Commit Graph

161 Commits

Author SHA1 Message Date
Ms2ger
2e33242a04 Bug 1012320 - Move the code that defines window.netscape into nsGlobalWindow and simplify it; r=bholley 2014-05-30 09:36:52 +02:00
Julien Levesy
d0eca42a80 Bug 1006692 - Replaced nsScriptSecurityManager::SubjectIsPrivileged and AccessCheck::IsCallerChrome by nsContentUtils::IsCallerChrome. r=bholley 2014-05-19 13:39:00 +02:00
Nathan Froyd
380d6fe3d9 Bug 1012748 - part 3 - remove nsIXPCSecurityManager; r=bholley 2014-05-19 12:59:30 -04:00
Bobby Holley
3df7aa0849 Bug 995943 - Allow access to file:// URIs from pref-whitelisted sites. r=bz 2014-05-09 09:59:22 -07:00
Carsten "Tomcat" Book
3cc2daffd2 Backed out changeset 96dbf1ff169c (bug 995943) 2014-05-09 09:13:49 +02:00
Bobby Holley
bde8b71261 Bug 995943 - Allow access to file:// URIs from pref-whitelisted sites. r=bz 2014-05-08 22:19:11 -07:00
Bobby Holley
648f667734 Bug 1001198 - Explicitly fire up the SSM from nsXPConnect. r=gabor 2014-05-06 23:17:43 -07:00
Bobby Holley
be684ee7b4 Bug 997987 - Remove nsIScriptSecurityManager::GetSubjectPrincipal. r=Ms2ger 2014-05-06 15:43:03 -07:00
Arpad Borsos
e19fb46166 Bug 474369 - remove nsVoidArray includes; r=ehsan
--HG--
extra : rebase_source : dd3abeb623fd8b784fd6ba639c88def84a4daf58
2014-04-26 16:12:45 +02:00
Andrew McCreight
3c2c09c71b Bug 998779 - Remove unused #includes of nsHashtable.h. r=froydnj 2014-04-21 09:41:58 -07:00
Bob Owen
759e2cffe1 Bug 986439 - Don't use nsNullPrincipalURI for referrer. r=bz 2014-03-29 19:10:27 +00:00
Ehsan Akhgari
5b9f45a1a5 Bug 798158 - Part 1: Use a pointer-sized type to store refcounts internally; r=bsmedberg 2014-03-27 16:38:33 -04:00
Bobby Holley
cdcd6fceee Bug 956382 - Remove implementations of *IgnoringDomain variants. r=mrbkap 2014-02-13 18:57:36 -08:00
Bobby Holley
5d2a9f9315 Bug 956382 - Remove unused CAPS gunk. r=mrbkap 2014-02-13 18:57:36 -08:00
Bobby Holley
5843049c40 Bug 956382 - Hoist nsScriptSecurityManager::CheckSameOriginPrincipal into nsPrincipal::EqualsConsideringDomain. r=mrbkap 2014-02-13 18:57:36 -08:00
Bobby Holley
6771e71f15 Bug 956382 - Introduce an explicit API to do principal checks with document.domain. r=mrbkap 2014-02-13 18:57:34 -08:00
Bobby Holley
844ed9971d Bug 957688 - Remove checkObjectAccess security callback. r=mrbkap
There's no need for the JS shell stuff either, since vm/Runtime.cpp already
sets up NullSecurityCallbacks by default.
2014-01-24 16:08:25 -08:00
Bobby Holley
8dd5c7b67e Bug 794943 - Remove CheckXPCPermissions. r=mrbkap 2014-01-16 15:45:40 -08:00
Bobby Holley
4eeb054e6e Bug 794943 - Remove checks for nsISecurityCheckedComponent in caps. r=mrbkap 2014-01-16 15:45:40 -08:00
Luke Wagner
7db5895601 Bug 924905 - Do a subsumes check inside the stack iterator. r=jandem
--HG--
extra : rebase_source : ff8407c4f79fd3e2264470379470c526a751e45f
2014-01-03 10:32:56 -06:00
Bobby Holley
913b0c0c51 Bug 913734 - Remove namespace mozilla::hotness. r=mrbkap 2013-12-13 19:15:44 -08:00
Bobby Holley
991513f6f4 Bug 913734 - Remove now-unused policy machinery. r=mrbkap 2013-12-13 19:15:43 -08:00
Bobby Holley
6dba8699cf Bug 913734 - Stop storing security policies on XPCWrappedNativeProtos. r=mrbkap
This is just a cache, so we can safely remove it without impacting correctness.
The rest of this mechanism goes away in subsequent patches.
2013-12-13 19:15:43 -08:00
Deian Stefan
a022cb82af Bug 886164 - Enforce CSP in sandboxed iframe, r=grobinson 2013-11-22 15:12:00 -08:00
Mike Hommey
bb6779efe3 Bug 939044 - Remove most definitions of MODULE. r=mshal 2013-11-19 11:47:39 +09:00
Bobby Holley
f298af1bab Bug 840488 - New domain policy API. r=bz
Note that this patch changes the semantics of javascript.enabled so that changes
to the pref do not apply to compartments that have already been created. This is
a significant change, but is necessary to support the new domain policy API.
After one cycle or so, we'll rip out the old API.
2013-11-12 16:43:35 -08:00
Bobby Holley
a80315ff5c Bug 840488 - Compute immunity from caps checks exactly once, and kill nsScriptSecurityManager::CanExecuteScripts. r=bz 2013-11-12 16:43:35 -08:00
Bobby Holley
48cf35f628 Bug 840488 - Get rid of aAllowIfNoScriptContext. r=bz
The old code seemed to feel that the lack of a script context was some sort of
showdown that required either unconditional allow or deny. Instead, let's just
make the scriptcontext-relevant checks conditional on there being a script
context, which lets us switch CheckFunctionAccess over to ScriptAllowed.
