Changeset 185608 in webkit

Timestamp:

Jun 16, 2015, 1:51:04 PM (10 years ago)

Author:

mark.lam@apple.com

Message:

Use NakedPtr<Exception>& to return exception results.
​https://bugs.webkit.org/show_bug.cgi?id=145870

Reviewed by Anders Carlsson and Filip Pizlo.

Source/JavaScriptCore:

Before r185259, calls into the VM takes a JSValue* exception result argument for
returning any uncaught exception that may have been thrown while executing JS code.
As a result, clients of the VM functions will declare a local JSValue exception
result which is automatically initialized to a null value (i.e. the empty value,
not the JS null value).

With r185259, the VM functions were changed to take an Exception*& exception result
instead, and the VM functions are responsible for initializing the exception result
to null if no exception is thrown.

This introduces 2 issues:

1. the VM functions are vulnerable to modifications that may add early returns before the exception result is nullified. This can result in the exception result being used without initialization.

2. Previously, a client could technically use the same exception result for more than one calls into the VM functions. If an earlier call sets it to a thrown value, the thrown value will stick unless a subsequent call throws a different exception.

With the new Exception*& exception result, the VM functions will always clear
the exception result before proceeding. As a result, the client's exception
result will be null after the second call even though the first call saw an
exception thrown. This is a change in the expected behavior.

To fix these issues, we'll introduce a NakedPtr smart pointer whose sole purpose
is to guarantee that the pointer is initialized. The VM functions will now take
a NakedPtr<Exception>& instead of the Exception*&. This ensures that the
exception result is initialized.

The VM functions be also reverted to only set the exception result if a new
exception is thrown.

• API/JSBase.cpp:

(JSEvaluateScript):

• API/JSScriptRef.cpp:
• bindings/ScriptFunctionCall.cpp:

(Deprecated::ScriptFunctionCall::call):

• bindings/ScriptFunctionCall.h:
• debugger/Debugger.cpp:

(JSC::Debugger::hasBreakpoint):

• debugger/Debugger.h:
• debugger/DebuggerCallFrame.cpp:

(JSC::DebuggerCallFrame::thisValue):
(JSC::DebuggerCallFrame::evaluate):

• debugger/DebuggerCallFrame.h:

(JSC::DebuggerCallFrame::isValid):

• inspector/InjectedScriptManager.cpp:

(Inspector::InjectedScriptManager::createInjectedScript):

• inspector/InspectorEnvironment.h:
• inspector/JSJavaScriptCallFrame.cpp:

(Inspector::JSJavaScriptCallFrame::evaluate):

• inspector/JavaScriptCallFrame.h:

(Inspector::JavaScriptCallFrame::vmEntryGlobalObject):
(Inspector::JavaScriptCallFrame::thisValue):
(Inspector::JavaScriptCallFrame::evaluate):

• inspector/ScriptDebugServer.cpp:

(Inspector::ScriptDebugServer::evaluateBreakpointAction):

• jsc.cpp:

(functionRun):
(functionLoad):
(runWithScripts):
(runInteractive):

• runtime/CallData.cpp:

(JSC::call):

• runtime/CallData.h:
• runtime/Completion.cpp:

(JSC::checkSyntax):
(JSC::evaluate):

• runtime/Completion.h:

(JSC::evaluate):

Source/WebCore:

No new WebCore tests because this functionality is already covered by existing tests.
API tests added for WTF::NakedPtr.

• bindings/js/JSCallbackData.cpp:

(WebCore::JSCallbackData::invokeCallback):

• bindings/js/JSCustomXPathNSResolver.cpp:

(WebCore::JSCustomXPathNSResolver::lookupNamespaceURI):

• bindings/js/JSErrorHandler.cpp:

(WebCore::JSErrorHandler::handleEvent):

• bindings/js/JSEventListener.cpp:

(WebCore::JSEventListener::handleEvent):

• bindings/js/JSMainThreadExecState.cpp:

(WebCore::JSMainThreadExecState::didLeaveScriptContext):
(WebCore::functionCallHandlerFromAnyThread):
(WebCore::evaluateHandlerFromAnyThread):

• bindings/js/JSMainThreadExecState.h:

(WebCore::JSMainThreadExecState::currentState):
(WebCore::JSMainThreadExecState::call):
(WebCore::JSMainThreadExecState::evaluate):

• bindings/js/JSMutationCallback.cpp:

(WebCore::JSMutationCallback::call):

• bindings/js/ScheduledAction.cpp:

(WebCore::ScheduledAction::executeFunctionInContext):

• bindings/js/ScriptController.cpp:

(WebCore::ScriptController::evaluateInWorld):

• bindings/js/WorkerScriptController.cpp:

(WebCore::WorkerScriptController::evaluate):
(WebCore::WorkerScriptController::setException):

• bindings/js/WorkerScriptController.h:

(WebCore::WorkerScriptController::workerGlobalScopeWrapper):

• bindings/objc/WebScriptObject.mm:

(-[WebScriptObject callWebScriptMethod:withArguments:]):

• workers/WorkerGlobalScope.cpp:

(WebCore::WorkerGlobalScope::importScripts):

Source/WTF:

Introducing the NakedPtr class.

• WTF.xcodeproj/project.pbxproj:
• wtf/NakedPtr.h: Added.

(WTF::NakedPtr::NakedPtr):
(WTF::NakedPtr::get):
(WTF::NakedPtr::clear):
(WTF::NakedPtr::operator*):
(WTF::NakedPtr::operator->):
(WTF::NakedPtr::operator T*):
(WTF::NakedPtr::operator!):
(WTF::NakedPtr::operator bool):
(WTF::=):
(WTF::NakedPtr<T>::swap):
(WTF::swap):

Tools:

• TestWebKitAPI/CMakeLists.txt:
• TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj:
• TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj.filters:
• TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj:
• TestWebKitAPI/Tests/WTF/NakedPtr.cpp: Added.

