1 // Copyright 2015 the V8 project authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "src/api-natives.h"
6 #include "src/api.h"
7 #include "src/asmjs/asm-js.h"
8 #include "src/asmjs/asm-typer.h"
9 #include "src/asmjs/asm-wasm-builder.h"
10 #include "src/assert-scope.h"
11 #include "src/ast/ast.h"
12 #include "src/execution.h"
13 #include "src/factory.h"
14 #include "src/handles.h"
15 #include "src/isolate.h"
16 #include "src/objects.h"
17 #include "src/parsing/parse-info.h"
18
19 #include "src/wasm/module-decoder.h"
20 #include "src/wasm/wasm-js.h"
21 #include "src/wasm/wasm-module.h"
22 #include "src/wasm/wasm-objects.h"
23 #include "src/wasm/wasm-result.h"
24
25 typedef uint8_t byte;
26
27 using v8::internal::wasm::ErrorThrower;
28
29 namespace v8 {
30
31 enum WasmMemoryObjectData {
32 kWasmMemoryBuffer,
33 kWasmMemoryMaximum,
34 kWasmMemoryInstanceObject
35 };
36
37 namespace {
v8_str(i::Isolate * isolate,const char * str)38 i::Handle<i::String> v8_str(i::Isolate* isolate, const char* str) {
39 return isolate->factory()->NewStringFromAsciiChecked(str);
40 }
v8_str(Isolate * isolate,const char * str)41 Local<String> v8_str(Isolate* isolate, const char* str) {
42 return Utils::ToLocal(v8_str(reinterpret_cast<i::Isolate*>(isolate), str));
43 }
44
45 struct RawBuffer {
46 const byte* start;
47 const byte* end;
sizev8::__anon1bceb0620111::RawBuffer48 size_t size() { return static_cast<size_t>(end - start); }
49 };
50
GetRawBufferSource(v8::Local<v8::Value> source,ErrorThrower * thrower)51 RawBuffer GetRawBufferSource(
52 v8::Local<v8::Value> source, ErrorThrower* thrower) {
53 const byte* start = nullptr;
54 const byte* end = nullptr;
55
56 if (source->IsArrayBuffer()) {
57 // A raw array buffer was passed.
58 Local<ArrayBuffer> buffer = Local<ArrayBuffer>::Cast(source);
59 ArrayBuffer::Contents contents = buffer->GetContents();
60
61 start = reinterpret_cast<const byte*>(contents.Data());
62 end = start + contents.ByteLength();
63
64 if (start == nullptr || end == start) {
65 thrower->CompileError("ArrayBuffer argument is empty");
66 }
67 } else if (source->IsTypedArray()) {
68 // A TypedArray was passed.
69 Local<TypedArray> array = Local<TypedArray>::Cast(source);
70 Local<ArrayBuffer> buffer = array->Buffer();
71
72 ArrayBuffer::Contents contents = buffer->GetContents();
73
74 start =
75 reinterpret_cast<const byte*>(contents.Data()) + array->ByteOffset();
76 end = start + array->ByteLength();
77
78 if (start == nullptr || end == start) {
79 thrower->TypeError("ArrayBuffer argument is empty");
80 }
81 } else {
82 thrower->TypeError("Argument 0 must be an ArrayBuffer or Uint8Array");
83 }
84
85 return {start, end};
86 }
87
CreateModuleObject(v8::Isolate * isolate,const v8::Local<v8::Value> source,ErrorThrower * thrower)88 static i::MaybeHandle<i::WasmModuleObject> CreateModuleObject(
89 v8::Isolate* isolate, const v8::Local<v8::Value> source,
90 ErrorThrower* thrower) {
91 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
92 i::MaybeHandle<i::JSObject> nothing;
93
94 RawBuffer buffer = GetRawBufferSource(source, thrower);
95 if (buffer.start == nullptr) return i::MaybeHandle<i::WasmModuleObject>();
96
97 DCHECK(source->IsArrayBuffer() || source->IsTypedArray());
98 return i::wasm::CreateModuleObjectFromBytes(
99 i_isolate, buffer.start, buffer.end, thrower, i::wasm::kWasmOrigin,
100 i::Handle<i::Script>::null(), nullptr, nullptr);
101 }
102
ValidateModule(v8::Isolate * isolate,const v8::Local<v8::Value> source,ErrorThrower * thrower)103 static bool ValidateModule(v8::Isolate* isolate,
104 const v8::Local<v8::Value> source,
105 ErrorThrower* thrower) {
106 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
107 i::MaybeHandle<i::JSObject> nothing;
108
109 RawBuffer buffer = GetRawBufferSource(source, thrower);
110 if (buffer.start == nullptr) return false;
111
112 DCHECK(source->IsArrayBuffer() || source->IsTypedArray());
113 return i::wasm::ValidateModuleBytes(i_isolate, buffer.start, buffer.end,
