-16 10:55:37 +00:00
|
|
|
void DescriptorArray::SortUnchecked() {
|
2008-07-03 15:10:15 +00:00
|
|
|
// In-place heap sort.
|
|
|
|
|
int len = number_of_descriptors();
|
|
|
|
|
|
|
|
|
|
// Bottom-up max-heap construction.
|
2010-03-04 09:27:45 +00:00
|
|
|
// Index of the last node with children
|
|
|
|
|
const int max_parent_index = (len / 2) - 1;
|
|
|
|
|
for (int i = max_parent_index; i >= 0; --i) {
|
|
|
|
|
int parent_index = i;
|
|
|
|
|
const uint32_t parent_hash = GetKey(i)->Hash();
|
|
|
|
|
while (parent_index <= max_parent_index) {
|
|
|
|
|
int child_index = 2 * parent_index + 1;
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t child_hash = GetKey(child_index)->Hash();
|
2010-03-04 09:27:45 +00:00
|
|
|
if (child_index + 1 < len) {
|
|
|
|
|
uint32_t right_child_hash = GetKey(child_index + 1)->Hash();
|
|
|
|
|
if (right_child_hash > child_hash) {
|
|
|
|
|
child_index++;
|
|
|
|
|
child_hash = right_child_hash;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-03-04 09:27:45 +00:00
|
|
|
if (child_hash <= parent_hash) break;
|
|
|
|
|
Swap(parent_index, child_index);
|
|
|
|
|
// Now element at child_index could be < its children.
|
|
|
|
|
parent_index = child_index; // parent_hash remains correct.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Extract elements and create sorted array.
|
|
|
|
|
for (int i = len - 1; i > 0; --i) {
|
|
|
|
|
// Put max element at the back of the array.
|
|
|
|
|
Swap(0, i);
|
|
|
|
|
// Sift down the new top element.
|
|
|
|
|
int parent_index = 0;
|
2010-03-04 09:27:45 +00:00
|
|
|
const uint32_t parent_hash = GetKey(parent_index)->Hash();
|
|
|
|
|
const int max_parent_index = (i / 2) - 1;
|
|
|
|
|
while (parent_index <= max_parent_index) {
|
|
|
|
|
int child_index = parent_index * 2 + 1;
|
|
|
|
|
uint32_t child_hash = GetKey(child_index)->Hash();
|
|
|
|
|
if (child_index + 1 < i) {
|
|
|
|
|
uint32_t right_child_hash = GetKey(child_index + 1)->Hash();
|
|
|
|
|
if (right_child_hash > child_hash) {
|
|
|
|
|
child_index++;
|
|
|
|
|
child_hash = right_child_hash;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-03-04 09:27:45 +00:00
|
|
|
if (child_hash <= parent_hash) break;
|
|
|
|
|
Swap(parent_index, child_index);
|
|
|
|
|
parent_index = child_index;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2010-09-16 10:55:37 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-09-16 10:55:37 +00:00
|
|
|
void DescriptorArray::Sort() {
|
|
|
|
|
SortUnchecked();
|
2008-07-03 15:10:15 +00:00
|
|
|
SLOW_ASSERT(IsSortedNoDuplicates());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int DescriptorArray::BinarySearch(String* name, int low, int high) {
|
|
|
|
|
uint32_t hash = name->Hash();
|
|
|
|
|
|
|
|
|
|
while (low <= high) {
|
|
|
|
|
int mid = (low + high) / 2;
|
|
|
|
|
String* mid_name = GetKey(mid);
|
|
|
|
|
uint32_t mid_hash = mid_name->Hash();
|
|
|
|
|
|
|
|
|
|
if (mid_hash > hash) {
|
|
|
|
|
high = mid - 1;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
if (mid_hash < hash) {
|
|
|
|
|
low = mid + 1;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// Found an element with the same hash-code.
|
|
|
|
|
ASSERT(hash == mid_hash);
|
|
|
|
|
// There might be more, so we find the first one and
|
|
|
|
|
// check them all to see if we have a match.
|
2009-03-09 16:24:46 +00:00
|
|
|
if (name == mid_name && !is_null_descriptor(mid)) return mid;
|
2008-07-03 15:10:15 +00:00
|
|
|
while ((mid > low) && (GetKey(mid - 1)->Hash() == hash)) mid--;
|
|
|
|
|
for (; (mid <= high) && (GetKey(mid)->Hash() == hash); mid++) {
|
2009-03-09 16:24:46 +00:00
|
|
|
if (GetKey(mid)->Equals(name) && !is_null_descriptor(mid)) return mid;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return kNotFound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-26 20:50:05 +00:00
|
|
|
int DescriptorArray::LinearSearch(String* name, int len) {
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t hash = name->Hash();
|
2008-10-26 20:50:05 +00:00
|
|
|
for (int number = 0; number < len; number++) {
|
2009-03-19 18:50:00 +00:00
|
|
|
String* entry = GetKey(number);
|
|
|
|
|
if ((entry->Hash() == hash) &&
|
|
|
|
|
name->Equals(entry) &&
|
|
|
|
|
!is_null_descriptor(number)) {
|
2009-03-09 16:24:46 +00:00
|
|
|
return number;
|
|
|
|
|
}
|
2008-10-26 20:50:05 +00:00
|
|
|
}
|
|
|
|
|
return kNotFound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
MaybeObject* DeoptimizationInputData::Allocate(int deopt_entry_count,
|
|
|
|
|
PretenureFlag pretenure) {
|
|
|
|
|
ASSERT(deopt_entry_count > 0);
|
2011-03-18 20:35:07 +00:00
|
|
|
return HEAP->AllocateFixedArray(LengthFor(deopt_entry_count),
|
2010-12-07 11:31:57 +00:00
|
|
|
pretenure);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* DeoptimizationOutputData::Allocate(int number_of_deopt_points,
|
|
|
|
|
PretenureFlag pretenure) {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (number_of_deopt_points == 0) return HEAP->empty_fixed_array();
|
|
|
|
|
return HEAP->AllocateFixedArray(LengthOfFixedArray(number_of_deopt_points),
|
2010-12-07 11:31:57 +00:00
|
|
|
pretenure);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
bool DescriptorArray::IsEqualTo(DescriptorArray* other) {
|
|
|
|
|
if (IsEmpty()) return other->IsEmpty();
|
|
|
|
|
if (other->IsEmpty()) return false;
|
|
|
|
|
if (length() != other->length()) return false;
|
|
|
|
|
for (int i = 0; i < length(); ++i) {
|
|
|
|
|
if (get(i) != other->get(i) && i != kContentArrayIndex) return false;
|
|
|
|
|
}
|
|
|
|
|
return GetContentArray()->IsEqualTo(other->GetContentArray());
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
bool String::LooksValid() {
|
2011-03-18 20:35:07 +00:00
|
|
|
if (!Isolate::Current()->heap()->Contains(this)) return false;
|
2008-11-03 10:16:05 +00:00
|
|
|
return true;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-05 13:39:14 +00:00
|
|
|
int String::Utf8Length() {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (IsAsciiRepresentation()) return length();
|
2008-09-05 13:39:14 +00:00
|
|
|
// Attempt to flatten before accessing the string. It probably
|
|
|
|
|
// doesn't make Utf8Length faster, but it is very likely that
|
|
|
|
|
// the string will be accessed later (for example by WriteUtf8)
|
|
|
|
|
// so it's still a good idea.
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2010-02-26 14:37:33 +00:00
|
|
|
TryFlatten();
|
2011-03-18 20:35:07 +00:00
|
|
|
Access<StringInputBuffer> buffer(
|
|
|
|
|
heap->isolate()->objects_string_input_buffer());
|
2008-09-05 13:39:14 +00:00
|
|
|
buffer->Reset(0, this);
|
|
|
|
|
int result = 0;
|
|
|
|
|
while (buffer->has_more())
|
|
|
|
|
result += unibrow::Utf8::Length(buffer->GetNext());
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
Vector<const char> String::ToAsciiVector() {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(IsAsciiRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(IsFlat());
|
2008-10-09 08:08:04 +00:00
|
|
|
|
|
|
|
|
int offset = 0;
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
|
|
|
|
StringRepresentationTag string_tag = StringShape(this).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
String* string = this;
|
2009-11-10 13:23:05 +00:00
|
|
|
if (string_tag == kConsStringTag) {
|
2008-10-21 14:11:22 +00:00
|
|
|
ConsString* cons = ConsString::cast(string);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(cons->second()->length() == 0);
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
string_tag = StringShape(string).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
if (string_tag == kSeqStringTag) {
|
|
|
|
|
SeqAsciiString* seq = SeqAsciiString::cast(string);
|
2008-10-22 09:09:07 +00:00
|
|
|
char* start = seq->GetChars();
|
2008-10-09 08:08:04 +00:00
|
|
|
return Vector<const char>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
ASSERT(string_tag == kExternalStringTag);
|
|
|
|
|
ExternalAsciiString* ext = ExternalAsciiString::cast(string);
|
|
|
|
|
const char* start = ext->resource()->data();
|
|
|
|
|
return Vector<const char>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Vector<const uc16> String::ToUC16Vector() {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(IsTwoByteRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(IsFlat());
|
2008-10-09 08:08:04 +00:00
|
|
|
|
|
|
|
|
int offset = 0;
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
|
|
|
|
StringRepresentationTag string_tag = StringShape(this).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
String* string = this;
|
2009-11-10 13:23:05 +00:00
|
|
|
if (string_tag == kConsStringTag) {
|
2008-10-21 14:11:22 +00:00
|
|
|
ConsString* cons = ConsString::cast(string);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(cons->second()->length() == 0);
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
string_tag = StringShape(string).representation_tag();
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
if (string_tag == kSeqStringTag) {
|
|
|
|
|
SeqTwoByteString* seq = SeqTwoByteString::cast(string);
|
2008-10-22 09:09:07 +00:00
|
|
|
return Vector<const uc16>(seq->GetChars() + offset, length);
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
ASSERT(string_tag == kExternalStringTag);
|
|
|
|
|
ExternalTwoByteString* ext = ExternalTwoByteString::cast(string);
|
|
|
|
|
const uc16* start =
|
|
|
|
|
reinterpret_cast<const uc16*>(ext->resource()->data());
|
|
|
|
|
return Vector<const uc16>(start + offset, length);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
SmartPointer<char> String::ToCString(AllowNullsFlag allow_nulls,
|
|
|
|
|
RobustnessFlag robust_flag,
|
|
|
|
|
int offset,
|
|
|
|
|
int length,
|
|
|
|
|
int* length_return) {
|
|
|
|
|
if (robust_flag == ROBUST_STRING_TRAVERSAL && !LooksValid()) {
|
|
|
|
|
return SmartPointer<char>(NULL);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Negative length means the to the end of the string.
|
|
|
|
|
if (length < 0) length = kMaxInt - offset;
|
|
|
|
|
|
|
|
|
|
// Compute the size of the UTF-8 string. Start at the specified offset.
|
2011-03-18 20:35:07 +00:00
|
|
|
Access<StringInputBuffer> buffer(
|
|
|
|
|
heap->isolate()->objects_string_input_buffer());
|
2008-07-03 15:10:15 +00:00
|
|
|
buffer->Reset(offset, this);
|
|
|
|
|
int character_position = offset;
|
|
|
|
|
int utf8_bytes = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
if (character_position < offset + length) {
|
|
|
|
|
utf8_bytes += unibrow::Utf8::Length(character);
|
|
|
|
|
}
|
|
|
|
|
character_position++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (length_return) {
|
|
|
|
|
*length_return = utf8_bytes;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char* result = NewArray<char>(utf8_bytes + 1);
|
|
|
|
|
|
|
|
|
|
// Convert the UTF-16 string to a UTF-8 buffer. Start at the specified offset.
|
|
|
|
|
buffer->Rewind();
|
|
|
|
|
buffer->Seek(offset);
|
|
|
|
|
character_position = offset;
|
|
|
|
|
int utf8_byte_position = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
if (character_position < offset + length) {
|
|
|
|
|
if (allow_nulls == DISALLOW_NULLS && character == 0) {
|
|
|
|
|
character = ' ';
|
|
|
|
|
}
|
|
|
|
|
utf8_byte_position +=
|
|
|
|
|
unibrow::Utf8::Encode(result + utf8_byte_position, character);
|
|
|
|
|
}
|
|
|
|
|
character_position++;
|
|
|
|
|
}
|
|
|
|
|
result[utf8_byte_position] = 0;
|
|
|
|
|
return SmartPointer<char>(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-04 13:09:12 +00:00
|
|
|
SmartPointer<char> String::ToCString(AllowNullsFlag allow_nulls,
|
|
|
|
|
RobustnessFlag robust_flag,
|
|
|
|
|
int* length_return) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return ToCString(allow_nulls, robust_flag, 0, -1, length_return);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* String::GetTwoByteData() {
|
|
|
|
|
return GetTwoByteData(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* String::GetTwoByteData(unsigned start) {
|
2009-05-01 11:16:29 +00:00
|
|
|
ASSERT(!IsAsciiRepresentation());
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(this).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2008-10-09 08:08:04 +00:00
|
|
|
return SeqTwoByteString::cast(this)->SeqTwoByteStringGetData(start);
|
2008-07-03 15:10:15 +00:00
|
|
|
case kExternalStringTag:
|
|
|
|
|
return ExternalTwoByteString::cast(this)->
|
|
|
|
|
ExternalTwoByteStringGetData(start);
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-11 11:24:45 +00:00
|
|
|
SmartPointer<uc16> String::ToWideCString(RobustnessFlag robust_flag) {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (robust_flag == ROBUST_STRING_TRAVERSAL && !LooksValid()) {
|
2008-09-11 11:24:45 +00:00
|
|
|
return SmartPointer<uc16>();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Access<StringInputBuffer> buffer(
|
|
|
|
|
heap->isolate()->objects_string_input_buffer());
|
2008-07-03 15:10:15 +00:00
|
|
|
buffer->Reset(this);
|
|
|
|
|
|
|
|
|
|
uc16* result = NewArray<uc16>(length() + 1);
|
|
|
|
|
|
|
|
|
|
int i = 0;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
uint16_t character = buffer->GetNext();
|
|
|
|
|
result[i++] = character;
|
|
|
|
|
}
|
|
|
|
|
result[i] = 0;
|
2008-09-11 11:24:45 +00:00
|
|
|
return SmartPointer<uc16>(result);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
const uc16* SeqTwoByteString::SeqTwoByteStringGetData(unsigned start) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return reinterpret_cast<uc16*>(
|
|
|
|
|
reinterpret_cast<char*>(this) - kHeapObjectTag + kHeaderSize) + start;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
void SeqTwoByteString::SeqTwoByteStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
2009-05-14 07:12:58 +00:00
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2008-07-03 15:10:15 +00:00
|
|
|
unsigned chars_read = 0;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
while (chars_read < max_chars) {
|
|
|
|
|
uint16_t c = *reinterpret_cast<uint16_t*>(
|
|
|
|
|
reinterpret_cast<char*>(this) -
|
|
|
|
|
kHeapObjectTag + kHeaderSize + offset * kShortSize);
|
|
|
|
|
if (c <= kMaxAsciiCharCode) {
|
|
|
|
|
// Fast case for ASCII characters. Cursor is an input output argument.
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor)) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeNonAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor)) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
offset++;
|
|
|
|
|
chars_read++;
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset;
|
|
|
|
|
rbb->remaining += chars_read;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
const unibrow::byte* SeqAsciiString::SeqAsciiStringReadBlock(
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2008-07-03 15:10:15 +00:00
|
|
|
const unibrow::byte* b = reinterpret_cast<unibrow::byte*>(this) -
|
|
|
|
|
kHeapObjectTag + kHeaderSize + *offset_ptr * kCharSize;
|
|
|
|
|
*remaining = max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
return b;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This will iterate unless the block of string data spans two 'halves' of
|
|
|
|
|
// a ConsString, in which case it will recurse. Since the block of string
|
|
|
|
|
// data to be read has a maximum size this limits the maximum recursion
|
|
|
|
|
// depth to something sane. Since C++ does not have tail call recursion
|
|
|
|
|
// elimination, the iteration must be explicit. Since this is not an
|
|
|
|
|
// -IntoBuffer method it can delegate to one of the efficient
|
|
|
|
|
// *AsciiStringReadBlock routines.
|
|
|
|
|
const unibrow::byte* ConsString::ConsStringReadBlock(ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ConsString* current = this;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
int offset_correction = 0;
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = current->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
unsigned left_length = (unsigned)left->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (left_length > offset &&
|
|
|
|
|
(max_chars <= left_length - offset ||
|
|
|
|
|
(rbb->capacity <= left_length - offset &&
|
|
|
|
|
(max_chars = left_length - offset, true)))) { // comma operator!
|
|
|
|
|
// Left hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree. The assignment on the left of the comma operator is
|
|
|
|
|
// in order to make use of the fact that the -IntoBuffer routines can
|
|
|
|
|
// produce at most 'capacity' characters. This enables us to postpone
|
|
|
|
|
// the point where we switch to the -IntoBuffer routines (below) in order
|
|
|
|
|
// to maximize the chances of delegating a big chunk of work to the
|
|
|
|
|
// efficient *AsciiStringReadBlock routines.
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(left).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(left);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
const unibrow::byte* answer =
|
|
|
|
|
String::ReadBlock(left, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
} else if (left_length <= offset) {
|
|
|
|
|
// Right hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
2008-11-03 10:16:05 +00:00
|
|
|
String* right = current->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
2008-11-03 10:16:05 +00:00
|
|
|
if (StringShape(right).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(right);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
const unibrow::byte* answer =
|
|
|
|
|
String::ReadBlock(right, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// The block to be read spans two sides of the ConsString, so we call the
|
|
|
|
|
// -IntoBuffer version, which will recurse. The -IntoBuffer methods
|
|
|
|
|
// are able to assemble data from several part strings because they use
|
|
|
|
|
// the util_buffer to store their data and never return direct pointers
|
|
|
|
|
// to their storage. We don't try to read more than the buffer capacity
|
|
|
|
|
// here or we can get too much recursion.
|
|
|
|
|
ASSERT(rbb->remaining == 0);
|
|
|
|
|
ASSERT(rbb->cursor == 0);
|
|
|
|
|
current->ConsStringReadBlockIntoBuffer(
|
|
|
|
|
rbb,
|
|
|
|
|
&offset,
|
|
|
|
|
max_chars > rbb->capacity ? rbb->capacity : max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint16_t ExternalAsciiString::ExternalAsciiStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < length());
|
|
|
|
|
return resource()->data()[index];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* ExternalAsciiString::ExternalAsciiStringReadBlock(
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
// Cast const char* to unibrow::byte* (signedness difference).
|
|
|
|
|
const unibrow::byte* b =
|
|
|
|
|
reinterpret_cast<const unibrow::byte*>(resource()->data()) + *offset_ptr;
|
|
|
|
|
*remaining = max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
return b;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const uc16* ExternalTwoByteString::ExternalTwoByteStringGetData(
|
|
|
|
|
unsigned start) {
|
|
|
|
|
return resource()->data() + start;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint16_t ExternalTwoByteString::ExternalTwoByteStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < length());
|
|
|
|
|
return resource()->data()[index];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ExternalTwoByteString::ExternalTwoByteStringReadBlockIntoBuffer(
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned chars_read = 0;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
const uint16_t* data = resource()->data();
|
|
|
|
|
while (chars_read < max_chars) {
|
|
|
|
|
uint16_t c = data[offset];
|
|
|
|
|
if (c <= kMaxAsciiCharCode) {
|
2009-04-17 09:17:04 +00:00
|
|
|
// Fast case for ASCII characters. Cursor is an input output argument.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!unibrow::CharacterStream::EncodeAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor))
|
|
|
|
|
break;
|
|
|
|
|
} else {
|
|
|
|
|
if (!unibrow::CharacterStream::EncodeNonAsciiCharacter(c,
|
|
|
|
|
rbb->util_buffer,
|
|
|
|
|
rbb->capacity,
|
|
|
|
|
rbb->cursor))
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
offset++;
|
|
|
|
|
chars_read++;
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset;
|
|
|
|
|
rbb->remaining += chars_read;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
void SeqAsciiString::SeqAsciiStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned capacity = rbb->capacity - rbb->cursor;
|
|
|
|
|
if (max_chars > capacity) max_chars = capacity;
|
|
|
|
|
memcpy(rbb->util_buffer + rbb->cursor,
|
|
|
|
|
reinterpret_cast<char*>(this) - kHeapObjectTag + kHeaderSize +
|
|
|
|
|
*offset_ptr * kCharSize,
|
|
|
|
|
max_chars);
|
|
|
|
|
rbb->remaining += max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
rbb->cursor += max_chars;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ExternalAsciiString::ExternalAsciiStringReadBlockIntoBuffer(
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
unsigned capacity = rbb->capacity - rbb->cursor;
|
|
|
|
|
if (max_chars > capacity) max_chars = capacity;
|
|
|
|
|
memcpy(rbb->util_buffer + rbb->cursor,
|
|
|
|
|
resource()->data() + *offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
rbb->remaining += max_chars;
|
|
|
|
|
*offset_ptr += max_chars;
|
|
|
|
|
rbb->cursor += max_chars;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This method determines the type of string involved and then copies
|
|
|
|
|
// a whole chunk of characters into a buffer, or returns a pointer to a buffer
|
|
|
|
|
// where they can be found. The pointer is not necessarily valid across a GC
|
|
|
|
|
// (see AsciiStringReadBlock).
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String* input,
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ASSERT(*offset_ptr <= static_cast<unsigned>(input->length()));
|
|
|
|
|
if (max_chars == 0) {
|
|
|
|
|
rbb->remaining = 0;
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(input).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqAsciiString* str = SeqAsciiString::cast(input);
|
|
|
|
|
return str->SeqAsciiStringReadBlock(&rbb->remaining,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqTwoByteString* str = SeqTwoByteString::cast(input);
|
|
|
|
|
str->SeqTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
return ConsString::cast(input)->ConsStringReadBlock(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
case kExternalStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return ExternalAsciiString::cast(input)->ExternalAsciiStringReadBlock(
|
|
|
|
|
&rbb->remaining,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
} else {
|
|
|
|
|
ExternalTwoByteString::cast(input)->
|
|
|
|
|
ExternalTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return rbb->util_buffer;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-09-30 12:25:46 +00:00
|
|
|
void Relocatable::PostGarbageCollectionProcessing() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = Isolate::Current();
|
|
|
|
|
Relocatable* current = isolate->relocatable_top();
|
2009-09-30 12:25:46 +00:00
|
|
|
while (current != NULL) {
|
|
|
|
|
current->PostGarbageCollection();
|
|
|
|
|
current = current->prev_;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Reserve space for statics needing saving and restoring.
|
|
|
|
|
int Relocatable::ArchiveSpacePerThread() {
|
2011-03-18 20:35:07 +00:00
|
|
|
return sizeof(Isolate::Current()->relocatable_top());
|
2009-09-30 12:25:46 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Archive statics that are thread local.
|
2011-05-05 18:55:31 +00:00
|
|
|
char* Relocatable::ArchiveState(Isolate* isolate, char* to) {
|
2011-03-18 20:35:07 +00:00
|
|
|
*reinterpret_cast<Relocatable**>(to) = isolate->relocatable_top();
|
|
|
|
|
isolate->set_relocatable_top(NULL);
|
2009-09-30 12:25:46 +00:00
|
|
|
return to + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Restore statics that are thread local.
|
2011-05-05 18:55:31 +00:00
|
|
|
char* Relocatable::RestoreState(Isolate* isolate, char* from) {
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->set_relocatable_top(*reinterpret_cast<Relocatable**>(from));
|
2009-09-30 12:25:46 +00:00
|
|
|
return from + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
char* Relocatable::Iterate(ObjectVisitor* v, char* thread_storage) {
|
|
|
|
|
Relocatable* top = *reinterpret_cast<Relocatable**>(thread_storage);
|
|
|
|
|
Iterate(v, top);
|
|
|
|
|
return thread_storage + ArchiveSpacePerThread();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Relocatable::Iterate(ObjectVisitor* v) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = Isolate::Current();
|
|
|
|
|
Iterate(v, isolate->relocatable_top());
|
2009-09-30 12:25:46 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Relocatable::Iterate(ObjectVisitor* v, Relocatable* top) {
|
|
|
|
|
Relocatable* current = top;
|
|
|
|
|
while (current != NULL) {
|
|
|
|
|
current->IterateInstance(v);
|
|
|
|
|
current = current->prev_;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-11-25 11:07:48 +00:00
|
|
|
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
FlatStringReader::FlatStringReader(Isolate* isolate, Handle<String> str)
|
|
|
|
|
: Relocatable(isolate),
|
|
|
|
|
str_(str.location()),
|
2009-09-30 12:25:46 +00:00
|
|
|
length_(str->length()) {
|
|
|
|
|
PostGarbageCollection();
|
2008-11-25 11:07:48 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
FlatStringReader::FlatStringReader(Isolate* isolate, Vector<const char> input)
|
|
|
|
|
: Relocatable(isolate),
|
|
|
|
|
str_(0),
|
2008-11-26 08:03:55 +00:00
|
|
|
is_ascii_(true),
|
|
|
|
|
length_(input.length()),
|
2009-09-30 12:25:46 +00:00
|
|
|
start_(input.start()) { }
|
2008-11-25 11:07:48 +00:00
|
|
|
|
|
|
|
|
|
2009-09-30 12:25:46 +00:00
|
|
|
void FlatStringReader::PostGarbageCollection() {
|
2008-11-25 11:07:48 +00:00
|
|
|
if (str_ == NULL) return;
|
|
|
|
|
Handle<String> str(str_);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(str->IsFlat());
|
2009-05-01 11:16:29 +00:00
|
|
|
is_ascii_ = str->IsAsciiRepresentation();
|
2008-11-25 11:07:48 +00:00
|
|
|
if (is_ascii_) {
|
|
|
|
|
start_ = str->ToAsciiVector().start();
|
|
|
|
|
} else {
|
|
|
|
|
start_ = str->ToUC16Vector().start();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void StringInputBuffer::Seek(unsigned pos) {
|
|
|
|
|
Reset(pos, input_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SafeStringInputBuffer::Seek(unsigned pos) {
|
|
|
|
|
Reset(pos, input_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This method determines the type of string involved and then copies
|
|
|
|
|
// a whole chunk of characters into a buffer. It can be used with strings
|
|
|
|
|
// that have been glued together to form a ConsString and which must cooperate
|
|
|
|
|
// to fill up a buffer.
|
|
|
|
|
void String::ReadBlockIntoBuffer(String* input,
|
|
|
|
|
ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (max_chars == 0) return;
|
|
|
|
|
|
2009-03-17 09:33:06 +00:00
|
|
|
switch (StringShape(input).representation_tag()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
case kSeqStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqAsciiString::cast(input)->SeqAsciiStringReadBlockIntoBuffer(rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
} else {
|
2008-10-09 08:08:04 +00:00
|
|
|
SeqTwoByteString::cast(input)->SeqTwoByteStringReadBlockIntoBuffer(rbb,
|
2008-07-03 15:10:15 +00:00
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kConsStringTag:
|
|
|
|
|
ConsString::cast(input)->ConsStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
|
|
|
|
return;
|
|
|
|
|
case kExternalStringTag:
|
2009-05-01 11:16:29 +00:00
|
|
|
if (input->IsAsciiRepresentation()) {
|
2009-11-06 13:48:33 +00:00
|
|
|
ExternalAsciiString::cast(input)->
|
|
|
|
|
ExternalAsciiStringReadBlockIntoBuffer(rbb, offset_ptr, max_chars);
|
|
|
|
|
} else {
|
|
|
|
|
ExternalTwoByteString::cast(input)->
|
|
|
|
|
ExternalTwoByteStringReadBlockIntoBuffer(rbb,
|
|
|
|
|
offset_ptr,
|
|
|
|
|
max_chars);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String* input,
|
|
|
|
|
unibrow::byte* util_buffer,
|
|
|
|
|
unsigned capacity,
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
|
|
|
|
unsigned chars = input->length() - *offset_ptr;
|
2008-07-03 15:10:15 +00:00
|
|
|
ReadBlockBuffer rbb(util_buffer, 0, capacity, 0);
|
|
|
|
|
const unibrow::byte* answer = ReadBlock(input, &rbb, offset_ptr, chars);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(rbb.remaining <= static_cast<unsigned>(input->length()));
|
2008-07-03 15:10:15 +00:00
|
|
|
*remaining = rbb.remaining;
|
|
|
|
|
return answer;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
const unibrow::byte* String::ReadBlock(String** raw_input,
|
|
|
|
|
unibrow::byte* util_buffer,
|
|
|
|
|
unsigned capacity,
|
|
|
|
|
unsigned* remaining,
|
|
|
|
|
unsigned* offset_ptr) {
|
|
|
|
|
Handle<String> input(raw_input);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(*offset_ptr <= (unsigned)input->length());
|
|
|
|
|
unsigned chars = input->length() - *offset_ptr;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (chars > capacity) chars = capacity;
|
|
|
|
|
ReadBlockBuffer rbb(util_buffer, 0, capacity, 0);
|
|
|
|
|
ReadBlockIntoBuffer(*input, &rbb, offset_ptr, chars);
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(rbb.remaining <= static_cast<unsigned>(input->length()));
|
2008-07-03 15:10:15 +00:00
|
|
|
*remaining = rbb.remaining;
|
|
|
|
|
return rbb.util_buffer;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// This will iterate unless the block of string data spans two 'halves' of
|
|
|
|
|
// a ConsString, in which case it will recurse. Since the block of string
|
|
|
|
|
// data to be read has a maximum size this limits the maximum recursion
|
|
|
|
|
// depth to something sane. Since C++ does not have tail call recursion
|
|
|
|
|
// elimination, the iteration must be explicit.
|
|
|
|
|
void ConsString::ConsStringReadBlockIntoBuffer(ReadBlockBuffer* rbb,
|
|
|
|
|
unsigned* offset_ptr,
|
|
|
|
|
unsigned max_chars) {
|
|
|
|
|
ConsString* current = this;
|
|
|
|
|
unsigned offset = *offset_ptr;
|
|
|
|
|
int offset_correction = 0;
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = current->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
unsigned left_length = (unsigned)left->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (left_length > offset &&
|
|
|
|
|
max_chars <= left_length - offset) {
|
|
|
|
|
// Left hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(left).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(left);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
String::ReadBlockIntoBuffer(left, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else if (left_length <= offset) {
|
|
|
|
|
// Right hand side only - iterate unless we have reached the bottom of
|
|
|
|
|
// the cons tree.
|
|
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
2008-11-03 10:16:05 +00:00
|
|
|
String* right = current->second();
|
|
|
|
|
if (StringShape(right).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
current = ConsString::cast(right);
|
|
|
|
|
continue;
|
|
|
|
|
} else {
|
|
|
|
|
String::ReadBlockIntoBuffer(right, rbb, &offset, max_chars);
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// The block to be read spans two sides of the ConsString, so we recurse.
|
|
|
|
|
// First recurse on the left.
|
|
|
|
|
max_chars -= left_length - offset;
|
|
|
|
|
String::ReadBlockIntoBuffer(left, rbb, &offset, left_length - offset);
|
|
|
|
|
// We may have reached the max or there may not have been enough space
|
|
|
|
|
// in the buffer for the characters in the left hand side.
|
|
|
|
|
if (offset == left_length) {
|
|
|
|
|
// Recurse on the right.
|
|
|
|
|
String* right = String::cast(current->second());
|
|
|
|
|
offset -= left_length;
|
|
|
|
|
offset_correction += left_length;
|
|
|
|
|
String::ReadBlockIntoBuffer(right, rbb, &offset, max_chars);
|
|
|
|
|
}
|
|
|
|
|
*offset_ptr = offset + offset_correction;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint16_t ConsString::ConsStringGet(int index) {
|
|
|
|
|
ASSERT(index >= 0 && index < this->length());
|
|
|
|
|
|
|
|
|
|
// Check for a flattened cons string
|
2008-11-03 10:16:05 +00:00
|
|
|
if (second()->length() == 0) {
|
|
|
|
|
String* left = first();
|
2009-03-17 09:33:06 +00:00
|
|
|
return left->Get(index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string = String::cast(this);
|
|
|
|
|
|
|
|
|
|
while (true) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (StringShape(string).IsCons()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConsString* cons_string = ConsString::cast(string);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* left = cons_string->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (left->length() > index) {
|
2008-07-03 15:10:15 +00:00
|
|
|
string = left;
|
|
|
|
|
} else {
|
2009-03-17 09:33:06 +00:00
|
|
|
index -= left->length();
|
2008-11-03 10:16:05 +00:00
|
|
|
string = cons_string->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-03-17 09:33:06 +00:00
|
|
|
return string->Get(index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-22 09:09:07 +00:00
|
|
|
template <typename sinkchar>
|
|
|
|
|
void String::WriteToFlat(String* src,
|
|
|
|
|
sinkchar* sink,
|
|
|
|
|
int f,
|
|
|
|
|
int t) {
|
2008-07-03 15:10:15 +00:00
|
|
|
String* source = src;
|
|
|
|
|
int from = f;
|
|
|
|
|
int to = t;
|
|
|
|
|
while (true) {
|
2009-03-17 09:33:06 +00:00
|
|
|
ASSERT(0 <= from && from <= to && to <= source->length());
|
|
|
|
|
switch (StringShape(source).full_representation_tag()) {
|
2008-10-22 09:09:07 +00:00
|
|
|
case kAsciiStringTag | kExternalStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
ExternalAsciiString::cast(source)->resource()->data() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kTwoByteStringTag | kExternalStringTag: {
|
|
|
|
|
const uc16* data =
|
|
|
|
|
ExternalTwoByteString::cast(source)->resource()->data();
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
data + from,
|
|
|
|
|
to - from);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
case kAsciiStringTag | kSeqStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
SeqAsciiString::cast(source)->GetChars() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kTwoByteStringTag | kSeqStringTag: {
|
|
|
|
|
CopyChars(sink,
|
|
|
|
|
SeqTwoByteString::cast(source)->GetChars() + from,
|
|
|
|
|
to - from);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
case kAsciiStringTag | kConsStringTag:
|
|
|
|
|
case kTwoByteStringTag | kConsStringTag: {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConsString* cons_string = ConsString::cast(source);
|
2008-11-03 10:16:05 +00:00
|
|
|
String* first = cons_string->first();
|
2009-03-17 09:33:06 +00:00
|
|
|
int boundary = first->length();
|
2008-10-07 10:10:03 +00:00
|
|
|
if (to - boundary >= boundary - from) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Right hand side is longer. Recurse over left.
|
|
|
|
|
if (from < boundary) {
|
2009-03-17 09:33:06 +00:00
|
|
|
WriteToFlat(first, sink, from, boundary);
|
2008-10-22 09:09:07 +00:00
|
|
|
sink += boundary - from;
|
2008-07-03 15:10:15 +00:00
|
|
|
from = 0;
|
|
|
|
|
} else {
|
|
|
|
|
from -= boundary;
|
|
|
|
|
}
|
|
|
|
|
to -= boundary;
|
2008-11-03 10:16:05 +00:00
|
|
|
source = cons_string->second();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2008-10-22 09:09:07 +00:00
|
|
|
// Left hand side is longer. Recurse over right.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (to > boundary) {
|
2008-11-03 10:16:05 +00:00
|
|
|
String* second = cons_string->second();
|
2008-10-22 09:09:07 +00:00
|
|
|
WriteToFlat(second,
|
|
|
|
|
sink + boundary - from,
|
|
|
|
|
0,
|
|
|
|
|
to - boundary);
|
2008-07-03 15:10:15 +00:00
|
|
|
to = boundary;
|
|
|
|
|
}
|
|
|
|
|
source = first;
|
|
|
|
|
}
|
2008-10-22 09:09:07 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
template <typename IteratorA, typename IteratorB>
|
|
|
|
|
static inline bool CompareStringContents(IteratorA* ia, IteratorB* ib) {
|
|
|
|
|
// General slow case check. We know that the ia and ib iterators
|
|
|
|
|
// have the same length.
|
|
|
|
|
while (ia->has_more()) {
|
|
|
|
|
uc32 ca = ia->GetNext();
|
|
|
|
|
uc32 cb = ib->GetNext();
|
|
|
|
|
if (ca != cb)
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-20 11:38:32 +00:00
|
|
|
// Compares the contents of two strings by reading and comparing
|
|
|
|
|
// int-sized blocks of characters.
|
|
|
|
|
template <typename Char>
|
|
|
|
|
static inline bool CompareRawStringContents(Vector<Char> a, Vector<Char> b) {
|
|
|
|
|
int length = a.length();
|
|
|
|
|
ASSERT_EQ(length, b.length());
|
|
|
|
|
const Char* pa = a.start();
|
|
|
|
|
const Char* pb = b.start();
|
2008-10-23 08:25:23 +00:00
|
|
|
int i = 0;
|
2009-05-05 12:06:20 +00:00
|
|
|
#ifndef V8_HOST_CAN_READ_UNALIGNED
|
2008-10-22 12:00:19 +00:00
|
|
|
// If this architecture isn't comfortable reading unaligned ints
|
2008-10-23 08:25:23 +00:00
|
|
|
// then we have to check that the strings are aligned before
|
|
|
|
|
// comparing them blockwise.
