Changeset 34659 in webkit for trunk/JavaScriptCore

Timestamp:

Jun 19, 2008, 10:29:29 AM (17 years ago)

Author:

[email protected]

Message:

Reviewed by Darin.

Prepare JavaScript heap for being per-thread.

Location:

trunk/JavaScriptCore

Files:

• API/JSBase.cpp (modified) (2 diffs)
• API/JSCallbackObjectFunctions.h (modified) (1 diff)
• API/JSClassRef.cpp (modified) (1 diff)
• API/JSContextRef.cpp (modified) (1 diff)
• API/JSObjectRef.cpp (modified) (5 diffs)
• API/JSValueRef.cpp (modified) (1 diff)
• ChangeLog (modified) (1 diff)
• JavaScriptCore.exp (modified) (7 diffs)
• JavaScriptCore.xcodeproj/project.pbxproj (modified) (2 diffs)
• VM/CodeGenerator.cpp (modified) (1 diff)
• VM/CodeGenerator.h (modified) (1 diff)
• VM/JSPropertyNameIterator.cpp (modified) (3 diffs)
• VM/Machine.cpp (modified) (29 diffs)
• VM/RegisterFile.h (modified) (1 diff)
• VM/RegisterFileStack.h (modified) (1 diff)
• kjs/AllInOneFile.cpp (modified) (1 diff)
• kjs/ArrayPrototype.cpp (modified) (27 diffs)
• kjs/BooleanObject.cpp (modified) (4 diffs)
• kjs/ExecState.h (modified) (2 diffs)
• kjs/FunctionPrototype.cpp (modified) (4 diffs)
• kjs/InitializeThreading.cpp (modified) (2 diffs)
• kjs/JSActivation.cpp (modified) (1 diff)
• kjs/JSArray.cpp (modified) (2 diffs)
• kjs/JSFunction.cpp (modified) (11 diffs)
• kjs/JSGlobalData.cpp (modified) (4 diffs)
• kjs/JSGlobalData.h (modified) (3 diffs)
• kjs/JSGlobalObject.cpp (modified) (9 diffs)
• kjs/JSGlobalObject.h (modified) (3 diffs)
• kjs/JSImmediate.cpp (modified) (1 diff)
• kjs/JSImmediate.h (modified) (1 diff)
• kjs/JSLock.cpp (modified) (1 diff)
• kjs/JSObject.cpp (modified) (6 diffs)
• kjs/JSObject.h (modified) (3 diffs)
• kjs/JSString.h (modified) (1 diff)
• kjs/JSValue.cpp (modified) (2 diffs)
• kjs/JSValue.h (modified) (10 diffs)
• kjs/MathObject.cpp (modified) (9 diffs)
• kjs/NumberObject.cpp (modified) (18 diffs)
• kjs/PropertyMap.h (modified) (2 diffs)
• kjs/RegExpObject.cpp (modified) (10 diffs)
• kjs/RegExpObject.h (modified) (1 diff)
• kjs/Shell.cpp (modified) (7 diffs)
• kjs/collector.cpp (modified) (41 diffs)
• kjs/collector.h (modified) (6 diffs)
• kjs/date_object.cpp (modified) (51 diffs)
• kjs/error_object.cpp (modified) (7 diffs)
• kjs/identifier.h (modified) (1 diff)
• kjs/internal.cpp (modified) (2 diffs)
• kjs/interpreter.cpp (modified) (1 diff)
• kjs/list.cpp (modified) (2 diffs)
• kjs/list.h (modified) (3 diffs)
• kjs/lookup.h (modified) (2 diffs)
• kjs/nodes.cpp (modified) (7 diffs)
• kjs/nodes.h (modified) (1 diff)
• kjs/object_object.cpp (modified) (4 diffs)
• kjs/protect.h (modified) (1 diff)
• kjs/string_object.cpp (modified) (51 diffs)
• kjs/string_object.h (modified) (2 diffs)
• kjs/ustring.h (modified) (1 diff)

trunk/JavaScriptCore/API/JSBase.cpp

@@ -29 +29 @@
 
 #include "APICast.h"
+#include "completion.h"
 #include <kjs/ExecState.h>
 #include <kjs/InitializeThreading.h>
@@ -86 +87 @@
         initializeThreading();
 
+    // It might seem that we have a context passed to this function, and can use toJS(ctx)->heap(), but the parameter is likely to be NULL,
+    // and it may actually be garbage for some clients (most likely, because of JSGarbageCollect being called after releasing the context).
+
     JSLock lock;
-    if (!Collector::isBusy())
-        Collector::collect();
+
+    // FIXME: It would be good to avoid creating a JSGlobalData instance if it didn't exist for this thread yet.
+    Heap* heap = JSGlobalData::threadInstance().heap;
+    if (!heap->isBusy())
+        heap->collect();
+
+    // FIXME: Similarly, we shouldn't create a shared instance here.
+    heap = JSGlobalData::sharedInstance().heap;
+    if (!heap->isBusy())
+        heap->collect();
+
     // FIXME: Perhaps we should trigger a second mark and sweep
     // once the garbage collector is done if this is called when

trunk/JavaScriptCore/API/JSCallbackObjectFunctions.h

@@ -471 +471 @@
             if (StaticFunctionEntry* entry = staticFunctions->get(propertyName.ustring().rep())) {
                 if (JSObjectCallAsFunctionCallback callAsFunction = entry->callAsFunction) {
-                    JSObject* o = new JSCallbackFunction(exec, callAsFunction, propertyName);
+                    JSObject* o = new (exec) JSCallbackFunction(exec, callAsFunction, propertyName);
                     thisObj->putDirect(propertyName, o, entry->attributes);
                     return o;

trunk/JavaScriptCore/API/JSClassRef.cpp

@@ -163 +163 @@
         if (!parentPrototype)
             parentPrototype = exec->dynamicGlobalObject()->objectPrototype();
-        cachedPrototype = new JSCallbackObject<JSObject>(exec, prototypeClass, parentPrototype, this); // set ourself as the object's private data, so it can clear our reference on destruction
+        cachedPrototype = new (exec) JSCallbackObject<JSObject>(exec, prototypeClass, parentPrototype, this); // set ourself as the object's private data, so it can clear our reference on destruction
     }
     return cachedPrototype;

trunk/JavaScriptCore/API/JSContextRef.cpp

@@ -45 +45 @@
 
     if (!globalObjectClass) {
-        JSGlobalObject* globalObject = new JSGlobalObject;
+        JSGlobalObject* globalObject = new (JSGlobalObject::Shared) JSGlobalObject;
         return JSGlobalContextRetain(toGlobalRef(globalObject->globalExec()));
     }
 
-    JSGlobalObject* globalObject = new JSCallbackObject<JSGlobalObject>(globalObjectClass);
+    JSGlobalObject* globalObject = new (JSGlobalObject::Shared) JSCallbackObject<JSGlobalObject>(globalObjectClass);
     JSGlobalContextRef ctx = toGlobalRef(globalObject->globalExec());
     JSValue* prototype = globalObjectClass->prototype(ctx);

trunk/JavaScriptCore/API/JSObjectRef.cpp

@@ -75 +75 @@
 
     if (!jsClass)
-        return toRef(new JSObject(exec->lexicalGlobalObject()->objectPrototype())); // slightly more efficient
+        return toRef(new (exec) JSObject(exec->lexicalGlobalObject()->objectPrototype())); // slightly more efficient
 
     JSValue* jsPrototype = jsClass->prototype(ctx);
@@ -81 +81 @@
         jsPrototype = exec->lexicalGlobalObject()->objectPrototype();
 
-    return toRef(new JSCallbackObject<JSObject>(exec, jsClass, jsPrototype, data));
+    return toRef(new (exec) JSCallbackObject<JSObject>(exec, jsClass, jsPrototype, data));
 }
 
@@ -90 +90 @@
     Identifier nameID = name ? Identifier(exec, toJS(name)) : Identifier(exec, "anonymous");
     
-    return toRef(new JSCallbackFunction(exec, callAsFunction, nameID));
+    return toRef(new (exec) JSCallbackFunction(exec, callAsFunction, nameID));
 }
 
@@ -102 +102 @@
         : exec->dynamicGlobalObject()->objectPrototype();
     
-    JSCallbackConstructor* constructor = new JSCallbackConstructor(exec, jsClass, callAsConstructor);
+    JSCallbackConstructor* constructor = new (exec) JSCallbackConstructor(exec, jsClass, callAsConstructor);
     constructor->putDirect(exec->propertyNames().prototype, jsPrototype, DontEnum | DontDelete | ReadOnly);
     return toRef(constructor);
@@ -119 +119 @@
     ArgList args;
     for (unsigned i = 0; i < parameterCount; i++)
-        args.append(jsString(UString(toJS(parameterNames[i]))));
-    args.append(jsString(UString(bodyRep)));
+        args.append(jsString(exec, UString(toJS(parameterNames[i]))));
+    args.append(jsString(exec, UString(bodyRep)));
 
     JSObject* result = exec->dynamicGlobalObject()->functionConstructor()->construct(exec, args, nameID, UString(sourceURLRep), startingLineNumber);

trunk/JavaScriptCore/API/JSValueRef.cpp

@@ -177 +177 @@
 }
 
-JSValueRef JSValueMakeNumber(JSContextRef, double value)
-{
-    JSLock lock;
-    return toRef(jsNumber(value));
-}
-
-JSValueRef JSValueMakeString(JSContextRef, JSStringRef string)
+JSValueRef JSValueMakeNumber(JSContextRef ctx, double value)
+{
+    JSLock lock;
+    return toRef(jsNumber(toJS(ctx), value));
+}
+
+JSValueRef JSValueMakeString(JSContextRef ctx, JSStringRef string)
 {
     JSLock lock;
     UString::Rep* rep = toJS(string);
-    return toRef(jsString(UString(rep)));
+    return toRef(jsString(toJS(ctx), UString(rep)));
 }
 

trunk/JavaScriptCore/ChangeLog

@@ +1 @@
+2008-06-17  Alexey Proskuryakov  <[email protected]>
+
+        Reviewed by Darin.
+
+        Prepare JavaScript heap for being per-thread.
+
+        * kjs/ExecState.h: Shuffle includes, making it possible to include ExecState.h in JSValue.h.
+        (KJS::ExecState::heap): Added an accessor.
+
+        * API/JSBase.cpp: (JSGarbageCollect): Collect both shared and per-thread heaps.
+
+        * API/JSContextRef.cpp: (JSGlobalContextCreate): When allocating JSGlobalObject, indicate
+        that it belongs to a shared heap.
+
+        * JavaScriptCore.xcodeproj/project.pbxproj:
+        * kjs/AllInOneFile.cpp:
+        Moved JSGlobalObject.cpp to AllInOneFile, as a build fix for inlineAllocate magic.
+
+        * VM/CodeGenerator.h: (KJS::CodeGenerator::globalExec): Added an accessor (working via
+        m_scopeChain).
+
+        * VM/RegisterFile.h:
+        (KJS::RegisterFile::mark):
+        * VM/RegisterFileStack.h:
+        (KJS::RegisterFileStack::mark):
+        Made these pseudo-mark functions take Heap*.
+
+        * kjs/InitializeThreading.cpp:
+        (KJS::initializeThreading): Initialize heap introspector.
+
+        * kjs/JSGlobalData.h: Added Heap to the structure.
+
+        * kjs/JSGlobalData.cpp:
+        (KJS::JSGlobalData::JSGlobalData): Initialize Heap.
+        (KJS::JSGlobalData::sharedInstance): Added a method to access shared global data instance
+        for legacy clients.
+
+        * kjs/JSGlobalObject.cpp:
+        (KJS::JSGlobalObject::~JSGlobalObject): Changed to work with per-thread head; fixed list
+        maintenance logic.
+        (KJS::JSGlobalObject::init): Changed to work with per-thread head.
+        (KJS::JSGlobalObject::put): Assert that a cross-heap operation is not being attempted.
+        (KJS::JSGlobalObject::reset): Pass ExecState* where now required.
+        (KJS::JSGlobalObject::mark): Pass the current heap to RegisterFileStack::mark.
+        (KJS::JSGlobalObject::operator new): Overload operator new to use per-thread or shared heap.
+        * kjs/JSGlobalObject.h: Removed static s_head member.
+
+        * kjs/PropertyMap.h: (KJS::PropertyMap::PropertyMap): Removed unused SavedProperty.
+
+        * kjs/collector.h: Turned Collector into an actual object with its own data, renamed to Heap.
+        (KJS::Heap::initializeHeapIntrospector): Added.
+        (KJS::Heap::heap): Added a method to determine which heap a JSValue is in, if any.
+        (KJS::Heap::allocate): Made non-static.
+        (KJS::Heap::inlineAllocateNumber): Ditto.
+        (KJS::Heap::markListSet): Ditto.
+        (KJS::Heap::cellBlock): Ditto.
+        (KJS::Heap::cellOffset): Ditto.
+        (KJS::Heap::isCellMarked): Ditto.
+        (KJS::Heap::markCell): Ditto.
+        (KJS::Heap::reportExtraMemoryCost): Ditto.
+        (KJS::CollectorBlock): Added a back-reference to Heap for Heap::heap() method.
+        (KJS::SmallCellCollectorBlock): Ditto.
+
+        * kjs/collector.cpp: Changed MIN_ARRAY_SIZE to a #define to avoid a PIC branch. Removed
+        main thread related machinery.
+        (KJS::Heap::Heap): Initialize the newly added data members.
+        (KJS::allocateBlock): Marked NEVER_INLINE, as this is a rare case that uses a PIC branch.
+        Moved static pagesize to the class to make it safely initialized.
+        (KJS::Heap::heapAllocate): Initialize heap back reference after a new block is allocated.
+        (KJS::Heap::registerThread): Removed introspector initialization, as it is now performed
+        in InitializeThreading.cpp.
+        (KJS::Heap::markOtherThreadConservatively): Assert that the "other thread" case only occurs
+        for legacy clients using a shared heap.
+        (KJS::Heap::markStackObjectsConservatively): Moved fastMallocForbid/Allow down here, since
+        it doesn't need to be forbidden during other GC phases.
+
+        * kjs/JSImmediate.h:
+        (KJS::jsUndefined):
+        (KJS::jsNull):
+        (KJS::jsBoolean):
+        Moved from JSvalue.h, to make these usable in files that cannot include JSValue.h (such
+        as list.h).
+
+        * API/JSCallbackObjectFunctions.h:
+        (KJS::::staticFunctionGetter):
+        * API/JSClassRef.cpp:
+        (OpaqueJSClass::prototype):
+        * API/JSObjectRef.cpp:
+        (JSObjectMake):
+        (JSObjectMakeFunctionWithCallback):
+        (JSObjectMakeConstructor):
+        (JSObjectMakeFunction):
+        * API/JSValueRef.cpp:
+        (JSValueMakeNumber):
+        (JSValueMakeString):
+        * JavaScriptCore.exp:
+        * VM/CodeGenerator.cpp:
+        (KJS::CodeGenerator::emitLoad):
+        * VM/JSPropertyNameIterator.cpp:
+        (KJS::JSPropertyNameIterator::create):
+        (KJS::JSPropertyNameIterator::next):
+        * VM/Machine.cpp:
+        (KJS::jsAddSlowCase):
+        (KJS::jsAdd):
+        (KJS::jsTypeStringForValue):
+        (KJS::scopeChainForCall):
+        (KJS::Machine::throwException):
+        (KJS::Machine::execute):
+        (KJS::Machine::privateExecute):
+        (KJS::Machine::retrieveArguments):
+        * kjs/ArrayPrototype.cpp:
+        (KJS::arrayProtoFuncToString):
+        (KJS::arrayProtoFuncToLocaleString):
+        (KJS::arrayProtoFuncJoin):
+        (KJS::arrayProtoFuncConcat):
+        (KJS::arrayProtoFuncPop):
+        (KJS::arrayProtoFuncPush):
+        (KJS::arrayProtoFuncShift):
+        (KJS::arrayProtoFuncSlice):
+        (KJS::arrayProtoFuncSplice):
+        (KJS::arrayProtoFuncUnShift):
+        (KJS::arrayProtoFuncFilter):
+        (KJS::arrayProtoFuncMap):
+        (KJS::arrayProtoFuncEvery):
+        (KJS::arrayProtoFuncForEach):
+        (KJS::arrayProtoFuncSome):
+        (KJS::arrayProtoFuncIndexOf):
+        (KJS::arrayProtoFuncLastIndexOf):
+        (KJS::ArrayConstructor::ArrayConstructor):
+        (KJS::ArrayConstructor::construct):
+        (KJS::ArrayConstructor::callAsFunction):
+        * kjs/BooleanObject.cpp:
+        (KJS::BooleanPrototype::BooleanPrototype):
+        (KJS::booleanProtoFuncToString):
+        (KJS::BooleanConstructor::BooleanConstructor):
+        (KJS::BooleanConstructor::construct):
+        * kjs/FunctionPrototype.cpp:
+        (KJS::FunctionPrototype::FunctionPrototype):
+        (KJS::functionProtoFuncToString):
+        (KJS::FunctionConstructor::FunctionConstructor):
+        (KJS::FunctionConstructor::construct):
+        * kjs/JSActivation.cpp:
+        (KJS::JSActivation::createArgumentsObject):
+        * kjs/JSArray.cpp:
+        (KJS::JSArray::JSArray):
+        (KJS::JSArray::lengthGetter):
+        * kjs/JSFunction.cpp:
+        (KJS::JSFunction::lengthGetter):
+        (KJS::JSFunction::construct):
+        (KJS::Arguments::Arguments):
+        (KJS::encode):
+        (KJS::decode):
+        (KJS::globalFuncParseInt):
+        (KJS::globalFuncParseFloat):
+        (KJS::globalFuncEscape):
+        (KJS::globalFuncUnescape):
+        (KJS::PrototypeFunction::PrototypeFunction):
+        (KJS::PrototypeReflexiveFunction::PrototypeReflexiveFunction):
+        * kjs/JSImmediate.cpp:
+        (KJS::JSImmediate::toObject):
+        * kjs/JSLock.cpp:
+        (KJS::JSLock::registerThread):
+        * kjs/JSObject.cpp:
+        (KJS::JSObject::put):
+        (KJS::JSObject::defineGetter):
+        (KJS::JSObject::defineSetter):
+        (KJS::Error::create):
+        * kjs/JSObject.h:
+        (KJS::JSObject::putDirect):
+        * kjs/JSString.h:
+        (KJS::JSString::JSString):
+        * kjs/JSValue.cpp:
+        (KJS::JSCell::operator new):
+        (KJS::jsString):
+        (KJS::jsOwnedString):
+        * kjs/JSValue.h:
+        (KJS::JSNumberCell::operator new):
+        (KJS::jsNumberCell):
+        (KJS::jsNaN):
+        (KJS::jsNumber):
+        (KJS::JSCell::marked):
+        (KJS::JSCell::mark):
+        (KJS::JSValue::toJSNumber):
+        * kjs/MathObject.cpp:
+        (KJS::MathObject::getValueProperty):
+        (KJS::mathProtoFuncAbs):
+        (KJS::mathProtoFuncACos):
+        (KJS::mathProtoFuncASin):
+        (KJS::mathProtoFuncATan):
+        (KJS::mathProtoFuncATan2):
+        (KJS::mathProtoFuncCeil):
+        (KJS::mathProtoFuncCos):
+        (KJS::mathProtoFuncExp):
+        (KJS::mathProtoFuncFloor):
+        (KJS::mathProtoFuncLog):
+        (KJS::mathProtoFuncMax):
+        (KJS::mathProtoFuncMin):
+        (KJS::mathProtoFuncPow):
+        (KJS::mathProtoFuncRandom):
+        (KJS::mathProtoFuncRound):
+        (KJS::mathProtoFuncSin):
+        (KJS::mathProtoFuncSqrt):
+        (KJS::mathProtoFuncTan):
+        * kjs/NumberObject.cpp:
+        (KJS::NumberPrototype::NumberPrototype):
+        (KJS::numberProtoFuncToString):
+        (KJS::numberProtoFuncToLocaleString):
+        (KJS::numberProtoFuncToFixed):
+        (KJS::numberProtoFuncToExponential):
+        (KJS::numberProtoFuncToPrecision):
+        (KJS::NumberConstructor::NumberConstructor):
+        (KJS::NumberConstructor::getValueProperty):
+        (KJS::NumberConstructor::construct):
+        (KJS::NumberConstructor::callAsFunction):
+        * kjs/RegExpObject.cpp:
+        (KJS::RegExpPrototype::RegExpPrototype):
+        (KJS::regExpProtoFuncToString):
+        (KJS::RegExpObject::getValueProperty):
+        (KJS::RegExpConstructor::RegExpConstructor):
+        (KJS::RegExpMatchesArray::fillArrayInstance):
+        (KJS::RegExpConstructor::arrayOfMatches):
+        (KJS::RegExpConstructor::getBackref):
+        (KJS::RegExpConstructor::getLastParen):
+        (KJS::RegExpConstructor::getLeftContext):
+        (KJS::RegExpConstructor::getRightContext):
+        (KJS::RegExpConstructor::getValueProperty):
+        (KJS::RegExpConstructor::construct):
+        * kjs/RegExpObject.h:
+        * kjs/Shell.cpp:
+        (GlobalObject::GlobalObject):
+        (functionGC):
+        (functionRun):
+        (functionReadline):
+        (jscmain):
+        * kjs/date_object.cpp:
+        (KJS::formatLocaleDate):
+        (KJS::DatePrototype::DatePrototype):
+        (KJS::DateConstructor::DateConstructor):
+        (KJS::DateConstructor::construct):
+        (KJS::DateConstructor::callAsFunction):
+        (KJS::DateFunction::DateFunction):
+        (KJS::DateFunction::callAsFunction):
+        (KJS::dateProtoFuncToString):
+        (KJS::dateProtoFuncToUTCString):
+        (KJS::dateProtoFuncToDateString):
+        (KJS::dateProtoFuncToTimeString):
+        (KJS::dateProtoFuncToLocaleString):
+        (KJS::dateProtoFuncToLocaleDateString):
+        (KJS::dateProtoFuncToLocaleTimeString):
+        (KJS::dateProtoFuncValueOf):
+        (KJS::dateProtoFuncGetTime):
+        (KJS::dateProtoFuncGetFullYear):
+        (KJS::dateProtoFuncGetUTCFullYear):
+        (KJS::dateProtoFuncToGMTString):
+        (KJS::dateProtoFuncGetMonth):
+        (KJS::dateProtoFuncGetUTCMonth):
+        (KJS::dateProtoFuncGetDate):
+        (KJS::dateProtoFuncGetUTCDate):
+        (KJS::dateProtoFuncGetDay):
+        (KJS::dateProtoFuncGetUTCDay):
+        (KJS::dateProtoFuncGetHours):
+        (KJS::dateProtoFuncGetUTCHours):
+        (KJS::dateProtoFuncGetMinutes):
+        (KJS::dateProtoFuncGetUTCMinutes):
+        (KJS::dateProtoFuncGetSeconds):
+        (KJS::dateProtoFuncGetUTCSeconds):
+        (KJS::dateProtoFuncGetMilliSeconds):
+        (KJS::dateProtoFuncGetUTCMilliseconds):
+        (KJS::dateProtoFuncGetTimezoneOffset):
+        (KJS::dateProtoFuncSetTime):
+        (KJS::setNewValueFromTimeArgs):
+        (KJS::setNewValueFromDateArgs):
+        (KJS::dateProtoFuncSetYear):
+        (KJS::dateProtoFuncGetYear):
+        * kjs/error_object.cpp:
+        (KJS::ErrorPrototype::ErrorPrototype):
+        (KJS::errorProtoFuncToString):
+        (KJS::ErrorConstructor::ErrorConstructor):
+        (KJS::ErrorConstructor::construct):
+        (KJS::NativeErrorPrototype::NativeErrorPrototype):
+        (KJS::NativeErrorConstructor::NativeErrorConstructor):
+        (KJS::NativeErrorConstructor::construct):
+        * kjs/identifier.h:
+        * kjs/internal.cpp:
+        (KJS::StringObject::create):
+        (KJS::JSString::lengthGetter):
+        (KJS::JSString::indexGetter):
+        (KJS::JSString::indexNumericPropertyGetter):
+        * kjs/interpreter.cpp:
+        * kjs/list.cpp:
+        (KJS::ArgList::slowAppend):
+        * kjs/list.h:
+        * kjs/lookup.h:
+        (KJS::staticFunctionGetter):
+        (KJS::cacheGlobalObject):
+        * kjs/nodes.cpp:
+        (KJS::Node::emitThrowError):
+        (KJS::StringNode::emitCode):
+        (KJS::ArrayNode::emitCode):
+        (KJS::FuncDeclNode::makeFunction):
+        (KJS::FuncExprNode::makeFunction):
+        * kjs/nodes.h:
+        * kjs/object_object.cpp:
+        (KJS::ObjectPrototype::ObjectPrototype):
+        (KJS::objectProtoFuncToLocaleString):
+        (KJS::objectProtoFuncToString):
+        (KJS::ObjectConstructor::ObjectConstructor):
+        (KJS::ObjectConstructor::construct):
+        * kjs/protect.h:
+        (KJS::gcProtect):
+        (KJS::gcUnprotect):
+        * kjs/string_object.cpp:
+        (KJS::StringObject::StringObject):
+        (KJS::StringPrototype::StringPrototype):
+        (KJS::replace):
+        (KJS::stringProtoFuncCharAt):
+        (KJS::stringProtoFuncCharCodeAt):
+        (KJS::stringProtoFuncConcat):
+        (KJS::stringProtoFuncIndexOf):
+        (KJS::stringProtoFuncLastIndexOf):
+        (KJS::stringProtoFuncMatch):
+        (KJS::stringProtoFuncSearch):
+        (KJS::stringProtoFuncReplace):
+        (KJS::stringProtoFuncSlice):
+        (KJS::stringProtoFuncSplit):
+        (KJS::stringProtoFuncSubstr):
+        (KJS::stringProtoFuncSubstring):
+        (KJS::stringProtoFuncToLowerCase):
+        (KJS::stringProtoFuncToUpperCase):
+        (KJS::stringProtoFuncToLocaleLowerCase):
+        (KJS::stringProtoFuncToLocaleUpperCase):
+        (KJS::stringProtoFuncLocaleCompare):
+        (KJS::stringProtoFuncBig):
+        (KJS::stringProtoFuncSmall):
+        (KJS::stringProtoFuncBlink):
+        (KJS::stringProtoFuncBold):
+        (KJS::stringProtoFuncFixed):
+        (KJS::stringProtoFuncItalics):
+        (KJS::stringProtoFuncStrike):
+        (KJS::stringProtoFuncSub):
+        (KJS::stringProtoFuncSup):
+        (KJS::stringProtoFuncFontcolor):
+        (KJS::stringProtoFuncFontsize):
+        (KJS::stringProtoFuncAnchor):
+        (KJS::stringProtoFuncLink):
+        (KJS::StringConstructor::StringConstructor):
+        (KJS::StringConstructor::construct):
+        (KJS::StringConstructor::callAsFunction):
+        (KJS::StringConstructorFunction::StringConstructorFunction):
+        (KJS::StringConstructorFunction::callAsFunction):
+        * kjs/string_object.h:
+        (KJS::StringObjectThatMasqueradesAsUndefined::StringObjectThatMasqueradesAsUndefined):
+        * kjs/ustring.h:
+        Updated for the above changes.
+
 2008-06-17  Timothy Hatcher  <[email protected]>
 