114 thrower,
115 i::wasm::ModuleOrigin::kWasmOrigin);
116 }
117
BrandCheck(Isolate * isolate,i::Handle<i::Object> value,i::Handle<i::Symbol> sym,const char * msg)118 static bool BrandCheck(Isolate* isolate, i::Handle<i::Object> value,
119 i::Handle<i::Symbol> sym, const char* msg) {
120 if (value->IsJSObject()) {
121 i::Handle<i::JSObject> object = i::Handle<i::JSObject>::cast(value);
122 Maybe<bool> has_brand = i::JSObject::HasOwnProperty(object, sym);
123 if (has_brand.IsNothing()) return false;
124 if (has_brand.ToChecked()) return true;
125 }
126 v8::Local<v8::Value> e = v8::Exception::TypeError(v8_str(isolate, msg));
127 isolate->ThrowException(e);
128 return false;
129 }
130
WebAssemblyCompile(const v8::FunctionCallbackInfo<v8::Value> & args)131 void WebAssemblyCompile(const v8::FunctionCallbackInfo<v8::Value>& args) {
132 v8::Isolate* isolate = args.GetIsolate();
133 HandleScope scope(isolate);
134 ErrorThrower thrower(reinterpret_cast<i::Isolate*>(isolate),
135 "WebAssembly.compile()");
136
137 if (args.Length() < 1) {
138 thrower.TypeError("Argument 0 must be a buffer source");
139 return;
140 }
141 i::MaybeHandle<i::JSObject> module_obj =
142 CreateModuleObject(isolate, args[0], &thrower);
143
144 Local<Context> context = isolate->GetCurrentContext();
145 v8::Local<v8::Promise::Resolver> resolver;
146 if (!v8::Promise::Resolver::New(context).ToLocal(&resolver)) return;
147 if (thrower.error()) {
148 resolver->Reject(context, Utils::ToLocal(thrower.Reify()));
149 } else {
150 resolver->Resolve(context, Utils::ToLocal(module_obj.ToHandleChecked()));
151 }
152 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
153 return_value.Set(resolver->GetPromise());
154 }
155
WebAssemblyValidate(const v8::FunctionCallbackInfo<v8::Value> & args)156 void WebAssemblyValidate(const v8::FunctionCallbackInfo<v8::Value>& args) {
157 v8::Isolate* isolate = args.GetIsolate();
158 HandleScope scope(isolate);
159 ErrorThrower thrower(reinterpret_cast<i::Isolate*>(isolate),
160 "WebAssembly.validate()");
161
162 if (args.Length() < 1) {
163 thrower.TypeError("Argument 0 must be a buffer source");
164 return;
165 }
166
167 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
168 if (ValidateModule(isolate, args[0], &thrower)) {
169 return_value.Set(v8::True(isolate));
170 } else {
171 return_value.Set(v8::False(isolate));
172 }
173 }
174
WebAssemblyModule(const v8::FunctionCallbackInfo<v8::Value> & args)175 void WebAssemblyModule(const v8::FunctionCallbackInfo<v8::Value>& args) {
176 v8::Isolate* isolate = args.GetIsolate();
177 HandleScope scope(isolate);
178 ErrorThrower thrower(reinterpret_cast<i::Isolate*>(isolate),
179 "WebAssembly.Module()");
180
181 if (args.Length() < 1) {
182 thrower.TypeError("Argument 0 must be a buffer source");
183 return;
184 }
185 i::MaybeHandle<i::JSObject> module_obj =
186 CreateModuleObject(isolate, args[0], &thrower);
187 if (module_obj.is_null()) return;
188
189 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
190 return_value.Set(Utils::ToLocal(module_obj.ToHandleChecked()));
191 }
192
WebAssemblyInstance(const v8::FunctionCallbackInfo<v8::Value> & args)193 void WebAssemblyInstance(const v8::FunctionCallbackInfo<v8::Value>& args) {
194 HandleScope scope(args.GetIsolate());
195 v8::Isolate* isolate = args.GetIsolate();
196 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
197
198 ErrorThrower thrower(i_isolate, "WebAssembly.Instance()");
199
200 if (args.Length() < 1) {
201 thrower.TypeError("Argument 0 must be a WebAssembly.Module");
202 return;
203 }
204
205 Local<Context> context = isolate->GetCurrentContext();
206 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
207 if (!BrandCheck(isolate, Utils::OpenHandle(*args[0]),
208 i::Handle<i::Symbol>(i_context->wasm_module_sym()),
209 "Argument 0 must be a WebAssembly.Module")) {
210 return;
211 }
212
213 Local<Object> obj = Local<Object>::Cast(args[0]);
214 i::Handle<i::JSObject> i_obj =
