Bug 326501. Mark tree views as being suitable for untrusted code. r+sr=bzbarsky

2024-10-11 04:15:43 +00:00 · 2006-03-26 20:57:53 +00:00 · 2006-03-26 20:57:53 +00:00 · 8916588e70
commit 8916588e70
parent 6942057a28
2 changed files with 35 additions and 0 deletions
--- a/content/base/public/nsContentUtils.h
+++ b/content/base/public/nsContentUtils.h
@ -109,6 +109,10 @@ public:

  static PRBool   IsCallerChrome();

+  static PRBool   IsCallerTrustedForRead();
+
+  static PRBool   IsCallerTrustedForWrite();
+
  /*
   * Returns true if the nodes are both in the same document or
   * if neither is in a document.
--- a/content/base/src/nsContentUtils.cpp
+++ b/content/base/src/nsContentUtils.cpp
@ -1018,6 +1018,37 @@ nsContentUtils::IsCallerChrome()
  return is_caller_chrome;
 }

+static PRBool IsCallerTrustedForCapability(const char* aCapability)
+{
+  if (nsContentUtils::IsCallerChrome())
+    return PR_TRUE;
+
+  // The secman really should handle UniversalXPConnect case, since that
+  // should include UniversalBrowserRead... doesn't right now, though.
+  PRBool hasCap;
+  nsIScriptSecurityManager* ssm = nsContentUtils::GetSecurityManager();
+  if (NS_FAILED(ssm->IsCapabilityEnabled(aCapability, &hasCap)))
+    return PR_FALSE;
+  if (hasCap)
+    return PR_TRUE;
+    
+  if (NS_FAILED(ssm->IsCapabilityEnabled("UniversalXPConnect", &hasCap)))
+    return PR_FALSE;
+  return hasCap;
+}
+
+PRBool
+nsContentUtils::IsCallerTrustedForRead()
+{
+  return IsCallerTrustedForCapability("UniversalBrowserRead");
+}
+
+PRBool
+nsContentUtils::IsCallerTrustedForWrite()
+{
+  return IsCallerTrustedForCapability("UniversalBrowserWrite");
+}
+
 // static
 PRBool
 nsContentUtils::InSameDoc(nsIDOMNode* aNode, nsIDOMNode* aOther)