88ca83241c
Bug 1661423 - dont apply upgrade-insecure-requests to localhost form submissions r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D88577
2020-08-31 10:11:37 +00:00
27e2164c57
Bug 1656296 - Pass Blocked Downloads to the DownloadsUI r=ckerschb,Gijs
...
***
***
Added Better Testing
Differential Revision: https://phabricator.services.mozilla.com/D85439
2020-08-24 15:29:23 +00:00
05ab468b46
Backed out changeset 388c153da388 (bug 1656296) for causing default process leaks. CLOSED TREE
2020-08-19 21:58:03 +03:00
b578e23a52
Bug 1656296 - Pass Blocked Downloads to the DownloadsUI r=ckerschb,Gijs
...
***
***
Added Better Testing
Differential Revision: https://phabricator.services.mozilla.com/D85439
2020-08-19 17:58:57 +00:00
0e759593c7
Backed out changeset 1b7eb33c8ec9 (bug 1656296) for bc failure on browser_test_mixed_content_download.js . CLOSED TREE
2020-08-19 16:39:33 +03:00
a797186639
Bug 1656296 - Pass Blocked Downloads to the DownloadsUI r=ckerschb,Gijs
...
***
***
Added Better Testing
Differential Revision: https://phabricator.services.mozilla.com/D85439
2020-08-19 12:45:55 +00:00
96d8ee8908
Backed out changeset 6b495a62f535 (bug 1658594) for causing failures in test_cors_mixedcontent.html
...
CLOSED TREE
2020-08-14 18:43:43 +03:00
e1d3e25de2
Bug 1658594: Simplified HTTPS-Only checks for CORS and mixed content r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D86820
2020-08-14 14:49:02 +00:00
f372af4995
Bug 1658244: Allow view-background-image to open a data: URI by setting a flag on the loadinfo r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D86592
2020-08-11 13:41:54 +00:00
6c85c74f16
Bug 1655716 - Introduce TYPE_INTERNAL_FETCH_PRELOAD and use in HTMLLinkElement::AsValueToContentPolicy() - r=emilio,mayhemer,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D85980
2020-08-11 12:33:14 +00:00
c2034cbebd
Bug 1657208 - add test case for null & empty url strings r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D85968
2020-08-07 13:15:04 +00:00
396052a4f9
Bug 1653455: Enable test_resource_upgrade.html for fission and xorigin. r=cpeterson
...
Differential Revision: https://phabricator.services.mozilla.com/D84486
2020-07-24 08:21:41 +00:00
3d49931ee6
Bug 1647825 - Part 3: Add a test for the blocking reporting. r=ckerschb,nhnt11
...
Differential Revision: https://phabricator.services.mozilla.com/D82333
2020-07-22 15:12:39 +00:00
af8c105fc0
Bug 1450853 - Use Generic Error for 3rdparty MediaElement r=ckerschb,smaug
...
***
Add test
Differential Revision: https://phabricator.services.mozilla.com/D80080
2020-07-16 12:03:38 +00:00
de873529c5
Bug 1544705 - Re-Allow empty content for CSP-hashing r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D83533
2020-07-16 12:23:08 +00:00
3e517e1e7b
Bug 1651733 - Set mcb-download blocking true in tests r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D83363
2020-07-14 14:41:41 +00:00
b434fc9008
Backed out changeset 6b518e88bdf9 (bug 1450853) for perma failures on empty-samples.webm. CLOSED TREE
2020-07-14 15:26:22 +03:00
9a66f3e9e3
Bug 1450853 - Use Generic Error for 3rdparty MediaElement r=ckerschb,smaug
...
***
Add test
Differential Revision: https://phabricator.services.mozilla.com/D80080
2020-07-14 11:16:24 +00:00
75ea54bf01
Bug 1650919 - Adding manifest annotations for xorigin test harness. r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D82763
2020-07-13 20:34:46 +00:00
6faddf7d8f
Backed out changeset 1a0f002865d3 (bug 1650919) for test_deprecated.html failures CLOSED TREE
2020-07-13 19:22:21 +03:00
e50031dfc7
Bug 1650919 - Adding manifest annotations for xorigin test harness. r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D82763
2020-07-13 13:01:43 +00:00
9d78661f88
Bug 1649221: Update ChromeUtils.generateQI callers to pass strings. r=mccr8,remote-protocol-reviewers,marionette-reviewers,perftest-reviewers,webcompat-reviewers,geckoview-reviewers,preferences-reviewers,agi,whimboo,Bebe,twisniewski
...
Differential Revision: https://phabricator.services.mozilla.com/D81594
2020-07-10 23:58:28 +00:00
d27be427c9
Backed out changeset 83749e9e67bd (bug 1220810) for bc failures on browser_fall_back_to_https.js . CLOSED TREE
2020-07-10 18:42:17 +03:00
754c4eb7e9
Bug 1651482 - use real remoteType name in UnexpectedPrivilegedLoadsTelemetryTest r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D82868
2020-07-10 09:48:59 +00:00
23052342cb
Bug 1220810 - Hardcode localhost to loopback, r=ckerschb,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D64586
2020-07-10 14:30:58 +00:00
b62be4d15f
Backed out changeset 1b035d80fb9f (bug 1220810) for causing bustages in netwerk/dns/DNS.cpp
...
CLOSED TREE
2020-07-10 17:17:20 +03:00
f498accc17
Bug 1220810 - Hardcode localhost to loopback, r=ckerschb,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D64586
2020-07-10 13:08:14 +00:00
44cad01e29
Backed out changeset 1b44f13206d0 (bug 1220810) for causing gecko decision task bustages.
