Simon Giesecke
de7bab0f06
Bug 1650145 - Replace all value uses of Empty[C]String by 0-length _ns literals. r=froydnj,geckoview-reviewers,agi
...
Differential Revision: https://phabricator.services.mozilla.com/D82325
2020-09-23 15:17:15 +00:00
Simon Giesecke
cd8b8939b9
Bug 1648010 - Replace uses of NS_LITERAL_STRING/NS_LITERAL_CSTRING macros by _ns literals. r=geckoview-reviewers,jgilbert,agi,hsivonen,froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D80860
2020-07-01 08:29:29 +00:00
Matt Woodrow
6ac3411051
Bug 1638711 - Do document security checks in parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75720
2020-06-08 23:16:04 +00:00
Bogdan Tara
d68a202c49
Backed out 9 changesets (bug 1638711) for test_block_toplevel_data_navigation.html failures CLOSED TREE
...
Backed out changeset b137e5dfcc57 (bug 1638711)
Backed out changeset 3529cf4e69b6 (bug 1638711)
Backed out changeset 417df721766f (bug 1638711)
Backed out changeset 5b312893e8e2 (bug 1638711)
Backed out changeset d6d396498f5e (bug 1638711)
Backed out changeset 77f6f2396343 (bug 1638711)
Backed out changeset c1d12e04bc27 (bug 1638711)
Backed out changeset 6e702b519ef0 (bug 1638711)
Backed out changeset 9e5a049b57ed (bug 1638711)
2020-06-08 12:36:09 +03:00
Matt Woodrow
7148736309
Bug 1638711 - Do document security checks in parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75720
2020-06-02 23:03:40 +00:00
Jonathan Kingston
832fdf2e6e
Bug 1642808 - Remove whitelist from dom security. r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D77949
2020-06-02 23:15:13 +00:00
Razvan Maries
a985167fa6
Backed out 7 changesets (bug 1638711) for perma failures on test_bug375314-2.html. CLOSED TREE
...
Backed out changeset 9643bf18ac31 (bug 1638711)
Backed out changeset 3d06b48e2e3a (bug 1638711)
Backed out changeset c2a1461890c3 (bug 1638711)
Backed out changeset 9eda9f6c5877 (bug 1638711)
Backed out changeset f776c30279f3 (bug 1638711)
Backed out changeset b34546384903 (bug 1638711)
Backed out changeset 47da03dd8365 (bug 1638711)
2020-05-28 04:25:38 +03:00
Matt Woodrow
74388c26ab
Bug 1638711 - Do document security checks in parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75720
2020-05-27 09:39:44 +00:00
Dorel Luca
34b793064e
Backed out 6 changesets (bug 1638711) for Geckoview failures in NavigationDelegateTest.loadUriReferrerSessionFileUrl.CLOSED TREE
...
Backed out changeset 22a7b8f16c44 (bug 1638711)
Backed out changeset 75d97b8df5ba (bug 1638711)
Backed out changeset 254871b49de9 (bug 1638711)
Backed out changeset 97d1d2390586 (bug 1638711)
Backed out changeset bebe76fca022 (bug 1638711)
Backed out changeset 164b842bea99 (bug 1638711)
2020-05-27 12:28:10 +03:00
Matt Woodrow
edc0d0a35f
Bug 1638711 - Do document security checks in parent process. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D75720
2020-05-27 00:32:05 +00:00
Narcis Beleuzu
31ca1d2605
Backed out changeset 2b4796470c0b (bug 1638826) for wpt failure on form-action-src-javascript-blocked.sub.html . CLOSED TREE
2020-05-25 13:52:24 +03:00
Christoph Kerschbaumer
00cb73739d
Bug 1638826: Make CSP permits function (e.g. restricting base-uri) consult subjectCSP before enforcing CSP. r=baku
...
Differential Revision: https://phabricator.services.mozilla.com/D75787
2020-05-25 08:24:09 +00:00
Christoph Kerschbaumer
026a7442f3
Bug 1636900: Remove TYPE_XBL from nsIContentPolicy. r=remote-protocol-reviewers,emilio,whimboo
...
