Граф коммитов

101 Коммитов

Автор SHA1 Сообщение Дата
norris%netscape.com 060e388a6b Files:
caps/idl/nsICertificatePrincipal.idl
	caps/idl/nsIPrincipal.idl
	caps/src/nsBasePrincipal.cpp
Implement the ability to manipulate multiple capabilties simultaneously.
r=mstoltz@netscape.com

Files:
	caps/src/nsCodebasePrincipal.cpp
Codebase equality should be based upon origin, not full path.
r=mstoltz@netscape.com

Files:
	caps/src/nsScriptSecurityManager.cpp
Change URI checking to deny based upon scheme rather than allow based upon
scheme for greater flexibility.
r=mstoltz@netscape.com

Files:
	dom/public/nsDOMPropEnums.h
	dom/public/nsDOMPropNames.h
	dom/src/base/nsGlobalWindow.cpp
	modules/libpref/src/init/all.js
Fix bug 20469 Seeing JS functions and global variables from arbitrary host
r=vidur@netscape.com

Files:
	dom/src/base/nsJSUtils.cpp
	dom/src/base/nsJSUtils.h
	dom/src/base/nsJSEnvironment.cpp
	dom/tools/JSStubGen.cpp
	layout/base/src/nsDocument.cpp
	layout/html/content/src/nsGenericHTMLElement.cpp
Improve performance by removing NS_WITH_SERVICE call for every DOM access.
Propagate XPCOM failure codes out properly.
r=vidur@netscape.com

Files:
	layout/html/document/src/nsFrameFrame.cpp
Fix 27387 Circumventing Same Origin security policy using setAttribute
r=vidur@netscape.com
2000-03-11 06:32:42 +00:00
vidur%netscape.com e5b64e43ae Fix for bug 27775. Introduced idl keyword 'replaceable' and marked some of the newer window properties with it. Fixes pages like www.oracle.com that have define window-scoped variables with the same name. r=rginda, a=chofmann 2000-02-22 22:08:36 +00:00
scc%netscape.com 73802d6f2e Pro5 update 2000-02-07 23:06:04 +00:00
brade%netscape.com 49568eb54e fix paths for move to CW5 (bug #25779) 2000-02-02 15:27:53 +00:00
norris%netscape.com c04c4d51f9 Fix bug #25864 watch() vulnerability
r=vidur,rogerl
2000-02-02 00:22:58 +00:00
vidur%netscape.com 29ac9e129a Fix for bug 24215. Misspelled constant. 2000-01-19 01:40:48 +00:00
vidur%netscape.com 41d1ed74ad Cleanup - dealing with people modifying the idl generator and not checking in the generated file or vice-versa. r=pollmann. 2000-01-18 23:41:27 +00:00
sfraser%netscape.com d80cd3f7e3 Fix idlc code generation with nsCOMPtr. r=vidur. 2000-01-18 01:01:27 +00:00
pp%ludusdesign.com 698852a4f4 Converting usage of ::GetIID() to NS_GET_IID().
Bug #20232, r=scc@netscape.com
2000-01-11 20:49:15 +00:00
vidur%netscape.com 70de582cc6 Fix for bug 18840. Radio button groups are now reflected as collections in a form's namespace. Added nsIDOMHTMLFormControlList interface and special handling for namedItem method that return a jsval. a=dagley r=pollmann 1999-12-22 01:48:47 +00:00
jband%netscape.com ef9c82db1e Landing big set of DOM and XPConnect changes:
DOM: getting rid of JS_GetContextPrivate wherever possible. Use static parent
links where we can. When we do need to find this info about the caller
we call a function that knows how to get that info rather than inline calls
to JS_GetContextPrivate. This is all required for calling DOM objects on
non-DOM JSContexts as we do via xpconnect.

XPConnect: basic refactoring work to disassociate wrappers from the JSContext
that was active when the wrapper was constructed. This allows for calling into
wrapped JS objects on the right JSContext and for proper grouping of wrapped
native objects so that they can share proto objects. This also allows for
better sharing of objects and lays the foundations for threadsafety and
interface flattening.