...
CLOSED TREE
2020-07-10 15:37:45 +03:00
2144af13e9
Bug 1220810 - Hardcode localhost to loopback, r=ckerschb,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D64586
2020-07-10 12:23:46 +00:00
61006875dd
Backed out changeset 36f368ba214c (bug 1220810) for causing gecko decision task bustages.
...
CLOSED TREE
2020-07-10 15:00:15 +03:00
f36d351374
Bug 1220810 - Hardcode localhost to loopback, r=ckerschb,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D64586
2020-07-10 11:34:10 +00:00
22a65a237e
Bug 1650163 - Part 1: Switch native remoteType values to nsCString, r=farre,geckoview-reviewers,agi
...
Differential Revision: https://phabricator.services.mozilla.com/D82104
2020-07-08 20:15:59 +00:00
8ccf28a8ba
Bug 1614969 - Check download with MixedContentBlocker r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D73302
2020-07-08 15:25:43 +00:00
9cf407544a
Bug 1644671 - systemprincipal restrictions telemetry r=tjr,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D79142
2020-07-08 13:11:57 +00:00
ecb7c0ac10
Backed out changeset 1e15fd6bbf25 (bug 1644671) for telemetry related bustages CLOSED TREE
2020-07-08 15:34:15 +03:00
ae8dc932e1
Bug 1644671 - systemprincipal restrictions telemetry r=tjr,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D79142
2020-07-08 12:06:05 +00:00
339d33ec67
Backed out changeset 627f9b4fea56 (bug 1644671) for bustages on TelemetryEventData.h.stub . CLOSED TREE
2020-07-07 20:33:53 +03:00
71de7e32d5
Bug 1644671 - systemprincipal restrictions telemetry r=tjr,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D79142
2020-07-07 14:17:05 +00:00
402b0a5c46
Bug 1647719: Introduce Pref for HTTS-Only in Private Browsing Mode. r=JulianWels,jcj
...
Differential Revision: https://phabricator.services.mozilla.com/D80873
2020-07-06 08:52:02 +00:00
9364b353d4
Bug 1648010 - Remove NS_NAMED_LITERAL_CSTRING and NS_NAMED_LITERAL_STRING macros. r=froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D80631
2020-07-01 08:42:31 +00:00
cd8b8939b9
Bug 1648010 - Replace uses of NS_LITERAL_STRING/NS_LITERAL_CSTRING macros by _ns literals. r=geckoview-reviewers,jgilbert,agi,hsivonen,froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D80860
2020-07-01 08:29:29 +00:00
e6f3141f9a
Backed out changeset 2df0c2a2f866 (bug 1614969) for asertion failure on base/LoadInfo.cpp.
2020-06-30 21:47:17 +03:00
5bb89780fa
Bug 1614969 - Check download with MixedContentBlocker r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D73302
2020-06-30 16:29:22 +00:00
16fcd9ade6
Bug 1644076: Test XFO for type embed and object. r=smaug
...
Differential Revision: https://phabricator.services.mozilla.com/D81161
2020-06-26 14:28:43 +00:00
f999f7f575
Bug 1627972: Re-enable test_upgrade_insecure.html on all platform. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D80912
2020-06-25 13:01:27 +00:00
c54f50f342
Backed out changeset a10fc7b299ff (bug 1614969) for build bustages on nsContentSecurityUtils.cpp. CLOSED TREE
2020-06-24 13:23:02 +03:00
a9516ee4f5
Bug 1614969 - Check download with MixedContentBlocker r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D73302
2020-06-24 09:54:50 +00:00
c112069ef0
Backed out changeset 3685f83e0dc0 (bug 1614969) as requested by dev.
2020-06-23 15:22:21 +03:00
d8ff61ded5
Bug 1614969 - Check download with MixedContentBlocker r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D73302
2020-06-23 11:30:28 +00:00
6ccabd4784
Bug 1602668 - M(1) manifest and test changes. r=kmag,karlt,necko-reviewers,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D70362
2020-06-22 19:09:49 +00:00
3002ab2ab5
Bug 1508306 - Part 2: Fix Large-Allocation tests for new changes, r=mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D78999
2020-06-15 23:24:09 +00:00
280d5c3656
Bug 1599160 - Clear the shared stylesheet cache in some mochitests. r=mayhemer,robwu
...
So that they keep testing the network cache / url classifier / etc...
Differential Revision: https://phabricator.services.mozilla.com/D77843
2020-06-12 19:06:15 +00:00
a8dde16e58
Backed out 10 changesets (bug 1508306, bug 1640019) for bc failures on browser_autoOpen.js . CLOSED TREE
...
Backed out changeset 8844170ff408 (bug 1508306)
Backed out changeset b750f1d873cf (bug 1508306)
Backed out changeset c7170e76e676 (bug 1640019)
Backed out changeset 5905995e4815 (bug 1640019)
Backed out changeset 7bf86513348e (bug 1640019)
Backed out changeset f7d0605295f7 (bug 1640019)
Backed out changeset 521b4d5a9a89 (bug 1640019)
Backed out changeset 8542edc564bc (bug 1640019)
Backed out changeset 4f6a03152526 (bug 1640019)
Backed out changeset 30d2bf04719b (bug 1640019)
2020-06-12 22:47:50 +03:00
9c5d47c53f
Bug 1508306 - Part 2: Fix Large-Allocation tests for new changes, r=mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D78999
2020-06-12 16:52:15 +00:00
7b30d6e82e
Backed out 7 changesets (bug 1599160) for damp failures. CLOSED TREE
...