trunk/JavaScriptCore/JavaScriptCore.exp

@@ -98 +98 @@
 __ZN3KJS11PropertyMapD1Ev
 __ZN3KJS12DateInstance4infoE
+__ZN3KJS12JSGlobalData14sharedInstanceEv
 __ZN3KJS12JSGlobalData14threadInstanceEv
 __ZN3KJS12PropertySlot15undefinedGetterEPNS_9ExecStateERKNS_10IdentifierERKS0_
@@ -107 +108 @@
 __ZN3KJS12StringObject3putEPNS_9ExecStateERKNS_10IdentifierEPNS_7JSValueE
 __ZN3KJS12StringObject4infoE
-__ZN3KJS12StringObjectC2EPNS_8JSObjectERKNS_7UStringE
+__ZN3KJS12StringObjectC2EPNS_9ExecStateEPNS_8JSObjectERKNS_7UStringE
 __ZN3KJS13CodeGenerator21setDumpsGeneratedCodeEb
 __ZN3KJS13StatementNode6setLocEii
-__ZN3KJS13jsOwnedStringERKNS_7UStringE
+__ZN3KJS13jsOwnedStringEPNS_9ExecStateERKNS_7UStringE
 __ZN3KJS14JSGlobalObject10globalExecEv
 __ZN3KJS14JSGlobalObject12defineGetterEPNS_9ExecStateERKNS_10IdentifierEPNS_8JSObjectE
@@ -121 +122 @@
 __ZN3KJS14JSGlobalObject4markEv
 __ZN3KJS14JSGlobalObjectD2Ev
+__ZN3KJS14JSGlobalObjectnwEm
+__ZN3KJS14JSGlobalObjectnwEmNS0_9SharedTagE
 __ZN3KJS15JSWrapperObject4markEv
 __ZN3KJS16InternalFunction11getCallDataERNS_8CallDataE
@@ -135 +138 @@
 __ZN3KJS19initializeThreadingEv
 __ZN3KJS23objectProtoFuncToStringEPNS_9ExecStateEPNS_8JSObjectERKNS_7ArgListE
+__ZN3KJS4Heap14allocateNumberEm
+__ZN3KJS4Heap15recordExtraCostEm
+__ZN3KJS4Heap17globalObjectCountEv
+__ZN3KJS4Heap20protectedObjectCountEv
+__ZN3KJS4Heap23collectOnMainThreadOnlyEPNS_7JSValueE
+__ZN3KJS4Heap25protectedObjectTypeCountsEv
+__ZN3KJS4Heap26protectedGlobalObjectCountEv
+__ZN3KJS4Heap4heapEPKNS_7JSValueE
+__ZN3KJS4Heap4sizeEv
+__ZN3KJS4Heap7collectEv
+__ZN3KJS4Heap7protectEPNS_7JSValueE
+__ZN3KJS4Heap8allocateEm
+__ZN3KJS4Heap9unprotectEPNS_7JSValueE
 __ZN3KJS5equalEPKNS_7UString3RepES3_
 __ZN3KJS6JSCell11getCallDataERNS_8CallDataE
@@ -143 +159 @@
 __ZN3KJS6JSCell3putEPNS_9ExecStateEjPNS_7JSValueE
 __ZN3KJS6JSCell9getObjectEv
-__ZN3KJS6JSCellnwEm
+__ZN3KJS6JSCellnwEmPNS_9ExecStateE
 __ZN3KJS6JSLock12DropAllLocksC1Ev
 __ZN3KJS6JSLock12DropAllLocksD1Ev
@@ -197 +213 @@
 __ZN3KJS8Profiler14startProfilingEPNS_9ExecStateERKNS_7UStringE
 __ZN3KJS8Profiler8profilerEv
-__ZN3KJS8jsStringEPKc
-__ZN3KJS8jsStringERKNS_7UStringE
-__ZN3KJS9Collector14allocateNumberEm
-__ZN3KJS9Collector15recordExtraCostEm
-__ZN3KJS9Collector17globalObjectCountEv
-__ZN3KJS9Collector20protectedObjectCountEv
-__ZN3KJS9Collector23collectOnMainThreadOnlyEPNS_7JSValueE
-__ZN3KJS9Collector25protectedObjectTypeCountsEv
-__ZN3KJS9Collector26protectedGlobalObjectCountEv
-__ZN3KJS9Collector4sizeEv
-__ZN3KJS9Collector7collectEv
-__ZN3KJS9Collector7protectEPNS_7JSValueE
-__ZN3KJS9Collector9unprotectEPNS_7JSValueE
+__ZN3KJS8jsStringEPNS_9ExecStateEPKc
+__ZN3KJS8jsStringEPNS_9ExecStateERKNS_7UStringE
 __ZN3KJSeqERKNS_7UStringEPKc
 __ZN3KJSgtERKNS_7UStringES2_
@@ -247 +252 @@
 __ZNK3KJS16JSVariableObject16isVariableObjectEv
 __ZNK3KJS16JSVariableObject21getPropertyAttributesEPNS_9ExecStateERKNS_10IdentifierERj
-__ZNK3KJS17DebuggerCallFrame4typeEv
 __ZNK3KJS17DebuggerCallFrame10thisObjectEv
 __ZNK3KJS17DebuggerCallFrame12functionNameEv
+__ZNK3KJS17DebuggerCallFrame4typeEv
 __ZNK3KJS17DebuggerCallFrame8evaluateERKNS_7UStringERPNS_7JSValueE
 __ZNK3KJS4Node8toStringEv

trunk/JavaScriptCore/JavaScriptCore.xcodeproj/project.pbxproj

@@ -103 +103 @@
                 14D797810DAC3307001A9F05 /* RegisterFileStack.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 14D7977F0DAC3307001A9F05 /* RegisterFileStack.cpp */; };
                 14DA81900D99FD2000B0A4FB /* JSActivation.h in Headers */ = {isa = PBXBuildFile; fileRef = 14DA818E0D99FD2000B0A4FB /* JSActivation.h */; };
-                14DE0D690D02431400AACCA2 /* JSGlobalObject.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 14DE0D680D02431400AACCA2 /* JSGlobalObject.cpp */; };
                 14E0FF120DBAAED00007C0AB /* Machine.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 149B15E70D81F986009CB8C7 /* Machine.cpp */; settings = {COMPILER_FLAGS = "-fno-tree-pre"; }; };
                 14F252570D08DD8D004ECFFF /* JSVariableObject.h in Headers */ = {isa = PBXBuildFile; fileRef = 14F252560D08DD8D004ECFFF /* JSVariableObject.h */; settings = {ATTRIBUTES = (Private, ); }; };
@@ -1540 +1539 @@
                                 1440FCE40A51E46B0005F061 /* JSClassRef.cpp in Sources */,
                                 14BD5A300A3E91F600BAF59C /* JSContextRef.cpp in Sources */,
-                                14DE0D690D02431400AACCA2 /* JSGlobalObject.cpp in Sources */,
                                 1482B7E40A43076000517CFC /* JSObjectRef.cpp in Sources */,
                                 1482B74E0A43032800517CFC /* JSStringRef.cpp in Sources */,

trunk/JavaScriptCore/VM/CodeGenerator.cpp

@@ -569 +569 @@
     emitOpcode(op_load);
     instructions().append(dst->index());
-    instructions().append(addConstant(jsNumber(d)));
+    instructions().append(addConstant(jsNumber(globalExec(), d)));
     return dst;
 }

trunk/JavaScriptCore/VM/CodeGenerator.h

@@ -279 +279 @@
         CodeType codeType() const { return m_codeType; }
 
+        ExecState* globalExec() { return m_scopeChain->globalObject()->globalExec(); }
+
     private:
         void emitOpcode(OpcodeID);

trunk/JavaScriptCore/VM/JSPropertyNameIterator.cpp

@@ -41 +41 @@
 {
     if (v->isUndefinedOrNull())
-        return new JSPropertyNameIterator(0, 0, 0);
+        return new (exec) JSPropertyNameIterator(0, 0, 0);
 
     JSObject* o = v->toObject(exec);
@@ -47 +47 @@
     o->getPropertyNames(exec, propertyNames);
     size_t numProperties = propertyNames.size();
-    return new JSPropertyNameIterator(o, propertyNames.releaseIdentifiers(), numProperties);
+    return new (exec) JSPropertyNameIterator(o, propertyNames.releaseIdentifiers(), numProperties);
 }
 
@@ -115 +115 @@
     while (m_position != m_end) {
         if (m_object->hasProperty(exec, *m_position))
-            return jsOwnedString((*m_position++).ustring());;
+            return jsOwnedString(exec, (*m_position++).ustring());;
         m_position++;
     }

trunk/JavaScriptCore/VM/Machine.cpp

@@ -132 +132 @@
         if (value.isNull())
             return throwOutOfMemoryError(exec);
-        return jsString(value);
-    }
-
-    return jsNumber(p1->toNumber(exec) + p2->toNumber(exec));
+        return jsString(exec, value);
+    }
+
+    return jsNumber(exec, p1->toNumber(exec) + p2->toNumber(exec));
 }
 
@@ -154 +154 @@
 
     if (bothTypes == ((NumberType << 3) | NumberType))
-        return jsNumber(v1->uncheckedGetNumber() + v2->uncheckedGetNumber());
+        return jsNumber(exec, v1->uncheckedGetNumber() + v2->uncheckedGetNumber());
     if (bothTypes == ((StringType << 3) | StringType)) {
         UString value = static_cast<JSString*>(v1)->value() + static_cast<JSString*>(v2)->value();
         if (value.isNull())
             return throwOutOfMemoryError(exec);
-        return jsString(value);
+        return jsString(exec, value);
     }
 
@@ -166 +166 @@
 }
 
-static JSValue* jsTypeStringForValue(JSValue* v)
+static JSValue* jsTypeStringForValue(ExecState* exec, JSValue* v)
 {
     switch (v->type()) {
         case UndefinedType:
-            return jsString("undefined");
+            return jsString(exec, "undefined");
         case NullType:
-            return jsString("object");
+            return jsString(exec, "object");
         case BooleanType:
-            return jsString("boolean");
+            return jsString(exec, "boolean");
         case NumberType:
-            return jsString("number");
+            return jsString(exec, "number");
         case StringType:
-            return jsString("string");
+            return jsString(exec, "string");
         default:
             if (v->isObject()) {
@@ -184 +184 @@
                 // as null when doing comparisons.
                 if (static_cast<JSObject*>(v)->masqueradeAsUndefined())
-                    return jsString("undefined");
+                    return jsString(exec, "undefined");
                 else if (static_cast<JSObject*>(v)->implementsCall())
-                    return jsString("function");
+                    return jsString(exec, "function");
             }
 
-            return jsString("object");
+            return jsString(exec, "object");
     }
 }
@@ -413 +413 @@
 }
 
-ALWAYS_INLINE ScopeChainNode* scopeChainForCall(FunctionBodyNode* functionBodyNode, CodeBlock* newCodeBlock, ScopeChainNode* callDataScopeChain, Register** registerBase, Register* r)
+ALWAYS_INLINE ScopeChainNode* scopeChainForCall(ExecState* exec, FunctionBodyNode* functionBodyNode, CodeBlock* newCodeBlock, ScopeChainNode* callDataScopeChain, Register** registerBase, Register* r)
 {
     if (newCodeBlock->needsFullScopeChain) {
-        JSActivation* activation = new JSActivation(functionBodyNode, registerBase, r - (*registerBase));
+        JSActivation* activation = new (exec) JSActivation(functionBodyNode, registerBase, r - (*registerBase));
         r[Machine::OptionalCalleeActivation - Machine::CallFrameHeaderSize - newCodeBlock->numLocals].u.jsValue = activation;
 
@@ -611 +611 @@
         JSObject* exception = static_cast<JSObject*>(exceptionValue);
         if (!exception->hasProperty(exec, Identifier(exec, "line")) && !exception->hasProperty(exec, Identifier(exec, "sourceURL"))) {
-            exception->put(exec, Identifier(exec, "line"), jsNumber(codeBlock->lineNumberForVPC(vPC)));
-            exception->put(exec, Identifier(exec, "sourceURL"), jsOwnedString(codeBlock->ownerNode->sourceURL()));
+            exception->put(exec, Identifier(exec, "line"), jsNumber(exec, codeBlock->lineNumberForVPC(vPC)));
+            exception->put(exec, Identifier(exec, "sourceURL"), jsOwnedString(exec, codeBlock->ownerNode->sourceURL()));
         }
     }
@@ -726 +726 @@
     }
 
-    scopeChain = scopeChainForCall(functionBodyNode, newCodeBlock, scopeChain, registerBase, r);
+    scopeChain = scopeChainForCall(exec, functionBodyNode, newCodeBlock, scopeChain, registerBase, r);
 
     ExecState newExec(exec, this, registerFile, scopeChain, callFrameOffset);
@@ -971 +971 @@
         int dst = (++vPC)->u.operand;
         int regExp = (++vPC)->u.operand;
-        r[dst].u.jsValue = new RegExpObject(scopeChain->globalObject()->regExpPrototype(), codeBlock->regexps[regExp]);
+        r[dst].u.jsValue = new (exec) RegExpObject(scopeChain->globalObject()->regExpPrototype(), codeBlock->regexps[regExp]);
 
         ++vPC;
@@ -1114 +1114 @@
             result = JSImmediate::incImmediateNumber(v);
         else
-            result = jsNumber(v->toNumber(exec) + 1);
+            result = jsNumber(exec, v->toNumber(exec) + 1);
         VM_CHECK_EXCEPTION();
         r[srcDst].u.jsValue = result;
@@ -1133 +1133 @@
             result = JSImmediate::decImmediateNumber(v);
         else
-            result = jsNumber(v->toNumber(exec) - 1);
+            result = jsNumber(exec, v->toNumber(exec) - 1);
         VM_CHECK_EXCEPTION();
         r[srcDst].u.jsValue = result;
@@ -1157 +1157 @@
         } else {
             number = r[srcDst].u.jsValue->toJSNumber(exec);
-            result = jsNumber(number->uncheckedGetNumber() + 1);
+            result = jsNumber(exec, number->uncheckedGetNumber() + 1);
         }
         VM_CHECK_EXCEPTION();
@@ -1184 +1184 @@
         } else {
             number = r[srcDst].u.jsValue->toJSNumber(exec);
-            result = jsNumber(number->uncheckedGetNumber() - 1);
+            result = jsNumber(exec, number->uncheckedGetNumber() - 1);
         }
         VM_CHECK_EXCEPTION();
@@ -1218 +1218 @@
         int dst = (++vPC)->u.operand;
         int src = (++vPC)->u.operand;
-        JSValue* result = jsNumber(-r[src].u.jsValue->toNumber(exec));
+        JSValue* result = jsNumber(exec, -r[src].u.jsValue->toNumber(exec));
         VM_CHECK_EXCEPTION();
         r[dst].u.jsValue = result;
@@ -1255 +1255 @@
         JSValue* src1 = r[(++vPC)->u.operand].u.jsValue;
         JSValue* src2 = r[(++vPC)->u.operand].u.jsValue;
-        JSValue* result = jsNumber(src1->toNumber(exec) * src2->toNumber(exec));
+        JSValue* result = jsNumber(exec, src1->toNumber(exec) * src2->toNumber(exec));
         VM_CHECK_EXCEPTION();
         dst = result;
@@ -1272 +1272 @@
         int dividend = (++vPC)->u.operand;
         int divisor = (++vPC)->u.operand;
-        JSValue* result = jsNumber(r[dividend].u.jsValue->toNumber(exec) / r[divisor].u.jsValue->toNumber(exec));
+        JSValue* result = jsNumber(exec, r[dividend].u.jsValue->toNumber(exec) / r[divisor].u.jsValue->toNumber(exec));
         VM_CHECK_EXCEPTION();
         r[dst].u.jsValue = result;
@@ -1289 +1289 @@
         int divisor = (++vPC)->u.operand;
         double d = r[dividend].u.jsValue->toNumber(exec);
-        JSValue* result = jsNumber(fmod(d, r[divisor].u.jsValue->toNumber(exec)));
+        JSValue* result = jsNumber(exec, fmod(d, r[divisor].u.jsValue->toNumber(exec)));
         VM_CHECK_EXCEPTION();
         r[dst].u.jsValue = result;
@@ -1309 +1309 @@
             result = JSImmediate::subImmediateNumbers(src1, src2);
         else {
-            result = jsNumber(src1->toNumber(exec) - src2->toNumber(exec));
+            result = jsNumber(exec, src1->toNumber(exec) - src2->toNumber(exec));
             VM_CHECK_EXCEPTION();
         }
@@ -1328 +1328 @@
         JSValue* result;
         if (JSImmediate::areBothImmediateNumbers(val, shift))
-            result = jsNumber(JSImmediate::getTruncatedInt32(val) << (JSImmediate::toTruncatedUInt32(shift) & 0x1f));
+            result = jsNumber(exec, JSImmediate::getTruncatedInt32(val) << (JSImmediate::toTruncatedUInt32(shift) & 0x1f));
         else {
-            result = jsNumber((val->toInt32(exec)) << (shift->toUInt32(exec) & 0x1f));
+            result = jsNumber(exec, (val->toInt32(exec)) << (shift->toUInt32(exec) & 0x1f));
             VM_CHECK_EXCEPTION();
         }
@@ -1352 +1352 @@
             result = JSImmediate::rightShiftImmediateNumbers(val, shift);
         else {
-            result = jsNumber((val->toInt32(exec)) >> (shift->toUInt32(exec) & 0x1f));
+            result = jsNumber(exec, (val->toInt32(exec)) >> (shift->toUInt32(exec) & 0x1f));
             VM_CHECK_EXCEPTION();
         }
@@ -1374 +1374 @@
             result = JSImmediate::rightShiftImmediateNumbers(val, shift);
         else {
-            result = jsNumber((val->toUInt32(exec)) >> (shift->toUInt32(exec) & 0x1f));
+            result = jsNumber(exec, (val->toUInt32(exec)) >> (shift->toUInt32(exec) & 0x1f));
             VM_CHECK_EXCEPTION();
         }
@@ -1396 +1396 @@
             result = JSImmediate::andImmediateNumbers(src1, src2);
         else {
-            result = jsNumber(src1->toInt32(exec) & src2->toInt32(exec));
+            result = jsNumber(exec, src1->toInt32(exec) & src2->toInt32(exec));
             VM_CHECK_EXCEPTION();
         }
@@ -1418 +1418 @@
             result = JSImmediate::xorImmediateNumbers(src1, src2);
         else {
-            result = jsNumber(src1->toInt32(exec) ^ src2->toInt32(exec));
+            result = jsNumber(exec, src1->toInt32(exec) ^ src2->toInt32(exec));
             VM_CHECK_EXCEPTION();
         }
@@ -1440 +1440 @@
             result = JSImmediate::orImmediateNumbers(src1, src2);
         else {
-            result = jsNumber(src1->toInt32(exec) | src2->toInt32(exec));
+            result = jsNumber(exec, src1->toInt32(exec) | src2->toInt32(exec));
             VM_CHECK_EXCEPTION();
         }
@@ -1456 +1456 @@
         int dst = (++vPC)->u.operand;
         int src = (++vPC)->u.operand;
-        JSValue* result = jsNumber(~r[src].u.jsValue->toInt32(exec));
+        JSValue* result = jsNumber(exec, ~r[src].u.jsValue->toInt32(exec));
         VM_CHECK_EXCEPTION();
         r[dst].u.jsValue = result;
@@ -1510 +1510 @@
         int dst = (++vPC)->u.operand;
         int src = (++vPC)->u.operand;
-        r[dst].u.jsValue = jsTypeStringForValue(r[src].u.jsValue);
+        r[dst].u.jsValue = jsTypeStringForValue(exec, r[src].u.jsValue);
 
