/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*- * vim: set ts=8 sts=4 et sw=4 tw=99: * This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ #include "builtin/DataViewObject.h" #include "mozilla/Alignment.h" #include "mozilla/Casting.h" #include #include "jsapi.h" #include "jsarray.h" #include "jscntxt.h" #include "jsnum.h" #include "jsobj.h" #ifdef XP_WIN # include "jswin.h" #endif #include "jswrapper.h" #include "jit/AtomicOperations.h" #include "js/Conversions.h" #include "vm/ArrayBufferObject.h" #include "vm/GlobalObject.h" #include "vm/Interpreter.h" #include "vm/SharedMem.h" #include "vm/WrapperObject.h" #include "gc/Nursery-inl.h" #include "gc/StoreBuffer-inl.h" #include "vm/ArrayBufferObject-inl.h" #include "vm/NativeObject-inl.h" using namespace js; using namespace js::gc; using mozilla::AssertedCast; using JS::CanonicalizeNaN; using JS::ToInt32; using JS::ToUint32; static NewObjectKind DataViewNewObjectKind(JSContext* cx, uint32_t byteLength, JSObject* proto) { if (!proto && byteLength >= TypedArrayObject::SINGLETON_BYTE_LENGTH) return SingletonObject; jsbytecode* pc; JSScript* script = cx->currentScript(&pc); if (script && ObjectGroup::useSingletonForAllocationSite(script, pc, &DataViewObject::class_)) return SingletonObject; return GenericObject; } DataViewObject* DataViewObject::create(JSContext* cx, uint32_t byteOffset, uint32_t byteLength, Handle arrayBuffer, JSObject* protoArg) { if (arrayBuffer->isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return nullptr; } MOZ_ASSERT(byteOffset <= INT32_MAX); MOZ_ASSERT(byteLength <= INT32_MAX); MOZ_ASSERT(byteOffset + byteLength < UINT32_MAX); RootedObject proto(cx, protoArg); RootedObject obj(cx); NewObjectKind newKind = DataViewNewObjectKind(cx, byteLength, proto); obj = NewObjectWithClassProto(cx, &class_, proto, newKind); if (!obj) return nullptr; if (!proto) { if (byteLength >= TypedArrayObject::SINGLETON_BYTE_LENGTH) { MOZ_ASSERT(obj->isSingleton()); } else { jsbytecode* pc; RootedScript script(cx, cx->currentScript(&pc)); if (script && !ObjectGroup::setAllocationSiteObjectGroup(cx, script, pc, obj, newKind == SingletonObject)) { return nullptr; } } } // Caller should have established these preconditions, and no // (non-self-hosted) JS code has had an opportunity to run so nothing can // have invalidated them. MOZ_ASSERT(byteOffset <= arrayBuffer->byteLength()); MOZ_ASSERT(byteOffset + byteLength <= arrayBuffer->byteLength()); DataViewObject& dvobj = obj->as(); // The isSharedMemory property is invariant. Self-hosting code that sets // BUFFER_SLOT or the private slot (if it does) must maintain it by always // setting those to reference shared memory. bool isSharedMemory = IsSharedArrayBuffer(arrayBuffer.get()); if (isSharedMemory) dvobj.setIsSharedMemory(); dvobj.setFixedSlot(TypedArrayObject::BYTEOFFSET_SLOT, Int32Value(byteOffset)); dvobj.setFixedSlot(TypedArrayObject::LENGTH_SLOT, Int32Value(byteLength)); dvobj.setFixedSlot(TypedArrayObject::BUFFER_SLOT, ObjectValue(*arrayBuffer)); SharedMem ptr = arrayBuffer->dataPointerEither(); // A pointer to raw shared memory is exposed through the private slot. This // is safe so long as getPrivate() is not used willy-nilly. It is wrapped in // other accessors in TypedArrayObject.h. dvobj.initPrivate(ptr.unwrap(/*safe - see above*/) + byteOffset); // Include a barrier if the data view's data pointer is in the nursery, as // is done for typed arrays. if (!IsInsideNursery(obj) && cx->nursery().isInside(ptr)) { // Shared buffer data should never be nursery-allocated, so we // need to fail here if isSharedMemory. However, mmap() can // place a SharedArrayRawBuffer up against the bottom end of a // nursery chunk, and a zero-length buffer will erroneously be // perceived as being inside the nursery; sidestep that. if (isSharedMemory) { MOZ_ASSERT(arrayBuffer->byteLength() == 0 && (uintptr_t(ptr.unwrapValue()) & gc::ChunkMask) == 0); } else { cx->zone()->group()->storeBuffer().putWholeCell(obj); } } // Verify that the private slot is at the expected place MOZ_ASSERT(dvobj.numFixedSlots() == TypedArrayObject::DATA_SLOT); if (arrayBuffer->is()) { if (!arrayBuffer->as().addView(cx, &dvobj)) return nullptr; } return &dvobj; } // ES2017 draft rev 931261ecef9b047b14daacf82884134da48dfe0f // 24.3.2.1 DataView (extracted part of the main algorithm) bool DataViewObject::getAndCheckConstructorArgs(JSContext* cx, HandleObject bufobj, const CallArgs& args, uint32_t* byteOffsetPtr, uint32_t* byteLengthPtr) { // Step 3. if (!IsArrayBufferMaybeShared(bufobj)) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_NOT_EXPECTED_TYPE, "DataView", "ArrayBuffer", bufobj->getClass()->name); return false; } Rooted buffer(cx, &AsArrayBufferMaybeShared(bufobj)); // Step 4. uint64_t offset; if (!ToIndex(cx, args.get(1), &offset)) return false; // Step 5. if (buffer->isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return false; } // Step 6. uint32_t bufferByteLength = buffer->byteLength(); // Step 7. if (offset > bufferByteLength) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_OFFSET_OUT_OF_BUFFER); return false; } MOZ_ASSERT(offset <= INT32_MAX); // Step 8.a uint64_t viewByteLength = bufferByteLength - offset; if (args.hasDefined(2)) { // Step 9.a. if (!ToIndex(cx, args.get(2), &viewByteLength)) return false; MOZ_ASSERT(offset + viewByteLength >= offset, "can't overflow: both numbers are less than DOUBLE_INTEGRAL_PRECISION_LIMIT"); // Step 9.b. if (offset + viewByteLength > bufferByteLength) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_INVALID_DATA_VIEW_LENGTH); return false; } } MOZ_ASSERT(viewByteLength <= INT32_MAX); *byteOffsetPtr = AssertedCast(offset); *byteLengthPtr = AssertedCast(viewByteLength); return true; } bool DataViewObject::constructSameCompartment(JSContext* cx, HandleObject bufobj, const CallArgs& args) { MOZ_ASSERT(args.isConstructing()); assertSameCompartment(cx, bufobj); uint32_t byteOffset, byteLength; if (!getAndCheckConstructorArgs(cx, bufobj, args, &byteOffset, &byteLength)) return false; RootedObject proto(cx); if (!GetPrototypeFromBuiltinConstructor(cx, args, &proto)) return false; Rooted buffer(cx, &AsArrayBufferMaybeShared(bufobj)); JSObject* obj = DataViewObject::create(cx, byteOffset, byteLength, buffer, proto); if (!obj) return false; args.rval().setObject(*obj); return true; } // Create a DataView object in another compartment. // // ES6 supports creating a DataView in global A (using global A's DataView // constructor) backed by an ArrayBuffer created in global B. // // Our DataViewObject implementation doesn't support a DataView in // compartment A backed by an ArrayBuffer in compartment B. So in this case, // we create the DataView in B (!) and return a cross-compartment wrapper. // // Extra twist: the spec says the new DataView's [[Prototype]] must be // A's DataView.prototype. So even though we're creating the DataView in B, // its [[Prototype]] must be (a cross-compartment wrapper for) the // DataView.prototype in A. bool DataViewObject::constructWrapped(JSContext* cx, HandleObject bufobj, const CallArgs& args) { MOZ_ASSERT(args.isConstructing()); MOZ_ASSERT(bufobj->is()); RootedObject unwrapped(cx, CheckedUnwrap(bufobj)); if (!unwrapped) { ReportAccessDenied(cx); return false; } // NB: This entails the IsArrayBuffer check uint32_t byteOffset, byteLength; if (!getAndCheckConstructorArgs(cx, unwrapped, args, &byteOffset, &byteLength)) return