wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
200,769 Commits 1 Branch 166 Tags 1.2 GiB
00081078d1
Commit Graph

2352 Commits

Author SHA1 Message Date
ffxbld
85d5bc24cb No bug, Automated HSTS preload list update from host bld-linux64-spot-1092 - a=hsts-update 2014-07-11 06:18:58 -07:00
Ed Morley
9358d5e60d Backed out changeset 5460c4558253 (bug 1026398) for test_WebCrypto.html timeouts on B2G; CLOSED TREE 2014-07-11 17:01:44 +01:00
Mike Hommey
34799e0459 Bug 1036864 - Remove EXPORT_LIBRARY. r=mshal 2014-07-11 19:06:55 +09:00
Brian Smith
099078bdd4 Bug 1036765: Disable cipher suites that are not in the "Browser Cipher Suite" proposal that are still enabled, r=keeler 
--HG--
extra : rebase_source : af06ac8fe6c2132b942ca4a1a50a12505b3ca508
extra : histedit_source : 2127635c80fbff235136980990993e753509e802
 2014-07-09 18:33:38 -07:00
Harsh Pathak
5702dd0994 Bug 1036080 - Fix addCertFromBase64() to update trust bits of existing permanent certificates. r=keeler 2014-07-10 11:38:00 +02:00
Richard Barnes
a4246ff00b Bug 1021607 - Add support for PBKDF2 to WebCrypto API. r=bz 
0001 - Introduce BasicSymmetricKeyAlgorithm r=rbarnes
0002 - Implement import key operation for PBKDF2 r=bz,rbarnes
0003 - Introduce MapAlgorithmNameToMechanism() r=rbarnes
0004 - Implement derive bits operation for PBKDF2 r=rbarnes,keeler,bz
0005 - Introduce GetKeySizeForAlgorithm() r=rbarnes
0006 - Implement derive keys operation for PBKDF2 r=rbarnes,bz
 2014-07-12 20:06:00 +02:00
Richard Barnes
66dd601f2e Bug 1026398 - Add support for RSA-OAEP to WebCrypto API. r=bz,dkeeler 2014-07-10 13:44:00 +02:00
Nathan Yee
c1af2b1f8c Bug 1006671 - Remove unnecessary JSContext argument to nsContentUtils::GetContentSecurityPolicy. r=bholley 2014-07-10 19:25:00 +02:00
Monica Chew
19c176c253 Bug 1036142: Don't use kPublicKeyPinningPreloadListLength (r=keeler) 2014-07-09 12:58:40 -07:00
Brian Smith
2acb003cf7 Bug 1035942: Decide whether to consider end-entity CN as a dnsName in CheckNameConstraints instead of in BuildCertChain, r=cviecco 
--HG--
extra : rebase_source : 19c5949253e4e631b0bd841f17f000885001b327
extra : histedit_source : dce57eb862a2a13d07d11fdf6917afcf6cb4136c
 2014-07-08 13:04:17 -07:00
Brian Smith
933349c458 Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : fc2b39e5e2b44fea365914e83a7d1f2dc9b784bc
extra : histedit_source : b40e5e8cb106fe87f6f065b01ca43adb0bf3a605
 2014-07-06 15:55:38 -07:00
Mike Shal
53bb55f870 Bug 1036569 - Fix NSS_STATIC_LIBS with carriage return on Windows; r=glandium 2014-07-09 14:38:29 -04:00
Camilo Viecco
fb2c781450 Bug 1030204 - 2/2 Tests for Name constraints for ANSSI(DCISS) Root cert in psm. r=keeler 
--HG--
extra : rebase_source : 0b64f7206446a8c414df5b0f4a9653f0180b8b44
 2014-07-08 16:16:22 -07:00
Camilo Viecco
aa93d0ab47 Bug 1030204 - 1/2 Name constraint ANSSI(DCISS) Root cert in mozilla::pkix. r=keeler 
--HG--
extra : rebase_source : 221ca75af601649731bf83cace2e6b0edcd4b2ab
 2014-07-08 16:16:26 -07:00
Monica Chew
cc5aa7e8c9 Bug 1035923: Remove deprecated certs from google_root_pems (r=keeler) 2014-07-08 16:01:29 -07:00
Benoit Jacob
9f994d73ff Bug 1035394 - Fix dangerous public destructors in security/ - r=bsmith 2014-07-08 17:23:18 -04:00
Camilo Viecco
8283ff18cf Bug 827264 - Add some temporary android logging to nss. r=blassey 
--HG--
extra : rebase_source : 8f16d6b6cbaed2ef51fb5d1ecf7edbb0b8568ffe
 2014-06-27 13:55:11 -07:00
Chris Peterson
9a5e2a9b04 Bug 1035607 - Remove unused empty_null to fix -Wunused warning-as-error in security/pkix. r=briansmith 2014-07-07 20:37:21 -07:00
Brian Smith
5eb8373fd1 Bug 1035470: Use signature algorithm OID instead of digest algorithm OID in the signature field of certificates in mozilla::pkix tests, r=cviecco 
--HG--
extra : rebase_source : 99b1d5c0739221e90d4b04738f9362135f42a23c
 2014-07-07 00:46:10 -07:00
David Keeler
fd11c69fbe bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith 2014-07-07 15:33:24 -07:00
Brian Smith
bed8b45b5f Bug 1035008, Part 2: Modify existing mozilla::pkix GTests to follow naming conventions, r=mmc 
--HG--
rename : security/pkix/test/gtest/pkix_cert_chain_length_tests.cpp => security/pkix/test/gtest/pkixbuild_tests.cpp
rename : security/pkix/test/gtest/pkix_cert_extension_tests.cpp => security/pkix/test/gtest/pkixcert_extension_tests.cpp
rename : security/pkix/test/gtest/pkix_ocsp_request_tests.cpp => security/pkix/test/gtest/pkixocsp_CreateEncodedOCSPRequest_tests.cpp
extra : rebase_source : 05035197c37cd2fecf0c6e2f5231eeabfd4f64fd
extra : histedit_source : db050cf69b025e34e992a68b8b57665608c6a3d9
 2014-07-05 22:14:25 -07:00
Brian Smith
c4fb415d00 Bug 1035008, Part 1: Document naming convention for mozilla::pkix GTests, r=mmc 
--HG--
extra : rebase_source : 8239f56513d8aba59eb8851bd219295fb6920b64
extra : histedit_source : 90856c24e66c7cc451c65cfd72a005cb2949085a
 2014-07-06 15:59:08 -07:00
Brian Smith
553d629d7a Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc 
--HG--
extra : rebase_source : 68e6da2f1e1c7fa678ef4cc81d23cc6298709108
extra : histedit_source : feba4c589dbf004ee50e2dea1fca0809f8f97674
 2014-07-03 21:49:56 -07:00
Brian Smith
5a21cfd0b8 Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler 
--HG--
extra : rebase_source : e8c734ecb2de2c52dd8909c8b48f4bdb09d0128e
 2014-07-02 16:15:16 -07:00
Brian Smith
b79a1c89fd Bug 1033563, Part 2: Convert mozilla::pkix::BuildForwardInner into an iterator-type thing, r=keeler 
--HG--
extra : rebase_source : 175e308191441035db4f3eed4a855205bab1a3f3
 2014-07-02 15:03:58 -07:00
Brian Smith
bcfeba808b Bug 1033563, Part 1: Move revocation checking code from mozilla::pkix::BuildForward to BuildForwardInner, r=keeler 
--HG--
extra : rebase_source : 0f11eb64ffb00d953c39d81f4877067bd173eadd
 2014-07-02 12:21:41 -07:00
Brian Smith
3fbb0b3f6f Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler 
--HG--
extra : rebase_source : e093922497d005734c590a59f175993a7715bce8
 2014-07-03 16:59:42 -07:00
Brian Smith
03a7a82015 Bug 1035034: Fix typo in CertVerifier, r=cviecco 
--HG--
extra : rebase_source : b8871ee8cf1e156ef48d363ea49e8b82ab268d98
 2014-07-06 19:15:13 -07:00
Monica Chew
623d51eebd Bug 1027133: Set test_mode=false for *.twitter.com (r=keeler) 2014-07-07 08:58:13 -07:00
Jan de Mooij
f3876da607 Bug 1034191 - Make nsDependentJSString users work with Latin1 strings and nursery-allocated strings. r=bz 2014-07-05 17:30:54 +02:00
Brian Smith
fc71053614 Bug 1029247, Part 1: Add new overload to mozilla::pkix::bind, r=keeler 
--HG--
extra : rebase_source : 7a9dc499ed6ad038e4840953744a9fcd6578290b
 2014-06-21 18:06:30 -07:00
Brian Smith
2a75487977 Bug 1034634: Improve ScopedNSSTypes.h to compile without warnings, r=mmc 
--HG--
extra : rebase_source : a9cbc1ab3083f1e893552c49a4518453f3b7d1b7
 2014-07-03 20:40:46 -07:00
Brian Smith
c4cc6ed7fe Bug 1034632: Fix suppression of warnings for MOZILLA_PKIX_ENUM_CLASS, r=mmc 
--HG--
extra : rebase_source : 962fa75dab803f1d139096fa5d41b4b656e32f86
 2014-07-03 20:41:07 -07:00
Brian Smith
8fab5c044b Bug 1034412: Clarify definition of mozilla::pkix::der::SEQUENCE, r=mmc 
--HG--
extra : rebase_source : 3e139a66133c1d7916fbc13c7cec2b12e9545122
 2014-06-30 21:58:34 -07:00
Zack Weinberg
32d9c9ea16 Bug 234856: add automated test case (fixed by bug 235230). r=kaie 2014-07-04 12:22:32 -04:00
Marco Castelluccio
502488e17f Bug 1029674 - Fix installation of apps with custom origin. r=myk,keeler 
--HG--
rename : toolkit/webapps/tests/test_packaged_launch.xul => toolkit/webapps/tests/test_custom_origin.xul
 2014-07-04 15:23:16 +02:00
Harsh Pathak
e99f23fe2a Bug 643041 - Merge nsIX509Cert2 and nsIX509Cert3 into nsIX509Cert, and merge nsIX509CertDB2 into nsIX509CertDB. r=keeler 
--HG--
extra : rebase_source : 5283c637e45dbee9f741d56cda54fdef1afce16e
 2014-07-03 22:09:24 -07:00
Brian Smith
7b6be57012 Bug 1019770: Add tests for checking of notAfter and notBefore, r=cviecco 
--HG--
extra : rebase_source : 614e002886ffa73e7e38218ebb3ea2509edcd1a4
 2014-06-30 19:12:35 -07:00
Monica Chew
eb4493c61e Bug 1033872: Split off api.accounts.firefox.com into a separate pinset (r=keeler) 2014-07-03 16:41:57 -07:00
Kai Engert
b3a6a89654 Bug 1029561, Update to NSS 3.16.3 after July 1st to include root CA updates, r=rrelyea 2014-07-03 17:24:18 +02:00
Jed Davis
3f6af7940d Bug 956961 - Stop disabling sandboxing when DMD is enabled. r=kang 
--HG--
extra : rebase_source : 4737cfd613c1ddee8e1a4340e819eddc151e73f7
extra : histedit_source : 2d2610a775a3ae986157f61ef3797f4e88baa922
 2014-07-02 11:28:48 -07:00
Brian Smith
dfd86db724 Bug 1033103: Add and use mozilla::pkix::der::ExpectTagAndGetTLV, r=keeler 
--HG--
extra : rebase_source : 16461be12705998799f5c84e2043d68b0c431cb0
 2014-07-01 13:25:43 -07:00
Brian Smith
dc76ff25af Bug 1033092: Add unit tests for mozilla::pkix::der::ExpectTagAndGetValue, r=keeler 
--HG--
extra : rebase_source : 8ad8960969e5ee5bf47054f1c285a85cbbdb18cf
 2014-07-01 16:28:45 -07:00
Wes Kocher
fe83138bd2 Backed out changeset 5206957b4f83 (bug 940506) for build bustage on a CLOSED TREE 2014-07-02 18:15:55 -07:00
Wes Kocher
0908f44530 Merge m-c to inbound 2014-07-02 17:44:20 -07:00
Wes Kocher