         ++vPC;
@@ -2096 +2096 @@
             codeBlock = newCodeBlock;
             exec->m_callFrameOffset = callFrameOffset;
-            setScopeChain(exec, scopeChain, scopeChainForCall(functionBodyNode, codeBlock, callDataScopeChain, registerBase, r));
+            setScopeChain(exec, scopeChain, scopeChainForCall(exec, functionBodyNode, codeBlock, callDataScopeChain, registerBase, r));
             k = codeBlock->jsValues.data();
             vPC = codeBlock->instructions.begin();
@@ -2224 +2224 @@
             else
                 prototype = scopeChain->globalObject()->objectPrototype();
-            JSObject* newObject = new JSObject(prototype);
+            JSObject* newObject = new (exec) JSObject(prototype);
             r[firstArg].u.jsValue = newObject; // "this" value
 
@@ -2239 +2239 @@
             codeBlock = newCodeBlock;
             exec->m_callFrameOffset = callFrameOffset;
-            setScopeChain(exec, scopeChain, scopeChainForCall(functionBodyNode, codeBlock, callDataScopeChain, registerBase, r));
+            setScopeChain(exec, scopeChain, scopeChainForCall(exec, functionBodyNode, codeBlock, callDataScopeChain, registerBase, r));
             k = codeBlock->jsValues.data();
             vPC = codeBlock->instructions.begin();
@@ -2551 +2551 @@
     if (!activation) {
         CodeBlock* codeBlock = &function->body->generatedCode();
-        activation = new JSActivation(function->body, registerBase, callFrameOffset + CallFrameHeaderSize + codeBlock->numLocals);
+        activation = new (exec) JSActivation(function->body, registerBase, callFrameOffset + CallFrameHeaderSize + codeBlock->numLocals);
         callFrame[OptionalCalleeActivation].u.jsValue = activation;
     }

trunk/JavaScriptCore/VM/RegisterFile.h

@@ -137 +137 @@
         void copyGlobals(RegisterFile* src);
 
-        void mark()
+        void mark(Heap* heap)
         {
-            Collector::markStackObjectsConservatively(m_buffer, m_base + m_size);
+            heap->markStackObjectsConservatively(m_buffer, m_base + m_size);
         }
 

trunk/JavaScriptCore/VM/RegisterFileStack.h

@@ -52 +52 @@
         RegisterFile* current() { return m_stack.last(); }
 
-        void mark()
+        void mark(Heap* heap)
         {
             Stack::iterator end = m_stack.end();
             for (Stack::iterator it = m_stack.begin(); it != end; ++it)
-                (*it)->mark();
+                (*it)->mark(heap);
         }
 

trunk/JavaScriptCore/kjs/AllInOneFile.cpp

@@ -57 +57 @@
 #include "NumberObject.cpp"
 #include "JSObject.cpp"
+#include "JSGlobalObject.cpp"
 #include "object_object.cpp"
 #include "operations.cpp"

trunk/JavaScriptCore/kjs/ArrayPrototype.cpp

@@ -101 +101 @@
     Vector<UChar, 256> strBuffer;
     if (alreadyVisited)
-        return jsString(UString(0, 0)); // return an empty string, avoding infinite recursion.
+        return jsString(exec, UString(0, 0)); // return an empty string, avoding infinite recursion.
 
     unsigned length = thisObj->get(exec, exec->propertyNames().length)->toUInt32(exec);
@@ -129 +129 @@
     }
     exec->dynamicGlobalObject()->arrayVisitedElements().remove(thisObj);
-    return jsString(UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
+    return jsString(exec, UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
 }
 
@@ -144 +144 @@
     Vector<UChar, 256> strBuffer;
     if (alreadyVisited)
-        return jsString(UString(0, 0)); // return an empty string, avoding infinite recursion.
+        return jsString(exec, UString(0, 0)); // return an empty string, avoding infinite recursion.
 
     unsigned length = thisObj->get(exec, exec->propertyNames().length)->toUInt32(exec);
@@ -178 +178 @@
     }
     exec->dynamicGlobalObject()->arrayVisitedElements().remove(thisObj);
-    return jsString(UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
+    return jsString(exec, UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
 }
 
@@ -190 +190 @@
     Vector<UChar, 256> strBuffer;
     if (alreadyVisited)
-        return jsString(UString(0, 0)); // return an empty string, avoding infinite recursion.
+        return jsString(exec, UString(0, 0)); // return an empty string, avoding infinite recursion.
 
     UChar comma = ',';
@@ -221 +221 @@
     }
     exec->dynamicGlobalObject()->arrayVisitedElements().remove(thisObj);
-    return jsString(UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
+    return jsString(exec, UString(strBuffer.data(), strBuffer.data() ? strBuffer.size() : 0));
 }
 
@@ -254 +254 @@
         ++it;
     }
-    arr->put(exec, exec->propertyNames().length, jsNumber(n));
+    arr->put(exec, exec->propertyNames().length, jsNumber(exec, n));
     return arr;
 }
@@ -263 +263 @@
     unsigned length = thisObj->get(exec, exec->propertyNames().length)->toUInt32(exec);
     if (length == 0) {
-        thisObj->put(exec, exec->propertyNames().length, jsNumber(length));
+        thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length));
         result = jsUndefined();
     } else {
         result = thisObj->get(exec, length - 1);
         thisObj->deleteProperty(exec, length - 1);
-        thisObj->put(exec, exec->propertyNames().length, jsNumber(length - 1));
+        thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length - 1));
     }
     return result;
@@ -279 +279 @@
         thisObj->put(exec, length + n, args[n]);
     length += args.size();
-    thisObj->put(exec, exec->propertyNames().length, jsNumber(length));
-    return jsNumber(length);
+    thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length));
+    return jsNumber(exec, length);
 }
 
@@ -312 +312 @@
     unsigned length = thisObj->get(exec, exec->propertyNames().length)->toUInt32(exec);
     if (length == 0) {
-        thisObj->put(exec, exec->propertyNames().length, jsNumber(length));
+        thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length));
         result = jsUndefined();
     } else {
@@ -323 +323 @@
         }
         thisObj->deleteProperty(exec, length - 1);
-        thisObj->put(exec, exec->propertyNames().length, jsNumber(length - 1));
+        thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length - 1));
     }
     return result;
@@ -367 +367 @@
             resObj->put(exec, n, v);
     }
-    resObj->put(exec, exec->propertyNames().length, jsNumber(n));
+    resObj->put(exec, exec->propertyNames().length, jsNumber(exec, n));
     return result;
 }
@@ -452 +452 @@
             resObj->put(exec, k, v);
     }
-    resObj->put(exec, exec->propertyNames().length, jsNumber(deleteCount));
+    resObj->put(exec, exec->propertyNames().length, jsNumber(exec, deleteCount));
 
     unsigned additionalArgs = std::max<int>(args.size() - 2, 0);
@@ -477 +477 @@
         thisObj->put(exec, k + begin, args[k + 2]);
 
-    thisObj->put(exec, exec->propertyNames().length, jsNumber(length - deleteCount + additionalArgs));
+    thisObj->put(exec, exec->propertyNames().length, jsNumber(exec, length - deleteCount + additionalArgs));
     return result;
 }
@@ -496 +496 @@
     for (unsigned k = 0; k < nrArgs; ++k)
         thisObj->put(exec, k, args[k]);
-    JSValue* result = jsNumber(length + nrArgs);
+    JSValue* result = jsNumber(exec, length + nrArgs);
     thisObj->put(exec, exec->propertyNames().length, result);
     return result;
@@ -524 +524 @@
 
         eachArguments.append(v);
-        eachArguments.append(jsNumber(k));
+        eachArguments.append(jsNumber(exec, k));
         eachArguments.append(thisObj);
 
@@ -546 +546 @@
 
     ArgList mapArgs;
-    mapArgs.append(jsNumber(length));
+    mapArgs.append(jsNumber(exec, length));
     JSObject* resultArray = static_cast<JSObject*>(exec->lexicalGlobalObject()->arrayConstructor()->construct(exec, mapArgs));
 
@@ -559 +559 @@
 
         eachArguments.append(v);
-        eachArguments.append(jsNumber(k));
+        eachArguments.append(jsNumber(exec, k));
         eachArguments.append(thisObj);
 
@@ -595 +595 @@
 
         eachArguments.append(slot.getValue(exec, k));
-        eachArguments.append(jsNumber(k));
+        eachArguments.append(jsNumber(exec, k));
         eachArguments.append(thisObj);
 
@@ -626 +626 @@
         ArgList eachArguments;
         eachArguments.append(slot.getValue(exec, k));
-        eachArguments.append(jsNumber(k));
+        eachArguments.append(jsNumber(exec, k));
         eachArguments.append(thisObj);
 
@@ -653 +653 @@
         ArgList eachArguments;
         eachArguments.append(slot.getValue(exec, k));
-        eachArguments.append(jsNumber(k));
+        eachArguments.append(jsNumber(exec, k));
         eachArguments.append(thisObj);
 
@@ -689 +689 @@
             continue;
         if (strictEqual(searchElement, e))
-            return jsNumber(index);
-    }
-
-    return jsNumber(-1);
+            return jsNumber(exec, index);
+    }
+
+    return jsNumber(exec, -1);
 }
 
@@ -707 +707 @@
         d += length;
         if (d < 0)
-            return jsNumber(-1);
+            return jsNumber(exec, -1);
     }
     if (d < length)
@@ -718 +718 @@
             continue;
         if (strictEqual(searchElement, e))
-            return jsNumber(index);
-    }
-
-    return jsNumber(-1);
+            return jsNumber(exec, index);
+    }
+
+    return jsNumber(exec, -1);
 }
 
@@ -733 +733 @@
 
     // no. of arguments for constructor
-    putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly|DontDelete|DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly|DontDelete|DontEnum);
 }
 
@@ -749 +749 @@
         if (n != args[0]->toNumber(exec))
             return throwError(exec, RangeError, "Array size is not a small enough positive integer.");
-        return new JSArray(exec->lexicalGlobalObject()->arrayPrototype(), n);
+        return new (exec) JSArray(exec->lexicalGlobalObject()->arrayPrototype(), n);
     }
 
     // otherwise the array is constructed with the arguments in it
-    return new JSArray(exec->lexicalGlobalObject()->arrayPrototype(), args);
+    return new (exec) JSArray(exec->lexicalGlobalObject()->arrayPrototype(), args);
 }
 
@@ -760 +760 @@
 {
     // equivalent to 'new Array(....)'
-    return construct(exec,args);
-}
-
-}
+    return construct(exec, args);
+}
+
+}

trunk/JavaScriptCore/kjs/BooleanObject.cpp

@@ -51 +51 @@
     setInternalValue(jsBoolean(false));
 
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, booleanProtoFuncToString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, booleanProtoFuncValueOf), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, booleanProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, booleanProtoFuncValueOf), DontEnum);
 }
 
@@ -68 +68 @@
     ASSERT(v);
 
-    return jsString(v->toString(exec));
+    return jsString(exec, v->toString(exec));
 }
 JSValue* booleanProtoFuncValueOf(ExecState* exec, JSObject* thisObj, const ArgList&)
@@ -91 +91 @@
 
     // no. of arguments for constructor
-    putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly | DontDelete | DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly | DontDelete | DontEnum);
 }
 
@@ -102 +102 @@
 JSObject* BooleanConstructor::construct(ExecState* exec, const ArgList& args)
 {
-    BooleanObject* obj(new BooleanObject(exec->lexicalGlobalObject()->booleanPrototype()));
+    BooleanObject* obj(new (exec) BooleanObject(exec->lexicalGlobalObject()->booleanPrototype()));
     obj->setInternalValue(jsBoolean(args[0]->toBoolean(exec)));
     return obj;

trunk/JavaScriptCore/kjs/ExecState.h

@@ -26 +26 @@
 
 #include "JSGlobalData.h"
-#include "LabelStack.h"
-#include "completion.h"
-#include "list.h"
 #include "ScopeChain.h"
 
@@ -92 +89 @@
         static const HashTable* stringTable(ExecState* exec) { return exec->m_globalData->stringTable; }
 
+        Heap* heap() const { return m_globalData->heap; }
+
     private:
         // Default constructor required for gcc 3.

trunk/JavaScriptCore/kjs/FunctionPrototype.cpp

@@ -45 +45 @@
 FunctionPrototype::FunctionPrototype(ExecState* exec)
 {
-    putDirect(exec->propertyNames().length, jsNumber(0), DontDelete | ReadOnly | DontEnum);
-
-    putDirectFunction(new PrototypeFunction(exec, this, 0, exec->propertyNames().toString, functionProtoFuncToString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, this, 2, exec->propertyNames().apply, functionProtoFuncApply), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, this, 1, exec->propertyNames().call, functionProtoFuncCall), DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 0), DontDelete | ReadOnly | DontEnum);
+
+    putDirectFunction(new (exec) PrototypeFunction(exec, this, 0, exec->propertyNames().toString, functionProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, this, 2, exec->propertyNames().apply, functionProtoFuncApply), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, this, 1, exec->propertyNames().call, functionProtoFuncCall), DontEnum);
 }
 
@@ -71 +71 @@
     if (thisObj->inherits(&JSFunction::info)) {
         JSFunction* fi = static_cast<JSFunction*>(thisObj);
-        return jsString("function " + fi->functionName().ustring() + "(" + fi->body->paramString() + ") " + fi->body->toSourceString());
-    }
-
-    return jsString("function " + static_cast<InternalFunction*>(thisObj)->functionName().ustring() + "() {\n    [native code]\n}");
+        return jsString(exec, "function " + fi->functionName().ustring() + "(" + fi->body->paramString() + ") " + fi->body->toSourceString());
+    }
+
+    return jsString(exec, "function " + static_cast<InternalFunction*>(thisObj)->functionName().ustring() + "() {\n    [native code]\n}");
 }
 
@@ -134 +134 @@
 
     // Number of arguments for constructor
-    putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly | DontDelete | DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly | DontDelete | DontEnum);
 }
 
@@ -175 +175 @@
     ScopeChain scopeChain(exec->lexicalGlobalObject(), exec->globalThisValue());
 
-    JSFunction* fimp = new JSFunction(exec, functionName, functionBody.get(), scopeChain.node());
+    JSFunction* fimp = new (exec) JSFunction(exec, functionName, functionBody.get(), scopeChain.node());
 
     // parse parameter list. throw syntax error on illegal identifiers

trunk/JavaScriptCore/kjs/InitializeThreading.cpp

@@ -50 +50 @@
     s_dtoaP5Mutex = new Mutex;
 #if !PLATFORM(DARWIN) // Darwin has pthread_main_np(), and doesn't need registerAsMainThread() called.
-    Collector::registerAsMainThread();
+    Heap::registerAsMainThread();
 #endif
     JSGlobalData::threadInstance();
@@ -62 +62 @@
 #if PLATFORM(DARWIN)
     pthread_once(&initializeThreadingKeyOnce, initializeThreadingOnce);
+
+    // FIXME: do we want heap introspector to work on other threads?
+    if (pthread_main_np())
+       JSGlobalData::threadInstance().heap->initializeHeapIntrospector();
 #else
     static bool initializedThreading = false;

trunk/JavaScriptCore/kjs/JSActivation.cpp

@@ -187 +187 @@
     exec->machine()->getFunctionAndArguments(registerBase(), callFrame, function, argv, argc);
     ArgList args(reinterpret_cast<JSValue***>(registerBase()), argv - *registerBase(), argc);
-    return new Arguments(exec, function, args, this);
+    return new (exec) Arguments(exec, function, args, this);
 }
 

trunk/JavaScriptCore/kjs/JSArray.cpp

@@ -89 +89 @@
     m_storage = static_cast<ArrayStorage*>(fastZeroedMalloc(storageSize(initialCapacity)));
 
-    Collector::reportExtraMemoryCost(initialCapacity * sizeof(JSValue*));
+    Heap::heap(this)->reportExtraMemoryCost(initialCapacity * sizeof(JSValue*));
 
     checkConsistency();
@@ -147 +147 @@
 }
 
-JSValue* JSArray::lengthGetter(ExecState*, const Identifier&, const PropertySlot& slot)
-{
-    return jsNumber(static_cast<JSArray*>(slot.slotBase())->m_length);
+JSValue* JSArray::lengthGetter(ExecState* exec, const Identifier&, const PropertySlot& slot)
+{
+    return jsNumber(exec, static_cast<JSArray*>(slot.slotBase())->m_length);
 }
 

trunk/JavaScriptCore/kjs/JSFunction.cpp

@@ -114 +114 @@
 }
 
-JSValue* JSFunction::lengthGetter(ExecState*, const Identifier&, const PropertySlot& slot)
+JSValue* JSFunction::lengthGetter(ExecState* exec, const Identifier&, const PropertySlot& slot)
 {
     JSFunction* thisObj = static_cast<JSFunction*>(slot.slotBase());
-    return jsNumber(thisObj->body->parameters().size());
+    return jsNumber(exec, thisObj->body->parameters().size());
 }
 
@@ -196 +196 @@
         proto = exec->lexicalGlobalObject()->objectPrototype();
 
-    JSObject* thisObj = new JSObject(proto);
+    JSObject* thisObj = new (exec) JSObject(proto);
 
     JSValue* exception = 0;
@@ -285 +285 @@
 {
     putDirect(exec->propertyNames().callee, func, DontEnum);
-    putDirect(exec->propertyNames().length, args.size(), DontEnum);
+    putDirect(exec, exec->propertyNames().length, args.size(), DontEnum);
   
     int i = 0;
@@ -356 +356 @@
     }
   }
-  return jsString(r);
+  return jsString(exec, r);
 }
 
@@ -421 +421 @@
     s.append(c);
   }
-  return jsString(s);
+  return jsString(exec, s);
 }
 
@@ -593 +593 @@
 JSValue* globalFuncParseInt(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(parseInt(args[0]->toString(exec), args[1]->toInt32(exec)));
+    return jsNumber(exec, parseInt(args[0]->toString(exec), args[1]->toInt32(exec)));
 }
 
 JSValue* globalFuncParseFloat(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(parseFloat(args[0]->toString(exec)));
+    return jsNumber(exec, parseFloat(args[0]->toString(exec)));
 }
 
@@ -673 +673 @@
     }
 
-    return jsString(r);
+    return jsString(exec, r);
 }
 
@@ -698 +698 @@
     }
 
-    return jsString(s);
+    return jsString(exec, s);
 }
 
@@ -718 +718 @@
 {
     ASSERT_ARG(function, function);
-    putDirect(exec->propertyNames().length, jsNumber(len), DontDelete | ReadOnly | DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, len), DontDelete | ReadOnly | DontEnum);
 }
 
@@ -726 +726 @@
 {
     ASSERT_ARG(function, function);
-    putDirect(exec->propertyNames().length, jsNumber(len), DontDelete | ReadOnly | DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, len), DontDelete | ReadOnly | DontEnum);
 }
 
@@ -743 +743 @@
     ASSERT_ARG(function, function);
     ASSERT_ARG(cachedGlobalObject, cachedGlobalObject);
-    putDirect(exec->propertyNames().length, jsNumber(len), DontDelete | ReadOnly | DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, len), DontDelete | ReadOnly | DontEnum);
 }
 

trunk/JavaScriptCore/kjs/JSGlobalData.cpp

@@ -39 +39 @@
 
 #if USE(MULTIPLE_THREADS)
+#include <wtf/Threading.h>
 #include <wtf/ThreadSpecific.h>
 #endif
@@ -56 +57 @@
 
 JSGlobalData::JSGlobalData()
-//    : heap(new Heap)
+    : heap(new Heap)
 #if USE(MULTIPLE_THREADS)
-    : arrayTable(new HashTable(KJS::arrayTable))
+    , arrayTable(new HashTable(KJS::arrayTable))
     , dateTable(new HashTable(KJS::dateTable))
     , mathTable(new HashTable(KJS::mathTable))
@@ -66 +67 @@
     , stringTable(new HashTable(KJS::stringTable))
 #else
-    : arrayTable(&KJS::arrayTable)
+    , arrayTable(&KJS::arrayTable)
     , dateTable(&KJS::dateTable)
     , mathTable(&KJS::mathTable)
@@ -119 +120 @@
 }
 
+JSGlobalData& JSGlobalData::sharedInstance()
+{
+    return threadInstance();
+/*
+#if USE(MULTIPLE_THREADS)
+    AtomicallyInitializedStatic(JSGlobalData, sharedInstance);
+#else
+    static JSGlobalData sharedInstance;
+#endif
+    return sharedInstance;
+*/
 }
+
+}

trunk/JavaScriptCore/kjs/JSGlobalData.h

@@ -31 +31 @@
 
 #include "list.h"
-#include "ustring.h"
 #include <wtf/HashCountedSet.h>
 #include <wtf/HashSet.h>
@@ -43 +42 @@
 
     class CommonIdentifiers;
-//    class Heap;
+    class Heap;
     class IdentifierTable;
     class JSGlobalObject;
@@ -57 +56 @@
     struct JSGlobalData : Noncopyable {
         static JSGlobalData& threadInstance();
+        static JSGlobalData& sharedInstance();
 
-//        Heap* heap;
+        Heap* heap;
 
         const HashTable* arrayTable;

trunk/JavaScriptCore/kjs/JSGlobalObject.cpp

@@ -90 +90 @@
 }
 
-JSGlobalObject* JSGlobalObject::s_head = 0;
-
 JSGlobalObject::~JSGlobalObject()
 {
-    ASSERT(JSLock::currentThreadIsHoldingLock());
-
     if (d()->debugger)
         d()->debugger->detach(this);
@@ -101 +97 @@
     d()->next->d()->prev = d()->prev;
     d()->prev->d()->next = d()->next;
-    s_head = d()->next;
-    if (s_head == this)
-        s_head = 0;
+    JSGlobalObject*& headObject = head();
+    if (headObject == this)
+        headObject = d()->next;
+    if (headObject == this)
+        headObject = 0;
 
