ca0706d1c4
Bug 1281787, r=bz
...
MozReview-Commit-ID: JLdLD57pF87
--HG--
extra : rebase_source : c656044a8448d2fa70e484e9c126fc1955201579
2016-07-13 12:05:22 +01:00
e4ae5f26da
Bug 1283855 part 20 - Make more principals code take JSContext instead of JSRuntime. r=luke
...
--HG--
extra : rebase_source : ad5f2f5b5bef9d20e4e248898a3c754adb306683
2016-07-05 16:49:46 +02:00
078a91ca56
Bug 1283855 part 19 - Make security callbacks take JSContext instead of JSRuntime. r=jorendorff
...
--HG--
extra : rebase_source : c106826540912b00550b2d6162dcae6e1fb616d4
2016-07-05 16:49:44 +02:00
2266139ee3
Merge mozilla-central to mozilla-inbound
2016-06-10 15:44:04 +02:00
6b557997b2
Bug 1274480 - followup: use image that exists on android, rs=bustage
...
MozReview-Commit-ID: 86ioFu6GrmB
2016-06-09 15:35:11 +01:00
5797203ab2
Bug 1274480 - Part 1 - Use SVG for permission icons and notifications. r=Gijs
...
MozReview-Commit-ID: Dk0PajOppVL
--HG--
extra : rebase_source : eed692400919f5c126debb14b3ae2c2d17c7cb7d
2016-06-08 16:34:10 +01:00
5592622f09
Bug 1277104 - Add strings to high-frequency MOZ_CRASH() occurrences. mccr8.
...
Some of these are guesses; it's not always clear from a crash report stack
trace which MOZ_CRASH() was hit.
2016-06-09 13:09:58 +10:00
b15368cfcb
Bug 1279451 - Remove a lot of unnecessary includes of nsAutoPtr.h. rs=sparky
2016-06-07 21:10:18 +01:00
af49dba19e
Bug 1195930 - Part 8: Fixed support for origin clearing, reworked internal origin patterns to use OriginAttributesPattern; r=asuth
2016-06-05 21:42:48 +02:00
107cbffdc0
Bug 1205027 - Only size <img> to broken-image size if it's actually broken. r=dholbert
2016-06-03 07:05:46 +09:00
1d32e86b9c
Bug 1269361 - Add mPrivateBrowsingId to OriginAttributes r=ehsan,jdm
2016-06-02 17:03:11 -04:00
4d279191b4
Bug 1277583, r=bz
...
MozReview-Commit-ID: E9gNZAOQzG9
--HG--
extra : rebase_source : 302534c6ef5c064c3956188dd52fcf668db0d0e1
extra : histedit_source : c97f8279ebeea7b9a6c93d88f6809c38cac2ee14
2016-06-02 19:42:21 +01:00
525c086187
Bug 1259871 - Replace getSimpleCodebasePrincipal with createCodebasePrincipal. r=sicking
...
MozReview-Commit-ID: Frx0CjBzuve
--HG--
extra : histedit_source : 036eb321d9ccb20e0e071ba588b0a1249eb34bdd
2016-05-24 18:01:34 +08:00
dc120449d2
Bug 1275698. Get rid of nsScriptSecurityManager::ScriptAllowed and replace it with xpc::Scriptability::Get(obj).Allowed() for better performance and less indirection. r=khuey
2016-05-27 20:26:56 -04:00
4ec7cc4fc1
Bug 1276138. Remove the current/safe JSContext getters from nsScriptSecurityManager. r=mrbkap
2016-05-27 13:28:14 -04:00
e343bcae34
Bug 1274415 - Fix -Wshadow warnings in caps/ directory. r=dveditz
...
caps/BasePrincipal.cpp:562:28 [-Wshadow] declaration shadows a local variable
caps/nsScriptSecurityManager.cpp:675:18 [-Wshadow] declaration shadows a local variable
caps/nsScriptSecurityManager.cpp:854:14 [-Wshadow] declaration shadows a local variable
2016-05-19 01:04:46 -07:00
d7757bf8dd
Bug 1273364 - Trying to set a CSP on a SystemPrincipal should return NS_ERROR (r=njn)
2016-05-21 19:36:24 +02:00
b6788df19c
Bug 1067022 - add expected assertion on windows for test_bug995943.xul. r=RyanVM
...
MozReview-Commit-ID: 3cg9fQgorhG
--HG--
extra : rebase_source : 76c75b2fab084240c33eab1311ebb6c8f7b9f856
2016-05-16 06:47:59 -04:00
353ee65255
Bug 1272513 - Part 1: Suppress -Wshadow warnings-as-errors in some directories. r=glandium
2016-05-11 00:00:01 -07:00
487efd0283
Bug 1270679 - Ensure blob URLs are only accessible within the same usercontextId, r=bz
2016-05-11 19:53:13 +02:00
73ea9dd190
Bug 1162772, part 3 - Add a getChannelResultPrincipalIfNotSandboxed method to nsIScriptSecurityManager. r=bz
...
