wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
181,259 Commits 1 Branch 166 Tags 1.2 GiB
2ad4272b90
Commit Graph

1945 Commits

Author SHA1 Message Date
Bill McCloskey
624ffda758 Backed out changeset d6261f65070a 2014-03-13 15:52:27 -07:00
Bill McCloskey
a23e0f8633 Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted) 2014-03-13 15:41:41 -07:00
David Keeler
a761489cd5 bug 969048 - adjust OCSP stapling telemetry for insanity::pkix r=briansmith r=cviecco 2014-03-13 09:41:03 -07:00
Vaibhav Agarwal
292a923c8e Bug 971132 - B2G mochitests should use the new manifest format for runtests; r=jmaher 2014-03-13 10:40:10 -04:00
Vicamo Yang
459e5b28cf Bug 944625 - B2G Emulator-x86: fix undeclared __NR_sendto, __NR_recvfrom. r=jld,kang 2014-03-13 13:44:43 +09:00
Wes Kocher
a07bbe4b3e Merge m-c to b-i 2014-03-12 21:22:36 -07:00
Jed Davis
8518d7e52b Bug 977859 - Drop uid 0 in all content processes immediately after fork. r=bent r=kang 
Now all regular child processes, including preallocated, are deprivileged.
Only Nuwa needs uid 0, because each of its children has a different uid/gid.
 2014-03-12 15:48:15 -07:00
David Keeler
10839e2fec bug 915932 - cache OCSP responses when using insanity::pkix r=cviecco r=briansmith 2014-03-12 13:08:48 -07:00
David Keeler
d11318bf9c bug 982403 - separate the compilation of certverifier and insanity::pkix r=cviecco r=briansmith 
--HG--
rename : security/certverifier/moz.build => security/insanity/moz.build
 2014-03-12 13:08:18 -07:00
Camilo Viecco
5d919b2c6e Bug 962740 - Batch of 3 CA Certs to be granted EV capabilites. r=keeler 2014-02-26 14:41:02 -08:00
Brian Smith
b7633c8def Bug 982761 - Fix linkage of _1 placeholder in std::bind polyfill. r=briansmith 2014-03-13 16:55:28 -07:00
David Keeler
593fdbe455 Bug 974715 - Create more flexible OCSP response generation code. r=briansmith, r=cviecco 2014-03-10 14:04:31 -07:00
Brian Smith
d0a2191cd6 Bug 947584: Use official IANA names for cipher suites in PSM, r=cviecco 
--HG--
extra : rebase_source : fafec912dc96480cb4f00bddec00d40e5e9db088
 2014-03-09 20:21:12 -07:00
Brian Smith
82177fc272 Bug 967153: Update to NSS 3.16 beta 5 (NSS_3_16_BETA5), r=me 
--HG--
extra : rebase_source : 8dfdcd121214b084acc01025a2cd989ccf6a603c
 2014-03-09 19:40:25 -07:00
ffxbld
e00ef3a7af No bug, Automated HSTS preload list update from host bld-linux64-spot-041 - a=hsts-update 2014-03-08 04:29:12 -08:00
Landry Breuil
576df297f4 Bug 980848: use c-style comments in c files r=cviecco DONTBUILD 2014-03-07 18:32:11 +01:00
Jed Davis
bd32e9135c Bug 979686 - Fix the non-(ARM|x86|x86_64) desktop build. r=kang 2014-03-06 12:23:06 -08:00
Luke Wagner
af4251da97 Bug 980180 - remove principals as an argument to compilation, part 2 (r=terrence) 
--HG--
extra : rebase_source : 86791b50b4293ba5506f1e0f5c64730338f552e6
 2014-03-06 16:28:07 -06:00
Vaibhav Agarwal
f0bd81877d Bug 970925 - convert testing/mochitest/android.json into skip-if statements in mochitest.ini files; r=jmaher 2014-03-06 13:42:47 -05:00
Brian R. Bondy
ff0c2873b4 Bug 941110 - Make the Windows sandbox code compile without the Win8 SDK. r=jimm 2014-03-06 12:53:24 -05:00
Ted Mielczarek
f65444d5b1 Bug 977699 - Move the few remaining mochitests to manifests. r=jmaher 2014-03-04 15:54:31 -05:00
Jed Davis
f6ffcce7a8 Bug 946407 - Disable sandbox when DMDing. r=njn r=kang 
See also bug 956961.