     HashSet<ProgramCodeBlock*>::const_iterator end = codeBlocks().end();
@@ -116 +114 @@
     ASSERT(JSLock::currentThreadIsHoldingLock());
 
-    if (s_head) {
-        d()->prev = s_head;
-        d()->next = s_head->d()->next;
-        s_head->d()->next->d()->prev = this;
-        s_head->d()->next = this;
+    if (JSGlobalObject*& headObject = head()) {
+        d()->prev = headObject;
+        d()->next = headObject->d()->next;
+        headObject->d()->next->d()->prev = this;
+        headObject->d()->next = this;
     } else
-        s_head = d()->next = d()->prev = this;
+        headObject = d()->next = d()->prev = this;
 
     resetTimeoutCheck();
@@ -142 +140 @@
 void JSGlobalObject::put(ExecState* exec, const Identifier& propertyName, JSValue* value)
 {
+    ASSERT(!Heap::heap(value) || Heap::heap(value) == Heap::heap(this));
+
     if (symbolTablePut(propertyName, value))
         return;
@@ -235 +235 @@
 
     // Prototypes
-    d()->functionPrototype = new FunctionPrototype(exec);
-    d()->objectPrototype = new ObjectPrototype(exec, d()->functionPrototype);
+    d()->functionPrototype = new (exec) FunctionPrototype(exec);
+    d()->objectPrototype = new (exec) ObjectPrototype(exec, d()->functionPrototype);
     d()->functionPrototype->setPrototype(d()->objectPrototype);
 
-    d()->arrayPrototype = new ArrayPrototype(exec, d()->objectPrototype);
-    d()->stringPrototype = new StringPrototype(exec, d()->objectPrototype);
-    d()->booleanPrototype = new BooleanPrototype(exec, d()->objectPrototype, d()->functionPrototype);
-    d()->numberPrototype = new NumberPrototype(exec, d()->objectPrototype, d()->functionPrototype);
-    d()->datePrototype = new DatePrototype(exec, d()->objectPrototype);
-    d()->regExpPrototype = new RegExpPrototype(exec, d()->objectPrototype, d()->functionPrototype);
-    d()->errorPrototype = new ErrorPrototype(exec, d()->objectPrototype, d()->functionPrototype);
-    
-    d()->evalErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "EvalError", "EvalError");
-    d()->rangeErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "RangeError", "RangeError");
-    d()->referenceErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "ReferenceError", "ReferenceError");
-    d()->syntaxErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "SyntaxError", "SyntaxError");
-    d()->typeErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "TypeError", "TypeError");
-    d()->URIErrorPrototype = new NativeErrorPrototype(exec, d()->errorPrototype, "URIError", "URIError");
+    d()->arrayPrototype = new (exec) ArrayPrototype(exec, d()->objectPrototype);
+    d()->stringPrototype = new (exec) StringPrototype(exec, d()->objectPrototype);
+    d()->booleanPrototype = new (exec) BooleanPrototype(exec, d()->objectPrototype, d()->functionPrototype);
+    d()->numberPrototype = new (exec) NumberPrototype(exec, d()->objectPrototype, d()->functionPrototype);
+    d()->datePrototype = new (exec) DatePrototype(exec, d()->objectPrototype);
+    d()->regExpPrototype = new (exec) RegExpPrototype(exec, d()->objectPrototype, d()->functionPrototype);
+    d()->errorPrototype = new (exec) ErrorPrototype(exec, d()->objectPrototype, d()->functionPrototype);
+    
+    d()->evalErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "EvalError", "EvalError");
+    d()->rangeErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "RangeError", "RangeError");
+    d()->referenceErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "ReferenceError", "ReferenceError");
+    d()->syntaxErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "SyntaxError", "SyntaxError");
+    d()->typeErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "TypeError", "TypeError");
+    d()->URIErrorPrototype = new (exec) NativeErrorPrototype(exec, d()->errorPrototype, "URIError", "URIError");
 
     // Constructors
-    d()->objectConstructor = new ObjectConstructor(exec, d()->objectPrototype, d()->functionPrototype);
-    d()->functionConstructor = new FunctionConstructor(exec, d()->functionPrototype);
-    d()->arrayConstructor = new ArrayConstructor(exec, d()->functionPrototype, d()->arrayPrototype);
-    d()->stringConstructor = new StringConstructor(exec, d()->functionPrototype, d()->stringPrototype);
-    d()->booleanConstructor = new BooleanConstructor(exec, d()->functionPrototype, d()->booleanPrototype);
-    d()->numberConstructor = new NumberConstructor(exec, d()->functionPrototype, d()->numberPrototype);
-    d()->dateConstructor = new DateConstructor(exec, d()->functionPrototype, d()->datePrototype);
-    d()->regExpConstructor = new RegExpConstructor(exec, d()->functionPrototype, d()->regExpPrototype);
-    d()->errorConstructor = new ErrorConstructor(exec, d()->functionPrototype, d()->errorPrototype);
-    
-    d()->evalErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->evalErrorPrototype);
-    d()->rangeErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->rangeErrorPrototype);
-    d()->referenceErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->referenceErrorPrototype);
-    d()->syntaxErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->syntaxErrorPrototype);
-    d()->typeErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->typeErrorPrototype);
-    d()->URIErrorConstructor = new NativeErrorConstructor(exec, d()->functionPrototype, d()->URIErrorPrototype);
+    d()->objectConstructor = new (exec) ObjectConstructor(exec, d()->objectPrototype, d()->functionPrototype);
+    d()->functionConstructor = new (exec) FunctionConstructor(exec, d()->functionPrototype);
+    d()->arrayConstructor = new (exec) ArrayConstructor(exec, d()->functionPrototype, d()->arrayPrototype);
+    d()->stringConstructor = new (exec) StringConstructor(exec, d()->functionPrototype, d()->stringPrototype);
+    d()->booleanConstructor = new (exec) BooleanConstructor(exec, d()->functionPrototype, d()->booleanPrototype);
+    d()->numberConstructor = new (exec) NumberConstructor(exec, d()->functionPrototype, d()->numberPrototype);
+    d()->dateConstructor = new (exec) DateConstructor(exec, d()->functionPrototype, d()->datePrototype);
+    d()->regExpConstructor = new (exec) RegExpConstructor(exec, d()->functionPrototype, d()->regExpPrototype);
+    d()->errorConstructor = new (exec) ErrorConstructor(exec, d()->functionPrototype, d()->errorPrototype);
+    
+    d()->evalErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->evalErrorPrototype);
+    d()->rangeErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->rangeErrorPrototype);
+    d()->referenceErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->referenceErrorPrototype);
+    d()->syntaxErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->syntaxErrorPrototype);
+    d()->typeErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->typeErrorPrototype);
+    d()->URIErrorConstructor = new (exec) NativeErrorConstructor(exec, d()->functionPrototype, d()->URIErrorPrototype);
     
     d()->functionPrototype->putDirect(exec->propertyNames().constructor, d()->functionConstructor, DontEnum);
@@ -312 +312 @@
     // Set global values.
     GlobalPropertyInfo staticGlobals[] = {
-        GlobalPropertyInfo(Identifier(exec, "Math"), new MathObject(exec, d()->objectPrototype), DontEnum | DontDelete),
-        GlobalPropertyInfo(Identifier(exec, "NaN"), jsNaN(), DontEnum | DontDelete),
-        GlobalPropertyInfo(Identifier(exec, "Infinity"), jsNumber(Inf), DontEnum | DontDelete),
+        GlobalPropertyInfo(Identifier(exec, "Math"), new (exec) MathObject(exec, d()->objectPrototype), DontEnum | DontDelete),
+        GlobalPropertyInfo(Identifier(exec, "NaN"), jsNaN(exec), DontEnum | DontDelete),
+        GlobalPropertyInfo(Identifier(exec, "Infinity"), jsNumber(exec, Inf), DontEnum | DontDelete),
         GlobalPropertyInfo(Identifier(exec, "undefined"), jsUndefined(), DontEnum | DontDelete)
     };
@@ -322 +322 @@
     // Set global functions.
 
-    d()->evalFunction = new PrototypeReflexiveFunction(exec, d()->functionPrototype, 1, exec->propertyNames().eval, globalFuncEval, this);
+    d()->evalFunction = new (exec) PrototypeReflexiveFunction(exec, d()->functionPrototype, 1, exec->propertyNames().eval, globalFuncEval, this);
     putDirectFunction(d()->evalFunction, DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 2, Identifier(exec, "parseInt"), globalFuncParseInt), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "parseFloat"), globalFuncParseFloat), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "isNaN"), globalFuncIsNaN), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "isFinite"), globalFuncIsFinite), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "escape"), globalFuncEscape), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "unescape"), globalFuncUnescape), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "decodeURI"), globalFuncDecodeURI), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "decodeURIComponent"), globalFuncDecodeURIComponent), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "encodeURI"), globalFuncEncodeURI), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "encodeURIComponent"), globalFuncEncodeURIComponent), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 2, Identifier(exec, "parseInt"), globalFuncParseInt), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "parseFloat"), globalFuncParseFloat), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "isNaN"), globalFuncIsNaN), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "isFinite"), globalFuncIsFinite), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "escape"), globalFuncEscape), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "unescape"), globalFuncUnescape), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "decodeURI"), globalFuncDecodeURI), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "decodeURIComponent"), globalFuncDecodeURIComponent), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "encodeURI"), globalFuncEncodeURI), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "encodeURIComponent"), globalFuncEncodeURIComponent), DontEnum);
 #ifndef NDEBUG
-    putDirectFunction(new PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "kjsprint"), globalFuncKJSPrint), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, d()->functionPrototype, 1, Identifier(exec, "kjsprint"), globalFuncKJSPrint), DontEnum);
 #endif
 
@@ -412 +412 @@
         (*it)->mark();
 
-    registerFileStack().mark();
+    registerFileStack().mark(globalData()->heap);
 
     markIfNeeded(d()->globalExec->exception());
@@ -466 +466 @@
 }
 
+void* JSGlobalObject::operator new(size_t size)
+{
+#ifdef JAVASCRIPTCORE_BUILDING_ALL_IN_ONE_FILE
+    return JSGlobalData::threadInstance().heap->inlineAllocate(size);
+#else
+    return JSGlobalData::threadInstance().heap->allocate(size);
+#endif
+}
+
+void* JSGlobalObject::operator new(size_t size, SharedTag)
+{
+#ifdef JAVASCRIPTCORE_BUILDING_ALL_IN_ONE_FILE
+    return JSGlobalData::sharedInstance().heap->inlineAllocate(size);
+#else
+    return JSGlobalData::sharedInstance().heap->allocate(size);
+#endif
+}
 
 } // namespace KJS

trunk/JavaScriptCore/kjs/JSGlobalObject.h

@@ -171 +171 @@
         virtual void putWithAttributes(ExecState*, const Identifier& propertyName, JSValue* value, unsigned attributes);
 
-
         virtual void defineGetter(ExecState*, const Identifier& propertyName, JSObject* getterFunc);
         virtual void defineSetter(ExecState*, const Identifier& propertyName, JSObject* setterFunc);
@@ -261 +260 @@
         JSGlobalData* globalData() { return d()->globalData; }
 
+        enum SharedTag { Shared };
+        void* operator new(size_t);
+        void* operator new(size_t, SharedTag);
+
         void init(JSObject* thisValue);
         
@@ -283 +286 @@
         bool checkTimeout();
         void resetTimeoutCheck();
-
-        static JSGlobalObject* s_head;
     };
 

trunk/JavaScriptCore/kjs/JSImmediate.cpp

@@ -34 +34 @@
     ASSERT(isImmediate(v));
     if (v == jsNull())
-        return new JSNotAnObject(throwError(exec, TypeError, "Null value"));
+        return new (exec) JSNotAnObject(throwError(exec, TypeError, "Null value"));
     else if (v == jsUndefined())
-        return new JSNotAnObject(throwError(exec, TypeError, "Undefined value"));
+        return new (exec) JSNotAnObject(throwError(exec, TypeError, "Undefined value"));
     else if (isBoolean(v)) {
         ArgList args;

trunk/JavaScriptCore/kjs/JSImmediate.h

@@ -353 +353 @@
 }
 
+ALWAYS_INLINE JSValue* jsUndefined()
+{
+    return JSImmediate::undefinedImmediate();
+}
+
+inline JSValue* jsNull()
+{
+    return JSImmediate::nullImmediate();
+}
+
+inline JSValue* jsBoolean(bool b)
+{
+    return b ? JSImmediate::trueImmediate() : JSImmediate::falseImmediate();
+}
+
 } // namespace KJS
 

trunk/JavaScriptCore/kjs/JSLock.cpp

@@ -83 +83 @@
 void JSLock::registerThread()
 {
-    Collector::registerThread();
+    Heap::registerThread();
 }
 

trunk/JavaScriptCore/kjs/JSObject.cpp

@@ -97 +97 @@
 {
   ASSERT(value);
+  ASSERT(!Heap::heap(value) || Heap::heap(value) == Heap::heap(this));
 
   if (propertyName == exec->propertyNames().underscoreProto) {
@@ -294 +295 @@
 }
 
-void JSObject::defineGetter(ExecState*, const Identifier& propertyName, JSObject* getterFunc)
+void JSObject::defineGetter(ExecState* exec, const Identifier& propertyName, JSObject* getterFunc)
 {
     JSValue *o = getDirect(propertyName);
@@ -302 +303 @@
         gs = static_cast<GetterSetter *>(o);
     } else {
-        gs = new GetterSetter;
+        gs = new (exec) GetterSetter;
         putDirect(propertyName, gs, IsGetterSetter);
     }
@@ -310 +311 @@
 }
 
-void JSObject::defineSetter(ExecState*, const Identifier& propertyName, JSObject* setterFunc)
+void JSObject::defineSetter(ExecState* exec, const Identifier& propertyName, JSObject* setterFunc)
 {
     JSValue *o = getDirect(propertyName);
@@ -318 +319 @@
         gs = static_cast<GetterSetter *>(o);
     } else {
-        gs = new GetterSetter;
+        gs = new (exec) GetterSetter;
         putDirect(propertyName, gs, IsGetterSetter);
     }
@@ -557 +558 @@
   ArgList args;
   if (message.isEmpty())
-    args.append(jsString(name));
+    args.append(jsString(exec, name));
   else
-    args.append(jsString(message));
+    args.append(jsString(exec, message));
   JSObject *err = static_cast<JSObject *>(cons->construct(exec,args));
 
   if (lineno != -1)
-    err->put(exec, Identifier(exec, "line"), jsNumber(lineno));
+    err->put(exec, Identifier(exec, "line"), jsNumber(exec, lineno));
   if (sourceId != -1)
-    err->put(exec, Identifier(exec, "sourceId"), jsNumber(sourceId));
+    err->put(exec, Identifier(exec, "sourceId"), jsNumber(exec, sourceId));
 
   if(!sourceURL.isNull())
-    err->put(exec, Identifier(exec, "sourceURL"), jsString(sourceURL));
+    err->put(exec, Identifier(exec, "sourceURL"), jsString(exec, sourceURL));
  
   return err;

trunk/JavaScriptCore/kjs/JSObject.h

@@ -421 +421 @@
         { return _prop.getLocation(propertyName, isWriteable); }
     void putDirect(const Identifier &propertyName, JSValue *value, int attr = 0);
-    void putDirect(const Identifier &propertyName, int value, int attr = 0);
+    void putDirect(ExecState*, const Identifier& propertyName, int value, int attr = 0);
     void removeDirect(const Identifier &propertyName);
     
@@ -487 +487 @@
 {
     ASSERT(proto);
+    ASSERT(Heap::heap(this) == Heap::heap(proto));
 }
 
@@ -630 +631 @@
 }
 
-inline void JSObject::putDirect(const Identifier &propertyName, int value, int attr)
-{
-    _prop.put(propertyName, jsNumber(value), attr);
+inline void JSObject::putDirect(ExecState* exec, const Identifier &propertyName, int value, int attr)
+{
+    _prop.put(propertyName, jsNumber(exec, value), attr);
 }
 

trunk/JavaScriptCore/kjs/JSString.h

@@ -32 +32 @@
   class JSString : public JSCell {
   public:
-    JSString(const UString& value) : m_value(value) { Collector::reportExtraMemoryCost(value.cost()); }
+    JSString(const UString& value) : m_value(value) { Heap::heap(this)->reportExtraMemoryCost(value.cost()); }
     enum HasOtherOwnerType { HasOtherOwner };
     JSString(const UString& value, HasOtherOwnerType) : m_value(value) { }

trunk/JavaScriptCore/kjs/JSValue.cpp

@@ -81 +81 @@
 static const double D32 = 4294967296.0;
 
-void* JSCell::operator new(size_t size)
-{
-    return Collector::allocate(size);
+void* JSCell::operator new(size_t size, ExecState* exec)
+{
+#ifdef JAVASCRIPTCORE_BUILDING_ALL_IN_ONE_FILE
+    return exec->heap()->inlineAllocate(size);
+#else
+    return exec->heap()->allocate(size);
+#endif
 }
 
@@ -257 +261 @@
 }
 
-JSCell* jsString(const char* s)
-{
-    return new JSString(s ? s : "");
-}
-
-JSCell* jsString(const UString& s)
-{
-    return s.isNull() ? new JSString("") : new JSString(s);
-}
-
-JSCell* jsOwnedString(const UString& s)
-{
-    return s.isNull() ? new JSString("", JSString::HasOtherOwner) : new JSString(s, JSString::HasOtherOwner);
+JSCell* jsString(ExecState* exec, const char* s)
+{
+    return new (exec) JSString(s ? s : "");
+}
+
+JSCell* jsString(ExecState* exec, const UString& s)
+{
+    return s.isNull() ? new (exec) JSString("") : new (exec) JSString(s);
+}
+
+JSCell* jsOwnedString(ExecState* exec, const UString& s)
+{
+    return s.isNull() ? new (exec) JSString("", JSString::HasOtherOwner) : new (exec) JSString(s, JSString::HasOtherOwner);
 }
 

trunk/JavaScriptCore/kjs/JSValue.h

@@ -26 +26 @@
 #include "CallData.h"
 #include "ConstructData.h"
+#include "ExecState.h"
 #include "JSImmediate.h"
 #include "collector.h"
@@ -52 +53 @@
 class JSValue : Noncopyable {
     friend class JSCell; // so it can derive from this class
-    friend class Collector; // so it can call asCell()
+    friend class Heap; // so it can call asCell()
 private:
     JSValue();
@@ -142 +143 @@
 
 class JSCell : public JSValue {
-    friend class Collector;
+    friend class Heap;
     friend class GetterSetter;
     friend class JSObject;
@@ -186 +187 @@
 
     // Garbage collection.
-    void* operator new(size_t);
+    void* operator new(size_t, ExecState*);
     virtual void mark();
     bool marked() const;
@@ -202 +203 @@
 
 class JSNumberCell : public JSCell {
-    friend JSValue* jsNumberCell(double);
+    friend JSValue* jsNumberCell(ExecState*, double);
 public:
     double value() const { return val; }
@@ -216 +217 @@
     virtual JSObject* toThisObject(ExecState*) const;
 
-    void* operator new(size_t size)
+    void* operator new(size_t size, ExecState* exec)
     {
 #ifdef JAVASCRIPTCORE_BUILDING_ALL_IN_ONE_FILE
-        return Collector::inlineAllocateNumber(size);
+        return exec->heap()->inlineAllocateNumber(size);
 #else
-        return Collector::allocateNumber(size);
+        return exec->heap()->allocateNumber(size);
 #endif
     }
@@ -238 +239 @@
 };
 
-JSCell* jsString(const UString&); // returns empty string if passed null string
-JSCell* jsString(const char* = ""); // returns empty string if passed 0
+JSCell* jsString(ExecState*, const UString&); // returns empty string if passed null string
+JSCell* jsString(ExecState*, const char* = ""); // returns empty string if passed 0
 
 // should be used for strings that are owned by an object that will
 // likely outlive the JSValue this makes, such as the parse tree or a
 // DOM object that contains a UString
-JSCell* jsOwnedString(const UString&); 
+JSCell* jsOwnedString(ExecState*, const UString&); 
 
 extern const double NaN;
@@ -251 +252 @@
 // Beware marking this function ALWAYS_INLINE: It takes a PIC branch, so
 // inlining it may not always be a win.
-inline JSValue* jsNumberCell(double d)
-{
-    return new JSNumberCell(d);
-}
-
-ALWAYS_INLINE JSValue* jsUndefined()
-{
-    return JSImmediate::undefinedImmediate();
-}
-
-inline JSValue* jsNull()
-{
-    return JSImmediate::nullImmediate();
-}
-
-inline JSValue* jsNaN()
-{
-    return jsNumberCell(NaN);
-}
-
-inline JSValue* jsBoolean(bool b)
-{
-    return b ? JSImmediate::trueImmediate() : JSImmediate::falseImmediate();
-}
-
-ALWAYS_INLINE JSValue* jsNumber(double d)
+inline JSValue* jsNumberCell(ExecState* exec, double d)
+{
+    return new (exec) JSNumberCell(d);
+}
+
+inline JSValue* jsNaN(ExecState* exec)
+{
+    return jsNumberCell(exec, NaN);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, double d)
 {
     JSValue* v = JSImmediate::from(d);
-    return v ? v : jsNumberCell(d);
-}
-
-ALWAYS_INLINE JSValue* jsNumber(int i)
+    return v ? v : jsNumberCell(exec, d);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, int i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(i);
-}
-
-ALWAYS_INLINE JSValue* jsNumber(unsigned i)
+    return v ? v : jsNumberCell(exec, i);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, unsigned i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(i);
-}
-
-ALWAYS_INLINE JSValue* jsNumber(long i)
+    return v ? v : jsNumberCell(exec, i);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, long i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(i);
-}
-
-ALWAYS_INLINE JSValue* jsNumber(unsigned long i)
+    return v ? v : jsNumberCell(exec, i);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, unsigned long i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(i);
-}
-
-ALWAYS_INLINE JSValue* jsNumber(long long i)
+    return v ? v : jsNumberCell(exec, i);
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, long long i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(static_cast<double>(i));
-}
-
-ALWAYS_INLINE JSValue* jsNumber(unsigned long long i)
+    return v ? v : jsNumberCell(exec, static_cast<double>(i));
+}
+
+ALWAYS_INLINE JSValue* jsNumber(ExecState* exec, unsigned long long i)
 {
     JSValue* v = JSImmediate::from(i);
-    return v ? v : jsNumberCell(static_cast<double>(i));
-}
-
-ALWAYS_INLINE JSValue* jsNumberFromAnd(ExecState *exec, JSValue* v1, JSValue* v2)
-{
-    if (JSImmediate::areBothImmediateNumbers(v1, v2))
-        return JSImmediate::andImmediateNumbers(v1, v2);
-    return jsNumber(v1->toInt32(exec) & v2->toInt32(exec));
+    return v ? v : jsNumberCell(exec, static_cast<double>(i));
 }
 
