jonas@sicking.cc
|
28ea51311b
|
Bug 416534: Clean up cross-site xmlhttprequest security checks. With fixes to tests this time. r/sr=peterv
|
2008-02-26 19:45:29 -08:00 |
myk@mozilla.org
|
7aff03fc46
|
backing out fix for bug 416534 as potential cause of mochitest failure
|
2008-02-26 19:23:36 -08:00 |
jonas@sicking.cc
|
42bbc8327e
|
Bug 416534: Clean up cross-site xmlhttprequest security checks. r/sr=peterv
|
2008-02-26 18:17:49 -08:00 |
Olli.Pettay@helsinki.fi
|
652c1e007c
|
Bug 411054, Audit IsNativeAnonymous()/GetBindingParent() uses, r+sr=sicking
|
2008-02-26 04:40:18 -08:00 |
reed@reedloden.com
|
5d4ef49dd4
|
Bug 417710 - "Use JS_GET_CLASS, not JS_GetClass" [p=gyuyoung.kim@samsung.com (gyu-young kim) r=jorendorff r=jst sr+a1.9=brendan]
|
2008-02-25 00:59:20 -08:00 |
jonas@sicking.cc
|
2c0141fcd9
|
Bug 397878: Send Referer-Root header when doing cross-site access requests. Also update domain pattern matching to spec. Patch by <suryaismail@gmail.com>. r=bent sr=sicking b3a=beltzner
|
2008-01-31 00:16:54 -08:00 |
jst@mozilla.org
|
31b04a892e
|
Fixing bustage.
|
2008-01-29 13:11:24 -08:00 |
jst@mozilla.org
|
892f0acecf
|
Fixing bug 413767. Make caps use faster JS class/parent/private/proto accessors. r=mrbkap@gmail.com, sr=brendan@mozilla.org
|
2008-01-29 12:51:01 -08:00 |
jst@mozilla.org
|
6fd0410f62
|
Fixing bug 317240. Re-enabling caps optimization now that a documents principal never changes. r+sr=bzbarsky@mit.edu
|
2008-01-28 09:51:38 -08:00 |
jst@mozilla.org
|
08983f83e3
|
Fixing bug 412691. Remove unnecessary nsCOMPtr's from performance critical code paths. r+sr=jonas@sicking.cc
|
2008-01-16 16:32:26 -08:00 |
benjamin@smedbergs.us
|
b3e87aa63b
|
Bug 411327 - nsIXPCNativeCallContext should not inherit from nsISupports, r=mrbkap, a=schrep
|
2008-01-15 07:50:57 -08:00 |
dwitte@stanford.edu
|
3f33f45d2a
|
thoroughly whack mallocfest in nsID/nsJSID and friends. b=410250, r+sr=jst, a=blocking1.9+
|
2008-01-11 20:30:42 -08:00 |
dwitte@stanford.edu
|
8d74b831d4
|
partial backout in an attempt to fix orange.
|
2008-01-11 02:08:58 -08:00 |
dwitte@stanford.edu
|
cc924d2d23
|
relanding bug 410250.
|
2008-01-11 01:13:04 -08:00 |
dwitte@stanford.edu
|
f300515e36
|
backing out to fix orange.