fa731a610f Merge inbound to m-c a=merge 2014-07-02 16:31:17 -07:00
David Keeler
f6f318b87e bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith 2014-07-02 11:15:26 -07:00
ffxbld
df12ae1cab No bug, Automated HPKP preload list update from host b-linux64-hp-0034 - a=hpkp-update 2014-07-02 10:05:51 -07:00
ffxbld
48e720cb5d No bug, Automated HSTS preload list update from host b-linux64-hp-0034 - a=hsts-update 2014-07-02 10:05:48 -07:00
Wes Kocher
d92a5b23cd Backed out 3 changesets (bug 956961) for non-unified build bustage 
Backed out changeset f1be89cb58b9 (bug 956961)
Backed out changeset 272b01e4f856 (bug 956961)
Backed out changeset 56907af18c66 (bug 956961)
 2014-07-02 15:03:29 -07:00
Brian Smith
20075d3df1 Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler 
--HG--
extra : rebase_source : d0bf802f4ff3fe9900ed7444c046617aa27faea9
 2014-06-26 14:22:20 -07:00
Brian Smith
13052afa8c Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco 
--HG--
extra : rebase_source : f38fd90973b4bdf2cff5887c7d48f7e7b2a7126b
 2014-07-01 18:01:28 -07:00
Brian Smith
1e4093339b Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco 
--HG--
extra : rebase_source : fe0b6f06a374dd1e50233c352031e6fdbde1c5f9
 2014-06-24 10:51:53 -07:00
Brian Smith
3b5593733c Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco 
--HG--
extra : rebase_source : 2b1fa83599c4d0748757b25b56f65e10d41504c8
 2014-06-24 21:48:12 -07:00
Brian Smith
253d71fecc Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler 
--HG--
extra : rebase_source : 22eaa4fbeb20d9b9524d550c1979f5ec27d963ac
 2014-06-29 15:15:45 -07:00
Wes Kocher
a52766dedc Backed out changeset 6728977a3687 (bug 1031952) to fix bustage on a CLOSED TREE 2014-07-01 17:44:18 -07:00
Wes Kocher
ea96ce4eb0 Backed out changeset 5ea9b7bd2db5 (bug 1019770) 2014-07-01 17:43:47 -07:00
Wes Kocher
3d70d4912f Backed out changeset 981f8345edd8 (bug 1019770) 2014-07-01 17:43:43 -07:00
Wes Kocher
e5ef7095c6 Backed out changeset 91b03a644dbe (bug 1019770) 2014-07-01 17:43:38 -07:00
Wes Kocher
e457a0c0df Backed out changeset f97578949399 (bug 1032947) 2014-07-01 17:43:33 -07:00
Brian Smith
9d8bb6e323 Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler 
--HG--
extra : rebase_source : 64bd4c390f708213242e0d4987b7117b0049d02a
 2014-06-26 14:22:20 -07:00
Brian Smith
f45951674f Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco 
--HG--
extra : rebase_source : 5e8171a2a849d61866ccdff33f06d96f04fc4bd5
 2014-06-30 17:11:56 -07:00
Brian Smith
02035602d7 Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco 
--HG--
extra : rebase_source : 8c891cc5269482d1ccf4c1c688e5576a2b8864f8
 2014-06-24 10:51:53 -07:00
Brian Smith
37c9f2e16e Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco 
--HG--
extra : rebase_source : 05e348b4ae9bb88fdd0895ec5dcec55993ca17c4
 2014-06-24 21:48:12 -07:00
Brian Smith
8aa0c2e951 Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler 
--HG--
extra : rebase_source : 92ccc85ffe5db10649242d8796daecc6833ca14a
 2014-06-29 15:15:45 -07:00
Monica Chew
2859747c94 Bug 1012875: Expire pins in 8 weeks once they reach stable (r=keeler) 2014-07-02 11:34:04 -07:00
Jed Davis
39a3952769 Bug 956961 - Stop disabling sandboxing when DMD is enabled. r=kang 
--HG--
extra : amend_source : 66f2453794e6a8a581e1564e786cfc8cac1f6bbd
 2014-07-02 11:28:48 -07:00
David Keeler
2e07a29997 bug 1019770 - follow-up to remove unused const GENERALIZED_TIME_LENGTH r=briansmith 2014-07-02 10:04:31 -07:00
David Keeler
9e5235aedf bug 1025332 - use nsIDocshell.failedChannel in certificate exception dialog instead of recent bad certs service r=jaws 2014-06-13 16:13:09 -07:00
Kyle Huey
b0f4a14fc1 Bug 1031051: Part 18 - Kill the old XPIDL-based event generator. r=smaug 2014-06-30 16:02:04 -07:00
Kyle Huey
217b65221f Bug 1031051: Part 8 - Migrate SmartCardEvent to the WebIDL code generator. r=smaug 2014-06-30 16:02:02 -07:00
David Keeler
9f21a22aec bug 1005266 - disable test_ocsp_timeout.js on windows for frequent intermittent failures r=mmc 2014-06-30 13:14:31 -07:00
Joshua Cranmer
c571752cd4 Fix spelling mistake in changeset 3018d1b623ab (bug 1025998), r=bustage-fix a=bustage-fix 
--HG--
extra : amend_source : 021b1b14fee5068e2176be9395c5c461f3333947
 2014-06-29 21:34:47 -05:00
Joshua Cranmer
6ea0f9460a Bug 1025998 - add a missed symbol for comm-central debug builds, rs=glandium, a=philor for landing on m-c directly. 2014-06-29 17:46:13 -05:00
Phil Ringnalda
f28441014f Merge m-i to m-c, a=merge 2014-06-28 17:39:03 -07:00
ffxbld
9992b272a1 No bug, Automated HSTS preload list update from host bld-linux64-spot-147 - a=hsts-update 2014-06-28 03:40:19 -07:00