Backed out changeset edb0e17f3c98 (bug 1599160)
Backed out changeset 64b42ac358e6 (bug 1599160)
Backed out changeset ce1521b895e1 (bug 1599160)
Backed out changeset 0b0ff0ad8db7 (bug 1599160)
Backed out changeset c7ef05dae614 (bug 1599160)
Backed out changeset 466cfd0ad5db (bug 1599160)
Backed out changeset b3f28494f0e7 (bug 1599160)
2020-06-12 02:40:38 +03:00
3e54c1cef1
Bug 1599160 - Clear the shared stylesheet cache in some mochitests. r=mayhemer,robwu
...
So that they keep testing the network cache / url classifier / etc...
Differential Revision: https://phabricator.services.mozilla.com/D77843
2020-06-11 11:42:11 +00:00
0f469abff6
Bug 1638711 - Call DisplayLoadError for NS_ERROR_DOM_BAD_URI during EndPageLoad, since we would also have done this for the same error during AsyncOpen. r=nika,ckerschb
...
Previously we called DisplayLoadError with NS_ERROR_DOM_BASE_URI for errors detected during AsyncOpen, but not for asynchronous errors, and this patch queue changed when some security errors happen to be asynchronous.
GeckoView has tests that require DisplayLoadError to be called (which allows for a custom error page to be loaded). Unfortunately, doing so breaks existing gecko tests, since the method of detecting a blocked load fails when GeckoView loads a custom error page.
Differential Revision: https://phabricator.services.mozilla.com/D77171
2020-06-08 23:17:49 +00:00
3a8751538d
Bug 1638711 - Convert tests that try to install a content policy for Document loads to use SpecialPowers.loadChromeScript to do so in the parent process. r=kmag,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D76616
2020-06-08 23:17:41 +00:00
d2ffadadde
Bug 1638711 - Fix test_CSP to detect CSP events from the parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75723
2020-06-08 23:16:39 +00:00
a119cd7a2a
Bug 1638711 - Allow test_frameNavigation to use the error event to detect when a load was blocked. r=ckerschb
...
The current state is that we fire error events for content blocking if the error happens synchronously and src was set when the iframe was in-document, or if the error happens asynchronously (from the parent process).
This test is currently setting src before appending the iframe to the document, and thus was expecting no error event to be fired. We have other content security tests that do rely on the error event being fired.
Since we're doing security checks in the parent, the error event now fires, and this changes the test to report success in that case.
Differential Revision: https://phabricator.services.mozilla.com/D75722
2020-06-08 23:16:24 +00:00
d68a202c49
Backed out 9 changesets (bug 1638711) for test_block_toplevel_data_navigation.html failures CLOSED TREE
...
Backed out changeset b137e5dfcc57 (bug 1638711)
Backed out changeset 3529cf4e69b6 (bug 1638711)
Backed out changeset 417df721766f (bug 1638711)
Backed out changeset 5b312893e8e2 (bug 1638711)
Backed out changeset d6d396498f5e (bug 1638711)
Backed out changeset 77f6f2396343 (bug 1638711)
Backed out changeset c1d12e04bc27 (bug 1638711)
Backed out changeset 6e702b519ef0 (bug 1638711)
Backed out changeset 9e5a049b57ed (bug 1638711)
2020-06-08 12:36:09 +03:00
13ce354803
Bug 1638711 - Call DisplayLoadError for NS_ERROR_DOM_BAD_URI during EndPageLoad, since we would also have done this for the same error during AsyncOpen. r=nika,ckerschb
...
Previously we called DisplayLoadError with NS_ERROR_DOM_BASE_URI for errors detected during AsyncOpen, but not for asynchronous errors, and this patch queue changed when some security errors happen to be asynchronous.
GeckoView has tests that require DisplayLoadError to be called (which allows for a custom error page to be loaded). Unfortunately, doing so breaks existing gecko tests, since the method of detecting a blocked load fails when GeckoView loads a custom error page.
Differential Revision: https://phabricator.services.mozilla.com/D77171
2020-06-08 08:07:20 +00:00
4ab22a6779
Bug 1638711 - Convert tests that try to install a content policy for Document loads to use SpecialPowers.loadChromeScript to do so in the parent process. r=kmag,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D76616
2020-06-02 23:05:21 +00:00
da103bf71e
Bug 1638711 - Fix test_CSP to detect CSP events from the parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75723
2020-06-02 23:04:15 +00:00
42d2c9c863
Bug 1638711 - Allow test_frameNavigation to use the error event to detect when a load was blocked. r=ckerschb
...
The current state is that we fire error events for content blocking if the error happens synchronously and src was set when the iframe was in-document, or if the error happens asynchronously (from the parent process).
This test is currently setting src before appending the iframe to the document, and thus was expecting no error event to be fired. We have other content security tests that do rely on the error event being fired.
Since we're doing security checks in the parent, the error event now fires, and this changes the test to report success in that case.
Differential Revision: https://phabricator.services.mozilla.com/D75722
2020-06-02 23:04:05 +00:00
832fdf2e6e
Bug 1642808 - Remove whitelist from dom security. r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D77949
2020-06-02 23:15:13 +00:00
2a98a3d66d
Bug 1640405 - SameSite=lax/strict cookies should be sent to TYPE_SAVEAS_DOWNLOAD content-type, r=mayhemer
...
Differential Revision: https://phabricator.services.mozilla.com/D77298
2020-06-02 12:23:00 +00:00
e960b9f449
Backed out 7 changesets (bug 1640405, bug 1638358) for failures on browser_webconsole_network_messages_status_code.js. CLOSED TREE
...
Backed out changeset ef5f7479ddf8 (bug 1640405)
Backed out changeset 286e0c83eb30 (bug 1638358)
Backed out changeset 89e396b2896e (bug 1638358)
Backed out changeset 33ad5fa05209 (bug 1638358)
Backed out changeset d213264c1379 (bug 1638358)
Backed out changeset 6bc05236afb4 (bug 1638358)
Backed out changeset 87e9d0ed3982 (bug 1638358)
2020-06-02 15:16:42 +03:00
cef861b90b
Bug 1640405 - SameSite=lax/strict cookies should be sent to TYPE_SAVEAS_DOWNLOAD content-type, r=mayhemer
...
Differential Revision: https://phabricator.services.mozilla.com/D77298
2020-06-02 09:26:10 +00:00
a985167fa6
Backed out 7 changesets (bug 1638711) for perma failures on test_bug375314-2.html. CLOSED TREE
...
Backed out changeset 9643bf18ac31 (bug 1638711)
Backed out changeset 3d06b48e2e3a (bug 1638711)
Backed out changeset c2a1461890c3 (bug 1638711)
Backed out changeset 9eda9f6c5877 (bug 1638711)
Backed out changeset f776c30279f3 (bug 1638711)
Backed out changeset b34546384903 (bug 1638711)
Backed out changeset 47da03dd8365 (bug 1638711)
2020-05-28 04:25:38 +03:00
ca4cbd1711
Bug 1638711 - Convert tests that try to install a content policy for Document loads to use SpecialPowers.loadChromeScript to do so in the parent process. r=kmag,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D76616
2020-05-27 09:39:33 +00:00
3d7f13f789
Bug 1638711 - Fix test_CSP to detect CSP events from the parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75723
2020-05-27 09:39:38 +00:00
b9ceacc239
Bug 1638711 - Allow test_frameNavigation to use the error event to detect when a load was blocked. r=ckerschb
...
The current state is that we fire error events for content blocking if the error happens synchronously and src was set when the iframe was in-document, or if the error happens asynchronously (from the parent process).
This test is currently setting src before appending the iframe to the document, and thus was expecting no error event to be fired. We have other content security tests that do rely on the error event being fired.
Since we're doing security checks in the parent, the error event now fires, and this changes the test to report success in that case.
Differential Revision: https://phabricator.services.mozilla.com/D75722
2020-05-27 09:39:40 +00:00
34b793064e
Backed out 6 changesets (bug 1638711) for Geckoview failures in NavigationDelegateTest.loadUriReferrerSessionFileUrl.CLOSED TREE
...
Backed out changeset 22a7b8f16c44 (bug 1638711)
Backed out changeset 75d97b8df5ba (bug 1638711)
Backed out changeset 254871b49de9 (bug 1638711)
Backed out changeset 97d1d2390586 (bug 1638711)
Backed out changeset bebe76fca022 (bug 1638711)
Backed out changeset 164b842bea99 (bug 1638711)
2020-05-27 12:28:10 +03:00
3a23e7fd49
Bug 1638711 - Convert tests that try to install a content policy for Document loads to use SpecialPowers.loadChromeScript to do so in the parent process. r=kmag,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D76616
2020-05-27 00:33:19 +00:00
e323917bc6
Bug 1638711 - Fix test_CSP to detect CSP events from the parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75723
2020-05-27 00:33:17 +00:00
ce6af34af6
Bug 1638711 - Allow test_frameNavigation to use the error event to detect when a load was blocked. r=ckerschb
...
The current state is that we fire error events for content blocking if the error happens synchronously and src was set when the iframe was in-document, or if the error happens asynchronously (from the parent process).
This test is currently setting src before appending the iframe to the document, and thus was expecting no error event to be fired. We have other content security tests that do rely on the error event being fired.
Since we're doing security checks in the parent, the error event now fires, and this changes the test to report success in that case.
Differential Revision: https://phabricator.services.mozilla.com/D75722
2020-05-27 00:32:25 +00:00
5cf1f845a8
Bug 1631405 - Update tests to account for security UI only living in the parent process. r=kmag,ckerschb,webcompat-reviewers,twisniewski
...
This is mostly changes to handle retrieving the security state asynchronously via the parent process, needing lots of async/await additions.
It also removes the docshell mixed content flag checks (which don't seem to be used in code, only tests), which are mostly still covered by checks of the security UI.
Differential Revision: https://phabricator.services.mozilla.com/D75448
2020-05-27 00:31:25 +00:00
a54ec3073f
Backed out 4 changesets (bug 1631405) for multiple mochitest failures CLOSED TREE
...
Backed out changeset 9963cc0b23cb (bug 1631405)
Backed out changeset 469ac933ed7c (bug 1631405)
Backed out changeset 0c5f55864268 (bug 1631405)
Backed out changeset 20dcbcc2f3b8 (bug 1631405)
2020-05-27 01:30:20 +03:00
d692732bdd
Bug 1631405 - Update tests to account for security UI only living in the parent process. r=kmag,ckerschb,webcompat-reviewers,twisniewski
...
This is mostly changes to handle retrieving the security state asynchronously via the parent process, needing lots of async/await additions.
It also removes the docshell mixed content flag checks (which don't seem to be used in code, only tests), which are mostly still covered by checks of the security UI.
