Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
202,772 Commits 3,986 Branches 0 Tags
Commit Graph

655 Commits

Author SHA1 Message Date
jonas%sicking.cc
35f305467d Bug 416534: Clean up cross-site xmlhttprequest security checks. With fixes to tests this time. r/sr=peterv 
git-svn-id: svn://10.0.0.236/trunk@246616 18797224-902f-48f8-a5cc-f745e15eee43
 2008-02-27 03:45:32 +00:00
myk%mozilla.org
425e84676b backing out fix for bug 416534 as potential cause of mochitest failure 
git-svn-id: svn://10.0.0.236/trunk@246615 18797224-902f-48f8-a5cc-f745e15eee43
 2008-02-27 03:23:38 +00:00
jonas%sicking.cc
05e58d7ee2 Bug 416534: Clean up cross-site xmlhttprequest security checks. r/sr=peterv 
git-svn-id: svn://10.0.0.236/trunk@246608 18797224-902f-48f8-a5cc-f745e15eee43
 2008-02-27 02:17:52 +00:00
Olli.Pettay%helsinki.fi
0ab87464e4 Bug 411054, Audit IsNativeAnonymous()/GetBindingParent() uses, r+sr=sicking 
git-svn-id: svn://10.0.0.236/trunk@246523 18797224-902f-48f8-a5cc-f745e15eee43
 2008-02-26 12:40:21 +00:00
reed%reedloden.com
ef160fa4e6 Bug 417710 - "Use JS_GET_CLASS, not JS_GetClass" [p=gyuyoung.kim@samsung.com (gyu-young kim) r=jorendorff r=jst sr+a1.9=brendan] 
git-svn-id: svn://10.0.0.236/trunk@246437 18797224-902f-48f8-a5cc-f745e15eee43
 2008-02-25 08:59:21 +00:00
jonas%sicking.cc
af43f83785 Bug 397878: Send Referer-Root header when doing cross-site access requests. Also update domain pattern matching to spec. Patch by <suryaismail@gmail.com>. r=bent sr=sicking b3a=beltzner 
git-svn-id: svn://10.0.0.236/trunk@244581 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-31 08:17:47 +00:00
jst%mozilla.org
e47838f094 Fixing bustage. 
git-svn-id: svn://10.0.0.236/trunk@244383 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-29 21:11:24 +00:00
jst%mozilla.org
f9cb3c8650 Fixing bug 413767. Make caps use faster JS class/parent/private/proto accessors. r=mrbkap@gmail.com, sr=brendan@mozilla.org 
git-svn-id: svn://10.0.0.236/trunk@244380 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-29 20:51:01 +00:00
jst%mozilla.org
361854951e Fixing bug 317240. Re-enabling caps optimization now that a documents principal never changes. r+sr=bzbarsky@mit.edu 
git-svn-id: svn://10.0.0.236/trunk@244217 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-28 17:51:38 +00:00
jst%mozilla.org
823e3bcbeb Fixing bug 412691. Remove unnecessary nsCOMPtr's from performance critical code paths. r+sr=jonas@sicking.cc 
git-svn-id: svn://10.0.0.236/trunk@243327 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-17 00:32:26 +00:00
benjamin%smedbergs.us
0a44d0e3e2 Bug 411327 - nsIXPCNativeCallContext should not inherit from nsISupports, r=mrbkap, a=schrep 
git-svn-id: svn://10.0.0.236/trunk@243117 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-15 15:51:02 +00:00
dwitte%stanford.edu
7c29041265 thoroughly whack mallocfest in nsID/nsJSID and friends. b=410250, r+sr=jst, a=blocking1.9+ 
git-svn-id: svn://10.0.0.236/trunk@242941 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-12 04:30:44 +00:00
dwitte%stanford.edu
546ce140b5 partial backout in an attempt to fix orange. 
git-svn-id: svn://10.0.0.236/trunk@242891 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-11 10:09:00 +00:00
dwitte%stanford.edu
4c74c22a8d relanding bug 410250. 
git-svn-id: svn://10.0.0.236/trunk@242890 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-11 09:13:06 +00:00
dwitte%stanford.edu
1ae0ca29c9 backing out to fix orange. 
git-svn-id: svn://10.0.0.236/trunk@242883 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-11 04:59:46 +00:00
dwitte%stanford.edu
9b6279f3f7 thoroughly whack mallocfest in nsID/nsJSID and friends. b=410250, r+sr=jst, a=blocking1.9+ 
git-svn-id: svn://10.0.0.236/trunk@242879 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-11 03:56:02 +00:00
timeless%mozdev.org
6115b7206e Bug 334306 useless null check in nsDestroyJSPrincipals 
r=dbaron sr=dveditz a=mtschrep