Nathan Froyd
5c719fbc36 Bug 1025998 - part 2 - use hand-rolled .def files for linking NSS; r=glandium 2014-06-24 15:36:10 -04:00
Brian Smith
f99766963b Bug 1030475: Use a valid id-ce-inhibitAnyPolicy extension value for test pkix_cert_extensions.KnownCriticalCEExtension, r=keeler 
--HG--
extra : rebase_source : 34972b2842d65ad6d716b0fbccf4984f9efd1fbf
 2014-06-25 17:14:32 -07:00
Brian Smith
ffa6744d0b Bug 1030478: Make the AIA extension used in pkix_cert_extensions.CriticalAIAExtension less invalid, r=keeler 
--HG--
extra : rebase_source : 42241cb4c8d2ba4e3e0ccc937059f9510765314b
 2014-06-25 16:42:50 -07:00
Brian Smith
da88992387 Bug 1031022: Go back to accepting explicit encoding of v1 for certificates and OCSP responses, r=cviecco 
--HG--
extra : rebase_source : f0adf63879a48db6c036cce1a3e9a7b65e44fc4e
 2014-06-26 17:03:48 -07:00
Carsten "Tomcat" Book
9c954f17e2 merge fx-team to mozilla-central a=merge 2014-06-26 15:33:24 +02:00
Wes Kocher
97b6283a0e Merge m-c to fx-team a=merge 2014-06-25 18:44:50 -07:00
Nathan Froyd
fd1e19ecd1 Backout bcd72aabb661, 1ed1c6212f4c, and 8d6f286139ef (bug 1025998) for xpcshell bustage leading to this CLOSED TREE 2014-06-25 17:00:06 -04:00
Nathan Froyd
9b746be8ce Bug 1025998 - also export symbols groveled out of NSS by ctypes; r=me to reopen this CLOSED TREE 2014-06-25 15:14:49 -04:00
Brian Smith
4b43ae2a1c Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler 
--HG--
extra : rebase_source : a1d66b75838e9dfad486f5654db6d977e5c1d97a
extra : histedit_source : 34e05d8b3d94500b9cb4f1e311f8fe526b97ba6e
 2014-06-24 21:52:50 -07:00
Brian Smith
33a324f644 Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco 
--HG--
extra : rebase_source : 7e91710ed7cd6e68875c2d26f0b503835968e1f2
extra : histedit_source : e07446cad5edbf6cbb048304bc2b2af4395410db
 2014-06-25 01:32:06 -07:00
Brian Smith
8ccb29582c Bug 1029992, Improve AlgorithmIdentifier decoding in mozilla::pkix, r=cviecco 
--HG--
extra : rebase_source : dec7d3e00afe3a9e433f789baf09c0c41679b0e2
extra : histedit_source : 47657cfde7a266b5d5322b024800abe316e9dbd6
 2014-06-24 21:47:50 -07:00
Nathan Froyd
227bbe7f5d Bug 1025998 - part 2 - use hand-rolled .def files for linking NSS; r=glandium 2014-06-24 15:36:10 -04:00
Kai Engert
9097ccebde Bug 1020695, Update Mozilla to use NSS 3.16.2, r=wtc 2014-06-25 11:25:59 +02:00
Carsten "Tomcat" Book
ebf69ab96b Backed out changeset 4f21e9bc729a (bug 1029364) for B2G Device and Emulator Bustage on a CLOSED TREE 2014-06-25 10:01:17 +02:00
Carsten "Tomcat" Book
41a513b25c Backed out changeset a10da316a35f (bug 1029341) 2014-06-25 10:00:42 +02:00
Brian Smith
68788eeb9c Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler 
--HG--
extra : rebase_source : e307bea95d29cf78c9eaa7ddb1f2b2c195a59dc9
 2014-06-24 21:52:50 -07:00
Brian Smith
39d3680e86 Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco 
--HG--
extra : rebase_source : 79d5f29c2af1ec77d6bb8a7936bb0a17f28e8d52
 2014-06-19 16:17:28 -07:00
Jim Blandy
b6b202b6bb Bug 914753: Make Emacs file variable header lines correct, or at least consistent. DONTBUILD r=ehsan 
The -*- file variable lines -*- establish per-file settings that Emacs will
pick up. This patch makes the following changes to those lines (and touches
nothing else):

 - Never set the buffer's mode.

   Years ago, Emacs did not have a good JavaScript mode, so it made sense
   to use Java or C++ mode in .js files. However, Emacs has had js-mode for
   years now; it's perfectly serviceable, and is available and enabled by
   default in all major Emacs packagings.

   Selecting a mode in the -*- file variable line -*- is almost always the
   wrong thing to do anyway. It overrides Emacs's default choice, which is
   (now) reasonable; and even worse, it overrides settings the user might
   have made in their '.emacs' file for that file extension. It's only
   useful when there's something specific about that particular file that
   makes a particular mode appropriate.

 - Correctly propagate settings that establish the correct indentation
   level for this file: c-basic-offset and js2-basic-offset should be
   js-indent-level. Whatever value they're given should be preserved;
   different parts of our tree use different indentation styles.

 - We don't use tabs in Mozilla JS code. Always set indent-tabs-mode: nil.
   Remove tab-width: settings, at least in files that don't contain tab
   characters.

 - Remove js2-mode settings that belong in the user's .emacs file, like
   js2-skip-preprocessor-directives.