Differential Revision: https://phabricator.services.mozilla.com/D75448
2020-05-26 21:19:28 +00:00
159f21fe04
Bug 1638826: Exempt pdfjs from being subject to CSP permits function. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D75787
2020-05-26 12:48:15 +00:00
1bda9aacdf
Bug 1640707 - Make sure whitelist_onions is disabled in test_isOriginPotentiallyTrustworthy.js r=ckerschb
...
In Tor Browser dom.securecontext.whitelist_onions is true by default, so we need a small
patch for tests from bug 1382359 to pass. We would like to upstream that patch, which
is just making sure dom.securecontext.whitelist_onions is false before starting the test.
Differential Revision: https://phabricator.services.mozilla.com/D76726
2020-05-26 08:21:26 +00:00
31ca1d2605
Backed out changeset 2b4796470c0b (bug 1638826) for wpt failure on form-action-src-javascript-blocked.sub.html . CLOSED TREE
2020-05-25 13:52:24 +03:00
00cb73739d
Bug 1638826: Make CSP permits function (e.g. restricting base-uri) consult subjectCSP before enforcing CSP. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D75787
2020-05-25 08:24:09 +00:00
6ae4ad1947
Bug 1422284 - Upgrade insecure requests should only apply to top-level same-origin redirects. r=baku,valentin,necko-reviewers
...
Differential Revision: https://phabricator.services.mozilla.com/D75259
2020-05-25 08:14:10 +00:00
0ae464faaa
Bug 1639154 - Isolate network cache per first-party when privacy.partition.network_state is set to true - part 2 - tests, r=mayhemer
...
Differential Revision: https://phabricator.services.mozilla.com/D75922
2020-05-21 05:41:50 +00:00
026a7442f3
Bug 1636900: Remove TYPE_XBL from nsIContentPolicy. r=remote-protocol-reviewers,emilio,whimboo
...
Differential Revision: https://phabricator.services.mozilla.com/D74835
2020-05-13 06:53:28 +00:00
2c610ecc1f
Bug 1582115: Exempt pdf.js from being subject to CSP from page. r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D74614
2020-05-12 08:51:08 +00:00
bc388980de
Bug 1618322 - Merge `network.preload.experimental` pref to `network.preload`, r=dragana
...
Depends on D70235
Differential Revision: https://phabricator.services.mozilla.com/D70526
2020-05-11 14:15:30 +00:00
3d6e4f24c6
Bug 1635995 - Allow CSP service to do redirect checks on documents in the parent, rather than doing it manually. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D74170
2020-05-08 02:53:57 +00:00
ec09ea6a84
Bug 1633546 - update testing results for network.cookie.cookieBehavior; r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D73036
2020-04-30 06:54:37 +00:00
4a32e81e04
Bug 1633941 - Re-disable test_main.html on fission, r=kmag
...
This test will no longer crash since bug 1580565, but was accidentally set as
passing in https://hg.mozilla.org/integration/autoland/rev/9555dcc88ac9 , despite
still perma-failing due to bug 1580771https://phabricator.services.mozilla.com/D73054
2020-04-29 17:49:30 +00:00
00925bd53b
Bug 1631384 - Added upgrade exceptions for HTTPS Only Mode. r=ckerschb,necko-reviewers,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D72002
2020-04-29 15:52:19 +00:00
fe228746b1
Backed out changeset 8e7b6ae8e18d (bug 1631384) for browser_upgrade_exceptions.js failure CLOSED TREE
2020-04-29 13:32:29 +03:00
b9779446da
Bug 1631384 - Added upgrade exceptions for HTTPS Only Mode. r=ckerschb,necko-reviewers,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D72002
2020-04-29 09:25:54 +00:00
62cc378f74
Bug 1580565 - Part 8: Re-enable disabled tests, r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D72763
2020-04-28 15:33:20 +00:00
5d6ba63743
Backed out changeset 7b5f7ee72a6c (bug 1631384) for failing bc at browser_upgrade_exceptions.js on a CLOSED TREE
2020-04-28 01:43:57 +03:00
9b9cb82ccc
Bug 1631384 - Added upgrade exceptions for HTTPS Only Mode. r=ckerschb,necko-reviewers,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D72002
2020-04-27 17:23:43 +00:00
96ee45f78e
Backed out changeset a37a427fac07 (bug 1631384) for causing wpt crashes in websocket.https.html
...
CLOSED TREE
2020-04-27 18:33:36 +03:00
a8897c91ed
Bug 1631384 - Added upgrade exceptions for HTTPS Only Mode. r=ckerschb,necko-reviewers,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D72002
2020-04-27 13:29:24 +00:00
b758e4a1f5
Bug 1602318 - Make some browser tests wait on the test uri to load instead of any uri. r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D70624
2020-04-26 00:52:11 +00:00
0f970fbb19
Backed out 20 changesets (bug 1602318) for causing multiple types of failures. CLOSED TREE
...
