| blob | e2bd64ed1b53d4f35c02212e2306609fe36f8837 |
1 /*
2 * Copyright (C) 2008 Apple Inc. All rights reserved.
3 * Copyright (C) 2008 Cameron Zwarich <cwzwarich@uwaterloo.ca>
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 *
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
11 * 2. Redistributions in binary form must reproduce the above copyright
12 * notice, this list of conditions and the following disclaimer in the
13 * documentation and/or other materials provided with the distribution.
14 * 3. Neither the name of Apple Computer, Inc. ("Apple") nor the names of
15 * its contributors may be used to endorse or promote products derived
16 * from this software without specific prior written permission.
17 *
18 * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY
19 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
20 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
21 * DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR ANY
22 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
23 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
24 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
25 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
26 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
27 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 */
55 #include <stdio.h>
57 #if PLATFORM(DARWIN)
58 #include <mach/mach.h>
59 #endif
61 #if HAVE(SYS_TIME_H)
62 #include <sys/time.h>
63 #endif
65 #if PLATFORM(WIN_OS)
66 #include <windows.h>
67 #endif
69 #if PLATFORM(QT)
70 #include <QDateTime>
71 #endif
77 // Default number of ticks before a timeout check should be done.
80 // Preferred number of milliseconds between each timeout check
83 #if HAVE(COMPUTED_GOTO)
86 #endif
88 // Returns the depth of the scope chain within a given call frame.
90 {
101 }
103 }
105 // FIXME: This operation should be called "getNumber", not "isNumber" (as it is in JSValue.h).
106 // FIXME: There's no need to have a "slow" version of this. All versions should be fast.
108 {
113 else
116 }
118 // FIXME: Why doesn't JSValue::toInt32 have the Heap::isNumber optimization?
120 {
125 else
128 }
131 {
140 else
143 }
146 {
164 }
167 {
184 return !(static_cast<const JSString*>(p2)->value() < static_cast<const JSString*>(p1)->value());
185 }
188 {
189 // exception for the Date exception in defaultValue()
198 }
201 }
203 // Fast-path choices here are based on frequency data from SunSpider:
204 // <times> Add case: <t1> <t2>
205 // ---------------------------
206 // 5626160 Add case: 3 3 (of these, 3637690 are for immediate values)
207 // 247412 Add case: 5 5
208 // 20900 Add case: 5 6
209 // 13962 Add case: 5 3
210 // 4000 Add case: 3 5
213 {
224 }
226 // All other cases are pretty uncommon
228 }
231 {
241 // Return "undefined" for objects that should be treated
242 // as null when doing comparisons.
245 CallData callData;
248 }
250 }
252 static bool NEVER_INLINE resolve(ExecState* exec, Instruction* vPC, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock, JSValue*& exceptionValue)
253 {
272 }
276 }
278 static bool NEVER_INLINE resolve_skip(ExecState* exec, Instruction* vPC, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock, JSValue*& exceptionValue)
279 {
290 }
302 }
306 }
308 static void NEVER_INLINE resolveBase(ExecState* exec, Instruction* vPC, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock)
309 {
319 PropertySlot slot;
327 }
330 }
331 }
333 static bool NEVER_INLINE resolveBaseAndProperty(ExecState* exec, Instruction* vPC, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock, JSValue*& exceptionValue)
334 {
342 // FIXME: add scopeDepthIsZero optimization
359 }
365 }
367 static bool NEVER_INLINE resolveBaseAndFunc(ExecState* exec, Instruction* vPC, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock, JSValue*& exceptionValue)
368 {
376 // FIXME: add scopeDepthIsZero optimization
386 // ECMA 11.2.3 says that if we hit an activation the this value should be null.
387 // However, section 10.2.3 says that in the case where the value provided
388 // by the caller is null, the global object should be used. It also says
389 // that the section does not apply to internal functions, but for simplicity
390 // of implementation we use the global object anyway here. This guarantees
391 // that in host objects you always get a valid object for this.
392 // We also handle wrapper substitution for the global object at the same time.
402 }
408 }
410 ALWAYS_INLINE void Machine::initializeCallFrame(Register* callFrame, CodeBlock* codeBlock, Instruction* vPC, ScopeChainNode* scopeChain, Register* r, int returnValueRegister, int argv, int argc, int calledAsConstructor, JSValue* function)
411 {
417 callFrame[RegisterFile::ArgumentStartRegister] = argv; // original argument vector (for the sake of the "arguments" object)
418 callFrame[RegisterFile::ArgumentCount] = argc; // original argument count (for the sake of the "arguments" object)
422 }
424 ALWAYS_INLINE Register* slideRegisterWindowForCall(ExecState* exec, CodeBlock* newCodeBlock, RegisterFile* registerFile, Register* registerBase, Register* r, int argv, int argc, JSValue*& exceptionValue)
425 {
427 size_t size = r - registerBase + registerOffset + newCodeBlock->numConstants + newCodeBlock->numTemporaries;
433 }
439 }
446 } else { // too many arguments -- copy return info and expected arguments, leaving the extra arguments behind
454 }
461 }
463 // initialize local variable slots
472 }
474 ALWAYS_INLINE ScopeChainNode* scopeChainForCall(ExecState* exec, FunctionBodyNode* functionBodyNode, CodeBlock* newCodeBlock, ScopeChainNode* callDataScopeChain, Register* r)
475 {
478 r[RegisterFile::OptionalCalleeActivation - RegisterFile::CallFrameHeaderSize - newCodeBlock->numLocals] = activation;
481 }
484 }
486 static NEVER_INLINE bool isNotObject(ExecState* exec, bool forInstanceOf, CodeBlock* codeBlock, const Instruction* vPC, JSValue* value, JSValue*& exceptionData)
487 {
490 exceptionData = createInvalidParamError(exec, forInstanceOf ? "instanceof" : "in" , value, vPC, codeBlock);
492 }
494 NEVER_INLINE JSValue* Machine::callEval(ExecState* exec, JSObject* thisObj, ScopeChainNode* scopeChain, RegisterFile* registerFile, Register* r, int argv, int argc, JSValue*& exceptionValue)
495 {
510 UString errMsg;
511 RefPtr<EvalNode> evalNode = exec->parser()->parse<EvalNode>(exec, UString(), 1, UStringSourceProvider::create(static_cast<JSString*>(program)->value()), &sourceId, &errLine, &errMsg);
518 }
520 JSValue* result = exec->globalData().machine->execute(evalNode.get(), exec, thisObj, r - registerFile->base() + argv + argc, scopeChain, &exceptionValue);
526 }
536 {
539 // Bizarrely, calling fastMalloc here is faster than allocating space on the stack.