2013-11-12 16:43:32 -08:00
Ryan VanderMeulen
8af6d7e0b2 Backout bug 886164 for B2G regressions. 2013-09-23 21:26:05 -04:00
Deian Stefan
ae78755bb7 Bug 886164 - Enforce CSP in sandboxed iframe. r=grobinson 2013-06-23 14:31:52 -07:00
Bobby Holley
103b4d8a51 Bug 917009 - Remove old-style object principal calculation. r=bz 2013-09-17 15:29:11 -07:00
Terrence Cole
244d5541e4 Bug 908750 - Fix a rooting hazard in nsScriptSecurityManger::LookupPolicy; r=bholley
--HG--
extra : rebase_source : 27bf6ef6bce3bed136921df15ea00ae86bd73f89
2013-08-23 08:51:40 -07:00
Jan Varga
c5d294a60c Bug 785884 - Implement support for temporary storage (aka shared pool). r=ehsan, r=bent
--HG--
rename : caps/tests/mochitest/test_principal_extendedorigin_appid_appstatus.html => caps/tests/mochitest/test_principal_jarprefix_origin_appid_appstatus.html
rename : dom/quota/UsageRunnable.h => dom/quota/UsageInfo.h
2013-09-11 06:18:36 +02:00
Bobby Holley
c0dad206cf Bug 905364 - Stop using the SafeJSContext in nsScriptSecurityManager::Init. r=mrbkap
With this patch, I've confirmed that we instantiate the SafeJSContext much later
in startup, during nsAppStartupNotifier::Observe (which ends up invoking an
XPCWrappedJS). As such, this should solve a number of our startup ordering woes.
2013-09-06 11:35:12 -07:00
Nicholas Nethercote
191ed08f6a Bug 911020 - Introduce js/TypeDecls.h, which holds very commonly used type declarations from the JS engine. r=luke.
--HG--
extra : rebase_source : 008ef689989f93b46627b8be8608bdbc544ca3a2
2013-08-27 19:59:14 -07:00
Nicholas Nethercote
42ccf38dcd Bug 905017 (part 1) - Minimize inclusions of JS engine headers in .h and .idl files. r=billm.
--HG--
extra : rebase_source : 984c61ab12f46be0509b1ce0d458d9a6e5841c64
2013-08-17 15:50:18 -07:00
Phil Ringnalda
5ce9f052f8 Back out c39d60483813 (bug 905364) for xpcshell and b2g desktop bustage 2013-08-16 22:38:48 -07:00
Bobby Holley
1079a53da6 Bug 905364 - Stop using the SafeJSContext in nsScriptSecurityManager::Init. r=mrbkap
With this patch, I've confirmed that we instantiate the SafeJSContext much later
in startup, during nsAppStartupNotifier::Observe (which ends up invoking an
XPCWrappedJS). As such, this should solve a number of our startup ordering woes.
2013-08-16 20:28:17 -07:00
Nicholas Nethercote
b756f6b258 Bug 898914 (part 1) - Remove JSBool.
--HG--
extra : rebase_source : 2d202e0e5005a7f54724b1540481c15cde3ad52e
2013-08-08 15:53:04 -07:00
Ehsan Akhgari
9854ac6166 Bug 872127 - Part 2: Replace mozilla/StandardInteger.h with stdint.h; r=Waldo,ted 2013-07-30 10:25:31 -04:00
Bobby Holley
ec749004c7 Bug 885668 - Removed specialized function object principal machinery from CAPS. r=bz 2013-07-15 11:22:10 -07:00
Jon Coppeard
4b40ce1453 Bug 885310 - 1 Rename JSHandleFoo in the browser r=bz 2013-06-21 14:12:46 +01:00
Bobby Holley
b77f296cee Bug 884362 - Use AutoJSContext in nsScriptSecurityManager::LoadPolicy. r=bz
This cx is just used for rooting etc. As such, we really just want whatever
cx is on the stack, but want a default if the stack-top cx is null (which it
sometimes is, here). And that's exactly what AutoJSContext gives us.
2013-06-20 11:05:32 -07:00
Jon Coppeard
c56ed4c7b6 Bug 884371 - Remove JSMutableHandleXXX from the browser r=bz 2013-06-19 11:32:27 +01:00
Trevor Saunders
a7e16e1efd bug 873622 - remove nsScriptSecurityManager::sXPConnect r=bholley 2013-05-29 19:49:11 -04:00
Boris Zbarsky
8fdfd3f823 Bug 873735 part 1. Fix the more or less mechanical browser rooting hazards. r=terrence 2013-05-20 08:40:06 -04:00
Gregory Szorc
14c4938355 Bug 873629 - Remove 129 empty Makefile.in files; r=ted 2013-05-17 16:20:11 -07:00
Ehsan Akhgari
73326f8404 Bug 871262 - Fix rooting hazards in the CAPS code; r=till 2013-05-12 15:52:21 -04:00
David Zbarsky
153dded199 Bug 867459 - Fix caps rooting hazards r=terrence 2013-05-02 22:02:40 -04:00
Bobby Holley
b386cf6bab Bug 865729 - Use sXPConnect directly in caps. r=gabor
It's tempting to go through nsContentUtils here, but I'm pretty sure caps is
initialized before nsContentUtils.
2013-04-29 11:16:21 -07:00