Changeset 47404 in webkit

Timestamp:

Aug 17, 2009 6:00:12 PM (15 years ago)

Author:

oliver@apple.com

Message:

REGRESSION (r47292): Prototype.js is broken by ES5 Arguments changes
​https://bugs.webkit.org/show_bug.cgi?id=28341
<rdar://problem/7145615>

RS=Mark Rowe

Reverting r47292. Alas Prototype.js breaks with Arguments inheriting
from Array as ES5 attempted. Prototype.js defines $A in terms of a
function it places on (among other global objects) the Array prototype,
thus breaking $A for arrays.

Location:

trunk

Files:

• JavaScriptCore/ChangeLog (modified) (1 diff)
• JavaScriptCore/runtime/Arguments.h (modified) (4 diffs)
• JavaScriptCore/runtime/JSGlobalObject.cpp (modified) (6 diffs)
• JavaScriptCore/runtime/JSGlobalObject.h (modified) (7 diffs)
• JavaScriptCore/runtime/ObjectPrototype.cpp (modified) (1 diff)
• JavaScriptCore/runtime/ObjectPrototype.h (modified) (1 diff)
• JavaScriptCore/tests/mozilla/ecma_3/Function/arguments-001.js (modified) (2 diffs)
• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/fast/js/arguments-expected.txt (modified) (1 diff)
• LayoutTests/fast/js/resources/arguments.js (modified) (1 diff)

trunk/JavaScriptCore/ChangeLog

@@ +1 @@
+2009-08-17  Oliver Hunt  <oliver@apple.com>
+
+        RS=Mark Rowe.
+
+        REGRESSION (r47292): Prototype.js is broken by ES5 Arguments changes
+        https://bugs.webkit.org/show_bug.cgi?id=28341
+        <rdar://problem/7145615>
+
+        Reverting r47292.  Alas Prototype.js breaks with Arguments inheriting
+        from Array as ES5 attempted.  Prototype.js defines $A in terms of a 
+        function it places on (among other global objects) the Array prototype,
+        thus breaking $A for arrays.
+
+        * runtime/Arguments.h:
+        (JSC::Arguments::Arguments):
+        * runtime/JSGlobalObject.cpp:
+        (JSC::JSGlobalObject::reset):
+        (JSC::JSGlobalObject::markChildren):
+        * runtime/JSGlobalObject.h:
+        (JSC::JSGlobalObject::JSGlobalObjectData::JSGlobalObjectData):
+        * runtime/ObjectPrototype.cpp:
+        (JSC::ObjectPrototype::ObjectPrototype):
+        * runtime/ObjectPrototype.h:
+        * tests/mozilla/ecma_3/Function/arguments-001.js:
+
 2009-08-17  Peter Kasting  <pkasting@google.com>
 

trunk/JavaScriptCore/runtime/Arguments.h

@@ -101 +101 @@
 
         void init(CallFrame*);
-        void initializeStandardProperties(CallFrame*);
 
         OwnPtr<ArgumentsData> d;
@@ -135 +134 @@
         , d(new ArgumentsData)
     {
-        initializeStandardProperties(callFrame);
         JSFunction* callee;
         ptrdiff_t firstParameterIndex;
@@ -174 +172 @@
     {
         ASSERT(!callFrame->callee()->body()->parameterCount());
-        
-        initializeStandardProperties(callFrame);
+
         unsigned numArguments = callFrame->argumentCount() - 1;
 
@@ -243 +240 @@
     }
     
-    
-    inline void Arguments::initializeStandardProperties(CallFrame* callFrame)
-    {
-        putDirectFunction(callFrame->propertyNames().constructor, callFrame->lexicalGlobalObject()->objectConstructor(), DontEnum);
-        putDirectFunction(callFrame->propertyNames().toString, callFrame->lexicalGlobalObject()->objectToStringFunction(), DontEnum);
-        putDirectFunction(callFrame->propertyNames().toLocaleString, callFrame->lexicalGlobalObject()->objectToLocaleStringFunction(), DontEnum);
-    }
 