551 }
553 #ifndef NDEBUG
555 void Machine::dumpCallFrame(const CodeBlock* codeBlock, ScopeChainNode* scopeChain, RegisterFile* registerFile, const Register* r)
556 {
561 }
563 void Machine::dumpRegisters(const CodeBlock* codeBlock, RegisterFile* registerFile, const Register* r)
564 {
579 }
581 }
603 }
614 }
615 }
623 }
624 }
626 #endif
628 #if !defined(NDEBUG) || HAVE(SAMPLING_TOOL)
631 {
632 #if HAVE(COMPUTED_GOTO)
636 #else
638 #endif
639 }
641 #endif
643 NEVER_INLINE bool Machine::unwindCallFrame(ExecState* exec, JSValue* exceptionValue, const Instruction*& vPC, CodeBlock*& codeBlock, ScopeChainNode*& scopeChain, Register*& r)
644 {
649 DebuggerCallFrame debuggerCallFrame(exec, exec->dynamicGlobalObject(), codeBlock, scopeChain, r, exceptionValue);
651 debugger->returnEvent(debuggerCallFrame, codeBlock->ownerNode->sourceId(), codeBlock->ownerNode->lastLine());
652 else
653 debugger->didExecuteProgram(debuggerCallFrame, codeBlock->ownerNode->sourceId(), codeBlock->ownerNode->lastLine());
654 }
658 profiler->didExecute(exec, static_cast<JSObject*>(callFrame[RegisterFile::Callee].jsValue(exec)));
659 else
661 }
666 // If this call frame created an activation, tear it off.
667 if (JSActivation* activation = static_cast<JSActivation*>(callFrame[RegisterFile::OptionalCalleeActivation].jsValue(exec))) {
670 }
682 }
684 NEVER_INLINE Instruction* Machine::throwException(ExecState* exec, JSValue*& exceptionValue, const Instruction* vPC, CodeBlock*& codeBlock, ScopeChainNode*& scopeChain, Register*& r, bool explicitThrow)
685 {
686 // Set up the exception object
691 exception = createNotAnObjectError(exec, static_cast<JSNotAnObjectErrorStub*>(exception), vPC, codeBlock);
705 exception->putWithAttributes(exec, Identifier(exec, "line"), jsNumber(exec, line), ReadOnly | DontDelete);
707 // We only hit this path for error messages and throw statements, which don't have a specific failure position
708 // So we just give the full range of the error/throw statement.
709 exception->putWithAttributes(exec, Identifier(exec, expressionBeginOffsetPropertyName), jsNumber(exec, divotPoint - startOffset), ReadOnly | DontDelete);
710 exception->putWithAttributes(exec, Identifier(exec, expressionEndOffsetPropertyName), jsNumber(exec, divotPoint + endOffset), ReadOnly | DontDelete);
712 exception->putWithAttributes(exec, Identifier(exec, "line"), jsNumber(exec, codeBlock->lineNumberForVPC(vPC)), ReadOnly | DontDelete);
713 exception->putWithAttributes(exec, Identifier(exec, "sourceId"), jsNumber(exec, codeBlock->ownerNode->sourceId()), ReadOnly | DontDelete);
714 exception->putWithAttributes(exec, Identifier(exec, "sourceURL"), jsOwnedString(exec, codeBlock->ownerNode->sourceURL()), ReadOnly | DontDelete);
715 }
719 // Don't need handler checks or anything, we just want to unroll all the JS callframes possible.
720 }
722 }
723 }
724 }
727 DebuggerCallFrame debuggerCallFrame(exec, exec->dynamicGlobalObject(), codeBlock, scopeChain, r, exceptionValue);
728 debugger->exception(debuggerCallFrame, codeBlock->ownerNode->sourceId(), codeBlock->lineNumberForVPC(vPC));
729 }
731 // Calculate an exception handler vPC, unwinding call frames as necessary.
739 }
741 // Now unwind the scope chain within the exception handler's call frame.
