Commit Graph

583 Commits

Author SHA1 Message Date
Deian Stefan
a022cb82af Bug 886164 - Enforce CSP in sandboxed iframe, r=grobinson 2013-11-22 15:12:00 -08:00
Michael Shuen
213cdc560a Bug 941332 - Build caps/src in unified mode. r=ehsan 2013-11-21 09:22:26 -05:00
Mike Hommey
a65383e1e9 Bug 939632 - Remove LIBRARY_NAME for leaf libraries. r=gps
Landing on a CLOSED TREE.
2013-11-19 11:50:54 +09:00
Mike Hommey
8ceb917350 Bug 939074 - Remove most LIBXUL_LIBRARY. rs=gps 2013-11-19 11:48:10 +09:00
Mike Hommey
9fe772e7fd Bug 939044 - Rename remaining MODULE definitions to XPIDL_MODULE. r=mshal 2013-11-19 11:47:43 +09:00
Mike Hommey
bb6779efe3 Bug 939044 - Remove most definitions of MODULE. r=mshal 2013-11-19 11:47:39 +09:00
Mike Hommey
d7b6f95761 Bug 935881 - Use FINAL_LIBRARY for all (fake) libraries that end up linked in a single other library. r=gps 2013-11-19 11:47:14 +09:00
Tom Schuster
f311064c6e Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz 2013-11-16 13:31:36 +01:00
Ms2ger
6b38d3ca3d Backout changesets ded0d64f6786:03f041d03f24 and 30cbd1abde1a (bug 935696, bug 933834 and bug 939194) for build bustage. 2013-11-17 16:39:25 +01:00
Tom Schuster
dd485f9336 Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz 2013-11-16 13:31:36 +01:00
Bobby Holley
d75a37769c Bug 840488 - Tests. r=bz 2013-11-12 16:43:35 -08:00
Bobby Holley
f298af1bab Bug 840488 - New domain policy API. r=bz
Note that this patch changes the semantics of javascript.enabled so that changes
to the pref do not apply to compartments that have already been created. This is
a significant change, but is necessary to support the new domain policy API.
After one cycle or so, we'll rip out the old API.
2013-11-12 16:43:35 -08:00
Bobby Holley
a80315ff5c Bug 840488 - Compute immunity from caps checks exactly once, and kill nsScriptSecurityManager::CanExecuteScripts. r=bz 2013-11-12 16:43:35 -08:00
Bobby Holley
15add0796f Bug 840488 - Remove per-JSContext script toggling. r=bz
Note that the checks in nsJSEnvironment::EvaluateString and EvalInWindow
can safely go away, because we call ssm->ScriptAllowed() in
nsJSUtils::EvaluateString.
2013-11-12 16:43:35 -08:00
Bobby Holley
70289cf621 Bug 840488 - Directly mark compartments whose docshells disable script execution. r=bz 2013-11-12 16:43:33 -08:00
Bobby Holley
2c448611f5 Bug 840488 - Introduce a mechanism to temporarily or permanently block script for a given scope, and use it for unsafe channels. r=bz 2013-11-12 16:43:33 -08:00
Bobby Holley
12a1ebfea9 Bug 840488 - Remove CheckFunctionAccess. r=bz
\o/

