Line data Source code
1 : // Copyright 2018 the V8 project authors. All rights reserved.
2 : // Use of this source code is governed by a BSD-style license that can be
3 : // found in the LICENSE file.
4 :
5 : #ifndef V8_OBJECTS_JS_OBJECTS_INL_H_
6 : #define V8_OBJECTS_JS_OBJECTS_INL_H_
7 :
8 : #include "src/objects/js-objects.h"
9 :
10 : #include "src/feedback-vector.h"
11 : #include "src/field-index-inl.h"
12 : #include "src/heap/heap-write-barrier.h"
13 : #include "src/keys.h"
14 : #include "src/lookup-inl.h"
15 : #include "src/objects/embedder-data-slot-inl.h"
16 : #include "src/objects/feedback-cell-inl.h"
17 : #include "src/objects/hash-table-inl.h"
18 : #include "src/objects/heap-number-inl.h"
19 : #include "src/objects/property-array-inl.h"
20 : #include "src/objects/shared-function-info.h"
21 : #include "src/objects/slots.h"
22 : #include "src/objects/smi-inl.h"
23 : #include "src/prototype-inl.h"
24 :
25 : // Has to be the last include (doesn't have include guards):
26 : #include "src/objects/object-macros.h"
27 :
28 : namespace v8 {
29 : namespace internal {
30 :
31 : OBJECT_CONSTRUCTORS_IMPL(JSReceiver, HeapObject)
32 : OBJECT_CONSTRUCTORS_IMPL(JSObject, JSReceiver)
33 : OBJECT_CONSTRUCTORS_IMPL(JSAsyncFromSyncIterator, JSObject)
34 : OBJECT_CONSTRUCTORS_IMPL(JSBoundFunction, JSObject)
35 : OBJECT_CONSTRUCTORS_IMPL(JSDate, JSObject)
36 : OBJECT_CONSTRUCTORS_IMPL(JSFunction, JSObject)
37 : OBJECT_CONSTRUCTORS_IMPL(JSGlobalObject, JSObject)
38 : OBJECT_CONSTRUCTORS_IMPL(JSGlobalProxy, JSObject)
39 : JSIteratorResult::JSIteratorResult(Address ptr) : JSObject(ptr) {}
40 : OBJECT_CONSTRUCTORS_IMPL(JSMessageObject, JSObject)
41 : OBJECT_CONSTRUCTORS_IMPL(JSStringIterator, JSObject)
42 : OBJECT_CONSTRUCTORS_IMPL(JSValue, JSObject)
43 :
44 : NEVER_READ_ONLY_SPACE_IMPL(JSReceiver)
45 :
46 : CAST_ACCESSOR(JSAsyncFromSyncIterator)
47 : CAST_ACCESSOR(JSBoundFunction)
48 : CAST_ACCESSOR(JSDate)
49 : CAST_ACCESSOR(JSFunction)
50 : CAST_ACCESSOR(JSGlobalObject)
51 : CAST_ACCESSOR(JSGlobalProxy)
52 : CAST_ACCESSOR(JSIteratorResult)
53 : CAST_ACCESSOR(JSMessageObject)
54 : CAST_ACCESSOR(JSObject)
55 : CAST_ACCESSOR(JSReceiver)
56 : CAST_ACCESSOR(JSStringIterator)
57 : CAST_ACCESSOR(JSValue)
58 :
59 10799774 : MaybeHandle<Object> JSReceiver::GetProperty(Isolate* isolate,
60 : Handle<JSReceiver> receiver,
61 : Handle<Name> name) {
62 10799774 : LookupIterator it(isolate, receiver, name, receiver);
63 17319195 : if (!it.IsFound()) return it.factory()->undefined_value();
64 4280355 : return Object::GetProperty(&it);
65 : }
66 :
67 50331832 : MaybeHandle<Object> JSReceiver::GetElement(Isolate* isolate,
68 : Handle<JSReceiver> receiver,
69 : uint32_t index) {
70 : LookupIterator it(isolate, receiver, index, receiver);
71 99896419 : if (!it.IsFound()) return it.factory()->undefined_value();
72 767245 : return Object::GetProperty(&it);
73 : }
74 :
75 5707523 : Handle<Object> JSReceiver::GetDataProperty(Handle<JSReceiver> object,
76 : Handle<Name> name) {
77 : LookupIterator it(object, name, object,
78 : LookupIterator::PROTOTYPE_CHAIN_SKIP_INTERCEPTOR);
79 8051039 : if (!it.IsFound()) return it.factory()->undefined_value();
80 3364007 : return GetDataProperty(&it);
81 : }
82 :
83 3279837 : MaybeHandle<HeapObject> JSReceiver::GetPrototype(Isolate* isolate,
84 : Handle<JSReceiver> receiver) {
85 : // We don't expect access checks to be needed on JSProxy objects.
