searching for reviewer(ckerschb)
3ff0c89f3b2685948e9310d8f41fa69176532882: Bug 1292159 - Be more careful about removing the inherit principal bit on base channel redirects. r=ckerschb, a=sledru
Boris Zbarsky <bzbarsky@mit.edu> - Fri, 02 Sep 2016 17:55:38 -0400 - rev 312269
Push 243 by ryanvm@gmail.com at Tue, 18 Oct 2016 15:36:08 +0000
Bug 1292159 - Be more careful about removing the inherit principal bit on base channel redirects. r=ckerschb, a=sledru
7cf15b20b34161ed59a440800cfee5d19f8d385d: Bug 1242909, r=ckerschb a=sylvestre
Gijs Kruitbosch <gijskruitbosch@gmail.com> - Tue, 26 Jan 2016 11:52:31 +0000 - rev 311021
Bug 1242909, r=ckerschb a=sylvestre
7b9b0ce58fbf2acad28fd85a2a0ff8a3978cb7ea: Bug 1216687: Add nsILoadInfo flags for cookie policies. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sun, 06 Dec 2015 18:33:15 -0500 - rev 309960
Bug 1216687: Add nsILoadInfo flags for cookie policies. r=ckerschb
64f42cace9f354a50dc568fe5b73ffb64cf713a1: Bug 1226909 part 3: Move logic of when to initiate CORS preflight into channels. Allow CORS preflight to happen when doing a same-origin to cross-origin redirect. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sun, 06 Dec 2015 18:33:14 -0500 - rev 309958
Bug 1226909 part 3: Move logic of when to initiate CORS preflight into channels. Allow CORS preflight to happen when doing a same-origin to cross-origin redirect. r=ckerschb
dd7c08e6c57236263743eca64d2a1578eccbe569: Bug 1226909 part 2: Let CORS preflight logic grab information from nsILoadInfo rather than duplicate it. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sun, 06 Dec 2015 18:33:14 -0500 - rev 309957
Bug 1226909 part 2: Let CORS preflight logic grab information from nsILoadInfo rather than duplicate it. r=ckerschb
e772b5154e0cc25c61307f812d5185296430a07e: Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sun, 06 Dec 2015 18:33:14 -0500 - rev 309956
Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
09d64535bcda005593b0e29fcfe813f07e128b79: Bug 1216687: Add nsILoadInfo flags for cookie policies. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sat, 05 Dec 2015 01:46:21 -0800 - rev 309935
Bug 1216687: Add nsILoadInfo flags for cookie policies. r=ckerschb
4dbf06183e6c2cb1c288f779aaacb3feaadbad29: Bug 1226909 part 3: Move logic of when to initiate CORS preflight into channels. Allow CORS preflight to happen when doing a same-origin to cross-origin redirect. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sat, 05 Dec 2015 01:46:20 -0800 - rev 309933
Bug 1226909 part 3: Move logic of when to initiate CORS preflight into channels. Allow CORS preflight to happen when doing a same-origin to cross-origin redirect. r=ckerschb
26318a5e3006ab8a596dc015affcff43aac4ded8: Bug 1226909 part 2: Let CORS preflight logic grab information from nsILoadInfo rather than duplicate it. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sat, 05 Dec 2015 01:46:20 -0800 - rev 309932
Bug 1226909 part 2: Let CORS preflight logic grab information from nsILoadInfo rather than duplicate it. r=ckerschb
9ae2af3cf86d7df085146971d1e55a9b13fe4c9c: Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sat, 05 Dec 2015 01:46:20 -0800 - rev 309931
Bug 1226909 part 1: Do security checks in a redirect handler rather than when opening the redirected channel. r=ckerschb
bc44c9e55ef0e042c5a6c88bd241c08282b27f55: Bug 1171215 - Compute third-partyness in the loadinfo instead of nsIHttpChannelInternal so that other protocols correctly respect the third-party cookie pref. r=sicking/ckerschb
Blake Kaplan <mrbkap@gmail.com> - Mon, 30 Nov 2015 13:25:29 -0800 - rev 308894
Bug 1171215 - Compute third-partyness in the loadinfo instead of nsIHttpChannelInternal so that other protocols correctly respect the third-party cookie pref. r=sicking/ckerschb
5204bd4ad56c68506513f348959f14a17429a860: Bug 1198078 - Part 2: Add tests for mixed content blocking of scripts in workers; r=ckerschb
Ehsan Akhgari <ehsan@mozilla.com> - Fri, 11 Sep 2015 18:50:33 -0400 - rev 307769
Bug 1198078 - Part 2: Add tests for mixed content blocking of scripts in workers; r=ckerschb
12a852867c160cd0d107561c0626bd91b8e0ce0f: Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Tue, 10 Nov 2015 21:16:12 -0800 - rev 306507
Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
d12f758f5f362ffed1aa195d266289e1ed2a1123: Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Tue, 10 Nov 2015 21:16:12 -0800 - rev 306356
Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
4d6d9c1e52e452ec3139c89e3a0165d654f4cf83: Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Tue, 10 Nov 2015 21:16:12 -0800 - rev 306186
Bug 1223647: CSP erroneously inherited into dedicated workers. r=ckerschb
a735ff65e2397783697ff1eee31f85e069840e6d: Bug 1045891 - Web platform test fixes for child-src r=ckerschb,r=jgraham
Kate McKinley <kmckinley@mozilla.com> - Mon, 02 Nov 2015 13:41:39 -0800 - rev 306081
Bug 1045891 - Web platform test fixes for child-src r=ckerschb,r=jgraham
459d282e48abec62d6fdbc23dbe48e98abe12eff: Bug 1045891 - Tests for child-src r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Mon, 09 Nov 2015 16:42:26 +0900 - rev 306080
Bug 1045891 - Tests for child-src r=ckerschb
58d4c3876d0cd4ee42a48276a2c4ed6f7ee6e339: Bug 1045891 - CSP 2 child-src implementation r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Wed, 28 Oct 2015 16:32:27 -0700 - rev 306078
Bug 1045891 - CSP 2 child-src implementation r=ckerschb
ff2125aab1c2a6bd5dabb712b90710bfd8bc9edc: Bug 1222105 - Make test_report.html and test_blocked_uri_in_reports.html work with e10s. r=ckerschb
Andrew McCreight <continuation@gmail.com> - Fri, 06 Nov 2015 16:03:03 -0800 - rev 305781
Bug 1222105 - Make test_report.html and test_blocked_uri_in_reports.html work with e10s. r=ckerschb
2e9852b26be5819143b57add930032001dfa32e0: Bug 1221365 - Tests for "Is origin potentially trustworthy?" logic. r=ckerschb,bkelly
Paolo Amadini <paolo.mozmail@amadzone.org> - Fri, 06 Nov 2015 11:10:08 -0800 - rev 305756
Bug 1221365 - Tests for "Is origin potentially trustworthy?" logic. r=ckerschb,bkelly
a8d97dd72f3c74032c726227fc8a0a4621e75b74: Bug 1221365 - Move "Is origin potentially trustworthy?" logic outside ServiceWorkerManager.cpp. r=ckerschb,bkelly
Matthew Noorenberghe <mozilla@noorenberghe.ca> - Fri, 06 Nov 2015 11:10:17 -0800 - rev 305755
Bug 1221365 - Move "Is origin potentially trustworthy?" logic outside ServiceWorkerManager.cpp. r=ckerschb,bkelly
c590b18c5885040d6f2a6c711e9f1a8f87965ec1: Bug 1045891 - Web platform test fixes for child-src r=ckerschb,r=jgraham
Kate McKinley <kmckinley@mozilla.com> - Mon, 02 Nov 2015 13:41:39 -0800 - rev 305698
Bug 1045891 - Web platform test fixes for child-src r=ckerschb,r=jgraham
14818a2329a4846757098689aa0ef880ce8aee15: Bug 1045891 - CSP 2 child-src implementation. r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Wed, 28 Oct 2015 16:32:27 -0700 - rev 305697
Bug 1045891 - CSP 2 child-src implementation. r=ckerschb
e44d41985fed5022c9e745411b885ad137568a99: Bug 1045891 - Tests for child-src. r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Wed, 30 Sep 2015 15:26:25 -0700 - rev 305696
Bug 1045891 - Tests for child-src. r=ckerschb
895c42544609ed7e968ba2ef2c3940340331a1f2: Bug 1045891 - CSP 2 child-src implementation r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Wed, 28 Oct 2015 16:32:27 -0700 - rev 304885
Bug 1045891 - CSP 2 child-src implementation r=ckerschb
26e162e72ae11d6bebd938524d0c131db8dd4ee2: Bug 1045891 - Tests for child-src r=ckerschb
