af7880d72a
Bug 957688 - Remove checkObjectAccess security callback. r=mrbkap
...
There's no need for the JS shell stuff either, since vm/Runtime.cpp already
sets up NullSecurityCallbacks by default.
2014-01-24 16:08:25 -08:00
5a745a89c5
Bug 794943 - Remove CheckXPCPermissions. r=mrbkap
2014-01-16 15:45:40 -08:00
1d3b133066
Bug 794943 - Remove checks for nsISecurityCheckedComponent in caps. r=mrbkap
2014-01-16 15:45:40 -08:00
2e804616e4
Bug 924905 - Do a subsumes check inside the stack iterator. r=jandem
...
--HG--
extra : rebase_source : ff8407c4f79fd3e2264470379470c526a751e45f
2014-01-03 10:32:56 -06:00
ea86682111
Bug 913734 - Remove namespace mozilla::hotness. r=mrbkap
2013-12-13 19:15:44 -08:00
041e66aa0e
Bug 913734 - Remove now-unused policy machinery. r=mrbkap
2013-12-13 19:15:43 -08:00
bdd70cb368
Bug 913734 - Stop storing security policies on XPCWrappedNativeProtos. r=mrbkap
...
This is just a cache, so we can safely remove it without impacting correctness.
The rest of this mechanism goes away in subsequent patches.
2013-12-13 19:15:43 -08:00
3f9a418ee1
Bug 886164 - Enforce CSP in sandboxed iframe, r=grobinson
2013-11-22 15:12:00 -08:00
e80e877ab7
Bug 939044 - Remove most definitions of MODULE. r=mshal
2013-11-19 11:47:39 +09:00
93808be553
Bug 840488 - New domain policy API. r=bz
...
Note that this patch changes the semantics of javascript.enabled so that changes
to the pref do not apply to compartments that have already been created. This is
a significant change, but is necessary to support the new domain policy API.
After one cycle or so, we'll rip out the old API.
2013-11-12 16:43:35 -08:00
95ac2b3227
Bug 840488 - Compute immunity from caps checks exactly once, and kill nsScriptSecurityManager::CanExecuteScripts. r=bz
2013-11-12 16:43:35 -08:00
63af01c6e2
Bug 840488 - Get rid of aAllowIfNoScriptContext. r=bz
...
The old code seemed to feel that the lack of a script context was some sort of
showdown that required either unconditional allow or deny. Instead, let's just
make the scriptcontext-relevant checks conditional on there being a script
context, which lets us switch CheckFunctionAccess over to ScriptAllowed.
2013-11-12 16:43:32 -08:00
b7e0804666
Backout bug 886164 for B2G regressions.
2013-09-23 21:26:05 -04:00
c36df6710c
Bug 886164 - Enforce CSP in sandboxed iframe. r=grobinson
2013-06-23 14:31:52 -07:00
c4c9f9e982
Bug 917009 - Remove old-style object principal calculation. r=bz
2013-09-17 15:29:11 -07:00
d4b22fae39
Bug 908750 - Fix a rooting hazard in nsScriptSecurityManger::LookupPolicy; r=bholley
...
--HG--
extra : rebase_source : 27bf6ef6bce3bed136921df15ea00ae86bd73f89
2013-08-23 08:51:40 -07:00
e9492bcd36
Bug 785884 - Implement support for temporary storage (aka shared pool). r=ehsan, r=bent
...
--HG--
rename : caps/tests/mochitest/test_principal_extendedorigin_appid_appstatus.html => caps/tests/mochitest/test_principal_jarprefix_origin_appid_appstatus.html
rename : dom/quota/UsageRunnable.h => dom/quota/UsageInfo.h
2013-09-11 06:18:36 +02:00
30d81ff017
Bug 905364 - Stop using the SafeJSContext in nsScriptSecurityManager::Init. r=mrbkap
...
With this patch, I've confirmed that we instantiate the SafeJSContext much later
in startup, during nsAppStartupNotifier::Observe (which ends up invoking an
XPCWrappedJS). As such, this should solve a number of our startup ordering woes.
2013-09-06 11:35:12 -07:00
01c70c8c97
Bug 911020 - Introduce js/TypeDecls.h, which holds very commonly used type declarations from the JS engine. r=luke.
...
--HG--
extra : rebase_source : 008ef689989f93b46627b8be8608bdbc544ca3a2
2013-08-27 19:59:14 -07:00
2585de9a07
Bug 905017 (part 1) - Minimize inclusions of JS engine headers in .h and .idl files. r=billm.
...
--HG--
extra : rebase_source : 984c61ab12f46be0509b1ce0d458d9a6e5841c64
2013-08-17 15:50:18 -07:00
72c8f5969c
Back out c39d60483813 (bug 905364) for xpcshell and b2g desktop bustage
2013-08-16 22:38:48 -07:00
363bb61e01
Bug 905364 - Stop using the SafeJSContext in nsScriptSecurityManager::Init. r=mrbkap
...
With this patch, I've confirmed that we instantiate the SafeJSContext much later
in startup, during nsAppStartupNotifier::Observe (which ends up invoking an
XPCWrappedJS). As such, this should solve a number of our startup ordering woes.
2013-08-16 20:28:17 -07:00
d8f824e34e
Bug 898914 (part 1) - Remove JSBool.
...
--HG--
extra : rebase_source : 2d202e0e5005a7f54724b1540481c15cde3ad52e
2013-08-08 15:53:04 -07:00
ef4b479714
Bug 872127 - Part 2: Replace mozilla/StandardInteger.h with stdint.h; r=Waldo,ted
2013-07-30 10:25:31 -04:00
d5d84f0dff
Bug 885668 - Removed specialized function object principal machinery from CAPS. r=bz
2013-07-15 11:22:10 -07:00
ef8bb39711
Bug 885310 - 1 Rename JSHandleFoo in the browser r=bz
2013-06-21 14:12:46 +01:00
fe6dc08fc3
Bug 884362 - Use AutoJSContext in nsScriptSecurityManager::LoadPolicy. r=bz
...
This cx is just used for rooting etc. As such, we really just want whatever
cx is on the stack, but want a default if the stack-top cx is null (which it
sometimes is, here). And that's exactly what AutoJSContext gives us.
2013-06-20 11:05:32 -07:00
b4a1d2128a
Bug 884371 - Remove JSMutableHandleXXX from the browser r=bz
2013-06-19 11:32:27 +01:00
7a603ed62c
bug 873622 - remove nsScriptSecurityManager::sXPConnect r=bholley
2013-05-29 19:49:11 -04:00
e46734cb01
Bug 873735 part 1. Fix the more or less mechanical browser rooting hazards. r=terrence
2013-05-20 08:40:06 -04:00
1b12175ba0
Bug 873629 - Remove 129 empty Makefile.in files; r=ted
2013-05-17 16:20:11 -07:00
38dd0461b4
Bug 871262 - Fix rooting hazards in the CAPS code; r=till
2013-05-12 15:52:21 -04:00
05132788d9
Bug 867459 - Fix caps rooting hazards r=terrence
2013-05-02 22:02:40 -04:00
dde0ee15d3
Bug 865729 - Use sXPConnect directly in caps. r=gabor
...
It's tempting to go through nsContentUtils here, but I'm pretty sure caps is
initialized before nsContentUtils.
2013-04-29 11:16:21 -07:00
df7deac25b
Bug 846634 - Part 2: Move EXPORTS to moz.build; r=joey
2013-04-16 15:24:43 -04:00
b79eaf364c
Bug 784739 - Switch from NULL to nullptr in caps/; r=ehsan
2013-04-02 20:16:25 -04:00
72a717a860
Bug 855465 - Add emacs python mode comments to moz.build files; r=gps
2013-04-01 11:36:59 -07:00
43628a7867
Backout for changeset 03452b187c14 (Bug 855465) due to bustage on a CLOSED TREE; r=qdot
2013-03-29 15:12:58 -07:00
334c0800cf
Bug 855465 - Add emacs python mode comments to moz.build files; r=gps
...
--HG--
extra : rebase_source : 004a756492323e1a049586e85b3be5037159df20
2013-03-29 13:56:18 -07:00
7ecea60097
Bug 844654 - Part 2: Move MODULE to moz.build; rs=gps
2013-03-19 11:47:00 -07:00
9c54e14d23
bug 852379 - remove unecessary nsHashtable.h includes r=Ms2ger
2013-03-18 21:18:26 -04:00
aa087f4637
Bug 849086: Remove unused *_CLASSNAME defines. r=bsmedberg
2013-03-15 10:52:10 -07:00
8c137ecae2
Bug 784841 - Bug 18f: Convert /caps; f=Ms2ger rs=ted
2013-02-25 12:47:18 -08:00
d584c95452
Bug 833817 part 2 - Remove unused frame argument from GetFunctionObjectPrincipal. r=bholley
...
--HG--
extra : rebase_source : 1a7e2428c64d806960fa749095b7d0b9ec439c01
2013-01-24 20:39:27 +01:00
37b948817c
Bug 752529 - workers shouldn't use string origins as null principals don't have them. Part 2 - nsPrincipal GetBaseDomain (r=bz)
2013-01-08 13:53:32 -08:00
4030d50d1b
Bug 826154 - Remove unused field nsScriptSecurityManager::mIsWritingPrefs. r=bz.
...
--HG--
extra : rebase_source : f7235787393fd6b4212aff0bb13e507bb0fd6d94
2013-01-02 21:47:50 -08:00
7deead5906
Merge mozilla-central into mozilla-inbound
2012-12-06 23:13:32 -05:00
1022b1f72e
Bug 807102 - Rev the CID on nsPrincipal. r=bz
2012-12-06 14:51:37 -08:00
f12bcf04dd
Bug 817284. When none of our code is associated with a window in an obvious way, assume that scripts should be allowed to execute for a WebIDL callback. r=bholley
2012-12-06 15:21:18 -05:00
b5471e12e1
Bug 797206 - Remove GetPrincipalAndFrame. r=bz
2012-10-29 15:55:35 +01:00
Bobby Holley
Luke Wagner
Deian Stefan
Mike Hommey
Ryan VanderMeulen
Terrence Cole
Jan Varga
Nicholas Nethercote
Phil Ringnalda
Ehsan Akhgari
Jon Coppeard
Trevor Saunders
Boris Zbarsky
Gregory Szorc
David Zbarsky
Mike Shal
matekm
Kyle Machulis
Daniel Holbert
Jan de Mooij
Ian Melven