1 // Copyright 2016 the V8 project authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "src/builtins/builtins-utils.h"
6 #include "src/builtins/builtins.h"
7 #include "src/code-factory.h"
8 #include "src/code-stub-assembler.h"
9 #include "src/counters.h"
10 #include "src/keys.h"
11 #include "src/lookup.h"
12 #include "src/objects-inl.h"
13 #include "src/property-descriptor.h"
14
15 namespace v8 {
16 namespace internal {
17
18 // -----------------------------------------------------------------------------
19 // ES6 section 19.1 Object Objects
20
21 // ES6 section 19.1.3.4 Object.prototype.propertyIsEnumerable ( V )
BUILTIN(ObjectPrototypePropertyIsEnumerable)22 BUILTIN(ObjectPrototypePropertyIsEnumerable) {
23 HandleScope scope(isolate);
24 Handle<JSReceiver> object;
25 Handle<Name> name;
26 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
27 isolate, name, Object::ToName(isolate, args.atOrUndefined(isolate, 1)));
28 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
29 isolate, object, JSReceiver::ToObject(isolate, args.receiver()));
30 Maybe<PropertyAttributes> maybe =
31 JSReceiver::GetOwnPropertyAttributes(object, name);
32 if (maybe.IsNothing()) return isolate->heap()->exception();
33 if (maybe.FromJust() == ABSENT) return isolate->heap()->false_value();
34 return isolate->heap()->ToBoolean((maybe.FromJust() & DONT_ENUM) == 0);
35 }
36
37 // ES6 section 19.1.2.3 Object.defineProperties
BUILTIN(ObjectDefineProperties)38 BUILTIN(ObjectDefineProperties) {
39 HandleScope scope(isolate);
40 DCHECK_EQ(3, args.length());
41 Handle<Object> target = args.at(1);
42 Handle<Object> properties = args.at(2);
43
44 RETURN_RESULT_OR_FAILURE(
45 isolate, JSReceiver::DefineProperties(isolate, target, properties));
46 }
47
48 // ES6 section 19.1.2.4 Object.defineProperty
BUILTIN(ObjectDefineProperty)49 BUILTIN(ObjectDefineProperty) {
50 HandleScope scope(isolate);
51 DCHECK_EQ(4, args.length());
52 Handle<Object> target = args.at(1);
53 Handle<Object> key = args.at(2);
54 Handle<Object> attributes = args.at(3);
55
56 return JSReceiver::DefineProperty(isolate, target, key, attributes);
57 }
58
59 namespace {
60
61 template <AccessorComponent which_accessor>
ObjectDefineAccessor(Isolate * isolate,Handle<Object> object,Handle<Object> name,Handle<Object> accessor)62 Object* ObjectDefineAccessor(Isolate* isolate, Handle<Object> object,
63 Handle<Object> name, Handle<Object> accessor) {
64 // 1. Let O be ? ToObject(this value).
65 Handle<JSReceiver> receiver;
66 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, receiver,
67 Object::ToObject(isolate, object));
68 // 2. If IsCallable(getter) is false, throw a TypeError exception.
69 if (!accessor->IsCallable()) {
70 MessageTemplate::Template message =
71 which_accessor == ACCESSOR_GETTER
72 ? MessageTemplate::kObjectGetterExpectingFunction
73 : MessageTemplate::kObjectSetterExpectingFunction;
74 THROW_NEW_ERROR_RETURN_FAILURE(isolate, NewTypeError(message));
75 }
76 // 3. Let desc be PropertyDescriptor{[[Get]]: getter, [[Enumerable]]: true,
77 // [[Configurable]]: true}.
78 PropertyDescriptor desc;
79 if (which_accessor == ACCESSOR_GETTER) {
80 desc.set_get(accessor);
81 } else {
82 DCHECK(which_accessor == ACCESSOR_SETTER);
83 desc.set_set(accessor);
84 }
85 desc.set_enumerable(true);
86 desc.set_configurable(true);
87 // 4. Let key be ? ToPropertyKey(P).
88 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, name,
89 Object::ToPropertyKey(isolate, name));
90 // 5. Perform ? DefinePropertyOrThrow(O, key, desc).