 2014-03-04 18:27:14 -08:00
Ehsan Akhgari
444a26ed8e Bug 976896 - Port STL_FLAGS to moz.build; r=mshal 2014-03-04 19:39:06 -05:00
David Keeler
e8ea24a4a6 bug 978797 - stop classifying SEC_ERROR_INADEQUATE_KEY_USAGE as a "bad cert" error r=briansmith 2014-03-03 15:39:07 -08:00
Brian Smith
15433c7191 Bug 967153: Update to NSS 3.16 beta 4 (NSS 3_16_BETA4), r=me 
--HG--
extra : rebase_source : 192fdf657daa1aae51d9f163b074b8eb6a7aac13
 2014-03-02 17:30:39 -08:00
Brian Smith
06c3b6575e Bug 978117: Enable test_signed_apps.js and test_signed_apps-marketplace.js on Android and B2G, r=cviecco 
--HG--
extra : rebase_source : acc33b667f19583d94d300d4e4a73cb3e225bbd6
 2014-03-01 20:55:57 -08:00
Brian Smith
7b3fbf17ce Bug 978528: Return the correct error message when no potential issuers are found during path bulding in insanitY::pkix, r=cviecco 
--HG--
extra : rebase_source : 71f806312ad322bc2971e7efaea2da217b07efad
 2014-03-01 20:55:51 -08:00
Brian Smith
9774eaf9ce Bug 978120: Enable more PSM xpcshell tests on Android and B2G, r=keeler 
--HG--
extra : rebase_source : 439914322f2b2f2ebd7bf529e3a4a59f36831a7e
 2014-03-01 19:02:58 -08:00
Brian Smith
ae6b048991 Bug 978120: Make nsIX509Cert.setCerttrust, and nsIX509CertDB.addCert, and nsIX509CertDB2.addCertFromBase64 work on Android and B2G, r=keeler 
--HG--
extra : rebase_source : 5582716fe0c650366e3cf5e85a30748a7d22b156
 2014-03-01 19:01:23 -08:00
Ed Morley
8362582b2a Merge latest green inbound changeset and mozilla-central 2014-03-03 14:44:44 +00:00
ffxbld
242b919b95 No bug, Automated HSTS preload list update from host bld-linux64-spot-483 - a=hsts-update 2014-03-01 03:17:30 -08:00
Ryan VanderMeulen
433c5de893 Merge m-c to inbound. 2014-02-28 10:15:57 -05:00
Carsten "Tomcat" Book
67109b9a5c merge b2g-inbound to mozilla-central 2014-02-28 14:42:11 +01:00
Wes Kocher
45d489c9d5 Merge m-c to b2g-inbound 2014-02-27 17:47:32 -08:00
Jed Davis
cffac485ff Bug 970676 - Turn on sandboxing on all relevant threads. r=dhylands r=bent f=kang 2014-02-27 13:18:01 -08:00
Brian Smith
57f5275a64 Bug 978111, Bug 978426: Disable test_sts_preloadlist_perwindowpb.js on B2G/ARM, a=bustage 
--HG--
extra : rebase_source : 434af7dc53cf57eca1335a6e0ad0a4785c547e72
 2014-02-28 21:12:07 -08:00
Brian Smith
632820cb94 Bug 978185: Improve error codes returned from nsIX509CertDB.addCert and nsIX50CertDB.setCertTrust, r=keeler 
--HG--
extra : rebase_source : e32a913f085524d113b17d03917c10ad92c7f6e1
 2014-02-28 11:19:38 -08:00
Brian Smith
d13619f4f5 Bug 978111: Enable already-working PSM xpcshell tests on Android and B2G, r=cviecco 
--HG--
extra : rebase_source : c14ef67870f2b40a3319e6bc8df0ddfe9dd222e3
 2014-02-28 11:16:16 -08:00
