Changeset 252877 in webkit
- Timestamp:
- Nov 26, 2019 12:24:57 AM (4 years ago)
- Location:
- trunk/Source/JavaScriptCore
- Files:
-
- 3 edited
-
API/glib/JSCContext.cpp (modified) (11 diffs)
-
API/glib/JSCValue.cpp (modified) (4 diffs)
-
ChangeLog (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/Source/JavaScriptCore/API/glib/JSCContext.cpp
r251425 r252877 272 272 { 273 273 JSCContextPrivate* priv = context->priv; 274 JSC::JSGlobalObject* globalObject = toJS(priv->jsContext.get()); 275 JSC::JSLockHolder locker(globalObject); 276 274 277 auto* jsArray = JSObjectMakeArray(priv->jsContext.get(), 0, nullptr, exception); 275 278 if (*exception) … … 290 293 JSObjectSetPropertyAtIndex(priv->jsContext.get(), jsArrayObject, i, jscValueGetJSValue(JSC_VALUE(item)), exception); 291 294 else 292 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("invalid item type in GPtrArray")));295 *exception = toRef(JSC::createTypeError(globalObject, makeString("invalid item type in GPtrArray"))); 293 296 294 297 if (*exception) … … 302 305 { 303 306 JSCContextPrivate* priv = context->priv; 307 JSC::JSGlobalObject* globalObject = toJS(priv->jsContext.get()); 308 JSC::JSLockHolder locker(globalObject); 309 304 310 if (JSValueIsNull(priv->jsContext.get(), jsArray)) 305 311 return nullptr; 306 312 307 313 if (!JSValueIsArray(priv->jsContext.get(), jsArray)) { 308 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("invalid js type for GPtrArray")));314 *exception = toRef(JSC::createTypeError(globalObject, makeString("invalid js type for GPtrArray"))); 309 315 return nullptr; 310 316 } … … 338 344 { 339 345 JSCContextPrivate* priv = context->priv; 346 JSC::JSGlobalObject* globalObject = toJS(priv->jsContext.get()); 347 JSC::JSLockHolder locker(globalObject); 348 340 349 if (JSValueIsNull(priv->jsContext.get(), jsArray)) 341 350 return nullptr; 342 351 343 352 if (!JSValueIsArray(priv->jsContext.get(), jsArray)) { 344 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("invalid js type for GStrv")));353 *exception = toRef(JSC::createTypeError(globalObject, makeString("invalid js type for GStrv"))); 345 354 return nullptr; 346 355 } … … 367 376 auto jsValueItem = jscContextGetOrCreateValue(context, jsItem); 368 377 if (!jsc_value_is_string(jsValueItem.get())) { 369 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("invalid js type for GStrv: item ", String::number(i), " is not a string")));378 *exception = toRef(JSC::createTypeError(globalObject, makeString("invalid js type for GStrv: item ", String::number(i), " is not a string"))); 370 379 return nullptr; 371 380 } … … 380 389 { 381 390 JSCContextPrivate* priv = context->priv; 391 JSC::JSGlobalObject* globalObject = toJS(priv->jsContext.get()); 392 JSC::JSLockHolder locker(globalObject); 382 393 383 394 switch (g_type_fundamental(G_VALUE_TYPE(value))) { … … 447 458 } 448 459 449 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("unsupported type ", g_type_name(G_VALUE_TYPE(value)))));460 *exception = toRef(JSC::createTypeError(globalObject, makeString("unsupported type ", g_type_name(G_VALUE_TYPE(value))))); 450 461 return JSValueMakeUndefined(priv->jsContext.get()); 451 462 } … … 454 465 { 455 466 JSCContextPrivate* priv = context->priv; 467 JSC::JSGlobalObject* globalObject = toJS(priv->jsContext.get()); 468 JSC::JSLockHolder locker(globalObject); 469 456 470 g_value_init(value, type); 457 458 471 auto fundamentalType = g_type_fundamental(G_VALUE_TYPE(value)); 459 472 switch (fundamentalType) { … … 529 542 } 530 543 531 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), "invalid pointer type"_s));544 *exception = toRef(JSC::createTypeError(globalObject, "invalid pointer type"_s)); 532 545 return; 533 546 } … … 540 553 g_value_set_object(value, wrappedObject); 541 554 else 542 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), "wrapped object is not a GObject"_s));555 *exception = toRef(JSC::createTypeError(globalObject, "wrapped object is not a GObject"_s)); 543 556 break; 544 557 } … … 565 578 case G_TYPE_VARIANT: 566 579 default: 567 *exception = toRef(JSC::createTypeError( toJS(priv->jsContext.get()), makeString("unsupported type ", g_type_name(G_VALUE_TYPE(value)))));580 *exception = toRef(JSC::createTypeError(globalObject, makeString("unsupported type ", g_type_name(G_VALUE_TYPE(value))))); 568 581 break; 569 582 } -
trunk/Source/JavaScriptCore/API/glib/JSCValue.cpp
r251425 r252877 473 473 g_return_val_if_fail(JSC_IS_CONTEXT(context), nullptr); 474 474 475 JSValueRef exception = nullptr;476 475 auto* jsContext = jscContextGetJSContext(context); 476 JSC::JSGlobalObject* globalObject = toJS(jsContext); 477 JSC::JSLockHolder locker(globalObject); 478 479 JSValueRef exception = nullptr; 477 480 auto* jsArray = JSObjectMakeArray(jsContext, 0, nullptr, &exception); 478 481 if (jscContextHandleExceptionIfNeeded(context, exception)) … … 492 495 G_VALUE_COLLECT_INIT(&item, itemType, args, G_VALUE_NOCOPY_CONTENTS, &error.outPtr()); 493 496 if (error) { 494 exception = toRef(JSC::createTypeError( toJS(jsContext), makeString("failed to collect array item: ", error.get())));497 exception = toRef(JSC::createTypeError(globalObject, makeString("failed to collect array item: ", error.get()))); 495 498 jscContextHandleExceptionIfNeeded(context, exception); 496 499 jsArray = nullptr; … … 879 882 JSCValuePrivate* priv = value->priv; 880 883 auto* jsContext = jscContextGetJSContext(priv->context.get()); 884 JSC::JSGlobalObject* globalObject = toJS(jsContext); 885 JSC::JSLockHolder locker(globalObject); 881 886 882 887 JSValueRef exception = nullptr; … … 888 893 G_VALUE_COLLECT_INIT(¶meter, parameterType, args, G_VALUE_NOCOPY_CONTENTS, &error.outPtr()); 889 894 if (error) { 890 exception = toRef(JSC::createTypeError( toJS(jsContext), makeString("failed to collect function paramater: ", error.get())));895 exception = toRef(JSC::createTypeError(globalObject, makeString("failed to collect function paramater: ", error.get()))); 891 896 jscContextHandleExceptionIfNeeded(priv->context.get(), exception); 892 897 return adoptGRef(jsc_value_new_undefined(priv->context.get())); -
trunk/Source/JavaScriptCore/ChangeLog
r252875 r252877 1 2019-11-26 Carlos Garcia Campos <cgarcia@igalia.com> 2 3 [GLIB] The API lock should be held before calling JSC::createTypeError 4 https://bugs.webkit.org/show_bug.cgi?id=204573 5 6 Reviewed by Mark Lam. 7 8 We are missing it in several places. This is causing a crash in test /jsc/object after r252298. 9 10 * API/glib/JSCContext.cpp: 11 (jscContextGArrayToJSArray): 12 (jscContextJSArrayToGArray): 13 (jscContextGValueToJSValue): 14 (jscContextJSValueToGValue): 15 * API/glib/JSCValue.cpp: 16 (jsc_value_new_array): 17 (jscValueCallFunction): 18 1 19 2019-11-25 Yusuke Suzuki <ysuzuki@apple.com> 2 20
Note: See TracChangeset
for help on using the changeset viewer.
