On 01/15/2014 12:59 PM, Fabrice Desré wrote:
That looks very dependent on the performance of the test runner. How do
we take that into account?
We could use operating system facilities to detect and mark (or even
abort) test runs where the test runner is not meeting certain
performance guaran
On 01/16/2014 07:41 PM, Vivien Nicolas wrote:
On 15/01/2014 20:48, Andrew Sutherland wrote:
However, the simplest/most pragmatic thing to do initially is probably
just to use the existing linux perf tool to generate logs of what's
happening during the test runs using "perf schedule
The standards-based approach to this would be to use WebSockets over SSL
(which is identified by the 'wss' protocol).
https://developer.mozilla.org/en/docs/WebSockets provides a good
starting point.
For messaging applications, for device resource and battery life reasons
and because your app
On 01/20/2014 04:52 PM, jose llopis wrote:
hello there again people :)
is there any client side lib that can achieve this one?
The under-development WebCryptoAPI spec supports AES-CBC and the
PolyCrypt poly-fill implements support for it.
See:
http://www.w3.org/TR/WebCryptoAPI/#aes-cbc
http:
On 02/05/2014 11:06 PM, jbc wrote:
I have pay to company of certificates NSA for to can a service cipher with
SSL and browsers and apps doesn't scare?
For the cost aspect, StartCom provides free SSL certificates with 1-year
validity:
https://www.startssl.com/?app=1
Andrew
___
Thought I'd share this in case others are encountering something like it...
I have a new-ish Dell XPS 8700 machine running Ubuntu 13.10 that, when
hooked up to Firefox OS devices via USB would find the devices
constantly disconnecting and reconnecting. As in, at a rate of anywhere
from severa
Assuming all has gone well, the mailman list-server software we use for
dev-b2g and dev-gaia should no longer force multipart/alternative mail
messages to use the first sub-part (which is likely to be text/plain).
What this means is that if you use the gmail web UI to talk on the list
and your
On 04/04/2014 06:06 PM, Naoki Hirata wrote:
Dietrich, you may need the u-boot fix.
https://intranet.mozilla.org/B2G_Team/Tarako#fastboot_seems_stuck
Does flashing the base image via the windows flashing tool eliminate the
need to install the revised u-boot?
I think I experienced the "fastbo
On 04/18/2014 08:58 PM, Jonas Sicking wrote:
Another solution here would be if we added support for URLs that map
directly into indexedDB. See
http://lists.w3.org/Archives/Public/public-webapps/2013JulSep/0081.html
It seems like this could open new avenues for information leakage unless
URLs
On 04/19/2014 09:49 AM, Julien Wajsberg wrote:
Yes that's also a possibility I had in mind. Aren't we taking up
valuable memory if you keep the blob url valid? Or is that memory used
anyway, because the image is displayed, and as a result it would not
take more than what's already taken?
If i
On 04/24/2014 12:25 AM, Jonas Sicking wrote:
Even though you could link to resources in local databases, how would
you then extract data and send it to the server? Simply displaying an
image from the database could be surprising/scary to the user, but
doesn't actually extract any sensitive inform
On 04/25/2014 06:50 PM, Jonas Sicking wrote:
I think very few use cases would get broken by equating "reading from
indexeddb://" to "running script".
Yes, that formulation sells me on that approach.
(Although we'd still want code to be able to at least createObjectURL
things explicitly into t
On 05/22/2014 08:36 AM, Alexandre poirot wrote:
There is a stable and full featured client for
nodejs, https://github.com/harthur/firefox-client
The downside compared to marionette is that this isn't a REPL API, so that
it isn't an API to evaluate arbitrary piece of code on device.
The idea is to
In an attempt to address the cross-cutting https://bugzil.la/874346 on
adding certificate exceptions initiated by the Firefox OS Gaia email app
I've started a thread on dev.platform entitled "B2G, email, and SSL/TLS
certificate exceptions for invalid certificates". If you're interested,
please
On 08/06/2014 02:39 AM, Shian-Yow Wu wrote:
The feature allows to read data in packaged app by XHR with array buffer type
as memory-mapped. It helps to save RAM memory usage, especially for big data
files in a packaged app.
It seems like this introduces the potential for main thread I/O on pa
On 08/07/2014 08:15 PM, Lachlan wrote:
my private email server can't be added because it's a class 1 certificate
I'm not sure how standard the classes are, but if you have a valid SSL
certificate for a domain and trying to connect using that domain, it
should work. For example, the "StartSSL
This seems like a good idea, but I think the approach may not go far
enough. I have some suggestions.
