wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
272,502 Commits 1 Branch 166 Tags 1.2 GiB
1d8764a0c4
Commit Graph

2572 Commits

Author SHA1 Message Date
Cykesiopka
66018edcb1 Bug 1145679 - Part 2 - Tests. r=keeler 2015-06-29 22:19:00 +02:00
Cykesiopka
f7f78003a7 Bug 1145679 - Reject EV status for end-entity EV certs with overly long validity periods. r=keeler 2015-06-29 22:19:00 +02:00
David Keeler
ae70af8b30 bug 1174292 - convert test_cert_version.js to generate certificates at build time r=Cykesiopka 
Also remove redundant test-cases.
 2015-06-12 14:56:07 -07:00
ffxbld
cb1f9a7dd3 No bug, Automated HPKP preload list update from host bld-linux64-spot-098 - a=hpkp-update 2015-06-27 03:33:49 -07:00
ffxbld
cac5bebc1b No bug, Automated HSTS preload list update from host bld-linux64-spot-098 - a=hsts-update 2015-06-27 03:33:47 -07:00
Carsten "Tomcat" Book
8b1114a78a merge mozilla-inbound to mozilla-central a=merge 2015-06-22 14:03:17 +02:00
Ryan VanderMeulen
c3e8750eeb Bug 1029775 - Skip test_ocsp_stapling_expired.js on B2G debug for frequent intermittent failures. 2015-06-21 21:22:08 -04:00
ffxbld
057a53995e No bug, Automated HPKP preload list update from host bld-linux64-spot-224 - a=hpkp-update 2015-06-20 03:33:00 -07:00
ffxbld
f0d19ca99d No bug, Automated HSTS preload list update from host bld-linux64-spot-224 - a=hsts-update 2015-06-20 03:32:58 -07:00
Masatoshi Kimura
1c7ec03144 Bug 1165549 - Update fallback whitelist. r=keeler 2015-06-17 20:52:33 +09:00
David Keeler
79155a676a bug 1173565 - convert test_pinning_dynamic.js to generate certificates at build time r=Cykesiopka 
Also fixes up references to test_pinning_dynamic certificates in test_pinning_header_parsing.js
 2015-06-09 10:35:47 -07:00
Cykesiopka
e70c89f67a Bug 1171820 - Convert test_bug483440.html mochitest to an xpcshell test. r=keeler 2015-06-13 00:51:00 +02:00
Birunthan Mohanathas
a42b09b30a Bug 1164714 - Move netwerk/test/TestSTSParser.cpp into security/manager/ssl/tests/. r=keeler 2015-06-14 21:37:12 -07:00
David Keeler
431de766f3 bug 1172615 - check for and return early in the case of authentication bypass in AuthCertificateHook r=mcmanus 2015-06-08 13:18:23 -07:00
Cykesiopka
f1d2214a0b Bug 1171819 - Convert test_cert_eku-*.js to generate certificates at build time. r=keeler 2015-06-10 22:50:00 +02:00
Mike Perry
4d57a5909c Bug 629558 - Pref to make Intermediate Cert Store memory-only. r=keeler 2015-06-10 14:14:00 +02:00
Atul Kumar
bc61093971 Bug 1136301 - Null check for mCert->slot added in destructorSafeDestroyNSSReference & MarkForPermDeletion. Formatting update in MarkForPermDeletion. r=keeler 2015-06-10 09:46:16 -07:00
David Keeler
08dfe96c6a bug 1170303 - treat malformed name information in certificates as a domain name mismatch r=Cykesiopka 2015-06-01 13:55:23 -07:00
David Keeler
1bf24e0cc5 bug 1171557 - make test_cert_trust.js certs a bit more realistic r=mgoodwin 
According to the Baseline Requirements, root certificates MUST NOT
have the extendedKeyUsage extension. The extension is optional for
intermediates and required for end-entity certificates. This change
modifies the test certificates so they're more in line with the BRs.
 2015-06-03 15:37:38 -07:00
David Keeler
25303078e1 bug 1171557 - convert test_cert_trust.js to generate certificates at build time r=mgoodwin 2015-06-03 15:12:00 -07:00
Eric Rahm
2099cabb09 Bug 1145893 - Shutdown nsNSSComponent background threads during xpcom-shutdown. r=keeler, a=me 2015-03-23 10:58:25 -07:00
Richard Barnes
d42e1cb659 Bug 1010068 - Disable OCSP for DV certificates in Firefox for Android r=keeler 2015-05-28 13:29:13 -07:00
Ryan VanderMeulen
8587d45e26 Backed out changeset fda85020d842 (bug 1010068) for Android test_cert_overrides.js failures. 
CLOSED TREE
 2015-06-08 11:37:33 -04:00
Richard Barnes
bab111cb93 Bug 1010068 - Disable OCSP for DV certificates in Firefox for Android r=keeler 2015-05-28 13:29:13 -07:00
ffxbld
042e53a84e No bug, Automated HPKP preload list update from host bld-linux64-spot-1061 - a=hpkp-update 2015-06-06 03:26:59 -07:00
ffxbld
29fbbef606 No bug, Automated HSTS preload list update from host bld-linux64-spot-1061 - a=hsts-update 2015-06-06 03:26:57 -07:00
David Keeler
d4c6327b1a bug 969985 - cleanup of test_certificate_usages.js - see the rest of this commit message r=mgoodwin 
Converts test_certificate_usages.js to generate certificates at build time.
Also does miscellaneous cleanup to use modern JS practices.
Since the test_cert_eku-* suite of tests covers the extended key usage extension,
removes superfluous testcases involving EKU.
Finally, renames test_certificate_usages.js to test_cert_keyUsage.js for a more
consistent naming scheme.
 2015-06-02 10:58:59 -07:00
Eric Rahm
9100016c49 Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_*. rs=froydnj 
This is straightforward mapping of PR_LOG levels to their LogLevel
counterparts:
  PR_LOG_ERROR   -> LogLevel::Error
  PR_LOG_WARNING -> LogLevel::Warning
  PR_LOG_WARN    -> LogLevel::Warning
  PR_LOG_INFO    -> LogLevel::Info
  PR_LOG_DEBUG   -> LogLevel::Debug
  PR_LOG_NOTICE  -> LogLevel::Debug
  PR_LOG_VERBOSE -> LogLevel::Verbose

Instances of PRLogModuleLevel were mapped to a fully qualified
mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a
fully qualified mozilla::LogLevel::* level, and all other instances were
mapped to us a shorter format of LogLevel::*.

