gecko

wine/gecko

mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00

Author	SHA1	Message	Date
David Zbarsky	aca9dc4bae	Bug 392526. Some callers of nsID::ToString use a mismatched allocator to free the string. r=bsmedberg	2009-07-29 13:54:44 -04:00
Boris Zbarsky	b63722a57d	Backed out changeset b55e7e3c0bfb to see whether bug 495176 might be causing the WinXP Txul regression --HG-- extra : rebase_source : c854c6a8afad67c583ff08e23bbac27cbf99c0cd	2009-07-28 14:34:01 -04:00
Boris Zbarsky	0dc99e9f40	Backed out changeset 9d5e247b5052 to see whether bug 495176 might be causing the WinXP Txul regression. --HG-- extra : rebase_source : 41a0fe73ec43dff97ada391db29dc121fb677403	2009-07-28 14:32:45 -04:00
Boris Zbarsky	a920f6147b	Fixing crashes during tests by null-checking the principal URI as appropriate. Bug 495176	2009-07-26 23:21:01 -04:00
Boris Zbarsky	13672ba2e1	Bug 495176. Improve security error reporting when document.domain is involved. r=jst,pike sr=jst	2009-07-26 21:27:33 -04:00
Peter Van der Beken	ca8ccf47e0	Fix for bug 482788 (Lightweight DOM wrappers). r=jst, sr=mrbkap.	2009-05-12 22:20:42 +02:00
Blake Kaplan	0e65edf009	Bug 441714 - Protect caps against SJOWs. r+sr=dveditz	2009-06-12 14:38:05 -07:00
Boris Zbarsky	74f23ff279	Bug 493495 followup. Just cut off the recursion if it gets too deep. r+sr=mrbkap	2009-05-21 15:46:05 -04:00
Boris Zbarsky	9159839164	Bug 493495. Protect against recursive attempts to report a security exception in cases when the URI objects involved can't be accessed due to being implemented as a JS component. r+sr=mrbkap	2009-05-20 21:49:42 -04:00
Boris Zbarsky	f45f0ba98e	Bug 410486. Fix test failures due to the exception message getting truncated.	2009-05-20 00:57:37 -04:00
timeless@mozdev.org	eb1e7164ee	Bug 410486. Make sure to be in a request when reporting a pending exception. r=dveditz, sr=mrbkap.	2009-05-19 22:11:01 -04:00
Blake Kaplan	4f88c00c6c	Bug 493074 - Compute fewer things to try to clear up a performance regression. r+sr=jst	2009-05-14 15:17:56 -07:00
Blake Kaplan	3bab9bf56c	Bug 483672 - Give regular JS objects that have been reflected into C++ a security policy that follows the same-origin model. Also teach caps about "same origin" for these cases. r=jst sr=bzbarsky	2009-05-13 15:01:01 -07:00
Blake Kaplan	54734b9d0b	Bug 475864 - Move native anonymous content checks into a wrapper so that quickstubs don't sidestep them. r=jst sr=bzbarsky	2009-04-23 00:21:22 -07:00
Mook	9ad88404f5	Bug 472032 - [win64] sizeof(long) != sizeof(void*) assertion in nsScriptSecurityManager.cpp; changed SecurityLevel to use PRWord, clarified assertion on the protected code; r+sr=dveditz	2009-02-26 18:31:17 +01:00
Dan Mosedale	56f33790dd	Remove MailNews special casing from nsScriptSecurityManager (bug 374577), r+sr=bzbarsky	2009-02-17 20:32:57 -08:00
timeless@mozdev.org	caf7b1d646	Bug 412743 nsScriptSecurityManager::Init shouldn't treat failure of InitPrefs as fatal r=mrbkap sr=dveditz	2009-01-07 20:42:15 -08:00
timeless@mozdev.org	9d1932e7d2	Bug 470804 crash [@ NS_GetInnermostURI - nsScriptSecurityManager::CheckLoadURIWithPrincipal], r=bz, sr=dveditz	2009-01-01 15:45:23 -08:00
Boris Zbarsky	e801383a04	Bug 460425. Do better security checks during redirection. r=sicking,biesi, sr=sicking	2008-11-25 20:50:04 -05:00
Blake Kaplan	5adf556d30	Bug 396851 - Check to see if we're UniversalXPConnect-enabled to allow privileged web pages to unwrap XOWs. r+sr=bzbarsky	2008-10-22 13:15:22 -07:00
Ben Newman	17eeddcb85	Bug 460124. Remove no-longer-needed code, since now we calculate hash values for nsPrincipals in a sane way. r+sr=bzbarsky	2008-10-16 10:56:51 -04:00
Igor Bukanov	59702db0da	Bug 459656 - Implementing nsIThreadJSContextStack in nsXPConnect. r+sr=mrbkap	2008-10-14 16:16:25 +02:00
Arpad Borsos	8b11d938d2	Bug 456388 - Remove PR_STATIC_CALLBACK and PR_CALLBACK(_DECL) from the tree; r+sr=brendan	2008-10-10 17:04:34 +02:00
Blake Kaplan	64c490b3ef	Bug 457299 - nsScriptSecurityManager doesn't suspend the request on the current context when it starts using the safe context. r+sr=bzbarsky	2008-10-08 15:05:25 -07:00
