| // Copyright 2018 the V8 project authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef V8_OBJECTS_SLOTS_INL_H_ |
| #define V8_OBJECTS_SLOTS_INL_H_ |
| |
| #include "include/v8-internal.h" |
| #include "src/base/atomic-utils.h" |
| #include "src/common/globals.h" |
| #include "src/common/ptr-compr-inl.h" |
| #include "src/objects/compressed-slots.h" |
| #include "src/objects/heap-object.h" |
| #include "src/objects/map.h" |
| #include "src/objects/maybe-object.h" |
| #include "src/objects/objects.h" |
| #include "src/objects/slots.h" |
| #include "src/objects/tagged.h" |
| #include "src/sandbox/external-pointer-inl.h" |
| #include "src/sandbox/indirect-pointer-inl.h" |
| #include "src/sandbox/isolate-inl.h" |
| #include "src/utils/memcopy.h" |
| |
| namespace v8 { |
| namespace internal { |
| |
| // |
| // FullObjectSlot implementation. |
| // |
| |
| FullObjectSlot::FullObjectSlot(TaggedBase* object) |
| : SlotBase(reinterpret_cast<Address>(&object->ptr_)) {} |
| |
| bool FullObjectSlot::contains_map_value(Address raw_value) const { |
| return load_map().ptr() == raw_value; |
| } |
| |
| bool FullObjectSlot::Relaxed_ContainsMapValue(Address raw_value) const { |
| return base::AsAtomicPointer::Relaxed_Load(location()) == raw_value; |
| } |
| |
| Tagged<Object> FullObjectSlot::operator*() const { |
| return Tagged<Object>(*location()); |
| } |
| |
| Tagged<Object> FullObjectSlot::load() const { return **this; } |
| |
| Tagged<Object> FullObjectSlot::load(PtrComprCageBase cage_base) const { |
| return load(); |
| } |
| |
| void FullObjectSlot::store(Tagged<Object> value) const { |
| *location() = value.ptr(); |
| } |
| |
| void FullObjectSlot::store_map(Tagged<Map> map) const { |
| #ifdef V8_MAP_PACKING |
| *location() = MapWord::Pack(map.ptr()); |
| #else |
| store(map); |
| #endif |
| } |
| |
| Tagged<Map> FullObjectSlot::load_map() const { |
| #ifdef V8_MAP_PACKING |
| return Map::unchecked_cast(Tagged<Object>(MapWord::Unpack(*location()))); |
| #else |
| return Map::unchecked_cast(Tagged<Object>(*location())); |
| #endif |
| } |
| |
| Tagged<Object> FullObjectSlot::Acquire_Load() const { |
| return Tagged<Object>(base::AsAtomicPointer::Acquire_Load(location())); |
| } |
| |
| Tagged<Object> FullObjectSlot::Acquire_Load(PtrComprCageBase cage_base) const { |
| return Acquire_Load(); |
| } |
| |
| Tagged<Object> FullObjectSlot::Relaxed_Load() const { |
| return Tagged<Object>(base::AsAtomicPointer::Relaxed_Load(location())); |
| } |
| |
| Tagged<Object> FullObjectSlot::Relaxed_Load(PtrComprCageBase cage_base) const { |
| return Relaxed_Load(); |
| } |
| |
| Address FullObjectSlot::Relaxed_Load_Raw() const { |
| return static_cast<Address>(base::AsAtomicPointer::Relaxed_Load(location())); |
| } |
| |
| // static |
| Tagged<Object> FullObjectSlot::RawToTagged(PtrComprCageBase cage_base, |
| Address raw) { |
| return Tagged<Object>(raw); |
| } |
| |
| void FullObjectSlot::Relaxed_Store(Tagged<Object> value) const { |
| base::AsAtomicPointer::Relaxed_Store(location(), value.ptr()); |
| } |
| |
| void FullObjectSlot::Release_Store(Tagged<Object> value) const { |
| base::AsAtomicPointer::Release_Store(location(), value.ptr()); |
| } |
| |
| Tagged<Object> FullObjectSlot::Relaxed_CompareAndSwap( |
| Tagged<Object> old, Tagged<Object> target) const { |
| Address result = base::AsAtomicPointer::Relaxed_CompareAndSwap( |
| location(), old.ptr(), target.ptr()); |
| return Tagged<Object>(result); |
| } |
| |
| Tagged<Object> FullObjectSlot::Release_CompareAndSwap( |
| Tagged<Object> old, Tagged<Object> target) const { |
| Address result = base::AsAtomicPointer::Release_CompareAndSwap( |
| location(), old.ptr(), target.ptr()); |
| return Tagged<Object>(result); |
| } |
| |
| // |
| // FullMaybeObjectSlot implementation. |
| // |
| |
| Tagged<MaybeObject> FullMaybeObjectSlot::operator*() const { |
| return Tagged<MaybeObject>(*location()); |
| } |
| |
| Tagged<MaybeObject> FullMaybeObjectSlot::load( |
| PtrComprCageBase cage_base) const { |
| return **this; |
| } |
| |
| void FullMaybeObjectSlot::store(Tagged<MaybeObject> value) const { |
| *location() = value.ptr(); |
| } |
| |
| Tagged<MaybeObject> FullMaybeObjectSlot::Relaxed_Load() const { |
| return Tagged<MaybeObject>(base::AsAtomicPointer::Relaxed_Load(location())); |
| } |
| |
| Tagged<MaybeObject> FullMaybeObjectSlot::Relaxed_Load( |
| PtrComprCageBase cage_base) const { |
| return Relaxed_Load(); |
| } |
| |
| Address FullMaybeObjectSlot::Relaxed_Load_Raw() const { |
| return static_cast<Address>(base::AsAtomicPointer::Relaxed_Load(location())); |
| } |
| |
| // static |
| Tagged<Object> FullMaybeObjectSlot::RawToTagged(PtrComprCageBase cage_base, |
| Address raw) { |
| return Tagged<Object>(raw); |
| } |
| |
| void FullMaybeObjectSlot::Relaxed_Store(Tagged<MaybeObject> value) const { |
| base::AsAtomicPointer::Relaxed_Store(location(), value.ptr()); |
| } |
| |
| void FullMaybeObjectSlot::Release_CompareAndSwap( |
| Tagged<MaybeObject> old, Tagged<MaybeObject> target) const { |
| base::AsAtomicPointer::Release_CompareAndSwap(location(), old.ptr(), |
| target.ptr()); |
| } |
| |
| // |
| // FullHeapObjectSlot implementation. |
| // |
| |
| Tagged<HeapObjectReference> FullHeapObjectSlot::operator*() const { |
| return Tagged<HeapObjectReference>::cast(Tagged<MaybeObject>(*location())); |
| } |
| |
| Tagged<HeapObjectReference> FullHeapObjectSlot::load( |
| PtrComprCageBase cage_base) const { |
| return **this; |
| } |
| |
| void FullHeapObjectSlot::store(Tagged<HeapObjectReference> value) const { |
| *location() = value.ptr(); |
| } |
| |
| Tagged<HeapObject> FullHeapObjectSlot::ToHeapObject() const { |
| TData value = *location(); |
| DCHECK(HAS_STRONG_HEAP_OBJECT_TAG(value)); |
| return HeapObject::cast(Tagged<Object>(value)); |
| } |
| |
| void FullHeapObjectSlot::StoreHeapObject(Tagged<HeapObject> value) const { |
| *location() = value.ptr(); |
| } |
| |
| void ExternalPointerSlot::init(IsolateForSandbox isolate, |
| Tagged<HeapObject> host, Address value) { |
| #ifdef V8_ENABLE_SANDBOX |
| ExternalPointerTable& table = isolate.GetExternalPointerTableFor(tag_); |
| ExternalPointerHandle handle = table.AllocateAndInitializeEntry( |
| isolate.GetExternalPointerTableSpaceFor(tag_, host.address()), value, |
| tag_); |
| // Use a Release_Store to ensure that the store of the pointer into the |
| // table is not reordered after the store of the handle. Otherwise, other |
| // threads may access an uninitialized table entry and crash. |
| Release_StoreHandle(handle); |
| #else |
| store(isolate, value); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| #ifdef V8_COMPRESS_POINTERS |
| ExternalPointerHandle ExternalPointerSlot::Relaxed_LoadHandle() const { |