|
2008-10-22 12:00:19 +00:00
|
|
|
const int kAlignmentMask = sizeof(uint32_t) - 1; // NOLINT
|
|
|
|
|
uint32_t pa_addr = reinterpret_cast<uint32_t>(pa);
|
|
|
|
|
uint32_t pb_addr = reinterpret_cast<uint32_t>(pb);
|
2008-11-12 01:05:41 +00:00
|
|
|
if (((pa_addr & kAlignmentMask) | (pb_addr & kAlignmentMask)) == 0) {
|
2008-10-22 12:00:19 +00:00
|
|
|
#endif
|
2008-10-23 08:25:23 +00:00
|
|
|
const int kStepSize = sizeof(int) / sizeof(Char); // NOLINT
|
|
|
|
|
int endpoint = length - kStepSize;
|
|
|
|
|
// Compare blocks until we reach near the end of the string.
|
|
|
|
|
for (; i <= endpoint; i += kStepSize) {
|
|
|
|
|
uint32_t wa = *reinterpret_cast<const uint32_t*>(pa + i);
|
|
|
|
|
uint32_t wb = *reinterpret_cast<const uint32_t*>(pb + i);
|
|
|
|
|
if (wa != wb) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2009-05-05 12:06:20 +00:00
|
|
|
#ifndef V8_HOST_CAN_READ_UNALIGNED
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2008-10-23 08:25:23 +00:00
|
|
|
#endif
|
2008-10-20 11:38:32 +00:00
|
|
|
// Compare the remaining characters that didn't fit into a block.
|
|
|
|
|
for (; i < length; i++) {
|
|
|
|
|
if (a[i] != b[i]) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-09 08:08:04 +00:00
|
|
|
template <typename IteratorA>
|
2011-03-18 20:35:07 +00:00
|
|
|
static inline bool CompareStringContentsPartial(Isolate* isolate,
|
|
|
|
|
IteratorA* ia,
|
|
|
|
|
String* b) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (b->IsFlat()) {
|
2009-05-01 11:16:29 +00:00
|
|
|
if (b->IsAsciiRepresentation()) {
|
2008-10-10 08:33:06 +00:00
|
|
|
VectorIterator<char> ib(b->ToAsciiVector());
|
2008-10-09 08:08:04 +00:00
|
|
|
return CompareStringContents(ia, &ib);
|
|
|
|
|
} else {
|
2009-05-05 10:15:05 +00:00
|
|
|
VectorIterator<uc16> ib(b->ToUC16Vector());
|
2008-10-09 08:08:04 +00:00
|
|
|
return CompareStringContents(ia, &ib);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->objects_string_compare_buffer_b()->Reset(0, b);
|
|
|
|
|
return CompareStringContents(ia,
|
|
|
|
|
isolate->objects_string_compare_buffer_b());
|
2008-10-09 08:08:04 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-18 19:41:05 +00:00
|
|
|
bool String::SlowEquals(String* other) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Fast check: negative check with lengths.
|
2009-03-17 09:33:06 +00:00
|
|
|
int len = length();
|
|
|
|
|
if (len != other->length()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (len == 0) return true;
|
|
|
|
|
|
|
|
|
|
// Fast check: if hash code is computed for both strings
|
|
|
|
|
// a fast negative check can be performed.
|
|
|
|
|
if (HasHashCode() && other->HasHashCode()) {
|
|
|
|
|
if (Hash() != other->Hash()) return false;
|
|
|
|
|
}
|
|
|
|
|
|
2010-05-20 09:01:39 +00:00
|
|
|
// We know the strings are both non-empty. Compare the first chars
|
|
|
|
|
// before we try to flatten the strings.
|
|
|
|
|
if (this->Get(0) != other->Get(0)) return false;
|
|
|
|
|
|
|
|
|
|
String* lhs = this->TryFlattenGetString();
|
|
|
|
|
String* rhs = other->TryFlattenGetString();
|
|
|
|
|
|
|
|
|
|
if (StringShape(lhs).IsSequentialAscii() &&
|
|
|
|
|
StringShape(rhs).IsSequentialAscii()) {
|
|
|
|
|
const char* str1 = SeqAsciiString::cast(lhs)->GetChars();
|
|
|
|
|
const char* str2 = SeqAsciiString::cast(rhs)->GetChars();
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareRawStringContents(Vector<const char>(str1, len),
|
|
|
|
|
Vector<const char>(str2, len));
|
|
|
|
|
}
|
|
|
|
|
|
2011-03-22 19:15:02 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2010-05-20 09:01:39 +00:00
|
|
|
if (lhs->IsFlat()) {
|
2010-08-05 18:12:39 +00:00
|
|
|
if (lhs->IsAsciiRepresentation()) {
|
2010-05-20 09:01:39 +00:00
|
|
|
Vector<const char> vec1 = lhs->ToAsciiVector();
|
|
|
|
|
if (rhs->IsFlat()) {
|
|
|
|
|
if (rhs->IsAsciiRepresentation()) {
|
|
|
|
|
Vector<const char> vec2 = rhs->ToAsciiVector();
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareRawStringContents(vec1, vec2);
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<char> buf1(vec1);
|
2010-05-20 09:01:39 +00:00
|
|
|
VectorIterator<uc16> ib(rhs->ToUC16Vector());
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareStringContents(&buf1, &ib);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<char> buf1(vec1);
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->objects_string_compare_buffer_b()->Reset(0, rhs);
|
|
|
|
|
return CompareStringContents(&buf1,
|
|
|
|
|
isolate->objects_string_compare_buffer_b());
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2008-10-09 08:08:04 +00:00
|
|
|
} else {
|
2010-05-20 09:01:39 +00:00
|
|
|
Vector<const uc16> vec1 = lhs->ToUC16Vector();
|
|
|
|
|
if (rhs->IsFlat()) {
|
|
|
|
|
if (rhs->IsAsciiRepresentation()) {
|
2008-10-20 11:38:32 +00:00
|
|
|
VectorIterator<uc16> buf1(vec1);
|
2010-05-20 09:01:39 +00:00
|
|
|
VectorIterator<char> ib(rhs->ToAsciiVector());
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareStringContents(&buf1, &ib);
|
|
|
|
|
} else {
|
2010-05-20 09:01:39 +00:00
|
|
|
Vector<const uc16> vec2(rhs->ToUC16Vector());
|
2008-10-20 11:38:32 +00:00
|
|
|
return CompareRawStringContents(vec1, vec2);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
VectorIterator<uc16> buf1(vec1);
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->objects_string_compare_buffer_b()->Reset(0, rhs);
|
|
|
|
|
return CompareStringContents(&buf1,
|
|
|
|
|
isolate->objects_string_compare_buffer_b());
|
2008-10-20 11:38:32 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2008-10-09 08:08:04 +00:00
|
|
|
} else {
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->objects_string_compare_buffer_a()->Reset(0, lhs);
|
|
|
|
|
return CompareStringContentsPartial(isolate,
|
|
|
|
|
isolate->objects_string_compare_buffer_a(), rhs);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::MarkAsUndetectable() {
|
2008-11-05 10:26:08 +00:00
|
|
|
if (StringShape(this).IsSymbol()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
Map* map = this->map();
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = map->heap();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (map == heap->string_map()) {
|
|
|
|
|
this->set_map(heap->undetectable_string_map());
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
2011-03-18 20:35:07 +00:00
|
|
|
} else if (map == heap->ascii_string_map()) {
|
|
|
|
|
this->set_map(heap->undetectable_ascii_string_map());
|
2008-07-03 15:10:15 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
// Rest cannot be marked as undetectable
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::IsEqualTo(Vector<const char> str) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2009-03-17 09:33:06 +00:00
|
|
|
int slen = length();
|
2011-04-12 08:27:38 +00:00
|
|
|
Access<UnicodeCache::Utf8Decoder>
|
|
|
|
|
decoder(isolate->unicode_cache()->utf8_decoder());
|
2008-07-03 15:10:15 +00:00
|
|
|
decoder->Reset(str.start(), str.length());
|
|
|
|
|
int i;
|
|
|
|
|
for (i = 0; i < slen && decoder->has_more(); i++) {
|
|
|
|
|
uc32 r = decoder->GetNext();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (Get(i) != r) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return i == slen && !decoder->has_more();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-22 20:14:19 +00:00
|
|
|
bool String::IsAsciiEqualTo(Vector<const char> str) {
|
|
|
|
|
int slen = length();
|
|
|
|
|
if (str.length() != slen) return false;
|
2011-05-25 17:07:05 +00:00
|
|
|
if (IsFlat() && IsAsciiRepresentation()) {
|
|
|
|
|
return CompareChars(ToAsciiVector().start(), str.start(), slen) == 0;
|
|
|
|
|
}
|
|
|
|
|
for (int i = 0; i < slen; i++) {
|
|
|
|
|
if (Get(i) != static_cast<uint16_t>(str[i])) return false;
|
2010-12-22 20:14:19 +00:00
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::IsTwoByteEqualTo(Vector<const uc16> str) {
|
|
|
|
|
int slen = length();
|
|
|
|
|
if (str.length() != slen) return false;
|
2011-05-25 17:07:05 +00:00
|
|
|
if (IsFlat() && IsTwoByteRepresentation()) {
|
|
|
|
|
return CompareChars(ToUC16Vector().start(), str.start(), slen) == 0;
|
|
|
|
|
}
|
2010-12-22 20:14:19 +00:00
|
|
|
for (int i = 0; i < slen; i++) {
|
|
|
|
|
if (Get(i) != str[i]) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t String::ComputeAndSetHash() {
|
2009-03-19 18:50:00 +00:00
|
|
|
// Should only be called if hash code has not yet been computed.
|
2010-05-27 12:30:45 +00:00
|
|
|
ASSERT(!HasHashCode());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-03-26 23:33:37 +00:00
|
|
|
const int len = length();
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Compute the hash code.
|
2010-03-26 23:33:37 +00:00
|
|
|
uint32_t field = 0;
|
|
|
|
|
if (StringShape(this).IsSequentialAscii()) {
|
|
|
|
|
field = HashSequentialString(SeqAsciiString::cast(this)->GetChars(), len);
|
|
|
|
|
} else if (StringShape(this).IsSequentialTwoByte()) {
|
|
|
|
|
field = HashSequentialString(SeqTwoByteString::cast(this)->GetChars(), len);
|
|
|
|
|
} else {
|
|
|
|
|
StringInputBuffer buffer(this);
|
|
|
|
|
field = ComputeHashField(&buffer, len);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Store the hash code in the object.
|
2009-11-24 14:10:06 +00:00
|
|
|
set_hash_field(field);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Check the hash code is there.
|
2010-05-27 12:30:45 +00:00
|
|
|
ASSERT(HasHashCode());
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t result = field >> kHashShift;
|
|
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::ComputeArrayIndex(unibrow::CharacterStream* buffer,
|
|
|
|
|
uint32_t* index,
|
|
|
|
|
int length) {
|
2008-10-23 06:20:57 +00:00
|
|
|
if (length == 0 || length > kMaxArrayIndexSize) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
uc32 ch = buffer->GetNext();
|
|
|
|
|
|
|
|
|
|
// If the string begins with a '0' character, it must only consist
|
|
|
|
|
// of it to be a legal array index.
|
|
|
|
|
if (ch == '0') {
|
|
|
|
|
*index = 0;
|
|
|
|
|
return length == 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Convert string to uint32 array index; character by character.
|
|
|
|
|
int d = ch - '0';
|
|
|
|
|
if (d < 0 || d > 9) return false;
|
|
|
|
|
uint32_t result = d;
|
|
|
|
|
while (buffer->has_more()) {
|
|
|
|
|
d = buffer->GetNext() - '0';
|
|
|
|
|
if (d < 0 || d > 9) return false;
|
|
|
|
|
// Check that the new result is below the 32 bit limit.
|
|
|
|
|
if (result > 429496729U - ((d > 5) ? 1 : 0)) return false;
|
|
|
|
|
result = (result * 10) + d;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
*index = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool String::SlowAsArrayIndex(uint32_t* index) {
|
2009-03-17 09:33:06 +00:00
|
|
|
if (length() <= kMaxCachedArrayIndexLength) {
|
2008-10-23 06:20:57 +00:00
|
|
|
Hash(); // force computation of hash code
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t field = hash_field();
|
2010-06-07 09:36:30 +00:00
|
|
|
if ((field & kIsNotArrayIndexMask) != 0) return false;
|
2009-11-24 14:10:06 +00:00
|
|
|
// Isolate the array index form the full hash field.
|
|
|
|
|
*index = (kArrayIndexHashMask & field) >> kHashShift;
|
2008-10-23 06:20:57 +00:00
|
|
|
return true;
|
|
|
|
|
} else {
|
|
|
|
|
StringInputBuffer buffer(this);
|
2009-03-17 09:33:06 +00:00
|
|
|
return ComputeArrayIndex(&buffer, index, length());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-07 11:32:20 +00:00
|
|
|
uint32_t StringHasher::MakeArrayIndexHash(uint32_t value, int length) {
|
2010-08-27 12:16:00 +00:00
|
|
|
// For array indexes mix the length into the hash as an array index could
|
|
|
|
|
// be zero.
|
|
|
|
|
ASSERT(length > 0);
|
|
|
|
|
ASSERT(length <= String::kMaxArrayIndexSize);
|
|
|
|
|
ASSERT(TenToThe(String::kMaxCachedArrayIndexLength) <
|
|
|
|
|
(1 << String::kArrayIndexValueBits));
|
2010-09-07 11:32:20 +00:00
|
|
|
|
|
|
|
|
value <<= String::kHashShift;
|
2010-08-27 12:16:00 +00:00
|
|
|
value |= length << String::kArrayIndexHashLengthShift;
|
2010-09-07 11:32:20 +00:00
|
|
|
|
|
|
|
|
ASSERT((value & String::kIsNotArrayIndexMask) == 0);
|
|
|
|
|
ASSERT((length > String::kMaxCachedArrayIndexLength) ||
|
|
|
|
|
(value & String::kContainsCachedArrayIndexMask) == 0);
|
2010-08-27 12:16:00 +00:00
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
uint32_t StringHasher::GetHashField() {
|
|
|
|
|
ASSERT(is_valid());
|
2009-11-24 14:10:06 +00:00
|
|
|
if (length_ <= String::kMaxHashCalcLength) {
|
2008-10-07 10:10:03 +00:00
|
|
|
if (is_array_index()) {
|
2010-09-07 11:32:20 +00:00
|
|
|
return MakeArrayIndexHash(array_index(), length_);
|
2008-10-07 10:10:03 +00:00
|
|
|
}
|
2010-08-27 12:16:00 +00:00
|
|
|
return (GetHash() << String::kHashShift) | String::kIsNotArrayIndexMask;
|
2008-10-07 10:10:03 +00:00
|
|
|
} else {
|
2010-08-27 12:16:00 +00:00
|
|
|
return (length_ << String::kHashShift) | String::kIsNotArrayIndexMask;
|
2008-10-07 10:10:03 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t String::ComputeHashField(unibrow::CharacterStream* buffer,
|
|
|
|
|
int length) {
|
2008-10-07 10:10:03 +00:00
|
|
|
StringHasher hasher(length);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
// Very long strings have a trivial hash that doesn't inspect the
|
|
|
|
|
// string contents.
|
2008-10-23 06:20:57 +00:00
|
|
|
if (hasher.has_trivial_hash()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
return hasher.GetHashField();
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-10-07 10:10:03 +00:00
|
|
|
|
|
|
|
|
// Do the iterative array index computation as long as there is a
|
|
|
|
|
// chance this is an array index.
|
2008-10-23 06:20:57 +00:00
|
|
|
while (buffer->has_more() && hasher.is_array_index()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
hasher.AddCharacter(buffer->GetNext());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-10-07 10:10:03 +00:00
|
|
|
|
|
|
|
|
// Process the remaining characters without updating the array
|
|
|
|
|
// index.
|
2008-10-23 06:20:57 +00:00
|
|
|
while (buffer->has_more()) {
|
2008-10-07 10:10:03 +00:00
|
|
|
hasher.AddCharacterNoIndex(buffer->GetNext());
|
2008-10-23 06:20:57 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
return hasher.GetHashField();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* String::SubString(int start, int end, PretenureFlag pretenure) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-03-17 09:33:06 +00:00
|
|
|
if (start == 0 && end == length()) return this;
|
2011-03-18 20:35:07 +00:00
|
|
|
MaybeObject* result = heap->AllocateSubString(this, start, end, pretenure);
|
2009-11-10 13:23:05 +00:00
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void String::PrintOn(FILE* file) {
|
2009-03-17 09:33:06 +00:00
|
|
|
int length = this->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < length; i++) {
|
2009-03-17 09:33:06 +00:00
|
|
|
fprintf(file, "%c", Get(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-29 10:37:14 +00:00
|
|
|
void Map::CreateBackPointers() {
|
|
|
|
|
DescriptorArray* descriptors = instance_descriptors();
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < descriptors->number_of_descriptors(); i++) {
|
2010-08-12 14:51:59 +00:00
|
|
|
if (descriptors->GetType(i) == MAP_TRANSITION ||
|
2011-03-23 09:57:12 +00:00
|
|
|
descriptors->GetType(i) == EXTERNAL_ARRAY_TRANSITION ||
|
2010-08-12 14:51:59 +00:00
|
|
|
descriptors->GetType(i) == CONSTANT_TRANSITION) {
|
2008-10-29 10:37:14 +00:00
|
|
|
// Get target.
|
2009-07-10 19:25:18 +00:00
|
|
|
Map* target = Map::cast(descriptors->GetValue(i));
|
2008-10-29 10:37:14 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
// Verify target.
|
|
|
|
|
Object* source_prototype = prototype();
|
|
|
|
|
Object* target_prototype = target->prototype();
|
|
|
|
|
ASSERT(source_prototype->IsJSObject() ||
|
|
|
|
|
source_prototype->IsMap() ||
|
|
|
|
|
source_prototype->IsNull());
|
|
|
|
|
ASSERT(target_prototype->IsJSObject() ||
|
|
|
|
|
target_prototype->IsNull());
|
|
|
|
|
ASSERT(source_prototype->IsMap() ||
|
2009-07-10 19:25:18 +00:00
|
|
|
source_prototype == target_prototype);
|
2008-10-29 10:37:14 +00:00
|
|
|
#endif
|
|
|
|
|
// Point target back to source. set_prototype() will not let us set
|
|
|
|
|
// the prototype to a map, as we do here.
|
|
|
|
|
*RawField(target, kPrototypeOffset) = this;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
void Map::ClearNonLiveTransitions(Heap* heap, Object* real_prototype) {
|
2008-10-29 10:37:14 +00:00
|
|
|
// Live DescriptorArray objects will be marked, so we must use
|
|
|
|
|
// low-level accessors to get and modify their data.
|
|
|
|
|
DescriptorArray* d = reinterpret_cast<DescriptorArray*>(
|
2011-05-23 15:59:38 +00:00
|
|
|
*RawField(this, Map::kInstanceDescriptorsOrBitField3Offset));
|
|
|
|
|
if (d->IsEmpty()) return;
|
2008-10-29 10:37:14 +00:00
|
|
|
Smi* NullDescriptorDetails =
|
|
|
|
|
PropertyDetails(NONE, NULL_DESCRIPTOR).AsSmi();
|
|
|
|
|
FixedArray* contents = reinterpret_cast<FixedArray*>(
|
|
|
|
|
d->get(DescriptorArray::kContentArrayIndex));
|
|
|
|
|
ASSERT(contents->length() >= 2);
|
|
|
|
|
for (int i = 0; i < contents->length(); i += 2) {
|
|
|
|
|
// If the pair (value, details) is a map transition,
|
|
|
|
|
// check if the target is live. If not, null the descriptor.
|
|
|
|
|
// Also drop the back pointer for that map transition, so that this
|
|
|
|
|
// map is not reached again by following a back pointer from a
|
|
|
|
|
// non-live object.
|
|
|
|
|
PropertyDetails details(Smi::cast(contents->get(i + 1)));
|
2010-08-12 14:51:59 +00:00
|
|
|
if (details.type() == MAP_TRANSITION ||
|
2011-03-23 09:57:12 +00:00
|
|
|
details.type() == EXTERNAL_ARRAY_TRANSITION ||
|
2010-08-12 14:51:59 +00:00
|
|
|
details.type() == CONSTANT_TRANSITION) {
|
2008-10-29 10:37:14 +00:00
|
|
|
Map* target = reinterpret_cast<Map*>(contents->get(i));
|
|
|
|
|
ASSERT(target->IsHeapObject());
|
|
|
|
|
if (!target->IsMarked()) {
|
|
|
|
|
ASSERT(target->IsMap());
|
2010-08-16 16:06:46 +00:00
|
|
|
contents->set_unchecked(i + 1, NullDescriptorDetails);
|
2011-03-18 20:35:07 +00:00
|
|
|
contents->set_null_unchecked(heap, i);
|
2008-10-29 10:37:14 +00:00
|
|
|
ASSERT(target->prototype() == this ||
|
|
|
|
|
target->prototype() == real_prototype);
|
|
|
|
|
// Getter prototype() is read-only, set_prototype() has side effects.
|
|
|
|
|
*RawField(target, Map::kPrototypeOffset) = real_prototype;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-06 13:15:11 +00:00
|
|
|
int Map::Hash() {
|
|
|
|
|
// For performance reasons we only hash the 3 most variable fields of a map:
|
|
|
|
|
// constructor, prototype and bit_field2.
|
|
|
|
|
|
|
|
|
|
// Shift away the tag.
|
|
|
|
|
int hash = (static_cast<uint32_t>(
|
|
|
|
|
reinterpret_cast<uintptr_t>(constructor())) >> 2);
|
|
|
|
|
|
|
|
|
|
// XOR-ing the prototype and constructor directly yields too many zero bits
|
|
|
|
|
// when the two pointers are close (which is fairly common).
|
|
|
|
|
// To avoid this we shift the prototype 4 bits relatively to the constructor.
|
|
|
|
|
hash ^= (static_cast<uint32_t>(
|
|
|
|
|
reinterpret_cast<uintptr_t>(prototype())) << 2);
|
|
|
|
|
|
|
|
|
|
return hash ^ (hash >> 16) ^ bit_field2();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool Map::EquivalentToForNormalization(Map* other,
|
|
|
|
|
PropertyNormalizationMode mode) {
|
|
|
|
|
return
|
|
|
|
|
constructor() == other->constructor() &&
|
|
|
|
|
prototype() == other->prototype() &&
|
|
|
|
|
inobject_properties() == ((mode == CLEAR_INOBJECT_PROPERTIES) ?
|
|
|
|
|
0 :
|
|
|
|
|
other->inobject_properties()) &&
|
|
|
|
|
instance_type() == other->instance_type() &&
|
|
|
|
|
bit_field() == other->bit_field() &&
|
|
|
|
|
bit_field2() == other->bit_field2() &&
|
|
|
|
|
(bit_field3() & ~(1<<Map::kIsShared)) ==
|
|
|
|
|
(other->bit_field3() & ~(1<<Map::kIsShared));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-08-20 07:10:18 +00:00
|
|
|
void JSFunction::JSFunctionIterateBody(int object_size, ObjectVisitor* v) {
|
|
|
|
|
// Iterate over all fields in the body but take care in dealing with
|
|
|
|
|
// the code entry.
|
|
|
|
|
IteratePointers(v, kPropertiesOffset, kCodeEntryOffset);
|
|
|
|
|
v->VisitCodeEntry(this->address() + kCodeEntryOffset);
|
|
|
|
|
IteratePointers(v, kCodeEntryOffset + kPointerSize, object_size);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
void JSFunction::MarkForLazyRecompilation() {
|
|
|
|
|
ASSERT(is_compiled() && !IsOptimized());
|
2011-01-17 08:11:03 +00:00
|
|
|
ASSERT(shared()->allows_lazy_compilation() ||
|
|
|
|
|
code()->optimizable());
|
2011-03-18 20:35:07 +00:00
|
|
|
Builtins* builtins = GetIsolate()->builtins();
|
2011-03-23 13:40:07 +00:00
|
|
|
ReplaceCode(builtins->builtin(Builtins::kLazyRecompile));
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSFunction::IsInlineable() {
|
|
|
|
|
if (IsBuiltin()) return false;
|
2011-02-25 11:17:31 +00:00
|
|
|
SharedFunctionInfo* shared_info = shared();
|
2010-12-07 11:31:57 +00:00
|
|
|
// Check that the function has a script associated with it.
|
2011-02-25 11:17:31 +00:00
|
|
|
if (!shared_info->script()->IsScript()) return false;
|
|
|
|
|
if (shared_info->optimization_disabled()) return false;
|
|
|
|
|
Code* code = shared_info->code();
|
2010-12-07 11:31:57 +00:00
|
|
|
if (code->kind() == Code::OPTIMIZED_FUNCTION) return true;
|
|
|
|
|
// If we never ran this (unlikely) then lets try to optimize it.
|
|
|
|
|
if (code->kind() != Code::FUNCTION) return true;
|
|
|
|
|
return code->optimizable();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* JSFunction::SetInstancePrototype(Object* value) {
|
|
|
|
|
ASSERT(value->IsJSObject());
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
if (has_initial_map()) {
|
|
|
|
|
initial_map()->set_prototype(value);
|
|
|
|
|
} else {
|
|
|
|
|
// Put the value in the initial map field until an initial map is
|
|
|
|
|
// needed. At that point, a new initial map is created and the
|
|
|
|
|
// prototype is put into the initial map where it belongs.
|
|
|
|
|
set_prototype_or_initial_map(value);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->ClearInstanceofCache();
|
2008-07-03 15:10:15 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSFunction::SetPrototype(Object* value) {
|
2010-04-28 12:05:40 +00:00
|
|
|
ASSERT(should_have_prototype());
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* construct_prototype = value;
|
|
|
|
|
|
|
|
|
|
// If the value is not a JSObject, store the value in the map's
|
|
|
|
|
// constructor field so it can be accessed. Also, set the prototype
|
|
|
|
|
// used for constructing objects to the original object prototype.
|
|
|
|
|
// See ECMA-262 13.2.2.
|
|
|
|
|
if (!value->IsJSObject()) {
|
|
|
|
|
// Copy the map so this does not affect unrelated functions.
|
2008-08-27 13:47:52 +00:00
|
|
|
// Remove map transitions because they point to maps with a
|
|
|
|
|
// different prototype.
|
2011-03-31 10:55:53 +00:00
|
|
|
Object* new_object;
|
2010-10-25 15:22:03 +00:00
|
|
|
{ MaybeObject* maybe_new_map = map()->CopyDropTransitions();
|
2011-03-31 10:55:53 +00:00
|
|
|
if (!maybe_new_map->ToObject(&new_object)) return maybe_new_map;
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
Map* new_map = Map::cast(new_object);
|
|
|
|
|
Heap* heap = new_map->heap();
|
|
|
|
|
set_map(new_map);
|
|
|
|
|
new_map->set_constructor(value);
|
|
|
|
|
new_map->set_non_instance_prototype(true);
|
2008-08-27 10:11:39 +00:00
|
|
|
construct_prototype =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->isolate()->context()->global_context()->
|
|
|
|
|
initial_object_prototype();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
map()->set_non_instance_prototype(false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return SetInstancePrototype(construct_prototype);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-04-28 12:05:40 +00:00
|
|
|
Object* JSFunction::RemovePrototype() {
|
2011-03-17 20:28:17 +00:00
|
|
|
Context* global_context = context()->global_context();
|
|
|
|
|
Map* no_prototype_map = shared()->strict_mode()
|
|
|
|
|
? global_context->strict_mode_function_without_prototype_map()
|
|
|
|
|
: global_context->function_without_prototype_map();
|
|
|
|
|
|
|
|
|
|
if (map() == no_prototype_map) {
|
2011-03-03 11:49:03 +00:00
|
|
|
// Be idempotent.
|
|
|
|
|
return this;
|
|
|
|
|
}
|
2011-03-17 20:28:17 +00:00
|
|
|
|
|
|
|
|
ASSERT(!shared()->strict_mode() ||
|
|
|
|
|
map() == global_context->strict_mode_function_map());
|
|
|
|
|
ASSERT(shared()->strict_mode() || map() == global_context->function_map());
|
|
|
|
|
|
|
|
|
|
set_map(no_prototype_map);
|
2011-03-31 10:55:53 +00:00
|
|
|
set_prototype_or_initial_map(no_prototype_map->heap()->the_hole_value());
|
2010-04-28 12:05:40 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* JSFunction::SetInstanceClassName(String* name) {
|
|
|
|
|
shared()->set_instance_class_name(name);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void JSFunction::PrintName(FILE* out) {
|
2010-12-07 11:31:57 +00:00
|
|
|
SmartPointer<char> name = shared()->DebugName()->ToCString();
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "%s", *name);
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
Context* JSFunction::GlobalContextFromLiterals(FixedArray* literals) {
|
|
|
|
|
return Context::cast(literals->get(JSFunction::kLiteralGlobalContextIndex));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
MaybeObject* Oddball::Initialize(const char* to_string,
|
|
|
|
|
Object* to_number,
|
|
|
|
|
byte kind) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* symbol;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_symbol =
|
|
|
|
|
Isolate::Current()->heap()->LookupAsciiSymbol(to_string);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_symbol->ToObject(&symbol)) return maybe_symbol;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
set_to_string(String::cast(symbol));
|
|
|
|
|
set_to_number(to_number);
|
2011-03-18 20:35:07 +00:00
|
|
|
set_kind(kind);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-04 14:30:43 +00:00
|
|
|
String* SharedFunctionInfo::DebugName() {
|
|
|
|
|
Object* n = name();
|
|
|
|
|
if (!n->IsString() || String::cast(n)->length() == 0) return inferred_name();
|
|
|
|
|
return String::cast(n);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
bool SharedFunctionInfo::HasSourceCode() {
|
|
|
|
|
return !script()->IsUndefined() &&
|
2010-08-17 11:44:01 +00:00
|
|
|
!reinterpret_cast<Script*>(script())->source()->IsUndefined();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* SharedFunctionInfo::GetSourceCode() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
if (!HasSourceCode()) return isolate->heap()->undefined_value();
|
|
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* source = Script::cast(script())->source();
|
2011-03-18 20:35:07 +00:00
|
|
|
return *SubString(Handle<String>(String::cast(source), isolate),
|
2008-07-03 15:10:15 +00:00
|
|
|
start_position(), end_position());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
int SharedFunctionInfo::SourceSize() {
|
|
|
|
|
return end_position() - start_position();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-19 07:30:20 +00:00
|
|
|
int SharedFunctionInfo::CalculateInstanceSize() {
|
|
|
|
|
int instance_size =
|
|
|
|
|
JSObject::kHeaderSize +
|
|
|
|
|
expected_nof_properties() * kPointerSize;
|
|
|
|
|
if (instance_size > JSObject::kMaxInstanceSize) {
|
|
|
|
|
instance_size = JSObject::kMaxInstanceSize;
|
|
|
|
|
}
|
|
|
|
|
return instance_size;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int SharedFunctionInfo::CalculateInObjectProperties() {
|
|
|
|
|
return (CalculateInstanceSize() - JSObject::kHeaderSize) / kPointerSize;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-02-18 09:07:03 +00:00
|
|
|
bool SharedFunctionInfo::CanGenerateInlineConstructor(Object* prototype) {
|
|
|
|
|
// Check the basic conditions for generating inline constructor code.
|
|
|
|
|
if (!FLAG_inline_new
|
|
|
|
|
|| !has_only_simple_this_property_assignments()
|
2010-02-18 09:41:47 +00:00
|
|
|
|| this_property_assignments_count() == 0) {
|
2010-02-18 09:07:03 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the prototype is null inline constructors cause no problems.
|
|
|
|
|
if (!prototype->IsJSObject()) {
|
|
|
|
|
ASSERT(prototype->IsNull());
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
|
2010-02-18 09:07:03 +00:00
|
|
|
// Traverse the proposed prototype chain looking for setters for properties of
|
2010-02-18 09:41:47 +00:00
|
|
|
// the same names as are set by the inline constructor.
|
2010-02-18 09:07:03 +00:00
|
|
|
for (Object* obj = prototype;
|
2011-03-18 20:35:07 +00:00
|
|
|
obj != heap->null_value();
|
2010-02-18 09:07:03 +00:00
|
|
|
obj = obj->GetPrototype()) {
|
|
|
|
|
JSObject* js_object = JSObject::cast(obj);
|
|
|
|
|
for (int i = 0; i < this_property_assignments_count(); i++) {
|
|
|
|
|
LookupResult result;
|
|
|
|
|
String* name = GetThisPropertyAssignmentName(i);
|
|
|
|
|
js_object->LocalLookupRealNamedProperty(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsProperty() && result.type() == CALLBACKS) {
|
2010-02-18 09:07:03 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-16 10:55:37 +00:00
|
|
|
void SharedFunctionInfo::ForbidInlineConstructor() {
|
|
|
|
|
set_compiler_hints(BooleanBit::set(compiler_hints(),
|
|
|
|
|
kHasOnlySimpleThisPropertyAssignments,
|
|
|
|
|
false));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-19 07:30:20 +00:00
|
|
|
void SharedFunctionInfo::SetThisPropertyAssignmentsInfo(
|
|
|
|
|
bool only_simple_this_property_assignments,
|
|
|
|
|
FixedArray* assignments) {
|
|
|
|
|
set_compiler_hints(BooleanBit::set(compiler_hints(),
|
|
|
|
|
kHasOnlySimpleThisPropertyAssignments,
|
|
|
|
|
only_simple_this_property_assignments));
|
|
|
|
|
set_this_property_assignments(assignments);
|
|
|
|
|
set_this_property_assignments_count(assignments->length() / 3);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-26 12:22:44 +00:00
|
|
|
void SharedFunctionInfo::ClearThisPropertyAssignmentsInfo() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-08-26 12:22:44 +00:00
|
|
|
set_compiler_hints(BooleanBit::set(compiler_hints(),
|
|
|
|
|
kHasOnlySimpleThisPropertyAssignments,
|
|
|
|
|
false));
|
2011-03-18 20:35:07 +00:00
|
|
|
set_this_property_assignments(heap->undefined_value());
|
2009-08-26 12:22:44 +00:00
|
|
|
set_this_property_assignments_count(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-19 07:30:20 +00:00
|
|
|
String* SharedFunctionInfo::GetThisPropertyAssignmentName(int index) {
|
|
|
|
|
Object* obj = this_property_assignments();
|
|
|
|
|
ASSERT(obj->IsFixedArray());
|
|
|
|
|
ASSERT(index < this_property_assignments_count());
|
|
|
|
|
obj = FixedArray::cast(obj)->get(index * 3);
|
|
|
|
|
ASSERT(obj->IsString());
|
|
|
|
|
return String::cast(obj);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-08-26 12:22:44 +00:00
|
|
|
bool SharedFunctionInfo::IsThisPropertyAssignmentArgument(int index) {
|
|
|
|
|
Object* obj = this_property_assignments();
|
|
|
|
|
ASSERT(obj->IsFixedArray());
|
|
|
|
|
ASSERT(index < this_property_assignments_count());
|
|
|
|
|
obj = FixedArray::cast(obj)->get(index * 3 + 1);
|
|
|
|
|
return Smi::cast(obj)->value() != -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int SharedFunctionInfo::GetThisPropertyAssignmentArgument(int index) {
|
|
|
|
|
ASSERT(IsThisPropertyAssignmentArgument(index));
|
|
|
|
|
Object* obj =
|
|
|
|
|
FixedArray::cast(this_property_assignments())->get(index * 3 + 1);
|
|
|
|
|
return Smi::cast(obj)->value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* SharedFunctionInfo::GetThisPropertyAssignmentConstant(int index) {
|
|
|
|
|
ASSERT(!IsThisPropertyAssignmentArgument(index));
|
|
|
|
|
Object* obj =
|
|
|
|
|
FixedArray::cast(this_property_assignments())->get(index * 3 + 2);
|
|
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Support function for printing the source code to a StringStream
|
|
|
|
|
// without any allocation in the heap.
|
|
|
|
|
void SharedFunctionInfo::SourceCodePrint(StringStream* accumulator,
|
|
|
|
|
int max_length) {
|
|
|
|
|
// For some native functions there is no source.
|
2010-12-07 11:31:57 +00:00
|
|
|
if (!HasSourceCode()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Add("<No Source>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-10 13:23:05 +00:00
|
|
|
// Get the source for the script which this function came from.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Don't use String::cast because we don't want more assertion errors while
|
|
|
|
|
// we are already creating a stack dump.