751 }
753 JSValue* Machine::execute(ProgramNode* programNode, ExecState* exec, ScopeChainNode* scopeChain, JSObject* thisObj, JSValue** exception)
754 {
758 }
763 size_t newSize = oldSize + RegisterFile::CallFrameHeaderSize + codeBlock->numVars + codeBlock->numConstants + codeBlock->numTemporaries;
767 }
775 // a 0 codeBlock indicates a built-in caller
793 m_reentryDepth++;
794 JSValue* result = privateExecute(Normal, &newExec, &m_registerFile, r, scopeChain, codeBlock, exception);
795 m_reentryDepth--;
803 }
810 }
812 JSValue* Machine::execute(FunctionBodyNode* functionBodyNode, ExecState* exec, JSFunction* function, JSObject* thisObj, const ArgList& args, ScopeChainNode* scopeChain, JSValue** exception)
813 {
817 }
826 }
830 // put args in place, including "this"
838 // a 0 codeBlock indicates a built-in caller
842 Register* r = slideRegisterWindowForCall(exec, newCodeBlock, &m_registerFile, m_registerFile.base(), callFrame, argv, argc, *exception);
846 }
856 m_reentryDepth++;
857 JSValue* result = privateExecute(Normal, &newExec, &m_registerFile, r, scopeChain, newCodeBlock, exception);
858 m_reentryDepth--;
867 }
869 JSValue* Machine::execute(EvalNode* evalNode, ExecState* exec, JSObject* thisObj, int registerOffset, ScopeChainNode* scopeChain, JSValue** exception)
870 {
874 }
884 }
885 }
893 }
897 for (Node::FunctionStack::const_iterator it = functionStack.begin(); it != functionStackEnd; ++it)
901 size_t newSize = registerOffset + codeBlock->numVars + codeBlock->numConstants + codeBlock->numTemporaries + RegisterFile::CallFrameHeaderSize;
905 }
909 // a 0 codeBlock indicates a built-in caller
927 m_reentryDepth++;
928 JSValue* result = privateExecute(Normal, &newExec, &m_registerFile, r, scopeChain, codeBlock, exception);
929 m_reentryDepth--;
937 }
941 }
943 ALWAYS_INLINE void Machine::setScopeChain(ExecState* exec, ScopeChainNode*& scopeChain, ScopeChainNode* newScopeChain)
944 {
947 }
949 NEVER_INLINE void Machine::debug(ExecState* exec, const Instruction* vPC, const CodeBlock* codeBlock, ScopeChainNode* scopeChain, Register* r)
950 {
959 DebuggerCallFrame debuggerCallFrame(exec, exec->dynamicGlobalObject(), codeBlock, scopeChain, r, 0);
965 }
969 }
973 }
977 }
981 }
985 }
986 }
987 }
990 {
994 }
996 // Returns the time the current thread has spent executing, in milliseconds.
998 {
999 #if PLATFORM(DARWIN)
1001 thread_basic_info_data_t info;
1003 // Get thread information
1004 thread_info(mach_thread_self(), THREAD_BASIC_INFO, reinterpret_cast<thread_info_t>(&info), &infoCount);
1010 #elif HAVE(SYS_TIME_H)
1011 // FIXME: This should probably use getrusage with the RUSAGE_THREAD flag.
1015 #elif PLATFORM(QT)
1018 #elif PLATFORM(WIN_OS)
1020 FILETIME fileTime;
1024 // GetThreadTimes won't accept NULL arguments so we pass these even though
1025 // they're not used.
1028 GetThreadTimes(GetCurrentThread(), &creationTime, &exitTime, &kernelTime.fileTime, &userTime.fileTime);
1031 #else
1032 #error Platform does not have getCurrentTime function
1033 #endif
1034 }
1036 // We have to return a JSValue here, gcc seems to produce worse code if
1037 // we attempt to return a bool
1039 {
1043 // Suspicious amount of looping in a script -- start timing it
1046 }
1056 // Adjust the tick threshold so we get the next checkTimeout call in the interval specified in
1057 // preferredScriptCheckTimeInterval
1058 m_ticksUntilNextTimeoutCheck = static_cast<unsigned>((static_cast<float>(preferredScriptCheckTimeInterval) / timeDiff) * m_ticksUntilNextTimeoutCheck);
1059 // If the new threshold is 0 reset it to the default threshold. This can happen if the timeDiff is higher than the
1060 // preferred script check time interval.
1069 }
1072 }
1074 static int32_t offsetForStringSwitch(StringJumpTable& jumpTable, JSValue* scrutinee, int32_t defaultOffset) {
1081 }
1083 static NEVER_INLINE ScopeChainNode* createExceptionScope(ExecState* exec, CodeBlock* codeBlock, const Instruction* vPC, Register* r, ScopeChainNode* scopeChain)
1084 {
1091 }
1093 JSValue* Machine::privateExecute(ExecutionFlag flag, ExecState* exec, RegisterFile* registerFile, Register* r, ScopeChainNode* scopeChain, CodeBlock* codeBlock, JSValue** exception)
1094 {
1095 // One-time initialization of our address tables. We have to put this code
1096 // here because our labels are only in scope inside this function.
1098 #if HAVE(COMPUTED_GOTO)
1099 #define ADD_OPCODE(id) m_opcodeTable[id] = &&id;
1101 #undef ADD_OPCODE
1103 #define ADD_OPCODE_ID(id) m_opcodeIDTable.add(&&id, id);
1105 #undef ADD_OPCODE_ID
1111 }
1121 #define VM_CHECK_EXCEPTION() \
1122 do { \
1123 if (UNLIKELY(exec->hadException())) { \
1124 exceptionValue = exec->exception(); \
1125 goto vm_throw; \
1126 } \
1127 } while (0)
1129 #if DUMP_OPCODE_STATS
1131 #endif
1133 #define CHECK_FOR_TIMEOUT() \
1134 if (!--tickCount) { \
1135 if ((exceptionValue = checkTimeout(exec->dynamicGlobalObject()))) \
1136 goto vm_throw; \
1137 tickCount = m_ticksUntilNextTimeoutCheck; \
1138 }
1140 #if HAVE(COMPUTED_GOTO)
1141 #define NEXT_OPCODE MACHINE_SAMPLING_sample(codeBlock, vPC); goto *vPC->u.opcode
1142 #if DUMP_OPCODE_STATS
1143 #define BEGIN_OPCODE(opcode) opcode: OpcodeStats::recordInstruction(opcode);
1144 #else
1145 #define BEGIN_OPCODE(opcode) opcode:
1146 #endif
1147 NEXT_OPCODE;
1148 #else
1149 #define NEXT_OPCODE MACHINE_SAMPLING_sample(codeBlock, vPC); continue
1150 #if DUMP_OPCODE_STATS
1151 #define BEGIN_OPCODE(opcode) case opcode: OpcodeStats::recordInstruction(opcode);
1152 #else
1153 #define BEGIN_OPCODE(opcode) case opcode:
1154 #endif
1157 #endif
1158 {
1160 /* new_object dst(r)
1162 Constructs a new empty Object instance using the original
1163 constructor, and puts the result in register dst.
1164 */
1169 NEXT_OPCODE;
1170 }
1172 /* new_array dst(r) firstArg(r) argCount(n)
1174 Constructs a new Array instance using the original
1175 constructor, and puts the result in register dst.
1176 The array will contain argCount elements with values
1177 taken from registers starting at register firstArg.
1178 */
1186 NEXT_OPCODE;
1187 }
1189 /* new_regexp dst(r) regExp(re)
1191 Constructs a new RegExp instance using the original
1192 constructor from regexp regExp, and puts the result in
1193 register dst.
1194 */
1197 r[dst] = new (exec) RegExpObject(scopeChain->globalObject()->regExpPrototype(), codeBlock->regexps[regExp]);
1200 NEXT_OPCODE;
1201 }
1203 /* mov dst(r) src(r)
1205 Copies register src to register dst.
1206 */
1212 NEXT_OPCODE;
1213 }
1215 /* eq dst(r) src1(r) src2(r)
1217 Checks whether register src1 and register src2 are equal,
1218 as with the ECMAScript '==' operator, and puts the result
1219 as a boolean in register dst.
1220 */
1230 }
1233 NEXT_OPCODE;
1234 }
1236 /* neq dst(r) src1(r) src2(r)
1238 Checks whether register src1 and register src2 are not
1239 equal, as with the ECMAScript '!=' operator, and puts the
1240 result as a boolean in register dst.
1241 */
1251 }
1254 NEXT_OPCODE;
1255 }
1257 /* stricteq dst(r) src1(r) src2(r)
1259 Checks whether register src1 and register src2 are strictly
1260 equal, as with the ECMAScript '===' operator, and puts the
1261 result as a boolean in register dst.
1262 */
1268 else
1272 NEXT_OPCODE;
1273 }
1275 /* nstricteq dst(r) src1(r) src2(r)
1277 Checks whether register src1 and register src2 are not
1278 strictly equal, as with the ECMAScript '!==' operator, and
1279 puts the result as a boolean in register dst.
1280 */
1286 else
1290 NEXT_OPCODE;
1291 }
1293 /* less dst(r) src1(r) src2(r)
1295 Checks whether register src1 is less than register src2, as
1296 with the ECMAScript '<' operator, and puts the result as
1297 a boolean in register dst.
1298 */
1307 NEXT_OPCODE;
1308 }
1310 /* lesseq dst(r) src1(r) src2(r)
1312 Checks whether register src1 is less than or equal to
1313 register src2, as with the ECMAScript '<=' operator, and
1314 puts the result as a boolean in register dst.
1315 */
1324 NEXT_OPCODE;
1325 }
1327 /* pre_inc srcDst(r)
1329 Converts register srcDst to number, adds one, and puts the result
1330 back in register srcDst.
1331 */
1340 }
1343 NEXT_OPCODE;
1344 }
1346 /* pre_dec srcDst(r)
1348 Converts register srcDst to number, subtracts one, and puts the result
1349 back in register srcDst.
1350 */
1359 }
1362 NEXT_OPCODE;
1363 }
1365 /* post_inc dst(r) srcDst(r)
1367 Converts register srcDst to number. The number itself is
1368 written to register dst, and the number plus one is written
1369 back to register srcDst.
1370 */
1382 }
1385 NEXT_OPCODE;
1386 }
1388 /* post_dec dst(r) srcDst(r)
1390 Converts register srcDst to number. The number itself is
1391 written to register dst, and the number minus one is written
1392 back to register srcDst.
1393 */
1405 }
1408 NEXT_OPCODE;
1409 }
1411 /* to_jsnumber dst(r) src(r)
1413 Converts register src to number, and puts the result
1414 in register dst.
1415 */
1424 NEXT_OPCODE;
1425 }
1427 /* negate dst(r) src(r)
1429 Converts register src to number, negates it, and puts the
1430 result in register dst.
1431 */
1441 }
1444 NEXT_OPCODE;
1445 }
1447 /* add dst(r) src1(r) src2(r)
1449 Adds register src1 and register src2, and puts the result
1450 in register dst. (JS add may be string concatenation or
1451 numeric add, depending on the types of the operands.)
1452 */
1456 if (JSImmediate::canDoFastAdditiveOperations(src1) && JSImmediate::canDoFastAdditiveOperations(src2))
1462 }
1464 NEXT_OPCODE;
1465 }
1467 /* mul dst(r) src1(r) src2(r)
1469 Multiplies register src1 and register src2 (converted to
1470 numbers), and puts the product in register dst.
1471 */
1483 }
1486 NEXT_OPCODE;
1487 }
1489 /* div dst(r) dividend(r) divisor(r)
1491 Divides register dividend (converted to number) by the
1492 register divisor (converted to number), and puts the
1493 quotient in register dst.
1494 */
1506 }
1508 NEXT_OPCODE;
1509 }
1511 /* mod dst(r) dividend(r) divisor(r)
1513 Divides register dividend (converted to number) by
1514 register divisor (converted to number), and puts the
1515 remainder in register dst.
1516 */
1524 if (JSImmediate::areBothImmediateNumbers(dividendValue, divisorValue) && divisorValue != JSImmediate::from(0)) {
1525 r[dst] = JSImmediate::from(JSImmediate::getTruncatedInt32(dividendValue) % JSImmediate::getTruncatedInt32(divisorValue));
1527 NEXT_OPCODE;
1528 }
1535 NEXT_OPCODE;
1536 }
1538 /* sub dst(r) src1(r) src2(r)
1540 Subtracts register src2 (converted to number) from register
1541 src1 (converted to number), and puts the difference in
1542 register dst.
1543 */
1549 if (JSImmediate::canDoFastAdditiveOperations(src1) && JSImmediate::canDoFastAdditiveOperations(src2))
1557 }
1559 NEXT_OPCODE;
1560 }
1562 /* lshift dst(r) val(r) shift(r)
1564 Performs left shift of register val (converted to int32) by
1565 register shift (converted to uint32), and puts the result
1566 in register dst.
