summaryrefslogtreecommitdiff
path: root/src/bg
Commit message (Collapse)AuthorAgeFilesLines
...
* Simplified CSP HTTP header injection, avoiding report-to until actually ↵hackademix2018-10-061-12/+20
| | | | supported by browsers.
* Include ftp:// URLs in non-secure domain matching.hackademix2018-09-261-2/+6
|
* Fixed line endings.hackademix2018-09-151-38/+38
|
* Removed unused regexp.hackademix2018-09-101-1/+0
|
* Better IPV6 support.hackademix2018-09-101-9/+16
|
* Streamlined child policy content scripts.hackademix2018-09-101-2/+1
|
* Fix for various content script timing related issues.hackademix2018-09-092-25/+12
|
* Prevent total breakages when policies accidentally map to invalid match ↵hackademix2018-09-091-12/+21
| | | | patterns.
* More efficient window.name persistence for tab-scoped permissions.hackademix2018-09-083-2/+10
|
* Fixed regression: undefined fake request.url ends to for inline scripts CSP ↵hackademix2018-09-081-1/+1
| | | | reports.
* Saner message dispatching.hackademix2018-09-082-11/+13
|
* Fixed bug in requestKey generation.hackademix2018-09-051-1/+1
|
* Transparent support for FQDNs and better management of file:/// URLs.hackademix2018-09-041-12/+14
|
* Better file: protocol support.hackademix2018-09-043-42/+54
|
* Reordered startup sequence to be more friendly with embedders like the Tor ↵hackademix2018-08-282-45/+45
| | | | Browser.
* Merge pull request #16 from rustybird/startedhackademix2018-08-281-0/+1
|\ | | | | Broadcast a "started" message after initialization
| * Broadcast a "started" message after initializationRusty Bird2018-08-271-0/+1
| | | | | | | | | | | | | | | | | | Other extensions listening in on NoScript's messages (e.g. Torbutton) can take this message as an indication that it's now safe to send an "updateSettings" message to NoScript without immediately getting clobbered by the configuration loader. See https://trac.torproject.org/projects/tor/ticket/26520 for context.
* | Further CSP refactoring and removal of obsolete fallbacks.hackademix2018-08-274-152/+123
| |
* | Refactoring CSP building out of RequestGuard.hackademix2018-08-272-97/+57
|/
* Hotfix for some possible reload loops before refactoring CSP management.hackademix2018-08-251-7/+9
|
* Fixed infinite reload loop on unrestricted tabs.hackademix2018-08-241-2/+2
|
* Fixed minor CSP buildig issues.hackademix2018-08-241-4/+11
|
* Do not fail when onHeadersProcessed is called with no stored pending request.hackademix2018-08-231-3/+10
|
* Fixed regression: framed documents' URLs not being reported in the UI.hackademix2018-08-231-1/+1
|
* Update ChildPolicies when automatic temp TRUST for top-level document s is ↵hackademix2018-08-231-2/+2
| | | | enabled.
* More coherent wrapper around the webex messaging API.hackademix2018-08-222-16/+9
|
* Fixed possible surprises in background script message handling.hackademix2018-08-212-333/+311
|
* Fixed inconstitencies in ChildPolicies content script URL matching.hackademix2018-08-211-1/+2
|
* Simpler and more reliable safety net to ensure CSP headers are injected last ↵hackademix2018-08-201-23/+40
| | | | among WebExtensions.
* Fixed regression: refresh loop on page using requests of type="object" to ↵hackademix2018-08-191-1/+1
| | | | cache images, stylesheets and other types.
* More reliable attempt to run onResponseHeader listener the last of installed ↵hackademix2018-08-182-10/+20
| | | | extension.
* Removed all references to RequestUtil.js and dependancies.hackademix2018-08-186-175/+63
|
* Hack: use top.name to store per-tab content-side configuration (e.g. ↵hackademix2018-08-173-8/+26
| | | | unrestricted tab status).
* Policy serialization using the contentScripts API.hackademix2018-08-163-17/+116
|
* Best effort to run webRequest.onHeaderReceived listener last (issue #6)hackademix2018-08-061-6/+24
|
* Skip non-content windows when deferring startup page loading.hackademix2018-08-011-4/+4
|
* Fixed inline scripts not being reported to UI (skriptimaahinen).hackademix2018-08-011-0/+1
|
* Fixed startup race condition with pending request tracking.hackademix2018-08-011-2/+3
|
* Fixed random stallings on page transitions.hackademix2018-07-281-1/+1
|
* Fixed regression in NOSCRIPT elements emulation.hackademix2018-07-281-1/+1
|
* Fixed window.stop() called in empty suframes.hackademix2018-07-281-2/+3
|
* Disable scripting in HTML-embedding objects where webglHook cannot run, if ↵hackademix2018-07-262-11/+16
| | | | webgl not allowed.
* More edge cases covered in dynamic script injection.hackademix2018-07-262-16/+24
|
* Fixed some resource loading feedback glitches.hackademix2018-07-262-41/+44
|
* Fix for stalling embedded objects load on dynamic script injection.hackademix2018-07-251-3/+2
|
* Fixed infinite reload loops on scripting permissions mismatches.hackademix2018-07-251-1/+1
|
* Work-around for serviceWorker loads bypassing webRequest.hackademix2018-07-241-5/+16
|
* More reliable handling of edge startup cases.hackademix2018-07-223-30/+92
|
* Fixed dynamic script injection failing sometimes with "No matching message ↵hackademix2018-07-221-1/+8
| | | | handler" error.
* Fixed externally handled resources opened in popups being broken by dynamic ↵hackademix2018-07-202-20/+37
| | | | script injection.