mozilla-inbound: changeset 247831:13f8dcb5b7a5879aeac869b2bc74ac47b20c9c3d

author	Fabrice Desré <fabrice@mozilla.com>
	Tue, 09 Jun 2015 11:22:07 -0700
changeset 247831	13f8dcb5b7a5879aeac869b2bc74ac47b20c9c3d
parent 247826	a40b2c6672cd30671090ac3afc45ad46ec3c4c27
child 247832	273ee84ec8bf4525fce61719ac20f108c551d829
push id	60814
push user	kwierso@gmail.com
push date	Wed, 10 Jun 2015 02:29:27 +0000
treeherder	mozilla-inbound@bc32a90612e5 [default view] [failures only]
perfherder	[talos] [build metrics] [platform microbench] (compared to previous push)
reviewers	ferjm, ryanvm
bugs	1170836
milestone	41.0a1
first release with	nightly linux32 5787d784485e / 41.0a1 / 20150610030209 / files nightly linux64 5787d784485e / 41.0a1 / 20150610030209 / files nightly mac 5787d784485e / 41.0a1 / 20150610030209 / files nightly win32 5787d784485e / 41.0a1 / 20150610030209 / files nightly win64 5787d784485e / 41.0a1 / 20150610030209 / files
last release without	nightly linux32 e10e2e8d8bf2 / 41.0a1 / 20150609081916 / files nightly linux64 e10e2e8d8bf2 / 41.0a1 / 20150609081916 / files nightly mac e10e2e8d8bf2 / 41.0a1 / 20150609081916 / files nightly win32 e10e2e8d8bf2 / 41.0a1 / 20150609081916 / files nightly win64 4700d1cdf489 / 41.0a1 / 20150608030201 / files

--- a/dom/apps/ImportExport.jsm
+++ b/dom/apps/ImportExport.jsm
@@ -384,45 +384,48 @@ this.ImportExport = {
       meta.downloadSize = 0;
       meta.lastUpdateCheck = Date.now();
       meta.updateTime = Date.now();
       meta.manifestHash = AppsUtils.computeHash(manifestString);
       meta.installerAppId = Ci.nsIScriptSecurityManager.NO_APP_ID;
       meta.installerIsBrowser = false;
       meta.role = manifest.role;
 
+      let devMode = false;
+      try {
+        devMode = Services.prefs.getBoolPref("dom.apps.developer_mode");
+      } catch(e) {}
+
       // Set the appropriate metadata for hosted and packaged apps.
       if (isPackage) {
         meta.origin = "app://" + meta.id;
         // Signature check
         // TODO: stop accessing internal methods of other objects.
         let [reader, isSigned] =
           yield DOMApplicationRegistry._openPackage(appFile, meta, false);
         let maxStatus = isSigned ? Ci.nsIPrincipal.APP_STATUS_PRIVILEGED
                                  : Ci.nsIPrincipal.APP_STATUS_INSTALLED;
-        try {
-          // Anything is possible in developer mode.
-          if (Services.prefs.getBoolPref("dom.apps.developer_mode")) {
-            maxStatus = Ci.nsIPrincipal.APP_STATUS_CERTIFIED;
-          }
-        } catch(e) {};
+        // Anything is possible in developer mode.
+        if (devMode) {
+          maxStatus = Ci.nsIPrincipal.APP_STATUS_CERTIFIED;
+        }
         meta.appStatus = AppsUtils.getAppManifestStatus(manifest);
         debug("Signed app? " + isSigned);
         if (meta.appStatus > maxStatus) {
           throw "InvalidPrivilegeLevel";
         }
 
         // Custom origin.
         // We unfortunately can't reuse _checkOrigin here.
-        if (isSigned &&
-            meta.appStatus == Ci.nsIPrincipal.APP_STATUS_PRIVILEGED &&
+        if ((isSigned || devMode) &&
+            meta.appStatus >= Ci.nsIPrincipal.APP_STATUS_PRIVILEGED &&
             manifest.origin) {
           let uri;
           try {
-            uri = Services.io.newURI(aManifest.origin, null, null);
+            uri = Services.io.newURI(manifest.origin, null, null);
           } catch(e) {
             throw "InvalidOrigin";
           }
           if (uri.scheme != "app") {
             throw "InvalidOrigin";
           }
           meta.id = uri.prePath.substring(6); // "app://".length
           if (meta.id in DOMApplicationRegistry.webapps) {