|
2008-01-10 20:59:44 -08:00 |
dwitte@stanford.edu
|
09217db711
|
thoroughly whack mallocfest in nsID/nsJSID and friends. b=410250, r+sr=jst, a=blocking1.9+
|
2008-01-10 19:56:00 -08:00 |
timeless@mozdev.org
|
1bd2741649
|
Bug 334306 useless null check in nsDestroyJSPrincipals r=dbaron sr=dveditz a=mtschrep
|
2008-01-06 06:53:24 -08:00 |
mrbkap@gmail.com
|
68ee3e9f08
|
Always throw an exception, even if we cannot reach a principal. bug 409514, r+sr+a=jst
|
2008-01-04 17:32:23 -08:00 |
jst@mozilla.org
|
f0f4a78cce
|
Fixing bug 410851. Expose a faster way of getting the subject principal, and use that from performance critical code. r+sr=mrbkap@gmail.com
|
2008-01-04 15:59:12 -08:00 |
mrbkap@gmail.com
|
2605476d7c
|
XPCNativeWrappers can confuse the short-circuiting code. bug 409291, r+sr=jst a=beltzner
|
2007-12-21 11:06:29 -08:00 |
jst@mozilla.org
|
b30b544b5f
|
Fixing bug 408009. Make doGetObjectPrincipal() faster. r+sr=bzbarsky@mit.edu, r+a=brendan@mozilla.org
|
2007-12-12 15:02:25 -08:00 |
philringnalda@gmail.com
|
57e4af9c93
|
Bug 400247 - remove XP_MAC deadcode in nsScriptSecurityManager.cpp, r+sr=bz, a=dsicore
|
2007-11-12 19:23:17 -08:00 |
tglek@mozilla.com
|
21a6a8dc26
|
Bug 398574:Prbool fixes r=bz a=release drivers
|
2007-11-12 13:47:11 -08:00 |
jonas@sicking.cc
|
4c1a3910ac
|
bug 394390: Don't report bogus warnings to the error console when using cross-site xmlhttprequest. Patch by Surya Ismail <suryaismail@gmail.com>, r/sr=sicking
|
2007-10-26 18:46:09 -07:00 |
bzbarsky@mit.edu
|
26d7ccd742
|
Make the "href" property of stylesheets reflect the original URI that was reflected to load the sheet. Bug 397427, r=dbaron,biesi, sr=dbaron, a=dsicore
|
2007-10-23 14:56:41 -07:00 |
bzbarsky@mit.edu
|
e252fc2b15
|
Somewhat reduce the amount of memory an nsPrincipal allocates in the common case. Bug 397733, r+sr+a=jst
|
2007-09-28 07:31:04 -07:00 |
bzbarsky@mit.edu
|
5983f838e4
|
Make the nsISerializable implementation of nsPrincipal actually work. This makes it possible to save principal objects to a stream and read them back. Bug 369566, r=dveditz+brendan, sr=jst, a=jst
|
2007-09-17 15:18:28 -07:00 |
dveditz@cruzio.com
|
2940b2f998
|
bugs 230606 and 209234: add options to restrict file: URI same-origin policies, r+sr=jst, blocking+=pavlov
|
2007-09-06 00:02:57 -07:00 |
bent.mozilla@gmail.com
|
c0215549f6
|
Bug 304048 - Backing out patch due to TXUL regression.
|
2007-08-30 17:52:58 -07:00 |
bent.mozilla@gmail.com
|
5f9effcd34
|
Bug 304048 - "xpconnect getters/setters don't have principals until after they pass or fail their security check." Patch by jst, sr=bzbarsky, a=jst.
|
2007-08-28 17:16:21 -07:00 |
bzbarsky@mit.edu
|
3c0f9ef02f
|
Add some sanity null-checks. Bug 387446, r=dveditz, sr+a=jst
|
2007-08-06 19:09:16 -07:00 |
sdwilsh@shawnwilsher.com
|
681c6747e8
|
Bustage fix
|
2007-07-11 14:20:11 -07:00 |
jwalden@mit.edu
|
6d7584839a
|
Bug 348748 - Replace all instances of NS_STATIC_CAST and friends with C++ casts (and simultaneously bitrot nearly every patch in existence). r=bsmedberg on the script that did this. Tune in next time for Macro Wars: Episode II: Attack on the LL_* Macros.
