Closed
Bug 1433357
Opened 6 years ago
Closed 6 years ago
Prevent proxy bypass via file dialog (Linux)
Categories
(Core :: Widget: Gtk, enhancement)
Core
Widget: Gtk
Tracking
()
RESOLVED
FIXED
mozilla60
Tracking | Status | |
---|---|---|
firefox60 | --- | fixed |
People
(Reporter: arthur, Assigned: arthur)
References
(Blocks 1 open bug)
Details
(Whiteboard: [tor 18101])
Attachments
(2 files, 4 obsolete files)
1.59 KB,
patch
|
karlt
:
review+
|
Details | Diff | Splinter Review |
1.21 KB,
patch
|
glandium
:
review+
|
Details | Diff | Splinter Review |
On Linux, if the user enters a remote URL in the Open File Dialog, the proxy can be bypassed. In Tor Browser, we added the following patch: https://torpat.ch/18101 and here's the original ticket: https://trac.torproject.org/18101 We would like to propose uplifting this patch, perhaps behind a flag.
Assignee | ||
Updated•6 years ago
|
Blocks: ProxyBypass
Assignee | ||
Comment 1•6 years ago
|
||
Attachment #8946325 -
Flags: review?(mh+mozilla)
Assignee | ||
Comment 2•6 years ago
|
||
Hi Mike and Karl, would you be able to review these? The first patch adds the general "--enable-proxy-bypass-protection" build flag, and the second patch is specifically for the linux file dialog.
Attachment #8946328 -
Flags: review?(karlt)
Comment 3•6 years ago
|
||
Comment on attachment 8946325 [details] [diff] [review] 0001-Bug-1433357-Part-1-Add-proxy-bypass-protection-flag.patch Review of attachment 8946325 [details] [diff] [review]: ----------------------------------------------------------------- ::: old-configure.in @@ +4213,5 @@ > dnl ======================================================== > +dnl enable proxy bypass protection > +dnl ======================================================== > +MOZ_ARG_ENABLE_BOOL(proxy-bypass-protection, > +[ --enable-proxy-bypass-protection Enable proxy bypass protection], It would be better to put all this in python configure. This should go in toolkit/moz.configure, and could look like: option('--enable-proxy-bypass-protection', help='...') @depends_if('--enable-proxy-bypass-protection') def proxy_bypass_protection(_): return True set_config('MOZ_PROXY_BYPASS_PROTECTION', proxy_bypass_protection) set_define('MOZ_PROXY_BYPASS_PROTECTION', proxy_bypass_protection)
Attachment #8946325 -
Flags: review?(mh+mozilla)
Comment 4•6 years ago
|
||
Comment on attachment 8946328 [details] [diff] [review] 0002-Bug-1433357-Part-2-Suppress-upload-file-dialog-proxy.patch Please place the preprocessor directives and comment around the whole mAllowURLs test and block to indicate that the whole block becomes irrelevant. Please include more context in future patches: That can be done by including this in ~/.hgrc or .hg/hgrc: [diff] git = true showfunc = 1 unified = 8
Attachment #8946328 -
Flags: review?(karlt) → review+
Assignee | ||
Comment 5•6 years ago
|
||
(In reply to Mike Hommey [:glandium] from comment #3) Thanks for the review here's a new version with the code you proposed.
Attachment #8946325 -
Attachment is obsolete: true
Attachment #8948012 -
Flags: review?(mh+mozilla)
Assignee | ||
Comment 6•6 years ago
|
||
(In reply to Karl Tomlinson (:karlt) from comment #4) Thanks, Karl. Here's a new version with the changes you suggested.
Attachment #8946328 -
Attachment is obsolete: true
Assignee | ||
Comment 7•6 years ago
|
||
(Oops, trying again.)
Attachment #8948013 -
Attachment is obsolete: true
Assignee | ||
Comment 8•6 years ago
|
||
(Replacing incorrect file.)
Attachment #8948012 -
Attachment is obsolete: true
Attachment #8948012 -
Flags: review?(mh+mozilla)
Attachment #8948015 -
Flags: review?(mh+mozilla)
Assignee | ||
Updated•6 years ago
|
Attachment #8948014 -
Flags: review?(karlt)
Updated•6 years ago
|
Attachment #8948014 -
Flags: review?(karlt) → review+
Updated•6 years ago
|
Attachment #8948015 -
Flags: review?(mh+mozilla) → review+
Comment 10•6 years ago
|
||
Pushed by cbrindusan@mozilla.com: https://hg.mozilla.org/integration/mozilla-inbound/rev/b5ad0c384202 Part 1: Add proxy bypass protection flag r=glandium https://hg.mozilla.org/integration/mozilla-inbound/rev/bd385579481b Part 2: Suppress upload-file-dialog proxy bypass in Linux r=karlt
Keywords: checkin-needed
Comment 11•6 years ago
|
||
bugherder |
https://hg.mozilla.org/mozilla-central/rev/b5ad0c384202 https://hg.mozilla.org/mozilla-central/rev/bd385579481b
Status: NEW → RESOLVED
Closed: 6 years ago
status-firefox60:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla60
Updated•6 years ago
|
Assignee: nobody → arthuredelstein
You need to log in
before you can comment on or make changes to this bug.
Description
•