91 // To preserve legacy behavior, we ignore errors silently rather than
92 // throwing an exception.
93 Maybe<bool> success = JSReceiver::DefineOwnProperty(isolate, receiver, name,
94 &desc, kThrowOnError);
95 MAYBE_RETURN(success, isolate->heap()->exception());
96 if (!success.FromJust()) {
97 isolate->CountUsage(v8::Isolate::kDefineGetterOrSetterWouldThrow);
98 }
99 // 6. Return undefined.
100 return isolate->heap()->undefined_value();
101 }
102
ObjectLookupAccessor(Isolate * isolate,Handle<Object> object,Handle<Object> key,AccessorComponent component)103 Object* ObjectLookupAccessor(Isolate* isolate, Handle<Object> object,
104 Handle<Object> key, AccessorComponent component) {
105 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, object,
106 Object::ToObject(isolate, object));
107 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, key,
108 Object::ToPropertyKey(isolate, key));
109 bool success = false;
110 LookupIterator it = LookupIterator::PropertyOrElement(
111 isolate, object, key, &success,
112 LookupIterator::PROTOTYPE_CHAIN_SKIP_INTERCEPTOR);
113 DCHECK(success);
114
115 for (; it.IsFound(); it.Next()) {
116 switch (it.state()) {
117 case LookupIterator::INTERCEPTOR:
118 case LookupIterator::NOT_FOUND:
119 case LookupIterator::TRANSITION:
120 UNREACHABLE();
121
122 case LookupIterator::ACCESS_CHECK:
123 if (it.HasAccess()) continue;
124 isolate->ReportFailedAccessCheck(it.GetHolder<JSObject>());
125 RETURN_FAILURE_IF_SCHEDULED_EXCEPTION(isolate);
126 return isolate->heap()->undefined_value();
127
128 case LookupIterator::JSPROXY: {
129 PropertyDescriptor desc;
130 Maybe<bool> found = JSProxy::GetOwnPropertyDescriptor(
131 isolate, it.GetHolder<JSProxy>(), it.GetName(), &desc);
132 MAYBE_RETURN(found, isolate->heap()->exception());
133 if (found.FromJust()) {
134 if (component == ACCESSOR_GETTER && desc.has_get()) {
135 return *desc.get();
136 }
137 if (component == ACCESSOR_SETTER && desc.has_set()) {
138 return *desc.set();
139 }
140 return isolate->heap()->undefined_value();
141 }
142 Handle<Object> prototype;
143 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
144 isolate, prototype, JSProxy::GetPrototype(it.GetHolder<JSProxy>()));
145 if (prototype->IsNull(isolate)) {
146 return isolate->heap()->undefined_value();
147 }
148 return ObjectLookupAccessor(isolate, prototype, key, component);
149 }
150
151 case LookupIterator::INTEGER_INDEXED_EXOTIC:
152 case LookupIterator::DATA:
153 return isolate->heap()->undefined_value();
154
155 case LookupIterator::ACCESSOR: {
156 Handle<Object> maybe_pair = it.GetAccessors();
157 if (maybe_pair->IsAccessorPair()) {
158 return *AccessorPair::GetComponent(
159 Handle<AccessorPair>::cast(maybe_pair), component);
160 }
161 }
162 }
163 }
164
165 return isolate->heap()->undefined_value();
166 }
167
168 } // namespace
169
170 // ES6 B.2.2.2 a.k.a.
171 // https://tc39.github.io/ecma262/#sec-object.prototype.__defineGetter__
BUILTIN(ObjectDefineGetter)172 BUILTIN(ObjectDefineGetter) {
173 HandleScope scope(isolate);
174 Handle<Object> object = args.at(0); // Receiver.
175 Handle<Object> name = args.at(1);
176 Handle<Object> getter = args.at(2);
177 return ObjectDefineAccessor<ACCESSOR_GETTER>(isolate, object, name, getter);
178 }
179
180 // ES6 B.2.2.3 a.k.a.
