Daniel Holbert
6130329261
Bug 1132743 followup: hook up nsPrincipal.cpp's "gCodeBasePrincipalSupport" in new InitializeStatics method, instead of lazily. implicit rs=dbaron
2015-03-13 13:16:01 -07:00
Daniel Holbert
aff7407e30
Bug 1132743: Only allow CSS Unprefixing Service to be activated for hosts on a small, hardcoded whitelist. r=dbaron f=bz
...
--HG--
rename : layout/style/test/test_unprefixing_service.html => layout/style/test/unprefixing_service_iframe.html
2015-03-13 13:15:09 -07:00
Jonathan Griffin
d1c61bc9b6
Bug 1116187 - Disable failing mochitest-chrome tests for B2G, r=gbrown
2015-02-06 16:30:37 -08:00
Blake Kaplan
c6890412ec
Bug 1087646 - Properly serialize nullprincipal URIs across IPC. r=bzbarsky
2015-02-24 12:54:40 -08:00
Andrew McCreight
c9d51e1ad0
Bug 1123854 - Remove some out of memory checks in caps/. r=jst
2015-01-30 10:59:49 -08:00
Phil Ringnalda
d1ead4e72c
Bug 1067022 - Annotate the expected 5 "bad inline size" assertions on 10.10 in test_bug995943.xul, r=dbaron
...
--HG--
extra : rebase_source : 4cda7e6863fd6daad5de642be9ace6a0f04c8e54
2015-01-18 12:53:13 -08:00
Ehsan Akhgari
1e88271572
Bug 1119268 - Mark virtual overridden functions as MOZ_OVERRIDE in misc code; r=bsmedberg
2015-01-12 23:26:30 -05:00
Wes Kocher
4a8e595770
Backout c034dba7a417
2015-01-12 14:46:48 -08:00
Ehsan Akhgari
d517a30886
Bug 1119268 - Mark virtual overridden functions as MOZ_OVERRIDE in misc code; r=bsmedberg
2015-01-12 16:35:06 -05:00
Christoph Kerschbaumer
97e4b52984
Bug 1110615 - Fix inheriting problem for blobs (r=sicking)
2014-12-12 09:03:47 -08:00
Phil Ringnalda
f7aea19aae
Backed out 15 changesets (bug 1087442)
...
Backed out changeset 3f4166fb5e37 (bug 1087442)
Backed out changeset 0c9c9123a0a9 (bug 1087442)
Backed out changeset 1d85d298042d (bug 1087442)
Backed out changeset 51f3ce397d68 (bug 1087442)
Backed out changeset f3b81a623692 (bug 1087442)
Backed out changeset 472e8fa74596 (bug 1087442)
Backed out changeset 12f97df7b79c (bug 1087442)
Backed out changeset 253cde88d3c5 (bug 1087442)
Backed out changeset b44f9ebd56cb (bug 1087442)
Backed out changeset 48e412887726 (bug 1087442)
Backed out changeset a2c76343f7a9 (bug 1087442)
Backed out changeset 0b5b07cfef0e (bug 1087442)
Backed out changeset 2931c35342a4 (bug 1087442)
Backed out changeset 681ce9dcad64 (bug 1087442)
Backed out changeset 47c505856954 (bug 1087442)
2014-12-11 21:58:21 -08:00
Christoph Kerschbaumer
31b61e551f
Bug 1087442 - Attach LoadInfo inside each individual ProtocolHandler - securitymanager changes (r=sicking)
2014-12-11 20:47:55 -08:00
Chris Peterson
22d0c4b343
Bug 1107814 - Part 1: Mark more directories as FAIL_ON_WARNINGS for all compilers. r=gps
2014-12-04 16:24:03 -08:00
Christoph Kerschbaumer
ba415e054d
Bug 1083422 - Add triggering Principal to nsILoadInfo - update consumers (r=bz)
2014-11-14 08:57:26 -08:00
Andrea Marchesini
17502c7ff1
Bug 1094257 - nsPrincipal::GetBaseDomain() should not use TLD if the protocol handler of the URI scheme has NORELATIVE flag, r=bz
2014-11-11 09:10:56 +00:00
Bobby Holley
08be6709e0
Bug 1088617 - Remove nsIScriptSecurityManager::CheckSameOrigin. r=me
2014-10-29 09:21:18 +01:00
Bobby Holley
f53e1888e0
Bug 1088617 - Handle nsIURIWithPrincipal in nsPrincipal::CheckMayLoad. r=bz
...
