| blob | 39a9d792f9762d35b94ebef576b6fcd7fca83245 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*-
2 * vim: set ts=8 sw=4 et tw=78:
3 *
4 * ***** BEGIN LICENSE BLOCK *****
5 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
6 *
7 * The contents of this file are subject to the Mozilla Public License Version
8 * 1.1 (the "License"); you may not use this file except in compliance with
9 * the License. You may obtain a copy of the License at
10 * http://www.mozilla.org/MPL/
11 *
12 * Software distributed under the License is distributed on an "AS IS" basis,
13 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
14 * for the specific language governing rights and limitations under the
15 * License.
16 *
17 * The Original Code is Mozilla Communicator client code, released
18 * March 31, 1998.
19 *
20 * The Initial Developer of the Original Code is
21 * Netscape Communications Corporation.
22 * Portions created by the Initial Developer are Copyright (C) 1998
23 * the Initial Developer. All Rights Reserved.
24 *
25 * Contributor(s):
26 *
27 * Alternatively, the contents of this file may be used under the terms of
28 * either of the GNU General Public License Version 2 or later (the "GPL"),
29 * or the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
30 * in which case the provisions of the GPL or the LGPL are applicable instead
31 * of those above. If you wish to allow use of your version of this file only
32 * under the terms of either the GPL or the LGPL, and not to allow others to
33 * use your version of this file under the terms of the MPL, indicate your
34 * decision by deleting the provisions above and replace them with the notice
35 * and other provisions required by the GPL or the LGPL. If you do not delete
36 * the provisions above, a recipient may use your version of this file under
37 * the terms of any one of the MPL, the GPL or the LGPL.
38 *
39 * ***** END LICENSE BLOCK ***** */
41 #ifndef jscntxt_h___
42 #define jscntxt_h___
43 /*
44 * JS execution context.
45 */
46 #include <string.h>
48 /* Gross special case for Gecko, which defines malloc/calloc/free. */
49 #ifdef mozilla_mozalloc_macro_wrappers_h
50 # define JS_UNDEFD_MOZALLOC_WRAPPERS
51 /* The "anti-header" */
53 #endif
76 #ifdef _MSC_VER
77 #pragma warning(push)
79 #pragma warning(push)
80 #pragma warning(disable:4355) /* Silence warning about "this" used in base member initializer list */
81 #endif
83 /*
84 * js_GetSrcNote cache to avoid O(n^2) growth in finding a source note for a
85 * given pc in a script. We use the script->code pointer to tag the cache,
86 * instead of the script address itself, so that source notes are always found
87 * by offset from the bytecode with which they were generated.
88 */
91 JSDHashTable table;
92 #ifdef JS_GSNMETER
93 uint32 hits;
94 uint32 misses;
95 uint32 fills;
96 uint32 purges;
97 # define GSN_CACHE_METER(cache,cnt) (++(cache)->cnt)
98 #else
100 #endif
103 #define js_FinishGSNCache(cache) js_PurgeGSNCache(cache)
108 /* These helper macros take a cx as parameter and operate on its GSN cache. */
109 #define JS_PURGE_GSN_CACHE(cx) js_PurgeGSNCache(&JS_GSN_CACHE(cx))
110 #define JS_METER_GSN_CACHE(cx,cnt) GSN_CACHE_METER(&JS_GSN_CACHE(cx), cnt)
112 /* Forward declarations of nanojit types. */
126 }
130 /* Tracer constants. */
139 /* Forward declarations of tracer types. */
154 #if defined(JS_JIT_SPEW) || defined(DEBUG)
157 #endif
159 /*
160 * Allocation policy that calls JSContext memory functions and reports errors
161 * to the context. Since the JSContext given on construction is stored for
162 * the lifetime of the container, this policy may only be used for containers
163 * whose lifetime is a shorter than the given JSContext.
164 */
165 class ContextAllocPolicy
166 {
173 /* Inline definitions below. */
178 };
180 /* Holds the execution state during trace execution. */
181 struct TracerState
182 {
193 // call exit guard mismatched
200 uint64 startTime;
203 // Used by _FAIL builtins; see jsbuiltins.h. The builtin sets the
204 // JSBUILTIN_BAILED bit if it bails off trace and the JSBUILTIN_ERROR bit
205 // if an error or exception occurred.
206 uint32 builtinStatus;
208 // Used to communicate the location of the return value in case of a deep bail.
211 // Used when calling natives from trace to root the vp vector.
212 uintN nativeVpLen;
215 // The regs pointed to by cx->regs while a deep-bailed slow native
216 // completes execution.
217 JSFrameRegs bailedSlowNativeRegs;
222 };
224 /*
225 * Storage for the execution state and store during trace execution. Generated
226 * code depends on the fact that the globals begin |MAX_NATIVE_STACK_SLOTS|
227 * doubles after the stack begins. Thus, on trace, |TracerState::eos| holds a
228 * pointer to the first global.
229 */
230 struct TraceNativeStorage
231 {
238 };
240 /* Holds data to track a single globa. */
243 uint32 globalShape;
245 };
247 /*
248 * A StackSegment (referred to as just a 'segment') contains a down-linked set
249 * of stack frames and the slots associated with each frame. A segment and its
250 * contained frames/slots also have a precise memory layout that is described
251 * in the js::StackSpace comment. A key layout invariant for segments is that
252 * down-linked frames are adjacent in memory, separated only by the values that
253 * constitute the locals and expression stack of the down-frame and arguments
254 * of the up-frame.
255 *
256 * The set of stack frames in a non-empty segment start at the segment's
257 * "current frame", which is the most recently pushed frame, and ends at the
258 * segment's "initial frame". Note that, while all stack frames in a segment
259 * are down-linked, not all down-linked frames are in the same segment. Hence,
260 * for a segment |ss|, |ss->getInitialFrame()->down| may be non-null and in a
261 * different segment. This occurs when the VM reenters itself (via Invoke or
262 * Execute). In full generality, a single context may contain a forest of trees
263 * of stack frames. With respect to this forest, a segment contains a linear
264 * path along a single tree, not necessarily to the root.
265 *
266 * The frames of a non-empty segment must all be in the same context and thus
267 * each non-empty segment is referred to as being "in" a context. Segments in a
268 * context have an additional state of being either "active" or "suspended". A
269 * suspended segment |ss| has a "suspended frame" which is snapshot of |cx->regs|
270 * when the segment was suspended and serves as the current frame of |ss|.
271 * There is at most one active segment in a given context. Segments in a
272 * context execute LIFO and are maintained in a stack. The top of this stack
273 * is the context's "current segment". If a context |cx| has an active segment
274 * |ss|, then:
275 * 1. |ss| is |cx|'s current segment,
276 * 2. |cx->regs != NULL|, and
277 * 3. |ss|'s current frame is |cx->regs->fp|.
278 * Moreover, |cx->regs != NULL| iff |cx| has an active segment.
279 *
280 * An empty segment is not associated with any context. Empty segments are
281 * created when there is not an active segment for a context at the top of the
282 * stack and claim space for the arguments of an Invoke before the Invoke's
283 * stack frame is pushed. During the intervals when the arguments have been
284 * pushed, but not the stack frame, the segment cannot be pushed onto the
285 * context, since that would require some hack to deal with cx->fp not being
286 * the current frame of cx->currentSegment.
287 *
288 * Finally, (to support JS_SaveFrameChain/JS_RestoreFrameChain) a suspended
289 * segment may or may not be "saved". Normally, when the active segment is
290 * popped, the previous segment (which is necessarily suspended) becomes
291 * active. If the previous segment was saved, however, then it stays suspended
292 * until it is made active by a call to JS_RestoreFrameChain. This is why a
293 * context may have a current segment, but not an active segment.
294 */
295 class StackSegment
296 {
297 /* The context to which this segment belongs. */
300 /* Link for JSContext segment stack mentioned in big comment above. */
303 /* Link for StackSpace segment stack mentioned in StackSpace comment. */
306 /* The first frame executed in this segment. null iff cx is null */
309 /* If this segment is suspended, |cx->regs| when it was suspended. */
312 /* The varobj on entry to initialFrame. */
315 /* Whether this segment was suspended by JS_SaveFrameChain. */
318 /* Align at 8 bytes on all platforms. */
319 #if JS_BITS_PER_WORD == 32
321 #endif
323 /*
324 * To make isActive a single null-ness check, this non-null constant is
325 * assigned to suspendedRegs when !inContext.
326 */
327 #define NON_NULL_SUSPENDED_REGS ((JSFrameRegs *)0x1)
334 {
336 }
338 /* Safe casts guaranteed by the contiguous-stack layout. */
342 }
346 }
348 /*
349 * As described in the comment at the beginning of the class, a segment
350 * is in one of three states:
351 *
352 * !inContext: the segment has been created to root arguments for a
353 * future call to Invoke.
354 * isActive: the segment describes a set of stack frames in a context,
355 * where the top frame currently executing.
356 * isSuspended: like isActive, but the top frame has been suspended.
357 */
363 }
369 }
375 }
377 /* Substate of suspended, queryable in any state. */
382 }
384 /* Transitioning between inContext <--> isActive */
392 }
400 }
404 }
406 #undef NON_NULL_SUSPENDED_REGS
408 /* Transitioning between isActive <--> isSuspended */
415 }
421 }
423 /* When isSuspended, transitioning isSaved <--> !isSaved */
430 }
437 }
439 /* Data available when inContext */
444 }
449 /* Data available when isSuspended. */
454 }
458 }
460 /* JSContext / js::StackSpace bookkeeping. */
464 }
468 }
472 }
476 }
481 }
486 }
488 #ifdef DEBUG
490 #endif
491 };
496 /* See StackSpace::pushInvokeArgs. */
498 {
503 #ifdef DEBUG
506 #endif
512 };
514 /*
515 * This type can be used to call Invoke when the arguments have already been
516 * pushed onto the stack as part of normal execution.
517 */
519 {
521 };
523 /* See StackSpace::pushInvokeFrame. */
524 class InvokeFrameGuard
525 {
528 JSFrameRegs regs;
535 };
537 /* See StackSpace::pushExecuteFrame. */
538 class FrameGuard
539 {
552 };
554 /*
555 * Stack layout
556 *
557 * Each JSThreadData has one associated StackSpace object which allocates all
558 * segments for the thread. StackSpace performs all such allocations in a
559 * single, fixed-size buffer using a specific layout scheme that allows some
560 * associations between segments, frames, and slots to be implicit, rather
561 * than explicitly stored as pointers. To maintain useful invariants, stack
562 * space is not given out arbitrarily, but rather allocated/deallocated for
563 * specific purposes. The use cases currently supported are: calling a function
564 * with arguments (e.g. Invoke), executing a script (e.g. Execute), inline
565 * interpreter calls, and pushing "dummy" frames for bookkeeping purposes. See
566 * associated member functions below.
567 *
568 * First, we consider the layout of individual segments. (See the
569 * js::StackSegment comment for terminology.) A non-empty segment (i.e., a
570 * segment in a context) has the following layout:
571 *
572 * initial frame current frame ------. if regs,
573 * .------------. | | regs->sp
574 * | V V V
575 * |segment| slots |frame| slots |frame| slots |frame| slots |
576 * | ^ | ^ |
577 * ? <----------' `----------' `----------'
578 * down down down
579 *
580 * Moreover, the bytes in the following ranges form a contiguous array of
581 * Values that are marked during GC:
582 * 1. between a segment and its first frame
583 * 2. between two adjacent frames in a segment
584 * 3. between a segment's current frame and (if fp->regs) fp->regs->sp
585 * Thus, the VM must ensure that all such Values are safe to be marked.
586 *
587 * An empty segment is followed by arguments that are rooted by the
588 * StackSpace::invokeArgEnd pointer:
589 *
590 * invokeArgEnd
591 * |
592 * V
593 * |segment| slots |
594 *
595 * Above the level of segments, a StackSpace is simply a contiguous sequence
596 * of segments kept in a linked list:
597 *
598 * base currentSegment firstUnused end
599 * | | | |
600 * V V V V
601 * |segment| --- |segment| --- |segment| ------- | |
602 * | ^ | ^ |
603 * 0 <---' `-----------' `-----------'
604 * previous previous previous
605 *
606 * Both js::StackSpace and JSContext maintain a stack of segments, the top of
607 * which is the "current segment" for that thread or context, respectively.
608 * Since different contexts can arbitrarily interleave execution in a single
609 * thread, these stacks are different enough that a segment needs both
610 * "previousInMemory" and "previousInContext".
611 *
612 * For example, in a single thread, a function in segment S1 in a context CX1
613 * may call out into C++ code that reenters the VM in a context CX2, which
614 * creates a new segment S2 in CX2, and CX1 may or may not equal CX2.
615 *
616 * Note that there is some structure to this interleaving of segments:
617 * 1. the inclusion from segments in a context to segments in a thread
618 * preserves order (in terms of previousInContext and previousInMemory,
619 * respectively).
620 * 2. the mapping from stack frames to their containing segment preserves
621 * order (in terms of down and previousInContext, respectively).
622 */
623 class StackSpace
624 {
626 #ifdef XP_WIN
628 #endif
631 #ifdef DEBUG
632 /*
633 * Keep track of which segment/frame bumped invokeArgEnd so that
634 * firstUnused() can assert that, when invokeArgEnd is used as the top of
635 * the stack, it is being used appropriately.
636 */
639 #endif
649 /* Although guards are friends, XGuard should only call popX(). */
657 /* Return a pointer to the first unused slot. */
658 JS_REQUIRES_STACK
662 #ifdef DEBUG
664 #endif
666 /*
667 * Allocate nvals on the top of the stack, report error on failure.
668 * N.B. the caller must ensure |from == firstUnused()|.
669 */
672 #ifdef XP_WIN
673 /* Commit more memory from the reserved stack space. */
675 #endif
683 /* Kept as a member of JSThreadData; cannot use constructor/destructor. */
687 #ifdef DEBUG
693 }
694 #endif
696 /*
697 * When we LeaveTree, we need to rebuild the stack, which requires stack
698 * allocation. There is no good way to handle an OOM for these allocations,
699 * so this function checks that they cannot occur using the size of the
700 * TraceNativeStorage as a conservative upper bound.
701 */
704 /* +1 for slow native's stack frame. */
709 /* Mark all segments, frames, and slots on the stack. */
712 /*
713 * For all four use cases below:
714 * - The boolean-valued functions call js_ReportOutOfScriptQuota on OOM.
715 * - The "get*Frame" functions do not change any global state, they just
716 * check OOM and return pointers to an uninitialized frame with the
717 * requested missing arguments/slots. Only once the "push*Frame"
718 * function has been called is global state updated. Thus, between
719 * "get*Frame" and "push*Frame", the frame and slots are unrooted.
720 * - The "push*Frame" functions will set fp->down; the caller needn't.
721 * - Functions taking "*Guard" arguments will use the guard's destructor
722 * to pop the allocation. The caller must ensure the guard has the
723 * appropriate lifetime.
724 * - The get*Frame functions put the 'nmissing' slots contiguously after
725 * the arguments.
726 */
728 /*
729 * pushInvokeArgs allocates |argc + 2| rooted values that will be passed as
730 * the arguments to Invoke. A single allocation can be used for multiple
731 * Invoke calls. The InvokeArgumentsGuard passed to Invoke must come from
732 * an immediately-enclosing (stack-wise) call to pushInvokeArgs.
733 */
734 JS_REQUIRES_STACK
737 /* These functions are called inside Invoke, not Invoke clients. */
742 JS_REQUIRES_STACK
745 /*
746 * For the simpler case when arguments are allocated at the same time as
747 * the frame and it is not necessary to have rooted argument values before
748 * pushing the frame.
749 */
750 JS_REQUIRES_STACK
754 JS_REQUIRES_STACK
758 /*
759 * Since RAII cannot be used for inline frames, callers must manually
760 * call pushInlineFrame/popInlineFrame.
761 */
762 JS_REQUIRES_STACK
766 JS_REQUIRES_STACK
770 JS_REQUIRES_STACK
773 /*
774 * For the special case of the slow native stack frame pushed and popped by
775 * tracing deep bail logic.
776 */
777 JS_REQUIRES_STACK
780 JS_REQUIRES_STACK
783 JS_REQUIRES_STACK
786 /*
787 * For pushing a bookkeeping frame.
788 */
789 JS_REQUIRES_STACK
791 };
795 /*
796 * While |cx->fp|'s pc/sp are available in |cx->regs|, to compute the saved
797 * value of pc/sp for any other frame, it is necessary to know about that
798 * frame's up-frame. This iterator maintains this information when walking down
799 * a chain of stack frames starting at |cx->fp|.
800 *
801 * Usage:
802 * for (FrameRegsIter i(cx); !i.done(); ++i)
803 * ... i.fp() ... i.sp() ... i.pc()
804 */
805 class FrameRegsIter
806 {
825 };
827 /* Holds the number of recording attemps for an address. */
835 /*
836 * Trace monitor. Every JSThread (if JS_THREADSAFE) or JSRuntime (if not
837 * JS_THREADSAFE) has an associated trace monitor that keeps track of loop
838 * frequencies for all JavaScript code loaded into that runtime.
839 */
841 /*
842 * The context currently executing JIT-compiled code on this thread, or
843 * NULL if none. Among other things, this can in certain cases prevent
844 * last-ditch GC and suppress calls to JS_ReportOutOfMemory.
845 *
846 * !tracecx && !recorder: not on trace
847 * !tracecx && recorder: recording
848 * tracecx && !recorder: executing a trace
849 * tracecx && recorder: executing inner loop, recording outer loop
850 */
853 /*
854 * Cached storage to use when executing on trace. While we may enter nested
855 * traces, we always reuse the outer trace's storage, so never need more
856 * than of these.
857 */
860 /*
861 * There are 5 allocators here. This might seem like overkill, but they
862 * have different lifecycles, and by keeping them separate we keep the
863 * amount of retained memory down significantly. They are flushed (ie.
864 * all the allocated memory is freed) periodically.
865 *
866 * - dataAlloc has the lifecycle of the monitor. It's flushed only when
867 * the monitor is flushed. It's used for fragments.
868 *
869 * - traceAlloc has the same flush lifecycle as the dataAlloc, but it is
870 * also *marked* when a recording starts and rewinds to the mark point
871 * if recording aborts. So you can put things in it that are only
872 * reachable on a successful record/compile cycle like GuardRecords and
873 * SideExits.
874 *
875 * - tempAlloc is flushed after each recording, successful or not. It's
876 * used to store LIR code and for all other elements in the LIR
877 * pipeline.
878 *
879 * - reTempAlloc is just like tempAlloc, but is used for regexp
880 * compilation in RegExpNativeCompiler rather than normal compilation in
881 * TraceRecorder.
882 *
883 * - codeAlloc has the same lifetime as dataAlloc, but its API is
884 * different (CodeAlloc vs. VMAllocator). It's used for native code.
885 * It's also a good idea to keep code and data separate to avoid I-cache
886 * vs. D-cache issues.
887 */
903 /*
904 * Maximum size of the code cache before we start flushing. 1/16 of this
905 * size is used as threshold for the regular expression code cache.
906 */
907 uint32 maxCodeCacheBytes;
909 /*
910 * If nonzero, do not flush the JIT cache after a deep bail. That would
911 * free JITted code pages that we will later return to. Instead, set the
912 * needFlush flag so that it can be flushed later.
913 */
914 JSBool needFlush;
916 /*
917 * Fragment map for the regular expression compiler.
918 */
921 // Cached temporary typemap to avoid realloc'ing every time we create one.
922 // This must be used in only one place at a given time. It must be cleared
923 // before use.
926 #ifdef DEBUG
927 /* Fields needed for fragment/guard profiling. */
929 uint32 lastFragID;
930 /*
931 * profAlloc has a lifetime which spans exactly from js_InitJIT to
932 * js_FinishJIT.
933 */
936 #endif
938 /* Flush the JIT cache. */
941 /* Mark all objects baked into native code in the code cache. */
945 };
949 /*
950 * N.B. JS_ON_TRACE(cx) is true if JIT code is on the stack in the current
951 * thread, regardless of whether cx is the context in which that trace is
952 * executing. cx must be a context on the current thread.
953 */
954 #ifdef JS_TRACER
955 # define JS_ON_TRACE(cx) (JS_TRACE_MONITOR(cx).tracecx != NULL)
956 #else
957 # define JS_ON_TRACE(cx) JS_FALSE
958 #endif
960 /* Number of potentially reusable scriptsToGC to search for the eval cache. */
961 #ifndef JS_EVAL_CACHE_SHIFT
962 # define JS_EVAL_CACHE_SHIFT 6
963 #endif
964 #define JS_EVAL_CACHE_SIZE JS_BIT(JS_EVAL_CACHE_SHIFT)
966 #ifdef DEBUG
967 # define EVAL_CACHE_METER_LIST(_) _(probe), _(hit), _(step), _(noscope)
968 # define identity(x) x
972 };
974 # undef identity
975 #endif
977 #ifdef DEBUG
978 # define FUNCTION_KIND_METER_LIST(_) \
979 _(allfun), _(heavy), _(nofreeupvar), _(onlyfreevar), \
980 _(display), _(flat), _(setupvar), _(badfunarg), \
981 _(joinedsetmethod), _(joinedinitmethod), \
982 _(joinedreplace), _(joinedsort), _(joinedmodulepat), \
983 _(mreadbarrier), _(mwritebarrier), _(mwslotbarrier), \
984 _(unjoined)
985 # define identity(x) x
989 };
991 # undef identity
993 # define JS_FUNCTION_METER(cx,x) JS_RUNTIME_METER((cx)->runtime, functionMeter.x)
994 #else
995 # define JS_FUNCTION_METER(cx,x) ((void)0)
996 #endif
999 #define NATIVE_ITER_CACHE_LOG2 8
1000 #define NATIVE_ITER_CACHE_MASK JS_BITMASK(NATIVE_ITER_CACHE_LOG2)
1001 #define NATIVE_ITER_CACHE_SIZE JS_BIT(NATIVE_ITER_CACHE_LOG2)
1006 };
1009 /*
1010 * If this flag is set, we were asked to call back the operation callback
1011 * as soon as possible.
1012 */
1015 JSGCFreeLists gcFreeLists;
1017 /* Keeper of the contiguous stack used by all contexts in this thread. */
1020 /*
1021 * Flag indicating that we are waiving any soft limits on the GC heap
1022 * because we want allocations to be infallible (except when we hit
1023 * a hard quota).
1024 */
1027 /*
1028 * The GSN cache is per thread since even multi-cx-per-thread embeddings
1029 * do not interleave js_GetSrcNote calls.
1030 */
1031 JSGSNCache gsnCache;
1033 /* Property cache for faster call/get/set invocation. */
1036 #ifdef JS_TRACER
1037 /* Trace-tree JIT recorder/interpreter state. */
1039 #endif
1041 /* Lock-free hashed lists of scripts created by eval to garbage-collect. */
1044 #ifdef DEBUG
1045 JSEvalCacheMeter evalCacheMeter;
1046 #endif
1048 /* State used by dtoa.c. */
1051 /*
1052 * State used to cache some double-to-string conversions. A stupid
1053 * optimization aimed directly at v8-splay.js, which stupidly converts
1054 * many doubles multiple times in a row.
1055 */
1057 jsdouble d;
1058 jsint base;
1062 /* Cached native iterators. */
1065 /* Base address of the native stack for the current thread. */
1068 /* List of currently pending operations on proxies. */
1079 /*
1080 * Use JS_ATOMIC_SET in the hope that it will make sure the write will
1081 * become immediately visible to other processors polling the flag.
1082 * Note that we only care about visibility here, not read/write
1083 * ordering.
1084 */
1086 }
1087 };
1089 #ifdef JS_THREADSAFE
1091 /*
1092 * Structure uniquely representing a thread. It holds thread-private data
1093 * that can be accessed without a global lock.
1094 */
1097 JSThread *,
1101 /* Linked list of all contexts in use on this thread. */
1102 JSCList contextList;
1104 /* Opaque thread-id, from NSPR's PR_GetCurrentThread(). */
1107 /* Indicates that the thread is waiting in ClaimTitle from jslock.cpp. */
1110 /*
1111 * Thread-local version of JSRuntime.gcMallocBytes to avoid taking
1112 * locks on each JS_malloc.
1113 */
1116 /*
1117 * This thread is inside js_GC, either waiting until it can start GC, or
1118 * waiting for GC to finish on another thread. This thread holds no locks;
1119 * other threads may steal titles from it.
1120 *
1121 * Protected by rt->gcLock.
1122 */
1125 /*
1126 * The context running the requests.
1127 */
1130 /* Factored out of JSThread for !JS_THREADSAFE embedding in JSRuntime. */
1131 JSThreadData data;
1132 };
1134 /*
1135 * Only when JSThread::gcThreadMallocBytes exhausts the following limit we
1136 * update JSRuntime::gcMallocBytes.
1137 * .
1138 */
1141 #define JS_THREAD_DATA(cx) (&(cx)->thread->data)
1146 /*
1147 * The function takes the GC lock and does not release in successful return.
1148 * On error (out of memory) the function releases the lock but delegates
1149 * the error reporting to the caller.
1150 */
1151 extern JSBool
1154 /*
1155 * On entrance the GC lock must be held and it will be held on exit.
1156 */
1163 JSDCM_NO_GC,
1164 JSDCM_MAYBE_GC,
1165 JSDCM_FORCE_GC,
1166 JSDCM_NEW_FAILED
1170 JSRTS_DOWN,
1171 JSRTS_LAUNCHING,
1172 JSRTS_UP,
1173 JSRTS_LANDING
1177 JSDHashEntryHdr hdr;
1184 struct GCPtrHasher
1185 {
1190 }
1194 }
1195 };
1203 JSGCRootType type;
1204 };
1207 RootInfo,
1211 /* If HashNumber grows, need to change WrapperHasher. */
1214 struct WrapperHasher
1215 {
1221 }
1225 }
1226 };
1257 };
1263 /* Default compartment. */
1266 /* List of compartments (protected by the GC lock). */
1269 /* Runtime state, synchronized by the stateChange/gcLock condvar/lock. */
1270 JSRuntimeState state;
1272 /* Context create/destroy callback. */
1273 JSContextCallback cxCallback;
1275 /* Compartment create/destroy callback. */
1276 JSCompartmentCallback compartmentCallback;
1278 /*
1279 * Sets a callback that is run whenever the runtime goes idle - the
1280 * last active request ceases - and begins activity - when it was
1281 * idle and a request begins. Note: The callback is called under the
1282 * GC lock.
1283 */
1287 }
1289 JSActivityCallback activityCallback;
1292 /*
1293 * Shape regenerated whenever a prototype implicated by an "add property"
1294 * property cache fill and induced trace guard has a readonly property or a
1295 * setter defined on it. This number proxies for the shapes of all objects
1296 * along the prototype chain of all objects in the runtime on which such an
1297 * add-property result has been cached/traced.
1298 *
1299 * See bug 492355 for more details.
1300 *
1301 * This comes early in JSRuntime to minimize the immediate format used by
1302 * trace-JITted code that reads it.
1303 */
1304 uint32 protoHazardShape;
1306 /* Garbage collector state, used by jsgc.c. */
1309 /* GC chunks with at least one free arena. */
1311 #ifdef DEBUG
1313 #endif
1317 jsrefcount gcKeepAtoms;
1322 uint32 gcEmptyArenaPoolLifespan;
1323 uint32 gcNumber;
1325 uint32 gcTriggerFactor;
1330 /*
1331 * NB: do not pack another flag here by claiming gcPadding unless the new
1332 * flag is written only by the GC thread. Atomic updates to packed bytes
1333 * are not guaranteed, so stores issued by one thread may be lost due to
1334 * unsynchronized read-modify-write cycles on other threads.
1335 */
1336 JSPackedBool gcPoke;
1337 JSPackedBool gcRunning;
1338 JSPackedBool gcRegenShapes;
1340 /*
1341 * During gc, if rt->gcRegenShapes &&
1342 * (scope->flags & JSScope::SHAPE_REGEN) == rt->gcRegenShapesScopeFlag,
1343 * then the scope's shape has already been regenerated during this GC.
1344 * To avoid having to sweep JSScopes, the bit's meaning toggles with each
1345 * shape-regenerating GC.
1346 *
1347 * FIXME Once scopes are GC'd (bug 505004), this will be obsolete.
1348 */
1349 uint8 gcRegenShapesScopeFlag;
1351 #ifdef JS_GC_ZEAL
1352 jsrefcount gcZeal;
1353 #endif
1355 JSGCCallback gcCallback;
1357 /*
1358 * Malloc counter to measure memory pressure for GC scheduling. It runs
1359 * from gcMaxMallocBytes down to zero.
1360 */
1363 #ifdef JS_THREADSAFE
1364 JSBackgroundThread gcHelperThread;
1365 #endif
1373 }
1375 /*
1376 * The trace operation and its data argument to trace embedding-specific
1377 * GC roots.
1378 */
1379 JSTraceDataOp gcExtraRootsTraceOp;
1382 /* Well-known numbers held for use by this runtime's contexts. */
1391 /* List of active contexts sharing this runtime; protected by gcLock. */
1392 JSCList contextList;
1394 /* Per runtime debug hooks -- see jsprvtd.h and jsdbgapi.h. */
1395 JSDebugHooks globalDebugHooks;
1397 #ifdef JS_TRACER
1398 /* True if any debug hooks not supported by the JIT are enabled. */
1402 }
1403 #endif
1405 /* More debugging state, see jsdbgapi.c. */
1406 JSCList trapList;
1407 JSCList watchPointList;
1409 /* Client opaque pointers */
1412 #ifdef JS_THREADSAFE
1413 /* These combine to interlock the GC and new requests. */
1417 uint32 requestCount;
1420 /* Lock and owning thread pointer for JS_LOCK_RUNTIME. */
1422 #ifdef DEBUG
1424 #endif
1426 /* Used to synchronize down/up state change; protected by gcLock. */
1429 /*
1430 * State for sharing single-threaded titles, once a second thread tries to
1431 * lock a title. The titleSharingDone condvar is protected by rt->gcLock
1432 * to minimize number of locks taken in JS_EndRequest.
1433 *
1434 * The titleSharingTodo linked list is likewise "global" per runtime, not
1435 * one-list-per-context, to conserve space over all contexts, optimizing
1436 * for the likely case that titles become shared rarely, and among a very
1437 * small set of threads (contexts).
1438 */
1442 /*
1443 * Magic terminator for the rt->titleSharingTodo linked list, threaded through
1444 * title->u.link. This hack allows us to test whether a title is on the list
1445 * by asking whether title->u.link is non-null. We use a large, likely bogus
1446 * pointer here to distinguish this value from any valid u.count (small int)
1447 * value.
