mozilla
/
pjs
зеркало из https://github.com/mozilla/pjs.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

bug 313236: Consolidate some code. r=brendan

This commit is contained in:
mrbkap%gmail.com 2005-10-22 01:03:06 +00:00
Родитель 6137b82755
Коммит 023b050c93
4 изменённых файлов: 34 добавлений и 30 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

5
js/src/jsfun.c
Просмотреть файл

@ -1,4 +1,5 @@
/* -*- Mode: C; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*- /* -*- Mode: C; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 4 -*-
* vim: set ts=8 sw=4 et tw=80:
* *
* ***** BEGIN LICENSE BLOCK ***** * ***** BEGIN LICENSE BLOCK *****
* Version: MPL 1.1/GPL 2.0/LGPL 2.1 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
@ -1710,6 +1711,10 @@ Function(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
principals = NULL; principals = NULL;
} }
/* Belt-and-braces: check that the caller has access to parent. */
if (!js_CheckPrincipalsAccess(cx, parent, principals, "Function"))
return JS_FALSE;
n = argc ? argc - 1 : 0; n = argc ? argc - 1 : 0;
if (n > 0) { if (n > 0) {
/* /*

32
js/src/jsobj.c
Просмотреть файл

@ -1052,8 +1052,9 @@ obj_valueOf(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
* if so (or if scopeobj has no principals, for backward compatibility with * if so (or if scopeobj has no principals, for backward compatibility with
* the JS API, which does not require principals), and false otherwise. * the JS API, which does not require principals), and false otherwise.
*/ */
static JSBool JSBool
CheckEvalAccess(JSContext *cx, JSObject *scopeobj, JSPrincipals *principals) js_CheckPrincipalsAccess(JSContext *cx, JSObject *scopeobj,
JSPrincipals *principals, const char *caller)
{ {
JSRuntime *rt; JSRuntime *rt;
JSPrincipals *scopePrincipals; JSPrincipals *scopePrincipals;
@ -1064,18 +1065,25 @@ CheckEvalAccess(JSContext *cx, JSObject *scopeobj, JSPrincipals *principals)
if (!principals || !scopePrincipals || if (!principals || !scopePrincipals ||
!principals->subsume(principals, scopePrincipals)) { !principals->subsume(principals, scopePrincipals)) {
JS_ReportErrorNumber(cx, js_GetErrorMessage, NULL, JS_ReportErrorNumber(cx, js_GetErrorMessage, NULL,
JSMSG_BAD_INDIRECT_CALL, js_eval_str); JSMSG_BAD_INDIRECT_CALL, caller);
return JS_FALSE; return JS_FALSE;
} }
} }
return JS_TRUE; return JS_TRUE;
} }
JSBool JSObject *
js_CheckScopeChainValidity(JSContext *cx, JSObject *scopeobj, const char *caller) js_CheckScopeChainValidity(JSContext *cx, JSObject *scopeobj, const char *caller)
{ {
JSClass *clasp; JSClass *clasp;
JSExtendedClass *xclasp; JSExtendedClass *xclasp;
JSObject *inner;
OBJ_TO_INNER_OBJECT(cx, scopeobj);
if (!scopeobj)
return NULL;
inner = scopeobj;
/* XXX This is an awful gross hack. */ /* XXX This is an awful gross hack. */
while (scopeobj) { while (scopeobj) {
@ -1086,14 +1094,14 @@ js_CheckScopeChainValidity(JSContext *cx, JSObject *scopeobj, const char *caller
xclasp->innerObject(cx, scopeobj) != scopeobj) { xclasp->innerObject(cx, scopeobj) != scopeobj) {
JS_ReportErrorNumber(cx, js_GetErrorMessage, NULL, JS_ReportErrorNumber(cx, js_GetErrorMessage, NULL,
JSMSG_BAD_INDIRECT_CALL, caller); JSMSG_BAD_INDIRECT_CALL, caller);
return JS_FALSE; return NULL;
} }
} }
scopeobj = OBJ_GET_PARENT(cx, scopeobj); scopeobj = OBJ_GET_PARENT(cx, scopeobj);
} }
return JS_TRUE; return inner;
} }
static JSBool static JSBool
@ -1151,8 +1159,11 @@ obj_eval(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
if (indirectCall) { if (indirectCall) {
callerScopeChain = caller->scopeChain; callerScopeChain = caller->scopeChain;
if (obj != callerScopeChain) { if (obj != callerScopeChain) {
if (!CheckEvalAccess(cx, obj, caller->script->principals)) if (!js_CheckPrincipalsAccess(cx, obj,
caller->script->principals,
js_eval_str)) {
return JS_FALSE; return JS_FALSE;
}
scopeobj = js_NewObject(cx, &js_WithClass, obj, scopeobj = js_NewObject(cx, &js_WithClass, obj,
callerScopeChain); callerScopeChain);
@ -1185,13 +1196,10 @@ obj_eval(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
} }
/* Ensure we compile this eval with the right object in the scope chain. */ /* Ensure we compile this eval with the right object in the scope chain. */
OBJ_TO_INNER_OBJECT(cx, scopeobj); scopeobj = js_CheckScopeChainValidity(cx, scopeobj, js_eval_str);
if (!scopeobj) if (!scopeobj)
return JS_FALSE; return JS_FALSE;
if (!js_CheckScopeChainValidity(cx, scopeobj, js_eval_str))
return JS_FALSE;
str = JSVAL_TO_STRING(argv[0]); str = JSVAL_TO_STRING(argv[0]);
if (caller) { if (caller) {
file = caller->script->filename; file = caller->script->filename;
@ -1239,7 +1247,7 @@ obj_eval(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
* Belt-and-braces: check that the lesser of eval's principals and the * Belt-and-braces: check that the lesser of eval's principals and the
* caller's principals has access to scopeobj. * caller's principals has access to scopeobj.
*/ */
ok = CheckEvalAccess(cx, scopeobj, principals); ok = js_CheckPrincipalsAccess(cx, scopeobj, principals, js_eval_str);
if (!ok) if (!ok)
goto out; goto out;