(TestWebKitAPI::TEST):
(TestWebKitAPI::nakedPtrFoo):

Location:

trunk

Files:

• Source/JavaScriptCore/API/JSBase.cpp (modified) (1 diff)
• Source/JavaScriptCore/API/JSScriptRef.cpp (modified) (1 diff)
• Source/JavaScriptCore/ChangeLog (modified) (1 diff)
• Source/JavaScriptCore/bindings/ScriptFunctionCall.cpp (modified) (1 diff)
• Source/JavaScriptCore/bindings/ScriptFunctionCall.h (modified) (1 diff)
• Source/JavaScriptCore/debugger/Debugger.cpp (modified) (2 diffs)
• Source/JavaScriptCore/debugger/Debugger.h (modified) (1 diff)
• Source/JavaScriptCore/debugger/DebuggerCallFrame.cpp (modified) (2 diffs)
• Source/JavaScriptCore/debugger/DebuggerCallFrame.h (modified) (2 diffs)
• Source/JavaScriptCore/inspector/InjectedScriptManager.cpp (modified) (1 diff)
• Source/JavaScriptCore/inspector/InspectorEnvironment.h (modified) (1 diff)
• Source/JavaScriptCore/inspector/JSJavaScriptCallFrame.cpp (modified) (2 diffs)
• Source/JavaScriptCore/inspector/JavaScriptCallFrame.h (modified) (1 diff)
• Source/JavaScriptCore/inspector/ScriptDebugServer.cpp (modified) (2 diffs)
• Source/JavaScriptCore/jsc.cpp (modified) (5 diffs)
• Source/JavaScriptCore/runtime/CallData.cpp (modified) (3 diffs)
• Source/JavaScriptCore/runtime/CallData.h (modified) (2 diffs)
• Source/JavaScriptCore/runtime/Completion.cpp (modified) (1 diff)
• Source/JavaScriptCore/runtime/Completion.h (modified) (2 diffs)
• Source/WTF/ChangeLog (modified) (1 diff)
• Source/WTF/WTF.xcodeproj/project.pbxproj (modified) (4 diffs)
• Source/WTF/wtf/NakedPtr.h (added)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/bindings/js/JSCallbackData.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/JSCustomXPathNSResolver.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/JSErrorHandler.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/JSEventListener.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/JSMainThreadExecState.cpp (modified) (2 diffs)
• Source/WebCore/bindings/js/JSMainThreadExecState.h (modified) (4 diffs)
• Source/WebCore/bindings/js/JSMutationCallback.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/ScheduledAction.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/ScriptController.cpp (modified) (1 diff)
• Source/WebCore/bindings/js/WorkerScriptController.cpp (modified) (5 diffs)
• Source/WebCore/bindings/js/WorkerScriptController.h (modified) (2 diffs)
• Source/WebCore/bindings/objc/WebScriptObject.mm (modified) (1 diff)
• Source/WebCore/workers/WorkerGlobalScope.cpp (modified) (1 diff)
• Tools/ChangeLog (modified) (1 diff)
• Tools/TestWebKitAPI/CMakeLists.txt (modified) (1 diff)
• Tools/TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj (modified) (1 diff)
• Tools/TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj.filters (modified) (1 diff)
• Tools/TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj (modified) (4 diffs)
• Tools/TestWebKitAPI/Tests/WTF/NakedPtr.cpp (added)

trunk/Source/JavaScriptCore/API/JSBase.cpp

@@ -65 +65 @@
     SourceCode source = makeSource(script->string(), sourceURL ? sourceURL->string() : String(), TextPosition(OrdinalNumber::fromOneBasedInt(startingLineNumber), OrdinalNumber::first()));
 
-    Exception* evaluationException;
+    NakedPtr<Exception> evaluationException;
     JSValue returnValue = evaluate(globalObject->globalExec(), source, jsThisObject, evaluationException);
 

trunk/Source/JavaScriptCore/API/JSScriptRef.cpp

@@ -144 +144 @@
         return 0;
     }
-    Exception* internalException;
+    NakedPtr<Exception> internalException;
     JSValue thisValue = thisValueRef ? toJS(exec, thisValueRef) : jsUndefined();
     JSValue result = evaluate(exec, SourceCode(script), thisValue, internalException);

