Bug 1905239 - Add new parameters to HostEnsureCanCompileStrings hook.…

… r=tschuster Currently, we do this via isRuntimeCodeGenEnabled whose single argument is equivalent to codeString in "Dynamic Code Brand Checks" spec [1]. We extend this hook to accept new parameters from that spec and adjust PerformEval and CreateDynamicFunction accordingly. We don't change the behavior for PerformShadowRealmEval [2] and WASM, i.e. we keep dummy parameters. [1] https://tc39.es/proposal-dynamic-code-brand-checks [2] tc39/proposal-shadowrealm#414 Differential Revision: https://phabricator.services.mozilla.com/D229588 UltraBlame original commit: a282ae3a55f7f97440b424de73e66a3b39faee92
marco-c · Dec 13, 2024 · ce54c28 · ce54c28
1 parent 4d71ca4
commit ce54c28
Show file tree

Hide file tree

Showing 12 changed files with 2,184 additions and 43 deletions.
diff --git a/caps/nsScriptSecurityManager.cpp b/caps/nsScriptSecurityManager.cpp
@@ -530,6 +530,24 @@ ColumnNumber
 h
 "
 #
+include
+"
+js
+/
+GCVector
+.
+h
+"
+#
+include
+"
+js
+/
+Value
+.
+h
+"
+#
 define
 WEBAPPS_PERM_NAME
 "
@@ -2061,7 +2079,67 @@ Handle
 JSString
 *
 >
-aCode
+aCodeString
+JS
+:
+:
+CompilationType
+aCompilationType
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+StackGCVector
+<
+JSString
+*
+>
+>
+aParameterStrings
+JS
+:
+:
+Handle
+<
+JSString
+*
+>
+aBodyString
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+StackGCVector
+<
+JS
+:
+:
+Value
+>
+>
+aParameterArgs
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+Value
+>
+aBodyArg
+bool
+*
+aOutCanCompileStrings
 )
 {
 MOZ_ASSERT
@@ -2149,7 +2227,7 @@ scriptSample
 init
 (
 cx
-aCode
+aCodeString
 )
 )
 )
@@ -2177,9 +2255,14 @@ scriptSample
 )
 )
 {
-return
+*
+aOutCanCompileStrings
+=
 false
 ;
+return
+true
+;
 }
 }
 nsCOMPtr
@@ -2270,6 +2353,11 @@ if
 csp
 )
 {
+*
+aOutCanCompileStrings
+=
+true
+;
 return
 true
 ;
@@ -2378,6 +2466,11 @@ allowsEval
 "
 )
 ;
+*
+aOutCanCompileStrings
+=
+true
+;
 return
 true
 ;
@@ -2497,16 +2590,11 @@ scriptSample
 init
 (
 cx
-aCode
+aCodeString
 )
 )
 )
 {
-JS_ClearPendingException
-(
-cx
-)
-;
 return
 false
 ;
@@ -2566,9 +2654,14 @@ _ns
 )
 ;
 }
-return
+*
+aOutCanCompileStrings
+=
 evalOK
 ;
+return
+true
+;
 }
 bool
 nsScriptSecurityManager

diff --git a/caps/nsScriptSecurityManager.h b/caps/nsScriptSecurityManager.h
@@ -87,6 +87,10 @@ enum
 class
 RuntimeCode
 ;
+enum
+class
+CompilationType
+;
 }
 #
 define
@@ -286,12 +290,12 @@ ContentSecurityPolicyPermitsJSAction
 (
 JSContext
 *
-cx
+aCx
 JS
 :
 :
 RuntimeCode
-kind
+aKind
 JS
 :
 :
@@ -300,7 +304,67 @@ Handle
 JSString
 *
 >
-aCode
+aCodeString
+JS
+:
+:
+CompilationType
+aCompilationType
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+StackGCVector
+<
+JSString
+*
+>
+>
+aParameterStrings
+JS
+:
+:
+Handle
+<
+JSString
+*
+>
+aBodyString
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+StackGCVector
+<
+JS
+:
+:
+Value
+>
+>
+aParameterArgs
+JS
+:
+:
+Handle
+<
+JS
+:
+:
+Value
+>
+aBodyArg
+bool
+*
+aOutCanCompileStrings
 )
 ;
 static