Граф коммитов

13422 Коммитов

Автор SHA1 Сообщение Дата
Carsten "Tomcat" Book 572e74ee99 merge mozilla-inbound to mozilla-central a=merge 2016-09-28 15:56:33 +02:00
James Andreou a47ce92ac2 Bug 1282124 - Remove nsILoadInfo.usePrivateBrowsing and the SEC_FORCE_PRIVATE_BROWSING flag; r=smaug,jryans 2016-09-27 16:56:44 -04:00
Kate McKinley c57d400961 Bug 1246540 - HSTS Priming Proof of Concept. r=ckerschb, r=mayhemer, r=jld, r=smaug, r=dkeeler, r=jmaher, p=ally
HSTS priming changes the order of mixed-content blocking and HSTS
upgrades, and adds a priming request to check if a mixed-content load is
accesible over HTTPS and the server supports upgrading via the
Strict-Transport-Security header.

Every call site that uses AsyncOpen2 passes through the mixed-content
blocker, and has a LoadInfo. If the mixed-content blocker marks the load as
needing HSTS priming, nsHttpChannel will build and send an HSTS priming
request on the same URI with the scheme upgraded to HTTPS. If the server
allows the upgrade, then channel performs an internal redirect to the HTTPS URI,
otherwise use the result of mixed-content blocker to allow or block the
load.

nsISiteSecurityService adds an optional boolean out parameter to
determine if the HSTS state is already cached for negative assertions.
If the host has been probed within the previous 24 hours, no HSTS
priming check will be sent.

MozReview-Commit-ID: ES1JruCtDdX

--HG--
extra : rebase_source : 2ac6c93c49f2862fc0b9e595eb0598cd1ea4bedf
2016-09-27 11:27:00 -04:00
Valentin Gosu 632626f639 Bug 1231565 - (Part 4) Test that large alt-data content can be saved, and that streaming works r=honzab
--HG--
rename : netwerk/test/unit/test_alt-data_simple.js => netwerk/test/unit/test_alt-data_stream.js
rename : netwerk/test/unit_ipc/test_alt-data_simple_wrap.js => netwerk/test/unit_ipc/test_alt-data_stream_wrap.js
2016-09-27 10:26:32 +02:00
Valentin Gosu 29eff7dfe4 Bug 1231565 - (Part 3) Make alt-data responses report the correct content length r=michal
MozReview-Commit-ID: DvQP7NB4SqW
2016-09-27 10:26:00 +02:00
David Keeler cba6d0293c bug 1190674 - skip test_tls_server.js on XP for intermittent failures r=jryans,nwgh
MozReview-Commit-ID: Aud6qGQ1y6I

--HG--
extra : rebase_source : 62a6b5aff647bf2165b5a0763c4ce84436b05822
2016-09-26 15:46:29 -07:00
Francois Marier 16c0d80286 Bug 1302938 - Explain why user referrer trimming policy can be overriden. r=dragana
MozReview-Commit-ID: GfmeIu2WEGX

--HG--
extra : rebase_source : 386c056f51dd351e7713806cec2292f5a226e8ef
2016-09-27 13:25:35 -07:00
Sergei Chernov 976d5c3f1d Bug 1293231 - Certificate Transparency - basic telemetry reports; r=Cykesiopka,keeler
MozReview-Commit-ID: EGvuZADObJo

--HG--
extra : rebase_source : 9a059c9f8e2fdf9bfc693b0b5649808b1beeb67b
2016-08-11 13:41:50 +03:00
Sylvestre Ledru 454c66daff Bug 1297662 - Remove gf2_8.c & gf2_8.h as they are unused. r=jesup
Move the used #define where it is actually used

MozReview-Commit-ID: DSfoLN7W5ae

--HG--
extra : rebase_source : b1be0cb8a0f1acc42b73856f9f3ffb24fd4a90e2
2016-09-26 06:40:59 -05:00
Martin Thomson b4a425d1e8 Bug 1304919 - Update TLS server tests to expect TLS 1.3 cipher suite, r=ekr
MozReview-Commit-ID: Bz5v08xPNA6

--HG--
extra : rebase_source : 897583f67b5d07a8962d4423ffc9d4cf7cd23b8e
extra : source : bb62ee48735e56b8792ba8256edeed5971f93a34
2016-09-23 13:17:12 +10:00
Iris Hsiao 767e1e9b11 merge mozilla-inbound to mozilla-central a=merge 2016-09-26 18:34:20 +08:00
Sebastian Hengst cc132d092f Backed out changeset 04cda7684b40 (bug 1217876) for failing xpcshell test test_resumable_channel_wrap.js in debug builds. r=backout 2016-09-25 11:00:29 +02:00
Andrea Marchesini ff1efcb34a Bug 1217876 - nsIXMLHttpRequest must show the authentication prompt correctly when used by addons in e10s, r=mayhemer 2016-09-25 07:50:44 +02:00
Sebastian Hengst 0ac2129c0b Backed out changeset bb62ee48735e (bug 1304919) 2016-09-24 18:00:12 +02:00
Martin Thomson fb053d0a17 Bug 1304919 - Update TLS server tests to expect TLS 1.3 cipher suite, r=ekr
MozReview-Commit-ID: Bz5v08xPNA6

