Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(686)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: src/isolate.h

Issue 1099453007: Empty Array prototype elements protection needs to alert on length change. (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master
Patch Set: With comments. Created 5 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | src/isolate.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright 2012 the V8 project authors. All rights reserved. 1 // Copyright 2012 the V8 project authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef V8_ISOLATE_H_ 5 #ifndef V8_ISOLATE_H_
6 #define V8_ISOLATE_H_ 6 #define V8_ISOLATE_H_
7 7
8 #include <queue> 8 #include <queue>
9 #include "include/v8-debug.h" 9 #include "include/v8-debug.h"
10 #include "src/allocation.h" 10 #include "src/allocation.h"
(...skipping 1003 matching lines...) Expand 10 before | Expand all | Expand 10 after
1014 1014
1015 Map* get_initial_js_array_map(ElementsKind kind); 1015 Map* get_initial_js_array_map(ElementsKind kind);
1016 1016
1017 bool IsFastArrayConstructorPrototypeChainIntact(); 1017 bool IsFastArrayConstructorPrototypeChainIntact();
1018 1018
1019 // On intent to set an element in object, make sure that appropriate 1019 // On intent to set an element in object, make sure that appropriate
1020 // notifications occur if the set is on the elements of the array or 1020 // notifications occur if the set is on the elements of the array or
1021 // object prototype. Also ensure that changes to prototype chain between 1021 // object prototype. Also ensure that changes to prototype chain between
1022 // Array and Object fire notifications. 1022 // Array and Object fire notifications.
1023 void UpdateArrayProtectorOnSetElement(Handle<JSObject> object); 1023 void UpdateArrayProtectorOnSetElement(Handle<JSObject> object);
1024 void UpdateArrayProtectorOnSetLength(Handle<JSObject> object) {
1025 UpdateArrayProtectorOnSetElement(object);
1026 }
1024 void UpdateArrayProtectorOnSetPrototype(Handle<JSObject> object) { 1027 void UpdateArrayProtectorOnSetPrototype(Handle<JSObject> object) {
1025 UpdateArrayProtectorOnSetElement(object); 1028 UpdateArrayProtectorOnSetElement(object);
1026 } 1029 }
1027 void UpdateArrayProtectorOnNormalizeElements(Handle<JSObject> object) { 1030 void UpdateArrayProtectorOnNormalizeElements(Handle<JSObject> object) {
1028 UpdateArrayProtectorOnSetElement(object); 1031 UpdateArrayProtectorOnSetElement(object);
1029 } 1032 }
1030 1033
1031 // Returns true if array is the initial array prototype in any native context. 1034 // Returns true if array is the initial array prototype in any native context.
1032 bool IsAnyInitialArrayPrototype(Handle<JSArray> array); 1035 bool IsAnyInitialArrayPrototype(Handle<JSArray> array);
1033 1036
(...skipping 550 matching lines...) Expand 10 before | Expand all | Expand 10 after
1584 } 1587 }
1585 1588
1586 EmbeddedVector<char, 128> filename_; 1589 EmbeddedVector<char, 128> filename_;
1587 FILE* file_; 1590 FILE* file_;
1588 int scope_depth_; 1591 int scope_depth_;
1589 }; 1592 };
1590 1593
1591 } } // namespace v8::internal 1594 } } // namespace v8::internal
1592 1595
1593 #endif // V8_ISOLATE_H_ 1596 #endif // V8_ISOLATE_H_
OLDNEW
« no previous file with comments | « no previous file | src/isolate.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698