review.tizen.org Git - platform/upstream/v8.git/commit

Re-enable Object.observe and add enforcement for security invariants.

This patch reverts r21062 which disabled Object.observe and the relevant tests.

It also adds enforcement for the following three invariants:

1) No observer may receive a change record describing changes to an object which is in different security origin (context have differing security tokens)

2) No observer may receive a change record whose context's security token is different from that of the object described by the change.

3) Object.getNotifier will return null if the caller and the provided object are in differing security origins

Further, it ensures that the global object can never be observed nor a notifier retrieved for it.

Tests are included.
R=verwaest@chromium.org, rossberg
LOG=Y

Review URL: https://codereview.chromium.org/265503002

git-svn-id: http://v8.googlecode.com/svn/branches/bleeding_edge@21122 ce2b1a6d-e550-0410-aec6-3dcde31c8c00

author	rafaelw@chromium.org <rafaelw@chromium.org@ce2b1a6d-e550-0410-aec6-3dcde31c8c00>
	Fri, 2 May 2014 13:55:11 +0000 (13:55 +0000)
committer	rafaelw@chromium.org <rafaelw@chromium.org@ce2b1a6d-e550-0410-aec6-3dcde31c8c00>
	Fri, 2 May 2014 13:55:11 +0000 (13:55 +0000)
commit	1b270ef5ea3aeb76633fe52ab0ec6ae4d9d811f0
tree	cd9e56d4b16c385f89c1c58d7a91774b5ea32f60	tree \| snapshot
parent	d76ad1691c30514ff28717538290fa6e5f82c719	commit \| diff

src/api.cc		diff \| blob \| history
src/messages.js		diff \| blob \| history
src/object-observe.js		diff \| blob \| history
src/objects.cc		diff \| blob \| history
src/objects.h		diff \| blob \| history
src/runtime.cc		diff \| blob \| history
src/runtime.h		diff \| blob \| history
test/cctest/cctest.status		diff \| blob \| history
test/cctest/test-object-observe.cc		diff \| blob \| history
test/mjsunit/es7/object-observe.js		diff \| blob \| history
test/mjsunit/mjsunit.status		diff \| blob \| history