Aside from checking whether script is enabled, all the other work this function
does is silly.
2013-11-12 16:43:32 -08:00
Bobby Holley
48cf35f628 Bug 840488 - Get rid of aAllowIfNoScriptContext. r=bz
The old code seemed to feel that the lack of a script context was some sort of
showdown that required either unconditional allow or deny. Instead, let's just
make the scriptcontext-relevant checks conditional on there being a script
context, which lets us switch CheckFunctionAccess over to ScriptAllowed.
2013-11-12 16:43:32 -08:00
Bobby Holley
6c0f7db3c4 Bug 840488 - Refactor Gecko to provide a more direct API to ask whether script is allowed for a given global. r=bz 2013-11-12 16:43:31 -08:00
Garrett Robinson
fcd3642ac2 Bug 855326 - CSP 1.1 nonce-source for scripts and styles r=mrbkap r=dholbert r=geekboy 2013-11-08 15:44:39 -08:00
Daniel Holbert
a943af2236 backout 57213b64023b (bug 855326) for build bustage in debug builds
CLOSED TREE
2013-11-08 11:22:36 -08:00
Garrett Robinson
99a316d224 Bug 855326 - CSP 1.1 nonce-source for scripts and styles. r=mrbkap r=dholbert r=geekboy 2013-11-08 09:20:43 -08:00
Nicholas Nethercote
ba1e9bce90 Bug 925584 - Remove some unnecessary jsapi.h inclusions from .cpp files. r=Ms2ger.
--HG--
extra : rebase_source : 41fcb0e922a519ef679c1c1b6293c2b638e83a48
2013-10-10 15:22:35 -07:00
Mike Hommey
1d566f7586 Bug 929905 - Consolidate sources in moz.build. r=gps 2013-10-25 08:23:05 +09:00
Carsten "Tomcat" Book
a502a5c19a merge b2g-inbound to mozilla-central 2013-10-09 10:13:52 +02:00
Karl Tomlinson
75f5a8dca9 b=923591 don't warn when checkLoadURIStrWithPrincipal() returns NS_ERROR_DOM_BAD_URI r=bz
--HG--
extra : transplant_source : J%09t%A3Z%B4%8C%B9%99%E0O%CE3%7Ex%93vu%9BA
2013-10-09 15:32:38 +13:00
Fabrice Desré
94d42490f8 Bug 918658 - Don't pretend that mozIApplication inherits from mozIDOMApplication r=bent 2013-10-08 15:52:26 -07:00
Christoph Kerschbaumer
270e0b71c2 Bug 897516 - Implement a separate cookie jar for safebrowsing - cookie separation part. r=mmc 2013-08-19 12:31:24 -07:00
Trevor Saunders
e8f7d269ed bug 920754 - rm more makefiles r=mshal 2013-09-25 16:39:06 -04:00
Gregory Szorc
e53ac5e38d Bug 920223 - Part 1: Mass convert MOCHITEST_FILES to manifests; rs=Ms2ger 2013-09-30 09:51:57 +02:00
Ed Morley
d84dee3273 Backed out changeset 77bff106b704 (bug 920223) 2013-09-30 12:50:12 +01:00
Gregory Szorc
cabc6369a6 Bug 920223 - Part 1: Mass convert MOCHITEST_FILES to manifests; rs=Ms2ger 2013-09-30 09:51:57 +02:00
Ehsan Akhgari
58e5fbc2a4 Backed out changeset a73ffb0d0c97 because of build bustage 2013-09-29 17:20:07 -04:00
Ehsan Akhgari
d9a4b7effd Remove a number of unused variables, no bug 2013-09-29 16:42:12 -04:00
Carsten "Tomcat" Book
edb6c8fc0b Backed out changeset 0cc959e28407 (bug 897516) failed XPC Shell tests CLOSED TREE 2013-09-27 15:45:31 +02:00
Christoph Kerschbaumer
a7fb0134c3 Bug 897516 - Implement a separate cookie jar for safebrowsing - cookie separation part. r=mmc 2013-08-19 12:31:24 -07:00
Ryan VanderMeulen
8af6d7e0b2 Backout bug 886164 for B2G regressions. 2013-09-23 21:26:05 -04:00
Jon Coppeard
8c99b0611f Bug 918373 - GC: Handlify various public APIs r=sfink r=bholley r=smaug 2013-09-20 10:22:59 +01:00
Deian Stefan
ae78755bb7 Bug 886164 - Enforce CSP in sandboxed iframe. r=grobinson 2013-06-23 14:31:52 -07:00
Bobby Holley
103b4d8a51 Bug 917009 - Remove old-style object principal calculation. r=bz 2013-09-17 15:29:11 -07:00
Terrence Cole
244d5541e4 Bug 908750 - Fix a rooting hazard in nsScriptSecurityManger::LookupPolicy; r=bholley
--HG--
extra : rebase_source : 27bf6ef6bce3bed136921df15ea00ae86bd73f89
2013-08-23 08:51:40 -07:00
Cykesiopka
a8ab644dfb Bug 909107 - Replace use of (obsolete) strres.js in test_bug292789.html. r=dveditz 2013-09-12 10:47:55 -04:00
Ryan VanderMeulen
30168b484b Merge fx-team to m-c. 2013-09-11 21:48:20 -04:00
Martijn Wargers
a570d547c2 Bug 914940 - Remove some enablePrivilige calls. r=jgriffin 2013-09-11 10:51:09 +02:00
Dan Gohman
8b7074b6dc Bug 910823 - Constify static js::Class/JSClass instances. r=waldo 2013-09-11 05:49:05 -07:00
Jan Varga
c5d294a60c Bug 785884 - Implement support for temporary storage (aka shared pool). r=ehsan, r=bent
--HG--
rename : caps/tests/mochitest/test_principal_extendedorigin_appid_appstatus.html => caps/tests/mochitest/test_principal_jarprefix_origin_appid_appstatus.html
rename : dom/quota/UsageRunnable.h => dom/quota/UsageInfo.h
2013-09-11 06:18:36 +02:00
Bobby Holley
c0dad206cf Bug 905364 - Stop using the SafeJSContext in nsScriptSecurityManager::Init. r=mrbkap
With this patch, I've confirmed that we instantiate the SafeJSContext much later
in startup, during nsAppStartupNotifier::Observe (which ends up invoking an
XPCWrappedJS). As such, this should solve a number of our startup ordering woes.
2013-09-06 11:35:12 -07:00
Mike Hommey
f1cf3b4238 Bug 912293 - Remove now redundant boilerplate from Makefile.in. r=gps 2013-09-05 09:01:46 +09:00
Bobby Holley
b8f437054d Bug 899367 - Make GetNativeGlobal consumers call GetWindowProxy and rm the former. r=mccr8
Some of the uses of this are a bit nonsensical now, but that's a problem for
another day.
2013-09-04 14:06:57 -07:00
Masatoshi Kimura
e2bd26bb53 Bug 911573 - Mochitest fixup to prepare removing Components-in-content with UniversalXPConnect. r=bholley 2013-09-05 01:02:34 +09:00