src/bootstrapper.cc - Issue 2445333002: Ensure slow properties for simple {__proto__:null} literals.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/bootstrapper.cc

Issue 2445333002: Ensure slow properties for simple {__proto__:null} literals. (Closed)

Patch Set: minor cleanup Created 3 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/bootstrapper.cc

diff --git a/src/bootstrapper.cc b/src/bootstrapper.cc

index 0263ddc1d4d6316f226352e58d6d2c99fa2efdf5..e185241de5099ca9bce5b8c3380043ae57291688 100644

--- a/src/bootstrapper.cc

+++ b/src/bootstrapper.cc

@@ -569,6 +569,20 @@ Handle<JSFunction> Genesis::CreateEmptyFunction(Isolate* isolate) {

native_context()->set_initial_object_prototype(*object_function_prototype);

JSFunction::SetPrototype(object_fun, object_function_prototype);

+ {

+ // Set up slow map for Object.create(null) instances without in-object

+ // properties.

+ Handle<Map> map(object_fun->initial_map(), isolate);

+ map = Map::CopyInitialMapNormalized(map);

+ Map::SetPrototype(map, isolate->factory()->null_value());

+ native_context()->set_slow_object_with_null_prototype_map(*map);

+ // Set up slow map for literals with too many properties.

+ map = Map::Copy(map, "slow_object_with_object_prototype_map");

+ Map::SetPrototype(map, object_function_prototype);

+ native_context()->set_slow_object_with_object_prototype_map(*map);

+ }

}

// Allocate the empty function as the prototype for function - ES6 19.2.3

@@ -4247,20 +4261,13 @@ bool Genesis::InstallNatives(GlobalContextType context_type) {

// Store the map for the %ObjectPrototype% after the natives has been compiled

// and the Object function has been set up.

- Handle<JSFunction> object_function(native_context()->object_function());

- DCHECK(JSObject::cast(object_function->initial_map()->prototype())

- ->HasFastProperties());

- native_context()->set_object_function_prototype_map(

- HeapObject::cast(object_function->initial_map()->prototype())->map());

- // Set up the map for Object.create(null) instances.

- Handle<Map> slow_object_with_null_prototype_map =

- Map::CopyInitialMap(handle(object_function->initial_map(), isolate()));

- slow_object_with_null_prototype_map->set_dictionary_map(true);

- Map::SetPrototype(slow_object_with_null_prototype_map,

- isolate()->factory()->null_value());

- native_context()->set_slow_object_with_null_prototype_map(

- *slow_object_with_null_prototype_map);

+ {

+ Handle<JSFunction> object_function(native_context()->object_function());

+ DCHECK(JSObject::cast(object_function->initial_map()->prototype())

+ ->HasFastProperties());

+ native_context()->set_object_function_prototype_map(

+ HeapObject::cast(object_function->initial_map()->prototype())->map());

+ }

// Store the map for the %StringPrototype% after the natives has been compiled

// and the String function has been set up.

« src/ast/compile-time-value.h ('K') | « src/ast/compile-time-value.cc ('k') | src/builtins/builtins-constructor-gen.cc » ('j') | src/factory.cc » ('J')