MozReview-Commit-ID: 4QwM1y6wRb
2016-04-28 11:13:09 +01:00
bec59714da
Backed out changeset c32539fd746a (bug 1162772)
2016-04-30 09:54:01 +02:00
c40b7e121f
Bug 1162772, part 3 - Add a getChannelResultPrincipalIfNotSandboxed method to nsIScriptSecurityManager. r=bz
...
MozReview-Commit-ID: 4QwM1y6wRb
2016-04-28 11:13:09 +01:00
ba1bb72568
Bug 1263496 - Part 3: fix for nsNullPrincipal::Create
...
This fixed the locations listed by
http://searchfox.org/mozilla-central/search?q=nsNullPrincipal::Create (&redirect=true
that needs to inherit origin attributes.
2016-04-27 18:38:07 +08:00
7ae2e09f40
Bug 1263496 - Part 2: fix for NS_NULLPRINCIPAL_CONTRACTID. r=bholley
...
This fixed the locations listed by
http://searchfox.org/mozilla-central/search?q=NS_NULLPRINCIPAL_CONTRACTID&redirect=true
2016-04-27 18:38:03 +08:00
6d36833e42
Bug 1254194: Apply a content security policy to all WebExtension documents. r=gabor
...
MozReview-Commit-ID: HsFFbWdq00b
--HG--
extra : rebase_source : 07e4b6ec8c32f696d5b5987091ffc5ebde2c3061
extra : histedit_source : 20983fe6a9590d7f410276fac248c3d2f711caaa
2016-04-23 20:56:56 -07:00
623a4f8665
Bug 1254194: [webext] Allow extensions to register custom content security policies. r=billm f=aswan
...
MozReview-Commit-ID: 8L6ZsyDjIpf
--HG--
extra : rebase_source : b6ccbcf849b0e7db835d14a0ba9de588c0188869
extra : histedit_source : 7f966c1d821641fc3551dc4c508f5ce8f990d5a3%2Cafa5697b301620119147292745a2007961907fa8
2016-04-23 21:29:15 -07:00
cc1c10dbae
Bug 1254194: Add a validator for custom add-on content security policies. r=billm f=aswan
...
MozReview-Commit-ID: LtBbXBCFc32
--HG--
extra : rebase_source : 1da81c92a1ffb75df071d1b32ff04b7d1a9b905a
2016-04-23 20:41:14 -07:00
c73e96a53d
Bug 1105556 - Call Create(originAttributes) when loadinfo->loadingPrincipal is null, instead of CreatePrincipalWithInheritedAttributes(). r=sicking
2016-04-13 16:30:22 -07:00
c01e63f1a5
Bug 1238177 - fix extension content needs to use the correct user context id origin attribute. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1238177)
Fixes Bug 1238177 -- extension content needs to use the correct user context id origin attribute
2016-04-04 12:20:00 +02:00
f7a1b3fb60
Bug 1242051 - Add inter-directory test support file dependencies to ini manifests. r=gps
...
Previously, every test and support file would be synced to the objdir
when running any test. Now that only those support files and tests requested
are synced, we note support files required beyond those in a test's
directory in ini manifests.
MozReview-Commit-ID: EmlDz9d4lqt
2016-04-04 14:56:52 -07:00
394034a83e
Backed out changeset 0519406b6e57 (bug 1238177) for eslint test failures
2016-04-03 09:30:03 +02:00
32251ddc37
Bug 1238177 - Extension content needs to use the correct user context id origin attribute. r=bholley
...
--HG--
extra : amend_source : f8d3bb6f6b1426ac73669491b651900614f6461c
2016-04-02 13:14:00 -04:00
b9cbf42ad8
Bug 1237479 -- nsScriptSecurityManager needs to use the correct user context id in the origin attributes in a few places. r=sicking
2016-04-01 22:36:00 -04:00
9c7f3d9e91
Bug 1185773 - Enable the moz-extension mochitest on android. r=kmag
...
MozReview-Commit-ID: ICxmwE1BI8A
--HG--
extra : transplant_source : %9B%BDd%0B%18%EC9Y%09%B9%25k%3F%9924%F2AaW
2016-03-28 10:04:59 -07:00
70202e15a1
Bug 1251308; r=luke
...
MozReview-Commit-ID: AqsMX4m7Qh9
--HG--
extra : rebase_source : 519aef2cf8c0bb39771d4589069e8fd1a06970c3
2016-03-09 11:20:11 +01:00
fed1d8ce2b
Bug 1254906 - Change the annotation on JSPrincipals::dump's definition to match that of its declaration. r=bz
...