181 // https://tc39.github.io/ecma262/#sec-object.prototype.__defineSetter__
BUILTIN(ObjectDefineSetter)182 BUILTIN(ObjectDefineSetter) {
183 HandleScope scope(isolate);
184 Handle<Object> object = args.at(0); // Receiver.
185 Handle<Object> name = args.at(1);
186 Handle<Object> setter = args.at(2);
187 return ObjectDefineAccessor<ACCESSOR_SETTER>(isolate, object, name, setter);
188 }
189
190 // ES6 B.2.2.4 a.k.a.
191 // https://tc39.github.io/ecma262/#sec-object.prototype.__lookupGetter__
BUILTIN(ObjectLookupGetter)192 BUILTIN(ObjectLookupGetter) {
193 HandleScope scope(isolate);
194 Handle<Object> object = args.at(0);
195 Handle<Object> name = args.at(1);
196 return ObjectLookupAccessor(isolate, object, name, ACCESSOR_GETTER);
197 }
198
199 // ES6 B.2.2.5 a.k.a.
200 // https://tc39.github.io/ecma262/#sec-object.prototype.__lookupSetter__
BUILTIN(ObjectLookupSetter)201 BUILTIN(ObjectLookupSetter) {
202 HandleScope scope(isolate);
203 Handle<Object> object = args.at(0);
204 Handle<Object> name = args.at(1);
205 return ObjectLookupAccessor(isolate, object, name, ACCESSOR_SETTER);
206 }
207
208 // ES6 section 19.1.2.5 Object.freeze ( O )
BUILTIN(ObjectFreeze)209 BUILTIN(ObjectFreeze) {
210 HandleScope scope(isolate);
211 Handle<Object> object = args.atOrUndefined(isolate, 1);
212 if (object->IsJSReceiver()) {
213 MAYBE_RETURN(JSReceiver::SetIntegrityLevel(Handle<JSReceiver>::cast(object),
214 FROZEN, kThrowOnError),
215 isolate->heap()->exception());
216 }
217 return *object;
218 }
219
220 // ES section 19.1.2.9 Object.getPrototypeOf ( O )
BUILTIN(ObjectGetPrototypeOf)221 BUILTIN(ObjectGetPrototypeOf) {
222 HandleScope scope(isolate);
223 Handle<Object> object = args.atOrUndefined(isolate, 1);
224
225 Handle<JSReceiver> receiver;
226 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, receiver,
227 Object::ToObject(isolate, object));
228
229 RETURN_RESULT_OR_FAILURE(isolate,
230 JSReceiver::GetPrototype(isolate, receiver));
231 }
232
233 // ES6 section 19.1.2.21 Object.setPrototypeOf ( O, proto )
BUILTIN(ObjectSetPrototypeOf)234 BUILTIN(ObjectSetPrototypeOf) {
235 HandleScope scope(isolate);
236
237 // 1. Let O be ? RequireObjectCoercible(O).
238 Handle<Object> object = args.atOrUndefined(isolate, 1);
239 if (object->IsNullOrUndefined(isolate)) {
240 THROW_NEW_ERROR_RETURN_FAILURE(
241 isolate, NewTypeError(MessageTemplate::kCalledOnNullOrUndefined,
242 isolate->factory()->NewStringFromAsciiChecked(
243 "Object.setPrototypeOf")));
244 }
245
246 // 2. If Type(proto) is neither Object nor Null, throw a TypeError exception.
247 Handle<Object> proto = args.atOrUndefined(isolate, 2);
248 if (!proto->IsNull(isolate) && !proto->IsJSReceiver()) {
249 THROW_NEW_ERROR_RETURN_FAILURE(
250 isolate, NewTypeError(MessageTemplate::kProtoObjectOrNull, proto));
251 }
252
253 // 3. If Type(O) is not Object, return O.
254 if (!object->IsJSReceiver()) return *object;
255 Handle<JSReceiver> receiver = Handle<JSReceiver>::cast(object);
256
257 // 4. Let status be ? O.[[SetPrototypeOf]](proto).
258 // 5. If status is false, throw a TypeError exception.
259 MAYBE_RETURN(JSReceiver::SetPrototype(receiver, proto, true, kThrowOnError),
260 isolate->heap()->exception());
261
262 // 6. Return O.
263 return *receiver;
264 }
265
266 // ES6 section B.2.2.1.1 get Object.prototype.__proto__
BUILTIN(ObjectPrototypeGetProto)267 BUILTIN(ObjectPrototypeGetProto) {
268 HandleScope scope(isolate);
269 // 1. Let O be ? ToObject(this value).