Kate McKinley <kmckinley@mozilla.com> - Wed, 30 Sep 2015 15:26:25 -0700 - rev 304884
Bug 1045891 - Tests for child-src r=ckerschb
d35eb3ac914be5e51e8b336cecb06eca5d90144c: Bug 1221365 - Tests for "Is origin potentially trustworthy?" logic. r=ckerschb r=bkelly, a=ritu
Paolo Amadini <paolo.mozmail@amadzone.org> - Fri, 06 Nov 2015 11:10:08 -0800 - rev 303701
Bug 1221365 - Tests for "Is origin potentially trustworthy?" logic. r=ckerschb r=bkelly, a=ritu
9814dd56b94ff808c2a036bbad902f16eba944c1: Bug 1221365 - Move "Is origin potentially trustworthy?" logic outside ServiceWorkerManager.cpp. r=ckerschb, r=bkelly, a=ritu
Matthew Noorenberghe <mozilla@noorenberghe.ca> - Fri, 06 Nov 2015 11:10:17 -0800 - rev 303700
Bug 1221365 - Move "Is origin potentially trustworthy?" logic outside ServiceWorkerManager.cpp. r=ckerschb, r=bkelly, a=ritu
6946d1be728f7df2e6206281732089c088a2f6bf: Bug 1175685 - add OriginAttribute to LoadInfo. r=jonas, r=ckerschb, r=michal
Dragana Damjanovic <dd.mozilla@gmail.com> - Wed, 21 Oct 2015 23:47:00 +0200 - rev 302364
Bug 1175685 - add OriginAttribute to LoadInfo. r=jonas, r=ckerschb, r=michal
3ff5a24c4364c2c30db6a93b94295d0583290249: Bug 1175685 - Add special appId for SAFEBROWSING_APP_ID. r=ckerschb
Dragana Damjanovic <dd.mozilla@gmail.com> - Wed, 21 Oct 2015 13:43:00 +0200 - rev 302363
Bug 1175685 - Add special appId for SAFEBROWSING_APP_ID. r=ckerschb
a31b2d7d07b80484ae2b66689559e39108a7ee71: Bug 1182571: Fix nsILoadInfo->GetContentPolicyType API to be less ambigious. Audit and fix all users of it. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Mon, 19 Oct 2015 11:14:54 -0700 - rev 301792
Bug 1182571: Fix nsILoadInfo->GetContentPolicyType API to be less ambigious. Audit and fix all users of it. r=ckerschb
b5fdf7bbfeb8fdf6fce5f564badffcdb3e0cbde6: Bug 1215745: Safer implemetation of nsJarChannel::AsyncOpen2. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Sun, 18 Oct 2015 20:20:29 -0700 - rev 301742
Bug 1215745: Safer implemetation of nsJarChannel::AsyncOpen2. r=ckerschb
dd458f2077e8ec30643b4bf10310c00790cfa970: Bug 1208559 - Do a CSP Check in ServiceWorkerManager::Register (r=ckerschb)
Bobby Holley <bobbyholley@gmail.com> - Sun, 18 Oct 2015 19:38:06 -0700 - rev 301737
Bug 1208559 - Do a CSP Check in ServiceWorkerManager::Register (r=ckerschb)
592aa7647aef73a4c2536d3131254b7f9b592f53: Bug 1207838 - Update text used for the security referrer command. r=ckerschb, r=jwalker, r=fkiefer
Kate McKinley <kmckinley@mozilla.com> - Mon, 28 Sep 2015 15:11:02 -0700 - rev 301634
Bug 1207838 - Update text used for the security referrer command. r=ckerschb, r=jwalker, r=fkiefer
8153ae231d16ee572c78a9d1d8b38fd5967b1d42: Bug 1182571: Fix nsILoadInfo->GetContentPolicyType API to be less ambigious. Audit and fix all users of it. r=ckerschb
Jonas Sicking <jonas@sicking.cc> - Thu, 15 Oct 2015 12:18:20 -0700 - rev 301341
Bug 1182571: Fix nsILoadInfo->GetContentPolicyType API to be less ambigious. Audit and fix all users of it. r=ckerschb
3ea27fe2f790397dbce194054d627ee0a3c18fc0: Bug 1211690 - Remove not needed nsILoadInfo get. r=ckerschb
Dragana Damjanovic <dd.mozilla@gmail.com> - Sun, 11 Oct 2015 18:13:10 +0200 - rev 300616
Bug 1211690 - Remove not needed nsILoadInfo get. r=ckerschb
fbd07ab0e098ffd9e429ccbc8958126cbe6b8b6a: Bug 1208629 - Properly support data: and blob: URIs with an integrity atribute. r=ckerschb
Francois Marier <francois@mozilla.com> - Wed, 07 Oct 2015 11:27:19 -0700 - rev 300101
Bug 1208629 - Properly support data: and blob: URIs with an integrity atribute. r=ckerschb
bc0c60cd2fb1db72ec2fca9c0e1b684d164538ce: Bug 1208755 HttpBaseChannel::ShouldIntercept() should not assume every channel has a LoadInfo. r=ckerschb
Ben Kelly <ben@wanderview.com> - Wed, 30 Sep 2015 13:48:37 -0700 - rev 298788