86 : DCHECK(!receiver->IsAccessCheckNeeded() || receiver->IsJSObject());
87 : PrototypeIterator iter(isolate, receiver, kStartAtReceiver,
88 : PrototypeIterator::END_AT_NON_HIDDEN);
89 3242822 : do {
90 3286472 : if (!iter.AdvanceFollowingProxies()) return MaybeHandle<HeapObject>();
91 : } while (!iter.IsAtEnd());
92 3236187 : return PrototypeIterator::GetCurrent(iter);
93 : }
94 :
95 293573 : MaybeHandle<Object> JSReceiver::GetProperty(Isolate* isolate,
96 : Handle<JSReceiver> receiver,
97 : const char* name) {
98 293573 : Handle<String> str = isolate->factory()->InternalizeUtf8String(name);
99 293573 : return GetProperty(isolate, receiver, str);
100 : }
101 :
102 : // static
103 972 : V8_WARN_UNUSED_RESULT MaybeHandle<FixedArray> JSReceiver::OwnPropertyKeys(
104 : Handle<JSReceiver> object) {
105 : return KeyAccumulator::GetKeys(object, KeyCollectionMode::kOwnOnly,
106 : ALL_PROPERTIES,
107 1663 : GetKeysConversion::kConvertToString);
108 : }
109 :
110 1834418 : bool JSObject::PrototypeHasNoElements(Isolate* isolate, JSObject object) {
111 : DisallowHeapAllocation no_gc;
112 : HeapObject prototype = HeapObject::cast(object->map()->prototype());
113 : ReadOnlyRoots roots(isolate);
114 : HeapObject null = roots.null_value();
115 : FixedArrayBase empty_fixed_array = roots.empty_fixed_array();
116 : FixedArrayBase empty_slow_element_dictionary =
117 : roots.empty_slow_element_dictionary();
118 10929110 : while (prototype != null) {
119 : Map map = prototype->map();
120 4558464 : if (map->IsCustomElementsReceiverMap()) return false;
121 : FixedArrayBase elements = JSObject::cast(prototype)->elements();
122 4555973 : if (elements != empty_fixed_array &&
123 : elements != empty_slow_element_dictionary) {
124 : return false;
125 : }
126 : prototype = HeapObject::cast(map->prototype());
127 : }
128 : return true;
129 : }
130 :
131 531881416 : ACCESSORS(JSReceiver, raw_properties_or_hash, Object, kPropertiesOrHashOffset)
132 :
133 131313 : FixedArrayBase JSObject::elements() const {
134 731508305 : Object array = READ_FIELD(*this, kElementsOffset);
135 131313 : return FixedArrayBase::cast(array);
136 : }
137 :
138 90695 : void JSObject::EnsureCanContainHeapObjectElements(Handle<JSObject> object) {
139 90695 : JSObject::ValidateElements(*object);
140 : ElementsKind elements_kind = object->map()->elements_kind();
141 90695 : if (!IsObjectElementsKind(elements_kind)) {
142 0 : if (IsHoleyElementsKind(elements_kind)) {
143 0 : TransitionElementsKind(object, HOLEY_ELEMENTS);
144 : } else {
145 0 : TransitionElementsKind(object, PACKED_ELEMENTS);
146 : }
147 : }
148 90695 : }
149 :
150 : template <typename TSlot>
151 536177 : void JSObject::EnsureCanContainElements(Handle<JSObject> object, TSlot objects,
152 : uint32_t count,
153 : EnsureElementsMode mode) {
154 : static_assert(std::is_same<TSlot, FullObjectSlot>::value ||
155 : std::is_same<TSlot, ObjectSlot>::value,
156 : "Only ObjectSlot and FullObjectSlot are expected here");
157 : ElementsKind current_kind = object->GetElementsKind();
158 : ElementsKind target_kind = current_kind;
159 : {
160 : DisallowHeapAllocation no_allocation;
161 : DCHECK(mode != ALLOW_COPIED_DOUBLE_ELEMENTS);
162 : bool is_holey = IsHoleyElementsKind(current_kind);
163 536177 : if (current_kind == HOLEY_ELEMENTS) return;
164 : Object the_hole = object->GetReadOnlyRoots().the_hole_value();
165 29475467 : for (uint32_t i = 0; i < count; ++i, ++objects) {
166 : Object current = *objects;
167 14469657 : if (current == the_hole) {
168 : is_holey = true;
169 : target_kind = GetHoleyElementsKind(target_kind);
170 12978718 : } else if (!current->IsSmi()) {
171 10352916 : if (mode == ALLOW_CONVERTED_DOUBLE_ELEMENTS && current->IsNumber()) {
172 1731427 : if (IsSmiElementsKind(target_kind)) {
173 340 : if (is_holey) {
174 : target_kind = HOLEY_DOUBLE_ELEMENTS;
175 : } else {
176 : target_kind = PACKED_DOUBLE_ELEMENTS;
177 : }
178 : }
179 3626905 : } else if (is_holey) {
180 : target_kind = HOLEY_ELEMENTS;
181 : break;
182 : } else {
183 : target_kind = PACKED_ELEMENTS;
184 : }
185 : }
186 : }
187 : }
188 536153 : if (target_kind != current_kind) {
189 95470 : TransitionElementsKind(object, target_kind);
190 : }
191 : }
192 :
193 93627 : void JSObject::EnsureCanContainElements(Handle<JSObject> object,
194 : Handle<FixedArrayBase> elements,
195 : uint32_t length,
196 : EnsureElementsMode mode) {
197 : ReadOnlyRoots roots = object->GetReadOnlyRoots();
198 93627 : if (elements->map() != roots.fixed_double_array_map()) {
199 : DCHECK(elements->map() == roots.fixed_array_map() ||
200 : elements->map() == roots.fixed_cow_array_map());
201 93627 : if (mode == ALLOW_COPIED_DOUBLE_ELEMENTS) {
202 : mode = DONT_ALLOW_DOUBLE_ELEMENTS;
203 : }
204 : ObjectSlot objects =
205 93627 : Handle<FixedArray>::cast(elements)->GetFirstElementAddress();
206 93627 : EnsureCanContainElements(object, objects, length, mode);
207 : return;
208 : }
209 :
210 : DCHECK(mode == ALLOW_COPIED_DOUBLE_ELEMENTS);
211 0 : if (object->GetElementsKind() == HOLEY_SMI_ELEMENTS) {
212 0 : TransitionElementsKind(object, HOLEY_DOUBLE_ELEMENTS);
213 0 : } else if (object->GetElementsKind() == PACKED_SMI_ELEMENTS) {
214 : Handle<FixedDoubleArray> double_array =
215 : Handle<FixedDoubleArray>::cast(elements);
216 0 : for (uint32_t i = 0; i < length; ++i) {
217 0 : if (double_array->is_the_hole(i)) {
218 0 : TransitionElementsKind(object, HOLEY_DOUBLE_ELEMENTS);
219 : return;
220 : }
221 : }
222 0 : TransitionElementsKind(object, PACKED_DOUBLE_ELEMENTS);
223 : }
224 : }
225 :
226 733576 : void JSObject::SetMapAndElements(Handle<JSObject> object, Handle<Map> new_map,
227 : Handle<FixedArrayBase> value) {
228 733576 : JSObject::MigrateToMap(object, new_map);
229 : DCHECK((object->map()->has_fast_smi_or_object_elements() ||
230 : (*value == object->GetReadOnlyRoots().empty_fixed_array()) ||
231 : object->map()->has_fast_string_wrapper_elements()) ==
232 : (value->map() == object->GetReadOnlyRoots().fixed_array_map() ||
233 : value->map() == object->GetReadOnlyRoots().fixed_cow_array_map()));
234 : DCHECK((*value == object->GetReadOnlyRoots().empty_fixed_array()) ||
235 : (object->map()->has_fast_double_elements() ==
236 : value->IsFixedDoubleArray()));
237 733576 : object->set_elements(*value);
238 733576 : }
239 :
240 4812475 : void JSObject::set_elements(FixedArrayBase value, WriteBarrierMode mode) {
241 6176103 : WRITE_FIELD(*this, kElementsOffset, value);
242 9624950 : CONDITIONAL_WRITE_BARRIER(*this, kElementsOffset, value, mode);
243 4812476 : }
244 :
245 38579636 : void JSObject::initialize_elements() {
246 38579636 : FixedArrayBase elements = map()->GetInitialElements();
247 38579639 : WRITE_FIELD(*this, kElementsOffset, elements);
248 38579639 : }
249 :
250 668103 : InterceptorInfo JSObject::GetIndexedInterceptor() {
251 668103 : return map()->GetIndexedInterceptor();
252 : }
253 :
254 1644549 : InterceptorInfo JSObject::GetNamedInterceptor() {
255 1644549 : return map()->GetNamedInterceptor();
256 : }
257 :
258 : int JSObject::GetHeaderSize() const { return GetHeaderSize(map()); }
259 :
260 3456145 : int JSObject::GetHeaderSize(const Map map) {
261 : // Check for the most common kind of JavaScript object before
262 : // falling into the generic switch. This speeds up the internal
263 : // field operations considerably on average.