Also, xpconnect tests are reorganized and improved.

fixes bugs: 13419, 17736, 17746, 17952, 22086

r=vidur r=mccabe r=norris r=cbegle
a=chofmann
1999-12-18 20:29:29 +00:00
waterson%netscape.com b3cf5bd138 Bug 21668. Ugh. Totally botched my patch application. Let's try that again. 1999-12-17 00:26:08 +00:00
waterson%netscape.com cef34d8d22 Bug 21668. Use nsCOMPtr (or Linss-ptr) to get the nativeThis. r=shaver 1999-12-17 00:11:03 +00:00
norris%netscape.com 51842ef45e Fix 18553 [DOGFOOD] addEventListener allows sniffing keystrokes
Add checks to nsScriptSecurityManager::CheckCanListenTo that take
a principal and ensure that the currently executing script code
either is from the same origin as that principal or has the
UniversalBrowserRead privilege enabled. (chrome code has all
privileges enabled by default.) It's okay for the principal passed in
to be null. That just signifies a privileged window/document that only
can be listened to with privileges.

I added GetPrincipal/SetPrincipal methods to nsIEventListenerManager.
nsDocument::GetNewListenerManager sets a principal on the listener
manager when it creates one. Obviously there are other places that
create listener managers, but scripts seem to go through this one.

Another change is to save some memory usage. Currently I allocate an
array of PolicyType that is NS_DOM_PROP_MAX elements long.
Unfortunately, compilers appear to allocate four bytes for each
PolicyType, so the array takes around 2400 bytes. I've added changes
to use two bit vectors that should consume about 1/16 that space.

r=joki

There are also changes that push nsnull onto the JSContext stack when
entering a nested event loop.