false; // Make sure to get the [[Prototype]] for the created view from this // compartment. RootedObject proto(cx); if (!GetPrototypeFromBuiltinConstructor(cx, args, &proto)) return false; Rooted global(cx, cx->compartment()->maybeGlobal()); if (!proto) { proto = GlobalObject::getOrCreateDataViewPrototype(cx, global); if (!proto) return false; } RootedObject dv(cx); { JSAutoCompartment ac(cx, unwrapped); Rooted buffer(cx); buffer = &unwrapped->as(); RootedObject wrappedProto(cx, proto); if (!cx->compartment()->wrap(cx, &wrappedProto)) return false; dv = DataViewObject::create(cx, byteOffset, byteLength, buffer, wrappedProto); if (!dv) return false; } if (!cx->compartment()->wrap(cx, &dv)) return false; args.rval().setObject(*dv); return true; } bool DataViewObject::construct(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); if (!ThrowIfNotConstructing(cx, args, "DataView")) return false; RootedObject bufobj(cx); if (!GetFirstArgumentAsObject(cx, args, "DataView constructor", &bufobj)) return false; if (bufobj->is()) return constructWrapped(cx, bufobj, args); return constructSameCompartment(cx, bufobj, args); } template /* static */ SharedMem DataViewObject::getDataPointer(JSContext* cx, Handle obj, uint64_t offset, bool* isSharedMemory) { const size_t TypeSize = sizeof(NativeType); if (offset > UINT32_MAX - TypeSize || offset + TypeSize > obj->byteLength()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_OFFSET_OUT_OF_DATAVIEW); return SharedMem::unshared(nullptr); } MOZ_ASSERT(offset < UINT32_MAX); *isSharedMemory = obj->isSharedMemory(); return obj->dataPointerEither().cast() + uint32_t(offset); } static inline bool needToSwapBytes(bool littleEndian) { #if MOZ_LITTLE_ENDIAN return !littleEndian; #else return littleEndian; #endif } static inline uint8_t swapBytes(uint8_t x) { return x; } static inline uint16_t swapBytes(uint16_t x) { return ((x & 0xff) << 8) | (x >> 8); } static inline uint32_t swapBytes(uint32_t x) { return ((x & 0xff) << 24) | ((x & 0xff00) << 8) | ((x & 0xff0000) >> 8) | ((x & 0xff000000) >> 24); } static inline uint64_t swapBytes(uint64_t x) { uint32_t a = x & UINT32_MAX; uint32_t b = x >> 32; return (uint64_t(swapBytes(a)) << 32) | swapBytes(b); } template struct DataToRepType { typedef DataType result; }; template <> struct DataToRepType { typedef uint8_t result; }; template <> struct DataToRepType { typedef uint8_t result; }; template <> struct DataToRepType { typedef uint16_t result; }; template <> struct DataToRepType { typedef uint16_t result; }; template <> struct DataToRepType { typedef uint32_t result; }; template <> struct DataToRepType { typedef uint32_t result; }; template <> struct DataToRepType { typedef uint32_t result; }; template <> struct DataToRepType { typedef uint64_t result; }; static inline void Memcpy(uint8_t* dest, uint8_t* src, size_t nbytes) { memcpy(dest, src, nbytes); } static inline void Memcpy(uint8_t* dest, SharedMem src, size_t nbytes) { jit::AtomicOperations::memcpySafeWhenRacy(dest, src, nbytes); } static inline void Memcpy(SharedMem dest, uint8_t* src, size_t nbytes) { jit::AtomicOperations::memcpySafeWhenRacy(dest, src, nbytes); } template struct DataViewIO { typedef typename DataToRepType::result ReadWriteType; static void fromBuffer(DataType* dest, BufferPtrType unalignedBuffer, bool wantSwap) { MOZ_ASSERT((reinterpret_cast(dest) & (Min(MOZ_ALIGNOF(void*), sizeof(DataType)) - 1)) == 0); Memcpy((uint8_t*) dest, unalignedBuffer, sizeof(ReadWriteType)); if (wantSwap) { ReadWriteType* rwDest = reinterpret_cast(dest); *rwDest = swapBytes(*rwDest); } } static void toBuffer(BufferPtrType unalignedBuffer, const DataType* src, bool