From 6351d7dd0171e606dfab58e22b590a9db1d06b08 Mon Sep 17 00:00:00 2001
From: Vsevolod Pukhov <pukhov.vsevolod@huawei-partners.com>
Date: Mon, 10 Oct 2022 20:26:36 +0300
Subject: [PATCH 1/2] Improve ECMAScript field accessors, compute NativeFields

* Compute GC NativeFields mask in compile-time, add alignment checks
* Remove manual offset calculations, make accessors safe

Signed-off-by: Vsevolod Pukhov <pukhov.vsevolod@huawei-partners.com>
---
 runtime/accessor_data.h                      |  17 +-
 runtime/asm_defines/asm_defines.def          |  42 +--
 runtime/builtins.cpp                         | 255 ++++++++----------
 runtime/class_info_extractor.cpp             |  11 +-
 runtime/class_info_extractor.h               |  26 +-
 runtime/class_linker/program_object.h        |  26 +-
 runtime/containers/containers_private.cpp    |   2 +-
 runtime/ecma_macro_accessors.h               | 172 ++++++++++++
 runtime/ecma_macros.h                        | 125 +--------
 runtime/ecma_module.h                        |   6 +-
 runtime/ecma_string.h                        |   9 +-
 runtime/ecma_vm.cpp                          |   4 +-
 runtime/free_object.h                        |  15 +-
 runtime/global_env.h                         |   3 +-
 runtime/global_env_constants.cpp             | 129 ++++-----
 runtime/ic/ic_handler.h                      |  22 +-
 runtime/ic/property_box.h                    |   6 +-
 runtime/ic/proto_change_details.h            |  13 +-
 runtime/jobs/micro_job_queue.h               |   9 +-
 runtime/jobs/pending_job.h                   |   9 +-
 runtime/js_arguments.h                       |   7 +-
 runtime/js_array.h                           |   9 +-
 runtime/js_array_iterator.h                  |  11 +-
 runtime/js_arraybuffer.h                     |  10 +-
 runtime/js_arraylist.h                       |   6 +-
 runtime/js_async_from_sync_iterator_object.h |  16 +-
 runtime/js_async_function.h                  |  14 +-
 runtime/js_async_generator_object.h          |  14 +-
 runtime/js_bigint.h                          |   8 +-
 runtime/js_collator.h                        |  25 +-
 runtime/js_dataview.h                        |  13 +-
 runtime/js_date.h                            |   9 +-
 runtime/js_date_time_format.h                |  29 +-
 runtime/js_finalization_registry.h           |  10 +-
 runtime/js_for_in_iterator.h                 |  19 +-
 runtime/js_function.cpp                      |   2 +-
 runtime/js_function.h                        | 102 +++-----
 runtime/js_function_extra_info.h             |  10 +-
 runtime/js_generator_object.h                |  34 +--
 runtime/js_global_object.h                   |   2 -
 runtime/js_hclass.h                          |  26 +-
 runtime/js_intl.h                            |   7 +-
 runtime/js_locale.h                          |   7 +-
 runtime/js_map.h                             |   7 +-
 runtime/js_map_iterator.h                    |  11 +-
 runtime/js_native_pointer.h                  |   9 +-
 runtime/js_number_format.h                   |  49 ++--
 runtime/js_object.h                          |  19 +-
 runtime/js_plural_rules.h                    |  29 +-
 runtime/js_primitive_ref.h                   |   7 +-
 runtime/js_promise.h                         |  63 ++---
 runtime/js_proxy.h                           |  11 +-
 runtime/js_realm.h                           |   8 +-
 runtime/js_regexp.h                          |  17 +-
 runtime/js_regexp_iterator.h                 |  12 +-
 runtime/js_relative_time_format.h            |  21 +-
 runtime/js_set.h                             |   6 +-
 runtime/js_set_iterator.h                    |  11 +-
 runtime/js_string_iterator.h                 |   8 +-
 runtime/js_symbol.h                          |  11 +-
 runtime/js_typed_array.h                     |  16 +-
 runtime/js_weak_container.h                  |  19 +-
 runtime/mem/ecma_reference_processor.cpp     |   2 +-
 runtime/mem/object_xray-inl.h                | 262 -------------------
 runtime/mem/object_xray.h                    |   2 -
 runtime/object_factory.cpp                   |  45 ++--
 runtime/object_factory.h                     |  44 +++-
 runtime/object_wrapper.h                     |   7 +-
 runtime/record.h                             |   2 +
 runtime/tagged_array.h                       |  14 +-
 tests/runtime/mem/object_helpers_test.cpp    |  17 +-
 tests/runtime/napi/jsnapi_tests.cpp          |   4 +-
 72 files changed, 865 insertions(+), 1159 deletions(-)
 create mode 100644 runtime/ecma_macro_accessors.h

diff --git a/runtime/accessor_data.h b/runtime/accessor_data.h
index c03eb1e11..de0b0424d 100644
--- a/runtime/accessor_data.h
+++ b/runtime/accessor_data.h
@@ -61,12 +61,12 @@ public:
         return set_func(thread, obj, value, may_throw);
     }
 
-    static constexpr size_t GETTER_OFFSET = Record::SIZE;
-    ACCESSORS(Getter, GETTER_OFFSET, SETTER_OFFSET);
-    ACCESSORS(Setter, SETTER_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Getter)
+    ACCESSORS(1, Setter)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-    DECL_VISIT_OBJECT(GETTER_OFFSET, SIZE)
 };
 
 class CompletionRecord final : public Record {
@@ -94,13 +94,12 @@ public:
         return !JSTaggedValue::SameValue(this->GetType(), JSTaggedValue(static_cast<int32_t>(NORMAL)));
     }
 
-    static constexpr size_t TYPE_OFFSET = Record::SIZE;
-    ACCESSORS(Type, TYPE_OFFSET, VALUE_OFFSET);
-    ACCESSORS(Value, VALUE_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Type)
+    ACCESSORS(1, Value)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(TYPE_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_ACCESSOR_DATA_H
diff --git a/runtime/asm_defines/asm_defines.def b/runtime/asm_defines/asm_defines.def
index 4c79c9bb3..8b943fa1a 100644
--- a/runtime/asm_defines/asm_defines.def
+++ b/runtime/asm_defines/asm_defines.def
@@ -16,11 +16,11 @@ DEFINE_VALUE(JSTYPE_JS_ARRAY, static_cast<uint8_t>(panda::ecmascript::JSType::JS
 DEFINE_VALUE(JSTYPE_PROTOTYPE_HANDLER, static_cast<uint8_t>(panda::ecmascript::JSType::PROTOTYPE_HANDLER))
 DEFINE_VALUE(JSTYPE_TRANSITION_HANDLER, static_cast<uint8_t>(panda::ecmascript::JSType::TRANSITION_HANDLER))
 DEFINE_VALUE(JSTYPE_JS_FUNCTION, static_cast<uint8_t>(panda::ecmascript::JSType::JS_FUNCTION))
-DEFINE_VALUE(ECMASTRING_MIX_LENGTH_OFFSET, panda::ecmascript::EcmaString::MIX_LENGTH_OFFSET)
+DEFINE_VALUE(ECMASTRING_MIX_LENGTH_OFFSET, panda::ecmascript::EcmaString::GetMixLengthOffset())
 DEFINE_VALUE(ECMASTRING_DATA_OFFSET, panda::ecmascript::EcmaString::DATA_OFFSET)
 DEFINE_VALUE(ECMASTRING_STRING_COMPRESSED_MASK, panda::ecmascript::EcmaString::GetStringCompressionMask())
-DEFINE_VALUE(JSFORINITERATOR_FAST_REMAINING_INDEX_OFFSET, panda::ecmascript::JSForInIterator::FAST_REMAINING_INDEX_OFFSET)
-DEFINE_VALUE(JSFORINITERATOR_REMAINING_KEYS_OFFSET, panda::ecmascript::JSForInIterator::REMAINING_KEYS_OFFSET)
+DEFINE_VALUE(JSFORINITERATOR_FAST_REMAINING_INDEX_OFFSET, panda::ecmascript::JSForInIterator::GetFastRemainingIndexOffset())
+DEFINE_VALUE(JSFORINITERATOR_REMAINING_KEYS_OFFSET, panda::ecmascript::JSForInIterator::GetRemainingKeysOffset())
 DEFINE_VALUE(TAGGEDARRAY_DATA_OFFSET, panda::ecmascript::TaggedArray::DATA_OFFSET)
 DEFINE_VALUE(TAGGEDQUEUE_START_INDEX, panda::ecmascript::TaggedQueue::START_INDEX)
 DEFINE_VALUE(TAGGEDQUEUE_END_INDEX, panda::ecmascript::TaggedQueue::END_INDEX)
@@ -34,7 +34,7 @@ DEFINE_VALUE(JSHCLASS_BITFIELD_EXTENSIBLE_START_BIT, panda::ecmascript::JSHClass
 DEFINE_VALUE(JSHCLASS_BITFIELD_INLINED_PROPS_START_BITS_START_BIT, panda::ecmascript::JSHClass::InlinedPropsStartBits::START_BIT)
 DEFINE_VALUE(JSHCLASS_BITFIELD_INLINED_PROPS_START_BITS_MASK, panda::ecmascript::JSHClass::InlinedPropsStartBits::MaxValue())
 DEFINE_VALUE(JSHCLASS_HCLASS_OFFSET, panda::ecmascript::JSHClass::GetHClassOffset())
-DEFINE_VALUE(JSHCLASS_LAYOUT_OFFSET, panda::ecmascript::JSHClass::LAYOUT_OFFSET)
+DEFINE_VALUE(JSHCLASS_LAYOUT_OFFSET, panda::ecmascript::JSHClass::GetLayoutOffset())
 DEFINE_VALUE(JSHCLASS_BITFIELD1_OFFSET, panda::ecmascript::JSHClass::BIT_FIELD1_OFFSET)
 DEFINE_VALUE(JSHCLASS_BITFIELD1_NUMBER_OF_PROPS_BITS_START_BIT, panda::ecmascript::JSHClass::NumberOfPropsBits::START_BIT)
 DEFINE_VALUE(JSHCLASS_BITFIELD1_NUMBER_OF_PROPS_BITS_MASK, panda::ecmascript::JSHClass::NumberOfPropsBits::MaxValue())
@@ -44,25 +44,25 @@ DEFINE_VALUE(JSHCLASS_LAYOUT_PROPERTIES_SIZE, sizeof(panda::ecmascript::Properti
 DEFINE_VALUE(JSHCLASS_LAYOUT_PROPERTIES_KEY_OFFSET, panda::ecmascript::Properties::GetKeyOffset())
 DEFINE_VALUE(JSHCLASS_LAYOUT_PROPERTIES_ATTR_OFFSET, panda::ecmascript::Properties::GetAttrOffset())
 DEFINE_VALUE(JSHCLASS_LAYOUT_INFO_NUMBER_OF_PROPERTIES_INDEX, panda::ecmascript::LayoutInfo::NUMBER_OF_PROPERTIES_INDEX)
-DEFINE_VALUE(JSOBJECT_PROPERTIES_OFFSET, panda::ecmascript::JSObject::PROPERTIES_OFFSET)
-DEFINE_VALUE(JSOBJECT_ELEMENTS_OFFSET, panda::ecmascript::JSObject::ELEMENTS_OFFSET)
+DEFINE_VALUE(JSOBJECT_PROPERTIES_OFFSET, panda::ecmascript::JSObject::GetPropertiesOffset())
+DEFINE_VALUE(JSOBJECT_ELEMENTS_OFFSET, panda::ecmascript::JSObject::GetElementsOffset())
 DEFINE_VALUE(JSOBJECT_MAX_ELEMENT_INDEX, static_cast<ptrdiff_t>(panda::ecmascript::JSObject::MAX_ELEMENT_INDEX))
-DEFINE_VALUE(JSARRAY_LENGTH_OFFSET, panda::ecmascript::JSArray::LENGTH_OFFSET)
-DEFINE_VALUE(JSFUNCTION_METHOD_OFFSET, panda::ecmascript::JSFunction::METHOD_OFFSET)
-DEFINE_VALUE(JSFUNCTION_PROFILE_TYPE_INFO_OFFSET, panda::ecmascript::JSFunction::PROFILE_TYPE_INFO_OFFSET)
-DEFINE_VALUE(JSFUNCTION_CONSTANT_POOL_OFFSET, panda::ecmascript::JSFunction::CONSTANT_POOL_OFFSET)
-DEFINE_VALUE(JSFUNCTION_LEXICAL_ENV_OFFSET, panda::ecmascript::JSFunction::LEXICAL_ENV_OFFSET)
-DEFINE_VALUE(JSFUNCTION_FUNCTION_INFO_FLAG_OFFSET, panda::ecmascript::JSFunction::FUNCTION_INFO_FLAG_OFFSET)
+DEFINE_VALUE(JSARRAY_LENGTH_OFFSET, panda::ecmascript::JSArray::GetLengthOffset())
+DEFINE_VALUE(JSFUNCTION_METHOD_OFFSET, panda::ecmascript::JSFunction::GetMethodOffset())
+DEFINE_VALUE(JSFUNCTION_PROFILE_TYPE_INFO_OFFSET, panda::ecmascript::JSFunction::GetProfileTypeInfoOffset())
+DEFINE_VALUE(JSFUNCTION_CONSTANT_POOL_OFFSET, panda::ecmascript::JSFunction::GetConstantPoolOffset())
+DEFINE_VALUE(JSFUNCTION_LEXICAL_ENV_OFFSET, panda::ecmascript::JSFunction::GetLexicalEnvOffset())
+DEFINE_VALUE(JSFUNCTION_FUNCTION_INFO_FLAG_OFFSET, panda::ecmascript::JSFunction::GetFunctionInfoFlagOffset())
 DEFINE_VALUE(JSFUNCTION_FUNCTION_INFO_FLAG_IS_STRICT_START_BIT, panda::ecmascript::JSFunction::StrictBit::START_BIT)
-DEFINE_VALUE(JSPROPERTY_BOX_VALUE_OFFSET, panda::ecmascript::PropertyBox::VALUE_OFFSET)
-DEFINE_VALUE(JSTRANSITION_HANDLER_HANDLER_INFO_OFFSET, panda::ecmascript::TransitionHandler::HANDLER_INFO_OFFSET)
-DEFINE_VALUE(JSTRANSITION_HANDLER_HCLASS_OFFSET, panda::ecmascript::TransitionHandler::TRANSITION_HCLASS_OFFSET)
-DEFINE_VALUE(JSPROTOTYPE_HANDLER_HANDLER_INFO_OFFSET, panda::ecmascript::PrototypeHandler::HANDLER_INFO_OFFSET)
-DEFINE_VALUE(JSPROTOTYPE_HANDLER_PROTO_CELL_OFFSET, panda::ecmascript::PrototypeHandler::PROTO_CELL_OFFSET)
-DEFINE_VALUE(JSPROTOTYPE_HANDLER_HOLDER_OFFSET, panda::ecmascript::PrototypeHandler::HOLDER_OFFSET)
-DEFINE_VALUE(JSPROTO_CHANGE_MARKER_HAS_CHANGED_OFFSET, panda::ecmascript::ProtoChangeMarker::HAS_CHANGED_OFFSET)
-DEFINE_VALUE(JS_STRING_HASHCODE_OFFSET, panda::ecmascript::EcmaString::HASHCODE_OFFSET)
-DEFINE_VALUE(JS_SYMBOL_HASHFIELD_OFFSET, panda::ecmascript::JSSymbol::HASHFIELD_OFFSET)
+DEFINE_VALUE(JSPROPERTY_BOX_VALUE_OFFSET, panda::ecmascript::PropertyBox::GetValueOffset())
+DEFINE_VALUE(JSTRANSITION_HANDLER_HANDLER_INFO_OFFSET, panda::ecmascript::TransitionHandler::GetHandlerInfoOffset())
+DEFINE_VALUE(JSTRANSITION_HANDLER_HCLASS_OFFSET, panda::ecmascript::TransitionHandler::GetTransitionHClassOffset())
+DEFINE_VALUE(JSPROTOTYPE_HANDLER_HANDLER_INFO_OFFSET, panda::ecmascript::PrototypeHandler::GetHandlerInfoOffset())
+DEFINE_VALUE(JSPROTOTYPE_HANDLER_PROTO_CELL_OFFSET, panda::ecmascript::PrototypeHandler::GetProtoCellOffset())
+DEFINE_VALUE(JSPROTOTYPE_HANDLER_HOLDER_OFFSET, panda::ecmascript::PrototypeHandler::GetHolderOffset())
+DEFINE_VALUE(JSPROTO_CHANGE_MARKER_HAS_CHANGED_OFFSET, panda::ecmascript::ProtoChangeMarker::GetHasChangedOffset())
+DEFINE_VALUE(JS_STRING_HASHCODE_OFFSET, panda::ecmascript::EcmaString::GetRawHashcodeOffset())
+DEFINE_VALUE(JS_SYMBOL_HASHFIELD_OFFSET, panda::ecmascript::JSSymbol::GetHashFieldOffset())
 DEFINE_VALUE(IC_HANDLER_KIND_BIT_START_BIT, panda::ecmascript::HandlerBase::KindBit::START_BIT)
 DEFINE_VALUE(IC_HANDLER_KIND_BIT_MASK, panda::ecmascript::HandlerBase::KindBit::MaxValue())
 DEFINE_VALUE(IC_HANDLER_OFFSET_BIT_START_BIT, panda::ecmascript::HandlerBase::OffsetBit::START_BIT)
diff --git a/runtime/builtins.cpp b/runtime/builtins.cpp
index 52cefc0a0..5294de92e 100644
--- a/runtime/builtins.cpp
+++ b/runtime/builtins.cpp
@@ -162,29 +162,27 @@ void Builtins::Initialize(const JSHandle<GlobalEnv> &env, JSThread *thread)
     JSHandle<JSTaggedValue> nullHandle(thread, JSTaggedValue::Null());
 
     // Object.prototype[dynclass]
-    JSHandle<JSHClass> objPrototypeDynclass = factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, nullHandle);
+    JSHandle<JSHClass> objPrototypeDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, nullHandle);
 
     // Object.prototype
     JSHandle<JSObject> objFuncPrototype = factory_->NewJSObject(objPrototypeDynclass);
     JSHandle<JSTaggedValue> objFuncPrototypeVal(objFuncPrototype);
 
     // Object.prototype_or_dynclass
-    JSHandle<JSHClass> objFuncDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, objFuncPrototypeVal);
+    JSHandle<JSHClass> objFuncDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, objFuncPrototypeVal);
 
     // GLobalObject.prototype_or_dynclass
-    JSHandle<JSHClass> globalObjFuncDynclass = factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_GLOBAL_OBJECT, 0);
+    JSHandle<JSHClass> globalObjFuncDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_GLOBAL_OBJECT, 0);
     globalObjFuncDynclass->SetPrototype(thread_, objFuncPrototypeVal.GetTaggedValue());
     globalObjFuncDynclass->SetIsDictionaryMode(true);
     // Function.prototype_or_dynclass
     JSHandle<JSHClass> emptyFuncDynclass(
-        factory_->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION, objFuncPrototypeVal, HClass::IS_CALLABLE));
-    emptyFuncDynclass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
+        factory_->CreateDynClass<JSFunction>(JSType::JS_FUNCTION, objFuncPrototypeVal, HClass::IS_CALLABLE));
     emptyFuncDynclass->SetExtensible(true);
 
     // PrimitiveRef.prototype_or_dynclass
     JSHandle<JSHClass> primRefObjDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, objFuncPrototypeVal);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, objFuncPrototypeVal);
 
     // init global object
     JSHandle<JSObject> globalObject = factory_->NewNonMovableJSObject(globalObjFuncDynclass);
@@ -197,58 +195,47 @@ void Builtins::Initialize(const JSHandle<GlobalEnv> &env, JSThread *thread)
 
     JSHandle<JSObject> objFuncInstancePrototype = factory_->NewJSObject(objFuncDynclass);
     JSHandle<JSTaggedValue> objFuncInstancePrototypeValue(objFuncInstancePrototype);
-    JSHandle<JSHClass> asyncFuncClass = factory_->CreateFunctionClass(
-        FunctionKind::ASYNC_FUNCTION, JSAsyncFunction::SIZE, JSType::JS_ASYNC_FUNCTION, objFuncInstancePrototypeValue);
+    JSHandle<JSHClass> asyncFuncClass = factory_->CreateFunctionClass<JSAsyncFunction>(
+        FunctionKind::ASYNC_FUNCTION, JSType::JS_ASYNC_FUNCTION, objFuncInstancePrototypeValue);
     asyncFuncClass->SetExtensible(true);
     env->SetAsyncFunctionClass(thread_, asyncFuncClass);
 
-    JSHandle<JSHClass> asyncAwaitStatusFuncClass =
-        factory_->CreateFunctionClass(FunctionKind::NORMAL_FUNCTION, JSAsyncAwaitStatusFunction::SIZE,
-                                      JSType::JS_ASYNC_AWAIT_STATUS_FUNCTION, env->GetFunctionPrototype());
+    JSHandle<JSHClass> asyncAwaitStatusFuncClass = factory_->CreateFunctionClass<JSAsyncAwaitStatusFunction>(
+        FunctionKind::NORMAL_FUNCTION, JSType::JS_ASYNC_AWAIT_STATUS_FUNCTION, env->GetFunctionPrototype());
     env->SetAsyncAwaitStatusFunctionClass(thread_, asyncAwaitStatusFuncClass);
 
-    JSHandle<JSHClass> asyncGeneratorResolveNextFuncClass = factory_->NewEcmaDynClass(
-        JSAsyncGeneratorResolveNextFunction::SIZE, JSType::JS_ASYNC_GENERATOR_RESOLVE_NEXT_FUNCTION,
-        env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> asyncGeneratorResolveNextFuncClass =
+        factory_->CreateDynClass<JSAsyncGeneratorResolveNextFunction>(JSType::JS_ASYNC_GENERATOR_RESOLVE_NEXT_FUNCTION,
+                                                                      env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     asyncGeneratorResolveNextFuncClass->SetExtensible(true);
-    asyncGeneratorResolveNextFuncClass->GetHClass()->MarkFieldAsNative(
-        JSAsyncGeneratorResolveNextFunction::METHOD_OFFSET);
     env->SetAsyncGeneratorResolveNextFunctionClass(thread_, asyncGeneratorResolveNextFuncClass);
 
-    JSHandle<JSHClass> asyncFromSyncIteratorValueUnwrapFuncClass = factory_->NewEcmaDynClass(
-        JSAsyncFromSyncIteratorValueUnwrapFunction::SIZE, JSType::JS_ASYNC_FROM_SYNC_ITERATOR_VALUE_UNWRAP_FUNCTION,
-        env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> asyncFromSyncIteratorValueUnwrapFuncClass =
+        factory_->CreateDynClass<JSAsyncFromSyncIteratorValueUnwrapFunction>(
+            JSType::JS_ASYNC_FROM_SYNC_ITERATOR_VALUE_UNWRAP_FUNCTION, env->GetFunctionPrototype(),
+            HClass::IS_CALLABLE);
     asyncFromSyncIteratorValueUnwrapFuncClass->SetExtensible(true);
-    asyncFromSyncIteratorValueUnwrapFuncClass->GetHClass()->MarkFieldAsNative(
-        JSAsyncFromSyncIteratorValueUnwrapFunction::METHOD_OFFSET);
     env->SetAsyncFromSyncIteratorValueUnwrapFunctionClass(thread_, asyncFromSyncIteratorValueUnwrapFuncClass);
 
-    JSHandle<JSHClass> promiseReactionFuncClass =
-        factory_->NewEcmaDynClass(JSPromiseReactionsFunction::SIZE, JSType::JS_PROMISE_REACTIONS_FUNCTION,
-                                  env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> promiseReactionFuncClass = factory_->CreateDynClass<JSPromiseReactionsFunction>(
+        JSType::JS_PROMISE_REACTIONS_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     promiseReactionFuncClass->SetExtensible(true);
-    promiseReactionFuncClass->GetHClass()->MarkFieldAsNative(JSPromiseReactionsFunction::METHOD_OFFSET);
     env->SetPromiseReactionFunctionClass(thread_, promiseReactionFuncClass);
 
-    JSHandle<JSHClass> promiseExecutorFuncClass =
-        factory_->NewEcmaDynClass(JSPromiseExecutorFunction::SIZE, JSType::JS_PROMISE_EXECUTOR_FUNCTION,
-                                  env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> promiseExecutorFuncClass = factory_->CreateDynClass<JSPromiseExecutorFunction>(
+        JSType::JS_PROMISE_EXECUTOR_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     promiseExecutorFuncClass->SetExtensible(true);
-    promiseExecutorFuncClass->GetHClass()->MarkFieldAsNative(JSPromiseExecutorFunction::METHOD_OFFSET);
     env->SetPromiseExecutorFunctionClass(thread_, promiseExecutorFuncClass);
 
-    JSHandle<JSHClass> promiseAllResolveElementFunctionClass = factory_->NewEcmaDynClass(
-        JSPromiseAllResolveElementFunction::SIZE, JSType::JS_PROMISE_ALL_RESOLVE_ELEMENT_FUNCTION,
-        env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> promiseAllResolveElementFunctionClass =
+        factory_->CreateDynClass<JSPromiseAllResolveElementFunction>(JSType::JS_PROMISE_ALL_RESOLVE_ELEMENT_FUNCTION,
+                                                                     env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     promiseAllResolveElementFunctionClass->SetExtensible(true);
-    promiseAllResolveElementFunctionClass->GetHClass()->MarkFieldAsNative(
-        JSPromiseAllResolveElementFunction::METHOD_OFFSET);
     env->SetPromiseAllResolveElementFunctionClass(thread_, promiseAllResolveElementFunctionClass);
 
-    JSHandle<JSHClass> proxyRevocFuncClass = factory_->NewEcmaDynClass(
-        JSProxyRevocFunction::SIZE, JSType::JS_PROXY_REVOC_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE);
+    JSHandle<JSHClass> proxyRevocFuncClass = factory_->CreateDynClass<JSProxyRevocFunction>(
+        JSType::JS_PROXY_REVOC_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     proxyRevocFuncClass->SetExtensible(true);
-    proxyRevocFuncClass->GetHClass()->MarkFieldAsNative(JSProxyRevocFunction::METHOD_OFFSET);
     env->SetProxyRevocFunctionClass(thread_, proxyRevocFuncClass);
 
     // Object = new Function()
@@ -260,14 +247,14 @@ void Builtins::Initialize(const JSHandle<GlobalEnv> &env, JSThread *thread)
     env->SetObjectFunction(thread_, objectFunction);
     env->SetObjectFunctionPrototype(thread_, objFuncPrototype);
 
-    JSHandle<JSHClass> functionClass = factory_->CreateFunctionClass(FunctionKind::BASE_CONSTRUCTOR, JSFunction::SIZE,
-                                                                     JSType::JS_FUNCTION, env->GetFunctionPrototype());
+    JSHandle<JSHClass> functionClass = factory_->CreateFunctionClass<JSFunction>(
+        FunctionKind::BASE_CONSTRUCTOR, JSType::JS_FUNCTION, env->GetFunctionPrototype());
     env->SetFunctionClassWithProto(thread_, functionClass);
-    functionClass = factory_->CreateFunctionClass(FunctionKind::NORMAL_FUNCTION, JSFunction::SIZE, JSType::JS_FUNCTION,
-                                                  env->GetFunctionPrototype());
+    functionClass = factory_->CreateFunctionClass<JSFunction>(FunctionKind::NORMAL_FUNCTION, JSType::JS_FUNCTION,
+                                                              env->GetFunctionPrototype());
     env->SetFunctionClassWithoutProto(thread_, functionClass);
-    functionClass = factory_->CreateFunctionClass(FunctionKind::CLASS_CONSTRUCTOR, JSFunction::SIZE,
-                                                  JSType::JS_FUNCTION, env->GetFunctionPrototype());
+    functionClass = factory_->CreateFunctionClass<JSFunction>(FunctionKind::CLASS_CONSTRUCTOR, JSType::JS_FUNCTION,
+                                                              env->GetFunctionPrototype());
     env->SetFunctionClassWithoutName(thread_, functionClass);
 
     if (env == vm_->GetGlobalEnv()) {
@@ -333,14 +320,13 @@ void Builtins::Initialize(const JSHandle<GlobalEnv> &env, JSThread *thread)
     InitializeCollator(env);
     InitializePluralRules(env);
 
-    JSHandle<JSHClass> generatorFuncClass =
-        factory_->CreateFunctionClass(FunctionKind::GENERATOR_FUNCTION, JSFunction::SIZE, JSType::JS_GENERATOR_FUNCTION,
-                                      env->GetGeneratorFunctionPrototype());
+    JSHandle<JSHClass> generatorFuncClass = factory_->CreateFunctionClass<JSGeneratorFunction>(
+        FunctionKind::GENERATOR_FUNCTION, JSType::JS_GENERATOR_FUNCTION, env->GetGeneratorFunctionPrototype());
     env->SetGeneratorFunctionClass(thread_, generatorFuncClass);
 
-    JSHandle<JSHClass> asyncGeneratorFuncClass =
-        factory_->CreateFunctionClass(FunctionKind::ASYNC_GENERATOR_FUNCTION, JSFunction::SIZE,
-                                      JSType::JS_ASYNC_GENERATOR_FUNCTION, env->GetAsyncGeneratorFunctionPrototype());
+    JSHandle<JSHClass> asyncGeneratorFuncClass = factory_->CreateFunctionClass<JSAsyncGeneratorFunction>(
+        FunctionKind::ASYNC_GENERATOR_FUNCTION, JSType::JS_ASYNC_GENERATOR_FUNCTION,
+        env->GetAsyncGeneratorFunctionPrototype());
     env->SetAsyncGeneratorFunctionClass(thread_, asyncGeneratorFuncClass);
 
     env->SetObjectFunctionPrototypeClass(thread_, JSTaggedValue(objFuncPrototype->GetClass()));
@@ -414,10 +400,9 @@ void Builtins::InitializeFunction(const JSHandle<GlobalEnv> &env, const JSHandle
 