| return base::AsAtomic32::Relaxed_Load(handle_location()); |
| } |
| |
| void ExternalPointerSlot::Relaxed_StoreHandle( |
| ExternalPointerHandle handle) const { |
| return base::AsAtomic32::Relaxed_Store(handle_location(), handle); |
| } |
| |
| void ExternalPointerSlot::Release_StoreHandle( |
| ExternalPointerHandle handle) const { |
| return base::AsAtomic32::Release_Store(handle_location(), handle); |
| } |
| #endif // V8_COMPRESS_POINTERS |
| |
| Address ExternalPointerSlot::load(IsolateForSandbox isolate) { |
| #ifdef V8_ENABLE_SANDBOX |
| const ExternalPointerTable& table = isolate.GetExternalPointerTableFor(tag_); |
| ExternalPointerHandle handle = Relaxed_LoadHandle(); |
| return table.Get(handle, tag_); |
| #else |
| return ReadMaybeUnalignedValue<Address>(address()); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| void ExternalPointerSlot::store(IsolateForSandbox isolate, Address value) { |
| #ifdef V8_ENABLE_SANDBOX |
| ExternalPointerTable& table = isolate.GetExternalPointerTableFor(tag_); |
| ExternalPointerHandle handle = Relaxed_LoadHandle(); |
| table.Set(handle, value, tag_); |
| #else |
| WriteMaybeUnalignedValue<Address>(address(), value); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| ExternalPointerSlot::RawContent |
| ExternalPointerSlot::GetAndClearContentForSerialization( |
| const DisallowGarbageCollection& no_gc) { |
| #ifdef V8_ENABLE_SANDBOX |
| ExternalPointerHandle content = Relaxed_LoadHandle(); |
| Relaxed_StoreHandle(kNullExternalPointerHandle); |
| #else |
| Address content = ReadMaybeUnalignedValue<Address>(address()); |
| WriteMaybeUnalignedValue<Address>(address(), kNullAddress); |
| #endif |
| return content; |
| } |
| |
| void ExternalPointerSlot::RestoreContentAfterSerialization( |
| ExternalPointerSlot::RawContent content, |
| const DisallowGarbageCollection& no_gc) { |
| #ifdef V8_ENABLE_SANDBOX |
| return Relaxed_StoreHandle(content); |
| #else |
| return WriteMaybeUnalignedValue<Address>(address(), content); |
| #endif |
| } |
| |
| void ExternalPointerSlot::ReplaceContentWithIndexForSerialization( |
| const DisallowGarbageCollection& no_gc, uint32_t index) { |
| #ifdef V8_ENABLE_SANDBOX |
| static_assert(sizeof(ExternalPointerHandle) == sizeof(uint32_t)); |
| Relaxed_StoreHandle(index); |
| #else |
| WriteMaybeUnalignedValue<Address>(address(), static_cast<Address>(index)); |
| #endif |
| } |
| |
| uint32_t ExternalPointerSlot::GetContentAsIndexAfterDeserialization( |
| const DisallowGarbageCollection& no_gc) { |
| #ifdef V8_ENABLE_SANDBOX |
| static_assert(sizeof(ExternalPointerHandle) == sizeof(uint32_t)); |
| return Relaxed_LoadHandle(); |
| #else |
| return static_cast<uint32_t>(ReadMaybeUnalignedValue<Address>(address())); |
| #endif |
| } |
| |
| #ifdef V8_COMPRESS_POINTERS |
| CppHeapPointerHandle CppHeapPointerSlot::Relaxed_LoadHandle() const { |
| return base::AsAtomic32::Relaxed_Load(location()); |
| } |
| |
| void CppHeapPointerSlot::Relaxed_StoreHandle( |
| CppHeapPointerHandle handle) const { |
| return base::AsAtomic32::Relaxed_Store(location(), handle); |
| } |
| |
| void CppHeapPointerSlot::Release_StoreHandle( |
| CppHeapPointerHandle handle) const { |
| return base::AsAtomic32::Release_Store(location(), handle); |
| } |
| #endif // V8_COMPRESS_POINTERS |
| |
| Address CppHeapPointerSlot::try_load( |
| IsolateForPointerCompression isolate) const { |