wantSwap) { MOZ_ASSERT((reinterpret_cast(src) & (Min(MOZ_ALIGNOF(void*), sizeof(DataType)) - 1)) == 0); ReadWriteType temp = *reinterpret_cast(src); if (wantSwap) temp = swapBytes(temp); Memcpy(unalignedBuffer, (uint8_t*) &temp, sizeof(ReadWriteType)); } }; template /* static */ bool DataViewObject::read(JSContext* cx, Handle obj, const CallArgs& args, NativeType* val) { // Steps 1-2. done by the caller // Step 3. unnecessary assert // Step 4. uint64_t getIndex; if (!ToIndex(cx, args.get(0), &getIndex)) return false; // Step 5. bool isLittleEndian = args.length() >= 2 && ToBoolean(args[1]); // Steps 6-7. if (obj->arrayBufferEither().isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return false; } // Steps 8-12. bool isSharedMemory; SharedMem data = DataViewObject::getDataPointer(cx, obj, getIndex, &isSharedMemory); if (!data) return false; // Step 13. if (isSharedMemory) { DataViewIO>::fromBuffer(val, data, needToSwapBytes(isLittleEndian)); } else { DataViewIO::fromBuffer(val, data.unwrapUnshared(), needToSwapBytes(isLittleEndian)); } return true; } template static inline bool WebIDLCast(JSContext* cx, HandleValue value, NativeType* out) { int32_t temp; if (!ToInt32(cx, value, &temp)) return false; // Technically, the behavior of assigning an out of range value to a signed // variable is undefined. In practice, compilers seem to do what we want // without issuing any warnings. *out = static_cast(temp); return true; } template <> inline bool WebIDLCast(JSContext* cx, HandleValue value, float* out) { double temp; if (!ToNumber(cx, value, &temp)) return false; *out = static_cast(temp); return true; } template <> inline bool WebIDLCast(JSContext* cx, HandleValue value, double* out) { return ToNumber(cx, value, out); } template /* static */ bool DataViewObject::write(JSContext* cx, Handle obj, const CallArgs& args) { // Steps 1-2. done by the caller // Step 3. unnecessary assert // Step 4. uint64_t getIndex; if (!ToIndex(cx, args.get(0), &getIndex)) return false; // Step 5. Should just call ToNumber (unobservable) NativeType value; if (!WebIDLCast(cx, args.get(1), &value)) return false; #ifdef JS_MORE_DETERMINISTIC // See the comment in ElementSpecific::doubleToNative. if (TypeIsFloatingPoint()) value = JS::CanonicalizeNaN(value); #endif // Step 6. bool isLittleEndian = args.length() >= 3 && ToBoolean(args[2]); // Steps 7-8. if (obj->arrayBufferEither().isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return false; } // Steps 9-13. bool isSharedMemory; SharedMem data = DataViewObject::getDataPointer(cx, obj, getIndex, &isSharedMemory); if (!data) return false; // Step 14. if (isSharedMemory) { DataViewIO>::toBuffer(data, &value, needToSwapBytes(isLittleEndian)); } else { DataViewIO::toBuffer(data.unwrapUnshared(), &value, needToSwapBytes(isLittleEndian)); } return true; } bool DataViewObject::getInt8Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); int8_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setInt32(val); return true; } bool DataViewObject::fun_getInt8(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getUint8Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); uint8_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setInt32(val); return true; } bool DataViewObject::fun_getUint8(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getInt16Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); int16_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setInt32(val); return true; } bool DataViewObject::fun_getInt16(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getUint16Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); uint16_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setInt32(val); return