264 : InstanceType instance_type = map->instance_type();
265 : return instance_type == JS_OBJECT_TYPE
266 : ? JSObject::kHeaderSize
267 5289036 : : GetHeaderSize(instance_type, map->has_prototype_slot());
268 : }
269 :
270 : // static
271 : int JSObject::GetEmbedderFieldsStartOffset(const Map map) {
272 : // Embedder fields are located after the object header.
273 3456134 : return GetHeaderSize(map);
274 : }
275 :
276 1882028 : int JSObject::GetEmbedderFieldsStartOffset() {
277 1882078 : return GetEmbedderFieldsStartOffset(map());
278 : }
279 :
280 : // static
281 1574104 : int JSObject::GetEmbedderFieldCount(const Map map) {
282 : int instance_size = map->instance_size();
283 1574104 : if (instance_size == kVariableSizeSentinel) return 0;
284 : // Embedder fields are located after the object header, whereas in-object
285 : // properties are located at the end of the object. We don't have to round up
286 : // the header size here because division by kEmbedderDataSlotSizeInTaggedSlots
287 : // will swallow potential padding in case of (kTaggedSize !=
288 : // kSystemPointerSize) anyway.
289 1574108 : return (((instance_size - GetEmbedderFieldsStartOffset(map)) >>
290 : kTaggedSizeLog2) -
291 1574108 : map->GetInObjectProperties()) /
292 1574106 : kEmbedderDataSlotSizeInTaggedSlots;
293 : }
294 :
295 700089 : int JSObject::GetEmbedderFieldCount() const {
296 700089 : return GetEmbedderFieldCount(map());
297 : }
298 :
299 1879822 : int JSObject::GetEmbedderFieldOffset(int index) {
300 : DCHECK_LT(static_cast<unsigned>(index),
301 : static_cast<unsigned>(GetEmbedderFieldCount()));
302 1882030 : return GetEmbedderFieldsStartOffset() + (kEmbedderDataSlotSize * index);
303 : }
304 :
305 841088 : Object JSObject::GetEmbedderField(int index) {
306 841095 : return EmbedderDataSlot(*this, index).load_tagged();
307 : }
308 :
309 1038660 : void JSObject::SetEmbedderField(int index, Object value) {
310 : EmbedderDataSlot::store_tagged(*this, index, value);
311 1038711 : }
312 :
313 : void JSObject::SetEmbedderField(int index, Smi value) {
314 : EmbedderDataSlot(*this, index).store_smi(value);
315 : }
316 :
317 91793110 : bool JSObject::IsUnboxedDoubleField(FieldIndex index) {
318 : if (!FLAG_unbox_double_fields) return false;
319 91793110 : return map()->IsUnboxedDoubleField(index);
320 : }
321 :
322 : // Access fast-case object properties at index. The use of these routines
323 : // is needed to correctly distinguish between properties stored in-object and
324 : // properties stored in the properties array.
325 92865556 : Object JSObject::RawFastPropertyAt(FieldIndex index) {
326 : DCHECK(!IsUnboxedDoubleField(index));
327 92865556 : if (index.is_inobject()) {
328 12366103 : return READ_FIELD(*this, index.offset());
329 : } else {
330 160998906 : return property_array()->get(index.outobject_array_index());
331 : }
332 : }
333 :
334 : double JSObject::RawFastDoublePropertyAt(FieldIndex index) {
335 : DCHECK(IsUnboxedDoubleField(index));
336 21285 : return READ_DOUBLE_FIELD(*this, index.offset());
337 : }
338 :
339 : uint64_t JSObject::RawFastDoublePropertyAsBitsAt(FieldIndex index) {
340 : DCHECK(IsUnboxedDoubleField(index));
341 3841 : return READ_UINT64_FIELD(*this, index.offset());
342 : }
343 :
344 69649168 : void JSObject::RawFastPropertyAtPut(FieldIndex index, Object value) {
345 69649168 : if (index.is_inobject()) {
346 : int offset = index.offset();
347 52668131 : WRITE_FIELD(*this, offset, value);
348 52668131 : WRITE_BARRIER(*this, offset, value);
349 : } else {
350 16981037 : property_array()->set(index.outobject_array_index(), value);
351 : }
352 69649171 : }
353 :
354 : void JSObject::RawFastDoublePropertyAsBitsAtPut(FieldIndex index,
355 : uint64_t bits) {
356 : // Double unboxing is enabled only on 64-bit platforms without pointer
357 : // compression.
358 : DCHECK_EQ(kDoubleSize, kTaggedSize);
359 45484 : Address field_addr = FIELD_ADDR(*this, index.offset());
360 45484 : base::Relaxed_Store(reinterpret_cast<base::AtomicWord*>(field_addr),
361 : static_cast<base::AtomicWord>(bits));
362 : }
363 :
364 325687 : void JSObject::FastPropertyAtPut(FieldIndex index, Object value) {
365 325687 : if (IsUnboxedDoubleField(index)) {
366 : DCHECK(value->IsMutableHeapNumber());
367 : // Ensure that all bits of the double value are preserved.
368 : RawFastDoublePropertyAsBitsAtPut(
369 : index, MutableHeapNumber::cast(value)->value_as_bits());
370 : } else {
371 325682 : RawFastPropertyAtPut(index, value);
372 : }
373 325687 : }
374 :
375 57019150 : void JSObject::WriteToField(int descriptor, PropertyDetails details,
376 : Object value) {
377 : DCHECK_EQ(kField, details.location());
378 : DCHECK_EQ(kData, details.kind());
379 : DisallowHeapAllocation no_gc;
380 57019150 : FieldIndex index = FieldIndex::ForDescriptor(map(), descriptor);
381 57019158 : if (details.representation().IsDouble()) {
382 : // Nothing more to be done.
