Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
115,285 Commits 3,986 Branches 0 Tags
Commit Graph

24 Commits

Author SHA1 Message Date
mstoltz%netscape.com
50e08140ae Bug 136993 - Put the "trusted codebase principals" feature back in. 
r=harishd, sr=jst, a=valeski


git-svn-id: svn://10.0.0.236/trunk@118900 18797224-902f-48f8-a5cc-f745e15eee43
 2002-04-13 01:53:46 +00:00
mstoltz%netscape.com
083b598d3c A bunch of fixes in caps: 
128697 - Added a pref listener for changes to capability.policy prefs,
removed profile-change listener
131025 - Removed insecure "trusted codebase principals" feature
131340 - Make nsCodebasePrincipal::Equals handle jar URLs correctly
131342 - Clean up privilege-grant dialog code
128861 - class policy hashtables allocated only when needed; avoids
PLDHash memory-use warning
Fixed comparison of -1 and 80 ports (Can't find the bug # right now)

All r=harishd, sr=jst, a=asa.


git-svn-id: svn://10.0.0.236/trunk@116958 18797224-902f-48f8-a5cc-f745e15eee43
 2002-03-20 05:53:46 +00:00
mstoltz%netscape.com
2eb513fdbc bug 106535, adding the ability to enable codebase principals for a single host 
instead of for all hosts. r=vidur, sr=jst.


git-svn-id: svn://10.0.0.236/trunk@106425 18797224-902f-48f8-a5cc-f745e15eee43
 2001-10-26 23:00:48 +00:00
gerv%gerv.net
4c7ac5dfa4 License changes, take 2. Bug 98089. mozilla/config/, mozilla/caps/, mozilla/build/. 
git-svn-id: svn://10.0.0.236/trunk@103674 18797224-902f-48f8-a5cc-f745e15eee43
 2001-09-25 01:03:58 +00:00
gerv%gerv.net
ae1d5501a1 Oops. 
git-svn-id: svn://10.0.0.236/trunk@103236 18797224-902f-48f8-a5cc-f745e15eee43
 2001-09-20 00:02:59 +00:00
scc%mozilla.org
52c8d09e03 bug #98089: ripped new license 
git-svn-id: svn://10.0.0.236/trunk@103219 18797224-902f-48f8-a5cc-f745e15eee43
 2001-09-19 20:09:47 +00:00
brendan%mozilla.org
f5bc62edea FASTLOAD_20010703_BRANCH landing, r=dbaron, sr=shaver. 
git-svn-id: svn://10.0.0.236/trunk@100030 18797224-902f-48f8-a5cc-f745e15eee43
 2001-07-31 19:05:34 +00:00
mstoltz%netscape.com
a24d345d24 Fixes for 32878, 37739. Added PR_CALLBACK macros. Changed security.principal pref syntax to a nicer syntax. Removed "security.checkxpconnect" hack. 
git-svn-id: svn://10.0.0.236/trunk@69963 18797224-902f-48f8-a5cc-f745e15eee43
 2000-05-16 03:40:51 +00:00
mstoltz%netscape.com
1aebd93c62 Fixes for 27010, 32878, and 32948. 
git-svn-id: svn://10.0.0.236/trunk@67181 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-26 03:50:07 +00:00
mstoltz%netscape.com
a8b220b370 Backing out changes until I can figure out why it's crashing on startup. 
git-svn-id: svn://10.0.0.236/trunk@66937 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 21:25:39 +00:00
mstoltz%netscape.com
85e8a5b8e2 Fixes for bugs 27010, 32878, 32948. 
git-svn-id: svn://10.0.0.236/trunk@66935 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 20:30:29 +00:00
norris%netscape.com
36450a3f42 Fix 25062 Reload vulnerability 
25206 Reload vulnerability #2
Implement grant dialogs and persistence for capabilities.
most r=mstoltz, some code from morse w/ r=norris


git-svn-id: svn://10.0.0.236/trunk@60281 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-10 04:56:56 +00:00
mstoltz%netscape.com
55356cc71b Implemented the reading of capabilities data from prefs. Reads codebase and certificate principal data and populates ScriptSecurityManager's principals table. bug= 18122 r=norris, rginda 
git-svn-id: svn://10.0.0.236/trunk@58125 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-18 21:54:01 +00:00
jdunn%netscape.com
9b6c271893 Fix base class specifiers, since be default if they aren't specified it is Private 
# 23237
r= warren@netscape.com, ftang@netscape.com, jband@netscape.com


git-svn-id: svn://10.0.0.236/trunk@57329 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-11 01:45:34 +00:00
norris%netscape.com
d83622d4ac * Fix the following bugs by tightening the default security policy. 
17977 [DOGFOOD] Reading documents using document.body
17538 document.lastModified is exposed
17537 document.images vulnerabilities
16036 [DOGFOOD] document.Element exposes the DOM of documents from
15757 [DOGFOOD] Injecting JS code using setAttribute and getElemen
15550 Injecting text in documents from any domain using createText
15067 [DOGFOOD] getElementsByTagName() allows reading of arbitrary
* Create an array of dom property policy types and initialize it when the script security manager is created.
* Move some implementation code to a new shared implementation base class.
* Implement privilege enabling, disabling and reverting
* Implement stack walking for checking privileges.
r=mstoltz@netscape.com

* Modify nsIPref to support security policy work.
r=neeti@netscape.com


git-svn-id: svn://10.0.0.236/trunk@53254 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-11 22:10:36 +00:00
dmose%mozilla.org
0efb7c174c updated xPL license boilerplate to v1.1, a=chofmann@netscape.com,r=endico@mozilla.org 
git-svn-id: svn://10.0.0.236/trunk@52910 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-06 03:43:54 +00:00
norris%netscape.com
34b474302b Add all-powerful system principals. Remove some dead code from the build. 
git-svn-id: svn://10.0.0.236/trunk@45380 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-01 00:54:35 +00:00
norris%netscape.com
3a6d863c13 * clean up nsScriptSecurityManager 
* remove nsJSSecurityManager
* save principals in nsIChannels and nsIDocuments


git-svn-id: svn://10.0.0.236/trunk@45080 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-29 21:58:42 +00:00
mccabe%netscape.com
0d087a7447 Spam caps subtree to replace declarations of IDL-defined interface methods in implementation classes with xpidl-generated NS_DECL_NSIFOO macro. 
git-svn-id: svn://10.0.0.236/trunk@44018 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-21 20:22:27 +00:00
arielb%netscape.com
ad40dbfcd5 includes updates to codbase matching security checks currently turned off 
but in place.  redefined the script security manager in caps and it is
now generating codebase principals.


git-svn-id: svn://10.0.0.236/trunk@43798 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-20 09:51:02 +00:00
arielb%netscape.com
a12b820894 added a new and improved factory to caps module. fixed some bugs and 
cleared some warnings.  also move some methods of privilege manager to
principal manager.


git-svn-id: svn://10.0.0.236/trunk@42563 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-06 22:44:35 +00:00
arielb%netscape.com
576dedd032 add a principal manager to caps api. everything is now xpidled so 
i removed the public directory from the module.


git-svn-id: svn://10.0.0.236/trunk@41771 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-01 21:26:02 +00:00
arielb%netscape.com
35dc473dd3 Fix to the caps security module. I removed the nsPrincipal struct, from now 
on you can access principals by their xpcomed interface nsIPrincipal.


git-svn-id: svn://10.0.0.236/trunk@40961 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-24 03:58:23 +00:00
arielb%netscape.com
e8083aedee idled principals interfaces and some fixes to caps manager... 
git-svn-id: svn://10.0.0.236/trunk@39741 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-16 20:31:18 +00:00