I think there are a few scenarios that interact with the proposed
functionality:
1: Lost, locked device found by a nefarious person with no plans to
return it
2: Device in the possession of a
:pauljt's question about certified app debugging made me wonder if we
have any formal-ish descriptions of the threat/attack models for Firefox
OS. I particularly am interested because it seems like discussions
about complicated issues like this frequently end up going in circles
because people
On 09/10/2014 03:57 AM, Paul Theriault wrote:
Other options for user authentication I had been thinking about were:
- pairing the phone with the computer it is going to be plugged into
- maybe via adb (maybe by use of 842747) or wifi (with upcoming wifi
debugging)
- Ship phones with “devel
On 09/27/2014 07:41 PM, Jonas Sicking wrote:
readonly attribute string[] colors; // array of colors the hardware supports
Can you elaborate on what the convention would be here? It seems like
LEDs are characterized by the color channels they have and the number of
quantized light levels.
On 09/29/2014 12:27 AM, Fabrice Desré wrote:
One issue is that the android HAL doesn't expose what the device LED
supports - it's really best effort, see
http://androidxref.com/4.4.4_r1/xref/hardware/libhardware/include/hardware/lights.h#92
So I think it would be quite hard to implement this 'col
On 10/23/2014 05:17 AM, Jovan Gerodetti wrote:
The messaging app Loqui[1] uses a TCP Socket to upload files to the
WhatsApp server[2]. But on 2.1 and 2.2 we are experiencing that the
Socket gets closed in the middle of the upload[3]. The console shows
this error:
/
NS_ERROR_XPC_JAVASCRIPT_ERRO
On Wed, Feb 18, 2015, at 10:55 AM, fras...@mozilla.com wrote:
> i agree with julien here. the answer is not more process but pride of
> ownership. i've worked with people in the past that no matter what made
> sure the components they've touched/owned are as free of bugs as
> possible. it has its o
It should work. There are a few possibilities for what's happening:
1) It's not actually your real sent mail folder but a folder some IMAP
client created in 2013. Note that gmail lets you hide folders from
IMAP clients via its settings UI, so it's likely in this case that
the real IMAP S
For those interested, the problems in all cases were (probably) the
result of IMAP clients that didn't understand gmail's folder model (or
XLIST or LIST with special-use flags) having created a false/redundant
sent mail folder. Because of our limited screen real-estate and the
UI's sorting behavio
On Mon, Mar 9, 2015, at 08:23 PM, Jonas Sicking wrote:
> One interesting question to ask here is, would we be interested in
> adopting Tizen's API for, for example, SD card access? Or Chrome-app's
> API for TCPSocket?
Apologies if you mean these generically without wanting specific
discussion. Bu
On Tue, Mar 10, 2015, at 06:35 AM, Antonio Manuel Amaya Calvo wrote:
> On 10/03/2015 1:23, Jonas Sicking wrote:
>> * Enable Marketplace to hand out the ability to use a particular API
to a developer, rather than to a particular version of a particular app.
> This is nice... but I believe it's ulti
On Mon, Mar 9, 2015, at 09:38 PM, Jonas Sicking wrote:
> Has Google given any indication that they are actually planning on
> implementing the "standard"?
I'm not in the know, but in my limited involvement with the
standardization effort, I haven't seen any implications that Google or
anyone is go
On Wed, Mar 11, 2015, at 01:58 PM, Jonas Sicking wrote:
> I'm not sure what you're point is then? If only mozilla implements the
> "standard" then it's still not really a standard. Even if it has a W3C
> logo on it.
I'm not sure I have a point anymore. In this most recent reply I just
wanted to a
On 03/22/2015 08:54 PM, AJ ONeal (Home) wrote:
I'm building an OAuth2 browser auth dialog in FxOS 2.0.0 and following
the instructions here:
https://developer.mozilla.org/en-US/Apps/Build/Manifest#redirects
According to the implementation at
https://dxr.mozilla.org/mozilla-central/source/do
I would like to be able to use the IDBObjectStore.getAllKeys method. It
is gated on the
mozilla::dom::indexedDB::IndexedDatabaseManager::ExperimentalFeaturesEnabled
check which currently just changes based on the
dom.indexedDB.experimental pref. I would propose it could also return
true for
Background: As I understand it, at some point we picked the value 319M
for Flames to emulate the memory conditions for apps on the shipped
devices with 256M but smaller screens (and thus smaller needs). Many
points were made about various built-in heuristic band-aids that alter
memory behaviou
On 03/24/2015 04:44 PM, Kyle Huey wrote:
That likely means that we've regressed the amount of memory the
"system" requires. Revisiting the thresholds might be appropriate if
those regressions are in the base layer (in other words, if L uses
more memory than the kitkat base) but if those regres
On Thu, Apr 30, 2015, at 07:59 PM, Inble Visiman wrote:
> Is there any way I can just dump the object which is called in a .js
> file (in gecko folder) to sdcard?