383 50147 : if (value->IsUninitialized()) {
384 1322 : return;
385 : }
386 : // Manipulating the signaling NaN used for the hole and uninitialized
387 : // double field sentinel in C++, e.g. with bit_cast or value()/set_value(),
388 : // will change its value on ia32 (the x87 stack is used to return values
389 : // and stores to the stack silently clear the signalling bit).
390 : uint64_t bits;
391 48825 : if (value->IsSmi()) {
392 6440 : bits = bit_cast<uint64_t>(static_cast<double>(Smi::ToInt(value)));
393 : } else {
394 : DCHECK(value->IsHeapNumber());
395 : bits = HeapNumber::cast(value)->value_as_bits();
396 : }
397 48825 : if (IsUnboxedDoubleField(index)) {
398 : RawFastDoublePropertyAsBitsAtPut(index, bits);
399 : } else {
400 7823 : auto box = MutableHeapNumber::cast(RawFastPropertyAt(index));
401 : box->set_value_as_bits(bits);
402 : }
403 : } else {
404 56969011 : RawFastPropertyAtPut(index, value);
405 : }
406 : }
407 :
408 555607 : int JSObject::GetInObjectPropertyOffset(int index) {
409 555607 : return map()->GetInObjectPropertyOffset(index);
410 : }
411 :
412 : Object JSObject::InObjectPropertyAt(int index) {
413 0 : int offset = GetInObjectPropertyOffset(index);
414 0 : return READ_FIELD(*this, offset);
415 : }
416 :
417 555607 : Object JSObject::InObjectPropertyAtPut(int index, Object value,
418 : WriteBarrierMode mode) {
419 : // Adjust for the number of properties stored in the object.
420 555607 : int offset = GetInObjectPropertyOffset(index);
421 555607 : WRITE_FIELD(*this, offset, value);
422 653869 : CONDITIONAL_WRITE_BARRIER(*this, offset, value, mode);
423 555607 : return value;
424 : }
425 :
426 21157762 : void JSObject::InitializeBody(Map map, int start_offset,
427 : Object pre_allocated_value, Object filler_value) {
428 : DCHECK_IMPLIES(filler_value->IsHeapObject(),
429 : !ObjectInYoungGeneration(filler_value));
430 : DCHECK_IMPLIES(pre_allocated_value->IsHeapObject(),
431 : !ObjectInYoungGeneration(pre_allocated_value));
432 : int size = map->instance_size();
433 : int offset = start_offset;
434 21157762 : if (filler_value != pre_allocated_value) {
435 : int end_of_pre_allocated_offset =
436 230447 : size - (map->UnusedPropertyFields() * kTaggedSize);
437 : DCHECK_LE(kHeaderSize, end_of_pre_allocated_offset);
438 440607 : while (offset < end_of_pre_allocated_offset) {
439 105080 : WRITE_FIELD(*this, offset, pre_allocated_value);
440 105080 : offset += kTaggedSize;
441 : }
442 : }
443 254093748 : while (offset < size) {
444 116467993 : WRITE_FIELD(*this, offset, filler_value);
445 116467993 : offset += kTaggedSize;
446 : }
447 21157762 : }
448 :
449 : Object JSBoundFunction::raw_bound_target_function() const {
450 : return READ_FIELD(*this, kBoundTargetFunctionOffset);
451 : }
452 :
453 5776 : ACCESSORS(JSBoundFunction, bound_target_function, JSReceiver,
454 : kBoundTargetFunctionOffset)
455 3207 : ACCESSORS(JSBoundFunction, bound_this, Object, kBoundThisOffset)
456 3958 : ACCESSORS(JSBoundFunction, bound_arguments, FixedArray, kBoundArgumentsOffset)
457 :
458 181618590 : ACCESSORS(JSFunction, raw_feedback_cell, FeedbackCell, kFeedbackCellOffset)
459 :
460 18225115 : ACCESSORS(JSGlobalObject, native_context, NativeContext, kNativeContextOffset)
461 507648 : ACCESSORS(JSGlobalObject, global_proxy, JSGlobalProxy, kGlobalProxyOffset)
462 :
463 6498448 : ACCESSORS(JSGlobalProxy, native_context, Object, kNativeContextOffset)
464 :
465 : FeedbackVector JSFunction::feedback_vector() const {
466 : DCHECK(has_feedback_vector());
467 : return FeedbackVector::cast(raw_feedback_cell()->value());
468 : }
469 :
470 : ClosureFeedbackCellArray JSFunction::closure_feedback_cell_array() const {
471 : DCHECK(has_closure_feedback_cell_array());
472 : return ClosureFeedbackCellArray::cast(raw_feedback_cell()->value());
473 : }
474 :
475 : // Code objects that are marked for deoptimization are not considered to be
476 : // optimized. This is because the JSFunction might have been already
477 : // deoptimized but its code() still needs to be unlinked, which will happen on
478 : // its next activation.
479 : // TODO(jupvfranco): rename this function. Maybe RunOptimizedCode,
480 : // or IsValidOptimizedCode.
481 3930720 : bool JSFunction::IsOptimized() {
482 8327666 : return is_compiled() && code()->kind() == Code::OPTIMIZED_FUNCTION &&
483 4576205 : !code()->marked_for_deoptimization();
484 : }
485 :
486 638701 : bool JSFunction::HasOptimizedCode() {
487 1274463 : return IsOptimized() ||
488 1272147 : (has_feedback_vector() && feedback_vector()->has_optimized_code() &&
489 639353 : !feedback_vector()->optimized_code()->marked_for_deoptimization());
490 : }
491 :
492 489299 : bool JSFunction::HasOptimizationMarker() {
493 978601 : return has_feedback_vector() && feedback_vector()->has_optimization_marker();
494 : }
495 :
496 : void JSFunction::ClearOptimizationMarker() {
497 : DCHECK(has_feedback_vector());
498 336407 : feedback_vector()->ClearOptimizationMarker();
499 : }
500 :
501 : // Optimized code marked for deoptimization will tier back down to running
502 : // interpreted on its next activation, and already doesn't count as IsOptimized.