     JSHandle<JSTaggedValue> funcFuncPrototypeValue(funcFuncPrototype);
     // Function.prototype_or_dynclass
-    JSHandle<JSHClass> funcFuncIntanceDynclass = factory_->NewEcmaDynClass(
-        JSFunction::SIZE, JSType::JS_FUNCTION, funcFuncPrototypeValue, HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
+    JSHandle<JSHClass> funcFuncIntanceDynclass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_FUNCTION, funcFuncPrototypeValue, HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
     funcFuncIntanceDynclass->SetConstructor(true);
-    funcFuncIntanceDynclass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
 
     // Function = new Function() (forbidden use NewBuiltinConstructor)
     JSMethod *ctor = vm_->GetMethodForNativeFunction(reinterpret_cast<void *>(Function::FunctionConstructor));
@@ -431,22 +416,17 @@ void Builtins::InitializeFunction(const JSHandle<GlobalEnv> &env, const JSHandle
     env->SetFunctionFunction(thread_, funcFunc);
     env->SetFunctionPrototype(thread_, funcFuncPrototype);
 
-    JSHandle<JSHClass> normalFuncClass = factory_->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION,
-                                                                   env->GetFunctionPrototype(), HClass::IS_CALLABLE);
-    normalFuncClass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
+    JSHandle<JSHClass> normalFuncClass =
+        factory_->CreateDynClass<JSFunction>(JSType::JS_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE);
     env->SetNormalFunctionClass(thread_, normalFuncClass);
 
-    JSHandle<JSHClass> jSIntlBoundFunctionClass =
-        factory_->CreateFunctionClass(FunctionKind::NORMAL_FUNCTION, JSIntlBoundFunction::SIZE,
-                                      JSType::JS_INTL_BOUND_FUNCTION, env->GetFunctionPrototype());
-    jSIntlBoundFunctionClass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
+    JSHandle<JSHClass> jSIntlBoundFunctionClass = factory_->CreateFunctionClass<JSIntlBoundFunction>(
+        FunctionKind::NORMAL_FUNCTION, JSType::JS_INTL_BOUND_FUNCTION, env->GetFunctionPrototype());
     env->SetJSIntlBoundFunctionClass(thread_, jSIntlBoundFunctionClass);
 
-    JSHandle<JSHClass> constructorFunctionClass =
-        factory_->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION, env->GetFunctionPrototype(),
-                                  HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
+    JSHandle<JSHClass> constructorFunctionClass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_FUNCTION, env->GetFunctionPrototype(), HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
     constructorFunctionClass->SetConstructor(true);
-    constructorFunctionClass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
     env->SetConstructorFunctionClass(thread_, constructorFunctionClass);
 
     StrictModeForbiddenAccessCallerArguments(env, funcFuncPrototypeObj);
@@ -554,7 +534,7 @@ void Builtins::InitializeSymbol(const JSHandle<GlobalEnv> &env, const JSHandle<J
 
     // Symbol.prototype_or_dynclass
     JSHandle<JSHClass> symbolFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, symbolFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, symbolFuncPrototypeValue);
 
     // Symbol = new Function()
     JSHandle<JSObject> symbolFunction(
@@ -653,7 +633,7 @@ void Builtins::InitializeSymbolWithRealm(const JSHandle<GlobalEnv> &realm,
 
     // Symbol.prototype_or_dynclass
     JSHandle<JSHClass> symbolFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, symbolFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, symbolFuncPrototypeValue);
 
     // Symbol = new Function()
     JSHandle<JSObject> symbolFunction(
@@ -741,7 +721,7 @@ void Builtins::InitializeNumber(const JSHandle<GlobalEnv> &env, const JSHandle<J
 
     // Number.prototype_or_dynclass
     JSHandle<JSHClass> numFuncInstanceClass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, numFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, numFuncPrototypeValue);
 
     // Number = new Function()
     JSHandle<JSObject> numFunction(
@@ -793,7 +773,7 @@ void Builtins::InitializeBigInt(const JSHandle<GlobalEnv> &env, const JSHandle<J
 
     // BigInt.prototype_or_dynclass
     JSHandle<JSHClass> bigIntFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, bigIntFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, bigIntFuncPrototypeValue);
     // BigInt = new Function()
     JSHandle<JSObject> bigIntFunction(NewBuiltinConstructor(env, bigIntFuncPrototype, BuiltinsBigInt::BigIntConstructor,
                                                             "BigInt", FunctionLength::ONE));
@@ -823,7 +803,7 @@ void Builtins::InitializeDate(const JSHandle<GlobalEnv> &env, const JSHandle<JSH
 
     // Date.prototype_or_dynclass
     JSHandle<JSHClass> dateFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSDate::SIZE, JSType::JS_DATE, dateFuncPrototypeValue);
+        factory_->CreateDynClass<JSDate>(JSType::JS_DATE, dateFuncPrototypeValue);
 
     // Date = new Function()
     JSHandle<JSObject> dateFunction(
@@ -904,7 +884,7 @@ void Builtins::InitializeBoolean(const JSHandle<GlobalEnv> &env, const JSHandle<
 
     // Boolean.prototype_or_dynclass
     JSHandle<JSHClass> booleanFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, booleanFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, booleanFuncPrototypeValue);
 
     // new Boolean Function()
     JSHandle<JSFunction> booleanFunction(
@@ -957,8 +937,7 @@ void Builtins::InitializeAsyncFunction(const JSHandle<GlobalEnv> &env, const JSH
 
     // AsyncFunction.prototype_or_dynclass
     JSHandle<JSHClass> asyncFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSAsyncFunction::SIZE, JSType::JS_ASYNC_FUNCTION, async_func_prototype_value);
-    asyncFuncInstanceDynclass->GetHClass()->MarkFieldAsNative(JSAsyncFunction::METHOD_OFFSET);
+        factory_->CreateDynClass<JSAsyncFunction>(JSType::JS_ASYNC_FUNCTION, async_func_prototype_value);
 
     // AsyncFunction = new Function()
     JSHandle<JSFunction> asyncFunction = NewBuiltinConstructor(
@@ -982,7 +961,7 @@ void Builtins::InitializeAllTypeError(const JSHandle<GlobalEnv> &env, const JSHa
     JSHandle<JSTaggedValue> errorFuncPrototypeValue(errorFuncPrototype);
     // Error.prototype_or_dynclass
     JSHandle<JSHClass> errorFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_ERROR, errorFuncPrototypeValue);
+        factory_->CreateDynClass<JSObject>(JSType::JS_ERROR, errorFuncPrototypeValue);
     // Error() = new Function()
     JSHandle<JSFunction> errorFunction(
         NewBuiltinConstructor(env, errorFuncPrototype, Error::ErrorConstructor, "Error", FunctionLength::ONE));
@@ -997,14 +976,13 @@ void Builtins::InitializeAllTypeError(const JSHandle<GlobalEnv> &env, const JSHa
     SetAttribute(errorFuncPrototype, "message", "");
     env->SetErrorFunction(thread_, errorFunction);
 
-    JSHandle<JSHClass> nativeErrorFuncClass = factory_->NewEcmaDynClass(
-        JSFunction::SIZE, JSType::JS_FUNCTION, env->GetErrorFunction(), HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
+    JSHandle<JSHClass> nativeErrorFuncClass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_FUNCTION, env->GetErrorFunction(), HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
     nativeErrorFuncClass->SetConstructor(true);
-    nativeErrorFuncClass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
     env->SetNativeErrorFunctionClass(thread_, nativeErrorFuncClass);
 
     JSHandle<JSHClass> errorNativeFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, errorFuncPrototypeValue);
+        factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, errorFuncPrototypeValue);
     InitializeError(env, errorNativeFuncInstanceDynclass, JSType::JS_RANGE_ERROR);
     InitializeError(env, errorNativeFuncInstanceDynclass, JSType::JS_REFERENCE_ERROR);
     InitializeError(env, errorNativeFuncInstanceDynclass, JSType::JS_TYPE_ERROR);
@@ -1122,7 +1100,7 @@ void Builtins::InitializeError(const JSHandle<GlobalEnv> &env, const JSHandle<JS
 
     // NativeError.prototype_or_dynclass
     JSHandle<JSHClass> nativeErrorFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, errorParameter.nativeJstype, nativeErrorFuncPrototypeValue);
+        factory_->CreateDynClass<JSObject>(errorParameter.nativeJstype, nativeErrorFuncPrototypeValue);
 
     // NativeError() = new Error()
     JSHandle<JSFunction> nativeErrorFunction =
@@ -1190,8 +1168,7 @@ void Builtins::InitializeSet(const JSHandle<GlobalEnv> &env, const JSHandle<JSHC
     JSHandle<JSObject> setFuncPrototype = factory_->NewJSObject(objFuncDynclass);
     JSHandle<JSTaggedValue> setFuncPrototypeValue(setFuncPrototype);
     // Set.prototype_or_dynclass
-    JSHandle<JSHClass> setFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSSet::SIZE, JSType::JS_SET, setFuncPrototypeValue);
+    JSHandle<JSHClass> setFuncInstanceDynclass = factory_->CreateDynClass<JSSet>(JSType::JS_SET, setFuncPrototypeValue);
     // Set() = new Function()
     JSHandle<JSTaggedValue> setFunction(
         NewBuiltinConstructor(env, setFuncPrototype, BuiltinsSet::SetConstructor, "Set", FunctionLength::ZERO));
@@ -1251,8 +1228,7 @@ void Builtins::InitializeMap(const JSHandle<GlobalEnv> &env, const JSHandle<JSHC
     JSHandle<JSObject> mapFuncPrototype = factory_->NewJSObject(objFuncDynclass);
     JSHandle<JSTaggedValue> mapFuncPrototypeValue(mapFuncPrototype);
     // Map.prototype_or_dynclass
-    JSHandle<JSHClass> mapFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSMap::SIZE, JSType::JS_MAP, mapFuncPrototypeValue);
+    JSHandle<JSHClass> mapFuncInstanceDynclass = factory_->CreateDynClass<JSMap>(JSType::JS_MAP, mapFuncPrototypeValue);
     // Map() = new Function()
     JSHandle<JSTaggedValue> mapFunction(
         NewBuiltinConstructor(env, mapFuncPrototype, BuiltinsMap::MapConstructor, "Map", FunctionLength::ZERO));
@@ -1317,7 +1293,7 @@ void Builtins::InitializeWeakRef(const JSHandle<GlobalEnv> &env, const JSHandle<
     JSHandle<JSTaggedValue> weakRefFuncPrototypeValue(weakRefFuncPrototype);
     // WeakRef.prototype_or_dynclass
     JSHandle<JSHClass> weakRefFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSWeakRef::SIZE, JSType::JS_WEAK_REF, weakRefFuncPrototypeValue);
+        factory_->CreateDynClass<JSWeakRef>(JSType::JS_WEAK_REF, weakRefFuncPrototypeValue);
     weakRefFuncInstanceDynclass->SetWeakContainer(true);
     // WeakRef() = new Function()
     JSHandle<JSTaggedValue> weakRefFunction(
@@ -1344,7 +1320,7 @@ void Builtins::InitializeWeakMap(const JSHandle<GlobalEnv> &env, const JSHandle<
     JSHandle<JSTaggedValue> weakMapFuncPrototypeValue(weakMapFuncPrototype);
     // WeakMap.prototype_or_dynclass
     JSHandle<JSHClass> weakMapFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSWeakMap::SIZE, JSType::JS_WEAK_MAP, weakMapFuncPrototypeValue);
+        factory_->CreateDynClass<JSWeakMap>(JSType::JS_WEAK_MAP, weakMapFuncPrototypeValue);
     // WeakMap() = new Function()
     JSHandle<JSTaggedValue> weakMapFunction(NewBuiltinConstructor(
         env, weakMapFuncPrototype, BuiltinsWeakMap::WeakMapConstructor, "WeakMap", FunctionLength::ZERO));
@@ -1380,7 +1356,7 @@ void Builtins::InitializeWeakSet(const JSHandle<GlobalEnv> &env, const JSHandle<
     JSHandle<JSTaggedValue> weakSetFuncPrototypeValue(weakSetFuncPrototype);
     // Set.prototype_or_dynclass
     JSHandle<JSHClass> weakSetFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSWeakSet::SIZE, JSType::JS_WEAK_SET, weakSetFuncPrototypeValue);
+        factory_->CreateDynClass<JSWeakSet>(JSType::JS_WEAK_SET, weakSetFuncPrototypeValue);
     // Set() = new Function()
     JSHandle<JSTaggedValue> weakSetFunction(NewBuiltinConstructor(
         env, weakSetFuncPrototype, BuiltinsWeakSet::WeakSetConstructor, "WeakSet", FunctionLength::ZERO));
@@ -1405,7 +1381,7 @@ void Builtins::InitializeWeakSet(const JSHandle<GlobalEnv> &env, const JSHandle<
 void Builtins::InitializeMath(const JSHandle<GlobalEnv> &env, const JSHandle<JSTaggedValue> &objFuncPrototypeVal) const
 {
     [[maybe_unused]] EcmaHandleScope scope(thread_);
-    JSHandle<JSHClass> mathDynclass = factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, objFuncPrototypeVal);
+    JSHandle<JSHClass> mathDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, objFuncPrototypeVal);
     JSHandle<JSObject> mathObject = factory_->NewJSObject(mathDynclass);
     SetFunction(env, mathObject, "abs", Math::Abs, FunctionLength::ONE);
     SetFunction(env, mathObject, "acos", Math::Acos, FunctionLength::ONE);
@@ -1464,7 +1440,7 @@ void Builtins::InitializeMath(const JSHandle<GlobalEnv> &env, const JSHandle<JST
 void Builtins::InitializeJson(const JSHandle<GlobalEnv> &env, const JSHandle<JSTaggedValue> &objFuncPrototypeVal) const
 {
     [[maybe_unused]] EcmaHandleScope scope(thread_);
-    JSHandle<JSHClass> jsonDynclass = factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, objFuncPrototypeVal);
+    JSHandle<JSHClass> jsonDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, objFuncPrototypeVal);
     JSHandle<JSObject> jsonObject = factory_->NewJSObject(jsonDynclass);
 
     SetFunction(env, jsonObject, "parse", Json::Parse, FunctionLength::TWO);
@@ -1490,7 +1466,7 @@ void Builtins::InitializeString(const JSHandle<GlobalEnv> &env, const JSHandle<J
 
     // String.prototype_or_dynclass
     JSHandle<JSHClass> stringFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPrimitiveRef::SIZE, JSType::JS_PRIMITIVE_REF, stringFuncPrototypeValue);
+        factory_->CreateDynClass<JSPrimitiveRef>(JSType::JS_PRIMITIVE_REF, stringFuncPrototypeValue);
 
     // String = new Function()
     JSHandle<JSObject> stringFunction(NewBuiltinConstructor(env, stringFuncPrototype, BuiltinsString::StringConstructor,
@@ -1572,8 +1548,8 @@ void Builtins::InitializeStringIterator(const JSHandle<GlobalEnv> &env,
     JSHandle<JSObject> strIterPrototype(factory_->NewJSObject(iteratorFuncDynclass));
 
     // StringIterator.prototype_or_dynclass
-    JSHandle<JSHClass> strIterFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        JSStringIterator::SIZE, JSType::JS_STRING_ITERATOR, JSHandle<JSTaggedValue>(strIterPrototype));
+    JSHandle<JSHClass> strIterFuncInstanceDynclass = factory_->CreateDynClass<JSStringIterator>(
+        JSType::JS_STRING_ITERATOR, JSHandle<JSTaggedValue>(strIterPrototype));
 
     JSHandle<JSFunction> strIterFunction(
         factory_->NewJSFunction(env, static_cast<void *>(nullptr), FunctionKind::BASE_CONSTRUCTOR));
@@ -1604,7 +1580,7 @@ void Builtins::InitializeIterator(const JSHandle<GlobalEnv> &env, const JSHandle
 
     // Iterator.dynclass
     JSHandle<JSHClass> iteratorFuncDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_ITERATOR, JSHandle<JSTaggedValue>(iteratorPrototype));
+        factory_->CreateDynClass<JSObject>(JSType::JS_ITERATOR, JSHandle<JSTaggedValue>(iteratorPrototype));
 
     InitializeForinIterator(env, iteratorFuncDynclass);
     InitializeSetIterator(env, iteratorFuncDynclass);
@@ -1631,8 +1607,8 @@ void Builtins::InitializeForinIterator(const JSHandle<GlobalEnv> &env,
     [[maybe_unused]] EcmaHandleScope scope(thread_);
     // Iterator.prototype
     JSHandle<JSObject> forinIteratorPrototype = factory_->NewJSObject(iteratorFuncDynclass);
-    JSHandle<JSHClass> dynclass = factory_->NewEcmaDynClass(JSForInIterator::SIZE, JSType::JS_FORIN_ITERATOR,
-                                                            JSHandle<JSTaggedValue>(forinIteratorPrototype));
+    JSHandle<JSHClass> dynclass = factory_->CreateDynClass<JSForInIterator>(
+        JSType::JS_FORIN_ITERATOR, JSHandle<JSTaggedValue>(forinIteratorPrototype));
 
     // Iterator.prototype.next()
     SetFunction(env, forinIteratorPrototype, "next", JSForInIterator::Next, FunctionLength::ONE);
@@ -1877,8 +1853,8 @@ void Builtins::InitializeTypedArray(const JSHandle<GlobalEnv> &env, const JSHand
     JSHandle<JSTaggedValue> typedArrFuncPrototypeValue(typedArrFuncPrototype);
 
     // TypedArray.prototype_or_dynclass
-    JSHandle<JSHClass> typedArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_TYPED_ARRAY, typedArrFuncPrototypeValue);
+    JSHandle<JSHClass> typedArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_TYPED_ARRAY, typedArrFuncPrototypeValue);
 
     // TypedArray = new Function()
     JSHandle<JSObject> typedArrayFunction(NewBuiltinConstructor(
@@ -1969,11 +1945,9 @@ void Builtins::InitializeTypedArray(const JSHandle<GlobalEnv> &env, const JSHand
     env->SetTypedArrayFunction(thread_, typedArrayFunction.GetTaggedValue());
     env->SetTypedArrayPrototype(thread_, typedArrFuncPrototype);
 
-    JSHandle<JSHClass> specificTypedArrayFuncClass =
-        factory_->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION, env->GetTypedArrayFunction(),
-                                  HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
+    JSHandle<JSHClass> specificTypedArrayFuncClass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_FUNCTION, env->GetTypedArrayFunction(), HClass::IS_CALLABLE | HClass::IS_BUILTINS_CTOR);
     specificTypedArrayFuncClass->SetConstructor(true);
-    specificTypedArrayFuncClass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
     env->SetSpecificTypedArrayFunctionClass(thread_, specificTypedArrayFuncClass);
 
     InitializeInt8Array(env, typedArrFuncInstanceDynclass);
@@ -1997,8 +1971,8 @@ void Builtins::InitializeInt8Array(const JSHandle<GlobalEnv> &env, const JSHandl
     JSHandle<JSTaggedValue> int8ArrFuncPrototypeValue(int8ArrFuncPrototype);
 
     // Int8Array.prototype_or_dynclass
-    JSHandle<JSHClass> int8ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_INT8_ARRAY, int8ArrFuncPrototypeValue);
+    JSHandle<JSHClass> int8ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_INT8_ARRAY, int8ArrFuncPrototypeValue);
 
     // Int8Array = new Function()
     JSHandle<JSFunction> int8ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2021,8 +1995,8 @@ void Builtins::InitializeUint8Array(const JSHandle<GlobalEnv> &env, const JSHand
     JSHandle<JSTaggedValue> uint8ArrFuncPrototypeValue(uint8ArrFuncPrototype);
 
     // Uint8Array.prototype_or_dynclass
-    JSHandle<JSHClass> uint8ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_UINT8_ARRAY, uint8ArrFuncPrototypeValue);
+    JSHandle<JSHClass> uint8ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_UINT8_ARRAY, uint8ArrFuncPrototypeValue);
 
     // Uint8Array = new Function()
     JSHandle<JSFunction> uint8ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2046,8 +2020,8 @@ void Builtins::InitializeUint8ClampedArray(const JSHandle<GlobalEnv> &env,
     JSHandle<JSTaggedValue> uint8ClampedArrFuncPrototypeValue(uint8ClampedArrFuncPrototype);
 
     // Uint8ClampedArray.prototype_or_dynclass
-    JSHandle<JSHClass> uint8ClampedArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_UINT8_CLAMPED_ARRAY, uint8ClampedArrFuncPrototypeValue);
+    JSHandle<JSHClass> uint8ClampedArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_UINT8_CLAMPED_ARRAY, uint8ClampedArrFuncPrototypeValue);
 
     // Uint8ClampedArray = new Function()
     JSHandle<JSFunction> uint8ClampedArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2071,8 +2045,8 @@ void Builtins::InitializeInt16Array(const JSHandle<GlobalEnv> &env, const JSHand
     JSHandle<JSTaggedValue> int16ArrFuncPrototypeValue(int16ArrFuncPrototype);
 
     // Int16Array.prototype_or_dynclass
-    JSHandle<JSHClass> int16ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_INT16_ARRAY, int16ArrFuncPrototypeValue);
+    JSHandle<JSHClass> int16ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_INT16_ARRAY, int16ArrFuncPrototypeValue);
 
     // Int16Array = new Function()
     JSHandle<JSFunction> int16ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2095,8 +2069,8 @@ void Builtins::InitializeUint16Array(const JSHandle<GlobalEnv> &env, const JSHan
     JSHandle<JSTaggedValue> uint16ArrFuncPrototypeValue(uint16ArrFuncPrototype);
 
     // Uint16Array.prototype_or_dynclass
-    JSHandle<JSHClass> uint16ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_UINT16_ARRAY, uint16ArrFuncPrototypeValue);
+    JSHandle<JSHClass> uint16ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_UINT16_ARRAY, uint16ArrFuncPrototypeValue);
 
     // Uint16Array = new Function()
     JSHandle<JSFunction> uint16ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2119,8 +2093,8 @@ void Builtins::InitializeInt32Array(const JSHandle<GlobalEnv> &env, const JSHand
     JSHandle<JSTaggedValue> int32ArrFuncPrototypeValue(int32ArrFuncPrototype);
 
     // Int32Array.prototype_or_dynclass
-    JSHandle<JSHClass> int32ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_INT32_ARRAY, int32ArrFuncPrototypeValue);
+    JSHandle<JSHClass> int32ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_INT32_ARRAY, int32ArrFuncPrototypeValue);
 
     // Int32Array = new Function()
     JSHandle<JSFunction> int32ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2143,8 +2117,8 @@ void Builtins::InitializeUint32Array(const JSHandle<GlobalEnv> &env, const JSHan
     JSHandle<JSTaggedValue> uint32ArrFuncPrototypeValue(uint32ArrFuncPrototype);
 
     // Uint32Array.prototype_or_dynclass
-    JSHandle<JSHClass> uint32ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_UINT32_ARRAY, uint32ArrFuncPrototypeValue);
+    JSHandle<JSHClass> uint32ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_UINT32_ARRAY, uint32ArrFuncPrototypeValue);
 
     // Uint32Array = new Function()
     JSHandle<JSFunction> uint32ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2167,8 +2141,8 @@ void Builtins::InitializeFloat32Array(const JSHandle<GlobalEnv> &env, const JSHa
     JSHandle<JSTaggedValue> float32ArrFuncPrototypeValue(float32ArrFuncPrototype);
 
     // Float32Array.prototype_or_dynclass
-    JSHandle<JSHClass> float32ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_FLOAT32_ARRAY, float32ArrFuncPrototypeValue);
+    JSHandle<JSHClass> float32ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_FLOAT32_ARRAY, float32ArrFuncPrototypeValue);
 
     // Float32Array = new Function()
     JSHandle<JSFunction> float32ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2191,8 +2165,8 @@ void Builtins::InitializeFloat64Array(const JSHandle<GlobalEnv> &env, const JSHa
     JSHandle<JSTaggedValue> float64ArrFuncPrototypeValue(float64ArrFuncPrototype);
 
     // Float64Array.prototype_or_dynclass
-    JSHandle<JSHClass> float64ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_FLOAT64_ARRAY, float64ArrFuncPrototypeValue);
+    JSHandle<JSHClass> float64ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_FLOAT64_ARRAY, float64ArrFuncPrototypeValue);
 
     // Float64Array = new Function()
     JSHandle<JSFunction> float64ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2215,8 +2189,8 @@ void Builtins::InitializeBigInt64Array(const JSHandle<GlobalEnv> &env, const JSH
     JSHandle<JSTaggedValue> bigInt64ArrFuncPrototypeValue(bigInt64ArrFuncPrototype);
 
     // BigInt64Array.prototype_or_dynclass
-    JSHandle<JSHClass> bigInt64ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_BIGINT64_ARRAY, bigInt64ArrFuncPrototypeValue);
+    JSHandle<JSHClass> bigInt64ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_BIGINT64_ARRAY, bigInt64ArrFuncPrototypeValue);
 
     // BigInt64Array = new Function()
     JSHandle<JSFunction> bigInt64ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2239,8 +2213,8 @@ void Builtins::InitializeBigUint64Array(const JSHandle<GlobalEnv> &env, const JS
     JSHandle<JSTaggedValue> bigUint64ArrFuncPrototypeValue(bigUint64ArrFuncPrototype);
 
     // BigUint64Array.prototype_or_dynclass
-    JSHandle<JSHClass> bigUint64ArrFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        panda::ecmascript::JSTypedArray::SIZE, JSType::JS_BIGUINT64_ARRAY, bigUint64ArrFuncPrototypeValue);
+    JSHandle<JSHClass> bigUint64ArrFuncInstanceDynclass =
+        factory_->CreateDynClass<JSTypedArray>(JSType::JS_BIGUINT64_ARRAY, bigUint64ArrFuncPrototypeValue);
 
     // BigUint64Array = new Function()
     JSHandle<JSFunction> bigUint64ArrayFunction = factory_->NewSpecificTypedArrayFunction(
@@ -2264,7 +2238,7 @@ void Builtins::InitializeArrayBuffer(const JSHandle<GlobalEnv> &env, const JSHan
 
     //  ArrayBuffer.prototype_or_dynclass
     JSHandle<JSHClass> arrayBufferFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSArrayBuffer::SIZE, JSType::JS_ARRAY_BUFFER, arrayBufferFuncPrototypeValue);
+        factory_->CreateDynClass<JSArrayBuffer>(JSType::JS_ARRAY_BUFFER, arrayBufferFuncPrototypeValue);
 
     // ArrayBuffer = new Function()
     JSHandle<JSObject> arrayBufferFunction(NewBuiltinConstructor(
@@ -2301,8 +2275,7 @@ void Builtins::InitializeReflect(const JSHandle<GlobalEnv> &env,
                                  const JSHandle<JSTaggedValue> &objFuncPrototypeVal) const
 {
     [[maybe_unused]] EcmaHandleScope scope(thread_);
-    JSHandle<JSHClass> reflectDynclass =
-        factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, objFuncPrototypeVal);
+    JSHandle<JSHClass> reflectDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_OBJECT, objFuncPrototypeVal);
     JSHandle<JSObject> reflectObject = factory_->NewJSObject(reflectDynclass);
 
     SetFunction(env, reflectObject, "apply", Reflect::ReflectApply, FunctionLength::THREE);
@@ -2339,7 +2312,7 @@ void Builtins::InitializePromise(const JSHandle<GlobalEnv> &env, const JSHandle<
     JSHandle<JSTaggedValue> promiseFuncPrototypeValue(promiseFuncPrototype);
     // Promise.prototype_or_dynclass
     JSHandle<JSHClass> promiseFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPromise::SIZE, JSType::JS_PROMISE, promiseFuncPrototypeValue);
+        factory_->CreateDynClass<JSPromise>(JSType::JS_PROMISE, promiseFuncPrototypeValue);
     // Promise() = new Function()
     JSHandle<JSObject> promiseFunction(
         NewBuiltinConstructor(env, promiseFuncPrototype, Promise::PromiseConstructor, "Promise", FunctionLength::ONE));
@@ -2385,8 +2358,8 @@ void Builtins::InitializeFinalizationRegistry(const JSHandle<GlobalEnv> &env,
     JSHandle<JSObject> registryFuncPrototype = factory_->NewJSObject(objFuncDynclass);
     JSHandle<JSTaggedValue> registryFuncPrototypeValue(registryFuncPrototype);
     // FinalizationRegistry.prototype_or_dynclass
-    JSHandle<JSHClass> registryFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        JSFinalizationRegistry::SIZE, JSType::FINALIZATION_REGISTRY, registryFuncPrototypeValue);
+    JSHandle<JSHClass> registryFuncInstanceDynclass =
+        factory_->CreateDynClass<JSFinalizationRegistry>(JSType::FINALIZATION_REGISTRY, registryFuncPrototypeValue);
     // FinalizationRegistry() = new Function()
     JSHandle<JSTaggedValue> registryFunction(NewBuiltinConstructor(env, registryFuncPrototype,
                                                                    BuiltinsFinalizationRegistry::Constructor,
@@ -2420,7 +2393,7 @@ void Builtins::InitializeDataView(const JSHandle<GlobalEnv> &env, const JSHandle
 
     //  ArrayBuffer.prototype_or_dynclass
     JSHandle<JSHClass> dataViewFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSDataView::SIZE, JSType::JS_DATA_VIEW, dataViewFuncPrototypeValue);
+        factory_->CreateDynClass<JSDataView>(JSType::JS_DATA_VIEW, dataViewFuncPrototypeValue);
 
     // ArrayBuffer = new Function()
     JSHandle<JSObject> dataViewFunction(NewBuiltinConstructor(env, dataViewFuncPrototype, DataView::DataViewConstructor,
@@ -2643,10 +2616,9 @@ void Builtins::InitializeGeneratorFunction(const JSHandle<GlobalEnv> &env,
 
