src/accessors.cc - Issue 895573002: Check global object behind global proxy for extensibility - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(103)

My Issues | Starred Open | Closed | All

Unified Diff: src/accessors.cc

Issue 895573002: Check global object behind global proxy for extensibility (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master

Patch Set: Fix Created 5 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | src/objects.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: src/accessors.cc

diff --git a/src/accessors.cc b/src/accessors.cc

index 1e8abd95ab6adc13d11d904826847e533fe8a559..0366895bfc332dc9949c25b22eaa982612b3b1b7 100644

--- a/src/accessors.cc

+++ b/src/accessors.cc

@@ -136,6 +136,12 @@ bool SetPropertyOnInstanceIfInherited(

// This behaves sloppy since we lost the actual strict-mode.

// TODO(verwaest): Fix by making ExecutableAccessorInfo behave like data

// properties.

+ if (object->IsJSGlobalProxy()) {

+ PrototypeIterator iter(isolate, object);

+ if (iter.IsAtEnd()) return true;

+ DCHECK(PrototypeIterator::GetCurrent(iter)->IsJSGlobalObject());

+ object = Handle<JSObject>::cast(PrototypeIterator::GetCurrent(iter));

+ }

if (!object->map()->is_extensible()) return true;

JSObject::SetOwnPropertyIgnoreAttributes(object, Utils::OpenHandle(*name),

value, NONE).Check();

« no previous file with comments | « no previous file | src/objects.cc » ('j') | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698