| Index: src/objects.cc
|
| diff --git a/src/objects.cc b/src/objects.cc
|
| index 158de1452bd2b50e4e081950a0f1d276091cffc8..57882a4d20a0f8f3a64c9919c39d94c86f64df30 100644
|
| --- a/src/objects.cc
|
| +++ b/src/objects.cc
|
| @@ -211,18 +211,7 @@ MaybeObject* JSObject::GetPropertyWithCallback(Object* receiver,
|
| return isolate->heap()->undefined_value();
|
| }
|
| Object* return_value = *v8::Utils::OpenHandle(*result);
|
| -#if ENABLE_EXTRA_CHECKS
|
| - if (!(return_value->IsSmi() ||
|
| - return_value->IsString() ||
|
| - return_value->IsSpecObject() ||
|
| - return_value->IsHeapNumber() ||
|
| - return_value->IsUndefined() ||
|
| - return_value->IsTrue() ||
|
| - return_value->IsFalse() ||
|
| - return_value->IsNull())) {
|
| - FATAL("API call returned invalid object");
|
| - }
|
| -#endif
|
| + return_value->VerifyApiCallResultType();
|
| return return_value;
|
| }
|
|
|
| @@ -3805,7 +3794,9 @@ MaybeObject* JSObject::DeletePropertyWithInterceptor(String* name) {
|
| RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
| if (!result.IsEmpty()) {
|
| ASSERT(result->IsBoolean());
|
| - return *v8::Utils::OpenHandle(*result);
|
| + Handle<Object> result_internal = v8::Utils::OpenHandle(*result);
|
| + result_internal->VerifyApiCallResultType();
|
| + return *result_internal;
|
| }
|
| }
|
| MaybeObject* raw_result =
|
| @@ -3840,7 +3831,9 @@ MaybeObject* JSObject::DeleteElementWithInterceptor(uint32_t index) {
|
| RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
| if (!result.IsEmpty()) {
|
| ASSERT(result->IsBoolean());
|
| - return *v8::Utils::OpenHandle(*result);
|
| + Handle<Object> result_internal = v8::Utils::OpenHandle(*result);
|
| + result_internal->VerifyApiCallResultType();
|
| + return *result_internal;
|
| }
|
| MaybeObject* raw_result = this_handle->GetElementsAccessor()->Delete(
|
| *this_handle,
|
| @@ -9133,7 +9126,9 @@ MaybeObject* JSObject::GetElementWithCallback(Object* receiver,
|
| }
|
| RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
| if (result.IsEmpty()) return isolate->heap()->undefined_value();
|
| - return *v8::Utils::OpenHandle(*result);
|
| + Handle<Object> result_internal = v8::Utils::OpenHandle(*result);
|
| + result_internal->VerifyApiCallResultType();
|
| + return *result_internal;
|
| }
|
|
|
| // __defineGetter__ callback
|
| @@ -9952,7 +9947,11 @@ MaybeObject* JSObject::GetElementWithInterceptor(Object* receiver,
|
| result = getter(index, info);
|
| }
|
| RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
| - if (!result.IsEmpty()) return *v8::Utils::OpenHandle(*result);
|
| + if (!result.IsEmpty()) {
|
| + Handle<Object> result_internal = v8::Utils::OpenHandle(*result);
|
| + result_internal->VerifyApiCallResultType();
|
| + return *result_internal;
|
| + }
|
| }
|
|
|
| Heap* heap = holder_handle->GetHeap();
|
| @@ -10254,7 +10253,9 @@ MaybeObject* JSObject::GetPropertyWithInterceptor(
|
| RETURN_IF_SCHEDULED_EXCEPTION(isolate);
|
| if (!result.IsEmpty()) {
|
| *attributes = NONE;
|
| - return *v8::Utils::OpenHandle(*result);
|
| + Handle<Object> result_internal = v8::Utils::OpenHandle(*result);
|
| + result_internal->VerifyApiCallResultType();
|
| + return *result_internal;
|
| }
|
| }
|
|
|
|
|
Chromium Code Reviews
Issue 10928083:
Add more checks for native callback results. (Closed)
Base URL: https://v8.googlecode.com/svn/branches/bleeding_edge