|
|
|
|
|
String* script_source =
|
|
|
|
|
reinterpret_cast<String*>(Script::cast(script())->source());
|
|
|
|
|
|
|
|
|
|
if (!script_source->LooksValid()) {
|
|
|
|
|
accumulator->Add("<Invalid Source>");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!is_toplevel()) {
|
|
|
|
|
accumulator->Add("function ");
|
|
|
|
|
Object* name = this->name();
|
|
|
|
|
if (name->IsString() && String::cast(name)->length() > 0) {
|
|
|
|
|
accumulator->PrintName(name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int len = end_position() - start_position();
|
2010-12-07 11:31:57 +00:00
|
|
|
if (len <= max_length || max_length < 0) {
|
|
|
|
|
accumulator->Put(script_source, start_position(), end_position());
|
|
|
|
|
} else {
|
2008-07-03 15:10:15 +00:00
|
|
|
accumulator->Put(script_source,
|
|
|
|
|
start_position(),
|
|
|
|
|
start_position() + max_length);
|
|
|
|
|
accumulator->Add("...\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static bool IsCodeEquivalent(Code* code, Code* recompiled) {
|
|
|
|
|
if (code->instruction_size() != recompiled->instruction_size()) return false;
|
|
|
|
|
ByteArray* code_relocation = code->relocation_info();
|
|
|
|
|
ByteArray* recompiled_relocation = recompiled->relocation_info();
|
|
|
|
|
int length = code_relocation->length();
|
|
|
|
|
if (length != recompiled_relocation->length()) return false;
|
|
|
|
|
int compare = memcmp(code_relocation->GetDataStartAddress(),
|
|
|
|
|
recompiled_relocation->GetDataStartAddress(),
|
|
|
|
|
length);
|
|
|
|
|
return compare == 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SharedFunctionInfo::EnableDeoptimizationSupport(Code* recompiled) {
|
|
|
|
|
ASSERT(!has_deoptimization_support());
|
|
|
|
|
AssertNoAllocation no_allocation;
|
|
|
|
|
Code* code = this->code();
|
|
|
|
|
if (IsCodeEquivalent(code, recompiled)) {
|
|
|
|
|
// Copy the deoptimization data from the recompiled code.
|
|
|
|
|
code->set_deoptimization_data(recompiled->deoptimization_data());
|
|
|
|
|
code->set_has_deoptimization_support(true);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2010-12-07 11:31:57 +00:00
|
|
|
// TODO(3025757): In case the recompiled isn't equivalent to the
|
|
|
|
|
// old code, we have to replace it. We should try to avoid this
|
|
|
|
|
// altogether because it flushes valuable type feedback by
|
|
|
|
|
// effectively resetting all IC state.
|
|
|
|
|
set_code(recompiled);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
ASSERT(has_deoptimization_support());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-05-19 13:15:57 +00:00
|
|
|
void SharedFunctionInfo::DisableOptimization(JSFunction* function) {
|
|
|
|
|
// Disable optimization for the shared function info and mark the
|
|
|
|
|
// code as non-optimizable. The marker on the shared function info
|
|
|
|
|
// is there because we flush non-optimized code thereby loosing the
|
|
|
|
|
// non-optimizable information for the code. When the code is
|
|
|
|
|
// regenerated and set on the shared function info it is marked as
|
|
|
|
|
// non-optimizable if optimization is disabled for the shared
|
|
|
|
|
// function info.
|
|
|
|
|
set_optimization_disabled(true);
|
|
|
|
|
// Code should be the lazy compilation stub or else unoptimized. If the
|
|
|
|
|
// latter, disable optimization for the code too.
|
|
|
|
|
ASSERT(code()->kind() == Code::FUNCTION || code()->kind() == Code::BUILTIN);
|
|
|
|
|
if (code()->kind() == Code::FUNCTION) {
|
|
|
|
|
code()->set_optimizable(false);
|
|
|
|
|
}
|
|
|
|
|
if (FLAG_trace_opt) {
|
|
|
|
|
PrintF("[disabled optimization for: ");
|
|
|
|
|
function->PrintName();
|
|
|
|
|
PrintF(" / %" V8PRIxPTR "]\n", reinterpret_cast<intptr_t>(function));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
bool SharedFunctionInfo::VerifyBailoutId(int id) {
|
|
|
|
|
// TODO(srdjan): debugging ARM crashes in hydrogen. OK to disable while
|
|
|
|
|
// we are always bailing out on ARM.
|
|
|
|
|
|
|
|
|
|
ASSERT(id != AstNode::kNoNumber);
|
|
|
|
|
Code* unoptimized = code();
|
|
|
|
|
DeoptimizationOutputData* data =
|
|
|
|
|
DeoptimizationOutputData::cast(unoptimized->deoptimization_data());
|
|
|
|
|
unsigned ignore = Deoptimizer::GetOutputInfo(data, id, this);
|
|
|
|
|
USE(ignore);
|
|
|
|
|
return true; // Return true if there was no ASSERT.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-23 09:15:26 +00:00
|
|
|
void SharedFunctionInfo::StartInobjectSlackTracking(Map* map) {
|
|
|
|
|
ASSERT(!IsInobjectSlackTrackingInProgress());
|
|
|
|
|
|
|
|
|
|
// Only initiate the tracking the first time.
|
|
|
|
|
if (live_objects_may_exist()) return;
|
|
|
|
|
set_live_objects_may_exist(true);
|
|
|
|
|
|
|
|
|
|
// No tracking during the snapshot construction phase.
|
|
|
|
|
if (Serializer::enabled()) return;
|
|
|
|
|
|
|
|
|
|
if (map->unused_property_fields() == 0) return;
|
|
|
|
|
|
|
|
|
|
// Nonzero counter is a leftover from the previous attempt interrupted
|
|
|
|
|
// by GC, keep it.
|
|
|
|
|
if (construction_count() == 0) {
|
|
|
|
|
set_construction_count(kGenerousAllocationCount);
|
|
|
|
|
}
|
|
|
|
|
set_initial_map(map);
|
2011-03-18 20:35:07 +00:00
|
|
|
Builtins* builtins = map->heap()->isolate()->builtins();
|
2011-03-23 13:40:07 +00:00
|
|
|
ASSERT_EQ(builtins->builtin(Builtins::kJSConstructStubGeneric),
|
2010-09-23 09:15:26 +00:00
|
|
|
construct_stub());
|
2011-03-23 13:40:07 +00:00
|
|
|
set_construct_stub(builtins->builtin(Builtins::kJSConstructStubCountdown));
|
2010-09-23 09:15:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Called from GC, hence reinterpret_cast and unchecked accessors.
|
|
|
|
|
void SharedFunctionInfo::DetachInitialMap() {
|
|
|
|
|
Map* map = reinterpret_cast<Map*>(initial_map());
|
|
|
|
|
|
|
|
|
|
// Make the map remember to restore the link if it survives the GC.
|
|
|
|
|
map->set_bit_field2(
|
|
|
|
|
map->bit_field2() | (1 << Map::kAttachedToSharedFunctionInfo));
|
|
|
|
|
|
|
|
|
|
// Undo state changes made by StartInobjectTracking (except the
|
|
|
|
|
// construction_count). This way if the initial map does not survive the GC
|
|
|
|
|
// then StartInobjectTracking will be called again the next time the
|
|
|
|
|
// constructor is called. The countdown will continue and (possibly after
|
|
|
|
|
// several more GCs) CompleteInobjectSlackTracking will eventually be called.
|
2011-03-18 20:35:07 +00:00
|
|
|
set_initial_map(map->heap()->raw_unchecked_undefined_value());
|
|
|
|
|
Builtins* builtins = map->heap()->isolate()->builtins();
|
2011-03-23 13:40:07 +00:00
|
|
|
ASSERT_EQ(builtins->builtin(Builtins::kJSConstructStubCountdown),
|
2010-09-23 09:15:26 +00:00
|
|
|
*RawField(this, kConstructStubOffset));
|
2011-03-23 13:40:07 +00:00
|
|
|
set_construct_stub(builtins->builtin(Builtins::kJSConstructStubGeneric));
|
2010-09-23 09:15:26 +00:00
|
|
|
// It is safe to clear the flag: it will be set again if the map is live.
|
|
|
|
|
set_live_objects_may_exist(false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Called from GC, hence reinterpret_cast and unchecked accessors.
|
|
|
|
|
void SharedFunctionInfo::AttachInitialMap(Map* map) {
|
|
|
|
|
map->set_bit_field2(
|
|
|
|
|
map->bit_field2() & ~(1 << Map::kAttachedToSharedFunctionInfo));
|
|
|
|
|
|
|
|
|
|
// Resume inobject slack tracking.
|
|
|
|
|
set_initial_map(map);
|
2011-03-18 20:35:07 +00:00
|
|
|
Builtins* builtins = map->heap()->isolate()->builtins();
|
2011-03-23 13:40:07 +00:00
|
|
|
ASSERT_EQ(builtins->builtin(Builtins::kJSConstructStubGeneric),
|
2010-09-23 09:15:26 +00:00
|
|
|
*RawField(this, kConstructStubOffset));
|
2011-03-23 13:40:07 +00:00
|
|
|
set_construct_stub(builtins->builtin(Builtins::kJSConstructStubCountdown));
|
2010-09-23 09:15:26 +00:00
|
|
|
// The map survived the gc, so there may be objects referencing it.
|
|
|
|
|
set_live_objects_may_exist(true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static void GetMinInobjectSlack(Map* map, void* data) {
|
|
|
|
|
int slack = map->unused_property_fields();
|
|
|
|
|
if (*reinterpret_cast<int*>(data) > slack) {
|
|
|
|
|
*reinterpret_cast<int*>(data) = slack;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static void ShrinkInstanceSize(Map* map, void* data) {
|
|
|
|
|
int slack = *reinterpret_cast<int*>(data);
|
|
|
|
|
map->set_inobject_properties(map->inobject_properties() - slack);
|
|
|
|
|
map->set_unused_property_fields(map->unused_property_fields() - slack);
|
|
|
|
|
map->set_instance_size(map->instance_size() - slack * kPointerSize);
|
|
|
|
|
|
|
|
|
|
// Visitor id might depend on the instance size, recalculate it.
|
|
|
|
|
map->set_visitor_id(StaticVisitorBase::GetVisitorId(map));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void SharedFunctionInfo::CompleteInobjectSlackTracking() {
|
|
|
|
|
ASSERT(live_objects_may_exist() && IsInobjectSlackTrackingInProgress());
|
|
|
|
|
Map* map = Map::cast(initial_map());
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = map->heap();
|
|
|
|
|
set_initial_map(heap->undefined_value());
|
|
|
|
|
Builtins* builtins = heap->isolate()->builtins();
|
2011-03-23 13:40:07 +00:00
|
|
|
ASSERT_EQ(builtins->builtin(Builtins::kJSConstructStubCountdown),
|
2010-09-23 09:15:26 +00:00
|
|
|
construct_stub());
|
2011-03-23 13:40:07 +00:00
|
|
|
set_construct_stub(builtins->builtin(Builtins::kJSConstructStubGeneric));
|
2010-09-23 09:15:26 +00:00
|
|
|
|
|
|
|
|
int slack = map->unused_property_fields();
|
|
|
|
|
map->TraverseTransitionTree(&GetMinInobjectSlack, &slack);
|
|
|
|
|
if (slack != 0) {
|
|
|
|
|
// Resize the initial map and all maps in its transition tree.
|
|
|
|
|
map->TraverseTransitionTree(&ShrinkInstanceSize, &slack);
|
2011-06-03 14:48:09 +00:00
|
|
|
|
2010-09-23 09:15:26 +00:00
|
|
|
// Give the correct expected_nof_properties to initial maps created later.
|
|
|
|
|
ASSERT(expected_nof_properties() >= slack);
|
|
|
|
|
set_expected_nof_properties(expected_nof_properties() - slack);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void ObjectVisitor::VisitCodeTarget(RelocInfo* rinfo) {
|
2008-09-22 13:57:03 +00:00
|
|
|
ASSERT(RelocInfo::IsCodeTarget(rinfo->rmode()));
|
2009-09-21 10:35:47 +00:00
|
|
|
Object* target = Code::GetCodeFromTargetAddress(rinfo->target_address());
|
|
|
|
|
Object* old_target = target;
|
|
|
|
|
VisitPointer(&target);
|
|
|
|
|
CHECK_EQ(target, old_target); // VisitPointer doesn't change Code* *target.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-08-20 07:10:18 +00:00
|
|
|
void ObjectVisitor::VisitCodeEntry(Address entry_address) {
|
|
|
|
|
Object* code = Code::GetObjectFromEntryAddress(entry_address);
|
|
|
|
|
Object* old_code = code;
|
|
|
|
|
VisitPointer(&code);
|
|
|
|
|
if (code != old_code) {
|
|
|
|
|
Memory::Address_at(entry_address) = reinterpret_cast<Code*>(code)->entry();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
void ObjectVisitor::VisitGlobalPropertyCell(RelocInfo* rinfo) {
|
|
|
|
|
ASSERT(rinfo->rmode() == RelocInfo::GLOBAL_PROPERTY_CELL);
|
|
|
|
|
Object* cell = rinfo->target_cell();
|
|
|
|
|
Object* old_cell = cell;
|
|
|
|
|
VisitPointer(&cell);
|
|
|
|
|
if (cell != old_cell) {
|
|
|
|
|
rinfo->set_target_cell(reinterpret_cast<JSGlobalPropertyCell*>(cell));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
void ObjectVisitor::VisitDebugTarget(RelocInfo* rinfo) {
|
2010-06-08 12:04:49 +00:00
|
|
|
ASSERT((RelocInfo::IsJSReturn(rinfo->rmode()) &&
|
|
|
|
|
rinfo->IsPatchedReturnSequence()) ||
|
|
|
|
|
(RelocInfo::IsDebugBreakSlot(rinfo->rmode()) &&
|
|
|
|
|
rinfo->IsPatchedDebugBreakSlotSequence()));
|
2009-09-21 10:35:47 +00:00
|
|
|
Object* target = Code::GetCodeFromTargetAddress(rinfo->call_address());
|
|
|
|
|
Object* old_target = target;
|
|
|
|
|
VisitPointer(&target);
|
|
|
|
|
CHECK_EQ(target, old_target); // VisitPointer doesn't change Code* *target.
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
void Code::InvalidateRelocation() {
|
2011-03-31 10:55:53 +00:00
|
|
|
set_relocation_info(heap()->empty_byte_array());
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-11 09:50:06 +00:00
|
|
|
void Code::Relocate(intptr_t delta) {
|
2008-07-03 15:10:15 +00:00
|
|
|
for (RelocIterator it(this, RelocInfo::kApplyMask); !it.done(); it.next()) {
|
|
|
|
|
it.rinfo()->apply(delta);
|
|
|
|
|
}
|
2008-09-05 11:23:00 +00:00
|
|
|
CPU::FlushICache(instruction_start(), instruction_size());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Code::CopyFrom(const CodeDesc& desc) {
|
|
|
|
|
// copy code
|
|
|
|
|
memmove(instruction_start(), desc.buffer, desc.instr_size);
|
|
|
|
|
|
|
|
|
|
// copy reloc info
|
|
|
|
|
memmove(relocation_start(),
|
|
|
|
|
desc.buffer + desc.buffer_size - desc.reloc_size,
|
|
|
|
|
desc.reloc_size);
|
|
|
|
|
|
|
|
|
|
// unbox handles and relocate
|
2009-10-15 11:52:53 +00:00
|
|
|
intptr_t delta = instruction_start() - desc.buffer;
|
2008-07-03 15:10:15 +00:00
|
|
|
int mode_mask = RelocInfo::kCodeTargetMask |
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::ModeMask(RelocInfo::EMBEDDED_OBJECT) |
|
2010-12-07 11:31:57 +00:00
|
|
|
RelocInfo::ModeMask(RelocInfo::GLOBAL_PROPERTY_CELL) |
|
2008-07-03 15:10:15 +00:00
|
|
|
RelocInfo::kApplyMask;
|
2009-10-06 13:11:05 +00:00
|
|
|
Assembler* origin = desc.origin; // Needed to find target_object on X64.
|
2008-07-03 15:10:15 +00:00
|
|
|
for (RelocIterator it(this, mode_mask); !it.done(); it.next()) {
|
2008-09-22 13:57:03 +00:00
|
|
|
RelocInfo::Mode mode = it.rinfo()->rmode();
|
|
|
|
|
if (mode == RelocInfo::EMBEDDED_OBJECT) {
|
2009-10-06 13:11:05 +00:00
|
|
|
Handle<Object> p = it.rinfo()->target_object_handle(origin);
|
2008-07-03 15:10:15 +00:00
|
|
|
it.rinfo()->set_target_object(*p);
|
2010-12-07 11:31:57 +00:00
|
|
|
} else if (mode == RelocInfo::GLOBAL_PROPERTY_CELL) {
|
2011-02-04 14:09:03 +00:00
|
|
|
Handle<JSGlobalPropertyCell> cell = it.rinfo()->target_cell_handle();
|
2010-12-07 11:31:57 +00:00
|
|
|
it.rinfo()->set_target_cell(*cell);
|
2008-09-22 13:57:03 +00:00
|
|
|
} else if (RelocInfo::IsCodeTarget(mode)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// rewrite code handles in inline cache targets to direct
|
|
|
|
|
// pointers to the first instruction in the code object
|
2009-10-06 13:11:05 +00:00
|
|
|
Handle<Object> p = it.rinfo()->target_object_handle(origin);
|
2008-07-03 15:10:15 +00:00
|
|
|
Code* code = Code::cast(*p);
|
|
|
|
|
it.rinfo()->set_target_address(code->instruction_start());
|
|
|
|
|
} else {
|
|
|
|
|
it.rinfo()->apply(delta);
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-09-05 11:23:00 +00:00
|
|
|
CPU::FlushICache(instruction_start(), instruction_size());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Locate the source position which is closest to the address in the code. This
|
|
|
|
|
// is using the source position information embedded in the relocation info.
|
|
|
|
|
// The position returned is relative to the beginning of the script where the
|
|
|
|
|
// source for this function is found.
|
|
|
|
|
int Code::SourcePosition(Address pc) {
|
|
|
|
|
int distance = kMaxInt;
|
2008-09-22 13:57:03 +00:00
|
|
|
int position = RelocInfo::kNoPosition; // Initially no position found.
|
2008-07-03 15:10:15 +00:00
|
|
|
// Run through all the relocation info to find the best matching source
|
|
|
|
|
// position. All the code needs to be considered as the sequence of the
|
|
|
|
|
// instructions in the code does not necessarily follow the same order as the
|
|
|
|
|
// source.
|
|
|
|
|
RelocIterator it(this, RelocInfo::kPositionMask);
|
|
|
|
|
while (!it.done()) {
|
2008-09-18 08:51:43 +00:00
|
|
|
// Only look at positions after the current pc.
|
|
|
|
|
if (it.rinfo()->pc() < pc) {
|
|
|
|
|
// Get position and distance.
|
2009-11-11 09:50:06 +00:00
|
|
|
|
|
|
|
|
int dist = static_cast<int>(pc - it.rinfo()->pc());
|
|
|
|
|
int pos = static_cast<int>(it.rinfo()->data());
|
2008-09-18 08:51:43 +00:00
|
|
|
// If this position is closer than the current candidate or if it has the
|
|
|
|
|
// same distance as the current candidate and the position is higher then
|
|
|
|
|
// this position is the new candidate.
|
|
|
|
|
if ((dist < distance) ||
|
|
|
|
|
(dist == distance && pos > position)) {
|
|
|
|
|
position = pos;
|
|
|
|
|
distance = dist;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
it.next();
|
|
|
|
|
}
|
|
|
|
|
return position;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Same as Code::SourcePosition above except it only looks for statement
|
|
|
|
|
// positions.
|
|
|
|
|
int Code::SourceStatementPosition(Address pc) {
|
|
|
|
|
// First find the position as close as possible using all position
|
|
|
|
|
// information.
|
|
|
|
|
int position = SourcePosition(pc);
|
|
|
|
|
// Now find the closest statement position before the position.
|
|
|
|
|
int statement_position = 0;
|
|
|
|
|
RelocIterator it(this, RelocInfo::kPositionMask);
|
|
|
|
|
while (!it.done()) {
|
2008-09-22 13:57:03 +00:00
|
|
|
if (RelocInfo::IsStatementPosition(it.rinfo()->rmode())) {
|
2009-11-11 09:50:06 +00:00
|
|
|
int p = static_cast<int>(it.rinfo()->data());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (statement_position < p && p <= position) {
|
|
|
|
|
statement_position = p;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
it.next();
|
|
|
|
|
}
|
|
|
|
|
return statement_position;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-01-12 14:14:14 +00:00
|
|
|
SafepointEntry Code::GetSafepointEntry(Address pc) {
|
2010-12-07 11:31:57 +00:00
|
|
|
SafepointTable table(this);
|
2011-01-12 14:14:14 +00:00
|
|
|
return table.FindEntry(pc);
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void Code::SetNoStackCheckTable() {
|
|
|
|
|
// Indicate the absence of a stack-check table by a table start after the
|
|
|
|
|
// end of the instructions. Table start must be aligned, so round up.
|
2011-02-03 10:07:22 +00:00
|
|
|
set_stack_check_table_offset(RoundUp(instruction_size(), kIntSize));
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Map* Code::FindFirstMap() {
|
|
|
|
|
ASSERT(is_inline_cache_stub());
|
|
|
|
|
AssertNoAllocation no_allocation;
|
|
|
|
|
int mask = RelocInfo::ModeMask(RelocInfo::EMBEDDED_OBJECT);
|
|
|
|
|
for (RelocIterator it(this, mask); !it.done(); it.next()) {
|
|
|
|
|
RelocInfo* info = it.rinfo();
|
|
|
|
|
Object* object = info->target_object();
|
|
|
|
|
if (object->IsMap()) return Map::cast(object);
|
|
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-29 13:17:02 +00:00
|
|
|
#ifdef ENABLE_DISASSEMBLER
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void DeoptimizationInputData::DeoptimizationInputDataPrint(FILE* out) {
|
2010-12-07 11:31:57 +00:00
|
|
|
disasm::NameConverter converter;
|
|
|
|
|
int deopt_count = DeoptCount();
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "Deoptimization Input Data (deopt points = %d)\n", deopt_count);
|
2010-12-07 11:31:57 +00:00
|
|
|
if (0 == deopt_count) return;
|
|
|
|
|
|
2011-08-11 13:56:09 +00:00
|
|
|
PrintF(out, "%6s %6s %6s %12s\n", "index", "ast id", "argc",
|
|
|
|
|
FLAG_print_code_verbose ? "commands" : "");
|
2010-12-07 11:31:57 +00:00
|
|
|
for (int i = 0; i < deopt_count; i++) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "%6d %6d %6d",
|
2010-12-07 11:31:57 +00:00
|
|
|
i, AstId(i)->value(), ArgumentsStackHeight(i)->value());
|
2011-08-08 07:17:01 +00:00
|
|
|
|
2011-08-11 13:56:09 +00:00
|
|
|
if (!FLAG_print_code_verbose) {
|
|
|
|
|
PrintF(out, "\n");
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2011-08-08 07:17:01 +00:00
|
|
|
// Print details of the frame translation.
|
2010-12-07 11:31:57 +00:00
|
|
|
int translation_index = TranslationIndex(i)->value();
|
|
|
|
|
TranslationIterator iterator(TranslationByteArray(), translation_index);
|
|
|
|
|
Translation::Opcode opcode =
|
|
|
|
|
static_cast<Translation::Opcode>(iterator.Next());
|
|
|
|
|
ASSERT(Translation::BEGIN == opcode);
|
|
|
|
|
int frame_count = iterator.Next();
|
2011-08-08 07:17:01 +00:00
|
|
|
PrintF(out, " %s {count=%d}\n", Translation::StringFor(opcode),
|
|
|
|
|
frame_count);
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
while (iterator.HasNext() &&
|
|
|
|
|
Translation::BEGIN !=
|
|
|
|
|
(opcode = static_cast<Translation::Opcode>(iterator.Next()))) {
|
|
|
|
|
PrintF(out, "%24s %s ", "", Translation::StringFor(opcode));
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
switch (opcode) {
|
|
|
|
|
case Translation::BEGIN:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::FRAME: {
|
|
|
|
|
int ast_id = iterator.Next();
|
|
|
|
|
int function_id = iterator.Next();
|
|
|
|
|
JSFunction* function =
|
|
|
|
|
JSFunction::cast(LiteralArray()->get(function_id));
|
|
|
|
|
unsigned height = iterator.Next();
|
|
|
|
|
PrintF(out, "{ast_id=%d, \nfunction=", ast_id);
|
|
|
|
|
function->PrintName(out);
|
|
|
|
|
PrintF(out, ", height=%u}", height);
|
|
|
|
|
break;
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::DUPLICATE:
|
|
|
|
|
break;
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::REGISTER: {
|
|
|
|
|
int reg_code = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%s}", converter.NameOfCPURegister(reg_code));
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::INT32_REGISTER: {
|
|
|
|
|
int reg_code = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%s}", converter.NameOfCPURegister(reg_code));
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::DOUBLE_REGISTER: {
|
|
|
|
|
int reg_code = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%s}",
|
|
|
|
|
DoubleRegister::AllocationIndexToString(reg_code));
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::STACK_SLOT: {
|
|
|
|
|
int input_slot_index = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%d}", input_slot_index);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::INT32_STACK_SLOT: {
|
|
|
|
|
int input_slot_index = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%d}", input_slot_index);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::DOUBLE_STACK_SLOT: {
|
|
|
|
|
int input_slot_index = iterator.Next();
|
|
|
|
|
PrintF(out, "{input=%d}", input_slot_index);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-08-08 07:17:01 +00:00
|
|
|
case Translation::LITERAL: {
|
|
|
|
|
unsigned literal_index = iterator.Next();
|
|
|
|
|
PrintF(out, "{literal_id=%u}", literal_index);
|
|
|
|
|
break;
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2011-08-08 07:17:01 +00:00
|
|
|
|
|
|
|
|
case Translation::ARGUMENTS_OBJECT:
|
|
|
|
|
break;
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2011-08-08 07:17:01 +00:00
|
|
|
PrintF(out, "\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void DeoptimizationOutputData::DeoptimizationOutputDataPrint(FILE* out) {
|
|
|
|
|
PrintF(out, "Deoptimization Output Data (deopt points = %d)\n",
|
2010-12-07 11:31:57 +00:00
|
|
|
this->DeoptPoints());
|
|
|
|
|
if (this->DeoptPoints() == 0) return;
|
|
|
|
|
|
|
|
|
|
PrintF("%6s %8s %s\n", "ast id", "pc", "state");
|
|
|
|
|
for (int i = 0; i < this->DeoptPoints(); i++) {
|
|
|
|
|
int pc_and_state = this->PcAndState(i)->value();
|
|
|
|
|
PrintF("%6d %8d %s\n",
|
|
|
|
|
this->AstId(i)->value(),
|
|
|
|
|
FullCodeGenerator::PcField::decode(pc_and_state),
|
|
|
|
|
FullCodeGenerator::State2String(
|
|
|
|
|
FullCodeGenerator::StateField::decode(pc_and_state)));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-16 07:58:47 +00:00
|
|
|
|
2008-08-06 10:02:49 +00:00
|
|
|
// Identify kind of code.
|
|
|
|
|
const char* Code::Kind2String(Kind kind) {
|
|
|
|
|
switch (kind) {
|
|
|
|
|
case FUNCTION: return "FUNCTION";
|
2010-12-07 11:31:57 +00:00
|
|
|
case OPTIMIZED_FUNCTION: return "OPTIMIZED_FUNCTION";
|
2008-08-06 10:02:49 +00:00
|
|
|
case STUB: return "STUB";
|
|
|
|
|
case BUILTIN: return "BUILTIN";
|
|
|
|
|
case LOAD_IC: return "LOAD_IC";
|
|
|
|
|
case KEYED_LOAD_IC: return "KEYED_LOAD_IC";
|
|
|
|
|
case STORE_IC: return "STORE_IC";
|
|
|
|
|
case KEYED_STORE_IC: return "KEYED_STORE_IC";
|
|
|
|
|
case CALL_IC: return "CALL_IC";
|
2010-06-07 08:27:32 +00:00
|
|
|
case KEYED_CALL_IC: return "KEYED_CALL_IC";
|
2011-05-24 12:20:16 +00:00
|
|
|
case UNARY_OP_IC: return "UNARY_OP_IC";
|
|
|
|
|
case BINARY_OP_IC: return "BINARY_OP_IC";
|
2010-12-07 11:31:57 +00:00
|
|
|
case COMPARE_IC: return "COMPARE_IC";
|
2011-07-21 13:51:04 +00:00
|
|
|
case TO_BOOLEAN_IC: return "TO_BOOLEAN_IC";
|
2008-08-06 10:02:49 +00:00
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2008-08-13 09:32:07 +00:00
|
|
|
|
|
|
|
|
|
2008-09-17 12:38:50 +00:00
|
|
|
const char* Code::ICState2String(InlineCacheState state) {
|
|
|
|
|
switch (state) {
|
|
|
|
|
case UNINITIALIZED: return "UNINITIALIZED";
|
|
|
|
|
case PREMONOMORPHIC: return "PREMONOMORPHIC";
|
|
|
|
|
case MONOMORPHIC: return "MONOMORPHIC";
|
|
|
|
|
case MONOMORPHIC_PROTOTYPE_FAILURE: return "MONOMORPHIC_PROTOTYPE_FAILURE";
|
|
|
|
|
case MEGAMORPHIC: return "MEGAMORPHIC";
|
|
|
|
|
case DEBUG_BREAK: return "DEBUG_BREAK";
|
|
|
|
|
case DEBUG_PREPARE_STEP_IN: return "DEBUG_PREPARE_STEP_IN";
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-30 10:05:36 +00:00
|
|
|
const char* Code::PropertyType2String(PropertyType type) {
|
|
|
|
|
switch (type) {
|
|
|
|
|
case NORMAL: return "NORMAL";
|
|
|
|
|
case FIELD: return "FIELD";
|
|
|
|
|
case CONSTANT_FUNCTION: return "CONSTANT_FUNCTION";
|
|
|
|
|
case CALLBACKS: return "CALLBACKS";
|
2011-05-16 16:33:58 +00:00
|
|
|
case HANDLER: return "HANDLER";
|
2009-06-30 10:05:36 +00:00
|
|
|
case INTERCEPTOR: return "INTERCEPTOR";
|
|
|
|
|
case MAP_TRANSITION: return "MAP_TRANSITION";
|
2011-03-23 09:57:12 +00:00
|
|
|
case EXTERNAL_ARRAY_TRANSITION: return "EXTERNAL_ARRAY_TRANSITION";
|
2009-06-30 10:05:36 +00:00
|
|
|
case CONSTANT_TRANSITION: return "CONSTANT_TRANSITION";
|
|
|
|
|
case NULL_DESCRIPTOR: return "NULL_DESCRIPTOR";
|
|
|
|
|
}
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
|
2011-02-13 16:19:53 +00:00
|
|
|
void Code::PrintExtraICState(FILE* out, Kind kind, ExtraICState extra) {
|
|
|
|
|
const char* name = NULL;
|
|
|
|
|
switch (kind) {
|
|
|
|
|
case CALL_IC:
|
|
|
|
|
if (extra == STRING_INDEX_OUT_OF_BOUNDS) {
|
|
|
|
|
name = "STRING_INDEX_OUT_OF_BOUNDS";
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case STORE_IC:
|
2011-03-02 04:53:43 +00:00
|
|
|
case KEYED_STORE_IC:
|
|
|
|
|
if (extra == kStrictMode) {
|
2011-02-13 16:19:53 +00:00
|
|
|
name = "STRICT";
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (name != NULL) {
|
|
|
|
|
PrintF(out, "extra_ic_state = %s\n", name);
|
|
|
|
|
} else {
|
2011-06-20 10:19:00 +00:00
|
|
|
PrintF(out, "extra_ic_state = %d\n", extra);
|
2011-02-13 16:19:53 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
void Code::Disassemble(const char* name, FILE* out) {
|
|
|
|
|
PrintF(out, "kind = %s\n", Kind2String(kind()));
|
2009-06-30 10:05:36 +00:00
|
|
|
if (is_inline_cache_stub()) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "ic_state = %s\n", ICState2String(ic_state()));
|
2011-02-13 16:19:53 +00:00
|
|
|
PrintExtraICState(out, kind(), extra_ic_state());
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "ic_in_loop = %d\n", ic_in_loop() == IN_LOOP);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (ic_state() == MONOMORPHIC) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "type = %s\n", PropertyType2String(type()));
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2011-06-29 13:02:00 +00:00
|
|
|
if (is_call_stub() || is_keyed_call_stub()) {
|
|
|
|
|
PrintF(out, "argc = %d\n", arguments_count());
|
|
|
|
|
}
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2009-03-04 06:14:34 +00:00
|
|
|
if ((name != NULL) && (name[0] != '\0')) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "name = %s\n", name);
|
2009-03-04 06:14:34 +00:00
|
|
|
}
|
2010-12-07 11:31:57 +00:00
|
|
|
if (kind() == OPTIMIZED_FUNCTION) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "stack_slots = %d\n", stack_slots());
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2008-08-13 09:32:07 +00:00
|
|
|
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "Instructions (size = %d)\n", instruction_size());
|
|
|
|
|
Disassembler::Decode(out, this);
|
|
|
|
|
PrintF(out, "\n");
|
2008-08-13 09:32:07 +00:00
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
if (kind() == FUNCTION) {
|
|
|
|
|
DeoptimizationOutputData* data =
|
|
|
|
|
DeoptimizationOutputData::cast(this->deoptimization_data());
|
2010-12-20 10:38:19 +00:00
|
|
|
data->DeoptimizationOutputDataPrint(out);
|
2010-12-07 11:31:57 +00:00
|
|
|
} else if (kind() == OPTIMIZED_FUNCTION) {
|
|
|
|
|
DeoptimizationInputData* data =
|
|
|
|
|
DeoptimizationInputData::cast(this->deoptimization_data());
|
2010-12-20 10:38:19 +00:00
|
|
|
data->DeoptimizationInputDataPrint(out);
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
PrintF("\n");
|
|
|
|
|
|
|
|
|
|
if (kind() == OPTIMIZED_FUNCTION) {
|
|
|
|
|
SafepointTable table(this);
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "Safepoints (size = %u)\n", table.size());
|
2010-12-07 11:31:57 +00:00
|
|
|
for (unsigned i = 0; i < table.length(); i++) {
|
|
|
|
|
unsigned pc_offset = table.GetPcOffset(i);
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "%p %4d ", (instruction_start() + pc_offset), pc_offset);
|
2010-12-07 11:31:57 +00:00
|
|
|
table.PrintEntry(i);
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, " (sp -> fp)");
|
2011-01-12 14:14:14 +00:00
|
|
|
SafepointEntry entry = table.GetEntry(i);
|
|
|
|
|
if (entry.deoptimization_index() != Safepoint::kNoDeoptimizationIndex) {
|
|
|
|
|
PrintF(out, " %6d", entry.deoptimization_index());
|
2010-12-07 11:31:57 +00:00
|
|
|
} else {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, " <none>");
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2011-01-12 14:14:14 +00:00
|
|
|
if (entry.argument_count() > 0) {
|
|
|
|
|
PrintF(out, " argc: %d", entry.argument_count());
|
|
|
|
|
}
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
} else if (kind() == FUNCTION) {
|
2011-02-03 10:07:22 +00:00
|
|
|
unsigned offset = stack_check_table_offset();
|
2010-12-07 11:31:57 +00:00
|
|
|
// If there is no stack check table, the "table start" will at or after
|
|
|
|
|
// (due to alignment) the end of the instruction stream.
|
|
|
|
|
if (static_cast<int>(offset) < instruction_size()) {
|
|
|
|
|
unsigned* address =
|
|
|
|
|
reinterpret_cast<unsigned*>(instruction_start() + offset);
|
|
|
|
|
unsigned length = address[0];
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "Stack checks (size = %u)\n", length);
|
|
|
|
|
PrintF(out, "ast_id pc_offset\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
for (unsigned i = 0; i < length; ++i) {
|
|
|
|
|
unsigned index = (2 * i) + 1;
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "%6u %9u\n", address[index], address[index + 1]);
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, "\n");
|
2010-12-07 11:31:57 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-08-13 09:32:07 +00:00
|
|
|
PrintF("RelocInfo (size = %d)\n", relocation_size());
|
2010-12-20 10:38:19 +00:00
|
|
|
for (RelocIterator it(this); !it.done(); it.next()) it.rinfo()->Print(out);
|
|
|
|
|
PrintF(out, "\n");
|
2008-08-13 09:32:07 +00:00
|
|
|
}
|
2008-08-06 10:02:49 +00:00
|
|
|
#endif // ENABLE_DISASSEMBLER
|
|
|
|
|
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
static void CopyFastElementsToFast(FixedArray* source,
|
|
|
|
|
FixedArray* destination,
|
|
|
|
|
WriteBarrierMode mode) {
|
|
|
|
|
uint32_t count = static_cast<uint32_t>(source->length());
|
|
|
|
|
for (uint32_t i = 0; i < count; ++i) {
|
|
|
|
|
destination->set(i, source->get(i), mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static void CopySlowElementsToFast(NumberDictionary* source,
|
|
|
|
|
FixedArray* destination,
|
|
|
|
|
WriteBarrierMode mode) {
|
|
|
|
|
for (int i = 0; i < source->Capacity(); ++i) {
|
|
|
|
|
Object* key = source->KeyAt(i);
|
|
|
|
|
if (key->IsNumber()) {
|
|
|
|
|
uint32_t entry = static_cast<uint32_t>(key->Number());
|
|
|
|
|
destination->set(entry, source->ValueAt(i), mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetFastElementsCapacityAndLength(int capacity,
|
|
|
|
|
int length) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
2011-03-09 15:01:16 +00:00
|
|
|
ASSERT(!HasExternalArrayElements());
|
2010-06-24 13:56:35 +00:00
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Allocate a new fast elements backing store.
|
|
|
|
|
FixedArray* new_elements = NULL;
|
|
|
|
|
{ Object* object;
|
|
|
|
|
MaybeObject* maybe = heap->AllocateFixedArrayWithHoles(capacity);
|
|
|
|
|
if (!maybe->ToObject(&object)) return maybe;
|
|
|
|
|
new_elements = FixedArray::cast(object);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2010-06-24 13:56:35 +00:00
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Find the new map to use for this object if there is a map change.
|
|
|
|
|
Map* new_map = NULL;
|
|
|
|
|
if (elements()->map() != heap->non_strict_arguments_elements_map()) {
|
|
|
|
|
Object* object;
|
|
|
|
|
MaybeObject* maybe = map()->GetFastElementsMap();
|
|
|
|
|
if (!maybe->ToObject(&object)) return maybe;
|
|
|
|
|
new_map = Map::cast(object);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2010-06-24 13:56:35 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
2011-07-13 13:50:27 +00:00
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = new_elements->GetWriteBarrierMode(no_gc);
|
2011-06-16 14:12:58 +00:00
|
|
|
CopyFastElementsToFast(FixedArray::cast(elements()), new_elements, mode);
|
|
|
|
|
set_map(new_map);
|
|
|
|
|
set_elements(new_elements);
|
|
|
|
|
break;
|
2011-07-13 13:50:27 +00:00
|
|
|
}
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = new_elements->GetWriteBarrierMode(no_gc);
|
2011-06-16 14:12:58 +00:00
|
|
|
CopySlowElementsToFast(NumberDictionary::cast(elements()),
|
|
|
|
|
new_elements,
|
|
|
|
|
mode);
|
|
|
|
|
set_map(new_map);
|
|
|
|
|
set_elements(new_elements);
|
|
|
|
|
break;
|
2011-07-13 13:50:27 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
2011-07-13 13:50:27 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = new_elements->GetWriteBarrierMode(no_gc);
|
2011-06-16 14:12:58 +00:00
|
|
|
// The object's map and the parameter map are unchanged, the unaliased
|
|
|
|
|
// arguments are copied to the new backing store.
