Hackwar
diff --git a/‎.github/PULL_REQUEST_TEMPLATE/existing_contributors.md‎
Lines changed: 0 additions & 10 deletions b/‎.github/PULL_REQUEST_TEMPLATE/existing_contributors.md‎
Lines changed: 0 additions & 10 deletions
diff --git a/‎.github/PULL_REQUEST_TEMPLATE/pull_request_template.md‎
Lines changed: 0 additions & 13 deletions b/‎.github/PULL_REQUEST_TEMPLATE/pull_request_template.md‎
Lines changed: 0 additions & 13 deletions
diff --git a/‎.github/actions/https-everywhere-labeller/package-lock.json‎
Lines changed: 3 additions & 3 deletions b/‎.github/actions/https-everywhere-labeller/package-lock.json‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎.github/actions/https-everywhere-labeller/package.json‎
Lines changed: 1 addition & 1 deletion b/‎.github/actions/https-everywhere-labeller/package.json‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/pull_request_template.md‎
Lines changed: 11 additions & 21 deletions b/‎.github/pull_request_template.md‎
Lines changed: 11 additions & 21 deletions
diff --git a/‎README.md‎
Lines changed: 1 addition & 1 deletion b/‎README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎browser-dist/README.md‎
Lines changed: 32 additions & 0 deletions b/‎browser-dist/README.md‎
Lines changed: 32 additions & 0 deletions
diff --git a/‎edge.sh‎ ‎browser-dist/edge.sh‎edge.sh renamed to browser-dist/edge.sh
Lines changed: 5 additions & 12 deletions b/‎edge.sh‎ ‎browser-dist/edge.sh‎edge.sh renamed to browser-dist/edge.sh
Lines changed: 5 additions & 12 deletions
diff --git a/‎browser-dist/opera.sh‎
Lines changed: 168 additions & 0 deletions b/‎browser-dist/opera.sh‎
Lines changed: 168 additions & 0 deletions
diff --git a/‎chromium/background-scripts/background.js‎
Lines changed: 8 additions & 4 deletions b/‎chromium/background-scripts/background.js‎
Lines changed: 8 additions & 4 deletions
@@ -14,7 +14,7 @@
   },
   "homepage": "https://github.com/eff/https-everywhere-labeller#readme",
   "dependencies": {
-    "@actions/core": "^1.2.3",
+    "@actions/core": "^1.2.6",
     "@actions/github": "^2.1.1",
     "express": "^4.17.1",
     "@octokit/rest": "^17.1.4",
 
@@ -1,26 +1,16 @@
-***Delete section if irrelevant***
+Fixes #(issue)
 
-### List related PRs if any
+## Type of change
 
-- pr link
+- [ ] Bug fix (non-breaking change which fixes an issue)
+- [ ] New feature (non-breaking change which adds functionality)
+- [ ] Refactoring existing code
+- [ ] New Ruleset
+- [ ] Existing Ruleset
 
-### List related issues if any
+## For Rulesets: Testing
 
-- issue link
+- [ ] Travis CI completed without errors (triggered upon pull request)
 
-***May delete note after reading***
-
-### Note to contributor:
-Thank you for contributing! If this is a new ruleset and your first time contributing, congratulations! There will be some tests ran through our continuous integration in Travis. For example, checking for duplicate hosts, problematic hosts, etc. in the ruleset file. You will see this testing begin when you open this pull request.
-
-If this is not your first time and you have open PRs that have not been closed or merged, please revisit them by searching: `https://github.com/EFForg/https-everywhere/issues?q=is%3Aopen+assignee%3A[yourusernamehere]`. If there is something not being addressed by other maintainers or a project lead, link them to the PR with your question. Thank you for your patience.
-
-More helpful filters in Pull Request search:
-- Changes requested: 
-`is:pr is:open type:pr review:changes_requested author:[your username]`
-- Updated from specific date: 
-`is:pr updated:>yyyy-mm-dd`
-- Merged PRs: 
- `is:pr is:merged author:[your username]`
-- Approved PRs: 
-`is:pr review:approved author:[your username]`
+## Existing Contributors
+If you have open PRs that have not been closed or merged, please revisit them by searching: `https://github.com/EFForg/https-everywhere/issues?q=is%3Aopen+assignee%3A[yourusernamehere]`. 
@@ -1,4 +1,4 @@
-[![Build Status](https://travis-ci.org/EFForg/https-everywhere.svg?branch=master)](https://travis-ci.org/EFForg/https-everywhere)
+[![Build Status](https://travis-ci.com/EFForg/https-everywhere.svg?branch=master)](https://travis-ci.com/EFForg/https-everywhere)
 [![Coverage Status](https://coveralls.io/repos/github/EFForg/https-everywhere/badge.svg?branch=master)](https://coveralls.io/github/EFForg/https-everywhere?branch=master)
 
