Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(307)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: Source/bindings/core/v8/ScriptValueSerializer.cpp

Issue 1297223004: ScriptValueSerializer should throw, not crash, when handling unknown types (Closed) Base URL: svn://svn.chromium.org/blink/trunk
Patch Set: Use nullptr Created 5 years, 4 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « LayoutTests/fast/js/structured-clone.html ('k') | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: Source/bindings/core/v8/ScriptValueSerializer.cpp
diff --git a/Source/bindings/core/v8/ScriptValueSerializer.cpp b/Source/bindings/core/v8/ScriptValueSerializer.cpp
index f3f745a957887b9da4ef0316266f0eb3b5a0a29c..5a4771201475d190c3aee72441442f944edba109 100644
--- a/Source/bindings/core/v8/ScriptValueSerializer.cpp
+++ b/Source/bindings/core/v8/ScriptValueSerializer.cpp
@@ -712,7 +712,6 @@ ScriptValueSerializer::StateBase* ScriptValueSerializer::doSerialize(v8::Local<v
ScriptValueSerializer::StateBase* ScriptValueSerializer::doSerializeValue(v8::Local<v8::Value> value, ScriptValueSerializer::StateBase* next)
{
- uint32_t arrayBufferIndex;
if (value.IsEmpty())
return handleError(InputError, "The empty property name cannot be cloned.", next);
if (value->IsUndefined()) {
@@ -729,25 +728,26 @@ ScriptValueSerializer::StateBase* ScriptValueSerializer::doSerializeValue(v8::Lo
m_writer.writeUint32(value.As<v8::Uint32>()->Value());
} else if (value->IsNumber()) {
m_writer.writeNumber(value.As<v8::Number>()->Value());
- } else if (V8ArrayBufferView::hasInstance(value, isolate())) {
- return writeAndGreyArrayBufferView(value.As<v8::Object>(), next);
} else if (value->IsString()) {
writeString(value);
- } else if (V8MessagePort::hasInstance(value, isolate())) {
- uint32_t messagePortIndex;
- if (m_transferredMessagePorts.tryGet(value.As<v8::Object>(), &messagePortIndex)) {
+ } else if (value->IsObject()) {
+ v8::Local<v8::Object> jsObject = value.As<v8::Object>();
+
+ uint32_t arrayBufferIndex;
+ if (V8ArrayBufferView::hasInstance(value, isolate())) {
+ return writeAndGreyArrayBufferView(jsObject, next);
+ } else if (V8MessagePort::hasInstance(value, isolate())) {
+ uint32_t messagePortIndex;
+ if (!m_transferredMessagePorts.tryGet(jsObject, &messagePortIndex))
+ return handleError(DataCloneError, "A MessagePort could not be cloned.", next);
m_writer.writeTransferredMessagePort(messagePortIndex);
- } else {
- return handleError(DataCloneError, "A MessagePort could not be cloned.", next);
+ return nullptr;
+ } else if (V8ArrayBuffer::hasInstance(value, isolate()) && m_transferredArrayBuffers.tryGet(jsObject, &arrayBufferIndex)) {
+ return writeTransferredArrayBuffer(value, arrayBufferIndex, next);
+ } else if (V8SharedArrayBuffer::hasInstance(value, isolate()) && m_transferredArrayBuffers.tryGet(jsObject, &arrayBufferIndex)) {
+ return writeTransferredSharedArrayBuffer(value, arrayBufferIndex, next);
}
- } else if (V8ArrayBuffer::hasInstance(value, isolate()) && m_transferredArrayBuffers.tryGet(value.As<v8::Object>(), &arrayBufferIndex)) {
- return writeTransferredArrayBuffer(value, arrayBufferIndex, next);
- } else if (V8SharedArrayBuffer::hasInstance(value, isolate()) && m_transferredArrayBuffers.tryGet(value.As<v8::Object>(), &arrayBufferIndex)) {
- return writeTransferredSharedArrayBuffer(value, arrayBufferIndex, next);
- } else {
- v8::Local<v8::Object> jsObject = value.As<v8::Object>();
- if (jsObject.IsEmpty())
- return handleError(DataCloneError, "An object could not be cloned.", next);
+
greyObject(jsObject);
if (value->IsDate()) {
m_writer.writeDate(value.As<v8::Date>()->ValueOf());
@@ -777,15 +777,15 @@ ScriptValueSerializer::StateBase* ScriptValueSerializer::doSerializeValue(v8::Lo
return writeArrayBuffer(value, next);
} else if (V8CompositorProxy::hasInstance(value, isolate())) {
return writeCompositorProxy(value, next);
- } else if (value->IsObject()) {
- if (isHostObject(jsObject) || jsObject->IsCallable() || value->IsNativeError())
- return handleError(DataCloneError, "An object could not be cloned.", next);
- return startObjectState(jsObject, next);
+ } else if (isHostObject(jsObject) || jsObject->IsCallable() || value->IsNativeError()) {
+ return handleError(DataCloneError, "An object could not be cloned.", next);
} else {
- return handleError(DataCloneError, "A value could not be cloned.", next);
+ return startObjectState(jsObject, next);
}
+ } else {
+ return handleError(DataCloneError, "A value could not be cloned.", next);
}
- return 0;
+ return nullptr;
}
ScriptValueSerializer::StateBase* ScriptValueSerializer::doSerializeArrayBuffer(v8::Local<v8::Value> arrayBuffer, ScriptValueSerializer::StateBase* next)
« no previous file with comments | « LayoutTests/fast/js/structured-clone.html ('k') | no next file » | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698