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
if (arguments->IsDictionary()) {
|
|
|
|
|
CopySlowElementsToFast(NumberDictionary::cast(arguments),
|
|
|
|
|
new_elements,
|
|
|
|
|
mode);
|
|
|
|
|
} else {
|
|
|
|
|
CopyFastElementsToFast(arguments, new_elements, mode);
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
parameter_map->set(1, new_elements);
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-06-09 10:03:35 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
FixedDoubleArray* old_elements = FixedDoubleArray::cast(elements());
|
|
|
|
|
uint32_t old_length = static_cast<uint32_t>(old_elements->length());
|
|
|
|
|
// Fill out the new array with this content and array holes.
|
|
|
|
|
for (uint32_t i = 0; i < old_length; i++) {
|
|
|
|
|
if (!old_elements->is_the_hole(i)) {
|
|
|
|
|
Object* obj;
|
|
|
|
|
// Objects must be allocated in the old object space, since the
|
|
|
|
|
// overall number of HeapNumbers needed for the conversion might
|
|
|
|
|
// exceed the capacity of new space, and we would fail repeatedly
|
|
|
|
|
// trying to convert the FixedDoubleArray.
|
|
|
|
|
MaybeObject* maybe_value_object =
|
2011-08-03 11:12:46 +00:00
|
|
|
GetHeap()->AllocateHeapNumber(old_elements->get_scalar(i),
|
|
|
|
|
TENURED);
|
2011-06-09 10:03:35 +00:00
|
|
|
if (!maybe_value_object->ToObject(&obj)) return maybe_value_object;
|
|
|
|
|
// Force write barrier. It's not worth trying to exploit
|
|
|
|
|
// elems->GetWriteBarrierMode(), since it requires an
|
|
|
|
|
// AssertNoAllocation stack object that would have to be positioned
|
|
|
|
|
// after the HeapNumber allocation anyway.
|
2011-06-16 14:12:58 +00:00
|
|
|
new_elements->set(i, obj, UPDATE_WRITE_BARRIER);
|
2011-06-09 10:03:35 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-07-13 13:50:27 +00:00
|
|
|
set_map(new_map);
|
|
|
|
|
set_elements(new_elements);
|
2011-06-09 10:03:35 +00:00
|
|
|
break;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-06-24 13:56:35 +00:00
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
// Update the length if necessary.
|
2010-06-24 13:56:35 +00:00
|
|
|
if (IsJSArray()) {
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(length));
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
return new_elements;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-09 10:03:35 +00:00
|
|
|
MaybeObject* JSObject::SetFastDoubleElementsCapacityAndLength(
|
|
|
|
|
int capacity,
|
|
|
|
|
int length) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
// We should never end in here with a pixel or external array.
|
|
|
|
|
ASSERT(!HasExternalArrayElements());
|
|
|
|
|
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
heap->AllocateUninitializedFixedDoubleArray(capacity);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
FixedDoubleArray* elems = FixedDoubleArray::cast(obj);
|
|
|
|
|
|
|
|
|
|
{ MaybeObject* maybe_obj = map()->GetFastDoubleElementsMap();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
Map* new_map = Map::cast(obj);
|
|
|
|
|
|
|
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
elems->Initialize(FixedArray::cast(elements()));
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
elems->Initialize(FixedDoubleArray::cast(elements()));
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
elems->Initialize(NumberDictionary::cast(elements()));
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2011-07-13 13:50:27 +00:00
|
|
|
ASSERT(new_map->has_fast_double_elements());
|
2011-06-09 10:03:35 +00:00
|
|
|
set_map(new_map);
|
2011-07-13 13:50:27 +00:00
|
|
|
ASSERT(elems->IsFixedDoubleArray());
|
2011-06-09 10:03:35 +00:00
|
|
|
set_elements(elems);
|
|
|
|
|
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(length));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetSlowElements(Object* len) {
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
2011-03-09 15:01:16 +00:00
|
|
|
ASSERT(!HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t new_length = static_cast<uint32_t>(len->Number());
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
2011-07-22 09:04:16 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
// Make sure we never try to shrink dense arrays into sparse arrays.
|
2011-07-22 09:04:16 +00:00
|
|
|
ASSERT(static_cast<uint32_t>(
|
|
|
|
|
FixedArrayBase::cast(elements())->length()) <= new_length);
|
2011-06-16 14:12:58 +00:00
|
|
|
MaybeObject* result = NormalizeElements();
|
|
|
|
|
if (result->IsFailure()) return result;
|
2009-07-28 09:05:05 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
// Update length for JSArrays.
|
|
|
|
|
if (IsJSArray()) JSArray::cast(this)->set_length(len);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
uint32_t old_length =
|
2010-03-03 13:16:10 +00:00
|
|
|
static_cast<uint32_t>(JSArray::cast(this)->length()->Number());
|
2009-07-28 08:43:51 +00:00
|
|
|
element_dictionary()->RemoveNumberEntries(new_length, old_length),
|
|
|
|
|
JSArray::cast(this)->set_length(len);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
|
|
|
|
UNIMPLEMENTED();
|
|
|
|
|
break;
|
|
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSArray::Initialize(int capacity) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(capacity >= 0);
|
2010-01-29 11:46:55 +00:00
|
|
|
set_length(Smi::FromInt(0));
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* new_elements;
|
|
|
|
|
if (capacity == 0) {
|
2011-03-18 20:35:07 +00:00
|
|
|
new_elements = heap->empty_fixed_array();
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = heap->AllocateFixedArrayWithHoles(capacity);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
new_elements = FixedArray::cast(obj);
|
|
|
|
|
}
|
|
|
|
|
set_elements(new_elements);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-06-17 10:55:58 +00:00
|
|
|
void JSArray::Expand(int required_size) {
|
2009-03-11 14:00:55 +00:00
|
|
|
Handle<JSArray> self(this);
|
2009-07-28 08:43:51 +00:00
|
|
|
Handle<FixedArray> old_backing(FixedArray::cast(elements()));
|
2009-03-11 14:00:55 +00:00
|
|
|
int old_size = old_backing->length();
|
2009-11-20 10:11:45 +00:00
|
|
|
int new_size = required_size > old_size ? required_size : old_size;
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<FixedArray> new_backing = FACTORY->NewFixedArray(new_size);
|
2009-03-11 14:00:55 +00:00
|
|
|
// Can't use this any more now because we may have had a GC!
|
|
|
|
|
for (int i = 0; i < old_size; i++) new_backing->set(i, old_backing->get(i));
|
|
|
|
|
self->SetContent(*new_backing);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
static Failure* ArrayLengthRangeError(Heap* heap) {
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->isolate()->Throw(
|
|
|
|
|
*FACTORY->NewRangeError("invalid_array_length",
|
|
|
|
|
HandleVector<Object>(NULL, 0)));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetElementsLength(Object* len) {
|
2009-10-20 15:26:17 +00:00
|
|
|
// We should never end in here with a pixel or external array.
|
2010-02-18 17:30:32 +00:00
|
|
|
ASSERT(AllowsSetElementsLength());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* maybe_smi_length = len->ToSmi();
|
|
|
|
|
Object* smi_length = Smi::FromInt(0);
|
|
|
|
|
if (maybe_smi_length->ToObject(&smi_length) && smi_length->IsSmi()) {
|
2010-06-24 13:56:35 +00:00
|
|
|
const int value = Smi::cast(smi_length)->value();
|
2011-03-31 10:55:53 +00:00
|
|
|
if (value < 0) return ArrayLengthRangeError(GetHeap());
|
2011-07-20 09:11:38 +00:00
|
|
|
JSObject::ElementsKind elements_kind = GetElementsKind();
|
|
|
|
|
switch (elements_kind) {
|
|
|
|
|
case FAST_ELEMENTS:
|
|
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
int old_capacity = FixedArrayBase::cast(elements())->length();
|
2009-07-28 08:43:51 +00:00
|
|
|
if (value <= old_capacity) {
|
|
|
|
|
if (IsJSArray()) {
|
2011-07-19 16:34:17 +00:00
|
|
|
Object* obj;
|
2011-07-20 09:11:38 +00:00
|
|
|
if (elements_kind == FAST_ELEMENTS) {
|
|
|
|
|
MaybeObject* maybe_obj = EnsureWritableFastElements();
|
2011-07-19 16:34:17 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2011-06-23 11:22:21 +00:00
|
|
|
if (2 * value <= old_capacity) {
|
|
|
|
|
// If more than half the elements won't be used, trim the array.
|
|
|
|
|
if (value == 0) {
|
|
|
|
|
initialize_elements();
|
|
|
|
|
} else {
|
2011-07-20 09:11:38 +00:00
|
|
|
Address filler_start;
|
|
|
|
|
int filler_size;
|
|
|
|
|
if (GetElementsKind() == FAST_ELEMENTS) {
|
|
|
|
|
FixedArray* fast_elements = FixedArray::cast(elements());
|
|
|
|
|
fast_elements->set_length(value);
|
|
|
|
|
filler_start = fast_elements->address() +
|
|
|
|
|
FixedArray::OffsetOfElementAt(value);
|
|
|
|
|
filler_size = (old_capacity - value) * kPointerSize;
|
|
|
|
|
} else {
|
|
|
|
|
ASSERT(GetElementsKind() == FAST_DOUBLE_ELEMENTS);
|
|
|
|
|
FixedDoubleArray* fast_double_elements =
|
|
|
|
|
FixedDoubleArray::cast(elements());
|
|
|
|
|
fast_double_elements->set_length(value);
|
|
|
|
|
filler_start = fast_double_elements->address() +
|
|
|
|
|
FixedDoubleArray::OffsetOfElementAt(value);
|
|
|
|
|
filler_size = (old_capacity - value) * kDoubleSize;
|
|
|
|
|
}
|
2011-06-23 11:22:21 +00:00
|
|
|
GetHeap()->CreateFillerObjectAt(filler_start, filler_size);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Otherwise, fill the unused tail with holes.
|
|
|
|
|
int old_length = FastD2I(JSArray::cast(this)->length()->Number());
|
2011-07-20 09:11:38 +00:00
|
|
|
if (GetElementsKind() == FAST_ELEMENTS) {
|
|
|
|
|
FixedArray* fast_elements = FixedArray::cast(elements());
|
|
|
|
|
for (int i = value; i < old_length; i++) {
|
|
|
|
|
fast_elements->set_the_hole(i);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
ASSERT(GetElementsKind() == FAST_DOUBLE_ELEMENTS);
|
|
|
|
|
FixedDoubleArray* fast_double_elements =
|
|
|
|
|
FixedDoubleArray::cast(elements());
|
|
|
|
|
for (int i = value; i < old_length; i++) {
|
|
|
|
|
fast_double_elements->set_the_hole(i);
|
|
|
|
|
}
|
2011-06-23 11:22:21 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::cast(smi_length));
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
int min = NewElementsCapacity(old_capacity);
|
|
|
|
|
int new_capacity = value > min ? value : min;
|
2011-07-20 15:14:50 +00:00
|
|
|
if (!ShouldConvertToSlowElements(new_capacity)) {
|
2011-07-20 09:11:38 +00:00
|
|
|
MaybeObject* result;
|
|
|
|
|
if (GetElementsKind() == FAST_ELEMENTS) {
|
|
|
|
|
result = SetFastElementsCapacityAndLength(new_capacity, value);
|
|
|
|
|
} else {
|
|
|
|
|
ASSERT(GetElementsKind() == FAST_DOUBLE_ELEMENTS);
|
|
|
|
|
result = SetFastDoubleElementsCapacityAndLength(new_capacity,
|
|
|
|
|
value);
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
if (result->IsFailure()) return result;
|
2009-07-28 08:43:51 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case DICTIONARY_ELEMENTS: {
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsJSArray()) {
|
2009-07-28 08:43:51 +00:00
|
|
|
if (value == 0) {
|
|
|
|
|
// If the length of a slow array is reset to zero, we clear
|
|
|
|
|
// the array and flush backing storage. This has the added
|
|
|
|
|
// benefit that the array returns to fast mode.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = ResetElements();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
} else {
|
|
|
|
|
// Remove deleted elements.
|
|
|
|
|
uint32_t old_length =
|
|
|
|
|
static_cast<uint32_t>(JSArray::cast(this)->length()->Number());
|
|
|
|
|
element_dictionary()->RemoveNumberEntries(value, old_length);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::cast(smi_length));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return this;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
|
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// General slow case.
|
|
|
|
|
if (len->IsNumber()) {
|
|
|
|
|
uint32_t length;
|
2010-05-27 12:30:45 +00:00
|
|
|
if (len->ToArrayIndex(&length)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
return SetSlowElements(len);
|
|
|
|
|
} else {
|
2011-03-31 10:55:53 +00:00
|
|
|
return ArrayLengthRangeError(GetHeap());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// len is not a number so make the array size one and
|
|
|
|
|
// set only element to len.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_obj = GetHeap()->AllocateFixedArray(1);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray::cast(obj)->set(0, len);
|
2010-01-29 11:46:55 +00:00
|
|
|
if (IsJSArray()) JSArray::cast(this)->set_length(Smi::FromInt(1));
|
2008-07-03 15:10:15 +00:00
|
|
|
set_elements(FixedArray::cast(obj));
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-04-26 09:44:55 +00:00
|
|
|
Object* Map::GetPrototypeTransition(Object* prototype) {
|
|
|
|
|
FixedArray* cache = prototype_transitions();
|
2011-06-03 14:48:09 +00:00
|
|
|
int number_of_transitions = NumberOfProtoTransitions();
|
|
|
|
|
const int proto_offset =
|
|
|
|
|
kProtoTransitionHeaderSize + kProtoTransitionPrototypeOffset;
|
|
|
|
|
const int map_offset = kProtoTransitionHeaderSize + kProtoTransitionMapOffset;
|
|
|
|
|
const int step = kProtoTransitionElementsPerEntry;
|
|
|
|
|
for (int i = 0; i < number_of_transitions; i++) {
|
|
|
|
|
if (cache->get(proto_offset + i * step) == prototype) {
|
|
|
|
|
Object* map = cache->get(map_offset + i * step);
|
|
|
|
|
ASSERT(map->IsMap());
|
|
|
|
|
return map;
|
|
|
|
|
}
|
2011-04-26 09:44:55 +00:00
|
|
|
}
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* Map::PutPrototypeTransition(Object* prototype, Map* map) {
|
2011-06-03 14:48:09 +00:00
|
|
|
ASSERT(map->IsMap());
|
|
|
|
|
ASSERT(HeapObject::cast(prototype)->map()->IsMap());
|
2011-04-26 09:44:55 +00:00
|
|
|
// Don't cache prototype transition if this map is shared.
|
|
|
|
|
if (is_shared() || !FLAG_cache_prototype_transitions) return this;
|
|
|
|
|
|
|
|
|
|
FixedArray* cache = prototype_transitions();
|
|
|
|
|
|
2011-06-03 14:48:09 +00:00
|
|
|
const int step = kProtoTransitionElementsPerEntry;
|
|
|
|
|
const int header = kProtoTransitionHeaderSize;
|
|
|
|
|
|
|
|
|
|
int capacity = (cache->length() - header) / step;
|
2011-04-26 09:44:55 +00:00
|
|
|
|
2011-06-03 14:48:09 +00:00
|
|
|
int transitions = NumberOfProtoTransitions() + 1;
|
2011-04-26 09:44:55 +00:00
|
|
|
|
2011-06-03 14:48:09 +00:00
|
|
|
if (transitions > capacity) {
|
2011-04-26 09:44:55 +00:00
|
|
|
if (capacity > kMaxCachedPrototypeTransitions) return this;
|
|
|
|
|
|
|
|
|
|
FixedArray* new_cache;
|
2011-06-03 14:48:09 +00:00
|
|
|
// Grow array by factor 2 over and above what we need.
|
|
|
|
|
{ MaybeObject* maybe_cache =
|
|
|
|
|
heap()->AllocateFixedArray(transitions * 2 * step + header);
|
2011-04-26 09:44:55 +00:00
|
|
|
if (!maybe_cache->To<FixedArray>(&new_cache)) return maybe_cache;
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-03 14:48:09 +00:00
|
|
|
for (int i = 0; i < capacity * step; i++) {
|
|
|
|
|
new_cache->set(i + header, cache->get(i + header));
|
|
|
|
|
}
|
2011-04-26 09:44:55 +00:00
|
|
|
cache = new_cache;
|
|
|
|
|
set_prototype_transitions(cache);
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-03 14:48:09 +00:00
|
|
|
int last = transitions - 1;
|
|
|
|
|
|
|
|
|
|
cache->set(header + last * step + kProtoTransitionPrototypeOffset, prototype);
|
|
|
|
|
cache->set(header + last * step + kProtoTransitionMapOffset, map);
|
|
|
|
|
SetNumberOfProtoTransitions(transitions);
|
2011-04-26 09:44:55 +00:00
|
|
|
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
MaybeObject* JSReceiver::SetPrototype(Object* value,
|
|
|
|
|
bool skip_hidden_prototypes) {
|
2011-06-03 14:48:09 +00:00
|
|
|
#ifdef DEBUG
|
|
|
|
|
int size = Size();
|
|
|
|
|
#endif
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2010-02-10 14:44:15 +00:00
|
|
|
// Silently ignore the change if value is not a JSObject or null.
|
|
|
|
|
// SpiderMonkey behaves this way.
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
if (!value->IsJSReceiver() && !value->IsNull()) return value;
|
2010-02-10 14:44:15 +00:00
|
|
|
|
2011-04-06 16:22:06 +00:00
|
|
|
// From 8.6.2 Object Internal Methods
|
|
|
|
|
// ...
|
|
|
|
|
// In addition, if [[Extensible]] is false the value of the [[Class]] and
|
|
|
|
|
// [[Prototype]] internal properties of the object may not be modified.
|
|
|
|
|
// ...
|
|
|
|
|
// Implementation specific extensions that modify [[Class]], [[Prototype]]
|
|
|
|
|
// or [[Extensible]] must not violate the invariants defined in the preceding
|
|
|
|
|
// paragraph.
|
|
|
|
|
if (!this->map()->is_extensible()) {
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
2011-04-06 16:22:06 +00:00
|
|
|
Handle<Object> handle(this, heap->isolate());
|
|
|
|
|
return heap->isolate()->Throw(
|
|
|
|
|
*FACTORY->NewTypeError("non_extensible_proto",
|
|
|
|
|
HandleVector<Object>(&handle, 1)));
|
|
|
|
|
}
|
|
|
|
|
|
2010-02-10 14:44:15 +00:00
|
|
|
// Before we can set the prototype we need to be sure
|
|
|
|
|
// prototype cycles are prevented.
|
|
|
|
|
// It is sufficient to validate that the receiver is not in the new prototype
|
|
|
|
|
// chain.
|
2011-03-18 20:35:07 +00:00
|
|
|
for (Object* pt = value; pt != heap->null_value(); pt = pt->GetPrototype()) {
|
2010-02-10 14:44:15 +00:00
|
|
|
if (JSObject::cast(pt) == this) {
|
|
|
|
|
// Cycle detected.
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->isolate()->Throw(
|
|
|
|
|
*FACTORY->NewError("cyclic_proto", HandleVector<Object>(NULL, 0)));
|
2010-02-10 14:44:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
JSReceiver* real_receiver = this;
|
2010-02-10 14:44:15 +00:00
|
|
|
|
|
|
|
|
if (skip_hidden_prototypes) {
|
|
|
|
|
// Find the first object in the chain whose prototype object is not
|
|
|
|
|
// hidden and set the new prototype on that object.
|
|
|
|
|
Object* current_proto = real_receiver->GetPrototype();
|
|
|
|
|
while (current_proto->IsJSObject() &&
|
|
|
|
|
JSObject::cast(current_proto)->map()->is_hidden_prototype()) {
|
|
|
|
|
real_receiver = JSObject::cast(current_proto);
|
|
|
|
|
current_proto = current_proto->GetPrototype();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Set the new prototype of the object.
|
2011-04-26 09:44:55 +00:00
|
|
|
Map* map = real_receiver->map();
|
|
|
|
|
|
|
|
|
|
// Nothing to do if prototype is already set.
|
|
|
|
|
if (map->prototype() == value) return value;
|
|
|
|
|
|
|
|
|
|
Object* new_map = map->GetPrototypeTransition(value);
|
|
|
|
|
if (new_map == NULL) {
|
|
|
|
|
{ MaybeObject* maybe_new_map = map->CopyDropTransitions();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
{ MaybeObject* maybe_new_cache =
|
|
|
|
|
map->PutPrototypeTransition(value, Map::cast(new_map));
|
|
|
|
|
if (maybe_new_cache->IsFailure()) return maybe_new_cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Map::cast(new_map)->set_prototype(value);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2011-04-26 09:44:55 +00:00
|
|
|
ASSERT(Map::cast(new_map)->prototype() == value);
|
2010-02-10 14:44:15 +00:00
|
|
|
real_receiver->set_map(Map::cast(new_map));
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->ClearInstanceofCache();
|
2011-06-03 14:48:09 +00:00
|
|
|
ASSERT(size == Size());
|
2010-02-10 14:44:15 +00:00
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
bool JSObject::HasElementPostInterceptor(JSReceiver* receiver, uint32_t index) {
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole()) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-07-22 09:04:16 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedDoubleArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedDoubleArray::cast(elements())->is_the_hole(index)) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
ExternalPixelArray* pixels = ExternalPixelArray::cast(elements());
|
2009-07-28 08:43:51 +00:00
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
2011-07-22 09:04:16 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
2009-10-20 15:26:17 +00:00
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
2009-07-28 08:43:51 +00:00
|
|
|
UNREACHABLE();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
|
|
|
|
Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (pt->IsNull()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
return JSObject::cast(pt)->HasElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
bool JSObject::HasElementWithInterceptor(JSReceiver* receiver, uint32_t index) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
Handle<JSReceiver> receiver_handle(receiver);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<JSObject> holder_handle(this);
|
2011-03-18 20:35:07 +00:00
|
|
|
CustomArguments args(isolate, interceptor->data(), receiver, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->query()->IsUndefined()) {
|
2010-08-16 11:53:52 +00:00
|
|
|
v8::IndexedPropertyQuery query =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyQuery>(interceptor->query());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiIndexedPropertyAccess("interceptor-indexed-has", this, index));
|
2010-08-16 11:53:52 +00:00
|
|
|
v8::Handle<v8::Integer> result;
|
2008-07-03 15:10:15 +00:00
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = query(index, info);
|
|
|
|
|
}
|
2010-08-10 10:05:18 +00:00
|
|
|
if (!result.IsEmpty()) {
|
2010-08-16 11:53:52 +00:00
|
|
|
ASSERT(result->IsInt32());
|
|
|
|
|
return true; // absence of property is signaled by empty handle.
|
2010-08-10 10:05:18 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyGetter>(interceptor->getter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiIndexedPropertyAccess("interceptor-indexed-has-get", this, index));
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(index, info);
|
|
|
|
|
}
|
2009-04-16 11:30:55 +00:00
|
|
|
if (!result.IsEmpty()) return true;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return holder_handle->HasElementPostInterceptor(*receiver_handle, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-09-23 11:25:01 +00:00
|
|
|
JSObject::LocalElementType JSObject::HasLocalElement(uint32_t index) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return UNDEFINED_ELEMENT;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2011-02-03 10:19:41 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return UNDEFINED_ELEMENT;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
|
|
|
|
return JSObject::cast(proto)->HasLocalElement(index);
|
|
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
2010-09-23 11:25:01 +00:00
|
|
|
return HasElementWithInterceptor(this, index) ? INTERCEPTED_ELEMENT
|
|
|
|
|
: UNDEFINED_ELEMENT;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
2010-09-23 11:25:01 +00:00
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) {
|
|
|
|
|
return STRING_CHARACTER_ELEMENT;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
2010-09-23 11:25:01 +00:00
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole()) {
|
|
|
|
|
return FAST_ELEMENT;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2011-07-20 13:41:50 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedDoubleArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedDoubleArray::cast(elements())->is_the_hole(index)) {
|
|
|
|
|
return FAST_ELEMENT;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
ExternalPixelArray* pixels = ExternalPixelArray::cast(elements());
|
2010-09-23 11:25:01 +00:00
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) return FAST_ELEMENT;
|
|
|
|
|
break;
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
2009-10-20 15:26:17 +00:00
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
2010-09-23 11:25:01 +00:00
|
|
|
if (index < static_cast<uint32_t>(array->length())) return FAST_ELEMENT;
|
|
|
|
|
break;
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
2010-09-23 11:25:01 +00:00
|
|
|
if (element_dictionary()->FindEntry(index) !=
|
2011-06-16 14:12:58 +00:00
|
|
|
NumberDictionary::kNotFound) {
|
2010-09-23 11:25:01 +00:00
|
|
|
return DICTIONARY_ELEMENT;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
// Aliased parameters and non-aliased elements in a fast backing store
|
|
|
|
|
// behave as FAST_ELEMENT. Non-aliased elements in a dictionary
|
|
|
|
|
// backing store behave as DICTIONARY_ELEMENT.
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
uint32_t length = parameter_map->length();
|
|
|
|
|
Object* probe =
|
2011-06-21 09:27:38 +00:00
|
|
|
index < (length - 2) ? parameter_map->get(index + 2) : NULL;
|
2011-06-16 14:12:58 +00:00
|
|
|
if (probe != NULL && !probe->IsTheHole()) return FAST_ELEMENT;
|
|
|
|
|
// If not aliased, check the arguments.
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
if (arguments->IsDictionary()) {
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(arguments);
|
|
|
|
|
if (dictionary->FindEntry(index) != NumberDictionary::kNotFound) {
|
|
|
|
|
return DICTIONARY_ELEMENT;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
length = arguments->length();
|
|
|
|
|
probe = (index < length) ? arguments->get(index) : NULL;
|
|
|
|
|
if (probe != NULL && !probe->IsTheHole()) return FAST_ELEMENT;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-09-23 11:25:01 +00:00
|
|
|
|
|
|
|
|
return UNDEFINED_ELEMENT;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
bool JSObject::HasElementInElements(FixedArray* elements,
|
|
|
|
|
ElementsKind kind,
|
|
|
|
|
uint32_t index) {
|
|
|
|
|
ASSERT(kind == FAST_ELEMENTS || kind == DICTIONARY_ELEMENTS);
|
|
|
|
|
if (kind == FAST_ELEMENTS) {
|
|
|
|
|
int length = IsJSArray()
|
|
|
|
|
? Smi::cast(JSArray::cast(this)->length())->value()
|
|
|
|
|
: elements->length();
|
|
|
|
|
if (index < static_cast<uint32_t>(length) &&
|
|
|
|
|
!elements->get(index)->IsTheHole()) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (NumberDictionary::cast(elements)->FindEntry(index) !=
|
|
|
|
|
NumberDictionary::kNotFound) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
bool JSObject::HasElementWithReceiver(JSReceiver* receiver, uint32_t index) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
|
|
|
|
return HasElementWithInterceptor(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
ElementsKind kind = GetElementsKind();
|
|
|
|
|
switch (kind) {
|
2009-07-28 08:43:51 +00:00
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole()) return true;
|
|
|
|
|
break;
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
2011-07-20 10:54:58 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>
|
|
|
|
|
(Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedDoubleArray::cast(elements())->length());
|
|
|
|
|
if ((index < length) &&
|
|
|
|
|
!FixedDoubleArray::cast(elements())->is_the_hole(index)) return true;
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
ExternalPixelArray* pixels = ExternalPixelArray::cast(elements());
|
2009-07-28 08:43:51 +00:00
|
|
|
if (index < static_cast<uint32_t>(pixels->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
2009-10-20 15:26:17 +00:00
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
if (index < static_cast<uint32_t>(array->length())) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
uint32_t length = parameter_map->length();
|
|
|
|
|
Object* probe =
|
2011-06-21 09:27:38 +00:00
|
|
|
(index < length - 2) ? parameter_map->get(index + 2) : NULL;
|
2011-06-16 14:12:58 +00:00
|
|
|
if (probe != NULL && !probe->IsTheHole()) return true;
|
|
|
|
|
|
|
|
|
|
// Not a mapped parameter, check the arguments.
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
kind = arguments->IsDictionary() ? DICTIONARY_ELEMENTS : FAST_ELEMENTS;
|
|
|
|
|
if (HasElementInElements(arguments, kind, index)) return true;
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
|
|
|
|
Object* pt = GetPrototype();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (pt->IsNull()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
return JSObject::cast(pt)->HasElementWithReceiver(receiver, index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetElementWithInterceptor(uint32_t index,
|
2011-01-04 12:19:55 +00:00
|
|
|
Object* value,
|
2011-03-04 00:21:52 +00:00
|
|
|
StrictModeFlag strict_mode,
|
2011-01-04 12:19:55 +00:00
|
|
|
bool check_prototype) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor());
|
|
|
|
|
Handle<JSObject> this_handle(this);
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> value_handle(value, isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->setter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertySetter setter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertySetter>(interceptor->setter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiIndexedPropertyAccess("interceptor-indexed-set", this, index));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), this, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = setter(index, v8::Utils::ToLocal(value_handle), info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!result.IsEmpty()) return *value_handle;
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* raw_result =
|
2011-01-04 12:19:55 +00:00
|
|
|
this_handle->SetElementWithoutInterceptor(index,
|
|
|
|
|
*value_handle,
|
2011-03-04 00:21:52 +00:00
|
|
|
strict_mode,
|
2011-01-04 12:19:55 +00:00
|
|
|
check_prototype);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
return raw_result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::GetElementWithCallback(Object* receiver,
|
|
|
|
|
Object* structure,
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Object* holder) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2011-05-19 11:47:34 +00:00
|
|
|
ASSERT(!structure->IsForeign());
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// api style callbacks.
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
2011-05-16 09:06:16 +00:00
|
|
|
Handle<AccessorInfo> data(AccessorInfo::cast(structure));
|
2010-05-25 12:14:49 +00:00
|
|
|
Object* fun_obj = data->getter();
|
|
|
|
|
v8::AccessorGetter call_fun = v8::ToCData<v8::AccessorGetter>(fun_obj);
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2010-05-25 12:14:49 +00:00
|
|
|
Handle<JSObject> self(JSObject::cast(receiver));
|
|
|
|
|
Handle<JSObject> holder_handle(JSObject::cast(holder));
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> number = isolate->factory()->NewNumberFromUint(index);
|
2011-06-16 14:12:58 +00:00
|
|
|
Handle<String> key = isolate->factory()->NumberToString(number);
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate, ApiNamedPropertyAccess("load", *self, *key));
|
|
|
|
|
CustomArguments args(isolate, data->data(), *self, *holder_handle);
|
2010-05-25 12:14:49 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
|
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2010-05-25 12:14:49 +00:00
|
|
|
result = call_fun(v8::Utils::ToLocal(key), info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
|
|
|
|
if (result.IsEmpty()) return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// __defineGetter__ callback
|
|
|
|
|
if (structure->IsFixedArray()) {
|
|
|
|
|
Object* getter = FixedArray::cast(structure)->get(kGetterIndex);
|
|
|
|
|
if (getter->IsJSFunction()) {
|
|
|
|
|
return Object::GetPropertyWithDefinedGetter(receiver,
|
|
|
|
|
JSFunction::cast(getter));
|
|
|
|
|
}
|
|
|
|
|
// Getter is not a function.