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2015-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Use NakedPtr<Exception>& to return exception results.
+        https://bugs.webkit.org/show_bug.cgi?id=145870
+
+        Reviewed by Anders Carlsson and Filip Pizlo.
+
+        Before r185259, calls into the VM takes a JSValue* exception result argument for
+        returning any uncaught exception that may have been thrown while executing JS code.
+        As a result, clients of the VM functions will declare a local JSValue exception
+        result which is automatically initialized to a null value (i.e. the empty value,
+        not the JS null value).
+
+        With r185259, the VM functions were changed to take an Exception*& exception result
+        instead, and the VM functions are responsible for initializing the exception result
+        to null if no exception is thrown.
+
+        This introduces 2 issues:
+
+        1. the VM functions are vulnerable to modifications that may add early returns
+           before the exception result is nullified.  This can result in the exception
+           result being used without initialization.
+
+        2. Previously, a client could technically use the same exception result for more
+           than one calls into the VM functions.  If an earlier call sets it to a thrown
+           value, the thrown value will stick unless a subsequent call throws a different
+           exception.
+
+           With the new Exception*& exception result, the VM functions will always clear
+           the exception result before proceeding.  As a result, the client's exception
+           result will be null after the second call even though the first call saw an
+           exception thrown.  This is a change in the expected behavior.
+
+        To fix these issues, we'll introduce a NakedPtr smart pointer whose sole purpose
+        is to guarantee that the pointer is initialized.  The VM functions will now take
+        a NakedPtr<Exception>& instead of the Exception*&.  This ensures that the
+        exception result is initialized.
+
+        The VM functions be also reverted to only set the exception result if a new
+        exception is thrown.
+
+        * API/JSBase.cpp:
+        (JSEvaluateScript):
+        * API/JSScriptRef.cpp:
+        * bindings/ScriptFunctionCall.cpp:
+        (Deprecated::ScriptFunctionCall::call):
+        * bindings/ScriptFunctionCall.h:
+        * debugger/Debugger.cpp:
+        (JSC::Debugger::hasBreakpoint):
+        * debugger/Debugger.h:
+        * debugger/DebuggerCallFrame.cpp:
+        (JSC::DebuggerCallFrame::thisValue):
+        (JSC::DebuggerCallFrame::evaluate):
+        * debugger/DebuggerCallFrame.h:
+        (JSC::DebuggerCallFrame::isValid):
+        * inspector/InjectedScriptManager.cpp:
+        (Inspector::InjectedScriptManager::createInjectedScript):
+        * inspector/InspectorEnvironment.h:
+        * inspector/JSJavaScriptCallFrame.cpp:
+        (Inspector::JSJavaScriptCallFrame::evaluate):
+        * inspector/JavaScriptCallFrame.h:
+        (Inspector::JavaScriptCallFrame::vmEntryGlobalObject):
+        (Inspector::JavaScriptCallFrame::thisValue):
+        (Inspector::JavaScriptCallFrame::evaluate):
+        * inspector/ScriptDebugServer.cpp:
+        (Inspector::ScriptDebugServer::evaluateBreakpointAction):
+        * jsc.cpp:
+        (functionRun):
+        (functionLoad):
+        (runWithScripts):
+        (runInteractive):
+        * runtime/CallData.cpp:
+        (JSC::call):
+        * runtime/CallData.h:
+        * runtime/Completion.cpp:
+        (JSC::checkSyntax):
+        (JSC::evaluate):
+        * runtime/Completion.h:
+        (JSC::evaluate):
+
 2015-06-15  Filip Pizlo  <fpizlo@apple.com>
 

trunk/Source/JavaScriptCore/bindings/ScriptFunctionCall.cpp

@@ -134 +134 @@
 
     JSValue result;
-    Exception* exception;
+    NakedPtr<Exception> exception;
     if (m_callHandler)
         result = m_callHandler(m_exec, function, callType, callData, thisObject, m_arguments, exception);

trunk/Source/JavaScriptCore/bindings/ScriptFunctionCall.h

@@ -72 +72 @@
 class JS_EXPORT_PRIVATE ScriptFunctionCall : public ScriptCallArgumentHandler {
 public:
-    typedef JSC::JSValue (*ScriptFunctionCallHandler)(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, JSC::Exception*& exception);
+    typedef JSC::JSValue (*ScriptFunctionCallHandler)(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, NakedPtr<JSC::Exception>&);
     ScriptFunctionCall(const ScriptObject& thisObject, const String& name, ScriptFunctionCallHandler handler = nullptr);
     ScriptValue call(bool& hadException);

trunk/Source/JavaScriptCore/debugger/Debugger.cpp

@@ -26 +26 @@
 #include "DebuggerCallFrame.h"
 #include "Error.h"
-
 #include "HeapIterationScope.h"
 #include "Interpreter.h"
@@ -488 +487 @@
     TemporaryPausedState pausedState(*this);
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     DebuggerCallFrame* debuggerCallFrame = currentDebuggerCallFrame();
     JSValue result = debuggerCallFrame->evaluate(breakpoint->condition, exception);

trunk/Source/JavaScriptCore/debugger/Debugger.h

@@ -35 +35 @@
 
 class CodeBlock;
+class Exception;
 class ExecState;
 class JSGlobalObject;

trunk/Source/JavaScriptCore/debugger/DebuggerCallFrame.cpp

@@ -33 +33 @@
 #include "DebuggerEvalEnabler.h"
 #include "DebuggerScope.h"
-#include "Exception.h"
 #include "Interpreter.h"
 #include "JSFunction.h"
@@ -178 +177 @@
 
 // Evaluate some JavaScript code in the scope of this frame.
-JSValue DebuggerCallFrame::evaluate(const String& script, Exception*& exception)
-{
-    ASSERT(isValid());
-    exception = nullptr;
+JSValue DebuggerCallFrame::evaluate(const String& script, NakedPtr<Exception>& exception)
+{
+    ASSERT(isValid());
     CallFrame* callFrame = m_callFrame;
     if (!callFrame)

trunk/Source/JavaScriptCore/debugger/DebuggerCallFrame.h

@@ -32 +32 @@
 #include "DebuggerPrimitives.h"
 #include "Strong.h"
+#include <wtf/NakedPtr.h>
 #include <wtf/PassRefPtr.h>
 #include <wtf/RefCounted.h>
@@ -68 +69 @@
     JS_EXPORT_PRIVATE Type type() const;
     JS_EXPORT_PRIVATE JSValue thisValue() const;
-    JSValue evaluate(const String&, Exception*&);
+    JSValue evaluate(const String&, NakedPtr<Exception>&);
 
     bool isValid() const { return !!m_callFrame; }

trunk/Source/JavaScriptCore/inspector/InjectedScriptManager.cpp

@@ -140 +140 @@
     JSValue globalThisValue = scriptState->globalThisValue();
 