--HG--
extra : rebase_source : 530ad9191cef1309726f15a1d2e9aef84f669cad
2016-09-23 13:17:12 +10:00
Thomas Nguyen 8c6badef26 Bug 1276836 - Implement same-origin, strict-origin, strict-origin-when-cross-origin referrer policy. r=mcmanus,jdm
MozReview-Commit-ID: 39AFT4RgHpl

--HG--
extra : rebase_source : 1512555cb0da30a0fbbfd58c27e4a4d48a93586e
2016-09-22 16:27:42 -07:00
Kate McKinley ed0b5f06ee Bug 1271796 use raw bytes to calculate SRI hash r=francois
MozReview-Commit-ID: F62t5CnsYlJ

--HG--
extra : rebase_source : 9c2148ffe99a51db5541ec6d9961597b578157ae
2016-09-05 12:55:25 +02:00
Carsten "Tomcat" Book d25a5baeb8 merge mozilla-inbound to mozilla-central a=merge 2016-09-22 11:55:12 +02:00
Eric Faust 121151ec67 Bug 1263595 - Avoid deadlock between the JIT and the gecko profiler on win64. (r=froydnj) 2016-09-15 21:35:14 -07:00
David Keeler b1cb7643ef bug 1302140 - add policy to disable SHA-1 except for certificates issued by non-built-in CAs r=jcj,rbarnes
MozReview-Commit-ID: 2uwHPxk0VhZ

--HG--
extra : rebase_source : 1c7b5d2559139fa8286342decf4e4f7c83317e29
2016-09-14 15:11:15 -07:00
Umesh Panchaksharaiah 056d5a6135 Bug 1301629 - Fix incorrect parameter name in comments. r=ettseng
--HG--
extra : rebase_source : a45c6c9641ceb70301e8bcd957a3e21c95aef423
2016-09-14 19:57:20 +02:00
Josh Matthews 7784aa2e51 Bug 1302824 - Avoid duplicating domain-matching and path-matching logic in cookie service. r=ehsan 2016-09-19 15:40:12 -04:00
Honza Bambas b48113987b Bug 1267820 - Fix HTTP cache2 leak after shutdown, don't setup purging timer after shutdown. r=michal 2016-09-20 06:53:00 -04:00
Daniel Stenberg 9df1623b92 Bug 1255474 - Cut off path from URLs passed to PAC scripts. r=mcmanus 2016-09-20 21:42:52 -04:00
Jonathan Hao 108459bd3b Bug 1272856 - Fix intermittent e10s browser_originattributes.js r=ehsan
--HG--
extra : rebase_source : 5b17628829673c1174273ef6423a062912d10ca2
2016-09-13 03:06:00 +02:00
amy 49df78fa51 Bug 1013635 - Removed the dispatch and call the notification service directly in HttpBaseChannel.cpp where this noticiation emits, r=honzab 2016-09-20 15:54:52 +08:00
Sebastian Hengst d8888f81d1 Backed out changeset 2df66e8b7411 (bug 1302140) for Windows build bustage in CertVerifier.cpp. r=backout on a CLOSED TREE 2016-09-21 20:47:08 +02:00
David Keeler d374bc442a bug 1302140 - add policy to disable SHA-1 except for certificates issued by non-built-in CAs r=jcj,rbarnes
MozReview-Commit-ID: 2uwHPxk0VhZ

--HG--
extra : rebase_source : 5b1342abc2eb260ec91464b3a1d331baf8968460
2016-09-14 15:11:15 -07:00
Nicholas Hurley 01c12cb1ef Bug 1296280 (part 2) - Add pref for our SETTINGS_MAX_TABLE_SIZE. r=mcmanus
MozReview-Commit-ID: 44CYEvJOno0

--HG--
extra : rebase_source : 5317d25981bf83ab8cc9b921055cc9028a1d4470
2016-08-24 14:35:43 -07:00
Nicholas Hurley 233fa83252 Bug 1296280 (part 1) - Add telemetry for HPACK usage. r=bsmedberg,mcmanus data-review=bsmedberg
MozReview-Commit-ID: Hk5XNrj3Tbh

--HG--
extra : rebase_source : 73851cd39d9885110c49007e4e9fca5de06d2d74
2016-08-24 06:38:52 -07:00
Valentin Gosu 76d2cd8b5d Bug 1231565 - (Part 2) Allow storing alternate data in the HTTP cache r=honzab
* Add PAltDataOutputStream.ipdl to be able to open an OutputStream to the cache entry in the child process
* AltDataOutputStreamChild/Parent are Main Thread only for now.
* Adds methods for reading and writing alt-data to nsICacheInfoChannel.idl
* Keep a ref of the cache entry after OnStopRequest in case the consumer tries to open the alt-data output stream