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->undefined_value();
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetElementWithCallback(Object* structure,
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Object* value,
|
2011-05-25 08:37:38 +00:00
|
|
|
JSObject* holder,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
HandleScope scope(isolate);
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// We should never get here to initialize a const with the hole
|
|
|
|
|
// value since a const declaration would conflict with the setter.
|
|
|
|
|
ASSERT(!value->IsTheHole());
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> value_handle(value, isolate);
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
// To accommodate both the old and the new api we switch on the
|
2011-05-19 11:47:34 +00:00
|
|
|
// data structure used to store the callbacks. Eventually foreign
|
2010-05-25 12:14:49 +00:00
|
|
|
// callbacks should be phased out.
|
2011-05-19 11:47:34 +00:00
|
|
|
ASSERT(!structure->IsForeign());
|
2010-05-25 12:14:49 +00:00
|
|
|
|
|
|
|
|
if (structure->IsAccessorInfo()) {
|
|
|
|
|
// api style callbacks
|
2011-05-16 09:06:16 +00:00
|
|
|
Handle<JSObject> self(this);
|
|
|
|
|
Handle<JSObject> holder_handle(JSObject::cast(holder));
|
|
|
|
|
Handle<AccessorInfo> data(AccessorInfo::cast(structure));
|
2010-05-25 12:14:49 +00:00
|
|
|
Object* call_obj = data->setter();
|
|
|
|
|
v8::AccessorSetter call_fun = v8::ToCData<v8::AccessorSetter>(call_obj);
|
|
|
|
|
if (call_fun == NULL) return value;
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> number = isolate->factory()->NewNumberFromUint(index);
|
|
|
|
|
Handle<String> key(isolate->factory()->NumberToString(number));
|
2011-05-16 09:06:16 +00:00
|
|
|
LOG(isolate, ApiNamedPropertyAccess("store", *self, *key));
|
|
|
|
|
CustomArguments args(isolate, data->data(), *self, *holder_handle);
|
2010-05-25 12:14:49 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2010-05-25 12:14:49 +00:00
|
|
|
call_fun(v8::Utils::ToLocal(key),
|
|
|
|
|
v8::Utils::ToLocal(value_handle),
|
|
|
|
|
info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2010-05-25 12:14:49 +00:00
|
|
|
return *value_handle;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (structure->IsFixedArray()) {
|
2011-05-25 08:37:38 +00:00
|
|
|
Handle<Object> setter(FixedArray::cast(structure)->get(kSetterIndex));
|
2010-05-25 12:14:49 +00:00
|
|
|
if (setter->IsJSFunction()) {
|
2011-05-25 08:37:38 +00:00
|
|
|
return SetPropertyWithDefinedSetter(JSFunction::cast(*setter), value);
|
2010-05-25 12:14:49 +00:00
|
|
|
} else {
|
2011-05-25 08:37:38 +00:00
|
|
|
if (strict_mode == kNonStrictMode) {
|
|
|
|
|
return value;
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<Object> holder_handle(holder, isolate);
|
|
|
|
|
Handle<Object> key(isolate->factory()->NewNumberFromUint(index));
|
2010-05-25 12:14:49 +00:00
|
|
|
Handle<Object> args[2] = { key, holder_handle };
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->Throw(
|
|
|
|
|
*isolate->factory()->NewTypeError("no_setter_in_callback",
|
|
|
|
|
HandleVector(args, 2)));
|
2010-05-25 12:14:49 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
bool JSObject::HasFastArgumentsElements() {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!elements()->IsFixedArray()) return false;
|
|
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
|
|
|
|
if (elements->map() != heap->non_strict_arguments_elements_map()) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(elements->get(1));
|
|
|
|
|
return !arguments->IsDictionary();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasDictionaryArgumentsElements() {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!elements()->IsFixedArray()) return false;
|
|
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
|
|
|
|
if (elements->map() != heap->non_strict_arguments_elements_map()) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(elements->get(1));
|
|
|
|
|
return arguments->IsDictionary();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Adding n elements in fast case is O(n*n).
|
|
|
|
|
// Note: revisit design to have dual undefined values to capture absent
|
|
|
|
|
// elements.
|
2011-01-04 12:19:55 +00:00
|
|
|
MaybeObject* JSObject::SetFastElement(uint32_t index,
|
|
|
|
|
Object* value,
|
2011-03-04 00:21:52 +00:00
|
|
|
StrictModeFlag strict_mode,
|
2011-01-04 12:19:55 +00:00
|
|
|
bool check_prototype) {
|
2011-06-16 14:12:58 +00:00
|
|
|
ASSERT(HasFastElements() || HasFastArgumentsElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
FixedArray* backing_store = FixedArray::cast(elements());
|
|
|
|
|
if (backing_store->map() == GetHeap()->non_strict_arguments_elements_map()) {
|
|
|
|
|
backing_store = FixedArray::cast(backing_store->get(1));
|
|
|
|
|
} else {
|
|
|
|
|
Object* writable;
|
|
|
|
|
MaybeObject* maybe = EnsureWritableFastElements();
|
|
|
|
|
if (!maybe->ToObject(&writable)) return maybe;
|
|
|
|
|
backing_store = FixedArray::cast(writable);
|
2010-10-25 15:22:03 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
uint32_t length = static_cast<uint32_t>(backing_store->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-01-04 13:59:34 +00:00
|
|
|
if (check_prototype &&
|
2011-06-16 14:12:58 +00:00
|
|
|
(index >= length || backing_store->get(index)->IsTheHole())) {
|
2011-02-08 19:42:14 +00:00
|
|
|
bool found;
|
2011-05-25 08:37:38 +00:00
|
|
|
MaybeObject* result = SetElementWithCallbackSetterInPrototypes(index,
|
|
|
|
|
value,
|
|
|
|
|
&found,
|
|
|
|
|
strict_mode);
|
2011-02-08 19:42:14 +00:00
|
|
|
if (found) return result;
|
2009-03-13 11:40:09 +00:00
|
|
|
}
|
|
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
// Check whether there is extra space in fixed array.
|
2011-06-16 14:12:58 +00:00
|
|
|
if (index < length) {
|
|
|
|
|
backing_store->set(index, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsJSArray()) {
|
|
|
|
|
// Update the length of the array if needed.
|
|
|
|
|
uint32_t array_length = 0;
|
2010-05-27 12:30:45 +00:00
|
|
|
CHECK(JSArray::cast(this)->length()->ToArrayIndex(&array_length));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (index >= array_length) {
|
2010-01-29 11:46:55 +00:00
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(index + 1));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-10-17 06:36:35 +00:00
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allow gap in fast case.
|
2011-06-16 14:12:58 +00:00
|
|
|
if ((index - length) < kMaxGap) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Try allocating extra space.
|
2011-06-16 14:12:58 +00:00
|
|
|
int new_capacity = NewElementsCapacity(index + 1);
|
2011-07-20 15:14:50 +00:00
|
|
|
if (!ShouldConvertToSlowElements(new_capacity)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(static_cast<uint32_t>(new_capacity) > index);
|
2011-06-16 14:12:58 +00:00
|
|
|
Object* new_elements;
|
|
|
|
|
MaybeObject* maybe =
|
|
|
|
|
SetFastElementsCapacityAndLength(new_capacity, index + 1);
|
|
|
|
|
if (!maybe->ToObject(&new_elements)) return maybe;
|
|
|
|
|
FixedArray::cast(new_elements)->set(index, value);
|
2008-10-17 06:36:35 +00:00
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Otherwise default to slow case.
|
2011-06-16 14:12:58 +00:00
|
|
|
MaybeObject* result = NormalizeElements();
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
return SetDictionaryElement(index, value, strict_mode, check_prototype);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* JSObject::SetDictionaryElement(uint32_t index,
|
|
|
|
|
Object* value,
|
|
|
|
|
StrictModeFlag strict_mode,
|
|
|
|
|
bool check_prototype) {
|
|
|
|
|
ASSERT(HasDictionaryElements() || HasDictionaryArgumentsElements());
|
|
|
|
|
Isolate* isolate = GetIsolate();
|
|
|
|
|
Heap* heap = isolate->heap();
|
|
|
|
|
|
|
|
|
|
// Insert element in the dictionary.
|
|
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
|
|
|
|
bool is_arguments =
|
|
|
|
|
(elements->map() == heap->non_strict_arguments_elements_map());
|
|
|
|
|
NumberDictionary* dictionary = NULL;
|
|
|
|
|
if (is_arguments) {
|
|
|
|
|
dictionary = NumberDictionary::cast(elements->get(1));
|
|
|
|
|
} else {
|
|
|
|
|
dictionary = NumberDictionary::cast(elements);
|
2011-06-15 15:09:28 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
|
|
|
|
|
int entry = dictionary->FindEntry(index);
|
|
|
|
|
if (entry != NumberDictionary::kNotFound) {
|
|
|
|
|
Object* element = dictionary->ValueAt(entry);
|
|
|
|
|
PropertyDetails details = dictionary->DetailsAt(entry);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
return SetElementWithCallback(element, index, value, this, strict_mode);
|
|
|
|
|
} else {
|
|
|
|
|
dictionary->UpdateMaxNumberKey(index);
|
|
|
|
|
// If put fails in strict mode, throw an exception.
|
|
|
|
|
if (!dictionary->ValueAtPut(entry, value) && strict_mode == kStrictMode) {
|
|
|
|
|
Handle<Object> holder(this);
|
2011-06-24 12:04:14 +00:00
|
|
|
Handle<Object> number = isolate->factory()->NewNumberFromUint(index);
|
2011-06-16 14:12:58 +00:00
|
|
|
Handle<Object> args[2] = { number, holder };
|
|
|
|
|
Handle<Object> error =
|
|
|
|
|
isolate->factory()->NewTypeError("strict_read_only_property",
|
|
|
|
|
HandleVector(args, 2));
|
|
|
|
|
return isolate->Throw(*error);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Index not already used. Look for an accessor in the prototype chain.
|
|
|
|
|
if (check_prototype) {
|
|
|
|
|
bool found;
|
|
|
|
|
MaybeObject* result =
|
|
|
|
|
SetElementWithCallbackSetterInPrototypes(
|
|
|
|
|
index, value, &found, strict_mode);
|
|
|
|
|
if (found) return result;
|
|
|
|
|
}
|
|
|
|
|
// When we set the is_extensible flag to false we always force the
|
|
|
|
|
// element into dictionary mode (and force them to stay there).
|
|
|
|
|
if (!map()->is_extensible()) {
|
|
|
|
|
if (strict_mode == kNonStrictMode) {
|
|
|
|
|
return isolate->heap()->undefined_value();
|
|
|
|
|
} else {
|
|
|
|
|
Handle<Object> number = isolate->factory()->NewNumberFromUint(index);
|
|
|
|
|
Handle<String> name = isolate->factory()->NumberToString(number);
|
|
|
|
|
Handle<Object> args[1] = { name };
|
|
|
|
|
Handle<Object> error =
|
|
|
|
|
isolate->factory()->NewTypeError("object_not_extensible",
|
|
|
|
|
HandleVector(args, 1));
|
|
|
|
|
return isolate->Throw(*error);
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-08-12 13:54:27 +00:00
|
|
|
FixedArrayBase* new_dictionary;
|
2011-06-16 14:12:58 +00:00
|
|
|
MaybeObject* maybe = dictionary->AtNumberPut(index, value);
|
2011-08-12 13:54:27 +00:00
|
|
|
if (!maybe->To<FixedArrayBase>(&new_dictionary)) return maybe;
|
2011-06-16 14:12:58 +00:00
|
|
|
if (dictionary != NumberDictionary::cast(new_dictionary)) {
|
|
|
|
|
if (is_arguments) {
|
|
|
|
|
elements->set(1, new_dictionary);
|
|
|
|
|
} else {
|
2011-08-12 13:54:27 +00:00
|
|
|
set_elements(new_dictionary);
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
|
|
|
|
dictionary = NumberDictionary::cast(new_dictionary);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the array length if this JSObject is an array.
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
MaybeObject* result =
|
|
|
|
|
JSArray::cast(this)->JSArrayUpdateLengthFromIndex(index, value);
|
|
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Attempt to put this object back in fast case.
|
|
|
|
|
if (ShouldConvertToFastElements()) {
|
|
|
|
|
uint32_t new_length = 0;
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
CHECK(JSArray::cast(this)->length()->ToArrayIndex(&new_length));
|
|
|
|
|
} else {
|
|
|
|
|
new_length = dictionary->max_number_key() + 1;
|
|
|
|
|
}
|
2011-07-26 13:56:21 +00:00
|
|
|
MaybeObject* result = CanConvertToFastDoubleElements()
|
2011-07-13 13:50:27 +00:00
|
|
|
? SetFastDoubleElementsCapacityAndLength(new_length, new_length)
|
|
|
|
|
: SetFastElementsCapacityAndLength(new_length, new_length);
|
2011-06-16 14:12:58 +00:00
|
|
|
if (result->IsFailure()) return result;
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
if (FLAG_trace_normalization) {
|
|
|
|
|
PrintF("Object elements are fast case again:\n");
|
|
|
|
|
Print();
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
}
|
|
|
|
|
return value;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2010-08-16 16:06:46 +00:00
|
|
|
|
2011-06-09 10:03:35 +00:00
|
|
|
MUST_USE_RESULT MaybeObject* JSObject::SetFastDoubleElement(
|
|
|
|
|
uint32_t index,
|
|
|
|
|
Object* value,
|
|
|
|
|
StrictModeFlag strict_mode,
|
|
|
|
|
bool check_prototype) {
|
|
|
|
|
ASSERT(HasFastDoubleElements());
|
|
|
|
|
|
|
|
|
|
FixedDoubleArray* elms = FixedDoubleArray::cast(elements());
|
|
|
|
|
uint32_t elms_length = static_cast<uint32_t>(elms->length());
|
|
|
|
|
|
|
|
|
|
// If storing to an element that isn't in the array, pass the store request
|
|
|
|
|
// up the prototype chain before storing in the receiver's elements.
|
|
|
|
|
if (check_prototype &&
|
|
|
|
|
(index >= elms_length || elms->is_the_hole(index))) {
|
|
|
|
|
bool found;
|
|
|
|
|
MaybeObject* result = SetElementWithCallbackSetterInPrototypes(index,
|
|
|
|
|
value,
|
|
|
|
|
&found,
|
|
|
|
|
strict_mode);
|
|
|
|
|
if (found) return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the value object is not a heap number, switch to fast elements and try
|
|
|
|
|
// again.
|
|
|
|
|
bool value_is_smi = value->IsSmi();
|
|
|
|
|
if (!value->IsNumber()) {
|
|
|
|
|
Object* obj;
|
|
|
|
|
uint32_t length = elms_length;
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
CHECK(JSArray::cast(this)->length()->ToArrayIndex(&length));
|
|
|
|
|
}
|
|
|
|
|
MaybeObject* maybe_obj =
|
|
|
|
|
SetFastElementsCapacityAndLength(elms_length, length);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
return SetFastElement(index, value, strict_mode, check_prototype);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
double double_value = value_is_smi
|
|
|
|
|
? static_cast<double>(Smi::cast(value)->value())
|
|
|
|
|
: HeapNumber::cast(value)->value();
|
|
|
|
|
|
|
|
|
|
// Check whether there is extra space in the fixed array.
|
|
|
|
|
if (index < elms_length) {
|
|
|
|
|
elms->set(index, double_value);
|
|
|
|
|
if (IsJSArray()) {
|
|
|
|
|
// Update the length of the array if needed.
|
|
|
|
|
uint32_t array_length = 0;
|
|
|
|
|
CHECK(JSArray::cast(this)->length()->ToArrayIndex(&array_length));
|
|
|
|
|
if (index >= array_length) {
|
|
|
|
|
JSArray::cast(this)->set_length(Smi::FromInt(index + 1));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allow gap in fast case.
|
|
|
|
|
if ((index - elms_length) < kMaxGap) {
|
|
|
|
|
// Try allocating extra space.
|
|
|
|
|
int new_capacity = NewElementsCapacity(index+1);
|
2011-07-20 15:14:50 +00:00
|
|
|
if (!ShouldConvertToSlowElements(new_capacity)) {
|
2011-06-09 10:03:35 +00:00
|
|
|
ASSERT(static_cast<uint32_t>(new_capacity) > index);
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
SetFastDoubleElementsCapacityAndLength(new_capacity,
|
|
|
|
|
index + 1);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
FixedDoubleArray::cast(elements())->set(index, double_value);
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Otherwise default to slow case.
|
2011-07-13 13:50:27 +00:00
|
|
|
ASSERT(HasFastDoubleElements());
|
|
|
|
|
ASSERT(map()->has_fast_double_elements());
|
|
|
|
|
ASSERT(elements()->IsFixedDoubleArray());
|
2011-06-09 10:03:35 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = NormalizeElements();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(HasDictionaryElements());
|
|
|
|
|
return SetElement(index, value, strict_mode, check_prototype);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-01-04 12:19:55 +00:00
|
|
|
MaybeObject* JSObject::SetElement(uint32_t index,
|
|
|
|
|
Object* value,
|
2011-03-04 00:21:52 +00:00
|
|
|
StrictModeFlag strict_mode,
|
2011-01-04 12:19:55 +00:00
|
|
|
bool check_prototype) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayIndexedAccess(this, index, v8::ACCESS_SET)) {
|
2011-07-15 09:10:20 +00:00
|
|
|
HandleScope scope(heap->isolate());
|
2011-03-31 10:55:53 +00:00
|
|
|
Handle<Object> value_handle(value);
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_SET);
|
|
|
|
|
return *value_handle;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
if (IsJSGlobalProxy()) {
|
|
|
|
|
Object* proto = GetPrototype();
|
|
|
|
|
if (proto->IsNull()) return value;
|
|
|
|
|
ASSERT(proto->IsJSGlobalObject());
|
2011-03-04 00:21:52 +00:00
|
|
|
return JSObject::cast(proto)->SetElement(index,
|
|
|
|
|
value,
|
|
|
|
|
strict_mode,
|
|
|
|
|
check_prototype);
|
Split window support from V8.
Here is a description of the background and design of split window in Chrome and V8:
https://docs.google.com/a/google.com/Doc?id=chhjkpg_47fwddxbfr
This change list splits the window object into two parts: 1) an inner window object used as the global object of contexts; 2) an outer window object exposed to JavaScript and accessible by the name 'window'. Firefox did it awhile ago, here are some discussions: https://wiki.mozilla.org/Gecko:SplitWindow. One additional benefit of splitting window in Chrome is that accessing global variables don't need security checks anymore, it can improve applications that use many global variables.
V8 support of split window:
There are a small number of changes on V8 api to support split window:
Security context is removed from V8, so does related API functions;
A global object can be detached from its context and reused by a new context;
Access checks on an object template can be turned on/off by default;
An object can turn on its access checks later;
V8 has a new object type, ApiGlobalObject, which is the outer window object type. The existing JSGlobalObject becomes the inner window object type. Security checks are moved from JSGlobalObject to ApiGlobalObject. ApiGlobalObject is the one exposed to JavaScript, it is accessible through Context::Global(). ApiGlobalObject's prototype is set to JSGlobalObject so that property lookups are forwarded to JSGlobalObject. ApiGlobalObject forwards all other property access requests to JSGlobalObject, such as SetProperty, DeleteProperty, etc.
Security token is moved to a global context, and ApiGlobalObject has a reference to its global context. JSGlobalObject has a reference to its global context as well. When accessing properties on a global object in JavaScript, the domain security check is performed by comparing the security token of the lexical context (Top::global_context()) to the token of global object's context. The check is only needed when the receiver is a window object, such as 'window.document'. Accessing global variables, such as 'var foo = 3; foo' does not need checks because the receiver is the inner window object.
When an outer window is detached from its global context (when a frame navigates away from a page), it is completely detached from the inner window. A new context is created for the new page, and the outer global object is reused. At this point, the access check on the DOMWindow wrapper of the old context is turned on. The code in old context is still able to access DOMWindow properties, but it has to go through domain security checks.
It is debatable on how to implement the outer window object. Currently each property access function has to check if the receiver is ApiGlobalObject type. This approach might be error-prone that one may forget to check the receiver when adding new functions. It is unlikely a performance issue because accessing global variables are more common than 'window.foo' style coding.
I am still working on the ARM port, and I'd like to hear comments and suggestions on the best way to support it in V8.
Review URL: http://codereview.chromium.org/7366
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@540 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2008-10-21 19:07:58 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check for lookup interceptor
|
|
|
|
|
if (HasIndexedInterceptor()) {
|
2011-03-04 00:21:52 +00:00
|
|
|
return SetElementWithInterceptor(index,
|
|
|
|
|
value,
|
|
|
|
|
strict_mode,
|
|
|
|
|
check_prototype);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2011-03-04 00:21:52 +00:00
|
|
|
return SetElementWithoutInterceptor(index,
|
|
|
|
|
value,
|
|
|
|
|
strict_mode,
|
|
|
|
|
check_prototype);
|
2009-06-10 15:33:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::SetElementWithoutInterceptor(uint32_t index,
|
2011-01-04 12:19:55 +00:00
|
|
|
Object* value,
|
2011-03-04 00:21:52 +00:00
|
|
|
StrictModeFlag strict_mode,
|
2011-01-04 12:19:55 +00:00
|
|
|
bool check_prototype) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS:
|
2011-03-04 00:21:52 +00:00
|
|
|
return SetFastElement(index, value, strict_mode, check_prototype);
|
2011-06-09 10:03:35 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS:
|
|
|
|
|
return SetFastDoubleElement(index, value, strict_mode, check_prototype);
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
ExternalPixelArray* pixels = ExternalPixelArray::cast(elements());
|
2009-07-28 08:43:51 +00:00
|
|
|
return pixels->SetValue(index, value);
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalByteArray* array = ExternalByteArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedByteArray* array =
|
|
|
|
|
ExternalUnsignedByteArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalShortArray* array = ExternalShortArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedShortArray* array =
|
|
|
|
|
ExternalUnsignedShortArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS: {
|
|
|
|
|
ExternalIntArray* array = ExternalIntArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS: {
|
|
|
|
|
ExternalUnsignedIntArray* array =
|
|
|
|
|
ExternalUnsignedIntArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
|
|
|
|
case EXTERNAL_FLOAT_ELEMENTS: {
|
|
|
|
|
ExternalFloatArray* array = ExternalFloatArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
|
|
|
|
ExternalDoubleArray* array = ExternalDoubleArray::cast(elements());
|
|
|
|
|
return array->SetValue(index, value);
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case DICTIONARY_ELEMENTS:
|
|
|
|
|
return SetDictionaryElement(index, value, strict_mode, check_prototype);
|
|
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
|
|
|
|
uint32_t length = parameter_map->length();
|
|
|
|
|
Object* probe =
|
2011-06-21 09:27:38 +00:00
|
|
|
(index < length - 2) ? parameter_map->get(index + 2) : NULL;
|
2011-06-16 14:12:58 +00:00
|
|
|
if (probe != NULL && !probe->IsTheHole()) {
|
|
|
|
|
Context* context = Context::cast(parameter_map->get(0));
|
|
|
|
|
int context_index = Smi::cast(probe)->value();
|
|
|
|
|
ASSERT(!context->get(context_index)->IsTheHole());
|
|
|
|
|
context->set(context_index, value);
|
|
|
|
|
return value;
|
2009-03-13 11:40:09 +00:00
|
|
|
} else {
|
2011-06-16 14:12:58 +00:00
|
|
|
// Object is not mapped, defer to the arguments.
|
|
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
if (arguments->IsDictionary()) {
|
|
|
|
|
return SetDictionaryElement(index, value, strict_mode,
|
|
|
|
|
check_prototype);
|
2011-06-09 10:03:35 +00:00
|
|
|
} else {
|
2011-06-16 14:12:58 +00:00
|
|
|
return SetFastElement(index, value, strict_mode, check_prototype);
|
2011-06-09 10:03:35 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
// All possible cases have been handled above. Add a return to avoid the
|
|
|
|
|
// complaints from the compiler.
|
|
|
|
|
UNREACHABLE();
|
2011-03-18 20:35:07 +00:00
|
|
|
return isolate->heap()->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSArray::JSArrayUpdateLengthFromIndex(uint32_t index,
|
|
|
|
|
Object* value) {
|
2008-07-03 15:10:15 +00:00
|
|
|
uint32_t old_len = 0;
|
2010-05-27 12:30:45 +00:00
|
|
|
CHECK(length()->ToArrayIndex(&old_len));
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check to see if we need to update the length. For now, we make
|
|
|
|
|
// sure that the length stays within 32-bits (unsigned).
|
|
|
|
|
if (index >= old_len && index != 0xffffffff) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* len;
|
|
|
|
|
{ MaybeObject* maybe_len =
|
2011-03-18 20:35:07 +00:00
|
|
|
GetHeap()->NumberFromDouble(static_cast<double>(index) + 1);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_len->ToObject(&len)) return maybe_len;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
set_length(len);
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-02-16 12:10:48 +00:00
|
|
|
MaybeObject* JSObject::GetElementWithInterceptor(Object* receiver,
|
2010-10-25 15:22:03 +00:00
|
|
|
uint32_t index) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure that the top context does not change when doing
|
|
|
|
|
// callbacks or interceptor calls.
|
|
|
|
|
AssertNoContextChange ncc;
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
2011-03-28 08:44:30 +00:00
|
|
|
Handle<InterceptorInfo> interceptor(GetIndexedInterceptor(), isolate);
|
|
|
|
|
Handle<Object> this_handle(receiver, isolate);
|
|
|
|
|
Handle<JSObject> holder_handle(this, isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::IndexedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::IndexedPropertyGetter>(interceptor->getter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiIndexedPropertyAccess("interceptor-indexed-get", this, index));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), receiver, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(index, info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!result.IsEmpty()) return *v8::Utils::OpenHandle(*result);
|
|
|
|
|
}
|
|
|
|
|
|
2011-08-03 11:12:46 +00:00
|
|
|
Heap* heap = holder_handle->GetHeap();
|
|
|
|
|
ElementsAccessor* handler = holder_handle->GetElementsAccessor();
|
|
|
|
|
MaybeObject* raw_result = handler->GetWithReceiver(*holder_handle,
|
|
|
|
|
*this_handle,
|
|
|
|
|
index);
|
|
|
|
|
if (raw_result != heap->the_hole_value()) return raw_result;
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2011-08-03 11:12:46 +00:00
|
|
|
|
|
|
|
|
Object* pt = holder_handle->GetPrototype();
|
|
|
|
|
if (pt == heap->null_value()) return heap->undefined_value();
|
|
|
|
|
return pt->GetElementWithReceiver(*this_handle, index);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasDenseElements() {
|
|
|
|
|
int capacity = 0;
|
2011-07-26 13:56:21 +00:00
|
|
|
int used = 0;
|
|
|
|
|
GetElementsCapacityAndUsage(&capacity, &used);
|
|
|
|
|
return (capacity == 0) || (used > (capacity / 2));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void JSObject::GetElementsCapacityAndUsage(int* capacity, int* used) {
|
|
|
|
|
*capacity = 0;
|
|
|
|
|
*used = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-07-13 13:50:27 +00:00
|
|
|
FixedArrayBase* backing_store_base = FixedArrayBase::cast(elements());
|
|
|
|
|
FixedArray* backing_store = NULL;
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
2011-07-13 13:50:27 +00:00
|
|
|
backing_store_base =
|
|
|
|
|
FixedArray::cast(FixedArray::cast(backing_store_base)->get(1));
|
|
|
|
|
backing_store = FixedArray::cast(backing_store_base);
|
2011-06-16 14:12:58 +00:00
|
|
|
if (backing_store->IsDictionary()) {
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(backing_store);
|
2011-07-26 13:56:21 +00:00
|
|
|
*capacity = dictionary->Capacity();
|
|
|
|
|
*used = dictionary->NumberOfElements();
|
2011-06-16 14:12:58 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
// Fall through.
|
|
|
|
|
case FAST_ELEMENTS:
|
2011-07-13 13:50:27 +00:00
|
|
|
backing_store = FixedArray::cast(backing_store_base);
|
2011-07-26 13:56:21 +00:00
|
|
|
*capacity = backing_store->length();
|
|
|
|
|
for (int i = 0; i < *capacity; ++i) {
|
|
|
|
|
if (!backing_store->get(i)->IsTheHole()) ++(*used);
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
2011-07-13 13:50:27 +00:00
|
|
|
NumberDictionary* dictionary =
|
|
|
|
|
NumberDictionary::cast(FixedArray::cast(elements()));
|
2011-07-26 13:56:21 +00:00
|
|
|
*capacity = dictionary->Capacity();
|
|
|
|
|
*used = dictionary->NumberOfElements();
|
2011-06-16 14:12:58 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-06-09 10:03:35 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
FixedDoubleArray* elms = FixedDoubleArray::cast(elements());
|
2011-07-26 13:56:21 +00:00
|
|
|
*capacity = elms->length();
|
|
|
|
|
for (int i = 0; i < *capacity; i++) {
|
|
|
|
|
if (!elms->is_the_hole(i)) ++(*used);
|
2011-06-09 10:03:35 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
2011-07-26 13:56:21 +00:00
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_PIXEL_ELEMENTS:
|
|
|
|
|
// External arrays are considered 100% used.
|
|
|
|
|
ExternalArray* external_array = ExternalArray::cast(elements());
|
|
|
|
|
*capacity = external_array->length();
|
|
|
|
|
*used = external_array->length();
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
bool JSObject::ShouldConvertToSlowElements(int new_capacity) {
|
2011-07-26 13:56:21 +00:00
|
|
|
STATIC_ASSERT(kMaxUncheckedOldFastElementsLength <=
|
|
|
|
|
kMaxUncheckedFastElementsLength);
|
|
|
|
|
if (new_capacity <= kMaxUncheckedOldFastElementsLength ||
|
|
|
|
|
(new_capacity <= kMaxUncheckedFastElementsLength &&
|
|
|
|
|
GetHeap()->InNewSpace(this))) {
|
|
|
|
|
return false;
|
2011-06-09 10:03:35 +00:00
|
|
|
}
|
2011-07-26 13:56:21 +00:00
|
|
|
// If the fast-case backing storage takes up roughly three times as
|
|
|
|
|
// much space (in machine words) as a dictionary backing storage
|
|
|
|
|
// would, the object should have slow elements.
|
|
|
|
|
int old_capacity = 0;
|
|
|
|
|
int used_elements = 0;
|
|
|
|
|
GetElementsCapacityAndUsage(&old_capacity, &used_elements);
|
|
|
|
|
int dictionary_size = NumberDictionary::ComputeCapacity(used_elements) *
|
|
|
|
|
NumberDictionary::kEntrySize;
|
|
|
|
|
return 3 * dictionary_size <= new_capacity;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
bool JSObject::ShouldConvertToFastElements() {
|
2011-06-16 14:12:58 +00:00
|
|
|
ASSERT(HasDictionaryElements() || HasDictionaryArgumentsElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
// If the elements are sparse, we should not go back to fast case.
|
|
|
|
|
if (!HasDenseElements()) return false;
|
2011-06-16 06:37:49 +00:00
|
|
|
// An object requiring access checks is never allowed to have fast
|
|
|
|
|
// elements. If it had fast elements we would skip security checks.
|
|
|
|
|
if (IsAccessCheckNeeded()) return false;
|
2011-06-16 14:12:58 +00:00
|
|
|
|
|
|
|
|
FixedArray* elements = FixedArray::cast(this->elements());
|
|
|
|
|
NumberDictionary* dictionary = NULL;
|
|
|
|
|
if (elements->map() == GetHeap()->non_strict_arguments_elements_map()) {
|
|
|
|
|
dictionary = NumberDictionary::cast(elements->get(1));
|
|
|
|
|
} else {
|
|
|
|
|
dictionary = NumberDictionary::cast(elements);
|
|
|
|
|
}
|
|
|
|
|
// If an element has been added at a very high index in the elements
|
|
|
|
|
// dictionary, we cannot go back to fast case.
|
|
|
|
|
if (dictionary->requires_slow_elements()) return false;
|
2008-07-03 15:10:15 +00:00
|
|
|
// If the dictionary backing storage takes up roughly half as much
|
2011-07-26 13:56:21 +00:00
|
|
|
// space (in machine words) as a fast-case backing storage would,
|
|
|
|
|
// the object should have fast elements.
|
|
|
|
|
uint32_t array_size = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
if (IsJSArray()) {
|
2011-07-26 13:56:21 +00:00
|
|
|
CHECK(JSArray::cast(this)->length()->ToArrayIndex(&array_size));
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2011-07-26 13:56:21 +00:00
|
|
|
array_size = dictionary->max_number_key();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-07-26 13:56:21 +00:00
|
|
|
uint32_t dictionary_size = static_cast<uint32_t>(dictionary->Capacity()) *
|
|
|
|
|
NumberDictionary::kEntrySize;
|
|
|
|
|
return 2 * dictionary_size >= array_size;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-06 06:57:32 +00:00
|
|
|
|
2011-07-26 13:56:21 +00:00
|
|
|
bool JSObject::CanConvertToFastDoubleElements() {
|
2011-06-09 10:03:35 +00:00
|
|
|
if (FLAG_unbox_double_arrays) {
|
|
|
|
|
ASSERT(HasDictionaryElements());
|
|
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(elements());
|
|
|
|
|
for (int i = 0; i < dictionary->Capacity(); i++) {
|
|
|
|
|
Object* key = dictionary->KeyAt(i);
|
|
|
|
|
if (key->IsNumber()) {
|
|
|
|
|
if (!dictionary->ValueAt(i)->IsNumber()) return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
} else {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-06 06:57:32 +00:00
|
|
|
// Certain compilers request function template instantiation when they
|
|
|
|
|
// see the definition of the other template functions in the
|
|
|
|
|
// class. This requires us to have the template functions put
|
|
|
|
|
// together, so even though this function belongs in objects-debug.cc,
|
|
|
|
|
// we keep it here instead to satisfy certain compilers.
|
2010-12-20 10:38:19 +00:00
|
|
|
#ifdef OBJECT_PRINT
|
2009-07-06 06:57:32 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-12-20 10:38:19 +00:00
|
|
|
void Dictionary<Shape, Key>::Print(FILE* out) {
|
2009-07-06 06:57:32 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, " ");
|
2009-07-06 06:57:32 +00:00
|
|
|
if (k->IsString()) {
|
2010-12-20 10:38:19 +00:00
|
|
|
String::cast(k)->StringPrint(out);
|
2009-07-06 06:57:32 +00:00
|
|
|
} else {
|
2010-12-20 10:38:19 +00:00
|
|
|
k->ShortPrint(out);
|
2009-07-06 06:57:32 +00:00
|
|
|
}
|
2010-12-20 10:38:19 +00:00
|
|
|
PrintF(out, ": ");
|
|
|
|
|
ValueAt(i)->ShortPrint(out);
|
|
|
|
|
PrintF(out, "\n");
|
2009-07-06 06:57:32 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void Dictionary<Shape, Key>::CopyValuesTo(FixedArray* elements) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int pos = 0;
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2010-01-29 11:46:55 +00:00
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = elements->GetWriteBarrierMode(no_gc);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = Dictionary<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (Dictionary<Shape, Key>::IsKey(k)) {
|
|
|
|
|
elements->set(pos++, ValueAt(i), mode);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
ASSERT(pos == elements->length());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
InterceptorInfo* JSObject::GetNamedInterceptor() {
|
|
|
|
|
ASSERT(map()->has_named_interceptor());
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
2010-03-11 16:24:31 +00:00
|
|
|
ASSERT(constructor->shared()->IsApiFunction());
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* result =
|
2010-03-11 16:24:31 +00:00
|
|
|
constructor->shared()->get_api_func_data()->named_property_handler();
|
2008-07-03 15:10:15 +00:00
|
|
|
return InterceptorInfo::cast(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
InterceptorInfo* JSObject::GetIndexedInterceptor() {
|
|
|
|
|
ASSERT(map()->has_indexed_interceptor());
|
|
|
|
|
JSFunction* constructor = JSFunction::cast(map()->constructor());
|
2010-03-11 16:24:31 +00:00
|
|
|
ASSERT(constructor->shared()->IsApiFunction());
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* result =
|
2010-03-11 16:24:31 +00:00
|
|
|
constructor->shared()->get_api_func_data()->indexed_property_handler();
|
2008-07-03 15:10:15 +00:00
|
|
|
return InterceptorInfo::cast(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::GetPropertyPostInterceptor(
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
JSReceiver* receiver,
|
2010-10-25 15:22:03 +00:00
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check local property in holder, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsProperty()) {
|
|
|
|
|
return GetProperty(receiver, &result, name, attributes);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
// Continue searching via the prototype chain.
|
|
|
|
|
Object* pt = GetPrototype();
|
|
|
|
|
*attributes = ABSENT;
|
2011-03-31 10:55:53 +00:00
|
|
|
if (pt->IsNull()) return GetHeap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
return pt->GetPropertyWithReceiver(receiver, name, attributes);
|
|
|
|
|
}
|
|
|
|
|
|
2009-11-24 14:10:06 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::GetLocalPropertyPostInterceptor(
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
JSReceiver* receiver,
|
2009-11-12 16:34:52 +00:00
|
|
|
String* name,
|
|
|
|
|
PropertyAttributes* attributes) {
|
|
|
|
|
// Check local property in holder, ignore interceptor.
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(name, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
if (result.IsProperty()) {
|
|
|
|
|
return GetProperty(receiver, &result, name, attributes);
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2009-11-12 16:34:52 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::GetPropertyWithInterceptor(
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
JSReceiver* receiver,
|
2009-06-05 08:07:15 +00:00
|
|
|
String* name,
|
2009-07-06 11:00:53 +00:00
|
|
|
PropertyAttributes* attributes) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = GetIsolate();
|
2009-07-28 14:46:06 +00:00
|
|
|
InterceptorInfo* interceptor = GetNamedInterceptor();
|
2011-03-18 20:35:07 +00:00
|
|
|
HandleScope scope(isolate);
|
Implement set trap for proxies, and revamp class hierarchy in preparation:
- Introduce a class JSReceiver, that is a common superclass of JSObject and
JSProxy. Use JSReceiver where appropriate (probably lots of places that we
still have to migrate, but we will find those later with proxy test suite).
- Move appropriate methods to JSReceiver class (SetProperty,
GetPropertyAttribute, Get/SetPrototype, Lookup, and so on).
- Introduce new JSFunctionProxy subclass of JSProxy. Currently only a stub.
- Overhaul enum InstanceType:
* Introduce FIRST/LAST_SPEC_OBJECT_TYPE that ranges over all types that
represent JS objects, and use that consistently to check language types.
* Rename FIRST/LAST_JS_OBJECT_TYPE and FIRST/LAST_FUNCTION_CLASS_TYPE
to FIRST/LAST_[NON]CALLABLE_SPEC_OBJECT_TYPE for clarity.
* Eliminate the overlap over JS_REGEXP_TYPE.
* Also replace FIRST_JS_OBJECT with FIRST_JS_RECEIVER, but only use it where
we exclusively talk about the internal representation type.
* Insert JS_PROXY and JS_FUNCTION_PROXY in the appropriate places.
- Fix all checks concerning classification, especially for functions, to
use the CALLABLE_SPEC_OBJECT range (that includes funciton proxies).
- Handle proxies in SetProperty (that was the easiest part :) ).
- A few simple test cases.