     // 26.3.3.1 GeneratorFunction.prototype.constructor
     // GeneratorFunction.prototype_or_dynclass
-    JSHandle<JSHClass> generatorFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        JSFunction::SIZE, JSType::JS_GENERATOR_FUNCTION, generatorFuncPrototypeValue, HClass::IS_CALLABLE);
+    JSHandle<JSHClass> generatorFuncInstanceDynclass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_GENERATOR_FUNCTION, generatorFuncPrototypeValue, HClass::IS_CALLABLE);
     generatorFuncInstanceDynclass->SetExtensible(true);
-    generatorFuncInstanceDynclass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
     // GeneratorFunction = new GeneratorFunction()
     JSHandle<JSFunction> generator_function =
         NewBuiltinConstructor(env, generatorFuncPrototype, GeneratorObject::GeneratorFunctionConstructor,
@@ -2719,10 +2691,9 @@ void Builtins::InitializeAsyncGeneratorFunction(const JSHandle<GlobalEnv> &env,
 
     // 26.3.3.1 AsyncGeneratorFunction.prototype.constructor
     // AsyncGeneratorFunction.prototype_or_dynclass
-    JSHandle<JSHClass> asyncGeneratorFuncInstanceDynclass = factory_->NewEcmaDynClass(
-        JSFunction::SIZE, JSType::JS_ASYNC_GENERATOR_FUNCTION, asyncGeneratorFuncPrototypeValue, HClass::IS_CALLABLE);
+    JSHandle<JSHClass> asyncGeneratorFuncInstanceDynclass = factory_->CreateDynClass<JSFunction>(
+        JSType::JS_ASYNC_GENERATOR_FUNCTION, asyncGeneratorFuncPrototypeValue, HClass::IS_CALLABLE);
     asyncGeneratorFuncInstanceDynclass->SetExtensible(true);
-    asyncGeneratorFuncInstanceDynclass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
 
     // AsyncGeneratorFunction = new AsyncGeneratorFunction()
     JSHandle<JSFunction> asyncGeneratorFunction =
@@ -2880,7 +2851,7 @@ void Builtins::InitializeIntlCtor(const JSHandle<GlobalEnv> &env, const JSHandle
 void Builtins::InitializeIntl(const JSHandle<GlobalEnv> &env, const JSHandle<JSTaggedValue> &objFuncPrototypeValue)
 {
     [[maybe_unused]] EcmaHandleScope scope(thread_);
-    JSHandle<JSHClass> intlDynclass = factory_->NewEcmaDynClass(JSObject::SIZE, JSType::JS_INTL, objFuncPrototypeValue);
+    JSHandle<JSHClass> intlDynclass = factory_->CreateDynClass<JSObject>(JSType::JS_INTL, objFuncPrototypeValue);
     JSHandle<JSObject> intlObject = factory_->NewJSObject(intlDynclass);
 
     JSHandle<JSTaggedValue> initIntlSymbol(factory_->NewPublicSymbolWithChar("Symbol.IntlLegacyConstructedSymbol"));
@@ -2909,7 +2880,7 @@ void Builtins::InitializeDateTimeFormat(const JSHandle<GlobalEnv> &env)
 
     // DateTimeFormat.prototype_or_dynclass
     JSHandle<JSHClass> dtfFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSDateTimeFormat::SIZE, JSType::JS_DATE_TIME_FORMAT, dtfPrototypeValue);
+        factory_->CreateDynClass<JSDateTimeFormat>(JSType::JS_DATE_TIME_FORMAT, dtfPrototypeValue);
 
     // DateTimeFormat = new Function()
     // 13.4.1 Intl.DateTimeFormat.prototype.constructor
@@ -2951,7 +2922,7 @@ void Builtins::InitializeRelativeTimeFormat(const JSHandle<GlobalEnv> &env)
 
     // RelativeTimeFormat.prototype_or_dynclass
     JSHandle<JSHClass> rtfFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSRelativeTimeFormat::SIZE, JSType::JS_RELATIVE_TIME_FORMAT, rtfPrototypeValue);
+        factory_->CreateDynClass<JSRelativeTimeFormat>(JSType::JS_RELATIVE_TIME_FORMAT, rtfPrototypeValue);
 
     // RelativeTimeFormat = new Function()
     // 14.2.1 Intl.RelativeTimeFormat.prototype.constructor
@@ -2988,7 +2959,7 @@ void Builtins::InitializeNumberFormat(const JSHandle<GlobalEnv> &env)
 
     // NumberFormat.prototype_or_dynclass
     JSHandle<JSHClass> nfFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSNumberFormat::SIZE, JSType::JS_NUMBER_FORMAT, nfPrototypeValue);
+        factory_->CreateDynClass<JSNumberFormat>(JSType::JS_NUMBER_FORMAT, nfPrototypeValue);
 
     // NumberFormat = new Function()
     // 12.4.1 Intl.NumberFormat.prototype.constructor
@@ -3026,7 +2997,7 @@ void Builtins::InitializeLocale(const JSHandle<GlobalEnv> &env)
 
     // Locale.prototype_or_dynclass
     JSHandle<JSHClass> localeFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSLocale::SIZE, JSType::JS_LOCALE, localePrototypeValue);
+        factory_->CreateDynClass<JSLocale>(JSType::JS_LOCALE, localePrototypeValue);
 
     // Locale = new Function()
     JSHandle<JSObject> localeFunction(
@@ -3087,7 +3058,7 @@ void Builtins::InitializeCollator(const JSHandle<GlobalEnv> &env)
 
     // Collator.prototype_or_dynclass
     JSHandle<JSHClass> collatorFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSCollator::SIZE, JSType::JS_COLLATOR, collatorPrototypeValue);
+        factory_->CreateDynClass<JSCollator>(JSType::JS_COLLATOR, collatorPrototypeValue);
 
     // Collator = new Function()
     // 11.1.2 Intl.Collator.prototype.constructor
@@ -3122,7 +3093,7 @@ void Builtins::InitializePluralRules(const JSHandle<GlobalEnv> &env)
 
     // PluralRules.prototype_or_dynclass
     JSHandle<JSHClass> prFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSPluralRules::SIZE, JSType::JS_PLURAL_RULES, prPrototypeValue);
+        factory_->CreateDynClass<JSPluralRules>(JSType::JS_PLURAL_RULES, prPrototypeValue);
 
     // PluralRules = new Function()
     // 15.2.1 Intl.PluralRules.prototype.constructor
@@ -3225,7 +3196,7 @@ void Builtins::InitializeFuzzilli(const JSHandle<GlobalEnv> &env, const JSHandle
     JSHandle<JSTaggedValue> fuzzilliFuncPrototypeValue(fuzzilliFuncPrototype);
 
     JSHandle<JSHClass> fuzzilliFuncInstanceDynclass =
-        factory_->NewEcmaDynClass(JSDate::SIZE, JSType::JS_FUNCTION, fuzzilliFuncPrototypeValue);
+        factory_->CreateDynClass<JSDate>(JSType::JS_FUNCTION, fuzzilliFuncPrototypeValue);
 
     JSHandle<JSObject> fuzzilliFunction(NewBuiltinConstructor(
         env, fuzzilliFuncPrototype, BuiltinsFuzzilli::FuzzilliConstructor, "fuzzilli", FunctionLength::THREE));
diff --git a/runtime/class_info_extractor.cpp b/runtime/class_info_extractor.cpp
index 76ab56c7a..45b1942c7 100644
--- a/runtime/class_info_extractor.cpp
+++ b/runtime/class_info_extractor.cpp
@@ -191,13 +191,13 @@ JSHandle<JSHClass> ClassInfoExtractor::CreatePrototypeHClass(JSThread *thread, J
             layout->AddKey(thread, index, key.GetTaggedValue(), attributes);
         }
 
-        hclass = factory->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, length);
+        hclass = factory->CreateDynClass<JSObject>(JSType::JS_OBJECT, length);
         // Not need set proto here
         hclass->SetLayout(thread, layout);
         hclass->SetNumberOfProps(length);
     } else {
         // dictionary mode
-        hclass = factory->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, 0);  // without in-obj
+        hclass = factory->CreateDynClass<JSObject>(JSType::JS_OBJECT, 0);  // without in-obj
         hclass->SetIsDictionaryMode(true);
         hclass->SetNumberOfProps(0);
     }
@@ -251,21 +251,20 @@ JSHandle<JSHClass> ClassInfoExtractor::CreateConstructorHClass(JSThread *thread,
             layout->AddKey(thread, index, key.GetTaggedValue(), attributes);
         }
 
-        hclass = factory->NewEcmaDynClass(factory->hclass_class_, JSConstructorFunction::SIZE, JSType::JS_FUNCTION,
-                                          HClass::IS_CALLABLE, length);
+        hclass = factory->CreateDynClass<JSConstructorFunction>(factory->hclass_class_, JSType::JS_FUNCTION,
+                                                                HClass::IS_CALLABLE, length);
         // Not need set proto here
         hclass->SetLayout(thread, layout);
         hclass->SetNumberOfProps(length);
     } else {
         // dictionary mode
-        hclass = factory->NewEcmaDynClass(JSConstructorFunction::SIZE, JSType::JS_FUNCTION, 0);  // without in-obj
+        hclass = factory->CreateDynClass<JSConstructorFunction>(JSType::JS_FUNCTION, 0);  // without in-obj
         hclass->SetIsDictionaryMode(true);
         hclass->SetNumberOfProps(0);
     }
 
     hclass->SetClassConstructor(true);
     hclass->SetConstructor(true);
-    hclass->GetHClass()->MarkFieldAsNative(JSFunction::METHOD_OFFSET);
 
     return hclass;
 }
diff --git a/runtime/class_info_extractor.h b/runtime/class_info_extractor.h
index e120419b1..8937f5187 100644
--- a/runtime/class_info_extractor.h
+++ b/runtime/class_info_extractor.h
@@ -77,19 +77,19 @@ public:
         return StaticWithElementsBit::Decode(GetBitField());
     }
 
-    static constexpr size_t BIT_FIELD_OFFSET = TaggedObjectSize();
-    SET_GET_PRIMITIVE_FIELD(BitField, uint8_t, BIT_FIELD_OFFSET, CONSTRUCTOR_METHOD_OFFSET)
-    SET_GET_NATIVE_FIELD(ConstructorMethod, JSMethod, CONSTRUCTOR_METHOD_OFFSET, PROTOTYPE_HCLASS_OFFSET)
-    ACCESSORS(PrototypeHClass, PROTOTYPE_HCLASS_OFFSET, NON_STATIC_KEYS_OFFSET)
-    ACCESSORS(NonStaticKeys, NON_STATIC_KEYS_OFFSET, NON_STATIC_PROPERTIES_OFFSET)
-    ACCESSORS(NonStaticProperties, NON_STATIC_PROPERTIES_OFFSET, NON_STATIC_ELEMENTS_OFFSET)
-    ACCESSORS(NonStaticElements, NON_STATIC_ELEMENTS_OFFSET, CONSTRUCTOR_HCLASS_OFFSET)
-    ACCESSORS(ConstructorHClass, CONSTRUCTOR_HCLASS_OFFSET, STATIC_KEYS_OFFSET)
-    ACCESSORS(StaticKeys, STATIC_KEYS_OFFSET, STATIC_PROPERTIES_OFFSET)
-    ACCESSORS(StaticProperties, STATIC_PROPERTIES_OFFSET, STATIC_ELEMENTS_OFFSET)
-    ACCESSORS(StaticElements, STATIC_ELEMENTS_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT(PROTOTYPE_HCLASS_OFFSET, SIZE)
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, PrototypeHClass)
+    ACCESSORS(1, NonStaticKeys)
+    ACCESSORS(2, NonStaticProperties)
+    ACCESSORS(3, NonStaticElements)
+    ACCESSORS(4, ConstructorHClass)
+    ACCESSORS(5, StaticKeys)
+    ACCESSORS(6, StaticProperties)
+    ACCESSORS(7, StaticElements);
+    ACCESSORS_NATIVE_FIELD(8, ConstructorMethod, JSMethod)
+    ACCESSORS_BIT_FIELD(9, BitField)
+    ACCESSORS_FINISH(10)
+
     DECL_DUMP()
 
 private:
diff --git a/runtime/class_linker/program_object.h b/runtime/class_linker/program_object.h
index a6fe0c1de..56b389e6e 100644
--- a/runtime/class_linker/program_object.h
+++ b/runtime/class_linker/program_object.h
@@ -26,15 +26,15 @@ class Program : public ECMAObject {
 public:
     DECL_CAST(Program)
 
-    static constexpr size_t LOCATION_OFFSET = ECMAObject::SIZE;
-    ACCESSORS(Location, LOCATION_OFFSET, CONSTANT_POOL_OFFSET)
-    ACCESSORS(ConstantPool, CONSTANT_POOL_OFFSET, MAIN_FUNCTION_OFFSET)
-    ACCESSORS(MainFunction, MAIN_FUNCTION_OFFSET, METHODS_DATA_OFFSET)
-    SET_GET_NATIVE_FIELD(MethodsData, PandaList<JSMethod>, METHODS_DATA_OFFSET, SIZE)
+    ACCESSORS_BASE(ECMAObject)
+    ACCESSORS(0, Location)
+    ACCESSORS(1, ConstantPool)
+    ACCESSORS(2, MainFunction)
+    ACCESSORS_NATIVE_FIELD(3, MethodsData, PandaList<JSMethod>)
+    ACCESSORS_FINISH(4)
 
     inline void FreeMethodData();
 
-    DECL_VISIT_OBJECT(LOCATION_OFFSET, METHODS_DATA_OFFSET)
     DECL_DUMP()
 };
 
@@ -54,14 +54,14 @@ public:
 
     inline const uint8_t *GetInstructions() const;
 
-    static constexpr size_t NAME_OFFSET = ECMAObject::SIZE;
-    ACCESSORS(Name, NAME_OFFSET, NUMBER_VREGS_OFFSET)
-    ACCESSORS(NumberVRegs, NUMBER_VREGS_OFFSET, NUMBER_IC_SLOTS_OFFSET)
-    ACCESSORS(NumberICSlots, NUMBER_IC_SLOTS_OFFSET, BYTECODE_OFFSET)
-    ACCESSORS(Bytecode, BYTECODE_OFFSET, PROGRAM_OFFSET)
-    ACCESSORS(Program, PROGRAM_OFFSET, SIZE)
+    ACCESSORS_BASE(ECMAObject)
+    ACCESSORS(0, Name)
+    ACCESSORS(1, NumberVRegs)
+    ACCESSORS(2, NumberICSlots)
+    ACCESSORS(3, Bytecode)
+    ACCESSORS(4, Program)
+    ACCESSORS_FINISH(5)
 
-    DECL_VISIT_OBJECT(NAME_OFFSET, SIZE)
     DECL_DUMP()
 };
 
diff --git a/runtime/containers/containers_private.cpp b/runtime/containers/containers_private.cpp
index 4cc3e7b34..fe3ab2b0b 100644
--- a/runtime/containers/containers_private.cpp
+++ b/runtime/containers/containers_private.cpp
@@ -173,7 +173,7 @@ JSHandle<JSTaggedValue> ContainersPrivate::InitializeArrayList(JSThread *thread)
     JSHandle<JSTaggedValue> arrayListFuncPrototypeValue(arrayListFuncPrototype);
     // ArrayList.prototype_or_dynclass
     JSHandle<JSHClass> arrayListInstanceDynclass =
-        factory->NewEcmaDynClass(JSArrayList::SIZE, JSType::JS_ARRAY_LIST, arrayListFuncPrototypeValue);
+        factory->CreateDynClass<JSArrayList>(JSType::JS_ARRAY_LIST, arrayListFuncPrototypeValue);
     // ArrayList() = new Function()
     JSHandle<JSTaggedValue> arrayListFunction(NewContainerConstructor(
         thread, arrayListFuncPrototype, ContainersArrayList::ArrayListConstructor, "ArrayList", FuncLength::ZERO));
diff --git a/runtime/ecma_macro_accessors.h b/runtime/ecma_macro_accessors.h
new file mode 100644
index 000000000..add45a97f
--- /dev/null
+++ b/runtime/ecma_macro_accessors.h
@@ -0,0 +1,172 @@
+#ifndef ECMASCRIPT_ECMA_MACRO_ACCESSORS_H
+#define ECMASCRIPT_ECMA_MACRO_ACCESSORS_H
+
+#include "runtime/include/hclass.h"
+#include "plugins/ecmascript/runtime/common.h"
+#include "plugins/ecmascript/runtime/js_tagged_value.h"
+#include "plugins/ecmascript/runtime/js_thread.h"
+#include "plugins/ecmascript/runtime/mem/barriers-inl.h"
+#include "utils/logger.h"
+
+namespace panda::ecmascript {
+
+using JSAccessorsMaskType = uint32_t;
+
+template <size_t OFFS_>
+struct JSAccessorsOffs {
+    static constexpr size_t END = OFFS_;
+};
+
+template <template <int, typename _X = void> typename A, int idx>
+struct JSAccessorsObjectField {
+    static constexpr size_t OFFS = A<idx - 1>::END;
+    static constexpr size_t END = OFFS + sizeof(::panda::ecmascript::JSTaggedType);
+
+    static constexpr JSAccessorsMaskType NATIVE_MASK = A<idx - 1>::NATIVE_MASK;
+
+    static_assert(OFFS % alignof(JSTaggedType) == 0);  // if not then try to shuffle fields
+};
+
+template <template <int, typename _X = void> typename A, int idx, typename T>
+struct JSAccessorsFixedSizeField {
+    static constexpr size_t OFFS = A<idx - 1>::END;
+    static constexpr size_t END = OFFS + sizeof(T);
+
+    static constexpr JSAccessorsMaskType NATIVE_MASK =
+        A<idx - 1>::NATIVE_MASK | HClass::FieldOffsetToMask(A<idx>::OFFS);
+
+    static_assert(OFFS % alignof(T) == 0);
+};
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_START(offs)                                 \
+    template <int I, typename _X = void>                      \
+    struct JSAccessorsField {                                 \
+    };                                                        \
+    template <typename _X>                                    \
+    struct JSAccessorsField<-1, _X> : JSAccessorsOffs<offs> { \
+        static constexpr JSAccessorsMaskType NATIVE_MASK = 0; \
+    };
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_BASE(base)                                                         \
+    template <int I, typename _X = void>                                             \
+    struct JSAccessorsField {                                                        \
+    };                                                                               \
+    template <typename _X>                                                           \
+    struct JSAccessorsField<-1, _X> : JSAccessorsOffs<base::SIZE> {                  \
+        static constexpr JSAccessorsMaskType NATIVE_MASK = base::NATIVE_FIELDS_MASK; \
+    };
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_FINISH(idx)                                                                \
+    template <typename _X>                                                                   \
+    struct JSAccessorsField<idx, _X> : JSAccessorsOffs<JSAccessorsField<idx - 1>::END> {     \
+    };                                                                                       \
+    static constexpr size_t SIZE = AlignUp(JSAccessorsField<idx>::END, alignof(TaggedType)); \
+    static constexpr JSAccessorsMaskType NATIVE_FIELDS_MASK = JSAccessorsField<idx - 1>::NATIVE_MASK;
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_EMPTY(offs) ACCESSORS_START(offs) ACCESSORS_FINISH(0)
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_BASE_EMPTY(base) ACCESSORS_BASE(base) ACCESSORS_FINISH(0)
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS(idx, name)                                                                                           \
+    template <typename _X>                                                                                             \
+    struct JSAccessorsField<idx, _X> : JSAccessorsObjectField<JSAccessorsField, idx> {                                 \
+    };                                                                                                                 \
+    static constexpr size_t Get##name##Offset()                                                                        \
+    {                                                                                                                  \
+        return JSAccessorsField<idx>::OFFS;                                                                            \
+    }                                                                                                                  \
+    JSTaggedValue Get##name() const                                                                                    \
+    {                                                                                                                  \
+        /* Note: We can't statically decide the element type is a primitive or heap object, especially for */          \
+        /*       dynamically-typed languages like JavaScript. So we simply skip the read-barrier.          */          \
+        return JSTaggedValue(Barriers::GetDynValue<JSTaggedType>(this, Get##name##Offset()));                          \
+    }                                                                                                                  \
+    template <typename T>                                                                                              \
+    void Set##name(const JSThread *thread, JSHandle<T> value, BarrierMode mode = WRITE_BARRIER)                        \
+    {                                                                                                                  \
+        if (mode == WRITE_BARRIER) {                                                                                   \
+            ObjectAccessor::SetDynValue(thread, this, Get##name##Offset(), value.GetTaggedValue().GetRawData());       \
+        } else {                                                                                                       \
+            ObjectAccessor::SetDynValueWithoutBarrier(this, Get##name##Offset(), value.GetTaggedValue().GetRawData()); \
+        }                                                                                                              \
+    }                                                                                                                  \
+    void Set##name(const JSThread *thread, JSTaggedValue value, BarrierMode mode = WRITE_BARRIER)                      \
+    {                                                                                                                  \
+        if (mode == WRITE_BARRIER) {                                                                                   \
+            ObjectAccessor::SetDynValue(thread, this, Get##name##Offset(), value.GetRawData());                        \
+        } else {                                                                                                       \
+            ObjectAccessor::SetDynValueWithoutBarrier(this, Get##name##Offset(), value.GetRawData());                  \
+        }                                                                                                              \
+    }                                                                                                                  \
+    void Set##name(JSTaggedValue value)                                                                                \
+    {                                                                                                                  \
+        ObjectAccessor::SetPrimitive<JSTaggedType>(this, Get##name##Offset(), value.GetRawData());                     \
+    }
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_FIXED_SIZE_RAW_FIELD(name, type, sizeType, offset)          \
+    static_assert(sizeof(type) <= sizeof(sizeType));                          \
+    static constexpr size_t Get##name##Offset()                               \
+    {                                                                         \
+        return offset;                                                        \
+    }                                                                         \
+    inline void Set##name(type value)                                         \
+    {                                                                         \
+        ObjectAccessor::SetPrimitive<type>(this, Get##name##Offset(), value); \
+    }                                                                         \
+    inline type Get##name() const                                             \
+    {                                                                         \
+        return ObjectAccessor::GetPrimitive<type>(this, Get##name##Offset()); \
+    }
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_FIXED_SIZE_FIELD(idx, name, type, sizeType)                                       \
+    template <typename _X>                                                                          \
+    struct JSAccessorsField<idx, _X> : JSAccessorsFixedSizeField<JSAccessorsField, idx, sizeType> { \
+    };                                                                                              \
+    ACCESSORS_FIXED_SIZE_RAW_FIELD(name, type, sizeType, JSAccessorsField<idx>::OFFS)
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_NATIVE_FIELD(idx, name, type) ACCESSORS_FIXED_SIZE_FIELD(idx, name, type *, type *)
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_VOID_FIELD(idx, name) ACCESSORS_FIXED_SIZE_FIELD(idx, name, void *, void *)
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_PRIMITIVE_FIELD(idx, name, type) ACCESSORS_FIXED_SIZE_FIELD(idx, name, type, type)
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define ACCESSORS_BIT_FIELD(idx, name)                        \
+    ACCESSORS_FIXED_SIZE_FIELD(idx, name, uint32_t, uint32_t) \
+    inline void Clear##name()                                 \
+    {                                                         \
+        Set##name(0UL);                                       \
+    }
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define SET_GET_BIT_FIELD(bitFieldName, name, type)                    \
+    inline type Get##name() const                                      \
+    {                                                                  \
+        return name##Bits::Decode(Get##bitFieldName());                \
+    }                                                                  \
+    inline void Set##name(type t)                                      \
+    {                                                                  \
+        Set##bitFieldName(name##Bits::Update(Get##bitFieldName(), t)); \
+    }
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define FIRST_BIT_FIELD(bitFieldName, name, type, bits) \
+    using name##Bits = BitField<type, 0, bits>;         \
+    SET_GET_BIT_FIELD(bitFieldName, name, type)
+
+// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
+#define NEXT_BIT_FIELD(bitFieldName, name, type, bits, lastName) \
+    using name##Bits = lastName##Bits::NextField<type, bits>;    \
+    SET_GET_BIT_FIELD(bitFieldName, name, type)
+
+}  // namespace panda::ecmascript
+
+#endif  // ECMASCRIPT_ECMA_MACRO_ACCESSORS_H
diff --git a/runtime/ecma_macros.h b/runtime/ecma_macros.h
index fc362a62e..3e6c6ea1f 100644
--- a/runtime/ecma_macros.h
+++ b/runtime/ecma_macros.h
@@ -16,15 +16,14 @@
 #ifndef ECMASCRIPT_ECMA_MACROS_H
 #define ECMASCRIPT_ECMA_MACROS_H
 
-#include "plugins/ecmascript/runtime/common.h"
+#include "plugins/ecmascript/runtime/ecma_macro_accessors.h"
 #include "plugins/ecmascript/runtime/ecma_vm.h"
-#include "plugins/ecmascript/runtime/js_tagged_value.h"
-#include "plugins/ecmascript/runtime/js_thread.h"
-#include "plugins/ecmascript/runtime/mem/barriers-inl.h"
 #include "utils/logger.h"
 
 #if defined(__cplusplus)
 
+namespace panda::ecmascript {
+
 template <typename T>
 static inline T UnalignedLoad(T const *p)
 {
@@ -65,122 +64,6 @@ static inline void UnalignedStore(T *p, T v)
 #define SET_VALUE_WITH_BARRIER(thread, addr, offset, value) \
     ObjectAccessor::SetDynValue(thread, addr, offset, value.GetRawData())
 
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define ACCESSORS(name, offset, lastOffset)                                                                   \
-    static constexpr size_t lastOffset = offset + JSTaggedValue::TaggedTypeSize();                            \
-    JSTaggedValue Get##name() const                                                                           \
-    {                                                                                                         \
-        /* Note: We can't statically decide the element type is a primitive or heap object, especially for */ \
-        /*       dynamically-typed languages like JavaScript. So we simply skip the read-barrier.          */ \
-        return JSTaggedValue(Barriers::GetDynValue<JSTaggedType>(this, offset));                              \
-    }                                                                                                         \
-    static constexpr size_t GetOffset##name()                                                                 \
-    {                                                                                                         \
-        return offset;                                                                                        \
-    }                                                                                                         \
-    template <typename T>                                                                                     \
-    void Set##name(const JSThread *thread, JSHandle<T> value, BarrierMode mode = WRITE_BARRIER)               \
-    {                                                                                                         \
-        if (mode == WRITE_BARRIER) {                                                                          \
-            ObjectAccessor::SetDynValue(thread, this, offset, value.GetTaggedValue().GetRawData());           \
-        } else {                                                                                              \
-            ObjectAccessor::SetDynValueWithoutBarrier(this, offset, value.GetTaggedValue().GetRawData());     \
-        }                                                                                                     \
-    }                                                                                                         \
-    void Set##name(const JSThread *thread, JSTaggedValue value, BarrierMode mode = WRITE_BARRIER)             \
-    {                                                                                                         \
-        if (mode == WRITE_BARRIER) {                                                                          \
-            ObjectAccessor::SetDynValue(thread, this, offset, value.GetRawData());                            \
-        } else {                                                                                              \
-            ObjectAccessor::SetDynValueWithoutBarrier(this, offset, value.GetRawData());                      \
-        }                                                                                                     \
-    }                                                                                                         \
-    void Set##name(JSTaggedValue value)                                                                       \
-    {                                                                                                         \
-        ObjectAccessor::SetPrimitive<JSTaggedType>(this, offset, value.GetRawData());                         \
-    }
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define DEFINE_ALIGN_SIZE(offset) \
-    static constexpr size_t SIZE = ((offset) + sizeof(JSTaggedType) - 1U) & (~(sizeof(JSTaggedType) - 1U))
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define ACCESSORS_BIT_FIELD(name, offset, endOffset)                 \
-    static constexpr size_t endOffset = (offset) + sizeof(uint32_t); \
-    inline void Set##name(uint32_t value)                            \
-    {                                                                \
-        ObjectAccessor::SetPrimitive<uint32_t>(this, offset, value); \
-    }                                                                \
-    inline uint32_t Get##name() const                                \
-    {                                                                \
-        return ObjectAccessor::GetDynValue<uint32_t>(this, offset);  \
-    }                                                                \
-    inline void Clear##name()                                        \
-    {                                                                \
-        Set##name(0UL);                                              \
-    }
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define SET_GET_BIT_FIELD(bitFieldName, name, type)                    \
-    inline type Get##name() const                                      \
-    {                                                                  \
-        return name##Bits::Decode(Get##bitFieldName());                \
-    }                                                                  \
-    inline void Set##name(type t)                                      \
-    {                                                                  \
-        Set##bitFieldName(name##Bits::Update(Get##bitFieldName(), t)); \
-    }
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define FIRST_BIT_FIELD(bitFieldName, name, type, bits) \
-    using name##Bits = BitField<type, 0, bits>;         \
-    SET_GET_BIT_FIELD(bitFieldName, name, type)
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define NEXT_BIT_FIELD(bitFieldName, name, type, bits, lastName) \
-    using name##Bits = lastName##Bits::NextField<type, bits>;    \
-    SET_GET_BIT_FIELD(bitFieldName, name, type)
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define SET_GET_VOID_FIELD(name, offset, lastOffset)                               \
-    static constexpr size_t lastOffset = offset + JSTaggedValue::TaggedTypeSize(); \
-    void Set##name(void *fun)                                                      \
-    {                                                                              \
-        ObjectAccessor::SetPrimitive<void *>(this, offset, fun);                   \
-    }                                                                              \
-    void *Get##name() const                                                        \
-    {                                                                              \
-        return ObjectAccessor::GetPrimitive<void *>(this, offset);                 \
-    }
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define SET_GET_NATIVE_FIELD(name, type, offset, lastOffset)                       \
-    static constexpr size_t lastOffset = offset + JSTaggedValue::TaggedTypeSize(); \
-    void Set##name(type *mem)                                                      \
-    {                                                                              \
-        ObjectAccessor::SetPrimitive(this, offset, mem);                           \
-    }                                                                              \
-    type *Get##name() const                                                        \
-    {                                                                              \
-        return ObjectAccessor::GetPrimitive<type *>(this, offset);                 \
-    }                                                                              \
-    size_t Offset##name() const                                                    \
-    {                                                                              \
-        return offset;                                                             \
-    }
-
-// NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
-#define SET_GET_PRIMITIVE_FIELD(name, type, offset, lastOffset)                    \
-    static constexpr size_t lastOffset = offset + JSTaggedValue::TaggedTypeSize(); \
-    void Set##name(type value)                                                     \
-    {                                                                              \
-        ObjectAccessor::SetPrimitive(this, offset, value);                         \
-    }                                                                              \
-    type Get##name() const                                                         \
-    {                                                                              \
-        return ObjectAccessor::GetPrimitive<type>(this, offset);                   \
-    }
-
 #if !defined(NDEBUG)
 // NOLINTNEXTLINE(cppcoreguidelines-macro-usage)
 #define DASSERT(cond) assert(cond)
@@ -551,4 +434,6 @@ static inline void UnalignedStore(T *p, T v)
         LOG(FATAL, ECMASCRIPT) << __func__ << " Line: " << __LINE__ << " begin: " << begin << " end: " << end; \
     }
 