git-svn-id: svn://10.0.0.236/trunk@242506 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-06 14:53:24 +00:00
mrbkap%gmail.com
3d6fa4c653 Always throw an exception, even if we cannot reach a principal. bug 409514, r+sr+a=jst 
git-svn-id: svn://10.0.0.236/trunk@242389 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-05 01:32:23 +00:00
jst%mozilla.org
6bcb42d7c6 Fixing bug 410851. Expose a faster way of getting the subject principal, and use that from performance critical code. r+sr=mrbkap@gmail.com 
git-svn-id: svn://10.0.0.236/trunk@242383 18797224-902f-48f8-a5cc-f745e15eee43
 2008-01-04 23:59:12 +00:00
mrbkap%gmail.com
2b0771659f XPCNativeWrappers can confuse the short-circuiting code. bug 409291, r+sr=jst a=beltzner 
git-svn-id: svn://10.0.0.236/trunk@241958 18797224-902f-48f8-a5cc-f745e15eee43
 2007-12-21 19:06:29 +00:00
jst%mozilla.org
1fe4314b66 Fixing bug 408009. Make doGetObjectPrincipal() faster. r+sr=bzbarsky@mit.edu, r+a=brendan@mozilla.org 
git-svn-id: svn://10.0.0.236/trunk@240954 18797224-902f-48f8-a5cc-f745e15eee43
 2007-12-12 23:02:26 +00:00
philringnalda%gmail.com
bfb970766c Bug 400247 - remove XP_MAC deadcode in nsScriptSecurityManager.cpp, r+sr=bz, a=dsicore 
git-svn-id: svn://10.0.0.236/trunk@239257 18797224-902f-48f8-a5cc-f745e15eee43
 2007-11-13 03:23:17 +00:00
tglek%mozilla.com
2be4668616 Bug 398574:Prbool fixes r=bz a=release drivers 
git-svn-id: svn://10.0.0.236/trunk@239227 18797224-902f-48f8-a5cc-f745e15eee43
 2007-11-12 21:47:11 +00:00
jonas%sicking.cc
5233d883cd bug 394390: Don't report bogus warnings to the error console when using cross-site xmlhttprequest. Patch by Surya Ismail <suryaismail@gmail.com>, r/sr=sicking 
git-svn-id: svn://10.0.0.236/trunk@238237 18797224-902f-48f8-a5cc-f745e15eee43
 2007-10-27 01:46:11 +00:00
bzbarsky%mit.edu
19f3323d77 Make the "href" property of stylesheets reflect the original URI that was 
reflected to load the sheet.  Bug 397427, r=dbaron,biesi, sr=dbaron, a=dsicore


git-svn-id: svn://10.0.0.236/trunk@238046 18797224-902f-48f8-a5cc-f745e15eee43
 2007-10-23 21:56:43 +00:00
bzbarsky%mit.edu
643799fa05 Somewhat reduce the amount of memory an nsPrincipal allocates in the common 
case.  Bug 397733, r+sr+a=jst


git-svn-id: svn://10.0.0.236/trunk@236840 18797224-902f-48f8-a5cc-f745e15eee43
 2007-09-28 14:31:04 +00:00
bzbarsky%mit.edu
884df8f821 Make the nsISerializable implementation of nsPrincipal actually work. This 
makes it possible to save principal objects to a stream and read them back.
Bug 369566, r=dveditz+brendan, sr=jst, a=jst


