Bug 1126911 - Special-case all chrome objects in wrapper selection. r=gabor

2024-09-13 09:24:08 -07:00 · 2015-02-05 11:07:40 -08:00 · 2015-02-05 11:07:40 -08:00 · 0a4d9d8104
commit 0a4d9d8104
parent e7bd96ca2d
1 changed files with 22 additions and 17 deletions
--- a/js/xpconnect/wrappers/WrapperFactory.cpp
+++ b/js/xpconnect/wrappers/WrapperFactory.cpp
@ -424,24 +424,29 @@ WrapperFactory::Rewrap(JSContext *cx, HandleObject existing, HandleObject obj,
        wrapper = &CrossCompartmentWrapper::singleton;
    }

-    // If this is a chrome function being exposed to content, we need to allow
-    // call (but nothing else). We allow CPOWs that purport to be function's
-    // here, but only in the content process.
-    else if (originIsChrome && !targetIsChrome &&
-             (IdentifyStandardInstance(obj) == JSProto_Function ||
-              (jsipc::IsCPOW(obj) && JS::IsCallable(obj) &&
-               XRE_GetProcessType() == GeckoProcessType_Content)))
-    {
-        wrapper = &FilteringWrapper<CrossCompartmentSecurityWrapper, OpaqueWithCall>::singleton;
-    }
+    // Special handling for chrome objects being exposed to content.
+    else if (originIsChrome && !targetIsChrome) {
+        // If this is a chrome function being exposed to content, we need to allow
+        // call (but nothing else). We allow CPOWs that purport to be function's
+        // here, but only in the content process.
+        if ((IdentifyStandardInstance(obj) == JSProto_Function ||
+            (jsipc::IsCPOW(obj) && JS::IsCallable(obj) &&
+             XRE_GetProcessType() == GeckoProcessType_Content)))
+        {
+            wrapper = &FilteringWrapper<CrossCompartmentSecurityWrapper, OpaqueWithCall>::singleton;
+        }

-    // For Vanilla JSObjects exposed from chrome to content, we use a wrapper
-    // that supports __exposedProps__. We'd like to get rid of these eventually,
-    // but in their current form they don't cause much trouble.
-    else if (originIsChrome && !targetIsChrome &&
-             IdentifyStandardInstance(obj) == JSProto_Object)
-    {
-        wrapper = &ChromeObjectWrapper::singleton;
+        // For Vanilla JSObjects exposed from chrome to content, we use a wrapper
+        // that supports __exposedProps__. We'd like to get rid of these eventually,
+        // but in their current form they don't cause much trouble.
+        else if (IdentifyStandardInstance(obj) == JSProto_Object) {
+            wrapper = &ChromeObjectWrapper::singleton;
+        }
+
+        // Otherwise we get an opaque wrapper.
+        else {
+            wrapper = &FilteringWrapper<CrossCompartmentSecurityWrapper, Opaque>::singleton;
+        }
    }

    //