1448 */
1449 #define NO_TITLE_SHARING_TODO ((JSTitle *) 0xfeedbeef)
1451 /*
1452 * Lock serializing trapList and watchPointList accesses, and count of all
1453 * mutations to trapList and watchPointList made by debugger threads. To
1454 * keep the code simple, we define debuggerMutations for the thread-unsafe
1455 * case too.
1456 */
1461 uint32 debuggerMutations;
1463 /*
1464 * Security callbacks set on the runtime are used by each context unless
1465 * an override is set on the context.
1466 */
1469 /*
1470 * Shared scope property tree, and arena-pool for allocating its nodes.
1471 * This really should be free of all locking overhead and allocated in
1472 * thread-local storage, hence the JS_PROPERTY_TREE(cx) macro.
1473 */
1476 #define JS_PROPERTY_TREE(cx) ((cx)->runtime->propertyTree)
1478 /*
1479 * The propertyRemovals counter is incremented for every JSScope::clear,
1480 * and for each JSScope::remove method call that frees a slot in an object.
1481 * See js_NativeGet and js_NativeSet in jsobj.cpp.
1482 */
1483 int32 propertyRemovals;
1485 /* Script filename table. */
1487 JSCList scriptFilenamePrefixes;
1488 #ifdef JS_THREADSAFE
1490 #endif
1492 /* Number localization, used by jsnum.c */
1497 /*
1498 * Weak references to lazily-created, well-known XML singletons.
1499 *
1500 * NB: Singleton objects must be carefully disconnected from the rest of
1501 * the object graph usually associated with a JSContext's global object,
1502 * including the set of standard class objects. See jsxml.c for details.
1503 */
1507 #ifndef JS_THREADSAFE
1508 JSThreadData threadData;
1510 #define JS_THREAD_DATA(cx) (&(cx)->runtime->threadData)
1511 #endif
1513 /*
1514 * Object shape (property cache structural type) identifier generator.
1515 *
1516 * Type 0 stands for the empty scope, and must not be regenerated due to
1517 * uint32 wrap-around. Since js_GenerateShape (in jsinterp.cpp) uses
1518 * atomic pre-increment, the initial value for the first typed non-empty
1519 * scope will be 1.
1520 *
1521 * If this counter overflows into SHAPE_OVERFLOW_BIT (in jsinterp.h), the
1522 * cache is disabled, to avoid aliasing two different types. It stays
1523 * disabled until a triggered GC at some later moment compresses live
1524 * types, minimizing rt->shapeGen in the process.
1525 */
1528 /* Literal table maintained by jsatom.c functions. */
1529 JSAtomState atomState;
1531 /*
1532 * Runtime-shared empty scopes for well-known built-in objects that lack
1533 * class prototypes (the usual locus of an emptyScope). Mnemonic: ABCDEW
1534 */
1542 /*
1543 * Various metering fields are defined at the end of JSRuntime. In this
1544 * way there is no need to recompile all the code that refers to other
1545 * fields of JSRuntime after enabling the corresponding metering macro.
1546 */
1547 #ifdef JS_DUMP_ENUM_CACHE_STATS
1548 int32 nativeEnumProbes;
1549 int32 nativeEnumMisses;
1550 # define ENUM_CACHE_METER(name) JS_ATOMIC_INCREMENT(&cx->runtime->name)
1551 #else
1552 # define ENUM_CACHE_METER(name) ((void) 0)
1553 #endif
1555 #ifdef JS_DUMP_LOOP_STATS
1556 /* Loop statistics, to trigger trace recording and compiling. */
1557 JSBasicStats loopStats;
1558 #endif
1560 #ifdef DEBUG
1561 /* Function invocation metering. */
1562 jsrefcount inlineCalls;
1563 jsrefcount nativeCalls;
1564 jsrefcount nonInlineCalls;
1565 jsrefcount constructs;
1567 /* Title lock and scope property metering. */
1568 jsrefcount claimAttempts;
1569 jsrefcount claimedTitles;
1570 jsrefcount deadContexts;
1571 jsrefcount deadlocksAvoided;
1572 jsrefcount liveScopes;
1573 jsrefcount sharedTitles;
1574 jsrefcount totalScopes;
1575 jsrefcount liveScopeProps;
1576 jsrefcount liveScopePropsPreSweep;
1577 jsrefcount totalScopeProps;
1578 jsrefcount livePropTreeNodes;
1579 jsrefcount duplicatePropTreeNodes;
1580 jsrefcount totalPropTreeNodes;
1581 jsrefcount propTreeKidsChunks;
1583 /* String instrumentation. */
1584 jsrefcount liveStrings;
1585 jsrefcount totalStrings;
1586 jsrefcount liveDependentStrings;
1587 jsrefcount totalDependentStrings;
1588 jsrefcount badUndependStrings;
1594 /* Script instrumentation. */
1595 jsrefcount liveScripts;
1596 jsrefcount totalScripts;
1597 jsrefcount liveEmptyScripts;
1598 jsrefcount totalEmptyScripts;
1601 #ifdef JS_SCOPE_DEPTH_METER
1602 /*
1603 * Stats on runtime prototype chain lookups and scope chain depths, i.e.,
1604 * counts of objects traversed on a chain until the wanted id is found.
1605 */
1606 JSBasicStats protoLookupDepthStats;
1607 JSBasicStats scopeSearchDepthStats;
1609 /*
1610 * Stats on compile-time host environment and lexical scope chain lengths
1611 * (maximum depths).
1612 */
1613 JSBasicStats hostenvScopeDepthStats;
1614 JSBasicStats lexicalScopeDepthStats;
1615 #endif
1617 #ifdef JS_GCMETER
1618 JSGCStats gcStats;
1620 #endif
1622 #ifdef DEBUG
1623 /*
1624 * If functionMeterFilename, set from an envariable in JSRuntime's ctor, is
1625 * null, the remaining members in this ifdef'ed group are not initialized.
1626 */
1628 JSFunctionMeter functionMeter;
1632 int32,
1636 FunctionCountMap methodReadBarrierCountMap;
1637 FunctionCountMap unjoinedFunctionCountMap;
1638 #endif
1640 JSWrapObjectCallback wrapObjectCallback;
1665 /*
1666 * For compatibility treat any value that exceeds PTRDIFF_T_MAX to
1667 * mean that value.
1668 */
1671 }
1672 };
1674 /* Common macros to access thread-local caches in JSThread or JSRuntime. */
1675 #define JS_GSN_CACHE(cx) (JS_THREAD_DATA(cx)->gsnCache)
1676 #define JS_PROPERTY_CACHE(cx) (JS_THREAD_DATA(cx)->propertyCache)
1677 #define JS_TRACE_MONITOR(cx) (JS_THREAD_DATA(cx)->traceMonitor)
1678 #define JS_SCRIPTS_TO_GC(cx) (JS_THREAD_DATA(cx)->scriptsToGC)
1680 #ifdef DEBUG
1681 # define EVAL_CACHE_METER(x) (JS_THREAD_DATA(cx)->evalCacheMeter.x++)
1682 #else
1683 # define EVAL_CACHE_METER(x) ((void) 0)
1684 #endif
1686 #ifdef DEBUG
1687 # define JS_RUNTIME_METER(rt, which) JS_ATOMIC_INCREMENT(&(rt)->which)
1688 # define JS_RUNTIME_UNMETER(rt, which) JS_ATOMIC_DECREMENT(&(rt)->which)
1689 #else
1692 #endif
1694 #define JS_KEEP_ATOMS(rt) JS_ATOMIC_INCREMENT(&(rt)->gcKeepAtoms);
1695 #define JS_UNKEEP_ATOMS(rt) JS_ATOMIC_DECREMENT(&(rt)->gcKeepAtoms);
1697 #ifdef JS_ARGUMENT_FORMATTER_DEFINED
1698 /*
1699 * Linked list mapping format strings for JS_{Convert,Push}Arguments{,VA} to
1700 * formatter functions. Elements are sorted in non-increasing format string
1701 * length order.
