Commits on Jul 21, 2015

1. Preload an HSTS domain list from chromium …

   This resolves the first part of #6105. The remaining part is
   to update the list based on the STS headers from the server.

   

   samfoo committed Jul 21, 2015
   aa19a9a

2. Implement mutable HSTS list …

   This prepares the resource task to update the HSTS list when it sees STS
   headers. This will allow full HSTS support for #6105 when the
   resource task implements the header checking

   

   samfoo committed Jul 21, 2015
   d2f3555

3. Do not allow IP address in HSTS list …

   As per [rfc6797](https://tools.ietf.org/html/rfc6797#section-8.1.1), do
   not allow IPv4 or IPv6 addresses as host entries into the HSTS list.
   
   #6105

   

   samfoo committed Jul 21, 2015
   72d4433

4. Do not change the port when loading HSTS domain …

   #6105

   

   samfoo committed Jul 21, 2015
   855a948

5. Add max-age to HSTS entries …

   Refactors API for pushing new entries on, and adds a max age. This does
   not add a check for the max-age, or remove old entries from the list.
   Instead this just adds the data-field.
   
   #6105

   

   samfoo committed Jul 21, 2015
   cb9b0c2

6. Shift checking for IP address host for HSTS entry to constructor …

   #6105

   

   samfoo committed Jul 21, 2015
   8d39fb6

7. Expire HSTS entries that have exceeded their max-age …

   #6105

   

   samfoo committed Jul 21, 2015
   15c90a5

8. Rename/refactor

   

   samfoo committed Jul 21, 2015
   690ac63

9. Evict HSTS entries when a max-age of 0 is seen

   

   samfoo committed Jul 21, 2015
   ff1777e

10. Abstract out ResourceManager messaging from impl …

    De-coupling makes testing a bit easier.

    

    samfoo committed Jul 21, 2015
    f284181

11. Adds control message for HSTS headers

    

    samfoo committed Jul 21, 2015
    795454f

12. Re-parse URL to not have inconsistent state

    

    samfoo committed Jul 21, 2015
    8a401d5

13. Resolve tidy issues

    

    samfoo committed Jul 21, 2015
    865fb2e

14. Don't unnecessarily clone strings

    

    samfoo committed Jul 21, 2015
    a068a80

15. Commit HSTS preload list to source control …

    * No longer download the HSTS list as a bootstrap step
    * Check the current revision of the HSTS list into source

    

    samfoo committed Jul 21, 2015
    8086034

16. Resolves code review comments …

    * Lots of rust-isms
    * Mutable iterator for modifying entries (much better)

    

    samfoo committed Jul 21, 2015
    29a34db

17. Resolves remaining code review issues …

    * Don't pass a boolean to the HSTSEntry constructor, use an enum instead
    * Don't clone when securing load data
    * Comment about the Url bug
    * Change remaining assert!(... == ...) to assert_eq!(..., ...)

    

    samfoo committed Jul 21, 2015
    02bd5cd

18. Moves HSTS code to it's own module

    

    samfoo committed Jul 21, 2015
    826f56b

19. Moves the HSTS replacement code to http_loader …

    This respects STS for redirects as well.

    

    samfoo committed Jul 21, 2015
    f2148f0

20. Responds to more code review feedback …

    * Use regex from resource task
    * Don't have an option of an HSTS list, default to empty

    

    samfoo committed Jul 21, 2015
    11f5be6

21. Passes an Arc<Mutex<HSTSList>> to threads instead of cloning

    

    samfoo committed Jul 21, 2015
    82cafc4

22. Moves HSTS includeSubdomains enum to net_traits

    

    samfoo committed Jul 21, 2015
    bae9791

23. Only secure URL's that aren't already to HTTPS. …

    Cuts down on logger spam, and unnecessary Url::clone's

    

    samfoo committed Jul 21, 2015
    5014da4

24. Uses the approach suggested by @SimonSapin for changing Url scheme …

    servo/rust-url#61

    

    samfoo committed Jul 21, 2015

    Loading status checks…
    118122d