+}  // namespace panda::ecmascript
+
 #endif  // ECMASCRIPT_ECMA_MACROS_H
diff --git a/runtime/ecma_module.h b/runtime/ecma_module.h
index 83143cecb..536c6fd1d 100644
--- a/runtime/ecma_module.h
+++ b/runtime/ecma_module.h
@@ -42,10 +42,10 @@ public:
 
     static constexpr uint32_t DEAULT_DICTIONART_CAPACITY = 4;
 
-    static constexpr size_t NAME_DICTIONARY_OFFSET = ECMAObject::SIZE;
-    ACCESSORS(NameDictionary, NAME_DICTIONARY_OFFSET, SIZE)
+    ACCESSORS_BASE(ECMAObject)
+    ACCESSORS(0, NameDictionary)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(ECMAObject, NAME_DICTIONARY_OFFSET, SIZE)
     DECL_DUMP()
 
 protected:
diff --git a/runtime/ecma_string.h b/runtime/ecma_string.h
index ffc722be1..e19bcbe06 100644
--- a/runtime/ecma_string.h
+++ b/runtime/ecma_string.h
@@ -277,13 +277,14 @@ public:
     static bool CanBeCompressed(const uint8_t *utf8_data, uint32_t utf8_len);
     static bool CanBeCompressed(const uint16_t *utf16_data, uint32_t utf16_len);
 
-    static constexpr size_t MIX_LENGTH_OFFSET = TaggedObjectSize();
     // In last bit of mix_length we store if this string is compressed or not.
-    SET_GET_PRIMITIVE_FIELD(MixLength, uint32_t, MIX_LENGTH_OFFSET, HASHCODE_OFFSET);
-    SET_GET_PRIMITIVE_FIELD(RawHashcode, uint32_t, HASHCODE_OFFSET, DATA_OFFSET);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS_PRIMITIVE_FIELD(0, MixLength, uint32_t)
+    ACCESSORS_PRIMITIVE_FIELD(1, RawHashcode, uint32_t)
+    ACCESSORS_FINISH(2)
     // DATA_OFFSET: the string data stored after the string header.
     // Data can be stored in utf8 or utf16 form according to compressed bit.
-    static constexpr size_t SIZE = DATA_OFFSET;  // Empty String size
+    static constexpr size_t DATA_OFFSET = SIZE;  // Empty String size
 
 private:
     void SetLength(uint32_t length, bool compressed = false)
diff --git a/runtime/ecma_vm.cpp b/runtime/ecma_vm.cpp
index c98d4a265..dab3dab39 100644
--- a/runtime/ecma_vm.cpp
+++ b/runtime/ecma_vm.cpp
@@ -235,8 +235,8 @@ bool EcmaVM::Initialize()
     JSHandle<JSHClass> dynClassClassHandle = factory_->NewEcmaDynClassClass(nullptr, JSHClass::SIZE, JSType::HCLASS);
     JSHClass *dynclass = reinterpret_cast<JSHClass *>(dynClassClassHandle.GetTaggedValue().GetTaggedObject());
     dynclass->SetClass(dynclass);
-    JSHandle<JSHClass> global_env_class =
-        factory_->NewEcmaDynClass(*dynClassClassHandle, GlobalEnv::SIZE, JSType::GLOBAL_ENV);
+    dynclass->GetHClass()->SetNativeFieldMask(JSHClass::NATIVE_FIELDS_MASK);
+    JSHandle<JSHClass> global_env_class = factory_->CreateDynClass<GlobalEnv>(*dynClassClassHandle, JSType::GLOBAL_ENV);
 
     JSHandle<GlobalEnv> globalEnvHandle = factory_->NewGlobalEnv(*global_env_class);
     global_env_ = globalEnvHandle.GetTaggedValue();
diff --git a/runtime/free_object.h b/runtime/free_object.h
index 079c65c37..1660e5c5c 100644
--- a/runtime/free_object.h
+++ b/runtime/free_object.h
@@ -49,7 +49,7 @@ public:
     inline void SetAvailable(uint32_t size)
     {
         if (size >= SIZE) {
-            SetSize(JSTaggedValue(size));
+            SetSize(size);
         }
     }
 
@@ -59,7 +59,7 @@ public:
         if (hclass != nullptr && (hclass->IsFreeObjectWithOneField() || hclass->IsFreeObjectWithNoneField())) {
             return hclass->GetObjectSize();
         }
-        return GetSize().GetInt();
+        return GetSize();
     }
 
     inline bool IsFreeObject() const
@@ -69,13 +69,14 @@ public:
                                        hclass->IsFreeObjectWithNoneField());
     }
 
-    static constexpr size_t NEXT_OFFSET = TaggedObjectSize();
-    SET_GET_NATIVE_FIELD(Next, FreeObject, NEXT_OFFSET, SIZE_OFFSET);
-    ACCESSORS(Size, SIZE_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS_NATIVE_FIELD(0, Next, FreeObject)
+    ACCESSORS_PRIMITIVE_FIELD(1, Size, uint32_t)
+    ACCESSORS_FINISH(2)
 };
 
-static_assert(FreeObject::NEXT_OFFSET == panda::mem::FreeObject::GetNextOffset());
-static_assert(FreeObject::SIZE_OFFSET == panda::mem::FreeObject::GetSizeOffset());
+static_assert(FreeObject::GetNextOffset() == panda::mem::FreeObject::GetNextOffset());
+static_assert(FreeObject::GetSizeOffset() == panda::mem::FreeObject::GetSizeOffset());
 
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_MEM_FREE_OBJECT_H
diff --git a/runtime/global_env.h b/runtime/global_env.h
index 8e004373a..fcc67ba63 100644
--- a/runtime/global_env.h
+++ b/runtime/global_env.h
@@ -215,8 +215,7 @@ public:
 
     static constexpr size_t HEADER_SIZE = TaggedObjectSize();
     static constexpr size_t SIZE = HEADER_SIZE + FINAL_INDEX * JSTaggedValue::TaggedTypeSize();
-
-    DECL_VISIT_OBJECT(HEADER_SIZE, SIZE);
+    static constexpr JSAccessorsMaskType NATIVE_FIELDS_MASK = 0;
 
     DECL_DUMP()
 };
diff --git a/runtime/global_env_constants.cpp b/runtime/global_env_constants.cpp
index 7425cc9ef..df670074f 100644
--- a/runtime/global_env_constants.cpp
+++ b/runtime/global_env_constants.cpp
@@ -71,7 +71,7 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
     weak_array_class->SetWeakContainer(true);
     SetConstant(ConstantIndex::WEAK_ARRAY_CLASS_INDEX, JSTaggedValue(weak_array_class));
     SetConstant(ConstantIndex::BIGINT_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, BigInt::SIZE, JSType::BIGINT).GetTaggedValue());
+                factory->CreateDynClass<BigInt>(dyn_class_class, JSType::BIGINT).GetTaggedValue());
     SetConstant(ConstantIndex::DICTIONARY_CLASS_INDEX,
                 factory
                     ->NewEcmaDynClass(dyn_class_class, 0, JSType::TAGGED_DICTIONARY,
@@ -79,111 +79,90 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
                     .GetTaggedValue());
     SetConstant(
         ConstantIndex::JS_NATIVE_POINTER_CLASS_INDEX,
-        factory
-            ->NewEcmaDynClass(dyn_class_class, JSNativePointer::SIZE, JSType::JS_NATIVE_POINTER, HClass::NATIVE_POINTER)
+        factory->CreateDynClass<JSNativePointer>(dyn_class_class, JSType::JS_NATIVE_POINTER, HClass::NATIVE_POINTER)
             .GetTaggedValue());
     SetConstant(ConstantIndex::ENV_CLASS_INDEX,
                 factory->NewEcmaDynClass(dyn_class_class, 0, JSType::TAGGED_ARRAY, HClass::ARRAY).GetTaggedValue());
-    SetConstant(ConstantIndex::FREE_OBJECT_WITH_NONE_FIELD_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, FreeObject::NEXT_OFFSET, JSType::FREE_OBJECT_WITH_NONE_FIELD)
-                    .GetTaggedValue());
+    JSHClass *free_object0_class =
+        *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetNextOffset(), JSType::FREE_OBJECT_WITH_NONE_FIELD);
+    free_object0_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
+    SetConstant(ConstantIndex::FREE_OBJECT_WITH_NONE_FIELD_CLASS_INDEX, JSTaggedValue(free_object0_class));
     JSHClass *free_object1_class =
-        *factory->NewEcmaDynClass(dyn_class_class, FreeObject::SIZE_OFFSET, JSType::FREE_OBJECT_WITH_ONE_FIELD);
-    free_object1_class->GetHClass()->MarkFieldAsNative(FreeObject::NEXT_OFFSET);
+        *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetSizeOffset(), JSType::FREE_OBJECT_WITH_ONE_FIELD);
+    free_object1_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
     SetConstant(ConstantIndex::FREE_OBJECT_WITH_ONE_FIELD_CLASS_INDEX, JSTaggedValue(free_object1_class));
-    JSHClass *free_object2_class = *factory->NewEcmaDynClass(
-        dyn_class_class, FreeObject::SIZE, JSType::FREE_OBJECT_WITH_TWO_FIELD, HClass::IS_FREE_OBJECT);
-    free_object2_class->GetHClass()->MarkFieldAsNative(FreeObject::SIZE_OFFSET);
+    JSHClass *free_object2_class =
+        *factory->CreateDynClass<FreeObject>(dyn_class_class, JSType::FREE_OBJECT_WITH_TWO_FIELD, HClass::IS_FREE_OBJECT);
+    free_object2_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
     SetConstant(ConstantIndex::FREE_OBJECT_WITH_TWO_FIELD_CLASS_INDEX, JSTaggedValue(free_object2_class));
     SetConstant(ConstantIndex::SYMBOL_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, JSSymbol::SIZE, JSType::SYMBOL).GetTaggedValue());
+                factory->CreateDynClass<JSSymbol>(dyn_class_class, JSType::SYMBOL).GetTaggedValue());
     SetConstant(ConstantIndex::ACCESSOE_DATA_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, AccessorData::SIZE, JSType::ACCESSOR_DATA).GetTaggedValue());
-    SetConstant(
-        ConstantIndex::INTERNAL_ACCESSOR_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, AccessorData::SIZE, JSType::INTERNAL_ACCESSOR).GetTaggedValue());
-    JSHClass *js_proxy_ordinary_class = *factory->NewEcmaDynClass(dyn_class_class, JSProxy::SIZE, JSType::JS_PROXY);
-    js_proxy_ordinary_class->GetHClass()->MarkFieldAsNative(JSProxy::METHOD_OFFSET);
+                factory->CreateDynClass<AccessorData>(dyn_class_class, JSType::ACCESSOR_DATA).GetTaggedValue());
+    SetConstant(ConstantIndex::INTERNAL_ACCESSOR_CLASS_INDEX,
+                factory->CreateDynClass<AccessorData>(dyn_class_class, JSType::INTERNAL_ACCESSOR).GetTaggedValue());
+    JSHClass *js_proxy_ordinary_class = *factory->CreateDynClass<JSProxy>(dyn_class_class, JSType::JS_PROXY);
     SetConstant(ConstantIndex::JS_PROXY_ORDINARY_CLASS_INDEX, JSTaggedValue(js_proxy_ordinary_class));
+    SetConstant(ConstantIndex::OBJECT_WRAPPER_CLASS_INDEX,
+                factory->CreateDynClass<ObjectWrapper>(dyn_class_class, JSType::OBJECT_WRAPPER).GetTaggedValue());
+    SetConstant(ConstantIndex::COMPLETION_RECORD_CLASS_INDEX,
+                factory->CreateDynClass<CompletionRecord>(dyn_class_class, JSType::COMPLETION_RECORD).GetTaggedValue());
     SetConstant(
-        ConstantIndex::OBJECT_WRAPPER_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, ObjectWrapper::SIZE, JSType::OBJECT_WRAPPER).GetTaggedValue());
-    SetConstant(
-        ConstantIndex::COMPLETION_RECORD_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, CompletionRecord::SIZE, JSType::COMPLETION_RECORD).GetTaggedValue());
-    SetConstant(ConstantIndex::GENERATOR_CONTEST_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, GeneratorContext::SIZE, JSType::JS_GENERATOR_CONTEXT)
-                    .GetTaggedValue());
+        ConstantIndex::GENERATOR_CONTEST_INDEX,
+        factory->CreateDynClass<GeneratorContext>(dyn_class_class, JSType::JS_GENERATOR_CONTEXT).GetTaggedValue());
     SetConstant(ConstantIndex::CAPABILITY_RECORD_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, PromiseCapability::SIZE, JSType::PROMISE_CAPABILITY)
-                    .GetTaggedValue());
-    SetConstant(
-        ConstantIndex::REACTIONS_RECORD_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, PromiseReaction::SIZE, JSType::PROMISE_REACTIONS).GetTaggedValue());
+                factory->CreateDynClass<PromiseCapability>(dyn_class_class, JSType::PROMISE_CAPABILITY).GetTaggedValue());
+    SetConstant(ConstantIndex::REACTIONS_RECORD_CLASS_INDEX,
+                factory->CreateDynClass<PromiseReaction>(dyn_class_class, JSType::PROMISE_REACTIONS).GetTaggedValue());
     SetConstant(ConstantIndex::PROMISE_ITERATOR_RECORD_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, PromiseIteratorRecord::SIZE, JSType::PROMISE_ITERATOR_RECORD)
+                factory->CreateDynClass<PromiseIteratorRecord>(dyn_class_class, JSType::PROMISE_ITERATOR_RECORD)
                     .GetTaggedValue());
-    SetConstant(
-        ConstantIndex::PROMISE_RECORD_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, PromiseRecord::SIZE, JSType::PROMISE_RECORD).GetTaggedValue());
-    SetConstant(
-        ConstantIndex::PROMISE_RESOLVING_FUNCTIONS_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, ResolvingFunctionsRecord::SIZE, JSType::RESOLVING_FUNCTIONS_RECORD)
-            .GetTaggedValue());
-    SetConstant(
-        ConstantIndex::MICRO_JOB_QUEUE_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, job::MicroJobQueue::SIZE, JSType::MICRO_JOB_QUEUE).GetTaggedValue());
+    SetConstant(ConstantIndex::PROMISE_RECORD_CLASS_INDEX,
+                factory->CreateDynClass<PromiseRecord>(dyn_class_class, JSType::PROMISE_RECORD).GetTaggedValue());
+    SetConstant(ConstantIndex::PROMISE_RESOLVING_FUNCTIONS_CLASS_INDEX,
+                factory->CreateDynClass<ResolvingFunctionsRecord>(dyn_class_class, JSType::RESOLVING_FUNCTIONS_RECORD)
+                    .GetTaggedValue());
+    SetConstant(ConstantIndex::MICRO_JOB_QUEUE_CLASS_INDEX,
+                factory->CreateDynClass<job::MicroJobQueue>(dyn_class_class, JSType::MICRO_JOB_QUEUE).GetTaggedValue());
     SetConstant(ConstantIndex::PENDING_JOB_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, job::PendingJob::SIZE, JSType::PENDING_JOB).GetTaggedValue());
+                factory->CreateDynClass<job::PendingJob>(dyn_class_class, JSType::PENDING_JOB).GetTaggedValue());
     JSHClass *proto_change_marker_class =
-        *factory->NewEcmaDynClass(dyn_class_class, ProtoChangeMarker::SIZE, JSType::PROTO_CHANGE_MARKER);
-    proto_change_marker_class->GetHClass()->MarkFieldAsNative(ProtoChangeMarker::HAS_CHANGED_OFFSET);
+        *factory->CreateDynClass<ProtoChangeMarker>(dyn_class_class, JSType::PROTO_CHANGE_MARKER);
     SetConstant(ConstantIndex::PROTO_CHANGE_MARKER_CLASS_INDEX, JSTaggedValue(proto_change_marker_class));
-    SetConstant(
-        ConstantIndex::PROTO_CHANGE_DETAILS_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, ProtoChangeDetails::SIZE, JSType::PROTOTYPE_INFO).GetTaggedValue());
-    SetConstant(
-        ConstantIndex::PROTOTYPE_HANDLER_CLASS_INDEX,
-        factory->NewEcmaDynClass(dyn_class_class, PrototypeHandler::SIZE, JSType::PROTOTYPE_HANDLER).GetTaggedValue());
+    SetConstant(ConstantIndex::PROTO_CHANGE_DETAILS_CLASS_INDEX,
+                factory->CreateDynClass<ProtoChangeDetails>(dyn_class_class, JSType::PROTOTYPE_INFO).GetTaggedValue());
+    SetConstant(ConstantIndex::PROTOTYPE_HANDLER_CLASS_INDEX,
+                factory->CreateDynClass<PrototypeHandler>(dyn_class_class, JSType::PROTOTYPE_HANDLER).GetTaggedValue());
     SetConstant(ConstantIndex::TRANSITION_HANDLER_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, TransitionHandler::SIZE, JSType::TRANSITION_HANDLER)
-                    .GetTaggedValue());
+                factory->CreateDynClass<TransitionHandler>(dyn_class_class, JSType::TRANSITION_HANDLER).GetTaggedValue());
     SetConstant(ConstantIndex::PROPERTY_BOX_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, PropertyBox::SIZE, JSType::PROPERTY_BOX).GetTaggedValue());
-    SetConstant(ConstantIndex::FUNCTION_EXTRA_INFO_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, JSFunctionExtraInfo::SIZE, JSType::FUNCTION_EXTRA_INFO)
-                    .GetTaggedValue());
-    JSHClass *program_class = *factory->NewEcmaDynClass(dyn_class_class, Program::SIZE, JSType::PROGRAM);
-    program_class->GetHClass()->MarkFieldAsNative(Program::METHODS_DATA_OFFSET);
+                factory->CreateDynClass<PropertyBox>(dyn_class_class, JSType::PROPERTY_BOX).GetTaggedValue());
+    SetConstant(
+        ConstantIndex::FUNCTION_EXTRA_INFO_INDEX,
+        factory->CreateDynClass<JSFunctionExtraInfo>(dyn_class_class, JSType::FUNCTION_EXTRA_INFO).GetTaggedValue());
+    JSHClass *program_class = *factory->CreateDynClass<Program>(dyn_class_class, JSType::PROGRAM);
     SetConstant(ConstantIndex::PROGRAM_CLASS_INDEX, JSTaggedValue(program_class));
     SetConstant(ConstantIndex::ECMA_MODULE_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, EcmaModule::SIZE, JSType::ECMA_MODULE).GetTaggedValue());
+                factory->CreateDynClass<EcmaModule>(dyn_class_class, JSType::ECMA_MODULE).GetTaggedValue());
 
     JSHClass *js_proxy_callable_class =
-        *factory->NewEcmaDynClass(dyn_class_class, JSProxy::SIZE, JSType::JS_PROXY, HClass::IS_CALLABLE);
-
-    js_proxy_callable_class->GetHClass()->MarkFieldAsNative(JSProxy::METHOD_OFFSET);
+        *factory->CreateDynClass<JSProxy>(dyn_class_class, JSType::JS_PROXY, HClass::IS_CALLABLE);
     SetConstant(ConstantIndex::JS_PROXY_CALLABLE_CLASS_INDEX, JSTaggedValue(js_proxy_callable_class));
 
     JSHClass *js_proxy_construct_class =
-        *factory->NewEcmaDynClass(dyn_class_class, JSProxy::SIZE, JSType::JS_PROXY, HClass::IS_CALLABLE);
-
+        *factory->CreateDynClass<JSProxy>(dyn_class_class, JSType::JS_PROXY, HClass::IS_CALLABLE);
     js_proxy_construct_class->SetConstructor(true);
-    js_proxy_construct_class->GetHClass()->MarkFieldAsNative(JSProxy::METHOD_OFFSET);
     SetConstant(ConstantIndex::JS_PROXY_CONSTRUCT_CLASS_INDEX, JSTaggedValue(js_proxy_construct_class));
 
     SetConstant(ConstantIndex::JS_REALM_CLASS_INDEX,
-                factory->NewEcmaDynClass(dyn_class_class, JSRealm::SIZE, JSType::JS_REALM).GetTaggedValue());
+                factory->CreateDynClass<JSRealm>(dyn_class_class, JSType::JS_REALM).GetTaggedValue());
 
     JSHClass *class_info_extractor_class =
-        *factory->NewEcmaDynClass(dyn_class_class, ClassInfoExtractor::SIZE, JSType::CLASS_INFO_EXTRACTOR);
-    class_info_extractor_class->GetHClass()->MarkFieldAsNative(ClassInfoExtractor::BIT_FIELD_OFFSET);
-    class_info_extractor_class->GetHClass()->MarkFieldAsNative(ClassInfoExtractor::CONSTRUCTOR_METHOD_OFFSET);
+        *factory->CreateDynClass<ClassInfoExtractor>(dyn_class_class, JSType::CLASS_INFO_EXTRACTOR);
     SetConstant(ConstantIndex::CLASS_INFO_EXTRACTOR_HCLASS_INDEX, JSTaggedValue(class_info_extractor_class));
 
     JSHClass *js_regexp_iterator_class =
-        *factory->NewEcmaDynClass(dyn_class_class, JSRegExpIterator::SIZE, JSType::JS_REG_EXP_ITERATOR, 0);
-    js_regexp_iterator_class->GetHClass()->MarkFieldAsNative(JSRegExpIterator::BIT_FIELD_OFFSET);
+        *factory->CreateDynClass<JSRegExpIterator>(dyn_class_class, JSType::JS_REG_EXP_ITERATOR, 0);
     SetConstant(ConstantIndex::JS_REGEXP_ITERATOR_CLASS_INDEX, JSTaggedValue(js_regexp_iterator_class));
 
     SetConstant(ConstantIndex::LINKED_HASH_SET_CLASS_INDEX,
@@ -191,9 +170,9 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
     SetConstant(ConstantIndex::LINKED_HASH_MAP_CLASS_INDEX,
                 factory->NewEcmaDynClass(dyn_class_class, 0, JSType::LINKED_HASH_MAP, HClass::ARRAY).GetTaggedValue());
 
-    JSHClass *weak_ref_class = *factory->NewEcmaDynClass(dyn_class_class, JSWeakRef::SIZE, JSType::JS_WEAK_REF, 0, 0);
-    weak_ref_class->SetWeakContainer(true);
-    SetConstant(ConstantIndex::WEAK_REF_CLASS_INDEX, JSTaggedValue(weak_ref_class));
+    JSHClass *js_weak_ref_class = *factory->CreateDynClass<JSWeakRef>(dyn_class_class, JSType::JS_WEAK_REF, 0, 0);
+    js_weak_ref_class->SetWeakContainer(true);
+    SetConstant(ConstantIndex::WEAK_REF_CLASS_INDEX, JSTaggedValue(js_weak_ref_class));
 
     JSHClass *weak_hash_set_class =
         *factory->NewEcmaDynClass(dyn_class_class, 0, JSType::LINKED_HASH_SET, HClass::ARRAY);
diff --git a/runtime/ic/ic_handler.h b/runtime/ic/ic_handler.h
index a90011770..a8a3d8bd2 100644
--- a/runtime/ic/ic_handler.h
+++ b/runtime/ic/ic_handler.h
@@ -118,12 +118,11 @@ public:
 
     static inline JSHandle<JSTaggedValue> StoreTransition(const JSThread *thread, const ObjectOperator &op);
 
-    static constexpr size_t HANDLER_INFO_OFFSET = TaggedObjectSize();
-    ACCESSORS(HandlerInfo, HANDLER_INFO_OFFSET, TRANSITION_HCLASS_OFFSET)
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, HandlerInfo)
+    ACCESSORS(1, TransitionHClass)
+    ACCESSORS_FINISH(2)
 
-    ACCESSORS(TransitionHClass, TRANSITION_HCLASS_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT(HANDLER_INFO_OFFSET, SIZE)
     DECL_DUMP()
 };
 
@@ -140,15 +139,12 @@ public:
     static inline JSHandle<JSTaggedValue> StorePrototype(const JSThread *thread, const ObjectOperator &op,
                                                          const JSHandle<JSHClass> &hclass);
 
-    static constexpr size_t HANDLER_INFO_OFFSET = TaggedObjectSize();
-
-    ACCESSORS(HandlerInfo, HANDLER_INFO_OFFSET, PROTO_CELL_OFFSET)
-
-    ACCESSORS(ProtoCell, PROTO_CELL_OFFSET, HOLDER_OFFSET)
-
-    ACCESSORS(Holder, HOLDER_OFFSET, SIZE)
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, HandlerInfo)
+    ACCESSORS(1, ProtoCell)
+    ACCESSORS(2, Holder)
+    ACCESSORS_FINISH(3)
 
-    DECL_VISIT_OBJECT(HANDLER_INFO_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/ic/property_box.h b/runtime/ic/property_box.h
index 2bc856c83..c5c871195 100644
--- a/runtime/ic/property_box.h
+++ b/runtime/ic/property_box.h
@@ -37,10 +37,10 @@ public:
         return GetValue().IsHole();
     }
 
-    static constexpr size_t VALUE_OFFSET = TaggedObjectSize();
-    ACCESSORS(Value, VALUE_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, Value)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT(VALUE_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/ic/proto_change_details.h b/runtime/ic/proto_change_details.h
index 091820746..a3ad1adab 100644
--- a/runtime/ic/proto_change_details.h
+++ b/runtime/ic/proto_change_details.h
@@ -31,8 +31,9 @@ public:
         return static_cast<ProtoChangeMarker *>(object);
     }
 
-    static constexpr size_t HAS_CHANGED_OFFSET = TaggedObjectSize();
-    SET_GET_PRIMITIVE_FIELD(HasChanged, bool, HAS_CHANGED_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS_PRIMITIVE_FIELD(0, HasChanged, bool)
+    ACCESSORS_FINISH(1)
     DECL_DUMP()
 };
 
@@ -45,11 +46,11 @@ public:
         return static_cast<ProtoChangeDetails *>(object);
     }
 
-    static constexpr size_t CHANGE_LISTENER_OFFSET = TaggedObjectSize();
-    ACCESSORS(ChangeListener, CHANGE_LISTENER_OFFSET, REGISTER_INDEX_OFFSET);
-    ACCESSORS(RegisterIndex, REGISTER_INDEX_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, ChangeListener)
+    ACCESSORS(1, RegisterIndex)
+    ACCESSORS_FINISH(2)
 
-    DECL_VISIT_OBJECT(CHANGE_LISTENER_OFFSET, SIZE)
     DECL_DUMP()
 };
 
diff --git a/runtime/jobs/micro_job_queue.h b/runtime/jobs/micro_job_queue.h
index bb519fb6f..7681d5cb0 100644
--- a/runtime/jobs/micro_job_queue.h
+++ b/runtime/jobs/micro_job_queue.h
@@ -43,13 +43,12 @@ public:
                            const JSHandle<JSFunction> &job, const JSHandle<TaggedArray> &argv);
     static void ExecutePendingJob(JSThread *thread, JSHandle<MicroJobQueue> jobQueue);
 
-    static constexpr size_t PROMISE_JOB_QUEUE_OFFSET = Record::SIZE;
-    ACCESSORS(PromiseJobQueue, PROMISE_JOB_QUEUE_OFFSET, SCRIPT_JOB_QUEUE_OFFSET);
-    ACCESSORS(ScriptJobQueue, SCRIPT_JOB_QUEUE_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, PromiseJobQueue)
+    ACCESSORS(1, ScriptJobQueue)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(PROMISE_JOB_QUEUE_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript::job
 #endif  // ECMASCRIPT_JOBS_MICRO_JOB_QUEUE_H
diff --git a/runtime/jobs/pending_job.h b/runtime/jobs/pending_job.h
index 8907b3278..b6e8af611 100644
--- a/runtime/jobs/pending_job.h
+++ b/runtime/jobs/pending_job.h
@@ -44,13 +44,12 @@ public:
         return JSFunction::Call(thread, job, thisValue, argv->GetLength(), args->GetArgv());
     }
 
-    static constexpr size_t JOB_OFFSET = Record::SIZE;
-    ACCESSORS(Job, JOB_OFFSET, ARGUMENT_OFFSET);
-    ACCESSORS(Arguments, ARGUMENT_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Job)
+    ACCESSORS(1, Arguments)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(JOB_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript::job
 #endif  // ECMASCRIPT_JOBS_PENDING_JOB_H
diff --git a/runtime/js_arguments.h b/runtime/js_arguments.h
index 7bf3032ce..405e6b49f 100644
--- a/runtime/js_arguments.h
+++ b/runtime/js_arguments.h
@@ -59,10 +59,9 @@ public:
     // 9.4.4.7 CreateMappedArgumentsObject ( func, formals, argumentsList, env )
 