Bustage for usage of the non-fully qualified LogLevel were fixed by adding
|using mozilla::LogLevel;| where appropriate.
 2015-06-03 15:25:57 -07:00
Eric Rahm
7973ebd946 Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj 2015-06-03 15:22:35 -07:00
Eric Rahm
1fcdde9ba3 Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj 
Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some
to PR_LOG_ERROR.
 2015-06-03 15:22:30 -07:00
Eric Rahm
6d13987359 Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj 2015-06-03 15:22:28 -07:00
Cykesiopka
dc66b3aeb9 Bug 1169195 - Convert test_bug644006.html mochitest to an xpcshell test. r=keeler 2015-06-02 22:49:00 -04:00
Nicholas Nethercote
662f90fecb Bug 1170416 (part 3) - Remove the PLDHashTable2 typedef. r=froydnj. 2015-05-19 16:46:17 -07:00
Mike Hommey
9ccacdf933 Bug 1170431 - Pass buildid as input to pycert.py. r=gps 2015-06-03 07:10:25 +09:00
Mike Hommey
f98a9bcd0c Bug 1170431 part 0 - Use the *Path classes for GENERATED_FILES scripts and inputs. r=gps 2015-06-03 07:10:12 +09:00
Carsten "Tomcat" Book
9432818a46 Backed out 14 changesets (bug 1165515) for linux x64 e10s m2 test failures 
Backed out changeset d68dcf2ef372 (bug 1165515)
Backed out changeset 7c3b45a47811 (bug 1165515)
Backed out changeset b668b617bef2 (bug 1165515)
Backed out changeset d0916e1283a2 (bug 1165515)
Backed out changeset ac4dc7489942 (bug 1165515)
Backed out changeset e9632ce8bc65 (bug 1165515)
Backed out changeset c16d215cc7e4 (bug 1165515)
Backed out changeset e4d474f3c51a (bug 1165515)
Backed out changeset d87680bf9f7c (bug 1165515)
Backed out changeset b3c0a45ba99e (bug 1165515)
Backed out changeset 9370fa197674 (bug 1165515)
Backed out changeset 50970d668ca1 (bug 1165515)
Backed out changeset ffa4eb6d24b9 (bug 1165515)
Backed out changeset 5fcf1203cc1d (bug 1165515)
 2015-06-02 13:05:56 +02:00
Eric Rahm
14740fdf18 Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_*. rs=froydnj 
This is straightforward mapping of PR_LOG levels to their LogLevel
counterparts:
  PR_LOG_ERROR   -> LogLevel::Error
  PR_LOG_WARNING -> LogLevel::Warning
  PR_LOG_WARN    -> LogLevel::Warning
  PR_LOG_INFO    -> LogLevel::Info
  PR_LOG_DEBUG   -> LogLevel::Debug
  PR_LOG_NOTICE  -> LogLevel::Debug
  PR_LOG_VERBOSE -> LogLevel::Verbose

Instances of PRLogModuleLevel were mapped to a fully qualified
mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a
fully qualified mozilla::LogLevel::* level, and all other instances were
mapped to us a shorter format of LogLevel::*.

Bustage for usage of the non-fully qualified LogLevel were fixed by adding
|using mozilla::LogLevel;| where appropriate.
 2015-06-01 22:17:33 -07:00
Eric Rahm
12887bbebe Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj 2015-06-01 22:17:26 -07:00
Eric Rahm
db7b53614a Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj 
Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some
to PR_LOG_ERROR.
 2015-06-01 22:17:21 -07:00
Eric Rahm
83ec610692 Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj 2015-06-01 22:17:19 -07:00
Wes Kocher
fcc808d96c Backed out 14 changesets (bug 1165515) for b2g mochitest-6 permafail CLOSED TREE 
Backed out changeset 9b97e2aa2ed9 (bug 1165515)
Backed out changeset 150606c022a2 (bug 1165515)
Backed out changeset 4e875a488349 (bug 1165515)
Backed out changeset 467e7feeb546 (bug 1165515)
Backed out changeset d6b6cc373197 (bug 1165515)
Backed out changeset 0615265b593c (bug 1165515)
Backed out changeset fafd1dce9f08 (bug 1165515)
Backed out changeset d1df869245f9 (bug 1165515)
Backed out changeset 6876a7c63611 (bug 1165515)
Backed out changeset b7841c94a9a3 (bug 1165515)
Backed out changeset e5e3617f7c73 (bug 1165515)
Backed out changeset 39be3db95978 (bug 1165515)
Backed out changeset 0ec74176f8de (bug 1165515)
Backed out changeset 5b928dd10d71 (bug 1165515)
 2015-06-01 17:57:58 -07:00
Eric Rahm
579c7d8013 Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_*. rs=froydnj 
This is straightforward mapping of PR_LOG levels to their LogLevel
counterparts:
  PR_LOG_ERROR   -> LogLevel::Error
  PR_LOG_WARNING -> LogLevel::Warning
  PR_LOG_WARN    -> LogLevel::Warning
  PR_LOG_INFO    -> LogLevel::Info
  PR_LOG_DEBUG   -> LogLevel::Debug
  PR_LOG_NOTICE  -> LogLevel::Debug
  PR_LOG_VERBOSE -> LogLevel::Verbose

Instances of PRLogModuleLevel were mapped to a fully qualified
mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a
fully qualified mozilla::LogLevel::* level, and all other instances were
mapped to us a shorter format of LogLevel::*.