Ben Newman	fdede899e6	Bug 454850. Make sure that whenever nsPrincipal::Equals would return true for a pair of principals their nsPrincipal::GetHashValue returns are also equal. r+sr=bzbarsky	2008-10-08 09:16:27 -04:00
David Bienvenu	aff330072d	bug 453943, always disable js for mailnews for 3.0 b1, don't load pref, r=bz, sr=dmose	2008-09-21 15:21:07 -07:00
David Bienvenu	4df8ee2c63	temporarily disable js in mailnews for 3.0 b1, r=bz, sr=dmose 453943	2008-09-20 08:14:14 -07:00
Arpad Borsos	9b6f558fee	Bug 398946 - Remove JS_STATIC_DLL_CALLBACK and JS_DLL_CALLBACK from the tree; r=(benjamin + bent.mozilla)	2008-09-07 00:21:43 +02:00
Ben Turner	cb1f4f55af	Bug 451731 - "Update caps, dom, xpconnect for Bug 451729 (checkObjectAccess moving to the JSContext)". r+sr=jst.	2008-09-05 16:26:04 -07:00
Ben Turner	b83ece5423	Bug 453720 - "Caps should assert when scripts do not contain principals". r+sr=mrbkap.	2008-09-04 15:52:20 -07:00
Jason Orendorff	b94820fbeb	Bug 451571 - Delete SetExceptionWasThrown (r=dbradley, sr=jst)	2008-08-30 18:58:36 -05:00
Honza Bambas	ec80dcba93	Bug 442812: Implement the application cache selection algorithm. r+sr=bz	2008-08-27 18:15:32 -07:00
Dave Camp	71de9a78fb	Backed out changeset 1e3d4775197a (bug 442812)	2008-08-19 22:52:05 -07:00
Honza Bambas	6b04323552	Bug 442812: Implement the application cache selection algorithm. r+sr=bz	2008-08-19 19:31:08 -07:00
Boris Zbarsky	9ec967babe	Bug 434522 follow-up bustage fix.	2008-07-28 23:37:58 -07:00
Boris Zbarsky	82e19a7db4	Bug 437723. Make sure to look at the nested innermost URI when looking for the origin. r+sr=sicking	2008-07-28 23:10:05 -07:00
Boris Zbarsky	563efe0fc5	Bug 434522. Make the "Permission denied to access Class.property" mesage more useful. r+sr=jst	2008-07-28 23:03:19 -07:00
jonas@sicking.cc	2558cdb12f	Followup patch to bug 425201. Make sure to throw if xhr.open is called with an illegal uri. Also restore the nsIScriptSecurityManager.CheckConnect API as soap still uses it	2008-04-18 10:35:55 -07:00
dveditz@cruzio.com	8689328ff5	bug 292789 prevent use of chrome: URIs from <script>, <img> stylesheets, etc except for chrome packages explicitly marked contentaccessible. r=bzbarsky, sr=jst, a=beltzner	2008-04-12 14:26:19 -07:00
jonas@sicking.cc	9b874a6992	Allow XMLHttpRequest and document.load load files from subdirectories. r/sr=dveditz	2008-04-08 17:38:12 -07:00
igor@mir2.org	c0d5c51190	[bug 423874] backing out as a simpler patch would do the job with less code.	2008-03-29 03:34:29 -07:00
igor@mir2.org	7598733582	[bug 424376] backing out - too much compatibility problems.	2008-03-28 15:27:36 -07:00
bzbarsky@mit.edu	2db2275e45	Fix bug 421228. r+sr=sicking	2008-03-27 20:46:15 -07:00
igor@mir2.org	51dcc8a464	bug=424376 r=brendan a1.9b5=beltzner Compile-time function objects are no longer exposed through SpiderMonkey API.	2008-03-23 03:16:40 -07:00
igor@mir2.org	eaa513c2f5	bug=423874 r=brendan a1.9b5=dsicore Allocating native functions together with JSObject	2008-03-21 01:19:23 -07:00
jst@mozilla.org	8b8c02a394	Fixing orange from bug 402983. Make file:///foo and file:////foo#bar compare as equal URLs. r+sr=bzbarsky@mit.edu	2008-03-20 23:01:55 -07:00
jst@mozilla.org	89acfcbf1a	Landing fix for bug 402983. Make security checks on file:// URIs symmetric. Patch by dveditz@cruzio.com, r=jonas@sicking.cc,bzbarsky@mit.edu. jst@mozilla.org	2008-03-20 21:39:08 -07:00
shaver@mozilla.org	dfe9ba8c69	Bug 246699: report better errors (with stacks) for security denials. r+sr=jst, a=mconnor.	2008-03-20 01:19:15 -07:00
jonas@sicking.cc	21fb00611b	Bug 413161: Make nsIPrincipal::Origin ignore changes to document.domain. r/sr=dveditz	2008-03-18 17:27:56 -07:00
bzbarsky@mit.edu	5383803699	Finally kill off CheckSameOriginPrincipal, fix remaining callers to do the checks they really want to be doing. Fix screw-up in nsPrincipal::Equals if one principal has a cert and the other does not. Bug 418996, r=mrbkap,dveditz, sr=jst	2008-03-18 14:14:49 -07:00

1 2

82 Commits