-    Exception* evaluationException;
+    NakedPtr<Exception> evaluationException;
     InspectorEvaluateHandler evaluateHandler = m_environment.evaluateHandler();
     JSValue functionValue = evaluateHandler(scriptState, sourceCode, globalThisValue, evaluationException);

trunk/Source/JavaScriptCore/inspector/InspectorEnvironment.h

@@ -40 +40 @@
 namespace Inspector {
 
-typedef JSC::JSValue (*InspectorFunctionCallHandler)(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, JSC::Exception*& returnedException);
-typedef JSC::JSValue (*InspectorEvaluateHandler)(JSC::ExecState*, const JSC::SourceCode&, JSC::JSValue thisValue, JSC::Exception*& returnedException);
+typedef JSC::JSValue (*InspectorFunctionCallHandler)(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, NakedPtr<JSC::Exception>& returnedException);
+typedef JSC::JSValue (*InspectorEvaluateHandler)(JSC::ExecState*, const JSC::SourceCode&, JSC::JSValue thisValue, NakedPtr<JSC::Exception>& returnedException);
 
 class InspectorEnvironment {

trunk/Source/JavaScriptCore/inspector/JSJavaScriptCallFrame.cpp

@@ -29 +29 @@
 #include "DebuggerScope.h"
 #include "Error.h"
-#include "Exception.h"
 #include "JSCJSValue.h"
 #include "JSCellInlines.h"
@@ -77 +76 @@
 JSValue JSJavaScriptCallFrame::evaluate(ExecState* exec)
 {
-    Exception* exception;
+    NakedPtr<Exception> exception;
     JSValue result = impl().evaluate(exec->argument(0).toString(exec)->value(exec), exception);
     if (exception)

trunk/Source/JavaScriptCore/inspector/JavaScriptCallFrame.h

@@ -56 +56 @@
 
     JSC::JSValue thisValue() const { return m_debuggerCallFrame->thisValue(); }
-    JSC::JSValue evaluate(const String& script, JSC::Exception*& exception) const  { return m_debuggerCallFrame->evaluate(script, exception); }
+    JSC::JSValue evaluate(const String& script, NakedPtr<JSC::Exception>& exception) const  { return m_debuggerCallFrame->evaluate(script, exception); }
 
 private:

trunk/Source/JavaScriptCore/inspector/ScriptDebugServer.cpp

@@ -95 +95 @@
     }
     case ScriptBreakpointActionTypeEvaluate: {
-        Exception* exception;
+        NakedPtr<Exception> exception;
         debuggerCallFrame->evaluate(breakpointAction.data, exception);
         if (exception)
@@ -105 +105 @@
         break;
     case ScriptBreakpointActionTypeProbe: {
-        Exception* exception;
+        NakedPtr<Exception> exception;
         JSValue result = debuggerCallFrame->evaluate(breakpointAction.data, exception);
         if (exception)

trunk/Source/JavaScriptCore/jsc.cpp

@@ -909 +909 @@
         exec->vm(), Identifier::fromString(globalObject->globalExec(), "arguments"), array);
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     StopWatch stopWatch;
     stopWatch.start();
@@ -932 +932 @@
     JSGlobalObject* globalObject = exec->lexicalGlobalObject();
     
-    Exception* evaluationException;
+    NakedPtr<Exception> evaluationException;
     JSValue result = evaluate(globalObject->globalExec(), jscSource(script.data(), fileName), JSValue(), evaluationException);
     if (evaluationException)
@@ -1295 +1295 @@
         vm.startSampling();
 
-        Exception* evaluationException;
+        NakedPtr<Exception> evaluationException;
         JSValue returnValue = evaluate(globalObject->globalExec(), jscSource(script, fileName), JSValue(), evaluationException);
         success = success && !evaluationException;
@@ -1359 +1359 @@
         
         
-        Exception* evaluationException;
+        NakedPtr<Exception> evaluationException;
         JSValue returnValue = evaluate(globalObject->globalExec(), makeSource(source, interpreterName), JSValue(), evaluationException);
 #else
@@ -1375 +1375 @@
         line.append('\0');
 
-        Exception* evaluationException;
+        NakedPtr<Exception> evaluationException;
         JSValue returnValue = evaluate(globalObject->globalExec(), jscSource(line.data(), interpreterName), JSValue(), evaluationException);
 #endif

trunk/Source/JavaScriptCore/runtime/CallData.cpp

@@ -27 +27 @@
 #include "CallData.h"
 
-#include "Exception.h"
 #include "Executable.h"
 #include "Interpreter.h"
@@ -41 +40 @@
 }
 
-JSValue call(ExecState* exec, JSValue functionObject, CallType callType, const CallData& callData, JSValue thisValue, const ArgList& args, Exception*& returnedException)
+JSValue call(ExecState* exec, JSValue functionObject, CallType callType, const CallData& callData, JSValue thisValue, const ArgList& args, NakedPtr<Exception>& returnedException)
 {
     JSValue result = call(exec, functionObject, callType, callData, thisValue, args);
@@ -48 +47 @@
         exec->clearException();
         return jsUndefined();
-    } else
-        returnedException = nullptr;
+    }
     RELEASE_ASSERT(result);
     return result;

trunk/Source/JavaScriptCore/runtime/CallData.h

@@ -31 +31 @@
 
 #include "JSCJSValue.h"
+#include <wtf/NakedPtr.h>
 
 namespace JSC {
@@ -60 +61 @@
 
 JS_EXPORT_PRIVATE JSValue call(ExecState*, JSValue functionObject, CallType, const CallData&, JSValue thisValue, const ArgList&);
-JS_EXPORT_PRIVATE JSValue call(ExecState*, JSValue functionObject, CallType, const CallData&, JSValue thisValue, const ArgList&, Exception*& returnedException);
+JS_EXPORT_PRIVATE JSValue call(ExecState*, JSValue functionObject, CallType, const CallData&, JSValue thisValue, const ArgList&, NakedPtr<Exception>& returnedException);
 
