Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
49,604 Commits 3,986 Branches 0 Tags
Commit Graph

68 Commits

Author SHA1 Message Date
warren%netscape.com
e9f618e116 Fix for leak/bloat stats going negative. a=jar 
git-svn-id: svn://10.0.0.236/trunk@55840 18797224-902f-48f8-a5cc-f745e15eee43
 1999-12-10 04:27:52 +00:00
norris%netscape.com
2429ef124a Fix 18553 [DOGFOOD] addEventListener allows sniffing keystrokes 
Add checks to nsScriptSecurityManager::CheckCanListenTo that take
a principal and ensure that the currently executing script code
either is from the same origin as that principal or has the
UniversalBrowserRead privilege enabled. (chrome code has all
privileges enabled by default.) It's okay for the principal passed in
to be null. That just signifies a privileged window/document that only
can be listened to with privileges.

I added GetPrincipal/SetPrincipal methods to nsIEventListenerManager.
nsDocument::GetNewListenerManager sets a principal on the listener
manager when it creates one. Obviously there are other places that
create listener managers, but scripts seem to go through this one.

Another change is to save some memory usage. Currently I allocate an
array of PolicyType that is NS_DOM_PROP_MAX elements long.
Unfortunately, compilers appear to allocate four bytes for each
PolicyType, so the array takes around 2400 bytes. I've added changes
to use two bit vectors that should consume about 1/16 that space.

r=joki

There are also changes that push nsnull onto the JSContext stack when
entering a nested event loop.

r=jband


git-svn-id: svn://10.0.0.236/trunk@54477 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-25 05:28:18 +00:00
norris%netscape.com
f77a65d9d4 Modify generated dom code to use a enum rather than a string for codesize 
and efficiency.
Tighten checks on document properties and node properties. Should resolve
several bugs:
18965 document.firstChild vulnerability
19043 document.childNodes vulnerability
19044 document.lastChild vulnerability
r=mstoltz


git-svn-id: svn://10.0.0.236/trunk@54051 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-20 07:28:34 +00:00
norris%netscape.com
331cf153db * Fix 12124 [DOGFOOD] Reading user's preferences 
* Implement site-specific security policies (bug 858)
r=mstoltz
* Use Recycle rather than delete[] to clean up Purify logs
r=law


git-svn-id: svn://10.0.0.236/trunk@53631 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-16 05:07:31 +00:00
norris%netscape.com
d83622d4ac * Fix the following bugs by tightening the default security policy. 
17977 [DOGFOOD] Reading documents using document.body
17538 document.lastModified is exposed
17537 document.images vulnerabilities
16036 [DOGFOOD] document.Element exposes the DOM of documents from
15757 [DOGFOOD] Injecting JS code using setAttribute and getElemen
15550 Injecting text in documents from any domain using createText
15067 [DOGFOOD] getElementsByTagName() allows reading of arbitrary
* Create an array of dom property policy types and initialize it when the script security manager is created.
* Move some implementation code to a new shared implementation base class.
* Implement privilege enabling, disabling and reverting
* Implement stack walking for checking privileges.
r=mstoltz@netscape.com

* Modify nsIPref to support security policy work.
r=neeti@netscape.com


git-svn-id: svn://10.0.0.236/trunk@53254 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-11 22:10:36 +00:00
dmose%mozilla.org
0efb7c174c updated xPL license boilerplate to v1.1, a=chofmann@netscape.com,r=endico@mozilla.org 
git-svn-id: svn://10.0.0.236/trunk@52910 18797224-902f-48f8-a5cc-f745e15eee43
 1999-11-06 03:43:54 +00:00
norris%netscape.com
a825f1738a work on bug 7270. 
r=mstoltz.
Implement netscape.security.PrivilegeManager callbacks.


git-svn-id: svn://10.0.0.236/trunk@52128 18797224-902f-48f8-a5cc-f745e15eee43
 1999-10-28 22:09:03 +00:00
norris%netscape.com
761b5f5706 Add ability to disable JS. Fix 13978 shopping at webvan.com crashes 
git-svn-id: svn://10.0.0.236/trunk@47995 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-17 20:13:52 +00:00
norris%netscape.com
63c0017d86 Remove nsPrincipalManager.h 
git-svn-id: svn://10.0.0.236/trunk@47658 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-15 21:30:10 +00:00
norris%netscape.com
3036cb7a8a Add security support for javascript: uris. 
git-svn-id: svn://10.0.0.236/trunk@47649 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-15 20:58:41 +00:00
norris%netscape.com
47554a1bf7 Create preferences for security checks. 
Add new methods on nsIScriptSecurityManager for capabilities.
Fix 13739 MLK: nsScriptSecurityManager::CreateCodebasePrincipal
Fix 11666 Eliminate plvector (was: [infinite loop] bugs - plvector.c)