503 6212 : bool JSFunction::IsInterpreted() {
504 18018 : return is_compiled() && (code()->is_interpreter_trampoline_builtin() ||
505 5612 : (code()->kind() == Code::OPTIMIZED_FUNCTION &&
506 11824 : code()->marked_for_deoptimization()));
507 : }
508 :
509 : bool JSFunction::ChecksOptimizationMarker() {
510 : return code()->checks_optimization_marker();
511 : }
512 :
513 168289 : bool JSFunction::IsMarkedForOptimization() {
514 336570 : return has_feedback_vector() && feedback_vector()->optimization_marker() ==
515 168289 : OptimizationMarker::kCompileOptimized;
516 : }
517 :
518 160581 : bool JSFunction::IsMarkedForConcurrentOptimization() {
519 321162 : return has_feedback_vector() &&
520 : feedback_vector()->optimization_marker() ==
521 160581 : OptimizationMarker::kCompileOptimizedConcurrent;
522 : }
523 :
524 213023 : bool JSFunction::IsInOptimizationQueue() {
525 426022 : return has_feedback_vector() && feedback_vector()->optimization_marker() ==
526 213023 : OptimizationMarker::kInOptimizationQueue;
527 : }
528 :
529 310470 : void JSFunction::CompleteInobjectSlackTrackingIfActive() {
530 310470 : if (!has_prototype_slot()) return;
531 325227 : if (has_initial_map() && initial_map()->IsInobjectSlackTrackingInProgress()) {
532 115434 : initial_map()->CompleteInobjectSlackTracking(GetIsolate());
533 : }
534 : }
535 :
536 199 : AbstractCode JSFunction::abstract_code() {
537 199 : if (IsInterpreted()) {
538 146 : return AbstractCode::cast(shared()->GetBytecodeArray());
539 : } else {
540 : return AbstractCode::cast(code());
541 : }
542 : }
543 :
544 316 : int JSFunction::length() { return shared()->length(); }
545 :
546 985484 : Code JSFunction::code() const {
547 15475678 : return Code::cast(RELAXED_READ_FIELD(*this, kCodeOffset));
548 : }
549 :
550 17380774 : void JSFunction::set_code(Code value) {
551 : DCHECK(!ObjectInYoungGeneration(value));
552 17380774 : RELAXED_WRITE_FIELD(*this, kCodeOffset, value);
553 17380774 : MarkingBarrier(*this, RawField(kCodeOffset), value);
554 17380781 : }
555 :
556 : void JSFunction::set_code_no_write_barrier(Code value) {
557 : DCHECK(!ObjectInYoungGeneration(value));
558 : RELAXED_WRITE_FIELD(*this, kCodeOffset, value);
559 : }
560 :
561 1407156 : SharedFunctionInfo JSFunction::shared() const {
562 : return SharedFunctionInfo::cast(
563 187638611 : RELAXED_READ_FIELD(*this, kSharedFunctionInfoOffset));
564 : }
565 :
566 15652557 : void JSFunction::set_shared(SharedFunctionInfo value, WriteBarrierMode mode) {
567 : // Release semantics to support acquire read in NeedsResetDueToFlushedBytecode
568 15652557 : RELEASE_WRITE_FIELD(*this, kSharedFunctionInfoOffset, value);
569 31305109 : CONDITIONAL_WRITE_BARRIER(*this, kSharedFunctionInfoOffset, value, mode);
570 15652554 : }
571 :
572 : void JSFunction::ClearOptimizedCodeSlot(const char* reason) {
573 : if (has_feedback_vector() && feedback_vector()->has_optimized_code()) {
574 : if (FLAG_trace_opt) {
575 : PrintF("[evicting entry from optimizing code feedback slot (%s) for ",
576 : reason);
577 : ShortPrint();
578 : PrintF("]\n");
579 : }
580 : feedback_vector()->ClearOptimizedCode();
581 : }
582 : }
583 :
584 : void JSFunction::SetOptimizationMarker(OptimizationMarker marker) {
585 : DCHECK(has_feedback_vector());
586 : DCHECK(ChecksOptimizationMarker());
587 : DCHECK(!HasOptimizedCode());
588 :
589 504310 : feedback_vector()->SetOptimizationMarker(marker);
590 : }
591 :
592 28412777 : bool JSFunction::has_feedback_vector() const {
593 56824688 : return shared()->is_compiled() &&
594 28412816 : raw_feedback_cell()->value()->IsFeedbackVector();
595 : }
596 :
597 3101366 : bool JSFunction::has_closure_feedback_cell_array() const {
598 6202735 : return shared()->is_compiled() &&
599 3101368 : raw_feedback_cell()->value()->IsClosureFeedbackCellArray();
600 : }
601 :
602 : Context JSFunction::context() {
603 27018564 : return Context::cast(READ_FIELD(*this, kContextOffset));
604 : }
605 :
606 406990 : bool JSFunction::has_context() const {
607 813980 : return READ_FIELD(*this, kContextOffset)->IsContext();
608 : }
609 :
610 1091060 : JSGlobalProxy JSFunction::global_proxy() { return context()->global_proxy(); }
611 :
612 : NativeContext JSFunction::native_context() {
613 : return context()->native_context();
614 : }
615 :
616 15652624 : void JSFunction::set_context(Object value) {
617 : DCHECK(value->IsUndefined() || value->IsContext());
618 15652624 : WRITE_FIELD(*this, kContextOffset, value);
619 15652624 : WRITE_BARRIER(*this, kContextOffset, value);
620 15652618 : }
621 :
622 164904703 : ACCESSORS_CHECKED(JSFunction, prototype_or_initial_map, Object,
623 : kPrototypeOrInitialMapOffset, map()->has_prototype_slot())
624 :
625 23733102 : bool JSFunction::has_prototype_slot() const {
626 23733102 : return map()->has_prototype_slot();
627 : }
628 :
629 : Map JSFunction::initial_map() { return Map::cast(prototype_or_initial_map()); }
630 :
631 42052611 : bool JSFunction::has_initial_map() {
632 : DCHECK(has_prototype_slot());
633 42052620 : return prototype_or_initial_map()->IsMap();
634 : }
635 :
636 6844403 : bool JSFunction::has_instance_prototype() {
637 : DCHECK(has_prototype_slot());
638 7619381 : return has_initial_map() || !prototype_or_initial_map()->IsTheHole();
639 : }
640 :
641 6553070 : bool JSFunction::has_prototype() {
642 : DCHECK(has_prototype_slot());
643 6553070 : return map()->has_non_instance_prototype() || has_instance_prototype();
644 : }
645 :
646 7521805 : bool JSFunction::has_prototype_property() {
647 15045206 : return (has_prototype_slot() && IsConstructor()) ||
648 7521804 : IsGeneratorFunction(shared()->kind());
649 : }
650 :
651 7521805 : bool JSFunction::PrototypeRequiresRuntimeLookup() {
652 14003100 : return !has_prototype_property() || map()->has_non_instance_prototype();
653 : }
654 :
655 5274386 : HeapObject JSFunction::instance_prototype() {
656 : DCHECK(has_instance_prototype());
657 5274386 : if (has_initial_map()) return initial_map()->prototype();
658 : // When there is no initial map and the prototype is a JSReceiver, the
659 : // initial map field is used for the prototype field.
