Mercurial > mozreview > gecko / changeset / 97ba9ba5f9f1308526f3ae5775f6d0e98b48e564
summary | shortlog | changelog | pushlog | graph | tags | bookmarks | branches | files | changeset | raw | zip | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Bug 1394496 - Evaluate's envChainObject should throw if passed a global. r=tcampbell draft
authorAndrew McCreight <continuation@gmail.com>
Tue, 05 Sep 2017 13:40:01 -0700
changeset 659298 97ba9ba5f9f1308526f3ae5775f6d0e98b48e564
parent 659297 4a71fb8f01dc4623fbd0a372cf1d60667c1b5883
child 729958 24da172b1dd5f2bce19aaf66393cfd07c68d80b8
push id78096
push userbmo:continuation@gmail.com
push dateTue, 05 Sep 2017 20:41:30 +0000
reviewerstcampbell
bugs1394496
milestone57.0a1
Bug 1394496 - Evaluate's envChainObject should throw if passed a global. r=tcampbell MozReview-Commit-ID: 7PBHQkvJigD
js/src/shell/js.cpp file | annotate | diff | comparison | revisions
js/src/tests/js1_8_5/extensions/non_syntactic.js file | annotate | diff | comparison | revisions 
--- a/js/src/shell/js.cpp
+++ b/js/src/shell/js.cpp
@@ -1591,25 +1591,26 @@ Evaluate(JSContext* cx, unsigned argc, V
         if (!JS_GetProperty(cx, opts, "envChainObject", &v))
             return false;
         if (!v.isUndefined()) {
             if (loadBytecode) {
                 JS_ReportErrorASCII(cx, "Can't use both loadBytecode and envChainObject");
                 return false;
             }
 
-            if (v.isObject()) {
-                if (!envChain.append(&v.toObject())) {
-                    JS_ReportOutOfMemory(cx);
-                    return false;
-                }
-            } else {
+            if (!v.isObject()) {
                 JS_ReportErrorNumberASCII(cx, GetErrorMessage, nullptr, JSMSG_UNEXPECTED_TYPE,
                                           "\"envChainObject\" passed to evaluate()", "not an object");
                 return false;
+            } else if (v.toObject().is<GlobalObject>()) {
+                JS_ReportErrorASCII(cx, "\"envChainObject\" passed to evaluate() should not be a global");
+                return false;
+            } else if (!envChain.append(&v.toObject())) {
+                JS_ReportOutOfMemory(cx);
+                return false;
             }
         }
 
         // We cannot load or save the bytecode if we have no object where the
         // bytecode cache is stored.
         if (loadBytecode || saveBytecode || saveIncrementalBytecode) {
             if (!cacheEntry) {
                 JS_ReportErrorNumberASCII(cx, my_GetErrorMessage, nullptr, JSSMSG_INVALID_ARGS,
--- a/js/src/tests/js1_8_5/extensions/non_syntactic.js
+++ b/js/src/tests/js1_8_5/extensions/non_syntactic.js
@@ -28,9 +28,19 @@ evaluate("assertEq(someVar, 2);", evalOp
 evaluate("assertEq(this.someVar, 2);", evalOpt);
 evaluate("assertEq(this, alsoSomeObject);", evalOpt);
 
 // With an object on the scope, inside a function.
 evaluate("(function() { assertEq(someVar, 2);})()", evalOpt);
 evaluate("(function() { assertEq(this !== alsoSomeObject, true);})()", evalOpt);
 evaluate("(function() { assertEq(this.someVar, 1);})()", evalOpt);
 
+var globalEvalOpt = {
+    envChainObject: this
+};
+try {
+  evaluate("assertEq(someVar, 1);", globalEvalOpt);
+  throw new Error("Globals aren't allowed as a envChainObject argument to evaluate");
+} catch (e) {
+}
+
+
 reportCompare(true, true);
gecko
Deployed from 4e825768105f at 2024-04-08T16:23:58Z.