We should not allow top-level documents or subdocuments loaded with the SystemPrincipal to live on the web.
Bug 1513445 - Disallow web documents loaded with the SystemPrincipal
New try run. Still green: https://treeherder.mozilla.org/#/jobs?repo=try&revision=d18b8148c2cd78532bbb5941bb88defee87fe53e
Pushed to try with the "!xpc::IsInAutomation()" case commented out - otherwise the new codepath is never executed. https://treeherder.mozilla.org/#/jobs?repo=try&revision=0937c0a71b0fa9c3c8d7a712dda1887c1f4cb74b
Assigning to you Freddy since you already are working on a patch...
Assignee: nobody → ckerschb
Status: NEW → ASSIGNED
Priority: -- → P2
Summary: Disallow web documents loaded with the SystemPrincipal → Disallow http(s) resources to be loaded into system privileged documents
Sorry, I meant to assign this one to you Freddy, not to myself (see comment 5 :-) ).
Assignee: ckerschb → fbraun
Attachment #9042931 - Attachment is obsolete: true
Attachment #9042932 - Attachment is obsolete: true
You need to log in before you can comment on or make changes to this bug.