@@ -358 +337 @@
 inline bool JSCell::marked() const
 {
-    return Collector::isCellMarked(this);
+    return Heap::isCellMarked(this);
 }
 
 inline void JSCell::mark()
 {
-    return Collector::markCell(this);
+    return Heap::markCell(this);
 }
 
@@ -536 +515 @@
 ALWAYS_INLINE JSValue* JSValue::toJSNumber(ExecState* exec) const
 {
-    return JSImmediate::isNumber(this) ? const_cast<JSValue*>(this) : jsNumber(this->toNumber(exec));
+    return JSImmediate::isNumber(this) ? const_cast<JSValue*>(this) : jsNumber(exec, this->toNumber(exec));
 }
 

trunk/JavaScriptCore/kjs/MathObject.cpp

@@ -77 +77 @@
 }
 
-JSValue* MathObject::getValueProperty(ExecState*, int token) const
+JSValue* MathObject::getValueProperty(ExecState* exec, int token) const
 {
     switch (token) {
     case Euler:
-        return jsNumber(exp(1.0));
+        return jsNumber(exec, exp(1.0));
     case Ln2:
-        return jsNumber(log(2.0));
+        return jsNumber(exec, log(2.0));
     case Ln10:
-        return jsNumber(log(10.0));
+        return jsNumber(exec, log(10.0));
     case Log2E:
-        return jsNumber(1.0 / log(2.0));
+        return jsNumber(exec, 1.0 / log(2.0));
     case Log10E:
-        return jsNumber(1.0 / log(10.0));
+        return jsNumber(exec, 1.0 / log(10.0));
     case Pi:
-        return jsNumber(piDouble);
+        return jsNumber(exec, piDouble);
     case Sqrt1_2:
-        return jsNumber(sqrt(0.5));
+        return jsNumber(exec, sqrt(0.5));
     case Sqrt2:
-        return jsNumber(sqrt(2.0));
+        return jsNumber(exec, sqrt(2.0));
     }
 
@@ -107 +107 @@
 {
     double arg = args[0]->toNumber(exec);
-    return signbit(arg) ? jsNumber(-arg) : jsNumber(arg);
+    return signbit(arg) ? jsNumber(exec, -arg) : jsNumber(exec, arg);
 }
 
 JSValue* mathProtoFuncACos(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(acos(args[0]->toNumber(exec)));
+    return jsNumber(exec, acos(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncASin(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(asin(args[0]->toNumber(exec)));
+    return jsNumber(exec, asin(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncATan(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(atan(args[0]->toNumber(exec)));
+    return jsNumber(exec, atan(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncATan2(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(atan2(args[0]->toNumber(exec), args[1]->toNumber(exec)));
+    return jsNumber(exec, atan2(args[0]->toNumber(exec), args[1]->toNumber(exec)));
 }
 
@@ -134 +134 @@
     double arg = args[0]->toNumber(exec);
     if (signbit(arg) && arg > -1.0)
-        return jsNumber(-0.0);
-    return jsNumber(ceil(arg));
+        return jsNumber(exec, -0.0);
+    return jsNumber(exec, ceil(arg));
 }
 
 JSValue* mathProtoFuncCos(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(cos(args[0]->toNumber(exec)));
+    return jsNumber(exec, cos(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncExp(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(exp(args[0]->toNumber(exec)));
+    return jsNumber(exec, exp(args[0]->toNumber(exec)));
 }
 
@@ -152 +152 @@
     double arg = args[0]->toNumber(exec);
     if (signbit(arg) && arg == 0.0)
-        return jsNumber(-0.0);
-    return jsNumber(floor(arg));
+        return jsNumber(exec, -0.0);
+    return jsNumber(exec, floor(arg));
 }
 
 JSValue* mathProtoFuncLog(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(log(args[0]->toNumber(exec)));
+    return jsNumber(exec, log(args[0]->toNumber(exec)));
 }
 
@@ -174 +174 @@
             result = val;
     }
-    return jsNumber(result);
+    return jsNumber(exec, result);
 }
 
@@ -190 +190 @@
             result = val;
     }
-    return jsNumber(result);
+    return jsNumber(exec, result);
 }
 
@@ -201 +201 @@
 
     if (isnan(arg2))
-        return jsNaN();
+        return jsNaN(exec);
     if (isinf(arg2) && fabs(arg) == 1)
-        return jsNaN();
-    return jsNumber(pow(arg, arg2));
-}
-
-JSValue* mathProtoFuncRandom(ExecState*, JSObject*, const ArgList&)
+        return jsNaN(exec);
+    return jsNumber(exec, pow(arg, arg2));
+}
+
+JSValue* mathProtoFuncRandom(ExecState* exec, JSObject*, const ArgList&)
 {
 #if !USE(MULTIPLE_THREADS)
@@ -217 +217 @@
 #endif
 
-    return jsNumber(wtf_random());
+    return jsNumber(exec, wtf_random());
 }
 
@@ -224 +224 @@
     double arg = args[0]->toNumber(exec);
     if (signbit(arg) && arg >= -0.5)
-         return jsNumber(-0.0);
-    return jsNumber(floor(arg + 0.5));
+         return jsNumber(exec, -0.0);
+    return jsNumber(exec, floor(arg + 0.5));
 }
 
 JSValue* mathProtoFuncSin(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(sin(args[0]->toNumber(exec)));
+    return jsNumber(exec, sin(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncSqrt(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(sqrt(args[0]->toNumber(exec)));
+    return jsNumber(exec, sqrt(args[0]->toNumber(exec)));
 }
 
 JSValue* mathProtoFuncTan(ExecState* exec, JSObject*, const ArgList& args)
 {
-    return jsNumber(tan(args[0]->toNumber(exec)));
+    return jsNumber(exec, tan(args[0]->toNumber(exec)));
 }
 

trunk/JavaScriptCore/kjs/NumberObject.cpp

@@ -56 +56 @@
     : NumberObject(objectPrototype)
 {
-    setInternalValue(jsNumber(0));
+    setInternalValue(jsNumber(exec, 0));
 
     // The constructor will be added later, after NumberConstructor has been constructed
 
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toString, numberProtoFuncToString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toLocaleString, numberProtoFuncToLocaleString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, numberProtoFuncValueOf), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toFixed, numberProtoFuncToFixed), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toExponential, numberProtoFuncToExponential), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toPrecision, numberProtoFuncToPrecision), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toString, numberProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toLocaleString, numberProtoFuncToLocaleString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, numberProtoFuncValueOf), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toFixed, numberProtoFuncToFixed), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toExponential, numberProtoFuncToExponential), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().toPrecision, numberProtoFuncToPrecision), DontEnum);
 }
 
@@ -152 +152 @@
     double radixAsDouble = args[0]->toInteger(exec); // nan -> 0
     if (radixAsDouble == 10 || args[0]->isUndefined())
-        return jsString(v->toString(exec));
+        return jsString(exec, v->toString(exec));
 
     if (radixAsDouble < 2 || radixAsDouble > 36)
@@ -166 +166 @@
     double x = v->toNumber(exec);
     if (isnan(x) || isinf(x))
-        return jsString(UString::from(x));
+        return jsString(exec, UString::from(x));
 
     bool isNegative = x < 0.0;
@@ -205 +205 @@
     ASSERT(p < s + sizeof(s));
 
-    return jsString(startOfResultString);
+    return jsString(exec, startOfResultString);
 }
 
@@ -214 +214 @@
 
     // TODO
-    return jsString(static_cast<NumberObject*>(thisObj)->internalValue()->toString(exec));
+    return jsString(exec, static_cast<NumberObject*>(thisObj)->internalValue()->toString(exec));
 }
 
@@ -240 +240 @@
     double x = v->toNumber(exec);
     if (isnan(x))
-        return jsString("NaN");
+        return jsString(exec, "NaN");
 
     UString s;
@@ -250 +250 @@
 
     if (x >= pow(10.0, 21.0))
-        return jsString(s + UString::from(x));
+        return jsString(exec, s + UString::from(x));
 
     const double tenToTheF = pow(10.0, f);
@@ -270 +270 @@
     int kMinusf = k - f;
     if (kMinusf < m.size())
-        return jsString(s + m.substr(0, kMinusf) + "." + m.substr(kMinusf));
-    return jsString(s + m.substr(0, kMinusf));
+        return jsString(exec, s + m.substr(0, kMinusf) + "." + m.substr(kMinusf));
+    return jsString(exec, s + m.substr(0, kMinusf));
 }
 
@@ -321 +321 @@
 
     if (isnan(x) || isinf(x))
-        return jsString(UString::from(x));
+        return jsString(exec, UString::from(x));
 
     JSValue* fractionalDigitsValue = args[0];
@@ -347 +347 @@
 
     if (isnan(x))
-        return jsString("NaN");
+        return jsString(exec, "NaN");
 
     if (x == -0.0) // (-0.0).toExponential() should print as 0 instead of -0
@@ -379 +379 @@
     freedtoa(result);
 
-    return jsString(buf);
+    return jsString(exec, buf);
 }
 
@@ -392 +392 @@
     double x = v->toNumber(exec);
     if (args[0]->isUndefined() || isnan(x) || isinf(x))
-        return jsString(v->toString(exec));
+        return jsString(exec, v->toString(exec));
 
     UString s;
@@ -431 +431 @@
                 m = m.substr(0, 1) + "." + m.substr(1);
             if (e >= 0)
-                return jsString(s + m + "e+" + UString::from(e));
-            return jsString(s + m + "e-" + UString::from(-e));
+                return jsString(exec, s + m + "e+" + UString::from(e));
+            return jsString(exec, s + m + "e-" + UString::from(-e));
         }
     } else {
@@ -440 +440 @@
 
     if (e == precision - 1)
-        return jsString(s + m);
+        return jsString(exec, s + m);
     if (e >= 0) {
         if (e + 1 < m.size())
-            return jsString(s + m.substr(0, e + 1) + "." + m.substr(e + 1));
-        return jsString(s + m);
-    }
-    return jsString(s + "0." + char_sequence('0', -(e + 1)) + m);
+            return jsString(exec, s + m.substr(0, e + 1) + "." + m.substr(e + 1));
+        return jsString(exec, s + m);
+    }
+    return jsString(exec, s + "0." + char_sequence('0', -(e + 1)) + m);
 }
 
@@ -469 +469 @@
 
     // no. of arguments for constructor
-    putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly|DontDelete|DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly|DontDelete|DontEnum);
 }
 
@@ -477 +477 @@
 }
 
-JSValue* NumberConstructor::getValueProperty(ExecState*, int token) const
+JSValue* NumberConstructor::getValueProperty(ExecState* exec, int token) const
 {
     // ECMA 15.7.3
     switch (token) {
         case NaNValue:
-            return jsNaN();
+            return jsNaN(exec);
         case NegInfinity:
-            return jsNumberCell(-Inf);
+            return jsNumberCell(exec, -Inf);
         case PosInfinity:
-            return jsNumberCell(Inf);
+            return jsNumberCell(exec, Inf);
         case MaxValue:
-            return jsNumberCell(1.7976931348623157E+308);
+            return jsNumberCell(exec, 1.7976931348623157E+308);
         case MinValue:
-            return jsNumberCell(5E-324);
+            return jsNumberCell(exec, 5E-324);
     }
     ASSERT_NOT_REACHED();
@@ -505 +505 @@
 {
     JSObject* proto = exec->lexicalGlobalObject()->numberPrototype();
-    NumberObject* obj = new NumberObject(proto);
+    NumberObject* obj = new (exec) NumberObject(proto);
 
     // FIXME: Check args[0]->isUndefined() instead of args.isEmpty()?
     double n = args.isEmpty() ? 0 : args[0]->toNumber(exec);
-    obj->setInternalValue(jsNumber(n));
+    obj->setInternalValue(jsNumber(exec, n));
     return obj;
 }
@@ -517 +517 @@
 {
     // FIXME: Check args[0]->isUndefined() instead of args.isEmpty()?
-    return jsNumber(args.isEmpty() ? 0 : args[0]->toNumber(exec));
+    return jsNumber(exec, args.isEmpty() ? 0 : args[0]->toNumber(exec));
 }
 

trunk/JavaScriptCore/kjs/PropertyMap.h

@@ -35 +35 @@
     struct PropertyMapEntry;
     struct PropertyMapHashTable;
-
-    class SavedProperty : Noncopyable {
-    public:
-        // Since we use this in arrays, we allocate it uninitialized
-        // and then explicitly initialize. This means we can allocate
-        // the array without initializing every saved property in the
-        // array twice. To accomplish this, the class uses data members
-        // with types that don't have constructors.
-        SavedProperty();
-        void init(UString::Rep* name, JSValue*, unsigned attributes);
-        ~SavedProperty();
-
-        UString::Rep* name() const;
-        JSValue* value() const;
-        unsigned attributes() const;
-
-    private:
-        UString::Rep* m_name;
-        JSValue* m_value;
-        unsigned m_attributes;
-    };
 
     class PropertyMap : Noncopyable {
@@ -111 +90 @@
     {
     }
-
-    inline SavedProperty::SavedProperty()
-#ifndef NDEBUG
-        : m_name(0)
-        , m_value(0)
-        , m_attributes(0)
-#endif
-    {
-    }
-
-    inline void SavedProperty::init(UString::Rep* name, JSValue* value, unsigned attributes)
-    {
-        ASSERT(name);
-        ASSERT(value);
-
-        ASSERT(!m_name);
-        ASSERT(!m_value);
-        ASSERT(!m_attributes);
-
-        m_name = name;
-        m_value = value;
-        m_attributes = attributes;
-        name->ref();
-        gcProtect(value);
-    }
-
-    inline SavedProperty::~SavedProperty()
-    {
-        ASSERT(m_name);
-        ASSERT(m_value);
-
-        m_name->deref();
-        gcUnprotect(m_value);
-    }
-
-    inline UString::Rep* SavedProperty::name() const
-    {
-        ASSERT(m_name);
-        ASSERT(m_value);
-
-        return m_name;
-    }
-
-    inline JSValue* SavedProperty::value() const
-    {
-        ASSERT(m_name);
-        ASSERT(m_value);
-
-        return m_value;
-    }
-
-    inline unsigned SavedProperty::attributes() const
-    {
-        ASSERT(m_name);
-        ASSERT(m_value);
-
-        return m_attributes;
-    }
-
 } // namespace
 

trunk/JavaScriptCore/kjs/RegExpObject.cpp

@@ -51 +51 @@
     : JSObject(objectPrototype)
 {
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().compile, regExpProtoFuncCompile), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().exec, regExpProtoFuncExec), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().test, regExpProtoFuncTest), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, regExpProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().compile, regExpProtoFuncCompile), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().exec, regExpProtoFuncExec), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().test, regExpProtoFuncTest), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, regExpProtoFuncToString), DontEnum);
 }
 
@@ -106 +106 @@
     if (!thisObj->inherits(&RegExpObject::info)) {
         if (thisObj->inherits(&RegExpPrototype::info))
-            return jsString("//");
+            return jsString(exec, "//");
         return throwError(exec, TypeError);
     }
@@ -117 +117 @@
     if (thisObj->get(exec, exec->propertyNames().multiline)->toBoolean(exec))
         result += "m";
-    return jsString(result);
+    return jsString(exec, result);
 }
 
@@ -150 +150 @@
 }
 
-JSValue* RegExpObject::getValueProperty(ExecState*, int token) const
+JSValue* RegExpObject::getValueProperty(ExecState* exec, int token) const
 {
     switch (token) {
@@ -160 +160 @@
             return jsBoolean(m_regExp->multiline());
         case Source:
-            return jsString(m_regExp->pattern());
+            return jsString(exec, m_regExp->pattern());
         case LastIndex:
-            return jsNumber(m_lastIndex);
+            return jsNumber(exec, m_lastIndex);
     }
     
@@ -287 +287 @@
 
   // no. of arguments for constructor
-  putDirect(exec->propertyNames().length, jsNumber(2), ReadOnly | DontDelete | DontEnum);
+  putDirect(exec->propertyNames().length, jsNumber(exec, 2), ReadOnly | DontDelete | DontEnum);
 }
 
@@ -361 +361 @@
         int start = d->lastOvector[2 * i];
         if (start >= 0)
-            JSArray::put(exec, i, jsString(d->lastInput.substr(start, d->lastOvector[2 * i + 1] - start)));
-    }
-    JSArray::put(exec, exec->propertyNames().index, jsNumber(d->lastOvector[0]));
-    JSArray::put(exec, exec->propertyNames().input, jsString(d->lastInput));
+            JSArray::put(exec, i, jsString(exec, d->lastInput.substr(start, d->lastOvector[2 * i + 1] - start)));
+    }
+    JSArray::put(exec, exec->propertyNames().index, jsNumber(exec, d->lastOvector[0]));
+    JSArray::put(exec, exec->propertyNames().input, jsString(exec, d->lastInput));
 
     delete d;
@@ -372 +372 @@
 JSObject* RegExpConstructor::arrayOfMatches(ExecState* exec) const
 {
-    return new RegExpMatchesArray(exec, d.get());
-}
-
-JSValue* RegExpConstructor::getBackref(unsigned i) const
+    return new (exec) RegExpMatchesArray(exec, d.get());
+}
+
+JSValue* RegExpConstructor::getBackref(ExecState* exec, unsigned i) const
 {
   if (d->lastOvector && i <= d->lastNumSubPatterns)
-    return jsString(d->lastInput.substr(d->lastOvector[2 * i], d->lastOvector[2 * i + 1] - d->lastOvector[2 * i]));
-  return jsString("");
-}
-
-JSValue* RegExpConstructor::getLastParen() const
+    return jsString(exec, d->lastInput.substr(d->lastOvector[2 * i], d->lastOvector[2 * i + 1] - d->lastOvector[2 * i]));
+  return jsString(exec, "");
+}
+
+JSValue* RegExpConstructor::getLastParen(ExecState* exec) const
 {
   unsigned i = d->lastNumSubPatterns;
   if (i > 0) {
     ASSERT(d->lastOvector);
-    return jsString(d->lastInput.substr(d->lastOvector[2 * i], d->lastOvector[2 * i + 1] - d->lastOvector[2 * i]));
+    return jsString(exec, d->lastInput.substr(d->lastOvector[2 * i], d->lastOvector[2 * i + 1] - d->lastOvector[2 * i]));
   }
-  return jsString("");
-}
-
-JSValue *RegExpConstructor::getLeftContext() const
+  return jsString(exec, "");
+}
+
+JSValue* RegExpConstructor::getLeftContext(ExecState* exec) const
 {
   if (d->lastOvector)
-    return jsString(d->lastInput.substr(0, d->lastOvector[0]));
-  return jsString("");
-}
-
-JSValue *RegExpConstructor::getRightContext() const
+    return jsString(exec, d->lastInput.substr(0, d->lastOvector[0]));
+  return jsString(exec, "");
+}
+
+JSValue* RegExpConstructor::getRightContext(ExecState* exec) const
 {
   if (d->lastOvector) {
     UString s = d->lastInput;
-    return jsString(s.substr(d->lastOvector[1], s.size() - d->lastOvector[1]));
+    return jsString(exec, s.substr(d->lastOvector[1], s.size() - d->lastOvector[1]));
   }
-  return jsString("");
+  return jsString(exec, "");
 }
 
@@ -413 +413 @@
 }
 
-JSValue *RegExpConstructor::getValueProperty(ExecState*, int token) const
+JSValue *RegExpConstructor::getValueProperty(ExecState* exec, int token) const
 {
   switch (token) {
     case Dollar1:
-      return getBackref(1);
+      return getBackref(exec, 1);
     case Dollar2:
-      return getBackref(2);
+      return getBackref(exec, 2);
     case Dollar3:
-      return getBackref(3);
+      return getBackref(exec, 3);
     case Dollar4:
-      return getBackref(4);
+      return getBackref(exec, 4);
     case Dollar5:
-      return getBackref(5);
+      return getBackref(exec, 5);
     case Dollar6:
-      return getBackref(6);
+      return getBackref(exec, 6);
     case Dollar7:
-      return getBackref(7);
+      return getBackref(exec, 7);
     case Dollar8:
-      return getBackref(8);
+      return getBackref(exec, 8);
     case Dollar9:
-      return getBackref(9);
+      return getBackref(exec, 9);
     case Input:
-      return jsString(d->lastInput);
+      return jsString(exec, d->lastInput);
     case Multiline:
       return jsBoolean(d->multiline);
     case LastMatch:
-      return getBackref(0);
+      return getBackref(exec, 0);
     case LastParen:
-      return getLastParen();
+      return getLastParen(exec);
     case LeftContext:
-      return getLeftContext();
+      return getLeftContext(exec);
     case RightContext:
-      return getRightContext();
+      return getRightContext(exec);
     default:
-      ASSERT(0);
+      ASSERT_NOT_REACHED();
   }
 
-  return jsString("");
+  return jsString(exec, "");
 }
 
@@ -494 +494 @@
   RefPtr<RegExp> regExp = RegExp::create(pattern, flags);
   return regExp->isValid()
-    ? new RegExpObject(exec->lexicalGlobalObject()->regExpPrototype(), regExp.release())
+    ? new (exec) RegExpObject(exec->lexicalGlobalObject()->regExpPrototype(), regExp.release())
     : throwError(exec, SyntaxError, UString("Invalid regular expression: ").append(regExp->errorMessage()));
 }

trunk/JavaScriptCore/kjs/RegExpObject.h

@@ -95 +95 @@
 
     private:
-        JSValue* getBackref(unsigned) const;
-        JSValue* getLastParen() const;
-        JSValue* getLeftContext() const;
-        JSValue* getRightContext() const;
+        JSValue* getBackref(ExecState*, unsigned) const;
+        JSValue* getLastParen(ExecState*) const;
+        JSValue* getLeftContext(ExecState*) const;
+        JSValue* getRightContext(ExecState*) const;
 
         OwnPtr<RegExpConstructorPrivate> d;

trunk/JavaScriptCore/kjs/Shell.cpp

@@ -29 +29 @@
 #include "ArrayPrototype.h"
 #include "collector.h"
+#include "completion.h"
 #include "JSFunction.h"
 #include "InitializeThreading.h"
@@ -164 +165 @@
 GlobalObject::GlobalObject(Vector<UString>& arguments)
 {
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "debug"), functionDebug));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "print"), functionPrint));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "quit"), functionQuit));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "gc"), functionGC));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "version"), functionVersion));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "run"), functionRun));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "load"), functionLoad));
-    putDirectFunction(new PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "readline"), functionReadline));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "debug"), functionDebug));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "print"), functionPrint));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "quit"), functionQuit));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "gc"), functionGC));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "version"), functionVersion));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "run"), functionRun));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 1, Identifier(globalExec(), "load"), functionLoad));
+    putDirectFunction(new (globalExec()) PrototypeFunction(globalExec(), functionPrototype(), 0, Identifier(globalExec(), "readline"), functionReadline));
 