 2014-06-24 22:12:07 -07:00
Brian R. Bondy
1a59235ead Bug 598615 - Rename HAVE_64BIT_OS to HAVE_64BIT_BUILD. r=ted 2014-06-24 22:16:25 -04:00
Wes Kocher
e1dd0ab43e Backed out 2 changesets (bug 1027890) for B2G Windows Build bustage on a CLOSED TREE 
Backed out changeset bcd694f0e95d (bug 1027890)
Backed out changeset 49cadfcde709 (bug 1027890)
 2014-06-24 18:33:46 -07:00
Mike Hommey
a56bc0ee1c Bug 1027890 - Remove all sorts of build system code dedicated to pymake. r=gps 2014-06-25 08:38:28 +09:00
Cykesiopka
63a1d33bc6 Bug 270016 - Make the list of certs shown in the Delete/Distrust cert dialog scrollable. r=keeler 2014-06-23 23:51:00 +02:00
Brian Smith
4212992a61 Bug 1028643: Convert nsISignatureVerifier to use CertVerifier (mozilla::pkix) and move nsISignatureVerifier functionality to nsIDataSignatureVerifier, r=keeler 
--HG--
extra : rebase_source : 14f6f5dedd7145d574ac5b4c86b6ad42b6716ae8
extra : histedit_source : f891fbe80c4ca9fc62849bc2d6d8ffad372a6bf0
 2014-06-22 18:50:22 -07:00
Brian Smith
bc23ff330b Bug 1028493: Remove unused stapledOCSPResponse parameter from CreateCetErrorRunnable, r=mmc 
--HG--
extra : rebase_source : 6ceddadff81fd607b53de317dc841e334bc76621
extra : histedit_source : d05fe4430c880da25c4d361977218ceb416d8f0d
 2014-06-20 19:43:09 -07:00
Benoit Jacob
c26bd2e511 Bug 1028588 - Fix dangerous public destructors in security/ - r=bsmith 2014-06-23 18:40:03 -04:00
Honza Bambas
fd24ec8def Bug 1023748 - Allow NTLMv1 over SSL/TLS by default, r=jduell 2014-06-23 19:43:40 +02:00
Ryan VanderMeulen
8f44adceee Merge inbound to m-c. a=merge 2014-06-23 10:42:32 -04:00
ffxbld
387e4e4978 No bug, Automated HSTS preload list update from host bld-linux64-spot-1030 - a=hsts-update 2014-06-21 03:14:13 -07:00
Harsh Pathak
ad1b14886e bug 956147 - Use Scoped PLArenaPool in GetSubjectAltNames to avoid memory leaks. r=keeler. 2014-06-19 14:36:31 -07:00
Brian Smith
3be55730af Bug 1006812: Use mozilla::pkix::der to decode the key usage extension, r=keeler 
--HG--
extra : rebase_source : e445c913994dc027e1179543d7b6cab2505e734d
 2014-06-19 00:13:20 -07:00
Camilo Viecco
4547fc975b Bug 1015973 - Improve cert error decoding. r=keeler 
--HG--
extra : rebase_source : e812bc94b7c30727ef3a17fab0dac03633254083
 2014-06-02 09:04:39 -07:00
David Keeler
7431ca657e bug 1027711 - remove some unused const variables in PSM r=cviecco 2014-06-19 10:31:06 -07:00
Brian Smith
ee56f24882 Bug 1027311, Part 3: Remove irrelevant & problematic extensions from test_cert_signatures test certificates, r=cviecco 
--HG--
extra : rebase_source : 574e46ea5664b1985ac19dab395e75f75f0bdccb
 2014-06-18 13:40:18 -07:00
Brian Smith
64d2f4a8e1 Bug 1027311, Part 2: Remove irrelevant & problematic extensions from test_ev_certs test certificates, r=cviecco 
--HG--
extra : rebase_source : 413b57030d95d8e0293933e01c5877909ceb27ff
 2014-06-18 15:05:45 -07:00
Brian Smith
f15940bcb5 Bug 1027311, Part 1: Remove irrelevant & problematic extensions from test_certificate_usages test certificates, r=cviecco 
--HG--
extra : rebase_source : e9a4072de3d24797929fc37c85ba99517bb6bad1
 2014-06-18 13:56:36 -07:00
Brian Smith
a8a48f6bb4 Bug 1027255: Add ASSERT_/EXPECT_ GTest helpers for mozilla::pkix::Result, r=mmc 
--HG--
extra : rebase_source : 2fb8807724ba59028ec32e8d287296a905bd3615
 2014-06-18 23:40:34 -07:00
Brian Smith
3398077c81 Bug 611752: Remove XPCOM CMS interfaces (nsICMS* and nsISMimeCert), r=keeler 
--HG--
extra : rebase_source : d5f70ff8b084fa9d53309d28d2ad478a478f4ff6
 2014-06-15 20:51:51 -07:00
Brian Smith
6879fc02dd Bug 1022970: Switch from UNIFIED_SOURCES back to SOURCES in security/pkix, security/certverifier, and security/manager/ssl/src, r=keeler 
--HG--
extra : rebase_source : 7d45d018be6b23af199c1e9c858fb5bb3bb5a01b
 2014-06-16 22:57:55 -07:00
Brian Smith
1ff76502ae Bug 1026371: Remove useless comments in CertVerifier.cpp, r=cviecco 
--HG--
extra : rebase_source : 58444ab17c68bcde6938540b3b074af55e417687
 2014-06-16 23:37:53 -07:00
Birunthan Mohanathas
c910458886 Bug 1016240 - Exterminate CR+LF line endings. r=briansmith,cpearce,ehsan,gavin 2014-06-18 17:56:02 -07:00
Benoit Jacob
79a09b081b Bug 1027251 - Fix or whitelist dangerous public destructors in security/ - r=bsmith 2014-06-18 22:29:00 -04:00
Monica Chew
955a182d6f Bug 1027133: Enable test mode for *.twitter.com (r=keeler) 2014-06-18 16:23:13 -04:00
David Keeler
23ad75a565 bug 1017826 - follow-up to fix indentation r=me a=whitespace-only DONTBUILD 2014-06-17 09:14:00 -07:00
Harsh Pathak
85a5bc6e6a Bug 1017826 - prevent a potential memory leak in OCSPCache::Put. r=keeler 2014-06-16 20:27:00 +02:00
Nathan Froyd
9e632a1ea1 Bug 1018375 - part 4 - use a linker script for libnss3 on Linux-like OSes; r=glandium 2014-05-30 14:34:54 -04:00
Nathan Froyd
7b6f38d2db Bug 1018375 - part 3 - use a static list of NSS def files for MOZ_FOLD_LIBS groveling; r=glandium 2014-06-03 14:23:06 -04:00
Harsh Pathak
2c75ba8d1d bug 550052 - add length check when decoding key usage bit strings. r=dkeeler 2014-06-10 16:56:00 +02:00
Harsh Pathak
b2c0ef83be Bug 1017348 - DumpASN1Object/ifdef-ed out code removed. r=dkeeler 2014-06-10 16:58:00 +02:00
Phil Ringnalda
61e8743b62 Merge m-i to m-c, a=merge 2014-06-15 09:28:20 -07:00
ffxbld
ae1625362c No bug, Automated HSTS preload list update from host bld-linux64-spot-006 - a=hsts-update 2014-06-14 03:14:44 -07:00
Wan-Teh Chang
61a2cf4501 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 4. Includes fixes for 
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150, bug 1007126, bug 1021102.
