gecko-dev

Граф коммитов

Автор	SHA1	Сообщение	Дата
Sebastian Streich	c494962b4b	Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D47125 --HG-- extra : moz-landing-system : lando	2019-09-30 10:38:32 +00:00
Noemi Erli	68edbc8842	Backed out changeset c3579f540cd7 (bug 1583932) for causing xpcshell failures in test_csp_reports.js CLOSED TREE --HG-- extra : rebase_source : 5c71e17d6c48d398a11aa919208963aa47209064 extra : amend_source : 8802cdb433e0f770c0648a91bb876dae7dd51100	2019-09-26 17:00:16 +03:00
Sebastian Streich	245b87853c	Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D47125 --HG-- extra : moz-landing-system : lando	2019-09-26 12:34:17 +00:00
Noemi Erli	ba7231bd82	Backed out changeset af8ca81b90e4 (bug 1583932) for causing build bustages in nsCSPService.cpp CLOSED TREE	2019-09-26 14:31:33 +03:00
Sebastian Streich	84f7f4dcb4	Bug 1583932 - Remove aRequestOrigin from nsCSPContext::ShouldLoad r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D47125 --HG-- extra : moz-landing-system : lando	2019-09-26 10:16:36 +00:00
Matt Woodrow	1a317c31b2	Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D46742 --HG-- extra : moz-landing-system : lando	2019-09-25 08:25:42 +00:00
Matt Woodrow	edbd9409af	Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D46740 --HG-- extra : moz-landing-system : lando	2019-09-25 08:25:22 +00:00
Cosmin Sabou	89350c28cd	Backed out 4 changesets (bug 1583076) for causing build bustages on nsCSPService.cpp. CLOSED TREE Backed out changeset e3e31e1dfc13 (bug 1583076) Backed out changeset 97e4bfbc5578 (bug 1583076) Backed out changeset 6ccf5880c324 (bug 1583076) Backed out changeset b4140efc183d (bug 1583076)	2019-09-25 08:22:10 +03:00
Matt Woodrow	f6c8016c29	Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D46742 --HG-- extra : moz-landing-system : lando	2019-09-25 04:51:13 +00:00
Matt Woodrow	6aa089f744	Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D46740 --HG-- extra : moz-landing-system : lando	2019-09-25 04:50:44 +00:00
Bogdan Tara	f1b65b22c7	Backed out 5 changesets (bug 1583076) for href-location-redirected-blocked.sub.html failures CLOSED TREE Backed out changeset dd4117098844 (bug 1583076) Backed out changeset 97bc75b1cfe1 (bug 1583076) Backed out changeset 084b244a33c0 (bug 1583076) Backed out changeset 1baaf14e2451 (bug 1583076) Backed out changeset 56c3918b5c21 (bug 1583076)	2019-09-25 00:53:46 +03:00
Mihai Alexandru Michis	ca805e6ecb	Bug 1583076 - Fix bustages in nsCSPService.cpp:317:12 a=bustage-fix CLOSED TREE	2019-09-24 23:15:00 +03:00
Matt Woodrow	ce6f028211	Bug 1583076 - Check navigate-to in ConsultCSPForRedirect since this runs for DocumentChannel. r=ckerschb Depends on D46741 Differential Revision: https://phabricator.services.mozilla.com/D46742 --HG-- extra : moz-landing-system : lando	2019-09-24 12:13:51 +00:00
Matt Woodrow	29c34b4b28	Bug 1583076 - Make nsCSPService::ConsultCSPForRedirect return both the AsyncOnChannelRedirect result, as well as an optional result to cancel the old channel with. r=ckerschb Depends on D46739 Differential Revision: https://phabricator.services.mozilla.com/D46740 --HG-- extra : moz-landing-system : lando	2019-09-24 12:12:18 +00:00
Benjamin	934da4e096	Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8 https://www.w3.org/TR/CSP3/#directive-navigate-to Differential Revision: https://phabricator.services.mozilla.com/D37139 --HG-- extra : moz-landing-system : lando	2019-09-10 22:33:51 +00:00
Dorel Luca	ec62854d68	Backed out changeset 890bcaee9b7d (bug 1529068) for causing massive tier2 failures on central in dom/security/test/csp/test_navigate_to.html. CLOSED TREE	2019-09-05 09:47:35 +03:00
Benjamin	2202fa3333	Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8 https://www.w3.org/TR/CSP3/#directive-navigate-to Differential Revision: https://phabricator.services.mozilla.com/D37139 --HG-- extra : moz-landing-system : lando	2019-09-04 20:29:37 +00:00
Csoregi Natalia	2dd3b18187	Backed out changeset 99b313550fb8 (bug 1529068) for eslint failure on test_navigate_to.html. CLOSED TREE	2019-09-04 21:15:18 +03:00
