src/object-observe.js - Issue 22962009: Add access check for observed objects

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/object-observe.js

Issue 22962009: Add access check for observed objects (Closed) Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge

Patch Set: Nearly complete Created 7 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: src/object-observe.js

diff --git a/src/object-observe.js b/src/object-observe.js

index f5e0d9d563a08e0507d01b03cc519370e49d0215..f722df2276d2101d0b76166e9a7f9faea573f307 100644

--- a/src/object-observe.js

+++ b/src/object-observe.js

@@ -275,15 +275,25 @@ function EnqueueToCallback(callback, changeRecord) {

%SetObserverDeliveryPending();

}

-function EnqueueChangeRecord(changeRecord, observers) {

+function EnqueueChangeRecord(changeRecord, observers, skipAccessCheck) {

// TODO(rossberg): adjust once there is a story for symbols vs proxies.

if (IS_SYMBOL(changeRecord.name)) return;

+ var object = changeRecord.object;

+ var needsAccessCheck = !skipAccessCheck && %IsAccessCheckNeeded(object);

for (var i = 0; i < observers.length; i++) {

var observer = observers[i];

if (IS_UNDEFINED(observer.accept[changeRecord.type]))

continue;

+ if (needsAccessCheck &&

+ // Drop all splice records on the floor for access-checked objects

+ (changeRecord.type == 'splice' ||

+ !%GetAccessAllowedForObserver(

+ observer.callback, object, changeRecord.name))) {

+ continue;

+ }

EnqueueToCallback(observer.callback, changeRecord);

}

@@ -354,7 +364,8 @@ function ObjectNotifierNotify(changeRecord) {

}

ObjectFreeze(newRecord);

- EnqueueChangeRecord(newRecord, objectInfo.changeObservers);

+ EnqueueChangeRecord(newRecord, objectInfo.changeObservers,

+ true /* skip access check */);

}

function ObjectNotifierPerformChange(changeType, changeFn, receiver) {

« no previous file with comments | « no previous file | src/runtime.h » ('j') | test/cctest/test-object-observe.cc » ('J')