Backed out changeset f71e3eff7a8c (bug 1602318)
Backed out changeset 0e0bdebf223b (bug 1602318)
Backed out changeset 44e82f4339a1 (bug 1602318)
Backed out changeset 5f341ebd8591 (bug 1602318)
Backed out changeset 088ea9d20617 (bug 1602318)
Backed out changeset 5de6321939f2 (bug 1602318)
Backed out changeset f5742e84912b (bug 1602318)
Backed out changeset 13bec3079540 (bug 1602318)
Backed out changeset 6c24ba022911 (bug 1602318)
Backed out changeset 5d0fc0102a7f (bug 1602318)
Backed out changeset fc4efd11e643 (bug 1602318)
Backed out changeset 028bd63e710d (bug 1602318)
Backed out changeset 21ad350f9617 (bug 1602318)
Backed out changeset 8f27319f2c34 (bug 1602318)
Backed out changeset db2832973382 (bug 1602318)
Backed out changeset 1756c7584491 (bug 1602318)
Backed out changeset 983e5a9abe02 (bug 1602318)
Backed out changeset a1b9429b3298 (bug 1602318)
Backed out changeset 7d1c0d968a09 (bug 1602318)
Backed out changeset a3b056ec6be3 (bug 1602318)
2020-04-24 11:15:12 +03:00
da08be6550
Bug 1602318 - Make some browser tests wait on the test uri to load instead of any uri. r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D70624
2020-04-24 06:58:31 +00:00
c0bd1834c8
Backed out 19 changesets (bug 1602318) for causing multiple failures
...
Backed out changeset 4b3345b2e33b (bug 1602318)
Backed out changeset 7240b27afe28 (bug 1602318)
Backed out changeset a7091729d8c9 (bug 1602318)
Backed out changeset e496ab6c0857 (bug 1602318)
Backed out changeset 184da6309f0c (bug 1602318)
Backed out changeset 79b540f8619d (bug 1602318)
Backed out changeset b298015ee960 (bug 1602318)
Backed out changeset 6d0783cd5e01 (bug 1602318)
Backed out changeset cbc308486b17 (bug 1602318)
Backed out changeset 94142944fb54 (bug 1602318)
Backed out changeset 7c1eeb299b78 (bug 1602318)
Backed out changeset 0fc27502503a (bug 1602318)
Backed out changeset 0fc27c2e09d9 (bug 1602318)
Backed out changeset b5e2aa4741b2 (bug 1602318)
Backed out changeset 57d568114c5a (bug 1602318)
Backed out changeset 8f7360d827dc (bug 1602318)
Backed out changeset 78930a97c2df (bug 1602318)
Backed out changeset 8015780587cd (bug 1602318)
Backed out changeset bc9da03cb3a3 (bug 1602318)
2020-04-21 03:46:41 +03:00
11a6a14a87
Bug 1602318 - Make some browser tests wait on the test uri to load instead of any uri. r=kmag
...
Differential Revision: https://phabricator.services.mozilla.com/D70624
2020-04-20 23:01:44 +00:00
402bac7f4d
Bug 1631380 - Fixed blank upgrade message on HTTPS Only Mode websocket upgrade. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D71546
2020-04-20 16:41:16 +00:00
4172d4a0f0
Bug 1630865 - Implement nsICookieService::getCookieStringForPrincipal() - part 3 - stop using nsICookieService::getCookieString(), r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D71277
2020-04-20 10:03:13 +00:00
5e2698efa8
Bug 1630865 - Implement nsICookieService::getCookieStringForPrincipal() - part 1 - nsIPrincipal methods, r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D71275
2020-04-20 10:01:54 +00:00
ee3b2aee32
Bug 1627653 - document.cookie should expose all the cookies, ignoring sameSite limitations - part 3 - fix tests, r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D71047
2020-04-20 10:00:48 +00:00
76ebc963af
Bug 1627206 - Upgrade failure telemetry for HTTPS Only Mode. r=ckerschb,jcj,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D69983
2020-04-17 11:41:36 +00:00
d3b9fc8dde
Backed out changeset c424381097d7 (bug 1627206) for causing browser_console_logging.js failures CLOSED TREE
2020-04-16 23:54:06 +03:00
631b9ce311
Bug 1627206 - Upgrade failure telemetry for HTTPS Only Mode. r=ckerschb,jcj,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D69983
2020-04-16 18:58:43 +00:00
cf753296a8
Bug 1626249: Test error page for x-frame-options and CSP frame-ancestors. r=johannh
...
Differential Revision: https://phabricator.services.mozilla.com/D69049
--HG--
extra : moz-landing-system : lando
2020-04-15 17:44:52 +00:00
1201f87e94
Bug 1599131: Remove carve outs for downloads within x-frame-options when fission enabled. r=smaug,mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D65949
--HG--
extra : moz-landing-system : lando
2020-04-14 05:57:44 +00:00
dd8e0c23e0
Bug 1628605: Test SecFetch Headers and websockets. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D70366
--HG--
extra : moz-landing-system : lando
2020-04-10 11:10:00 +00:00
4935907607
Bug 1627963: Remove requestContext from CSP shouldload and replace with fission friendly primitives. r=mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D70173
--HG--
extra : moz-landing-system : lando
2020-04-10 10:56:57 +00:00
1a877e187b
Backed out changeset 0105a6519f30 (bug 1628605) for causing failures in test_sec_fetch_websocket.html
...
CLOSED TREE
2020-04-10 05:04:30 +03:00
91485d8871
Bug 1628605: Test SecFetch Headers and websockets. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D70366
--HG--
extra : moz-landing-system : lando
2020-04-09 14:24:00 +00:00
eb21e4da7f
Bug 1262842: CSP served on SVG images should be ignored, otherwise SVG image internals like inline styles might get blocked. r=smaug
...
Differential Revision: https://phabricator.services.mozilla.com/D69523
--HG--
extra : moz-landing-system : lando
2020-04-07 17:21:02 +00:00
7a9ddc9a40
Bug 1627235: Test CSP for images loaded as iframe. r=smaug
...