This mimics the logic already inside nsNullPrincipal::CheckMayLoad.
2014-10-29 09:21:17 +01:00
Tom Schuster
bf9324688d
Bug 1069694 - Remove OldDebugAPI from the browser. r=shu
2014-10-12 19:37:41 +02:00
Bob Owen
3140b4a353
Bug 1054646 - Part 1: Change nsNullPrincipal::CheckMayLoad to always allow loads when the principal of the URI in the principal doing the load. r=bz
2014-09-30 09:09:36 +01:00
Bobby Holley
8ce4688d81
Bug 1066718 - Get sIOService before invoking ReadPrefs. r=bz
2014-09-16 21:30:32 +02:00
Shu-yu Guo
59ccd2fecb
Bug 1001090 - Part 5: Fix errors in tests throughout the tree. (r=robcee,gavin)
2014-09-15 16:30:47 -07:00
Bobby Holley
4ae78956b0
Bug 1008481 - Re-enable failing test. r=me
2014-09-13 13:13:23 -07:00
Bobby Holley
daf96052e9
Bug 1008481 - Switch to the root dir instead of the profile dir. r=me
2014-09-13 13:13:22 -07:00
Bobby Holley
ac94bb3958
Bug 1008481 - Add an expected assertion. r=me
2014-09-13 13:13:22 -07:00
Ryan VanderMeulen
1e4137ff7a
Bug 1008481 - Really disable the test on only opt.
...
--HG--
extra : rebase_source : 93237cb46d90ef61228150be0c4a24ddf9f46ea2
2014-09-10 16:23:40 -04:00
Ryan VanderMeulen
10ab2e900f
Bug 1008481 - Skip test_bug995943.xul on OSX opt for failing ~80% of the time.
2014-09-10 14:27:02 -04:00
Bobby Holley
3ef23ad9b7
Bug 1008481 - Request complete log for intermittently-failing test. r=me
2014-09-09 21:52:31 -07:00
Bobby Holley
86ba57ba6a
Bug 1053725 - When one domain is whitelisted for file:// URI access, whitelist all subdomains. r=bz
2014-09-08 22:22:22 -07:00
Bobby Holley
21d9e88153
Bug 1061136 - Followup bugfix. r=bz
2014-09-08 22:22:21 -07:00
Bobby Holley
6cfbd9472f
Bug 1061136 - Assume both http:// and https:// for schemeless URIs in CAPS prefs. r=bz
2014-09-05 20:01:06 -07:00
Christoph Kerschbaumer
68de320099
Bug 1062529 - Split GetChannelPrincipal into GetChannelResultPrincipal and GetChannelURIPrincipal. r=bz
2014-08-06 16:05:40 -07:00
Ehsan Akhgari
5567369ba5
Bug 1060989 - Fix more bad implicit constructors in caps; r=bsmedberg
...
--HG--
extra : rebase_source : 5045340f3d9f8d9a2c50359fd0b3a75ec223eab1
2014-09-02 18:20:14 -04:00
Fabrice Desré
4533961b74
Bug 1011738 - Theme support for b2g/gaia, Part 4 : security checks r=bent,bz
2014-08-28 17:20:27 -07:00
Trevor Saunders
fd5e9d1fcc
bug 1047696 - mark a number of classes MOZ_FINAL to get compilers to devirtualize more r=froydnj
2014-08-05 13:33:55 -04:00
Bobby Holley
e70ddb7476
Bug 1052052 - Hoist Auto*JSContext into nsContentUtils and kill nsCxPusher.{cpp,h}. r=gabor
2014-08-14 18:47:15 -07:00
Ryan VanderMeulen
30ae466592
Backed out changesets 5b1a3161f614, 17a9673ed782, and a9b8c346d295 (bug 1052052) for B2G non-unified bustage.