 # Getting Started With HTTPS Everywhere
 
@@ -0,0 +1,32 @@
+# Browser Distribution Special Cases
+
+## Edge
+
+Case:
+Edge does not accept CRX files for direct upload to store.
+
+Work around: `edge.sh`
+
+## Opera
+
+Case:
+Opera does not accept `default.rulesets` due to strict MIME type restriction
+
+In order to not disrupt many downstream channels, we are building a separate CRX file for Opera for now.
+
+Work around: `opera.sh`
+
+## Build process
+
+These scripts are normally ran after main build and deployment is finished. The reason being we want a confirmed CRX file upload to Chrome to build the Edge zip and Opera crx distributions on.
+
+## CRX Verification of Files before Upload
+
+Install Node Package for CRX Verification via NPM
+`[sudo] npm -g i crx3-utils`
+
+### Verify CRX file
+
+1. `crx3-info rsa 0 < $crx > public.pem`
+2. `crx3-verify rsa 0 public.pem < $crx`
+3. `echo "CRX verified"`
@@ -1,17 +1,10 @@
 #!/bin/bash
 # Written for transparency and reproducibility on Edge upload
+# See browser-dist.md for more info
 
-# Install Node Package for CRX Verification via NPM
-# [sudo] npm -g i crx3-utils
-
-# Verify CRX file
-# crx3-info rsa 0 < $crx_cws > public.pem
-# crx3-verify rsa 0 public.pem < $crx_cws
-# echo "CRX verified"
-
-VERSION=`python3.6 -c "import json ; print(json.loads(open('chromium/manifest.json').read())['version'])"`
-crx_cws="pkg/https-everywhere-$VERSION-cws.crx"
-crx_eff="pkg/https-everywhere-$VERSION-eff.crx"
+VERSION=`python3.6 -c "import json ; print(json.loads(open('../chromium/manifest.json').read())['version'])"`
+crx_cws="../pkg/https-everywhere-$VERSION-cws.crx"
+crx_eff="../pkg/https-everywhere-$VERSION-eff.crx"
 
 crx3-info rsa 0 < $crx_cws > public.pem
 crx3-verify rsa 0 public.pem < $crx_cws
@@ -24,7 +17,7 @@ crx3-info < $crx_eff | awk '/^header/ {print $2}' \
 
 echo >&2 "Edge zip package has sha256sum: `openssl dgst -sha256 -binary "https-everywhere-$VERSION-edge.zip" | xxd -p`"
 
-mv https-everywhere-$VERSION-edge.zip pkg/https-everywhere-$VERSION-edge.zip
+mv https-everywhere-$VERSION-edge.zip ../pkg/https-everywhere-$VERSION-edge.zip
 
 echo "Created pkg/https-everywhere-$VERSION-edge.zip"
 