Benjamin	33379674f8	Bug 1529068 - Implementation of the navigate-to CSP directive as defined in CSP Level 3. r=ckerschb,mccr8 https://www.w3.org/TR/CSP3/#directive-navigate-to Differential Revision: https://phabricator.services.mozilla.com/D37139 --HG-- extra : moz-landing-system : lando	2019-09-04 17:44:14 +00:00
Matt Woodrow	e579f452c1	Bug 1556489 - P8. Add CSPService::ConsultCSPForRedirect. r=mayhemer,ckerschb We extract the code from CSPService::AsyncOnChannelRedirect so that we can use it in a follow-up change. Differential Revision: https://phabricator.services.mozilla.com/D40965	2019-09-03 10:19:12 +10:00
Andreea Pavel	8f56db01f7	Backed out changeset d0aae34d9b95 (bug 1529068) for failing form-redirected-blocked.sub.html on a CLOSED TREE --HG-- extra : rebase_source : 4d7a73e1f40de001031c61fba240c57961a902d8	2019-08-07 01:39:29 +03:00
Benjamin	455d7a7789	Bug 1529068 - navigate-to r=ckerschb,mccr8 Implementation of the navigate-to CSP directive as defined in CSP Level 3, https://www.w3.org/TR/CSP3/#directive-navigate-to Differential Revision: https://phabricator.services.mozilla.com/D37139 --HG-- extra : moz-landing-system : lando	2019-08-06 18:27:45 +00:00
Tom Schuster	af8f619ad2	Bug 1558915 - Use infallible nsIURI::SchemeIs in dom/security. r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D39779 --HG-- extra : moz-landing-system : lando	2019-07-30 07:23:18 +00:00
Nicholas Nethercote	18fae65f38	Bug 1563139 - Remove StaticPrefs.h. r=glandium This requires replacing inclusions of it with inclusions of more specific prefs files. The exception is that StaticPrefsAll.h, which is equivalent to StaticPrefs.h, and is used in `Codegen.py` because doing something smarter is tricky and suitable for a follow-up. As a result, any change to StaticPrefList.yaml will still trigger recompilation of all the generated DOM bindings files, but that's still a big improvement over trigger recompilation of every file that uses static prefs. Most of the changes in this commit are very boring. The only changes that are not boring are modules/libpref/*, Codegen.py, and ServoBindings.toml. Differential Revision: https://phabricator.services.mozilla.com/D39138 --HG-- extra : moz-landing-system : lando	2019-07-26 01:10:23 +00:00
Christoph Kerschbaumer	7cdbee6cd7	Bug 1496418: Update Content Policy checks and allow CSP checks for system principal triggered loads. r=mccr8,baku Differential Revision: https://phabricator.services.mozilla.com/D32217 --HG-- extra : moz-landing-system : lando	2019-06-03 06:04:25 +00:00
Christoph Kerschbaumer	b633427366	Bug 965637: Move CSP from Principal into Client, part 1: backend changes. r=mccr8 Differential Revision: https://phabricator.services.mozilla.com/D27654 --HG-- extra : moz-landing-system : lando	2019-05-21 23:14:27 +00:00
Sylvestre Ledru	e226046cb8	Bug 1547143 - Format the tree: Be prescriptive with the pointer style (left) r=Ehsan # ignore-this-changeset Depends on D28954 Differential Revision: https://phabricator.services.mozilla.com/D28956 --HG-- extra : moz-landing-system : lando	2019-05-01 08:47:10 +00:00
Honza Bambas	5f945421d4	Bug 1493599 - Expose reason of security blocking on nsILoadInfo and add new http observer notification for failed asyncOpens, r=Honza,dragana Differential Revision: https://phabricator.services.mozilla.com/D23150 --HG-- extra : moz-landing-system : lando	2019-04-26 10:59:41 +00:00
Christoph Kerschbaumer	54df1cb98c	Bug 1528677: Remove nullchecks for loadinfo since we have loadinfo on all channels. r=baku	2019-02-20 13:27:25 +01:00
Christoph Kerschbaumer	d65faafb09	Bug 1509738: CSP snapshot nonce at load start time. r=baku --HG-- extra : rebase_source : ea232b7a3aeae9c18895e885d1536ca58c8de1bd extra : amend_source : b0c351f8c0c1a5eb7865a735f8dc5bafb42384f1	2019-02-13 20:45:29 +01:00
Noemi Erli	0a63dd9be6	Backed out 2 changesets (bug 1509738) for failures in propagate-nonce-external-classic.html Backed out changeset fbf4b73c8786 (bug 1509738) Backed out changeset 53f624bc7c22 (bug 1509738)	2019-02-13 16:22:44 +02:00
Christoph Kerschbaumer	7859700e5d	Bug 1509738 - CSP snapshot nonce at load start time. r=baku --HG-- extra : rebase_source : b532f519b79a3bc14ece0c0ee829edd400149e48 extra : amend_source : d4b8fba240a9d28437ee436b94313fd1602426c4 extra : histedit_source : 6af35eb388f6c23d80d8412533fec02abe2d4cff	2019-02-13 13:46:50 +01:00