     // ACCESSORS(JSTaggedValue, Length, LENGTH_OFFSET)
-    static constexpr size_t PARAMETER_MAP_OFFSET = JSObject::SIZE;
-    ACCESSORS(ParameterMap, PARAMETER_MAP_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, PARAMETER_MAP_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, ParameterMap)
+    ACCESSORS_FINISH(1)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_array.h b/runtime/js_array.h
index d6148dda6..7bfbe547d 100644
--- a/runtime/js_array.h
+++ b/runtime/js_array.h
@@ -61,17 +61,16 @@ public:
         SetLength(thread, JSTaggedValue(length));
     }
 
-    static constexpr size_t LENGTH_OFFSET = JSObject::SIZE;
-    ACCESSORS(Length, LENGTH_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LENGTH_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Length)
+    ACCESSORS_FINISH(1)
 
     static const uint32_t MAX_ARRAY_INDEX = MAX_ELEMENT_INDEX;
     DECL_DUMP()
 
     static int32_t GetArrayLengthOffset()
     {
-        return LENGTH_OFFSET;
+        return GetLengthOffset();
     }
 
     static bool PropertyKeyToArrayIndex(JSThread *thread, const JSHandle<JSTaggedValue> &key, uint32_t *output);
diff --git a/runtime/js_array_iterator.h b/runtime/js_array_iterator.h
index b13d3b0d1..d87680bcc 100644
--- a/runtime/js_array_iterator.h
+++ b/runtime/js_array_iterator.h
@@ -26,12 +26,11 @@ public:
 
     static JSTaggedValue Next(EcmaRuntimeCallInfo *argv);
 
-    static constexpr size_t ITERATED_ARRAY_OFFSET = JSObject::SIZE;
-    ACCESSORS(IteratedArray, ITERATED_ARRAY_OFFSET, NEXT_INDEX_OFFSET)
-    ACCESSORS(NextIndex, NEXT_INDEX_OFFSET, ITERATION_KIND_OFFSET)
-    ACCESSORS(IterationKind, ITERATION_KIND_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATED_ARRAY_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IteratedArray)
+    ACCESSORS(1, NextIndex)
+    ACCESSORS(2, IterationKind)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_arraybuffer.h b/runtime/js_arraybuffer.h
index 39d7a1c88..36da28191 100644
--- a/runtime/js_arraybuffer.h
+++ b/runtime/js_arraybuffer.h
@@ -35,13 +35,13 @@ public:
         return arrayBufferData == JSTaggedValue::Null();
     }
 
-    static constexpr size_t ARRAY_BUFFER_BYTE_LENGTH_OFFSET = JSObject::SIZE;
-    ACCESSORS(ArrayBufferByteLength, ARRAY_BUFFER_BYTE_LENGTH_OFFSET, ARRAY_BUFFER_DATA_OFFSET)
-    ACCESSORS(ArrayBufferData, ARRAY_BUFFER_DATA_OFFSET, ARRAY_BUFFER_SHARED_OFFSET)
-    ACCESSORS(Shared, ARRAY_BUFFER_SHARED_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, ArrayBufferByteLength)
+    ACCESSORS(1, ArrayBufferData)
+    ACCESSORS(2, Shared)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ARRAY_BUFFER_BYTE_LENGTH_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_arraylist.h b/runtime/js_arraylist.h
index f2147bf04..6b3295789 100644
--- a/runtime/js_arraylist.h
+++ b/runtime/js_arraylist.h
@@ -45,10 +45,10 @@ public:
         return GetLength().GetArrayLength();
     }
 
-    static constexpr size_t LENGTH_OFFSET = JSObject::SIZE;
-    ACCESSORS(Length, LENGTH_OFFSET, SIZE);
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Length)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LENGTH_OFFSET, SIZE)
     DECL_DUMP()
 private:
     inline static uint32_t ComputeCapacity(uint32_t old_capacity)
diff --git a/runtime/js_async_from_sync_iterator_object.h b/runtime/js_async_from_sync_iterator_object.h
index b906e8360..ee3337641 100644
--- a/runtime/js_async_from_sync_iterator_object.h
+++ b/runtime/js_async_from_sync_iterator_object.h
@@ -18,10 +18,9 @@ public:
     // 27.1.4.2.4 Async-from-Sync Iterator Value Unwrap Functions
     static JSTaggedValue AsyncFromSyncIteratorValueUnwrapFunction(EcmaRuntimeCallInfo *argv);
 
-    static constexpr size_t DONE_OFFSET = JSFunction::SIZE;
-    ACCESSORS(Done, DONE_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, DONE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, Done)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
@@ -38,11 +37,10 @@ public:
     static JSTaggedValue AsyncFromSyncIteratorContinuation(JSThread *thread, const JSHandle<JSTaggedValue> &result,
                                                            const JSHandle<PromiseCapability> &promiseCapability);
 
-    static constexpr size_t ITERATOR_OFFSET = JSObject::SIZE;
-    ACCESSORS(Iterator, ITERATOR_OFFSET, NEXT_METHOD_OFFSET);
-    ACCESSORS(NextMethod, NEXT_METHOD_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATOR_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Iterator)
+    ACCESSORS(1, NextMethod)
+    ACCESSORS_FINISH(2)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_async_function.h b/runtime/js_async_function.h
index fdcaef53f..436a37249 100644
--- a/runtime/js_async_function.h
+++ b/runtime/js_async_function.h
@@ -33,10 +33,9 @@ public:
                                                               const JSHandle<JSAsyncAwaitStatusFunction> &func,
                                                               const JSHandle<JSTaggedValue> &reason);
 
-    static constexpr size_t ASYNC_CONTEXT_OFFSET = JSFunction::SIZE;
-    ACCESSORS(AsyncContext, ASYNC_CONTEXT_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, ASYNC_CONTEXT_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, AsyncContext)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
@@ -48,10 +47,9 @@ public:
     static JSTaggedValue AsyncFunctionAwait(JSThread *thread, const JSHandle<JSAsyncFuncObject> &asyncFuncObj,
                                             const JSHandle<JSTaggedValue> &value);
 
-    static constexpr size_t GENERATOR_PROMISE_OFFSET = JSGeneratorObject::SIZE;
-    ACCESSORS(Promise, GENERATOR_PROMISE_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSGeneratorObject, GENERATOR_PROMISE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSGeneratorObject)
+    ACCESSORS(0, Promise)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_async_generator_object.h b/runtime/js_async_generator_object.h
index 661b57449..6fd0bcf82 100644
--- a/runtime/js_async_generator_object.h
+++ b/runtime/js_async_generator_object.h
@@ -22,10 +22,9 @@ public:
     // 27.6.3.6.2 AsyncGeneratorResumeNext Return Processor Rejected Functions
     static JSTaggedValue AsyncGeneratorResolveNextRejected(EcmaRuntimeCallInfo *argv);
 
-    static constexpr size_t ASYNC_GENERATOR_OFFSET = JSFunction::SIZE;
-    ACCESSORS(AsyncGenerator, ASYNC_GENERATOR_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, ASYNC_GENERATOR_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, AsyncGenerator)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
@@ -52,10 +51,9 @@ public:
     static JSHandle<JSTaggedValue> AsyncGeneratorEnqueue(JSThread *thread, const JSHandle<JSTaggedValue> &generator,
                                                          const JSHandle<CompletionRecord> &completion);
 
-    static constexpr size_t ASYNC_QUEUE_OFFSET = JSAsyncFuncObject::SIZE;
-    ACCESSORS(AsyncGeneratorQueue, ASYNC_QUEUE_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSAsyncFuncObject, ASYNC_QUEUE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSAsyncFuncObject)
+    ACCESSORS(0, AsyncGeneratorQueue)
+    ACCESSORS_FINISH(1)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_bigint.h b/runtime/js_bigint.h
index 28f02bca3..6d3947375 100644
--- a/runtime/js_bigint.h
+++ b/runtime/js_bigint.h
@@ -98,9 +98,10 @@ public:
 
     uint32_t GetLength() const;
 
-    static constexpr size_t DATA_OFFSET = TaggedObjectSize();
-    ACCESSORS(Data, DATA_OFFSET, BITFIELD_OFFSET);
-    SET_GET_PRIMITIVE_FIELD(BitField, uint32_t, BITFIELD_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, Data)
+    ACCESSORS_BIT_FIELD(1, BitField)
+    ACCESSORS_FINISH(2)
 
     static constexpr size_t SIGN_BITS = 1;
     using SignBits = BitField<bool, 0, SIGN_BITS>;
@@ -116,7 +117,6 @@ public:
     }
 
     DECL_DUMP()
-    DECL_VISIT_OBJECT(DATA_OFFSET, BITFIELD_OFFSET);
 
 private:
     static bool Equal(const JSHandle<BigInt> &x, const JSHandle<BigInt> &y);
diff --git a/runtime/js_collator.h b/runtime/js_collator.h
index 8494746ea..72c872102 100644
--- a/runtime/js_collator.h
+++ b/runtime/js_collator.h
@@ -36,20 +36,19 @@ public:
 
     CAST_CHECK(JSCollator, IsJSCollator);
 
-    static constexpr size_t ICU_FIELD_OFFSET = JSObject::SIZE;
-
     // icu field.
-    ACCESSORS(IcuField, ICU_FIELD_OFFSET, LOCALE_OFFSET)
-    ACCESSORS(Locale, LOCALE_OFFSET, USAGE_OFFSET)
-    ACCESSORS(Usage, USAGE_OFFSET, SENSITIVITY_OFFSET)
-    ACCESSORS(Sensitivity, SENSITIVITY_OFFSET, IGNORE_PUNCTUATION_OFFSET)
-    ACCESSORS(IgnorePunctuation, IGNORE_PUNCTUATION_OFFSET, COLLATION_OFFSET)
-    ACCESSORS(Collation, COLLATION_OFFSET, NUMERIC_OFFSET)
-    ACCESSORS(Numeric, NUMERIC_OFFSET, CASE_FIRST_OFFSET)
-    ACCESSORS(CaseFirst, CASE_FIRST_OFFSET, BOUND_COMPARE_OFFSET)
-    ACCESSORS(BoundCompare, BOUND_COMPARE_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ICU_FIELD_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IcuField)
+    ACCESSORS(1, Locale)
+    ACCESSORS(2, Usage)
+    ACCESSORS(3, Sensitivity)
+    ACCESSORS(4, IgnorePunctuation)
+    ACCESSORS(5, Collation)
+    ACCESSORS(6, Numeric)
+    ACCESSORS(7, CaseFirst)
+    ACCESSORS(8, BoundCompare)
+    ACCESSORS_FINISH(9)
+
     DECL_DUMP()
 
     icu::Collator *GetIcuCollator() const
diff --git a/runtime/js_dataview.h b/runtime/js_dataview.h
index 51b7b7739..1517016be 100644
--- a/runtime/js_dataview.h
+++ b/runtime/js_dataview.h
@@ -38,13 +38,12 @@ public:
 
     static int32_t GetElementSize(DataViewType type);
 
-    static constexpr size_t DATA_VIEW_OFFSET = JSObject::SIZE;
-    ACCESSORS(DataView, DATA_VIEW_OFFSET, VIEW_ARRAY_BUFFER_OFFSET);
-    ACCESSORS(ViewedArrayBuffer, VIEW_ARRAY_BUFFER_OFFSET, BYTE_LENGTH_OFFSET);
-    ACCESSORS(ByteLength, BYTE_LENGTH_OFFSET, BYTE_OFFSET_OFFSET);
-    ACCESSORS(ByteOffset, BYTE_OFFSET_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, DATA_VIEW_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, DataView)
+    ACCESSORS(1, ViewedArrayBuffer)
+    ACCESSORS(2, ByteLength)
+    ACCESSORS(3, ByteOffset)
+    ACCESSORS_FINISH(4)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_date.h b/runtime/js_date.h
index ded1518dd..565325c85 100644
--- a/runtime/js_date.h
+++ b/runtime/js_date.h
@@ -65,11 +65,10 @@ class JSDate : public JSObject {
 public:
     CAST_CHECK(JSDate, IsDate);
 
-    static constexpr size_t TIME_VALUE_OFFSET = JSObject::SIZE;
-    ACCESSORS(TimeValue, TIME_VALUE_OFFSET, LOCAL_TIME_OFFSET)
-    ACCESSORS(LocalOffset, LOCAL_TIME_OFFSET, SIZE)  // localoffset in min
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, TIME_VALUE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, TimeValue)
+    ACCESSORS(1, LocalOffset)  // localoffset in min
+    ACCESSORS_FINISH(2)
 
     static double MakeDay(double year, double month, double date);
     static double MakeTime(double hour, double min, double sec, double ms);
diff --git a/runtime/js_date_time_format.h b/runtime/js_date_time_format.h
index 2d2db9ec2..3fcf3043e 100644
--- a/runtime/js_date_time_format.h
+++ b/runtime/js_date_time_format.h
@@ -90,21 +90,20 @@ class JSDateTimeFormat : public JSObject {
 public:
     CAST_CHECK(JSDateTimeFormat, IsJSDateTimeFormat);
 
-    static constexpr size_t LOCALE_OFFSET = JSObject::SIZE;
-
-    ACCESSORS(Locale, LOCALE_OFFSET, CALENDAR_OFFSET)
-    ACCESSORS(Calendar, CALENDAR_OFFSET, NUMBER_STRING_SYSTEM_OFFSET)
-    ACCESSORS(NumberingSystem, NUMBER_STRING_SYSTEM_OFFSET, TIME_ZONE_OFFSET)
-    ACCESSORS(TimeZone, TIME_ZONE_OFFSET, HOUR_CYCLE_OFFSET)
-    ACCESSORS(HourCycle, HOUR_CYCLE_OFFSET, LOCALE_ICU_OFFSET)
-    ACCESSORS(LocaleIcu, LOCALE_ICU_OFFSET, SIMPLE_DATE_TIME_FORMAT_ICU_OFFSET)
-    ACCESSORS(SimpleDateTimeFormatIcu, SIMPLE_DATE_TIME_FORMAT_ICU_OFFSET, ISO8601_OFFSET)
-    ACCESSORS(Iso8601, ISO8601_OFFSET, DATE_STYLE_OFFSET)
-    ACCESSORS(DateStyle, DATE_STYLE_OFFSET, TIME_STYLE_OFFSET)
-    ACCESSORS(TimeStyle, TIME_STYLE_OFFSET, BOUND_FORMAT_OFFSET)
-    ACCESSORS(BoundFormat, BOUND_FORMAT_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LOCALE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Locale)
+    ACCESSORS(1, Calendar)
+    ACCESSORS(2, NumberingSystem)
+    ACCESSORS(3, TimeZone)
+    ACCESSORS(4, HourCycle)
+    ACCESSORS(5, LocaleIcu)
+    ACCESSORS(6, SimpleDateTimeFormatIcu)
+    ACCESSORS(7, Iso8601)
+    ACCESSORS(8, DateStyle)
+    ACCESSORS(9, TimeStyle)
+    ACCESSORS(10, BoundFormat)
+    ACCESSORS_FINISH(11)
+
     DECL_DUMP()
 
     icu::Locale *GetIcuLocale() const;
diff --git a/runtime/js_finalization_registry.h b/runtime/js_finalization_registry.h
index ed3b23e28..59522b340 100644
--- a/runtime/js_finalization_registry.h
+++ b/runtime/js_finalization_registry.h
@@ -32,12 +32,10 @@ public:
                            const JSHandle<JSTaggedValue> &token);
     static void CallCleanupCallback(JSThread *thread, JSHandle<JSFinalizationRegistry> registry);
 
-    static constexpr size_t CLEANUP_CALLBACK_OFFSET = JSObject::SIZE;
-    ACCESSORS(CleanupCallback, CLEANUP_CALLBACK_OFFSET, CELLS_OFFSET);
-    // Array of triplets (WeakRef(object), callback_argument, WeakRef(unregistration_token))
-    ACCESSORS(Cells, CELLS_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, CLEANUP_CALLBACK_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, CleanupCallback)
+    ACCESSORS(1, Cells)  // Array of triplets (WeakRef(object), callback_argument, WeakRef(unregistration_token))
+    ACCESSORS_FINISH(2)
 
 private:
     uint32_t GetLength() const;
diff --git a/runtime/js_for_in_iterator.h b/runtime/js_for_in_iterator.h
index 845114566..4fc14bfdd 100644
--- a/runtime/js_for_in_iterator.h
+++ b/runtime/js_for_in_iterator.h
@@ -38,19 +38,14 @@ public:
     static void SlowGetAllEnumKeys(JSThread *thread, const JSHandle<JSForInIterator> &it,
                                    const JSHandle<JSTaggedValue> &object);
 
-    static constexpr size_t OBJECT_OFFSET = JSObject::SIZE;
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Object)
+    ACCESSORS(1, WasVisited)
+    ACCESSORS(2, VisitedKeys)
+    ACCESSORS(3, FastRemainingIndex)
+    ACCESSORS(4, RemainingKeys)
+    ACCESSORS_FINISH(5)
 
-    ACCESSORS(Object, OBJECT_OFFSET, WAS_VISITED_OFFSET)
-
-    ACCESSORS(WasVisited, WAS_VISITED_OFFSET, VISITED_KEYS_OFFSET)
-
-    ACCESSORS(VisitedKeys, VISITED_KEYS_OFFSET, FAST_REMAINING_INDEX_OFFSET)
-
-    ACCESSORS(FastRemainingIndex, FAST_REMAINING_INDEX_OFFSET, REMAINING_KEYS_OFFSET)
-
-    ACCESSORS(RemainingKeys, REMAINING_KEYS_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, OBJECT_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_function.cpp b/runtime/js_function.cpp
index 8ddcca846..2d6b0c125 100644
--- a/runtime/js_function.cpp
+++ b/runtime/js_function.cpp
@@ -111,7 +111,7 @@ JSHClass *JSFunction::GetOrCreateInitialJSHClass(JSThread *thread, const JSHandl
         proto = JSHandle<JSTaggedValue>(thread, fun->GetProtoOrDynClass());
     }
 
-    JSHandle<JSHClass> dynclass = factory->NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, proto);
+    JSHandle<JSHClass> dynclass = factory->CreateDynClass<JSObject>(JSType::JS_OBJECT, proto);
     fun->SetProtoOrDynClass(thread, dynclass);
     return *dynclass;
 }
diff --git a/runtime/js_function.h b/runtime/js_function.h
index e5ec65c88..2ad1d11c3 100644
--- a/runtime/js_function.h
+++ b/runtime/js_function.h
@@ -46,10 +46,9 @@ public:
         SetMethod(p);
     }
 
-    static constexpr size_t METHOD_OFFSET = JSObject::SIZE;
-    SET_GET_NATIVE_FIELD(Method, JSMethod, METHOD_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, SIZE, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS_NATIVE_FIELD(0, Method, JSMethod)
+    ACCESSORS_FINISH(1)
 };
 
 class JSFunction : public JSFunctionBase {
@@ -277,14 +276,15 @@ public:
     static JSHandle<JSHClass> GetInstanceJSHClass(JSThread *thread, JSHandle<JSFunction> constructor,
                                                   JSHandle<JSTaggedValue> new_target);
 
-    static constexpr size_t PROTO_OR_DYNCLASS_OFFSET = JSFunctionBase::SIZE;
-    ACCESSORS(ProtoOrDynClass, PROTO_OR_DYNCLASS_OFFSET, LEXICAL_ENV_OFFSET)
-    ACCESSORS(LexicalEnv, LEXICAL_ENV_OFFSET, HOME_OBJECT_OFFSET)
-    ACCESSORS(HomeObject, HOME_OBJECT_OFFSET, FUNCTION_INFO_FLAG_OFFSET)
-    ACCESSORS(FunctionInfoFlag, FUNCTION_INFO_FLAG_OFFSET, FUNCTION_EXTRA_INFO_OFFSET)
-    ACCESSORS(FunctionExtraInfo, FUNCTION_EXTRA_INFO_OFFSET, CONSTANT_POOL_OFFSET)
-    ACCESSORS(ConstantPool, CONSTANT_POOL_OFFSET, PROFILE_TYPE_INFO_OFFSET)
-    ACCESSORS(ProfileTypeInfo, PROFILE_TYPE_INFO_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunctionBase)
+    ACCESSORS(0, ProtoOrDynClass)
+    ACCESSORS(1, LexicalEnv)
+    ACCESSORS(2, HomeObject)
+    ACCESSORS(3, FunctionInfoFlag)
+    ACCESSORS(4, FunctionExtraInfo)
+    ACCESSORS(5, ConstantPool)
+    ACCESSORS(6, ProfileTypeInfo)
+    ACCESSORS_FINISH(7)
 
     static constexpr uint32_t FUNCTION_KIND_BIT_NUM = 5;
     using FunctionKindBit = BitField<FunctionKind, 0, FUNCTION_KIND_BIT_NUM>;
@@ -294,9 +294,6 @@ public:
     using ThisModeBit = ResolvedBit::NextField<FunctionMode, 2>;  // 2: means this flag occupies two digits.
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunctionBase, PROTO_OR_DYNCLASS_OFFSET, SIZE)
-
 private:
     static JSHandle<JSHClass> GetOrCreateDerivedJSHClass(JSThread *thread, JSHandle<JSFunction> derived,
                                                          JSHandle<JSFunction> constructor,
@@ -309,8 +306,6 @@ public:
 
     static constexpr size_t SIZE = JSFunction::SIZE;
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, SIZE, SIZE)
-
     DECL_DUMP()
 };
 
@@ -320,8 +315,6 @@ public:
 
     static constexpr size_t SIZE = JSFunction::SIZE;
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, SIZE, SIZE)
-
     DECL_DUMP()
 };
 
@@ -331,8 +324,6 @@ public:
 
     static constexpr size_t SIZE = JSFunction::SIZE;
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, SIZE, SIZE)
-
     DECL_DUMP()
 };
 
@@ -342,11 +333,10 @@ public:
 
     CAST_CHECK(JSConstructorFunction, IsClassConstructor);
 
-    static constexpr size_t COMPUTED_FIELDS_OFFSET = JSFunction::SIZE;
-    ACCESSORS(ComputedFields, COMPUTED_FIELDS_OFFSET, PRIVATE_FIELDS_OFFSET);
-    ACCESSORS(PrivateFields, PRIVATE_FIELDS_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, COMPUTED_FIELDS_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, ComputedFields)
+    ACCESSORS(1, PrivateFields)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
 };
@@ -362,12 +352,11 @@ public:
     static JSTaggedValue ConstructInternal(JSThread *thread, const JSHandle<JSBoundFunction> &func,
                                            const JSHandle<JSTaggedValue> &new_target);
 
-    static constexpr size_t BOUND_TARGET_OFFSET = JSFunctionBase::SIZE;
-    ACCESSORS(BoundTarget, BOUND_TARGET_OFFSET, BOUND_THIS_OFFSET);
-    ACCESSORS(BoundThis, BOUND_THIS_OFFSET, BOUND_ARGUMENTS_OFFSET);
-    ACCESSORS(BoundArguments, BOUND_ARGUMENTS_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunctionBase, BOUND_TARGET_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunctionBase)
+    ACCESSORS(0, BoundTarget)
+    ACCESSORS(1, BoundThis)
+    ACCESSORS(2, BoundArguments)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
 };
@@ -378,10 +367,9 @@ public:
 
     static void ProxyRevocFunctions(const JSThread *thread, const JSHandle<JSProxyRevocFunction> &revoker);
 
-    static constexpr size_t REVOCABLE_PROXY_OFFSET = JSFunction::SIZE;
-    ACCESSORS(RevocableProxy, REVOCABLE_PROXY_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, REVOCABLE_PROXY_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, RevocableProxy)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
@@ -391,11 +379,10 @@ class JSPromiseReactionsFunction : public JSFunction {
 public:
     CAST_CHECK(JSPromiseReactionsFunction, IsJSPromiseReactionFunction);
 
-    static constexpr size_t PROMISE_OFFSET = JSFunction::SIZE;
-    ACCESSORS(Promise, PROMISE_OFFSET, ALREADY_RESOLVED_OFFSET);
-    ACCESSORS(AlreadyResolved, ALREADY_RESOLVED_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, PROMISE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, Promise)
+    ACCESSORS(1, AlreadyResolved)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
 };
@@ -405,10 +392,9 @@ class JSPromiseExecutorFunction : public JSFunction {
 public:
     CAST_CHECK(JSPromiseExecutorFunction, IsJSPromiseExecutorFunction);
 
-    static constexpr size_t CAPABILITY_OFFSET = JSFunction::SIZE;
-    ACCESSORS(Capability, CAPABILITY_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, CAPABILITY_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, Capability)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
@@ -417,14 +403,13 @@ class JSPromiseAllResolveElementFunction : public JSFunction {
 public:
     CAST_CHECK(JSPromiseAllResolveElementFunction, IsJSPromiseAllResolveElementFunction);
 
-    static constexpr size_t INDEX_OFFSET = JSFunction::SIZE;
-    ACCESSORS(Index, INDEX_OFFSET, VALUES_OFFSET);
-    ACCESSORS(Values, VALUES_OFFSET, CAPABILITIES_OFFSET);
-    ACCESSORS(Capabilities, CAPABILITIES_OFFSET, REMAINING_ELEMENTS_OFFSET);
-    ACCESSORS(RemainingElements, REMAINING_ELEMENTS_OFFSET, ALREADY_CALLED_OFFSET);
-    ACCESSORS(AlreadyCalled, ALREADY_CALLED_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, INDEX_OFFSET, SIZE)
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, Index)
+    ACCESSORS(1, Values)
+    ACCESSORS(2, Capabilities)
+    ACCESSORS(3, RemainingElements)
+    ACCESSORS(4, AlreadyCalled)
+    ACCESSORS_FINISH(5)
 
     DECL_DUMP()
 };
@@ -435,13 +420,12 @@ public:
 
     static JSTaggedValue IntlNameGetter(JSThread *thread, const JSHandle<JSObject> &self);
 
-    static constexpr size_t NUMBER_FORMAT_OFFSET = JSFunction::SIZE;
-
-    ACCESSORS(NumberFormat, NUMBER_FORMAT_OFFSET, DATETIME_FORMAT_OFFSET);
-    ACCESSORS(DateTimeFormat, DATETIME_FORMAT_OFFSET, COLLATOR_OFFSET);
-    ACCESSORS(Collator, COLLATOR_OFFSET, SIZE);
+    ACCESSORS_BASE(JSFunction)
+    ACCESSORS(0, NumberFormat)
+    ACCESSORS(1, DateTimeFormat)
+    ACCESSORS(2, Collator)
+    ACCESSORS_FINISH(3)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSFunction, NUMBER_FORMAT_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_function_extra_info.h b/runtime/js_function_extra_info.h
index 28ed128ab..d9fc06c2d 100644
--- a/runtime/js_function_extra_info.h
+++ b/runtime/js_function_extra_info.h
@@ -31,12 +31,12 @@ public:
         return static_cast<JSFunctionExtraInfo *>(object);
     }
 
-    static constexpr size_t CALL_BACK_OFFSET = sizeof(ObjectHeader);
-    ACCESSORS(Callback, CALL_BACK_OFFSET, VM_OFFSET);
-    ACCESSORS(Vm, VM_OFFSET, DATA_OFFSET);
-    ACCESSORS(Data, DATA_OFFSET, SIZE);
+    ACCESSORS_START(sizeof(ObjectHeader))
+    ACCESSORS(0, Callback)
+    ACCESSORS(1, Vm)
+    ACCESSORS(2, Data)
+    ACCESSORS_FINISH(3)
 
-    DECL_VISIT_OBJECT(CALL_BACK_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_generator_object.h b/runtime/js_generator_object.h
index de3edea80..92e9b2403 100644
--- a/runtime/js_generator_object.h
+++ b/runtime/js_generator_object.h
@@ -32,16 +32,16 @@ class GeneratorContext : TaggedObject {
 public:
     CAST_CHECK(GeneratorContext, IsGeneratorContext);
 
-    static constexpr size_t GENERATOR_REGS_ARRAY_OFFSET = TaggedObjectSize();
-    ACCESSORS(RegsArray, GENERATOR_REGS_ARRAY_OFFSET, GENERATOR_METHOD_OFFSET)
-    ACCESSORS(Method, GENERATOR_METHOD_OFFSET, GENERATOR_ACC_OFFSET)
-    ACCESSORS(Acc, GENERATOR_ACC_OFFSET, GENERATOR_NREGS_OFFSET)
-    ACCESSORS(NRegs, GENERATOR_NREGS_OFFSET, GENERATOR_BC_OFFSET_OFFSET)
-    ACCESSORS(BCOffset, GENERATOR_BC_OFFSET_OFFSET, GENERATOR_GENERATOR_OBJECT_OFFSET)
-    ACCESSORS(GeneratorObject, GENERATOR_GENERATOR_OBJECT_OFFSET, GENERATOR_LEXICALENV_OFFSET)
-    ACCESSORS(LexicalEnv, GENERATOR_LEXICALENV_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT(GENERATOR_REGS_ARRAY_OFFSET, SIZE)
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, RegsArray)
+    ACCESSORS(1, Method)
+    ACCESSORS(2, Acc)
+    ACCESSORS(3, NRegs)
+    ACCESSORS(4, BCOffset)
+    ACCESSORS(5, GeneratorObject)
+    ACCESSORS(6, LexicalEnv)
+    ACCESSORS_FINISH(7)
+
     DECL_DUMP()
 };
 
@@ -49,12 +49,6 @@ class JSGeneratorObject : public JSObject {
 public:
     CAST_CHECK(JSGeneratorObject, IsGeneratorObject);
 