270 Handle<JSReceiver> receiver;
271 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
272 isolate, receiver, Object::ToObject(isolate, args.receiver()));
273
274 // 2. Return ? O.[[GetPrototypeOf]]().
275 RETURN_RESULT_OR_FAILURE(isolate,
276 JSReceiver::GetPrototype(isolate, receiver));
277 }
278
279 // ES6 section B.2.2.1.2 set Object.prototype.__proto__
BUILTIN(ObjectPrototypeSetProto)280 BUILTIN(ObjectPrototypeSetProto) {
281 HandleScope scope(isolate);
282 // 1. Let O be ? RequireObjectCoercible(this value).
283 Handle<Object> object = args.receiver();
284 if (object->IsNullOrUndefined(isolate)) {
285 THROW_NEW_ERROR_RETURN_FAILURE(
286 isolate, NewTypeError(MessageTemplate::kCalledOnNullOrUndefined,
287 isolate->factory()->NewStringFromAsciiChecked(
288 "set Object.prototype.__proto__")));
289 }
290
291 // 2. If Type(proto) is neither Object nor Null, return undefined.
292 Handle<Object> proto = args.at(1);
293 if (!proto->IsNull(isolate) && !proto->IsJSReceiver()) {
294 return isolate->heap()->undefined_value();
295 }
296
297 // 3. If Type(O) is not Object, return undefined.
298 if (!object->IsJSReceiver()) return isolate->heap()->undefined_value();
299 Handle<JSReceiver> receiver = Handle<JSReceiver>::cast(object);
300
301 // 4. Let status be ? O.[[SetPrototypeOf]](proto).
302 // 5. If status is false, throw a TypeError exception.
303 MAYBE_RETURN(JSReceiver::SetPrototype(receiver, proto, true, kThrowOnError),
304 isolate->heap()->exception());
305
306 // Return undefined.
307 return isolate->heap()->undefined_value();
308 }
309
310 namespace {
311
GetOwnPropertyKeys(Isolate * isolate,BuiltinArguments args,PropertyFilter filter)312 Object* GetOwnPropertyKeys(Isolate* isolate, BuiltinArguments args,
313 PropertyFilter filter) {
314 HandleScope scope(isolate);
315 Handle<Object> object = args.atOrUndefined(isolate, 1);
316 Handle<JSReceiver> receiver;
317 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, receiver,
318 Object::ToObject(isolate, object));
319 Handle<FixedArray> keys;
320 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
321 isolate, keys,
322 KeyAccumulator::GetKeys(receiver, KeyCollectionMode::kOwnOnly, filter,
323 GetKeysConversion::kConvertToString));
324 return *isolate->factory()->NewJSArrayWithElements(keys);
325 }
326
327 } // namespace
328
329 // ES6 section 19.1.2.7 Object.getOwnPropertyNames ( O )
BUILTIN(ObjectGetOwnPropertyNames)330 BUILTIN(ObjectGetOwnPropertyNames) {
331 return GetOwnPropertyKeys(isolate, args, SKIP_SYMBOLS);
332 }
333
334 // ES6 section 19.1.2.8 Object.getOwnPropertySymbols ( O )
BUILTIN(ObjectGetOwnPropertySymbols)335 BUILTIN(ObjectGetOwnPropertySymbols) {
336 return GetOwnPropertyKeys(isolate, args, SKIP_STRINGS);
337 }
338
339 // ES6 section 19.1.2.11 Object.isExtensible ( O )
BUILTIN(ObjectIsExtensible)340 BUILTIN(ObjectIsExtensible) {
341 HandleScope scope(isolate);
342 Handle<Object> object = args.atOrUndefined(isolate, 1);
343 Maybe<bool> result =
344 object->IsJSReceiver()
345 ? JSReceiver::IsExtensible(Handle<JSReceiver>::cast(object))
346 : Just(false);
347 MAYBE_RETURN(result, isolate->heap()->exception());
348 return isolate->heap()->ToBoolean(result.FromJust());
349 }
350