R=kmillikin@chromium.org
Review URL: http://codereview.chromium.org/6992072
git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@8126 ce2b1a6d-e550-0410-aec6-3dcde31c8c00
2011-05-31 16:38:40 +00:00
|
|
|
Handle<JSReceiver> receiver_handle(receiver);
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<JSObject> holder_handle(this);
|
|
|
|
|
Handle<String> name_handle(name);
|
|
|
|
|
|
|
|
|
|
if (!interceptor->getter()->IsUndefined()) {
|
|
|
|
|
v8::NamedPropertyGetter getter =
|
|
|
|
|
v8::ToCData<v8::NamedPropertyGetter>(interceptor->getter());
|
2011-03-18 20:35:07 +00:00
|
|
|
LOG(isolate,
|
|
|
|
|
ApiNamedPropertyAccess("interceptor-named-get", *holder_handle, name));
|
|
|
|
|
CustomArguments args(isolate, interceptor->data(), receiver, this);
|
2009-09-30 12:25:46 +00:00
|
|
|
v8::AccessorInfo info(args.end());
|
2008-07-03 15:10:15 +00:00
|
|
|
v8::Handle<v8::Value> result;
|
|
|
|
|
{
|
|
|
|
|
// Leaving JavaScript.
|
2011-03-18 20:35:07 +00:00
|
|
|
VMState state(isolate, EXTERNAL);
|
2008-07-03 15:10:15 +00:00
|
|
|
result = getter(v8::Utils::ToLocal(name_handle), info);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2009-07-28 14:46:06 +00:00
|
|
|
if (!result.IsEmpty()) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*attributes = NONE;
|
2009-07-06 11:00:53 +00:00
|
|
|
return *v8::Utils::OpenHandle(*result);
|
2009-06-03 11:25:34 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* result = holder_handle->GetPropertyPostInterceptor(
|
2008-07-03 15:10:15 +00:00
|
|
|
*receiver_handle,
|
|
|
|
|
*name_handle,
|
|
|
|
|
attributes);
|
2011-03-18 20:35:07 +00:00
|
|
|
RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
2009-06-05 08:07:15 +00:00
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealNamedProperty(String* key) {
|
|
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayNamedAccess(this, key, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(key, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
return result.IsProperty() && (result.type() != INTERCEPTOR);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealElementProperty(uint32_t index) {
|
|
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayIndexedAccess(this, index, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Handle [] on String objects.
|
|
|
|
|
if (this->IsStringObjectWithCharacterAt(index)) return true;
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>(
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
return (index < length) &&
|
|
|
|
|
!FixedArray::cast(elements())->get(index)->IsTheHole();
|
|
|
|
|
}
|
2011-07-22 09:04:16 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>(
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedDoubleArray::cast(elements())->length());
|
|
|
|
|
return (index < length) &&
|
|
|
|
|
!FixedDoubleArray::cast(elements())->is_the_hole(index);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
ExternalPixelArray* pixels = ExternalPixelArray::cast(elements());
|
2009-07-28 08:43:51 +00:00
|
|
|
return index < static_cast<uint32_t>(pixels->length());
|
|
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
2009-10-20 15:26:17 +00:00
|
|
|
ExternalArray* array = ExternalArray::cast(elements());
|
|
|
|
|
return index < static_cast<uint32_t>(array->length());
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
return element_dictionary()->FindEntry(index)
|
|
|
|
|
!= NumberDictionary::kNotFound;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS:
|
|
|
|
|
UNIMPLEMENTED();
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
// All possibilities have been handled above already.
|
|
|
|
|
UNREACHABLE();
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool JSObject::HasRealNamedCallbackProperty(String* key) {
|
|
|
|
|
// Check access rights if needed.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (IsAccessCheckNeeded()) {
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (!heap->isolate()->MayNamedAccess(this, key, v8::ACCESS_HAS)) {
|
|
|
|
|
heap->isolate()->ReportFailedAccessCheck(this, v8::ACCESS_HAS);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LookupResult result;
|
|
|
|
|
LocalLookupRealNamedProperty(key, &result);
|
2010-02-18 15:10:35 +00:00
|
|
|
return result.IsProperty() && (result.type() == CALLBACKS);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfLocalProperties(PropertyAttributes filter) {
|
|
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
2008-07-03 15:10:15 +00:00
|
|
|
int result = 0;
|
2009-07-10 19:25:18 +00:00
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
2011-04-11 11:38:34 +00:00
|
|
|
PropertyDetails details(descs->GetDetails(i));
|
2009-07-10 19:25:18 +00:00
|
|
|
if (details.IsProperty() && (details.attributes() & filter) == 0) {
|
2008-07-03 15:10:15 +00:00
|
|
|
result++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
} else {
|
|
|
|
|
return property_dictionary()->NumberOfElementsFilterAttributes(filter);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfEnumProperties() {
|
|
|
|
|
return NumberOfLocalProperties(static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
void FixedArray::SwapPairs(FixedArray* numbers, int i, int j) {
|
2008-07-03 15:10:15 +00:00
|
|
|
Object* temp = get(i);
|
|
|
|
|
set(i, get(j));
|
|
|
|
|
set(j, temp);
|
2009-04-16 11:30:55 +00:00
|
|
|
if (this != numbers) {
|
|
|
|
|
temp = numbers->get(i);
|
|
|
|
|
numbers->set(i, numbers->get(j));
|
|
|
|
|
numbers->set(j, temp);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
static void InsertionSortPairs(FixedArray* content,
|
|
|
|
|
FixedArray* numbers,
|
|
|
|
|
int len) {
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 1; i < len; i++) {
|
|
|
|
|
int j = i;
|
|
|
|
|
while (j > 0 &&
|
2009-04-16 11:30:55 +00:00
|
|
|
(NumberToUint32(numbers->get(j - 1)) >
|
|
|
|
|
NumberToUint32(numbers->get(j)))) {
|
|
|
|
|
content->SwapPairs(numbers, j - 1, j);
|
2008-07-03 15:10:15 +00:00
|
|
|
j--;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
void HeapSortPairs(FixedArray* content, FixedArray* numbers, int len) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// In-place heap sort.
|
2009-04-16 11:30:55 +00:00
|
|
|
ASSERT(content->length() == numbers->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Bottom-up max-heap construction.
|
|
|
|
|
for (int i = 1; i < len; ++i) {
|
|
|
|
|
int child_index = i;
|
|
|
|
|
while (child_index > 0) {
|
|
|
|
|
int parent_index = ((child_index + 1) >> 1) - 1;
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t parent_value = NumberToUint32(numbers->get(parent_index));
|
|
|
|
|
uint32_t child_value = NumberToUint32(numbers->get(child_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (parent_value < child_value) {
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
child_index = parent_index;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Extract elements and create sorted array.
|
|
|
|
|
for (int i = len - 1; i > 0; --i) {
|
|
|
|
|
// Put max element at the back of the array.
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, 0, i);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Sift down the new top element.
|
|
|
|
|
int parent_index = 0;
|
|
|
|
|
while (true) {
|
|
|
|
|
int child_index = ((parent_index + 1) << 1) - 1;
|
|
|
|
|
if (child_index >= i) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t child1_value = NumberToUint32(numbers->get(child_index));
|
|
|
|
|
uint32_t child2_value = NumberToUint32(numbers->get(child_index + 1));
|
|
|
|
|
uint32_t parent_value = NumberToUint32(numbers->get(parent_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (child_index + 1 >= i || child1_value > child2_value) {
|
|
|
|
|
if (parent_value > child1_value) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index);
|
2008-07-03 15:10:15 +00:00
|
|
|
parent_index = child_index;
|
|
|
|
|
} else {
|
|
|
|
|
if (parent_value > child2_value) break;
|
2009-04-16 11:30:55 +00:00
|
|
|
content->SwapPairs(numbers, parent_index, child_index + 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
parent_index = child_index + 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-16 11:30:55 +00:00
|
|
|
// Sort this array and the numbers as pairs wrt. the (distinct) numbers.
|
|
|
|
|
void FixedArray::SortPairs(FixedArray* numbers, uint32_t len) {
|
|
|
|
|
ASSERT(this->length() == numbers->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
// For small arrays, simply use insertion sort.
|
|
|
|
|
if (len <= 10) {
|
2009-04-16 11:30:55 +00:00
|
|
|
InsertionSortPairs(this, numbers, len);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// Check the range of indices.
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t min_index = NumberToUint32(numbers->get(0));
|
|
|
|
|
uint32_t max_index = min_index;
|
|
|
|
|
uint32_t i;
|
2008-07-03 15:10:15 +00:00
|
|
|
for (i = 1; i < len; i++) {
|
2009-04-16 11:30:55 +00:00
|
|
|
if (NumberToUint32(numbers->get(i)) < min_index) {
|
|
|
|
|
min_index = NumberToUint32(numbers->get(i));
|
|
|
|
|
} else if (NumberToUint32(numbers->get(i)) > max_index) {
|
|
|
|
|
max_index = NumberToUint32(numbers->get(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (max_index - min_index + 1 == len) {
|
|
|
|
|
// Indices form a contiguous range, unless there are duplicates.
|
2009-04-16 11:30:55 +00:00
|
|
|
// Do an in-place linear time sort assuming distinct numbers, but
|
2008-07-03 15:10:15 +00:00
|
|
|
// avoid hanging in case they are not.
|
|
|
|
|
for (i = 0; i < len; i++) {
|
2009-04-16 11:30:55 +00:00
|
|
|
uint32_t p;
|
|
|
|
|
uint32_t j = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
// While the current element at i is not at its correct position p,
|
|
|
|
|
// swap the elements at these two positions.
|
2009-04-16 11:30:55 +00:00
|
|
|
while ((p = NumberToUint32(numbers->get(i)) - min_index) != i &&
|
2008-07-03 15:10:15 +00:00
|
|
|
j++ < len) {
|
2009-04-16 11:30:55 +00:00
|
|
|
SwapPairs(numbers, i, p);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2009-04-16 11:30:55 +00:00
|
|
|
HeapSortPairs(this, numbers, len);
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Fill in the names of local properties into the supplied storage. The main
|
|
|
|
|
// purpose of this function is to provide reflection information for the object
|
|
|
|
|
// mirrors.
|
2009-01-22 13:20:31 +00:00
|
|
|
void JSObject::GetLocalPropertyNames(FixedArray* storage, int index) {
|
2009-07-10 19:25:18 +00:00
|
|
|
ASSERT(storage->length() >= (NumberOfLocalProperties(NONE) - index));
|
2008-07-03 15:10:15 +00:00
|
|
|
if (HasFastProperties()) {
|
2009-07-10 19:25:18 +00:00
|
|
|
DescriptorArray* descs = map()->instance_descriptors();
|
|
|
|
|
for (int i = 0; i < descs->number_of_descriptors(); i++) {
|
|
|
|
|
if (descs->IsProperty(i)) storage->set(index++, descs->GetKey(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-01-22 13:20:31 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
2011-08-04 09:23:25 +00:00
|
|
|
property_dictionary()->CopyKeysTo(storage,
|
|
|
|
|
index,
|
|
|
|
|
StringDictionary::UNSORTED);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfLocalElements(PropertyAttributes filter) {
|
|
|
|
|
return GetLocalElementKeys(NULL, filter);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::NumberOfEnumElements() {
|
2009-12-01 10:25:29 +00:00
|
|
|
// Fast case for objects with no elements.
|
|
|
|
|
if (!IsJSValue() && HasFastElements()) {
|
|
|
|
|
uint32_t length = IsJSArray() ?
|
|
|
|
|
static_cast<uint32_t>(
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value()) :
|
|
|
|
|
static_cast<uint32_t>(FixedArray::cast(elements())->length());
|
|
|
|
|
if (length == 0) return 0;
|
|
|
|
|
}
|
|
|
|
|
// Compute the number of enumerable elements.
|
2008-07-03 15:10:15 +00:00
|
|
|
return NumberOfLocalElements(static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::GetLocalElementKeys(FixedArray* storage,
|
|
|
|
|
PropertyAttributes filter) {
|
|
|
|
|
int counter = 0;
|
2009-07-28 08:43:51 +00:00
|
|
|
switch (GetElementsKind()) {
|
|
|
|
|
case FAST_ELEMENTS: {
|
|
|
|
|
int length = IsJSArray() ?
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value() :
|
|
|
|
|
FixedArray::cast(elements())->length();
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
if (!FixedArray::cast(elements())->get(i)->IsTheHole()) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(i));
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-07-20 10:54:58 +00:00
|
|
|
case FAST_DOUBLE_ELEMENTS: {
|
|
|
|
|
int length = IsJSArray() ?
|
|
|
|
|
Smi::cast(JSArray::cast(this)->length())->value() :
|
|
|
|
|
FixedDoubleArray::cast(elements())->length();
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
if (!FixedDoubleArray::cast(elements())->is_the_hole(i)) {
|
|
|
|
|
if (storage != NULL) {
|
|
|
|
|
storage->set(counter, Smi::FromInt(i));
|
|
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2011-03-09 15:01:16 +00:00
|
|
|
case EXTERNAL_PIXEL_ELEMENTS: {
|
|
|
|
|
int length = ExternalPixelArray::cast(elements())->length();
|
2009-07-28 08:43:51 +00:00
|
|
|
while (counter < length) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(counter));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-10-20 15:26:17 +00:00
|
|
|
case EXTERNAL_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_BYTE_ELEMENTS:
|
|
|
|
|
case EXTERNAL_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_SHORT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_INT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_UNSIGNED_INT_ELEMENTS:
|
2011-04-21 07:15:43 +00:00
|
|
|
case EXTERNAL_FLOAT_ELEMENTS:
|
|
|
|
|
case EXTERNAL_DOUBLE_ELEMENTS: {
|
2009-10-20 15:26:17 +00:00
|
|
|
int length = ExternalArray::cast(elements())->length();
|
|
|
|
|
while (counter < length) {
|
|
|
|
|
if (storage != NULL) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter, Smi::FromInt(counter));
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
counter++;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() >= counter);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
case DICTIONARY_ELEMENTS: {
|
|
|
|
|
if (storage != NULL) {
|
2011-07-08 07:31:48 +00:00
|
|
|
element_dictionary()->CopyKeysTo(storage,
|
|
|
|
|
filter,
|
|
|
|
|
NumberDictionary::SORTED);
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
counter += element_dictionary()->NumberOfElementsFilterAttributes(filter);
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2008-08-27 10:11:39 +00:00
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
case NON_STRICT_ARGUMENTS_ELEMENTS: {
|
|
|
|
|
FixedArray* parameter_map = FixedArray::cast(elements());
|
2011-07-08 07:31:48 +00:00
|
|
|
int mapped_length = parameter_map->length() - 2;
|
2011-06-16 14:12:58 +00:00
|
|
|
FixedArray* arguments = FixedArray::cast(parameter_map->get(1));
|
|
|
|
|
if (arguments->IsDictionary()) {
|
2011-07-08 07:31:48 +00:00
|
|
|
// Copy the keys from arguments first, because Dictionary::CopyKeysTo
|
|
|
|
|
// will insert in storage starting at index 0.
|
2011-06-16 14:12:58 +00:00
|
|
|
NumberDictionary* dictionary = NumberDictionary::cast(arguments);
|
2011-07-08 07:31:48 +00:00
|
|
|
if (storage != NULL) {
|
|
|
|
|
dictionary->CopyKeysTo(storage, filter, NumberDictionary::UNSORTED);
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
counter += dictionary->NumberOfElementsFilterAttributes(filter);
|
2011-07-08 07:31:48 +00:00
|
|
|
for (int i = 0; i < mapped_length; ++i) {
|
|
|
|
|
if (!parameter_map->get(i + 2)->IsTheHole()) {
|
|
|
|
|
if (storage != NULL) storage->set(counter, Smi::FromInt(i));
|
|
|
|
|
++counter;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (storage != NULL) storage->SortPairs(storage, counter);
|
|
|
|
|
|
2011-06-16 14:12:58 +00:00
|
|
|
} else {
|
2011-07-08 07:31:48 +00:00
|
|
|
int backing_length = arguments->length();
|
|
|
|
|
int i = 0;
|
|
|
|
|
for (; i < mapped_length; ++i) {
|
|
|
|
|
if (!parameter_map->get(i + 2)->IsTheHole()) {
|
|
|
|
|
if (storage != NULL) storage->set(counter, Smi::FromInt(i));
|
|
|
|
|
++counter;
|
|
|
|
|
} else if (i < backing_length && !arguments->get(i)->IsTheHole()) {
|
|
|
|
|
if (storage != NULL) storage->set(counter, Smi::FromInt(i));
|
2011-06-16 14:12:58 +00:00
|
|
|
++counter;
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-07-08 07:31:48 +00:00
|
|
|
for (; i < backing_length; ++i) {
|
|
|
|
|
if (storage != NULL) storage->set(counter, Smi::FromInt(i));
|
|
|
|
|
++counter;
|
|
|
|
|
}
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
break;
|
2011-06-16 14:12:58 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (this->IsJSValue()) {
|
|
|
|
|
Object* val = JSValue::cast(this)->value();
|
|
|
|
|
if (val->IsString()) {
|
|
|
|
|
String* str = String::cast(val);
|
|
|
|
|
if (storage) {
|
2009-03-17 09:33:06 +00:00
|
|
|
for (int i = 0; i < str->length(); i++) {
|
2010-01-29 11:46:55 +00:00
|
|
|
storage->set(counter + i, Smi::FromInt(i));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-03-17 09:33:06 +00:00
|
|
|
counter += str->length();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(!storage || storage->length() == counter);
|
|
|
|
|
return counter;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
int JSObject::GetEnumElementKeys(FixedArray* storage) {
|
|
|
|
|
return GetLocalElementKeys(storage,
|
|
|
|
|
static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// StringKey simply carries a string object as key.
|
2008-09-05 16:27:56 +00:00
|
|
|
class StringKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2009-03-19 18:50:00 +00:00
|
|
|
explicit StringKey(String* string) :
|
|
|
|
|
string_(string),
|
2009-07-02 06:50:43 +00:00
|
|
|
hash_(HashForObject(string)) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
2009-03-19 18:50:00 +00:00
|
|
|
// We know that all entries in a hash table had their hash keys created.
|
|
|
|
|
// Use that knowledge to have fast failure.
|
2009-07-02 06:50:43 +00:00
|
|
|
if (hash_ != HashForObject(string)) {
|
2009-03-19 18:50:00 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
2008-10-17 12:36:23 +00:00
|
|
|
return string_->Equals(String::cast(string));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t Hash() { return hash_; }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) { return String::cast(other)->Hash(); }
|
2009-07-01 16:49:54 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() { return string_; }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
String* string_;
|
2009-03-19 18:50:00 +00:00
|
|
|
uint32_t hash_;
|
2008-07-03 15:10:15 +00:00
|
|
|
};
|
|
|
|
|
|
2009-02-24 13:11:53 +00:00
|
|
|
|
|
|
|
|
// StringSharedKeys are used as keys in the eval cache.
|
|
|
|
|
class StringSharedKey : public HashTableKey {
|
|
|
|
|
public:
|
2011-02-04 18:15:49 +00:00
|
|
|
StringSharedKey(String* source,
|
|
|
|
|
SharedFunctionInfo* shared,
|
|
|
|
|
StrictModeFlag strict_mode)
|
|
|
|
|
: source_(source),
|
|
|
|
|
shared_(shared),
|
|
|
|
|
strict_mode_(strict_mode) { }
|
2009-02-24 13:11:53 +00:00
|
|
|
|
|
|
|
|
bool IsMatch(Object* other) {
|
|
|
|
|
if (!other->IsFixedArray()) return false;
|
|
|
|
|
FixedArray* pair = FixedArray::cast(other);
|
|
|
|
|
SharedFunctionInfo* shared = SharedFunctionInfo::cast(pair->get(0));
|
|
|
|
|
if (shared != shared_) return false;
|
2011-02-04 18:15:49 +00:00
|
|
|
StrictModeFlag strict_mode = static_cast<StrictModeFlag>(
|
|
|
|
|
Smi::cast(pair->get(2))->value());
|
|
|
|
|
if (strict_mode != strict_mode_) return false;
|
2009-02-24 13:11:53 +00:00
|
|
|
String* source = String::cast(pair->get(1));
|
|
|
|
|
return source->Equals(source_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t StringSharedHashHelper(String* source,
|
2011-02-04 18:15:49 +00:00
|
|
|
SharedFunctionInfo* shared,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
2009-02-24 13:11:53 +00:00
|
|
|
uint32_t hash = source->Hash();
|
|
|
|
|
if (shared->HasSourceCode()) {
|
|
|
|
|
// Instead of using the SharedFunctionInfo pointer in the hash
|
|
|
|
|
// code computation, we use a combination of the hash of the
|
|
|
|
|
// script source code and the start and end positions. We do
|
|
|
|
|
// this to ensure that the cache entries can survive garbage
|
|
|
|
|
// collection.
|
|
|
|
|
Script* script = Script::cast(shared->script());
|
|
|
|
|
hash ^= String::cast(script->source())->Hash();
|
2011-02-04 18:15:49 +00:00
|
|
|
if (strict_mode == kStrictMode) hash ^= 0x8000;
|
2009-02-24 13:11:53 +00:00
|
|
|
hash += shared->start_position();
|
|
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t Hash() {
|
2011-02-04 18:15:49 +00:00
|
|
|
return StringSharedHashHelper(source_, shared_, strict_mode_);
|
2009-07-02 06:50:43 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* obj) {
|
2009-02-24 13:11:53 +00:00
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
SharedFunctionInfo* shared = SharedFunctionInfo::cast(pair->get(0));
|
|
|
|
|
String* source = String::cast(pair->get(1));
|
2011-02-04 18:15:49 +00:00
|
|
|
StrictModeFlag strict_mode = static_cast<StrictModeFlag>(
|
|
|
|
|
Smi::cast(pair->get(2))->value());
|
|
|
|
|
return StringSharedHashHelper(source, shared, strict_mode);
|
2009-02-24 13:11:53 +00:00
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MUST_USE_RESULT MaybeObject* AsObject() {
|
|
|
|
|
Object* obj;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = source_->GetHeap()->AllocateFixedArray(3);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-02-24 13:11:53 +00:00
|
|
|
FixedArray* pair = FixedArray::cast(obj);
|
|
|
|
|
pair->set(0, shared_);
|
|
|
|
|
pair->set(1, source_);
|
2011-02-04 18:15:49 +00:00
|
|
|
pair->set(2, Smi::FromInt(strict_mode_));
|
2009-02-24 13:11:53 +00:00
|
|
|
return pair;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
String* source_;
|
|
|
|
|
SharedFunctionInfo* shared_;
|
2011-02-04 18:15:49 +00:00
|
|
|
StrictModeFlag strict_mode_;
|
2009-02-24 13:11:53 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-10-24 08:40:02 +00:00
|
|
|
// RegExpKey carries the source and flags of a regular expression as key.
|
|
|
|
|
class RegExpKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
RegExpKey(String* string, JSRegExp::Flags flags)
|
2008-11-26 08:03:55 +00:00
|
|
|
: string_(string),
|
|
|
|
|
flags_(Smi::FromInt(flags.value())) { }
|
2008-10-24 08:40:02 +00:00
|
|
|
|
2009-10-12 12:42:20 +00:00
|
|
|
// Rather than storing the key in the hash table, a pointer to the
|
|
|
|
|
// stored value is stored where the key should be. IsMatch then
|
|
|
|
|
// compares the search key to the found object, rather than comparing
|
|
|
|
|
// a key to a key.
|
2008-10-24 08:40:02 +00:00
|
|
|
bool IsMatch(Object* obj) {
|
|
|
|
|
FixedArray* val = FixedArray::cast(obj);
|
|
|
|
|
return string_->Equals(String::cast(val->get(JSRegExp::kSourceIndex)))
|
|
|
|
|
&& (flags_ == val->get(JSRegExp::kFlagsIndex));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return RegExpHash(string_, flags_); }
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() {
|
2008-10-24 08:40:02 +00:00
|
|
|
// Plain hash maps, which is where regexp keys are used, don't
|
|
|
|
|
// use this function.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* obj) {
|
2008-10-24 08:40:02 +00:00
|
|
|
FixedArray* val = FixedArray::cast(obj);
|
|
|
|
|
return RegExpHash(String::cast(val->get(JSRegExp::kSourceIndex)),
|
|
|
|
|
Smi::cast(val->get(JSRegExp::kFlagsIndex)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t RegExpHash(String* string, Smi* flags) {
|
|
|
|
|
return string->Hash() + flags->value();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string_;
|
|
|
|
|
Smi* flags_;
|
|
|
|
|
};
|
|
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
// Utf8SymbolKey carries a vector of chars as key.
|
|
|
|
|
class Utf8SymbolKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2008-09-05 16:27:56 +00:00
|
|
|
explicit Utf8SymbolKey(Vector<const char> string)
|
2009-11-24 14:10:06 +00:00
|
|
|
: string_(string), hash_field_(0) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->IsEqualTo(string_);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() {
|
2009-11-24 14:10:06 +00:00
|
|
|
if (hash_field_ != 0) return hash_field_ >> String::kHashShift;
|
2008-07-03 15:10:15 +00:00
|
|
|
unibrow::Utf8InputBuffer<> buffer(string_.start(),
|
|
|
|
|
static_cast<unsigned>(string_.length()));
|
|
|
|
|
chars_ = buffer.Length();
|
2009-11-24 14:10:06 +00:00
|
|
|
hash_field_ = String::ComputeHashField(&buffer, chars_);
|
|
|
|
|
uint32_t result = hash_field_ >> String::kHashShift;
|
2009-03-19 18:50:00 +00:00
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* AsObject() {
|
2009-11-24 14:10:06 +00:00
|
|
|
if (hash_field_ == 0) Hash();
|
2011-03-18 20:35:07 +00:00
|
|
|
return Isolate::Current()->heap()->AllocateSymbol(
|
|
|
|
|
string_, chars_, hash_field_);
|
2009-07-01 16:49:54 +00:00
|
|
|
}
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
Vector<const char> string_;
|
2009-11-24 14:10:06 +00:00
|
|
|
uint32_t hash_field_;
|
2008-07-03 15:10:15 +00:00
|
|
|
int chars_; // Caches the number of characters when computing the hash code.
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2010-12-22 20:14:19 +00:00
|
|
|
template <typename Char>
|
|
|
|
|
class SequentialSymbolKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
explicit SequentialSymbolKey(Vector<const Char> string)
|
|
|
|
|
: string_(string), hash_field_(0) { }
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() {
|
|
|
|
|
StringHasher hasher(string_.length());
|
|
|
|
|
|
|
|
|
|
// Very long strings have a trivial hash that doesn't inspect the
|
|
|
|
|
// string contents.
|
|
|
|
|
if (hasher.has_trivial_hash()) {
|
|
|
|
|
hash_field_ = hasher.GetHashField();
|
|
|
|
|
} else {
|
|
|
|
|
int i = 0;
|
|
|
|
|
// Do the iterative array index computation as long as there is a
|
|
|
|
|
// chance this is an array index.
|
|
|
|
|
while (i < string_.length() && hasher.is_array_index()) {
|
|
|
|
|
hasher.AddCharacter(static_cast<uc32>(string_[i]));
|
|
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Process the remaining characters without updating the array
|
|
|
|
|
// index.
|
|
|
|
|
while (i < string_.length()) {
|
|
|
|
|
hasher.AddCharacterNoIndex(static_cast<uc32>(string_[i]));
|
|
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
hash_field_ = hasher.GetHashField();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t result = hash_field_ >> String::kHashShift;
|
|
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Vector<const Char> string_;
|
|
|
|
|
uint32_t hash_field_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class AsciiSymbolKey : public SequentialSymbolKey<char> {
|
|
|
|
|
public:
|
|
|
|
|
explicit AsciiSymbolKey(Vector<const char> str)
|
|
|
|
|
: SequentialSymbolKey<char>(str) { }
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->IsAsciiEqualTo(string_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MaybeObject* AsObject() {
|
|
|
|
|
if (hash_field_ == 0) Hash();
|
2011-03-18 20:35:07 +00:00
|
|
|
return HEAP->AllocateAsciiSymbol(string_, hash_field_);
|
2010-12-22 20:14:19 +00:00
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2011-05-24 12:16:23 +00:00
|
|
|
class SubStringAsciiSymbolKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
explicit SubStringAsciiSymbolKey(Handle<SeqAsciiString> string,
|
|
|
|
|
int from,
|
|
|
|
|
int length)
|
|
|
|
|
: string_(string), from_(from), length_(length) { }
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() {
|
|
|
|
|
ASSERT(length_ >= 0);
|
|
|
|
|
ASSERT(from_ + length_ <= string_->length());
|
|
|
|
|
StringHasher hasher(length_);
|
|
|
|
|
|
|
|
|
|
// Very long strings have a trivial hash that doesn't inspect the
|
|
|
|
|
// string contents.
|
|
|
|
|
if (hasher.has_trivial_hash()) {
|
|
|
|
|
hash_field_ = hasher.GetHashField();
|
|
|
|
|
} else {
|
|
|
|
|
int i = 0;
|
|
|
|
|
// Do the iterative array index computation as long as there is a
|
|
|
|
|
// chance this is an array index.
|
|
|
|
|
while (i < length_ && hasher.is_array_index()) {
|
|
|
|
|
hasher.AddCharacter(static_cast<uc32>(
|
|
|
|
|
string_->SeqAsciiStringGet(i + from_)));
|
|
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Process the remaining characters without updating the array
|
|
|
|
|
// index.
|
|
|
|
|
while (i < length_) {
|
|
|
|
|
hasher.AddCharacterNoIndex(static_cast<uc32>(
|
|
|
|
|
string_->SeqAsciiStringGet(i + from_)));
|
|
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
hash_field_ = hasher.GetHashField();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t result = hash_field_ >> String::kHashShift;
|
|
|
|
|
ASSERT(result != 0); // Ensure that the hash value of 0 is never computed.
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
Vector<const char> chars(string_->GetChars() + from_, length_);
|
|
|
|
|
return String::cast(string)->IsAsciiEqualTo(chars);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MaybeObject* AsObject() {
|
|
|
|
|
if (hash_field_ == 0) Hash();
|
|
|
|
|
Vector<const char> chars(string_->GetChars() + from_, length_);
|
|
|
|
|
return HEAP->AllocateAsciiSymbol(chars, hash_field_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
Handle<SeqAsciiString> string_;
|
|
|
|
|
int from_;
|
|
|
|
|
int length_;
|
|
|
|
|
uint32_t hash_field_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2010-12-22 20:14:19 +00:00
|
|
|
class TwoByteSymbolKey : public SequentialSymbolKey<uc16> {
|
|
|
|
|
public:
|
|
|
|
|
explicit TwoByteSymbolKey(Vector<const uc16> str)
|
|
|
|
|
: SequentialSymbolKey<uc16>(str) { }
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->IsTwoByteEqualTo(string_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
MaybeObject* AsObject() {
|
|
|
|
|
if (hash_field_ == 0) Hash();
|
2011-03-18 20:35:07 +00:00
|
|
|
return HEAP->AllocateTwoByteSymbol(string_, hash_field_);
|
2010-12-22 20:14:19 +00:00
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-09-05 16:27:56 +00:00
|
|
|
// SymbolKey carries a string/symbol object as key.
|
|
|
|
|
class SymbolKey : public HashTableKey {
|
2008-07-03 15:10:15 +00:00
|
|
|
public:
|
2011-03-18 20:35:07 +00:00
|
|
|
explicit SymbolKey(String* string)
|
|
|
|
|
: string_(string) { }
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* string) {
|
|
|
|
|
return String::cast(string)->Equals(string_);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return string_->Hash(); }
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* other) {
|
|
|
|
|
return String::cast(other)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* AsObject() {
|
2010-05-20 09:01:39 +00:00
|
|
|
// Attempt to flatten the string, so that symbols will most often
|
|
|
|
|
// be flat strings.
|
|
|
|
|
string_ = string_->TryFlattenGetString();
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = string_->GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Transform string to symbol if possible.
|
2011-03-18 20:35:07 +00:00
|
|
|
Map* map = heap->SymbolMapForString(string_);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (map != NULL) {
|
|
|
|
|
string_->set_map(map);
|
2009-04-14 12:00:56 +00:00
|
|
|
ASSERT(string_->IsSymbol());
|
2008-07-03 15:10:15 +00:00
|
|
|
return string_;
|
|
|
|
|
}
|
|
|
|
|
// Otherwise allocate a new symbol.
|
|
|
|
|
StringInputBuffer buffer(string_);
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->AllocateInternalSymbol(&buffer,
|
2008-11-17 15:13:40 +00:00
|
|
|
string_->length(),
|
2009-11-24 14:10:06 +00:00
|
|
|
string_->hash_field());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint32_t StringHash(Object* obj) {
|
|
|
|
|
return String::cast(obj)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
String* string_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void HashTable<Shape, Key>::IteratePrefix(ObjectVisitor* v) {
|
2008-07-03 15:10:15 +00:00
|
|
|
IteratePointers(v, 0, kElementsStartOffset);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
void HashTable<Shape, Key>::IterateElements(ObjectVisitor* v) {
|
2008-07-03 15:10:15 +00:00
|
|
|
IteratePointers(v,
|
|
|
|
|
kElementsStartOffset,
|
|
|
|
|
kHeaderSize + length() * kPointerSize);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* HashTable<Shape, Key>::Allocate(int at_least_space_for,
|
|
|
|
|
PretenureFlag pretenure) {
|
2011-07-26 13:56:21 +00:00
|
|
|
int capacity = ComputeCapacity(at_least_space_for);
|
|
|
|
|
if (capacity > HashTable::kMaxCapacity) {
|
2010-01-07 13:17:18 +00:00
|
|
|
return Failure::OutOfMemoryException();
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = Isolate::Current()->heap()->
|
|
|
|
|
AllocateHashTable(EntryToIndex(capacity), pretenure);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
HashTable::cast(obj)->SetNumberOfElements(0);
|
|
|
|
|
HashTable::cast(obj)->SetNumberOfDeletedElements(0);
|
|
|
|
|
HashTable::cast(obj)->SetCapacity(capacity);
|
2008-07-03 15:10:15 +00:00
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-07-16 10:07:57 +00:00
|
|
|
// Find entry for key otherwise return kNotFound.
|
|
|
|
|
int StringDictionary::FindEntry(String* key) {
|
|
|
|
|
if (!key->IsSymbol()) {
|
|
|
|
|
return HashTable<StringDictionaryShape, String*>::FindEntry(key);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Optimized for symbol key. Knowledge of the key type allows:
|
|
|
|
|
// 1. Move the check if the key is a symbol out of the loop.
|
|
|
|
|
// 2. Avoid comparing hash codes in symbol to symbol comparision.
|
|
|
|
|
// 3. Detect a case when a dictionary key is not a symbol but the key is.
|
|
|
|
|
// In case of positive result the dictionary key may be replaced by
|
|
|
|
|
// the symbol with minimal performance penalty. It gives a chance to
|
|
|
|
|
// perform further lookups in code stubs (and significant performance boost
|
|
|
|
|
// a certain style of code).
|
|
|
|
|
|
|
|
|
|
// EnsureCapacity will guarantee the hash table is never full.
|
|
|
|
|
uint32_t capacity = Capacity();
|
|
|
|
|
uint32_t entry = FirstProbe(key->Hash(), capacity);
|
|
|
|
|
uint32_t count = 1;
|
|
|
|
|
|
|
|
|
|
while (true) {
|
|
|
|
|
int index = EntryToIndex(entry);
|
|
|
|
|
Object* element = get(index);
|
|
|
|
|
if (element->IsUndefined()) break; // Empty entry.
|
|
|
|
|
if (key == element) return entry;
|
|
|
|
|
if (!element->IsSymbol() &&
|
|
|
|
|
!element->IsNull() &&
|
|
|
|
|
String::cast(element)->Equals(key)) {
|
|
|
|
|
// Replace a non-symbol key by the equivalent symbol for faster further
|
|
|
|
|
// lookups.
|
|
|
|
|
set(index, key);
|
|
|
|
|
return entry;
|
|
|
|
|
}
|
|
|
|
|
ASSERT(element->IsNull() || !String::cast(element)->Equals(key));
|
|
|
|
|
entry = NextProbe(entry, count++, capacity);
|
|
|
|
|
}
|
|
|
|
|
return kNotFound;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
MaybeObject* HashTable<Shape, Key>::Rehash(HashTable* new_table, Key key) {
|
|
|
|
|
ASSERT(NumberOfElements() < new_table->Capacity());
|
|
|
|
|
|
|
|
|
|
AssertNoAllocation no_gc;
|
|
|
|
|
WriteBarrierMode mode = new_table->GetWriteBarrierMode(no_gc);
|
|
|
|
|
|
|
|
|
|
// Copy prefix to new array.
|
|
|
|
|
for (int i = kPrefixStartIndex;
|
|
|
|
|
i < kPrefixStartIndex + Shape::kPrefixSize;
|
|
|
|
|
i++) {
|
|
|
|
|
new_table->set(i, get(i), mode);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Rehash the elements.
