Bug 1641733 - Trigger print via FrameLoader.print in the parant process instead of in the content process. r=jwatt, a=test-only

Differential Revision: https://phabricator.services.mozilla.com/D78214

Bug 1663439 - Re-order rowgroups if reflowing a tfoot with an already split next-in-flow. r=TYLin, a=tjr

As the reflow may destroy the next-in-flow. See existing code.

Differential Revision: https://phabricator.services.mozilla.com/D90146

This causes an assertion when printing the test-case, though it turns
out not to be the cause of the bug in the end. Still seems worth fixing,
and will be tested by the test in the following patch.

Differential Revision: https://phabricator.services.mozilla.com/D90145

Differential Revision: https://phabricator.services.mozilla.com/D90070

The root cause in this bug is that the connection info used by `SpdyConnectTransaction` is the same instance as the connection info in `nsHttpTransaction`, so we should clone it and let `SpdyConnectTransaction` use the cloned one.

Differential Revision: https://phabricator.services.mozilla.com/D89801

Differential Revision: https://phabricator.services.mozilla.com/D88664

Differential Revision: https://phabricator.services.mozilla.com/D89924

This fixes a static_assert on 32-bit platforms because 4 is too small for the JitCode
cell header alignment.

The CodeAlignment value does't really matter as the none backend does not allocate
any JIT code or JitCode instances, but 16 matches x86 and x64.

Differential Revision: https://phabricator.services.mozilla.com/D91093

Per the manpage "Both stat() and lstat() act as though AT_NO_AUTOMOUNT
was set.", so don't bail if it's set in a call to fstatat.

Differential Revision: https://phabricator.services.mozilla.com/D89121

Differential Revision: https://phabricator.services.mozilla.com/D88500

Bug 1660901 - Support the fstat-like subset of fstatat in the Linux sandbox policies. r=gcp, a=RyanVM

Differential Revision: https://phabricator.services.mozilla.com/D88499

This also fixes correctness issue on MIPS platform.

Differential Revision: https://phabricator.services.mozilla.com/D77673

Differential Revision: https://phabricator.services.mozilla.com/D91304

Differential Revision: https://phabricator.services.mozilla.com/D81804

Differential Revision: https://phabricator.services.mozilla.com/D88619

No bug - Tagging fc94a8dbf2e71656c6e2bcfa72b7c9edef98ef7b with FIREFOX_78_3_0esr_RELEASE a=release CLOSED TREE DONTBUILD

Differential Revision: https://phabricator.services.mozilla.com/D90944

Differential Revision: https://phabricator.services.mozilla.com/D90568

No bug - Tagging fc94a8dbf2e71656c6e2bcfa72b7c9edef98ef7b with FIREFOX_78_3_0esr_BUILD1 a=release CLOSED TREE DONTBUILD

Evidently, keys stored on some tokens can only be accessed via the deprecated
CryptoAPI interface. This patch adds support for such keys.

Differential Revision: https://phabricator.services.mozilla.com/D82789

When the osclientcerts module attempts to use client certificates and keys from
certain tokens, the Windows APIs will attempt to load asepkcs.dll. If Firefox
blocks this library, the keys won't be available. Thus, it needs to be
unblocked.

Due to the architecture of osclientcerts (namely, its dedicated single thread),
using asepkcs.dll via the Windows APIs shouldn't cause the crashes that led to
this module being blocked.

Differential Revision: https://phabricator.services.mozilla.com/D82788

Differential Revision: https://phabricator.services.mozilla.com/D90139

Differential Revision: https://phabricator.services.mozilla.com/D89736

Differential Revision: https://phabricator.services.mozilla.com/D89374

Differential Revision: https://phabricator.services.mozilla.com/D89245

Differential Revision: https://phabricator.services.mozilla.com/D89186

Differential Revision: https://phabricator.services.mozilla.com/D88357

If we're after shutdown, then this variable will have been cleared.
This is the remaining use that was failing to do a null check, and
it was manifesting as a very low-volume crash.

Differential Revision: https://phabricator.services.mozilla.com/D87503

When an Accessible is shut down, there might still be external references to it, so we keep the instance alive.
We don't want to reuse the id until all references are released, so we only release the id in the destructor (which runs when all references are released).
Previously, we were clearing the id variable in Shutdown, which meant we couldn't release the id in the destructor!
This meant we always leaked ids, never reusing them.
Now, we don't clear the id in Shutdown.

Differential Revision: https://phabricator.services.mozilla.com/D84653

Bug 1645492 - only show certificates with corresponding error overrides in the "Servers" tab of the certificate manager. r=kjacobs, a=jcristau

Before this patch, the "Servers" tab of the certificate manager would show
built-in distrust records that had corresponding certificates (lately, this has
only consisted of two DigiNotar look-alike roots that were added many years ago
to block the real DigiNotar roots and potential cross-signs).
This patch changes the implementation to only show certificates that actually
have a corresponding error override in the "Servers" tab.

Differential Revision: https://phabricator.services.mozilla.com/D83190

Bug 1650462: Don't include group descendants when calculating the acc name of treeitems. r=MarcoZ, a=jcristau

Differential Revision: https://phabricator.services.mozilla.com/D83042

Differential Revision: https://phabricator.services.mozilla.com/D86761

Differential Revision: https://phabricator.services.mozilla.com/D89218

Bug 1661022 - add trailing slash to pypi.pub.b.m.o/pub r=releng-reviewers,bhearsum a=release DONTBUILD

Differential Revision: https://phabricator.services.mozilla.com/D88181

Bug 1662381 - Don't let pipenv initialize the virtualenv with packages from pypi. r=rstewart,ahal a=RyanVM

By setting PIP_NO_INDEX when running pipenv, we make it populate the
virtualenv with the in-tree wheels for e.g. pip and setuptools, instead of
whatever happens to be the latest version the day pipenv runs. This
makes it match what we already do for other virtualenvs (with
--no-download in VirtualenvManager.create).

Differential Revision: https://phabricator.services.mozilla.com/D89107

When configuring without system NSPR the configuration variable
PKGCONF_REQUIRES_PRIVATE isn't ever set, leading to a .pc file that still
contains the @PKGCONF_REQUIRES_PRIVATE@ stub.

Ensure that we always define PKGCONF_REQUIRES_PRIVATE, by setting it to an
empty string in case no system-nsrp is enabled.
In this way, the pkg-config file stub will be always replaced.

Differential Revision: https://phabricator.services.mozilla.com/D88179

Differential Revision: https://phabricator.services.mozilla.com/D87447

Differential Revision: https://phabricator.services.mozilla.com/D88618