| #ifdef V8_COMPRESS_POINTERS |
| const ExternalPointerTable& table = isolate.GetCppHeapPointerTable(); |
| CppHeapPointerHandle handle = Relaxed_LoadHandle(); |
| if (handle == kNullCppHeapPointerHandle) { |
| return kNullAddress; |
| } |
| return table.Get(handle, tag_); |
| #else // !V8_COMPRESS_POINTERS |
| return static_cast<Address>(base::AsAtomicPointer::Relaxed_Load(location())); |
| #endif // !V8_COMPRESS_POINTERS |
| } |
| |
| void CppHeapPointerSlot::store(IsolateForPointerCompression isolate, |
| Address value) const { |
| #ifdef V8_COMPRESS_POINTERS |
| ExternalPointerTable& table = isolate.GetCppHeapPointerTable(); |
| CppHeapPointerHandle handle = Relaxed_LoadHandle(); |
| table.Set(handle, value, tag_); |
| #else // !V8_COMPRESS_POINTERS |
| base::AsAtomicPointer::Relaxed_Store(location(), value); |
| #endif // !V8_COMPRESS_POINTERS |
| } |
| |
| void CppHeapPointerSlot::init() const { |
| #ifdef V8_COMPRESS_POINTERS |
| base::AsAtomic32::Release_Store(location(), kNullCppHeapPointerHandle); |
| #else // !V8_COMPRESS_POINTERS |
| base::AsAtomicPointer::Release_Store(location(), kNullAddress); |
| #endif // !V8_COMPRESS_POINTERS |
| } |
| |
| Tagged<Object> IndirectPointerSlot::load(IsolateForSandbox isolate) const { |
| return Relaxed_Load(isolate); |
| } |
| |
| void IndirectPointerSlot::store(Tagged<ExposedTrustedObject> value) const { |
| return Relaxed_Store(value); |
| } |
| |
| Tagged<Object> IndirectPointerSlot::Relaxed_Load( |
| IsolateForSandbox isolate) const { |
| IndirectPointerHandle handle = Relaxed_LoadHandle(); |
| return ResolveHandle(handle, isolate); |
| } |
| |
| Tagged<Object> IndirectPointerSlot::Acquire_Load( |
| IsolateForSandbox isolate) const { |
| IndirectPointerHandle handle = Acquire_LoadHandle(); |
| return ResolveHandle(handle, isolate); |
| } |
| |
| void IndirectPointerSlot::Relaxed_Store( |
| Tagged<ExposedTrustedObject> value) const { |
| #ifdef V8_ENABLE_SANDBOX |
| IndirectPointerHandle handle = value->ReadField<IndirectPointerHandle>( |
| ExposedTrustedObject::kSelfIndirectPointerOffset); |
| DCHECK_NE(handle, kNullIndirectPointerHandle); |
| Relaxed_StoreHandle(handle); |
| #else |
| UNREACHABLE(); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| void IndirectPointerSlot::Release_Store( |
| Tagged<ExposedTrustedObject> value) const { |
| #ifdef V8_ENABLE_SANDBOX |
| IndirectPointerHandle handle = value->ReadField<IndirectPointerHandle>( |
| ExposedTrustedObject::kSelfIndirectPointerOffset); |
| Release_StoreHandle(handle); |
| #else |
| UNREACHABLE(); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| IndirectPointerHandle IndirectPointerSlot::Relaxed_LoadHandle() const { |
| return base::AsAtomic32::Relaxed_Load(location()); |
| } |
| |
| IndirectPointerHandle IndirectPointerSlot::Acquire_LoadHandle() const { |
| return base::AsAtomic32::Acquire_Load(location()); |
| } |
| |
| void IndirectPointerSlot::Relaxed_StoreHandle( |
| IndirectPointerHandle handle) const { |
| return base::AsAtomic32::Relaxed_Store(location(), handle); |
| } |
| |
| void IndirectPointerSlot::Release_StoreHandle( |
| IndirectPointerHandle handle) const { |
| return base::AsAtomic32::Release_Store(location(), handle); |
| } |
| |
| bool IndirectPointerSlot::IsEmpty() const { |
| return Relaxed_LoadHandle() == kNullIndirectPointerHandle; |
| } |
| |