Bustage for usage of the non-fully qualified LogLevel were fixed by adding
|using mozilla::LogLevel;| where appropriate.
 2015-06-01 14:31:01 -07:00
Eric Rahm
75424c33f6 Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj 2015-06-01 14:31:00 -07:00
Eric Rahm
a96929aa99 Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj 
Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some
to PR_LOG_ERROR.
 2015-06-01 14:31:00 -07:00
Eric Rahm
a50b98baa8 Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj 2015-06-01 14:31:00 -07:00
Carsten "Tomcat" Book
c36ce02976 Merge mozilla-central to mozilla-inbound 2015-06-01 15:19:42 +02:00
Carsten "Tomcat" Book
8c25c8f936 merge mozilla-inbound to mozilla-central a=merge 2015-06-01 15:00:24 +02:00
ffxbld
e63c38cbf8 No bug, Automated HPKP preload list update from host bld-linux64-spot-534 - a=hpkp-update 2015-05-30 03:26:59 -07:00
ffxbld
6d883f9eca No bug, Automated HSTS preload list update from host bld-linux64-spot-534 - a=hsts-update 2015-05-30 03:26:57 -07:00
Cykesiopka
41d94a4c7a Bug 1169530 - Add l10n string for SSL_ERROR_WEAK_SERVER_CERT_KEY. r=dkeeler 
Also removes the strings for the SSL_ERROR_UNUSED_5 and SSL_ERROR_UNUSED_10 errors.
 2015-05-28 22:50:00 +02:00
David Keeler
674b31b75a bug 1166976 - generate some PSM xpcshell test certificates at build time r=Cykesiopka,mgoodwin,froydnj 2015-05-20 16:35:16 -07:00
Nicholas Nethercote
bce34849fc Bug 1168007 (part 7) - Use PLDHashTable2 in nsCertTree. r=froydnj. 
It's possible that Clear() will be called on a table that hasn't had anything
inserted in it, but that's ok.
 2015-05-18 21:14:51 -07:00
Nicholas Nethercote
184e78a62a Bug 1168007 (part 6) - Use PLDHashTable2 in nsSecureBrowserUIImpl. r=froydnj. 2015-05-18 21:02:48 -07:00
Cykesiopka
c531ca6e77 Bug 1168695 - Add result strings to PSM xpcshell HPKP tests. r=keeler 2015-05-28 02:26:00 +02:00
Cykesiopka
c5e6058a60 Bug 1167254 - Convert test_bug234856.html mochitest to an xpcshell test. r=keeler 2015-05-28 02:22:00 +02:00
Birunthan Mohanathas
b0a2532275 Bug 1164714 - Fix unified compilation bustage on Windows. r=me 
CLOSED TREE
 2015-05-27 19:37:09 -07:00
Birunthan Mohanathas
d47890a398 Bug 1164714 - Move netwerk/base/nsISiteSecurityService.idl into security/manager/ssl. r=keeler,mcmanus 2015-05-26 10:31:30 -07:00
Birunthan Mohanathas
96523fde07 Bug 1164714 - Move and flatten security/manager/boot/{public,src}/ into security/manager/ssl/. r=keeler 2015-05-26 10:31:25 -07:00
Birunthan Mohanathas
8ff6132e53 Bug 1164714 - Flatten security/manager/ssl/src/ directory. r=keeler 2015-05-26 10:31:23 -07:00
Birunthan Mohanathas
4eba182ce7 Bug 1164714 - Flatten security/manager/ssl/public/ directory. r=keeler 2015-05-26 10:30:46 -07:00
Kaspar Brand
d54cde6784 Bug 1168048 - Avoid potential null-pointer dereferencing in nsNSSCertificateDB r=keeler 2015-05-27 14:12:26 -07:00
Cykesiopka
ff838d5c79 Bug 1167866 - Add result strings to PSM test_cert* xpcshell tests. r=keeler 2015-05-23 19:57:32 -07:00
Phil Ringnalda
6cdd54a926 Merge m-i to m-c, a=merge 2015-05-23 13:31:21 -07:00
ffxbld
eb9126da2b No bug, Automated HPKP preload list update from host bld-linux64-spot-023 - a=hpkp-update 2015-05-23 03:32:23 -07:00
ffxbld
2618b08f31 No bug, Automated HSTS preload list update from host bld-linux64-spot-023 - a=hsts-update 2015-05-23 03:32:21 -07:00
Makoto Kato
071f0714ed Bug 958421 - XUL dialog for certificate is security/manager/pki/resouces is unnecessary on Firefox Android. r=snorp 2015-05-22 14:28:04 +09:00
Nathan Froyd
bb51644dac Bug 1160485 - remove implicit conversion from RefPtr<T> to TemporaryRef<T>; r=ehsan 
Having this implicit conversion means that we can silently do extra
refcounting when it's completely unnecessary.  It's also an obstacle to
making RefPtr more nsRefPtr-like, so let's get rid of it.
 2015-05-01 09:14:16 -04:00
Tim Taubert
9df7e5e6d9 Bug 1060112 - Don't treat OCSP responses omitting the requested certificate status as "unknown certificate" responses blocking the connection r=keeler 2015-05-21 13:39:34 -04:00
Eric Rahm
bac140c6c1 Bug 1165515 - Part 1: Convert PR_LOG to MOZ_LOG. r=froydnj 2015-05-21 13:22:04 -07:00
Nicholas Nethercote
b83a45935c Bug 1166586 (part 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. 
This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs
in a constructor and the PL_DHashTableFinish() call occurs in a destructor.
 2015-05-04 22:59:24 -07:00
David Keeler
8f21be283b Bug 1166031 - Update PSM xpcshell small RSA key test to reflect new error. r=Cykesiopka 
Previously NSS would accept smaller RSA key sizes than PSM would in TLS handshakes. Now that the limit is the same, NSS handles the handshake termination with a different error code before PSM can make its own policy decision.
 2015-05-21 12:57:03 -07:00
Cykesiopka
620d870fc7 Bug 1166078 - Clean up and add expected result strings to test_hmac.js. r=keeler 2015-05-18 15:22:54 -07:00
Birunthan Mohanathas
0a1119df55 Bug 1164714 - Flatten security/manager/pki/src/ directory. r=keeler 2015-05-19 10:47:42 -07:00
Birunthan Mohanathas
de65453c79 Bug 1164714 - Flatten security/manager/pki/public/ directory. r=keeler 2015-05-19 10:47:38 -07:00
Eric Rahm
32b4ff6b18 Bug 1165518 - Part 2: Replace prlog.h with Logging.h. rs=froydnj 2015-05-19 11:15:34 -07:00
David Keeler
ef40db07c3 bug 1165911 - do more safety checks when gathering successful TLS connection telemetry r=Cykesiopka 2015-05-18 10:37:38 -07:00
Nicholas Nethercote
7d691ee777 Back out a1f7ae44c7bb (bug 1164373) for causing intermittent test failures. 2015-05-18 19:00:54 -07:00
Carsten "Tomcat" Book
184cb4dea4 merge mozilla-inbound to mozilla-central a=merge 2015-05-18 13:43:01 +02:00
cedric
82cf6d3a6c Bug 1152842 - Remove legacy Download Manager support from test_bug383369.html. r=paolo 2015-05-11 17:43:15 -07:00
Phil Ringnalda
456c3d502b Merge m-c to m-i 2015-05-16 09:49:14 -07:00
Phil Ringnalda
026116064e Merge m-i to m-c, a=merge 2015-05-16 08:50:37 -07:00
ffxbld
3dd1b01c7c No bug, Automated HPKP preload list update from host bld-linux64-spot-152 - a=hpkp-update 2015-05-16 03:30:30 -07:00
ffxbld
084478b140 No bug, Automated HSTS preload list update from host bld-linux64-spot-152 - a=hsts-update 2015-05-16 03:30:28 -07:00
Neil Rashbrook
7d598ef37a Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan 2015-05-16 09:07:10 +01:00
Nicholas Nethercote
972275ed2b Back out all four patches from bug 1161377. r=me. 
Due to Android startup regressions (bug 1163066) and plugin crashes (bug
1165155).
 2015-05-14 21:48:43 -07:00
Wes Kocher
d65ee4fe20 Backed out changeset 17cfad44e12b (bug 1155963) for breaking b2g builds 2015-05-14 16:35:18 -07:00
Neil Rashbrook
d30d87c917 Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan 2015-05-15 00:00:33 +01:00
Cykesiopka
6175e8eda2 Bug 1164409 - Reduce PSM xpcshell script code duplication. r=keeler 2015-05-15 02:28:00 -04:00
David Keeler
6a5160aa2a bug 1141189 - implement skipping expensive revocation checks (OCSP fetching) for short-lived certificates r=rbarnes 2015-04-06 16:10:28 -07:00
Nicholas Nethercote
39c828fdf2 Bug 1164373 - Remove two static constructors involving PR_NewLogModule(). r=froydnj. 2015-05-13 18:02:56 -07:00
Nicholas Nethercote
058f304862 Bug 1161377 (part 3, attempt 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. 2015-05-12 17:33:26 -07:00
David Keeler
734123bccb bug 1102436 - remove PublicKeyPinningService::CheckChainAgainstAllNames r=Cykesiopka 2015-05-07 11:06:07 -07:00
Cykesiopka
4489244f59 Bug 1163358 - Add "psm" tag to PSM xpcshell and mochitest manifests. r=dkeeler 2015-05-09 18:21:00 +02:00
Mike Hommey
23fb4c1447 Bug 1043692 - Add a DIST_INSTALL variable to moz.build, and replace NO_DIST_INSTALL with it. r=gps 2015-05-12 07:55:21 +09:00
Nicholas Nethercote
972e6dd284 Backout c375efe78e07 (bug 1161377 part 3) for (probably) increasing the static constructor count and regressing Fennec start-up time. r=me. 2015-05-10 22:16:18 -07:00
Phil Ringnalda
17f9ddbc78 Merge m-c to m-c, a=merge 2015-05-09 14:16:58 -07:00
ffxbld
b8c6626b6c No bug, Automated HPKP preload list update from host bld-linux64-spot-270 - a=hpkp-update 2015-05-09 03:31:59 -07:00
ffxbld
00fde4a7a1 No bug, Automated HSTS preload list update from host bld-linux64-spot-270 - a=hsts-update 2015-05-09 03:31:58 -07:00
Wes Kocher
549a2cca6f Merge fx-team to m-c a=merge 2015-05-08 10:29:41 -07:00
Eric Rahm
202116dbfa Bug 1162691 - Part 2: Wrap expensive calls in PR_LOG_TEST. r=froydnj 
Check that logging is enabled before performing potentially expensive
operations.
 2015-05-08 14:36:34 -07:00
Eric Rahm
0652af4ffc Bug 1162691 - Part 1: Remove instances of #ifdef PR_LOGGING in security. r=froydnj 
PR_LOGGING is now always defined, we can remove #ifdefs checking for it.
 2015-05-08 14:36:33 -07:00
Daniel Veditz
f1fbfce97c Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler 2015-05-05 20:21:00 +02:00
Cykesiopka
5e5367beae Bug 1153446 - Replace instances of double spacing with single spacing in nsserrors.properties. r=dkeeler 2015-05-01 02:40:00 +02:00
Phil Ringnalda
4b1fb0ac68 Merge m-i to m-c, a=merge 2015-05-02 10:02:17 -07:00
ffxbld
8444d8389e No bug, Automated HPKP preload list update from host bld-linux64-spot-137 - a=hpkp-update 2015-05-02 03:30:49 -07:00
ffxbld
75737ed880 No bug, Automated HSTS preload list update from host bld-linux64-spot-137 - a=hsts-update 2015-05-02 03:30:48 -07:00
Mike Hommey
b848e4bfcf Bug 1134923 - Remove NS_Alloc/NS_Realloc/NS_Free. r=nfroyd 
They are kept around for the sake of the standalone glue, which is used
for e.g. webapprt, which doesn't have direct access to jemalloc, and thus
still needs a wrapper to go through the xpcom function list and get to
jemalloc from there.
 2015-05-01 09:40:30 +09:00
Nicholas Nethercote
e8d6ee36fa Bug 1159972 - Remove the fallible version of PL_DHashTableInit(). r=froydnj. 
It's no longer needed now that entry storage isn't allocated there. (The other
possible causes of failures in that function are less interesting and simply
crashing is a reasonable thing to do for them.)