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
uint32_t from_index = EntryToIndex(i);
|
|
|
|
|
Object* k = get(from_index);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
uint32_t hash = Shape::HashForObject(key, k);
|
|
|
|
|
uint32_t insertion_index =
|
|
|
|
|
EntryToIndex(new_table->FindInsertionEntry(hash));
|
|
|
|
|
for (int j = 0; j < Shape::kEntrySize; j++) {
|
|
|
|
|
new_table->set(insertion_index + j, get(from_index + j), mode);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
new_table->SetNumberOfElements(NumberOfElements());
|
|
|
|
|
new_table->SetNumberOfDeletedElements(0);
|
|
|
|
|
return new_table;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* HashTable<Shape, Key>::EnsureCapacity(int n, Key key) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int capacity = Capacity();
|
|
|
|
|
int nof = NumberOfElements() + n;
|
2010-01-12 23:42:36 +00:00
|
|
|
int nod = NumberOfDeletedElements();
|
|
|
|
|
// Return if:
|
2010-03-03 16:22:17 +00:00
|
|
|
// 50% is still free after adding n elements and
|
2010-01-12 23:42:36 +00:00
|
|
|
// at most 50% of the free elements are deleted elements.
|
2010-03-03 16:22:17 +00:00
|
|
|
if (nod <= (capacity - nof) >> 1) {
|
|
|
|
|
int needed_free = nof >> 1;
|
|
|
|
|
if (nof + needed_free <= capacity) return this;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-03-03 16:22:17 +00:00
|
|
|
const int kMinCapacityForPretenure = 256;
|
|
|
|
|
bool pretenure =
|
2011-03-31 10:55:53 +00:00
|
|
|
(capacity > kMinCapacityForPretenure) && !GetHeap()->InNewSpace(this);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
Allocate(nof * 2, pretenure ? TENURED : NOT_TENURED);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2010-01-29 11:46:55 +00:00
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
return Rehash(HashTable::cast(obj), key);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
|
|
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
MaybeObject* HashTable<Shape, Key>::Shrink(Key key) {
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
int nof = NumberOfElements();
|
|
|
|
|
|
|
|
|
|
// Shrink to fit the number of elements if only a quarter of the
|
|
|
|
|
// capacity is filled with elements.
|
|
|
|
|
if (nof > (capacity >> 2)) return this;
|
|
|
|
|
// Allocate a new dictionary with room for at least the current
|
|
|
|
|
// number of elements. The allocation method will make sure that
|
|
|
|
|
// there is extra room in the dictionary for additions. Don't go
|
|
|
|
|
// lower than room for 16 elements.
|
|
|
|
|
int at_least_room_for = nof;
|
|
|
|
|
if (at_least_room_for < 16) return this;
|
|
|
|
|
|
|
|
|
|
const int kMinCapacityForPretenure = 256;
|
|
|
|
|
bool pretenure =
|
|
|
|
|
(at_least_room_for > kMinCapacityForPretenure) &&
|
|
|
|
|
!GetHeap()->InNewSpace(this);
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
Allocate(at_least_room_for, pretenure ? TENURED : NOT_TENURED);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2011-06-23 09:30:39 +00:00
|
|
|
|
|
|
|
|
return Rehash(HashTable::cast(obj), key);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
uint32_t HashTable<Shape, Key>::FindInsertionEntry(uint32_t hash) {
|
2009-07-17 04:57:17 +00:00
|
|
|
uint32_t capacity = Capacity();
|
2010-01-06 11:19:28 +00:00
|
|
|
uint32_t entry = FirstProbe(hash, capacity);
|
|
|
|
|
uint32_t count = 1;
|
|
|
|
|
// EnsureCapacity will guarantee the hash table is never full.
|
|
|
|
|
while (true) {
|
|
|
|
|
Object* element = KeyAt(entry);
|
|
|
|
|
if (element->IsUndefined() || element->IsNull()) break;
|
|
|
|
|
entry = NextProbe(entry, count++, capacity);
|
2009-07-17 04:57:17 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
return entry;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
// Force instantiation of template instances class.
|
|
|
|
|
// Please note this list is compiler dependent.
|
|
|
|
|
|
|
|
|
|
template class HashTable<SymbolTableShape, HashTableKey*>;
|
|
|
|
|
|
|
|
|
|
template class HashTable<CompilationCacheShape, HashTableKey*>;
|
|
|
|
|
|
|
|
|
|
template class HashTable<MapCacheShape, HashTableKey*>;
|
|
|
|
|
|
2011-07-28 17:21:22 +00:00
|
|
|
template class HashTable<ObjectHashTableShape, JSObject*>;
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template class Dictionary<StringDictionaryShape, String*>;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template class Dictionary<NumberDictionaryShape, uint32_t>;
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::Allocate(
|
2009-07-02 06:50:43 +00:00
|
|
|
int);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<StringDictionaryShape, String*>::Allocate(
|
2009-07-02 06:50:43 +00:00
|
|
|
int);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::AtPut(
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t, Object*);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::SlowReverseLookup(
|
|
|
|
|
Object*);
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::SlowReverseLookup(
|
|
|
|
|
Object*);
|
|
|
|
|
|
|
|
|
|
template void Dictionary<NumberDictionaryShape, uint32_t>::CopyKeysTo(
|
2011-07-08 07:31:48 +00:00
|
|
|
FixedArray*,
|
|
|
|
|
PropertyAttributes,
|
|
|
|
|
Dictionary<NumberDictionaryShape, uint32_t>::SortMode);
|
2009-07-02 06:50:43 +00:00
|
|
|
|
|
|
|
|
template Object* Dictionary<StringDictionaryShape, String*>::DeleteProperty(
|
|
|
|
|
int, JSObject::DeleteMode);
|
|
|
|
|
|
|
|
|
|
template Object* Dictionary<NumberDictionaryShape, uint32_t>::DeleteProperty(
|
|
|
|
|
int, JSObject::DeleteMode);
|
|
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
template MaybeObject* Dictionary<StringDictionaryShape, String*>::Shrink(
|
|
|
|
|
String*);
|
|
|
|
|
|
|
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::Shrink(
|
|
|
|
|
uint32_t);
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template void Dictionary<StringDictionaryShape, String*>::CopyKeysTo(
|
2011-07-08 07:31:48 +00:00
|
|
|
FixedArray*,
|
2011-08-04 09:23:25 +00:00
|
|
|
int,
|
2011-07-08 07:31:48 +00:00
|
|
|
Dictionary<StringDictionaryShape, String*>::SortMode);
|
2009-07-02 06:50:43 +00:00
|
|
|
|
|
|
|
|
template int
|
|
|
|
|
Dictionary<StringDictionaryShape, String*>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes);
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<StringDictionaryShape, String*>::Add(
|
2009-07-02 06:50:43 +00:00
|
|
|
String*, Object*, PropertyDetails);
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject*
|
2009-07-02 06:50:43 +00:00
|
|
|
Dictionary<StringDictionaryShape, String*>::GenerateNewEnumerationIndices();
|
|
|
|
|
|
|
|
|
|
template int
|
|
|
|
|
Dictionary<NumberDictionaryShape, uint32_t>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes);
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::Add(
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t, Object*, PropertyDetails);
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::
|
|
|
|
|
EnsureCapacity(int, uint32_t);
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<StringDictionaryShape, String*>::
|
|
|
|
|
EnsureCapacity(int, String*);
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<NumberDictionaryShape, uint32_t>::AddEntry(
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t, Object*, PropertyDetails, uint32_t);
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
template MaybeObject* Dictionary<StringDictionaryShape, String*>::AddEntry(
|
2009-07-02 06:50:43 +00:00
|
|
|
String*, Object*, PropertyDetails, uint32_t);
|
|
|
|
|
|
|
|
|
|
template
|
|
|
|
|
int Dictionary<NumberDictionaryShape, uint32_t>::NumberOfEnumElements();
|
|
|
|
|
|
|
|
|
|
template
|
|
|
|
|
int Dictionary<StringDictionaryShape, String*>::NumberOfEnumElements();
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2010-01-06 11:19:28 +00:00
|
|
|
template
|
|
|
|
|
int HashTable<NumberDictionaryShape, uint32_t>::FindEntry(uint32_t);
|
|
|
|
|
|
|
|
|
|
|
2009-04-27 11:16:59 +00:00
|
|
|
// Collates undefined and unexisting elements below limit from position
|
|
|
|
|
// zero of the elements. The object stays in Dictionary mode.
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::PrepareSlowElementsForSort(uint32_t limit) {
|
2009-07-28 08:43:51 +00:00
|
|
|
ASSERT(HasDictionaryElements());
|
2009-04-27 11:16:59 +00:00
|
|
|
// Must stay in dictionary mode, either because of requires_slow_elements,
|
|
|
|
|
// or because we are not going to sort (and therefore compact) all of the
|
|
|
|
|
// elements.
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dict = element_dictionary();
|
2009-04-27 11:16:59 +00:00
|
|
|
HeapNumber* result_double = NULL;
|
|
|
|
|
if (limit > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Allocate space for result before we start mutating the object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_double;
|
2011-03-31 10:55:53 +00:00
|
|
|
{ MaybeObject* maybe_new_double = GetHeap()->AllocateHeapNumber(0.0);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_new_double->ToObject(&new_double)) return maybe_new_double;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
result_double = HeapNumber::cast(new_double);
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
NumberDictionary::Allocate(dict->NumberOfElements());
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* new_dict = NumberDictionary::cast(obj);
|
2009-04-27 11:16:59 +00:00
|
|
|
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
uint32_t pos = 0;
|
|
|
|
|
uint32_t undefs = 0;
|
2010-03-04 11:27:28 +00:00
|
|
|
int capacity = dict->Capacity();
|
2009-04-27 11:16:59 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = dict->KeyAt(i);
|
|
|
|
|
if (dict->IsKey(k)) {
|
|
|
|
|
ASSERT(k->IsNumber());
|
|
|
|
|
ASSERT(!k->IsSmi() || Smi::cast(k)->value() >= 0);
|
|
|
|
|
ASSERT(!k->IsHeapNumber() || HeapNumber::cast(k)->value() >= 0);
|
|
|
|
|
ASSERT(!k->IsHeapNumber() || HeapNumber::cast(k)->value() <= kMaxUInt32);
|
|
|
|
|
Object* value = dict->ValueAt(i);
|
2009-06-10 11:42:22 +00:00
|
|
|
PropertyDetails details = dict->DetailsAt(i);
|
|
|
|
|
if (details.type() == CALLBACKS) {
|
|
|
|
|
// Bail out and do the sorting of undefineds and array holes in JS.
|
|
|
|
|
return Smi::FromInt(-1);
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
uint32_t key = NumberToUint32(k);
|
2010-10-25 15:22:03 +00:00
|
|
|
// In the following we assert that adding the entry to the new dictionary
|
|
|
|
|
// does not cause GC. This is the case because we made sure to allocate
|
|
|
|
|
// the dictionary big enough above, so it need not grow.
|
2009-04-27 11:16:59 +00:00
|
|
|
if (key < limit) {
|
|
|
|
|
if (value->IsUndefined()) {
|
|
|
|
|
undefs++;
|
|
|
|
|
} else {
|
2011-02-10 12:33:34 +00:00
|
|
|
if (pos > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Adding an entry with the key beyond smi-range requires
|
|
|
|
|
// allocation. Bailout.
|
|
|
|
|
return Smi::FromInt(-1);
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
new_dict->AddNumberEntry(pos, value, details)->ToObjectUnchecked();
|
2009-04-27 11:16:59 +00:00
|
|
|
pos++;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2011-02-10 12:33:34 +00:00
|
|
|
if (key > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Adding an entry with the key beyond smi-range requires
|
|
|
|
|
// allocation. Bailout.
|
|
|
|
|
return Smi::FromInt(-1);
|
|
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
new_dict->AddNumberEntry(key, value, details)->ToObjectUnchecked();
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t result = pos;
|
2009-06-10 11:42:22 +00:00
|
|
|
PropertyDetails no_details = PropertyDetails(NONE, NORMAL);
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-04-27 11:16:59 +00:00
|
|
|
while (undefs > 0) {
|
2011-02-10 12:33:34 +00:00
|
|
|
if (pos > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Adding an entry with the key beyond smi-range requires
|
|
|
|
|
// allocation. Bailout.
|
|
|
|
|
return Smi::FromInt(-1);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
new_dict->AddNumberEntry(pos, heap->undefined_value(), no_details)->
|
2010-10-25 15:22:03 +00:00
|
|
|
ToObjectUnchecked();
|
2009-04-27 11:16:59 +00:00
|
|
|
pos++;
|
|
|
|
|
undefs--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
set_elements(new_dict);
|
|
|
|
|
|
|
|
|
|
if (result <= static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
return Smi::FromInt(static_cast<int>(result));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ASSERT_NE(NULL, result_double);
|
|
|
|
|
result_double->set_value(static_cast<double>(result));
|
|
|
|
|
return result_double;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Collects all defined (non-hole) and non-undefined (array) elements at
|
|
|
|
|
// the start of the elements array.
|
|
|
|
|
// If the object is in dictionary mode, it is converted to fast elements
|
|
|
|
|
// mode.
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* JSObject::PrepareElementsForSort(uint32_t limit) {
|
2011-03-09 15:01:16 +00:00
|
|
|
ASSERT(!HasExternalArrayElements());
|
2009-07-28 08:43:51 +00:00
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
|
2009-07-28 08:43:51 +00:00
|
|
|
if (HasDictionaryElements()) {
|
2009-04-27 11:16:59 +00:00
|
|
|
// Convert to fast elements containing only the existing properties.
|
|
|
|
|
// Ordering is irrelevant, since we are going to sort anyway.
|
2009-07-02 06:50:43 +00:00
|
|
|
NumberDictionary* dict = element_dictionary();
|
2009-04-27 11:16:59 +00:00
|
|
|
if (IsJSArray() || dict->requires_slow_elements() ||
|
|
|
|
|
dict->max_number_key() >= limit) {
|
|
|
|
|
return PrepareSlowElementsForSort(limit);
|
|
|
|
|
}
|
|
|
|
|
// Convert to fast elements.
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = map()->GetFastElementsMap();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2010-06-24 13:56:35 +00:00
|
|
|
Map* new_map = Map::cast(obj);
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
PretenureFlag tenure = heap->InNewSpace(this) ? NOT_TENURED: TENURED;
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_array;
|
|
|
|
|
{ MaybeObject* maybe_new_array =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateFixedArray(dict->NumberOfElements(), tenure);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_new_array->ToObject(&new_array)) return maybe_new_array;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
FixedArray* fast_elements = FixedArray::cast(new_array);
|
|
|
|
|
dict->CopyValuesTo(fast_elements);
|
2010-06-24 13:56:35 +00:00
|
|
|
|
|
|
|
|
set_map(new_map);
|
2009-04-27 11:16:59 +00:00
|
|
|
set_elements(fast_elements);
|
2011-08-02 14:05:11 +00:00
|
|
|
} else if (!HasFastDoubleElements()) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureWritableFastElements();
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
2011-08-02 14:05:11 +00:00
|
|
|
ASSERT(HasFastElements() || HasFastDoubleElements());
|
2009-04-27 11:16:59 +00:00
|
|
|
|
|
|
|
|
// Collect holes at the end, undefined before that and the rest at the
|
|
|
|
|
// start, and return the number of non-hole, non-undefined values.
|
|
|
|
|
|
2011-08-02 14:05:11 +00:00
|
|
|
FixedArrayBase* elements_base = FixedArrayBase::cast(this->elements());
|
|
|
|
|
uint32_t elements_length = static_cast<uint32_t>(elements_base->length());
|
2009-04-27 11:16:59 +00:00
|
|
|
if (limit > elements_length) {
|
|
|
|
|
limit = elements_length ;
|
|
|
|
|
}
|
|
|
|
|
if (limit == 0) {
|
|
|
|
|
return Smi::FromInt(0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
HeapNumber* result_double = NULL;
|
|
|
|
|
if (limit > static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
// Pessimistically allocate space for return value before
|
|
|
|
|
// we start mutating the array.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_double;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_new_double = heap->AllocateHeapNumber(0.0);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_new_double->ToObject(&new_double)) return maybe_new_double;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
result_double = HeapNumber::cast(new_double);
|
|
|
|
|
}
|
|
|
|
|
|
2011-08-02 14:05:11 +00:00
|
|
|
uint32_t result = 0;
|
|
|
|
|
if (elements_base->map() == heap->fixed_double_array_map()) {
|
|
|
|
|
FixedDoubleArray* elements = FixedDoubleArray::cast(elements_base);
|
|
|
|
|
// Split elements into defined and the_hole, in that order.
|
|
|
|
|
unsigned int holes = limit;
|
|
|
|
|
// Assume most arrays contain no holes and undefined values, so minimize the
|
|
|
|
|
// number of stores of non-undefined, non-the-hole values.
|
|
|
|
|
for (unsigned int i = 0; i < holes; i++) {
|
|
|
|
|
if (elements->is_the_hole(i)) {
|
|
|
|
|
holes--;
|
|
|
|
|
} else {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// Position i needs to be filled.
|
|
|
|
|
while (holes > i) {
|
|
|
|
|
if (elements->is_the_hole(holes)) {
|
|
|
|
|
holes--;
|
|
|
|
|
} else {
|
2011-08-03 11:12:46 +00:00
|
|
|
elements->set(i, elements->get_scalar(holes));
|
2011-08-02 14:05:11 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
2011-08-02 14:05:11 +00:00
|
|
|
result = holes;
|
|
|
|
|
while (holes < limit) {
|
|
|
|
|
elements->set_the_hole(holes);
|
|
|
|
|
holes++;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
FixedArray* elements = FixedArray::cast(elements_base);
|
|
|
|
|
AssertNoAllocation no_alloc;
|
|
|
|
|
|
|
|
|
|
// Split elements into defined, undefined and the_hole, in that order. Only
|
|
|
|
|
// count locations for undefined and the hole, and fill them afterwards.
|
|
|
|
|
WriteBarrierMode write_barrier = elements->GetWriteBarrierMode(no_alloc);
|
|
|
|
|
unsigned int undefs = limit;
|
|
|
|
|
unsigned int holes = limit;
|
|
|
|
|
// Assume most arrays contain no holes and undefined values, so minimize the
|
|
|
|
|
// number of stores of non-undefined, non-the-hole values.
|
|
|
|
|
for (unsigned int i = 0; i < undefs; i++) {
|
|
|
|
|
Object* current = elements->get(i);
|
2009-04-27 11:16:59 +00:00
|
|
|
if (current->IsTheHole()) {
|
|
|
|
|
holes--;
|
|
|
|
|
undefs--;
|
|
|
|
|
} else if (current->IsUndefined()) {
|
|
|
|
|
undefs--;
|
|
|
|
|
} else {
|
2011-08-02 14:05:11 +00:00
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
// Position i needs to be filled.
|
|
|
|
|
while (undefs > i) {
|
|
|
|
|
current = elements->get(undefs);
|
|
|
|
|
if (current->IsTheHole()) {
|
|
|
|
|
holes--;
|
|
|
|
|
undefs--;
|
|
|
|
|
} else if (current->IsUndefined()) {
|
|
|
|
|
undefs--;
|
|
|
|
|
} else {
|
|
|
|
|
elements->set(i, current, write_barrier);
|
|
|
|
|
break;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-08-02 14:05:11 +00:00
|
|
|
result = undefs;
|
|
|
|
|
while (undefs < holes) {
|
|
|
|
|
elements->set_undefined(undefs);
|
|
|
|
|
undefs++;
|
|
|
|
|
}
|
|
|
|
|
while (holes < limit) {
|
|
|
|
|
elements->set_the_hole(holes);
|
|
|
|
|
holes++;
|
|
|
|
|
}
|
2009-04-27 11:16:59 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (result <= static_cast<uint32_t>(Smi::kMaxValue)) {
|
|
|
|
|
return Smi::FromInt(static_cast<int>(result));
|
|
|
|
|
}
|
|
|
|
|
ASSERT_NE(NULL, result_double);
|
|
|
|
|
result_double->set_value(static_cast<double>(result));
|
|
|
|
|
return result_double;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-03-09 15:01:16 +00:00
|
|
|
Object* ExternalPixelArray::SetValue(uint32_t index, Object* value) {
|
2009-07-28 08:43:51 +00:00
|
|
|
uint8_t clamped_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
2009-07-28 18:11:12 +00:00
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
if (int_value < 0) {
|
|
|
|
|
clamped_value = 0;
|
|
|
|
|
} else if (int_value > 255) {
|
|
|
|
|
clamped_value = 255;
|
|
|
|
|
} else {
|
|
|
|
|
clamped_value = static_cast<uint8_t>(int_value);
|
|
|
|
|
}
|
2009-07-28 08:43:51 +00:00
|
|
|
} else if (value->IsHeapNumber()) {
|
2009-07-28 12:50:58 +00:00
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-07-28 18:11:12 +00:00
|
|
|
if (!(double_value > 0)) {
|
|
|
|
|
// NaN and less than zero clamp to zero.
|
|
|
|
|
clamped_value = 0;
|
|
|
|
|
} else if (double_value > 255) {
|
|
|
|
|
// Greater than 255 clamp to 255.
|
|
|
|
|
clamped_value = 255;
|
|
|
|
|
} else {
|
|
|
|
|
// Other doubles are rounded to the nearest integer.
|
|
|
|
|
clamped_value = static_cast<uint8_t>(double_value + 0.5);
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-28 12:50:58 +00:00
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
2009-07-28 08:43:51 +00:00
|
|
|
}
|
|
|
|
|
set(index, clamped_value);
|
|
|
|
|
}
|
|
|
|
|
return Smi::FromInt(clamped_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-10-20 15:26:17 +00:00
|
|
|
template<typename ExternalArrayClass, typename ValueType>
|
2011-03-18 20:35:07 +00:00
|
|
|
static MaybeObject* ExternalArrayIntSetter(Heap* heap,
|
|
|
|
|
ExternalArrayClass* receiver,
|
2010-10-25 15:22:03 +00:00
|
|
|
uint32_t index,
|
|
|
|
|
Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
ValueType cast_value = 0;
|
|
|
|
|
if (index < static_cast<uint32_t>(receiver->length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<ValueType>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-10-22 14:49:00 +00:00
|
|
|
cast_value = static_cast<ValueType>(DoubleToInt32(double_value));
|
2009-10-20 15:26:17 +00:00
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
receiver->set(index, cast_value);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->NumberFromInt32(cast_value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalByteArray::SetValue(uint32_t index, Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
return ExternalArrayIntSetter<ExternalByteArray, int8_t>
|
2011-03-18 20:35:07 +00:00
|
|
|
(GetHeap(), this, index, value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalUnsignedByteArray::SetValue(uint32_t index,
|
|
|
|
|
Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
return ExternalArrayIntSetter<ExternalUnsignedByteArray, uint8_t>
|
2011-03-18 20:35:07 +00:00
|
|
|
(GetHeap(), this, index, value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalShortArray::SetValue(uint32_t index,
|
|
|
|
|
Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
return ExternalArrayIntSetter<ExternalShortArray, int16_t>
|
2011-03-18 20:35:07 +00:00
|
|
|
(GetHeap(), this, index, value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalUnsignedShortArray::SetValue(uint32_t index,
|
|
|
|
|
Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
return ExternalArrayIntSetter<ExternalUnsignedShortArray, uint16_t>
|
2011-03-18 20:35:07 +00:00
|
|
|
(GetHeap(), this, index, value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalIntArray::SetValue(uint32_t index, Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
return ExternalArrayIntSetter<ExternalIntArray, int32_t>
|
2011-03-18 20:35:07 +00:00
|
|
|
(GetHeap(), this, index, value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalUnsignedIntArray::SetValue(uint32_t index, Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
uint32_t cast_value = 0;
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-10-20 15:26:17 +00:00
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<uint32_t>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
2009-10-22 14:49:00 +00:00
|
|
|
cast_value = static_cast<uint32_t>(DoubleToUint32(double_value));
|
2009-10-20 15:26:17 +00:00
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
set(index, cast_value);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->NumberFromUint32(cast_value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* ExternalFloatArray::SetValue(uint32_t index, Object* value) {
|
2009-10-20 15:26:17 +00:00
|
|
|
float cast_value = 0;
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2009-10-20 15:26:17 +00:00
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<float>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double double_value = HeapNumber::cast(value)->value();
|
|
|
|
|
cast_value = static_cast<float>(double_value);
|
|
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
set(index, cast_value);
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->AllocateHeapNumber(cast_value);
|
2009-10-20 15:26:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-04-21 07:15:43 +00:00
|
|
|
MaybeObject* ExternalDoubleArray::SetValue(uint32_t index, Object* value) {
|
|
|
|
|
double double_value = 0;
|
|
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
if (index < static_cast<uint32_t>(length())) {
|
|
|
|
|
if (value->IsSmi()) {
|
|
|
|
|
int int_value = Smi::cast(value)->value();
|
|
|
|
|
double_value = static_cast<double>(int_value);
|
|
|
|
|
} else if (value->IsHeapNumber()) {
|
|
|
|
|
double_value = HeapNumber::cast(value)->value();
|
|
|
|
|
} else {
|
|
|
|
|
// Clamp undefined to zero (default). All other types have been
|
|
|
|
|
// converted to a number type further up in the call chain.
|
|
|
|
|
ASSERT(value->IsUndefined());
|
|
|
|
|
}
|
|
|
|
|
set(index, double_value);
|
|
|
|
|
}
|
|
|
|
|
return heap->AllocateHeapNumber(double_value);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
JSGlobalPropertyCell* GlobalObject::GetPropertyCell(LookupResult* result) {
|
2009-06-30 10:05:36 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(result->GetDictionaryEntry());
|
2010-12-07 11:31:57 +00:00
|
|
|
return JSGlobalPropertyCell::cast(value);
|
2009-06-30 10:05:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* GlobalObject::EnsurePropertyCell(String* name) {
|
2009-07-10 09:40:47 +00:00
|
|
|
ASSERT(!HasFastProperties());
|
|
|
|
|
int entry = property_dictionary()->FindEntry(name);
|
|
|
|
|
if (entry == StringDictionary::kNotFound) {
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* cell;
|
|
|
|
|
{ MaybeObject* maybe_cell =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateJSGlobalPropertyCell(heap->the_hole_value());
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_cell->ToObject(&cell)) return maybe_cell;
|
|
|
|
|
}
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details(NONE, NORMAL);
|
|
|
|
|
details = details.AsDeleted();
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* dictionary;
|
|
|
|
|
{ MaybeObject* maybe_dictionary =
|
|
|
|
|
property_dictionary()->Add(name, cell, details);
|
|
|
|
|
if (!maybe_dictionary->ToObject(&dictionary)) return maybe_dictionary;
|
|
|
|
|
}
|
2009-07-10 09:40:47 +00:00
|
|
|
set_properties(StringDictionary::cast(dictionary));
|
|
|
|
|
return cell;
|
|
|
|
|
} else {
|
|
|
|
|
Object* value = property_dictionary()->ValueAt(entry);
|
|
|
|
|
ASSERT(value->IsJSGlobalPropertyCell());
|
|
|
|
|
return value;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* SymbolTable::LookupString(String* string, Object** s) {
|
2008-09-05 16:27:56 +00:00
|
|
|
SymbolKey key(string);
|
2008-07-03 15:10:15 +00:00
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
// This class is used for looking up two character strings in the symbol table.
|
|
|
|
|
// If we don't have a hit we don't want to waste much time so we unroll the
|
|
|
|
|
// string hash calculation loop here for speed. Doesn't work if the two
|
|
|
|
|
// characters form a decimal integer, since such strings have a different hash
|
|
|
|
|
// algorithm.
|
|
|
|
|
class TwoCharHashTableKey : public HashTableKey {
|
|
|
|
|
public:
|
|
|
|
|
TwoCharHashTableKey(uint32_t c1, uint32_t c2)
|
|
|
|
|
: c1_(c1), c2_(c2) {
|
|
|
|
|
// Char 1.
|
|
|
|
|
uint32_t hash = c1 + (c1 << 10);
|
|
|
|
|
hash ^= hash >> 6;
|
|
|
|
|
// Char 2.
|
|
|
|
|
hash += c2;
|
|
|
|
|
hash += hash << 10;
|
|
|
|
|
hash ^= hash >> 6;
|
|
|
|
|
// GetHash.
|
|
|
|
|
hash += hash << 3;
|
|
|
|
|
hash ^= hash >> 11;
|
|
|
|
|
hash += hash << 15;
|
|
|
|
|
if (hash == 0) hash = 27;
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
StringHasher hasher(2);
|
|
|
|
|
hasher.AddCharacter(c1);
|
|
|
|
|
hasher.AddCharacter(c2);
|
|
|
|
|
// If this assert fails then we failed to reproduce the two-character
|
|
|
|
|
// version of the string hashing algorithm above. One reason could be
|
|
|
|
|
// that we were passed two digits as characters, since the hash
|
|
|
|
|
// algorithm is different in that case.
|
|
|
|
|
ASSERT_EQ(static_cast<int>(hasher.GetHash()), static_cast<int>(hash));
|
|
|
|
|
#endif
|
|
|
|
|
hash_ = hash;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool IsMatch(Object* o) {
|
|
|
|
|
if (!o->IsString()) return false;
|
|
|
|
|
String* other = String::cast(o);
|
|
|
|
|
if (other->length() != 2) return false;
|
|
|
|
|
if (other->Get(0) != c1_) return false;
|
|
|
|
|
return other->Get(1) == c2_;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uint32_t Hash() { return hash_; }
|
|
|
|
|
uint32_t HashForObject(Object* key) {
|
|
|
|
|
if (!key->IsString()) return 0;
|
|
|
|
|
return String::cast(key)->Hash();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Object* AsObject() {
|
|
|
|
|
// The TwoCharHashTableKey is only used for looking in the symbol
|
|
|
|
|
// table, not for adding to it.
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2011-06-07 07:17:46 +00:00
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
private:
|
|
|
|
|
uint32_t c1_;
|
|
|
|
|
uint32_t c2_;
|
|
|
|
|
uint32_t hash_;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2008-10-07 10:10:03 +00:00
|
|
|
bool SymbolTable::LookupSymbolIfExists(String* string, String** symbol) {
|
|
|
|
|
SymbolKey key(string);
|
|
|
|
|
int entry = FindEntry(&key);
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry == kNotFound) {
|
2008-10-07 10:10:03 +00:00
|
|
|
return false;
|
|
|
|
|
} else {
|
|
|
|
|
String* result = String::cast(KeyAt(entry));
|
2008-11-03 10:16:05 +00:00
|
|
|
ASSERT(StringShape(result).IsSymbol());
|
2008-10-07 10:10:03 +00:00
|
|
|
*symbol = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-11-20 10:11:45 +00:00
|
|
|
bool SymbolTable::LookupTwoCharsSymbolIfExists(uint32_t c1,
|
|
|
|
|
uint32_t c2,
|
|
|
|
|
String** symbol) {
|
|
|
|
|
TwoCharHashTableKey key(c1, c2);
|
|
|
|
|
int entry = FindEntry(&key);
|
|
|
|
|
if (entry == kNotFound) {
|
|
|
|
|
return false;
|
|
|
|
|
} else {
|
|
|
|
|
String* result = String::cast(KeyAt(entry));
|
|
|
|
|
ASSERT(StringShape(result).IsSymbol());
|
|
|
|
|
*symbol = result;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* SymbolTable::LookupSymbol(Vector<const char> str, Object** s) {
|
2008-09-05 16:27:56 +00:00
|
|
|
Utf8SymbolKey key(str);
|
2008-07-03 15:10:15 +00:00
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-22 20:14:19 +00:00
|
|
|
MaybeObject* SymbolTable::LookupAsciiSymbol(Vector<const char> str,
|
|
|
|
|
Object** s) {
|
|
|
|
|
AsciiSymbolKey key(str);
|
|
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-05-24 12:16:23 +00:00
|
|
|
MaybeObject* SymbolTable::LookupSubStringAsciiSymbol(Handle<SeqAsciiString> str,
|
|
|
|
|
int from,
|
|
|
|
|
int length,
|
|
|
|
|
Object** s) {
|
|
|
|
|
SubStringAsciiSymbolKey key(str, from, length);
|
|
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-22 20:14:19 +00:00
|
|
|
MaybeObject* SymbolTable::LookupTwoByteSymbol(Vector<const uc16> str,
|
|
|
|
|
Object** s) {
|
|
|
|
|
TwoByteSymbolKey key(str);
|
|
|
|
|
return LookupKey(&key, s);
|
|
|
|
|
}
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* SymbolTable::LookupKey(HashTableKey* key, Object** s) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
|
|
|
|
|
// Symbol already in table.
|
2009-06-30 10:05:36 +00:00
|
|
|
if (entry != kNotFound) {
|
2008-07-03 15:10:15 +00:00
|
|
|
*s = KeyAt(entry);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Adding new symbol. Grow table if needed.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Create symbol object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* symbol;
|
|
|
|
|
{ MaybeObject* maybe_symbol = key->AsObject();
|
|
|
|
|
if (!maybe_symbol->ToObject(&symbol)) return maybe_symbol;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// If the symbol table grew as part of EnsureCapacity, obj is not
|
|
|
|
|
// the current symbol table and therefore we cannot use
|
|
|
|
|
// SymbolTable::cast here.
|
|
|
|
|
SymbolTable* table = reinterpret_cast<SymbolTable*>(obj);
|
|
|
|
|
|
|
|
|
|
// Add the new symbol and return it along with the symbol table.
|
2009-07-02 06:50:43 +00:00
|
|
|
entry = table->FindInsertionEntry(key->Hash());
|
2008-07-03 15:10:15 +00:00
|
|
|
table->set(EntryToIndex(entry), symbol);
|
|
|
|
|
table->ElementAdded();
|
|
|
|
|
*s = symbol;
|
|
|
|
|
return table;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-11 10:51:52 +00:00
|
|
|
Object* CompilationCacheTable::Lookup(String* src) {
|
2008-09-05 16:27:56 +00:00
|
|
|
StringKey key(src);
|
|
|
|
|
int entry = FindEntry(&key);
|
2011-03-31 10:55:53 +00:00
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
2008-10-23 07:04:56 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
2008-09-05 16:27:56 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-02-04 18:15:49 +00:00
|
|
|
Object* CompilationCacheTable::LookupEval(String* src,
|
|
|
|
|
Context* context,
|
|
|
|
|
StrictModeFlag strict_mode) {
|
|
|
|
|
StringSharedKey key(src, context->closure()->shared(), strict_mode);
|
2009-02-24 13:11:53 +00:00
|
|
|
int entry = FindEntry(&key);
|
2011-03-18 20:35:07 +00:00
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
2009-02-24 13:11:53 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-10-24 08:40:02 +00:00
|
|
|
Object* CompilationCacheTable::LookupRegExp(String* src,
|
|
|
|
|
JSRegExp::Flags flags) {
|
|
|
|
|
RegExpKey key(src, flags);
|
|
|
|
|
int entry = FindEntry(&key);
|
2011-03-31 10:55:53 +00:00
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
2008-10-24 08:40:02 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CompilationCacheTable::Put(String* src, Object* value) {
|
2008-09-05 16:27:56 +00:00
|
|
|
StringKey key(src);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-09-05 16:27:56 +00:00
|
|
|
|
2008-09-11 10:51:52 +00:00
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2008-09-05 16:27:56 +00:00
|
|
|
cache->set(EntryToIndex(entry), src);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
2008-10-24 08:40:02 +00:00
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CompilationCacheTable::PutEval(String* src,
|
|
|
|
|
Context* context,
|
2011-02-04 18:15:49 +00:00
|
|
|
SharedFunctionInfo* value) {
|
|
|
|
|
StringSharedKey key(src,
|
|
|
|
|
context->closure()->shared(),
|
|
|
|
|
value->strict_mode() ? kStrictMode : kNonStrictMode);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-02-24 13:11:53 +00:00
|
|
|
|
|
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2009-02-24 13:11:53 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* k;
|
|
|
|
|
{ MaybeObject* maybe_k = key.AsObject();
|
|
|
|
|
if (!maybe_k->ToObject(&k)) return maybe_k;
|
|
|
|
|
}
|
2009-02-24 13:11:53 +00:00
|
|
|
|
|
|
|
|
cache->set(EntryToIndex(entry), k);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* CompilationCacheTable::PutRegExp(String* src,
|
|
|
|
|
JSRegExp::Flags flags,
|
|
|
|
|
FixedArray* value) {
|
2008-10-24 08:40:02 +00:00
|
|
|
RegExpKey key(src, flags);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-10-24 08:40:02 +00:00
|
|
|
|
|
|
|
|
CompilationCacheTable* cache =
|
|
|
|
|
reinterpret_cast<CompilationCacheTable*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2009-10-12 12:42:20 +00:00
|
|
|
// We store the value in the key slot, and compare the search key
|
|
|
|
|
// to the stored value with a custon IsMatch function during lookups.
|
2008-10-24 08:40:02 +00:00
|
|
|
cache->set(EntryToIndex(entry), value);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
2008-09-05 16:27:56 +00:00
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-12-07 11:31:57 +00:00
|
|
|
void CompilationCacheTable::Remove(Object* value) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Object* null_value = GetHeap()->null_value();
|
2010-12-07 11:31:57 +00:00
|
|
|
for (int entry = 0, size = Capacity(); entry < size; entry++) {
|
|
|
|
|
int entry_index = EntryToIndex(entry);
|
|
|
|
|
int value_index = entry_index + 1;
|
|
|
|
|
if (get(value_index) == value) {
|
2011-03-18 20:35:07 +00:00
|
|
|
fast_set(this, entry_index, null_value);
|
|
|
|
|
fast_set(this, value_index, null_value);
|
2010-12-07 11:31:57 +00:00
|
|
|
ElementRemoved();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
// SymbolsKey used for HashTable where key is array of symbols.
|
|
|
|
|
class SymbolsKey : public HashTableKey {
|
|
|
|
|
public:
|
2008-10-23 07:04:56 +00:00
|
|
|
explicit SymbolsKey(FixedArray* symbols) : symbols_(symbols) { }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2008-10-17 12:36:23 +00:00
|
|
|
bool IsMatch(Object* symbols) {
|
|
|
|
|
FixedArray* o = FixedArray::cast(symbols);
|
2008-09-25 07:46:07 +00:00
|
|
|
int len = symbols_->length();
|
|
|
|
|
if (o->length() != len) return false;
|
|
|
|
|
for (int i = 0; i < len; i++) {
|
|
|
|
|
if (o->get(i) != symbols_->get(i)) return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t Hash() { return HashForObject(symbols_); }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
uint32_t HashForObject(Object* obj) {
|
2008-10-23 07:04:56 +00:00
|
|
|
FixedArray* symbols = FixedArray::cast(obj);
|
|
|
|
|
int len = symbols->length();
|
2009-07-17 04:57:17 +00:00
|
|
|
uint32_t hash = 0;
|
2008-09-25 07:46:07 +00:00
|
|
|
for (int i = 0; i < len; i++) {
|
2008-10-23 07:04:56 +00:00
|
|
|
hash ^= String::cast(symbols->get(i))->Hash();
|
2008-09-25 07:46:07 +00:00
|
|
|
}
|
|
|
|
|
return hash;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* AsObject() { return symbols_; }
|
2008-09-25 07:46:07 +00:00
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
private:
|
2008-09-25 07:46:07 +00:00
|
|
|
FixedArray* symbols_;
|
|
|
|
|
};
|
|
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
|
2008-09-25 07:46:07 +00:00
|
|
|
Object* MapCache::Lookup(FixedArray* array) {
|
|
|
|
|
SymbolsKey key(array);
|
|
|
|
|
int entry = FindEntry(&key);
|
2011-03-31 10:55:53 +00:00
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
2008-10-23 07:04:56 +00:00
|
|
|
return get(EntryToIndex(entry) + 1);
|
2008-09-25 07:46:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* MapCache::Put(FixedArray* array, Map* value) {
|
2008-09-25 07:46:07 +00:00
|
|
|
SymbolsKey key(array);
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, &key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-09-25 07:46:07 +00:00
|
|
|
|
|
|
|
|
MapCache* cache = reinterpret_cast<MapCache*>(obj);
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = cache->FindInsertionEntry(key.Hash());
|
2008-09-25 07:46:07 +00:00
|
|
|
cache->set(EntryToIndex(entry), array);
|
|
|
|
|
cache->set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
cache->ElementAdded();
|
|
|
|
|
return cache;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::Allocate(int at_least_space_for) {
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj =
|
|
|
|
|
HashTable<Shape, Key>::Allocate(at_least_space_for);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2010-10-25 15:22:03 +00:00
|
|
|
// Initialize the next enumeration index.
|
|
|
|
|
Dictionary<Shape, Key>::cast(obj)->
|
|
|
|
|
SetNextEnumerationIndex(PropertyDetails::kInitialIndex);
|
2008-07-03 15:10:15 +00:00
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
2008-10-23 07:04:56 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::GenerateNewEnumerationIndices() {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = Dictionary<Shape, Key>::GetHeap();
|
2009-07-02 06:50:43 +00:00
|
|
|
int length = HashTable<Shape, Key>::NumberOfElements();
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate and initialize iteration order array.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = heap->AllocateFixedArray(length);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* iteration_order = FixedArray::cast(obj);
|
2008-10-23 08:46:32 +00:00
|
|
|
for (int i = 0; i < length; i++) {
|
2010-01-29 11:46:55 +00:00
|
|
|
iteration_order->set(i, Smi::FromInt(i));
|
2008-10-23 08:46:32 +00:00
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate array with enumeration order.