2014-08-14 17:23:10 -04:00
Bobby Holley
3e4d70a655
Bug 1052052 - Hoist Auto*JSContext into nsContentUtils and kill nsCxPusher.{cpp,h}. r=gabor
2014-08-14 12:54:34 -07:00
Sid Stamm
2252bd6c38
Bug 994872 - Remove documentPrincipal from nsIContentSecurityPolicy::SetRequestContext. (r=ckerschb)
2014-07-30 14:37:22 -07:00
Bobby Holley
f6516d5622
Bug 1022229 - Borrow App ID and mozBrowser-ness when creating sandbox null principals. r=bz
2014-07-29 08:47:52 -07:00
Bobby Holley
4adfe5c438
Bug 1022229 - Let Null Principals have App IDs and mozBrowser status. r=bz
2014-07-29 08:47:52 -07:00
Bobby Holley
22b3a5b9bb
Bug 1022229 - Hoist GetAppStatus into a static method on nsScriptSecurityManager. r=bz
2014-07-29 08:47:52 -07:00
Ryan VanderMeulen
9a8cfb647e
Backed out 5 changesets (bug 1022229) for non-unified bustage.
...
Backed out changeset d79b991a8d96 (bug 1022229)
Backed out changeset 34f9a0e7dbde (bug 1022229)
Backed out changeset 37fbaf69c6e0 (bug 1022229)
Backed out changeset d6111b0603f5 (bug 1022229)
Backed out changeset 154922edf5fe (bug 1022229)
2014-07-28 15:08:51 -04:00
Bobby Holley
b755961e1d
Bug 1022229 - Followup bustage fix. r=me CLOSED TREE
2014-07-28 11:26:41 -07:00
Bobby Holley
0f8a49569d
Bug 1022229 - Borrow App ID and mozBrowser-ness when creating sandbox null principals. r=bz
2014-07-28 10:37:54 -07:00
Bobby Holley
f5a7274a4e
Bug 1022229 - Let Null Principals have App IDs and mozBrowser status. r=bz
2014-07-28 10:37:54 -07:00
Bobby Holley
635f27b521
Bug 1022229 - Hoist GetAppStatus into a static method on nsScriptSecurityManager. r=bz
2014-07-28 10:37:54 -07:00
Mike Hommey
bc5d6801bb
Bug 1041860 - Avoid setting FINAL_LIBRARY to libraries that further use a FINAL_LIBRARY. r=mshal
2014-07-23 08:37:51 +09:00
Steve Fink
0e87a94e07
Bug 1035395, r=bholley,smaug
...
--HG--
extra : rebase_source : 478200a62a5073177ae3c782e252fa9a804e5b01
2014-07-18 09:37:42 -07:00
Birunthan Mohanathas
a4ac396211
Bug 1038535 - Flatten caps/{idl,include,src}/ directories. r=bholley,gps
...
--HG--
rename : caps/src/DomainPolicy.cpp => caps/DomainPolicy.cpp
rename : caps/include/DomainPolicy.h => caps/DomainPolicy.h
rename : caps/idl/nsIDomainPolicy.idl => caps/nsIDomainPolicy.idl
rename : caps/idl/nsIPrincipal.idl => caps/nsIPrincipal.idl
rename : caps/idl/nsIScriptSecurityManager.idl => caps/nsIScriptSecurityManager.idl
rename : caps/src/nsJSPrincipals.cpp => caps/nsJSPrincipals.cpp
rename : caps/include/nsJSPrincipals.h => caps/nsJSPrincipals.h
rename : caps/src/nsNullPrincipal.cpp => caps/nsNullPrincipal.cpp
rename : caps/include/nsNullPrincipal.h => caps/nsNullPrincipal.h
rename : caps/src/nsNullPrincipalURI.cpp => caps/nsNullPrincipalURI.cpp
rename : caps/src/nsNullPrincipalURI.h => caps/nsNullPrincipalURI.h
rename : caps/src/nsPrincipal.cpp => caps/nsPrincipal.cpp
rename : caps/include/nsPrincipal.h => caps/nsPrincipal.h
rename : caps/src/nsScriptSecurityManager.cpp => caps/nsScriptSecurityManager.cpp
rename : caps/include/nsScriptSecurityManager.h => caps/nsScriptSecurityManager.h
rename : caps/src/nsSystemPrincipal.cpp => caps/nsSystemPrincipal.cpp
rename : caps/include/nsSystemPrincipal.h => caps/nsSystemPrincipal.h
2014-07-15 11:12:59 -07:00
Boris Zbarsky
571a8c4e1f
Bug 965413 part 4. Teach the security manager about nsILoadInfo. r=smaug
2014-07-10 02:56:36 -04:00
Chris Peterson
e56956aa2f
Bug 1032644 - Fix some -Wunused warnings in non-unified OS X build. r=ehsan
2014-07-02 18:55:19 -07:00
Benoit Jacob
dd08a67adb
Bug 1028588 - Fix dangerous public destructors in miscellaneous places - r=ehsan
2014-06-23 18:40:03 -04:00
Bobby Holley
eb4c58e601
Bug 1008481 - Even more debugging output. r=me DONTBUILD
2014-06-10 21:44:32 -07:00
Jonathan Watt
5d261ca374
Bug 1022667, part 1 - Remove IDToString from nsScriptSecurityManager.cpp. r=Ms2ger
2014-06-10 16:42:20 +01:00
Ms2ger
6558df9772
Bug 1018103 - Remove support for the "JavaScript-global-static-nameset" category; r=bholley
...
