Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
71,818 Commits 3,986 Branches 0 Tags
Commit Graph

91 Commits

Author SHA1 Message Date
mstoltz%netscape.com
676f6215b3 Fixing 52497, security problem in document.implementation, r=jst a=brendan 
git-svn-id: svn://10.0.0.236/trunk@79671 18797224-902f-48f8-a5cc-f745e15eee43
 2000-09-20 23:38:28 +00:00
rayw%netscape.com
d9228441a4 Bug 37275, Changing value of all progids, and changing everywhere a progid 
is mentioned to mention a contractid, including in identifiers.

r=warren


git-svn-id: svn://10.0.0.236/trunk@79036 18797224-902f-48f8-a5cc-f745e15eee43
 2000-09-13 23:57:52 +00:00
mstoltz%netscape.com
70914e878d bug 44147, caps grant dialog now being created from DOMWindow->GetPrompter instead of nsIPrompt service. r=dbragg 
git-svn-id: svn://10.0.0.236/trunk@78560 18797224-902f-48f8-a5cc-f745e15eee43
 2000-09-09 00:53:21 +00:00
mstoltz%netscape.com
891766eb9e bug 50304, adding "static" to security policy struct, should save some memory and time. r=rogerl 
git-svn-id: svn://10.0.0.236/trunk@78408 18797224-902f-48f8-a5cc-f745e15eee43
 2000-09-07 19:03:23 +00:00
scc%mozilla.org
c03fb594e2 more GCC fixes 
git-svn-id: svn://10.0.0.236/trunk@78068 18797224-902f-48f8-a5cc-f745e15eee43
 2000-09-03 06:41:18 +00:00
dp%netscape.com
88d94c12d2 bug#49786 Caching frequently used progid: nsThreadJSContextStack r=waterson 
git-svn-id: svn://10.0.0.236/trunk@76865 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-22 06:02:14 +00:00
mstoltz%netscape.com
02eaec4711 Fixing 41876 r=hyatt, also 48724, 49768, and crasher in nsBasePrincipal.cpp, r=jtaylor 
git-svn-id: svn://10.0.0.236/trunk@76849 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-22 02:06:52 +00:00
shaver%mozilla.org
84ea4561c3 Fix 47354 and 39975 by providing a system-privileged scope backstop for 
JS Components, and teaching the ScriptSecurityManager to check for
XPC-wrapped native objects in the scope chain when looking for an
object's principal. r=jband/a=brendan


git-svn-id: svn://10.0.0.236/trunk@76407 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-16 04:01:02 +00:00
dougt%netscape.com
6591791df9 Changing the nsDirectoryService define. This should have been done with the rest of the nsDirectorySerivce changes. r=conrad. 
git-svn-id: svn://10.0.0.236/trunk@76309 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-14 22:38:27 +00:00
jtaylor%netscape.com
0a53eb51a1 Fixes bug #45877. r=mstoltz. 
git-svn-id: svn://10.0.0.236/trunk@76081 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-11 03:11:24 +00:00
warren%netscape.com
e5706a7236 Bug 46711. Removed nsAutoString travisty from nsStringKey. Introduced nsCStringKey. Made them both share the underlying string when possible. r=waterson 
git-svn-id: svn://10.0.0.236/trunk@75975 18797224-902f-48f8-a5cc-f745e15eee43
 2000-08-10 06:19:37 +00:00
mstoltz%netscape.com
6bfe9c11ce Fixing 40159, nasty infinite recursion on startup. r&a=beard 
git-svn-id: svn://10.0.0.236/trunk@74797 18797224-902f-48f8-a5cc-f745e15eee43
 2000-07-26 04:53:01 +00:00
mstoltz%netscape.com
0d04dfcd48 fix for 42387, r=dveditz 
git-svn-id: svn://10.0.0.236/trunk@74510 18797224-902f-48f8-a5cc-f745e15eee43
 2000-07-20 01:16:15 +00:00
mstoltz%netscape.com
9e2ab39e7d Fixing 40159 and 44822, both [nsbeta2+] regressions on signed scripts. r=sgehani 
git-svn-id: svn://10.0.0.236/trunk@74078 18797224-902f-48f8-a5cc-f745e15eee43
 2000-07-12 03:10:33 +00:00
mstoltz%netscape.com
2566397fdc DOM properties default to same origin access only. Bug 28443. r=rginda 
git-svn-id: svn://10.0.0.236/trunk@73681 18797224-902f-48f8-a5cc-f745e15eee43
 2000-07-05 19:08:20 +00:00
vidur%netscape.com
0ff74154af Checking in for mccabe, since he had to leave town. Partial fix for bug 41429. Adding a new interface that components can implement to control the capabilities needed for XPConnect access to them - default is UniversalXPConnect. r=vidur 
git-svn-id: svn://10.0.0.236/trunk@73066 18797224-902f-48f8-a5cc-f745e15eee43
 2000-06-23 14:32:38 +00:00
joki%netscape.com
948602adcc Part of fix for 38117, prevent scripts from running event handlers on windows from other domains. r:mstoltz 
git-svn-id: svn://10.0.0.236/trunk@72698 18797224-902f-48f8-a5cc-f745e15eee43
 2000-06-21 00:21:50 +00:00
mstoltz%netscape.com
3d1b833a1e Dogfood bug 42076 - allowing file:// urls to load chrome:// URLs. r=evaughan. 
git-svn-id: svn://10.0.0.236/trunk@72442 18797224-902f-48f8-a5cc-f745e15eee43
 2000-06-16 22:22:38 +00:00
mstoltz%netscape.com
02532660a5 On Mac, we should look for systemSignature.jar in Essential FIles, not the bin directory. Bug 40468, r=sgehani, a=clayton. 
git-svn-id: svn://10.0.0.236/trunk@71397 18797224-902f-48f8-a5cc-f745e15eee43
 2000-06-02 22:22:11 +00:00
mstoltz%netscape.com
8d64704489 Fix for 16858 w/o breaking directory browser. r=waterson a=beard 
git-svn-id: svn://10.0.0.236/trunk@71307 18797224-902f-48f8-a5cc-f745e15eee43
 2000-06-01 23:57:48 +00:00
mstoltz%netscape.com
21edbcf9bf Fixed bug in DOM security checks, fixes bug 37907, 23516. Added security check for htmlelement.innerhtml, fixes 39083. Added location check to BASE HREF=, fixes 35859. r=vidur. Added check to style= tag, fixes 16858, r=pierre. 
git-svn-id: svn://10.0.0.236/trunk@70965 18797224-902f-48f8-a5cc-f745e15eee43
 2000-05-26 23:28:40 +00:00
mstoltz%netscape.com
0fdc57f6f2 Allow scripting of plugins by untrusted web scripts. Bug 36375. 
git-svn-id: svn://10.0.0.236/trunk@70246 18797224-902f-48f8-a5cc-f745e15eee43
 2000-05-17 02:38:22 +00:00
mstoltz%netscape.com
a24d345d24 Fixes for 32878, 37739. Added PR_CALLBACK macros. Changed security.principal pref syntax to a nicer syntax. Removed "security.checkxpconnect" hack. 
git-svn-id: svn://10.0.0.236/trunk@69963 18797224-902f-48f8-a5cc-f745e15eee43
 2000-05-16 03:40:51 +00:00
thayes%netscape.com
f483c05bd1 Replace implementation of nsISupports with thread-safe version. This allows 
SSL/HTTPS operations to complete on debug builds with thread-safety checking.
r=bryner


