Bug 1713619 - ESR 115: Exempt chrome/resource principals from canvas randomization/placeholders. r=lsalzman a=pascalc

Differential Revision: https://phabricator.services.mozilla.com/D197580

Original Revision: https://phabricator.services.mozilla.com/D198219

Differential Revision: https://phabricator.services.mozilla.com/D199685

Bug 1848013 - Do not call HandleTunnelResponse for a tunnel connection created for WebSocket,  a=pascalc

Original Revision: https://phabricator.services.mozilla.com/D196271

Differential Revision: https://phabricator.services.mozilla.com/D199473

Original Revision: https://phabricator.services.mozilla.com/D198218

Differential Revision: https://phabricator.services.mozilla.com/D199684

Original Revision: https://phabricator.services.mozilla.com/D199035

Differential Revision: https://phabricator.services.mozilla.com/D199374

No bug - Tagging 980ec32f825b2f54c05d16057a6e60d5b62d2ee2 with FIREFOX_115_7_0esr_RELEASE a=release CLOSED TREE DONTBUILD

Bug 1872723 - drop one year and a new one in heuristics_cc_exp.html to keep test passing. r=dimi a=dmeehan DONTBUILD


This failure started with year 2024 and is only observed on ESR 115. Other
branches have this chunk https://hg.mozilla.org/mozilla-central/rev/a79c1611c03e919dc45cac7de36aba5b62475513#l7.580
which fixes the issue.

To prevent changes to the shipping code, the credit card expiration year in
the test has been adjusted to keep the same index in the <select> element.

Differential Revision: https://phabricator.services.mozilla.com/D198380

No bug - Tagging 980ec32f825b2f54c05d16057a6e60d5b62d2ee2 with FIREFOX_115_7_0esr_BUILD1 a=release CLOSED TREE DONTBUILD

Differential Revision: https://phabricator.services.mozilla.com/D198526

This matches the behavior of XUL trees, and also what we did for the
languages listboxes and bug 1860214.

This is enough to fix the bug, but more in-depth fix incoming too.

Differential Revision: https://phabricator.services.mozilla.com/D198395

Differential Revision: https://phabricator.services.mozilla.com/D198163

Differential Revision: https://phabricator.services.mozilla.com/D197783

Bug 1865689 - Clarify access checks in devtools.inspectedWindow.eval r=rpl,devtools-reviewers,ochameau, a=dmeehan

and report a static error instead of including the URL in the message.

Differential Revision: https://phabricator.services.mozilla.com/D196133

This works around the lack of Cargo.lock.

Differential Revision: https://phabricator.services.mozilla.com/D198324

Differential Revision: https://phabricator.services.mozilla.com/D198046

Differential Revision: https://phabricator.services.mozilla.com/D198258

Differential Revision: https://phabricator.services.mozilla.com/D198114

Bug 1834718: Don't process a duplicate DocAccessible::ContentRemoved call for a DOM node we've already processed. r=morgan, a=dmeehan

ContentRemoved recursively walks both AllChildrenIterator and direct DOM children.
In addition, we might get duplicate notifications from DOM and layout, plus PruneOrInsertSubtree might do a recursive walk and it too calls ContentRemoved.
To avoid this duplicate processing, keep a set of removed DOM nodes on the DocAccessible which we clear after mutation events are processed.

Differential Revision: https://phabricator.services.mozilla.com/D196707

Bug 1872536 - Use MakeUniqueFallible for large buffers in image decoders/encoders. r=gfx-reviewers,lsalzman, a=dmeehan

Differential Revision: https://phabricator.services.mozilla.com/D197461

Bug 1873464 - For search related configurations, only validate additional properties on nightly builds.  a=dmeehan

Original Revision: https://phabricator.services.mozilla.com/D197920

Differential Revision: https://phabricator.services.mozilla.com/D198101

Original Revision: https://phabricator.services.mozilla.com/D197151

Differential Revision: https://phabricator.services.mozilla.com/D197990

No Bug, mozilla-esr115 repo-update HSTS HPKP remote-settings tld-suffixes - a=repo-update, r=dmeehan