This also makes PL_DNewHashTable() infallible, so I removed some
now-unnecessary checks of its result.
 2015-04-29 16:38:29 -07:00
Masatoshi Kimura
d525ec2ddf Bug 1145844 - Update fallback whitelist. r=keeler 2015-04-29 13:48:53 +09:00
Nicholas Nethercote
2ddb2e8069 Bug 1161377 (part 3) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. 
This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs
in a constructor and the PL_DHashTableFinish() call occurs in a destructor.
 2015-05-04 22:59:24 -07:00
Mark Goodwin
ca3e2cf3ce Bug 1128607 - Test the freshness check for OneCRL (r=keeler) 2015-05-07 18:54:07 +01:00
Mark Goodwin
d9db423681 Bug 1128607 - Add freshness check for OneCRL (r=keeler) 2015-05-07 18:54:05 +01:00
Patrick McManus
06f9dafff9 bug 1153212 - 2/2 Necko explicitly track origin vs routed host and give psm only origin r=dkeeler r=hurley IGNORE IDL 
Allow necko to simultaneously track the dual concept of routed host
and origin (authenticated host). The origin is given to the socket
provider and the routed host is inserted at DNS lookup time as if it
were a SRV or CNAME.
 2015-04-09 11:31:59 -04:00
Patrick McManus
202f6aa264 bug 1153212 - 1/2 revert 90d6a38931fa to make room for better fix r=backout 2015-05-07 13:16:26 -04:00
Andrew Bartlett
ac364b42d1 Bug 734229 - Partially address by refusing to re-negotiate on NTLM. r=mayhemer, r=keeler 
Now only one NTLM Negotiate packet will be sent per connection, rather
than again after a failed authentication.  The problem situation is
triggered due to failed Negotiate authentication, and is probably more
complex.