git-svn-id: svn://10.0.0.236/trunk@236161 18797224-902f-48f8-a5cc-f745e15eee43
 2007-09-17 22:18:28 +00:00
dveditz%cruzio.com
8f410f02d5 bugs 230606 and 209234: add options to restrict file: URI same-origin policies, r+sr=jst, blocking+=pavlov 
git-svn-id: svn://10.0.0.236/trunk@234031 18797224-902f-48f8-a5cc-f745e15eee43
 2007-09-06 07:02:57 +00:00
bent.mozilla%gmail.com
6a4869b9c8 Bug 304048 - Backing out patch due to TXUL regression. 
git-svn-id: svn://10.0.0.236/trunk@233459 18797224-902f-48f8-a5cc-f745e15eee43
 2007-08-31 00:52:59 +00:00
bent.mozilla%gmail.com
5529b20c97 Bug 304048 - "xpconnect getters/setters don't have principals until after they pass or fail their security check." Patch by jst, sr=bzbarsky, a=jst. 
git-svn-id: svn://10.0.0.236/trunk@233262 18797224-902f-48f8-a5cc-f745e15eee43
 2007-08-29 00:16:21 +00:00
bzbarsky%mit.edu
ab2f39a376 Add some sanity null-checks. Bug 387446, r=dveditz, sr+a=jst 
git-svn-id: svn://10.0.0.236/trunk@231572 18797224-902f-48f8-a5cc-f745e15eee43
 2007-08-07 02:09:16 +00:00
sdwilsh%shawnwilsher.com
075b7713cb Bustage fix 
git-svn-id: svn://10.0.0.236/trunk@229748 18797224-902f-48f8-a5cc-f745e15eee43
 2007-07-11 21:20:11 +00:00
jwalden%mit.edu
dda6ff3c99 Bug 348748 - Replace all instances of NS_STATIC_CAST and friends with C++ casts (and simultaneously bitrot nearly every patch in existence). r=bsmedberg on the script that did this. Tune in next time for Macro Wars: Episode II: Attack on the LL_* Macros. 
git-svn-id: svn://10.0.0.236/trunk@229504 18797224-902f-48f8-a5cc-f745e15eee43
 2007-07-08 07:08:56 +00:00
bzbarsky%mit.edu
e369c02a93 Make security manager API more useful from script. Make more things 
scriptable, and add a scriptable method for testing whether a given principal
is the system principal.  Bug 383783, r=dveditz, sr=jst


git-svn-id: svn://10.0.0.236/trunk@228234 18797224-902f-48f8-a5cc-f745e15eee43
 2007-06-18 15:12:09 +00:00
bzbarsky%mit.edu
ce268ae2a9 Optimize immutability of codebase/domain a little bit. Bug 380475, r=dveditz, sr=biesi 
git-svn-id: svn://10.0.0.236/trunk@228233 18797224-902f-48f8-a5cc-f745e15eee43
 2007-06-18 15:07:02 +00:00
bzbarsky%mit.edu
393b09b776 Make nsPrincipal::Equals compare codebases, not just certs, for certificate 
principals.  Bug 369201, r=dveditz, sr=jst


git-svn-id: svn://10.0.0.236/trunk@228232 18797224-902f-48f8-a5cc-f745e15eee43
 2007-06-18 15:01:53 +00:00
benjamin%smedbergs.us
7262cdad6d Bug 376636 - Building with gcc 4.3 and -pendatic fails due to extra semicolons, patch by Art Haas <ahaas@airmail.net>, rs=me 
git-svn-id: svn://10.0.0.236/trunk@224885 18797224-902f-48f8-a5cc-f745e15eee43
 2007-04-23 14:22:04 +00:00
dbaron%dbaron.org
8043a5c9c7 Remove GetKeyPointer method from nsTHashtable key types. b=374906 r=bsmedberg 
git-svn-id: svn://10.0.0.236/trunk@222464 18797224-902f-48f8-a5cc-f745e15eee43
 2007-03-27 15:35:02 +00:00
dbaron%dbaron.org
30f83072c5 Remove unused getKey callback from PLDHashTableOps/JSDHashTableOps. b=374906 r=bsmedberg 
git-svn-id: svn://10.0.0.236/trunk@222462 18797224-902f-48f8-a5cc-f745e15eee43
 2007-03-27 15:33:45 +00:00
bzbarsky%mit.edu
f5956a5fd5 When getting codebase principals, install the passed-in codebase on them even 
if they come from the hashtable.  Bug 269270, r=dveditz, sr=jst.


