Context Navigation

← Previous Change
Next Change →

NodesCodegen.cpp

Timestamp:

Feb 9, 2016, 10:01:28 PM (10 years ago)

Author:

Message:

calling methods off super in a class constructor should check for TDZ
https://bugs.webkit.org/show_bug.cgi?id=154060

Reviewed by Ryosuke Niwa.

In a class constructor we need to check for TDZ when calling a method
off the super class. This is because, for super method calls, we use
the derived class's newly constructed object as the super method's
this value.

bytecompiler/NodesCodegen.cpp:

(JSC::FunctionCallDotNode::emitBytecode):

tests/stress/super-method-calls-check-tdz.js: Added.

(Base):
(Derived):
(test):

File:

: 1 edited

trunk/Source/JavaScriptCore/bytecompiler/NodesCodegen.cpp (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/JavaScriptCore/bytecompiler/NodesCodegen.cpp

-              r196323
+              r196361
     CallArguments callArguments(generator, m_args);
     bool baseIsSuper = m_base->isSuperNode();
+    if (baseIsSuper)
+    if (baseIsSuper) {
+        generator.emitTDZCheck(generator.thisRegister());
         generator.emitMove(callArguments.thisRegister(), generator.thisRegister());
     else
+    } else
         generator.emitNode(callArguments.thisRegister(), m_base);
     generator.emitExpressionInfo(subexpressionDivot(), subexpressionStart(), subexpressionEnd());

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 196361 in webkit for trunk/Source/JavaScriptCore/bytecompiler/NodesCodegen.cpp

Legend:

trunk/Source/JavaScriptCore/bytecompiler/NodesCodegen.cpp

Download in other formats: