Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
60,966 Commits 3,986 Branches 0 Tags
Commit Graph

16 Commits

Author SHA1 Message Date
mstoltz%netscape.com
1aebd93c62 Fixes for 27010, 32878, and 32948. 
git-svn-id: svn://10.0.0.236/trunk@67181 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-26 03:50:07 +00:00
mstoltz%netscape.com
a8b220b370 Backing out changes until I can figure out why it's crashing on startup. 
git-svn-id: svn://10.0.0.236/trunk@66937 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 21:25:39 +00:00
mstoltz%netscape.com
85e8a5b8e2 Fixes for bugs 27010, 32878, 32948. 
git-svn-id: svn://10.0.0.236/trunk@66935 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 20:30:29 +00:00
norris%netscape.com
36450a3f42 Fix 25062 Reload vulnerability 
25206 Reload vulnerability #2
Implement grant dialogs and persistence for capabilities.
most r=mstoltz, some code from morse w/ r=norris


git-svn-id: svn://10.0.0.236/trunk@60281 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-10 04:56:56 +00:00
mstoltz%netscape.com
55356cc71b Implemented the reading of capabilities data from prefs. Reads codebase and certificate principal data and populates ScriptSecurityManager's principals table. bug= 18122 r=norris, rginda 
git-svn-id: svn://10.0.0.236/trunk@58125 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-18 21:54:01 +00:00
jdunn%netscape.com
9b6c271893 Fix base class specifiers, since be default if they aren't specified it is Private 
# 23237
r= warren@netscape.com, ftang@netscape.com, jband@netscape.com


git-svn-id: svn://10.0.0.236/trunk@57329 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-11 01:45:34 +00:00
norris%netscape.com
d83622d4ac * Fix the following bugs by tightening the default security policy. 
17977 [DOGFOOD] Reading documents using document.body
17538 document.lastModified is exposed
17537 document.images vulnerabilities
16036 [DOGFOOD] document.Element exposes the DOM of documents from
15757 [DOGFOOD] Injecting JS code using setAttribute and getElemen
15550 Injecting text in documents from any domain using createText
15067 [DOGFOOD] getElementsByTagName() allows reading of arbitrary
* Create an array of dom property policy types and initialize it when the script security manager is created.
* Move some implementation code to a new shared implementation base class.
* Implement privilege enabling, disabling and reverting
* Implement stack walking for checking privileges.
r=mstoltz@netscape.com

* Modify nsIPref to support security policy work.
r=neeti@netscape.com


git-svn-id: svn://10.0.0.236/trunk@53254 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-11 22:10:36 +00:00
dmose%mozilla.org
0efb7c174c updated xPL license boilerplate to v1.1, a=chofmann@netscape.com,r=endico@mozilla.org 
git-svn-id: svn://10.0.0.236/trunk@52910 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-06 03:43:54 +00:00
norris%netscape.com
34b474302b Add all-powerful system principals. Remove some dead code from the build. 
git-svn-id: svn://10.0.0.236/trunk@45380 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-01 00:54:35 +00:00
norris%netscape.com
3a6d863c13 * clean up nsScriptSecurityManager 
* remove nsJSSecurityManager
* save principals in nsIChannels and nsIDocuments


git-svn-id: svn://10.0.0.236/trunk@45080 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-29 21:58:42 +00:00
mccabe%netscape.com
0d087a7447 Spam caps subtree to replace declarations of IDL-defined interface methods in implementation classes with xpidl-generated NS_DECL_NSIFOO macro. 
git-svn-id: svn://10.0.0.236/trunk@44018 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-21 20:22:27 +00:00
arielb%netscape.com
ad40dbfcd5 includes updates to codbase matching security checks currently turned off 
but in place.  redefined the script security manager in caps and it is
now generating codebase principals.


git-svn-id: svn://10.0.0.236/trunk@43798 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-20 09:51:02 +00:00
arielb%netscape.com
a12b820894 added a new and improved factory to caps module. fixed some bugs and 
cleared some warnings.  also move some methods of privilege manager to
principal manager.


git-svn-id: svn://10.0.0.236/trunk@42563 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-06 22:44:35 +00:00
arielb%netscape.com
576dedd032 add a principal manager to caps api. everything is now xpidled so 
i removed the public directory from the module.


git-svn-id: svn://10.0.0.236/trunk@41771 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-01 21:26:02 +00:00
arielb%netscape.com
35dc473dd3 Fix to the caps security module. I removed the nsPrincipal struct, from now 
on you can access principals by their xpcomed interface nsIPrincipal.


git-svn-id: svn://10.0.0.236/trunk@40961 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-24 03:58:23 +00:00
arielb%netscape.com
e8083aedee idled principals interfaces and some fixes to caps manager... 
git-svn-id: svn://10.0.0.236/trunk@39741 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-16 20:31:18 +00:00