Ehsan Akhgari
5df2a9cacc Bug 976898 - Move the sdkdecls.h force-include out of the build system; r=bbondy,glandium 2014-02-28 08:17:22 -05:00
Brian Smith
41a03326ab Bug 967153: Update to NSS 3.16 beta 3 (NSS_3_16_BETA3), r=me 
--HG--
extra : rebase_source : 75c78b361f887c2cb820bc41913bcf68de15f83f
extra : histedit_source : 7c8e8a79c9dde7c702ceb5ce1e4a73f2a77fbea5
 2014-02-27 16:06:22 -08:00
Andrew McCreight
c479f2a541 Bug 962608 - Make PL_DHashTableInit infallible by default. r=briansmith,bsmedberg,ehsan,froydnj,jduell,jfkthame,roc,smaug 2014-02-27 10:04:09 -08:00
Brian Smith
6dedccaf4a Bug 921885: Use insanity::pkix for EV cert verification when insanity::pkix is the selected implementation, r=cviecco, r=keeler 
--HG--
extra : rebase_source : b1fd1f8eace675484b3c2d568e5e74f767f1d2ad
 2014-02-23 22:15:53 -08:00
Brian Smith
8f77f9a85d Bug 921886: Add certificate policiy support to insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 6522e2c2f57f59fe23c0ed0c838f1f54236bdafc
 2014-02-24 12:37:45 -08:00
Brian Smith
95531c3f3b Bug 970810: Expand name constraint tests to test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : b8190690743a12623c7524429215fc7d8a8dea49
extra : histedit_source : fd9877f98303dd237b302e6c606ca11f4c36fd7c
 2014-02-25 01:15:52 -08:00
Camilo Viecco
28701723f5 Bug 900727: Add name constraints to psm in xpcshell. r=bsmith 2013-12-12 10:28:06 -08:00
Brian Smith
26540bda32 Bug 975122: Allow cert error overrides when insanity::pkix is used, r?cviecco, r?keeler 
--HG--
extra : rebase_source : 47f5e779a16c462e40baa2d9cec2e83946c9076c
 2014-02-22 19:08:06 -08:00
Raymond Etornam Agbeame(:retornam)
9e9e8b80a4 Bug 970614 - Remove code wrapped in #if 0 ... #endif blocks in PSM. r=keeler 2014-02-24 09:41:55 -05:00
Jed Davis
971a5e4c91 Bug 971128 - Add sched_yield to seccomp whitelist. r=kang 2014-02-22 18:58:59 -08:00
Jed Davis
5fbea02293 Bug 970562 - Add sched_getscheduler to seccomp whitelist. r=kang 2014-02-22 18:58:59 -08:00
Ehsan Akhgari
790a3e8ead Bug 935778 - Part 0.3: Spray some more MOZ_DECLARE_REFCOUNTED_TYPENAME across the tree 2014-02-20 23:07:24 -05:00
David Keeler
a3a30a42d7 bug 969479 - only prevent TLS fallback for STARTTLS r=briansmith 2014-02-20 15:14:32 -08:00
Brian R. Bondy
281d63981a Bug 974979 - Browser crashes after trying to restart a crashed e10s process. r=aklotz 2014-02-20 12:58:04 -05:00
Brian R. Bondy
c4729b25c5 Bug 928061 - Enable separate Desktop in Windows sandbox policy. r=aklotz 2014-02-20 12:37:22 -05:00
Jed Davis
b66661141a Bug 974230 - Adjust sandbox so that socket() simply fails. r=kang 
This is a workaround for issues with the SCTP code (bug 969715) and
NSPR's IPv6 support (bug 936320).
