[Pkg-mozext-commits] [no-resource-uri-leak] 05/09: Whitelist view-source: (inaccessible from content)
Hema Prathaban
hemaprathaban-guest at moszumanska.debian.org
Tue Jul 4 17:19:13 UTC 2017
This is an automated email from the git hooks/post-receive script.
hemaprathaban-guest pushed a commit to branch upstream
in repository no-resource-uri-leak.
commit b805b594761b24ce64ca0d25ed7aa8476f8f05d8
Author: nord-stream <nord-stream at ochaken.jp.eu.org>
Date: Thu Jun 16 16:21:10 2016 +0000
Whitelist view-source: (inaccessible from content)
---
src/resource-filter/content-policy.js | 4 +++-
version_info | 2 +-
2 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/src/resource-filter/content-policy.js b/src/resource-filter/content-policy.js
index 01856a5..dd47683 100644
--- a/src/resource-filter/content-policy.js
+++ b/src/resource-filter/content-policy.js
@@ -29,8 +29,10 @@ const policy = {__proto__: null
/* nsIContentPolicy */
,shouldLoad (typeCode, uri, originUri, node, expectedMime, extra, principal) {
+ // Note: view-source: scheme is no longer accessible from content (thus no leaks)
if (!uri || !uri.schemeIs ('resource') || !originUri
- || originUri.schemeIs ('chrome') || originUri.schemeIs ('resource')) {
+ || originUri.schemeIs ('chrome') || originUri.schemeIs ('resource')
+ || originUri.schemeIs ('view-source')) {
if (allowChromeURIs || !uri.schemeIs ('chrome')) {
return Ci.nsIContentPolicy.ACCEPT;
diff --git a/version_info b/version_info
index 3d1a3f1..eaa0efa 100644
--- a/version_info
+++ b/version_info
@@ -22,7 +22,7 @@
addon_id="no-resource-uri-leak"
# Canonical version of the addon (may be converted into different formats on build)
-addon_version="0.2.0"
+addon_version="0.2.1"
# Alpha versions (may not be feature complete): x.y.z~a1, x.y.z~a2, ...
# Beta versions (feature-frozen): x.y.z~b1, x.y.z~b2, ...
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-mozext/no-resource-uri-leak.git
More information about the Pkg-mozext-commits
mailing list