215 i::Handle<i::JSObject>::cast(v8::Utils::OpenHandle(*obj));
216
217 i::Handle<i::JSReceiver> ffi = i::Handle<i::JSObject>::null();
218 if (args.Length() > 1 && args[1]->IsObject()) {
219 Local<Object> obj = Local<Object>::Cast(args[1]);
220 ffi = i::Handle<i::JSReceiver>::cast(v8::Utils::OpenHandle(*obj));
221 }
222
223 i::Handle<i::JSArrayBuffer> memory = i::Handle<i::JSArrayBuffer>::null();
224 if (args.Length() > 2 && args[2]->IsObject()) {
225 Local<Object> obj = Local<Object>::Cast(args[2]);
226 i::Handle<i::Object> mem_obj = v8::Utils::OpenHandle(*obj);
227 if (i::WasmJs::IsWasmMemoryObject(i_isolate, mem_obj)) {
228 memory = i::Handle<i::JSArrayBuffer>(
229 i::Handle<i::WasmMemoryObject>::cast(mem_obj)->get_buffer(),
230 i_isolate);
231 } else {
232 thrower.TypeError("Argument 2 must be a WebAssembly.Memory");
233 }
234 }
235 i::MaybeHandle<i::JSObject> instance =
236 i::wasm::WasmModule::Instantiate(i_isolate, &thrower, i_obj, ffi, memory);
237 if (instance.is_null()) {
238 if (!thrower.error()) thrower.RuntimeError("Could not instantiate module");
239 return;
240 }
241 DCHECK(!i_isolate->has_pending_exception());
242 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
243 return_value.Set(Utils::ToLocal(instance.ToHandleChecked()));
244 }
245
GetIntegerProperty(v8::Isolate * isolate,ErrorThrower * thrower,Local<Context> context,Local<v8::Object> object,Local<String> property,int * result,int lower_bound,int upper_bound)246 bool GetIntegerProperty(v8::Isolate* isolate, ErrorThrower* thrower,
247 Local<Context> context, Local<v8::Object> object,
248 Local<String> property, int* result, int lower_bound,
249 int upper_bound) {
250 v8::MaybeLocal<v8::Value> maybe = object->Get(context, property);
251 v8::Local<v8::Value> value;
252 if (maybe.ToLocal(&value)) {
253 int64_t number;
254 if (!value->IntegerValue(context).To(&number)) return false;
255 if (number < static_cast<int64_t>(lower_bound)) {
256 thrower->RangeError("Property value %" PRId64
257 " is below the lower bound %d",
258 number, lower_bound);
259 return false;
260 }
261 if (number > static_cast<int64_t>(upper_bound)) {
262 thrower->RangeError("Property value %" PRId64
263 " is above the upper bound %d",
264 number, upper_bound);
265 return false;
266 }
267 *result = static_cast<int>(number);
268 return true;
269 }
270 return false;
271 }
272
273 const int max_table_size = 1 << 26;
274
WebAssemblyTable(const v8::FunctionCallbackInfo<v8::Value> & args)275 void WebAssemblyTable(const v8::FunctionCallbackInfo<v8::Value>& args) {
276 v8::Isolate* isolate = args.GetIsolate();
277 HandleScope scope(isolate);
278 ErrorThrower thrower(reinterpret_cast<i::Isolate*>(isolate),
279 "WebAssembly.Module()");
280 if (args.Length() < 1 || !args[0]->IsObject()) {
281 thrower.TypeError("Argument 0 must be a table descriptor");
282 return;
283 }
284 Local<Context> context = isolate->GetCurrentContext();
285 Local<v8::Object> descriptor = args[0]->ToObject(context).ToLocalChecked();
286 // The descriptor's 'element'.
287 {
288 v8::MaybeLocal<v8::Value> maybe =
289 descriptor->Get(context, v8_str(isolate, "element"));
290 v8::Local<v8::Value> value;
291 if (!maybe.ToLocal(&value)) return;
292 v8::Local<v8::String> string;
293 if (!value->ToString(context).ToLocal(&string)) return;
294 bool equal;
295 if (!string->Equals(context, v8_str(isolate, "anyfunc")).To(&equal)) return;
296 if (!equal) {
297 thrower.TypeError("Descriptor property 'element' must be 'anyfunc'");
298 return;
299 }
300 }
301 // The descriptor's 'initial'.
302 int initial;
303 if (!GetIntegerProperty(isolate, &thrower, context, descriptor,
304 v8_str(isolate, "initial"), &initial, 0,
305 max_table_size)) {
306 return;
307 }
308 // The descriptor's 'maximum'.
309 int maximum = 0;
310 Local<String> maximum_key = v8_str(isolate, "maximum");
311 Maybe<bool> has_maximum = descriptor->Has(context, maximum_key);
312
313 if (has_maximum.IsNothing()) {
314 // There has been an exception, just return.