     JSObject* array = arrayConstructor()->construct(globalExec(), globalExec()->emptyList());
     for (size_t i = 0; i < arguments.size(); ++i)
-        array->put(globalExec(), i, jsString(arguments[i]));
+        array->put(globalExec(), i, jsString(globalExec(), arguments[i]));
     putDirect(Identifier(globalExec(), "arguments"), array);
 
@@ -201 +202 @@
 }
 
-JSValue* functionGC(ExecState*, JSObject*, const ArgList&)
+JSValue* functionGC(ExecState* exec, JSObject*, const ArgList&)
 {
     JSLock lock;
-    Collector::collect();
+    exec->heap()->collect();
     return jsUndefined();
 }
@@ -229 +230 @@
     stopWatch.stop();
 
-    return jsNumber(stopWatch.getElapsedMS());
+    return jsNumber(globalObject->globalExec(), stopWatch.getElapsedMS());
 }
 
@@ -245 +246 @@
 }
 
-JSValue* functionReadline(ExecState*, JSObject*, const ArgList&)
+JSValue* functionReadline(ExecState* exec, JSObject*, const ArgList&)
 {
     Vector<char, 256> line;
@@ -256 +257 @@
     }
     line.append('\0');
-    return jsString(line.data());
+    return jsString(exec, line.data());
 }
 
@@ -452 +453 @@
 
 #ifndef NDEBUG
-    Collector::collect();
+    JSGlobalData::threadInstance().heap->collect();
 #endif
 

trunk/JavaScriptCore/kjs/collector.cpp

@@ -1 +1 @@
 /*
- *  Copyright (C) 2003, 2004, 2005, 2006, 2007 Apple Inc. All rights reserved.
+ *  Copyright (C) 2003, 2004, 2005, 2006, 2007, 2008 Apple Inc. All rights reserved.
  *  Copyright (C) 2007 Eric Seidel <[email protected]>
  *
@@ -36 +36 @@
 #if USE(MULTIPLE_THREADS)
 #include <pthread.h>
+#include <wtf/Threading.h>
 #endif
 
@@ -80 +81 @@
 
 const size_t SPARE_EMPTY_BLOCKS = 2;
-const size_t MIN_ARRAY_SIZE = 14;
 const size_t GROWTH_FACTOR = 2;
 const size_t LOW_WATER_FACTOR = 4;
 const size_t ALLOCATIONS_PER_COLLECTION = 4000;
-
-static CollectorHeap primaryHeap = { 0, 0, 0, 0, 0, 0, 0, NoOperation };
-static CollectorHeap numberHeap = { 0, 0, 0, 0, 0, 0, 0, NoOperation };
-
-size_t Collector::mainThreadOnlyObjectCount = 0;
-HashSet<ArgList*>* Collector::m_markListSet;
-
-static CollectorBlock* allocateBlock()
+// This value has to be a macro to be used in max() without introducing
+// a PIC branch in Mach-O binaries, see <rdar://problem/5971391>.
+#define MIN_ARRAY_SIZE 14UL
+
+Heap::Heap()
+    : m_pagesize(getpagesize())
+    , mainThreadOnlyObjectCount(0)
+    , m_markListSet(0)
+{
+    memset(&primaryHeap, 0, sizeof(CollectorHeap));
+    memset(&numberHeap, 0, sizeof(CollectorHeap));
+}
+
+static NEVER_INLINE CollectorBlock* allocateBlock()
 {
 #if PLATFORM(DARWIN)    
@@ -104 +110 @@
     memset(address, 0, BLOCK_SIZE);
 #else
-    static size_t pagesize = getpagesize();
     
     size_t extra = 0;
-    if (BLOCK_SIZE > pagesize)
-        extra = BLOCK_SIZE - pagesize;
+    if (BLOCK_SIZE > m_pagesize)
+        extra = BLOCK_SIZE - m_pagesize;
 
     void* mmapResult = mmap(NULL, BLOCK_SIZE + extra, PROT_READ | PROT_WRITE, MAP_PRIVATE | MAP_ANON, -1, 0);
@@ -139 +144 @@
     free(block);
 #else
-    munmap(reinterpret_cast<char *>(block), BLOCK_SIZE);
-#endif
-}
-
-void Collector::recordExtraCost(size_t cost)
+    munmap(reinterpret_cast<char*>(block), BLOCK_SIZE);
+#endif
+}
+
+void Heap::recordExtraCost(size_t cost)
 {
     // Our frequency of garbage collection tries to balance memory use against speed
@@ -160 +165 @@
 }
 
-template <Collector::HeapType heapType> struct HeapConstants;
-
-template <> struct HeapConstants<Collector::PrimaryHeap> {
+template <Heap::HeapType heapType> struct HeapConstants;
+
+template <> struct HeapConstants<Heap::PrimaryHeap> {
     static const size_t cellSize = CELL_SIZE;
     static const size_t cellsPerBlock = CELLS_PER_BLOCK;
@@ -170 +175 @@
 };
 
-template <> struct HeapConstants<Collector::NumberHeap> {
+template <> struct HeapConstants<Heap::NumberHeap> {
     static const size_t cellSize = SMALL_CELL_SIZE;
     static const size_t cellsPerBlock = SMALL_CELLS_PER_BLOCK;
@@ -178 +183 @@
 };
 
-template <Collector::HeapType heapType> ALWAYS_INLINE void* Collector::heapAllocate(size_t s)
+template <Heap::HeapType heapType> ALWAYS_INLINE void* Heap::heapAllocate(size_t s)
 {
     typedef typename HeapConstants<heapType>::Block Block;
@@ -268 +273 @@
         targetBlock = (Block*)allocateBlock();
         targetBlock->freeList = targetBlock->cells;
+        targetBlock->heap = this;
         targetBlockUsedCells = 0;
         heap.blocks[usedBlocks] = (CollectorBlock*)targetBlock;
@@ -291 +297 @@
 }
 
-#ifndef JAVASCRIPTCORE_BUILDING_ALL_IN_ONE_FILE
-void* Collector::allocate(size_t s)
+void* Heap::allocate(size_t s)
 {
     return heapAllocate<PrimaryHeap>(s);
 }
-#endif
-
-void* Collector::allocateNumber(size_t s)
+
+void* Heap::allocateNumber(size_t s)
 {
     return heapAllocate<NumberHeap>(s);
@@ -363 +367 @@
 #endif
 
-void Collector::registerAsMainThread()
+void Heap::registerAsMainThread()
 {
 #if USE(MULTIPLE_THREADS)
@@ -405 +409 @@
 }
 
-class Collector::Thread {
+class Heap::Thread {
 public:
     Thread(pthread_t pthread, const PlatformThread& platThread, void* base) 
@@ -422 +426 @@
 pthread_key_t registeredThreadKey;
 pthread_once_t registeredThreadKeyOnce = PTHREAD_ONCE_INIT;
-Collector::Thread* registeredThreads;
+Heap::Thread* registeredThreads;
 
 static void destroyRegisteredThread(void* data) 
 {
-    Collector::Thread* thread = (Collector::Thread*)data;
+    Heap::Thread* thread = (Heap::Thread*)data;
 
     // Can't use JSLock convenience object here because we don't want to re-register
@@ -435 +439 @@
         registeredThreads = registeredThreads->next;
     } else {
-        Collector::Thread* last = registeredThreads;
-        Collector::Thread* t;
+        Heap::Thread* last = registeredThreads;
+        Heap::Thread* t;
         for (t = registeredThreads->next; t != NULL; t = t->next) {
             if (t == thread) {          
@@ -457 +461 @@
 }
 
-void Collector::registerThread()
+void Heap::registerThread()
 {
     ASSERT(JSLock::lockCount() > 0);
@@ -465 +469 @@
 
     if (!pthread_getspecific(registeredThreadKey)) {
-#if PLATFORM(DARWIN)
-        if (onMainThread())
-            CollectorHeapIntrospector::init(&primaryHeap, &numberHeap);
-#endif
-
-        Collector::Thread* thread = new Collector::Thread(pthread_self(), getCurrentPlatformThread(), currentThreadStackBase());
+        Heap::Thread* thread = new Heap::Thread(pthread_self(), getCurrentPlatformThread(), currentThreadStackBase());
 
         thread->next = registeredThreads;
@@ -478 +477 @@
 }
 
+void Heap::initializeHeapIntrospector()
+{
+    ASSERT(pthread_main_np());
+    CollectorHeapIntrospector::init(&primaryHeap, &numberHeap);
+}
+
 #endif
 
@@ -485 +490 @@
 #define IS_HALF_CELL_ALIGNED(p) (((intptr_t)(p) & (CELL_MASK >> 1)) == 0)
 
-void Collector::markStackObjectsConservatively(void* start, void* end)
+void Heap::markStackObjectsConservatively(void* start, void* end)
 {
     if (start > end) {
@@ -517 +522 @@
             for (size_t block = 0; block < usedNumberBlocks; block++) {
                 if ((numberBlocks[block] == blockAddr) & (offset <= lastCellOffset)) {
-                    Collector::markCell(reinterpret_cast<JSCell*>(xAsBits));
+                    Heap::markCell(reinterpret_cast<JSCell*>(xAsBits));
                     goto endMarkLoop;
                 }
@@ -539 +544 @@
 }
 
-void NEVER_INLINE Collector::markCurrentThreadConservativelyInternal()
+void NEVER_INLINE Heap::markCurrentThreadConservativelyInternal()
 {
     void* dummy;
@@ -547 +552 @@
 }
 
-void Collector::markCurrentThreadConservatively()
+void Heap::markCurrentThreadConservatively()
 {
     // setjmp forces volatile registers onto the stack
@@ -692 +697 @@
 }
 
-void Collector::markOtherThreadConservatively(Thread* thread)
-{
+void Heap::markOtherThreadConservatively(Thread* thread)
+{
+    ASSERT(this == JSGlobalData::sharedInstance().heap);
+
     suspendThread(thread->platformThread);
 
@@ -710 +717 @@
 #endif
 
-void Collector::markStackObjectsConservatively()
+void Heap::markStackObjectsConservatively()
 {
     markCurrentThreadConservatively();
 
 #if USE(MULTIPLE_THREADS)
-    for (Thread* thread = registeredThreads; thread != NULL; thread = thread->next) {
-        if (!pthread_equal(thread->posixThread, pthread_self())) {
-            markOtherThreadConservatively(thread);
+
+    if (this == JSGlobalData::sharedInstance().heap) {
+
+#ifndef NDEBUG
+        // Forbid malloc during the mark phase. Marking a thread suspends it, so 
+        // a malloc inside mark() would risk a deadlock with a thread that had been 
+        // suspended while holding the malloc lock.
+        fastMallocForbid();
+#endif
+        for (Thread* thread = registeredThreads; thread != NULL; thread = thread->next) {
+            if (!pthread_equal(thread->posixThread, pthread_self()))
+                markOtherThreadConservatively(thread);
         }
-    }
-#endif
-}
-
-typedef HashCountedSet<JSCell*> ProtectCountSet;
-
-static ProtectCountSet& protectedValues()
-{
-    static ProtectCountSet staticProtectCountSet;
-    return staticProtectCountSet;
-}
-
-void Collector::protect(JSValue* k)
+#ifndef NDEBUG
+        fastMallocAllow();
+#endif
+    }
+#endif
+}
+
+void Heap::protect(JSValue* k)
 {
     ASSERT(k);
@@ -740 +751 @@
         return;
 
-    protectedValues().add(k->asCell());
-}
-
-void Collector::unprotect(JSValue* k)
+    protectedValues.add(k->asCell());
+}
+
+void Heap::unprotect(JSValue* k)
 {
     ASSERT(k);
@@ -752 +763 @@
         return;
 
-    protectedValues().remove(k->asCell());
-}
-
-void Collector::collectOnMainThreadOnly(JSValue* value)
+    protectedValues.remove(k->asCell());
+}
+
+void Heap::collectOnMainThreadOnly(JSValue* value)
 {
     ASSERT(value);
@@ -769 +780 @@
 }
 
-void Collector::markProtectedObjects()
-{
-    ProtectCountSet& protectedValues = KJS::protectedValues();
+Heap* Heap::heap(const JSValue* v)
+{
+    if (JSImmediate::isImmediate(v))
+        return 0;
+    return Heap::cellBlock(v->asCell())->heap;
+}
+
+void Heap::markProtectedObjects()
+{
     ProtectCountSet::iterator end = protectedValues.end();
     for (ProtectCountSet::iterator it = protectedValues.begin(); it != end; ++it) {
@@ -780 +797 @@
 }
 
-void Collector::markMainThreadOnlyObjects()
+void Heap::markMainThreadOnlyObjects()
 {
 #if USE(MULTIPLE_THREADS)
@@ -822 +839 @@
 }
 
-template <Collector::HeapType heapType> size_t Collector::sweep(bool currentThreadIsMainThread)
+template <Heap::HeapType heapType> size_t Heap::sweep(bool currentThreadIsMainThread)
 {
     typedef typename HeapConstants<heapType>::Block Block;
@@ -829 +846 @@
     UNUSED_PARAM(currentThreadIsMainThread); // currentThreadIsMainThread is only used in ASSERTs
     // SWEEP: delete everything with a zero refcount (garbage) and unmark everything else
-    CollectorHeap& heap = heapType == Collector::PrimaryHeap ? primaryHeap : numberHeap;
+    CollectorHeap& heap = heapType == Heap::PrimaryHeap ? primaryHeap : numberHeap;
     
     size_t emptyBlocks = 0;
@@ -846 +863 @@
                     Cell* cell = curBlock->cells + i;
                     
-                    if (heapType != Collector::NumberHeap) {
+                    if (heapType != Heap::NumberHeap) {
                         JSCell* imp = reinterpret_cast<JSCell*>(cell);
                         // special case for allocated but uninitialized object
@@ -857 +874 @@
                         if (curBlock->collectOnMainThreadOnly.get(i)) {
                             curBlock->collectOnMainThreadOnly.clear(i);
-                            --Collector::mainThreadOnlyObjectCount;
+                            --mainThreadOnlyObjectCount;
                         }
                         imp->~JSCell();
@@ -879 +896 @@
                 } else {
                     if (!curBlock->marked.get(i >> HeapConstants<heapType>::bitmapShift)) {
-                        if (heapType != Collector::NumberHeap) {
+                        if (heapType != Heap::NumberHeap) {
                             JSCell* imp = reinterpret_cast<JSCell*>(cell);
                             ASSERT(currentThreadIsMainThread || !curBlock->collectOnMainThreadOnly.get(i));
                             if (curBlock->collectOnMainThreadOnly.get(i)) {
                                 curBlock->collectOnMainThreadOnly.clear(i);
-                                --Collector::mainThreadOnlyObjectCount;
+                                --mainThreadOnlyObjectCount;
                             }
                             imp->~JSCell();
@@ -932 +949 @@
 }
     
-bool Collector::collect()
-{
-    ASSERT(JSLock::lockCount() > 0);
-    ASSERT(JSLock::currentThreadIsHoldingLock());
+bool Heap::collect()
+{
+#ifndef NDEBUG
+    if (JSGlobalData::sharedInstance().heap == this) {
+        ASSERT(JSLock::lockCount() > 0);
+        ASSERT(JSLock::currentThreadIsHoldingLock());
+    }
+#endif
 
     ASSERT((primaryHeap.operationInProgress == NoOperation) | (numberHeap.operationInProgress == NoOperation));
@@ -947 +968 @@
 
     // MARK: first mark all referenced objects recursively starting out from the set of root objects
-
-#ifndef NDEBUG
-    // Forbid malloc during the mark phase. Marking a thread suspends it, so 
-    // a malloc inside mark() would risk a deadlock with a thread that had been 
-    // suspended while holding the malloc lock.
-    fastMallocForbid();
-#endif
 
     markStackObjectsConservatively();
@@ -964 +978 @@
 #endif
 
-#ifndef NDEBUG
-    fastMallocAllow();
-#endif
-
     size_t originalLiveObjects = primaryHeap.numLiveObjects + numberHeap.numLiveObjects;
     size_t numLiveObjects = sweep<PrimaryHeap>(currentThreadIsMainThread);
@@ -978 +988 @@
 }
 
-size_t Collector::size() 
+size_t Heap::size() 
 {
     return primaryHeap.numLiveObjects + numberHeap.numLiveObjects; 
 }
 
-size_t Collector::globalObjectCount()
+size_t Heap::globalObjectCount()
 {
     size_t count = 0;
@@ -996 +1006 @@
 }
 
-size_t Collector::protectedGlobalObjectCount()
+size_t Heap::protectedGlobalObjectCount()
 {
     size_t count = 0;
@@ -1002 +1012 @@
         JSGlobalObject* o = JSGlobalObject::head();
         do {
-            if (protectedValues().contains(o))
+            if (protectedValues.contains(o))
                 ++count;
             o = o->next();
@@ -1010 +1020 @@
 }
 
-size_t Collector::protectedObjectCount()
-{
-    return protectedValues().size();
+size_t Heap::protectedObjectCount()
+{
+    return protectedValues.size();
 }
 
@@ -1048 +1058 @@
 }
 
-HashCountedSet<const char*>* Collector::protectedObjectTypeCounts()
+HashCountedSet<const char*>* Heap::protectedObjectTypeCounts()
 {
     HashCountedSet<const char*>* counts = new HashCountedSet<const char*>;
 
-    ProtectCountSet& protectedValues = KJS::protectedValues();
     ProtectCountSet::iterator end = protectedValues.end();
     for (ProtectCountSet::iterator it = protectedValues.begin(); it != end; ++it)
@@ -1060 +1069 @@
 }
 
-bool Collector::isBusy()
+bool Heap::isBusy()
 {
     return (primaryHeap.operationInProgress != NoOperation) | (numberHeap.operationInProgress != NoOperation);

trunk/JavaScriptCore/kjs/collector.h

@@ -2 +2 @@
  *  Copyright (C) 1999-2000 Harri Porten ([email protected])
  *  Copyright (C) 2001 Peter Kelly ([email protected])
- *  Copyright (C) 2003, 2004, 2005, 2006, 2007 Apple Inc. All rights reserved.
+ *  Copyright (C) 2003, 2004, 2005, 2006, 2007, 2008 Apple Inc. All rights reserved.
  *
  *  This library is free software; you can redistribute it and/or
@@ -26 +26 @@
 #include <wtf/HashCountedSet.h>
 #include <wtf/HashSet.h>
+#include <wtf/Noncopyable.h>
 
 namespace KJS {
@@ -34 +35 @@
     class ArgList;
 
-    class Collector {
+    enum OperationInProgress { NoOperation, Allocation, Collection };
+
+    struct CollectorHeap {
+        CollectorBlock** blocks;
+        size_t numBlocks;
+        size_t usedBlocks;
+        size_t firstBlockWithPossibleSpace;
+
+        size_t numLiveObjects;
+        size_t numLiveObjectsAtLastCollect;
+        size_t extraCost;
+
+        OperationInProgress operationInProgress;
+    };
+
+    class Heap : Noncopyable {
     public:
         class Thread;
@@ -44 +60 @@
         // However, allocateNumber is used via jsNumberCell outside JavaScriptCore.
         // Thus allocateNumber needs to provide a non-inline version too.
-        static void* allocate(size_t s) { return heapAllocate<PrimaryHeap>(s); }
-        static void* inlineAllocateNumber(size_t s) { return heapAllocate<NumberHeap>(s); }
-#else
-        static void* allocate(size_t);
+        void* inlineAllocateNumber(size_t s) { return heapAllocate<NumberHeap>(s); }
+        void* inlineAllocate(size_t s) { return heapAllocate<PrimaryHeap>(s); }
 #endif
-        static void* allocateNumber(size_t s);
-
-        static bool collect();
-        static bool isBusy(); // true if an allocation or collection is in progress
+        void* allocateNumber(size_t);
+        void* allocate(size_t);
+
+        bool collect();
+        bool isBusy(); // true if an allocation or collection is in progress
 
         static const size_t minExtraCostSize = 256;
 
-        static void reportExtraMemoryCost(size_t cost);
-
-        static size_t size();
-
-        static void protect(JSValue*);
-        static void unprotect(JSValue*);
-        
-        static void collectOnMainThreadOnly(JSValue*);
-
-        static size_t globalObjectCount();
-        static size_t protectedObjectCount();
-        static size_t protectedGlobalObjectCount();
-        static HashCountedSet<const char*>* protectedObjectTypeCounts();
-
-        static void registerThread();
-        
+        void reportExtraMemoryCost(size_t cost);
+
+        size_t size();
+
+        void protect(JSValue*);
+        void unprotect(JSValue*);
+
+        void collectOnMainThreadOnly(JSValue*);
+
+        static Heap* heap(const JSValue*); // 0 for immediate values
+
+        size_t globalObjectCount();
+        size_t protectedObjectCount();
+        size_t protectedGlobalObjectCount();
+        HashCountedSet<const char*>* protectedObjectTypeCounts();
+
         static void registerAsMainThread();
+        static void registerThread(); // Should only be called by clients that can use the same heap from multiple threads.
+
+#if PLATFORM(DARWIN)
+        void initializeHeapIntrospector();
+#endif
 
         static bool isCellMarked(const JSCell*);
         static void markCell(JSCell*);
 
-        static void markStackObjectsConservatively(void* start, void* end);
-
-        static HashSet<ArgList*>& markListSet() { if (!m_markListSet) m_markListSet = new HashSet<ArgList*>; return *m_markListSet; }
+        void markStackObjectsConservatively(void* start, void* end);
+
+        HashSet<ArgList*>& markListSet() { if (!m_markListSet) m_markListSet = new HashSet<ArgList*>; return *m_markListSet; }
 
     private:
-        template <Collector::HeapType heapType> static void* heapAllocate(size_t s);
-        template <Collector::HeapType heapType> static size_t sweep(bool);
+        template <Heap::HeapType heapType> void* heapAllocate(size_t);
+        template <Heap::HeapType heapType> size_t sweep(bool);
         static const CollectorBlock* cellBlock(const JSCell*);
         static CollectorBlock* cellBlock(JSCell*);
         static size_t cellOffset(const JSCell*);
 