git-svn-id: svn://10.0.0.236/trunk@219846 18797224-902f-48f8-a5cc-f745e15eee43
 2007-02-09 04:52:44 +00:00
bzbarsky%mit.edu
05a7c81642 Get the source scheme from the right URI object. Bug 368160, r+sr=dveditz 
git-svn-id: svn://10.0.0.236/trunk@218954 18797224-902f-48f8-a5cc-f745e15eee43
 2007-01-26 04:33:02 +00:00
bzbarsky%mit.edu
43d470b66b Make the redirect check get principals the same way we get them elsewhere. 
Clean up some code to use the new security manager method.  Bug 354693,
r=dveditz, sr=sicking


git-svn-id: svn://10.0.0.236/trunk@215685 18797224-902f-48f8-a5cc-f745e15eee43
 2006-11-22 18:27:54 +00:00
gavin%gavinsharp.com
e09148e054 Bug 202198: fix possible leak in nsScriptSecurityManager::InitPrefs(), patch by Ryan Jones <sciguyryan+bugzilla@gmail.com>, r+sr=dveditz 
git-svn-id: svn://10.0.0.236/trunk@215668 18797224-902f-48f8-a5cc-f745e15eee43
 2006-11-22 17:22:40 +00:00
sayrer%gmail.com
87a1867328 Bug 360840. allocator mismatch in nsIScriptSecurityManager. r=timeless, sr=bz 
git-svn-id: svn://10.0.0.236/trunk@215363 18797224-902f-48f8-a5cc-f745e15eee43
 2006-11-16 18:25:52 +00:00
bzbarsky%mit.edu
d9cf9faf6c Remove securityCompareURIs() from nsIScriptSecurityManager. Bug 327243, r+sr=jst 
git-svn-id: svn://10.0.0.236/trunk@215290 18797224-902f-48f8-a5cc-f745e15eee43
 2006-11-14 22:46:45 +00:00
bzbarsky%mit.edu
3f520eaa49 Make it possible for protocol handlers to configure how CheckLoadURI should 
treat them via their protocol flags.  Remove the protocol list we used before.
Bug 120373, r=dveditz, sr=darin


git-svn-id: svn://10.0.0.236/trunk@215130 18797224-902f-48f8-a5cc-f745e15eee43
 2006-11-10 23:49:08 +00:00
cbiesinger%web.de
a09ce7942d Bug 351876 Move nsICryptoHash into necko 
r=darin


git-svn-id: svn://10.0.0.236/trunk@211837 18797224-902f-48f8-a5cc-f745e15eee43
 2006-09-15 22:06:31 +00:00
bzbarsky%mit.edu
bf296918cd Introduce CheckLoadURIStrWithPrincipal(). Bug 348559, r=dveditz, sr=jst 
git-svn-id: svn://10.0.0.236/trunk@208054 18797224-902f-48f8-a5cc-f745e15eee43
 2006-08-21 22:15:20 +00:00
pkasting%google.com
fe4d307f5c Bug 337223: Don't expose moz-anno protocol to web pages. 
Patch by brettw
r=jst
sr=bzbarsky


git-svn-id: svn://10.0.0.236/trunk@207869 18797224-902f-48f8-a5cc-f745e15eee43
 2006-08-18 21:35:16 +00:00
bzbarsky%mit.edu
0583386559 Remove special-casing of about:blank for security purposes; give about:blank 
pages the principal of whoever is responsible for loading them, when possible.
Bug 332182, r=mrbkap, sr=jst


git-svn-id: svn://10.0.0.236/trunk@207471 18797224-902f-48f8-a5cc-f745e15eee43
 2006-08-15 17:31:16 +00:00