Differential Revision: https://phabricator.services.mozilla.com/D74835
2020-05-13 06:53:28 +00:00
Christoph Kerschbaumer
2c610ecc1f
Bug 1582115: Exempt pdf.js from being subject to CSP from page. r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D74614
2020-05-12 08:51:08 +00:00
Matt Woodrow
3d6e4f24c6
Bug 1635995 - Allow CSP service to do redirect checks on documents in the parent, rather than doing it manually. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D74170
2020-05-08 02:53:57 +00:00
Sylvestre Ledru
34acbb653a
Bug 1619165 - Reformat recent changes to the Google coding style r=andi
...
First reformat with clang-format 10
# ignore-this-changeset
Differential Revision: https://phabricator.services.mozilla.com/D68802
2020-04-25 09:40:08 +00:00
Matt Woodrow
b186aff552
Bug 1625366 - Remove support for custom violation callbacks on nsCSPContext since it should no longer be needed. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D69911
--HG--
extra : moz-landing-system : lando
2020-04-10 22:15:21 +00:00
Christoph Kerschbaumer
4935907607
Bug 1627963: Remove requestContext from CSP shouldload and replace with fission friendly primitives. r=mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D70173
--HG--
extra : moz-landing-system : lando
2020-04-10 10:56:57 +00:00
Bogdan Tara
33bc5f92db
Backed out changeset 55c37e8a6563 (bug 1627963) for test_csp_reports.js failures CLOSED TREE
2020-04-09 13:18:25 +03:00
Christoph Kerschbaumer
667d022b80
Bug 1627963: Remove requestContext from CSP shouldload and replace with fission friendly primitives. r=mattwoodrow
...
Differential Revision: https://phabricator.services.mozilla.com/D70173
--HG--
extra : moz-landing-system : lando
2020-04-09 07:47:52 +00:00
Matt Woodrow
70bbf6da2a
Bug 1589275 - Add an option to provide a custom violation event callback. ?rckerschb r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D68496
--HG--
extra : moz-landing-system : lando
2020-04-01 22:09:53 +00:00
Narcis Beleuzu
708c3f91f3
Backed out 2 changesets (bug 1589275) for bustages on dom/security . CLOSED TREE
...
Backed out changeset e2bab42cfd60 (bug 1589275)
Backed out changeset d0a77f4a0ad8 (bug 1589275)
2020-04-01 09:48:11 +03:00
Matt Woodrow
feb48f19fb
Bug 1589275 - Add an option to provide a custom violation event callback. ?rckerschb r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D68496
--HG--
extra : moz-landing-system : lando
2020-03-31 23:28:42 +00:00
Simon Giesecke
ff33957d91
Bug 1613985 - Use default for equivalent-to-default constructors/destructors in dom/security. r=smaug
...
Depends on D65181
Differential Revision: https://phabricator.services.mozilla.com/D65182
--HG--
extra : moz-landing-system : lando
2020-03-03 22:07:43 +00:00
Matt Woodrow
8b2edb9b62
Bug 1617789 - Don't require loadInfo for navigate-to. r=nika
...
Differential Revision: https://phabricator.services.mozilla.com/D63995
--HG--
extra : moz-landing-system : lando
2020-03-01 04:14:43 +00:00
Dorel Luca
109ac83385
Backed out 7 changesets (bug 1617500, bug 1617789, bug 1617434) for build bustage in dom/clients/manager/ClientChannelHelper.cpp
...
Backed out changeset 1a62904bfcb7 (bug 1617500)
Backed out changeset 592a5ddf6acf (bug 1617789)
Backed out changeset 995edb2e7f98 (bug 1617789)
Backed out changeset f3518664d654 (bug 1617789)
Backed out changeset 98ea95f7fe87 (bug 1617789)
Backed out changeset c5f1f70efb88 (bug 1617434)
Backed out changeset 1563faa24d15 (bug 1617434)
2020-03-01 05:57:57 +02:00
Matt Woodrow
7600457773
Bug 1617789 - Don't require loadInfo for navigate-to. r=nika
...
