src/bootstrapper.cc - Issue 2445333002: Ensure slow properties for simple {__proto__:null} literals.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/bootstrapper.cc

Issue 2445333002: Ensure slow properties for simple {__proto__:null} literals. (Closed)

Patch Set: fixing typo Created 3 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/bootstrapper.cc

diff --git a/src/bootstrapper.cc b/src/bootstrapper.cc

index 803ac37bdebcf3be08f3e65843ba9181b4a7af63..bf69a14228dc8e0d7334accd6e04322876b49f1a 100644

--- a/src/bootstrapper.cc

+++ b/src/bootstrapper.cc

@@ -593,6 +593,20 @@ Handle<JSFunction> Genesis::CreateEmptyFunction(Isolate* isolate) {

native_context()->set_initial_array_prototype(*object_function_prototype);

Accessors::FunctionSetPrototype(object_fun, object_function_prototype)

.Assert();

+ {

+ // Set up slow map for Object.create(null) instances without in-object

+ // properties.

+ Handle<Map> map = handle(object_fun->initial_map(), isolate);

+ map = Map::CopyInitialMapNormalized(map);

+ Map::SetPrototype(map, isolate->factory()->null_value());

+ native_context()->set_slow_object_with_null_prototype_map(*map);

+ // Set up slow map for literals with too many properties.

+ map = Map::Copy(map, "slow_object_with_object_prototype_map");

+ Map::SetPrototype(map, object_function_prototype);

+ native_context()->set_slow_object_with_object_prototype_map(*map);

+ }

}

// Allocate the empty function as the prototype for function - ES6 19.2.3

@@ -4078,20 +4092,13 @@ bool Genesis::InstallNatives(GlobalContextType context_type) {

// Store the map for the %ObjectPrototype% after the natives has been compiled

// and the Object function has been set up.

- Handle<JSFunction> object_function(native_context()->object_function());

- DCHECK(JSObject::cast(object_function->initial_map()->prototype())

- ->HasFastProperties());

- native_context()->set_object_function_prototype_map(

- HeapObject::cast(object_function->initial_map()->prototype())->map());

- // Set up the map for Object.create(null) instances.

- Handle<Map> slow_object_with_null_prototype_map =

- Map::CopyInitialMap(handle(object_function->initial_map(), isolate()));

- slow_object_with_null_prototype_map->set_dictionary_map(true);

- Map::SetPrototype(slow_object_with_null_prototype_map,

- isolate()->factory()->null_value());

- native_context()->set_slow_object_with_null_prototype_map(

- *slow_object_with_null_prototype_map);

+ {

+ Handle<JSFunction> object_function(native_context()->object_function());

+ DCHECK(JSObject::cast(object_function->initial_map()->prototype())

+ ->HasFastProperties());

+ native_context()->set_object_function_prototype_map(

+ HeapObject::cast(object_function->initial_map()->prototype())->map());

+ }

// Store the map for the %StringPrototype% after the natives has been compiled

// and the String function has been set up.

« src/ast/ast.cc ('K') | « src/ast/ast.cc ('k') | src/builtins/builtins-constructor-gen.cc » ('j') | src/builtins/builtins-constructor-gen.cc » ('J')