1567 */
1574 r[dst] = jsNumber(exec, JSImmediate::getTruncatedInt32(val) << (JSImmediate::getTruncatedUInt32(shift) & 0x1f));
1581 }
1584 NEXT_OPCODE;
1585 }
1587 /* rshift dst(r) val(r) shift(r)
1589 Performs arithmetic right shift of register val (converted
1590 to int32) by register shift (converted to
1591 uint32), and puts the result in register dst.
1592 */
1606 }
1609 NEXT_OPCODE;
1610 }
1612 /* rshift dst(r) val(r) shift(r)
1614 Performs logical right shift of register val (converted
1615 to uint32) by register shift (converted to
1616 uint32), and puts the result in register dst.
1617 */
1627 }
1630 NEXT_OPCODE;
1631 }
1633 /* bitand dst(r) src1(r) src2(r)
1635 Computes bitwise AND of register src1 (converted to int32)
1636 and register src2 (converted to int32), and puts the result
1637 in register dst.
1638 */
1652 }
1655 NEXT_OPCODE;
1656 }
1658 /* bitxor dst(r) src1(r) src2(r)
1660 Computes bitwise XOR of register src1 (converted to int32)
1661 and register src2 (converted to int32), and puts the result
1662 in register dst.
1663 */
1677 }
1680 NEXT_OPCODE;
1681 }
1683 /* bitor dst(r) src1(r) src2(r)
1685 Computes bitwise OR of register src1 (converted to int32)
1686 and register src2 (converted to int32), and puts the
1687 result in register dst.
1688 */
1702 }
1705 NEXT_OPCODE;
1706 }
1708 /* bitnot dst(r) src(r)
1710 Computes bitwise NOT of register src1 (converted to int32),
1711 and puts the result in register dst.
1712 */
1722 }
1724 NEXT_OPCODE;
1725 }
1727 /* not dst(r) src(r)
1729 Computes logical NOT of register src (converted to
1730 boolean), and puts the result in register dst.
1731 */
1739 NEXT_OPCODE;
1740 }
1742 /* instanceof dst(r) value(r) constructor(r)
1744 Tests whether register value is an instance of register
1745 constructor, and puts the boolean result in register dst.
1747 Raises an exception if register constructor is not an
1748 object.
1749 */
1760 r[dst] = jsBoolean(baseObj->implementsHasInstance() ? baseObj->hasInstance(exec, r[value].jsValue(exec)) : false);
1763 NEXT_OPCODE;
1764 }
1766 /* typeof dst(r) src(r)
1768 Determines the type string for src according to ECMAScript
1769 rules, and puts the result in register dst.
1770 */
1776 NEXT_OPCODE;
1777 }
1779 /* in dst(r) property(r) base(r)
1781 Tests whether register base has a property named register
1782 property, and puts the boolean result in register dst.
1784 Raises an exception if register constructor is not an
1785 object.
1786 */
1806 }
1809 NEXT_OPCODE;
1810 }
1812 /* resolve dst(r) property(id)
1814 Looks up the property named by identifier property in the
1815 scope chain, and writes the resulting value to register
1816 dst. If the property is not found, raises an exception.
1817 */
1822 NEXT_OPCODE;
1823 }
1825 /* resolve_skip dst(r) property(id) skip(n)
1827 Looks up the property named by identifier property in the
1828 scope chain skipping the top 'skip' levels, and writes the resulting
1829 value to register dst. If the property is not found, raises an exception.
1830 */
1836 NEXT_OPCODE;
1837 }
1839 /* get_scoped_var dst(r) index(n) skip(n)
1841 Loads the contents of the index-th local from the scope skip nodes from
1842 the top of the scope chain, and places it in register dst
1843 */
1854 }
1860 NEXT_OPCODE;
1861 }
1863 /* put_scoped_var index(n) skip(n) value(r)
1865 */
1876 }
1882 NEXT_OPCODE;
1883 }
1885 /* resolve_base dst(r) property(id)
1887 Searches the scope chain for an object containing
1888 identifier property, and if one is found, writes it to
1889 register dst. If none is found, the outermost scope (which
1890 will be the global object) is stored in register dst.
1891 */
1895 NEXT_OPCODE;
1896 }
1898 /* resolve_with_base baseDst(r) propDst(r) property(id)
1900 Searches the scope chain for an object containing
1901 identifier property, and if one is found, writes it to
1902 register srcDst, and the retrieved property value to register
1903 propDst. If the property is not found, raises an exception.
1905 This is more efficient than doing resolve_base followed by
1906 resolve, or resolve_base followed by get_by_id, as it
1907 avoids duplicate hash lookups.
1908 */
1913 NEXT_OPCODE;
1914 }
1916 /* resolve_func baseDst(r) funcDst(r) property(id)
1918 Searches the scope chain for an object containing
1919 identifier property, and if one is found, writes the
1920 appropriate object to use as "this" when calling its
1921 properties to register baseDst; and the retrieved property
1922 value to register propDst. If the property is not found,
1923 raises an exception.
1925 This differs from resolve_with_base, because the
1926 global this value will be substituted for activations or
1927 the global object, which is the right behavior for function
1928 calls but not for other property lookup.
1929 */
1934 NEXT_OPCODE;
1935 }
1937 /* get_by_id dst(r) base(r) property(id)
1939 Converts register base to Object, gets the property
1940 named by identifier property from the object, and puts the
1941 result in register dst.
1942 */
1952 NEXT_OPCODE;
1953 }
1955 /* put_by_id base(r) property(id) value(r)
1957 Sets register value on register base as the property named
1958 by identifier property. Base is converted to object first.
1960 Unlike many opcodes, this one does not write any output to
1961 the register file.
1962 */
1972 NEXT_OPCODE;
1973 }
1975 /* del_by_id dst(r) base(r) property(id)
1977 Converts register base to Object, deletes the property
1978 named by identifier property from the object, and writes a
1979 boolean indicating success (if true) or failure (if false)
1980 to register dst.