true; } bool DataViewObject::fun_getUint16(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getInt32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); int32_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setInt32(val); return true; } bool DataViewObject::fun_getInt32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getUint32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); uint32_t val; if (!read(cx, thisView, args, &val)) return false; args.rval().setNumber(val); return true; } bool DataViewObject::fun_getUint32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getFloat32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); float val; if (!read(cx, thisView, args, &val)) return false; args.rval().setDouble(CanonicalizeNaN(val)); return true; } bool DataViewObject::fun_getFloat32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::getFloat64Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); double val; if (!read(cx, thisView, args, &val)) return false; args.rval().setDouble(CanonicalizeNaN(val)); return true; } bool DataViewObject::fun_getFloat64(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setInt8Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setInt8(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setUint8Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setUint8(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setInt16Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setInt16(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setUint16Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setUint16(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setInt32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setInt32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setUint32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setUint32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setFloat32Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setFloat32(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::setFloat64Impl(JSContext* cx, const CallArgs& args) { MOZ_ASSERT(is(args.thisv())); Rooted thisView(cx, &args.thisv().toObject().as()); if (!write(cx, thisView, args)) return false; args.rval().setUndefined(); return true; } bool DataViewObject::fun_setFloat64(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::bufferGetterImpl(JSContext* cx, const CallArgs& args) { Rooted thisView(cx, &args.thisv().toObject().as()); args.rval().set(DataViewObject::bufferValue(thisView)); return true; } bool DataViewObject::bufferGetter(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::byteLengthGetterImpl(JSContext* cx, const CallArgs& args) { Rooted thisView(cx, &args.thisv().toObject().as()); #ifdef NIGHTLY_BUILD // Step 6, if (thisView->arrayBufferEither().isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return false; } #endif // Step 7. args.rval().set(DataViewObject::byteLengthValue(thisView)); return true; } bool DataViewObject::byteLengthGetter(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } bool DataViewObject::byteOffsetGetterImpl(JSContext* cx, const CallArgs& args) { Rooted thisView(cx, &args.thisv().toObject().as()); #ifdef NIGHTLY_BUILD // Step 6, if (thisView->arrayBufferEither().isDetached()) { JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_TYPED_ARRAY_DETACHED); return false; } #endif // Step 7. args.rval().set(DataViewObject::byteOffsetValue(thisView)); return true; } bool DataViewObject::byteOffsetGetter(JSContext* cx, unsigned argc, Value* vp) { CallArgs args = CallArgsFromVp(argc, vp); return CallNonGenericMethod(cx, args); } const Class DataViewObject::protoClass_ = { js_Object_str, JSCLASS_HAS_CACHED_PROTO(JSProto_DataView), JS_NULL_CLASS_OPS, &DataViewObject::classSpec_ }; JSObject* DataViewObject::CreatePrototype(JSContext* cx, JSProtoKey key) { return GlobalObject::createBlankPrototype(cx, cx->global(), &DataViewObject::protoClass_); } static const ClassOps DataViewObjectClassOps = { nullptr, /* addProperty */ nullptr, /* delProperty */ nullptr, /* enumerate */ nullptr, /* newEnumerate */ nullptr, /* resolve */ nullptr, /* mayResolve */ nullptr, /* finalize */ nullptr, /* call */ nullptr, /* hasInstance */ nullptr, /* construct */ ArrayBufferViewObject::trace }; const ClassSpec DataViewObject::classSpec_ = { GenericCreateConstructor, DataViewObject::CreatePrototype, nullptr, nullptr, DataViewObject::methods, DataViewObject::properties, }; const Class DataViewObject::class_ = { "DataView", JSCLASS_HAS_PRIVATE | JSCLASS_HAS_RESERVED_SLOTS(TypedArrayObject::RESERVED_SLOTS) | JSCLASS_HAS_CACHED_PROTO(JSProto_DataView), &DataViewObjectClassOps, &DataViewObject::classSpec_ }; const JSFunctionSpec DataViewObject::methods[] = { JS_FN("getInt8", DataViewObject::fun_getInt8, 1,0), JS_FN("getUint8", DataViewObject::fun_getUint8, 1,0), JS_FN("getInt16", DataViewObject::fun_getInt16, 1,0), JS_FN("getUint16", DataViewObject::fun_getUint16, 1,0), JS_FN("getInt32", DataViewObject::fun_getInt32, 1,0), JS_FN("getUint32", DataViewObject::fun_getUint32, 1,0), JS_FN("getFloat32", DataViewObject::fun_getFloat32, 1,0), JS_FN("getFloat64", DataViewObject::fun_getFloat64, 1,0), JS_FN("setInt8", DataViewObject::fun_setInt8, 2,0), JS_FN("setUint8", DataViewObject::fun_setUint8, 2,0), JS_FN("setInt16", DataViewObject::fun_setInt16, 2,0), JS_FN("setUint16", DataViewObject::fun_setUint16, 2,0), JS_FN("setInt32", DataViewObject::fun_setInt32, 2,0), JS_FN("setUint32", DataViewObject::fun_setUint32, 2,0), JS_FN("setFloat32", DataViewObject::fun_setFloat32, 2,0), JS_FN("setFloat64", DataViewObject::fun_setFloat64, 2,0), JS_FS_END }; const JSPropertySpec DataViewObject::properties[] = { JS_PSG("buffer", DataViewObject::bufferGetter, 0), JS_PSG("byteLength", DataViewObject::byteLengthGetter, 0), JS_PSG("byteOffset", DataViewObject::byteOffsetGetter, 0), JS_STRING_SYM_PS(toStringTag, "DataView", JSPROP_READONLY), JS_PS_END }; void DataViewObject::notifyBufferDetached(void* newData) { setFixedSlot(TypedArrayObject::LENGTH_SLOT, Int32Value(0)); setFixedSlot(TypedArrayObject::BYTEOFFSET_SLOT, Int32Value(0)); setPrivate(newData); } JS_FRIEND_API(bool) JS_IsDataViewObject(JSObject* obj) { obj = CheckedUnwrap(obj); return obj ? obj->is() : false; } JS_FRIEND_API(uint32_t) JS_GetDataViewByteOffset(JSObject* obj) { obj = CheckedUnwrap(obj); if (!obj) return 0; return obj->as().byteOffset(); } JS_FRIEND_API(void*) JS_GetDataViewData(JSObject* obj, bool* isSharedMemory, const JS::AutoRequireNoGC&) { obj = CheckedUnwrap(obj); if (!obj) return nullptr; DataViewObject& dv = obj->as(); *isSharedMemory = dv.isSharedMemory(); return dv.dataPointerEither().unwrap(/*safe - caller sees isSharedMemory*/); } JS_FRIEND_API(uint32_t) JS_GetDataViewByteLength(JSObject* obj) { obj = CheckedUnwrap(obj); if (!obj) return 0; return obj->as().byteLength(); } JS_FRIEND_API(JSObject*) JS_NewDataView(JSContext* cx, HandleObject buffer, uint32_t byteOffset, int32_t byteLength) { JSProtoKey key = JSCLASS_CACHED_PROTO_KEY(&DataViewObject::class_); RootedObject constructor(cx, GlobalObject::getOrCreateConstructor(cx, key)); if (!constructor) return nullptr; FixedConstructArgs<3> cargs(cx); cargs[0].setObject(*buffer); cargs[1].setNumber(byteOffset); cargs[2].setInt32(byteLength); RootedValue fun(cx, ObjectValue(*constructor)); RootedObject obj(cx); if (!Construct(cx, fun, cargs, fun, &obj)) return nullptr; return obj; }