r=jband
1999-11-25 05:28:18 +00:00
norris%netscape.com 24778bda71 Modify generated dom code to use a enum rather than a string for codesize
and efficiency.
Tighten checks on document properties and node properties. Should resolve
several bugs:
18965 document.firstChild vulnerability
19043 document.childNodes vulnerability
19044 document.lastChild vulnerability
r=mstoltz
1999-11-20 07:28:34 +00:00
waterson%netscape.com c38842c56b Fix event listener leak in code that is generated to take functions. Fix to generate new NPL 1.1 license. r=joki 1999-11-18 20:38:43 +00:00
dmose%mozilla.org 5312eacf8c updated license boilerplate to xPL 1.1, a=chofmann@netscape.com,r=endico@mozilla.org 1999-11-06 03:40:37 +00:00
vidur%netscape.com 395670b5ed global object no longer has an unused constructor. 1999-09-23 23:52:09 +00:00
briano%netscape.com 1d66d27e7a General cleanup. 1999-09-11 00:59:11 +00:00
sfraser%netscape.com 7ea22097c2 Remove the base DLL 1999-09-10 00:52:24 +00:00
slamm%netscape.com 735d033b94 Fix build warnings. 1999-09-09 19:16:12 +00:00
vidur%netscape.com cb561f35bc Added JS exceptions to DOM glue. Added implementation for nsIDOMDOMException. Added nsIScriptContextOwner::ReportScriptError. 1999-09-08 23:14:30 +00:00
cyeh%netscape.com 34cd2ddae1 Remove IGNORE_MANIFEST=1. It doesn't do anything and it confuses people. 1999-09-01 01:13:14 +00:00
kipp%netscape.com 7b70f78268 Make it build on linux at least 1999-09-01 00:54:53 +00:00
joki%netscape.com 155255be20 Adding new flag to the security check calls out of the DOM generated JS files. 1999-08-31 14:23:55 +00:00
vidur%netscape.com 379ded57ab jsval can now be a parameter or return type. Got rid of unused variable warnings. Fixed secMan leak. 1999-08-27 06:06:24 +00:00
ramiro%netscape.com 2c19866af3 cleanup linking of libmozreg. 1999-08-21 15:41:53 +00:00
brendan%mozilla.org 6ae1ed6087 - Avoid generating "if (argc >= 0)" dead code and incurring warnings on some
platforms.  Those warnings were degrading slamm's tinderbox warning page's
  S/N ratio.
- Use const char arrays initialized by string constants, rather than const
  pointers to unnamed arrays created by string constants.
- Chop out some extra leading newlines that sometimes tripled up when emitted
  after a double trailing newline.
1999-08-10 06:59:03 +00:00
vidur%netscape.com ff5ce3e079 Changed attribute getter glue to use NS_SUCCESS macro instead of comparing to NS_OK 1999-08-09 19:19:49 +00:00
vidur%netscape.com 5104a33513 Relative URLs specified for window.location.href are now resolved relative to the calling location. 1999-08-03 23:16:48 +00:00
briano%netscape.com 007ea62765 Cleaned it up and changed the name of libreg.{a,so} to libmozreg.{a,so} to fix the conflict reported in bug 8568. 1999-07-27 23:27:44 +00:00
waterson%netscape.com 911c81f859 Fix missing cast in XPC case. 1999-07-22 21:57:29 +00:00
slamm%netscape.com 19579def51 Remove unused variable (and compiler warning) 1999-07-06 23:38:33 +00:00
dveditz%netscape.com 17864a291d Trying to fix Win32 dependencies. Lots of broken cut-n-paste makefiles 1999-07-02 11:50:19 +00:00
mcafee%netscape.com e140d3c2d3 BeOS changes 1999-06-27 09:34:52 +00:00
mcafee%netscape.com 9004f2c1df BeOS changes 1999-06-27 09:28:16 +00:00
pollmann%netscape.com e335d3d54f Bug 2195: Make select[n] == select.options[n] (idlc bugfix courtesy of Vidur) 1999-06-15 23:41:30 +00:00
vidur%netscape.com de45c1e44d Changed reference counting rules for nsGlobalWindow - now its JSObject maintains a reference to it. The root for the global JSObject is now removed in SetWebShell when we're going away. Lots of null checks so that standalone global window doesn't crash. 1999-06-15 03:17:11 +00:00
vidur%netscape.com 51f68b19fb JS_GetPrivate calls now go through a nsJSUtils wrapper that checks up the prototype chain. This is useful for applets where the JSClass instance is set as the proto of the LiveConnect-generated object. 1999-06-11 22:38:35 +00:00
vidur%netscape.com f51c4ade16 Fixes for bug 927. JS timer code can deal with the window closing in a timer callback. NamedItem gets called for unknown integer property values as well. Added nsCOMPtr generation option to idlc. Fixed warnings in generated code. 1999-06-11 21:49:41 +00:00
mang%subcarrier.org 872ca0acf2 documented existence of -g flag 1999-05-28 01:25:31 +00:00
vidur%netscape.com 20cf0c3a50 Added support for noscript qualifier to attributes and methods. When this qualifier is used, the corresponding attribute or method is not reflected in the glue. 1999-05-28 00:17:38 +00:00
joki%netscape.com 0faca774dd Beginnings of JavaScript security bits. 1999-05-26 21:43:28 +00:00
dp%netscape.com 94344009c8 Landing xpcom20/21 branch. 1999-05-26 01:38:36 +00:00
mccabe%netscape.com e880402830 Support for magically detecting whether an argument to an XPConnect'ed function is a dom node with a native nsISupports, and unwrapping it properly.
This'll go live as soon as I can persuade joki or vidur to rebuild the DOM stubs.
1999-05-12 02:05:48 +00:00
law%netscape.com f07d111666 Tweaking initializer code so it still works with appcores 1999-05-07 19:37:21 +00:00
vidur%netscape.com 5a0ff8598d Added use of the nsIJSNativeInitializer interface in constructors. Work in progress for unknown keyword. 1999-05-04 20:48:50 +00:00
waterson%netscape.com 0e6d8ebdba Bug 5679. Fix leak from XPConnect glue. 1999-05-04 03:32:12 +00:00
waterson%netscape.com a37bdc108b Fixed a problems with XPIDL parameters and return values ('out' params are stills broken). Got rid of the XPIDL_JS_STUBS defines, as they are obsolete. 1999-04-27 06:14:08 +00:00
waterson%netscape.com e00ff30ebf Modified JSStubGen to spit out correct code from XPConnect. 1999-04-24 02:38:05 +00:00