660 : return HeapObject::cast(prototype_or_initial_map());
661 : }
662 :
663 4348886 : Object JSFunction::prototype() {
664 : DCHECK(has_prototype());
665 : // If the function's prototype property has been set to a non-JSReceiver
666 : // value, that value is stored in the constructor field of the map.
667 4348886 : if (map()->has_non_instance_prototype()) {
668 13412 : Object prototype = map()->GetConstructor();
669 : // The map must have a prototype in that field, not a back pointer.
670 : DCHECK(!prototype->IsMap());
671 : DCHECK(!prototype->IsFunctionTemplateInfo());
672 13412 : return prototype;
673 : }
674 4335474 : return instance_prototype();
675 : }
676 :
677 4602331 : bool JSFunction::is_compiled() const {
678 8888576 : return code()->builtin_index() != Builtins::kCompileLazy &&
679 8888576 : shared()->is_compiled();
680 : }
681 :
682 58422370 : bool JSFunction::NeedsResetDueToFlushedBytecode() {
683 : // Do a raw read for shared and code fields here since this function may be
684 : // called on a concurrent thread and the JSFunction might not be fully
685 : // initialized yet.
686 58422370 : Object maybe_shared = ACQUIRE_READ_FIELD(*this, kSharedFunctionInfoOffset);
687 58422370 : Object maybe_code = RELAXED_READ_FIELD(*this, kCodeOffset);
688 :
689 116944183 : if (!maybe_shared->IsSharedFunctionInfo() || !maybe_code->IsCode()) {
690 : return false;
691 : }
692 :
693 58567666 : SharedFunctionInfo shared = SharedFunctionInfo::cast(maybe_shared);
694 : Code code = Code::cast(maybe_code);
695 63380802 : return !shared->is_compiled() &&
696 : code->builtin_index() != Builtins::kCompileLazy;
697 : }
698 :
699 1536445 : void JSFunction::ResetIfBytecodeFlushed() {
700 1536445 : if (FLAG_flush_bytecode && NeedsResetDueToFlushedBytecode()) {
701 : // Bytecode was flushed and function is now uncompiled, reset JSFunction
702 : // by setting code to CompileLazy and clearing the feedback vector.
703 8142 : set_code(GetIsolate()->builtins()->builtin(i::Builtins::kCompileLazy));
704 16284 : raw_feedback_cell()->set_value(
705 24426 : ReadOnlyRoots(GetIsolate()).undefined_value());
706 : }
707 1536444 : }
708 :
709 574793 : ACCESSORS(JSValue, value, Object, kValueOffset)
710 :
711 882784 : ACCESSORS(JSDate, value, Object, kValueOffset)
712 170502 : ACCESSORS(JSDate, cache_stamp, Object, kCacheStampOffset)
713 13086 : ACCESSORS(JSDate, year, Object, kYearOffset)
714 12438 : ACCESSORS(JSDate, month, Object, kMonthOffset)
715 12267 : ACCESSORS(JSDate, day, Object, kDayOffset)
716 12195 : ACCESSORS(JSDate, weekday, Object, kWeekdayOffset)
717 15345 : ACCESSORS(JSDate, hour, Object, kHourOffset)
718 13041 : ACCESSORS(JSDate, min, Object, kMinOffset)
719 12420 : ACCESSORS(JSDate, sec, Object, kSecOffset)
720 :
721 : MessageTemplate JSMessageObject::type() const {
722 4165 : Object value = READ_FIELD(*this, kMessageTypeOffset);
723 : return MessageTemplateFromInt(Smi::ToInt(value));
724 : }
725 : void JSMessageObject::set_type(MessageTemplate value) {
726 1363628 : WRITE_FIELD(*this, kMessageTypeOffset, Smi::FromInt(static_cast<int>(value)));
727 : }
728 6854801 : ACCESSORS(JSMessageObject, argument, Object, kArgumentsOffset)
729 6873112 : ACCESSORS(JSMessageObject, script, Script, kScriptOffset)
730 6820168 : ACCESSORS(JSMessageObject, stack_frames, Object, kStackFramesOffset)
731 1433408 : SMI_ACCESSORS(JSMessageObject, start_position, kStartPositionOffset)
732 1378237 : SMI_ACCESSORS(JSMessageObject, end_position, kEndPositionOffset)
733 1388819 : SMI_ACCESSORS(JSMessageObject, error_level, kErrorLevelOffset)
734 :
735 5415 : ElementsKind JSObject::GetElementsKind() const {
736 : ElementsKind kind = map()->elements_kind();
737 : #if VERIFY_HEAP && DEBUG
738 : FixedArrayBase fixed_array =
739 : FixedArrayBase::unchecked_cast(READ_FIELD(*this, kElementsOffset));
740 :
741 : // If a GC was caused while constructing this object, the elements
742 : // pointer may point to a one pointer filler map.