Pair-programmed-with: Garming Sam <garming@catalyst.net.nz>
 2014-11-28 11:34:06 +13:00
David Major
ed6ca74f4f Bug 1157835: Remove the MSVC_ENABLE_PGO flag from the build system. r=glandium 2015-04-27 19:59:27 -04:00
Carsten "Tomcat" Book
6723c48492 merge fx-team to mozilla-central a=merge 2015-04-27 12:34:03 +02:00
ffxbld
e75a8d5509 No bug, Automated HPKP preload list update from host bld-linux64-spot-039 - a=hpkp-update 2015-04-25 03:32:33 -07:00
ffxbld
75d3eb75f3 No bug, Automated HSTS preload list update from host bld-linux64-spot-039 - a=hsts-update 2015-04-25 03:32:31 -07:00
Dave Townsend
1944329bf2 Bug 1038068: Check add-on signatures and refuse to install unsigned or broken add-ons (preffed off for now). r=dveditz 2015-03-31 11:32:40 -07:00
Carsten "Tomcat" Book
c76ef69f41 merge mozilla-inbound to mozilla-central a=merge 2015-04-24 14:37:13 +02:00
Fabrice Desré
38ad54b96f Bug 1144600 - Don't crash when submitting <keygen> on b2g r=dkeeler 2015-04-23 13:35:49 -07:00
Blake Kaplan
990f9cce74 Bug 1124076 - Properly detect certs when loaded and prompt to import them. r=sworkman/dkeeler 2015-04-22 12:55:23 -07:00
David Keeler
d3dd0e4ad0 bug 1157873 - remove certificates from CNNIC whitelist that aren't in the Pilot Certificate Transparency log r=rbarnes 
Also remove certificates where notBefore is on or after 1 April 2015.
 2015-04-21 16:07:33 -07:00
Nathan Toone
7adc7f55e1 Bug 1124076 followup - fix the build when PR_LOGGING is not defined. r=mrbkap 2015-04-23 13:24:57 -07:00
David Keeler
aff5e06e02 bug 1081128 - test_pinning.js takes ~300 seconds on b2g debug emulator - request a longer timeout for it r=Cykesiopka 2015-04-22 11:06:36 -07:00
Francois Marier
14bd6c01dd Bug 1147212 - Add support for goog-unwanted-shavar. r=gcp,r=matej,r=smaug 2015-04-22 21:01:37 +12:00
Carsten "Tomcat" Book
d9db24c44a Backed out changeset 7f3cf84c11a9 (bug 1124076) for bustage on a CLOSED TREE 2015-04-22 13:44:23 +02:00
Blake Kaplan
414c6adc45 Bug 1124076 - Properly detect certs when loaded and prompt to import them. r=sworkman/dkeeler 2015-04-21 14:56:00 +02:00
Patrick McManus
2128024376 bug 1153212 - Alt-Svc Fixes r=dkeeler r=hurley 2015-04-13 17:11:59 -04:00
Phil Ringnalda
f9dd538484 Merge m-i to m-c, a=merge 2015-04-18 16:36:32 -07:00
ffxbld
f956e116af No bug, Automated HPKP preload list update from host bld-linux64-spot-222 - a=hpkp-update 2015-04-18 03:29:47 -07:00
ffxbld
344fd7aa41 No bug, Automated HSTS preload list update from host bld-linux64-spot-222 - a=hsts-update 2015-04-18 03:29:45 -07:00
Neil Deakin
0e272ede50 Bug 1153248, re-enable a bunch of tests that now work with e10s, r=billm 2015-04-16 15:38:12 -04:00
David Keeler
87964c3250 bug 1151512 - only allow whitelisted certificates to be issued by CNNIC root certificates r=jcj r=rbarnes 2015-04-07 17:29:05 -07:00
David Keeler
ef38913727 bug 1147497 - Add API for querying site pin status. Disallow overrides for sites that have pins. r=mmc r=smaug r=cykesiopka r=past 2015-03-25 11:04:49 -07:00
Landry Breuil
e18d614081 Bug 1153090 followup - consistently use sizeof(hash) r=dkeeler 2015-04-14 22:19:18 +02:00
Landry Breuil
701acba976 Bug 1153090 - Unaligned access in cert block list (r=keeler) 2015-04-14 21:19:52 +02:00
Brian Smith
e3b9248715 Bug 1153738: Make ScopedPtr a minimal proper subset of std::unique_ptr, r=keeler 
Remove all features of ScopedPtr that aren't in std::unique_ptr, and
remove all currently-unused features of ScopedPtr. In particular,
replace |operator=(T*)| with |reset(T* p = nullptr)| and make
|operator bool| explicit.
 2015-04-13 00:28:11 -10:00
Brian Smith
2bbc1d7a0d Bug 1153737: Avoid unnecessary uses of mozilla::pkix::ScopedPtr, r=keeler 2015-04-12 19:57:48 -10:00
Carsten "Tomcat" Book
aa93bc5d24 merge mozilla-inbound to mozilla-central a=merge 2015-04-13 12:00:00 +02:00
ffxbld
7009fe93d0 No bug, Automated HPKP preload list update from host bld-linux64-spot-009 - a=hpkp-update 2015-04-11 03:29:55 -07:00
ffxbld
2d0f3a5b62 No bug, Automated HSTS preload list update from host bld-linux64-spot-009 - a=hsts-update 2015-04-11 03:29:53 -07:00
David Keeler
37831e0f6b bug 1147085 - remove nsINSSCertCache (replace it with nsIX509CertDB.getCerts()) r=Cykesiopka 2015-04-03 14:01:05 -07:00
Patrick McManus
6198e1cd11 Bug 1152895 - remove dead code in nsSSLIOLayerSetOptions r=dkeeler 2015-04-09 13:40:04 -04:00
Cykesiopka
5e201eeccf Bug 1147725 - Disable test_ocsp_fetch_method.js and test_ocsp_url.js on slow B2G Emulator debug builds. r=keeler 2015-04-06 14:05:00 +02:00
Phil Ringnalda
b8dda1ad61 Merge m-i to m-c, a=merge 2015-04-04 09:59:17 -07:00
ffxbld
379f73fa6f No bug, Automated HPKP preload list update from host bld-linux64-spot-220 - a=hpkp-update 2015-04-04 03:27:46 -07:00
ffxbld
ba6db8801a No bug, Automated HSTS preload list update from host bld-linux64-spot-220 - a=hsts-update 2015-04-04 03:27:44 -07:00
Cykesiopka
22020e9387 Bug 1149805 - Switch head_psm.js to Assert.jsm methods and add expected result strings. r=keeler 2015-04-02 05:50:00 -04:00
Cykesiopka
d801ab7708 Bug 488480 - Correct documentation about the function hasMatchingOverride() in nsICertOverrideService.idl. Original patch by Johnathan Nightingale. r=keeler 
IGNORE IDL
 2015-04-02 05:45:00 -04:00
Nathan Froyd
4181765caf Bug 1143651 - don't use CallQueryInterface when the compiler can do the cast for us; r=ehsan 2015-03-12 13:20:29 -04:00
Cykesiopka
73218c827d Bug 1147726: Disable test_keysize_ev.js on slow B2G Emulator debug builds. r=dkeeler 2015-03-31 11:53:00 +02:00
Brian Smith
3509081d96 Bug 1146057: Remove support for GCC 4.6, r=keeler 
Since Gecko now requires GCC 4.7 or later, we no longer need to
work around the lack of support for "override" and "final" in
earlier versions of GCC.
 2015-03-30 20:18:46 -10:00
Mike Hommey
ee117642af Bug 1134920 - Use moz_xmalloc/moz_xrealloc/free instead of nsMemory::Alloc/Realloc/Free. r=nfroyd 2015-04-01 13:51:45 +09:00
Mark Goodwin
6326b2717b Bug 1138848 - Tests for modified OneCRL (r=keeler, unfocused) 
* * *
* * *
give blocklist debug info to NSPR_LOG
 2015-03-31 15:10:19 -07:00
Mark Goodwin
13b7190f95 Bug 1138848 - Modify OneCRL blocklist for subject / public key blocking (r=keeler, unfocused) 2015-03-31 15:10:09 -07:00
David Keeler
9d664df14d bug 844351 - remove nsISSLErrorListener r=cykesiopka 2015-03-24 16:00:10 -07:00
Cykesiopka
5559a48f81 Bug 1147247 - Use PRErrorCodeSuccess constant instead of literal 0 to represent success in PSM xpcshell tests. r=dkeeler 2015-03-27 23:16:00 +01:00
David Cooper
a0b647c33e Bug 667471 - Pretty print names of ECDSA with SHA-2 algorithms in Certificate Viewer. r=dkeeler 2015-03-27 23:13:00 +01:00
Mike Hommey
95e047925a Bug 1138293 - Use malloc/free/realloc/calloc instead of moz_malloc/moz_free/moz_realloc/moz_calloc. r=njn 
The distinction between moz_malloc/moz_free and malloc/free is not
interesting. We are inconsistent in our use of one or the other, and
I wouldn't be surprised if we are mixing them anyways.
 2015-03-31 12:32:49 +09:00
Brian Smith
923d2ca048 Bug 1136278, Part 2: Refactor test SubjectPublicKeyInfo generation, r=keeler 2015-02-26 13:10:13 -08:00
Andrew McCreight
db3e30ab59 Bug 1147572 - Remove implementation language field from DOM class info. r=jst 2015-03-30 10:45:39 -07:00
Jan-Ivar Bruaroey
7704eddbd0 Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, florian, billm, jesup 2015-03-03 09:51:05 -05:00
Andrew McCreight
210c51b7d3 Bug 1148070 - Change nsIClassInfo::getHelperForLanguage() to getScriptableHelper(). r=bholley 2015-03-29 07:52:54 -07:00
Randell Jesup
489c2b15d5 Backed out 6 changesets (bug 1046245) on a CLOSED TREE 2015-03-29 01:42:32 -04:00
Jan-Ivar Bruaroey
749fb18624 Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup 2015-03-03 09:51:05 -05:00
Phil Ringnalda
13670b07d8 Back out 6 changesets (bug 1046245) for thinking that MSVC would have anything to do with a __PRETTY_FUNCTION__ 
CLOSED TREE