The only in-tree consumer was removed in bug 1012320; the addons MXR and a web
search suggest that it is unused outside the tree as well.
2014-06-06 10:06:26 +02:00
Bobby Holley
ee6d66a51b
Bug 1008481 - More test diagnostics. r=me
2014-06-05 23:41:35 -07:00
Bill McCloskey
9157c8fd4d
Bug 1017310 - Rename *XBLScope to *ContentXBLScope in xpconnect (r=bholley)
2014-06-02 18:04:21 -07:00
Ms2ger
f4f685b62c
Bug 1012320 - Move the code that defines window.netscape into nsGlobalWindow and simplify it; r=bholley
2014-05-30 09:36:52 +02:00
Bobby Holley
e8184f80e1
Bug 1008481 - Try disabling https test to stop mysterious orange. r=me
2014-05-23 15:28:03 -07:00
Julien Levesy
38b0b1f449
Bug 1006692 - Replaced nsScriptSecurityManager::SubjectIsPrivileged and AccessCheck::IsCallerChrome by nsContentUtils::IsCallerChrome. r=bholley
2014-05-19 13:39:00 +02:00
Birunthan Mohanathas
0e6f3a6562
Bug 869836 - Part 3: Use `Append('c')` instead of `AppendLiteral("c")`. r=ehsan
2014-05-22 06:48:51 +03:00
Nathan Froyd
b80b3999b9
Bug 1012748 - part 3 - remove nsIXPCSecurityManager; r=bholley
2014-05-19 12:59:30 -04:00
Jonathan Watt
d11592e143
Bug 1011024 - Fix nsScriptSecurityManager::GetChannelPrincipal so that it doesn't fail to get the correct nsIPrincipal for some resource documents. r=bz
2014-05-16 23:59:36 +01:00
Nick Lebedev
c49e263d0f
Bug 998002 - Rename nsContentUtils::Get{Subject,Object}Principal to nsContentUtils::{Subject,Object}Principal. r=bholley
2014-05-13 11:58:00 +02:00
Bobby Holley
293af2c9f3
Bug 995943 - Allow access to file:// URIs from pref-whitelisted sites. r=bz
2014-05-09 09:59:22 -07:00
Bobby Holley
d290b8b81b
Bug 995943 - Clean up some silly stuff surrounding prefs in CAPS. r=bz
2014-05-09 09:59:22 -07:00
Carsten "Tomcat" Book
0ee09e7671
Backed out changeset 9899ea7e3a32 (bug 995943) for m-other test failures
2014-05-09 09:14:37 +02:00
Carsten "Tomcat" Book
4522910bb7
Backed out changeset 96dbf1ff169c (bug 995943)
2014-05-09 09:13:49 +02:00
Bobby Holley
75cbf9b70c
Bug 995943 - Allow access to file:// URIs from pref-whitelisted sites. r=bz
2014-05-08 22:19:11 -07:00
Bobby Holley
1eda1636be
Bug 995943 - Clean up some silly stuff surrounding prefs in CAPS. r=bz
2014-05-08 22:19:10 -07:00
Bobby Holley
2513cf740a
Bug 1001198 - Explicitly fire up the SSM from nsXPConnect. r=gabor
2014-05-06 23:17:43 -07:00
Bobby Holley
8ba3be8772
Bug 997987 - Cache the system principal on nsContentUtils and remove nsIScriptSecurityManager::SubjectPrincipalIsSystem. r=Ms2ger,sr=bz
2014-05-06 15:43:03 -07:00
Bobby Holley
6daeb674b4
Bug 997987 - Remove nsIScriptSecurityManager::GetSubjectPrincipal. r=Ms2ger
2014-05-06 15:43:03 -07:00
Bobby Holley
5a3bee8d99
Bug 997987 - Remove usage of nsIScriptSecurityManager::GetSubjectPrincipal. r=Ms2ger
2014-05-06 15:43:03 -07:00
Bobby Holley
9c988d6c40
Bug 997987 - Remove nsIScriptSecurityManager::GetCxSubjectPrincipal. r=Ms2ger
2014-05-06 15:43:02 -07:00
Jon Coppeard
1216544376
Bug 959787 - Handlify remaining JS APIs r=terrence r=bz r=bholley
2014-04-30 10:10:33 +01:00
Birunthan Mohanathas
5f1fde8824
Bug 900908 - Part 3: Change uses of numbered macros in nsIClassInfoImpl.h/nsISupportsImpl.h to the variadic variants. r=froydnj
2014-04-27 03:06:00 -04:00
Arpad Borsos
4136c664aa
Bug 474369 - remove nsVoidArray includes; r=ehsan
...
