Boris Zbarsky
dc120449d2
Bug 1275698. Get rid of nsScriptSecurityManager::ScriptAllowed and replace it with xpc::Scriptability::Get(obj).Allowed() for better performance and less indirection. r=khuey
2016-05-27 20:26:56 -04:00
Boris Zbarsky
4ec7cc4fc1
Bug 1276138. Remove the current/safe JSContext getters from nsScriptSecurityManager. r=mrbkap
2016-05-27 13:28:14 -04:00
Chris Peterson
e343bcae34
Bug 1274415 - Fix -Wshadow warnings in caps/ directory. r=dveditz
...
caps/BasePrincipal.cpp:562:28 [-Wshadow] declaration shadows a local variable
caps/nsScriptSecurityManager.cpp:675:18 [-Wshadow] declaration shadows a local variable
caps/nsScriptSecurityManager.cpp:854:14 [-Wshadow] declaration shadows a local variable
2016-05-19 01:04:46 -07:00
Christoph Kerschbaumer
d7757bf8dd
Bug 1273364 - Trying to set a CSP on a SystemPrincipal should return NS_ERROR (r=njn)
2016-05-21 19:36:24 +02:00
Joel Maher
b6788df19c
Bug 1067022 - add expected assertion on windows for test_bug995943.xul. r=RyanVM
...
MozReview-Commit-ID: 3cg9fQgorhG
--HG--
extra : rebase_source : 76c75b2fab084240c33eab1311ebb6c8f7b9f856
2016-05-16 06:47:59 -04:00
Chris Peterson
353ee65255
Bug 1272513 - Part 1: Suppress -Wshadow warnings-as-errors in some directories. r=glandium
2016-05-11 00:00:01 -07:00
Andrea Marchesini
487efd0283
Bug 1270679 - Ensure blob URLs are only accessible within the same usercontextId, r=bz
2016-05-11 19:53:13 +02:00
Jonathan Watt
73ea9dd190
Bug 1162772, part 3 - Add a getChannelResultPrincipalIfNotSandboxed method to nsIScriptSecurityManager. r=bz
...
MozReview-Commit-ID: 4QwM1y6wRb
2016-04-28 11:13:09 +01:00
Sebastian Hengst
bec59714da
Backed out changeset c32539fd746a (bug 1162772)
2016-04-30 09:54:01 +02:00
Jonathan Watt
c40b7e121f
Bug 1162772, part 3 - Add a getChannelResultPrincipalIfNotSandboxed method to nsIScriptSecurityManager. r=bz
...
MozReview-Commit-ID: 4QwM1y6wRb
2016-04-28 11:13:09 +01:00
Yoshi Huang
ba1bb72568
Bug 1263496 - Part 3: fix for nsNullPrincipal::Create
...
This fixed the locations listed by
http://searchfox.org/mozilla-central/search?q=nsNullPrincipal::Create (&redirect=true
that needs to inherit origin attributes.
2016-04-27 18:38:07 +08:00
Yoshi Huang
7ae2e09f40
Bug 1263496 - Part 2: fix for NS_NULLPRINCIPAL_CONTRACTID. r=bholley
...
This fixed the locations listed by
http://searchfox.org/mozilla-central/search?q=NS_NULLPRINCIPAL_CONTRACTID&redirect=true
2016-04-27 18:38:03 +08:00
Kris Maglione
6d36833e42
Bug 1254194: Apply a content security policy to all WebExtension documents. r=gabor
...
MozReview-Commit-ID: HsFFbWdq00b
--HG--
extra : rebase_source : 07e4b6ec8c32f696d5b5987091ffc5ebde2c3061
extra : histedit_source : 20983fe6a9590d7f410276fac248c3d2f711caaa
2016-04-23 20:56:56 -07:00
Kris Maglione
623a4f8665
Bug 1254194: [webext] Allow extensions to register custom content security policies. r=billm f=aswan
...
MozReview-Commit-ID: 8L6ZsyDjIpf
--HG--
extra : rebase_source : b6ccbcf849b0e7db835d14a0ba9de588c0188869
extra : histedit_source : 7f966c1d821641fc3551dc4c508f5ce8f990d5a3%2Cafa5697b301620119147292745a2007961907fa8
2016-04-23 21:29:15 -07:00
Kris Maglione
cc1c10dbae
Bug 1254194: Add a validator for custom add-on content security policies. r=billm f=aswan
...
MozReview-Commit-ID: LtBbXBCFc32
--HG--
extra : rebase_source : 1da81c92a1ffb75df071d1b32ff04b7d1a9b905a
2016-04-23 20:41:14 -07:00
Tanvi Vyas
c73e96a53d
Bug 1105556 - Call Create(originAttributes) when loadinfo->loadingPrincipal is null, instead of CreatePrincipalWithInheritedAttributes(). r=sicking
2016-04-13 16:30:22 -07:00
Dave Huseby
c01e63f1a5
Bug 1238177 - fix extension content needs to use the correct user context id origin attribute. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1238177)
Fixes Bug 1238177 -- extension content needs to use the correct user context id origin attribute
2016-04-04 12:20:00 +02:00
Chris Manchester
f7a1b3fb60
Bug 1242051 - Add inter-directory test support file dependencies to ini manifests. r=gps
...
Previously, every test and support file would be synced to the objdir
when running any test. Now that only those support files and tests requested
are synced, we note support files required beyond those in a test's
directory in ini manifests.
MozReview-Commit-ID: EmlDz9d4lqt
2016-04-04 14:56:52 -07:00
Carsten "Tomcat" Book
394034a83e
Backed out changeset 0519406b6e57 (bug 1238177) for eslint test failures
2016-04-03 09:30:03 +02:00
Dave Huseby
32251ddc37
Bug 1238177 - Extension content needs to use the correct user context id origin attribute. r=bholley
...
--HG--
extra : amend_source : f8d3bb6f6b1426ac73669491b651900614f6461c
2016-04-02 13:14:00 -04:00
Dave Huseby
b9cbf42ad8
Bug 1237479 -- nsScriptSecurityManager needs to use the correct user context id in the origin attributes in a few places. r=sicking
2016-04-01 22:36:00 -04:00
Matthew Wein
9c7f3d9e91
Bug 1185773 - Enable the moz-extension mochitest on android. r=kmag
...
MozReview-Commit-ID: ICxmwE1BI8A
--HG--
extra : transplant_source : %9B%BDd%0B%18%EC9Y%09%B9%25k%3F%9924%F2AaW
2016-03-28 10:04:59 -07:00
Benjamin Bouvier
70202e15a1
Bug 1251308; r=luke
...
MozReview-Commit-ID: AqsMX4m7Qh9
--HG--
extra : rebase_source : 519aef2cf8c0bb39771d4589069e8fd1a06970c3
2016-03-09 11:20:11 +01:00
Mike Hommey
fed1d8ce2b
Bug 1254906 - Change the annotation on JSPrincipals::dump's definition to match that of its declaration. r=bz
...
The current discrepancy works because gecko and js don't actually agree
on the meaning of JS_EXPORT_API and JS_PUBLIC_API, but moving the
configure flags that incluences their meaning is going to make them
agree, and that adds a fatal warning when building nsJSPrincipals.cpp
because of the discrepancy.
2016-03-11 09:38:28 +09:00
J. Ryan Stinnett
798c13a0fa
Bug 1238160 - Test frame principal when toggling isolation. r=bz
...
Test frame principals in different configurations to verify the new isolated
attribute works as expected.
MozReview-Commit-ID: CQNRo2bK9iU
2016-03-02 10:35:56 -06:00
J. Ryan Stinnett
95f8000ac8
Bug 1238160 - Add assertions in non-desktop code paths. r=bz,fabrice
...
Several code paths try to ask the principal if it's in a browser element, but
the principal now only knows about *isolated* browser elements. All such code
paths are currently unused on desktop. The frame loader now asserts that
isolation remains enabled for cases where apps are used.
MozReview-Commit-ID: 775DZecc35t
2016-03-02 10:35:56 -06:00
J. Ryan Stinnett
2a55d065b7
Bug 1238160 - Rename OriginAttributes.mInBrowser and associated methods. r=bz,mayhemer
...
This change renames OriginAttributes.mInBrowser to mInIsolatedMozBrowser and
nsIPrincipal::GetIsInBrowserElement to GetIsInIsolatedMozBrowserElement. Other
methods that pass these values around also have name changes.
Tokens such as "inBrowser" have previously been serialized into cache keys, used
as DB column names, stored in app registries, etc. No changes are made to any
serialization formats. Only runtime method and variable names are updated.
No behavior changes are made in this patch, so some renamed methods may have
nonsensical implementations. These are corrected in subsequent patches
focused on behavior.
MozReview-Commit-ID: 66HfMlsXFLs
2016-03-02 10:35:56 -06:00
Dave Huseby
4fdeeb7cf9
Bug 1229222 - tests for bug 1229222. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222_Tests)
Tests Bug 1229222
--HG--
extra : rebase_source : baf12ec8819e0e82b7d6f7cf4975636172d98eb6
2016-02-29 12:27:00 +01:00
Dave Huseby
0c0cf070cf
Bug 1229222 - add chromeutils for the creation of origin attributes with the correct default values. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222)
Fixes Bug 1229222
--HG--
extra : rebase_source : 299742335452d5b5ac3cf25a3bd2d71ec655049f
2016-02-29 12:26:00 +01:00
Boris Zbarsky
87574e4920
Bug 1251311. JS::DescribeScriptedCaller can't throw JS exceptions. Adjust some callers accordingly. r=khuey
2016-02-26 15:23:13 -05:00
Carsten "Tomcat" Book
9164177faa
Backed out changeset 736daf4b4a56 (bug 1229222) for bc6 test failures in browser_339445.js
2016-02-19 15:56:27 +01:00
Dave Huseby
4f029016db
Bug 1229222 - tests bug 1229222. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222_Tests)
Tests Bug 1229222
2016-02-17 12:19:00 +01:00
Bill McCloskey
d70c91802b
Bug 1210099 - Fix structured clone of expanded principal (r=bholley)
2016-02-04 22:30:21 -08:00
Yoshi Huang
be5bd39145
Bug 1240651 - Annotate addonId into crash report (r=bholley)
2016-02-01 16:05:53 -08:00
Gijs Kruitbosch
ef04fd0f90
Bug 1172165 - check all nested URI schemes in CAPS. Make view-source dangerous to load, and about: URIs use per-URI flags so they keep working, r=bz
...
Also, add an opt-out for crashtest/reftest for the view-source thing so they don't all break, r=bz
--HG--
extra : commitid : 8NqvmbphSgh
extra : rebase_source : bbe0b6f11a77d7e6241a5733931d9baa95bb3fed
2015-12-11 08:06:41 -05:00
Henry Chang
b02a011eef
Bug 1211590 - Inherits OriginAttributes from loading principal for GetChannelURIPrincipal. r=sicking
2016-01-13 05:30:00 +01:00
Luke Wagner
72ea23c63e
Bug 1239601 - improve the UniquePtr situation (r=jandem)
...
--HG--
extra : commitid : JegWAoGsuQ9
extra : rebase_source : 995c1b6ab8e4fd3b83c44741cd84a2d7b0d934d7
2016-01-15 18:26:20 -06:00
Christoph Kerschbaumer
fecee7be59
Bug 1224694 - Unify and clean up initialization of CSP (r=sicking)
2016-01-14 13:21:31 -08:00
Nigel Babu
ccbf22eae8
Backed out changeset f001a01c85d7 (bug 1224694) for browser-chrome bustage on a CLOSED TREE
...
--HG--
extra : commitid : 5BUjoFsY8bv
2016-01-14 08:04:50 +05:30
Christoph Kerschbaumer
86457169b6
Bug 1224694 - Unify and clean up initialization of CSP (r=sicking)
2016-01-13 15:51:30 -08:00
Blake Kaplan
5749c2ed94
Bug 1237141 - Make this test pass in e10s. r=felipe
...
--HG--
extra : rebase_source : e9aad0388bea8401c08f137357ca10720622bc05
2016-01-07 10:28:27 -08:00
Andrea Marchesini
a365470b87
Bug 1235657 - Session storage needs to handle origin attributes correctly - part 1 - createOriginAttributesWithUserContextId, r=huseby
2016-01-06 10:08:30 +00:00
Honza Bambas
a0a6f7e23c
Bug 1165214 - Use OriginAttributes in DOM Storage. r=smaug, r=bholley
...
--HG--
extra : rebase_source : b63ddb5a24a335f771a856cd20c69cdeb0c92ca0
2016-01-05 07:25:00 -05:00
Jonas Sicking
6cc5074df0
Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
2015-12-06 18:33:14 -05:00
Sebastian Hengst
774236075d
Backed out changeset 09d64535bcda (bug 1216687), a7f1a289dd78, 4dbf06183e6c, 26318a5e3006, 9ae2af3cf86d (bug 1226909) for M(1,2,5) oranges. r=backout
2015-12-05 16:34:47 +01:00
Jonas Sicking
df33e62850
Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
2015-12-05 01:46:20 -08:00
Yoshi Huang
4b500464f5
Bug 1209162 - Create OriginAttributes subtypes. IGNORE IDL r=sicking.
2015-11-03 09:50:54 +08:00
Christoph Kerschbaumer
b967444f19
Bug 663570 - MetaCSP Part 2: Principal changes (r=bz)
2015-11-14 19:28:23 -08:00
Christoph Kerschbaumer
a876eba5c9
Bug 1188028 - Use channel->ascynOpen2 in dom/security/nsCSPContext.cpp (r=sicking)
2015-07-27 11:57:56 -07:00
Gijs Kruitbosch
f1d4d15e39
Bug 1210703 - followup: fix test file used in caps and fix assertions to have actual/expected value in the right order, rs=bustage on a CLOSED TREE
...
--HG--
extra : commitid : 29mAEwGdSuM
2015-11-09 19:10:23 +00:00
Jan de Mooij
a84c33ecb0
Bug 1125423 part 1 - Attach WindowProxies to globals instead of using innerObject/outerObject hooks. r=bz,luke
2015-11-06 19:03:51 +01:00
Jonathan Watt
8c3ca7675f
Bug 1220602 - Make the documentation for nsIPrincipal.domain useful. r=bholley IGNORE IDL
2015-09-24 00:36:04 +01:00
Birunthan Mohanathas
9985829ecc
Bug 1219392 - Capitalize mozilla::unused to avoid conflicts. r=froydnj
2015-11-02 07:53:26 +02:00
Bobby Holley
86c97bb3f4
Bug 1218039 - Add a nice interface for both C++ and JS to access the principal kind. r=gabor
2015-10-26 11:18:14 -07:00
Nathan Froyd
01583602a9
Bug 1207245 - part 6 - rename nsRefPtr<T> to RefPtr<T>; r=ehsan; a=Tomcat
...
The bulk of this commit was generated with a script, executed at the top
level of a typical source code checkout. The only non-machine-generated
part was modifying MFBT's moz.build to reflect the new naming.
CLOSED TREE makes big refactorings like this a piece of cake.
# The main substitution.
find . -name '*.cpp' -o -name '*.cc' -o -name '*.h' -o -name '*.mm' -o -name '*.idl'| \
xargs perl -p -i -e '
s/nsRefPtr\.h/RefPtr\.h/g; # handle includes
s/nsRefPtr ?</RefPtr</g; # handle declarations and variables
'
# Handle a special friend declaration in gfx/layers/AtomicRefCountedWithFinalize.h.
perl -p -i -e 's/::nsRefPtr;/::RefPtr;/' gfx/layers/AtomicRefCountedWithFinalize.h
# Handle nsRefPtr.h itself, a couple places that define constructors
# from nsRefPtr, and code generators specially. We do this here, rather
# than indiscriminantly s/nsRefPtr/RefPtr/, because that would rename
# things like nsRefPtrHashtable.
perl -p -i -e 's/nsRefPtr/RefPtr/g' \
mfbt/nsRefPtr.h \
xpcom/glue/nsCOMPtr.h \
xpcom/base/OwningNonNull.h \
ipc/ipdl/ipdl/lower.py \
ipc/ipdl/ipdl/builtin.py \
dom/bindings/Codegen.py \
python/lldbutils/lldbutils/utils.py
# In our indiscriminate substitution above, we renamed
# nsRefPtrGetterAddRefs, the class behind getter_AddRefs. Fix that up.
find . -name '*.cpp' -o -name '*.h' -o -name '*.idl' | \
xargs perl -p -i -e 's/nsRefPtrGetterAddRefs/RefPtrGetterAddRefs/g'
if [ -d .git ]; then
git mv mfbt/nsRefPtr.h mfbt/RefPtr.h
else
hg mv mfbt/nsRefPtr.h mfbt/RefPtr.h
fi
--HG--
rename : mfbt/nsRefPtr.h => mfbt/RefPtr.h
2015-10-18 01:24:48 -04:00
Yoshi Huang
fb57af4ae6
Bug 1191653 - Listen to clear-origin-data in nsPermissionManager. r=bholley
2015-10-13 10:27:42 +08:00
Wes Kocher
5dc7315e7b
Merge b2ginbound to central, a=merge
2015-10-07 11:04:26 -07:00
Carsten "Tomcat" Book
08997000eb
Backed out 2 changesets (bug 1202902
) to recking bug 1202902
to be able to reopen inbound on a CLOSED TREE
...
Backed out changeset 647025383676 (bug 1202902
)
Backed out changeset d70c7fe532c6 (bug 1202902
)
2015-10-07 14:03:21 +02:00
Carsten "Tomcat" Book
e7ef778c9d
Backed out 1 changesets (bug 1202902
) for causing merge conflicts to mozilla-central
...
Backed out changeset cfc1820361f5 (bug 1202902
)
--HG--
extra : rebase_source : 5d3db72337754bc7ab0ed0c30b2896100411ff92
2015-10-07 12:13:45 +02:00
Shu-yu Guo
d06b6030f6
Bug 1202902
- Scripted fix the world.
2015-10-06 14:00:31 -07:00
Yoshi Huang
02f27f9218
Bug 1211636 - use ToInteger64 in PopulateFromSuffix. r=bholley
...
From 76c9c3f887d6bce8b15abd37d5921887a187e18d Mon Sep 17 00:00:00 2001
---
caps/BasePrincipal.cpp | 16 ++++++-------
caps/moz.build | 3 +++
caps/tests/gtest/TestOriginAttributes.cpp | 37 +++++++++++++++++++++++++++++++
caps/tests/gtest/moz.build | 13 +++++++++++
4 files changed, 61 insertions(+), 8 deletions(-)
create mode 100644 caps/tests/gtest/TestOriginAttributes.cpp
create mode 100644 caps/tests/gtest/moz.build
2015-10-06 15:36:10 +08:00
Nick Fitzgerald
ee543a3018
Bug 1209263 - Allow embedders to tell SpiderMonkey how to structured clone principals; r=bz
...
--HG--
extra : rebase_source : 04835c034431953344e83203e7753043461474ba
2015-10-02 16:44:00 +02:00
Bobby Holley
073c406ca3
Bug 1208756 - Tests. r=billm
2015-10-02 15:02:09 -07:00
Bobby Holley
75a560dba5
Bug 1208756 - Introduce URI_FETCHABLE_BY_ANYONE and use it for moz-extension. r=bz
...
This matches the behavior described in
https://developer.chrome.com/extensions/manifest/web_accessible_resources
2015-10-02 15:02:07 -07:00
Bobby Holley
dca7589731
Bug 1208756 - Hoist shared CheckMayLoad logic into BasePrincipal. r=bz
...
This is a pure refactoring.
2015-10-02 14:59:45 -07:00
Yoshi Huang
f97211a451
Bug 1167100 - User originAttribute in ContentPrincipalInfo. r=bholley
2015-09-23 18:19:06 +08:00
Bobby Holley
ca4a8095de
Bug 1209843 - Stop checking for UNKNOWN_APP_ID in all places except those where AppId() is explicitly queried. r=sicking
2015-09-30 16:29:36 -07:00
Stephanie Ouillon
5e14a3b3a8
Bug 1178533 - Add nsIInstallPackagedWebapp for registering permissions when navigating to signed packages r=bholley,fabrice,valentin
2015-08-26 13:12:13 +02:00
Wes Kocher
df21b43278
Backed out changeset d0e88c95f3c5 (bug 1167100) for crashes a=backout
2015-09-29 10:25:20 -07:00
Yoshi Huang
872722fe37
Bug 1167100 - User nsIPrincipal.originAttribute in ContentPrincipalInfo. r=bholley
2015-09-23 18:19:06 +08:00
Yoshi Huang
d38b78ae54
Bug 1165466 - Fix up docshell and loadcontext inheriting code in nsIScriptSecurityManager. r=bholley
2015-09-23 16:10:21 +08:00
Henry Chang
b6b5862949
Bug 1163254 - Add signedPkg to OriginAttributes. r=bholley
2015-09-18 15:11:58 +08:00
Bobby Holley
43144ea83c
Bug 1205456 - Check for UNKNOWN_APP_ID when serializing principals. r=sicking
2015-09-18 16:20:06 -07:00
Andrew McCreight
dd7dd30236
Bug 1204610 - Use a smart pointer in nsNullPrincipalURI. r=mrbkap
2015-09-14 12:43:00 +02:00
Carsten "Tomcat" Book
c5551bace9
Backed out 2 changesets (bug 1169633, bug 1163254) for linux Mn-e10s test bustage on a CLOSED TREE
...
Backed out changeset 47ccf6689101 (bug 1169633)
Backed out changeset 503eab197a2d (bug 1163254)
2015-09-17 16:01:25 +02:00
hchang
2e884ff477
Bug 1163254 - Add signedPkg to OriginAttributes. r=bholley
2015-09-16 19:42:00 +02:00
Nicholas Nethercote
f44287005f
Bug 1198334 (part 1) - Replace the opt-in FAIL_ON_WARNINGS with the opt-out ALLOW_COMPILER_WARNINGS. r=glandium.
...
The patch removes 455 occurrences of FAIL_ON_WARNINGS from moz.build files, and
adds 78 instances of ALLOW_COMPILER_WARNINGS. About half of those 78 are in
code we control and which should be removable with a little effort.
--HG--
extra : rebase_source : 82e3387abfbd5f1471e953961d301d3d97ed2973
2015-08-27 20:44:53 -07:00
Yoshi Huang
e6070e9062
Bug 1165272 - Part 2: replace getNoAppCodebasePrincipal. r=bholley
2015-08-18 15:01:42 +08:00
Yoshi Huang
4347bb2318
Bug 1165272 - Part 1: remove getAppCodebasePrincipal. r=bholley
2015-08-17 17:03:19 +08:00
Bobby Holley
edfe287f26
Backed out 3 changesets (bug 1165272) for b2g sanity blocker.
2015-08-25 11:16:21 -07:00
Ryan VanderMeulen
1d04070e5b
Merge fx-team to m-c. a=merge
2015-08-24 20:57:36 -04:00
Dave Townsend
cbedcf3b95
Bug 1042699: Block cross-origin add-on install requests. r=dveditz
...
--HG--
extra : commitid : FdVvNum7B1w
extra : rebase_source : db8d8aff572798f35b80e20feb6aaaa9094cf79c
extra : amend_source : 14e54c9a677784e9f520a454ee579208f8385384
2015-08-18 17:21:05 -07:00
Yoshi Huang
de47f4b89f
Bug 1165272 - Part 2: Replace getNoAppCodebasePrincipal. r=bholley
2015-08-24 01:18:00 -04:00
Yoshi Huang
12efacfa8c
Bug 1165272 - Part 1: Remove getAppCodebasePrincipal. r=bholley
2015-08-24 01:31:00 -04:00
Bobby Holley
ce93138568
Bug 1196371 - Add a runtime assertion against illegal string characters in OriginAttributes suffix creation. r=janv,r=mystor
2015-08-19 21:14:34 -07:00
Wes Kocher
dab7b8a1ea
Backed out changeset f00b7bf7b9f8 (bug 1196371) for build bustage CLOSED TREE
2015-08-19 15:49:30 -07:00
Bobby Holley
36e1d5fccf
Bug 1196371 - Add a runtime assertion against illegal string characters in OriginAttributes suffix creation. r=janv,r=mystor
2015-08-19 14:51:58 -07:00
Michael Layzell
945c9a35f4
Bug 1195415 - Add asciiHostPort field to nsIURI, and use it in the implementation of nsPrincipal::GetOriginForURI, r=bholley
2015-08-18 14:52:24 -04:00
Michael Layzell
274d644ee1
Bug 1192666 - Emit '[]' around origin strings for ipv6 origins, r=ehsan
2015-08-11 15:09:52 -04:00
Bobby Holley
a281e74201
Bug 1184387 - Bail out of file:// loads for all non-chrome:// URIs. r=Gijs
2015-08-06 16:37:00 -07:00
Ryan VanderMeulen
f2cc7352a6
Backed out changesets f4fa8c49ebc6 and 78e2ba8842d4 (bug 1184387) for browser_parsable_css.js failures.
...
CLOSED TREE
2015-08-05 14:39:28 -04:00
Bobby Holley
82a19a631c
Bug 1184387 - Bail out of file:// loads for all non-chrome:// URIs. r=Gijs
2015-08-05 10:43:22 -07:00
Steven Englehardt
754fd36b97
Bug 1179557 - Add getters for userContextId. r=bholley, r=tanvi
...
--HG--
extra : histedit_source : 29a5fb5f2a3204d27d0f620d6f3c03e134699fb9
2015-07-30 14:15:00 -04:00
Steven Englehardt
9d4063da89
Bug 1179557 - Add userContextId to originAttributes with tests. r=bholley, r=tanvi
...
--HG--
extra : histedit_source : 4d033ad9aef7b71c7ebbbe77242c94e9b8e94f0c
2015-07-28 17:32:00 -04:00
Bobby Holley
5da44c2396
Bug 1186732 - Implement an about:blank page inside of moz-extension. r=billm
2015-07-28 17:18:05 -07:00
Bobby Holley
4fefff8e42
Bug 1186152 - Implement nsIProtocolHandlerWithDynamicFlags and use it for moz-extension. r=bz
2015-07-28 12:26:51 -07:00
Bobby Holley
5689b3b6a6
Bug 1161831 - Tests. r=billm
2015-07-21 12:57:24 -07:00
Bobby Holley
0ead8c2e5e
Bug 1161831 - Associate extension URIs with the appropriate addon ID. r=billm,sr=bz
2015-07-21 12:57:23 -07:00
Bobby Holley
f925835ed9
Bug 1161831 - Implement moz-extension protocol. r=bz,r=billm,sr=mcmanus
...
The heavy lifting all happened in the previous patch, so this is easy now.
2015-07-21 12:57:22 -07:00
Christoph Kerschbaumer
d79403aa15
Bug 1143922 - Add AsyncOpen2 to nsIChannel and perform security checks when opening a channel - scriptSecurityManager changes (r=sicking,bholley)
2015-07-19 19:12:26 -07:00
Michael Layzell
017f50b6d7
Bug 1172080 - Part 2: Use ^ instead of ! to delimit originAttributes from the URI in nsIPrincipal.origin, r=bholley
2015-07-16 14:50:07 -04:00
Michael Layzell
d45aee21b9
Bug 1172080 - Part 1: Throw when requesting origin for poorly behaved URIs, r=bholley
2015-07-16 14:50:05 -04:00
Bobby Holley
6955ea7475
Bug 1182610 - Check for UNKNOWN_APP_ID in nsIPrincipal::GetOrigin. r=gabor
2015-07-16 11:23:49 -07:00
Andrew McCreight
8701d0794e
Bug 1182966 - Part 3: Add some final annotations to DomainSet. r=mrbkap
2015-07-14 07:59:00 -04:00
Andrew McCreight
460ac92adc
Bug 1182966 - Part 2: Stop referring to the nsI class for no apparent reason in DomainPolicy. r=mrbkap
2015-07-14 07:59:00 -04:00
Andrew McCreight
1f979114af
Bug 1182966 - Part 1: Use nsTHashTable::Iterator in DomainSet::CloneSet. r=mrbkap
2015-07-14 07:58:00 -04:00
Bobby Holley
87abc69fb0
Bug 1182357 - Add an API to mint nsExpandedPrincipals. r=mrbkap
2015-07-15 16:59:09 -07:00
Bobby Holley
b4fdabe37d
Bug 1182347 - Remove nsIPrincipal::cookieJar. r=sicking
2015-07-14 19:56:33 -07:00
Bobby Holley
8397689ce8
Bug 1182347 - Implement OriginAttributesPattern. r=sicking,f=allstars.chh
2015-07-14 19:56:32 -07:00
Wes Kocher
ff2f0d32cf
Backed out 24 changesets (bug 1173523, bug 1172080, bug 817007, bug 1165263) for android reftest bustage CLOSED TREE
...
Backed out changeset 84fe04b2e7d1 (bug 1172080)
Backed out changeset 0ff004760a1f (bug 1172080)
Backed out changeset af147585ad55 (bug 1165263)
Backed out changeset c3af8ebb6db0 (bug 1165263)
Backed out changeset cd3f33a888fe (bug 1165263)
Backed out changeset e5db39044a1e (bug 1165263)
Backed out changeset c01c9ed77061 (bug 1165263)
Backed out changeset fb723aaa4267 (bug 1165263)
Backed out changeset f754e52e74dc (bug 1165263)
Backed out changeset c6bda3a0afd6 (bug 817007)
Backed out changeset bfa100253349 (bug 817007)
Backed out changeset b787b3f9aadc (bug 1173523)
Backed out changeset 4a0676b73f77 (bug 1173523)
Backed out changeset 82034a4560c5 (bug 1173523)
Backed out changeset 4bdb91114c7a (bug 1173523)
Backed out changeset 72406261eccc (bug 1173523)
Backed out changeset 541b6faf7196 (bug 1173523)
Backed out changeset 1caac4569616 (bug 1173523)
Backed out changeset 0d4f9f9e1b4e (bug 1173523)
Backed out changeset 2d5661eb966c (bug 1173523)
Backed out changeset 89833c0bb0cd (bug 1173523)
Backed out changeset ea64d70eacfe (bug 1173523)
Backed out changeset a8e4f1c0c445 (bug 1173523)
Backed out changeset cf498d466b85 (bug 1173523)
2015-07-14 14:00:32 -07:00
Michael Layzell
52f1ea5402
Bug 1172080 - Part 2: Use ^ instead of ! to delimit originAttributes from the URI in nsIPrincipal.origin, r=bholley
2015-07-14 15:06:42 -04:00
Michael Layzell
4d57018268
Bug 1172080 - Part 1: Throw when requesting origin for poorly behaved URIs, r=bholley
2015-07-14 15:06:41 -04:00
Birunthan Mohanathas
a8939590de
Bug 1182996 - Fix and add missing namespace comments. rs=ehsan
...
The bulk of this commit was generated by running:
run-clang-tidy.py \
-checks='-*,llvm-namespace-comment' \
-header-filter=^/.../mozilla-central/.* \
-fix
2015-07-13 08:25:42 -07:00
Bobby Holley
260bd0121f
Bug 1180921 - Support custom callbacks for allowing access per-addon load access to cross-origin URIs. r=bz,r=billm
2015-07-11 10:32:56 -04:00
Bobby Holley
94c6f14615
Bug 1180921 - Add the addonId OriginAttribute. r=bholley
2015-07-11 10:32:55 -04:00
Bobby Holley
da74a54e5c
Bug 1180921 - Generalize test_origin to make it easier to add new origin attributes. r=gabor
2015-07-11 10:32:54 -04:00
Geoff Brown
52d4e225a0
Bug 1026290 - Update mochitest-chrome manifests for android; r=jgriffin
2015-07-10 14:41:59 -06:00
Wes Kocher
45be9b06a3
Backed out 5 changesets (bug 1180921) for build failures in BasePrincipal.cpp
...
Backed out changeset d8c1a2e11a9a (bug 1180921)
Backed out changeset f4dd8c53df5f (bug 1180921)
Backed out changeset b272a0ebf5d8 (bug 1180921)
Backed out changeset 8e86b6a7d201 (bug 1180921)
Backed out changeset bbdebd7b8881 (bug 1180921)
2015-07-09 17:43:08 -07:00
Bobby Holley
c9102e3238
Bug 1180921 - Support custom callbacks for allowing access per-addon load access to cross-origin URIs. r=bz,r=billm
2015-07-09 17:25:14 -07:00
Bobby Holley
24ce1d8fe4
Bug 1180921 - Add the addonId OriginAttribute. r=bholley
2015-07-09 17:25:05 -07:00
Bobby Holley
01a5c316e5
Bug 1180921 - Generalize test_origin to make it easier to add new origin attributes. r=gabor
2015-07-09 17:21:42 -07:00
Dragana Damjanovic
7987d2203e
Bug 905127 - Part 2 - remove unnecessary nsNetUtil.h includes r=jduell
2015-07-06 07:55:00 +02:00
Emanuel Hoogeveen
7d1e52f2ff
Bug 905127 - Part 1 - Make some functions from nsNetUtil not inline. r=jduell
2015-07-07 04:17:00 +02:00
Juan Gomez
258ad59e3f
Bug 1171931 - Refactor duplicated code using XRE_IsParent/ContentProcess. r=froydnj
2015-07-03 18:29:00 -07:00
Andrew McCreight
10dd21a3ef
Bug 886459, part 3 - Remove simple uses of nsIJSRuntimeService to get the JSRuntime. r=bholley
2015-06-26 18:44:14 -07:00
Andrew McCreight
f4abeb8aba
Bug 886459, part 1 - Remove unused includes of nsIJSRuntimeService.h. r=bholley
2015-06-26 18:44:13 -07:00
Ryan VanderMeulen
5f5c327690
Backed out changeset 8b4e4083639e (bug 1171931) for B2G debug emulator bustage.
2015-06-25 19:48:42 -04:00
Juan Gomez
702a59d135
Bug 1171931 - Refactor duplicated code using XRE_IsParent/ContentProcess. r=froydnj
...
--HG--
extra : rebase_source : 2ecbe6c1dd8a7ad8dc529b53349ad431cf1116c9
2015-06-24 14:11:00 -04:00
Nikhil Marathe
b52b66ebf5
Bug 1169044 - Patch 3 - Store and set principal with script URI on ServiceWorkers. r=ehsan
...
The ServiceWorkerRegistrationInfo's principal is the principal of the document
that called register(). If we create WorkerPrivate instances based off of
this, they have a valid principal in terms of security and same-origin-ness,
but the URI path is wrong. When fetching the script from the network, the
channel's principal is used to update the worker principal. We need to do the
same when the script is loaded from Cache. This patch adds support to store the
channel principal in the cache.
--HG--
extra : rebase_source : e7d527335aa4f0d4ee52e58915c8b0ef4ad26983
2015-06-04 21:39:34 -07:00
Nikhil Marathe
8dccad6eaa
Bug 1169044 - Patch 2 - Split URLSearchParams parsing logic into non-CCed URLParams. r=baku
...
--HG--
extra : rebase_source : f68696ff1b2f2fabbb0ed015509477c65573768d
2015-06-04 13:45:24 -07:00
Andrea Marchesini
46ed66e379
Bug 1174731 - patch 1 - Make searchParams attribute readonly, r=smaug
2015-06-24 12:15:59 -07:00
Ms2ger
2ae824d1e0
Bug 1174093 - Don't recurse into caps/tests/mochitest during the build; r=mshal
...
--HG--
extra : commitid : DR79qSofZlS
2015-06-20 09:16:50 +02:00
Yoshi Huang
a1b1318d82
Bug 1170097 - Part 2: Add originAttributesToCookieJar. r=bholley
2015-06-03 14:38:55 +08:00
Yoshi Huang
b6596ba507
Bug 1170097 - Part 1: Move OriginAttributeDictionary. r=bholley
2015-06-03 14:35:09 +08:00
Andrea Marchesini
dcdcd94a06
Bug 1155153 - about:serviceworkers should work in e10s mode, r=nsm, r=bholley
2015-06-04 19:51:57 +01:00
Mike Taylor
d0ba71e646
Bug 1170375 - Add 4th batch of top .jp sites to CSS unprefixing service whitelists. r=dholbert
2015-06-08 21:26:00 -04:00
Carsten "Tomcat" Book
e7e949f08a
Backed out changeset bc305c9b5d05 (bug 1155153) for b2g xpshell test failure on a CLOSED TREE
2015-06-05 13:07:51 +02:00
Andrea Marchesini
42cd5b397c
Bug 1155153 - about:serviceworkers should work in e10s mode, r=nsm, r=bholley
2015-06-04 19:51:57 +01:00
Bobby Holley
7df20a2925
Bug 1171175 - Improve BasePrincipal::IsCodebasePrincipal. r=baku
2015-06-04 10:01:40 -07:00
Andrea Marchesini
a71e717b67
Bug 1162088 - patch 1 - ServiceWorkerManager should use OriginAttributes from the principal as scopeKey, r=nsm, r=bholley
2015-06-03 09:43:43 +01:00
Bobby Holley
ab5b0aa248
Bug 1170311 - Stop asserting non-null argument to nsIPrincipal::{subsumes,equals}{,ConsideringDomain}. r=gabor
2015-06-02 10:45:10 -07:00
Christoph Kerschbaumer
f679dfded5
Bug 1129999
- Implement CSP devtool using GCLI; CSP to JSON (r=sstamm,bholley)
2015-05-21 11:16:04 -07:00
Mike Taylor
e6b3ee7267
Bug 1166792 - Add 3rd batch of top .jp sites to CSS unprefixing service whitelists. r=dholbert
2015-05-20 13:04:00 -04:00
Bobby Holley
078bd82f31
Bug 1165162 - Introduce a helper for converting from origin strings to a principal. rpending=Yoshi
...
I didn't end up needing this in bug, but I think it's handy to have around.
2015-05-20 17:11:53 -07:00
Bobby Holley
497b7c5b80
Bug 1165162 - Add nsIPrincipal::cookieJar. r=sicking
2015-05-20 17:11:52 -07:00
Bobby Holley
9514cd6d70
Bug 1165162 - Tests. r=gabor
2015-05-20 17:11:51 -07:00
Bobby Holley
3b6ba803a8
Bug 1165162 - Serialize originSuffix into .origin. r=gabor,sr=sicking
...
We also provide an opt-out for the original behavior, and use it in various
consumers that look like they need fixing up. Most of the usage here is in
code with persistence considerations, where we may need some sort of migration
path.
2015-05-20 17:11:49 -07:00
Bobby Holley
9a937e13f4
Bug 1165162 - Hoist GetOrigin onto BasePrincipal. r=gabor
2015-05-20 17:11:48 -07:00
Bobby Holley
8ee7426f3a
Bug 1165162 - Fix up nsScriptSecurityManager::AppStatusForPrincipal to compare principals rather than origins. r=gabor, sr=sicking
...
The current check will fail once we start munging the format of nsIPrincipal::Origin.
2015-05-20 17:11:47 -07:00
Bobby Holley
91e0c12696
Bug 1165162 - Rework the nsIScriptSecurityManager principal-minting API to be originAttributes-centric. r=gabor,r=bholley,sr=sicking
2015-05-20 17:11:41 -07:00