Backed out changeset 9e3ecca831d8 (bug 1046245)
Backed out changeset 87dc145f4da8 (bug 1046245)
Backed out changeset 01606cf19a77 (bug 1046245)
Backed out changeset 2ed2b15fe940 (bug 1046245)
Backed out changeset 2b99b193828a (bug 1046245)
Backed out changeset d1ac67faccbb (bug 1046245)
 2015-03-28 19:57:17 -07:00
Jan-Ivar Bruaroey
d2a2c59e6d Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup 2015-03-03 09:51:05 -05:00
Ryan VanderMeulen
0ec3fab670 Backed out 6 changesets (bug 1046245) for bustage on a CLOSED TREE. 
Backed out changeset 222c2f9e3bc9 (bug 1046245)
Backed out changeset 4251eef464a2 (bug 1046245)
Backed out changeset 592f4cc23197 (bug 1046245)
Backed out changeset 5bfb9a1c0550 (bug 1046245)
Backed out changeset e966a5df87b6 (bug 1046245)
Backed out changeset 609f3ca64004 (bug 1046245)
 2015-03-28 16:24:25 -04:00
Jan-Ivar Bruaroey
fbcac25eea Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup 2015-03-03 09:51:05 -05:00
Phil Ringnalda
8684378100 Merge m-i to m-c, a=merge 2015-03-28 11:44:16 -07:00
ffxbld
d19b8895fe No bug, Automated HPKP preload list update from host bld-linux64-spot-1005 - a=hpkp-update 2015-03-28 03:27:37 -07:00
ffxbld
59b007131d No bug, Automated HSTS preload list update from host bld-linux64-spot-1005 - a=hsts-update 2015-03-28 03:27:36 -07:00
Andrea Marchesini
94545cbb2e Bug 1148527 - Indentation fix after bug 1145631, r=ehsan 2015-03-27 18:52:19 +00:00
Tanvi Vyas
895410f582 Bug 947079 - Hack to prevent getting a mixed content icon on a fully secure page. r=keeler 2015-03-26 11:54:53 -07:00
Cykesiopka
8aafafce75 Bug 996872 - Reduce calls to getXPCOMStatusFromNSS() in PSM xpcshell tests. r=keeler relanding on a CLOSED TREE 2015-03-25 17:29:05 -07:00
Wes Kocher
4957e87be7 Backed out changeset 3a38c3d97f44 (bug 996872) on the theory that it somehow broke lots of tests, forcing a prolonged CLOSED TREE 2015-03-25 14:40:44 -07:00
Cykesiopka
437d423a75 Bug 996872 - Reduce calls to getXPCOMStatusFromNSS() in PSM xpcshell tests. r=keeler 2015-03-25 11:40:46 -07:00
David Keeler
370b8ec6e9 bug 1138716 - update PSM data structures that depend on root CA changes r=mmc 2015-03-23 10:36:55 -07:00
Phil Ringnalda
a12ccf5a58 Merge m-c to m-i 2015-03-21 12:50:09 -07:00
Phil Ringnalda
01cabc14b3 Merge m-i to m-c, a=merge 2015-03-21 12:31:07 -07:00
ffxbld
079c550f1a No bug, Automated HPKP preload list update from host bld-linux64-spot-1002 - a=hpkp-update 2015-03-21 03:30:42 -07:00
ffxbld
16171d412a No bug, Automated HSTS preload list update from host bld-linux64-spot-1002 - a=hsts-update 2015-03-21 03:30:40 -07:00
Ehsan Akhgari
5cccea6f0f Bug 1145631 - Part 1: Replace MOZ_OVERRIDE and MOZ_FINAL with override and final in the tree; r=froydnj 
This patch was automatically generated using the following script:

function convert() {
echo "Converting $1 to $2..."
find . \
       ! -wholename "*/.git*" \
       ! -wholename "obj-ff-dbg*" \
         -type f \
      \( -iname "*.cpp" \
         -o -iname "*.h" \
         -o -iname "*.c" \
         -o -iname "*.cc" \
         -o -iname "*.idl" \
         -o -iname "*.ipdl" \
         -o -iname "*.ipdlh" \
         -o -iname "*.mm" \) | \
    xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}

convert MOZ_OVERRIDE override
convert MOZ_FINAL final
 2015-03-21 12:28:04 -04:00
Masatoshi Kimura
a6c8ea5e74 Bug 1133187 - Update fallback whitelist. r=keeler 2015-03-18 15:36:00 +01:00
Cykesiopka
36f968ef2c Bug 1131227 - Make the about:certerror Unknown Issuer string mention missing intermediates and unimported roots. r=keeler 2015-03-17 14:33:00 +01:00
Masatoshi Kimura
3228a63525 Bug 1143082 - Fix a message in the mixed content UI. r=dolske 2015-03-17 20:34:58 +09:00
ffxbld
aa6c1f9563 No bug, Automated HPKP preload list update from host bld-linux64-spot-532 - a=hpkp-update 2015-03-14 03:26:00 -07:00
ffxbld
2d6d643ff7 No bug, Automated HSTS preload list update from host bld-linux64-spot-532 - a=hsts-update 2015-03-14 03:25:58 -07:00
Nathan Froyd
7ff6a1d668 Bug 1142503 - don't use QueryInterface when the compiler can do the cast for us; r=ehsan 
Calling QueryInterface with a statically known IID should typically not
be necessary.  In those cases where it's not, the compiler can do the
cast for us, though we have to supply the reference-counting that
QueryInterface would do.

In passing, several redundant null-checks for the result of |new T| have
been deleted.
 2015-03-12 09:43:50 -04:00
David Keeler
a625ddb861 bug 1102443 - fix leak in key pinning logging by removing an unnecessary function call r=cykesiopka 
Also took the opportunity to fix the logging message, since it didn't accurately
describe the information that was being printed.
 2015-03-12 14:31:26 -07:00
Jonathan Griffin
8873726f67 Bug 1116187 - Disable failing mochitest-chrome tests for B2G, r=gbrown 2015-02-06 16:30:37 -08:00
David Keeler
221fab118c bug 1138332 - re-allow overrides for certificates signed by non-CA certificates r=mmc 2015-03-11 11:11:22 -07:00
Cykesiopka
114fecc9e0 Bug 1141815 - Remove nsIDOMCryptoDialogs interface and associated implementation; r=keeler 2015-03-12 10:24:05 +01:00
Cykesiopka
c49307df63 Bug 1121117 - Add fuzz time to workaround non-monotonicity of Date(). r=keeler 2015-03-19 19:57:00 +01:00
Ehsan Akhgari
f6623fb38f Bug 1140767 - Build more files in security/manager in unified mode; r=dkeeler 2015-03-10 22:52:22 -04:00
Mike Hommey
d84d9950a3 Bug 868814 - Fold mozalloc library into mozglue. r=njn 2015-03-10 10:01:52 +09:00
Masatoshi Kimura
328ca1d0ed Bug 1106470 - Drop SSLv3 support entirely from PSM. r=keeler 2015-03-10 01:22:59 +09:00
Phil Ringnalda
10df2b12f7 Merge m-i to m-c, a=merge 2015-03-07 19:11:54 -08:00
ffxbld
44834abc34 No bug, Automated HPKP preload list update from host bld-linux64-spot-157 - a=hpkp-update 2015-03-07 03:27:15 -08:00
ffxbld
b853573eec No bug, Automated HSTS preload list update from host bld-linux64-spot-157 - a=hsts-update 2015-03-07 03:27:13 -08:00
David Keeler
adeeb2474b bug 1129771 - disable IPv6 in PSM xpcshell TLS connection tests due to failures on OS X 10.10 r=cykesiopka a=ryanvm on a CLOSED TREE 
In the process of investigating the intermittent failures listed in
bug 1129771, I discovered that the code would frequently get stuck connecting
to [::1] (where no server was listening) and wouldn't fall back to trying
127.0.0.1 (where the test server was listening). This change prevents the code
attempting to connect to [::1]. There probably is an underlying bug here, but
it appears to be in OS X itself and I have neither the time nor expertise to
investigate further.
 2015-03-04 13:41:11 -08:00
Cykesiopka
fa772c674c Bug 1139177 - RSA public key size checking cleanups. r=keeler 2015-03-05 16:41:00 +01:00
David Keeler
86e8ca7e0b bug 1137538 - remove nsIIdentityInfo and nsNSSSocketInfo::GetPreviousCert r=mayhemer 2015-02-27 11:33:36 -08:00
Masatoshi Kimura
2ef16da796 Bug 1138882 - Add a pref to enable unrestricted RC4 fallback. r=keeler 2015-03-05 22:51:31 +09:00
Cykesiopka
3381f76539 Bug 1121117 - Add some logging to test_ocsp_timeout.js to ease debugging. r=dkeeler 2015-03-03 14:25:00 +01:00
Wes Kocher
a64b305a76 Merge b2g-inbound to m-c a=merge CLOSED TREE 2015-03-03 17:02:21 -08:00
Chuck Lee
ac72d5e34a Bug 1012549 - 0004. Support read private key in keystore. r=dkeeler r=qdot 2015-02-28 21:54:24 +08:00
David Keeler
38d128c98a bug 1085506 - gather telemetry for TLS handshake certificate verification errors r=rbarnes 2015-02-27 11:14:29 -08:00
Mark Goodwin
69758f0c42 Bug 1130757 - tests for bug 1130757. r=dkeeler 2015-03-02 08:19:00 +01:00
Cykesiopka
0333f769fa Bug 1130418 - Remove broken e-mail cert trust editing UI. r=emk 2015-03-02 19:54:00 +01:00
Cykesiopka
9ab87a604b Bug 1130413 - Remove unused nsITokenPasswordDialogs::GetPassword() function. r=jjones 2015-02-26 13:05:00 +01:00
Wes Kocher
964b89fd2c Merge inbound to m-c a=merge 2015-03-02 12:12:47 -08:00
ffxbld
370ac08ffb No bug, Automated HPKP preload list update from host bld-linux64-spot-044 - a=hpkp-update 2015-02-28 03:27:43 -08:00
ffxbld
74498b8502 No bug, Automated HSTS preload list update from host bld-linux64-spot-044 - a=hsts-update 2015-02-28 03:27:41 -08:00
David Keeler
1f3f600cd6 bug 1049740 - implement telemetry to measure compatibility impact of 2048-bit-minimum RSA keys r=briansmith 2015-02-24 15:48:05 -08:00
Boris Zbarsky
897168be1d Bug 1136388. Change nsIDocumentLoaderFactory and nsIURIContentListener to take MIME types as an XPCOM string, not a char*. r=smaug 2015-02-25 10:26:51 -05:00
Brian Smith
d85291b22f Bug 1077864, Part 3: update nsserrors.properties so error message gets localized. 2015-02-23 16:04:23 -08:00
Ryan VanderMeulen
1c4d542a01 Merge inbound to m-c. a=merge 2015-02-21 16:40:27 -05:00
ffxbld
a26a51b898 No bug, Automated HPKP preload list update from host bld-linux64-spot-148 - a=hpkp-update 2015-02-21 03:32:26 -08:00
ffxbld
13ecb9fd8b No bug, Automated HSTS preload list update from host bld-linux64-spot-148 - a=hsts-update 2015-02-21 03:32:24 -08:00
Masatoshi Kimura
43f23d98e1 Bug 1127339 - Detect SSLv3-only server in PSM. r=keeler 2015-02-21 17:20:22 +09:00
Cykesiopka
d22c9d9a28 Bug 1097622 - Add test cases for certs that have notBefore times earlier than the UNIX epoch. r=dkeeler 2015-02-17 06:15:00 -05:00
Cykesiopka
1d7d83f71b Bug 1097622 - Return ERROR_INVALID_TIME when decoding invalid time values. r=dkeeler 2015-02-18 15:56:00 -05:00
Cykesiopka
64a8ea21dd Bug 1097622 - Rename (mE|e)rrorCodeExpired variables to (mE|e)rrorCodeTime. r=dkeeler 2015-02-17 06:12:00 -05:00
Masatoshi Kimura
e7ae123b62 Bug 1133187 - Update fallback whitelist. r=keeler 2015-02-19 04:12:59 +09:00
Masatoshi Kimura
692596c616 Bug 1124039 - Allow RC4 only for whitelisted hosts. r=keeler 2015-02-19 04:12:58 +09:00
Masatoshi Kimura
b3a87502f8 Bug 1137179 - Add wildcard support to the static fallback list. r=keeler 2015-02-28 08:53:44 +09:00
Cykesiopka
d7e0cccff0 Bug 1136471 - Remove unused nsIIdentityInfo.getValidEVPolicyOid(). r=dkeeler 2015-02-26 13:05:00 -05:00
Chris Peterson
a3979244a6 Bug 1133283 - Remove nonstandard expression closures from security/manager/ssl/tests. r=keeler 2015-01-24 23:48:22 -08:00
David Keeler
172cad9792 bug 1123671 - if a non-overridable error is encountered when processing an overridable certificate error, report the non-overridable error r=mmc r=jcj 
Also, SEC_ERROR_UNTRUSTED_ISSUER and SEC_ERROR_UNTRUSTED_CERT are not actually overridable, so don't pretend they are.
 2015-01-23 14:04:44 -08:00
Chuck Lee
1900ef43e3 Bug 1012549 - 0001. Support import PKCS12 certificate. r=dkeeler r=vchang 2015-02-28 21:54:16 +08:00
Christoph Kerschbaumer
7a287ddcea Bug 1099296 - Attach LoadInfo to remaining callers of ioService and ProtocolHandlers - in security/ (r=keeler) 2015-02-17 10:09:40 -08:00
Carsten "Tomcat" Book
5bd5760509 Merge mozilla-central to mozilla-inbound 2015-02-16 16:14:51 +01:00
Carsten "Tomcat" Book
b894747db5 merge mozilla-inbound to mozilla-central a=merge 2015-02-16 15:59:56 +01:00
ffxbld
a634b8144f No bug, Automated HPKP preload list update from host bld-linux64-spot-1093 - a=hpkp-update 2015-02-14 03:21:57 -08:00
ffxbld
5200600637 No bug, Automated HSTS preload list update from host bld-linux64-spot-1093 - a=hsts-update 2015-02-14 03:21:55 -08:00
Masatoshi Kimura
f9bfa5cc7b Bug 1131880 - Modify the condition to disallow PR_CONNECT_RESET_ERROR on fallback. r=keeler 2015-02-16 20:03:06 +09:00
Masatoshi Kimura
4556fb4a20 Backout 9507662057de (bug 1130670) and c731517a47e8 (bug 1124039) due to compatibility issues 2015-02-16 19:55:15 +09:00
Mike Hommey
d36e105b4e Bug 1120937 - Properly initialize string fields from the PKCS#11 test module. r=keeler 
The string fields need to be padded with spaces, according to what
PK11_MakeString does to find the end of the string.

