зеркало из https://github.com/mozilla/pjs.git
Add an internal security-check-less method for adding rules to stylesheets to
fix bug 386939. r+sr=dbaron
This commit is contained in:
bzbarsky%mit.edu
Родитель
41c0caf989
Коммит
af5fd59293
|
|
@ -1108,7 +1108,8 @@ protected:
|
|||
nsresult DoFlushPendingNotifications(mozFlushType aType,
|
||||
PRBool aInterruptibleReflow);
|
||||
|
||||
nsICSSStyleSheet* mPrefStyleSheet; // mStyleSet owns it but we maintain a ref, may be null
|
||||
nsCOMPtr<nsICSSStyleSheet> mPrefStyleSheet; // mStyleSet owns it but we
|
||||
// maintain a ref, may be null
|
||||
#ifdef DEBUG
|
||||
PRUint32 mUpdateCount;
|
||||
#endif
|
||||
|
|
@ -1845,7 +1846,7 @@ nsresult PresShell::ClearPreferenceStyleRules(void)
|
|||
printf("PrefStyleSheet removed\n");
|
||||
#endif
|
||||
// clear the sheet pointer: it is strictly historical now
|
||||
NS_RELEASE(mPrefStyleSheet);
|
||||
mPrefStyleSheet = nsnull;
|
||||
}
|
||||
}
|
||||
return result;
|
||||
|
|
@ -1854,7 +1855,8 @@ nsresult PresShell::ClearPreferenceStyleRules(void)
|
|||
nsresult PresShell::CreatePreferenceStyleSheet(void)
|
||||
{
|
||||
NS_ASSERTION(!mPrefStyleSheet, "prefStyleSheet already exists");
|
||||
nsresult result = CallCreateInstance(kCSSStyleSheetCID, &mPrefStyleSheet);
|
||||
nsresult result;
|
||||
mPrefStyleSheet = do_CreateInstance(kCSSStyleSheetCID, &result);
|
||||
if (NS_SUCCEEDED(result)) {
|
||||
NS_ASSERTION(mPrefStyleSheet, "null but no error");
|
||||
nsCOMPtr<nsIURI> uri;
|
||||
|
|
@ -1864,24 +1866,25 @@ nsresult PresShell::CreatePreferenceStyleSheet(void)
|
|||
result = mPrefStyleSheet->SetURIs(uri, nsnull, uri);
|
||||
if (NS_SUCCEEDED(result)) {
|
||||
mPrefStyleSheet->SetComplete();
|
||||
nsCOMPtr<nsIDOMCSSStyleSheet> sheet(do_QueryInterface(mPrefStyleSheet));
|
||||
if (sheet) {
|
||||
PRUint32 index;
|
||||
result = sheet->InsertRule(NS_LITERAL_STRING("@namespace url(http://www.w3.org/1999/xhtml);"),
|
||||
result =
|
||||
mPrefStyleSheet->InsertRuleInternal(NS_LITERAL_STRING("@namespace url(http://www.w3.org/1999/xhtml);"),
|
||||
0, &index);
|
||||
NS_ENSURE_SUCCESS(result, result);
|
||||
}
|
||||
if (NS_SUCCEEDED(result)) {
|
||||
mStyleSet->AppendStyleSheet(nsStyleSet::eUserSheet, mPrefStyleSheet);
|
||||
}
|
||||
}
|
||||
} else {
|
||||
result = NS_ERROR_OUT_OF_MEMORY;
|
||||
}
|
||||
}
|
||||
|
||||
#ifdef DEBUG_attinasi
|
||||
printf("CreatePrefStyleSheet completed: error=%ld\n",(long)result);
|
||||
#endif
|
||||
|
||||
if (NS_FAILED(result)) {
|
||||
mPrefStyleSheet = nsnull;
|
||||
}
|
||||
|
||||
return result;
|
||||
}
|
||||
|
||||
|
|
@ -1908,11 +1911,10 @@ PresShell::SetPrefNoScriptRule()
|
|||
rv = CreatePreferenceStyleSheet();
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
}
|
||||
// get the DOM interface to the stylesheet
|
||||
nsCOMPtr<nsIDOMCSSStyleSheet> sheet(do_QueryInterface(mPrefStyleSheet, &rv));
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
PRUint32 index = 0;
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("noscript{display:none!important}"),
|
||||
mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("noscript{display:none!important}"),
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
|
||||
|
|
@ -1935,10 +1937,6 @@ nsresult PresShell::SetPrefNoFramesRule(void)
|
|||
|
||||
NS_ASSERTION(mPrefStyleSheet, "prefstylesheet should not be null");