743 : if (ElementsAreSafeToExamine()) {
744 : Map map = fixed_array->map();
745 : if (IsSmiOrObjectElementsKind(kind)) {
746 : DCHECK(map == GetReadOnlyRoots().fixed_array_map() ||
747 : map == GetReadOnlyRoots().fixed_cow_array_map());
748 : } else if (IsDoubleElementsKind(kind)) {
749 : DCHECK(fixed_array->IsFixedDoubleArray() ||
750 : fixed_array == GetReadOnlyRoots().empty_fixed_array());
751 : } else if (kind == DICTIONARY_ELEMENTS) {
752 : DCHECK(fixed_array->IsFixedArray());
753 : DCHECK(fixed_array->IsDictionary());
754 : } else {
755 : DCHECK(kind > DICTIONARY_ELEMENTS ||
756 : IsPackedFrozenOrSealedElementsKind(kind));
757 : }
758 : DCHECK(!IsSloppyArgumentsElementsKind(kind) ||
759 : (elements()->IsFixedArray() && elements()->length() >= 2));
760 : }
761 : #endif
762 5415 : return kind;
763 : }
764 :
765 1992477 : bool JSObject::HasObjectElements() {
766 1992477 : return IsObjectElementsKind(GetElementsKind());
767 : }
768 :
769 2479974 : bool JSObject::HasSmiElements() { return IsSmiElementsKind(GetElementsKind()); }
770 :
771 1354894 : bool JSObject::HasSmiOrObjectElements() {
772 1354894 : return IsSmiOrObjectElementsKind(GetElementsKind());
773 : }
774 :
775 2110214 : bool JSObject::HasDoubleElements() {
776 2110214 : return IsDoubleElementsKind(GetElementsKind());
777 : }
778 :
779 4954381 : bool JSObject::HasHoleyElements() {
780 4954381 : return IsHoleyElementsKind(GetElementsKind());
781 : }
782 :
783 2301493 : bool JSObject::HasFastElements() {
784 2301493 : return IsFastElementsKind(GetElementsKind());
785 : }
786 :
787 123326 : bool JSObject::HasFastPackedElements() {
788 123326 : return IsFastPackedElementsKind(GetElementsKind());
789 : }
790 :
791 513266 : bool JSObject::HasDictionaryElements() {
792 513266 : return GetElementsKind() == DICTIONARY_ELEMENTS;
793 : }
794 :
795 105 : bool JSObject::HasPackedElements() {
796 105 : return GetElementsKind() == PACKED_ELEMENTS;
797 : }
798 :
799 : bool JSObject::HasFrozenOrSealedElements() {
800 : return IsPackedFrozenOrSealedElementsKind(GetElementsKind());
801 : }
802 :
803 : bool JSObject::HasFastArgumentsElements() {
804 : return GetElementsKind() == FAST_SLOPPY_ARGUMENTS_ELEMENTS;
805 : }
806 :
807 166203 : bool JSObject::HasSlowArgumentsElements() {
808 166203 : return GetElementsKind() == SLOW_SLOPPY_ARGUMENTS_ELEMENTS;
809 : }
810 :
811 21324048 : bool JSObject::HasSloppyArgumentsElements() {
812 21324048 : return IsSloppyArgumentsElementsKind(GetElementsKind());
813 : }
814 :
815 125771 : bool JSObject::HasStringWrapperElements() {
816 125771 : return IsStringWrapperElementsKind(GetElementsKind());
817 : }
818 :
819 1082834 : bool JSObject::HasFastStringWrapperElements() {
820 1082834 : return GetElementsKind() == FAST_STRING_WRAPPER_ELEMENTS;
821 : }
822 :
823 242197 : bool JSObject::HasSlowStringWrapperElements() {
824 242197 : return GetElementsKind() == SLOW_STRING_WRAPPER_ELEMENTS;
825 : }
826 :
827 2193487 : bool JSObject::HasFixedTypedArrayElements() {
828 : DCHECK(!elements().is_null());
829 2193487 : return map()->has_fixed_typed_array_elements();
830 : }
831 :
832 : #define FIXED_TYPED_ELEMENTS_CHECK(Type, type, TYPE, ctype) \
833 : bool JSObject::HasFixed##Type##Elements() { \
834 : FixedArrayBase array = elements(); \
835 : return array->map()->instance_type() == FIXED_##TYPE##_ARRAY_TYPE; \
836 : }
837 :
838 900 : TYPED_ARRAYS(FIXED_TYPED_ELEMENTS_CHECK)
839 :
840 : #undef FIXED_TYPED_ELEMENTS_CHECK
841 :
842 6450768 : bool JSObject::HasNamedInterceptor() { return map()->has_named_interceptor(); }
843 :
844 1228748 : bool JSObject::HasIndexedInterceptor() {
845 1228748 : return map()->has_indexed_interceptor();
846 : }
847 :
848 : void JSGlobalObject::set_global_dictionary(GlobalDictionary dictionary) {
849 : DCHECK(IsJSGlobalObject());
850 92735 : set_raw_properties_or_hash(dictionary);
851 : }
852 :
853 : GlobalDictionary JSGlobalObject::global_dictionary() {
854 : DCHECK(!HasFastProperties());
855 : DCHECK(IsJSGlobalObject());
856 : return GlobalDictionary::cast(raw_properties_or_hash());
857 : }
858 :
859 : NumberDictionary JSObject::element_dictionary() {
860 : DCHECK(HasDictionaryElements() || HasSlowStringWrapperElements());
861 : return NumberDictionary::cast(elements());
862 : }
863 :
864 15650936 : void JSReceiver::initialize_properties() {
865 : ReadOnlyRoots roots = GetReadOnlyRoots();
866 : DCHECK(!ObjectInYoungGeneration(roots.empty_fixed_array()));
867 : DCHECK(!ObjectInYoungGeneration(roots.empty_property_dictionary()));
868 15650936 : if (map()->is_dictionary_map()) {
869 29 : WRITE_FIELD(*this, kPropertiesOrHashOffset,
870 : roots.empty_property_dictionary());
871 : } else {
872 15650907 : WRITE_FIELD(*this, kPropertiesOrHashOffset, roots.empty_fixed_array());
873 : }
874 15650936 : }
875 :
876 117631061 : bool JSReceiver::HasFastProperties() const {
877 : DCHECK(
878 : raw_properties_or_hash()->IsSmi() ||
879 : (raw_properties_or_hash()->IsDictionary() == map()->is_dictionary_map()));
880 117631061 : return !map()->is_dictionary_map();
881 : }
882 :
883 10085741 : NameDictionary JSReceiver::property_dictionary() const {
884 : DCHECK(!IsJSGlobalObject());
885 : DCHECK(!HasFastProperties());
886 :
887 : Object prop = raw_properties_or_hash();
888 10085741 : if (prop->IsSmi()) {
889 : return GetReadOnlyRoots().empty_property_dictionary();
890 : }
891 :
892 : return NameDictionary::cast(prop);
893 : }
894 :
895 : // TODO(gsathya): Pass isolate directly to this function and access
896 : // the heap from this.