git-svn-id: svn://10.0.0.236/trunk@47517 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-15 04:05:43 +00:00
norris%netscape.com
82330711f4 Remove unused files. 
git-svn-id: svn://10.0.0.236/trunk@47148 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-13 20:10:24 +00:00
norris%netscape.com
4e8768c593 * Add checks on urls formed from web scripts 
* Make nsScriptSecurityManager implement nsXPCSecurityManager
* Fix unix warnings


git-svn-id: svn://10.0.0.236/trunk@46152 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-07 02:54:19 +00:00
briano%netscape.com
6860ae4df4 Cleaned it up and eliminated the pointless #!gmake. 
git-svn-id: svn://10.0.0.236/trunk@45556 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-01 23:27:16 +00:00
norris%netscape.com
34b474302b Add all-powerful system principals. Remove some dead code from the build. 
git-svn-id: svn://10.0.0.236/trunk@45380 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-01 00:54:35 +00:00
cyeh%netscape.com
c6342ee432 Remove IGNORE_MANIFEST=1. It doesn't do anything and it confuses people. 
git-svn-id: svn://10.0.0.236/trunk@45379 18797224-902f-48f8-a5cc-f745e15eee43
 1999-09-01 00:54:34 +00:00
norris%netscape.com
3a6d863c13 * clean up nsScriptSecurityManager 
* remove nsJSSecurityManager
* save principals in nsIChannels and nsIDocuments


git-svn-id: svn://10.0.0.236/trunk@45080 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-29 21:58:42 +00:00
mccabe%netscape.com
0d087a7447 Spam caps subtree to replace declarations of IDL-defined interface methods in implementation classes with xpidl-generated NS_DECL_NSIFOO macro. 
git-svn-id: svn://10.0.0.236/trunk@44018 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-21 20:22:27 +00:00
arielb%netscape.com
ad40dbfcd5 includes updates to codbase matching security checks currently turned off 
but in place.  redefined the script security manager in caps and it is
now generating codebase principals.


git-svn-id: svn://10.0.0.236/trunk@43798 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-20 09:51:02 +00:00
arielb%netscape.com
f5d498bbba removed zip support from caps module. from now on all that stuff will 
be used by libjar.  should also remove a lot of memory leaks reported on
nsZip


git-svn-id: svn://10.0.0.236/trunk@42668 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-07 21:40:33 +00:00
arielb%netscape.com
788241b16c Fix to bug 11330 and some changes to reduce warnings in linux builds 
git-svn-id: svn://10.0.0.236/trunk@42661 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-07 19:59:31 +00:00
arielb%netscape.com
a12b820894 added a new and improved factory to caps module. fixed some bugs and 
cleared some warnings.  also move some methods of privilege manager to
principal manager.


git-svn-id: svn://10.0.0.236/trunk@42563 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-06 22:44:35 +00:00
sspitzer%netscape.com
50ef97bffc fix warnings 
git-svn-id: svn://10.0.0.236/trunk@42311 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-05 19:47:10 +00:00
briano%netscape.com
60feb77b7e Added a newline to the EOF to fix the Unix native compiler builds. 
git-svn-id: svn://10.0.0.236/trunk@41794 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-02 06:33:08 +00:00
arielb%netscape.com
576dedd032 add a principal manager to caps api. everything is now xpidled so 
i removed the public directory from the module.


git-svn-id: svn://10.0.0.236/trunk@41771 18797224-902f-48f8-a5cc-f745e15eee43
 1999-08-01 21:26:02 +00:00
arielb%netscape.com
5b5124ff1a xpidling and updating nsTarget object. should resolve build errors on 
SeaMonkey Ports


git-svn-id: svn://10.0.0.236/trunk@41439 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-28 05:43:26 +00:00
arielb%netscape.com
395aa47003 removed some enums and migrated them into nsPrivilege, nsIPrivilege and 
nsPrivilegemanager. cleaning up some old code from the security module
and refining their api's and such like.


git-svn-id: svn://10.0.0.236/trunk@41184 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-27 00:50:59 +00:00
briano%netscape.com
8d28890907 Some compilers also object to #endif's with any non-comment tokens after them. Fixed. 
git-svn-id: svn://10.0.0.236/trunk@41160 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-26 21:08:51 +00:00
briano%netscape.com
7629e8fd03 Added a newline to the end of the file to fix the native-compiler Unix builds (HP-UX, Solaris, etc.). 
git-svn-id: svn://10.0.0.236/trunk@41158 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-26 21:06:59 +00:00
arielb%netscape.com
e80d17d6e7 i think i may have broken linux build with a tab at the end of a line in 
the makefile, hope this was all for the bustage.


git-svn-id: svn://10.0.0.236/trunk@40964 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-24 04:18:22 +00:00
arielb%netscape.com
35dc473dd3 Fix to the caps security module. I removed the nsPrincipal struct, from now 
on you can access principals by their xpcomed interface nsIPrincipal.