git-svn-id: svn://10.0.0.236/trunk@67971 18797224-902f-48f8-a5cc-f745e15eee43
 2000-05-03 00:04:48 +00:00
mstoltz%netscape.com
1aebd93c62 Fixes for 27010, 32878, and 32948. 
git-svn-id: svn://10.0.0.236/trunk@67181 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-26 03:50:07 +00:00
jband%netscape.com
f546b3427a Do something safe if this call fails 
git-svn-id: svn://10.0.0.236/trunk@67079 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-25 04:50:49 +00:00
jefft%netscape.com
d6e0059bda fixed bug 17100 - [FEATURE] enabled partial message download for pop3 
git-svn-id: svn://10.0.0.236/trunk@67029 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-25 01:48:00 +00:00
mstoltz%netscape.com
a8b220b370 Backing out changes until I can figure out why it's crashing on startup. 
git-svn-id: svn://10.0.0.236/trunk@66937 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 21:25:39 +00:00
mstoltz%netscape.com
85e8a5b8e2 Fixes for bugs 27010, 32878, 32948. 
git-svn-id: svn://10.0.0.236/trunk@66935 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-23 20:30:29 +00:00
danm%netscape.com
fda3acfcbd dist...chrome restructuring 
git-svn-id: svn://10.0.0.236/trunk@66464 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-19 21:42:30 +00:00
norris%netscape.com
f70a94e258 Fix 
28390, 28866, 34364
r=brendan@mozilla.org
35701
r=jst@netscape.com


