Issue 8041020: Make sure that we can't access hidden properties by installing accessors on Object.prototype.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Issue 8041020: Make sure that we can't access hidden properties by installing accessors on Object.prototype. (Closed)

Created:
9 years, 2 months ago by Rico

Modified:
9 years, 2 months ago

Reviewers:
Lasse Reichstein

CC:
v8-dev

Base URL:
http://v8.googlecode.com/svn/branches/bleeding_edge/

Visibility:
Public.

Description

Make sure that we can't access hidden properties by installing accessors on Object.prototype. BUG:chromium:97784 TEST=cctest/test-api Committed: http://code.google.com/p/v8/source/detail?r=9434

Patch Set 1 #

Total comments: 2

Created: 9 years, 2 months ago

Download [raw] [tar.bz2]

		Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+35 lines, -0 lines)			Patch
	M	src/objects.cc	View		1 chunk	+7 lines, -0 lines	0 comments	Download
	M	test/cctest/test-api.cc	View		1 chunk	+28 lines, -0 lines	2 comments	Download

Messages

Total messages: 3 (0 generated)

Expand Messages | Collapse Messages

Lasse Reichstein

lgtm http://codereview.chromium.org/8041020/diff/1/test/cctest/test-api.cc File test/cctest/test-api.cc (right): http://codereview.chromium.org/8041020/diff/1/test/cctest/test-api.cc#newcode1837 test/cctest/test-api.cc:1837: CHECK_EQ(42, obj->GetHiddenValue(key)->Int32Value()); Should we prevent people from doing ...

9 years, 2 months ago (2011-09-26 13:02:21 UTC) #2

Rico

9 years, 2 months ago (2011-09-26 13:09:48 UTC) #3

http://codereview.chromium.org/8041020/diff/1/test/cctest/test-api.cc
File test/cctest/test-api.cc (right):

http://codereview.chromium.org/8041020/diff/1/test/cctest/test-api.cc#newcode...
test/cctest/test-api.cc:1837: CHECK_EQ(42,
obj->GetHiddenValue(key)->Int32Value());
On 2011/09/26 13:02:21, Lasse Reichstein wrote:
> Should we prevent people from doing SetHiddenValue("__proto__", ...) ? 
> 
> We really, really shouldn't have used an Object to store the properties if a
> plain Dictionary could have done the job. This is not the first time we have
> used an object for internal book-keeping, and got caught by acessors on
> Object.prototype.

As discussed offline, we should, but the real long term solution is to use a
dictionary instead of an object for storing these hidden properties. Since this
is a bug fix I am leaving as is for now.

Expand Messages | Collapse Messages