summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeLines
* Don't allow cross-origin POST redirects on 308 codes.Kyle Machulis2019-07-20-2/+2
| | | | | We already don't allow cross origin POST redirects on 307 redirects; this adds extra guards to make sure we don't allow them on 308s either.
* Bug 1555523.Henri Sivonen2019-07-20-11/+5
|
* Clarify comment with security.fileuri.unique_originwolfbeast2019-07-20-0/+1
|
* Treat all file: URIs as having a unique origin.wolfbeast2019-07-20-24/+35
| | | | | | | | | | | This prevents cross-file access from files loaded into the browser from the local file system, further restricting the origin policy of file: URIs. Added a pref to control this behavior for local file access if required for certain applications, since this change might break using the browser to run applications on the local file system that require access to local files.
* Check port safety for AltSvcwolfbeast2019-07-20-0/+5
|
* Truncate Buffer/Texture on GL_OOM.wolfbeast2019-07-19-3/+25
|
* Bug 1550498.Honza Bambas2019-07-19-3/+8
|
* Get RefPtr for IDBOpenDBRequest before using it. (DiD)wolfbeast2019-07-19-1/+6
|
* Merge pull request #1189 from JeroenVreeken/masterMoonchild2019-07-18-2/+28
|\ | | | | Add support for AAC audio in matroska/webm files
| * Merge branch 'master' of github.com:JeroenVreeken/UXPJeroen Vreeken2019-07-18-13874/+164
| |\
| * | Alow AAC audio codec data in matroska/webm streams.Jeroen Vreeken2019-07-18-2/+28
| | | | | | | | | | | | Allow CRC32 elements in matroska cluster elements.
* | | Revert "Capture delayed events and cancel as necessary."wolfbeast2019-07-18-20/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | Tag #1052 (backout). Backed out for creating issues like #1191 and other issue-less problems with e.g. losing the caret from text boxes. Of note: this was also backed out from m-c for similar reasons in Bug 1332433. This fixes #1191. This reverts commit 3424afccaebc71c4acd4fa9eadf519c408c5965b.
* | | Consider domain when deciding on inner window reuse.wolfbeast2019-07-18-2/+1
| | |
* | | Use a RefPtr to hold owner element ref when moving media resource loadBryce Van Dyk2019-07-18-1/+1
| | | | | | | | | | | | to background.
* | | Implement a threadsafe & revised version of http2PushedStream.wolfbeast2019-07-18-32/+144
| | |
* | | Merge branch 'nss-work'wolfbeast2019-07-18-32/+78
|\ \ \
| * | | Update NSS version.wolfbeast2019-07-17-7/+6
| | | |
| * | | Prohibit the use of RSASSA-PKCS1-v1_5 algorithms in TLS 1.3wolfbeast2019-07-17-0/+20
| | | | | | | | | | | | | | | | This is a spec compliance issue.
| * | | Don't unnecessarily strip leading 0's from key material during PKCS11 import.wolfbeast2019-07-17-18/+30
| | | |
| * | | Apply better input checking discipline.wolfbeast2019-07-17-7/+22
|/ / /
* | | Don't access gNeckoChild if not on main thread. (DiD)wolfbeast2019-07-16-7/+16
| | | | | | | | | | | | | | | This patch also makes UDPSocketChild::Bind return NS_ERROR_NOT_AVAILABLE when mBackgroundManager is null.
* | | Merge pull request #1181 from win7-7/FrameProperties-fix-commentsMoonchild2019-07-15-2/+2
|\ \ \ | | | | | | | | Fix comments for FrameProperties (no code changes)
| * | | Fix comments for Framepropertieswin7-72019-07-12-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://bugzilla.mozilla.org/show_bug.cgi?id=1373884 Fixes comments for Frameproperties. These comments went unnoticed earlier. No code changes.
* | | | Merge pull request #1182 from win7-7/fix-one-hangMoonchild2019-07-15-2/+4
|\ \ \ \ | | | | | | | | | | Dispatch a PluginRemoved event for actual plugins, not images/unknown/iframe-type <objects>
| * | | | Dispatch a PluginRemoved event for actual plugins, not ↵win7-72019-07-14-2/+4
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | images/unknown/iframe-type <objects> If a page uses or removes many <object> elements which are not actually plugins, loading the page goes to a crawl because UXP recalculates the plugin UI every time. Only dispatch a PluginRemoved event for actual plugins.