git-svn-id: svn://10.0.0.236/trunk@65940 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-14 03:14:53 +00:00
scc%netscape.com
28db414fa4 making string conversions explicit 
git-svn-id: svn://10.0.0.236/trunk@64827 18797224-902f-48f8-a5cc-f745e15eee43
 2000-04-01 00:39:02 +00:00
mstoltz%netscape.com
e23c3f29bf Fixed bug 30915 using nsAggregatePrincipal. r=norris 
git-svn-id: svn://10.0.0.236/trunk@64652 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-31 00:31:18 +00:00
warren%netscape.com
9fa657f1cd Necko API changes: primarily nsIChannel, changing initialization parameters to accessors. Got javascript: evaluation to happen at the right time (when AsyncRead is called) as well as on the right thread. 
git-svn-id: svn://10.0.0.236/trunk@64449 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-29 03:58:50 +00:00
norris%netscape.com
953def32a1 Fix 
32088 Circumventing Same Origin security policy using javascript: URLs
        32040 about: can't be link
Also remove deprecated method
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@64066 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-24 22:15:37 +00:00
norris%netscape.com
a563d78680 Fix bug 32904 Asserts at startup in nsScriptSecurityManager.cpp 
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@63928 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-23 23:42:46 +00:00
mstoltz%netscape.com
72e0246d22 heckLoadURI now handles jar: URL's correctly. r=norris 
git-svn-id: svn://10.0.0.236/trunk@63827 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-23 04:37:37 +00:00
norris%netscape.com
fd6ba38987 Adding nsAggregatePrincipal support. r=norris 
git-svn-id: svn://10.0.0.236/trunk@63535 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-21 04:05:35 +00:00
norris%netscape.com
fab29b0e70 Files: 
caps/idl/nsICertificatePrincipal.idl
	caps/idl/nsIPrincipal.idl
	caps/src/nsBasePrincipal.cpp
Implement the ability to manipulate multiple capabilties simultaneously.
r=mstoltz@netscape.com

Files:
	caps/src/nsCodebasePrincipal.cpp
Codebase equality should be based upon origin, not full path.
r=mstoltz@netscape.com

Files:
	caps/src/nsScriptSecurityManager.cpp
Change URI checking to deny based upon scheme rather than allow based upon
scheme for greater flexibility.
r=mstoltz@netscape.com

Files:
	dom/public/nsDOMPropEnums.h
	dom/public/nsDOMPropNames.h
	dom/src/base/nsGlobalWindow.cpp
	modules/libpref/src/init/all.js
Fix bug 20469 Seeing JS functions and global variables from arbitrary host
r=vidur@netscape.com

Files:
	dom/src/base/nsJSUtils.cpp
	dom/src/base/nsJSUtils.h
	dom/src/base/nsJSEnvironment.cpp
	dom/tools/JSStubGen.cpp
	layout/base/src/nsDocument.cpp
	layout/html/content/src/nsGenericHTMLElement.cpp
Improve performance by removing NS_WITH_SERVICE call for every DOM access.
Propagate XPCOM failure codes out properly.
r=vidur@netscape.com

Files:
	layout/html/document/src/nsFrameFrame.cpp
Fix 27387 Circumventing Same Origin security policy using setAttribute
r=vidur@netscape.com


git-svn-id: svn://10.0.0.236/trunk@62633 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-11 06:32:42 +00:00
norris%netscape.com
caf359bdc1 Fix 29419 nsScriptSecurityManager should do casinsensitive compaires 
Patch submitted by andreas.otte@primus-online.de
r=norris,a=jar


git-svn-id: svn://10.0.0.236/trunk@62381 18797224-902f-48f8-a5cc-f745e15eee43
 2000-03-08 04:57:05 +00:00
bryner%uiuc.edu
7dd679d203 This allows clicked "finger:" links to work. r=norris@netscape.com. 
git-svn-id: svn://10.0.0.236/trunk@61748 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-26 23:37:08 +00:00
norris%netscape.com
35518b3b5b Fix meta refresh problems with etrade, etc. 
r=mstoltz
a='do the right thing'


git-svn-id: svn://10.0.0.236/trunk@61605 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-24 19:17:59 +00:00
norris%netscape.com
bf96355ad4 Fix 28612 META Refresh allowed in Mail/News 
r=mstoltz,a=jar
Fix 28658 File upload vulnerability
r=vidur,a=jar


git-svn-id: svn://10.0.0.236/trunk@61523 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-23 22:34:40 +00:00
norris%netscape.com
78ff426219 Fix 18439 windows.status allows reading links 
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@60428 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-11 04:18:39 +00:00
norris%netscape.com
8d750ce9f0 For some reason the sun compiler doesn't like the ?: assignment. 
git-svn-id: svn://10.0.0.236/trunk@60290 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-10 06:24:38 +00:00
norris%netscape.com
36450a3f42 Fix 25062 Reload vulnerability 
25206 Reload vulnerability #2
Implement grant dialogs and persistence for capabilities.
most r=mstoltz, some code from morse w/ r=norris


git-svn-id: svn://10.0.0.236/trunk@60281 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-10 04:56:56 +00:00
norris%netscape.com
d5401f0901 Fix domain generalization for site-specific security policy. 
also fix bug with enablePrivilege.
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@59674 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-03 23:28:36 +00:00
norris%netscape.com
6fc5a6608b Fix bug #25864 watch() vulnerability 
r=vidur,rogerl


git-svn-id: svn://10.0.0.236/trunk@59445 18797224-902f-48f8-a5cc-f745e15eee43
 2000-02-02 00:22:58 +00:00
norris%netscape.com
2beb5e9dfd Fix warning. 
git-svn-id: svn://10.0.0.236/trunk@58942 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-27 15:59:34 +00:00
norris%netscape.com
0dd1063455 Fix 23227 Document object vulnerability 
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@58789 18797224-902f-48f8-a5cc-f745e15eee43
 2000-01-26 15:33:57 +00:00