 2014-06-13 14:17:18 -07:00
Camilo Viecco
007c3dfb85 Bug 998513 - Test GeneralizedTime encodings in mozilla::pkix. r=keeler. 2014-06-13 12:50:11 -07:00
Wes Kocher
f0ebc18ca2 Merge m-c to fx-team 2014-06-11 18:52:12 -07:00
Monica Chew
68b5959bb3 Bug 1004352: Enable pinning for Google in production mode (r=keeler) 2014-06-11 15:32:37 -07:00
Gijs Kruitbosch
b881af4217 Bug 908534 - change of event sink should trigger OnSecurityChange notifications, r=dkeeler 2014-06-11 11:19:17 +01:00
David Keeler
72e5b879dd bug 1017160 - remove nsINSSCertErrorDialog and implementation r=cviecco 2014-06-09 16:35:35 -07:00
David Keeler
a1ba22a9d2 bug 1020993 - properly handle unknown critical extensions in BackCert::Init r=briansmith 2014-06-09 13:57:44 -07:00
Harsh Pathak
b671eb2af2 Bug 997370 - Update comment in nsIX509Cert.idl to reflect certificate fingerprint instead of public key. r=cviecco 2014-06-09 10:58:00 -04:00
Ryan VanderMeulen
6f355e5e59 Merge m-c to inbound on a CLOSED TREE. a=me 2014-06-07 13:36:44 -04:00
ffxbld
da3750634f No bug, Automated HSTS preload list update from host bld-linux64-spot-051 - a=hsts-update 2014-06-07 03:18:25 -07:00
David Keeler
d98be01fdd bug 1019198 - fail handshake if given an expired OCSP response and fetching a new one fails r=briansmith 2014-06-06 09:20:50 -07:00
Camilo Viecco
2754803080 Bug 1000548 - Leaking arenas allocated in mozilla::pkix r=keeler 
--HG--
extra : rebase_source : 6b0aaef098a4fa4d5749013a332b6b7602640b36
 2014-06-05 16:28:46 -07:00
Ed Morley
dd53384926 Backed out changeset 189492a9a115 (bug 1020695) for mochitest-2 failures in test_WebCrypto.html; CLOSED TREE 2014-06-05 15:52:01 +01:00
Wan-Teh Chang
1c2b9ab842 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for 
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
 2014-06-05 07:06:32 -07:00
Wan-Teh Chang
27b5fea348 Revert 8406a2b981c5 to fix build bustage. 
> Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
> bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
> bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
> bug 963150.
 2014-06-04 21:26:33 -07:00
Wan-Teh Chang
19a284c6e7 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for 
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
 2014-06-04 21:03:47 -07:00
David Keeler
afd6b3a4c0 bug 1003566 - part 2/2: prevent OCSP requests from being upgraded to HTTPS by HSTS r=cviecco 2014-06-04 09:58:28 -07:00
Camilo Viecco
f8058010ea Bug 1021797 - Rename ArenaFalseCleaner to PORT_FreeArena_false. r=keeler 
--HG--
extra : rebase_source : e7316ee06f58f42afbaf68d7e5f7948277fd15fd
 2014-06-06 14:11:08 -07:00
Monica Chew
2a8bdf8ac7 Bug 1020485: Enable pinning in test mode for accounts.firefox.com (r=keeler) 2014-06-06 13:44:59 -07:00
Brian Smith
d069eee1bd Bug 1020683, Part 3: Fix build bustage, a=BUSTAGE on a CLOSED TREE 
--HG--
extra : rebase_source : 8eaa3eae911b0e75129988d58a19e5e76257b369
 2014-06-06 12:04:36 -07:00
Brian Smith
842a9f0d8f Bug 1020682: Simplify mozilla::pkix results cert chain construction and make it more efficient, r=cviecco 
--HG--
extra : rebase_source : 69cb8ea66e075c89bbcbab3ca115cc2ccc95fa4f
 2014-06-04 01:28:44 -07:00
Brian Smith
94b0c6c505 Bug 1020683, Part 2: Remove more references to CERTCertificate from mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 9dce7585975fb23fe04f5714ece18645b22b2261
 2014-06-04 00:03:28 -07:00
Brian Smith
56c22cc57c Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler 
--HG--
extra : rebase_source : 416938498080c4d44874025f1da4562ab1c7c3c8
 2014-06-05 15:18:32 -07:00
Brian Smith
0988b16d24 Bug 1018411: Factor out signed data parsing in mozilla::pkix into a reusable and separately-testable function, r=keeler 
--HG--
extra : rebase_source : d65a760f9f8efb656f238794019bd451ca163c0b
 2014-05-31 18:54:34 -07:00
Mike Hommey
0fa0eb08c7 Bug 1027890 - Remove all sorts of build system code dedicated to pymake. r=gps 2014-06-25 08:38:28 +09:00
Jed Davis
1cac9a15d9 Bug 1014299 - Add times() to seccomp whitelist. r=kang 
This system call seems to be used by some versions of the Qualcomm Adreno
graphics drivers when we run WebGL apps.
 2014-06-02 14:52:00 +02:00
Sébastien Blin
6b33204ed4 Bug 1019722 - Remove a double assignment to lastRdn to fix a minor warning found by scan-build, the LLVM/Clang static analyzer. r=keeler 2014-06-02 20:16:14 +02:00
David Keeler
ca02748bb8 Bug 1009988 - OCSP tests: Precompute responses to prevent timeouts. r=cviecco 2014-06-02 11:35:27 -07:00
Monica Chew
2c499987c0 Bug 1019772: Enable production mode on pinning AMO (r=keeler) 2014-06-03 11:00:39 -07:00
Brian Smith
a33f724e49 Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler 
--HG--
extra : rebase_source : 9abf0522f02d00ac2f63f2327ddbe8d119ffc64f
 2014-06-03 10:47:25 -07:00
Brian Smith
8b52746412 Bug 1019109: Add DottedOIDToCode.py tool, r=keeler 
--HG--
extra : rebase_source : 44a92234f884af4500bc6eb5a1fc4dd4cfd38dc2
 2014-06-02 10:50:04 -07:00
Cykesiopka
fbf7f5908c Bug 235230 - Change IDL type of nsIX509Cert::windowTitle to AString; Original patch by Zack Weinberg. r=keeler 2014-06-01 13:59:00 +02:00
Brian Smith
d2755d917c Bug 1018633: Simplify the max cert chain length check code in mozilla::pkix and make it more efficient, r=cviecco 
--HG--
extra : rebase_source : 7fa4cc6c1b46357abed0c57c6e24c622049c5acb
 2014-05-31 16:32:58 -07:00
Brian Smith
92e40f8a7d Bug 1001188: Set the error code when the max cert chain length limit is exceeded, r=cviecco 
--HG--
extra : rebase_source : ce9e1faa083f5c679e20a2b6d9e8d482462e75b0
 2014-05-31 16:55:54 -07:00
Brian Smith
1e3170430a Bug 1018642: Factor out reusable NSS GTest infrastructure into a new NSSTest class, r=cviecco 
--HG--
extra : rebase_source : 101c316c1ea54f5092a21af4d7a1be349c504800
 2014-05-30 16:46:49 -07:00
Brian Smith
d0f950f5b2 Bug 1018064: Replace mozilla::pkix::der::Input::Match with mozilla::pkix::der::Input::MatchRest, r=mmc 
--HG--
extra : rebase_source : 5c5b14cf23b1e40854d241cbc482de40b01ac494
 2014-05-29 22:09:45 -07:00
Brian Smith
058c81082c Bug 1018061: Have mozilla::pkix::der::Input::Read use EnsureLength instead of its own checks, r=mmc 
--HG--
extra : rebase_source : f46d6b9bdcd7d7a272fb39f22312a89d2695db56
 2014-05-29 23:36:30 -07:00
Phil Ringnalda
7eb87d1b98 Merge m-i to m-c 2014-05-31 20:29:24 -07:00
ffxbld
3a8e6bfc3c No bug, Automated HSTS preload list update from host bld-linux64-spot-176 - a=hsts-update 2014-05-31 03:14:44 -07:00
Cykesiopka
39960f90db Bug 917510 - Replace SHA-1 fingerprints of EV certs in ExtendedValidation.cpp with SHA-2 fingerprints. r=briansmith, r=kwilson 2014-05-30 00:01:00 -04:00
Camilo Viecco
5f542bdf1c Bug 991815 - Part 2/2 - Tests for OCSP responses up to 1 year old. r=keeler 
--HG--
extra : rebase_source : cc012870da3a165a0a3d0d5c6c9671eeeda37f3f
 2014-05-28 14:08:02 -07:00
Camilo Viecco
553254501f Bug 991815 - Part 1/2 - Allow intermediate OCSP responses up to 1 year old. r=keeler 
--HG--
extra : rebase_source : 28d5336da1dc44932b92ce2c59fca5fcb2b8a3d8
 2014-05-30 16:12:36 -07:00
Nathan Froyd
2beaf5dea4 Bug 1017661 - remove MOZ_NSS_PATCH functionality; r=glandium 2014-05-29 12:16:58 -04:00
Brian Smith
03ace1f91a Bug 1018033: Prevent buffer read overflow due to integer overflow in mozilla::pkix::der::Input::EnsureLength, r=keeler 
--HG--
extra : rebase_source : e4e88d61e448fa475a106a06b9f32181906fba0f
 2014-05-29 23:37:40 -07:00
Brian Smith
7d0c4cf7ba Bug 1018041: Fix linking error in pkix_ocsp_request_tests when GTest is enabled on Windows, r=keeler 
--HG--
extra : rebase_source : 36c5ee4f5cc40adb1079e34bd309147a662fc45f
 2014-05-29 23:06:10 -07:00
Brian Smith
d099e18d30 Bug 1018018: Remove support/mention of proprietary Netscape certificate extensions from PSM, r=cviecco 
--HG--
extra : rebase_source : 758ff9384c040084b1015f8025a4ff9f33590176
 2014-05-29 20:38:25 -07:00
Brian Smith
f61831a128 Bug 1010634, Part 6: Enable -Wall with a few exceptions for certverifier, r=cviecco 
--HG--
extra : rebase_source : 611f0d65e7edb74345a4a599a6606de37e3da75e
 2014-05-15 21:56:23 -07:00
Brian Smith
1a0e4070a0 Bug 1010634, Part 5: Add private destructor to NSSErrorService in line with the XPCOM recommendations, r=cviecco 
--HG--
extra : rebase_source : 1f8b4558114eef0e1a15f51f0c814f16e05f6f76