git-svn-id: svn://10.0.0.236/trunk@40961 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-24 03:58:23 +00:00
arielb%netscape.com
e8083aedee idled principals interfaces and some fixes to caps manager... 
git-svn-id: svn://10.0.0.236/trunk@39741 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-16 20:31:18 +00:00
norris%netscape.com
3de9514e0d Move several security files into idl. (Create idl directory in caps module.) 
Implement methods of nsIXPCSecurityManager.
Fix random errors in DOM JS security.


git-svn-id: svn://10.0.0.236/trunk@39574 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-15 23:23:16 +00:00
norris%netscape.com
205ddb1970 Tom Pixley's code for the beginnings of DOM security, with a fix for the previous Mac link failure. 
git-svn-id: svn://10.0.0.236/trunk@38654 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-07 07:50:03 +00:00
joki%netscape.com
2bf72dbb03 Backing out js security changes. 
git-svn-id: svn://10.0.0.236/trunk@37696 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-01 13:03:35 +00:00
joki%netscape.com
c327ee36e4 New JavaScript/DOM security stuff. 
git-svn-id: svn://10.0.0.236/trunk@37688 18797224-902f-48f8-a5cc-f745e15eee43
 1999-07-01 10:38:26 +00:00
raman%netscape.com
b40d7ccdf1 Checking in changes from Bob Glickstein 
git-svn-id: svn://10.0.0.236/trunk@16420 18797224-902f-48f8-a5cc-f745e15eee43
 1998-12-15 05:53:19 +00:00
ramiro%netscape.com
e95667bce5 Remove extraneous Makefile files. 
git-svn-id: svn://10.0.0.236/trunk@15828 18797224-902f-48f8-a5cc-f745e15eee43
 1998-12-05 08:19:05 +00:00
raman%netscape.com
72c8c66977 Deleted unnecessary nsCCapsManager:: from the prototype 
git-svn-id: svn://10.0.0.236/trunk@15493 18797224-902f-48f8-a5cc-f745e15eee43
 1998-12-01 03:00:42 +00:00
raman%netscape.com
1adb26bf9e XP_COM interfaces for JS calls into CAPS 
git-svn-id: svn://10.0.0.236/trunk@15144 18797224-902f-48f8-a5cc-f745e15eee43
 1998-11-23 00:27:00 +00:00
raman%netscape.com
f100d4f1c2 Changes to make caps into a DLL. Defined all strings in this file until there is a replacement for allxpstr.h 
git-svn-id: svn://10.0.0.236/trunk@14933 18797224-902f-48f8-a5cc-f745e15eee43
 1998-11-19 05:22:28 +00:00
raman%netscape.com
c88302e2b7 Bug fixes from MozillaClassic branch, plus changes to build caps without rdf 
git-svn-id: svn://10.0.0.236/trunk@14756 18797224-902f-48f8-a5cc-f745e15eee43
 1998-11-16 21:57:13 +00:00
raman%netscape.com
c070f4d115 Bug fixes to make caps stuff work with jvm's codesource principals 
git-svn-id: svn://10.0.0.236/trunk@13589 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-28 03:31:17 +00:00
raman%netscape.com
ca600aab3f Fix to make it compile on HP-UX. Define an else clause in the if statement of an inline function. Thanks briano 
git-svn-id: svn://10.0.0.236/trunk@13095 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-19 18:25:01 +00:00
raman%netscape.com
cd0724bace Added verification certifcates that are created via nsICapsManager. This could be used by JVM plugins. 
git-svn-id: svn://10.0.0.236/trunk@12918 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-15 20:56:34 +00:00
raman%netscape.com
d98f212496 Backing out my previous check-in. I was told my changes built ok on Mac, But I wasn't given complete information. Sorry for trouble. 
git-svn-id: svn://10.0.0.236/trunk@12783 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-14 05:01:12 +00:00
raman%netscape.com
0b2ad46a78 Support for nsICertPrincipal. We do the certificate verification of certificates passed by JavaSoft 
git-svn-id: svn://10.0.0.236/trunk@12776 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-14 02:52:40 +00:00
racham%netscape.com
87d6fe404b Adding -reg_mode flag related APIs 
git-svn-id: svn://10.0.0.236/trunk@12074 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-06 21:00:36 +00:00
racham%netscape.com
51fb5cc6b6 Adding filecode base check routine 
git-svn-id: svn://10.0.0.236/trunk@12073 18797224-902f-48f8-a5cc-f745e15eee43
 1998-10-06 20:59:47 +00:00
raman%netscape.com
a630d5010e Reenabled the code that fixes the memory leaks during startup. I have compiled these changes on windows, solaris, linux. Lasttime I checked in, Mac compiled ok. 
git-svn-id: svn://10.0.0.236/trunk@11569 18797224-902f-48f8-a5cc-f745e15eee43
 1998-09-30 18:06:19 +00:00