Closed Bug 488458 Opened 12 years ago Closed 3 years ago
avoiding slot update after a getter call in js
Currently js_NativeGet from js/src/jsobj.cpp locks the object after executing the getter to set property's slot with the getter's result (when the getter is non-shared). For API compatibility this is done even when the getter comes from the prototype with the result stored also in the prototype. We should consider removing this compatibility feature (which is a known source of unexpected leaks) and optimize away the need for double-locking.
CC list accessible: false
Not accessible to reporter
Summary: js_FillPropertyCache is called with garbage-collected pobj → avoiding slot update after a getter call in js_NativeGet
js_NativeGet is no longer present, therefore closing as INCOMPLETE.
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.