 2014-05-29 20:18:17 -07:00
Brian Smith
78cf7bf1aa Bug 1010634, Part 3: Fix more warnings in CertVerifier, r=cviecco 
--HG--
extra : rebase_source : 21e79fbc472aeccec7df213e0cd8d99bebfbff75
 2014-05-29 20:17:53 -07:00
David Keeler
165f7dcea8 bug 1006710 - add class of PSM errors to SEC and SSL errors r=briansmith 2014-05-28 15:28:03 -07:00
Camilo Viecco
4c8d269435 Bug 1005142 - Part 2/2 - Basic OCSP fetch method tests. r=keeler 
--HG--
extra : rebase_source : 364a5d410eb3743ae0a03ebcf0a258e847d71743
 2014-05-23 09:47:41 -07:00
Camilo Viecco
d20bcaf3c2 Bug 1005142 - Part 1/2 - Add OCSP get capabilities to OCSPRequestor. r=keeler 
--HG--
extra : rebase_source : ee4a86bf02a466a31de8b0b6cd7ce375a7f28c6d
 2014-05-21 15:42:21 -07:00
David Keeler
bb25d1dd44 bug 995801 - cache nsNSSCertificate::mCachedEVStatus on disk r=mayhemer 2014-01-10 11:13:03 -08:00
Brian Smith
76608dbfec Bug 1037324: Delegate additional name constraint selection to the TrustDomain in mozilla::pkix, r=cviecco 
--HG--
extra : rebase_source : 300f33bfb3a0c9ae1525695b080674c1fb21eafc
 2014-07-10 22:38:59 -07:00
Ryan VanderMeulen
6d6357a5b4 Merge m-c to inbound. a=merge 2014-07-11 16:38:04 -04:00
David Keeler
efaef0d80f bug 1031543 - allow importing user certificates via certificate manager r=honzab 2014-07-11 11:19:24 -07:00
David Keeler
571d81f8f0 bug 1038913 - (4/4) test that smart card events are dispatched by the observer service r=briansmith 2014-08-06 16:56:12 -07:00
David Keeler
467bcea143 bug 1038913 - (3/4) add observer service notifications for smart card events ("smartcard-insert" and "smartcard-remove") r=briansmith 2014-07-24 13:00:46 -07:00
David Keeler
06e4d0532a bug 1038913 - (2/4) cleanup smart card event dispatching code for style and safety r=briansmith 2014-07-24 12:59:32 -07:00
David Keeler
39edc6b304 bug 1038913 - (1/4) move smart card event dispatching code to nsSmartCardMonitor.cpp r=briansmith 2014-07-24 12:58:14 -07:00
David Keeler
c8bc6cb4c1 bug 1047494 - refactor tautological size check in mozilla::pkix::VerifySignedData r=briansmith 2014-08-08 11:28:44 -07:00
Brian Smith
b4e7be124a Bug 1031542: Add test case for key usage without any value bits, r=keeler 
--HG--
extra : rebase_source : 25bdc0db6b042fe6fbba61b80cb8a4ac7cb588eb
 2014-06-27 15:21:48 -07:00
Brian Smith
cf47c812fd Bug 975229: Remove NSS-based certificate verification, r=keeler 
--HG--
extra : rebase_source : 49cb20f1b51e2d9993a35decd820764e20ad9be9
 2014-06-16 23:13:29 -07:00
Brian Smith
ba706ba138 Bug 1026261: Remove CERTCertificate from mozilla::pkix revocation checking API, r=keeler 
--HG--
extra : rebase_source : 6798f494bd351961ea02abba07b5860839bbc418
 2014-06-20 10:10:51 -07:00
David Keeler
1f5296bdd8 bug 1028178 - re-add nsICertificateDialogs to nsNSSDialogs' NS_IMPL_ISUPPORTS declaration r=briansmith 2014-06-20 09:38:08 -07:00
David Keeler
4369408e5a bug 997509 - heed expired Revoked or Unknown OCSP responses r=briansmith 2014-06-20 09:01:57 -07:00
Cykesiopka
f81c301340 Bug 972702 - Make Cert Viewer details tab content resizable. r=keeler 2014-05-27 20:58:00 +02:00
Camilo Viecco
ebf37d16e3 Bug 1016442 - Make mozilla cdn sites production on built-in list. r=mmc 
--HG--
extra : rebase_source : 5d937b61ab86c974210dcc83735cd4308bff018e
 2014-05-27 10:53:40 -07:00
Ryan VanderMeulen
dfef259674 Backed out changeset d5da62e82faf (bug 995801) for test_browserElement_oop_SecurityChange.html failures. 
CLOSED TREE
 2014-05-27 14:27:40 -04:00
David Keeler
2c33f22ba9 bug 995801 - cache nsNSSCertificate::mCachedEVStatus on disk r=mayhemer 2014-01-10 11:13:03 -08:00
Richard Barnes
2b34ee7aa4 Bug 998803 - Add support for RSA encryption and signing to WebCrypto API. r=bz,dkeeler 2014-05-23 15:29:00 +02:00
ffxbld
b1e2aacef4 No bug, Automated HSTS preload list update from host bld-linux64-spot-1068 - a=hsts-update 2014-05-24 03:14:12 -07:00
Monica Chew
b7b4c09739 Bug 1004351: Enable production mode for twitter pins (r=keeler) 2014-05-22 15:11:07 -07:00
Monica Chew
b3defc8b63 Bug 1014344: Use Google's root pems in addition to their intermediate certs (r=keeler) 2014-05-22 15:09:45 -07:00