The previous implementation made us think that stuff was visible when in
fact it was not.

Differential Revision: https://phabricator.services.mozilla.com/D79345

Differential Revision: https://phabricator.services.mozilla.com/D81387

Differential Revision: https://phabricator.services.mozilla.com/D82371

Differential Revision: https://phabricator.services.mozilla.com/D81536

Differential Revision: https://phabricator.services.mozilla.com/D79913

Bug 1644627 - Set the WebAuthn `appid` client extension result properly r=bbeurdouche,keeler a=RyanVM

The semantics of what Firefox implemented for the AppID extension for WebAuthn
were wrong. Notably: It was always emitted if the extension were used, and
always set to `true`. The specification has more nuance so that RPs can use
that result to determine what to validate against.

As a reminder since it's been a while, this change has impacts to the WebAuthn
Token Manager layer, so there's duplicative changes in the soft token and in
the HID token, _and the automated tests only test the soft token_. Manual
testing using webauthn.bin.coffee and other test sites are needed to verify
behavior in U2FHIDTokenManager.

Differential Revision: https://phabricator.services.mozilla.com/D79568

Differential Revision: https://phabricator.services.mozilla.com/D80202

Bug 1645943 - A testcase to ensure temporary storage initialization is not blocked by a cache directory in an origin directory that ends with a period; r=janv a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D80001

Bug 1645943 - Check results from nsIFile's functions rather than mozStorage's/SQLite's in LockedGetPaddingSizeFromDB; r=janv,sg a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D79959

The original addition of CSP to `headersAlreadySet` in bug 1462989 was
to make sure that CSP response headers from different extensions are
merged as expected. The logic did however not take into account that
unconditionally merging modified headers means that the header would be
merged with the original CSP from the web page, which prevented add-ons
from relaxing a CSP from the web page.

This commit fixes the bug by tracking the CSP status on the
`ResponseHeaderChanger` instance, which is shared by all webRequest
handlers of a single request.

Differential Revision: https://phabricator.services.mozilla.com/D80761

- Most importantly: Fix the `test_csp` helper to actually replace the
  page's CSP header. The existing tests verify that the web page's CSP
  is still applied, which is trivially true if the helper extension
  appends the CSP instead of replacing it.

- Expand comment on the meaning of the parameters in `test_csp`.

- `sendMessage` is not async, properly await the result.

- Unload extensions before checking assertions, to avoid unhelpful error
  messages about extensions not having been unloaded at the end of the
  test.

- Report which test case is being run to make debugging easier.

Differential Revision: https://phabricator.services.mozilla.com/D80760

A test used `encodeURIComponent` on a query string and expected the
resulting URL to be comparable with URLs in a progress listener.
But `encodeURIComponent` doesn't escape an apostrophe (`'`), whereas
`'` is percent-encoded as `%27` via nsIURI.

To ensure that it works as expected, use `nsIURI::equals` to compare
URLs instead of doing string comparisons.

Differential Revision: https://phabricator.services.mozilla.com/D79304

Differential Revision: https://phabricator.services.mozilla.com/D79902

Bug 1638793 - Ensure OriginAttributes is set on OpenWindowInfo for expanded principals, r=kmag a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D79471

Differential Revision: https://phabricator.services.mozilla.com/D79835

Differential Revision: https://phabricator.services.mozilla.com/D81131

Bug 1646867 - SystemHeapSize counts only the process default heap on Windows.  r=froydnj,dmajor a=RyanVM

The crash reports indicate a situation where a non-default heap is destroyed
after we retrieve a handle is happening on a regular basis.
We've decided to count only the default heap, ignoring all non-default heaps
which we don't manage.

Differential Revision: https://phabricator.services.mozilla.com/D80299

If we fail this allocation during initialization we're going to crash very shortly
anyway, so make the allocation infallible - it's small, and crashing here will
preserve the call stack properly.

Differential Revision: https://phabricator.services.mozilla.com/D80430

Differential Revision: https://phabricator.services.mozilla.com/D79270

Bug 1645219: Repurpose DataChannelShutdown into DataChannelRegistry (which gives us some weak-pointer-like semantics) r=ng a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D79375

Differential Revision: https://phabricator.services.mozilla.com/D56736

Bug 1645789 - Also fix the case when we're resetting the styles and the document has no default style. r=Gijs, a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D79701

We compare the value passed through with the title, and StyleSheet.title
returns null for empty titles, so we never consider an empty title to be
in the document, which is bad.

Differential Revision: https://phabricator.services.mozilla.com/D79700

Bug 1636607 - Use prefix match for public identifiers that trigger the Almost Standards Mode. r=alchen, a=RyanVM

Implements a part of the spec change
https://searchfox.org/whatwg-html/diff/9345b201261c452868a68780ece85370f17644a3/source#42357
that was originally missed.

Differential Revision: https://phabricator.services.mozilla.com/D74658

Differential Revision: https://phabricator.services.mozilla.com/D78160

Bug 1621960: "enum34" and "enum" virtualenv packages are now only available to the python2 env. r=rstewart, a=RyanVM

When running |mach python| with python 3, it was failing when importing "enum", since it would get the python 2 backport. By making these packages only
available to python 2, we allow python 3 to import standard library packages properly.

Differential Revision: https://phabricator.services.mozilla.com/D77960

Differential Revision: https://phabricator.services.mozilla.com/D79750

Differential Revision: https://phabricator.services.mozilla.com/D79734

Differential Revision: https://phabricator.services.mozilla.com/D79176

Renaming this to blocklist, as this is a list of sites for which hostname
obfuscation is disabled.

Differential Revision: https://phabricator.services.mozilla.com/D78681

Differential Revision: https://phabricator.services.mozilla.com/D78529

Differential Revision: https://phabricator.services.mozilla.com/D77525

Differential Revision: https://phabricator.services.mozilla.com/D77502

Differential Revision: https://phabricator.services.mozilla.com/D70935

Differential Revision: https://phabricator.services.mozilla.com/D81747

Bug 1648333 - Make sure there's no custom cursor when popping up the slow script dialog. r=smaug, a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D81140

See bug for further information.

Differential Revision: https://phabricator.services.mozilla.com/D80820

Differential Revision: https://phabricator.services.mozilla.com/D76704

Differential Revision: https://phabricator.services.mozilla.com/D78836

Bug 1638856 - Increase the stack space passed to the child process to accomodate for its usage. r=gbrown, a=test-only

Differential Revision: https://phabricator.services.mozilla.com/D81372