Skip to content

Fixed frame saving for awaited function with closures. #928

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
Jun 17, 2025
Merged

Fixed frame saving for awaited function with closures. #928

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
f96d4b4
Moving child function declaration instantiation to bytecode.
xeioex Jun 10, 2025
7c168a0
Fixed frame saving for awaited function with closures.
xeioex Jun 11, 2025
947e271
Parser: simplifed working with function variables.
xeioex Jun 13, 2025
05c7246
Parser: unused strict_semicolon cleanup.
xeioex Jun 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Fixed frame saving for awaited function with closures. 
The issue was introduced in 6335367 (0.7.0).

This fixes #530 issue on Github.
  • Loading branch information
@xeioex
xeioex committed Jun 16, 2025
commit 7c168a057c0ff3d8107acc51140e68cd364b7add
88 changes: 48 additions & 40 deletions src/njs_function.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -394,6 +394,19 @@ njs_function_lambda_frame(njs_vm_t *vm, njs_function_t *function,

lambda = function->u.lambda;

/*
* Lambda frame has the following layout:
* njs_frame_t | p0 , p2, ..., pn | v0, v1, ..., vn
* where:
* p0, p1, ..., pn - pointers to arguments and locals,
* v0, v1, ..., vn - values of arguments and locals.
* n - number of arguments + locals.
*
* Normally, the pointers point to the values directly after them,
* but if a value was captured as a closure by an inner function,
* pn points to a value allocated from the heap.
*/

args_count = njs_max(nargs, lambda->nargs);
value_count = args_count + lambda->nlocal;

Expand Down Expand Up @@ -675,11 +688,11 @@ njs_function_frame_free(njs_vm_t *vm, njs_native_frame_t *native)
njs_int_t
njs_function_frame_save(njs_vm_t *vm, njs_frame_t *frame, u_char *pc)
{
size_t args_count, value_count, n;
njs_value_t *start, *end, *p, **new, *value, **local;
njs_function_t *function;
size_t args_count, value_count, n;
njs_value_t **map, *value, **current_map;
njs_function_t *function;
njs_native_frame_t *active, *native;
njs_function_lambda_t *lambda;
njs_native_frame_t *active, *native;

*frame = *vm->active_frame;

Expand All @@ -697,34 +710,37 @@ njs_function_frame_save(njs_vm_t *vm, njs_frame_t *frame, u_char *pc)
args_count = njs_max(native->nargs, lambda->nargs);
value_count = args_count + lambda->nlocal;

new = (njs_value_t **) ((u_char *) native + NJS_FRAME_SIZE);
value = (njs_value_t *) (new + value_count);

native->arguments = value;
native->local = new + njs_function_frame_args_count(active);
native->pc = pc;

start = njs_function_frame_values(active, &end);
p = native->arguments;
/*
* We need to save the current frame state because it will be freed
* when the function returns.
*
* To detect whether a value is captured as a closure,
* we check whether the pointer is within the frame. In this case
* the pointer is copied as is because the value it points to
* is already allocated in the heap and will not be freed.
* See njs_function_capture_closure() and njs_function_lambda_frame()
* for details.
*/

while (start < end) {
njs_value_assign(p, start++);
*new++ = p++;
}
map = (njs_value_t **) ((u_char *) native + NJS_FRAME_SIZE);
value = (njs_value_t *) (map + value_count);

/* Move all arguments. */
current_map = (njs_value_t **) ((u_char *) active + NJS_FRAME_SIZE);

p = native->arguments;
local = native->local + 1 /* this */;
for (n = 0; n < value_count; n++) {
if (njs_is_value_allocated_on_frame(active, current_map[n])) {
map[n] = &value[n];
njs_value_assign(&value[n], current_map[n]);

for (n = 0; n < function->args_count; n++) {
if (!njs_is_valid(p)) {
njs_set_undefined(p);
} else {
map[n] = current_map[n];
}

*local++ = p++;
}

native->arguments = value;
native->local = map + args_count;
native->pc = pc;

return NJS_OK;
}

Expand All @@ -746,7 +762,6 @@ njs_int_t
njs_function_capture_closure(njs_vm_t *vm, njs_function_t *function,
njs_function_lambda_t *lambda)
{
void *start, *end;
uint32_t n;
njs_value_t *value, **closure;
njs_native_frame_t *frame;
Expand All @@ -761,9 +776,6 @@ njs_function_capture_closure(njs_vm_t *vm, njs_function_t *function,
frame = frame->previous;
}

start = frame;
end = frame->free;

closure = njs_function_closures(function);
n = lambda->nclosures;