Differential Revision: https://phabricator.services.mozilla.com/D63995
--HG--
extra : moz-landing-system : lando
2020-03-01 01:25:50 +00:00
Gabriele Svelto
ace6d1063f
Bug 1600545 - Remove useless inclusions of header files generated from IDL files in dom/ r=Ehsan
...
The inclusions were removed with the following very crude script and the
resulting breakage was fixed up by hand. The manual fixups did either
revert the changes done by the script, replace a generic header with a more
specific one or replace a header with a forward declaration.
find . -name "*.idl" | grep -v web-platform | grep -v third_party | while read path; do
interfaces=$(grep "^\(class\|interface\).*:.*" "$path" | cut -d' ' -f2)
if [ -n "$interfaces" ]; then
if [[ "$interfaces" == *$'\n'* ]]; then
regexp="\("
for i in $interfaces; do regexp="$regexp$i\|"; done
regexp="${regexp%%\\\|}\)"
else
regexp="$interfaces"
fi
interface=$(basename "$path")
rg -l "#include.*${interface%%.idl}.h" . | while read path2; do
hits=$(grep -v "#include.*${interface%%.idl}.h" "$path2" | grep -c "$regexp" )
if [ $hits -eq 0 ]; then
echo "Removing ${interface} from ${path2}"
grep -v "#include.*${interface%%.idl}.h" "$path2" > "$path2".tmp
mv -f "$path2".tmp "$path2"
fi
done
fi
done
Differential Revision: https://phabricator.services.mozilla.com/D55442
--HG--
extra : moz-landing-system : lando
2019-12-06 09:24:56 +00:00
Dorel Luca
a381d5c96d
Backed out changeset f6e53d1c6518 (bug 1600545) for Android build bustage. CLOSED TREE
2019-12-04 17:32:27 +02:00
Gabriele Svelto
bc9290f767
Bug 1600545 - Remove useless inclusions of header files generated from IDL files in dom/ r=Ehsan
...
The inclusions were removed with the following very crude script and the
resulting breakage was fixed up by hand. The manual fixups did either
revert the changes done by the script, replace a generic header with a more
specific one or replace a header with a forward declaration.
find . -name "*.idl" | grep -v web-platform | grep -v third_party | while read path; do
interfaces=$(grep "^\(class\|interface\).*:.*" "$path" | cut -d' ' -f2)
if [ -n "$interfaces" ]; then
if [[ "$interfaces" == *$'\n'* ]]; then
regexp="\("
for i in $interfaces; do regexp="$regexp$i\|"; done
regexp="${regexp%%\\\|}\)"
else
regexp="$interfaces"
fi
interface=$(basename "$path")
rg -l "#include.*${interface%%.idl}.h" . | while read path2; do
hits=$(grep -v "#include.*${interface%%.idl}.h" "$path2" | grep -c "$regexp" )
if [ $hits -eq 0 ]; then
echo "Removing ${interface} from ${path2}"
grep -v "#include.*${interface%%.idl}.h" "$path2" > "$path2".tmp
mv -f "$path2".tmp "$path2"
fi
done
fi
done
Differential Revision: https://phabricator.services.mozilla.com/D55442
--HG--
extra : moz-landing-system : lando
2019-12-04 15:01:19 +00:00
Sebastian Streich
c494962b4b
Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D47125
--HG--
extra : moz-landing-system : lando
2019-09-30 10:38:32 +00:00
Noemi Erli
68edbc8842
Backed out changeset c3579f540cd7 (bug 1583932) for causing xpcshell failures in test_csp_reports.js CLOSED TREE
...
--HG--
extra : rebase_source : 5c71e17d6c48d398a11aa919208963aa47209064
extra : amend_source : 8802cdb433e0f770c0648a91bb876dae7dd51100
2019-09-26 17:00:16 +03:00
Sebastian Streich
245b87853c
Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D47125
--HG--
extra : moz-landing-system : lando
2019-09-26 12:34:17 +00:00
Noemi Erli
ba7231bd82
Backed out changeset af8ca81b90e4 (bug 1583932) for causing build bustages in nsCSPService.cpp CLOSED TREE
2019-09-26 14:31:33 +03:00
Sebastian Streich
84f7f4dcb4
Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D47125
--HG--
extra : moz-landing-system : lando
2019-09-26 10:16:36 +00:00
Matt Woodrow
1a317c31b2
Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D46742
--HG--
extra : moz-landing-system : lando
2019-09-25 08:25:42 +00:00
Matt Woodrow
edbd9409af
Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D46740
--HG--
extra : moz-landing-system : lando
2019-09-25 08:25:22 +00:00
Cosmin Sabou
89350c28cd
Backed out 4 changesets (bug 1583076) for causing build bustages on nsCSPService.cpp. CLOSED TREE
...
Backed out changeset e3e31e1dfc13 (bug 1583076)
Backed out changeset 97e4bfbc5578 (bug 1583076)
Backed out changeset 6ccf5880c324 (bug 1583076)
Backed out changeset b4140efc183d (bug 1583076)
2019-09-25 08:22:10 +03:00
Matt Woodrow
f6c8016c29
Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D46742
--HG--
extra : moz-landing-system : lando
2019-09-25 04:51:13 +00:00
Matt Woodrow
6aa089f744
Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb
...
Differential Revision: https://phabricator.services.mozilla.com/D46740
--HG--
extra : moz-landing-system : lando
2019-09-25 04:50:44 +00:00
Bogdan Tara
f1b65b22c7
Backed out 5 changesets (bug 1583076) for href-location-redirected-blocked.sub.html failures CLOSED TREE
...
Backed out changeset dd4117098844 (bug 1583076)
Backed out changeset 97bc75b1cfe1 (bug 1583076)
Backed out changeset 084b244a33c0 (bug 1583076)
Backed out changeset 1baaf14e2451 (bug 1583076)
Backed out changeset 56c3918b5c21 (bug 1583076)
2019-09-25 00:53:46 +03:00
Mihai Alexandru Michis
ca805e6ecb
Bug 1583076 - Fix bustages in nsCSPService.cpp:317:12 a=bustage-fix CLOSED TREE
2019-09-24 23:15:00 +03:00
Matt Woodrow
ce6f028211
Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb
...
Depends on D46741
Differential Revision: https://phabricator.services.mozilla.com/D46742
--HG--
extra : moz-landing-system : lando
2019-09-24 12:13:51 +00:00
Matt Woodrow
29c34b4b28
Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb
...
Depends on D46739
Differential Revision: https://phabricator.services.mozilla.com/D46740
--HG--
extra : moz-landing-system : lando
2019-09-24 12:12:18 +00:00
Benjamin
934da4e096
Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8
...
https://www.w3.org/TR/CSP3/#directive-navigate-to
Differential Revision: https://phabricator.services.mozilla.com/D37139
--HG--
extra : moz-landing-system : lando
2019-09-10 22:33:51 +00:00
Dorel Luca
ec62854d68
Backed out changeset 890bcaee9b7d (bug 1529068) for causing massive tier2 failures on central in dom/security/test/csp/test_navigate_to.html. CLOSED TREE
2019-09-05 09:47:35 +03:00
Benjamin
2202fa3333
Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8
...
https://www.w3.org/TR/CSP3/#directive-navigate-to
Differential Revision: https://phabricator.services.mozilla.com/D37139
--HG--
extra : moz-landing-system : lando
2019-09-04 20:29:37 +00:00
Csoregi Natalia
2dd3b18187
Backed out changeset 99b313550fb8 (bug 1529068) for eslint failure on test_navigate_to.html. CLOSED TREE
2019-09-04 21:15:18 +03:00
Benjamin
33379674f8
Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8
...
https://www.w3.org/TR/CSP3/#directive-navigate-to
Differential Revision: https://phabricator.services.mozilla.com/D37139
--HG--
extra : moz-landing-system : lando
2019-09-04 17:44:14 +00:00
Matt Woodrow
e579f452c1
Bug 1556489 - P8. Add CSPService::ConsultCSPForRedirect. r=mayhemer,ckerschb
...
We extract the code from CSPService::AsyncOnChannelRedirect so that we can use it in a follow-up change.
Differential Revision: https://phabricator.services.mozilla.com/D40965
2019-09-03 10:19:12 +10:00