--HG--
extra : rebase_source : dd3abeb623fd8b784fd6ba639c88def84a4daf58
2014-04-26 16:12:45 +02:00
Andrew McCreight
f4362369dd
Bug 998779 - Remove unused #includes of nsHashtable.h. r=froydnj
2014-04-21 09:41:58 -07:00
Bobby Holley
88cc67dc3b
Bug 998083 - Introduce Cu.getObjectPrincipal and kill nsIScriptSecurityManager::GetObjectPrincipal. r=gabor
2014-04-19 10:39:59 -07:00
Bob Owen
6ff37ba8dc
Bug 986439 - Don't use nsNullPrincipalURI for referrer. r=bz
2014-03-29 19:10:27 +00:00
Neil Rashbrook
1f60c22cea
Bug 948901 FTP directory listings need to support the Character Encoding menu r=mayhemer,michal
2014-03-28 08:32:56 +00:00
Ehsan Akhgari
186680d83a
Bug 798158 - Part 1: Use a pointer-sized type to store refcounts internally; r=bsmedberg
2014-03-27 16:38:33 -04:00
Kyle Huey
817b5ccbd9
Bug 345123: Remove nsGetterAddRefs<T>'s operator nsISupports**. r=bsmedberg
2014-03-15 12:00:17 -07:00
Bill McCloskey
fd05f3eb04
Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted)
2014-03-13 21:38:19 -07:00
Wes Kocher
3b83e5bb22
Backed out changeset 88425ad0f06a (bug 982828) for introducing various mochitest-5 failures on a CLOSED TREE
...
* * *
Backed out changeset 94f9ebdc6662 (bug 982828)
2014-03-13 19:41:21 -07:00
Bill McCloskey
e784b5aef6
Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted)
2014-03-13 15:41:41 -07:00
Bill McCloskey
006786a6b4
Backed out changeset d6261f65070a
2014-03-13 15:52:27 -07:00
Bill McCloskey
ed100f425c
Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted)
2014-03-13 15:41:41 -07:00
Vaibhav Agarwal
64e20261db
Bug 971132 - B2G mochitests should use the new manifest format; r=jmaher
2014-03-06 13:42:43 -05:00
Luke Wagner
dfb0b68df3
Bug 976348 - Change DescribeScriptedCaller to not return a JSScript (r=bholley)
...
--HG--
extra : rebase_source : 58387ce3e4c49d3140b92b84bf3577fc6584820e
2014-02-25 09:43:14 -06:00
Bobby Holley
7e6a232b92
Bug 956382 - Remove implementations of *IgnoringDomain variants. r=mrbkap
2014-02-13 18:57:36 -08:00
Bobby Holley
5489839173
Bug 956382 - Remove unused CAPS gunk. r=mrbkap
2014-02-13 18:57:36 -08:00
Bobby Holley
db40fe8635
Bug 956382 - Hoist nsScriptSecurityManager::CheckSameOriginPrincipal into nsPrincipal::EqualsConsideringDomain. r=mrbkap
2014-02-13 18:57:36 -08:00
Bobby Holley
0efcb609ad
Bug 956382 - Ignore document.domain by default. r=mrbkap
2014-02-13 18:57:36 -08:00
Bobby Holley
c5505c6f3d
Bug 956382 - Introduce an explicit API to do principal checks with document.domain. r=mrbkap
2014-02-13 18:57:34 -08:00
Bobby Holley
0d05bf1dc9
Bug 972478 - Docshell scriptability should only affect non-immune principals. r=bz
2014-02-13 15:40:50 -08:00
Sid Stamm
f6b4704ae8
Bug 911547 - make nsIContentSecurityPolicy serializable and trigger read/write from nsPrincipal. r=jst,grobinson
...