-    static constexpr size_t GENERATOR_STATE_OFFSET = JSObject::SIZE;
-    ACCESSORS(GeneratorState, GENERATOR_STATE_OFFSET, GENERATOR_CONTEXT_OFFSET)
-    ACCESSORS(GeneratorContext, GENERATOR_CONTEXT_OFFSET, GENERATOR_RESUME_RESULT_OFFSET)
-    ACCESSORS(ResumeResult, GENERATOR_RESUME_RESULT_OFFSET, GENERATOR_RESUME_MODE_OFFSET)
-    ACCESSORS(ResumeMode, GENERATOR_RESUME_MODE_OFFSET, SIZE)
-
     // 26.4.3.2 GeneratorValidate(generator)
     static JSTaggedValue GeneratorValidate(JSThread *thread, const JSHandle<JSTaggedValue> &obj);
 
@@ -91,7 +85,13 @@ public:
         SetGeneratorState(thread, JSTaggedValue(static_cast<int32_t>(state)));
     }
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, GENERATOR_STATE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, GeneratorState)
+    ACCESSORS(1, GeneratorContext)
+    ACCESSORS(2, ResumeResult)
+    ACCESSORS(3, ResumeMode)
+    ACCESSORS_FINISH(4)
+
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_global_object.h b/runtime/js_global_object.h
index a8336a1f4..fa6fa148f 100644
--- a/runtime/js_global_object.h
+++ b/runtime/js_global_object.h
@@ -29,8 +29,6 @@ public:
     }
 
     static constexpr size_t SIZE = JSObject::SIZE;
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, SIZE, SIZE)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_hclass.h b/runtime/js_hclass.h
index e7cc42e7b..0bdc857ae 100644
--- a/runtime/js_hclass.h
+++ b/runtime/js_hclass.h
@@ -1103,19 +1103,21 @@ public:
     }
 
     static constexpr size_t BIT_FIELD_OFFSET = TaggedObjectSize() + ::panda::HClass::GetDataOffset();
-    SET_GET_PRIMITIVE_FIELD(BitField, uint32_t, BIT_FIELD_OFFSET, BIT_FIELD_OFFSET_END);
     static constexpr size_t BIT_FIELD1_OFFSET = BIT_FIELD_OFFSET + sizeof(uint32_t);
-    SET_GET_PRIMITIVE_FIELD(BitField1, uint32_t, BIT_FIELD1_OFFSET, BIT_FIELD1_OFFSET_END);
     static constexpr size_t OBJECT_SIZE_OFFSET = TaggedObjectSize() + BaseClass::GetObjectSizeOffset();
-    SET_GET_PRIMITIVE_FIELD(ObjectSize, uint32_t, OBJECT_SIZE_OFFSET, OBJECT_SIZE_OFFSET_END);
-    static constexpr size_t PROTOTYPE_OFFSET = TaggedObjectSize() + sizeof(HClass);
-    ACCESSORS(Proto, PROTOTYPE_OFFSET, LAYOUT_OFFSET);
-    ACCESSORS(Layout, LAYOUT_OFFSET, TRANSTIONS_OFFSET);
-    ACCESSORS(Transitions, TRANSTIONS_OFFSET, PARENT_OFFSET);
-    ACCESSORS(Parent, PARENT_OFFSET, VALIDITY_CELL_OFFSET);
-    ACCESSORS(ProtoChangeMarker, VALIDITY_CELL_OFFSET, PROTOTYPE_INFO_OFFSET);
-    ACCESSORS(ProtoChangeDetails, PROTOTYPE_INFO_OFFSET, ENUM_CACHE_OFFSET);
-    ACCESSORS(EnumCache, ENUM_CACHE_OFFSET, SIZE);
+    ACCESSORS_FIXED_SIZE_RAW_FIELD(BitField, uint32_t, uint32_t, BIT_FIELD_OFFSET);
+    ACCESSORS_FIXED_SIZE_RAW_FIELD(BitField1, uint32_t, uint32_t, BIT_FIELD1_OFFSET);
+    ACCESSORS_FIXED_SIZE_RAW_FIELD(ObjectSize, uint32_t, uint32_t, OBJECT_SIZE_OFFSET);
+
+    ACCESSORS_START(TaggedObjectSize() + sizeof(HClass))
+    ACCESSORS(0, Proto)
+    ACCESSORS(1, Layout)
+    ACCESSORS(2, Transitions)
+    ACCESSORS(3, Parent)
+    ACCESSORS(4, ProtoChangeMarker)
+    ACCESSORS(5, ProtoChangeDetails)
+    ACCESSORS(6, EnumCache)
+    ACCESSORS_FINISH(7)
 
     void SetPrototype(const JSThread *thread, JSTaggedValue proto);
     void SetPrototype(const JSThread *thread, const JSHandle<JSTaggedValue> &proto);
@@ -1127,8 +1129,6 @@ public:
 
     static PandaString DumpJSType(JSType type);
 
-    DECL_VISIT_OBJECT(PROTOTYPE_OFFSET, SIZE);
-
 private:
     static inline void AddTransitions(const JSThread *thread, const JSHandle<JSHClass> &parent,
                                       const JSHandle<JSHClass> &child, const JSHandle<JSTaggedValue> &key,
diff --git a/runtime/js_intl.h b/runtime/js_intl.h
index 665f55dbb..ce107d052 100644
--- a/runtime/js_intl.h
+++ b/runtime/js_intl.h
@@ -27,11 +27,10 @@ public:
         return static_cast<JSIntl *>(object);
     }
 
-    static constexpr size_t FALLBACK_SYMBOL = JSObject::SIZE;
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, FallbackSymbol)
+    ACCESSORS_FINISH(1)
 
-    ACCESSORS(FallbackSymbol, FALLBACK_SYMBOL, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, FALLBACK_SYMBOL, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_locale.h b/runtime/js_locale.h
index 15c088540..61d27c7b2 100644
--- a/runtime/js_locale.h
+++ b/runtime/js_locale.h
@@ -141,11 +141,10 @@ public:
         return static_cast<JSLocale *>(object);
     }
 
-    static constexpr size_t ICU_FIELD_OFFSET = JSObject::SIZE;
-    // icu::Locale internal slot.
-    ACCESSORS(IcuField, ICU_FIELD_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IcuField)  // icu::Locale internal slot.
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ICU_FIELD_OFFSET, SIZE)
     DECL_DUMP()
 
     icu::Locale *GetIcuLocale() const
diff --git a/runtime/js_map.h b/runtime/js_map.h
index 7ac947c12..c7ad40534 100644
--- a/runtime/js_map.h
+++ b/runtime/js_map.h
@@ -47,10 +47,9 @@ public:
 
     JSTaggedValue GetValue(int entry) const;
 
-    static constexpr size_t LINKED_MAP_OFFSET = JSObject::SIZE;
-    ACCESSORS(LinkedMap, LINKED_MAP_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LINKED_MAP_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, LinkedMap)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_map_iterator.h b/runtime/js_map_iterator.h
index ac21f6410..5a7973376 100644
--- a/runtime/js_map_iterator.h
+++ b/runtime/js_map_iterator.h
@@ -33,12 +33,11 @@ public:
     static JSTaggedValue Next(EcmaRuntimeCallInfo *argv);
     void Update(const JSThread *thread);
 
-    static constexpr size_t ITERATED_MAP_OFFSET = JSObject::SIZE;
-    ACCESSORS(IteratedMap, ITERATED_MAP_OFFSET, NEXT_INDEX_OFFSET);
-    ACCESSORS(NextIndex, NEXT_INDEX_OFFSET, ITERATION_KIND_OFFSET);
-    ACCESSORS(IterationKind, ITERATION_KIND_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATED_MAP_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IteratedMap)
+    ACCESSORS(1, NextIndex)
+    ACCESSORS(2, IterationKind)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_native_pointer.h b/runtime/js_native_pointer.h
index 4f572d662..ccf9949b2 100644
--- a/runtime/js_native_pointer.h
+++ b/runtime/js_native_pointer.h
@@ -45,10 +45,11 @@ public:
         SetData(nullptr);
     }
 
-    static constexpr size_t POINTER_OFFSET = TaggedObjectSize();
-    SET_GET_VOID_FIELD(ExternalPointer, POINTER_OFFSET, DELETER_OFFSET);
-    SET_GET_PRIMITIVE_FIELD(Deleter, DeleteEntryPoint, DELETER_OFFSET, DATA_OFFSET);
-    SET_GET_VOID_FIELD(Data, DATA_OFFSET, SIZE);
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS_VOID_FIELD(0, ExternalPointer)
+    ACCESSORS_PRIMITIVE_FIELD(1, Deleter, DeleteEntryPoint)
+    ACCESSORS_VOID_FIELD(2, Data)
+    ACCESSORS_FINISH(3)
 
 private:
     inline void DeleteExternalPointer()
diff --git a/runtime/js_number_format.h b/runtime/js_number_format.h
index ddc5ce231..5943c13fb 100644
--- a/runtime/js_number_format.h
+++ b/runtime/js_number_format.h
@@ -62,32 +62,29 @@ class JSNumberFormat : public JSObject {
 public:
     CAST_CHECK(JSNumberFormat, IsJSNumberFormat);
 
-    static constexpr size_t LOCALE_OFFSET = JSObject::SIZE;
-
-    ACCESSORS(Locale, LOCALE_OFFSET, NUMBER_STRING_SYSTEM_OFFSET)
-    ACCESSORS(NumberingSystem, NUMBER_STRING_SYSTEM_OFFSET, STYLE_OFFSET)
-    ACCESSORS(Style, STYLE_OFFSET, CURRENCY_OFFSET)
-    ACCESSORS(Currency, CURRENCY_OFFSET, CURRENCY_DISPLAY_OFFSET)
-    ACCESSORS(CurrencyDisplay, CURRENCY_DISPLAY_OFFSET, CURRENCY_SIGN_OFFSET)
-    ACCESSORS(CurrencySign, CURRENCY_SIGN_OFFSET, UNIT_OFFSET)
-    ACCESSORS(Unit, UNIT_OFFSET, UNIT_DISPLAY_OFFSET)
-    ACCESSORS(UnitDisplay, UNIT_DISPLAY_OFFSET, MINIMUM_INTEGER_DIGITS_OFFSET)
-    ACCESSORS(MinimumIntegerDigits, MINIMUM_INTEGER_DIGITS_OFFSET, MINIMUM_FRACTION_DIGITS_OFFSET)
-    ACCESSORS(MinimumFractionDigits, MINIMUM_FRACTION_DIGITS_OFFSET, MAXIMUM_FRACTION_DIGITS_OFFSET)
-    ACCESSORS(MaximumFractionDigits, MAXIMUM_FRACTION_DIGITS_OFFSET, MININUM_SIGNIFICANT_DIGITS_OFFSET)
-    ACCESSORS(MinimumSignificantDigits, MININUM_SIGNIFICANT_DIGITS_OFFSET, MAXINUM_SIGNIFICANT_DIGITS_OFFSET)
-    ACCESSORS(MaximumSignificantDigits, MAXINUM_SIGNIFICANT_DIGITS_OFFSET, USER_GROUPING_OFFSET)
-    ACCESSORS(UseGrouping, USER_GROUPING_OFFSET, ROUNDING_TYPE_OFFSET)
-    ACCESSORS(RoundingType, ROUNDING_TYPE_OFFSET, NOTATION_OFFSET)
-    ACCESSORS(Notation, NOTATION_OFFSET, COMPACT_DISPLAY_OFFSET)
-    ACCESSORS(CompactDisplay, COMPACT_DISPLAY_OFFSET, SIGN_DISPLAY_OFFSET)
-    ACCESSORS(SignDisplay, SIGN_DISPLAY_OFFSET, ICU_NUMBER_FORMAT_OFFSET)
-    ACCESSORS(BoundFormat, ICU_NUMBER_FORMAT_OFFSET, BOUND_FORMAT_OFFSET)
-
-    // icu field.
-    ACCESSORS(IcuField, BOUND_FORMAT_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LOCALE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Locale)
+    ACCESSORS(1, NumberingSystem)
+    ACCESSORS(2, Style)
+    ACCESSORS(3, Currency)
+    ACCESSORS(4, CurrencyDisplay)
+    ACCESSORS(5, CurrencySign)
+    ACCESSORS(6, Unit)
+    ACCESSORS(7, UnitDisplay)
+    ACCESSORS(8, MinimumIntegerDigits)
+    ACCESSORS(9, MinimumFractionDigits)
+    ACCESSORS(10, MaximumFractionDigits)
+    ACCESSORS(11, MinimumSignificantDigits)
+    ACCESSORS(12, MaximumSignificantDigits)
+    ACCESSORS(13, UseGrouping)
+    ACCESSORS(14, RoundingType)
+    ACCESSORS(15, Notation)
+    ACCESSORS(16, CompactDisplay)
+    ACCESSORS(17, SignDisplay)
+    ACCESSORS(18, BoundFormat)
+    ACCESSORS(19, IcuField)  // icu field
+    ACCESSORS_FINISH(20)
+
     DECL_DUMP()
 
     icu::number::LocalizedNumberFormatter *GetIcuCallTarget() const
diff --git a/runtime/js_object.h b/runtime/js_object.h
index 4a779543f..72e7d63cc 100644
--- a/runtime/js_object.h
+++ b/runtime/js_object.h
@@ -340,6 +340,7 @@ public:
 
     static constexpr size_t HASH_OFFSET = TaggedObjectSize();
     static constexpr size_t SIZE = HASH_OFFSET + sizeof(JSTaggedType);
+    static constexpr JSAccessorsMaskType NATIVE_FIELDS_MASK = 0;
 
     void SetHash(int32_t hash);
     int32_t GetHash() const;
@@ -353,14 +354,6 @@ public:
     void SetNativePointerField(int32_t index, void *native_pointer, const DeleteEntryPoint &call_back, void *data);
     int32_t GetNativePointerFieldCount() const;
     void SetNativePointerFieldCount(int32_t count);
-
-    DECL_VISIT_OBJECT(HASH_OFFSET, SIZE);
-
-    void VisitObjects(const EcmaObjectRangeVisitor &visitor)
-    {
-        // no field in this object
-        VisitRangeSlot(visitor);
-    }
 };
 
 class JSObject : public ECMAObject {
@@ -579,12 +572,10 @@ public:
     static void AddAccessor(JSThread *thread, const JSHandle<JSTaggedValue> &obj, const JSHandle<JSTaggedValue> &key,
                             const JSHandle<AccessorData> &value, PropertyAttributes attr);
 
-    static constexpr size_t PROPERTIES_OFFSET = ECMAObject::SIZE;
-
-    ACCESSORS(Properties, PROPERTIES_OFFSET, ELEMENTS_OFFSET);
-    ACCESSORS(Elements, ELEMENTS_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(ECMAObject, PROPERTIES_OFFSET, SIZE)
+    ACCESSORS_BASE(ECMAObject)
+    ACCESSORS(0, Properties)
+    ACCESSORS(1, Elements)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
 
diff --git a/runtime/js_plural_rules.h b/runtime/js_plural_rules.h
index 39741cf11..cc515865a 100644
--- a/runtime/js_plural_rules.h
+++ b/runtime/js_plural_rules.h
@@ -31,21 +31,20 @@ class JSPluralRules : public JSObject {
 public:
     CAST_CHECK(JSPluralRules, IsJSPluralRules);
 
-    static constexpr size_t LOCALE_OFFSET = JSObject::SIZE;
-
-    ACCESSORS(Locale, LOCALE_OFFSET, INITIALIZED_PLURAL_RULES)
-    ACCESSORS(InitializedPluralRules, INITIALIZED_PLURAL_RULES, TYPE_OFFSET)
-    ACCESSORS(Type, TYPE_OFFSET, MININUM_INTEGER_DIGITS_OFFSET)
-    ACCESSORS(MinimumIntegerDigits, MININUM_INTEGER_DIGITS_OFFSET, MINIMUM_FRACTION_DIGITS_OFFSET)
-    ACCESSORS(MinimumFractionDigits, MINIMUM_FRACTION_DIGITS_OFFSET, MAXIMUM_FRACTION_DIGITS_OFFSET)
-    ACCESSORS(MaximumFractionDigits, MAXIMUM_FRACTION_DIGITS_OFFSET, MININUM_SIGNIFICANT_DIGITS_OFFSET)
-    ACCESSORS(MinimumSignificantDigits, MININUM_SIGNIFICANT_DIGITS_OFFSET, MAXINUM_SIGNIFICANT_DIGITS_OFFSET)
-    ACCESSORS(MaximumSignificantDigits, MAXINUM_SIGNIFICANT_DIGITS_OFFSET, ROUDING_TYPE_OFFSET)
-    ACCESSORS(RoundingType, ROUDING_TYPE_OFFSET, ICU_PLURAL_RULES_OFFSET)
-    ACCESSORS(IcuPR, ICU_PLURAL_RULES_OFFSET, ICU_NUMBER_FORMAT_OFFSET)
-    ACCESSORS(IcuNF, ICU_NUMBER_FORMAT_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LOCALE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Locale)
+    ACCESSORS(1, InitializedPluralRules)
+    ACCESSORS(2, Type)
+    ACCESSORS(3, MinimumIntegerDigits)
+    ACCESSORS(4, MinimumFractionDigits)
+    ACCESSORS(5, MaximumFractionDigits)
+    ACCESSORS(6, MinimumSignificantDigits)
+    ACCESSORS(7, MaximumSignificantDigits)
+    ACCESSORS(8, RoundingType)
+    ACCESSORS(9, IcuPR)
+    ACCESSORS(10, IcuNF)
+    ACCESSORS_FINISH(11)
+
     DECL_DUMP()
 
     icu::number::LocalizedNumberFormatter *GetIcuNumberFormatter() const;
diff --git a/runtime/js_primitive_ref.h b/runtime/js_primitive_ref.h
index 8b8a7ec0e..1fddcafe9 100644
--- a/runtime/js_primitive_ref.h
+++ b/runtime/js_primitive_ref.h
@@ -73,10 +73,9 @@ public:
     static bool StringGetIndexProperty(const JSThread *thread, const JSHandle<JSObject> &obj, uint32_t index,
                                        PropertyDescriptor *desc);
 
-    static constexpr size_t VALUE_OFFSET = JSObject::SIZE;
-    ACCESSORS(Value, VALUE_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, VALUE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Value)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_promise.h b/runtime/js_promise.h
index 2e2e3202b..ee633f477 100644
--- a/runtime/js_promise.h
+++ b/runtime/js_promise.h
@@ -32,65 +32,61 @@ class PromiseReaction final : public Record {
 public:
     CAST_CHECK(PromiseReaction, IsPromiseReaction);
 
-    static constexpr size_t PROMISE_CAPABILITY_OFFSET = Record::SIZE;
-    ACCESSORS(PromiseCapability, PROMISE_CAPABILITY_OFFSET, TYPE_OFFSET);
-    ACCESSORS(Type, TYPE_OFFSET, HANDLER_OFFSET);
-    ACCESSORS(Handler, HANDLER_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, PromiseCapability)
+    ACCESSORS(1, Type)
+    ACCESSORS(2, Handler)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(PROMISE_CAPABILITY_OFFSET, SIZE)
 };
 
 class PromiseCapability final : public Record {
 public:
     CAST_CHECK(PromiseCapability, IsPromiseCapability);
 
-    static constexpr size_t PROMISE_OFFSET = Record::SIZE;
-    ACCESSORS(Promise, PROMISE_OFFSET, RESOLVE_OFFSET);
-    ACCESSORS(Resolve, RESOLVE_OFFSET, REJECT_OFFSET);
-    ACCESSORS(Reject, REJECT_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Promise)
+    ACCESSORS(1, Resolve)
+    ACCESSORS(2, Reject)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(PROMISE_OFFSET, SIZE)
 };
 
 class PromiseIteratorRecord final : public Record {
 public:
     CAST_CHECK(PromiseIteratorRecord, IsPromiseIteratorRecord);
 
-    static constexpr size_t ITERATOR_OFFSET = Record::SIZE;
-    ACCESSORS(Iterator, ITERATOR_OFFSET, DONE_OFFSET);
-    ACCESSORS(Done, DONE_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Iterator)
+    ACCESSORS(1, Done)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(ITERATOR_OFFSET, SIZE)
 };
 
 class PromiseRecord final : public Record {
 public:
     CAST_CHECK(PromiseRecord, IsPromiseRecord);
 
-    static constexpr size_t VALUE_OFFSET = Record::SIZE;
-    ACCESSORS(Value, VALUE_OFFSET, SIZE);
-    DECL_DUMP()
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, Value)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT(VALUE_OFFSET, SIZE)
+    DECL_DUMP()
 };
 
 class ResolvingFunctionsRecord final : public Record {
 public:
     CAST_CHECK(ResolvingFunctionsRecord, IsResolvingFunctionsRecord);
 
-    static constexpr size_t RESOLVE_FUNCTION_OFFSET = Record::SIZE;
-    ACCESSORS(ResolveFunction, RESOLVE_FUNCTION_OFFSET, REJECT_FUNCTION_OFFSET);
-    ACCESSORS(RejectFunction, REJECT_FUNCTION_OFFSET, SIZE);
+    ACCESSORS_BASE(Record)
+    ACCESSORS(0, ResolveFunction)
+    ACCESSORS(1, RejectFunction)
+    ACCESSORS_FINISH(2)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(RESOLVE_FUNCTION_OFFSET, SIZE)
 };
 
 class JSPromise final : public JSObject {
@@ -125,16 +121,15 @@ public:
     static JSTaggedValue PromiseResolve(JSThread *thread, const JSHandle<JSTaggedValue> &constructor,
                                         const JSHandle<JSTaggedValue> &value);
 
-    static constexpr size_t PROMISE_STATE_OFFSET = JSObject::SIZE;
-    ACCESSORS(PromiseState, PROMISE_STATE_OFFSET, PROMISE_RESULT_OFFSET);
-    ACCESSORS(PromiseResult, PROMISE_RESULT_OFFSET, PROMISE_FULFILL_REACTIONS_OFFSET);
-    ACCESSORS(PromiseFulfillReactions, PROMISE_FULFILL_REACTIONS_OFFSET, PROMISE_REJECT_REACTIONS_OFFSET);
-    ACCESSORS(PromiseRejectReactions, PROMISE_REJECT_REACTIONS_OFFSET, PROMISE_IS_HANDLED_OFFSET);
-    ACCESSORS(PromiseIsHandled, PROMISE_IS_HANDLED_OFFSET, SIZE);
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, PromiseState)
+    ACCESSORS(1, PromiseResult)
+    ACCESSORS(2, PromiseFulfillReactions)
+    ACCESSORS(3, PromiseRejectReactions)
+    ACCESSORS(4, PromiseIsHandled)
+    ACCESSORS_FINISH(5)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, PROMISE_STATE_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_proxy.h b/runtime/js_proxy.h
index cb5fb73c7..c793ecf16 100644
--- a/runtime/js_proxy.h
+++ b/runtime/js_proxy.h
@@ -88,15 +88,14 @@ public:
         JSThread *thread, const JSHandle<JSProxy> &proxy, uint32_t argc, const JSTaggedType argv[],
         const JSHandle<JSTaggedValue> &new_target);
 
-    static constexpr size_t METHOD_OFFSET = ECMAObject::SIZE;
-    SET_GET_NATIVE_FIELD(Method, JSMethod, METHOD_OFFSET, TARGET_OFFSET)
-    ACCESSORS(Target, TARGET_OFFSET, HANDLER_OFFSET)
+    ACCESSORS_BASE(ECMAObject)
+    ACCESSORS(0, Target)
+    ACCESSORS(1, Handler)
+    ACCESSORS_NATIVE_FIELD(2, Method, JSMethod)
+    ACCESSORS_FINISH(3)
 
-    ACCESSORS(Handler, HANDLER_OFFSET, SIZE)
     bool IsArray(JSThread *thread) const;
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(TARGET_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 
diff --git a/runtime/js_realm.h b/runtime/js_realm.h
index 7387045a1..293290700 100644
--- a/runtime/js_realm.h
+++ b/runtime/js_realm.h
@@ -26,11 +26,11 @@ public:
         return static_cast<JSRealm *>(object);
     }
 
-    static constexpr size_t VALUE_OFFSET = JSObject::SIZE;
-    ACCESSORS(Value, VALUE_OFFSET, GLOBAL_ENV_OFFSET)
-    ACCESSORS(GlobalEnv, GLOBAL_ENV_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Value)
+    ACCESSORS(1, GlobalEnv)
+    ACCESSORS_FINISH(2)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, VALUE_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_regexp.h b/runtime/js_regexp.h
index 56db1ef12..e4f6a757a 100644
--- a/runtime/js_regexp.h
+++ b/runtime/js_regexp.h
@@ -26,15 +26,14 @@ class JSRegExp : public JSObject {
 public:
     CAST_CHECK(JSRegExp, IsJSRegExp);
 
-    static constexpr size_t LAST_INDEX_OFFSET = JSObject::SIZE;
-    ACCESSORS(LastIndex, LAST_INDEX_OFFSET, REGEXP_BYTE_CODE_OFFSET);
-    ACCESSORS(ByteCodeBuffer, REGEXP_BYTE_CODE_OFFSET, ORIGINAL_SOURCE_OFFSET)
-    ACCESSORS(OriginalSource, ORIGINAL_SOURCE_OFFSET, ORIGINAL_FLAGS_OFFSET)
-    ACCESSORS(OriginalFlags, ORIGINAL_FLAGS_OFFSET, GROUP_NAME_OFFSET)
-    ACCESSORS(GroupName, GROUP_NAME_OFFSET, LENGTH_OFFSET)
-    ACCESSORS(Length, LENGTH_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LAST_INDEX_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, LastIndex)
+    ACCESSORS(1, ByteCodeBuffer)
+    ACCESSORS(2, OriginalSource)
+    ACCESSORS(3, OriginalFlags)
+    ACCESSORS(4, GroupName)
+    ACCESSORS(5, Length)
+    ACCESSORS_FINISH(6)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_regexp_iterator.h b/runtime/js_regexp_iterator.h
index 994d948f2..dd1fc3ba6 100644
--- a/runtime/js_regexp_iterator.h
+++ b/runtime/js_regexp_iterator.h
@@ -31,11 +31,11 @@ public:
 
     static JSTaggedValue Next(EcmaRuntimeCallInfo *argv);
 
-    static constexpr size_t ITERATING_REGEXP_OFFSET = JSObject::SIZE;
-    ACCESSORS(IteratingRegExp, ITERATING_REGEXP_OFFSET, ITERATED_STRING_OFFSET);
-    ACCESSORS(IteratedString, ITERATED_STRING_OFFSET, BIT_FIELD_OFFSET);
-    ACCESSORS_BIT_FIELD(BitField, BIT_FIELD_OFFSET, LAST_OFFSET)
-    DEFINE_ALIGN_SIZE(LAST_OFFSET);
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IteratingRegExp)
+    ACCESSORS(1, IteratedString)
+    ACCESSORS_BIT_FIELD(2, BitField)
+    ACCESSORS_FINISH(3)
 
     // define BitField
     static constexpr size_t REGEXP_GLOBAL_BITS = 1;
@@ -45,8 +45,6 @@ public:
     NEXT_BIT_FIELD(BitField, Unicode, bool, REGEXP_UNICODE_BITS, Global)
     NEXT_BIT_FIELD(BitField, Done, bool, REGEXP_DONE_BITS, Unicode)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATING_REGEXP_OFFSET, BIT_FIELD_OFFSET)
-
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_relative_time_format.h b/runtime/js_relative_time_format.h
index 529d8ea96..95c9096a1 100644
--- a/runtime/js_relative_time_format.h
+++ b/runtime/js_relative_time_format.h
@@ -38,19 +38,16 @@ class JSRelativeTimeFormat : public JSObject {
 public:
     CAST_CHECK(JSRelativeTimeFormat, IsJSRelativeTimeFormat);
 
-    static constexpr size_t LOCALE_OFFSET = JSObject::SIZE;
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Locale)
+    ACCESSORS(1, InitializedRelativeTimeFormat)
+    ACCESSORS(2, NumberingSystem)
+    ACCESSORS(3, Style)
+    ACCESSORS(4, Numeric)
+    ACCESSORS(5, AvailableLocales)
+    ACCESSORS(6, IcuField)  // icu field
+    ACCESSORS_FINISH(7)
 
-    ACCESSORS(Locale, LOCALE_OFFSET, INITIALIZED_RELATIVE_TIME_FORMAT)
-    ACCESSORS(InitializedRelativeTimeFormat, INITIALIZED_RELATIVE_TIME_FORMAT, NUMBERING_SYSTEM_OFFSET)
-    ACCESSORS(NumberingSystem, NUMBERING_SYSTEM_OFFSET, STYLE_OFFSET)
-    ACCESSORS(Style, STYLE_OFFSET, NUMERIC_OFFSET)
-    ACCESSORS(Numeric, NUMERIC_OFFSET, AVAILABLE_LOCALES_OFFSET)
-    ACCESSORS(AvailableLocales, AVAILABLE_LOCALES_OFFSET, ICU_FIELD_OFFSET)
-
-    // icu field
-    ACCESSORS(IcuField, ICU_FIELD_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LOCALE_OFFSET, SIZE)
     DECL_DUMP()
 
     // 14.1.1 InitializeRelativeTimeFormat ( relativeTimeFormat, locales, options )
diff --git a/runtime/js_set.h b/runtime/js_set.h
index 33704fc69..0e478d88a 100644
--- a/runtime/js_set.h
+++ b/runtime/js_set.h
@@ -43,10 +43,10 @@ public:
 
     JSTaggedValue GetValue(int entry) const;
 
-    static constexpr size_t LINKED_SET_OFFSET = JSObject::SIZE;
-    ACCESSORS(LinkedSet, LINKED_SET_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, LinkedSet)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LINKED_SET_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_set_iterator.h b/runtime/js_set_iterator.h
index 2c12080dc..6746b59a8 100644
--- a/runtime/js_set_iterator.h
+++ b/runtime/js_set_iterator.h
@@ -31,12 +31,11 @@ public:
 
     void Update(const JSThread *thread);
 
