| blob | 68332bc939a86952ffb0960d7521ed8b90726159 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*-
2 * vim: set ts=8 sts=4 et sw=4 tw=99:
3 * This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
7 #ifndef jscompartment_h
8 #define jscompartment_h
23 }
27 }
31 /*
32 * A single-entry cache for some base-10 double-to-string conversions. This
33 * helps date-format-xparb.js. It also avoids skewing the results for
34 * v8-splay.js when measured by the SunSpider harness, where the splay tree
35 * initialization (which includes many repeated double-to-string conversions)
36 * is erroneously included in the measurement; see bug 562553.
37 */
49 }
55 }
56 };
58 struct CrossCompartmentKey
59 {
61 ObjectWrapper,
62 StringWrapper,
63 DebuggerScript,
64 DebuggerSource,
65 DebuggerObject,
66 DebuggerEnvironment
67 };
69 Kind kind;
75 {
77 }
80 {
82 }
87 {
90 }
95 {
98 }
101 {
104 }
108 };
111 {
117 }
121 }
122 };
131 }
137 }
139 struct JSCompartment
140 {
153 // A null add-on ID means that the compartment is not associated with an
154 // add-on.
157 #ifdef DEBUG
159 #endif
177 }
178 enterCompartmentDepth++;
179 }
181 enterCompartmentDepth--;
184 }
185 }
196 }
198 // Note: Unrestricted access to the zone's runtime from an arbitrary
199 // thread can easily lead to races. Use this method very carefully.
202 }
204 /*
205 * Nb: global_ might be nullptr, if (a) it's the atoms compartment, or
206 * (b) the compartment's global has been collected. The latter can happen
207 * if e.g. a string in a compartment is rooted but no object is, and thus
208 * the global isn't rooted, and thus the global can be finalized while the
209 * compartment lives on.
210 *
211 * In contrast, JSObject::global() is infallible because marking a JSObject
212 * always marks its global as well.
213 * TODO: add infallible JSScript::global()
214 */
217 /* An unbarriered getter for use while tracing. */
223 /*
224 * Moves all data from the allocator |workerAllocator|, which was
225 * in use by a parallel worker, into the compartment's main
226 * allocator. This is used at the end of a parallel section.
227 */
230 /* Type information about the scripts and objects in this compartment. */
243 /* Last time at which an animation was played for a global in this compartment. */
248 /*
249 * For generational GC, record whether a write barrier has added this
250 * compartment's global to the store buffer since the last minor GC.
251 *
252 * This is used to avoid adding it to the store buffer on every write, which
253 * can quickly fill the buffer and also cause performance problems.
254 */
257 // Non-zero if any typed objects in this compartment might be neutered.
273 /*
274 * Shared scope property tree, and arena-pool for allocating its nodes.
275 */
278 /* Set of all unowned base shapes in the compartment. */
282 /* Set of initial shapes in the compartment. */
286 /* Set of default 'new' or lazy types in the compartment. */
291 #ifdef JSGC_HASH_TABLE_CHECKS
297 #endif
299 /*
300 * Hash table of all manually call site-cloned functions from within
301 * self-hosted code. Cloning according to call site provides extra
302 * sensitivity for type specialization and inlining.
303 */
307 /*
308 * Lazily initialized script source object to use for scripts cloned
309 * from the self-hosting global.
310 */
313 // Map from array buffers to views sharing that storage.
316 // Map from typed objects to array buffers lazily created for them.
319 /* During GC, stores the index of this compartment in rt->compartments. */
322 /*
323 * During GC, stores the head of a list of incoming pointers from gray cells.
324 *
325 * The objects in the list are either cross-compartment wrappers, or
326 * debugger wrapper objects. The list link is either in the second extra
327 * slot for the former, or a special slot for the latter.
328 */
331 /* Linked list of live weakmaps in this compartment. */
335 /* Whether to preserve JIT code on non-shrinking GCs. */
342 };
344 // DebugObservesAllExecution is a submode of DebugMode, and is only valid
345 // when DebugMode is also set.
356 /* Mark cross-compartment wrappers. */
372 }
374 };
376 bool putWrapper(JSContext* cx, const js::CrossCompartmentKey& wrapped, const js::Value& wrapper);
380 }
384 }
388 };
409 #ifdef JSGC_COMPACTING
415 #endif
421 }
424 }
427 }
435 /* Random number generator state, used by jsmath.cpp. */
442 //
443 // The Debugger observes execution on a frame-by-frame basis. The
444 // invariants of JSCompartment's debug mode bits, JSScript::isDebuggee,
445 // InterpreterFrame::isDebuggee, and Baseline::isDebuggee are enumerated
446 // below.
447 //
448 // 1. When a compartment's isDebuggee() == true, relazification, lazy
449 // parsing, and asm.js are disabled.