-        Collector();
-
-        static void recordExtraCost(size_t);
-        static void markProtectedObjects();
-        static void markMainThreadOnlyObjects();
-        static void markCurrentThreadConservatively();
-        static void markCurrentThreadConservativelyInternal();
-        static void markOtherThreadConservatively(Thread*);
-        static void markStackObjectsConservatively();
-
-        static size_t mainThreadOnlyObjectCount;
-        static bool memoryFull;
-
-        static HashSet<ArgList*>* m_markListSet;
+        Heap();
+        friend class JSGlobalData;
+
+        void recordExtraCost(size_t);
+        void markProtectedObjects();
+        void markMainThreadOnlyObjects();
+        void markCurrentThreadConservatively();
+        void markCurrentThreadConservativelyInternal();
+        void markOtherThreadConservatively(Thread*);
+        void markStackObjectsConservatively();
+
+        typedef HashCountedSet<JSCell*> ProtectCountSet;
+
+        const size_t m_pagesize;
+
+        size_t mainThreadOnlyObjectCount;
+        CollectorHeap primaryHeap;
+        CollectorHeap numberHeap;
+        ProtectCountSet protectedValues;
+        HashSet<ArgList*>* m_markListSet;
     };
 
@@ -161 +187 @@
         CollectorBitmap marked;
         CollectorBitmap collectOnMainThreadOnly;
+        Heap* heap;
     };
 
@@ -170 +197 @@
         CollectorBitmap marked;
         CollectorBitmap collectOnMainThreadOnly;
-    };
-
-    enum OperationInProgress { NoOperation, Allocation, Collection };
-
-    struct CollectorHeap {
-        CollectorBlock** blocks;
-        size_t numBlocks;
-        size_t usedBlocks;
-        size_t firstBlockWithPossibleSpace;
-
-        size_t numLiveObjects;
-        size_t numLiveObjectsAtLastCollect;
-        size_t extraCost;
-
-        OperationInProgress operationInProgress;
-    };
-
-    inline const CollectorBlock* Collector::cellBlock(const JSCell* cell)
+        Heap* heap;
+    };
+
+    inline const CollectorBlock* Heap::cellBlock(const JSCell* cell)
     {
         return reinterpret_cast<const CollectorBlock*>(reinterpret_cast<uintptr_t>(cell) & BLOCK_MASK);
     }
 
-    inline CollectorBlock* Collector::cellBlock(JSCell* cell)
+    inline CollectorBlock* Heap::cellBlock(JSCell* cell)
     {
         return const_cast<CollectorBlock*>(cellBlock(const_cast<const JSCell*>(cell)));
     }
 
-    inline size_t Collector::cellOffset(const JSCell* cell)
+    inline size_t Heap::cellOffset(const JSCell* cell)
     {
         return (reinterpret_cast<uintptr_t>(cell) & BLOCK_OFFSET_MASK) / CELL_SIZE;
     }
 
-    inline bool Collector::isCellMarked(const JSCell* cell)
+    inline bool Heap::isCellMarked(const JSCell* cell)
     {
         return cellBlock(cell)->marked.get(cellOffset(cell));
     }
 
-    inline void Collector::markCell(JSCell* cell)
+    inline void Heap::markCell(JSCell* cell)
     {
         cellBlock(cell)->marked.set(cellOffset(cell));
     }
 
-    inline void Collector::reportExtraMemoryCost(size_t cost)
+    inline void Heap::reportExtraMemoryCost(size_t cost)
     {
         if (cost > minExtraCostSize) 

trunk/JavaScriptCore/kjs/date_object.cpp

@@ -171 +171 @@
 enum LocaleDateTimeFormat { LocaleDateAndTime, LocaleDate, LocaleTime };
  
-static JSCell* formatLocaleDate(const GregorianDateTime& gdt, const LocaleDateTimeFormat format)
+static JSCell* formatLocaleDate(ExecState* exec, const GregorianDateTime& gdt, const LocaleDateTimeFormat format)
 {
     static const char* formatStrings[] = {"%#c", "%#x", "%X"};
@@ -189 +189 @@
  
     if ( ret == 0 )
-        return jsString("");
+        return jsString(exec, "");
  
     // Copy original into the buffer
@@ -203 +203 @@
     }
  
-    return jsString(timebuffer);
+    return jsString(exec, timebuffer);
 }
 
@@ -470 +470 @@
 // ECMA 15.9.4
 
-DatePrototype::DatePrototype(ExecState *, ObjectPrototype *objectProto)
-  : DateInstance(objectProto)
-{
-    setInternalValue(jsNaN());
+DatePrototype::DatePrototype(ExecState* exec, ObjectPrototype* objectProto)
+    : DateInstance(objectProto)
+{
+    setInternalValue(jsNaN(exec));
     // The constructor will be added later, after DateConstructor has been built.
 }
@@ -490 +490 @@
 {
   putDirect(exec->propertyNames().prototype, dateProto, DontEnum|DontDelete|ReadOnly);
-  putDirectFunction(new DateFunction(exec, funcProto, DateFunction::Parse, 1, exec->propertyNames().parse), DontEnum);
-  putDirectFunction(new DateFunction(exec, funcProto, DateFunction::UTC, 7, exec->propertyNames().UTC), DontEnum);
-  putDirectFunction(new DateFunction(exec, funcProto, DateFunction::Now, 0, exec->propertyNames().now), DontEnum);
-  putDirect(exec->propertyNames().length, 7, ReadOnly|DontDelete|DontEnum);
+  putDirectFunction(new (exec) DateFunction(exec, funcProto, DateFunction::Parse, 1, exec->propertyNames().parse), DontEnum);
+  putDirectFunction(new (exec) DateFunction(exec, funcProto, DateFunction::UTC, 7, exec->propertyNames().UTC), DontEnum);
+  putDirectFunction(new (exec) DateFunction(exec, funcProto, DateFunction::Now, 0, exec->propertyNames().now), DontEnum);
+  putDirect(exec, exec->propertyNames().length, 7, ReadOnly|DontDelete|DontEnum);
 }
 
@@ -544 +544 @@
   }
   
-  DateInstance *ret = new DateInstance(exec->lexicalGlobalObject()->datePrototype());
-  ret->setInternalValue(jsNumber(timeClip(value)));
+  DateInstance* ret = new (exec) DateInstance(exec->lexicalGlobalObject()->datePrototype());
+  ret->setInternalValue(jsNumber(exec, timeClip(value)));
   return ret;
 }
 
 // ECMA 15.9.2
-JSValue *DateConstructor::callAsFunction(ExecState * /*exec*/, JSObject * /*thisObj*/, const ArgList &/*args*/)
+JSValue* DateConstructor::callAsFunction(ExecState* exec, JSObject * /*thisObj*/, const ArgList &/*args*/)
 {
     time_t localTime = time(0);
@@ -556 +556 @@
     getLocalTime(&localTime, &localTM);
     GregorianDateTime ts(localTM);
-    return jsString(formatDate(ts) + " " + formatTime(ts, false));
+    return jsString(exec, formatDate(ts) + " " + formatTime(ts, false));
 }
 
@@ -564 +564 @@
     : InternalFunction(funcProto, name), id(i)
 {
-    putDirect(exec->propertyNames().length, len, DontDelete|ReadOnly|DontEnum);
+    putDirect(exec, exec->propertyNames().length, len, DontDelete|ReadOnly|DontEnum);
 }
 
@@ -571 +571 @@
 {
   if (id == Parse)
-    return jsNumber(parseDate(args[0]->toString(exec)));
+    return jsNumber(exec, parseDate(args[0]->toString(exec)));
   else if (id == Now)
-    return jsNumber(getCurrentUTCTime());
+    return jsNumber(exec, getCurrentUTCTime());
   else { // UTC
     int n = args.size();
@@ -583 +583 @@
         || (n >= 6 && isnan(args[5]->toNumber(exec)))
         || (n >= 7 && isnan(args[6]->toNumber(exec)))) {
-      return jsNaN();
+      return jsNaN(exec);
     }
 
@@ -595 +595 @@
     t.second = args[5]->toInt32(exec);
     double ms = (n >= 7) ? args[6]->toNumber(exec) : 0;
-    return jsNumber(gregorianDateTimeToMS(t, ms, true));
+    return jsNumber(exec, gregorianDateTimeToMS(t, ms, true));
   }
 }
@@ -990 +990 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsString(formatDate(t) + " " + formatTime(t, utc));
+        return jsString(exec, "Invalid Date");
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsString(exec, formatDate(t) + " " + formatTime(t, utc));
 }
 
@@ -1008 +1008 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsString(formatDateUTCVariant(t) + " " + formatTime(t, utc));
+        return jsString(exec, "Invalid Date");
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsString(exec, formatDateUTCVariant(t) + " " + formatTime(t, utc));
 }
 
@@ -1026 +1026 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsString(formatDate(t));
+        return jsString(exec, "Invalid Date");
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsString(exec, formatDate(t));
 }
 
@@ -1044 +1044 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsString(formatTime(t, utc));
+        return jsString(exec, "Invalid Date");
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsString(exec, formatTime(t, utc));
 }
 
@@ -1060 +1060 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
+        return jsString(exec, "Invalid Date");
 
 #if PLATFORM(MAC)
     double secs = floor(milli / msPerSecond);
-    return jsString(formatLocaleDate(exec, secs, true, true, args));
+    return jsString(exec, formatLocaleDate(exec, secs, true, true, args));
 #else
     UNUSED_PARAM(args);
@@ -1072 +1072 @@
     GregorianDateTime t;
     thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return formatLocaleDate(t, LocaleDateAndTime);
+    return formatLocaleDate(exec, t, LocaleDateAndTime);
 #endif
 }
@@ -1085 +1085 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
+        return jsString(exec, "Invalid Date");
 
 #if PLATFORM(MAC)
     double secs = floor(milli / msPerSecond);
-    return jsString(formatLocaleDate(exec, secs, true, false, args));
+    return jsString(exec, formatLocaleDate(exec, secs, true, false, args));
 #else
     UNUSED_PARAM(args);
@@ -1097 +1097 @@
     GregorianDateTime t;
     thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return formatLocaleDate(t, LocaleDate);
+    return formatLocaleDate(exec, t, LocaleDate);
 #endif
 }
@@ -1110 +1110 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
+        return jsString(exec, "Invalid Date");
 
 #if PLATFORM(MAC)
     double secs = floor(milli / msPerSecond);
-    return jsString(formatLocaleDate(exec, secs, false, true, args));
+    return jsString(exec, formatLocaleDate(exec, secs, false, true, args));
 #else
     UNUSED_PARAM(args);
@@ -1122 +1122 @@
     GregorianDateTime t;
     thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return formatLocaleDate(t, LocaleTime);
+    return formatLocaleDate(exec, t, LocaleTime);
 #endif
 }
@@ -1135 +1135 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    return jsNumber(milli);
+        return jsNaN(exec);
+
+    return jsNumber(exec, milli);
 }
 
@@ -1149 +1149 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    return jsNumber(milli);
+        return jsNaN(exec);
+
+    return jsNumber(exec, milli);
 }
 
@@ -1165 +1165 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(1900 + t.year);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, 1900 + t.year);
 }
 
@@ -1183 +1183 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(1900 + t.year);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, 1900 + t.year);
 }
 
@@ -1201 +1201 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsString("Invalid Date");
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsString(formatDateUTCVariant(t) + " " + formatTime(t, utc));
+        return jsString(exec, "Invalid Date");
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsString(exec, formatDateUTCVariant(t) + " " + formatTime(t, utc));
 }
 
@@ -1219 +1219 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.month);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.month);
 }
 
@@ -1237 +1237 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.month);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.month);
 }
 
@@ -1255 +1255 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.monthDay);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.monthDay);
 }
 
@@ -1273 +1273 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.monthDay);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.monthDay);
 }
 
@@ -1291 +1291 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.weekDay);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.weekDay);
 }
 
@@ -1309 +1309 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.weekDay);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.weekDay);
 }
 
@@ -1327 +1327 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.hour);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.hour);
 }
 
@@ -1345 +1345 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.hour);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.hour);
 }
 
@@ -1363 +1363 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.minute);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.minute);
 }
 
@@ -1381 +1381 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.minute);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.minute);
 }
 
@@ -1399 +1399 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.second);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.second);
 }
 
@@ -1417 +1417 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(t.second);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, t.second);
 }
 
@@ -1433 +1433 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
+        return jsNaN(exec);
 
     double secs = floor(milli / msPerSecond);
     double ms = milli - secs * msPerSecond;
-    return jsNumber(ms);
+    return jsNumber(exec, ms);
 }
 
@@ -1449 +1449 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
+        return jsNaN(exec);
 
     double secs = floor(milli / msPerSecond);
     double ms = milli - secs * msPerSecond;
-    return jsNumber(ms);
+    return jsNumber(exec, ms);
 }
 
@@ -1467 +1467 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
-
-    GregorianDateTime t;
-    thisDateObj->msToGregorianDateTime(milli, utc, t);
-    return jsNumber(-gmtoffset(t) / minutesPerHour);
+        return jsNaN(exec);
+
+    GregorianDateTime t;
+    thisDateObj->msToGregorianDateTime(milli, utc, t);
+    return jsNumber(exec, -gmtoffset(t) / minutesPerHour);
 }
 
@@ -1482 +1482 @@
 
     double milli = timeClip(args[0]->toNumber(exec));
-    JSValue* result = jsNumber(milli);
+    JSValue* result = jsNumber(exec, milli);
     thisDateObj->setInternalValue(result);
     return result;
@@ -1497 +1497 @@
     
     if (args.isEmpty() || isnan(milli)) {
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
@@ -1509 +1509 @@
 
     if (!fillStructuresUsingTimeArgs(exec, args, numArgsToUse, &ms, &t)) {
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
     } 
     
-    JSValue* result = jsNumber(gregorianDateTimeToMS(t, ms, inputIsUTC));
+    JSValue* result = jsNumber(exec, gregorianDateTimeToMS(t, ms, inputIsUTC));
     thisDateObj->setInternalValue(result);
     return result;
@@ -1526 +1526 @@
     DateInstance* thisDateObj = static_cast<DateInstance*>(thisObj);
     if (args.isEmpty()) {
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
@@ -1547 +1547 @@
     
     if (!fillStructuresUsingDateArgs(exec, args, numArgsToUse, &ms, &t)) {
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
     } 
            
-    JSValue* result = jsNumber(gregorianDateTimeToMS(t, ms, inputIsUTC));
+    JSValue* result = jsNumber(exec, gregorianDateTimeToMS(t, ms, inputIsUTC));
     thisDateObj->setInternalValue(result);
     return result;
@@ -1650 +1650 @@
     DateInstance* thisDateObj = static_cast<DateInstance*>(thisObj);     
     if (args.isEmpty()) { 
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
@@ -1673 +1673 @@
     int32_t year = args[0]->toInt32(exec, ok);
     if (!ok) {
-        JSValue* result = jsNaN();
+        JSValue* result = jsNaN(exec);
         thisDateObj->setInternalValue(result);
         return result;
@@ -1679 +1679 @@
             
     t.year = (year > 99 || year < 0) ? year - 1900 : year;
-    JSValue* result = jsNumber(gregorianDateTimeToMS(t, ms, utc));
+    JSValue* result = jsNumber(exec, gregorianDateTimeToMS(t, ms, utc));
     thisDateObj->setInternalValue(result);
     return result;
@@ -1695 +1695 @@
     double milli = v->toNumber(exec);
     if (isnan(milli))
-        return jsNaN();
+        return jsNaN(exec);
 
     GregorianDateTime t;
@@ -1701 +1701 @@
 
     // NOTE: IE returns the full year even in getYear.
-    return jsNumber(t.year);
+    return jsNumber(exec, t.year);
 }
 

trunk/JavaScriptCore/kjs/error_object.cpp

@@ -46 +46 @@
     // The constructor will be added later in ErrorConstructor's constructor
 
-    putDirect(exec->propertyNames().name, jsString("Error"), DontEnum);
-    putDirect(exec->propertyNames().message, jsString("Unknown error"), DontEnum);
+    putDirect(exec->propertyNames().name, jsString(exec, "Error"), DontEnum);
+    putDirect(exec->propertyNames().message, jsString(exec, "Unknown error"), DontEnum);
 
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, errorProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, errorProtoFuncToString), DontEnum);
 }
 
@@ -65 +65 @@
         s += ": " + v->toString(exec);
 
-    return jsString(s);
+    return jsString(exec, s);
 }
 
@@ -75 +75 @@
     // ECMA 15.11.3.1 Error.prototype
     putDirect(exec->propertyNames().prototype, errorProto, DontEnum|DontDelete|ReadOnly);
-    putDirect(exec->propertyNames().length, jsNumber(1), DontDelete|ReadOnly|DontEnum);
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), DontDelete|ReadOnly|DontEnum);
 }
 
@@ -87 +87 @@
 {
     JSObject* proto = static_cast<JSObject*>(exec->lexicalGlobalObject()->errorPrototype());
-    JSObject* imp = new ErrorInstance(proto);
+    JSObject* imp = new (exec) ErrorInstance(proto);
     JSObject* obj(imp);
 
     if (!args[0]->isUndefined())
-        imp->putDirect(exec->propertyNames().message, jsString(args[0]->toString(exec)));
+        imp->putDirect(exec->propertyNames().message, jsString(exec, args[0]->toString(exec)));
 
     return obj;
@@ -108 +108 @@
     : JSObject(errorProto)
 {
-    putDirect(exec->propertyNames().name, jsString(name), 0);
-    putDirect(exec->propertyNames().message, jsString(message), 0);
+    putDirect(exec->propertyNames().name, jsString(exec, name), 0);
+    putDirect(exec->propertyNames().message, jsString(exec, message), 0);
 }
 
@@ -120 +120 @@
     , proto(prot)
 {
-    putDirect(exec->propertyNames().length, jsNumber(1), DontDelete|ReadOnly|DontEnum); // ECMA 15.11.7.5
+    putDirect(exec->propertyNames().length, jsNumber(exec, 1), DontDelete|ReadOnly|DontEnum); // ECMA 15.11.7.5
     putDirect(exec->propertyNames().prototype, proto, DontDelete|ReadOnly|DontEnum);
 }
@@ -131 +131 @@
 JSObject* NativeErrorConstructor::construct(ExecState* exec, const ArgList& args)
 {
-    JSObject* imp = new ErrorInstance(proto);
+    JSObject* imp = new (exec) ErrorInstance(proto);
     JSObject* obj(imp);
     if (!args[0]->isUndefined())
-        imp->putDirect(exec->propertyNames().message, jsString(args[0]->toString(exec)));
+        imp->putDirect(exec->propertyNames().message, jsString(exec, args[0]->toString(exec)));
     return obj;
 }

trunk/JavaScriptCore/kjs/identifier.h

@@ -26 +26 @@
 
 namespace KJS {
+
+    class ExecState;
 
     class Identifier {

trunk/JavaScriptCore/kjs/internal.cpp

@@ -81 +81 @@
 inline StringObject* StringObject::create(ExecState* exec, JSString* string)
 {
-    return new StringObject(exec->lexicalGlobalObject()->stringPrototype(), string);
+    return new (exec) StringObject(exec->lexicalGlobalObject()->stringPrototype(), string);
 }
 
@@ -94 +94 @@
 }
 
-JSValue* JSString::lengthGetter(ExecState*, const Identifier&, const PropertySlot& slot)
-{
-    return jsNumber(static_cast<JSString*>(slot.slotBase())->value().size());
-}
-
-JSValue* JSString::indexGetter(ExecState*, const Identifier&, const PropertySlot& slot)
-{
-    return jsString(static_cast<JSString*>(slot.slotBase())->value().substr(slot.index(), 1));
-}
-
-JSValue* JSString::indexNumericPropertyGetter(ExecState*, unsigned index, const PropertySlot& slot)
-{
-    return jsString(static_cast<JSString*>(slot.slotBase())->value().substr(index, 1));
+JSValue* JSString::lengthGetter(ExecState* exec, const Identifier&, const PropertySlot& slot)
+{
+    return jsNumber(exec, static_cast<JSString*>(slot.slotBase())->value().size());
+}
+
+JSValue* JSString::indexGetter(ExecState* exec, const Identifier&, const PropertySlot& slot)
+{
+    return jsString(exec, static_cast<JSString*>(slot.slotBase())->value().substr(slot.index(), 1));
+}
+
+JSValue* JSString::indexNumericPropertyGetter(ExecState* exec, unsigned index, const PropertySlot& slot)
+{
+    return jsString(exec, static_cast<JSString*>(slot.slotBase())->value().substr(index, 1));
 }
 

trunk/JavaScriptCore/kjs/interpreter.cpp

@@ -28 +28 @@
 #include "Machine.h"
 #include "Parser.h"
+#include "completion.h"
 #include "debugger.h"
 #include <profiler/Profiler.h>

trunk/JavaScriptCore/kjs/list.cpp

@@ -21 +21 @@
 #include "config.h"
 #include "list.h"
+
+#include "JSValue.h"
 
 using std::min;
@@ -61 +63 @@
         // We can only register for explicit marking once we know which heap
         // is the current one, i.e., when a non-immediate value is appended.
-        if (!JSImmediate::isImmediate(v)) { // Will be: if (Heap* heap = Heap::heap(v))
-            ListSet& markSet = Collector::markListSet();
+        if (Heap* heap = Heap::heap(v)) {
+            ListSet& markSet = heap->markListSet();
             markSet.add(this);
             m_markSet = &markSet;

trunk/JavaScriptCore/kjs/list.h

@@ -1 +1 @@
 /*
  *  Copyright (C) 1999-2001 Harri Porten ([email protected])
- *  Copyright (C) 2003, 2007 Apple Computer, Inc.
+ *  Copyright (C) 2003, 2007, 2008 Apple Computer, Inc.
  *
  *  This library is free software; you can redistribute it and/or
@@ -23 +23 @@
 #define KJS_LIST_H
 
-#include <kjs/JSValue.h>
+#include "JSImmediate.h"
 #include <wtf/HashSet.h>
 #include <wtf/Noncopyable.h>
@@ -121 +121 @@
         
         JSValue** buffer() const { return *m_bufferSlot + m_offset; }
-        
+
         JSValue*** m_bufferSlot;
         size_t m_offset;

trunk/JavaScriptCore/kjs/lookup.h

@@ -110 +110 @@
 
       const HashEntry* entry = slot.staticEntry();
-      JSValue* val = new PrototypeFunction(exec, entry->length, propertyName, entry->functionValue);
+      JSValue* val = new (exec) PrototypeFunction(exec, entry->length, propertyName, entry->functionValue);
       thisObj->putDirect(propertyName, val, entry->attributes);
       return val;
@@ -250 +250 @@
       return static_cast<JSObject* >(obj);
     }
-    JSObject* newObject = new ClassCtor(exec);
+    JSObject* newObject = new (exec) ClassCtor(exec);
     globalObject->putDirect(propertyName, newObject, DontEnum);
     return newObject;

trunk/JavaScriptCore/kjs/nodes.cpp

@@ -196 +196 @@
 RegisterID* Node::emitThrowError(CodeGenerator& generator, ErrorType e, const char* msg)
 {
-    RegisterID* exception = generator.emitNewError(generator.newTemporary(), e, jsString(msg));
+    RegisterID* exception = generator.emitNewError(generator.newTemporary(), e, jsString(generator.globalExec(), msg));
     generator.emitThrow(exception);
     return exception;
@@ -205 +205 @@
     UString message = msg;
     substitute(message, label.ustring());
-    RegisterID* exception = generator.emitNewError(generator.newTemporary(), e, jsString(message));
+    RegisterID* exception = generator.emitNewError(generator.newTemporary(), e, jsString(generator.globalExec(), message));
     generator.emitThrow(exception);
     return exception;
@@ -273 +273 @@
 {
     // FIXME: should we try to atomize constant strings?
-    return generator.emitLoad(generator.finalDestination(dst), jsOwnedString(m_value));
+    return generator.emitLoad(generator.finalDestination(dst), jsOwnedString(generator.globalExec(), m_value));
 }
 