 2014-02-20 09:35:44 -05:00
Jed Davis
bebcd8c470 Bug 966547 - Switch sipcc from named to anonymous sockets on Unix. r=jesup, r=kang 2014-02-20 09:35:26 -05:00
Jed Davis
3c6de73e43 Bug 974227 - Allow readlink while sandboxed to work around bug 964455. r=kang 2014-02-19 15:55:42 -05:00
Brian Smith
8870f2d542 Bug 915931, Part 4: Expand OCSP xpcshell tests to test insanity::pkix, r=keeler 
--HG--
extra : rebase_source : e645de251c459d6fa38996bb7bfd35e21eaf3b72
 2014-02-17 13:19:54 -08:00
Brian Smith
7865b702d2 Bug 973268: Return better error codes and make simple cert error override processing work for insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 596e7a67b8631bb6a52c20d569fe433aa5e86cec
 2014-02-11 00:46:05 -08:00
Brian Smith
5fce01773e Bug 915931, Part 3: Integrate insanity::pkix OCSP support, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 4b54682ca6d97e2ec7709b9a5c93ddea71126f8b
 2014-02-16 17:35:40 -08:00
Brian Smith
5c056032ea Bug 915931, Part 2: Add OCSP request encoding to insanity::pkix, r=keeler 
--HG--
extra : rebase_source : c07713a417c2bc03d4c18f0c7dbddd19b4532390
 2014-02-06 16:57:49 -08:00
Brian Smith
c1391a29b0 Bug 878932, Part 1: Add OCSP response parsing & validation to insanity::pkix, r=keeler 
--HG--
extra : rebase_source : 23771eaf97f67e5feb69d50a0c96dd4da31ae964
extra : source : b0511882e4c94c0960ef8533b381e8d72706172e
 2014-02-16 18:09:06 -08:00
Ehsan Akhgari
0ec6497e74 Bug 973405 - Move some misc LOCAL_INCLUDES to moz.build; r=glandium 2014-02-18 08:49:12 -05:00
Ms2ger
aa9d7b52b4 Bug 968856 - Move unconditional LOCAL_INCLUDES into moz.build; r=mshal 2014-02-15 21:24:59 +01:00
Phil Ringnalda
fb92f57395 Merge m-i to m-c 2014-02-15 09:54:57 -08:00
ffxbld
79edf741a1 No bug, Automated HSTS preload list update from host bld-linux64-spot-071 - a=hsts-update 2014-02-15 03:20:10 -08:00
Vaibhav Agarwal
81f1ea0a18 Bug 970925 - convert testing/mochitest/android.json into skip-if statements in mochitest.ini files; r=jmaher 2014-02-15 04:53:02 -05:00
Brian Smith
26f58a2368 Bug 896620: Revert deletion of security/build/b2g-app-root-cert.der, which was intended for bug 972201, r=me (thanks Ehsan) 2014-02-14 19:45:58 -08:00
Brian Smith
08696b7fd7 Bug 896620: Make marketplace certs work on in all products, r=keeler 
--HG--
extra : source : 86ec7137a8892f75918c77e605df970f5b96ef62
extra : histedit_source : 33326790804d49e6ec658626116ebf870d94d445
 2014-02-14 14:37:07 -08:00
Brian Smith
58ebf88141 Bug 967153: Update to NSS 3.16 beta 2 (NSS_3_16_BETA2), r=me 
--HG--
extra : source : e7b156a508d35034735e0cb44e5f73d6e8b76cc7
 2014-02-13 16:43:27 -08:00
Brian R. Bondy
49164e195d Bug 969559 - Set delayed restricted integrity in child process to block off pipe and file access after LowerToken call. r=aklotz 2014-02-14 11:07:16 -05:00
Wes Kocher
cb9ae2a2b7 Merge m-c to inbound on a CLOSED TREE 2014-02-13 18:50:08 -08:00
David Keeler
e80e27537c bug 967975 - certificate error override telemetry r=briansmith 
