[torbrowser/master] Update patch file names, improve description of 0002. - tor-commits

23 Oct 2011

commit 47d8a4e7125e1a4c88ade4f02e79dcb52033a7f0
Author: Mike Perry mikeperry-git@fscked.org
Date:   Tue Jun 21 12:53:04 2011 -0700
Update patch file names, improve description of 0002.
---
 ...ck-Components.-interfaces-lookupMethod-fr.patch |   47 ------------------
 ...ck-Components.interfaces-lookupMethod-fro.patch |   50 ++++++++++++++++++++
 ...-Make-Intermediate-Cert-Store-memory-only.patch |    2 +-
 ...efox-Make-Permissions-Manager-memory-only.patch |    2 +-
 4 files changed, 52 insertions(+), 49 deletions(-)

diff --git a/src/current-patches/0002-Firefox-Block-Components.-interfaces-lookupMethod-fr.patch b/src/current-patches/0002-Firefox-Block-Components.-interfaces-lookupMethod-fr.patch
deleted file mode 100644
index 875d224..0000000
--- a/src/current-patches/0002-Firefox-Block-Components.-interfaces-lookupMethod-fr.patch
+++ /dev/null
@@ -1,47 +0,0 @@
-From a7c0d63de921990b78c81482b01da86b6bc70190 Mon Sep 17 00:00:00 2001
-From: Mike Perry mikeperry-git@fscked.org
-Date: Mon, 20 Jun 2011 17:07:41 -0700
-Subject: [PATCH 2/4] Firefox: Block Components.{interfaces,lookupMethod} from content
-
-These two seem to be exposed to content script only to make our lives
-difficult. Components.lookupMethod can undo our JS hooks, and
-Components.interfaces is useful for fingerprinting the platform, OS, and
-Firebox version.
-
-They appear to have no other legitimate use. See also:
-https://bugzilla.mozilla.org/show_bug.cgi?id=429070
-https://trac.torproject.org/projects/tor/ticket/2873
-https://trac.torproject.org/projects/tor/ticket/2874
----
- js/src/xpconnect/src/xpccomponents.cpp |    8 ++++++--
- 1 files changed, 6 insertions(+), 2 deletions(-)
-
-diff --git a/js/src/xpconnect/src/xpccomponents.cpp b/js/src/xpconnect/src/xpccomponents.cpp
-index 1c141f9..85a2b4e 100644
---- a/js/src/xpconnect/src/xpccomponents.cpp
-+++ b/js/src/xpconnect/src/xpccomponents.cpp
-@@ -4294,7 +4294,9 @@ nsXPCComponents::CanCreateWrapper(const nsIID * iid, char **_retval)
- NS_IMETHODIMP
- nsXPCComponents::CanCallMethod(const nsIID * iid, const PRUnichar *methodName, char **_retval)
- {
--    static const char* allowed[] = { "isSuccessCode", "lookupMethod", nsnull };
-+    // XXX: Pref observer? Also, is this what we want? Seems like a plan
-+    //static const char* allowed[] = { "isSuccessCode", "lookupMethod", nsnull };
-+    static const char* allowed[] = { "isSuccessCode", nsnull };
-     *_retval = xpc_CheckAccessList(methodName, allowed);
-     return NS_OK;
- }
-@@ -4303,7 +4305,9 @@ nsXPCComponents::CanCallMethod(const nsIID * iid, const PRUnichar *methodName, c
- NS_IMETHODIMP
- nsXPCComponents::CanGetProperty(const nsIID * iid, const PRUnichar *propertyName, char **_retval)
- {
--    static const char* allowed[] = { "interfaces", "interfacesByID", "results", nsnull};
-+    // XXX: Pref observer? Also, is this what we want? Seems like a plan
-+    //    static const char* allowed[] = { "interfaces", "interfacesByID", "results", nsnull};
-+    static const char* allowed[] = { "results", nsnull};
-     *_retval = xpc_CheckAccessList(propertyName, allowed);
-     return NS_OK;
- }
--- 
-1.7.3.4
-
diff --git a/src/current-patches/0002-Firefox-Block-Components.interfaces-lookupMethod-fro.patch b/src/current-patches/0002-Firefox-Block-Components.interfaces-lookupMethod-fro.patch
new file mode 100644
index 0000000..21049fa
--- /dev/null
+++ b/src/current-patches/0002-Firefox-Block-Components.interfaces-lookupMethod-fro.patch
@@ -0,0 +1,50 @@
+From 8a056d35c126c6915c6e16997fd5db0865079e7d Mon Sep 17 00:00:00 2001
+From: Mike Perry mikeperry-git@fscked.org