--HG--
extra : rebase_source : 3e1846e15538729f3c94f5c1470959b5d7b31f0f
2014-01-23 15:34:59 -08:00
Bobby Holley
499b09923b
Bug 957688 - Remove nsIXPCSecurityManager::CanAccess and nsScriptSecurityManager::CheckPropertyAccessImpl. r=mrbkap
...
\o/
2014-01-24 16:08:26 -08:00
Bobby Holley
51c50edff5
Bug 957688 - Remove nsIScriptSecurityManager::CheckPropertyAccess. r=mrbkap
2014-01-24 16:08:26 -08:00
Bobby Holley
af7880d72a
Bug 957688 - Remove checkObjectAccess security callback. r=mrbkap
...
There's no need for the JS shell stuff either, since vm/Runtime.cpp already
sets up NullSecurityCallbacks by default.
2014-01-24 16:08:25 -08:00
Terrence Cole
d902eeddc8
Bug 959787 - Handlify several JSAPI interfaces that can GC, Part 4; r=sfink,r=bz
...
--HG--
extra : rebase_source : 8e1ff566f47795cd82e3f4c0a6fa37b88e7847b4
2014-01-17 10:08:51 -08:00
Bobby Holley
5a745a89c5
Bug 794943 - Remove CheckXPCPermissions. r=mrbkap
2014-01-16 15:45:40 -08:00
Bobby Holley
4730e9abab
Bug 794943 - Remove nsISecurityCheckedComponent interface. r=mrbkap
2014-01-16 15:45:40 -08:00
Bobby Holley
1d3b133066
Bug 794943 - Remove checks for nsISecurityCheckedComponent in caps. r=mrbkap
2014-01-16 15:45:40 -08:00
Tom Schuster
f39e81815a
Bug 939294 - Change xpidl jsval to handles. r=gabor,bz,khuey,bsmedberg,terrence
2014-01-09 18:39:36 +01:00
Garrett Robinson
eabe1d0a0f
Bug 883975 - CSP 1.1 hash-source. r=sstamm, r=dholbert, r=mrbkap
2014-01-02 11:14:06 -08:00
Christian Legnitto
a7ce12665b
Bug 935377 - Firefox should fix common scheme typos, r=dolske
2014-01-12 12:02:27 -08:00
Ryan VanderMeulen
3ad920307d
Backed out 6 changesets (bug 939294) for B2G bustage on a CLOSED TREE.
...
Backed out changeset 8c3aa9973da0 (bug 939294)
Backed out changeset 37098c13e59e (bug 939294)
Backed out changeset 7c9ade6c871c (bug 939294)
Backed out changeset fed59539afc1 (bug 939294)
Backed out changeset 89e9d3fa16fc (bug 939294)
Backed out changeset c97e58ebc5f4 (bug 939294)
2014-01-09 14:17:39 -05:00
Tom Schuster
de26c13547
Bug 939294 - Handlify all the rest. r=terrence
2014-01-09 18:39:37 +01:00
Gabor Krizsanits
b31a6b57fb
Bug 952192 - getObjectPrincipal should be script callable. r=bholley
2014-01-09 15:28:46 +01:00
Carsten "Tomcat" Book
89b0750843
Backed out changeset 18eeafedd180 (bug 952192) XPC Shell Bustage on a CLOSED TREE
2014-01-09 12:53:22 +01:00
Gabor Krizsanits
421ebe4af8
Bug 952192 - getObjectPrincipal should be script callable. r=bholley
2014-01-09 11:31:33 +01:00
Ehsan Akhgari
1b83407ce9
Bug 927728 - Part 1: Replace PRUnichar with char16_t; r=roc
...