 
@@ -0,0 +1,168 @@
+#!/usr/bin/env bash
+
+# Build an HTTPS Everywhere Opera CRX Distribution
+# Written for transparency and reproducibility on Opera upload
+# See browser-dist.md for more info
+
+# To build the current state of the tree:
+#
+#     ./browser-dist-opera.sh
+#
+# To build a particular tagged release:
+#
+#     ./browser-dist-opera.sh <version number>
+#
+# eg:
+#
+#     ./browser-dist-opera.sh 2017.8.15
+#
+# Note that .crx files must be signed; this script makes you a
+# "dummy-chromium.pem" private key for you to sign your own local releases,
+# but these .crx files won't detect and upgrade to official HTTPS Everywhere
+# releases signed by EFF :/.  We should find a more elegant arrangement.
+
+! getopt --test > /dev/null
+if [[ ${PIPESTATUS[0]} -ne 4 ]]; then
+  echo 'I’m sorry, `getopt --test` failed in this environment.'
+  exit 1
+fi
+
+OPTIONS=eck:
+LONGOPTS=remove-extension-update,remove-update-channels,key:
+! PARSED=$(getopt --options=$OPTIONS --longoptions=$LONGOPTS --name "$0" -- "$@")
+if [[ ${PIPESTATUS[0]} -ne 0 ]]; then
+  # e.g. return value is 1
+  #  then getopt has complained about wrong arguments to stdout
+  exit 2
+fi
+
+# read getopt’s output this way to handle the quoting right:
+eval set -- "$PARSED"
+
+REMOVE_EXTENSION_UPDATE=false
+REMOVE_UPDATE_CHANNELS=false
+KEY=$(pwd)/dummy-chromium.pem
+while true; do
+  case "$1" in
+    -e|--remove-extension-update)
+      REMOVE_EXTENSION_UPDATE=true
+      shift
+      ;;
+    -c|--remove-update-channels)
+      REMOVE_UPDATE_CHANNELS=true
+      shift
+      ;;
+    -k|--key)
+      KEY="$2"
+      shift 2
+      ;;
+    --)
+      shift
+      break
+      ;;
+    *)
+      echo "Programming error"
+      exit 3
+      ;;
+  esac
+done
+
+if [ "${KEY:0:1}" != "/" ]; then
+  echo "Key must be specified as an absolute path."
+  exit 4
+fi
+
+cd $(dirname $0)
+
+if [ -n "$1" ]; then
+  BRANCH=`git branch | head -n 1 | cut -d \  -f 2-`
+  SUBDIR=checkout
+  [ -d $SUBDIR ] || mkdir $SUBDIR
+  cp -r -f -a .git $SUBDIR
+  cd $SUBDIR
+  git reset --hard "$1"
+  git submodule update --recursive -f
+fi
+
+VERSION=`python3.6 -c "import json ; print(json.loads(open('../chromium/manifest.json').read())['version'])"`
+
+echo "Building version" $VERSION
+
+[ -d pkg ] || mkdir -p ../pkg
+[ -e pkg/crx-opera ] && rm -rf ../pkg/crx-opera
+
+# Clean up obsolete ruleset databases, just in case they still exist.
+rm -f src/chrome/content/rules/default.rulesets src/defaults/rulesets.sqlite
+
+mkdir -p ../pkg/crx-opera/rules
+cd ../pkg/crx-opera
+cp -a ../../chromium/* ./
+# Turn the Firefox translations into the appropriate Chrome format:
+rm -rf _locales/
+mkdir _locales/
+python3.6 ../../utils/chromium-translations.py ../../translations/ _locales/
+python3.6 ../../utils/chromium-translations.py ../../src/chrome/locale/ _locales/
+do_not_ship="*.py *.xml"
+rm -f $do_not_ship
+
+mkdir wasm
+cp ../../lib-wasm/pkg/*.wasm wasm
+cp ../../lib-wasm/pkg/*.js wasm
+
+cd ../..
+
+python3.6 ./utils/merge-rulesets.py || exit 5
+
+cp src/chrome/content/rules/default.rulesets.json pkg/crx-opera/rules/default.rulesets.json
+
+sed -i -e "s/VERSION/$VERSION/g" pkg/crx-opera/manifest.json
+
+for x in `cat .build_exclusions`; do
+  rm -rf pkg/crx-opera/$x
+done
+
+#Create Opera CRX caveat
+cd pkg/crx-opera
+sed -i 's/rules\/default.rulesets/rules\/default.rulesets.json/g' background-scripts/update.js
+cd ../..
+
+# Remove the 'applications' manifest key from the crx version of the extension, change the 'author' string to a hash, and add the "update_url" manifest key
+# "update_url" needs to be present to avoid problems reported in https://bugs.chromium.org/p/chromium/issues/detail?id=805755
+python3.6 -c "import json; m=json.loads(open('pkg/crx-opera/manifest.json').read()); m['author']={'email': 'eff.software.projects@gmail.com'}; del m['applications']; open('pkg/crx-opera/manifest.json','w').write(json.dumps(m,indent=4,sort_keys=True))"
+
+# If the --remove-update-channels flag is set, remove all out-of-band update channels
+if $REMOVE_UPDATE_CHANNELS; then
+  echo "Flag --remove-update-channels specified.  Removing all out-of-band update channels."
+  echo "require.scopes.update_channels.update_channels = [];" >> pkg/crx-opera/background-scripts/update_channels.js
+fi
+
+if [ -n "$BRANCH" ] ; then
+  crx_opera="pkg/https-everywhere-$VERSION-opera.crx"
+else
+  crx_opera="pkg/https-everywhere-$VERSION-pre-opera.crx"
+fi
+if ! [ -f "$KEY" ] ; then
+  echo "Making a dummy signing key for local build purposes"
+  openssl genrsa -out /tmp/dummy-chromium.pem 768
+  openssl pkcs8 -topk8 -nocrypt -in /tmp/dummy-chromium.pem -out $KEY
+fi
+
+# now pack the crx'es
+BROWSER="chromium-browser"
+which $BROWSER || BROWSER="chromium"
+
+$BROWSER --no-message-box --pack-extension="pkg/crx-opera" --pack-extension-key="$KEY" 2> /dev/null
+
+mv pkg/crx-opera.crx $crx_opera
+
+echo >&2 "Opera crx package has sha256sum: `openssl dgst -sha256 -binary "$crx_opera" | xxd -p`"
+echo >&2 "Total included rules: `find src/chrome/content/rules -name "*.xml" | wc -l`"
+echo >&2 "Rules disabled by default: `find src/chrome/content/rules -name "*.xml" | xargs grep -F default_off | wc -l`"
+
+echo "Created $crx_opera"
+
+if [ -n "$BRANCH" ]; then
+  cd ..
+  cp $SUBDIR/$crx_opera pkg
+  rm -rf $SUBDIR
+fi
@@ -181,14 +181,18 @@ function updateState () {
     title: 'HTTPS Everywhere' + ((iconState === 'active') ? '' : ' (' + iconState + ')')
   });
 