1702 */
1706 JSArgumentFormatter formatter;
1708 };
1709 #endif
1711 /*
1712 * Key and entry types for the JSContext.resolvingTable hash table, typedef'd
1713 * here because all consumers need to see these declarations (and not just the
1714 * typedef names, as would be the case for an opaque pointer-to-typedef'd-type
1715 * declaration), along with cx->resolvingTable.
1716 */
1719 jsid id;
1723 JSDHashEntryHdr hdr;
1724 JSResolvingKey key;
1725 uint32 flags;
1736 }
1742 class RegExpStatics
1743 {
1747 uintN flags;
1754 }
1755 /*
1756 * Check whether the index at |checkValidIndex| is valid (>= 0).
1757 * If so, construct a string for it and place it in |*out|.
1758 * If not, place undefined in |*out|.
1759 */
1768 /* Mutators. */
1773 else
1775 }
1781 }
1788 }
1789 }
1796 }
1800 }
1802 /* Accessors. */
1813 }
1819 }
1824 }
1826 /* Value creators. */
1836 }
1838 /* Substring creators. */
1845 };
1847 }
1849 struct JSContext
1850 {
1853 /* JSRuntime contextList linkage. */
1854 JSCList link;
1856 /* Runtime version control identifier. */
1857 uint16 version;
1859 /* Per-context options. */
1862 /* Locale specific callbacks for string conversion. */
1865 /*
1866 * cx->resolvingTable is non-null and non-empty if we are initializing
1867 * standard classes lazily, or if we are otherwise recursing indirectly
1868 * from js_LookupProperty through a Class.resolve hook. It is used to
1869 * limit runaway recursion (see jsapi.c and jsobj.c).
1870 */
1873 /*
1874 * True if generating an error, to prevent runaway recursion.
1875 * NB: generatingError packs with throwing below.
1876 */
1877 JSPackedBool generatingError;
1879 /* Exception state -- the exception member is a GC root by definition. */
1883 /* Limit pointer for checking native stack consumption during recursion. */
1884 jsuword stackLimit;
1886 /* Quota on the size of arenas used to compile and execute scripts. */
1889 /* Data shared by threads in an address space. */
1892 /* GC heap compartment. */
1895 /* Currently executing frame and regs, set by stack operations. */
1896 JS_REQUIRES_STACK
1899 /* Current frame accessors. */
1904 }
1909 }
1914 }
1920 /* 'regs' must only be changed by calling this function. */
1923 }
1926 /* Temporary arena pool used while compiling and decompiling. */
1927 JSArenaPool tempPool;
1929 /* Temporary arena pool used while evaluate regular expressions. */
1930 JSArenaPool regExpPool;
1932 /* Top-level object and pointer to top stack frame's scope chain. */
1935 /* Regular expression class statics. */
1938 /* State for object and array toSource conversion. */
1939 JSSharpObjectMap sharpObjectMap;
1942 /* Argument formatter support for JS_{Convert,Push}Arguments{,VA}. */
1945 /* Last message string and trace file for debugging. */
1947 #ifdef DEBUG
1950 #endif
1952 /* Per-context optional error reporter. */
1953 JSErrorReporter errorReporter;
1955 /* Branch callback. */
1956 JSOperationCallback operationCallback;
1958 /* Interpreter activation count. */
1959 uintN interpLevel;
1961 /* Client opaque pointers. */
1966 /* Linked list of segments. See StackSegment. */
1971 #ifdef DEBUG
1978 }
1979 #endif
1980 }
1982 /* Return whether this context has an active segment. */
1986 }
1988 /* Assuming there is an active segment, return it. */
1992 }
1994 /* Return the current segment, which may or may not be active. */
1998 }
2000 /* Add the given segment to the list as the new active segment. */
2003 /* Remove the active segment and make the next segment active. */
2006 /* Mark the top segment as suspended, without pushing a new one. */
2009 /* Undoes calls to suspendActiveSegment. */
2012 /*
2013 * Perform a linear search of all frames in all segments in the given context
2014 * for the given frame, returning the segment, if found, and null otherwise.
2015 */
2018 /*
2019 * Search the call stack for the nearest frame with static level targetLevel.
2020 */
2028 }
2030 }
2032 #ifdef JS_THREADSAFE
2034 jsrefcount requestDepth;
2035 /* Same as requestDepth but ignoring JS_SuspendRequest/JS_ResumeRequest */
2036 jsrefcount outstandingRequests;
2038 jsrefcount prevRequestDepth;
2039 # ifdef DEBUG
2041 # endif
2044 title locking */
2047 #define CX_FROM_THREAD_LINKS(tl) \
2048 ((JSContext *)((char *)(tl) - offsetof(JSContext, threadLinks)))
2049 #endif
2051 /* Stack of thread-stack-allocated GC roots. */
2054 /* Debug hooks associated with the current context. */
2057 /* Security callbacks that override any defined on the runtime. */
2060 /* Stored here to avoid passing it around as a parameter. */
2061 uintN resolveFlags;
2063 /* Random number generator state, used by jsmath.cpp. */
2064 int64 rngSeed;
2066 /* Location to stash the iteration value between JSOP_MOREITER and JSOP_FOR*. */
2069 #ifdef JS_TRACER
2070 /*
2071 * State for the current tree execution. bailExit is valid if the tree has
2072 * called back into native code via a _FAIL builtin and has not yet bailed,
2073 * else garbage (NULL in debug builds).
2074 */
2078 /*
2079 * True if traces may be executed. Invariant: The value of jitEnabled is
2080 * always equal to the expression in updateJITEnabled below.
2081 *
2082 * This flag and the fields accessed by updateJITEnabled are written only
2083 * in runtime->gcLock, to avoid race conditions that would leave the wrong
2084 * value in jitEnabled. (But the interpreter reads this without
2085 * locking. That can race against another thread setting debug hooks, but
2086 * we always read cx->debugHooks without locking anyway.)
2087 */
2089 #endif
2091 /* Caller must be holding runtime->gcLock. */
2093 #ifdef JS_TRACER
2098 #endif
2099 }
2101 #ifdef MOZ_TRACE_JSCALLS
2102 /* Function entry/exit debugging callback. */
2103 JSFunctionCallback functionCallback;
2108 {
2111 }
2112 #endif
2114 DSTOffsetCache dstOffsetCache;
2116 /* List of currently active non-escaping enumerators (for-in). */
2120 /*
2121 * To go from a live generator frame (on the stack) to its generator object
2122 * (see comment js_FloatingFrameIfGenerator), we maintain a stack of active
2123 * generators, pushing and popping when entering and leaving generator
2124 * frames, respectively.
2125 */
2129 /* Return the generator object for the given generator frame. */
2132 /* Early OOM-check. */
2137 }
2142 }
2144 #ifdef JS_THREADSAFE
2145 /*
2146 * The sweep task for this context.
2147 */
2149 #endif
2152 #ifdef JS_THREADSAFE
2154 #else
2156 #endif
2157 }
2159 /*
2160 * Call this after allocating memory held by GC things, to update memory
2161 * pressure counters or report the OOM error if necessary.
2162 */
2169 }
2171 /*
2172 * Call this after successfully allocating memory held by GC things, to
2173 * update memory pressure counters.
2174 */
2180 /*
2181 * Use 1 as an arbitrary non-null pointer indicating successful
2182 * allocation.
2183 */
2185 }
2186 }
2193 }
2202 }
2209 }
2215 /*
2216 * For compatibility we do not account for realloc that increases
2217 * previously allocated memory.
2218 */
2221 }
2224 #ifdef JS_THREADSAFE
2228 }
2229 #endif
2231 }
2233 /*
2234 * In the common case that we'd like to allocate the memory for an object
2235 * with cx->malloc/free, we cannot use overloaded C++ operators (no
2236 * placement delete). Factor the common workaround into one place.