Differential Revision: https://phabricator.services.mozilla.com/D197900

Differential Revision: https://phabricator.services.mozilla.com/D196106

Bug 1872956 - Avoid copying document URI in nsLayoutUtils::PaintFrame unless logging. r=layout-reviewers,tnikkel, a=dmeehan

Most of the time, we don't need to call Document::GetDocumentURI in
nsLayoutUtils::PaintFrame, as it is only used when we are logging or
dumping to the console. We should avoid calling it because this might be
quite large in the case of data URIs and result in OOM crashes. This is
most commonly observed with rasterizing SVG images.

Differential Revision: https://phabricator.services.mozilla.com/D197637

Differential Revision: https://phabricator.services.mozilla.com/D196021

Bug 1852420 - Ensure surface and crop rect used in ImageBitmap are valid. r=gfx-reviewers,lsalzman, a=dmeehan

When ImageBitmap::PrepareForDrawTarget is called, we must ensure
that the surface returned is acceptable to the given DrawTarget. If
it is not, then we need to recreate the surface from mData. We must
also ensure similar when we are creating a new ImageBitmap from
another ImageBitmap, as we don't know in what context it may be
used.

Similarly, we need to ensure we produce DataSourceSurface compatible
surfaces when we need to both crop and premultiply.

Additionally, we now no longer clear mPictureRect or mAlphaType
when we set mSurface with the cached, cropped data. Since we may
need to clear the cached surface, we need to know the original crop
rect and alpha.

Differential Revision: https://phabricator.services.mozilla.com/D188056

Original Revision: https://phabricator.services.mozilla.com/D195607

Differential Revision: https://phabricator.services.mozilla.com/D197611

Differential Revision: https://phabricator.services.mozilla.com/D197672

Differential Revision: https://phabricator.services.mozilla.com/D197667

Bug 1870262 - a subdomain of any HSTS superdomain that asserts includeSubdomains is HSTS (ESR115) r=jschanck, a=dmeehan


Previously, the HSTS implementation would only consider the first superdomain
that had any HSTS information and use the presence or absence of the
includeSubdomains directive to determine if the subdomain was HSTS. However,
the specification actually stipulates that if any superdomain that is HSTS
asserts includeSubdomains, the subdomain is HSTS.

Differential Revision: https://phabricator.services.mozilla.com/D197550

Bug 1867912 - Update Device Migration Spotlight string. r=fluent-reviewers,kpatenio, a=dmeehan, l10n=flod
Differential Revision: https://phabricator.services.mozilla.com/D196099

Bug 1867346 - Tweak strings for ASRouter spotlight message to encourage users without FxA accounts to create one. r=fluent-reviewers,flod, a=dmeehan, l10n=flod

Differential Revision: https://phabricator.services.mozilla.com/D195013

prewarming the AVDs was done for CI, where AVDs are used only once in
each task using them, and the cost of first use is high. Prewarming
reduces that overhead.

However, the ARM AVD is not used on CI (anymore?), so we don't need
them prewarmed. This unblocks the situation wrt the failure to run
the emulator on CI, while not addressing the underlying issues, so that
CoT keys can be rotated without waiting for the full situation to be
resolved.

Differential Revision: https://phabricator.services.mozilla.com/D195820

Bug 1866295 - Land new strings for ASRouter spotlight message to encourage users without FxA accounts to create one.  a=dmeehan

Original Revision: https://phabricator.services.mozilla.com/D194553

Differential Revision: https://phabricator.services.mozilla.com/D197601

Original Revision: https://phabricator.services.mozilla.com/D195731

Differential Revision: https://phabricator.services.mozilla.com/D197512

Differential Revision: https://phabricator.services.mozilla.com/D197482