--HG--
rename : security/manager/ssl/tests/unit/tlsserver/cmd/OCSPStaplingServer.cpp => security/manager/ssl/tests/unit/tlsserver/cmd/BadCertServer.cpp
 2014-02-13 14:53:29 -08:00
Ryan VanderMeulen
0e311b4331 Merge m-c to b2g-inbound. 2014-02-13 10:32:21 -05:00
Jed Davis
e0e22b713f Bug 971370 - Fix seccomp whitelist errors caused by strace bug. r=kang 2014-02-13 09:47:16 -05:00
Guillaume Destuynder
5b32db4f17 bug 948620 - Add env variable MOZ_DISABLE_CONTENT_SANDBOX to disable sandbox at runtime. r=jld 2014-02-13 16:26:28 -08:00
Brian Smith
9a32819b71 Bug 971178, Part 4: Expand test_intermediates_basic_constraints.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : b419a3087b3d327c9a48d984551abeac4943be7a
 2014-02-11 16:24:45 -08:00
Brian Smith
c5f75b4ab3 Bug 971178, Part 3: Expand test_certificate_usages.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : 3810925d18767d1b04f8a47004a0ab7a631e5b4b
 2014-02-11 01:42:41 -08:00
Brian Smith
5380137967 Bug 971178, Part 2: Make test_getchains.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : ff9620bad6b20a84cf179af7ffa7a74f6ffd6640
 2014-02-11 01:42:55 -08:00
Brian Smith
eda1dac53f Bug 971178, Part 1: Expand test_cert_signatures.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : 90cf68bdb50b8499aeda3e14c476977db9e43c2a
 2014-02-11 01:42:24 -08:00
Jeff Walden
5226a7ab14 Bug 969165 - Convert Atomic<T> where T != bool but is used as a bool over to Atomic<bool>, now that it's supported, in security/manager/. r=bsmith 
--HG--
extra : rebase_source : 3632af6471e41d099a0948542d26a7df527efaad
 2014-02-06 22:17:07 -08:00
Camilo Viecco
1aba9afb97 Bug 877376: Add tests for intermediate CA basic constraints and KU/EKU, r=briansmith 
--HG--
extra : rebase_source : b831ab0e459af4ea0f43a1184e32b333f43b2f01
 2013-05-23 10:15:19 -07:00
Brian Smith
cab43a3bfd Bug 878932, Part 2: Make certificate verification implementation prefs dynamic, r=cviecco 
--HG--
extra : rebase_source : 4b413cfd8e122ee4e0fea64d624285856e2cb0cb
 2014-01-20 15:55:12 -08:00
Brian Smith
ff6bc14650 Bug 878932, Part 1: add insanity::pkix as an option for certificate verification, r=keeler, r=cviecco 
--HG--
extra : rebase_source : c1f75dff6ac7f32e082517af701654abebaee250
 2014-02-10 11:41:12 -08:00
Brian Smith
2658e5f7ad Bug 970512: Remove uninteresting cases for certificate usage verification, r=cviecco 
--HG--
extra : rebase_source : 6df6dcfb39f8b4e2cd063115470af04675c0f768
extra : source : 56e0904260b417ce181e2a35978f6d77e78ef2c2
 2013-10-13 23:34:28 -07:00
Brian Smith
655014f3d4 Bug 969938: Stop adding id-KP-OCSPSigning EKU to CA certificates in tests, r=cviecco 
--HG--
extra : rebase_source : 9f5e42ea788e63fb93e3a37632be12093096e63d
 2014-02-08 21:01:39 -08:00
Brian Smith
4fc39ce273 Bug 921896: Check name constraints in insanity::pkix, r=cviecco, r=keeler 
--HG--
extra : rebase_source : 6d3e77670a5553b477a881609cc30f5f4140294c