2237 */
2238 #define CREATE_BODY(parms) \
2239 void *memory = this->malloc(sizeof(T)); \
2240 if (!memory) \
2241 return NULL; \
2242 return new(memory) T parms;
2247 }
2252 }
2257 }
2262 }
2263 #undef CREATE_BODY
2269 }
2277 }
2279 #ifdef DEBUG
2283 }
2284 #else
2286 #endif
2290 /*
2291 * The allocation code calls the function to indicate either OOM failure
2292 * when p is null or that a memory pressure counter has reached some
2293 * threshold when p is not null. The function takes the pointer and not
2294 * a boolean flag to minimize the amount of code in its inlined callers.
2295 */
2297 };
2301 {
2303 }
2305 JS_ALWAYS_INLINE JSObject *
2307 {
2310 }
2312 JS_ALWAYS_INLINE JSObject *
2314 {
2317 }
2319 JS_ALWAYS_INLINE jsbytecode *
2321 {
2324 }
2326 #ifdef JS_THREADSAFE
2327 # define JS_THREAD_ID(cx) ((cx)->thread ? (cx)->thread->id : 0)
2328 #endif
2330 #if defined JS_THREADSAFE && defined DEBUG
2342 }
2343 };
2345 }
2347 # define CHECK_REQUEST(cx) \
2348 JS_ASSERT((cx)->requestDepth || (cx)->thread == (cx)->runtime->gcThread);\
2349 AutoCheckRequestDepth _autoCheckRequestDepth(cx);
2351 #else
2352 # define CHECK_REQUEST(cx) ((void)0)
2353 #endif
2357 {
2360 }
2364 {
2368 }
2376 {
2378 #ifdef JS_THREADSAFE
2380 #endif
2382 }
2386 #ifdef JS_THREADSAFE
2388 #endif
2390 }
2392 /* Implemented in jsgc.cpp. */
2395 #ifdef __GNUC__
2396 # pragma GCC visibility push(default)
2397 #endif
2400 #ifdef __GNUC__
2401 # pragma GCC visibility pop
2402 #endif
2407 /*
2408 * Discriminates actual subclass of this being used. If non-negative, the
2409 * subclass roots an array of values of the length stored in this field.
2410 * If negative, meaning is indicated by the corresponding value in the enum
2411 * below. Any other negative value indicates some deeper problem such as
2412 * memory corruption.
2413 */
2434 };
2437 /* No copy or assignment semantics. */
2440 };
2442 /* FIXME(bug 332648): Move this into a public header. */
2444 {
2447 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2449 {
2450 JS_GUARD_OBJECT_NOTIFIER_INIT;
2451 }
2454 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2456 {
2457 JS_GUARD_OBJECT_NOTIFIER_INIT;
2458 }
2461 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2463 {
2464 JS_GUARD_OBJECT_NOTIFIER_INIT;
2465 }
2467 /*
2468 * If you are looking for Object* overloads, use AutoObjectRooter instead;
2469 * rooting Object*s as a js::Value requires discerning whether or not it is
2470 * a function object. Also, AutoObjectRooter is smaller.
2471 */
2476 }
2481 }
2486 }
2491 }
2496 }
2501 }
2507 Value val;
2508 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2509 };
2514 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2516 {
2517 JS_GUARD_OBJECT_NOTIFIER_INIT;
2518 }
2522 }
2526 }
2530 }
2537 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2538 };
2543 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2545 {
2546 JS_GUARD_OBJECT_NOTIFIER_INIT;
2547 }
2551 }
2555 }
2559 }
2565 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2566 };
2571 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2573 {
2574 JS_GUARD_OBJECT_NOTIFIER_INIT;
2576 }
2579 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2581 {
2582 JS_GUARD_OBJECT_NOTIFIER_INIT;
2584 }
2589 }
2594 }
2601 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2602 };
2607 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2609 {
2610 JS_GUARD_OBJECT_NOTIFIER_INIT;
2611 }
2618 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2619 };
2624 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2626 {
2627 JS_GUARD_OBJECT_NOTIFIER_INIT;
2628 }
2632 }
2638 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2639 };
2642 {
2645 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2647 {
2648 JS_GUARD_OBJECT_NOTIFIER_INIT;
2649 }
2653 }
2657 }
2663 jsid id_;
2664 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2665 };
2671 {
2672 JS_GUARD_OBJECT_NOTIFIER_INIT;
2673 }
2677 }
2680 }
2685 }
2688 }
2696 }
2703 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2705 /* No copy or assignment semantics. */
2708 };
2710 /* The auto-root for enumeration object and its state. */
2712 {
2715 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2717 {
2718 JS_GUARD_OBJECT_NOTIFIER_INIT;
2720 }
2724 #ifdef DEBUG
2725 JSBool ok =
2726 #endif
2729 }
2730 }
2740 }
2745 Value stateValue;
2746 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2747 };
2749 #ifdef JS_HAS_XML_SUPPORT
2754 {
2756 }
2763 };
2772 };
2780 };
2787 };
2801 }
2802 };
2811 };
2815 class JSAutoResolveFlags
2816 {
2819 JS_GUARD_OBJECT_NOTIFIER_PARAM)
2821 {
2822 JS_GUARD_OBJECT_NOTIFIER_INIT;
2824 }
2830 uintN mSaved;
2831 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
2832 };
2834 /*
2835 * Slightly more readable macros for testing per-context option settings (also
2836 * to hide bitset implementation detail).
2837 *
2838 * JSOPTION_XML must be handled specially in order to propagate from compile-
2839 * to run-time (from cx->options to script->version/cx->version). To do that,
2840 * we copy JSOPTION_XML from cx->options into cx->version as JSVERSION_HAS_XML
2841 * whenever options are set, and preserve this XML flag across version number
2842 * changes done via the JS_SetVersion API.
2843 *
2844 * But when executing a script or scripted function, the interpreter changes
2845 * cx->version, including the XML flag, to script->version. Thus JSOPTION_XML
2846 * is a compile-time option that causes a run-time version change during each
2847 * activation of the compiled script. That version change has the effect of
2848 * changing JS_HAS_XML_OPTION, so that any compiling done via eval enables XML
2849 * support. If an XML-enabled script or function calls a non-XML function,
2850 * the flag bit will be cleared during the callee's activation.
2851 *
2852 * Note that JS_SetVersion API calls never pass JSVERSION_HAS_XML or'd into
2853 * that API's version parameter.
2854 *
2855 * Note also that script->version must contain this XML option flag in order
2856 * for XDR'ed scripts to serialize and deserialize with that option preserved
2857 * for detection at run-time. We can't copy other compile-time options into
2858 * script->version because that would break backward compatibility (certain
2859 * other options, e.g. JSOPTION_VAROBJFIX, are analogous to JSOPTION_XML).
2860 */
2861 #define JS_HAS_OPTION(cx,option) (((cx)->options & (option)) != 0)
2862 #define JS_HAS_STRICT_OPTION(cx) JS_HAS_OPTION(cx, JSOPTION_STRICT)
2863 #define JS_HAS_WERROR_OPTION(cx) JS_HAS_OPTION(cx, JSOPTION_WERROR)
2864 #define JS_HAS_COMPILE_N_GO_OPTION(cx) JS_HAS_OPTION(cx, JSOPTION_COMPILE_N_GO)
2865 #define JS_HAS_ATLINE_OPTION(cx) JS_HAS_OPTION(cx, JSOPTION_ATLINE)
2870 for JSOPTION_ANONFUNFIX */
2872 #define JSVERSION_NUMBER(cx) ((JSVersion)((cx)->version & \
2873 JSVERSION_MASK))
2874 #define JS_HAS_XML_OPTION(cx) ((cx)->version & JSVERSION_HAS_XML || \
2875 JSVERSION_NUMBER(cx) >= JSVERSION_1_6)
2880 extern JSBool
2891 #ifdef JS_THREADSAFE
2893 /* Iterator over JSThreadData from all JSThread instances. */
2895 {
2901 }
2902 };
2906 class ThreadDataIter
2907 {
2915 }
2920 }
2925 }
2926 };
2932 /*
2933 * Ensures the JSOPTION_XML and JSOPTION_ANONFUNFIX bits of cx->options are
2934 * reflected in cx->version, since each bit must travel with a script that has
2935 * it set.
