[v8-dev] [v8] r13038 committed - - Initialize the result array with holes if we concat a double array i...

codesite-noreply Fri, 23 Nov 2012 09:17:31 -0800

Revision: 13038
Author:   [email protected]
Date:     Thu Nov 22 08:22:57 2012

Log: - Initialize the result array with holes if we concat a doublearray into an object array, since it may cause a marking step while boxinga double.

- Ensure we go holey if we are concatting any holey array.


Review URL: https://chromiumcodereview.appspot.com/11413142
http://code.google.com/p/v8/source/detail?r=13038

Modified:
 /branches/bleeding_edge/src/builtins.cc
 /branches/bleeding_edge/src/factory.cc
 /branches/bleeding_edge/src/heap.cc
 /branches/bleeding_edge/src/objects.cc

=======================================
--- /branches/bleeding_edge/src/builtins.cc     Mon Nov 19 07:31:38 2012
+++ /branches/bleeding_edge/src/builtins.cc     Thu Nov 22 08:22:57 2012
@@ -268,7 +268,7 @@
     maybe_elms = heap->AllocateFixedArrayWithHoles(number_of_elements);
   }
   FixedArrayBase* elms;
-  if (!maybe_elms->To<FixedArrayBase>(&elms)) return maybe_elms;
+  if (!maybe_elms->To(&elms)) return maybe_elms;

   // Fill in the content
   switch (array->GetElementsKind()) {
@@ -394,7 +394,7 @@

   const int len = elms->length();

-  if (to_trim > FixedArrayBase::kHeaderSize / entry_size &&
+  if (to_trim * entry_size > FixedArrayBase::kHeaderSize &&
       elms->IsFixedArray() &&
       !heap->new_space()->Contains(elms)) {

// If we are doing a big trim in old space then we zap the space thatwas

@@ -577,7 +577,7 @@
       if (len > 0) {
         ElementsAccessor* accessor = array->GetElementsAccessor();
         MaybeObject* maybe_failure =

- accessor->CopyElements(array, 0, new_elms, kind, 0, len,elms_obj);+ accessor->CopyElements(NULL, 0, new_elms, kind, 0, len,elms_obj);

         ASSERT(!maybe_failure->IsFailure());
         USE(maybe_failure);
       }
@@ -626,7 +626,7 @@
       if (len > 0) {
         ElementsAccessor* accessor = array->GetElementsAccessor();
         MaybeObject* maybe_failure =

- accessor->CopyElements(array, 0, new_elms, kind, 0, len,elms_obj);+ accessor->CopyElements(NULL, 0, new_elms, kind, 0, len,elms_obj);

         ASSERT(!maybe_failure->IsFailure());
         USE(maybe_failure);
       }
@@ -791,7 +791,7 @@
       ElementsKind kind = array->GetElementsKind();
       ElementsAccessor* accessor = array->GetElementsAccessor();
       MaybeObject* maybe_failure =

- accessor->CopyElements(array, 0, new_elms, kind, to_add, len,elms);+ accessor->CopyElements(NULL, 0, new_elms, kind, to_add, len,elms);

       ASSERT(!maybe_failure->IsFailure());
       USE(maybe_failure);
     }
@@ -936,12 +936,13 @@
                                                              result_len,
                                                              result_len);

+  AssertNoAllocation no_gc;
   if (result_len == 0) return maybe_array;
   if (!maybe_array->To(&result_array)) return maybe_array;

   ElementsAccessor* accessor = object->GetElementsAccessor();
   MaybeObject* maybe_failure =
-      accessor->CopyElements(object, k, result_array->elements(),
+      accessor->CopyElements(NULL, k, result_array->elements(),
                              kind, 0, result_len, elms);
   ASSERT(!maybe_failure->IsFailure());
   USE(maybe_failure);
@@ -1041,9 +1042,10 @@
   if (!maybe_array->To(&result_array)) return maybe_array;

   if (actual_delete_count > 0) {
+    AssertNoAllocation no_gc;
     ElementsAccessor* accessor = array->GetElementsAccessor();
     MaybeObject* maybe_failure =

- accessor->CopyElements(array, actual_start,result_array->elements(),+ accessor->CopyElements(NULL, actual_start,result_array->elements(),elements_kind, 0, actual_delete_count,elms_obj);// Cannot fail since the origin and target array are of the sameelements

     // kind.
@@ -1103,19 +1105,21 @@

MaybeObject* maybe_obj =heap->AllocateUninitializedFixedArray(capacity);

       if (!maybe_obj->To(&new_elms)) return maybe_obj;