Expand All @@ -772,7 +784,7 @@ njs_function_capture_closure(njs_vm_t *vm, njs_function_t *function,

value = njs_scope_value(vm, lambda->closures[n]);

if (start <= (void *) value && (void *) value < end) {
if (njs_is_value_allocated_on_frame(frame, value)) {
value = njs_scope_value_clone(vm, lambda->closures[n], value);
if (njs_slow_path(value == NULL)) {
return NJS_ERROR;
Expand All @@ -788,14 +800,14 @@ njs_function_capture_closure(njs_vm_t *vm, njs_function_t *function,


njs_inline njs_value_t *
njs_function_closure_value(njs_vm_t *vm, njs_value_t **scope, njs_index_t index,
void *start, void *end)
njs_function_closure_value(njs_vm_t *vm, njs_native_frame_t *frame,
njs_value_t **scope, njs_index_t index)
{
njs_value_t *value, *newval;

value = scope[njs_scope_index_value(index)];

if (start <= (void *) value && end > (void *) value) {
if (njs_is_value_allocated_on_frame(frame, value)) {
newval = njs_mp_alloc(vm->mem_pool, sizeof(njs_value_t));
if (njs_slow_path(newval == NULL)) {
njs_memory_error(vm);
Expand All @@ -815,7 +827,6 @@ njs_function_closure_value(njs_vm_t *vm, njs_value_t **scope, njs_index_t index,
njs_int_t
njs_function_capture_global_closures(njs_vm_t *vm, njs_function_t *function)
{
void *start, *end;
uint32_t n;
njs_value_t *value, **refs, **global;
njs_index_t *indexes, index;
Expand All @@ -834,9 +845,6 @@ njs_function_capture_global_closures(njs_vm_t *vm, njs_function_t *function)
native = native->previous;
}

start = native;
end = native->free;

indexes = lambda->closures;
refs = njs_function_closures(function);

Expand All @@ -851,12 +859,12 @@ njs_function_capture_global_closures(njs_vm_t *vm, njs_function_t *function)

switch (njs_scope_index_type(index)) {
case NJS_LEVEL_LOCAL:
value = njs_function_closure_value(vm, native->local, index,
start, end);
value = njs_function_closure_value(vm, native, native->local,
index);
break;

case NJS_LEVEL_GLOBAL:
value = njs_function_closure_value(vm, global, index, start, end);
value = njs_function_closure_value(vm, native, global, index);
break;

default:
Expand Down
26 changes: 6 additions & 20 deletions src/njs_function.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -202,29 +202,15 @@ njs_function_frame_size(njs_native_frame_t *frame)
}


njs_inline size_t
njs_function_frame_args_count(njs_native_frame_t *frame)
{
uintptr_t start;

start = (uintptr_t) ((u_char *) frame + NJS_FRAME_SIZE);

return ((uintptr_t) frame->local - start) / sizeof(njs_value_t *);
}


njs_inline njs_value_t *
njs_function_frame_values(njs_native_frame_t *frame, njs_value_t **end)
njs_inline njs_bool_t
njs_is_value_allocated_on_frame(njs_native_frame_t *frame, njs_value_t *value)
{
size_t count;
uintptr_t start;

start = (uintptr_t) ((u_char *) frame + NJS_FRAME_SIZE);
count = ((uintptr_t) frame->arguments - start) / sizeof(njs_value_t *);
void *start, *end;

*end = frame->arguments + count;
start = frame;
end = frame->free;

return frame->arguments;
return start <= (void *) value && (void *) value < end;
}


Expand Down
24 changes: 24 additions & 0 deletions test/js/async_closure.t.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
/*---
includes: []
flags: [async]
---*/

async function f() {
await 1;
var v = 2;

function g() {
return v + 1;
}

function s() {
g + 1;
}

return g();
}

f().then(v => {
assert.sameValue(v, 3)
})
.then($DONE, $DONE);
24 changes: 24 additions & 0 deletions test/js/async_closure_arg.t.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
/*---
includes: []
flags: [async]
---*/

async function f(v) {
await 1;
v = 2;

function g() {
return v + 1;
}

function s() {
g + 1;
}

return g();
}

f(42).then(v => {
assert.sameValue(v, 3)
})
.then($DONE, $DONE);
28 changes: 28 additions & 0 deletions test/js/async_closure_share.t.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
/*---
includes: []
flags: [async]
---*/

async function f() {
await 1;
var v = 'f';

function g() {
v += ':g';
return v;
}

function s() {
v += ':s';
return v;
}

return [g, s];
}

f().then(pair => {
pair[0]();
var v = pair[1]();
assert.sameValue(v, 'f:g:s');
})
.then($DONE, $DONE);
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy