summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeLines
* Update blocklist and remove CRL entries.wolfbeast2018-02-08-1960/+479
|
* Use our provisioned blocklist server.wolfbeast2018-02-08-1/+1
|
* Add missing sanitization for HTML exporting of bookmarks.wolfbeast2018-02-08-1/+1
|
* Make the url bar strip javascript even when preceded by control characterswolfbeast2018-02-08-1/+1
|
* Implement "cookie-averse document objects".wolfbeast2018-02-08-0/+43
| | | | | See: https://html.spec.whatwg.org/multipage/dom.html#cookie-averse-document-object This resolves #196.
* Explicitly cancel channel after mixed content redirect.wolfbeast2018-02-08-1/+6
|
* Check ScriptExtensions property of combining marks when available.wolfbeast2018-02-08-3/+34
|
* Force punycode display for IDNs with a <dotless-i/j, combining mark above> ↵wolfbeast2018-02-08-5/+14
| | | | sequence.
* Don't allow proxies in the proto chain.wolfbeast2018-02-08-0/+14
|
* Fix ReadCompressedIndexDataValuesFromBlob().wolfbeast2018-02-08-2/+10
|
* Avoid potentially unsafe snprintf usage in FPSCounter.wolfbeast2018-02-08-6/+21
| | | | | | snprintf returns the number of bytes it would have written when it runs out of space. This patch makes sure we properly handle this unlikely event in FPSCounter. This patch also makes sure we don't print out the contents of an uninitialized buffer.
* Stop bypassing the Xray layer when walking the prototype chain.wolfbeast2018-02-08-15/+14
|
* Check for integer overflow in AesTask::DoCrypto() (DiD)wolfbeast2018-02-08-0/+5
| | | | | | | | | | | | After calling mResult.SetLength(mData.Length() + 16) we should check that the integer addition didn't overflow. It seems at the moment impossible to create ArrayBuffers of size >= 0x0xfffffff0, however adding a check here doesn't hurt. mResult.Length() is passed to the PK11 API functions as a maxOut parameter and should be checked by the softoken crypto algorithm implementations. AES-ECB and AES-GCM seem to do that correctly.
* Confirm launch of executables other than .exe on Windowswolfbeast2018-02-08-15/+24
|
* Cleanup async mozStorage callback management.wolfbeast2018-02-08-140/+88
| | | | Also avoid raw pointers in mozStorageAsyncStatementExecution.cpp.
* Perform LoadURL checks for WebExtensions.wolfbeast2018-02-08-0/+7
|
* Add rematerialized frames to the table on JitActivation after ↵wolfbeast2018-02-08-8/+71
| | | | rematerialization succeeds.
* Edit transactions should store their editor instance with strong referencewolfbeast2018-02-07-53/+150
| | | | Edit transactions should store their editor instance with a strong reference, and they should be released when the editor is destroyed.
* Bug 1261175.wolfbeast2018-02-07-0/+6
|
* WASM: Set OOM failure flag on alloc failure when context is available.wolfbeast2018-02-07-2/+6
|
* Merge branch 'ported-upstream'wolfbeast2018-02-07-144/+598
|\
| * Fix errant comma in 4470f78754246bbd134b65cad2e0a9638418677fwolfbeast2018-02-07-1/+1
| |
| * Avoid unnecessary string creation.wolfbeast2018-02-07-5/+19
| |
| * Add pluralrules to JS Intlwolfbeast2018-02-07-134/+542
| |
| * Limit displayed user/host strings to sane lengths.wolfbeast2018-02-07-0/+30
| |
| * Fix eslint warnings in about:webrtc.wolfbeast2018-02-07-5/+7
| |
* | Add configure variable verificationMatt A. Tobin2018-02-07-0/+102
| |
* | Use $(DEPTH) instead of hard coding relative depth in locales makefile.inMatt A. Tobin2018-02-06-5/+5
| |
* | Issue #11 - Catch package-manifest.in upMatt A. Tobin2018-02-06-2/+1
| |
* | Merge pull request #10 from trav90/media-workMoonchild2018-02-06-806/+2760
|\ \ | | | | | | Update FFmpeg code to n3.2-65-gee56777
| * | Update FFmpeg code to n3.2-65-gee56777trav902018-02-04-806/+2760
| | |
* | | Merge pull request #13 from MoonchildProductions/ported-upstreamMoonchild2018-02-06-17068/+84015
|\ \ \ | | |/ | |/| Ported upstream
| * | Update NSS to 3.32.1-RTMwolfbeast2018-02-06-16821/+83185
| | |
| * | Update NSPR to 4.16wolfbeast2018-02-06-247/+811
| | |
| * | CSP should only check host (not including path) when performing frame ↵wolfbeast2018-02-06-0/+19
| | | | | | | | | | | | | | | | | | ancestors checks. This has been explicitly stated in the CSP-3 spec.
* | | Merge branch 'ported-upstream'wolfbeast2018-02-06-57/+338
|\| |
| * | Always initialize nursery data structures even if size is smaller than one ↵wolfbeast2018-02-05-7/+7
| | | | | | | | | | | | chunk.
| * | Move FUZZING definition from toolkit to js.wolfbeast2018-02-05-24/+24
| | |
| * | Fix off-by-one in Vector::insert.wolfbeast2018-02-05-2/+54
| | |
| * | Reject opening intents with file data schemes.wolfbeast2018-02-05-0/+6
| | |
| * | Split double MoveOperands that conflict with floats.wolfbeast2018-02-05-1/+203
| | |
| * | Check for too large allocation size in BasicPlanarYCbCrImage::CopyData (DiD)wolfbeast2018-02-05-1/+8
| | |
| * | Avoid drag-and-drop of javascript: URIswolfbeast2018-02-05-21/+34
| | |
| * | Merge branch 'master' into ported-upstreamwolfbeast2018-02-05-2122/+413
| |\ \ | |/ / |/| |
* | | Don't use AppConstants in Services.jsmMatt A. Tobin2018-02-05-18/+19
| | |
* | | Merge branch 'branding-work'Matt A. Tobin2018-02-05-2104/+394
|\ \ \
| * | | Part 2Matt A. Tobin2018-02-05-1/+1
| | | |
| * | | De-firefox many thingsMatt A. Tobin2018-02-05-90/+90
| | | |
| * | | Official Vendor and Pale Moon special caseMatt A. Tobin2018-02-05-0/+35
| | | |
| * | | Update brandingMatt A. Tobin2018-02-05-90/+263
| | | |