 } // namespace JSC

trunk/JavaScriptCore/runtime/JSGlobalObject.cpp

@@ -211 +211 @@
     d()->callFunction = callFunction;
     d()->applyFunction = applyFunction;
-    NativeFunctionWrapper* objectToStringFunction = 0;
-    NativeFunctionWrapper* objectToLocaleStringFunction = 0;
-    d()->objectPrototype = new (exec) ObjectPrototype(exec, ObjectPrototype::createStructure(jsNull()), d()->prototypeFunctionStructure.get(), &objectToStringFunction, &objectToLocaleStringFunction);
-    d()->objectToStringFunction = objectToStringFunction;
-    d()->objectToLocaleStringFunction = objectToLocaleStringFunction;
+    d()->objectPrototype = new (exec) ObjectPrototype(exec, ObjectPrototype::createStructure(jsNull()), d()->prototypeFunctionStructure.get());
     d()->functionPrototype->structure()->setPrototypeWithoutTransition(d()->objectPrototype);
 
@@ -222 +218 @@
     d()->functionStructure = JSFunction::createStructure(d()->functionPrototype);
     d()->callbackFunctionStructure = JSCallbackFunction::createStructure(d()->functionPrototype);
+    d()->argumentsStructure = Arguments::createStructure(d()->objectPrototype);
     d()->callbackConstructorStructure = JSCallbackConstructor::createStructure(d()->objectPrototype);
     d()->callbackObjectStructure = JSCallbackObject<JSObject>::createStructure(d()->objectPrototype);
 
     d()->arrayPrototype = new (exec) ArrayPrototype(ArrayPrototype::createStructure(d()->objectPrototype));
-    d()->argumentsStructure = Arguments::createStructure(d()->arrayPrototype);
     d()->arrayStructure = JSArray::createStructure(d()->arrayPrototype);
     d()->regExpMatchesArrayStructure = RegExpMatchesArray::createStructure(d()->arrayPrototype);
@@ -261 +257 @@
     // Constructors
 
-    ObjectConstructor* objectConstructor = new (exec) ObjectConstructor(exec, ObjectConstructor::createStructure(d()->functionPrototype), d()->objectPrototype, d()->prototypeFunctionStructure.get());
+    JSCell* objectConstructor = new (exec) ObjectConstructor(exec, ObjectConstructor::createStructure(d()->functionPrototype), d()->objectPrototype, d()->prototypeFunctionStructure.get());
     JSCell* functionConstructor = new (exec) FunctionConstructor(exec, FunctionConstructor::createStructure(d()->functionPrototype), d()->functionPrototype);
     JSCell* arrayConstructor = new (exec) ArrayConstructor(exec, ArrayConstructor::createStructure(d()->functionPrototype), d()->arrayPrototype, d()->prototypeFunctionStructure.get());
@@ -275 +271 @@
     RefPtr<Structure> nativeErrorStructure = NativeErrorConstructor::createStructure(d()->functionPrototype);
 
-    d()->objectConstructor = objectConstructor;
     d()->evalErrorConstructor = new (exec) NativeErrorConstructor(exec, nativeErrorStructure, evalErrorPrototype);
     d()->rangeErrorConstructor = new (exec) NativeErrorConstructor(exec, nativeErrorStructure, rangeErrorPrototype);
@@ -374 +369 @@
     if (registerFile.globalObject() == this)
         registerFile.markGlobals(markStack, &globalData()->heap);
-    
-    markIfNeeded(markStack, d()->objectConstructor);
+
     markIfNeeded(markStack, d()->regExpConstructor);
     markIfNeeded(markStack, d()->errorConstructor);
@@ -388 +382 @@
     markIfNeeded(markStack, d()->callFunction);
     markIfNeeded(markStack, d()->applyFunction);
-    markIfNeeded(markStack, d()->objectToStringFunction);
-    markIfNeeded(markStack, d()->objectToLocaleStringFunction);
 
     markIfNeeded(markStack, d()->objectPrototype);

trunk/JavaScriptCore/runtime/JSGlobalObject.h

@@ -39 +39 @@
     class ErrorConstructor;
     class FunctionPrototype;
+    class GlobalCodeBlock;
     class GlobalEvalFunction;
     class NativeErrorConstructor;
-    class GlobalCodeBlock;
-    class ObjectConstructor;
+    class ProgramCodeBlock;
     class PrototypeFunction;
     class RegExpConstructor;
@@ -62 +62 @@
                 , registerArraySize(0)
                 , globalScopeChain(NoScopeChain())
-                , objectConstructor(0)
                 , regExpConstructor(0)
                 , errorConstructor(0)
@@ -74 +73 @@
                 , callFunction(0)
                 , applyFunction(0)
-                , objectToStringFunction(0)
-                , objectToLocaleStringFunction(0)
                 , objectPrototype(0)
                 , functionPrototype(0)
@@ -104 +101 @@
             int recursion;
 
-            ObjectConstructor* objectConstructor;
             RegExpConstructor* regExpConstructor;
             ErrorConstructor* errorConstructor;
@@ -117 +113 @@
             NativeFunctionWrapper* callFunction;
             NativeFunctionWrapper* applyFunction;
-            NativeFunctionWrapper* objectToStringFunction;
-            NativeFunctionWrapper* objectToLocaleStringFunction;
 
             ObjectPrototype* objectPrototype;
@@ -191 +185 @@
         // replaces the global object's associated property.
 
-        ObjectConstructor* objectConstructor() const { return d()->objectConstructor; }
         RegExpConstructor* regExpConstructor() const { return d()->regExpConstructor; }
 
@@ -212 +205 @@
         DatePrototype* datePrototype() const { return d()->datePrototype; }
         RegExpPrototype* regExpPrototype() const { return d()->regExpPrototype; }
-
-        NativeFunctionWrapper* objectToStringFunction() const { return d()->objectToStringFunction; }
-        NativeFunctionWrapper* objectToLocaleStringFunction() const { return d()->objectToLocaleStringFunction; }
 
         JSObject* methodCallDummy() const { return d()->methodCallDummy; }

trunk/JavaScriptCore/runtime/ObjectPrototype.cpp

@@ -41 +41 @@
 static JSValue JSC_HOST_CALL objectProtoFuncToLocaleString(ExecState*, JSObject*, JSValue, const ArgList&);
 
-ObjectPrototype::ObjectPrototype(ExecState* exec, PassRefPtr<Structure> stucture, Structure* prototypeFunctionStructure, NativeFunctionWrapper** toStringFunction, NativeFunctionWrapper** toLocaleStringFunction)
+ObjectPrototype::ObjectPrototype(ExecState* exec, PassRefPtr<Structure> stucture, Structure* prototypeFunctionStructure)
     : JSObject(stucture)
 {
-    NativeFunctionWrapper* toString = new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 0, exec->propertyNames().toString, objectProtoFuncToString);
-    NativeFunctionWrapper* toLocaleString = new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 0, exec->propertyNames().toLocaleString, objectProtoFuncToLocaleString);
-    *toStringFunction = toString;
-    *toLocaleStringFunction = toLocaleString;
-    putDirectFunctionWithoutTransition(exec, toString, DontEnum);
-    putDirectFunctionWithoutTransition(exec, toLocaleString, DontEnum);
+    putDirectFunctionWithoutTransition(exec, new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 0, exec->propertyNames().toString, objectProtoFuncToString), DontEnum);
+    putDirectFunctionWithoutTransition(exec, new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 0, exec->propertyNames().toLocaleString, objectProtoFuncToLocaleString), DontEnum);
     putDirectFunctionWithoutTransition(exec, new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 0, exec->propertyNames().valueOf, objectProtoFuncValueOf), DontEnum);
     putDirectFunctionWithoutTransition(exec, new (exec) NativeFunctionWrapper(exec, prototypeFunctionStructure, 1, exec->propertyNames().hasOwnProperty, objectProtoFuncHasOwnProperty), DontEnum);

trunk/JavaScriptCore/runtime/ObjectPrototype.h

@@ -28 +28 @@
     class ObjectPrototype : public JSObject {
     public:
-        ObjectPrototype(ExecState*, PassRefPtr<Structure>, Structure* prototypeFunctionStructure, NativeFunctionWrapper** toStringFunction, NativeFunctionWrapper** toLocaleStringFunction);
+        ObjectPrototype(ExecState*, PassRefPtr<Structure>, Structure* prototypeFunctionStructure);
     };
 

trunk/JavaScriptCore/tests/mozilla/ecma_3/Function/arguments-001.js

@@ -50 +50 @@
 
 actual = a instanceof Array;
-expect = true;
+expect = false;
 addThis();
 
 actual = a.length;
-expect = 0;
+expect = undefined;
 addThis();
 
