Issue 6280013: Fix a bug in delete for lookup slots.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Issue 6280013: Fix a bug in delete for lookup slots. (Closed)

Created:
9 years, 11 months ago by Kevin Millikin (Chromium)

Modified:
9 years, 7 months ago

Reviewers:
Mads Ager (chromium)

CC:
v8-dev

Base URL:
https://v8.googlecode.com/svn/branches/bleeding_edge

Visibility:
Public.

Description

Fix a bug in delete for lookup slots. The function Runtime_LookupContext searches the context chain for a LOOKUP slot and returns the object holding the slot. It returned the global context if the slot was not found or if it was found in a function's context or arguments object. This is not the correct object to use for 'delete'. Since this lookup function is only ever used when deleting LOOKUP slots (those that have to go through a with or a scope with eval), it is simply replaced with a Runtime_DeleteContextSlot function that does the appropriate thing for all kinds of context lookups. This fixes Chromium bug 70066. http://code.google.com/p/chromium/issues/detail?id=70066 Committed: http://code.google.com/p/v8/source/detail?r=6442

Patch Set 1 #

Total comments: 1

Created: 9 years, 11 months ago

Download [raw] [tar.bz2]

	Unified diffs	Side-by-side diffs	Stats (+188 lines, -54 lines)			Patch
M	src/arm/codegen-arm.cc	View	1 chunk	+2 lines, -6 lines	0 comments	Download
M	src/arm/full-codegen-arm.cc	View	1 chunk	+5 lines, -7 lines	0 comments	Download
M	src/ia32/codegen-ia32.cc	View	1 chunk	+2 lines, -8 lines	0 comments	Download
M	src/ia32/full-codegen-ia32.cc	View	1 chunk	+5 lines, -6 lines	0 comments	Download
M	src/runtime.h	View	1 chunk	+1 line, -1 line	0 comments	Download
M	src/runtime.cc	View	4 chunks	+25 lines, -12 lines	1 comment	Download
M	src/x64/codegen-x64.cc	View	1 chunk	+2 lines, -8 lines	0 comments	Download
M	src/x64/full-codegen-x64.cc	View	1 chunk	+5 lines, -6 lines	0 comments	Download
A	test/mjsunit/regress/regress-70066.js	View	1 chunk	+141 lines, -0 lines	0 comments	Download

Messages

Total messages: 2 (0 generated)

Expand Messages | Collapse Messages

Mads Ager (chromium)

9 years, 11 months ago (2011-01-24 13:15:19 UTC) #2

LGTM

http://codereview.chromium.org/6280013/diff/1/src/runtime.cc
File src/runtime.cc (right):

http://codereview.chromium.org/6280013/diff/1/src/runtime.cc#newcode7069
src/runtime.cc:7069: // If the slot was found in a context, it should be
DONT_DELETE.
Can we assert that this is always the case or is that just always implicitly the
case?

Expand Messages | Collapse Messages