Nathan Froyd
|
15b074605b
|
Bug 1018375 - part 4 - use a linker script for libnss3 on Linux-like OSes; r=glandium
|
2014-05-30 14:34:54 -04:00 |
|
Nathan Froyd
|
336ecd5b08
|
Bug 1018375 - part 3 - use a static list of NSS def files for MOZ_FOLD_LIBS groveling; r=glandium
|
2014-06-03 14:23:06 -04:00 |
|
Harsh Pathak
|
e61d04813e
|
bug 550052 - add length check when decoding key usage bit strings. r=dkeeler
|
2014-06-10 16:56:00 +02:00 |
|
Harsh Pathak
|
a4a5503deb
|
Bug 1017348 - DumpASN1Object/ifdef-ed out code removed. r=dkeeler
|
2014-06-10 16:58:00 +02:00 |
|
Phil Ringnalda
|
4e06fa48fe
|
Merge m-i to m-c, a=merge
|
2014-06-15 09:28:20 -07:00 |
|
ffxbld
|
07c98694d3
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-006 - a=hsts-update
|
2014-06-14 03:14:44 -07:00 |
|
Wan-Teh Chang
|
c1b297e7af
|
Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 4. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150, bug 1007126, bug 1021102.
|
2014-06-13 14:17:18 -07:00 |
|
Camilo Viecco
|
388e775d77
|
Bug 998513 - Test GeneralizedTime encodings in mozilla::pkix. r=keeler.
|
2014-06-13 12:50:11 -07:00 |
|
Wes Kocher
|
03b6cb112d
|
Merge m-c to fx-team
|
2014-06-11 18:52:12 -07:00 |
|
Monica Chew
|
fe6ce09033
|
Bug 1004352: Enable pinning for Google in production mode (r=keeler)
|
2014-06-11 15:32:37 -07:00 |
|
Gijs Kruitbosch
|
07a4ac12e7
|
Bug 908534 - change of event sink should trigger OnSecurityChange notifications, r=dkeeler
|
2014-06-11 11:19:17 +01:00 |
|
David Keeler
|
65bc823886
|
bug 1017160 - remove nsINSSCertErrorDialog and implementation r=cviecco
|
2014-06-09 16:35:35 -07:00 |
|
David Keeler
|
f6a2f616b1
|
bug 1020993 - properly handle unknown critical extensions in BackCert::Init r=briansmith
|
2014-06-09 13:57:44 -07:00 |
|
Harsh Pathak
|
4ba177382c
|
Bug 997370 - Update comment in nsIX509Cert.idl to reflect certificate fingerprint instead of public key. r=cviecco
|
2014-06-09 10:58:00 -04:00 |
|
Ryan VanderMeulen
|
8ad58324ce
|
Merge m-c to inbound on a CLOSED TREE. a=me
|
2014-06-07 13:36:44 -04:00 |
|
ffxbld
|
4fe9e3ab4b
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-051 - a=hsts-update
|
2014-06-07 03:18:25 -07:00 |
|
David Keeler
|
cb6b2b4ade
|
bug 1019198 - fail handshake if given an expired OCSP response and fetching a new one fails r=briansmith
|
2014-06-06 09:20:50 -07:00 |
|
Camilo Viecco
|
d9e0b6f6ea
|
Bug 1000548 - Leaking arenas allocated in mozilla::pkix r=keeler
--HG--
extra : rebase_source : 6b0aaef098a4fa4d5749013a332b6b7602640b36
|
2014-06-05 16:28:46 -07:00 |
|
Ed Morley
|
5747f4d5d4
|
Backed out changeset 189492a9a115 (bug 1020695) for mochitest-2 failures in test_WebCrypto.html; CLOSED TREE
|
2014-06-05 15:52:01 +01:00 |
|
Wan-Teh Chang
|
9510f3e6cc
|
Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
|
2014-06-05 07:06:32 -07:00 |
|
Wan-Teh Chang
|
ec2bea3335
|
Revert 8406a2b981c5 to fix build bustage.
> Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
> bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
> bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
> bug 963150.
|
2014-06-04 21:26:33 -07:00 |
|
Wan-Teh Chang
|
9939efaa7f
|
Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
|
2014-06-04 21:03:47 -07:00 |
|
David Keeler
|
502d720549
|
bug 1003566 - part 2/2: prevent OCSP requests from being upgraded to HTTPS by HSTS r=cviecco
|
2014-06-04 09:58:28 -07:00 |
|
Camilo Viecco
|
3e7d66d335
|
Bug 1021797 - Rename ArenaFalseCleaner to PORT_FreeArena_false. r=keeler
--HG--
extra : rebase_source : e7316ee06f58f42afbaf68d7e5f7948277fd15fd
|
2014-06-06 14:11:08 -07:00 |
|
Monica Chew
|
291d694626
|
Bug 1020485: Enable pinning in test mode for accounts.firefox.com (r=keeler)
|
2014-06-06 13:44:59 -07:00 |
|
Brian Smith
|
2e61c5fffb
|
Bug 1020683, Part 3: Fix build bustage, a=BUSTAGE on a CLOSED TREE
--HG--
extra : rebase_source : 8eaa3eae911b0e75129988d58a19e5e76257b369
|
2014-06-06 12:04:36 -07:00 |
|
Brian Smith
|
9cdf5d2de5
|
Bug 1020682: Simplify mozilla::pkix results cert chain construction and make it more efficient, r=cviecco
--HG--
extra : rebase_source : 69cb8ea66e075c89bbcbab3ca115cc2ccc95fa4f
|
2014-06-04 01:28:44 -07:00 |
|
Brian Smith
|
fbc33e0c8d
|
Bug 1020683, Part 2: Remove more references to CERTCertificate from mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 9dce7585975fb23fe04f5714ece18645b22b2261
|
2014-06-04 00:03:28 -07:00 |
|
Brian Smith
|
f3ab0b43c6
|
Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler
--HG--
extra : rebase_source : 416938498080c4d44874025f1da4562ab1c7c3c8
|
2014-06-05 15:18:32 -07:00 |
|
Brian Smith
|
90ae4efb88
|
Bug 1018411: Factor out signed data parsing in mozilla::pkix into a reusable and separately-testable function, r=keeler
--HG--
extra : rebase_source : d65a760f9f8efb656f238794019bd451ca163c0b
|
2014-05-31 18:54:34 -07:00 |
|
Jed Davis
|
d1a5790ae4
|
Bug 1014299 - Add times() to seccomp whitelist. r=kang
This system call seems to be used by some versions of the Qualcomm Adreno
graphics drivers when we run WebGL apps.
|
2014-06-02 14:52:00 +02:00 |
|
Sébastien Blin
|
6aefbf6100
|
Bug 1019722 - Remove a double assignment to lastRdn to fix a minor warning found by scan-build, the LLVM/Clang static analyzer. r=keeler
|
2014-06-02 20:16:14 +02:00 |
|
David Keeler
|
5acb4cc504
|
Bug 1009988 - OCSP tests: Precompute responses to prevent timeouts. r=cviecco
|
2014-06-02 11:35:27 -07:00 |
|
Monica Chew
|
d5ba5c9bc8
|
Bug 1019772: Enable production mode on pinning AMO (r=keeler)
|
2014-06-03 11:00:39 -07:00 |
|
Brian Smith
|
c9249cca82
|
Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler
--HG--
extra : rebase_source : 9abf0522f02d00ac2f63f2327ddbe8d119ffc64f
|
2014-06-03 10:47:25 -07:00 |
|
Brian Smith
|
7af638d360
|
Bug 1019109: Add DottedOIDToCode.py tool, r=keeler
--HG--
extra : rebase_source : 44a92234f884af4500bc6eb5a1fc4dd4cfd38dc2
|
2014-06-02 10:50:04 -07:00 |
|
Cykesiopka
|
4e78fd0ee5
|
Bug 235230 - Change IDL type of nsIX509Cert::windowTitle to AString; Original patch by Zack Weinberg. r=keeler
|
2014-06-01 13:59:00 +02:00 |
|
Brian Smith
|
bf7fe601ba
|
Bug 1018633: Simplify the max cert chain length check code in mozilla::pkix and make it more efficient, r=cviecco
--HG--
extra : rebase_source : 7fa4cc6c1b46357abed0c57c6e24c622049c5acb
|
2014-05-31 16:32:58 -07:00 |
|
Brian Smith
|
7457c20cbe
|
Bug 1001188: Set the error code when the max cert chain length limit is exceeded, r=cviecco
--HG--
extra : rebase_source : ce9e1faa083f5c679e20a2b6d9e8d482462e75b0
|
2014-05-31 16:55:54 -07:00 |
|
Brian Smith
|
91e474eea0
|
Bug 1018642: Factor out reusable NSS GTest infrastructure into a new NSSTest class, r=cviecco
--HG--
extra : rebase_source : 101c316c1ea54f5092a21af4d7a1be349c504800
|
2014-05-30 16:46:49 -07:00 |
|
Brian Smith
|
06f430ee13
|
Bug 1018064: Replace mozilla::pkix::der::Input::Match with mozilla::pkix::der::Input::MatchRest, r=mmc
--HG--
extra : rebase_source : 5c5b14cf23b1e40854d241cbc482de40b01ac494
|
2014-05-29 22:09:45 -07:00 |
|
Brian Smith
|
293e4188d5
|
Bug 1018061: Have mozilla::pkix::der::Input::Read use EnsureLength instead of its own checks, r=mmc
--HG--
extra : rebase_source : f46d6b9bdcd7d7a272fb39f22312a89d2695db56
|
2014-05-29 23:36:30 -07:00 |
|
Phil Ringnalda
|
786e840e01
|
Merge m-i to m-c
|
2014-05-31 20:29:24 -07:00 |
|
ffxbld
|
bec4c38688
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-176 - a=hsts-update
|
2014-05-31 03:14:44 -07:00 |
|
Cykesiopka
|
ea035ab7a4
|
Bug 917510 - Replace SHA-1 fingerprints of EV certs in ExtendedValidation.cpp with SHA-2 fingerprints. r=briansmith, r=kwilson
|
2014-05-30 00:01:00 -04:00 |
|
Camilo Viecco
|
be441f03f1
|
Bug 991815 - Part 2/2 - Tests for OCSP responses up to 1 year old. r=keeler
--HG--
extra : rebase_source : cc012870da3a165a0a3d0d5c6c9671eeeda37f3f
|
2014-05-28 14:08:02 -07:00 |
|
Camilo Viecco
|
fc11f7c21d
|
Bug 991815 - Part 1/2 - Allow intermediate OCSP responses up to 1 year old. r=keeler
--HG--
extra : rebase_source : 28d5336da1dc44932b92ce2c59fca5fcb2b8a3d8
|
2014-05-30 16:12:36 -07:00 |
|
Nathan Froyd
|
c5a3c603c2
|
Bug 1017661 - remove MOZ_NSS_PATCH functionality; r=glandium
|
2014-05-29 12:16:58 -04:00 |
|
Brian Smith
|
4c6adb7ede
|
Bug 1018033: Prevent buffer read overflow due to integer overflow in mozilla::pkix::der::Input::EnsureLength, r=keeler
--HG--
extra : rebase_source : e4e88d61e448fa475a106a06b9f32181906fba0f
|
2014-05-29 23:37:40 -07:00 |
|
Brian Smith
|
b3bb9ea641
|
Bug 1018041: Fix linking error in pkix_ocsp_request_tests when GTest is enabled on Windows, r=keeler
--HG--
extra : rebase_source : 36c5ee4f5cc40adb1079e34bd309147a662fc45f
|
2014-05-29 23:06:10 -07:00 |
|