| Tagged<Object> IndirectPointerSlot::ResolveHandle( |
| IndirectPointerHandle handle, IsolateForSandbox isolate) const { |
| #ifdef V8_ENABLE_SANDBOX |
| // TODO(saelo) Maybe come up with a different entry encoding scheme that |
| // returns Smi::zero for kNullCodePointerHandle? |
| if (!handle) return Smi::zero(); |
| |
| // Resolve the handle. The tag implies the pointer table to use. |
| if (tag_ == kUnknownIndirectPointerTag) { |
| // In this case we have to rely on the handle marking to determine which |
| // pointer table to use. |
| if (handle & kCodePointerHandleMarker) { |
| return ResolveCodePointerHandle(handle); |
| } else { |
| return ResolveTrustedPointerHandle(handle, isolate); |
| } |
| } else if (tag_ == kCodeIndirectPointerTag) { |
| return ResolveCodePointerHandle(handle); |
| } else { |
| return ResolveTrustedPointerHandle(handle, isolate); |
| } |
| #else |
| UNREACHABLE(); |
| #endif // V8_ENABLE_SANDBOX |
| } |
| |
| #ifdef V8_ENABLE_SANDBOX |
| Tagged<Object> IndirectPointerSlot::ResolveTrustedPointerHandle( |
| IndirectPointerHandle handle, IsolateForSandbox isolate) const { |
| DCHECK_NE(handle, kNullIndirectPointerHandle); |
| const TrustedPointerTable& table = isolate.GetTrustedPointerTable(); |
| return Tagged<Object>(table.Get(handle, tag_)); |
| } |
| |
| Tagged<Object> IndirectPointerSlot::ResolveCodePointerHandle( |
| IndirectPointerHandle handle) const { |
| DCHECK_NE(handle, kNullIndirectPointerHandle); |
| Address addr = GetProcessWideCodePointerTable()->GetCodeObject(handle); |
| return Tagged<Object>(addr); |
| } |
| #endif // V8_ENABLE_SANDBOX |
| |
| template <typename SlotT> |
| void WriteProtectedSlot<SlotT>::Relaxed_Store(TObject value) const { |
| jit_allocation_.WriteHeaderSlot(this->address(), value, kRelaxedStore); |
| } |
| |
| // |
| // Utils. |
| // |
| |
| // Copies tagged words from |src| to |dst|. The data spans must not overlap. |
| // |src| and |dst| must be kTaggedSize-aligned. |
| inline void CopyTagged(Address dst, const Address src, size_t num_tagged) { |
| static const size_t kBlockCopyLimit = 16; |
| CopyImpl<kBlockCopyLimit>(reinterpret_cast<Tagged_t*>(dst), |
| reinterpret_cast<const Tagged_t*>(src), num_tagged); |
| } |
| |
| // Sets |counter| number of kTaggedSize-sized values starting at |start| slot. |
| inline void MemsetTagged(Tagged_t* start, Tagged<Object> value, |
| size_t counter) { |
| #ifdef V8_COMPRESS_POINTERS |
| // CompressAny since many callers pass values which are not valid objects. |
| Tagged_t raw_value = V8HeapCompressionScheme::CompressAny(value.ptr()); |
| MemsetUint32(start, raw_value, counter); |
| #else |
| Address raw_value = value.ptr(); |
| MemsetPointer(start, raw_value, counter); |
| #endif |
| } |
| |
| // Sets |counter| number of kTaggedSize-sized values starting at |start| slot. |
| template <typename T> |
| inline void MemsetTagged(SlotBase<T, Tagged_t> start, Tagged<Object> value, |
| size_t counter) { |
| MemsetTagged(start.location(), value, counter); |
| } |
| |
| // Sets |counter| number of kSystemPointerSize-sized values starting at |start| |
| // slot. |
| inline void MemsetPointer(FullObjectSlot start, Tagged<Object> value, |
| size_t counter) { |
| MemsetPointer(start.location(), value.ptr(), counter); |
| } |
| |
| } // namespace internal |
| } // namespace v8 |
| |
| #endif // V8_OBJECTS_SLOTS_INL_H_ |