351 // ES6 section 19.1.2.12 Object.isFrozen ( O )
BUILTIN(ObjectIsFrozen)352 BUILTIN(ObjectIsFrozen) {
353 HandleScope scope(isolate);
354 Handle<Object> object = args.atOrUndefined(isolate, 1);
355 Maybe<bool> result = object->IsJSReceiver()
356 ? JSReceiver::TestIntegrityLevel(
357 Handle<JSReceiver>::cast(object), FROZEN)
358 : Just(true);
359 MAYBE_RETURN(result, isolate->heap()->exception());
360 return isolate->heap()->ToBoolean(result.FromJust());
361 }
362
363 // ES6 section 19.1.2.13 Object.isSealed ( O )
BUILTIN(ObjectIsSealed)364 BUILTIN(ObjectIsSealed) {
365 HandleScope scope(isolate);
366 Handle<Object> object = args.atOrUndefined(isolate, 1);
367 Maybe<bool> result = object->IsJSReceiver()
368 ? JSReceiver::TestIntegrityLevel(
369 Handle<JSReceiver>::cast(object), SEALED)
370 : Just(true);
371 MAYBE_RETURN(result, isolate->heap()->exception());
372 return isolate->heap()->ToBoolean(result.FromJust());
373 }
374
BUILTIN(ObjectGetOwnPropertyDescriptors)375 BUILTIN(ObjectGetOwnPropertyDescriptors) {
376 HandleScope scope(isolate);
377 Handle<Object> object = args.atOrUndefined(isolate, 1);
378
379 Handle<JSReceiver> receiver;
380 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(isolate, receiver,
381 Object::ToObject(isolate, object));
382
383 Handle<FixedArray> keys;
384 ASSIGN_RETURN_FAILURE_ON_EXCEPTION(
385 isolate, keys, KeyAccumulator::GetKeys(
386 receiver, KeyCollectionMode::kOwnOnly, ALL_PROPERTIES,
387 GetKeysConversion::kConvertToString));
388
389 Handle<JSObject> descriptors =
390 isolate->factory()->NewJSObject(isolate->object_function());
391
392 for (int i = 0; i < keys->length(); ++i) {
393 Handle<Name> key = Handle<Name>::cast(FixedArray::get(*keys, i, isolate));
394 PropertyDescriptor descriptor;
395 Maybe<bool> did_get_descriptor = JSReceiver::GetOwnPropertyDescriptor(
396 isolate, receiver, key, &descriptor);
397 MAYBE_RETURN(did_get_descriptor, isolate->heap()->exception());
398
399 if (!did_get_descriptor.FromJust()) continue;
400 Handle<Object> from_descriptor = descriptor.ToObject(isolate);
401
402 LookupIterator it = LookupIterator::PropertyOrElement(
403 isolate, descriptors, key, descriptors, LookupIterator::OWN);
404 Maybe<bool> success =
405 JSReceiver::CreateDataProperty(&it, from_descriptor, kDontThrow);
406 CHECK(success.FromJust());
407 }
408
409 return *descriptors;
410 }
411
412 // ES6 section 19.1.2.15 Object.preventExtensions ( O )
BUILTIN(ObjectPreventExtensions)413 BUILTIN(ObjectPreventExtensions) {
414 HandleScope scope(isolate);
415 Handle<Object> object = args.atOrUndefined(isolate, 1);
416 if (object->IsJSReceiver()) {
417 MAYBE_RETURN(JSReceiver::PreventExtensions(Handle<JSReceiver>::cast(object),
418 kThrowOnError),
419 isolate->heap()->exception());
420 }
421 return *object;
422 }
423
424 // ES6 section 19.1.2.17 Object.seal ( O )
BUILTIN(ObjectSeal)425 BUILTIN(ObjectSeal) {
426 HandleScope scope(isolate);
427 Handle<Object> object = args.atOrUndefined(isolate, 1);
428 if (object->IsJSReceiver()) {
429 MAYBE_RETURN(JSReceiver::SetIntegrityLevel(Handle<JSReceiver>::cast(object),
430 SEALED, kThrowOnError),
431 isolate->heap()->exception());
432 }
433 return *object;
434 }
435
436 } // namespace internal
437 } // namespace v8
438