 } // namespace JSC

trunk/Source/JavaScriptCore/runtime/Completion.cpp

@@ -62 +62 @@
 }
 
-JSValue evaluate(ExecState* exec, const SourceCode& source, JSValue thisValue, Exception*& returnedException)
+JSValue evaluate(ExecState* exec, const SourceCode& source, JSValue thisValue, NakedPtr<Exception>& returnedException)
 {
     JSLockHolder lock(exec);
     RELEASE_ASSERT(exec->vm().atomicStringTable() == wtfThreadData().atomicStringTable());
     RELEASE_ASSERT(!exec->vm().isCollectorBusy());
-    returnedException = nullptr;
 
     CodeProfiling profile(source);

trunk/Source/JavaScriptCore/runtime/Completion.h

@@ -25 +25 @@
 
 #include "JSCJSValue.h"
+#include <wtf/NakedPtr.h>
 
 namespace JSC {
@@ -37 +38 @@
 JS_EXPORT_PRIVATE bool checkSyntax(VM&, const SourceCode&, ParserError&);
 JS_EXPORT_PRIVATE bool checkSyntax(ExecState*, const SourceCode&, JSValue* exception = 0);
-JS_EXPORT_PRIVATE JSValue evaluate(ExecState*, const SourceCode&, JSValue thisValue, Exception*& returnedException);
+JS_EXPORT_PRIVATE JSValue evaluate(ExecState*, const SourceCode&, JSValue thisValue, NakedPtr<Exception>& returnedException);
 inline JSValue evaluate(ExecState* exec, const SourceCode& sourceCode, JSValue thisValue = JSValue())
 {
-    Exception* unused;
+    NakedPtr<Exception> unused;
     return evaluate(exec, sourceCode, thisValue, unused);
 }

trunk/Source/WTF/ChangeLog

@@ +1 @@
+2015-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Use NakedPtr<Exception>& to return exception results.
+        https://bugs.webkit.org/show_bug.cgi?id=145870
+
+        Reviewed by Anders Carlsson and Filip Pizlo.
+
+        Introducing the NakedPtr class.
+
+        * WTF.xcodeproj/project.pbxproj:
+        * wtf/NakedPtr.h: Added.
+        (WTF::NakedPtr::NakedPtr):
+        (WTF::NakedPtr::get):
+        (WTF::NakedPtr::clear):
+        (WTF::NakedPtr::operator*):
+        (WTF::NakedPtr::operator->):
+        (WTF::NakedPtr::operator T*):
+        (WTF::NakedPtr::operator!):
+        (WTF::NakedPtr::operator bool):
+        (WTF::=):
+        (WTF::NakedPtr<T>::swap):
+        (WTF::swap):
+
 2015-06-12  Zan Dobersek  <zdobersek@igalia.com>
 

trunk/Source/WTF/WTF.xcodeproj/project.pbxproj

@@ -278 +278 @@
                 E4A0AD3D1A96253C00536DF6 /* WorkQueueCocoa.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E4A0AD3C1A96253C00536DF6 /* WorkQueueCocoa.cpp */; };
                 EB95E1F0161A72410089A2F5 /* ByteOrder.h in Headers */ = {isa = PBXBuildFile; fileRef = EB95E1EF161A72410089A2F5 /* ByteOrder.h */; };
+                FE8225311B2A1E5B00BA68FD /* NakedPtr.h in Headers */ = {isa = PBXBuildFile; fileRef = FE8225301B2A1E5B00BA68FD /* NakedPtr.h */; };
                 FE91E8811AB2A0200099895F /* SpinLock.h in Headers */ = {isa = PBXBuildFile; fileRef = FE91E8801AB2A0200099895F /* SpinLock.h */; };
                 FEDACD3D1630F83F00C69634 /* StackStats.cpp in Sources */ = {isa = PBXBuildFile; fileRef = FEDACD3B1630F83F00C69634 /* StackStats.cpp */; };
@@ -569 +570 @@
                 E4A0AD3C1A96253C00536DF6 /* WorkQueueCocoa.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = WorkQueueCocoa.cpp; sourceTree = "<group>"; };
                 EB95E1EF161A72410089A2F5 /* ByteOrder.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = ByteOrder.h; sourceTree = "<group>"; };
+                FE8225301B2A1E5B00BA68FD /* NakedPtr.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = NakedPtr.h; sourceTree = "<group>"; };
                 FE91E8801AB2A0200099895F /* SpinLock.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = SpinLock.h; sourceTree = "<group>"; };
                 FEDACD3B1630F83F00C69634 /* StackStats.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = StackStats.cpp; sourceTree = "<group>"; };
@@ -783 +785 @@
                                 A8A472CE151A825B004123FF /* MetaAllocator.h */,
                                 A8A472CF151A825B004123FF /* MetaAllocatorHandle.h */,
+                                FE8225301B2A1E5B00BA68FD /* NakedPtr.h */,
                                 1A3F6BE6174ADA2100B2EEA7 /* NeverDestroyed.h */,
                                 0F0D85B317234CB100338210 /* NoLock.h */,
@@ -1179 +1182 @@
                                 A8A4742C151A825B004123FF /* StringExtras.h in Headers */,
                                 A8A4743F151A825B004123FF /* StringHash.h in Headers */,
+                                FE8225311B2A1E5B00BA68FD /* NakedPtr.h in Headers */,
                                 A748745417A0BDAE00FA04CB /* StringHashDumpContext.h in Headers */,
                                 A8A4742D151A825B004123FF /* StringHasher.h in Headers */,

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2015-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Use NakedPtr<Exception>& to return exception results.
+        https://bugs.webkit.org/show_bug.cgi?id=145870
+
+        Reviewed by Anders Carlsson and Filip Pizlo.
+
+        No new WebCore tests because this functionality is already covered by existing tests.
+        API tests added for WTF::NakedPtr.
+
+        * bindings/js/JSCallbackData.cpp:
+        (WebCore::JSCallbackData::invokeCallback):
+        * bindings/js/JSCustomXPathNSResolver.cpp:
+        (WebCore::JSCustomXPathNSResolver::lookupNamespaceURI):
+        * bindings/js/JSErrorHandler.cpp:
+        (WebCore::JSErrorHandler::handleEvent):
+        * bindings/js/JSEventListener.cpp:
+        (WebCore::JSEventListener::handleEvent):
+        * bindings/js/JSMainThreadExecState.cpp:
+        (WebCore::JSMainThreadExecState::didLeaveScriptContext):
+        (WebCore::functionCallHandlerFromAnyThread):
+        (WebCore::evaluateHandlerFromAnyThread):
+        * bindings/js/JSMainThreadExecState.h:
+        (WebCore::JSMainThreadExecState::currentState):
+        (WebCore::JSMainThreadExecState::call):
+        (WebCore::JSMainThreadExecState::evaluate):
+        * bindings/js/JSMutationCallback.cpp:
+        (WebCore::JSMutationCallback::call):
+        * bindings/js/ScheduledAction.cpp:
+        (WebCore::ScheduledAction::executeFunctionInContext):
+        * bindings/js/ScriptController.cpp:
+        (WebCore::ScriptController::evaluateInWorld):
+        * bindings/js/WorkerScriptController.cpp:
+        (WebCore::WorkerScriptController::evaluate):
+        (WebCore::WorkerScriptController::setException):
+        * bindings/js/WorkerScriptController.h:
+        (WebCore::WorkerScriptController::workerGlobalScopeWrapper):
+        * bindings/objc/WebScriptObject.mm:
+        (-[WebScriptObject callWebScriptMethod:withArguments:]):
+        * workers/WorkerGlobalScope.cpp:
+        (WebCore::WorkerGlobalScope::importScripts):
+
 2015-06-16  Brent Fulgham  <bfulgham@apple.com>
 

trunk/Source/WebCore/bindings/js/JSCallbackData.cpp

@@ -74 +74 @@
     InspectorInstrumentationCookie cookie = JSMainThreadExecState::instrumentFunctionCall(context, callType, callData);
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     JSValue result = context->isDocument()
         ? JSMainThreadExecState::call(exec, function, callType, callData, thisValue, args, exception)

trunk/Source/WebCore/bindings/js/JSCustomXPathNSResolver.cpp

@@ -94 +94 @@
     args.append(jsStringWithCache(exec, prefix));
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     JSValue retval = JSMainThreadExecState::call(exec, function, callType, callData, m_customResolver.get(), args, exception);
 

trunk/Source/WebCore/bindings/js/JSErrorHandler.cpp

@@ -99 +99 @@
         VMEntryScope entryScope(vm, vm.entryScope ? vm.entryScope->globalObject() : globalObject);
 
-        Exception* exception;
+        NakedPtr<Exception> exception;
         JSValue returnValue = scriptExecutionContext->isDocument()
             ? JSMainThreadExecState::call(exec, jsFunction, callType, callData, globalObject, args, exception)

trunk/Source/WebCore/bindings/js/JSEventListener.cpp

@@ -125 +125 @@
 
         JSValue thisValue = handleEventFunction == jsFunction ? toJS(exec, globalObject, event->currentTarget()) : jsFunction;
-        Exception* exception;
+        NakedPtr<Exception> exception;
         JSValue retval = scriptExecutionContext->isDocument()
             ? JSMainThreadExecState::call(exec, handleEventFunction, callType, callData, thisValue, args, exception)

trunk/Source/WebCore/bindings/js/JSMainThreadExecState.cpp

@@ -47 +47 @@
 }
 
-JSC::JSValue functionCallHandlerFromAnyThread(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, JSC::Exception*& returnedException)
+JSC::JSValue functionCallHandlerFromAnyThread(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, NakedPtr<JSC::Exception>& returnedException)
 {
     if (isMainThread())
@@ -54 +54 @@
 }
 
-JSC::JSValue evaluateHandlerFromAnyThread(JSC::ExecState* exec, const JSC::SourceCode& source, JSC::JSValue thisValue, JSC::Exception*& returnedException)
+JSC::JSValue evaluateHandlerFromAnyThread(JSC::ExecState* exec, const JSC::SourceCode& source, JSC::JSValue thisValue, NakedPtr<JSC::Exception>& returnedException)
 {
     if (isMainThread())

trunk/Source/WebCore/bindings/js/JSMainThreadExecState.h

@@ -51 +51 @@
     };
     
-    static JSC::JSValue call(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, JSC::Exception*& returnedException)
+    static JSC::JSValue call(JSC::ExecState* exec, JSC::JSValue functionObject, JSC::CallType callType, const JSC::CallData& callData, JSC::JSValue thisValue, const JSC::ArgList& args, NakedPtr<JSC::Exception>& returnedException)
     {
         JSMainThreadExecState currentState(exec);
@@ -57 +57 @@
     };
 
-    static JSC::JSValue evaluate(JSC::ExecState* exec, const JSC::SourceCode& source, JSC::JSValue thisValue, JSC::Exception*& returnedException)
+    static JSC::JSValue evaluate(JSC::ExecState* exec, const JSC::SourceCode& source, JSC::JSValue thisValue, NakedPtr<JSC::Exception>& returnedException)
     {
         JSMainThreadExecState currentState(exec);
@@ -65 +65 @@
     static JSC::JSValue evaluate(JSC::ExecState* exec, const JSC::SourceCode& source, JSC::JSValue thisValue = JSC::JSValue())
     {
-        JSC::Exception* unused;
+        NakedPtr<JSC::Exception> unused;
         return evaluate(exec, source, thisValue, unused);
     };
@@ -128 +128 @@
 };
 
-JSC::JSValue functionCallHandlerFromAnyThread(JSC::ExecState*, JSC::JSValue functionObject, JSC::CallType, const JSC::CallData&, JSC::JSValue thisValue, const JSC::ArgList& args, JSC::Exception*& returnedException);
-JSC::JSValue evaluateHandlerFromAnyThread(JSC::ExecState*, const JSC::SourceCode&, JSC::JSValue thisValue, JSC::Exception*& returnedException);
+JSC::JSValue functionCallHandlerFromAnyThread(JSC::ExecState*, JSC::JSValue functionObject, JSC::CallType, const JSC::CallData&, JSC::JSValue thisValue, const JSC::ArgList& args, NakedPtr<JSC::Exception>& returnedException);
+JSC::JSValue evaluateHandlerFromAnyThread(JSC::ExecState*, const JSC::SourceCode&, JSC::JSValue thisValue, NakedPtr<JSC::Exception>& returnedException);
 
 } // namespace WebCore

trunk/Source/WebCore/bindings/js/JSMutationCallback.cpp

@@ -88 +88 @@
     InspectorInstrumentationCookie cookie = JSMainThreadExecState::instrumentFunctionCall(context, callType, callData);
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     JSMainThreadExecState::call(exec, callback, callType, callData, jsObserver, args, exception);
 

trunk/Source/WebCore/bindings/js/ScheduledAction.cpp

@@ -100 +100 @@
     InspectorInstrumentationCookie cookie = JSMainThreadExecState::instrumentFunctionCall(&context, callType, callData);
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     if (is<Document>(context))
         JSMainThreadExecState::call(exec, m_function.get(), callType, callData, thisValue, args, exception);

trunk/Source/WebCore/bindings/js/ScriptController.cpp

@@ -161 +161 @@
     InspectorInstrumentationCookie cookie = InspectorInstrumentation::willEvaluateScript(m_frame, sourceURL, sourceCode.startLine());
 
-    Exception* evaluationException;
+    NakedPtr<Exception> evaluationException;
     JSValue returnValue = JSMainThreadExecState::evaluate(exec, jsSourceCode, shell, evaluationException);
 

trunk/Source/WebCore/bindings/js/WorkerScriptController.cpp

@@ -100 +100 @@
         return;
 
-    Exception* exception;
+    NakedPtr<Exception> exception;
     evaluate(sourceCode, exception);
     if (exception) {
@@ -108 +108 @@
 }
 
-void WorkerScriptController::evaluate(const ScriptSourceCode& sourceCode, JSC::Exception*& returnedException)
+void WorkerScriptController::evaluate(const ScriptSourceCode& sourceCode, NakedPtr<JSC::Exception>& returnedException)
 {
-    returnedException = nullptr;
     if (isExecutionForbidden())
         return;
@@ -119 +118 @@
     JSLockHolder lock(exec);
 
-    JSC::Exception* evaluationException;
-    JSC::evaluate(exec, sourceCode.jsSourceCode(), m_workerGlobalScopeWrapper->globalThis(), evaluationException);
+    JSC::evaluate(exec, sourceCode.jsSourceCode(), m_workerGlobalScopeWrapper->globalThis(), returnedException);
 
     VM& vm = exec->vm();
-    if ((evaluationException && isTerminatedExecutionException(evaluationException)) 
+    if ((returnedException && isTerminatedExecutionException(returnedException))
         || (vm.watchdog && vm.watchdog->didFire())) {
         forbidExecution();
@@ -129 +127 @@
     }
 
-    if (evaluationException) {
+    if (returnedException) {
         String errorMessage;
         int lineNumber = 0;
@@ -136 +134 @@
         if (m_workerGlobalScope->sanitizeScriptError(errorMessage, lineNumber, columnNumber, sourceURL, sourceCode.cachedScript())) {
             vm.throwException(exec, createError(exec, errorMessage.impl()));
-            evaluationException = vm.exception();
+            returnedException = vm.exception();
             vm.clearException();
         }
     }
-    returnedException = evaluationException;
 }
 

trunk/Source/WebCore/bindings/js/WorkerScriptController.h

@@ -32 +32 @@
 #include <heap/Strong.h>
 #include <wtf/Forward.h>
+#include <wtf/NakedPtr.h>
 #include <wtf/Threading.h>
 
@@ -61 +62 @@
 
         void evaluate(const ScriptSourceCode&);
-        void evaluate(const ScriptSourceCode&, JSC::Exception*& returnedException);
+        void evaluate(const ScriptSourceCode&, NakedPtr<JSC::Exception>& returnedException);
 
         void setException(JSC::Exception*);

trunk/Source/WebCore/bindings/objc/WebScriptObject.mm

@@ -343 +343 @@
         return nil;
 