|
2007-07-08 00:08:04 -07:00 |
bzbarsky@mit.edu
|
647cbff151
|
Make security manager API more useful from script. Make more things
scriptable, and add a scriptable method for testing whether a given principal
is the system principal. Bug 383783, r=dveditz, sr=jst
|
2007-06-18 08:12:09 -07:00 |
bzbarsky@mit.edu
|
434b4cf8db
|
Optimize immutability of codebase/domain a little bit. Bug 380475, r=dveditz, sr=biesi
|
2007-06-18 08:07:02 -07:00 |
bzbarsky@mit.edu
|
ec536a72cf
|
Make nsPrincipal::Equals compare codebases, not just certs, for certificate
principals. Bug 369201, r=dveditz, sr=jst
|
2007-06-18 08:01:53 -07:00 |
benjamin@smedbergs.us
|
baab01ada6
|
Bug 376636 - Building with gcc 4.3 and -pendatic fails due to extra semicolons, patch by Art Haas <ahaas@airmail.net>, rs=me
|
2007-04-23 07:21:53 -07:00 |
dbaron@dbaron.org
|
e7bb1b1c38
|
Remove GetKeyPointer method from nsTHashtable key types. b=374906 r=bsmedberg
|
2007-03-27 08:34:59 -07:00 |
dbaron@dbaron.org
|
d98d9fdec5
|
Remove unused getKey callback from PLDHashTableOps/JSDHashTableOps. b=374906 r=bsmedberg
|
2007-03-27 08:33:38 -07:00 |
hg@mozilla.com
|
05e5d33a57
|
Free the (distributed) Lizard! Automatic merge from CVS: Module mozilla: tag HG_REPO_INITIAL_IMPORT at 22 Mar 2007 10:30 PDT,
|
2007-03-22 10:30:00 -07:00 |
bzbarsky%mit.edu
|
d9f9d475bb
|
When getting codebase principals, install the passed-in codebase on them even
if they come from the hashtable. Bug 269270, r=dveditz, sr=jst.
|
2007-02-09 04:52:44 +00:00 |
bzbarsky%mit.edu
|
382b095c94
|
Get the source scheme from the right URI object. Bug 368160, r+sr=dveditz
|
2007-01-26 04:33:02 +00:00 |
bzbarsky%mit.edu
|
8a1b6c5e34
|
Make the redirect check get principals the same way we get them elsewhere.
Clean up some code to use the new security manager method. Bug 354693,
r=dveditz, sr=sicking
|
2006-11-22 18:27:54 +00:00 |
gavin%gavinsharp.com
|
ad22de3c0c
|
Bug 202198: fix possible leak in nsScriptSecurityManager::InitPrefs(), patch by Ryan Jones <sciguyryan+bugzilla@gmail.com>, r+sr=dveditz
|
2006-11-22 17:22:40 +00:00 |
sayrer%gmail.com
|
6aa99d403b
|
Bug 360840. allocator mismatch in nsIScriptSecurityManager. r=timeless, sr=bz
|
2006-11-16 18:25:52 +00:00 |
bzbarsky%mit.edu
|
730516b0a1
|
Remove securityCompareURIs() from nsIScriptSecurityManager. Bug 327243, r+sr=jst
|
2006-11-14 22:46:45 +00:00 |
bzbarsky%mit.edu
|
0a3a624149
|
Make it possible for protocol handlers to configure how CheckLoadURI should
treat them via their protocol flags. Remove the protocol list we used before.
Bug 120373, r=dveditz, sr=darin
|
2006-11-10 23:49:08 +00:00 |
cbiesinger%web.de
|
74a2a1d30c
|
Bug 351876 Move nsICryptoHash into necko
r=darin
|
2006-09-15 22:06:31 +00:00 |
bzbarsky%mit.edu
|
50e969de0c
|
Introduce CheckLoadURIStrWithPrincipal(). Bug 348559, r=dveditz, sr=jst
|
2006-08-21 22:15:20 +00:00 |
pkasting%google.com
|
dafdf0b1eb
|
Bug 337223: Don't expose moz-anno protocol to web pages.
Patch by brettw
r=jst
sr=bzbarsky
|
2006-08-18 21:35:16 +00:00 |