1981 */
1993 NEXT_OPCODE;
1994 }
1996 /* get_by_val dst(r) base(r) property(r)
1998 Converts register base to Object, gets the property named
1999 by register property from the object, and puts the result
2000 in register dst. property is nominally converted to string
2001 but numbers are treated more efficiently.
2002 */
2019 else
2023 else
2028 }
2033 NEXT_OPCODE;
2034 }
2036 /* put_by_val base(r) property(r) value(r)
2038 Sets register value on register base as the property named
2039 by register property. Base is converted to object
2040 first. register property is nominally converted to string
2041 but numbers are treated more efficiently.
2043 Unlike many opcodes, this one does not write any output to
2044 the register file.
2045 */
2061 else
2069 }
2073 NEXT_OPCODE;
2074 }
2076 /* del_by_val dst(r) base(r) property(r)
2078 Converts register base to Object, deletes the property
2079 named by register property from the object, and writes a
2080 boolean indicating success (if true) or failure (if false)
2081 to register dst.
2082 */
2099 }
2104 NEXT_OPCODE;
2105 }
2107 /* put_by_index base(r) property(n) value(r)
2109 Sets register value on register base as the property named
2110 by the immediate number property. Base is converted to
2111 object first.
2113 Unlike many opcodes, this one does not write any output to
2114 the register file.
2116 This opcode is mainly used to initialize array literals.
2117 */
2125 NEXT_OPCODE;
2126 }
2128 /* loop target(offset)
2130 Jumps unconditionally to offset target from the current
2131 instruction.
2133 Additionally this loop instruction may terminate JS execution is
2134 the JS timeout is reached.
2135 */
2136 #if DUMP_OPCODE_STATS
2138 #endif
2142 NEXT_OPCODE;
2143 }
2145 /* jmp target(offset)
2147 Jumps unconditionally to offset target from the current
2148 instruction.
2149 */
2150 #if DUMP_OPCODE_STATS
2152 #endif
2156 NEXT_OPCODE;
2157 }
2159 /* loop_if_true cond(r) target(offset)
2161 Jumps to offset target from the current instruction, if and
2162 only if register cond converts to boolean as true.
2164 Additionally this loop instruction may terminate JS execution is
2165 the JS timeout is reached.
2166 */
2172 NEXT_OPCODE;
2173 }
2176 NEXT_OPCODE;
2177 }
2179 /* jtrue cond(r) target(offset)
2181 Jumps to offset target from the current instruction, if and
2182 only if register cond converts to boolean as true.
2183 */
2188 NEXT_OPCODE;
2189 }
2192 NEXT_OPCODE;
2193 }
2195 /* jfalse cond(r) target(offset)
2197 Jumps to offset target from the current instruction, if and
2198 only if register cond converts to boolean as false.
2199 */
2204 NEXT_OPCODE;
2205 }
2208 NEXT_OPCODE;
2209 }
2211 /* loop_if_less src1(r) src2(r) target(offset)
2213 Checks whether register src1 is less than register src2, as
2214 with the ECMAScript '<' operator, and then jumps to offset
2215 target from the current instruction, if and only if the
2216 result of the comparison is true.
2218 Additionally this loop instruction may terminate JS execution is
2219 the JS timeout is reached.
2220 */
2231 NEXT_OPCODE;
2232 }
2235 NEXT_OPCODE;
2236 }
2238 /* jnless src1(r) src2(r) target(offset)
2240 Checks whether register src1 is less than register src2, as
2241 with the ECMAScript '<' operator, and then jumps to offset
2242 target from the current instruction, if and only if the
2243 result of the comparison is false.
2244 */
2254 NEXT_OPCODE;
2255 }
2258 NEXT_OPCODE;
2259 }
2261 /* switch_imm tableIndex(n) defaultOffset(offset) scrutinee(r)
2263 Performs a range checked switch on the scrutinee value, using
2264 the tableIndex-th immediate switch jump table. If the scrutinee value
2265 is an immediate number in the range covered by the referenced jump
2266 table, and the value at jumpTable[scrutinee value] is non-zero, then
2267 that value is used as the jump offset, otherwise defaultOffset is used.
2268 */
2277 }
2278 NEXT_OPCODE;
2279 }
2281 /* switch_char tableIndex(n) defaultOffset(offset) scrutinee(r)
2283 Performs a range checked switch on the scrutinee value, using
2284 the tableIndex-th character switch jump table. If the scrutinee value
2285 is a single character string in the range covered by the referenced jump
2286 table, and the value at jumpTable[scrutinee value] is non-zero, then
2287 that value is used as the jump offset, otherwise defaultOffset is used.
2288 */
2298 else
2299 vPC += codeBlock->characterSwitchJumpTables[tableIndex].offsetForValue(value->data()[0], defaultOffset);
2300 }
2301 NEXT_OPCODE;
2302 }
2304 /* switch_string tableIndex(n) defaultOffset(offset) scrutinee(r)
2306 Performs a sparse hashmap based switch on the value in the scrutinee
2307 register, using the tableIndex-th string switch jump table. If the
2308 scrutinee value is a string that exists as a key in the referenced
2309 jump table, then the value associated with the string is used as the
2310 jump offset, otherwise defaultOffset is used.
2311 */
2317 else
2318 vPC += offsetForStringSwitch(codeBlock->stringSwitchJumpTables[tableIndex], scrutinee, defaultOffset);
2319 NEXT_OPCODE;
2320 }
2322 /* new_func dst(r) func(f)
2324 Constructs a new Function instance from function func and
2325 the current scope chain using the original Function
2326 constructor, using the rules for function declarations, and
2327 puts the result in register dst.
2328 */
2335 NEXT_OPCODE;
2336 }
2338 /* new_func_exp dst(r) func(f)
2340 Constructs a new Function instance from function func and
2341 the current scope chain using the original Function
2342 constructor, using the rules for function expressions, and
2343 puts the result in register dst.