+Date: Mon, 20 Jun 2011 17:07:41 -0700
+Subject: [PATCH 2/4] Firefox: Block Components.interfaces,lookupMethod from content
+
+This patch removes the ability of content script to access
+Components.interfaces.* as well as call or access Components.lookupMethod.
+
+These two interfaces seem to be exposed to content script only to make our
+lives difficult. Components.lookupMethod can undo our JS hooks, and
+Components.interfaces is useful for fingerprinting the platform, OS, and
+Firebox version.
+
+They appear to have no other legitimate use. See also:
+https://bugzilla.mozilla.org/show_bug.cgi?id=429070
+https://trac.torproject.org/projects/tor/ticket/2873
+https://trac.torproject.org/projects/tor/ticket/2874
+---
+ js/src/xpconnect/src/xpccomponents.cpp |    8 ++++++--
+ 1 files changed, 6 insertions(+), 2 deletions(-)
+
+diff --git a/js/src/xpconnect/src/xpccomponents.cpp b/js/src/xpconnect/src/xpccomponents.cpp
+index 1c141f9..85a2b4e 100644
+--- a/js/src/xpconnect/src/xpccomponents.cpp
++++ b/js/src/xpconnect/src/xpccomponents.cpp
+@@ -4294,7 +4294,9 @@ nsXPCComponents::CanCreateWrapper(const nsIID * iid, char **_retval)
+ NS_IMETHODIMP
+ nsXPCComponents::CanCallMethod(const nsIID * iid, const PRUnichar *methodName, char **_retval)
+ {
+-    static const char* allowed[] = { "isSuccessCode", "lookupMethod", nsnull };
++    // XXX: Pref observer? Also, is this what we want? Seems like a plan
++    //static const char* allowed[] = { "isSuccessCode", "lookupMethod", nsnull };
++    static const char* allowed[] = { "isSuccessCode", nsnull };
+     *_retval = xpc_CheckAccessList(methodName, allowed);
+     return NS_OK;
+ }
+@@ -4303,7 +4305,9 @@ nsXPCComponents::CanCallMethod(const nsIID * iid, const PRUnichar *methodName, c
+ NS_IMETHODIMP
+ nsXPCComponents::CanGetProperty(const nsIID * iid, const PRUnichar *propertyName, char **_retval)
+ {
+-    static const char* allowed[] = { "interfaces", "interfacesByID", "results", nsnull};
++    // XXX: Pref observer? Also, is this what we want? Seems like a plan
++    //    static const char* allowed[] = { "interfaces", "interfacesByID", "results", nsnull};
++    static const char* allowed[] = { "results", nsnull};
+     *_retval = xpc_CheckAccessList(propertyName, allowed);
+     return NS_OK;
+ }
+-- 
+1.7.3.4
+
diff --git a/src/current-patches/0003-Firefox-Make-Intermediate-Cert-Store-memory-only.patch b/src/current-patches/0003-Firefox-Make-Intermediate-Cert-Store-memory-only.patch
index 7475492..7e5fc88 100644
--- a/src/current-patches/0003-Firefox-Make-Intermediate-Cert-Store-memory-only.patch
+++ b/src/current-patches/0003-Firefox-Make-Intermediate-Cert-Store-memory-only.patch
@@ -1,4 +1,4 @@
-From eb23d73f7ce0503d62485b81ace4fdbba091588a Mon Sep 17 00:00:00 2001
+From a401deb3598db247113a998fb287f663b6acfac0 Mon Sep 17 00:00:00 2001
 From: Mike Perry mikeperry-git@fscked.org
 Date: Mon, 20 Jun 2011 17:07:49 -0700
 Subject: [PATCH 3/4] Firefox: Make Intermediate Cert Store memory-only.
diff --git a/src/current-patches/0004-Firefox-Make-Permissions-Manager-memory-only.patch b/src/current-patches/0004-Firefox-Make-Permissions-Manager-memory-only.patch
index 16bd25d..241e4eb 100644
--- a/src/current-patches/0004-Firefox-Make-Permissions-Manager-memory-only.patch
+++ b/src/current-patches/0004-Firefox-Make-Permissions-Manager-memory-only.patch
@@ -1,4 +1,4 @@
-From 880d0b8c0b0c30316585ad3745dd3ee824d326b8 Mon Sep 17 00:00:00 2001
+From acf065599f1ab270eed4846fbc916f245002da0d Mon Sep 17 00:00:00 2001
 From: Mike Perry mikeperry-git@fscked.org
 Date: Mon, 20 Jun 2011 17:07:56 -0700
 Subject: [PATCH 4/4] Firefox: Make Permissions Manager memory-only

    