315 return;
316 }
317 if (has_maximum.FromJust()) {
318 if (!GetIntegerProperty(isolate, &thrower, context, descriptor, maximum_key,
319 &maximum, initial, max_table_size)) {
320 return;
321 }
322 } else {
323 maximum = static_cast<int>(i::wasm::WasmModule::kV8MaxTableSize);
324 }
325
326 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
327 i::Handle<i::FixedArray> fixed_array;
328 i::Handle<i::JSObject> table_obj =
329 i::WasmTableObject::New(i_isolate, initial, maximum, &fixed_array);
330 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
331 return_value.Set(Utils::ToLocal(table_obj));
332 }
333
WebAssemblyMemory(const v8::FunctionCallbackInfo<v8::Value> & args)334 void WebAssemblyMemory(const v8::FunctionCallbackInfo<v8::Value>& args) {
335 v8::Isolate* isolate = args.GetIsolate();
336 HandleScope scope(isolate);
337 ErrorThrower thrower(reinterpret_cast<i::Isolate*>(isolate),
338 "WebAssembly.Module()");
339 if (args.Length() < 1 || !args[0]->IsObject()) {
340 thrower.TypeError("Argument 0 must be a memory descriptor");
341 return;
342 }
343 Local<Context> context = isolate->GetCurrentContext();
344 Local<v8::Object> descriptor = args[0]->ToObject(context).ToLocalChecked();
345 // The descriptor's 'initial'.
346 int initial;
347 if (!GetIntegerProperty(isolate, &thrower, context, descriptor,
348 v8_str(isolate, "initial"), &initial, 0, 65536)) {
349 return;
350 }
351 // The descriptor's 'maximum'.
352 int maximum = 0;
353 Local<String> maximum_key = v8_str(isolate, "maximum");
354 Maybe<bool> has_maximum = descriptor->Has(context, maximum_key);
355
356 if (has_maximum.IsNothing()) {
357 // There has been an exception, just return.
358 return;
359 }
360 if (has_maximum.FromJust()) {
361 if (!GetIntegerProperty(isolate, &thrower, context, descriptor, maximum_key,
362 &maximum, initial, 65536)) {
363 return;
364 }
365 }
366 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
367 i::Handle<i::JSArrayBuffer> buffer =
368 i_isolate->factory()->NewJSArrayBuffer(i::SharedFlag::kNotShared);
369 size_t size = static_cast<size_t>(i::wasm::WasmModule::kPageSize) *
370 static_cast<size_t>(initial);
371 i::JSArrayBuffer::SetupAllocatingData(buffer, i_isolate, size);
372
373 i::Handle<i::JSObject> memory_obj = i::WasmMemoryObject::New(
374 i_isolate, buffer, has_maximum.FromJust() ? maximum : -1);
375 args.GetReturnValue().Set(Utils::ToLocal(memory_obj));
376 }
377
WebAssemblyTableGetLength(const v8::FunctionCallbackInfo<v8::Value> & args)378 void WebAssemblyTableGetLength(
379 const v8::FunctionCallbackInfo<v8::Value>& args) {
380 v8::Isolate* isolate = args.GetIsolate();
381 Local<Context> context = isolate->GetCurrentContext();
382 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
383 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
384 i::Handle<i::Symbol>(i_context->wasm_table_sym()),
385 "Receiver is not a WebAssembly.Table")) {
386 return;
387 }
388 auto receiver =
389 i::Handle<i::WasmTableObject>::cast(Utils::OpenHandle(*args.This()));
390 args.GetReturnValue().Set(
391 v8::Number::New(isolate, receiver->current_length()));
392 }
393
WebAssemblyTableGrow(const v8::FunctionCallbackInfo<v8::Value> & args)394 void WebAssemblyTableGrow(const v8::FunctionCallbackInfo<v8::Value>& args) {
395 v8::Isolate* isolate = args.GetIsolate();
396 Local<Context> context = isolate->GetCurrentContext();
397 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
398 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
399 i::Handle<i::Symbol>(i_context->wasm_table_sym()),
400 "Receiver is not a WebAssembly.Table")) {
401 return;
402 }
403
404 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
405 auto receiver =
406 i::Handle<i::WasmTableObject>::cast(Utils::OpenHandle(*args.This()));
407 i::Handle<i::FixedArray> old_array(receiver->get_functions(), i_isolate);
408 int old_size = old_array->length();
409 int64_t new_size64 = 0;
410 if (args.Length() > 0 && !args[0]->IntegerValue(context).To(&new_size64)) {
411 return;
412 }
413 new_size64 += old_size;
414
415 if (new_size64 < old_size || new_size64 > receiver->maximum_length()) {
416 v8::Local<v8::Value> e = v8::Exception::RangeError(
417 v8_str(isolate, new_size64 < old_size ? "trying to shrink table"
418 : "maximum table size exceeded"));
419 isolate->ThrowException(e);
420 return;
421 }
422 int new_size = static_cast<int>(new_size64);
423
424 if (new_size != old_size) {
425 i::Handle<i::FixedArray> new_array =
426 i_isolate->factory()->NewFixedArray(new_size);
427 for (int i = 0; i < old_size; ++i) new_array->set(i, old_array->get(i));
428 i::Object* null = i_isolate->heap()->null_value();
429 for (int i = old_size; i < new_size; ++i) new_array->set(i, null);
430 receiver->set_functions(*new_array);
431 }
432
433 // TODO(titzer): update relevant instances.