In content space, with the right permissions (and a privileged/certified
app) you can use the DeviceStorage API to save to the sdcard,
On Fri, May 15, 2015, at 10:00 AM, Soledad Penadés wrote:
> But connecting a phone to my laptop is not really practical sometime, so
> I'd like to develop code using the simulator. However, I do not know how
> to access the simulator. It doesn't have an IP address, and `lsof -i -n
> -P -sTCP:LIS
On 05/19/2015 12:26 PM, Christopher Lord wrote:
Does anyone have any thoughts or objections on this? If we're allowing
third party homescreens, this seems like a blocker to me.
I think it would make sense if we restricted the permission such that
the homescreen had to be the actively configure
On Wed, Jul 1, 2015, at 06:49 PM, Jonas Sicking wrote:
> A big piece of good news is that the desktop team a while ago started
> working on an explicit addon API for desktop. This work has already
> progressed quite far and is expecting to land in Gecko 42 (though
> obviously there's always a risk
mozilla-aurora got uplifted to mozilla-beta yesterday. Does this mean
we are using mozilla-beta now?
Andrew
___
dev-b2g mailing list
dev-b2g@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-b2g
s unagi builds are insufficiently legit.
Andrew
On 11/20/2012 01:40 PM, Alex Keybl wrote:
Yes, if this change hasn't already been made, all local/nightly builds need to
now point at mozilla-beta.
-Alex
On Nov 20, 2012, at 10:39 AM, Andrew Sutherland
wrote:
mozilla-aurora got uplifted to
For the e-mail app, our HTML sanitization mechanism relies on creating
documents by using document.implementation.createHTMLDocument('') so
that we can use the system HTML parser. It is my understanding that the
document should be flagged as "loaded as data" so that, regardless of
CSP, remote
On 12/04/2012 06:39 AM, Jonas Sicking wrote:
Here:
http://mxr.mozilla.org/mozilla-central/source/content/base/src/nsDataDocumentContentPolicy.cpp
I'm still confused about what the original email in this thread meant
by saying that CSP was applied to the document in question.
I.e. what behavior
E-mail account setup over the unagi cellular data connection seems to be
especially troublesome for both myself and others, as indicated by bug
https://bugzilla.mozilla.org/show_bug.cgi?id=821818.
To better understand what's going on, I would like to be able to see
what's happening with the ce
The e-mail (packaged) app does an asynchronous XHR to check whether
there is an autoconfig file in its local /autoconfig/ directory before
moving on to asking the internet for answers. So if you type in
"b...@yahoo.es" for your e-mail address, we will do an XHR for
"/autoconfig/yahoo.es".
Pr
On 01/03/2013 11:20 PM, Jonas Sicking wrote:
On Thu, Jan 3, 2013 at 2:33 PM, Andrew Sutherland
wrote:
The e-mail (packaged) app does an asynchronous XHR to check whether there is
an autoconfig file in its local /autoconfig/ directory before moving on to
asking the internet for answers. So if
Currently, Gecko's workers are limited in terms of functionality because
many bindings use XPConnect but only new JSClass/Paris-style bindings
can be exposed. See https://bugzilla.mozilla.org/show_bug.cgi?id=580070
for more on that.
Is it our plan to expose all of our WebAPI's to Web Workers,
On 03/16/2013 09:26 AM, Axel Hecht wrote:
Salvador, you may have provided a UI hook to reduce the diff, but
you're not fixing git annotate.
