[Greasemonkey] bug 11423

Jeremy Dunck jdunck at gmail.com
Wed Aug 31 09:39:23 EDT 2005


On 8/31/05, Mor Roses <moroses at gmail.com> wrote:
> Is'nt GM 0.5 uses the Sandbox approach?
> if it is'nt then what is it?
> 

"sandbox" generally just means a safe area.  0.5.1 does use _a_
sandbox, but there's a moz-specific function, evalInSandbox, which
does what we're looking for w.r.t. safe javascripting.  0.5.1 doesn't
use evalInSandbox.

An alpha from the list used evalInSandbox, but as Aaron described,
under 1.0.x, there's a performance penalty per evaluation.  He floated
the idea of just going for 1.5.x compat and dropping 1.0.x, but the
folks screamed mightily.

So he found another way to have decent performance on 1.0.x and which
seemed to work but turns out not to, due to brittleness of events
received.

The approach offered now is an attempt to get decent performance with
evalInSandbox under 1.0.x, but the downside is that scripts can
(intentionally or not) interfere with each other.


More information about the Greasemonkey mailing list