897 114335114 : PropertyArray JSReceiver::property_array() const {
898 : DCHECK(HasFastProperties());
899 :
900 : Object prop = raw_properties_or_hash();
901 228668212 : if (prop->IsSmi() || prop == GetReadOnlyRoots().empty_fixed_array()) {
902 : return GetReadOnlyRoots().empty_property_array();
903 : }
904 :
905 : return PropertyArray::cast(prop);
906 : }
907 :
908 110156 : Maybe<bool> JSReceiver::HasProperty(Handle<JSReceiver> object,
909 : Handle<Name> name) {
910 : LookupIterator it = LookupIterator::PropertyOrElement(object->GetIsolate(),
911 110156 : object, name, object);
912 110156 : return HasProperty(&it);
913 : }
914 :
915 7327 : Maybe<bool> JSReceiver::HasOwnProperty(Handle<JSReceiver> object,
916 : uint32_t index) {
917 7327 : if (object->IsJSModuleNamespace()) return Just(false);
918 :
919 7327 : if (object->IsJSObject()) { // Shortcut.
920 : LookupIterator it(object->GetIsolate(), object, index, object,
921 : LookupIterator::OWN);
922 7246 : return HasProperty(&it);
923 : }
924 :
925 : Maybe<PropertyAttributes> attributes =
926 81 : JSReceiver::GetOwnPropertyAttributes(object, index);
927 81 : MAYBE_RETURN(attributes, Nothing<bool>());
928 81 : return Just(attributes.FromJust() != ABSENT);
929 : }
930 :
931 6896664 : Maybe<PropertyAttributes> JSReceiver::GetPropertyAttributes(
932 : Handle<JSReceiver> object, Handle<Name> name) {
933 : LookupIterator it = LookupIterator::PropertyOrElement(object->GetIsolate(),
934 6896664 : object, name, object);
935 6896664 : return GetPropertyAttributes(&it);
936 : }
937 :
938 628202 : Maybe<PropertyAttributes> JSReceiver::GetOwnPropertyAttributes(
939 : Handle<JSReceiver> object, Handle<Name> name) {
940 : LookupIterator it = LookupIterator::PropertyOrElement(
941 628202 : object->GetIsolate(), object, name, object, LookupIterator::OWN);
942 628202 : return GetPropertyAttributes(&it);
943 : }
944 :
945 81 : Maybe<PropertyAttributes> JSReceiver::GetOwnPropertyAttributes(
946 : Handle<JSReceiver> object, uint32_t index) {
947 : LookupIterator it(object->GetIsolate(), object, index, object,
948 : LookupIterator::OWN);
949 81 : return GetPropertyAttributes(&it);
950 : }
951 :
952 1745648 : Maybe<bool> JSReceiver::HasElement(Handle<JSReceiver> object, uint32_t index) {
953 : LookupIterator it(object->GetIsolate(), object, index, object);
954 1745648 : return HasProperty(&it);
955 : }
956 :
957 : Maybe<PropertyAttributes> JSReceiver::GetElementAttributes(
958 : Handle<JSReceiver> object, uint32_t index) {
959 : Isolate* isolate = object->GetIsolate();
960 : LookupIterator it(isolate, object, index, object);
961 : return GetPropertyAttributes(&it);
962 : }
963 :
964 : Maybe<PropertyAttributes> JSReceiver::GetOwnElementAttributes(
965 : Handle<JSReceiver> object, uint32_t index) {
966 : Isolate* isolate = object->GetIsolate();
967 : LookupIterator it(isolate, object, index, object, LookupIterator::OWN);
968 : return GetPropertyAttributes(&it);
969 : }
970 :
971 : bool JSGlobalObject::IsDetached() {
972 : return global_proxy()->IsDetachedFrom(*this);
973 : }
974 :
975 496698 : bool JSGlobalProxy::IsDetachedFrom(JSGlobalObject global) const {
976 : const PrototypeIterator iter(this->GetIsolate(), *this);
977 496699 : return iter.GetCurrent() != global;
978 : }
979 :
980 : inline int JSGlobalProxy::SizeWithEmbedderFields(int embedder_field_count) {
981 : DCHECK_GE(embedder_field_count, 0);
982 91664 : return kSize + embedder_field_count * kEmbedderDataSlotSize;
983 : }
984 :
985 92373 : ACCESSORS(JSIteratorResult, value, Object, kValueOffset)
986 90855 : ACCESSORS(JSIteratorResult, done, Object, kDoneOffset)
987 :
988 1190 : ACCESSORS(JSAsyncFromSyncIterator, sync_iterator, JSReceiver,
989 : kSyncIteratorOffset)
990 1190 : ACCESSORS(JSAsyncFromSyncIterator, next, Object, kNextOffset)
991 :
992 0 : ACCESSORS(JSStringIterator, string, String, kStringOffset)
993 0 : SMI_ACCESSORS(JSStringIterator, index, kNextIndexOffset)
994 :
995 4146124 : static inline bool ShouldConvertToSlowElements(JSObject object,
996 : uint32_t capacity,
997 : uint32_t index,
998 : uint32_t* new_capacity) {
999 : STATIC_ASSERT(JSObject::kMaxUncheckedOldFastElementsLength <=
1000 : JSObject::kMaxUncheckedFastElementsLength);
1001 4146124 : if (index < capacity) {
1002 3583536 : *new_capacity = capacity;
1003 3583536 : return false;
1004 : }
1005 562588 : if (index - capacity >= JSObject::kMaxGap) return true;
1006 621874 : *new_capacity = JSObject::NewElementsCapacity(index + 1);
1007 : DCHECK_LT(index, *new_capacity);
1008 : // TODO(ulan): Check if it works with young large objects.
1009 621874 : if (*new_capacity <= JSObject::kMaxUncheckedOldFastElementsLength ||
1010 44286 : (*new_capacity <= JSObject::kMaxUncheckedFastElementsLength &&
1011 : ObjectInYoungGeneration(object))) {
1012 : return false;
1013 : }
1014 : // If the fast-case backing storage takes up much more memory than a
1015 : // dictionary backing storage would, the object should have slow elements.
1016 2536 : int used_elements = object->GetFastElementsUsage();
1017 : uint32_t size_threshold = NumberDictionary::kPreferFastElementsSizeFactor *
1018 2536 : NumberDictionary::ComputeCapacity(used_elements) *
1019 2536 : NumberDictionary::kEntrySize;
1020 2536 : return size_threshold <= *new_capacity;
1021 : }
1022 :
1023 : } // namespace internal
1024 : } // namespace v8
1025 :
1026 : #include "src/objects/object-macros-undef.h"
1027 :
1028 : #endif // V8_OBJECTS_JS_OBJECTS_INL_H_
|