450 //
451 // 2. When a compartment's debugObservesAllExecution() == true, all of the
452 // compartment's scripts are considered debuggee scripts.
453 //
454 // 3. A script is considered a debuggee script either when, per above, its
455 // compartment is observing all execution, or if it has breakpoints set.
456 //
457 // 4. A debuggee script always pushes a debuggee frame.
458 //
459 // 5. A debuggee frame calls all slow path Debugger hooks in the
460 // Interpreter and Baseline. A debuggee frame implies that its script's
461 // BaselineScript, if extant, has been compiled with debug hook calls.
462 //
463 // 6. A debuggee script or a debuggee frame (i.e., during OSR) ensures
464 // that the compiled BaselineScript is compiled with debug hook calls
465 // when attempting to enter Baseline.
466 //
467 // 7. A debuggee script or a debuggee frame (i.e., during OSR) does not
468 // attempt to enter Ion.
469 //
470 // Note that a debuggee frame may exist without its script being a
471 // debuggee script. e.g., Debugger.Frame.prototype.eval only marks the
472 // frame in which it is evaluating as a debuggee frame.
473 //
475 // True if this compartment's global is a debuggee of some Debugger
476 // object.
481 // True if an this compartment's global is a debuggee of some Debugger
482 // object with a live hook that observes all execution; e.g.,
483 // onEnterFrame.
486 }
490 }
494 }
496 /*
497 * Schedule the compartment to be delazified. Called from
498 * LazyScript::Create.
499 */
502 /*
503 * If we scheduled delazification for turning on debug mode, delazify all
504 * scripts.
505 */
520 /* Bookkeeping information for debug scope objects. */
523 /*
524 * List of potentially active iterators that may need deleted property
525 * suppression.
526 */
529 /* Used by memory reporters and invalid otherwise. */
532 // These flags help us to discover if a compartment that shouldn't be alive
533 // manages to outlive a GC.
544 }
545 };
549 {
551 }
557 {
558 /*
559 * It's safe to use |unsafeGet()| here because any compartment that is
560 * on-stack will be marked automatically, so there's no need for a read
561 * barrier on it. Once the compartment is popped, the handle is no longer
562 * safe to use.
563 */
566 }
568 class AssertCompartmentUnchanged
569 {
572 MOZ_GUARD_OBJECT_NOTIFIER_PARAM)
574 {
575 MOZ_GUARD_OBJECT_NOTIFIER_INIT;
576 }
580 }
585 MOZ_DECL_USE_GUARD_OBJECT_NOTIFIER
586 };
588 class AutoCompartment
589 {
604 };
606 /*
607 * Use this to change the behavior of an AutoCompartment slightly on error. If
608 * the exception happens to be an Error object, copy it to the origin compartment
609 * instead of wrapping it.
610 */
611 class ErrorCopier
612 {
619 };
621 /*
622 * AutoWrapperVector and AutoWrapperRooter can be used to store wrappers that
623 * are obtained from the cross-compartment map. However, these classes should
624 * not be used if the wrapper will escape. For example, it should not be stored
625 * in the heap.
626 *
627 * The AutoWrapper rooters are different from other autorooters because their
628 * wrappers are marked on every GC slice rather than just the first one. If
629 * there's some wrapper that we want to use temporarily without causing it to be
630 * marked, we can use these AutoWrapper classes. If we get unlucky and a GC
631 * slice runs during the code using the wrapper, the GC will mark the wrapper so
632 * that it doesn't get swept out from under us. Otherwise, the wrapper needn't
633 * be marked. This is useful in functions like JS_TransplantObject that
634 * manipulate wrappers in compartments that may no longer be alive.
635 */
637 /*
638 * This class stores the data for AutoWrapperVector and AutoWrapperRooter. It
639 * should not be used in any other situations.
640 */
641 struct WrapperValue
642 {
643 /*
644 * We use unsafeGet() in the constructors to avoid invoking a read barrier
645 * on the wrapper, which may be dead (see the comment about bug 803376 in
646 * jsgc.cpp regarding this). If there is an incremental GC while the wrapper
647 * is in use, the AutoWrapper rooter will ensure the wrapper gets marked.
648 */
651 {}
655 {}
663 Value value;
664 };
667 {
670 MOZ_GUARD_OBJECT_NOTIFIER_PARAM)
672 {
673 MOZ_GUARD_OBJECT_NOTIFIER_INIT;
674 }
676 MOZ_DECL_USE_GUARD_OBJECT_NOTIFIER
677 };
682 MOZ_GUARD_OBJECT_NOTIFIER_PARAM)
684 {
685 MOZ_GUARD_OBJECT_NOTIFIER_INIT;
686 }
690 }
695 WrapperValue value;
696 MOZ_DECL_USE_GUARD_OBJECT_NOTIFIER
697 };