|
||||
|
||||
// get the DOM interface to the stylesheet
|
||||
nsCOMPtr<nsIDOMCSSStyleSheet> sheet(do_QueryInterface(mPrefStyleSheet, &rv));
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
PRBool allowSubframes = PR_TRUE;
|
||||
nsCOMPtr<nsISupports> container = mPresContext->GetContainer();
|
||||
nsCOMPtr<nsIDocShell> docShell(do_QueryInterface(container));
|
||||
|
|
@ -1947,10 +1945,12 @@ nsresult PresShell::SetPrefNoFramesRule(void)
|
|||
}
|
||||
if (!allowSubframes) {
|
||||
PRUint32 index = 0;
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("noframes{display:block}"),
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("noframes{display:block}"),
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("frame, frameset, iframe {display:none!important}"),
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("frame, frameset, iframe {display:none!important}"),
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
return rv;
|
||||
|
|
@ -1972,10 +1972,6 @@ nsresult PresShell::SetPrefLinkRules(void)
|
|||
|
||||
NS_ASSERTION(mPrefStyleSheet, "prefstylesheet should not be null");
|
||||
|
||||
// get the DOM interface to the stylesheet
|
||||
nsCOMPtr<nsIDOMCSSStyleSheet> sheet(do_QueryInterface(mPrefStyleSheet, &rv));
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
// support default link colors:
|
||||
// this means the link colors need to be overridable,
|
||||
// which they are if we put them in the agent stylesheet,
|
||||
|
|
@ -1992,21 +1988,24 @@ nsresult PresShell::SetPrefLinkRules(void)
|
|||
|
||||
// insert a rule to color links: '*|*:link {color: #RRGGBB [!important];}'
|
||||
ColorToString(linkColor, strColor);
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("*|*:link{color:") +
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("*|*:link{color:") +
|
||||
strColor + ruleClose,
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
// - visited links: '*|*:visited {color: #RRGGBB [!important];}'
|
||||
ColorToString(visitedColor, strColor);
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("*|*:visited{color:") +
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("*|*:visited{color:") +
|
||||
strColor + ruleClose,
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
// - active links: '*|*:-moz-any-link:active {color: #RRGGBB [!important];}'
|
||||
ColorToString(activeColor, strColor);
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("*|*:-moz-any-link:active{color:") +
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("*|*:-moz-any-link:active{color:") +
|
||||
strColor + ruleClose,
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
|
@ -2020,10 +2019,12 @@ nsresult PresShell::SetPrefLinkRules(void)
|
|||
// no need for important, we want these to be overridable
|
||||
// NOTE: these must go in the agent stylesheet or they cannot be
|
||||
// overridden by authors
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("*|*:-moz-any-link{text-decoration:underline}"),
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("*|*:-moz-any-link{text-decoration:underline}"),
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
} else {
|
||||
rv = sheet->InsertRule(NS_LITERAL_STRING("*|*:-moz-any-link{text-decoration:none}"),
|
||||
rv = mPrefStyleSheet->
|
||||
InsertRuleInternal(NS_LITERAL_STRING("*|*:-moz-any-link{text-decoration:none}"),
|
||||
sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
|
||||
|
|
@ -2044,9 +2045,6 @@ nsresult PresShell::SetPrefFocusRules(void)
|
|||
if (NS_SUCCEEDED(result)) {
|
||||
NS_ASSERTION(mPrefStyleSheet, "prefstylesheet should not be null");
|
||||
|
||||
// get the DOM interface to the stylesheet
|
||||
nsCOMPtr<nsIDOMCSSStyleSheet> sheet(do_QueryInterface(mPrefStyleSheet,&result));
|
||||
if (NS_SUCCEEDED(result)) {
|
||||
if (mPresContext->GetUseFocusColors()) {
|
||||
nscolor focusBackground(mPresContext->FocusBackgroundColor());
|
||||
nscolor focusText(mPresContext->FocusTextColor());
|
||||
|
|
@ -2065,7 +2063,8 @@ nsresult PresShell::SetPrefFocusRules(void)
|
|||
strRule.Append(strColor);
|
||||
strRule.AppendLiteral(" !important; } ");
|
||||
// insert the rules
|
||||
result = sheet->InsertRule(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
result = mPrefStyleSheet->
|
||||
InsertRuleInternal(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
PRUint8 focusRingWidth = mPresContext->FocusRingWidth();
|
||||
PRBool focusRingOnAnything = mPresContext->GetFocusRingOnAnything();
|
||||
|
|
@ -2079,7 +2078,8 @@ nsresult PresShell::SetPrefFocusRules(void)
|
|||
strRule.AppendInt(focusRingWidth);
|
||||
strRule.AppendLiteral("px dotted WindowText !important; } "); // For example 3px dotted WindowText
|
||||
// insert the rules
|
||||
result = sheet->InsertRule(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
result = mPrefStyleSheet->
|
||||
InsertRuleInternal(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(result, result);
|
||||
if (focusRingWidth != 1) {
|
||||
// If the focus ring width is different from the default, fix buttons with rings
|
||||
|
|
@ -2088,14 +2088,15 @@ nsresult PresShell::SetPrefFocusRules(void)
|
|||
strRule.AppendLiteral("input[type=\"submit\"]::-moz-focus-inner { padding: 1px 2px 1px 2px; border: ");
|
||||
strRule.AppendInt(focusRingWidth);
|
||||
strRule.AppendLiteral("px dotted transparent !important; } ");
|
||||
result = sheet->InsertRule(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
result = mPrefStyleSheet->
|
||||
InsertRuleInternal(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
NS_ENSURE_SUCCESS(result, result);
|
||||
|
||||
strRule.AssignLiteral("button:focus::-moz-focus-inner, input[type=\"reset\"]:focus::-moz-focus-inner,");
|
||||
strRule.AppendLiteral("input[type=\"button\"]:focus::-moz-focus-inner, input[type=\"submit\"]:focus::-moz-focus-inner {");
|
||||
strRule.AppendLiteral("border-color: ButtonText !important; }");
|
||||
result = sheet->InsertRule(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
result = mPrefStyleSheet->
|
||||
InsertRuleInternal(strRule, sInsertPrefSheetRulesAt, &index);
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -1334,7 +1334,7 @@ nsCSSStyleSheet::SubjectSubsumesInnerPrincipal() const
|
|||
securityManager->GetSubjectPrincipal(getter_AddRefs(subjectPrincipal));
|
||||
|
||||
if (!subjectPrincipal) {
|
||||
return NS_OK;
|
||||
return NS_ERROR_DOM_SECURITY_ERR;
|
||||
}
|
||||
|
||||
PRBool subsumes;
|
||||
|
|
@ -1506,6 +1506,19 @@ NS_IMETHODIMP
|
|||
nsCSSStyleSheet::InsertRule(const nsAString& aRule,
|
||||
PRUint32 aIndex,
|
||||
PRUint32* aReturn)
|
||||
{
|
||||
//-- Security check: Only scripts whose principal subsumes that of the
|
||||
// style sheet can modify rule collections.