The current discrepancy works because gecko and js don't actually agree
on the meaning of JS_EXPORT_API and JS_PUBLIC_API, but moving the
configure flags that incluences their meaning is going to make them
agree, and that adds a fatal warning when building nsJSPrincipals.cpp
because of the discrepancy.
2016-03-11 09:38:28 +09:00
798c13a0fa
Bug 1238160 - Test frame principal when toggling isolation. r=bz
...
Test frame principals in different configurations to verify the new isolated
attribute works as expected.
MozReview-Commit-ID: CQNRo2bK9iU
2016-03-02 10:35:56 -06:00
95f8000ac8
Bug 1238160 - Add assertions in non-desktop code paths. r=bz,fabrice
...
Several code paths try to ask the principal if it's in a browser element, but
the principal now only knows about *isolated* browser elements. All such code
paths are currently unused on desktop. The frame loader now asserts that
isolation remains enabled for cases where apps are used.
MozReview-Commit-ID: 775DZecc35t
2016-03-02 10:35:56 -06:00
2a55d065b7
Bug 1238160 - Rename OriginAttributes.mInBrowser and associated methods. r=bz,mayhemer
...
This change renames OriginAttributes.mInBrowser to mInIsolatedMozBrowser and
nsIPrincipal::GetIsInBrowserElement to GetIsInIsolatedMozBrowserElement. Other
methods that pass these values around also have name changes.
Tokens such as "inBrowser" have previously been serialized into cache keys, used
as DB column names, stored in app registries, etc. No changes are made to any
serialization formats. Only runtime method and variable names are updated.
No behavior changes are made in this patch, so some renamed methods may have
nonsensical implementations. These are corrected in subsequent patches
focused on behavior.
MozReview-Commit-ID: 66HfMlsXFLs
2016-03-02 10:35:56 -06:00
4fdeeb7cf9
Bug 1229222 - tests for bug 1229222. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222_Tests)
Tests Bug 1229222
--HG--
extra : rebase_source : baf12ec8819e0e82b7d6f7cf4975636172d98eb6
2016-02-29 12:27:00 +01:00
0c0cf070cf
Bug 1229222 - add chromeutils for the creation of origin attributes with the correct default values. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222)
Fixes Bug 1229222
--HG--
extra : rebase_source : 299742335452d5b5ac3cf25a3bd2d71ec655049f
2016-02-29 12:26:00 +01:00
87574e4920
Bug 1251311. JS::DescribeScriptedCaller can't throw JS exceptions. Adjust some callers accordingly. r=khuey
2016-02-26 15:23:13 -05:00
9164177faa
Backed out changeset 736daf4b4a56 (bug 1229222) for bc6 test failures in browser_339445.js
2016-02-19 15:56:27 +01:00
4f029016db
Bug 1229222 - tests bug 1229222. r=sicking
...
(HEAD -> oa, refs/patches/oa/Bug_1229222_Tests)
Tests Bug 1229222
2016-02-17 12:19:00 +01:00
d70c91802b
Bug 1210099 - Fix structured clone of expanded principal (r=bholley)
2016-02-04 22:30:21 -08:00
be5bd39145
Bug 1240651 - Annotate addonId into crash report (r=bholley)
2016-02-01 16:05:53 -08:00
ef04fd0f90
Bug 1172165 - check all nested URI schemes in CAPS. Make view-source dangerous to load, and about: URIs use per-URI flags so they keep working, r=bz
...
Also, add an opt-out for crashtest/reftest for the view-source thing so they don't all break, r=bz
--HG--
extra : commitid : 8NqvmbphSgh
extra : rebase_source : bbe0b6f11a77d7e6241a5733931d9baa95bb3fed
2015-12-11 08:06:41 -05:00
b02a011eef
Bug 1211590 - Inherits OriginAttributes from loading principal for GetChannelURIPrincipal. r=sicking
2016-01-13 05:30:00 +01:00
72ea23c63e
Bug 1239601 - improve the UniquePtr situation (r=jandem)
...
--HG--
extra : commitid : JegWAoGsuQ9
extra : rebase_source : 995c1b6ab8e4fd3b83c44741cd84a2d7b0d934d7
2016-01-15 18:26:20 -06:00
Gijs Kruitbosch
Jan de Mooij
Carsten "Tomcat" Book
Paolo Amadini
Nicholas Nethercote
Jonathan Watt
Jan Varga
Masatoshi Kimura
James Andreou
Jonathan Hao
Boris Zbarsky
Chris Peterson
Christoph Kerschbaumer
Joel Maher
Andrea Marchesini
Sebastian Hengst
Yoshi Huang
Kris Maglione
Tanvi Vyas
Dave Huseby
Chris Manchester
Matthew Wein
Benjamin Bouvier
Mike Hommey
J. Ryan Stinnett
Bill McCloskey
Henry Chang
Luke Wagner