+      AssertNoAllocation no_gc;
+
       ElementsKind kind = array->GetElementsKind();
       ElementsAccessor* accessor = array->GetElementsAccessor();
       if (actual_start > 0) {
         // Copy the part before actual_start as is.
         MaybeObject* maybe_failure = accessor->CopyElements(
-            array, 0, new_elms, kind, 0, actual_start, elms);
+            NULL, 0, new_elms, kind, 0, actual_start, elms);
         ASSERT(!maybe_failure->IsFailure());
         USE(maybe_failure);
       }
       const int to_copy = len - actual_delete_count - actual_start;
       if (to_copy > 0) {
         MaybeObject* maybe_failure = accessor->CopyElements(
-            array, actual_start + actual_delete_count, new_elms, kind,
+            NULL, actual_start + actual_delete_count, new_elms, kind,
             actual_start + item_count, to_copy, elms);
         ASSERT(!maybe_failure->IsFailure());
         USE(maybe_failure);
@@ -1177,6 +1181,8 @@
   int n_arguments = args.length();
   int result_len = 0;
   ElementsKind elements_kind = GetInitialFastElementsKind();
+  bool has_double = false;
+  bool is_holey = false;
   for (int i = 0; i < n_arguments; i++) {
     Object* arg = args[i];
     if (!arg->IsJSArray() ||
@@ -1198,18 +1204,28 @@
     }

     ElementsKind arg_kind = JSArray::cast(arg)->map()->elements_kind();
+    has_double = has_double || IsFastDoubleElementsKind(arg_kind);
+    is_holey = is_holey || IsFastHoleyElementsKind(arg_kind);
     if (IsMoreGeneralElementsKindTransition(elements_kind, arg_kind)) {
-      elements_kind = IsFastHoleyElementsKind(elements_kind)
-          ? GetHoleyElementsKind(arg_kind) : arg_kind;
+      elements_kind = arg_kind;
     }
   }

+  if (is_holey) elements_kind = GetHoleyElementsKind(elements_kind);
+
+  // If a double array is concatted into a fast elements array, the fast
+  // elements array needs to be initialized to contain proper holes, since
+  // boxing doubles may cause incremental marking.
+  ArrayStorageAllocationMode mode =
+      has_double && IsFastObjectElementsKind(elements_kind)

+ ? INITIALIZE_ARRAY_ELEMENTS_WITH_HOLE :DONT_INITIALIZE_ARRAY_ELEMENTS;

   JSArray* result_array;
   // Allocate result.
   MaybeObject* maybe_array =
       heap->AllocateJSArrayAndStorage(elements_kind,
                                       result_len,
-                                      result_len);
+                                      result_len,
+                                      mode);
   if (!maybe_array->To(&result_array)) return maybe_array;
   if (result_len == 0) return result_array;

=======================================
--- /branches/bleeding_edge/src/factory.cc      Wed Nov 21 02:01:05 2012
+++ /branches/bleeding_edge/src/factory.cc      Thu Nov 22 08:22:57 2012
@@ -950,6 +950,9 @@
 Handle<JSArray> Factory::NewJSArray(int capacity,
                                     ElementsKind elements_kind,
                                     PretenureFlag pretenure) {
+  if (capacity != 0) {
+    elements_kind = GetHoleyElementsKind(elements_kind);
+  }
   CALL_HEAP_FUNCTION(isolate(),
                      isolate()->heap()->AllocateJSArrayAndStorage(
                          elements_kind,
=======================================
--- /branches/bleeding_edge/src/heap.cc Thu Nov 22 05:04:11 2012
+++ /branches/bleeding_edge/src/heap.cc Thu Nov 22 08:22:57 2012
@@ -4232,9 +4232,6 @@
     ArrayStorageAllocationMode mode,
     PretenureFlag pretenure) {
   ASSERT(capacity >= length);
-  if (length != 0 && mode == INITIALIZE_ARRAY_ELEMENTS_WITH_HOLE) {
-    elements_kind = GetHoleyElementsKind(elements_kind);
-  }
   MaybeObject* maybe_array = AllocateJSArray(elements_kind, pretenure);
   JSArray* array;
   if (!maybe_array->To(&array)) return maybe_array;
=======================================
--- /branches/bleeding_edge/src/objects.cc      Thu Nov 22 02:25:22 2012
+++ /branches/bleeding_edge/src/objects.cc      Thu Nov 22 08:22:57 2012
@@ -10492,6 +10492,8 @@
   if (IsFastHoleyElementsKind(from_kind)) {
     to_kind = GetHoleyElementsKind(to_kind);
   }
+
+  if (from_kind == to_kind) return this;

   Isolate* isolate = GetIsolate();
   if (elements() == isolate->heap()->empty_fixed_array() ||

--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev

[v8-dev] [v8] r13038 committed - - Initialize the result array with holes if we concat a double array i...

Reply via email to