Trevor Saunders
c2b2fcd3d4
bug 949821 - use MOZ_UTF16 more and NS_LITERAL_STRING less r=froydnj
2013-12-12 20:50:01 -05:00
Bobby Holley
ef89950db8
Bug 913734 - Remove namespace mozilla::hotness. r=mrbkap
2013-12-13 19:15:44 -08:00
Bobby Holley
de33dca828
Bug 913734 - Remove EnabledID() machinery. r=mrbkap
2013-12-13 19:15:44 -08:00
Bobby Holley
a3b92ad7aa
Bug 913734 - Remove now-unused policy machinery. r=mrbkap
2013-12-13 19:15:43 -08:00
Bobby Holley
79e6071dc4
Bug 913734 - Stop consulting domain policies in CAPS. r=mrbkap
...
The whole LookupPolicy juggernaut is basically a mechanism for setting custom
per-(protocol, origin, property, action) access control in the preferences
service.
There are two sets of preferences currently in all.js. One of them is set up
for mailnews, for the mailbox:, imap:, and news: protocols. According to jst,
this was designed as a whack-a-mole security mechanism for javascript running
in HTML email. IIUC, we no longer allow JS to run at all in mailnews, so this
is obsolete.
The other mechanism appears to be our old-fashioned implementation of the
same-origin policy, which has been obsoleted by the new compartment
architecture.
In addition, most of this stuff was obsoleted by the new dom bindings, since
these DOM classes no longer go through XPCWrappedNativeJSOps, and thus no
longer trigger these security checks at all.
We stop using the infrastructure in this patch, and rip it out in the next one.
2013-12-13 19:15:43 -08:00
Bobby Holley
c919bbd7bf
Bug 913734 - Stop storing security policies on XPCWrappedNativeProtos. r=mrbkap
...
This is just a cache, so we can safely remove it without impacting correctness.
The rest of this mechanism goes away in subsequent patches.
2013-12-13 19:15:43 -08:00
Birunthan Mohanathas
58325c73be
Bug 713082 - Part 2: Rename Util.h to ArrayUtils.h. r=Waldo
...
--HG--
rename : mfbt/Util.h => mfbt/ArrayUtils.h
2013-12-08 21:52:54 -05:00
Bobby Holley
c5cf24313d
Bug 932906 - Exempt Remote XUL from CanCreateWrapper checks. r=bz
2013-12-04 19:15:40 -08:00
Joshua Cranmer
34b10dd70f
Bug 884676 - Convert JSPrincipals::refcount to Atomic<int32_t> in JS_THREADSAFE builds, and remove JS_ATOMIC_*. r=Waldo
2013-11-27 09:37:10 -06:00
Deian Stefan
d4fabf325e
Bug 886164 - Enforce CSP in sandboxed iframe, r=grobinson
2013-11-22 15:12:00 -08:00
Michael Shuen
f0ed23aa2a
Bug 941332 - Build caps/src in unified mode. r=ehsan
2013-11-21 09:22:26 -05:00
Mike Hommey
931cb49886
Bug 939632 - Remove LIBRARY_NAME for leaf libraries. r=gps
...
Landing on a CLOSED TREE.
2013-11-19 11:50:54 +09:00
Mike Hommey
db9e5129bc
Bug 939074 - Remove most LIBXUL_LIBRARY. rs=gps
2013-11-19 11:48:10 +09:00
Mike Hommey
b18be7aacd
Bug 939044 - Rename remaining MODULE definitions to XPIDL_MODULE. r=mshal
2013-11-19 11:47:43 +09:00
Mike Hommey
f0d1cd1e10
Bug 939044 - Remove most definitions of MODULE. r=mshal
2013-11-19 11:47:39 +09:00
Mike Hommey
f81885e53b
Bug 935881 - Use FINAL_LIBRARY for all (fake) libraries that end up linked in a single other library. r=gps
2013-11-19 11:47:14 +09:00
Tom Schuster
f052cdba92
Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz
2013-11-16 13:31:36 +01:00
Ms2ger
29adada2a2
Backout changesets ded0d64f6786:03f041d03f24 and 30cbd1abde1a (bug 935696, bug 933834 and bug 939194) for build bustage.
2013-11-17 16:39:25 +01:00
Tom Schuster
a12aa024e6
Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz
2013-11-16 13:31:36 +01:00
Bobby Holley
bb42d1a217
Bug 840488 - Tests. r=bz
2013-11-12 16:43:35 -08:00
Bobby Holley
db1330e2ca
Bug 840488 - New domain policy API. r=bz
...
Note that this patch changes the semantics of javascript.enabled so that changes
to the pref do not apply to compartments that have already been created. This is
a significant change, but is necessary to support the new domain policy API.
After one cycle or so, we'll rip out the old API.
2013-11-12 16:43:35 -08:00
Bobby Holley
c04d2567ce
Bug 840488 - Compute immunity from caps checks exactly once, and kill nsScriptSecurityManager::CanExecuteScripts. r=bz
2013-11-12 16:43:35 -08:00
Bobby Holley
23cf12e7bb
Bug 840488 - Remove per-JSContext script toggling. r=bz
...
Note that the checks in nsJSEnvironment::EvaluateString and EvalInWindow
can safely go away, because we call ssm->ScriptAllowed() in
nsJSUtils::EvaluateString.