Differential Revision: https://phabricator.services.mozilla.com/D69832
--HG--
extra : moz-landing-system : lando
2020-04-07 09:46:20 +00:00
4f2c05e8cd
Bug 1625448 - Console logging tests for HTTPS Only Mode. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D68842
--HG--
extra : moz-landing-system : lando
2020-04-01 14:04:01 +00:00
c9951034c8
Backed out changeset 6b876416613f (bug 1625448) for causing perma bc failures in toolkit/components/pictureinpicture/tests/browser_fullscreen.js CLOSED TREE
2020-03-31 19:22:09 +03:00
3ca4c35fb5
Bug 1625448 - Console logging tests for HTTPS Only Mode. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D68842
--HG--
extra : moz-landing-system : lando
2020-03-31 11:45:25 +00:00
878167ddb7
Bug 1599791: Test CSP and link rel=preload. r=mayhemer
...
Differential Revision: https://phabricator.services.mozilla.com/D68718
--HG--
extra : moz-landing-system : lando
2020-03-30 15:00:17 +00:00
1064ddd638
Bug 1457100: Make OBJECT elements inherit CSP if opaque. r=smaug
...
Differential Revision: https://phabricator.services.mozilla.com/D68044
--HG--
extra : moz-landing-system : lando
2020-03-25 17:10:01 +00:00
67336e44e0
Bug 1585533: Remove debug statements for test test_upgrade_insecure_reporting.html. r=sstreich
...
Differential Revision: https://phabricator.services.mozilla.com/D67838
--HG--
extra : moz-landing-system : lando
2020-03-23 12:40:06 +00:00
9e5deb3526
Bug 1622682 : removed unused imports and variables. r=sylvestre
...
Differential Revision: https://phabricator.services.mozilla.com/D67011
--HG--
extra : moz-landing-system : lando
2020-03-22 23:08:05 +00:00
93ec4f0381
Backed out changeset f01596089356 (bug 1220810) for causing crashes in test_performance_attributes_exist_in_object.html
...
CLOSED TREE
2020-03-19 17:12:32 +02:00
e4db0e4496
Bug 1220810 - Hardcode localhost to loopback, r=ckerschb,dragana
...
Differential Revision: https://phabricator.services.mozilla.com/D64586
--HG--
extra : moz-landing-system : lando
2020-03-19 13:06:48 +00:00
7681b5f08e
Backed out changeset a5ce9219be07 (bug 1622682) for causing lint failures.
...
CLOSED TREE
2020-03-18 14:24:18 +02:00
3593b5b85d
Bug 1622682 : removed unused imports and variables. r=sylvestre
...
Differential Revision: https://phabricator.services.mozilla.com/D67011
--HG--
extra : moz-landing-system : lando
2020-03-17 23:01:09 +00:00
e5c3036681
Bug 1620242 - Basic implementation for HTTPS Only Mode. r=ckerschb,mixedpuppy
...
Differential Revision: https://phabricator.services.mozilla.com/D62590
--HG--
rename : dom/security/test/csp/file_redirect_report.sjs => dom/security/test/https-only/file_redirect.sjs
rename : dom/security/test/csp/file_upgrade_insecure.html => dom/security/test/https-only/file_upgrade_insecure.html
rename : dom/security/test/csp/file_upgrade_insecure_server.sjs => dom/security/test/https-only/file_upgrade_insecure_server.sjs
rename : dom/security/test/csp/file_upgrade_insecure_wsh.py => dom/security/test/https-only/file_upgrade_insecure_wsh.py
extra : moz-landing-system : lando
2020-03-17 19:24:31 +00:00
d5b004443b
Bug 1143478 - Rename mozilla::Pair to CompactPair. r=froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D64511
--HG--
rename : mfbt/Pair.h => mfbt/CompactPair.h
extra : moz-landing-system : lando
2020-03-17 12:42:12 +00:00
f10f67e74c
Backed out changeset 21f62488a5b5 (bug 1620242) for causing bustages in nsMixedContentBlocker.cpp CLOSED TREE
2020-03-16 23:11:00 +02:00
c2c4e65115
Bug 1620242 - Basic implementation for HTTPS Only Mode. r=ckerschb,mixedpuppy
...
Differential Revision: https://phabricator.services.mozilla.com/D62590
--HG--
rename : dom/security/test/csp/file_redirect_report.sjs => dom/security/test/https-only/file_redirect.sjs
rename : dom/security/test/csp/file_upgrade_insecure.html => dom/security/test/https-only/file_upgrade_insecure.html
rename : dom/security/test/csp/file_upgrade_insecure_server.sjs => dom/security/test/https-only/file_upgrade_insecure_server.sjs
rename : dom/security/test/csp/file_upgrade_insecure_wsh.py => dom/security/test/https-only/file_upgrade_insecure_wsh.py
extra : moz-landing-system : lando
2020-03-16 16:47:54 +00:00
75355611d1
Backed out changeset 46dfbb4de902 (bug 1620242) for causing failures in test_x-frame-options.html
...
CLOSED TREE
2020-03-13 18:24:03 +02:00
bc46756805
Backed out changeset 93abc56ef420 (bug 1599131) for causing failures in frame-ancestors-from-serviceworker.https.html
2020-03-13 18:23:15 +02:00
d5b073f588
Bug 1620242 - Basic implementation for HTTPS Only Mode. r=ckerschb,mixedpuppy
...