@@ -322 +322 @@
     }
 
-    value = generator.emitLoad(generator.newTemporary(), jsNumber(m_elision + length));
+    value = generator.emitLoad(generator.newTemporary(), jsNumber(generator.globalExec(), m_elision + length));
     generator.emitPutById(newArray.get(), generator.propertyNames().length, value);
 
@@ -1693 +1693 @@
 JSFunction* FuncDeclNode::makeFunction(ExecState* exec, ScopeChainNode* scopeChain)
 {
-    JSFunction* func = new JSFunction(exec, m_ident, m_body.get(), scopeChain);
+    JSFunction* func = new (exec) JSFunction(exec, m_ident, m_body.get(), scopeChain);
 
     JSObject* proto = exec->lexicalGlobalObject()->objectConstructor()->construct(exec, exec->emptyList());
     proto->putDirect(exec->propertyNames().constructor, func, DontEnum);
     func->putDirect(exec->propertyNames().prototype, proto, DontDelete);
-    func->putDirect(exec->propertyNames().length, jsNumber(m_body->parameters().size()), ReadOnly | DontDelete | DontEnum);
+    func->putDirect(exec->propertyNames().length, jsNumber(exec, m_body->parameters().size()), ReadOnly | DontDelete | DontEnum);
     return func;
 }
@@ -1716 +1716 @@
 JSFunction* FuncExprNode::makeFunction(ExecState* exec, ScopeChainNode* scopeChain)
 {
-    JSFunction* func = new JSFunction(exec, m_ident, m_body.get(), scopeChain);
+    JSFunction* func = new (exec) JSFunction(exec, m_ident, m_body.get(), scopeChain);
     JSObject* proto = exec->lexicalGlobalObject()->objectConstructor()->construct(exec, exec->emptyList());
     proto->putDirect(exec->propertyNames().constructor, func, DontEnum);
@@ -1730 +1730 @@
 
     if (!m_ident.isNull()) {
-        JSObject* functionScopeObject = new JSObject;
+        JSObject* functionScopeObject = new (exec) JSObject;
         functionScopeObject->putDirect(m_ident, func, ReadOnly | DontDelete);
         func->scope().push(functionScopeObject);

trunk/JavaScriptCore/kjs/nodes.h

@@ -28 +28 @@
 
 #include "JSString.h"
+#include "LabelStack.h"
 #include "Opcode.h"
 #include "regexp.h"

trunk/JavaScriptCore/kjs/object_object.cpp

@@ -44 +44 @@
     : JSObject() // [[Prototype]] is null
 {
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, objectProtoFuncToString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toLocaleString, objectProtoFuncToLocaleString), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, objectProtoFuncValueOf), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().hasOwnProperty, objectProtoFuncHasOwnProperty), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().propertyIsEnumerable, objectProtoFuncPropertyIsEnumerable), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().isPrototypeOf, objectProtoFuncIsPrototypeOf), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toString, objectProtoFuncToString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().toLocaleString, objectProtoFuncToLocaleString), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 0, exec->propertyNames().valueOf, objectProtoFuncValueOf), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().hasOwnProperty, objectProtoFuncHasOwnProperty), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().propertyIsEnumerable, objectProtoFuncPropertyIsEnumerable), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().isPrototypeOf, objectProtoFuncIsPrototypeOf), DontEnum);
 
     // Mozilla extensions
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 2, exec->propertyNames().__defineGetter__, objectProtoFuncDefineGetter), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 2, exec->propertyNames().__defineSetter__, objectProtoFuncDefineSetter), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().__lookupGetter__, objectProtoFuncLookupGetter), DontEnum);
-    putDirectFunction(new PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().__lookupSetter__, objectProtoFuncLookupSetter), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 2, exec->propertyNames().__defineGetter__, objectProtoFuncDefineGetter), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 2, exec->propertyNames().__defineSetter__, objectProtoFuncDefineSetter), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().__lookupGetter__, objectProtoFuncLookupGetter), DontEnum);
+    putDirectFunction(new (exec) PrototypeFunction(exec, functionPrototype, 1, exec->propertyNames().__lookupSetter__, objectProtoFuncLookupSetter), DontEnum);
 }
 
@@ -125 +125 @@
 JSValue* objectProtoFuncToLocaleString(ExecState* exec, JSObject* thisObj, const ArgList&)
 {
-    return jsString(thisObj->toString(exec));
+    return jsString(exec, thisObj->toString(exec));
 }
 
-JSValue* objectProtoFuncToString(ExecState*, JSObject* thisObj, const ArgList&)
+JSValue* objectProtoFuncToString(ExecState* exec, JSObject* thisObj, const ArgList&)
 {
-    return jsString("[object " + thisObj->className() + "]");
+    return jsString(exec, "[object " + thisObj->className() + "]");
 }
 
@@ -142 +142 @@
 
   // no. of arguments for constructor
-  putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly|DontDelete|DontEnum);
+  putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly|DontDelete|DontEnum);
 }
 
@@ -162 +162 @@
   case NullType:
   case UndefinedType:
-      return new JSObject(exec->lexicalGlobalObject()->objectPrototype());
+      return new (exec) JSObject(exec->lexicalGlobalObject()->objectPrototype());
   default:
       ASSERT_NOT_REACHED();

trunk/JavaScriptCore/kjs/protect.h

@@ -31 +31 @@
 namespace KJS {
 
-    inline void gcProtect(JSValue *val) 
-    { 
-        Collector::protect(val);
+    inline void gcProtect(JSValue* val) 
+    {
+        Heap* heap = Heap::heap(val);
+        if (heap)
+            heap->protect(val);
     }
 
-    inline void gcUnprotect(JSValue *val)
-    { 
-        Collector::unprotect(val);
+    inline void gcUnprotect(JSValue* val)
+    {
+        Heap* heap = Heap::heap(val);
+        if (heap)
+            heap->unprotect(val);
     }
 

trunk/JavaScriptCore/kjs/string_object.cpp

@@ -41 +41 @@
 const ClassInfo StringObject::info = { "String", 0, 0, 0 };
 
-StringObject::StringObject(JSObject *proto)
+StringObject::StringObject(ExecState* exec, JSObject* proto)
   : JSWrapperObject(proto)
 {
-  setInternalValue(jsString(""));
-}
-
-StringObject::StringObject(JSObject *proto, JSString* string)
+  setInternalValue(jsString(exec, ""));
+}
+
+StringObject::StringObject(JSObject* proto, JSString* string)
   : JSWrapperObject(proto)
 {
@@ -53 +53 @@
 }
 
-StringObject::StringObject(JSObject *proto, const UString &string)
+StringObject::StringObject(ExecState* exec, JSObject* proto, const UString& string)
   : JSWrapperObject(proto)
 {
-  setInternalValue(jsString(string));
+  setInternalValue(jsString(exec, string));
 }
 
@@ -136 +136 @@
 // ECMA 15.5.4
 StringPrototype::StringPrototype(ExecState* exec, ObjectPrototype* objProto)
-  : StringObject(objProto)
+  : StringObject(exec, objProto)
 {
   // The constructor will be added later, after StringConstructor has been built
-  putDirect(exec->propertyNames().length, jsNumber(0), DontDelete | ReadOnly | DontEnum);
+  putDirect(exec->propertyNames().length, jsNumber(exec, 0), DontDelete | ReadOnly | DontEnum);
 }
 
@@ -315 +315 @@
                 args.append(jsUndefined());
               else
-                args.append(jsString(source.substr(matchStart, matchLen)));
+                args.append(jsString(exec, source.substr(matchStart, matchLen)));
           }
           
-          args.append(jsNumber(completeMatchStart));
+          args.append(jsNumber(exec, completeMatchStart));
           args.append(sourceVal);
 
@@ -352 +352 @@
       return sourceVal;
 
-    return jsString(result);
+    return jsString(exec, result);
   }
   
@@ -366 +366 @@
       ArgList args;
       
-      args.append(jsString(source.substr(matchPos, matchLen)));
-      args.append(jsNumber(matchPos));
+      args.append(jsString(exec, source.substr(matchPos, matchLen)));
+      args.append(jsNumber(exec, matchPos));
       args.append(sourceVal);
       
@@ -373 +373 @@
   }
 
-  return jsString(source.substr(0, matchPos) + replacementString + source.substr(matchPos + matchLen));
+  return jsString(exec, source.substr(0, matchPos) + replacementString + source.substr(matchPos + matchLen));
 }
 
@@ -405 +405 @@
     else
       u = "";
-    return jsString(u);
+    return jsString(exec, u);
 }
 
@@ -419 +419 @@
     double dpos = a0->toInteger(exec);
     if (dpos >= 0 && dpos < len)
-      result = jsNumber(s[static_cast<int>(dpos)]);
+      result = jsNumber(exec, s[static_cast<int>(dpos)]);
     else
-      result = jsNaN();
+      result = jsNaN(exec);
     return result;
 }
@@ -434 +434 @@
         s += (*it)->toString(exec);
     }
-    return jsString(s);
+    return jsString(exec, s);
 }
 
@@ -451 +451 @@
     else if (dpos > len)
         dpos = len;
-    return jsNumber(s.find(u2, static_cast<int>(dpos)));
+    return jsNumber(exec, s.find(u2, static_cast<int>(dpos)));
 }
 
@@ -469 +469 @@
     else if (!(dpos <= len)) // true for NaN
         dpos = len;
-    return jsNumber(s.rfind(u2, static_cast<int>(dpos)));
+    return jsNumber(exec, s.rfind(u2, static_cast<int>(dpos)));
 }
 
@@ -508 +508 @@
       int lastIndex = 0;
       while (pos >= 0) {
-        list.append(jsString(u.substr(pos, matchLength)));
+        list.append(jsString(exec, u.substr(pos, matchLength)));
         lastIndex = pos;
         pos += matchLength == 0 ? 1 : matchLength;
@@ -550 +550 @@
     int matchLength;
     regExpObj->performMatch(reg.get(), u, 0, pos, matchLength);
-    return jsNumber(pos);
+    return jsNumber(exec, pos);
 }
 
@@ -560 +560 @@
     JSString* sVal = thisObj->inherits(&StringObject::info) ?
       static_cast<StringObject*>(thisObj)->internalValue() :
-      static_cast<JSString*>(jsString(s));
+      static_cast<JSString*>(jsString(exec, s));
 
     JSValue* a0 = args[0];
@@ -587 +587 @@
         if (to > len)
             to = len;
-        return jsString(s.substr(static_cast<int>(from), static_cast<int>(to - from)));
-    }
-
-    return jsString("");
+        return jsString(exec, s.substr(static_cast<int>(from), static_cast<int>(to - from)));
+    }
+
+    return jsString(exec, "");
 }
 
@@ -613 +613 @@
       if (u.isEmpty() && reg->match(u, 0) >= 0) {
         // empty string matched by regexp -> empty array
-        res->put(exec, exec->propertyNames().length, jsNumber(0));
+        res->put(exec, exec->propertyNames().length, jsNumber(exec, 0));
         return result;
       }
@@ -625 +625 @@
         pos = mpos + (mlen == 0 ? 1 : mlen);
         if (mpos != p0 || mlen) {
-          res->put(exec,i, jsString(u.substr(p0, mpos-p0)));
+          res->put(exec,i, jsString(exec, u.substr(p0, mpos-p0)));
           p0 = mpos + mlen;
           i++;
@@ -634 +634 @@
             res->put(exec, i++, jsUndefined());
           else
-            res->put(exec, i++, jsString(u.substr(spos, ovector[si * 2 + 1] - spos)));
+            res->put(exec, i++, jsString(exec, u.substr(spos, ovector[si * 2 + 1] - spos)));
         }
       }
@@ -642 +642 @@
         if (u.isEmpty()) {
           // empty separator matches empty string -> empty array
-          res->put(exec, exec->propertyNames().length, jsNumber(0));
+          res->put(exec, exec->propertyNames().length, jsNumber(exec, 0));
           return result;
         } else {
           while (static_cast<uint32_t>(i) != limit && i < u.size()-1)
-            res->put(exec, i++, jsString(u.substr(p0++, 1)));
+            res->put(exec, i++, jsString(exec, u.substr(p0++, 1)));
         }
       } else {
         while (static_cast<uint32_t>(i) != limit && (pos = u.find(u2, p0)) >= 0) {
-          res->put(exec, i, jsString(u.substr(p0, pos-p0)));
+          res->put(exec, i, jsString(exec, u.substr(p0, pos - p0)));
           p0 = pos + u2.size();
           i++;
@@ -658 +658 @@
     // add remaining string, if any
     if (static_cast<uint32_t>(i) != limit)
-      res->put(exec, i++, jsString(u.substr(p0)));
-    res->put(exec, exec->propertyNames().length, jsNumber(i));
+      res->put(exec, i++, jsString(exec, u.substr(p0)));
+    res->put(exec, exec->propertyNames().length, jsNumber(exec, i));
     return result;
 }
@@ -675 +675 @@
     double length = a1->isUndefined() ? len : a1->toInteger(exec);
     if (start >= len)
-      return jsString("");
+      return jsString(exec, "");
     if (length < 0)
-      return jsString("");
+      return jsString(exec, "");
     if (start < 0) {
       start += len;
@@ -685 +685 @@
     if (length > len)
       length = len;
-    return jsString(s.substr(static_cast<int>(start), static_cast<int>(length)));
+    return jsString(exec, s.substr(static_cast<int>(start), static_cast<int>(length)));
 }
 
@@ -718 +718 @@
       start = temp;
     }
-    return jsString(s.substr((int)start, (int)end-(int)start));
+    return jsString(exec, s.substr((int)start, (int)end-(int)start));
 }
 
@@ -728 +728 @@
     JSString* sVal = thisObj->inherits(&StringObject::info)
         ? static_cast<StringObject*>(thisObj)->internalValue()
-        : static_cast<JSString*>(jsString(s));
+        : static_cast<JSString*>(jsString(exec, s));
     int ssize = s.size();
     if (!ssize)
@@ -743 +743 @@
     if (length == ssize && memcmp(buffer.data(), s.data(), length * sizeof(UChar)) == 0)
         return sVal;
-    return jsString(UString(buffer.releaseBuffer(), length, false));
+    return jsString(exec, UString(buffer.releaseBuffer(), length, false));
 }
 
@@ -753 +753 @@
     JSString* sVal = thisObj->inherits(&StringObject::info)
         ? static_cast<StringObject*>(thisObj)->internalValue()
-        : static_cast<JSString*>(jsString(s));
+        : static_cast<JSString*>(jsString(exec, s));
     int ssize = s.size();
     if (!ssize)
@@ -768 +768 @@
     if (length == ssize && memcmp(buffer.data(), s.data(), length * sizeof(UChar)) == 0)
         return sVal;
-    return jsString(UString(buffer.releaseBuffer(), length, false));
+    return jsString(exec, UString(buffer.releaseBuffer(), length, false));
 }
 
@@ -779 +779 @@
     JSString* sVal = thisObj->inherits(&StringObject::info)
         ? static_cast<StringObject*>(thisObj)->internalValue()
-        : static_cast<JSString*>(jsString(s));
+        : static_cast<JSString*>(jsString(exec, s));
     int ssize = s.size();
     if (!ssize)
@@ -794 +794 @@
     if (length == ssize && memcmp(buffer.data(), s.data(), length * sizeof(UChar)) == 0)
         return sVal;
-    return jsString(UString(buffer.releaseBuffer(), length, false));
+    return jsString(exec, UString(buffer.releaseBuffer(), length, false));
 }
 
@@ -804 +804 @@
     JSString* sVal = thisObj->inherits(&StringObject::info)
         ? static_cast<StringObject*>(thisObj)->internalValue()
-        : static_cast<JSString*>(jsString(s));
+        : static_cast<JSString*>(jsString(exec, s));
     int ssize = s.size();
     if (!ssize)
@@ -819 +819 @@
     if (length == ssize && memcmp(buffer.data(), s.data(), length * sizeof(UChar)) == 0)
         return sVal;
-    return jsString(UString(buffer.releaseBuffer(), length, false));
+    return jsString(exec, UString(buffer.releaseBuffer(), length, false));
 }
 
@@ -825 +825 @@
 {
     if (args.size() < 1)
-      return jsNumber(0);
-
-    // This optimizes the common case that thisObj is a StringObject
-    UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    JSValue* a0 = args[0];
-    return jsNumber(localeCompare(s, a0->toString(exec)));
+      return jsNumber(exec, 0);
+
+    // This optimizes the common case that thisObj is a StringObject
+    UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
+    JSValue* a0 = args[0];
+    return jsNumber(exec, localeCompare(s, a0->toString(exec)));
 }
 
@@ -837 +837 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<big>" + s + "</big>");
+    return jsString(exec, "<big>" + s + "</big>");
 }
 
@@ -844 +844 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<small>" + s + "</small>");
+    return jsString(exec, "<small>" + s + "</small>");
 }
 
@@ -851 +851 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<blink>" + s + "</blink>");
+    return jsString(exec, "<blink>" + s + "</blink>");
 }
 
@@ -858 +858 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<b>" + s + "</b>");
+    return jsString(exec, "<b>" + s + "</b>");
 }
 
@@ -865 +865 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<tt>" + s + "</tt>");
+    return jsString(exec, "<tt>" + s + "</tt>");
 }
 
@@ -872 +872 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<i>" + s + "</i>");
+    return jsString(exec, "<i>" + s + "</i>");
 }
 
@@ -879 +879 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<strike>" + s + "</strike>");
+    return jsString(exec, "<strike>" + s + "</strike>");
 }
 
@@ -886 +886 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<sub>" + s + "</sub>");
+    return jsString(exec, "<sub>" + s + "</sub>");
 }
 
@@ -893 +893 @@
     // This optimizes the common case that thisObj is a StringObject
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
-    return jsString("<sup>" + s + "</sup>");
+    return jsString(exec, "<sup>" + s + "</sup>");
 }
 
@@ -901 +901 @@
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
     JSValue* a0 = args[0];
-    return jsString("<font color=\"" + a0->toString(exec) + "\">" + s + "</font>");
+    return jsString(exec, "<font color=\"" + a0->toString(exec) + "\">" + s + "</font>");
 }
 
@@ -909 +909 @@
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
     JSValue* a0 = args[0];
-    return jsString("<font size=\"" + a0->toString(exec) + "\">" + s + "</font>");
+    return jsString(exec, "<font size=\"" + a0->toString(exec) + "\">" + s + "</font>");
 }
 
@@ -917 +917 @@
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
     JSValue* a0 = args[0];
-    return jsString("<a name=\"" + a0->toString(exec) + "\">" + s + "</a>");
+    return jsString(exec, "<a name=\"" + a0->toString(exec) + "\">" + s + "</a>");
 }
 
@@ -925 +925 @@
     UString s = thisObj->inherits(&StringObject::info) ? static_cast<StringObject*>(thisObj)->internalValue()->value() : thisObj->toString(exec);
     JSValue* a0 = args[0];
-    return jsString("<a href=\"" + a0->toString(exec) + "\">" + s + "</a>");
+    return jsString(exec, "<a href=\"" + a0->toString(exec) + "\">" + s + "</a>");
 }
 
@@ -936 +936 @@
   putDirect(exec->propertyNames().prototype, stringProto, DontEnum|DontDelete|ReadOnly);
 
-  putDirectFunction(new StringConstructorFunction(exec, funcProto, exec->propertyNames().fromCharCode), DontEnum);
+  putDirectFunction(new (exec) StringConstructorFunction(exec, funcProto, exec->propertyNames().fromCharCode), DontEnum);
 
   // no. of arguments for constructor
-  putDirect(exec->propertyNames().length, jsNumber(1), ReadOnly|DontDelete|DontEnum);
+  putDirect(exec->propertyNames().length, jsNumber(exec, 1), ReadOnly|DontDelete|DontEnum);
 }
 
@@ -949 +949 @@
 
 // ECMA 15.5.2
-JSObject *StringConstructor::construct(ExecState *exec, const ArgList &args)
-{
-  JSObject *proto = exec->lexicalGlobalObject()->stringPrototype();
-  if (args.size() == 0)
-    return new StringObject(proto);
-  return new StringObject(proto, args[0]->toString(exec));
+JSObject* StringConstructor::construct(ExecState* exec, const ArgList& args)
+{
+  JSObject* proto = exec->lexicalGlobalObject()->stringPrototype();
+  if (!args.size())
+    return new (exec) StringObject(exec, proto);
+  return new (exec) StringObject(exec, proto, args[0]->toString(exec));
 }
 
@@ -961 +961 @@
 {
   if (args.isEmpty())
-    return jsString("");
+    return jsString(exec, "");
   else {
     JSValue *v = args[0];
-    return jsString(v->toString(exec));
+    return jsString(exec, v->toString(exec));
   }
 }
@@ -974 +974 @@
   : InternalFunction(funcProto, name)
 {
-  putDirect(exec->propertyNames().length, jsNumber(1), DontDelete|ReadOnly|DontEnum);
+  putDirect(exec->propertyNames().length, jsNumber(exec, 1), DontDelete|ReadOnly|DontEnum);
 }
 
@@ -992 +992 @@
     s = "";
 
-  return jsString(s);
+  return jsString(exec, s);
 }
 

trunk/JavaScriptCore/kjs/string_object.h

@@ -32 +32 @@
   class StringObject : public JSWrapperObject {
   public:
-    StringObject(JSObject* prototype);
-    StringObject(JSObject* prototype, const UString&);
+    StringObject(ExecState*, JSObject* prototype);
+    StringObject(ExecState*, JSObject* prototype, const UString&);
 
     static StringObject* create(ExecState*, JSString*);
@@ -56 +56 @@
   class StringObjectThatMasqueradesAsUndefined : public StringObject {
   public:
-      StringObjectThatMasqueradesAsUndefined(JSObject* proto, const UString& string)
-          : StringObject(proto, string) { }
+      StringObjectThatMasqueradesAsUndefined(ExecState* exec, JSObject* proto, const UString& string)
+          : StringObject(exec, proto, string) { }
       virtual bool masqueradeAsUndefined() const { return true; }
       virtual bool toBoolean(ExecState*) const { return false; }

trunk/JavaScriptCore/kjs/ustring.h

@@ -405 +405 @@
 // FIXME: this should be size_t but that would cause warnings until we
 // fix UString sizes to be size_t instead of int
-static const int minShareSize = Collector::minExtraCostSize / sizeof(UChar);
+static const int minShareSize = Heap::minExtraCostSize / sizeof(UChar);
 
 inline size_t UString::cost() const