While here, factor all the string manipulations in the test module and
use some C++ template magic to do the right thing.

This changes the static asserts from (with clang):

pkcs11testmodule.cpp:45:3: error: static_assert failed
      "TestManufacturerID too long - make it shorter"
  static_assert(sizeof(TestManufacturerID) <= sizeof(pInfo->manufacturerID),
  ^             ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

to:

pkcs11testmodule.cpp:46:3: error: static_assert failed
      "DestSize >= SrcSize - 1"
  static_assert(DestSize >= SrcSize - 1, "DestSize >= SrcSize - 1");
  ^             ~~~~~~~~~~~~~~~~~~~~~~~
pkcs11testmodule.cpp:58:3: note: in instantiation of function
      template specialization 'CopyString<32, 63>' requested here
  CopyString(pInfo->manufacturerID, TestManufacturerID);
  ^

which actually gives more information than before: it gives the length of
both buffers.
 2015-02-13 10:29:18 +09:00
Masatoshi Kimura
e7fe7f16e3 Bug 1130670 - Remove dead code that tracks strongCipherStatus. r=keeler 2015-02-14 15:16:04 +09:00
L. David Baron
6f742e5e8f Back out changeset a02ea85607a2 (bug 1038072) for widespread test failures (at least Linux, Android, and Mulet), on a CLOSED TREE. 2015-05-06 09:58:55 +02:00
Daniel Veditz
43715a2b32 Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler 2015-05-05 20:21:00 +02:00
Nicholas Nethercote
09156539d5 Bug 1131901 (part 1) - Make PL_DHashTableAdd() infallible by default, and add a fallible alternative. r=froydnj. 
I kept all the existing PL_DHashTableAdd() calls fallible, in order to be
conservative, except for the ones in nsAtomTable.cpp which already were
followed immediately by an abort on failure.
 2015-02-02 14:48:58 -08:00
Cykesiopka
a8c28fda0e Bug 1130405 - Remove unused pippki strings. r=jcj 2015-02-11 05:08:00 -05:00
Cykesiopka
54328342f6 Bug 1130402 - Make use of currently unused certManager.dtd access key strings. r=jcj 2015-02-07 01:16:00 -05:00
Cykesiopka
f0e176336b Bug 1131475 - Make sure reference to "unable_to_toggle_fips" bundle key is in the correct case. r=jcj 2015-02-11 05:05:00 -05:00
Andrew McCreight
c946357872 Bug 1131199, part 2 - Make PLDHashtInitEntry infallible. r=froydnj 
Also, drop the unused table argument.
 2015-02-11 09:46:40 -08:00
Andrew McCreight
55eaced49c Bug 1131199, part 1 - Allocation of CompareCacheHashEntryPtr::entry is infallible. r=froydnj 2015-02-11 09:46:40 -08:00