Differential Revision: https://phabricator.services.mozilla.com/D62590
--HG--
rename : dom/security/test/csp/file_redirect_report.sjs => dom/security/test/https-only/file_redirect.sjs
rename : dom/security/test/csp/file_upgrade_insecure.html => dom/security/test/https-only/file_upgrade_insecure.html
rename : dom/security/test/csp/file_upgrade_insecure_server.sjs => dom/security/test/https-only/file_upgrade_insecure_server.sjs
rename : dom/security/test/csp/file_upgrade_insecure_wsh.py => dom/security/test/https-only/file_upgrade_insecure_wsh.py
extra : moz-landing-system : lando
2020-03-13 14:25:08 +00:00
5ea63e55c7
Bug 1599131: Remove carve outs for downloads within x-frame-options when fission enabled. r=smaug,mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D65949
--HG--
extra : moz-landing-system : lando
2020-03-13 14:20:20 +00:00
b02b3a6e1a
Backed out changeset a08637fb30c8 (bug 1143478) for causing bustages in /builds/worker/checkouts/gecko/ipc/mscom/Registration.cpp CLOSED TREE
...
--HG--
rename : mfbt/CompactPair.h => mfbt/Pair.h
2020-03-11 14:30:54 +02:00
a27e438c2d
Bug 1143478 - Rename mozilla::Pair to CompactPair. r=froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D64511
--HG--
rename : mfbt/Pair.h => mfbt/CompactPair.h
extra : moz-landing-system : lando
2020-03-11 12:18:13 +00:00
65ea85a94c
Bug 1603673 - Signal that we support web manifest processing in Fenix r=snorp,agi,ladybenko
...
When enabled, `link.relList.supports("manifest")` will return `true`.
Differential Revision: https://phabricator.services.mozilla.com/D58181
--HG--
extra : moz-landing-system : lando
2020-03-04 05:02:27 +00:00
e5f96b8645
Backed out changeset 27b9929438f8 (bug 1603673) for perma failures on browser_ssb_manifest_scope.js. CLOSED TREE
2020-03-04 06:34:48 +02:00
635fd4573d
Bug 1603673 - Signal that we support web manifest processing in Fenix r=snorp,agi,ladybenko
...
When enabled, `link.relList.supports("manifest")` will return `true`.
Differential Revision: https://phabricator.services.mozilla.com/D58181
--HG--
extra : moz-landing-system : lando
2020-03-04 03:10:06 +00:00
b2ccce862e
Backed out changeset 2c1dd534e937 (bug 1603673) for geckoview failures on webAppManifestPref. CLOSED TREE
2020-02-27 08:50:39 +02:00
2cc840acbb
Bug 1603673 - Signal that we support web manifest processing in Fenix r=snorp,agi,ladybenko
...
When enabled, `link.relList.supports("manifest")` will return `true`.
Differential Revision: https://phabricator.services.mozilla.com/D58181
--HG--
extra : moz-landing-system : lando
2020-02-26 18:41:59 +00:00
265c831dd7
Bug 1608970 - Record the addon name, id, and filepath of javascript files loaded into the parent process r=mixedpuppy,ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D60186
--HG--
extra : moz-landing-system : lando
2020-02-26 18:01:28 +00:00
ac5daf49e7
Bug 1594766: Respect Nosniff header for empty content-types r=ckerschb
...
Backed out changeset 35436d4e7917
Differential Revision: https://phabricator.services.mozilla.com/D60156
--HG--
extra : moz-landing-system : lando
2020-02-12 16:20:46 +00:00
f214413b6c
Bug 1583215 - Moved referrer-policy tests to dom/security folder. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D61999
--HG--
rename : dom/base/test/img_referrer_testserver.sjs => dom/security/test/referrer-policy/img_referrer_testserver.sjs
rename : dom/base/test/referrer_header.sjs => dom/security/test/referrer-policy/referrer_header.sjs
rename : dom/base/test/referrer_header_current_document_iframe.html => dom/security/test/referrer-policy/referrer_header_current_document_iframe.html
rename : dom/base/test/referrer_helper.js => dom/security/test/referrer-policy/referrer_helper.js
rename : dom/base/test/referrer_testserver.sjs => dom/security/test/referrer-policy/referrer_testserver.sjs
rename : dom/base/test/test_img_referrer.html => dom/security/test/referrer-policy/test_img_referrer.html
rename : dom/base/test/test_referrer_header_current_document.html => dom/security/test/referrer-policy/test_referrer_header_current_document.html
rename : dom/base/test/test_referrer_redirect.html => dom/security/test/referrer-policy/test_referrer_redirect.html
extra : moz-landing-system : lando
2020-02-12 08:52:21 +00:00
7f70f4117c
Bug 1601887 - XFO: Display error page but still fire onload event in case x-frame-options blocks a load.r=smaug
...
Differential Revision: https://phabricator.services.mozilla.com/D61862
--HG--
extra : moz-landing-system : lando
2020-02-11 18:40:54 +00:00
Frederik Braun
Sebastian Streich
Cosmin Sabou
Narcis Beleuzu
Mihai Alexandru Michis
julianwels
Christoph Kerschbaumer
Tim Huang
Razvan Maries
tkhan
Bogdan Tara
Kris Maglione
Andrea Marchesini
Nika Layzell
Simon Giesecke
Butkovits Atila
Emilio Cobos Álvarez
Matt Woodrow
Jonathan Kingston
Csoregi Natalia
Dorel Luca
Georg Koppen
Honza Bambas
Liang-Heng Chen
Andreea Pavel
Noemi Erli
Ciure Andrei
Stefan Hindli
nemesisBR
Chris Fronk
Marcos Cáceres
Marcos Cáceres
Tom Ritter
JulianWels