This patch was automatically generated by the following script:
#!/bin/bash
# Command to convert PRUnichar to char16_t
function convert() {
echo "Converting $1 to $2..."
find . ! -wholename "*nsprpub*" \
! -wholename "*security/nss*" \
! -wholename "*modules/libmar*" \
! -wholename "*/.hg*" \
! -wholename "obj-ff-dbg*" \
! -name prtypes.h \
! -name Char16.h \
-type f \
\( -iname "*.cpp" \
-o -iname "*.h" \
-o -iname "*.c" \
-o -iname "*.cc" \
-o -iname "*.idl" \
-o -iname "*.ipdl" \
-o -iname "*.ipdlh" \
-o -iname "*.mm" \) | \
xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}
convert PRUnichar char16_t
2014-01-04 10:02:17 -05:00
Luke Wagner
2e804616e4
Bug 924905 - Do a subsumes check inside the stack iterator. r=jandem
...
--HG--
extra : rebase_source : ff8407c4f79fd3e2264470379470c526a751e45f
2014-01-03 10:32:56 -06:00
Trevor Saunders
d43c55ca0e
bug 949821 - use MOZ_UTF16 more and NS_LITERAL_STRING less r=froydnj
2013-12-12 20:50:01 -05:00
Bobby Holley
ea86682111
Bug 913734 - Remove namespace mozilla::hotness. r=mrbkap
2013-12-13 19:15:44 -08:00
Bobby Holley
ebe6344137
Bug 913734 - Remove EnabledID() machinery. r=mrbkap
2013-12-13 19:15:44 -08:00
Bobby Holley
041e66aa0e
Bug 913734 - Remove now-unused policy machinery. r=mrbkap
2013-12-13 19:15:43 -08:00
Bobby Holley
d99e6b8d97
Bug 913734 - Stop consulting domain policies in CAPS. r=mrbkap
...
The whole LookupPolicy juggernaut is basically a mechanism for setting custom
per-(protocol, origin, property, action) access control in the preferences
service.
There are two sets of preferences currently in all.js. One of them is set up
for mailnews, for the mailbox:, imap:, and news: protocols. According to jst,
this was designed as a whack-a-mole security mechanism for javascript running
in HTML email. IIUC, we no longer allow JS to run at all in mailnews, so this
is obsolete.
The other mechanism appears to be our old-fashioned implementation of the
same-origin policy, which has been obsoleted by the new compartment
architecture.
In addition, most of this stuff was obsoleted by the new dom bindings, since
these DOM classes no longer go through XPCWrappedNativeJSOps, and thus no
longer trigger these security checks at all.
We stop using the infrastructure in this patch, and rip it out in the next one.
2013-12-13 19:15:43 -08:00
Bobby Holley
bdd70cb368
Bug 913734 - Stop storing security policies on XPCWrappedNativeProtos. r=mrbkap
...
This is just a cache, so we can safely remove it without impacting correctness.
The rest of this mechanism goes away in subsequent patches.
2013-12-13 19:15:43 -08:00
Birunthan Mohanathas
3440613a39
Bug 713082 - Part 2: Rename Util.h to ArrayUtils.h. r=Waldo
...
--HG--
rename : mfbt/Util.h => mfbt/ArrayUtils.h
2013-12-08 21:52:54 -05:00
Bobby Holley
62578248db
Bug 932906 - Exempt Remote XUL from CanCreateWrapper checks. r=bz
2013-12-04 19:15:40 -08:00
Joshua Cranmer
ae71929347
Bug 884676 - Convert JSPrincipals::refcount to Atomic<int32_t> in JS_THREADSAFE builds, and remove JS_ATOMIC_*. r=Waldo
2013-11-27 09:37:10 -06:00
Deian Stefan
3f9a418ee1
Bug 886164 - Enforce CSP in sandboxed iframe, r=grobinson
2013-11-22 15:12:00 -08:00
Michael Shuen
26c0110ca6
Bug 941332 - Build caps/src in unified mode. r=ehsan
2013-11-21 09:22:26 -05:00
Mike Hommey
2812d11fce
Bug 939632 - Remove LIBRARY_NAME for leaf libraries. r=gps
...
Landing on a CLOSED TREE.
2013-11-19 11:50:54 +09:00
Mike Hommey
e06d795c71
Bug 939074 - Remove most LIBXUL_LIBRARY. rs=gps
2013-11-19 11:48:10 +09:00
Mike Hommey
26bc04d200
Bug 939044 - Rename remaining MODULE definitions to XPIDL_MODULE. r=mshal
2013-11-19 11:47:43 +09:00
Mike Hommey
e80e877ab7
Bug 939044 - Remove most definitions of MODULE. r=mshal
2013-11-19 11:47:39 +09:00
Mike Hommey
ffe0380912
Bug 935881 - Use FINAL_LIBRARY for all (fake) libraries that end up linked in a single other library. r=gps
2013-11-19 11:47:14 +09:00
Tom Schuster
4478f5b384
Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz
2013-11-16 13:31:36 +01:00
Ms2ger
cca4d45da6
Backout changesets ded0d64f6786:03f041d03f24 and 30cbd1abde1a (bug 935696, bug 933834 and bug 939194) for build bustage.
2013-11-17 16:39:25 +01:00
Tom Schuster
bc757ef965
Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz
2013-11-16 13:31:36 +01:00
Bobby Holley
2f55900502
Bug 840488 - Tests. r=bz
2013-11-12 16:43:35 -08:00
Bobby Holley
93808be553
Bug 840488 - New domain policy API. r=bz
...
Note that this patch changes the semantics of javascript.enabled so that changes
to the pref do not apply to compartments that have already been created. This is
a significant change, but is necessary to support the new domain policy API.
After one cycle or so, we'll rip out the old API.
2013-11-12 16:43:35 -08:00
Bobby Holley
95ac2b3227
Bug 840488 - Compute immunity from caps checks exactly once, and kill nsScriptSecurityManager::CanExecuteScripts. r=bz
2013-11-12 16:43:35 -08:00
Bobby Holley
8e73b817c0
Bug 840488 - Remove per-JSContext script toggling. r=bz
...
Note that the checks in nsJSEnvironment::EvaluateString and EvalInWindow
can safely go away, because we call ssm->ScriptAllowed() in
nsJSUtils::EvaluateString.
2013-11-12 16:43:35 -08:00
Bobby Holley
5e788f9565
Bug 840488 - Directly mark compartments whose docshells disable script execution. r=bz
2013-11-12 16:43:33 -08:00
Bobby Holley
358692053b
Bug 840488 - Introduce a mechanism to temporarily or permanently block script for a given scope, and use it for unsafe channels. r=bz
2013-11-12 16:43:33 -08:00
Bobby Holley
a17328e5cc
Bug 840488 - Remove CheckFunctionAccess. r=bz
...
\o/
Aside from checking whether script is enabled, all the other work this function
does is silly.
2013-11-12 16:43:32 -08:00
Bobby Holley
63af01c6e2
Bug 840488 - Get rid of aAllowIfNoScriptContext. r=bz
...
The old code seemed to feel that the lack of a script context was some sort of
showdown that required either unconditional allow or deny. Instead, let's just
make the scriptcontext-relevant checks conditional on there being a script
context, which lets us switch CheckFunctionAccess over to ScriptAllowed.
2013-11-12 16:43:32 -08:00
Bobby Holley
074ccfec30
Bug 840488 - Refactor Gecko to provide a more direct API to ask whether script is allowed for a given global. r=bz
2013-11-12 16:43:31 -08:00
Garrett Robinson
1da990368c
Bug 855326 - CSP 1.1 nonce-source for scripts and styles r=mrbkap r=dholbert r=geekboy
2013-11-08 15:44:39 -08:00
Daniel Holbert
9a3437dd77
backout 57213b64023b (bug 855326) for build bustage in debug builds
...
CLOSED TREE
2013-11-08 11:22:36 -08:00
Garrett Robinson
5add685cdd
Bug 855326 - CSP 1.1 nonce-source for scripts and styles. r=mrbkap r=dholbert r=geekboy
2013-11-08 09:20:43 -08:00
Nicholas Nethercote
3b80765894
Bug 925584 - Remove some unnecessary jsapi.h inclusions from .cpp files. r=Ms2ger.
...
--HG--
extra : rebase_source : 41fcb0e922a519ef679c1c1b6293c2b638e83a48
2013-10-10 15:22:35 -07:00
Mike Hommey
b000a846c2
Bug 929905 - Consolidate sources in moz.build. r=gps
2013-10-25 08:23:05 +09:00
Carsten "Tomcat" Book
6fb588efa7
merge b2g-inbound to mozilla-central
2013-10-09 10:13:52 +02:00
Karl Tomlinson
31f8c782f2
b=923591 don't warn when checkLoadURIStrWithPrincipal() returns NS_ERROR_DOM_BAD_URI r=bz
...
--HG--
extra : transplant_source : J%09t%A3Z%B4%8C%B9%99%E0O%CE3%7Ex%93vu%9BA
2013-10-09 15:32:38 +13:00