434 }
435
WebAssemblyTableGet(const v8::FunctionCallbackInfo<v8::Value> & args)436 void WebAssemblyTableGet(const v8::FunctionCallbackInfo<v8::Value>& args) {
437 v8::Isolate* isolate = args.GetIsolate();
438 Local<Context> context = isolate->GetCurrentContext();
439 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
440 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
441 i::Handle<i::Symbol>(i_context->wasm_table_sym()),
442 "Receiver is not a WebAssembly.Table")) {
443 return;
444 }
445
446 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
447 auto receiver =
448 i::Handle<i::WasmTableObject>::cast(Utils::OpenHandle(*args.This()));
449 i::Handle<i::FixedArray> array(receiver->get_functions(), i_isolate);
450 int i = 0;
451 if (args.Length() > 0 && !args[0]->Int32Value(context).To(&i)) return;
452 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
453 if (i < 0 || i >= array->length()) {
454 v8::Local<v8::Value> e =
455 v8::Exception::RangeError(v8_str(isolate, "index out of bounds"));
456 isolate->ThrowException(e);
457 return;
458 }
459
460 i::Handle<i::Object> value(array->get(i), i_isolate);
461 return_value.Set(Utils::ToLocal(value));
462 }
463
WebAssemblyTableSet(const v8::FunctionCallbackInfo<v8::Value> & args)464 void WebAssemblyTableSet(const v8::FunctionCallbackInfo<v8::Value>& args) {
465 v8::Isolate* isolate = args.GetIsolate();
466 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
467 Local<Context> context = isolate->GetCurrentContext();
468 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
469 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
470 i::Handle<i::Symbol>(i_context->wasm_table_sym()),
471 "Receiver is not a WebAssembly.Table")) {
472 return;
473 }
474 if (args.Length() < 2) {
475 v8::Local<v8::Value> e = v8::Exception::TypeError(
476 v8_str(isolate, "Argument 1 must be null or a function"));
477 isolate->ThrowException(e);
478 return;
479 }
480 i::Handle<i::Object> value = Utils::OpenHandle(*args[1]);
481 if (!value->IsNull(i_isolate) &&
482 (!value->IsJSFunction() ||
483 i::Handle<i::JSFunction>::cast(value)->code()->kind() !=
484 i::Code::JS_TO_WASM_FUNCTION)) {
485 v8::Local<v8::Value> e = v8::Exception::TypeError(
486 v8_str(isolate, "Argument 1 must be null or a WebAssembly function"));
487 isolate->ThrowException(e);
488 return;
489 }
490
491 auto receiver =
492 i::Handle<i::WasmTableObject>::cast(Utils::OpenHandle(*args.This()));
493 i::Handle<i::FixedArray> array(receiver->get_functions(), i_isolate);
494 int i;
495 if (!args[0]->Int32Value(context).To(&i)) return;
496 if (i < 0 || i >= array->length()) {
497 v8::Local<v8::Value> e =
498 v8::Exception::RangeError(v8_str(isolate, "index out of bounds"));
499 isolate->ThrowException(e);
500 return;
501 }
502
503 i::Handle<i::FixedArray> dispatch_tables(receiver->get_dispatch_tables(),
504 i_isolate);
505 if (value->IsNull(i_isolate)) {
506 i::wasm::UpdateDispatchTables(i_isolate, dispatch_tables, i,
507 i::Handle<i::JSFunction>::null());
508 } else {
509 i::wasm::UpdateDispatchTables(i_isolate, dispatch_tables, i,
510 i::Handle<i::JSFunction>::cast(value));
511 }
512
513 i::Handle<i::FixedArray>::cast(array)->set(i, *value);
514 }
515
WebAssemblyMemoryGrow(const v8::FunctionCallbackInfo<v8::Value> & args)516 void WebAssemblyMemoryGrow(const v8::FunctionCallbackInfo<v8::Value>& args) {
517 v8::Isolate* isolate = args.GetIsolate();
518 Local<Context> context = isolate->GetCurrentContext();
519 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
520 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
521 i::Handle<i::Symbol>(i_context->wasm_memory_sym()),
522 "Receiver is not a WebAssembly.Memory")) {
523 return;
524 }
525 if (args.Length() < 1) {
526 v8::Local<v8::Value> e = v8::Exception::TypeError(
527 v8_str(isolate, "Argument 0 required, must be numeric value of pages"));
528 isolate->ThrowException(e);
529 return;
530 }
531
532 uint32_t delta = args[0]->Uint32Value(context).FromJust();
533 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
534 i::Handle<i::JSObject> receiver =
535 i::Handle<i::JSObject>::cast(Utils::OpenHandle(*args.This()));
536 i::Handle<i::Object> instance_object(
537 receiver->GetInternalField(kWasmMemoryInstanceObject), i_isolate);
538 i::Handle<i::JSObject> instance(
539 i::Handle<i::JSObject>::cast(instance_object));
540
541 // TODO(gdeepti) Implement growing memory when shared by different
542 // instances.