-    static constexpr size_t ITERATED_SET_OFFSET = JSObject::SIZE;
-    ACCESSORS(IteratedSet, ITERATED_SET_OFFSET, NEXT_INDEX_OFFSET);
-    ACCESSORS(NextIndex, NEXT_INDEX_OFFSET, ITERATION_KIND_OFFSET);
-    ACCESSORS(IterationKind, ITERATION_KIND_OFFSET, SIZE);
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATED_SET_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IteratedSet)
+    ACCESSORS(1, NextIndex)
+    ACCESSORS(2, IterationKind)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
 };
diff --git a/runtime/js_string_iterator.h b/runtime/js_string_iterator.h
index 1873c740b..95e413a1f 100644
--- a/runtime/js_string_iterator.h
+++ b/runtime/js_string_iterator.h
@@ -28,11 +28,11 @@ public:
 
     static JSHandle<JSStringIterator> CreateStringIterator(const JSThread *thread, const JSHandle<EcmaString> &string);
 
-    static constexpr size_t ITERATED_STRING_OFFSET = JSObject::SIZE;
-    ACCESSORS(IteratedString, ITERATED_STRING_OFFSET, STRING_ITERATOR_NEXT_INDEX_OFFSET)
-    ACCESSORS(StringIteratorNextIndex, STRING_ITERATOR_NEXT_INDEX_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, IteratedString)
+    ACCESSORS(1, StringIteratorNextIndex)
+    ACCESSORS_FINISH(2)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, ITERATED_STRING_OFFSET, SIZE)
     DECL_DUMP()
 };
 }  // namespace panda::ecmascript
diff --git a/runtime/js_symbol.h b/runtime/js_symbol.h
index c541d3483..3ba598b87 100644
--- a/runtime/js_symbol.h
+++ b/runtime/js_symbol.h
@@ -147,14 +147,13 @@ public:
     }
 
 public:
-    static constexpr size_t HASHFIELD_OFFSET = TaggedObjectSize();
-    ACCESSORS(HashField, HASHFIELD_OFFSET, FLAGS_OFFSET)
-    ACCESSORS(Flags, FLAGS_OFFSET, DESCRIPTION_OFFSET)
-    ACCESSORS(Description, DESCRIPTION_OFFSET, SIZE)
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS(0, HashField)
+    ACCESSORS(1, Flags)
+    ACCESSORS(2, Description)
+    ACCESSORS_FINISH(3)
 
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT(HASHFIELD_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_NAME_H
diff --git a/runtime/js_typed_array.h b/runtime/js_typed_array.h
index 043596dbe..3056fa738 100644
--- a/runtime/js_typed_array.h
+++ b/runtime/js_typed_array.h
@@ -84,17 +84,17 @@ public:
                                          JSTaggedValue index, const JSHandle<JSTaggedValue> &value);
 
     static constexpr size_t VIEWED_ARRAY_BUFFER_OFFSET = JSObject::SIZE;
-    ACCESSORS(ViewedArrayBuffer, VIEWED_ARRAY_BUFFER_OFFSET, TYPED_ARRAY_NAME_OFFSET)
-    ACCESSORS(TypedArrayName, TYPED_ARRAY_NAME_OFFSET, BYTE_LENGTH_OFFSET)
-    ACCESSORS(ByteLength, BYTE_LENGTH_OFFSET, BYTE_OFFSET_OFFSET)
-    ACCESSORS(ByteOffset, BYTE_OFFSET_OFFSET, ARRAY_LENGTH_OFFSET)
-    ACCESSORS(ArrayLength, ARRAY_LENGTH_OFFSET, CONTENT_TYPE_OFFSET)
-    SET_GET_PRIMITIVE_FIELD(ContentType, ContentType, CONTENT_TYPE_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, ViewedArrayBuffer)
+    ACCESSORS(1, TypedArrayName)
+    ACCESSORS(2, ByteLength)
+    ACCESSORS(3, ByteOffset)
+    ACCESSORS(4, ArrayLength)
+    ACCESSORS_PRIMITIVE_FIELD(5, ContentType, ContentType)
+    ACCESSORS_FINISH(6)
 
     static const uint32_t MAX_TYPED_ARRAY_INDEX = MAX_ELEMENT_INDEX;
     DECL_DUMP()
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, VIEWED_ARRAY_BUFFER_OFFSET, SIZE)
 };
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_JS_TYPED_ARRAY_H
diff --git a/runtime/js_weak_container.h b/runtime/js_weak_container.h
index 358d8dd52..43d5fcd12 100644
--- a/runtime/js_weak_container.h
+++ b/runtime/js_weak_container.h
@@ -29,10 +29,10 @@ public:
         return static_cast<JSWeakRef *>(object);
     }
 
-    static constexpr size_t REFERENT_OFFSET = JSObject::SIZE;
-    ACCESSORS(Referent, REFERENT_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, Referent)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, REFERENT_OFFSET, SIZE)
     DECL_DUMP()
 };
 
@@ -55,10 +55,10 @@ public:
 
     int GetSize() const;
 
-    static constexpr size_t LINKED_MAP_OFFSET = JSObject::SIZE;
-    ACCESSORS(LinkedMap, LINKED_MAP_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, LinkedMap)
+    ACCESSORS_FINISH(1)
 
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LINKED_MAP_OFFSET, SIZE)
     DECL_DUMP()
 };
 
@@ -77,10 +77,9 @@ public:
 
     int GetSize() const;
 
-    static constexpr size_t LINKED_SET_OFFSET = JSObject::SIZE;
-    ACCESSORS(LinkedSet, LINKED_SET_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT_FOR_JS_OBJECT(JSObject, LINKED_SET_OFFSET, SIZE)
+    ACCESSORS_BASE(JSObject)
+    ACCESSORS(0, LinkedSet)
+    ACCESSORS_FINISH(1)
 
     DECL_DUMP()
 };
diff --git a/runtime/mem/ecma_reference_processor.cpp b/runtime/mem/ecma_reference_processor.cpp
index 656d91d19..71475a5ec 100644
--- a/runtime/mem/ecma_reference_processor.cpp
+++ b/runtime/mem/ecma_reference_processor.cpp
@@ -141,7 +141,7 @@ void EcmaReferenceProcessor::ProcessReferences([[maybe_unused]] bool concurrent,
             auto *ref = static_cast<panda::ecmascript::JSWeakRef *>(reference);
             ASSERT(ref->GetReferent().IsHeapObject());
             if (!gc_->IsMarked(ref->GetReferent().GetRawHeapObject())) {
-                ObjectAccessor::SetDynValueWithoutBarrier(ref, panda::ecmascript::JSWeakRef::REFERENT_OFFSET,
+                ObjectAccessor::SetDynValueWithoutBarrier(ref, panda::ecmascript::JSWeakRef::GetReferentOffset(),
                                                           panda::ecmascript::JSTaggedValue::Undefined().GetRawData());
             }
         } else if (object_type == panda::ecmascript::JSType::LINKED_HASH_MAP) {
diff --git a/runtime/mem/object_xray-inl.h b/runtime/mem/object_xray-inl.h
index 2fc91233e..b62ef3e9e 100644
--- a/runtime/mem/object_xray-inl.h
+++ b/runtime/mem/object_xray-inl.h
@@ -70,268 +70,6 @@ void ObjectXRay::VisitVMRoots(const RootVisitor &visitor, const RootRangeVisitor
     ecma_vm_->Iterate(visitor);
     ecma_vm_->GetJSThread()->Iterate(visitor, range_visitor);
 }
-
-template <GCType gc_type>
-// NOLINTNEXTLINE(readability-function-size)
-void ObjectXRay::VisitObjectBody(TaggedObject *object, JSHClass *klass, const EcmaObjectRangeVisitor &visitor)
-{
-    // handle body
-    JSType type = klass->GetObjectType();
-    switch (type) {
-        case JSType::JS_OBJECT:
-        case JSType::JS_ERROR:
-        case JSType::JS_EVAL_ERROR:
-        case JSType::JS_RANGE_ERROR:
-        case JSType::JS_REFERENCE_ERROR:
-        case JSType::JS_TYPE_ERROR:
-        case JSType::JS_URI_ERROR:
-        case JSType::JS_SYNTAX_ERROR:
-        case JSType::JS_ITERATOR:
-            JSObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_GLOBAL_OBJECT:
-            JSGlobalObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_FUNCTION_BASE:
-            JSFunctionBase::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_FUNCTION:
-            JSFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_GENERATOR_FUNCTION:
-            JSGeneratorFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROXY_REVOC_FUNCTION:
-            JSProxyRevocFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROMISE_REACTIONS_FUNCTION:
-            JSPromiseReactionsFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROMISE_EXECUTOR_FUNCTION:
-            JSPromiseExecutorFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROMISE_ALL_RESOLVE_ELEMENT_FUNCTION:
-            JSPromiseAllResolveElementFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_FUNCTION:
-            JSAsyncFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_GENERATOR_FUNCTION:
-            JSAsyncGeneratorFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_AWAIT_STATUS_FUNCTION:
-            JSAsyncAwaitStatusFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_GENERATOR_RESOLVE_NEXT_FUNCTION:
-            JSAsyncGeneratorResolveNextFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_FROM_SYNC_ITERATOR_VALUE_UNWRAP_FUNCTION:
-            JSAsyncFromSyncIteratorValueUnwrapFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_REG_EXP:
-            JSRegExp::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_SET:
-            JSSet::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_MAP:
-            JSMap::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_WEAK_MAP:
-            JSWeakMap::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_WEAK_SET:
-            JSWeakSet::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_DATE:
-            JSDate::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_FORIN_ITERATOR:
-            JSForInIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_MAP_ITERATOR:
-            JSMapIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_SET_ITERATOR:
-            JSSetIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_REG_EXP_ITERATOR:
-            JSRegExpIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ARRAY_ITERATOR:
-            JSArrayIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_STRING_ITERATOR:
-            JSStringIterator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ARRAY_BUFFER:
-            JSArrayBuffer::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROMISE:
-            JSPromise::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_DATA_VIEW:
-            JSDataView::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_BOUND_FUNCTION:
-            JSBoundFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ARGUMENTS:
-            JSArguments::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_GENERATOR_OBJECT:
-            JSGeneratorObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_GENERATOR_OBJECT:
-            JSAsyncGeneratorObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_FROM_SYNC_ITERATOR_OBJECT:
-            JSAsyncFromSyncIteratorObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ASYNC_FUNC_OBJECT:
-            JSAsyncFuncObject::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_ARRAY:
-            JSArray::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_TYPED_ARRAY:
-        case JSType::JS_INT8_ARRAY:
-        case JSType::JS_UINT8_ARRAY:
-        case JSType::JS_UINT8_CLAMPED_ARRAY:
-        case JSType::JS_INT16_ARRAY:
-        case JSType::JS_UINT16_ARRAY:
-        case JSType::JS_INT32_ARRAY:
-        case JSType::JS_UINT32_ARRAY:
-        case JSType::JS_FLOAT32_ARRAY:
-        case JSType::JS_FLOAT64_ARRAY:
-        case JSType::JS_BIGINT64_ARRAY:
-        case JSType::JS_BIGUINT64_ARRAY:
-            JSTypedArray::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PRIMITIVE_REF:
-            JSPrimitiveRef::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PROXY:
-            JSProxy::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::HCLASS:
-            // semi gc is not needed to visit dyn class
-            if (gc_type != GCType::SEMI_GC) {
-                JSHClass::Cast(object)->VisitRangeSlot(visitor);
-            }
-            break;
-        case JSType::STRING:
-        case JSType::BIGINT:
-        case JSType::JS_NATIVE_POINTER:
-            break;
-        case JSType::TAGGED_ARRAY:
-        case JSType::LINKED_HASH_SET:
-        case JSType::LINKED_HASH_MAP:
-        case JSType::TAGGED_DICTIONARY:
-        case JSType::TEMPLATE_MAP:
-            TaggedArray::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::GLOBAL_ENV:
-            GlobalEnv::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::ACCESSOR_DATA:
-        case JSType::INTERNAL_ACCESSOR:
-            AccessorData::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::SYMBOL:
-            JSSymbol::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_GENERATOR_CONTEXT:
-            GeneratorContext::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROTOTYPE_HANDLER:
-            PrototypeHandler::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::TRANSITION_HANDLER:
-            TransitionHandler::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROPERTY_BOX:
-            PropertyBox::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROTO_CHANGE_MARKER:
-            break;
-        case JSType::PROTOTYPE_INFO:
-            ProtoChangeDetails::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROMISE_CAPABILITY:
-            PromiseCapability::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROMISE_RECORD:
-            PromiseRecord::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::RESOLVING_FUNCTIONS_RECORD:
-            ResolvingFunctionsRecord::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROMISE_REACTIONS:
-            PromiseReaction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROMISE_ITERATOR_RECORD:
-            PromiseIteratorRecord::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::MICRO_JOB_QUEUE:
-            job::MicroJobQueue::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PENDING_JOB:
-            job::PendingJob::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::FUNCTION_EXTRA_INFO:
-            JSFunctionExtraInfo::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::COMPLETION_RECORD:
-            CompletionRecord::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::ECMA_MODULE:
-            EcmaModule::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::PROGRAM:
-            Program::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::LEXICAL_FUNCTION:
-            LexicalFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_INTL:
-            JSIntl::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_NUMBER_FORMAT:
-            JSNumberFormat::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_LOCALE:
-            JSLocale::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_DATE_TIME_FORMAT:
-            JSDateTimeFormat::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_RELATIVE_TIME_FORMAT:
-            JSRelativeTimeFormat::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_INTL_BOUND_FUNCTION:
-            JSIntlBoundFunction::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_REALM:
-            JSRealm::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_COLLATOR:
-            JSCollator::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_PLURAL_RULES:
-            JSPluralRules::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::CLASS_INFO_EXTRACTOR:
-            ClassInfoExtractor::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        case JSType::JS_QUEUE:
-        case JSType::JS_ARRAY_LIST:
-            JSArrayList::Cast(object)->VisitRangeSlot(visitor);
-            break;
-        default:
-            UNREACHABLE();
-    }
-}
 }  // namespace panda::ecmascript
 
 #endif  // ECMASCRIPT_MEM_HEAP_ROOTS_INL_H
diff --git a/runtime/mem/object_xray.h b/runtime/mem/object_xray.h
index c980a38db..89ad5cf9d 100644
--- a/runtime/mem/object_xray.h
+++ b/runtime/mem/object_xray.h
@@ -48,8 +48,6 @@ public:
     ~ObjectXRay() = default;
 
     inline void VisitVMRoots(const RootVisitor &visitor, const RootRangeVisitor &range_visitor) const;
-    template <GCType GC_TYPE>
-    inline void VisitObjectBody(TaggedObject *object, JSHClass *klass, const EcmaObjectRangeVisitor &visitor);
 
     DEFAULT_MOVE_SEMANTIC(ObjectXRay);
     DEFAULT_COPY_SEMANTIC(ObjectXRay);
diff --git a/runtime/object_factory.cpp b/runtime/object_factory.cpp
index b89d90349..6490363f8 100644
--- a/runtime/object_factory.cpp
+++ b/runtime/object_factory.cpp
@@ -572,7 +572,7 @@ JSHandle<JSForInIterator> ObjectFactory::NewJSForinIterator(const JSHandle<JSTag
 JSHandle<JSHClass> ObjectFactory::CreateJSRegExpInstanceClass(JSHandle<JSTaggedValue> proto)
 {
     const GlobalEnvConstants *globalConst = thread_->GlobalConstants();
-    JSHandle<JSHClass> regexpDynclass = NewEcmaDynClass(JSRegExp::SIZE, JSType::JS_REG_EXP, proto);
+    JSHandle<JSHClass> regexpDynclass = CreateDynClass<JSRegExp>(JSType::JS_REG_EXP, proto);
 
     uint32_t fieldOrder = 0;
     JSHandle<LayoutInfo> layoutInfoHandle = CreateLayoutInfo(1);
@@ -595,7 +595,7 @@ JSHandle<JSHClass> ObjectFactory::CreateJSRegExpInstanceClass(JSHandle<JSTaggedV
 JSHandle<JSHClass> ObjectFactory::CreateJSArrayInstanceClass(JSHandle<JSTaggedValue> proto)
 {
     const GlobalEnvConstants *globalConst = thread_->GlobalConstants();
-    JSHandle<JSHClass> arrayDynclass = NewEcmaDynClass(JSArray::SIZE, JSType::JS_ARRAY, proto);
+    JSHandle<JSHClass> arrayDynclass = CreateDynClass<JSArray>(JSType::JS_ARRAY, proto);
 
     uint32_t fieldOrder = 0;
     ASSERT(JSArray::LENGTH_INLINE_PROPERTY_INDEX == fieldOrder);
@@ -624,7 +624,7 @@ JSHandle<JSHClass> ObjectFactory::CreateJSArguments()
     const GlobalEnvConstants *globalConst = thread_->GlobalConstants();
     JSHandle<JSTaggedValue> proto = env->GetObjectFunctionPrototype();
 
-    JSHandle<JSHClass> argumentsDynclass = NewEcmaDynClass(JSArguments::SIZE, JSType::JS_ARGUMENTS, proto);
+    JSHandle<JSHClass> argumentsDynclass = CreateDynClass<JSArguments>(JSType::JS_ARGUMENTS, proto);
 
     uint32_t fieldOrder = 0;
     ASSERT(JSArguments::LENGTH_INLINE_PROPERTY_INDEX == fieldOrder);
@@ -875,7 +875,7 @@ JSHandle<JSObject> ObjectFactory::NewJSObjectByConstructor(const JSHandle<JSFunc
 FreeObject *ObjectFactory::FillFreeObject(uintptr_t address, size_t size, [[maybe_unused]] RemoveSlots remove_slots)
 {
     FreeObject *object = nullptr;
-    if (size >= FreeObject::SIZE_OFFSET && size < FreeObject::SIZE) {
+    if (size >= FreeObject::GetSizeOffset() && size < FreeObject::SIZE) {
         object = reinterpret_cast<FreeObject *>(address);
         object->SetClassWithoutBarrier(free_object_with_one_field_class_);
         object->SetNext(nullptr);
@@ -884,7 +884,7 @@ FreeObject *ObjectFactory::FillFreeObject(uintptr_t address, size_t size, [[mayb
         object->SetClassWithoutBarrier(free_object_with_two_field_class_);
         object->SetAvailable(size);
         object->SetNext(nullptr);
-    } else if (size == FreeObject::NEXT_OFFSET) {
+    } else if (size == FreeObject::GetNextOffset()) {
         object = reinterpret_cast<FreeObject *>(address);
         object->SetClassWithoutBarrier(free_object_with_none_field_class_);
     } else {
@@ -931,7 +931,7 @@ void ObjectFactory::InitializeExtraProperties(const JSHandle<JSHClass> &dynclass
 JSHandle<JSObject> ObjectFactory::OrdinaryNewJSObjectCreate(const JSHandle<JSTaggedValue> &proto)
 {
     JSHandle<JSTaggedValue> protoValue(proto);
-    JSHandle<JSHClass> protoDyn = NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, protoValue);
+    JSHandle<JSHClass> protoDyn = CreateDynClass<JSObject>(JSType::JS_OBJECT, protoValue);
     JSHandle<JSObject> newObj = NewJSObject(protoDyn);
     newObj->GetJSHClass()->SetExtensible(true);
     return newObj;
@@ -958,18 +958,18 @@ JSHandle<JSFunction> ObjectFactory::NewJSFunction(const JSHandle<GlobalEnv> &env
     return NewJSFunctionByDynClass(method, dynclass, kind);
 }
 
-JSHandle<JSHClass> ObjectFactory::CreateFunctionClass(FunctionKind kind, uint32_t size, JSType type,
-                                                      const JSHandle<JSTaggedValue> &prototype)
+JSHandle<JSHClass> ObjectFactory::CreateFunctionClass(FunctionKind kind, uint32_t size, JSAccessorsMaskType native_mask,
+                                                      JSType type, const JSHandle<JSTaggedValue> &prototype)
 {
     const GlobalEnvConstants *globalConst = thread_->GlobalConstants();
     JSHandle<JSHClass> functionClass = NewEcmaDynClass(size, type, prototype, HClass::IS_CALLABLE);
+    functionClass->GetHClass()->SetNativeFieldMask(native_mask);
     {
         // FunctionKind = BASE_CONSTRUCTOR
         if (JSFunction::IsConstructorKind(kind)) {
             functionClass->SetConstructor(true);
         }
         functionClass->SetExtensible(true);
-        functionClass->GetHClass()->MarkFieldAsNative(JSFunctionBase::METHOD_OFFSET);
     }
 
     uint32_t fieldOrder = 0;
@@ -1055,13 +1055,12 @@ JSHandle<JSBoundFunction> ObjectFactory::NewJSBoundFunction(const JSHandle<JSFun
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
     JSHandle<JSTaggedValue> proto = env->GetFunctionPrototype();
     JSHandle<JSHClass> dynclass =
-        NewEcmaDynClass(JSBoundFunction::SIZE, JSType::JS_BOUND_FUNCTION, proto, HClass::IS_CALLABLE);
+        CreateDynClass<JSBoundFunction>(JSType::JS_BOUND_FUNCTION, proto, HClass::IS_CALLABLE);
 
     JSHandle<JSBoundFunction> bundleFunction = JSHandle<JSBoundFunction>::Cast(NewJSObject(dynclass));
     bundleFunction->SetBoundTarget(thread_, target);
     bundleFunction->SetBoundThis(thread_, bound_this);
     bundleFunction->SetBoundArguments(thread_, args);
-    dynclass->GetHClass()->MarkFieldAsNative(JSFunctionBase::METHOD_OFFSET);
     if (target.GetTaggedValue().IsConstructor()) {
         bundleFunction->SetConstructor(true);
     }
@@ -1177,7 +1176,7 @@ JSHandle<JSGeneratorObject> ObjectFactory::NewJSGeneratorObject(JSHandle<JSTagge
         JSHandle<GlobalEnv> realmHandle = JSObject::GetFunctionRealm(thread_, generator_function);
         proto = realmHandle->GetGeneratorPrototype();
     }
-    JSHandle<JSHClass> dynclass = NewEcmaDynClass(JSGeneratorObject::SIZE, JSType::JS_GENERATOR_OBJECT, proto);
+    JSHandle<JSHClass> dynclass = CreateDynClass<JSGeneratorObject>(JSType::JS_GENERATOR_OBJECT, proto);
     JSHandle<JSGeneratorObject> generatorObject = JSHandle<JSGeneratorObject>::Cast(NewJSObject(dynclass));
     return generatorObject;
 }
@@ -1203,8 +1202,7 @@ JSHandle<JSAsyncGeneratorObject> ObjectFactory::NewJSAsyncGeneratorObject(
         JSHandle<GlobalEnv> realmHandle = JSObject::GetFunctionRealm(thread_, async_generator_function);
         proto = realmHandle->GetAsyncGeneratorPrototype();
     }
-    JSHandle<JSHClass> dynclass =
-        NewEcmaDynClass(JSAsyncGeneratorObject::SIZE, JSType::JS_ASYNC_GENERATOR_OBJECT, proto);
+    JSHandle<JSHClass> dynclass = CreateDynClass<JSAsyncGeneratorObject>(JSType::JS_ASYNC_GENERATOR_OBJECT, proto);
     JSHandle<JSAsyncGeneratorObject> asyncgeneratorObject =
         JSHandle<JSAsyncGeneratorObject>::Cast(NewJSObject(dynclass));
     return asyncgeneratorObject;
@@ -1217,7 +1215,7 @@ JSHandle<JSAsyncFromSyncIteratorObject> ObjectFactory::NewJSAsyncFromSyncIterato
     JSHandle<JSTaggedValue> proto = env->GetAsyncFromSyncIteratorPrototype();
 
     JSHandle<JSHClass> dynclass =
-        NewEcmaDynClass(JSAsyncFromSyncIteratorObject::SIZE, JSType::JS_ASYNC_FROM_SYNC_ITERATOR_OBJECT, proto);
+        CreateDynClass<JSAsyncFromSyncIteratorObject>(JSType::JS_ASYNC_FROM_SYNC_ITERATOR_OBJECT, proto);
     JSHandle<JSAsyncFromSyncIteratorObject> asyncFromSyncIteratorObject =
         JSHandle<JSAsyncFromSyncIteratorObject>::Cast(NewJSObject(dynclass));
     return asyncFromSyncIteratorObject;
@@ -1238,7 +1236,7 @@ JSHandle<JSAsyncFuncObject> ObjectFactory::NewJSAsyncFuncObject()
 {
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
     JSHandle<JSTaggedValue> proto = env->GetInitialGenerator();
-    JSHandle<JSHClass> dynclass = NewEcmaDynClass(JSAsyncFuncObject::SIZE, JSType::JS_ASYNC_FUNC_OBJECT, proto);
+    JSHandle<JSHClass> dynclass = CreateDynClass<JSAsyncFuncObject>(JSType::JS_ASYNC_FUNC_OBJECT, proto);
     JSHandle<JSAsyncFuncObject> asyncFuncObject = JSHandle<JSAsyncFuncObject>::Cast(NewJSObject(dynclass));
     return asyncFuncObject;
 }
@@ -1568,7 +1566,7 @@ JSHandle<JSProxy> ObjectFactory::NewJSProxy(const JSHandle<JSTaggedValue> &targe
 JSHandle<JSRealm> ObjectFactory::NewJSRealm()
 {
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
-    JSHandle<JSHClass> realmEnvClass = NewEcmaDynClass(hclass_class_, GlobalEnv::SIZE, JSType::GLOBAL_ENV);
+    JSHandle<JSHClass> realmEnvClass = CreateDynClass<GlobalEnv>(hclass_class_, JSType::GLOBAL_ENV);
     JSHandle<GlobalEnv> realmEnvHandle = NewGlobalEnv(*realmEnvClass);
 
     ObtainRootClass(env);
@@ -1580,7 +1578,7 @@ JSHandle<JSRealm> ObjectFactory::NewJSRealm()
     Builtins builtins;
     builtins.Initialize(realmEnvHandle, thread_);
     JSHandle<JSTaggedValue> protoValue = thread_->GlobalConstants()->GetHandledJSRealmClass();
-    JSHandle<JSHClass> dynHandle = NewEcmaDynClass(JSRealm::SIZE, JSType::JS_REALM, protoValue);
+    JSHandle<JSHClass> dynHandle = CreateDynClass<JSRealm>(JSType::JS_REALM, protoValue);
     JSHandle<JSRealm> realm(NewJSObject(dynHandle));
     realm->SetGlobalEnv(thread_, realmEnvHandle.GetTaggedValue());
 
@@ -1982,7 +1980,7 @@ JSHandle<JSSetIterator> ObjectFactory::NewJSSetIterator(const JSHandle<JSSet> &s
 {
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
     JSHandle<JSTaggedValue> protoValue = env->GetSetIteratorPrototype();
-    JSHandle<JSHClass> dynHandle = NewEcmaDynClass(JSSetIterator::SIZE, JSType::JS_SET_ITERATOR, protoValue);
+    JSHandle<JSHClass> dynHandle = CreateDynClass<JSSetIterator>(JSType::JS_SET_ITERATOR, protoValue);
     JSHandle<JSSetIterator> iter(NewJSObject(dynHandle));
     iter->GetJSHClass()->SetExtensible(true);
     iter->SetIteratedSet(thread_, set->GetLinkedSet());
@@ -1999,8 +1997,7 @@ JSHandle<JSRegExpIterator> ObjectFactory::NewJSRegExpIterator(const JSHandle<JST
     JSHandle<JSTaggedValue> protoValue = env->GetRegExpIteratorPrototype();
     // JSHandle<JSHClass> dynHandle(thread_->GlobalConstants()->GetHandledJSRegExpIteratorClass());
     // dynHandle->SetPrototype(thread_, protoValue); // TODO(vpukhov): set prototype once
-    JSHandle<JSHClass> dynHandle = NewEcmaDynClass(JSRegExpIterator::SIZE, JSType::JS_REG_EXP_ITERATOR, protoValue);
-    dynHandle->GetHClass()->MarkFieldAsNative(JSRegExpIterator::BIT_FIELD_OFFSET);
+    JSHandle<JSHClass> dynHandle = CreateDynClass<JSRegExpIterator>(JSType::JS_REG_EXP_ITERATOR, protoValue);
     JSHandle<JSRegExpIterator> iter(NewJSObject(dynHandle));
     iter->GetJSHClass()->SetExtensible(true);
     iter->SetIteratingRegExp(thread_, matcher.GetTaggedValue());
@@ -2015,7 +2012,7 @@ JSHandle<JSMapIterator> ObjectFactory::NewJSMapIterator(const JSHandle<JSMap> &m
 {
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
     JSHandle<JSTaggedValue> protoValue = env->GetMapIteratorPrototype();
-    JSHandle<JSHClass> dynHandle = NewEcmaDynClass(JSMapIterator::SIZE, JSType::JS_MAP_ITERATOR, protoValue);
+    JSHandle<JSHClass> dynHandle = CreateDynClass<JSMapIterator>(JSType::JS_MAP_ITERATOR, protoValue);
     JSHandle<JSMapIterator> iter(NewJSObject(dynHandle));
     iter->GetJSHClass()->SetExtensible(true);
     iter->SetIteratedMap(thread_, map->GetLinkedMap());
@@ -2028,7 +2025,7 @@ JSHandle<JSArrayIterator> ObjectFactory::NewJSArrayIterator(const JSHandle<JSObj
 {
     JSHandle<GlobalEnv> env = vm_->GetGlobalEnv();
     JSHandle<JSTaggedValue> protoValue = env->GetArrayIteratorPrototype();
-    JSHandle<JSHClass> dynHandle = NewEcmaDynClass(JSArrayIterator::SIZE, JSType::JS_ARRAY_ITERATOR, protoValue);
+    JSHandle<JSHClass> dynHandle = CreateDynClass<JSArrayIterator>(JSType::JS_ARRAY_ITERATOR, protoValue);
     JSHandle<JSArrayIterator> iter(NewJSObject(dynHandle));
     iter->GetJSHClass()->SetExtensible(true);
     iter->SetIteratedArray(thread_, array);
@@ -2172,7 +2169,7 @@ JSHandle<JSHClass> ObjectFactory::CreateObjectClass(const JSHandle<TaggedArray>
         fieldOrder++;
     }
     ASSERT(fieldOrder <= PropertyAttributes::MAX_CAPACITY_OF_PROPERTIES);
-    JSHandle<JSHClass> objClass = NewEcmaDynClass(JSObject::SIZE, JSType::JS_OBJECT, fieldOrder);
+    JSHandle<JSHClass> objClass = CreateDynClass<JSObject>(JSType::JS_OBJECT, fieldOrder);
     objClass->SetPrototype(thread_, proto.GetTaggedValue());
     {
         objClass->SetExtensible(true);
diff --git a/runtime/object_factory.h b/runtime/object_factory.h
index 253d95d43..5490ac660 100644
--- a/runtime/object_factory.h
+++ b/runtime/object_factory.h
@@ -385,10 +385,30 @@ public:
     // used for creating Function
     JSHandle<JSObject> NewJSObject(const JSHandle<JSHClass> &jshclass);
 
