Kate McKinley c57d400961 Bug 1246540 - HSTS Priming Proof of Concept. r=ckerschb, r=mayhemer, r=jld, r=smaug, r=dkeeler, r=jmaher, p=ally ... HSTS priming changes the order of mixed-content blocking and HSTS upgrades, and adds a priming request to check if a mixed-content load is accesible over HTTPS and the server supports upgrading via the Strict-Transport-Security header. Every call site that uses AsyncOpen2 passes through the mixed-content blocker, and has a LoadInfo. If the mixed-content blocker marks the load as needing HSTS priming, nsHttpChannel will build and send an HSTS priming request on the same URI with the scheme upgraded to HTTPS. If the server allows the upgrade, then channel performs an internal redirect to the HTTPS URI, otherwise use the result of mixed-content blocker to allow or block the load. nsISiteSecurityService adds an optional boolean out parameter to determine if the HSTS state is already cached for negative assertions. If the host has been probed within the previous 24 hours, no HSTS priming check will be sent. MozReview-Commit-ID: ES1JruCtDdX --HG-- extra : rebase_source : 2ac6c93c49f2862fc0b9e595eb0598cd1ea4bedf		2016-09-27 11:27:00 -04:00
..
locales	Bug 1298872 - Fix text cropped and overflowed in advanced pane in-content dialogs; r=MattN	2016-09-05 18:11:08 +08:00
pki	Bug 1049001 - Convert the certManager dialog to in-content; r=MattN	2016-09-13 14:27:13 -07:00
ssl	Bug 1246540 - HSTS Priming Proof of Concept. r=ckerschb, r=mayhemer, r=jld, r=smaug, r=dkeeler, r=jmaher, p=ally	2016-09-27 11:27:00 -04:00
tools	merge mozilla-inbound to mozilla-central a=merge	2016-09-08 12:01:17 +02:00
.eslintrc.json	Bug 1284438 - Enable more ESLint rules for PSM. r=mgoodwin	2016-07-06 01:59:03 +08:00
android_stub.h	Bug 1288644 - Don't define RTLD_NOLOAD when __ANDROID_API__ >= 21. r=glandium	2016-07-22 16:40:21 +09:00
moz.build	Bug 1286877 - do not set c-basic-offset for python-mode; r=gps	2016-07-14 10:16:42 -06:00