2344 */
2351 NEXT_OPCODE;
2352 }
2354 /* call_eval dst(r) func(r) thisVal(r) firstArg(r) argCount(n)
2356 Call a function named "eval" with no explicit "this" value
2357 (which may therefore be the eval operator). If register
2358 thisVal is the global object, and register func contains
2359 that global object's original global eval function, then
2360 perform the eval operator in local scope (interpreting
2361 the argument registers as for the "call"
2362 opcode). Otherwise, act exactly as the "call" opcode would.
2363 */
2374 if (baseVal == scopeChain->globalObject() && funcVal == scopeChain->globalObject()->evalFunction()) {
2376 JSValue* result = callEval(exec, thisObject, scopeChain, registerFile, r, firstArg, argCount, exceptionValue);
2383 NEXT_OPCODE;
2384 }
2386 // We didn't find the blessed version of eval, so reset vPC and process
2387 // this instruction as a normal function call, supplying the proper 'this'
2388 // value.
2392 #if HAVE(COMPUTED_GOTO)
2393 // Hack around gcc performance quirk by performing an indirect goto
2394 // in order to set the vPC -- attempting to do so directly results in a
2395 // significant regression.
2397 #endif
2398 // fall through to op_call
2399 }
2401 /* call dst(r) func(r) thisVal(r) firstArg(r) argCount(n)
2403 Perform a function call. Specifically, call register func
2404 with a "this" value of register thisVal, and put the result
2405 in register dst.
2407 The arguments start at register firstArg and go up to
2408 argCount, but the "this" value is considered an implicit
2409 first argument, so the argCount should be one greater than
2410 the number of explicit arguments passed, and the register
2411 after firstArg should contain the actual first
2412 argument. This opcode will copy from the thisVal register
2413 to the firstArg register, unless the register index of
2414 thisVal is the special missing this object marker, which is
2415 2^31-1; in that case, the global object will be used as the
2416 "this" value.
2418 If func is a native code function, then this opcode calls
2419 it and returns the value immediately.
2421 But if it is a JS function, then the current scope chain
2422 and code block is set to the function's, and we slide the
2423 register window so that the arguments would form the first
2424 few local registers of the called function's register
2425 window. In addition, a call frame header is written
2426 immediately before the arguments; see the call frame
2427 documentation for an explanation of how many registers a
2428 call frame takes and what they contain. That many registers
2429 before the firstArg register will be overwritten by the
2430 call. In addition, any registers higher than firstArg +
2431 argCount may be overwritten. Once this setup is complete,
2432 execution continues from the called function's first
2433 argument, and does not return until a "ret" opcode is
2434 encountered.
2435 */
2445 CallData callData;
2461 r[firstArg] = thisVal == missingThisObjectMarker() ? exec->globalThisValue() : r[thisVal].jsValue(exec);
2463 r = slideRegisterWindowForCall(exec, newCodeBlock, registerFile, registerBase, r, firstArg, argCount, exceptionValue);
2468 setScopeChain(exec, scopeChain, scopeChainForCall(exec, functionBodyNode, codeBlock, callDataScopeChain, r));
2471 #if DUMP_OPCODE_STATS
2473 #endif
2475 NEXT_OPCODE;
2476 }
2479 JSValue* thisValue = thisVal == missingThisObjectMarker() ? exec->globalThisValue() : r[thisVal].jsValue(exec);
2484 JSValue* returnValue = callData.native.function(exec, static_cast<JSObject*>(v), thisValue, args);
2494 NEXT_OPCODE;
2495 }
2502 }
2504 /* ret result(r)
2506 Return register result as the return value of the current
2507 function call, writing it into the caller's expected return
2508 value register. In addition, unwind one call frame and
2509 restore the scope chain, code block instruction pointer and
2510 register base to those of the calling function.
2511 */
2516 if (JSActivation* activation = static_cast<JSActivation*>(callFrame[RegisterFile::OptionalCalleeActivation].jsValue(exec))) {
2520 }
2523 (*enabledProfilerReference)->didExecute(exec, static_cast<JSObject*>(callFrame[RegisterFile::Callee].jsValue(exec)));
2532 }
2545 NEXT_OPCODE;
2546 }
2548 /* construct dst(r) constr(r) firstArg(r) argCount(n)
2550 Invoke register "constr" as a constructor. For JS
2551 functions, the calling convention is exactly as for the
2552 "call" opcode, except that the "this" value is a newly
2553 created Object. For native constructors, a null "this"
2554 value is passed. In either case, the firstArg and argCount
2555 registers are interpreted as for the "call" opcode.
2556 */
2565 ConstructData constructData;
2568 // Removing this line of code causes a measurable regression on squirrelfish.
2579 else
2590 initializeCallFrame(callFrame, codeBlock, vPC, scopeChain, r, dst, firstArg, argCount, 1, constructor);
2593 r = slideRegisterWindowForCall(exec, newCodeBlock, registerFile, registerBase, r, firstArg, argCount, exceptionValue);
2598 setScopeChain(exec, scopeChain, scopeChainForCall(exec, functionBodyNode, codeBlock, callDataScopeChain, r));
2601 NEXT_OPCODE;
2602 }
2621 NEXT_OPCODE;
2622 }
2628 }
2630 /* push_scope scope(r)
2632 Converts register scope to object, and pushes it onto the top
2633 of the current scope chain.
2634 */
2643 NEXT_OPCODE;
2644 }
2646 /* pop_scope
2648 Removes the top item from the current scope chain.
2649 */
2653 NEXT_OPCODE;
2654 }
2656 /* get_pnames dst(r) base(r)
2658 Creates a property name list for register base and puts it
2659 in register dst. This is not a true JavaScript value, just
2660 a synthetic value used to keep the iteration state in a
2661 register.