@@ -66 +66 @@
 
 actual = a instanceof Array;
-expect = true;
+expect = false;
 addThis();
 
 actual = a.length;
-expect = 0;
+expect = undefined;
 addThis();
 

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2009-08-17  Oliver Hunt  <oliver@apple.com>
+
+        RS=Mark Rowe.
+
+        REGRESSION (r47291-r47308): MobileMe applications do not load data
+        https://bugs.webkit.org/show_bug.cgi?id=28341
+
+        Reverting r47292
+
+        * fast/js/arguments-expected.txt:
+        * fast/js/resources/arguments.js:
+
 2009-08-17  Brian Weinstein  <bweinstein@apple.com>
 

trunk/LayoutTests/fast/js/arguments-expected.txt

@@ -130 +130 @@
 FAIL argumentsConstUndefined() should be undefined. Was [object Arguments]
 PASS argumentCalleeInException() is argumentCalleeInException
-PASS getArguments() instanceof Object is true
-PASS getArguments() instanceof Array is true
-PASS getArguments().constructor is Object
-PASS Object.getPrototypeOf(getArguments()) is Array.prototype
-PASS getArguments().toString is Object.prototype.toString
-PASS getArguments().toLocaleString is Object.prototype.toLocaleString
-PASS getArguments() instanceof originalObject is true
-PASS getArguments() instanceof originalArray is true
-PASS getArguments().constructor is originalObject
-PASS originalObject.getPrototypeOf(getArguments()) is originalArray.prototype
-PASS getArguments().toString is originalObject.prototype.toString
-PASS getArguments().toLocaleString is originalObject.prototype.toLocaleString
-PASS originalObject.getPrototypeOf(getArguments()) is originalArrayPrototype
-PASS getArguments().toString is originalObjectToString
-PASS getArguments().toLocaleString is originalObjectToLocaleString
 PASS successfullyParsed is true
 

trunk/LayoutTests/fast/js/resources/arguments.js

@@ -535 +535 @@
 shouldBe("argumentCalleeInException()", "argumentCalleeInException")
 
-function getArguments() {
-    return arguments;
-}
-
-shouldBeTrue("getArguments() instanceof Object");
-shouldBeTrue("getArguments() instanceof Array");
-shouldBe("getArguments().constructor", "Object");
-shouldBe("Object.getPrototypeOf(getArguments())", "Array.prototype");
-shouldBe("getArguments().toString", "Object.prototype.toString");
-shouldBe("getArguments().toLocaleString", "Object.prototype.toLocaleString");
-
-var originalObject = Object;
-Object = function NewObject() {};
-var originalArray = Array;
-Array = function NewArray() {};
-shouldBeTrue("getArguments() instanceof originalObject");
-shouldBeTrue("getArguments() instanceof originalArray");
-shouldBe("getArguments().constructor", "originalObject");
-shouldBe("originalObject.getPrototypeOf(getArguments())", "originalArray.prototype");
-shouldBe("getArguments().toString", "originalObject.prototype.toString");
-shouldBe("getArguments().toLocaleString", "originalObject.prototype.toLocaleString");
-
-var originalObjectToString = originalObject.prototype.toString;
-originalObject.prototype.toString = function NewObjectPrototypeToString() {};
-var originalObjectToLocaleString = originalObject.prototype.toLocaleString;
-originalObject.prototype.toLocaleString = function NewObjectPrototypeToLocaleString() {};
-var originalArrayPrototype = originalArray.prototype;
-Array.prototype = function NewArrayPrototype() {};
-shouldBe("originalObject.getPrototypeOf(getArguments())", "originalArrayPrototype");
-shouldBe("getArguments().toString", "originalObjectToString");
-shouldBe("getArguments().toLocaleString", "originalObjectToLocaleString");
-
 var successfullyParsed = true;