Bug 1208755 HttpBaseChannel::ShouldIntercept() should not assume every channel has a LoadInfo. r=ckerschb
11dfa76155057efdd00c87673af09726ccad3aea: Bug 1215745 - Safer implemetation of nsJarChannel::AsyncOpen2. r=ckerschb, a=sylvestre
Jonas Sicking <jonas@sicking.cc> - Sun, 18 Oct 2015 20:20:29 -0700 - rev 296526
Bug 1215745 - Safer implemetation of nsJarChannel::AsyncOpen2. r=ckerschb, a=sylvestre
228866eb07ab001458dacbe16d35010303cbb344: Bug 1208629 - Properly support data: and blob: URIs with an integrity atribute. r=ckerschb, a=lizzard
Francois Marier <francois@mozilla.com> - Wed, 07 Oct 2015 11:27:19 -0700 - rev 296378
Bug 1208629 - Properly support data: and blob: URIs with an integrity atribute. r=ckerschb, a=lizzard
5ff4c724c6b7bd64817388512fdcdaa3541c543d: Bug 1205448 - Ship subresource integrity enabled by default. r=ckerschb
Francois Marier <francois@mozilla.com> - Thu, 17 Sep 2015 16:33:35 -0700 - rev 295773
Bug 1205448 - Ship subresource integrity enabled by default. r=ckerschb
3ca0821a9b0569a1ceb00330dd1a528f65ce85bf: Bug 1198078 - Add support for TYPE_INTERNAL_SERVICE_WORKER; r=ckerschb,tanvi
Ehsan Akhgari <ehsan@mozilla.com> - Fri, 11 Sep 2015 18:48:43 -0400 - rev 295482
Bug 1198078 - Add support for TYPE_INTERNAL_SERVICE_WORKER; r=ckerschb,tanvi
212427250df615ead46d5fe0cea5be1656ad7100: Bug 1203234 - Re-enable -Wshadow warnings in /dom/security. r=ckerschb
Chris Peterson <cpeterson@mozilla.com> - Mon, 14 Sep 2015 22:54:22 -0700 - rev 295348
Bug 1203234 - Re-enable -Wshadow warnings in /dom/security. r=ckerschb
7117493f38b2712ef8d0713a55a44d8a83cb2200: Bug 1199049 - Part 11: Make it impossible to start CORS preflights from outside of Necko; r=jduell,ckerschb,sicking
Ehsan Akhgari <ehsan@mozilla.com> - Fri, 28 Aug 2015 11:25:04 -0400 - rev 294830
Bug 1199049 - Part 11: Make it impossible to start CORS preflights from outside of Necko; r=jduell,ckerschb,sicking
c0503e3636eca775f2a20624e95e719a37900795: Bug 1199049 - Part 4: Perform CORS preflights from nsHttpChannel before connecting to the network; r=jduell,ckerschb,sicking
Ehsan Akhgari <ehsan@mozilla.com> - Thu, 27 Aug 2015 14:40:31 -0400 - rev 294823
Bug 1199049 - Part 4: Perform CORS preflights from nsHttpChannel before connecting to the network; r=jduell,ckerschb,sicking
712ee72787adb5731a3a2ba27a7b33079ace12a6: Bug 1199049 - Part 3: Add a CORS preflight result notification API; r=jduell,ckerschb,sicking
Ehsan Akhgari <ehsan@mozilla.com> - Thu, 27 Aug 2015 14:37:07 -0400 - rev 294822
Bug 1199049 - Part 3: Add a CORS preflight result notification API; r=jduell,ckerschb,sicking
e7bb8fc8b53b35a2b7070eb0c98f1b15535b6c63: Bug 1202027 - Make SRI require CORS loads for cross-origin resources. r=ckerschb
Francois Marier <francois@mozilla.com> - Wed, 09 Sep 2015 00:11:38 -0700 - rev 294126
Bug 1202027 - Make SRI require CORS loads for cross-origin resources. r=ckerschb
6c7d5b56e472f8c1ddd8f6e965510072e98d8df1: Bug 1202015 - Better document the SRI strings for translators. r=ckerschb
Francois Marier <francois@mozilla.com> - Wed, 09 Sep 2015 00:10:25 -0700 - rev 294125
Bug 1202015 - Better document the SRI strings for translators. r=ckerschb
f0aa386a944f2c2e963bab24d62cedda2e241579: Bug 1198229 - GCLI: Rename securityDesc in gclicommands.properties to reflect new content. r=ckerschb, r=flod
Kate McKinley <kmckinley@mozilla.com> - Tue, 25 Aug 2015 10:26:31 -0700 - rev 292001
Bug 1198229 - GCLI: Rename securityDesc in gclicommands.properties to reflect new content. r=ckerschb, r=flod
793bc02002203267dfa825221fe0b6a18faf54ad: Bug 1196740 - Consider redirects when looking for SRI-eligibility. r=ckerschb
Francois Marier <francois@mozilla.com> - Tue, 25 Aug 2015 13:38:39 -0700 - rev 291925
Bug 1196740 - Consider redirects when looking for SRI-eligibility. r=ckerschb