-  chrome.tabs.query({ active: true, currentWindow: true }, function(tabs) {
-    if (!tabs || tabs.length === 0) {
+  const chromeUrl = 'chrome://';
+
+  chrome.tabs.query({ active: true, currentWindow: true, status: 'complete' }, function(tabs) {
+    if (!tabs || tabs.length === 0 || tabs[0].url.startsWith(chromeUrl) ) {
       return;
     }
+
+    // tabUrl.host instead of hostname should be used to show the "disabled" status properly (#19293)
     const tabUrl = new URL(tabs[0].url);
-    const hostname = util.getNormalisedHostname(tabUrl.hostname);
+    const host = util.getNormalisedHostname(tabUrl.host);
 
-    if (isExtensionDisabledOnSite(hostname) || iconState == "disabled") {
+    if (isExtensionDisabledOnSite(host) || iconState == "disabled") {
       if ('setIcon' in chrome.browserAction) {
         chrome.browserAction.setIcon({
           path: {
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-[![Build Status](https://travis-ci.org/EFForg/https-everywhere.svg?branch=master)](https://travis-ci.org/EFForg/https-everywhere)`
	`1`	`+[![Build Status](https://travis-ci.com/EFForg/https-everywhere.svg?branch=master)](https://travis-ci.com/EFForg/https-everywhere)`
`2`	`2`	`[![Coverage Status](https://coveralls.io/repos/github/EFForg/https-everywhere/badge.svg?branch=master)](https://coveralls.io/github/EFForg/https-everywhere?branch=master)`
`3`	`3`
`4`	`4`	`# Getting Started With HTTPS Everywhere`