2013-11-12 16:43:35 -08:00
Bobby Holley
a10c940425
Bug 840488 - Directly mark compartments whose docshells disable script execution. r=bz
2013-11-12 16:43:33 -08:00
Bobby Holley
260c41dfe4
Bug 840488 - Introduce a mechanism to temporarily or permanently block script for a given scope, and use it for unsafe channels. r=bz
2013-11-12 16:43:33 -08:00
Bobby Holley
a0b4f0df4e
Bug 840488 - Remove CheckFunctionAccess. r=bz
...
\o/
Aside from checking whether script is enabled, all the other work this function
does is silly.
2013-11-12 16:43:32 -08:00
Bobby Holley
8f0a543a5c
Bug 840488 - Get rid of aAllowIfNoScriptContext. r=bz
...
The old code seemed to feel that the lack of a script context was some sort of
showdown that required either unconditional allow or deny. Instead, let's just
make the scriptcontext-relevant checks conditional on there being a script
context, which lets us switch CheckFunctionAccess over to ScriptAllowed.
2013-11-12 16:43:32 -08:00
Bobby Holley
d071bd541c
Bug 840488 - Refactor Gecko to provide a more direct API to ask whether script is allowed for a given global. r=bz
2013-11-12 16:43:31 -08:00
Garrett Robinson
e97987f422
Bug 855326 - CSP 1.1 nonce-source for scripts and styles r=mrbkap r=dholbert r=geekboy
2013-11-08 15:44:39 -08:00
Daniel Holbert
0d7ef379ad
backout 57213b64023b (bug 855326) for build bustage in debug builds
...
CLOSED TREE
2013-11-08 11:22:36 -08:00
Garrett Robinson
7cbc01f239
Bug 855326 - CSP 1.1 nonce-source for scripts and styles. r=mrbkap r=dholbert r=geekboy
2013-11-08 09:20:43 -08:00
Nicholas Nethercote
b38b84f869
Bug 925584 - Remove some unnecessary jsapi.h inclusions from .cpp files. r=Ms2ger.
...
--HG--
extra : rebase_source : 41fcb0e922a519ef679c1c1b6293c2b638e83a48
2013-10-10 15:22:35 -07:00
Mike Hommey
f1c0c07862
Bug 929905 - Consolidate sources in moz.build. r=gps
2013-10-25 08:23:05 +09:00
Carsten "Tomcat" Book
b69ac18c34
merge b2g-inbound to mozilla-central
2013-10-09 10:13:52 +02:00
Karl Tomlinson
f6d7935b87
b=923591 don't warn when checkLoadURIStrWithPrincipal() returns NS_ERROR_DOM_BAD_URI r=bz
...
--HG--
extra : transplant_source : J%09t%A3Z%B4%8C%B9%99%E0O%CE3%7Ex%93vu%9BA
2013-10-09 15:32:38 +13:00
Fabrice Desré
3749574c01
Bug 918658 - Don't pretend that mozIApplication inherits from mozIDOMApplication r=bent
2013-10-08 15:52:26 -07:00
Christoph Kerschbaumer
b078ce3073
Bug 897516 - Implement a separate cookie jar for safebrowsing - cookie separation part. r=mmc
2013-08-19 12:31:24 -07:00
Trevor Saunders
9afef3334b
bug 920754 - rm more makefiles r=mshal
2013-09-25 16:39:06 -04:00
Gregory Szorc
c44d9c8614
Bug 920223 - Part 1: Mass convert MOCHITEST_FILES to manifests; rs=Ms2ger
2013-09-30 09:51:57 +02:00
Ed Morley
eae8f15a4a
Backed out changeset 77bff106b704 (bug 920223)
2013-09-30 12:50:12 +01:00
Gregory Szorc
3d0a157ac2
Bug 920223 - Part 1: Mass convert MOCHITEST_FILES to manifests; rs=Ms2ger
2013-09-30 09:51:57 +02:00
Ehsan Akhgari
019f6a95dd
Backed out changeset a73ffb0d0c97 because of build bustage
2013-09-29 17:20:07 -04:00
Ehsan Akhgari
996fe50ca8
Remove a number of unused variables, no bug
2013-09-29 16:42:12 -04:00
Carsten "Tomcat" Book
42f558590d
Backed out changeset 0cc959e28407 (bug 897516) failed XPC Shell tests CLOSED TREE
2013-09-27 15:45:31 +02:00
Christoph Kerschbaumer
b128ab6a98
Bug 897516 - Implement a separate cookie jar for safebrowsing - cookie separation part. r=mmc
2013-08-19 12:31:24 -07:00
Ryan VanderMeulen
be66de2bb1
Backout bug 886164 for B2G regressions.
2013-09-23 21:26:05 -04:00
Jon Coppeard
60622be6ee
Bug 918373 - GC: Handlify various public APIs r=sfink r=bholley r=smaug
2013-09-20 10:22:59 +01:00
Deian Stefan
b8838cbd40
Bug 886164 - Enforce CSP in sandboxed iframe. r=grobinson
2013-06-23 14:31:52 -07:00
Bobby Holley
50e7599f3d
Bug 917009 - Remove old-style object principal calculation. r=bz
2013-09-17 15:29:11 -07:00
Terrence Cole
f5dd5ae961
Bug 908750 - Fix a rooting hazard in nsScriptSecurityManger::LookupPolicy; r=bholley
...
--HG--
extra : rebase_source : 27bf6ef6bce3bed136921df15ea00ae86bd73f89
2013-08-23 08:51:40 -07:00