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_obj = heap->AllocateFixedArray(length);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FixedArray* enumeration_order = FixedArray::cast(obj);
|
|
|
|
|
|
|
|
|
|
// Fill the enumeration order array with property details.
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int pos = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Dictionary<Shape, Key>::IsKey(Dictionary<Shape, Key>::KeyAt(i))) {
|
2010-01-29 11:46:55 +00:00
|
|
|
enumeration_order->set(pos++, Smi::FromInt(DetailsAt(i).index()));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Sort the arrays wrt. enumeration order.
|
2009-04-16 11:30:55 +00:00
|
|
|
iteration_order->SortPairs(enumeration_order, enumeration_order->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Overwrite the enumeration_order with the enumeration indices.
|
|
|
|
|
for (int i = 0; i < length; i++) {
|
|
|
|
|
int index = Smi::cast(iteration_order->get(i))->value();
|
|
|
|
|
int enum_index = PropertyDetails::kInitialIndex + i;
|
2010-01-29 11:46:55 +00:00
|
|
|
enumeration_order->set(index, Smi::FromInt(enum_index));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the dictionary with new indices.
|
2009-07-02 06:50:43 +00:00
|
|
|
capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
pos = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Dictionary<Shape, Key>::IsKey(Dictionary<Shape, Key>::KeyAt(i))) {
|
2008-07-03 15:10:15 +00:00
|
|
|
int enum_index = Smi::cast(enumeration_order->get(pos++))->value();
|
|
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
PropertyDetails new_details =
|
|
|
|
|
PropertyDetails(details.attributes(), details.type(), enum_index);
|
|
|
|
|
DetailsAtPut(i, new_details);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Set the next enumeration index.
|
|
|
|
|
SetNextEnumerationIndex(PropertyDetails::kInitialIndex+length);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::EnsureCapacity(int n, Key key) {
|
2008-08-27 10:11:39 +00:00
|
|
|
// Check whether there are enough enumeration indices to add n elements.
|
2009-07-02 06:50:43 +00:00
|
|
|
if (Shape::kIsEnumerable &&
|
2008-07-03 15:10:15 +00:00
|
|
|
!PropertyDetails::IsValidIndex(NextEnumerationIndex() + n)) {
|
|
|
|
|
// If not, we generate new indices for the properties.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = GenerateNewEnumerationIndices();
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
return HashTable<Shape, Key>::EnsureCapacity(n, key);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void NumberDictionary::RemoveNumberEntries(uint32_t from, uint32_t to) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Do nothing if the interval [from, to) is empty.
|
|
|
|
|
if (from >= to) return;
|
|
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
int removed_entries = 0;
|
2011-03-18 20:35:07 +00:00
|
|
|
Object* sentinel = heap->null_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
int capacity = Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* key = KeyAt(i);
|
|
|
|
|
if (key->IsNumber()) {
|
|
|
|
|
uint32_t number = static_cast<uint32_t>(key->Number());
|
|
|
|
|
if (from <= number && number < to) {
|
2011-04-11 11:38:34 +00:00
|
|
|
SetEntry(i, sentinel, sentinel);
|
2008-07-03 15:10:15 +00:00
|
|
|
removed_entries++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Update the number of elements.
|
2010-01-12 23:42:36 +00:00
|
|
|
ElementsRemoved(removed_entries);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-01 16:49:54 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::DeleteProperty(int entry,
|
2011-07-15 09:10:20 +00:00
|
|
|
JSReceiver::DeleteMode mode) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Heap* heap = Dictionary<Shape, Key>::GetHeap();
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = DetailsAt(entry);
|
2009-06-08 09:46:09 +00:00
|
|
|
// Ignore attributes if forcing a deletion.
|
2011-07-15 09:10:20 +00:00
|
|
|
if (details.IsDontDelete() && mode != JSReceiver::FORCE_DELETION) {
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->false_value();
|
2009-06-08 09:46:09 +00:00
|
|
|
}
|
2011-04-11 11:38:34 +00:00
|
|
|
SetEntry(entry, heap->null_value(), heap->null_value());
|
2009-07-02 06:50:43 +00:00
|
|
|
HashTable<Shape, Key>::ElementRemoved();
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->true_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-06-23 09:30:39 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
MaybeObject* Dictionary<Shape, Key>::Shrink(Key key) {
|
|
|
|
|
return HashTable<Shape, Key>::Shrink(key);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::AtPut(Key key, Object* value) {
|
2010-06-21 20:52:43 +00:00
|
|
|
int entry = this->FindEntry(key);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// If the entry is present set the value;
|
2009-07-02 06:50:43 +00:00
|
|
|
if (entry != Dictionary<Shape, Key>::kNotFound) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ValueAtPut(entry, value);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check whether the dictionary should be extended.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* k;
|
|
|
|
|
{ MaybeObject* maybe_k = Shape::AsObject(key);
|
|
|
|
|
if (!maybe_k->ToObject(&k)) return maybe_k;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = PropertyDetails(NONE, NORMAL);
|
2009-07-02 06:50:43 +00:00
|
|
|
return Dictionary<Shape, Key>::cast(obj)->
|
|
|
|
|
AddEntry(key, value, details, Shape::Hash(key));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::Add(Key key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
2009-07-02 06:50:43 +00:00
|
|
|
// Valdate key is absent.
|
2010-06-21 20:52:43 +00:00
|
|
|
SLOW_ASSERT((this->FindEntry(key) == Dictionary<Shape, Key>::kNotFound));
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check whether the dictionary should be extended.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
return Dictionary<Shape, Key>::cast(obj)->
|
|
|
|
|
AddEntry(key, value, details, Shape::Hash(key));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add a key, value pair to the dictionary.
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* Dictionary<Shape, Key>::AddEntry(Key key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details,
|
|
|
|
|
uint32_t hash) {
|
2009-07-02 06:50:43 +00:00
|
|
|
// Compute the key object.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* k;
|
|
|
|
|
{ MaybeObject* maybe_k = Shape::AsObject(key);
|
|
|
|
|
if (!maybe_k->ToObject(&k)) return maybe_k;
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
|
|
|
|
|
uint32_t entry = Dictionary<Shape, Key>::FindInsertionEntry(hash);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Insert element at empty or deleted entry
|
2009-07-10 09:40:47 +00:00
|
|
|
if (!details.IsDeleted() && details.index() == 0 && Shape::kIsEnumerable) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Assign an enumeration index to the property and update
|
|
|
|
|
// SetNextEnumerationIndex.
|
|
|
|
|
int index = NextEnumerationIndex();
|
|
|
|
|
details = PropertyDetails(details.attributes(), details.type(), index);
|
|
|
|
|
SetNextEnumerationIndex(index + 1);
|
|
|
|
|
}
|
2009-07-02 06:50:43 +00:00
|
|
|
SetEntry(entry, k, value, details);
|
|
|
|
|
ASSERT((Dictionary<Shape, Key>::KeyAt(entry)->IsNumber()
|
2011-07-13 11:13:40 +00:00
|
|
|
|| Dictionary<Shape, Key>::KeyAt(entry)->IsString()));
|
2009-07-02 06:50:43 +00:00
|
|
|
HashTable<Shape, Key>::ElementAdded();
|
|
|
|
|
return this;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void NumberDictionary::UpdateMaxNumberKey(uint32_t key) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// If the dictionary requires slow elements an element has already
|
|
|
|
|
// been added at a high index.
|
|
|
|
|
if (requires_slow_elements()) return;
|
|
|
|
|
// Check if this index is high enough that we should require slow
|
|
|
|
|
// elements.
|
|
|
|
|
if (key > kRequiresSlowElementsLimit) {
|
2009-03-13 11:40:09 +00:00
|
|
|
set_requires_slow_elements();
|
2008-07-03 15:10:15 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// Update max key value.
|
2008-10-22 09:46:09 +00:00
|
|
|
Object* max_index_object = get(kMaxNumberKeyIndex);
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!max_index_object->IsSmi() || max_number_key() < key) {
|
2009-07-02 06:50:43 +00:00
|
|
|
FixedArray::set(kMaxNumberKeyIndex,
|
2010-01-29 11:46:55 +00:00
|
|
|
Smi::FromInt(key << kRequiresSlowElementsTagSize));
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* NumberDictionary::AddNumberEntry(uint32_t key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
2008-07-03 15:10:15 +00:00
|
|
|
UpdateMaxNumberKey(key);
|
2010-06-21 20:52:43 +00:00
|
|
|
SLOW_ASSERT(this->FindEntry(key) == kNotFound);
|
2009-07-02 06:50:43 +00:00
|
|
|
return Add(key, value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* NumberDictionary::AtNumberPut(uint32_t key, Object* value) {
|
2008-07-03 15:10:15 +00:00
|
|
|
UpdateMaxNumberKey(key);
|
2009-07-02 06:50:43 +00:00
|
|
|
return AtPut(key, value);
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* NumberDictionary::Set(uint32_t key,
|
|
|
|
|
Object* value,
|
|
|
|
|
PropertyDetails details) {
|
2009-07-02 06:50:43 +00:00
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
if (entry == kNotFound) return AddNumberEntry(key, value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
// Preserve enumeration index.
|
|
|
|
|
details = PropertyDetails(details.attributes(),
|
|
|
|
|
details.type(),
|
|
|
|
|
DetailsAt(entry).index());
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* maybe_object_key = NumberDictionaryShape::AsObject(key);
|
|
|
|
|
Object* object_key;
|
|
|
|
|
if (!maybe_object_key->ToObject(&object_key)) return maybe_object_key;
|
2010-10-18 12:16:38 +00:00
|
|
|
SetEntry(entry, object_key, value, details);
|
2008-07-03 15:10:15 +00:00
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-03-13 11:40:09 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
int Dictionary<Shape, Key>::NumberOfElementsFilterAttributes(
|
|
|
|
|
PropertyAttributes filter) {
|
|
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int result = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
|
|
|
|
PropertyAttributes attr = details.attributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
if ((attr & filter) == 0) result++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
int Dictionary<Shape, Key>::NumberOfEnumElements() {
|
2008-07-03 15:10:15 +00:00
|
|
|
return NumberOfElementsFilterAttributes(
|
|
|
|
|
static_cast<PropertyAttributes>(DONT_ENUM));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2011-07-08 07:31:48 +00:00
|
|
|
void Dictionary<Shape, Key>::CopyKeysTo(
|
|
|
|
|
FixedArray* storage,
|
|
|
|
|
PropertyAttributes filter,
|
2011-07-08 08:03:39 +00:00
|
|
|
typename Dictionary<Shape, Key>::SortMode sort_mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfEnumElements());
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
int index = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
|
|
|
|
PropertyAttributes attr = details.attributes();
|
2008-07-03 15:10:15 +00:00
|
|
|
if ((attr & filter) == 0) storage->set(index++, k);
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-07-08 07:31:48 +00:00
|
|
|
if (sort_mode == Dictionary<Shape, Key>::SORTED) {
|
|
|
|
|
storage->SortPairs(storage, index);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
void StringDictionary::CopyEnumKeysTo(FixedArray* storage,
|
|
|
|
|
FixedArray* sort_array) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfEnumElements());
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
int index = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
PropertyDetails details = DetailsAt(i);
|
2009-07-10 09:40:47 +00:00
|
|
|
if (details.IsDeleted() || details.IsDontEnum()) continue;
|
|
|
|
|
storage->set(index, k);
|
2010-01-29 11:46:55 +00:00
|
|
|
sort_array->set(index, Smi::FromInt(details.index()));
|
2009-07-10 09:40:47 +00:00
|
|
|
index++;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2009-04-16 11:30:55 +00:00
|
|
|
storage->SortPairs(sort_array, sort_array->length());
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
2011-07-08 07:31:48 +00:00
|
|
|
void Dictionary<Shape, Key>::CopyKeysTo(
|
|
|
|
|
FixedArray* storage,
|
2011-08-04 09:23:25 +00:00
|
|
|
int index,
|
2011-07-08 08:03:39 +00:00
|
|
|
typename Dictionary<Shape, Key>::SortMode sort_mode) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= NumberOfElementsFilterAttributes(
|
|
|
|
|
static_cast<PropertyAttributes>(NONE)));
|
2009-07-02 06:50:43 +00:00
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (HashTable<Shape, Key>::IsKey(k)) {
|
2009-07-10 09:40:47 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
if (details.IsDeleted()) continue;
|
2008-07-03 15:10:15 +00:00
|
|
|
storage->set(index++, k);
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-07-08 07:31:48 +00:00
|
|
|
if (sort_mode == Dictionary<Shape, Key>::SORTED) {
|
|
|
|
|
storage->SortPairs(storage, index);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(storage->length() >= index);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Backwards lookup (slow).
|
2009-07-02 06:50:43 +00:00
|
|
|
template<typename Shape, typename Key>
|
|
|
|
|
Object* Dictionary<Shape, Key>::SlowReverseLookup(Object* value) {
|
|
|
|
|
int capacity = HashTable<Shape, Key>::Capacity();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < capacity; i++) {
|
2009-07-02 06:50:43 +00:00
|
|
|
Object* k = HashTable<Shape, Key>::KeyAt(i);
|
|
|
|
|
if (Dictionary<Shape, Key>::IsKey(k)) {
|
2009-06-30 10:05:36 +00:00
|
|
|
Object* e = ValueAt(i);
|
|
|
|
|
if (e->IsJSGlobalPropertyCell()) {
|
|
|
|
|
e = JSGlobalPropertyCell::cast(e)->value();
|
|
|
|
|
}
|
|
|
|
|
if (e == value) return k;
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = Dictionary<Shape, Key>::GetHeap();
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-10-25 15:22:03 +00:00
|
|
|
MaybeObject* StringDictionary::TransformPropertiesToFastFor(
|
2009-07-02 06:50:43 +00:00
|
|
|
JSObject* obj, int unused_property_fields) {
|
2008-07-03 15:10:15 +00:00
|
|
|
// Make sure we preserve dictionary representation if there are too many
|
|
|
|
|
// descriptors.
|
|
|
|
|
if (NumberOfElements() > DescriptorArray::kMaxNumberOfDescriptors) return obj;
|
|
|
|
|
|
|
|
|
|
// Figure out if it is necessary to generate new enumeration indices.
|
|
|
|
|
int max_enumeration_index =
|
|
|
|
|
NextEnumerationIndex() +
|
2009-07-02 06:50:43 +00:00
|
|
|
(DescriptorArray::kMaxNumberOfDescriptors -
|
|
|
|
|
NumberOfElements());
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!PropertyDetails::IsValidIndex(max_enumeration_index)) {
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* result;
|
|
|
|
|
{ MaybeObject* maybe_result = GenerateNewEnumerationIndices();
|
|
|
|
|
if (!maybe_result->ToObject(&result)) return maybe_result;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int instance_descriptor_length = 0;
|
|
|
|
|
int number_of_fields = 0;
|
|
|
|
|
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = GetHeap();
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
// Compute the length of the instance descriptor.
|
|
|
|
|
int capacity = Capacity();
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
Object* value = ValueAt(i);
|
|
|
|
|
PropertyType type = DetailsAt(i).type();
|
|
|
|
|
ASSERT(type != FIELD);
|
|
|
|
|
instance_descriptor_length++;
|
2009-12-16 15:43:20 +00:00
|
|
|
if (type == NORMAL &&
|
2011-03-18 20:35:07 +00:00
|
|
|
(!value->IsJSFunction() || heap->InNewSpace(value))) {
|
2009-12-16 15:43:20 +00:00
|
|
|
number_of_fields += 1;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Allocate the instance descriptor.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* descriptors_unchecked;
|
|
|
|
|
{ MaybeObject* maybe_descriptors_unchecked =
|
|
|
|
|
DescriptorArray::Allocate(instance_descriptor_length);
|
|
|
|
|
if (!maybe_descriptors_unchecked->ToObject(&descriptors_unchecked)) {
|
|
|
|
|
return maybe_descriptors_unchecked;
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-08-27 10:11:39 +00:00
|
|
|
DescriptorArray* descriptors = DescriptorArray::cast(descriptors_unchecked);
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-01-12 10:59:58 +00:00
|
|
|
int inobject_props = obj->map()->inobject_properties();
|
|
|
|
|
int number_of_allocated_fields =
|
|
|
|
|
number_of_fields + unused_property_fields - inobject_props;
|
2010-10-01 12:40:30 +00:00
|
|
|
if (number_of_allocated_fields < 0) {
|
|
|
|
|
// There is enough inobject space for all fields (including unused).
|
|
|
|
|
number_of_allocated_fields = 0;
|
|
|
|
|
unused_property_fields = inobject_props - number_of_fields;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Allocate the fixed array for the fields.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* fields;
|
|
|
|
|
{ MaybeObject* maybe_fields =
|
2011-03-18 20:35:07 +00:00
|
|
|
heap->AllocateFixedArray(number_of_allocated_fields);
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_fields->ToObject(&fields)) return maybe_fields;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Fill in the instance descriptor and the fields.
|
2009-07-10 19:25:18 +00:00
|
|
|
int next_descriptor = 0;
|
2008-07-03 15:10:15 +00:00
|
|
|
int current_offset = 0;
|
|
|
|
|
for (int i = 0; i < capacity; i++) {
|
|
|
|
|
Object* k = KeyAt(i);
|
|
|
|
|
if (IsKey(k)) {
|
|
|
|
|
Object* value = ValueAt(i);
|
|
|
|
|
// Ensure the key is a symbol before writing into the instance descriptor.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* key;
|
2011-03-18 20:35:07 +00:00
|
|
|
{ MaybeObject* maybe_key = heap->LookupSymbol(String::cast(k));
|
2010-10-25 15:22:03 +00:00
|
|
|
if (!maybe_key->ToObject(&key)) return maybe_key;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
PropertyDetails details = DetailsAt(i);
|
|
|
|
|
PropertyType type = details.type();
|
2009-01-12 10:59:58 +00:00
|
|
|
|
2011-03-18 20:35:07 +00:00
|
|
|
if (value->IsJSFunction() && !heap->InNewSpace(value)) {
|
2008-07-03 15:10:15 +00:00
|
|
|
ConstantFunctionDescriptor d(String::cast(key),
|
|
|
|
|
JSFunction::cast(value),
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (type == NORMAL) {
|
2009-01-12 10:59:58 +00:00
|
|
|
if (current_offset < inobject_props) {
|
|
|
|
|
obj->InObjectPropertyAtPut(current_offset,
|
|
|
|
|
value,
|
|
|
|
|
UPDATE_WRITE_BARRIER);
|
|
|
|
|
} else {
|
|
|
|
|
int offset = current_offset - inobject_props;
|
|
|
|
|
FixedArray::cast(fields)->set(offset, value);
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
FieldDescriptor d(String::cast(key),
|
|
|
|
|
current_offset++,
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else if (type == CALLBACKS) {
|
|
|
|
|
CallbacksDescriptor d(String::cast(key),
|
|
|
|
|
value,
|
|
|
|
|
details.attributes(),
|
|
|
|
|
details.index());
|
2009-07-10 19:25:18 +00:00
|
|
|
descriptors->Set(next_descriptor++, &d);
|
2008-07-03 15:10:15 +00:00
|
|
|
} else {
|
|
|
|
|
UNREACHABLE();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ASSERT(current_offset == number_of_fields);
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
descriptors->Sort();
|
2008-07-03 15:10:15 +00:00
|
|
|
// Allocate new map.
|
2010-10-25 15:22:03 +00:00
|
|
|
Object* new_map;
|
|
|
|
|
{ MaybeObject* maybe_new_map = obj->map()->CopyDropDescriptors();
|
|
|
|
|
if (!maybe_new_map->ToObject(&new_map)) return maybe_new_map;
|
|
|
|
|
}
|
2008-07-03 15:10:15 +00:00
|
|
|
|
|
|
|
|
// Transform the object.
|
|
|
|
|
obj->set_map(Map::cast(new_map));
|
2008-08-27 10:11:39 +00:00
|
|
|
obj->map()->set_instance_descriptors(descriptors);
|
|
|
|
|
obj->map()->set_unused_property_fields(unused_property_fields);
|
|
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
obj->set_properties(FixedArray::cast(fields));
|
|
|
|
|
ASSERT(obj->IsJSObject());
|
|
|
|
|
|
2008-08-27 10:11:39 +00:00
|
|
|
descriptors->SetNextEnumerationIndex(NextEnumerationIndex());
|
2009-01-12 10:59:58 +00:00
|
|
|
// Check that it really works.
|
2008-07-03 15:10:15 +00:00
|
|
|
ASSERT(obj->HasFastProperties());
|
2009-01-12 10:59:58 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
return obj;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-28 17:21:22 +00:00
|
|
|
Object* ObjectHashTable::Lookup(JSObject* key) {
|
|
|
|
|
// If the object does not have an identity hash, it was never used as a key.
|
|
|
|
|
MaybeObject* maybe_hash = key->GetIdentityHash(JSObject::OMIT_CREATION);
|
|
|
|
|
if (maybe_hash->IsFailure()) return GetHeap()->undefined_value();
|
|
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
if (entry == kNotFound) return GetHeap()->undefined_value();
|
|
|
|
|
return get(EntryToIndex(entry) + 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MaybeObject* ObjectHashTable::Put(JSObject* key, Object* value) {
|
|
|
|
|
// Make sure the key object has an identity hash code.
|
|
|
|
|
int hash;
|
|
|
|
|
{ MaybeObject* maybe_hash = key->GetIdentityHash(JSObject::ALLOW_CREATION);
|
|
|
|
|
if (maybe_hash->IsFailure()) return maybe_hash;
|
|
|
|
|
hash = Smi::cast(maybe_hash->ToObjectUnchecked())->value();
|
|
|
|
|
}
|
|
|
|
|
int entry = FindEntry(key);
|
|
|
|
|
|
|
|
|
|
// Check whether to perform removal operation.
|
|
|
|
|
if (value->IsUndefined()) {
|
|
|
|
|
if (entry == kNotFound) return this;
|
|
|
|
|
RemoveEntry(entry);
|
|
|
|
|
return Shrink(key);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Key is already in table, just overwrite value.
|
|
|
|
|
if (entry != kNotFound) {
|
|
|
|
|
set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
return this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check whether the hash table should be extended.
|
|
|
|
|
Object* obj;
|
|
|
|
|
{ MaybeObject* maybe_obj = EnsureCapacity(1, key);
|
|
|
|
|
if (!maybe_obj->ToObject(&obj)) return maybe_obj;
|
|
|
|
|
}
|
|
|
|
|
ObjectHashTable* table = ObjectHashTable::cast(obj);
|
|
|
|
|
table->AddEntry(table->FindInsertionEntry(hash), key, value);
|
|
|
|
|
return table;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void ObjectHashTable::AddEntry(int entry, JSObject* key, Object* value) {
|
|
|
|
|
set(EntryToIndex(entry), key);
|
|
|
|
|
set(EntryToIndex(entry) + 1, value);
|
|
|
|
|
ElementAdded();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-08-03 12:48:30 +00:00
|
|
|
void ObjectHashTable::RemoveEntry(int entry, Heap* heap) {
|
|
|
|
|
set_null(heap, EntryToIndex(entry));
|
|
|
|
|
set_null(heap, EntryToIndex(entry) + 1);
|
2011-07-28 17:21:22 +00:00
|
|
|
ElementRemoved();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2009-04-20 16:36:13 +00:00
|
|
|
#ifdef ENABLE_DEBUGGER_SUPPORT
|
2008-07-03 15:10:15 +00:00
|
|
|
// Check if there is a break point at this code position.
|
|
|
|
|
bool DebugInfo::HasBreakPoint(int code_position) {
|
|
|
|
|
// Get the break point info object for this code position.
|
|
|
|
|
Object* break_point_info = GetBreakPointInfo(code_position);
|
|
|
|
|
|
|
|
|
|
// If there is no break point info object or no break points in the break
|
|
|
|
|
// point info object there is no break point at this code position.
|
|
|
|
|
if (break_point_info->IsUndefined()) return false;
|
|
|
|
|
return BreakPointInfo::cast(break_point_info)->GetBreakPointCount() > 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the break point info object for this code position.
|
|
|
|
|
Object* DebugInfo::GetBreakPointInfo(int code_position) {
|
|
|
|
|
// Find the index of the break point info object for this code position.
|
|
|
|
|
int index = GetBreakPointInfoIndex(code_position);
|
|
|
|
|
|
|
|
|
|
// Return the break point info object if any.
|
2011-03-31 10:55:53 +00:00
|
|
|
if (index == kNoBreakPointInfo) return GetHeap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
return BreakPointInfo::cast(break_points()->get(index));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Clear a break point at the specified code position.
|
|
|
|
|
void DebugInfo::ClearBreakPoint(Handle<DebugInfo> debug_info,
|
|
|
|
|
int code_position,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
Handle<Object> break_point_info(debug_info->GetBreakPointInfo(code_position));
|
|
|
|
|
if (break_point_info->IsUndefined()) return;
|
|
|
|
|
BreakPointInfo::ClearBreakPoint(
|
|
|
|
|
Handle<BreakPointInfo>::cast(break_point_info),
|
|
|
|
|
break_point_object);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void DebugInfo::SetBreakPoint(Handle<DebugInfo> debug_info,
|
|
|
|
|
int code_position,
|
|
|
|
|
int source_position,
|
|
|
|
|
int statement_position,
|
|
|
|
|
Handle<Object> break_point_object) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = Isolate::Current();
|
2008-07-03 15:10:15 +00:00
|
|
|
Handle<Object> break_point_info(debug_info->GetBreakPointInfo(code_position));
|
|
|
|
|
if (!break_point_info->IsUndefined()) {
|
|
|
|
|
BreakPointInfo::SetBreakPoint(
|
|
|
|
|
Handle<BreakPointInfo>::cast(break_point_info),
|
|
|
|
|
break_point_object);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Adding a new break point for a code position which did not have any
|
|
|
|
|
// break points before. Try to find a free slot.
|
|
|
|
|
int index = kNoBreakPointInfo;
|
|
|
|
|
for (int i = 0; i < debug_info->break_points()->length(); i++) {
|
|
|
|
|
if (debug_info->break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
index = i;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (index == kNoBreakPointInfo) {
|
|
|
|
|
// No free slot - extend break point info array.
|
|
|
|
|
Handle<FixedArray> old_break_points =
|
|
|
|
|
Handle<FixedArray>(FixedArray::cast(debug_info->break_points()));
|
|
|
|
|
Handle<FixedArray> new_break_points =
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->factory()->NewFixedArray(
|
|
|
|
|
old_break_points->length() +
|
|
|
|
|
Debug::kEstimatedNofBreakPointsInFunction);
|
2010-09-23 08:27:51 +00:00
|
|
|
|
|
|
|
|
debug_info->set_break_points(*new_break_points);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < old_break_points->length(); i++) {
|
|
|
|
|
new_break_points->set(i, old_break_points->get(i));
|
|
|
|
|
}
|
|
|
|
|
index = old_break_points->length();
|
|
|
|
|
}
|
|
|
|
|
ASSERT(index != kNoBreakPointInfo);
|
|
|
|
|
|
|
|
|
|
// Allocate new BreakPointInfo object and set the break point.
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<BreakPointInfo> new_break_point_info = Handle<BreakPointInfo>::cast(
|
|
|
|
|
isolate->factory()->NewStruct(BREAK_POINT_INFO_TYPE));
|
2008-07-03 15:10:15 +00:00
|
|
|
new_break_point_info->set_code_position(Smi::FromInt(code_position));
|
|
|
|
|
new_break_point_info->set_source_position(Smi::FromInt(source_position));
|
|
|
|
|
new_break_point_info->
|
|
|
|
|
set_statement_position(Smi::FromInt(statement_position));
|
2011-03-18 20:35:07 +00:00
|
|
|
new_break_point_info->set_break_point_objects(
|
|
|
|
|
isolate->heap()->undefined_value());
|
2008-07-03 15:10:15 +00:00
|
|
|
BreakPointInfo::SetBreakPoint(new_break_point_info, break_point_object);
|
|
|
|
|
debug_info->break_points()->set(index, *new_break_point_info);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the break point objects for a code position.
|
|
|
|
|
Object* DebugInfo::GetBreakPointObjects(int code_position) {
|
|
|
|
|
Object* break_point_info = GetBreakPointInfo(code_position);
|
|
|
|
|
if (break_point_info->IsUndefined()) {
|
2011-03-31 10:55:53 +00:00
|
|
|
return GetHeap()->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return BreakPointInfo::cast(break_point_info)->break_point_objects();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the total number of break points.
|
|
|
|
|
int DebugInfo::GetBreakPointCount() {
|
|
|
|
|
if (break_points()->IsUndefined()) return 0;
|
|
|
|
|
int count = 0;
|
|
|
|
|
for (int i = 0; i < break_points()->length(); i++) {
|
|
|
|
|
if (!break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
BreakPointInfo* break_point_info =
|
|
|
|
|
BreakPointInfo::cast(break_points()->get(i));
|
|
|
|
|
count += break_point_info->GetBreakPointCount();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return count;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Object* DebugInfo::FindBreakPointInfo(Handle<DebugInfo> debug_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
2011-03-31 10:55:53 +00:00
|
|
|
Heap* heap = debug_info->GetHeap();
|
2011-03-18 20:35:07 +00:00
|
|
|
if (debug_info->break_points()->IsUndefined()) return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < debug_info->break_points()->length(); i++) {
|
|
|
|
|
if (!debug_info->break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
Handle<BreakPointInfo> break_point_info =
|
|
|
|
|
Handle<BreakPointInfo>(BreakPointInfo::cast(
|
|
|
|
|
debug_info->break_points()->get(i)));
|
|
|
|
|
if (BreakPointInfo::HasBreakPointObject(break_point_info,
|
|
|
|
|
break_point_object)) {
|
|
|
|
|
return *break_point_info;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2011-03-18 20:35:07 +00:00
|
|
|
return heap->undefined_value();
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Find the index of the break point info object for the specified code
|
|
|
|
|
// position.
|
|
|
|
|
int DebugInfo::GetBreakPointInfoIndex(int code_position) {
|
|
|
|
|
if (break_points()->IsUndefined()) return kNoBreakPointInfo;
|
|
|
|
|
for (int i = 0; i < break_points()->length(); i++) {
|
|
|
|
|
if (!break_points()->get(i)->IsUndefined()) {
|
|
|
|
|
BreakPointInfo* break_point_info =
|
|
|
|
|
BreakPointInfo::cast(break_points()->get(i));
|
|
|
|
|
if (break_point_info->code_position()->value() == code_position) {
|
|
|
|
|
return i;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return kNoBreakPointInfo;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Remove the specified break point object.
|
|
|
|
|
void BreakPointInfo::ClearBreakPoint(Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Isolate* isolate = Isolate::Current();
|
2008-07-03 15:10:15 +00:00
|
|
|
// If there are no break points just ignore.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) return;
|
|
|
|
|
// If there is a single break point clear it if it is the same.
|
|
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
|
|
|
|
if (break_point_info->break_point_objects() == *break_point_object) {
|
2011-03-18 20:35:07 +00:00
|
|
|
break_point_info->set_break_point_objects(
|
|
|
|
|
isolate->heap()->undefined_value());
|
2008-07-03 15:10:15 +00:00
|
|
|
}
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If there are multiple break points shrink the array
|
|
|
|
|
ASSERT(break_point_info->break_point_objects()->IsFixedArray());
|
|
|
|
|
Handle<FixedArray> old_array =
|
|
|
|
|
Handle<FixedArray>(
|
|
|
|
|
FixedArray::cast(break_point_info->break_point_objects()));
|
|
|
|
|
Handle<FixedArray> new_array =
|
2011-03-18 20:35:07 +00:00
|
|
|
isolate->factory()->NewFixedArray(old_array->length() - 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
int found_count = 0;
|
|
|
|
|
for (int i = 0; i < old_array->length(); i++) {
|
|
|
|
|
if (old_array->get(i) == *break_point_object) {
|
|
|
|
|
ASSERT(found_count == 0);
|
|
|
|
|
found_count++;
|
|
|
|
|
} else {
|
|
|
|
|
new_array->set(i - found_count, old_array->get(i));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// If the break point was found in the list change it.
|
|
|
|
|
if (found_count > 0) break_point_info->set_break_point_objects(*new_array);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Add the specified break point object.
|
|
|
|
|
void BreakPointInfo::SetBreakPoint(Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
// If there was no break point objects before just set it.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) {
|
|
|
|
|
break_point_info->set_break_point_objects(*break_point_object);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If the break point object is the same as before just ignore.
|
|
|
|
|
if (break_point_info->break_point_objects() == *break_point_object) return;
|
|
|
|
|
// If there was one break point object before replace with array.
|
|
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
2011-03-18 20:35:07 +00:00
|
|
|
Handle<FixedArray> array = FACTORY->NewFixedArray(2);
|
2008-07-03 15:10:15 +00:00
|
|
|
array->set(0, break_point_info->break_point_objects());
|
|
|
|
|
array->set(1, *break_point_object);
|
|
|
|
|
break_point_info->set_break_point_objects(*array);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
// If there was more than one break point before extend array.
|
|
|
|
|
Handle<FixedArray> old_array =
|
|
|
|
|
Handle<FixedArray>(
|
|
|
|
|
FixedArray::cast(break_point_info->break_point_objects()));
|
|
|
|
|
Handle<FixedArray> new_array =
|
2011-03-18 20:35:07 +00:00
|
|
|
FACTORY->NewFixedArray(old_array->length() + 1);
|
2008-07-03 15:10:15 +00:00
|
|
|
for (int i = 0; i < old_array->length(); i++) {
|
|
|
|
|
// If the break point was there before just ignore.
|
|
|
|
|
if (old_array->get(i) == *break_point_object) return;
|
|
|
|
|
new_array->set(i, old_array->get(i));
|
|
|
|
|
}
|
|
|
|
|
// Add the new break point.
|
|
|
|
|
new_array->set(old_array->length(), *break_point_object);
|
|
|
|
|
break_point_info->set_break_point_objects(*new_array);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool BreakPointInfo::HasBreakPointObject(
|
|
|
|
|
Handle<BreakPointInfo> break_point_info,
|
|
|
|
|
Handle<Object> break_point_object) {
|
|
|
|
|
// No break point.
|
|
|
|
|
if (break_point_info->break_point_objects()->IsUndefined()) return false;
|
2011-08-03 11:12:46 +00:00
|
|
|
// Single break point.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!break_point_info->break_point_objects()->IsFixedArray()) {
|
|
|
|
|
return break_point_info->break_point_objects() == *break_point_object;
|
|
|
|
|
}
|
|
|
|
|
// Multiple break points.
|
|
|
|
|
FixedArray* array = FixedArray::cast(break_point_info->break_point_objects());
|
|
|
|
|
for (int i = 0; i < array->length(); i++) {
|
|
|
|
|
if (array->get(i) == *break_point_object) {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Get the number of break points.
|
|
|
|
|
int BreakPointInfo::GetBreakPointCount() {
|
|
|
|
|
// No break point.
|
|
|
|
|
if (break_point_objects()->IsUndefined()) return 0;
|
2011-08-03 11:12:46 +00:00
|
|
|
// Single break point.
|
2008-07-03 15:10:15 +00:00
|
|
|
if (!break_point_objects()->IsFixedArray()) return 1;
|
|
|
|
|
// Multiple break points.
|
|
|
|
|
return FixedArray::cast(break_point_objects())->length();
|
|
|
|
|
}
|
2009-04-20 16:36:13 +00:00
|
|
|
#endif
|
2008-07-03 15:10:15 +00:00
|
|
|
|
2009-07-02 06:50:43 +00:00
|
|
|
|
2008-07-03 15:10:15 +00:00
|
|
|
} } // namespace v8::internal
|