MozReview-Commit-ID: jlraDI97Hg
2016-04-11 05:17:02 +02:00
Honza Bambas cd3ee4c951 Bug 1231565 - (Part 1) Basic test for alt-data representation in cache r=honzab 2016-03-22 11:42:00 +01:00
Christoph Kerschbaumer 1b24e2d753 Bug 1297338 - Extend WyciwygChannel with concept of principalToInherit. r=bz 2016-09-20 08:36:08 +02:00
Christoph Kerschbaumer 8500d497a7 Bug 1297338 - Extend LoadInfo with a PrincipalToInherit member. r=bz 2016-09-20 08:35:45 +02:00
Christoph Kerschbaumer e822f3e9cc Bug 1291458 - Update documentation for nsILoadInfo. r=tanvi 2016-09-20 08:34:40 +02:00
Yoshi Huang 1b06918946 Bug 1301406 - replace SerializedLoadContext with NeckoOriginAttributes. r=smaug, ehsan, jduell
SerializedLoadContext carries the origin attributes of the docshell to
parent process. However document could have different origin attributes
than the docshell's. And the origin attributes of the document comes
from the LoadInfo of the channel.
So we replace SerializedLoadContext with NeckoOriginAttributes, which is from
the loadInfo of the channel, therefore parent can get the correct origin
attributes from the document.
2016-09-20 14:24:23 +08:00
Nicholas Hurley cb87df446e Bug 1302843 - Don't UpdateCacheabilityInternal if not enabled/initialized. r=mayhemer
MozReview-Commit-ID: HzSu0TM14R2

--HG--
extra : rebase_source : 6eea321f0c1b4e5f0e3216c6a952944afcb14f1f
2016-09-09 16:25:07 -07:00
Carsten "Tomcat" Book 25a074d342 merge mozilla-inbound to mozilla-central a=merge 2016-09-15 11:59:50 +02:00
Patrick McManus 14f8754356 Bug 1302488 - Alt-Svc Hard Refresh Race r=hurley 2016-09-13 13:24:19 -04:00
Manish Goregaokar 65e072aa45 Bug 1301621 - Parse URL ports as 16 bit; r=valentin
MozReview-Commit-ID: 5FbRUsYzJdy

--HG--
extra : rebase_source : dba9575a3d3a56560f39a81c6a3431da4e21f3e9
2016-09-09 15:42:42 +08:00
Andi-Bogdan Postelnicu 06bc5f3170 Bug 1282408 - add ignore initialization check flag for variables in AltSvcMapping. r=mcmanus
MozReview-Commit-ID: GRWqLr1pW3q
2016-09-14 10:05:11 +03:00
Thomas Wisniewski 0748df2882 Bug 1302312 - Treat URLs with username or password but no host info as malformed. r=valentin
--HG--
extra : rebase_source : 24fdcd9682cbcc3bb6850bf7708ea859264f4661
2016-09-13 12:47:16 -04:00
Dragana Damjanovic 3432aadb24 Bug 1294032 - Fix poll hang - on shutdown hang in poll post event multiple times. r=mcmanus
--HG--
extra : rebase_source : 1d56be9b3d04bb3cf6fcb1151aa4e2cfc26ffeee
2016-09-13 04:43:00 -04:00
Dragana Damjanovic dd.mozilla@gmail.com ef19d6d0f4 Bug 1296288 - Add telemetry for TLS early-data. r=mcmanus
--HG--
extra : rebase_source : 0d62e936d2af4de539802dff046a3b8453e4d9c6
2016-09-13 02:32:00 -04:00
Kannan Vijayan e40b66af93 Bug 1296464 - Part 1 - Add init2 method to nsIUDPSocket to allow opening sockets on specific IPs. r=hurley 2016-09-13 11:16:22 -04:00
Phil Ringnalda 0d511dbfef Merge m-c to m-i 2016-09-10 00:15:06 -07:00
Phil Ringnalda 3748f182f6 Merge m-i to m-c, a=merge 2016-09-10 00:14:21 -07:00
Julian Seward 7c7afaaa0a Bug 1296716 - Uninitialised value uses somehow relating to nsSocketTransportService::AnalyzeConnection. r=valentin.gosu@gmail.com. 2016-09-10 08:16:14 +02:00
Josh Matthews 3b4eeee788 Bug 1264192 - Adjust cookie eviction heuristics when exceeding the maximum cookies allowed per host. r=ehsan
If no expired cookies exist, in order of preference, evict the oldest:
* session cookie with a non-matching path
* session cookie with a matching path
* non-session cookie with a non-matching path
* non-session cookie with a matching path

This replaces the previous heuristic of evicting the oldest cookie, irregardless of any other attributes,
if no expired cookies were present. This ensures that cookies that are already considered transient by
web applications will be removed first, followed by cookies that are unrelated to the response that is
adding new cookies.
* * *
Bug 1264192 - Interdiff
2016-09-09 16:29:15 -04:00
Ben Kelly 4fd0037991 Bug 1301678 - Make InterceptedChannel use a different state variable to indicated the channel is closed. r=jdm, a=RyanVM 2016-09-09 07:28:00 -04:00