+    // used for creating jshclass in GlobalEnv, EcmaVM
+    template <typename T>
+    inline JSHandle<JSHClass> CreateDynClass(JSHClass *hclass, JSType type, uint32_t flags = 0,
+                                             uint32_t inlined_props = JSHClass::DEFAULT_CAPACITY_OF_IN_OBJECTS)
+    {
+        JSHandle<JSHClass> cls = NewEcmaDynClass(hclass, T::SIZE, type, flags, inlined_props);
+        if constexpr (T::NATIVE_FIELDS_MASK != 0) {
+            cls->GetHClass()->SetNativeFieldMask(T::NATIVE_FIELDS_MASK);
+        }
+        return cls;
+    }
+    // used for creating jshclass in Builtins, Function, Class_Linker
+    template <typename T>
+    inline JSHandle<JSHClass> CreateDynClass(JSType type, const JSHandle<JSTaggedValue> &prototype, uint32_t flags = 0)
+    {
+        JSHandle<JSHClass> cls = NewEcmaDynClass(T::SIZE, type, prototype, flags);
+        if constexpr (T::NATIVE_FIELDS_MASK != 0) {
+            cls->GetHClass()->SetNativeFieldMask(T::NATIVE_FIELDS_MASK);
+        }
+        return cls;
+    }
     // used for creating jshclass in GlobalEnv, EcmaVM
     JSHandle<JSHClass> NewEcmaDynClass(JSHClass *hclass, uint32_t size, JSType type, uint32_t flags = 0,
                                        uint32_t inlined_props = JSHClass::DEFAULT_CAPACITY_OF_IN_OBJECTS);
-
     // used for creating jshclass in Builtins, Function, Class_Linker
     JSHandle<JSHClass> NewEcmaDynClass(uint32_t size, JSType type, const JSHandle<JSTaggedValue> &prototype,
                                        uint32_t flags = 0);
@@ -463,6 +483,17 @@ private:
 
     void NewObjectHook() const;
 
+    // used for creating jshclass in Builtins, Function, Class_Linker
+    template <typename T>
+    inline JSHandle<JSHClass> CreateDynClass(JSType type,
+                                             uint32_t inlined_props = JSHClass::DEFAULT_CAPACITY_OF_IN_OBJECTS)
+    {
+        JSHandle<JSHClass> cls = NewEcmaDynClass(T::SIZE, type, inlined_props);
+        if constexpr (T::NATIVE_FIELDS_MASK != 0) {
+            cls->GetHClass()->SetNativeFieldMask(T::NATIVE_FIELDS_MASK);
+        }
+        return cls;
+    }
     // used for creating jshclass in Builtins, Function, Class_Linker
     JSHandle<JSHClass> NewEcmaDynClass(uint32_t size, JSType type,
                                        uint32_t inlined_props = JSHClass::DEFAULT_CAPACITY_OF_IN_OBJECTS);
@@ -475,8 +506,15 @@ private:
     // used for creating Function
     JSHandle<JSFunction> NewJSFunction(const JSHandle<GlobalEnv> &env, const JSHandle<JSHClass> &dyn_klass);
     JSHandle<JSHClass> CreateObjectClass(const JSHandle<TaggedArray> &properties, size_t length);
-    JSHandle<JSHClass> CreateFunctionClass(FunctionKind kind, uint32_t size, JSType type,
-                                           const JSHandle<JSTaggedValue> &prototype);
+
+    template <typename T>
+    inline JSHandle<JSHClass> CreateFunctionClass(FunctionKind kind, JSType type,
+                                                  const JSHandle<JSTaggedValue> &prototype)
+    {
+        return CreateFunctionClass(kind, T::SIZE, T::NATIVE_FIELDS_MASK, type, prototype);
+    }
+    JSHandle<JSHClass> CreateFunctionClass(FunctionKind kind, uint32_t size, JSAccessorsMaskType native_mask,
+                                           JSType type, const JSHandle<JSTaggedValue> &prototype);
 
     // used for creating ref.prototype in buildins, such as Number.prototype
     JSHandle<JSPrimitiveRef> NewJSPrimitiveRef(const JSHandle<JSHClass> &dyn_klass,
diff --git a/runtime/object_wrapper.h b/runtime/object_wrapper.h
index 6e95c78f9..da85b20d1 100644
--- a/runtime/object_wrapper.h
+++ b/runtime/object_wrapper.h
@@ -19,10 +19,9 @@ public:
         return static_cast<ObjectWrapper *>(object);
     }
 
-    static constexpr size_t VALUE_OFFSET = TaggedObject::TaggedObjectSize();
-    ACCESSORS(Value, VALUE_OFFSET, SIZE)
-
-    DECL_VISIT_OBJECT(VALUE_OFFSET, SIZE)
+    ACCESSORS_START(TaggedObject::TaggedObjectSize())
+    ACCESSORS(0, Value)
+    ACCESSORS_FINISH(1)
 };
 }  // namespace panda::ecmascript
 #endif  // PANDA_RUNTIME_ECMASCRIPT_WRAPPER_OBJECT_H
diff --git a/runtime/record.h b/runtime/record.h
index 9bfaee1ee..a83e5838a 100644
--- a/runtime/record.h
+++ b/runtime/record.h
@@ -16,12 +16,14 @@
 #ifndef ECMASCRIPT_RECORD_H
 #define ECMASCRIPT_RECORD_H
 
+#include "plugins/ecmascript/runtime/ecma_macros.h"
 #include "plugins/ecmascript/runtime/mem/tagged_object.h"
 
 namespace panda::ecmascript {
 class Record : public TaggedObject {
 public:
     static constexpr size_t SIZE = TaggedObjectSize();
+    static constexpr JSAccessorsMaskType NATIVE_FIELDS_MASK = 0;
 };
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_RECORD_H
diff --git a/runtime/tagged_array.h b/runtime/tagged_array.h
index 1881e68a8..c84fccfec 100644
--- a/runtime/tagged_array.h
+++ b/runtime/tagged_array.h
@@ -82,14 +82,15 @@ public:
     }
     inline void Trim(JSThread *thread, uint32_t new_length);
 
-    inline size_t GetElementOffset(uint32_t idx) const
+    static inline constexpr size_t GetElementOffset(uint32_t idx)
     {
         return DATA_OFFSET + idx * JSTaggedValue::TaggedTypeSize();
     }
 
-    static constexpr size_t LENGTH_OFFSET = TaggedObjectSize();
-    SET_GET_PRIMITIVE_FIELD(Length, uint32_t, LENGTH_OFFSET, DATA_OFFSET);
-    static constexpr size_t SIZE = DATA_OFFSET;  // Empty Array size
+    ACCESSORS_START(TaggedObjectSize())
+    ACCESSORS_PRIMITIVE_FIELD(0, Length, uint32_t);
+    ACCESSORS_FINISH(1)
+    static constexpr size_t DATA_OFFSET = SIZE;  // Empty Array size
 
     DECL_VISIT_ARRAY(DATA_OFFSET, GetLength());
 
@@ -97,7 +98,8 @@ private:
     friend class ObjectFactory;
 };
 
-static_assert(TaggedArray::LENGTH_OFFSET == sizeof(TaggedObject));
-static_assert((TaggedArray::DATA_OFFSET % GetAlignmentInBytes(TAGGED_OBJECT_ALIGNMENT)) == 0);
+static_assert(TaggedArray::GetLengthOffset() == coretypes::Array::GetLengthOffset());
+static_assert(TaggedArray::GetElementOffset(0) == coretypes::Array::GetDataOffset());
+static_assert((TaggedArray::GetElementOffset(0) % GetAlignmentInBytes(TAGGED_OBJECT_ALIGNMENT)) == 0);
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_TAGGED_ARRAY_H
diff --git a/tests/runtime/mem/object_helpers_test.cpp b/tests/runtime/mem/object_helpers_test.cpp
index c9245f6aa..65827d6c0 100644
--- a/tests/runtime/mem/object_helpers_test.cpp
+++ b/tests/runtime/mem/object_helpers_test.cpp
@@ -46,6 +46,7 @@ public:
         initial_dyn_class_ = factory_->NewEcmaDynClassClass(nullptr, JSHClass::SIZE, JSType::HCLASS);
         JSHClass *dynclass = reinterpret_cast<JSHClass *>(initial_dyn_class_.GetTaggedValue().GetTaggedObject());
         dynclass->SetClass(dynclass);
+        dynclass->GetHClass()->SetNativeFieldMask(JSHClass::NATIVE_FIELDS_MASK);
     }
 
     ~DynamicObjectHelpersTest()
@@ -56,7 +57,7 @@ public:
 
     JSHandle<JSHClass> NewDynClass()
     {
-        return factory_->NewEcmaDynClass(*initial_dyn_class_, JSHClass::SIZE, JSType::HCLASS, HClass::HCLASS);
+        return factory_->CreateDynClass<JSHClass>(*initial_dyn_class_, JSType::HCLASS, HClass::HCLASS);
     }
 
 protected:
@@ -88,13 +89,13 @@ TEST_F(DynamicObjectHelpersTest, TestDynClass)
     hclass->SetEnumCache(thread_, enum_cache);
 
     PandaVector<std::pair<ObjectHeader *, size_t>> objects_seen = {
-        {proto.GetObject<ObjectHeader>(), JSHClass::PROTOTYPE_OFFSET},
-        {attributes.GetObject<ObjectHeader>(), JSHClass::LAYOUT_OFFSET},
-        {transitions.GetObject<ObjectHeader>(), JSHClass::TRANSTIONS_OFFSET},
-        {parent.GetObject<ObjectHeader>(), JSHClass::PARENT_OFFSET},
-        {proto_changed_cell.GetObject<ObjectHeader>(), JSHClass::VALIDITY_CELL_OFFSET},
-        {proto_change_details.GetObject<ObjectHeader>(), JSHClass::PROTOTYPE_INFO_OFFSET},
-        {enum_cache.GetObject<ObjectHeader>(), JSHClass::ENUM_CACHE_OFFSET}};
+        {proto.GetObject<ObjectHeader>(), JSHClass::GetProtoOffset()},
+        {attributes.GetObject<ObjectHeader>(), JSHClass::GetLayoutOffset()},
+        {transitions.GetObject<ObjectHeader>(), JSHClass::GetTransitionsOffset()},
+        {parent.GetObject<ObjectHeader>(), JSHClass::GetParentOffset()},
+        {proto_changed_cell.GetObject<ObjectHeader>(), JSHClass::GetProtoChangeMarkerOffset()},
+        {proto_change_details.GetObject<ObjectHeader>(), JSHClass::GetProtoChangeDetailsOffset()},
+        {enum_cache.GetObject<ObjectHeader>(), JSHClass::GetEnumCacheOffset()}};
     auto handler = [&objects_seen]([[maybe_unused]] ObjectHeader *obj, ObjectHeader *field, uint32_t offset,
                                    [[maybe_unused]] bool is_volatile) {
         auto it =
diff --git a/tests/runtime/napi/jsnapi_tests.cpp b/tests/runtime/napi/jsnapi_tests.cpp
index 8b8956210..c5dd81e9a 100644
--- a/tests/runtime/napi/jsnapi_tests.cpp
+++ b/tests/runtime/napi/jsnapi_tests.cpp
@@ -816,7 +816,7 @@ TEST_F(JSNApiTests, DISABLED_InheritPrototype_004)  // TODO(vpukhov)
     JSHandle<JSTaggedValue> funcFuncPrototypeValue(funcFuncPrototype);
 
     JSHandle<JSHClass> funcFuncProtoIntanceDynclass =
-        factory->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION, funcFuncPrototypeValue);
+        factory->CreateDynClass<JSFunction>(JSType::JS_FUNCTION, funcFuncPrototypeValue);
     // new with NewJSFunctionByDynClass::function DynClass
     JSHandle<JSFunction> protoFunc =
         factory->NewJSFunctionByDynClass(ctor, funcFuncProtoIntanceDynclass, FunctionKind::BUILTIN_CONSTRUCTOR);
@@ -833,7 +833,7 @@ TEST_F(JSNApiTests, DISABLED_InheritPrototype_004)  // TODO(vpukhov)
     JSHandle<JSTaggedValue> funcFuncNoProtoPrototypeValue(funcFuncNoProtoPrototype);
 
     JSHandle<JSHClass> funcFuncNoProtoProtoIntanceDynclass =
-        factory->NewEcmaDynClass(JSFunction::SIZE, JSType::JS_FUNCTION, funcFuncNoProtoPrototypeValue);
+        factory->CreateDynClass<JSFunction>(JSType::JS_FUNCTION, funcFuncNoProtoPrototypeValue);
     // new with NewJSFunctionByDynClass::function DynClass
     JSHandle<JSFunction> noProtoFunc =
         factory->NewJSFunctionByDynClass(ctor, funcFuncNoProtoProtoIntanceDynclass, FunctionKind::BUILTIN_CONSTRUCTOR);
-- 
Gitee


From 1a354e1c9da69d4dfb0e89997d25fa79674ac683 Mon Sep 17 00:00:00 2001
From: Vsevolod Pukhov <pukhov.vsevolod@huawei-partners.com>
Date: Tue, 18 Oct 2022 13:56:23 +0300
Subject: [PATCH 2/2] Bugfix for object trimming while concurrent marking

Signed-off-by: Vsevolod Pukhov <pukhov.vsevolod@huawei-partners.com>
---
 runtime/free_object.h            | 27 +++++++++++++++++++++------
 runtime/global_env_constants.cpp | 22 ++++++++++++----------
 runtime/js_hclass.cpp            | 18 +++++++++++++++---
 runtime/js_hclass.h              |  1 -
 runtime/js_object.cpp            | 29 +++++++++++++++++++++++------
 runtime/object_factory.cpp       |  8 ++++----
 6 files changed, 75 insertions(+), 30 deletions(-)

diff --git a/runtime/free_object.h b/runtime/free_object.h
index 1660e5c5c..c38456d22 100644
--- a/runtime/free_object.h
+++ b/runtime/free_object.h
@@ -49,7 +49,7 @@ public:
     inline void SetAvailable(uint32_t size)
     {
         if (size >= SIZE) {
-            SetSize(size);
+            SetTaggedSize(JSTaggedValue::PackPrimitiveData(size));
         }
     }
 
@@ -59,7 +59,7 @@ public:
         if (hclass != nullptr && (hclass->IsFreeObjectWithOneField() || hclass->IsFreeObjectWithNoneField())) {
             return hclass->GetObjectSize();
         }
-        return GetSize();
+        return JSTaggedValue::UnpackPrimitiveData(GetTaggedSize());
     }
 
     inline bool IsFreeObject() const
@@ -69,14 +69,29 @@ public:
                                        hclass->IsFreeObjectWithNoneField());
     }
 
+    inline FreeObject *GetNext()
+    {
+        auto uptr = static_cast<uintptr_t>(JSTaggedValue::UnpackPrimitiveData(GetTaggedNext()));
+        return reinterpret_cast<FreeObject *>(uptr);
+    }
+
+    inline void SetNext(FreeObject *ptr)
+    {
+        SetTaggedNext(JSTaggedValue::PackPrimitiveData(ToUintPtr(ptr)));
+    }
+
+    /*  // There should be these fields, but that's not friendly to concurrent marker
+        ACCESSORS_NATIVE_FIELD(0, Next, FreeObject)
+        ACCESSORS_PRIMITIVE_FIELD(1, Size, uint32_t)
+    */
     ACCESSORS_START(TaggedObjectSize())
-    ACCESSORS_NATIVE_FIELD(0, Next, FreeObject)
-    ACCESSORS_PRIMITIVE_FIELD(1, Size, uint32_t)
+    ACCESSORS_FIXED_SIZE_FIELD(0, TaggedNext, JSTaggedType, JSTaggedType)
+    ACCESSORS_FIXED_SIZE_FIELD(1, TaggedSize, JSTaggedType, JSTaggedType)
     ACCESSORS_FINISH(2)
 };
 
-static_assert(FreeObject::GetNextOffset() == panda::mem::FreeObject::GetNextOffset());
-static_assert(FreeObject::GetSizeOffset() == panda::mem::FreeObject::GetSizeOffset());
+static_assert(FreeObject::GetTaggedNextOffset() == panda::mem::FreeObject::GetTaggedNextOffset());
+static_assert(FreeObject::GetTaggedSizeOffset() == panda::mem::FreeObject::GetTaggedSizeOffset());
 
 }  // namespace panda::ecmascript
 #endif  // ECMASCRIPT_MEM_FREE_OBJECT_H
diff --git a/runtime/global_env_constants.cpp b/runtime/global_env_constants.cpp
index df670074f..13d400c1f 100644
--- a/runtime/global_env_constants.cpp
+++ b/runtime/global_env_constants.cpp
@@ -83,16 +83,16 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
             .GetTaggedValue());
     SetConstant(ConstantIndex::ENV_CLASS_INDEX,
                 factory->NewEcmaDynClass(dyn_class_class, 0, JSType::TAGGED_ARRAY, HClass::ARRAY).GetTaggedValue());
-    JSHClass *free_object0_class =
-        *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetNextOffset(), JSType::FREE_OBJECT_WITH_NONE_FIELD);
+    JSHClass *free_object0_class = *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetTaggedNextOffset(),
+                                                             JSType::FREE_OBJECT_WITH_NONE_FIELD);
     free_object0_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
     SetConstant(ConstantIndex::FREE_OBJECT_WITH_NONE_FIELD_CLASS_INDEX, JSTaggedValue(free_object0_class));
-    JSHClass *free_object1_class =
-        *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetSizeOffset(), JSType::FREE_OBJECT_WITH_ONE_FIELD);
+    JSHClass *free_object1_class = *factory->NewEcmaDynClass(dyn_class_class, FreeObject::GetTaggedSizeOffset(),
+                                                             JSType::FREE_OBJECT_WITH_ONE_FIELD);
     free_object1_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
     SetConstant(ConstantIndex::FREE_OBJECT_WITH_ONE_FIELD_CLASS_INDEX, JSTaggedValue(free_object1_class));
-    JSHClass *free_object2_class =
-        *factory->CreateDynClass<FreeObject>(dyn_class_class, JSType::FREE_OBJECT_WITH_TWO_FIELD, HClass::IS_FREE_OBJECT);
+    JSHClass *free_object2_class = *factory->CreateDynClass<FreeObject>(
+        dyn_class_class, JSType::FREE_OBJECT_WITH_TWO_FIELD, HClass::IS_FREE_OBJECT);
     free_object2_class->GetHClass()->SetNativeFieldMask(FreeObject::NATIVE_FIELDS_MASK);
     SetConstant(ConstantIndex::FREE_OBJECT_WITH_TWO_FIELD_CLASS_INDEX, JSTaggedValue(free_object2_class));
     SetConstant(ConstantIndex::SYMBOL_CLASS_INDEX,
@@ -110,8 +110,9 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
     SetConstant(
         ConstantIndex::GENERATOR_CONTEST_INDEX,
         factory->CreateDynClass<GeneratorContext>(dyn_class_class, JSType::JS_GENERATOR_CONTEXT).GetTaggedValue());
-    SetConstant(ConstantIndex::CAPABILITY_RECORD_CLASS_INDEX,
-                factory->CreateDynClass<PromiseCapability>(dyn_class_class, JSType::PROMISE_CAPABILITY).GetTaggedValue());
+    SetConstant(
+        ConstantIndex::CAPABILITY_RECORD_CLASS_INDEX,
+        factory->CreateDynClass<PromiseCapability>(dyn_class_class, JSType::PROMISE_CAPABILITY).GetTaggedValue());
     SetConstant(ConstantIndex::REACTIONS_RECORD_CLASS_INDEX,
                 factory->CreateDynClass<PromiseReaction>(dyn_class_class, JSType::PROMISE_REACTIONS).GetTaggedValue());
     SetConstant(ConstantIndex::PROMISE_ITERATOR_RECORD_CLASS_INDEX,
@@ -133,8 +134,9 @@ void GlobalEnvConstants::InitRootsClass([[maybe_unused]] JSThread *thread, JSHCl
                 factory->CreateDynClass<ProtoChangeDetails>(dyn_class_class, JSType::PROTOTYPE_INFO).GetTaggedValue());
     SetConstant(ConstantIndex::PROTOTYPE_HANDLER_CLASS_INDEX,
                 factory->CreateDynClass<PrototypeHandler>(dyn_class_class, JSType::PROTOTYPE_HANDLER).GetTaggedValue());
-    SetConstant(ConstantIndex::TRANSITION_HANDLER_CLASS_INDEX,
-                factory->CreateDynClass<TransitionHandler>(dyn_class_class, JSType::TRANSITION_HANDLER).GetTaggedValue());
+    SetConstant(
+        ConstantIndex::TRANSITION_HANDLER_CLASS_INDEX,
+        factory->CreateDynClass<TransitionHandler>(dyn_class_class, JSType::TRANSITION_HANDLER).GetTaggedValue());
     SetConstant(ConstantIndex::PROPERTY_BOX_CLASS_INDEX,
                 factory->CreateDynClass<PropertyBox>(dyn_class_class, JSType::PROPERTY_BOX).GetTaggedValue());
     SetConstant(
diff --git a/runtime/js_hclass.cpp b/runtime/js_hclass.cpp
index 25f864efb..c6d64581b 100644
--- a/runtime/js_hclass.cpp
+++ b/runtime/js_hclass.cpp
@@ -146,7 +146,7 @@ void JSHClass::Copy(const JSThread *thread, const JSHClass *jshclass)
 {
     // HClass fields
     SetBitField(jshclass->GetBitField());
-    SetBitField1(jshclass->GetBitField1());
+    SetNumberOfProps(jshclass->NumberOfProps());
     SetPrototype(thread, jshclass->GetPrototype());
     hclass_.SetNativeFieldMask(jshclass->GetHClass()->GetNativeFieldMask());
 }
@@ -155,9 +155,21 @@ JSHandle<JSHClass> JSHClass::Clone(const JSThread *thread, const JSHandle<JSHCla
                                    bool without_inlined_properties)
 {
     JSType type = jshclass->GetObjectType();
-    uint32_t size = jshclass->IsJSObject() ? jshclass->GetInlinedPropsStartSize() : jshclass->GetObjectSize();
+
     uint32_t numInlinedProps = without_inlined_properties ? 0 : jshclass->GetInlinedProperties();
-    ASSERT(jshclass->IsJSObject() || numInlinedProps == 0);
+
+    uint32_t size;
+    if (jshclass->IsJSObject()) {
+#ifndef ECMA_DISABLE_FREEOBJECTS
+        size = jshclass->GetInlinedPropsStartSize();
+#else
+        size = jshclass->GetObjectSize() - numInlinedProps * JSTaggedValue::TaggedTypeSize();
+#endif
+    } else {
+        ASSERT(numInlinedProps == 0);
+        size = jshclass->GetObjectSize();
+    }
+
     auto factory = thread->GetEcmaVM()->GetFactory();
     JSHandle<JSHClass> newJshclass = factory->NewEcmaDynClass(factory->hclass_class_, size, type,
                                                               jshclass->GetHClass()->GetFlags(), numInlinedProps);
diff --git a/runtime/js_hclass.h b/runtime/js_hclass.h
index 0bdc857ae..46fc33e0d 100644
--- a/runtime/js_hclass.h
+++ b/runtime/js_hclass.h
@@ -238,7 +238,6 @@ public:
     using NumberOfPropsBits = BitField<uint32_t, 0, PropertyAttributes::OFFSET_BITFIELD_NUM>;  // 10
     using InlinedPropsStartBits = NumberOfPropsBits::NextField<uint32_t,
                                                                OFFSET_MAX_OBJECT_SIZE_IN_WORDS_WITHOUT_INLINED>;  // 15
-    using ObjectSizeInWordsBits = InlinedPropsStartBits::NextField<uint32_t, OFFSET_MAX_OBJECT_SIZE_IN_WORDS>;    // 30
 
     static uint32_t Hash(JSHClass *cls)
     {
diff --git a/runtime/js_object.cpp b/runtime/js_object.cpp
index 4e6c3a0b9..38964067e 100644
--- a/runtime/js_object.cpp
+++ b/runtime/js_object.cpp
@@ -133,10 +133,19 @@ JSHandle<NameDictionary> JSObject::TransitionToDictionary(const JSThread *thread
 
     // trim in-obj properties space
     if (numberInlinedProps > 0) {
+#ifndef ECMA_DISABLE_FREEOBJECTS
+        uint32_t free_offs = receiver->GetClass()->GetObjectSize();
+        uint32_t free_bytes = numberInlinedProps * JSTaggedValue::TaggedTypeSize();
         ObjectFactory *factory = thread->GetEcmaVM()->GetFactory();
-        uint32_t newSize = receiver->GetClass()->GetObjectSize();
-        size_t trimBytes = numberInlinedProps * JSTaggedValue::TaggedTypeSize();
-        factory->FillFreeObject(ToUintPtr(*receiver) + newSize, trimBytes, RemoveSlots::YES);
+        factory->FillFreeObject(ToUintPtr(*receiver) + free_offs, free_bytes, RemoveSlots::YES);
+#else
+        uint32_t free_offs =
+            receiver->GetClass()->GetObjectSize() - numberInlinedProps * JSTaggedValue::TaggedTypeSize();
+        for (size_t i = 0; i < numberInlinedProps; ++i) {
+            uint32_t field_offs = free_offs + i * JSTaggedValue::TaggedTypeSize();
+            ObjectAccessor::SetDynValue(thread, *receiver, field_offs, JSTaggedValue::VALUE_HOLE);
+        }
+#endif
     }
 
     return dict;
@@ -1832,9 +1841,17 @@ JSHandle<JSObject> JSObject::CreateObjectFromProperties(const JSThread *thread,
     JSHClass::TransitionToDictionary(thread, obj);
     // trim in-obj properties space
     if (numberInlinedProps > 0) {
-        uint32_t newSize = obj->GetClass()->GetObjectSize();
-        size_t trimBytes = numberInlinedProps * JSTaggedValue::TaggedTypeSize();
-        factory->FillFreeObject(ToUintPtr(*obj) + newSize, trimBytes, RemoveSlots::YES);
+#ifndef ECMA_DISABLE_FREEOBJECTS
+        uint32_t free_offs = obj->GetClass()->GetObjectSize();
+        uint32_t free_bytes = numberInlinedProps * JSTaggedValue::TaggedTypeSize();
+        factory->FillFreeObject(ToUintPtr(*obj) + free_offs, free_bytes, RemoveSlots::YES);
+#else
+        uint32_t free_offs = obj->GetClass()->GetObjectSize() - numberInlinedProps * JSTaggedValue::TaggedTypeSize();
+        for (size_t i = 0; i < numberInlinedProps; ++i) {
+            uint32_t field_offs = free_offs + i * JSTaggedValue::TaggedTypeSize();
+            ObjectAccessor::SetDynValue(thread, *obj, field_offs, JSTaggedValue::VALUE_HOLE);
+        }
+#endif
     }
 
     JSMutableHandle<NameDictionary> dict(
diff --git a/runtime/object_factory.cpp b/runtime/object_factory.cpp
index 6490363f8..4d822f553 100644
--- a/runtime/object_factory.cpp
+++ b/runtime/object_factory.cpp
@@ -872,10 +872,11 @@ JSHandle<JSObject> ObjectFactory::NewJSObjectByConstructor(const JSHandle<JSFunc
     return obj;
 }
 
-FreeObject *ObjectFactory::FillFreeObject(uintptr_t address, size_t size, [[maybe_unused]] RemoveSlots remove_slots)
+FreeObject *ObjectFactory::FillFreeObject([[maybe_unused]] uintptr_t address, [[maybe_unused]] size_t size,
+                                          [[maybe_unused]] RemoveSlots remove_slots)
 {
     FreeObject *object = nullptr;
-    if (size >= FreeObject::GetSizeOffset() && size < FreeObject::SIZE) {
+    if (size >= FreeObject::GetTaggedSizeOffset() && size < FreeObject::SIZE) {
         object = reinterpret_cast<FreeObject *>(address);
         object->SetClassWithoutBarrier(free_object_with_one_field_class_);
         object->SetNext(nullptr);
@@ -884,13 +885,12 @@ FreeObject *ObjectFactory::FillFreeObject(uintptr_t address, size_t size, [[mayb
         object->SetClassWithoutBarrier(free_object_with_two_field_class_);
         object->SetAvailable(size);
         object->SetNext(nullptr);
-    } else if (size == FreeObject::GetNextOffset()) {
+    } else if (size == FreeObject::GetTaggedNextOffset()) {
         object = reinterpret_cast<FreeObject *>(address);
         object->SetClassWithoutBarrier(free_object_with_none_field_class_);
     } else {
         LOG_ECMA(DEBUG) << "Fill free object size is smaller";
     }
-
     return object;
 }
 
-- 
Gitee