-    JSC::Exception* exception;
+    NakedPtr<JSC::Exception> exception;
     JSC::JSValue result = JSMainThreadExecState::call(exec, function, callType, callData, [self _imp], argList, exception);
 

trunk/Source/WebCore/workers/WorkerGlobalScope.cpp

@@ -198 +198 @@
         InspectorInstrumentation::scriptImported(scriptExecutionContext(), scriptLoader->identifier(), scriptLoader->script());
 
-        JSC::Exception* exception;
+        NakedPtr<JSC::Exception> exception;
         m_script->evaluate(ScriptSourceCode(scriptLoader->script(), scriptLoader->responseURL()), exception);
         if (exception) {

trunk/Tools/ChangeLog

@@ +1 @@
+2015-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Use NakedPtr<Exception>& to return exception results.
+        https://bugs.webkit.org/show_bug.cgi?id=145870
+
+        Reviewed by Anders Carlsson and Filip Pizlo.
+
+        * TestWebKitAPI/CMakeLists.txt:
+        * TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj:
+        * TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj.filters:
+        * TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj:
+        * TestWebKitAPI/Tests/WTF/NakedPtr.cpp: Added.
+        (TestWebKitAPI::TEST):
+        (TestWebKitAPI::nakedPtrFoo):
+
 2015-06-16  Tobias Reiss  <tobi+webkit@basecode.de>
 

trunk/Tools/TestWebKitAPI/CMakeLists.txt

@@ -80 +80 @@
     ${TESTWEBKITAPI_DIR}/Tests/WTF/MediaTime.cpp
     ${TESTWEBKITAPI_DIR}/Tests/WTF/MetaAllocator.cpp
+    ${TESTWEBKITAPI_DIR}/Tests/WTF/NakedPtr.cpp
     ${TESTWEBKITAPI_DIR}/Tests/WTF/RedBlackTree.cpp
     ${TESTWEBKITAPI_DIR}/Tests/WTF/Ref.cpp

trunk/Tools/TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj

@@ -324 +324 @@
     <ClCompile Include="..\Tests\WTF\MediaTime.cpp" />
     <ClCompile Include="..\Tests\WTF\MetaAllocator.cpp" />
+    <ClCompile Include="..\Tests\WTF\NakedPtr.cpp" />
     <ClCompile Include="..\Tests\WTF\Optional.cpp" />
     <ClCompile Include="..\Tests\WTF\RedBlackTree.cpp" />

trunk/Tools/TestWebKitAPI/TestWebKitAPI.vcxproj/TestWebKitAPI.vcxproj.filters

@@ -74 +74 @@
     </ClCompile>
     <ClCompile Include="..\Tests\WTF\MediaTime.cpp">
+      <Filter>Tests\WTF</Filter>
+    </ClCompile>
+    <ClCompile Include="..\Tests\WTF\NakedPtr.cpp">
       <Filter>Tests\WTF</Filter>
     </ClCompile>

trunk/Tools/TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj

@@ -301 +301 @@
                 F6F49C6B15545CA70007F39D /* DOMWindowExtensionNoCache_Bundle.cpp in Sources */ = {isa = PBXBuildFile; fileRef = F6F49C6615545C8D0007F39D /* DOMWindowExtensionNoCache_Bundle.cpp */; };
                 F6FDDDD614241C6F004F1729 /* push-state.html in Copy Resources */ = {isa = PBXBuildFile; fileRef = F6FDDDD514241C48004F1729 /* push-state.html */; };
+                FEB6F7511B2BA464009E4922 /* NakedPtr.cpp in Sources */ = {isa = PBXBuildFile; fileRef = FEB6F74E1B2BA44E009E4922 /* NakedPtr.cpp */; };
 /* End PBXBuildFile section */
 
@@ -729 +730 @@
                 F6FDDDD214241AD4004F1729 /* PrivateBrowsingPushStateNoHistoryCallback.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = PrivateBrowsingPushStateNoHistoryCallback.cpp; sourceTree = "<group>"; };
                 F6FDDDD514241C48004F1729 /* push-state.html */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.html; path = "push-state.html"; sourceTree = "<group>"; };
+                FEB6F74E1B2BA44E009E4922 /* NakedPtr.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = NakedPtr.cpp; sourceTree = "<group>"; };
 /* End PBXFileReference section */
 
@@ -1074 +1076 @@
                                 0FC6C4CE141034AD005B7F0C /* MetaAllocator.cpp */,
                                 93A427AC180DA60F00CD24D7 /* MoveOnly.h */,
+                                FEB6F74E1B2BA44E009E4922 /* NakedPtr.cpp */,
                                 1AFDE6541953B2C000C48FFA /* Optional.cpp */,
                                 0FC6C4CB141027E0005B7F0C /* RedBlackTree.cpp */,
@@ -1501 +1504 @@
                                 7CCE7F031A411AE600447C4C /* NewFirstVisuallyNonEmptyLayoutFails.cpp in Sources */,
                                 7CCE7F041A411AE600447C4C /* NewFirstVisuallyNonEmptyLayoutForImages.cpp in Sources */,
+                                FEB6F7511B2BA464009E4922 /* NakedPtr.cpp in Sources */,
                                 7CCE7F051A411AE600447C4C /* NewFirstVisuallyNonEmptyLayoutFrames.cpp in Sources */,
                                 7CCE7F251A411AF600447C4C /* OpenAndCloseWindow.mm in Sources */,