543 int32_t ret = internal::wasm::GrowInstanceMemory(i_isolate, instance, delta);
544 if (ret == -1) {
545 v8::Local<v8::Value> e = v8::Exception::Error(
546 v8_str(isolate, "Unable to grow instance memory."));
547 isolate->ThrowException(e);
548 return;
549 }
550 i::MaybeHandle<i::JSArrayBuffer> buffer =
551 internal::wasm::GetInstanceMemory(i_isolate, instance);
552 if (buffer.is_null()) {
553 v8::Local<v8::Value> e = v8::Exception::Error(
554 v8_str(isolate, "WebAssembly.Memory buffer object not set."));
555 isolate->ThrowException(e);
556 return;
557 }
558 receiver->SetInternalField(kWasmMemoryBuffer, *buffer.ToHandleChecked());
559 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
560 return_value.Set(ret);
561 }
562
WebAssemblyMemoryGetBuffer(const v8::FunctionCallbackInfo<v8::Value> & args)563 void WebAssemblyMemoryGetBuffer(
564 const v8::FunctionCallbackInfo<v8::Value>& args) {
565 v8::Isolate* isolate = args.GetIsolate();
566 Local<Context> context = isolate->GetCurrentContext();
567 i::Handle<i::Context> i_context = Utils::OpenHandle(*context);
568 if (!BrandCheck(isolate, Utils::OpenHandle(*args.This()),
569 i::Handle<i::Symbol>(i_context->wasm_memory_sym()),
570 "Receiver is not a WebAssembly.Memory")) {
571 return;
572 }
573 i::Isolate* i_isolate = reinterpret_cast<i::Isolate*>(isolate);
574 i::Handle<i::JSObject> receiver =
575 i::Handle<i::JSObject>::cast(Utils::OpenHandle(*args.This()));
576 i::Handle<i::Object> buffer(receiver->GetInternalField(kWasmMemoryBuffer),
577 i_isolate);
578 DCHECK(buffer->IsJSArrayBuffer());
579 v8::ReturnValue<v8::Value> return_value = args.GetReturnValue();
580 return_value.Set(Utils::ToLocal(buffer));
581 }
582 } // namespace
583
584 // TODO(titzer): we use the API to create the function template because the
585 // internal guts are too ugly to replicate here.
NewTemplate(i::Isolate * i_isolate,FunctionCallback func)586 static i::Handle<i::FunctionTemplateInfo> NewTemplate(i::Isolate* i_isolate,
587 FunctionCallback func) {
588 Isolate* isolate = reinterpret_cast<Isolate*>(i_isolate);
589 Local<FunctionTemplate> local = FunctionTemplate::New(isolate, func);
590 return v8::Utils::OpenHandle(*local);
591 }
592
593 namespace internal {
594
InstallFunc(Isolate * isolate,Handle<JSObject> object,const char * str,FunctionCallback func)595 Handle<JSFunction> InstallFunc(Isolate* isolate, Handle<JSObject> object,
596 const char* str, FunctionCallback func) {
597 Handle<String> name = v8_str(isolate, str);
598 Handle<FunctionTemplateInfo> temp = NewTemplate(isolate, func);
599 Handle<JSFunction> function =
600 ApiNatives::InstantiateFunction(temp).ToHandleChecked();
601 PropertyAttributes attributes =
602 static_cast<PropertyAttributes>(DONT_DELETE | READ_ONLY);
603 JSObject::AddProperty(object, name, function, attributes);
604 return function;
605 }
606
InstallGetter(Isolate * isolate,Handle<JSObject> object,const char * str,FunctionCallback func)607 Handle<JSFunction> InstallGetter(Isolate* isolate, Handle<JSObject> object,
608 const char* str, FunctionCallback func) {
609 Handle<String> name = v8_str(isolate, str);
610 Handle<FunctionTemplateInfo> temp = NewTemplate(isolate, func);
611 Handle<JSFunction> function =
612 ApiNatives::InstantiateFunction(temp).ToHandleChecked();
613 v8::PropertyAttribute attributes =
614 static_cast<v8::PropertyAttribute>(v8::DontDelete | v8::ReadOnly);
615 Utils::ToLocal(object)->SetAccessorProperty(Utils::ToLocal(name),
616 Utils::ToLocal(function),
617 Local<Function>(), attributes);
618 return function;
619 }
620
InstallWasmModuleSymbolIfNeeded(Isolate * isolate,Handle<JSGlobalObject> global,Handle<Context> context)621 void WasmJs::InstallWasmModuleSymbolIfNeeded(Isolate* isolate,
622 Handle<JSGlobalObject> global,
623 Handle<Context> context) {
624 if (!context->get(Context::WASM_MODULE_SYM_INDEX)->IsSymbol() ||
625 !context->get(Context::WASM_INSTANCE_SYM_INDEX)->IsSymbol()) {
626 InstallWasmMapsIfNeeded(isolate, isolate->native_context());
627 InstallWasmConstructors(isolate, isolate->global_object(),
628 isolate->native_context());
629 }
630 }
631
InstallWasmConstructors(Isolate * isolate,Handle<JSGlobalObject> global,Handle<Context> context)632 void WasmJs::InstallWasmConstructors(Isolate* isolate,
633 Handle<JSGlobalObject> global,
634 Handle<Context> context) {
635 Factory* factory = isolate->factory();
636 // Create private symbols.