|
||||
nsresult rv = SubjectSubsumesInnerPrincipal();
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
return InsertRuleInternal(aRule, aIndex, aReturn);
|
||||
}
|
||||
|
||||
NS_IMETHODIMP
|
||||
nsCSSStyleSheet::InsertRuleInternal(const nsAString& aRule,
|
||||
PRUint32 aIndex,
|
||||
PRUint32* aReturn)
|
||||
{
|
||||
// No doing this if the sheet is not complete!
|
||||
PRBool complete;
|
||||
|
|
@ -1514,11 +1527,6 @@ nsCSSStyleSheet::InsertRule(const nsAString& aRule,
|
|||
return NS_ERROR_DOM_INVALID_ACCESS_ERR;
|
||||
}
|
||||
|
||||
//-- Security check: Only scripts whose principal subsumes that of the
|
||||
// style sheet can modify rule collections.
|
||||
nsresult rv = SubjectSubsumesInnerPrincipal();
|
||||
NS_ENSURE_SUCCESS(rv, rv);
|
||||
|
||||
if (aRule.IsEmpty()) {
|
||||
// Nothing to do here
|
||||
return NS_OK;
|
||||
|
|
|
|||
|
|
@ -156,6 +156,8 @@ public:
|
|||
NS_IMETHOD SetModified(PRBool aModified);
|
||||
NS_IMETHOD AddRuleProcessor(nsCSSRuleProcessor* aProcessor);
|
||||
NS_IMETHOD DropRuleProcessor(nsCSSRuleProcessor* aProcessor);
|
||||
NS_IMETHOD InsertRuleInternal(const nsAString& aRule,
|
||||
PRUint32 aIndex, PRUint32* aReturn);
|
||||
|
||||
// nsICSSLoaderObserver interface
|
||||
NS_IMETHOD StyleSheetLoaded(nsICSSStyleSheet* aSheet, PRBool aWasAlternate,
|
||||
|
|
|
|||
|
|
@ -53,10 +53,10 @@ class nsICSSImportRule;
|
|||
class nsIPrincipal;
|
||||
|
||||
// IID for the nsICSSStyleSheet interface
|
||||
// 74fa10f3-fab7-425a-a7dd-e2afd1ba7a07
|
||||
// 363c1c5f-81ec-4d83-ad8a-b48d48f1398d
|
||||
#define NS_ICSS_STYLE_SHEET_IID \
|
||||
{ 0x74fa10f3, 0xfab7, 0x425a, \
|
||||
{ 0xa7, 0xdd, 0xe2, 0xaf, 0xd1, 0xba, 0x7a, 0x07 } }
|
||||
{ 0x363c1c5f, 0x81ec, 0x4d83, \
|
||||
{ 0xad, 0x8a, 0xb4, 0x8d, 0x48, 0xf1, 0x39, 0x8d } }
|
||||
|
||||
class nsICSSStyleSheet : public nsIStyleSheet {
|
||||
public:
|
||||
|
|
@ -121,6 +121,12 @@ public:
|
|||
|
||||
NS_IMETHOD AddRuleProcessor(nsCSSRuleProcessor* aProcessor) = 0;
|
||||
NS_IMETHOD DropRuleProcessor(nsCSSRuleProcessor* aProcessor) = 0;
|
||||
|
||||
/**
|
||||
* Like the DOM insertRule() method, but doesn't do any security checks
|
||||
*/
|
||||
NS_IMETHOD InsertRuleInternal(const nsAString& aRule,
|
||||
PRUint32 aIndex, PRUint32* aReturn) = 0;
|
||||
};
|
||||
|
||||
NS_DEFINE_STATIC_IID_ACCESSOR(nsICSSStyleSheet, NS_ICSS_STYLE_SHEET_IID)
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче