We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
ladybird
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

LibJS: Use ConservativeVector when instantiating static class fields

This fixes an issue where a badly-timed garbage collection could swallow
a static field initializer.

Caught by running test262 in GC-on-every-allocation mode.
Andreas Kling 8 月之前
父节点
2fb3b6c542
当前提交
10724a7cb3
共有 1 个文件被更改,包括 4 次插入4 次删除
分列视图 显示文件统计
  1. 4 4
      Libraries/LibJS/AST.cpp

+ 4 - 4
Libraries/LibJS/AST.cpp
查看文件 

@@ -243,7 +243,7 @@ ThrowCompletionOr<ClassElement::ClassValue> ClassField::class_element_evaluation
 
         FunctionParsingInsights parsing_insights;
 
         parsing_insights.uses_this_from_environment = true;
 
         parsing_insights.uses_this = true;
 
-        initializer = make_handle(*ECMAScriptFunctionObject::create(realm, "field", ByteString::empty(), *function_code, {}, 0, {}, vm.lexical_environment(), vm.running_execution_context().private_environment, FunctionKind::Normal, true, parsing_insights, false, property_key_or_private_name));
 
+        initializer = ECMAScriptFunctionObject::create(realm, "field", ByteString::empty(), *function_code, {}, 0, {}, vm.lexical_environment(), vm.running_execution_context().private_environment, FunctionKind::Normal, true, parsing_insights, false, property_key_or_private_name);
 
         initializer->make_method(target);
 
     }
 
 
@@ -366,12 +366,12 @@ ThrowCompletionOr<ECMAScriptFunctionObject*> ClassExpression::create_class_const
 
 
     prototype->define_direct_property(vm.names.constructor, class_constructor, Attribute::Writable | Attribute::Configurable);
 
 
-    using StaticElement = Variant<ClassFieldDefinition, Handle<ECMAScriptFunctionObject>>;
 
+    using StaticElement = Variant<ClassFieldDefinition, JS::NonnullGCPtr<ECMAScriptFunctionObject>>;
 
 
     ConservativeVector<PrivateElement> static_private_methods(vm.heap());
 
     ConservativeVector<PrivateElement> instance_private_methods(vm.heap());
 
     ConservativeVector<ClassFieldDefinition> instance_fields(vm.heap());
 
-    Vector<StaticElement> static_elements;
 
+    ConservativeVector<StaticElement> static_elements(vm.heap());
 
 
     for (size_t element_index = 0; element_index < m_elements.size(); element_index++) {
 
         auto const& element = m_elements[element_index];
 
@@ -411,7 +411,7 @@ ThrowCompletionOr<ECMAScriptFunctionObject*> ClassExpression::create_class_const
 
             VERIFY(element_value.has<Completion>() && element_value.get<Completion>().value().has_value());
 
             auto& element_object = element_value.get<Completion>().value()->as_object();
 
             VERIFY(is<ECMAScriptFunctionObject>(element_object));
 
-            static_elements.append(make_handle(static_cast<ECMAScriptFunctionObject*>(&element_object)));
 
+            static_elements.append(NonnullGCPtr { static_cast<ECMAScriptFunctionObject&>(element_object) });
 
         }
 
     }

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5