637 Handle<Symbol> module_sym = factory->NewPrivateSymbol();
638 context->set_wasm_module_sym(*module_sym);
639
640 Handle<Symbol> instance_sym = factory->NewPrivateSymbol();
641 context->set_wasm_instance_sym(*instance_sym);
642
643 Handle<Symbol> table_sym = factory->NewPrivateSymbol();
644 context->set_wasm_table_sym(*table_sym);
645
646 Handle<Symbol> memory_sym = factory->NewPrivateSymbol();
647 context->set_wasm_memory_sym(*memory_sym);
648
649 // Bind the WebAssembly object.
650 Handle<String> name = v8_str(isolate, "WebAssembly");
651 Handle<JSFunction> cons = factory->NewFunction(name);
652 JSFunction::SetInstancePrototype(
653 cons, Handle<Object>(context->initial_object_prototype(), isolate));
654 cons->shared()->set_instance_class_name(*name);
655 Handle<JSObject> webassembly = factory->NewJSObject(cons, TENURED);
656 PropertyAttributes attributes = static_cast<PropertyAttributes>(DONT_ENUM);
657 JSObject::AddProperty(global, name, webassembly, attributes);
658
659 // Setup compile
660 InstallFunc(isolate, webassembly, "compile", WebAssemblyCompile);
661
662 // Setup compile
663 InstallFunc(isolate, webassembly, "validate", WebAssemblyValidate);
664
665 // Setup Module
666 Handle<JSFunction> module_constructor =
667 InstallFunc(isolate, webassembly, "Module", WebAssemblyModule);
668 context->set_wasm_module_constructor(*module_constructor);
669 Handle<JSObject> module_proto =
670 factory->NewJSObject(module_constructor, TENURED);
671 i::Handle<i::Map> map = isolate->factory()->NewMap(
672 i::JS_OBJECT_TYPE, i::JSObject::kHeaderSize +
673 WasmModuleObject::kFieldCount * i::kPointerSize);
674 JSFunction::SetInitialMap(module_constructor, map, module_proto);
675 JSObject::AddProperty(module_proto, isolate->factory()->constructor_string(),
676 module_constructor, DONT_ENUM);
677
678 // Setup Instance
679 Handle<JSFunction> instance_constructor =
680 InstallFunc(isolate, webassembly, "Instance", WebAssemblyInstance);
681 context->set_wasm_instance_constructor(*instance_constructor);
682
683 // Setup Table
684 Handle<JSFunction> table_constructor =
685 InstallFunc(isolate, webassembly, "Table", WebAssemblyTable);
686 context->set_wasm_table_constructor(*table_constructor);
687 Handle<JSObject> table_proto =
688 factory->NewJSObject(table_constructor, TENURED);
689 map = isolate->factory()->NewMap(
690 i::JS_OBJECT_TYPE, i::JSObject::kHeaderSize +
691 WasmTableObject::kFieldCount * i::kPointerSize);
692 JSFunction::SetInitialMap(table_constructor, map, table_proto);
693 JSObject::AddProperty(table_proto, isolate->factory()->constructor_string(),
694 table_constructor, DONT_ENUM);
695 InstallGetter(isolate, table_proto, "length", WebAssemblyTableGetLength);
696 InstallFunc(isolate, table_proto, "grow", WebAssemblyTableGrow);
697 InstallFunc(isolate, table_proto, "get", WebAssemblyTableGet);
698 InstallFunc(isolate, table_proto, "set", WebAssemblyTableSet);
699
700 // Setup Memory
701 Handle<JSFunction> memory_constructor =
702 InstallFunc(isolate, webassembly, "Memory", WebAssemblyMemory);
703 context->set_wasm_memory_constructor(*memory_constructor);
704 Handle<JSObject> memory_proto =
705 factory->NewJSObject(memory_constructor, TENURED);
706 map = isolate->factory()->NewMap(
707 i::JS_OBJECT_TYPE, i::JSObject::kHeaderSize +
708 WasmMemoryObject::kFieldCount * i::kPointerSize);
709 JSFunction::SetInitialMap(memory_constructor, map, memory_proto);
710 JSObject::AddProperty(memory_proto, isolate->factory()->constructor_string(),