5
js/src/jsobj.h
Просмотреть файл

@ -488,9 +488,12 @@ js_GetRequiredSlot(JSContext *cx, JSObject *obj, uint32 slot);
extern JSBool extern JSBool
js_SetRequiredSlot(JSContext *cx, JSObject *obj, uint32 slot, jsval v); js_SetRequiredSlot(JSContext *cx, JSObject *obj, uint32 slot, jsval v);
extern JSBool extern JSObject *
js_CheckScopeChainValidity(JSContext *cx, JSObject *scopeobj, const char *caller); js_CheckScopeChainValidity(JSContext *cx, JSObject *scopeobj, const char *caller);
extern JSBool
js_CheckPrincipalsAccess(JSContext *cx, JSObject *scopeobj,
JSPrincipals *principals, const char *caller);
JS_END_EXTERN_C JS_END_EXTERN_C
#endif /* jsobj_h___ */ #endif /* jsobj_h___ */

20
js/src/jsscript.c
Просмотреть файл

@ -65,6 +65,7 @@
#if JS_HAS_SCRIPT_OBJECT #if JS_HAS_SCRIPT_OBJECT
static const char js_script_exec[] = "Script.prototype.exec"; static const char js_script_exec[] = "Script.prototype.exec";
static const char js_script_compile[] = "Script.prototype.compile";
#if JS_HAS_TOSOURCE #if JS_HAS_TOSOURCE
static JSBool static JSBool
@ -205,7 +206,7 @@ script_compile(JSContext *cx, JSObject *obj, uintN argc, jsval *argv,
} }
/* Ensure we compile this script with the right (inner) principals. */ /* Ensure we compile this script with the right (inner) principals. */
OBJ_TO_INNER_OBJECT(cx, scopeobj); scopeobj = js_CheckScopeChainValidity(cx, scopeobj, js_script_compile);
if (!scopeobj) if (!scopeobj)
return JS_FALSE; return JS_FALSE;
@ -248,7 +249,6 @@ script_exec(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
JSObject *scopeobj, *parent; JSObject *scopeobj, *parent;
JSStackFrame *fp, *caller; JSStackFrame *fp, *caller;
JSPrincipals *principals, *scopePrincipals; JSPrincipals *principals, *scopePrincipals;
JSRuntime *rt;
if (!JS_InstanceOf(cx, obj, &js_ScriptClass, argv)) if (!JS_InstanceOf(cx, obj, &js_ScriptClass, argv))
return JS_FALSE; return JS_FALSE;
@ -308,26 +308,14 @@ script_exec(JSContext *cx, JSObject *obj, uintN argc, jsval *argv, jsval *rval)
} }
} }
OBJ_TO_INNER_OBJECT(cx, scopeobj); scopeobj = js_CheckScopeChainValidity(cx, scopeobj, js_script_exec);
if (!scopeobj) if (!scopeobj)
return JS_FALSE; return JS_FALSE;
if (!js_CheckScopeChainValidity(cx, scopeobj, js_script_exec))
return JS_FALSE;
/* Belt-and-braces: check that this script object has access to scopeobj. */ /* Belt-and-braces: check that this script object has access to scopeobj. */
principals = script->principals; principals = script->principals;
rt = cx->runtime; if (!js_CheckPrincipalsAccess(cx, scopeobj, principals, js_script_exec))
if (rt->findObjectPrincipals) {
scopePrincipals = rt->findObjectPrincipals(cx, scopeobj);
if (!principals || !scopePrincipals ||
!principals->subsume(principals, scopePrincipals)) {
JS_ReportErrorNumber(cx, js_GetErrorMessage, NULL,
JSMSG_BAD_INDIRECT_CALL,
js_script_exec);
return JS_FALSE; return JS_FALSE;
}
}
return js_Execute(cx, scopeobj, script, caller, JSFRAME_EVAL, rval); return js_Execute(cx, scopeobj, script, caller, JSFRAME_EVAL, rval);
} }