2936 */
2940 /*
2941 * Common subroutine of JS_SetVersion and js_SetVersion, to update per-context
2942 * data that depends on version.
2943 */
2947 /*
2948 * Unlike the JS_SetVersion API, this function stores JSVERSION_HAS_XML and
2949 * any future non-version-number flags induced by compiler options.
2950 */
2954 /*
2955 * Create and destroy functions for JSContext, which is manually allocated
2956 * and exclusively owned.
2957 */
2964 /*
2965 * Return true if cx points to a context in rt->contextList, else return false.
2966 * NB: the caller (see jslock.c:ClaimTitle) must hold rt->gcLock.
2967 */
2968 extern JSBool
2973 {
2976 }
2978 /*
2979 * If unlocked, acquire and release rt->gcLock around *iterp update; otherwise
2980 * the caller must be holding rt->gcLock.
2981 */
2985 /*
2986 * Iterate through contexts with active requests. The caller must be holding
2987 * rt->gcLock in case of a thread-safe build, or otherwise guarantee that the
2988 * context list is not alternated asynchroniously.
2989 */
2993 /*
2994 * Class.resolve and watchpoint recursion damping machinery.
2995 */
2996 extern JSBool
3004 /*
3005 * Report an exception, which is currently realized as a printf-style format
3006 * string and its arguments.
3007 */
3009 #define MSG_DEF(name, number, count, exception, format) \
3010 name = number,
3012 #undef MSG_DEF
3013 JSErr_Limit
3019 #ifdef va_start
3020 extern JSBool
3023 extern JSBool
3028 extern JSBool
3033 #endif
3038 /*
3039 * Report that cx->scriptStackQuota is exhausted.
3040 */
3041 void
3050 #define JS_CHECK_RECURSION(cx, onerror) \
3051 JS_BEGIN_MACRO \
3052 int stackDummy_; \
3053 \
3054 if (!JS_CHECK_STACK_SIZE(cx, stackDummy_)) { \
3055 js_ReportOverRecursed(cx); \
3056 onerror; \
3057 } \
3058 JS_END_MACRO
3060 /*
3061 * Report an exception using a previously composed JSErrorReport.
3062 * XXXbe remove from "friend" API
3063 */
3070 /*
3071 * Report an attempt to access the property of a null or undefined value (v).
3072 */
3073 extern JSBool
3080 /*
3081 * Report error using js_DecompileValueGenerator(cx, spindex, v, fallback) as
3082 * the first argument for the error message. If the error message has less
3083 * then 3 arguments, use null for arg1 or arg2.
3084 */
3085 extern JSBool
3090 #define js_ReportValueError(cx,errorNumber,spindex,v,fallback) \
3091 ((void)js_ReportValueErrorFlags(cx, JSREPORT_ERROR, errorNumber, \
3092 spindex, v, fallback, NULL, NULL))
3094 #define js_ReportValueError2(cx,errorNumber,spindex,v,fallback,arg1) \
3095 ((void)js_ReportValueErrorFlags(cx, JSREPORT_ERROR, errorNumber, \
3096 spindex, v, fallback, arg1, NULL))
3098 #define js_ReportValueError3(cx,errorNumber,spindex,v,fallback,arg1,arg2) \
3099 ((void)js_ReportValueErrorFlags(cx, JSREPORT_ERROR, errorNumber, \
3100 spindex, v, fallback, arg1, arg2))
3104 /*
3105 * See JS_SetThreadStackLimit in jsapi.c, where we check that the stack
3106 * grows in the expected direction.
3107 */
3108 #if JS_STACK_GROWTH_DIRECTION > 0
3109 # define JS_CHECK_STACK_SIZE(cx, lval) ((jsuword)&(lval) < (cx)->stackLimit)
3110 #else
3111 # define JS_CHECK_STACK_SIZE(cx, lval) ((jsuword)&(lval) > (cx)->stackLimit)
3112 #endif
3114 #ifdef JS_THREADSAFE
3115 # define JS_ASSERT_REQUEST_DEPTH(cx) JS_ASSERT((cx)->requestDepth >= 1)
3116 #else
3117 # define JS_ASSERT_REQUEST_DEPTH(cx) ((void) 0)
3118 #endif
3120 /*
3121 * If the operation callback flag was set, call the operation callback.
3122 * This macro can run the full GC. Return true if it is OK to continue and
3123 * false otherwise.
3124 */
3125 #define JS_CHECK_OPERATION_LIMIT(cx) \
3126 (JS_ASSERT_REQUEST_DEPTH(cx), \
3127 (!JS_THREAD_DATA(cx)->operationCallbackFlag || js_InvokeOperationCallback(cx)))
3129 /*
3130 * Invoke the operation callback and return false if the current execution
3131 * is to be terminated.
3132 */
3133 extern JSBool
3136 #ifndef JS_THREADSAFE
3137 # define js_TriggerAllOperationCallbacks(rt, gcLocked) \
3138 js_TriggerAllOperationCallbacks (rt)
3139 #endif
3141 void
3155 #ifdef JS_TRACER
3156 /*
3157 * Reconstruct the JS stack and clear cx->tracecx. We must be currently in a
3158 * _FAIL builtin from trace on cx or another context on the same thread. The
3159 * machine code for the trace remains on the C stack when js_DeepBail returns.
3160 *
3161 * Implemented in jstracer.cpp.
3162 */
3165 #endif
3169 {
3170 #ifdef JS_TRACER
3173 #endif
3174 }
3178 {
3181 }
3183 static JS_INLINE JSBool
3185 {
3187 #ifdef JS_TRACER
3189 #else
3191 #endif
3192 }
3199 /*
3200 * Get the current frame, first lazily instantiating stack frames if needed.
3201 * (Do not access cx->fp() directly except in JS_REQUIRES_STACK code.)
3202 *
3203 * Defined in jstracer.cpp if JS_TRACER is defined.
3204 */
3207 {
3210 }
3212 static JS_INLINE JSBool
3214 {
3216 }
3218 static JS_INLINE uint32
3220 {
3224 /*
3225 * Under the GC, compared with js_GenerateShape, we don't need to use
3226 * atomic increments but we still must make sure that after an overflow
3227 * the shape stays such.
3228 */
3233 }
3239 {
3241 }
3245 {
3247 }
3251 {
3253 }
3257 {
3259 }
3262 {
3265 JS_GUARD_OBJECT_NOTIFIER_PARAM)
3267 {
3268 JS_GUARD_OBJECT_NOTIFIER_INIT;
3269 }
3278 /* N.B. Value's default ctor leaves the Value undefined */
3284 }
3291 }
3292 /* N.B. Value's default ctor leaves the Value undefined */
3297 }
3301 }
3324 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
3325 };
3328 {
3331 JS_GUARD_OBJECT_NOTIFIER_PARAM)
3333 {
3334 JS_GUARD_OBJECT_NOTIFIER_INIT;
3335 }
3344 /* N.B. jsid's default ctor leaves the jsid undefined */
3350 }
3357 }
3358 /* N.B. jsid's default ctor leaves the jsid undefined */
3363 }
3367 }
3384 JS_DECL_USE_GUARD_OBJECT_NOTIFIER
3385 };
3387 JSIdArray *
3392 #ifdef _MSC_VER
3393 #pragma warning(pop)
3394 #pragma warning(pop)
3395 #endif
3397 #ifdef JS_UNDEFD_MOZALLOC_WRAPPERS
3399 #endif