Andreea Pavel	e09dd2a72d	Backed out 2 changesets (bug 1509738) for failing propagate-nonce-external-classic.html on a CLOSED TREE Backed out changeset 5cbc3f79a126 (bug 1509738) Backed out changeset 44a945b21f87 (bug 1509738)	2019-02-13 02:18:28 +02:00
Christoph Kerschbaumer	6111ccf5fd	Bug 1509738: CSP snapshot nonce at load start time r=baku Differential Revision: https://phabricator.services.mozilla.com/D19519 --HG-- extra : moz-landing-system : lando	2019-02-12 18:01:32 +00:00
Andrea Marchesini	3000d51d8b	Bug 1518948 - Wrong loadInfo check in CSPService::AsyncOnChannelRedirect, r=ckerschb	2019-01-10 10:52:13 +01:00
Dave Townsend	4e82401311	Bug 1515863, r=valentin,ckerschb Differential Revision: https://phabricator.services.mozilla.com/D15728 --HG-- extra : rebase_source : 2e1c705dd97d458080387896fd7a1f0e88523e06	2018-04-11 12:52:47 -07:00
Sylvestre Ledru	265e672179	Bug 1511181 - Reformat everything to the Google coding style r=ehsan a=clang-format # ignore-this-changeset --HG-- extra : amend_source : 4d301d3b0b8711c4692392aa76088ba7fd7d1022	2018-11-30 11:46:48 +01:00
Christoph Kerschbaumer	ed1f7a623a	Bug 1503575 - Remove unused mAppStatusCache from nsCSPService. r=baku	2018-10-31 15:35:27 +01:00
Christoph Kerschbaumer	8b14b77870	Bug `1500083` - Exempt TYPE_XBL loads from CSP. r=dveditz --HG-- extra : rebase_source : 0812c9ad5704e7804c8e0c630a35735b65c7469b	2018-10-22 14:50:58 +02:00
Andrea Marchesini	4439acd683	Bug 1498510 - Move nsICSPEventListener out of CSP object, r=ckerschb	2018-10-23 08:17:13 +02:00
Timothy Guan-tin Chien	9464df5529	Bug 1490793 - Localization DTDs should not be subject to CSP r=ckerschb Differential Revision: https://phabricator.services.mozilla.com/D5713 --HG-- extra : moz-landing-system : lando	2018-09-18 08:17:41 +00:00
Andrea Marchesini	44ce53c72e	Bug 1476592 - Remove the cache from nsCSPContext - part 2 - sendViolationReports parameter, r=ckerschb, r=aosmond	2018-08-01 06:35:24 +02:00
Nicholas Nethercote	fc1f4bb4ae	Bug 1476820 - Convert some VarCache prefs in dom/security/ to use StaticPrefs. r=ckerschb Specifically: - "security.csp.enable" - "security.csp.experimentalEnabled" - "security.csp.enableStrictDynamic" - "security.csp.reporting.script-sample.max-length" - "security.csp.enable_violation_events" MozReview-Commit-ID: G1ie4ut9QaK --HG-- extra : rebase_source : d6b5a0e79eb7046a13a8b4fe957c82c11831c86c	2018-07-19 10:43:29 +10:00
Andrea Marchesini	d3cf48d4ba	Bug 1332422 - CSP should not use 'aExtra' to indicate redirects within ContentPolicy, r=ckerschb Instead, let's pass a nsIURI object to indicate when we have to check a redirect CSP loading.	2018-07-19 13:25:50 +02:00
vinoth	d2f222b912	Bug 1469150 - CSP: Scripts with valid nonce get blocked if URL redirects is fixed r=ckerschb Reviewers: ckerschb Reviewed By: ckerschb Subscribers: ckerschb Bug #: 1469150 Differential Revision: https://phabricator.services.mozilla.com/D1720 --HG-- extra : rebase_source : 2dd2e731426dad07c834b0826c588e6cd23932d5 extra : amend_source : c93b71f04eaedbfbc4831ddabe041fc3d4face92	2018-06-22 20:35:14 +03:00
Andrea Marchesini	4dbf30fc68	Bug 1446922 - Remove the leading 'a' from variables within the various ::ShouldLoad() implementations, r=qdot	2018-05-30 21:21:17 +02:00
Christoph Kerschbaumer	a929955d1f	Bug 1439713 - Change nsIContentPolicy shouldLoad to take an <uri, loadInfo> pair instead of the various args. r=bz	2018-03-29 12:16:23 +02:00
Christoph Kerschbaumer	e8f5150467	Bug 1439444: resource and chrome images and styles should not be subject to CSP. r=gijs	2018-03-01 13:45:04 +01:00
Christoph Kerschbaumer	1407489a4b	Bug 1432358: Make resource URIs subject to CSP. r=gijs --HG-- extra : source : 60852dec9e041887bea80313a70ad2a4cba745a6 extra : intermediate-source : 91c948c94506089d6f40dc59d13c75ab78ce914d	2018-01-25 14:20:31 +01:00
Sebastian Hengst	a6cab8c4e8	Backed out 4 changesets (bug 1432358) for failing xpcshell's test_ext_contentscript_triggeringPrincipal.js Backed out changeset ef7b8eef07c1 (bug 1432358) Backed out changeset 2fa11c525da3 (bug 1432358) Backed out changeset a67e95bd0ccf (bug 1432358) Backed out changeset 91c948c94506 (bug 1432358)	2018-02-12 19:58:28 +02:00

1 2

93 Коммитов