* | | | Merge pull request #1185 from FranklinDM/bk_newaddon-missingMoonchild2019-07-15-1/+1
|\ \ \ \ | | | | | | | | | | [BASILISK] A prompt should be shown for new foreign add-ons on startup
| * | | | [BASILISK] A prompt should be shown for new foreign add-ons on start upFranklinDM2019-07-15-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | - Follow up to: 2cbbc5de4596ef3436685fa3316eeed9af700249 and #937 - Should be `RecentWindow.getMostRecentBrowserWindow()` instead of `this.getMostRecentBrowserWindow()`.
* | | | | Merge pull request #1184 from FranklinDM/am-discoverpane-fixMoonchild2019-07-15-1/+1
|\ \ \ \ \ | |_|_|_|/ |/| | | | Show built-in Get Add-ons error page if there is no network connection.
| * | | | Issue #1183 - Fix incorrect conditional preventing Discover Error Page from ↵FranklinDM2019-07-15-1/+1
| |/ / / | | | | | | | | | | | | showing up
* | | | Block http auth prompt for cross-origin image subresources by default.wolfbeast2019-07-15-7/+28
| | | | | | | | | | | | | | | | | | | | | | | | Still allow this to be bypassed with a pref for those really rare corner cases where images are loaded cross-origin by design and the session hasn't been/can't be authenticated ahead of time.
* | | | Selectively allow ftp subresources in the blocked mode.wolfbeast2019-07-15-1/+21
| | | | | | | | | | | | | | | | | | | | - Allow "Save As..." downloads - Allow subresource use if the top-level document is also on FTP
* | | | Add preference to allow the loading of FTP subresources for corner caseswolfbeast2019-07-14-0/+19
| | | |
* | | | Follow up to #1177 - Clean up package-manifest.inMatt A. Tobin2019-07-14-12/+0
| | | |
* | | | Merge pull request #1177 from MoonchildProductions/remove_webideNew Tobin Paradigm2019-07-14-13812/+0
|\ \ \ \ | |/ / / |/| | | Remove WebIDE devtools component.
| * | | Remove WebIDE devtools component.wolfbeast2019-07-13-13812/+0
| |/ / | | | | | | | | | This resolves #1123
* | | Merge pull request #1175 from MoonchildProductions/deunify_capsMoonchild2019-07-13-5/+14
|\ \ \ | | | | | | | | Stop building /caps unified and fix deprot.
| * | | Stop building /caps unified and fix deprot.wolfbeast2019-07-12-5/+14
| |/ / | | | | | | | | | Tag #80
* | | Merge pull request #1176 from MoonchildProductions/deunify_chromeMoonchild2019-07-13-1/+2
|\ \ \ | |/ / |/| | Stop building /chrome unified and fix deprot.
| * | Stop building /chrome unified and fix deprot.wolfbeast2019-07-12-1/+2
|/ / | | | | | | Tag #80
* | Merge pull request #1171 from win7-7/FrameProperties-iterate-once-prMoonchild2019-07-11-36/+80
|\ \ | | | | | | Iterate the frame property list once to collect which child list properties we have
| * | Iterate the frame property list once to collect which child list properties ↵win7-72019-07-08-36/+80
| | | | | | | | | | | | | | | | | | we have Look into optimizing out the hashtable lookups from nsContainerFrame
* | | Merge pull request #1174 from JeroenVreeken/masterMoonchild2019-07-11-7/+51
|\ \ \ | | |/ | |/| Report matroska containers as supported and also support h.264 content in a matroska container file
| * | Make matroska mime type checking more consistent.Jeroen Vreeken2019-07-11-5/+10
| | |
| * | Allow matroska mime types for video element and MSEJeroen Vreeken2019-07-10-5/+44
|/ / | | | | | | Allow avc (h.264) content in matroska/webm containers
* | Merge branch 'master' of https://github.com/MoonchildProductions/UXPwolfbeast2019-07-08-20/+2
|\|
| * Merge pull request #1164 from g4jc/hotfix-removalNew Tobin Paradigm2019-07-08-20/+2
| |\ | | | | | | Issue #1160 - Remove unused HotFix preferences
| | * Issue #1160 - Remove HotFix Preferences from TelemetryGaming4JC2019-07-05-10/+1
| | |
| | * Issue #1160 - Remove HotFix preferences from testingGaming4JC2019-07-05-4/+1
| | |
| | * Issue #1160 - [Basilisk] Remove unused HotFix preferencesGaming4JC2019-07-05-6/+0
| | |
* | | Remove e10s info from about:supportwolfbeast2019-07-08-69/+0
|/ / | | | | | | tag #953