2662 */
2668 NEXT_OPCODE;
2669 }
2671 /* next_pname dst(r) iter(r) target(offset)
2673 Tries to copies the next name from property name list in
2674 register iter. If there are names left, then copies one to
2675 register dst, and jumps to offset target. If there are none
2676 left, invalidates the iterator and continues to the next
2677 instruction.
2678 */
2688 NEXT_OPCODE;
2689 }
2693 NEXT_OPCODE;
2694 }
2696 /* jmp_scopes count(n) target(offset)
2698 Removes the a number of items from the current scope chain
2699 specified by immediate number count, then jumps to offset
2700 target.
2701 */
2711 NEXT_OPCODE;
2712 }
2713 #if HAVE(COMPUTED_GOTO)
2714 // Appease GCC
2716 #endif
2718 /* new_scope dst(r) property(id) value(r)
2720 Constructs a new StaticScopeObject with property set to value. That scope
2721 object is then pushed onto the ScopeChain. The scope object is then stored
2722 in dst for GC.
2723 */
2726 NEXT_OPCODE;
2727 }
2728 #if HAVE(COMPUTED_GOTO)
2729 skip_new_scope:
2730 #endif
2732 /* catch ex(r)
2734 Retrieves the VMs current exception and puts it in register
2735 ex. This is only valid after an exception has been raised,
2736 and usually forms the beginning of an exception handler.
2737 */
2745 NEXT_OPCODE;
2746 }
2748 /* throw ex(r)
2750 Throws register ex as an exception. This involves three
2751 steps: first, it is set as the current exception in the
2752 VM's internal state, then the stack is unwound until an
2753 exception handler or a native code boundary is found, and
2754 then control resumes at the exception handler if any or
2755 else the script returns control to the nearest native caller.
2756 */
2765 }
2767 #if HAVE(COMPUTED_GOTO)
2768 // Hack around gcc performance quirk by performing an indirect goto
2769 // in order to set the vPC -- attempting to do so directly results in a
2770 // significant regression.
2772 }
2773 op_throw_end: {
2774 #endif
2777 NEXT_OPCODE;
2778 }
2780 /* unexpected_load load dst(r) src(k)
2782 Copies constant src to register dst.
2783 */
2789 NEXT_OPCODE;
2790 }
2792 /* new_error dst(r) type(n) message(k)
2794 Constructs a new Error instance using the original
2795 constructor, using immediate number n as the type and
2796 constant message as the message string. The result is
2797 written to register dst.
2798 */
2803 r[dst] = Error::create(exec, (ErrorType)type, codeBlock->unexpectedConstants[message]->toString(exec), codeBlock->lineNumberForVPC(vPC), codeBlock->ownerNode->sourceId(), codeBlock->ownerNode->sourceURL());
2806 NEXT_OPCODE;
2807 }
2809 /* end result(r)
2811 Return register result as the value of a global or eval
2812 program. Return control to the calling native code.
2813 */
2818 }
2821 }
2823 /* put_getter base(r) property(id) function(r)
2825 Sets register function on register base as the getter named
2826 by identifier property. Base and function are assumed to be
2827 objects as this op should only be used for getters defined
2828 in object literal form.
2830 Unlike many opcodes, this one does not write any output to
2831 the register file.
2832 */
2844 NEXT_OPCODE;
2845 }
2847 /* put_setter base(r) property(id) function(r)
2849 Sets register function on register base as the setter named
2850 by identifier property. Base and function are assumed to be
2851 objects as this op should only be used for setters defined
2852 in object literal form.
2854 Unlike many opcodes, this one does not write any output to
2855 the register file.
2856 */
2868 NEXT_OPCODE;
2869 }
2871 /* jsr retAddrDst(r) target(offset)
2873 Places the address of the next instruction into the retAddrDst
2874 register and jumps to offset target from the current instruction.
2875 */
2881 NEXT_OPCODE;
2882 }
2884 /* sret retAddrSrc(r)
2886 Jumps to the address stored in the retAddrSrc register. This
2887 differs from op_jmp because the target address is stored in a
2888 register, not as an immediate.
2889 */
2892 NEXT_OPCODE;
2893 }
2895 /* debug debugHookID(n) firstLine(n) lastLine(n)
2897 Notifies the debugger of the current state of execution. This opcode
2898 is only generated while the debugger is attached.
2899 */
2904 NEXT_OPCODE;
2905 }
2906 vm_throw: {
2909 // The exceptionValue is a lie! (GCC produces bad code for reasons I
2910 // cannot fathom if we don't assign to the exceptionValue before branching)
2912 }
2917 }
2919 NEXT_OPCODE;
2920 }
2921 }
2922 #undef NEXT_OPCODE
2923 #undef BEGIN_OPCODE
2924 #undef VM_CHECK_EXCEPTION
2925 }
2928 {
2933 JSActivation* activation = static_cast<JSActivation*>(callFrame[RegisterFile::OptionalCalleeActivation].jsValue(exec));
2936 activation = new (exec) JSActivation(function->m_body, callFrame + RegisterFile::CallFrameHeaderSize + codeBlock->numLocals);
2938 }
2941 }
2944 {
2953 Register* callerCallFrame = callFrame[RegisterFile::CallerRegisters].r() - callerCodeBlock->numLocals - RegisterFile::CallFrameHeaderSize;
2958 }
2960 void Machine::retrieveLastCaller(ExecState* exec, int& lineNumber, int& sourceId, UString& sourceURL) const
2961 {
2977 }
2980 {
2989 }
2998 }
3000 callFrame = callFrame[RegisterFile::CallerRegisters].r() - callerCodeBlock->numLocals - RegisterFile::CallFrameHeaderSize;
3001 }
3002 }
3004 void Machine::getArgumentsData(Register* callFrame, JSFunction*& function, Register*& argv, int& argc)
3005 {
3009 argv = callFrame[RegisterFile::CallerRegisters].r() + callFrame[RegisterFile::ArgumentStartRegister].i() + 1; // + 1 to skip "this"
3011 }