711 memory_constructor, DONT_ENUM);
712 InstallFunc(isolate, memory_proto, "grow", WebAssemblyMemoryGrow);
713 InstallGetter(isolate, memory_proto, "buffer", WebAssemblyMemoryGetBuffer);
714
715 // Setup errors
716 attributes = static_cast<PropertyAttributes>(DONT_DELETE | READ_ONLY);
717 Handle<JSFunction> compile_error(
718 isolate->native_context()->wasm_compile_error_function());
719 JSObject::AddProperty(webassembly, isolate->factory()->CompileError_string(),
720 compile_error, attributes);
721 Handle<JSFunction> runtime_error(
722 isolate->native_context()->wasm_runtime_error_function());
723 JSObject::AddProperty(webassembly, isolate->factory()->RuntimeError_string(),
724 runtime_error, attributes);
725 }
726
Install(Isolate * isolate,Handle<JSGlobalObject> global)727 void WasmJs::Install(Isolate* isolate, Handle<JSGlobalObject> global) {
728 if (!FLAG_expose_wasm && !FLAG_validate_asm) {
729 return;
730 }
731
732 // Setup wasm function map.
733 Handle<Context> context(global->native_context(), isolate);
734 InstallWasmMapsIfNeeded(isolate, context);
735
736 if (FLAG_expose_wasm) {
737 InstallWasmConstructors(isolate, global, context);
738 }
739 }
740
InstallWasmMapsIfNeeded(Isolate * isolate,Handle<Context> context)741 void WasmJs::InstallWasmMapsIfNeeded(Isolate* isolate,
742 Handle<Context> context) {
743 if (!context->get(Context::WASM_FUNCTION_MAP_INDEX)->IsMap()) {
744 // TODO(titzer): Move this to bootstrapper.cc??
745 // TODO(titzer): Also make one for strict mode functions?
746 Handle<Map> prev_map = Handle<Map>(context->sloppy_function_map(), isolate);
747
748 InstanceType instance_type = prev_map->instance_type();
749 int internal_fields = JSObject::GetInternalFieldCount(*prev_map);
750 CHECK_EQ(0, internal_fields);
751 int pre_allocated =
752 prev_map->GetInObjectProperties() - prev_map->unused_property_fields();
753 int instance_size = 0;
754 int in_object_properties = 0;
755 int wasm_internal_fields = internal_fields + 1 // module instance object
756 + 1 // function arity
757 + 1; // function signature
758 JSFunction::CalculateInstanceSizeHelper(instance_type, wasm_internal_fields,
759 0, &instance_size,
760 &in_object_properties);
761
762 int unused_property_fields = in_object_properties - pre_allocated;
763 Handle<Map> map = Map::CopyInitialMap(
764 prev_map, instance_size, in_object_properties, unused_property_fields);
765
766 context->set_wasm_function_map(*map);
767 }
768 }
769
HasBrand(i::Handle<i::Object> value,i::Handle<i::Symbol> symbol)770 static bool HasBrand(i::Handle<i::Object> value, i::Handle<i::Symbol> symbol) {
771 if (value->IsJSObject()) {
772 i::Handle<i::JSObject> object = i::Handle<i::JSObject>::cast(value);
773 Maybe<bool> has_brand = i::JSObject::HasOwnProperty(object, symbol);
774 if (has_brand.IsNothing()) return false;
775 if (has_brand.ToChecked()) return true;
776 }
777 return false;
778 }
779
IsWasmMemoryObject(Isolate * isolate,Handle<Object> value)780 bool WasmJs::IsWasmMemoryObject(Isolate* isolate, Handle<Object> value) {
781 i::Handle<i::Symbol> symbol(isolate->context()->wasm_memory_sym(), isolate);
782 return HasBrand(value, symbol);
783 }
784
IsWasmTableObject(Isolate * isolate,Handle<Object> value)785 bool WasmJs::IsWasmTableObject(Isolate* isolate, Handle<Object> value) {
786 i::Handle<i::Symbol> symbol(isolate->context()->wasm_table_sym(), isolate);
787 return HasBrand(value, symbol);
788 }
789 } // namespace internal
790 } // namespace v8
791