My personal experience in mozilla-central and comm-central was that
holding blame/annotate sacred provided a lot of stop energy to improving
the state of
On 04/03/2013 05:22 PM, Alex Keybl wrote:
You seem to be suggesting that the approval process doesn't catch/prevent
mistakes. That's just not true. We still get frivolous bugs being nominated for
uplift, which points to the fact that these changes would have otherwise been
landed without a con
There is an earlier message on dev-b2g that may be of use:
https://groups.google.com/forum/?fromgroups=#!topic/mozilla.dev.b2g/B57slgVO3TU
If you have access to change the certificate used, Startcom provides
free certificates that work for mail servers:
https://www.startssl.com/?app=1
Andrew
On 05/17/2013 03:43 AM, Dave Hylands wrote:
I think email may use download/email as well. The filesystem is FAT, so its
case preserving, but not case sensitive. So Download/bluetooth and
download/bluetooth both happen to refer to the same directory.
E-mail currently just stashes everything in
Currently, when you save a draft with attachments in the e-mail app, the
attached files will be duplicated from wherever they came from (probably
DeviceStorage) into the IndexedDB blob store. It's my understanding
that we model the internal storage where IndexedDB lives as very
limited, so thi
On 07/12/2013 12:14 PM, Armen Zambrano G. wrote:
* Push notifications
** In my Unagi I used to get email and calendar notifications; is my
memory failing me?
E-mail only supported periodic sync with (sub-optimal) notifications for
a very brief time last year before we disabled it. It's a v1.
In https://bugzilla.mozilla.org/show_bug.cgi?id=894834 the e-mail app
likes to die from downloading large files. I looked at how Bluetooth
avoids this problem, and it seems to cheat by being efficiently
implemented in C++ and just using native DeviceStorage classes directly.
From Jan Jongboom
On 08/04/2013 01:48 AM, Jonas Sicking wrote:
Wow, lots of different subjects here. And I don't fully see how they
all tie together. I'll try to answer the parts that I understand, but
let me know if I missed anything.
Thanks for the very thorough follow-up!
OTOH, if you are saving the draft
On 08/04/2013 06:32 PM, Brian Smith wrote:
4. I think we should be working towards a goal of making DeviceStorage
permission from the email app, by improving the capabilities of the
alternatives that would make the use of DeviceStorage unnecessary.
(I am assuming s/making DeviceStorage permissi
On 11/12/2013 05:12 PM, Philip Wright wrote:
That's ok, enjoying the raw experience, though currently scratching my
head why office365 email works on thunderbird, but fails on the open's
email cleint with the exact same settings..
The difference is bug
https://bugzilla.mozilla.org/show_bug.cg
On 11/20/2013 04:53 PM, Jonathan Watt wrote:
So if I use |DEBUG=1 make| as the documentation says to do then things
are broken. If I use |make profile| then they work.
make DEBUG=1 profile-debug
The name of the profile target changes when you use DEBUG=1. (There is
a plan to address this by
There is no secure key store, but a secure key store wouldn't help here.
Anything you do in the client/app is going to be obfuscation[1]. The
standard solution to this type of thing is for your app to have a server
component that keeps your API key secret.
However, you still run into the problem
On Mon, Aug 31, 2015, at 07:51 PM, J. Ryan Stinnett wrote:
> We are thinking of removing the dropdown layout and switching to the
> sidebar one permanently. If there are some valid concerns for keeping
> it as is, please let us know - otherwise we'll plan to transition to
> this soon.
Can you clar
On Mon, Aug 31, 2015, at 09:41 PM, J. Ryan Stinnett wrote:
> At the moment, once a toolbox opens, the toolbox still takes the full
> width of the window, however it no longer goes full height. You can
> resize the toolbox to be as tall as you like. This was done to make it
> more obvious how to con
On Tue, Sep 1, 2015, at 11:52 AM, J. Ryan Stinnett wrote:
> Would you prefer having the toolbox be "full screen" in the WebIDE
> window (the way it appears today without sidebars)? It's easy to make
> this happens if people would prefer it. It would then cover the
> sidebars fully, and you'd need t
On Tue, Sep 1, 2015, at 03:25 PM, Jeff Griffiths wrote:
> That's definitely an interesting idea. Do you mean, a tabbed interface
> within a top-level browser tab or instead creating new browser tabs?
New browser tabs. No need to reinvent the tabbed interface wheel,
especially when the current whe
I'm with Jim that feature switches are a bad idea, and that add-on's are
the best current and long-term option.
On Fri, Sep 11, 2015, at 12:40 AM, Tim Guan-tin Chien wrote:
> Tell me what you think and tell me the problems.
Complexity: the permutations of interacting features. The hardest thing
62 matches
Mail list logo