extra : source : 2545cd47894a95323b718eb4f82be6d744019c7a
 2014-02-10 15:25:23 -08:00
Brian Smith
d07841f4f7 Bug 968359: Allow the direct validation of CA certificates in insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : f27870f2a648ad012d24b99d9e4f85daf17e9397
extra : source : 002e9043461b40a911903258d723c37133dbc79c
 2013-09-13 00:09:08 -07:00
Brian Smith
4430109984 Bug 921895: Check extended key usage in insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : f8faa0b9269a40dd28850c9444f4723d1dad8451
extra : source : 32ea705bdfd196e037060b3bb7da081c1eed356d
 2014-02-08 15:00:32 -08:00
David Keeler
8d4a3a1e43 bug 961528 - holepunch chart.apis.google.com from the HSTS preload list r=briansmith 2014-02-11 10:21:57 -08:00
Ehsan Akhgari
d1964b92f6 Bug 970727 - Move DEFFILE to moz.build; r=mshal 2014-02-11 11:28:54 -05:00
Ehsan Akhgari
82ebdc883f Bug 969757 - Remove the dead code in our tree which pretends to support OS/2; r=roc,mcmanus,gps,jorendorf,bsmedberg sr=bsmedberg 2014-02-10 17:57:01 -05:00
Jacek Caban
561e839426 Bug 969330 - Fix -Werror=int-to-pointer-cast in windows-only code. r=ehsan 2014-02-10 12:05:22 +01:00
Brian Smith
2e61dec135 Bug 967153: Add name constraint test certs accidentally excluded from commit 9e5d07c8c87b, r=me, a=NPOTB, DONTBUILD 
--HG--
extra : amend_source : 1c120e9bfce764f70ea3f1355db6a1bf58332526
 2014-02-09 16:33:59 -08:00
Brian Smith
eca3e2b377 Bug 967153: Update NSS to NSS 3.16 beta 1 (NSS_3_16_BETA1), r=me 2014-02-09 16:29:50 -08:00
ffxbld
20838cbe86 No bug, Automated HSTS preload list update from host bld-linux64-ec2-400 - a=hsts-update 2014-02-08 03:17:31 -08:00
Camilo Viecco
da9d0dec0c Bug 790809 - Add callback for in libpkix for extra app checks (in usage sslserver). r=dkeeler 2014-02-05 14:49:14 -08:00
Jed Davis
7e6db2be33 Bug 945504 - Include JS stack in sandbox reporter logs. r=kang 2014-02-07 10:46:38 -05:00
Carsten "Tomcat" Book
69627ca737 merge b2g-inbound to mozilla-central 2014-02-07 09:54:06 +01:00
Brian Smith
43ed0a2efe Bug 921893: Verify key usage extension in insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 1ea7626ed36cd92cdbf2aea5533e983fc0f58a44
 2014-01-28 23:20:11 -08:00
Brian Smith
0c073be21f Bug 921892: Check basic constraints in insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 6a5bb14c2ba8ba195dfdb207e86016577ddd836a
 2014-02-06 18:13:20 -08:00
Brian Smith
b7e81d69b7 Bug 921891, part 3: Add basic building and verification, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 7b01773c47445efc40941ae251d03f505f429be6
extra : source : 2a36da04b931740858d51023b2cc8ef7528ef740
 2014-02-02 21:21:00 -08:00
Eric Rahm
f3b451f0fe Bug 969126 - Fix sandbox build for b2g on OS X. r=kang 2014-02-06 16:11:53 -08:00
Carsten "Tomcat" Book
7dbd13a7f9 Merge mozilla-central to mozilla-inbound 2014-02-06 13:22:35 +01:00
Carsten "Tomcat" Book
117533e244 merge fx-team to mozilla-central 2014-02-06 12:51:21 +01:00
Daniel Holbert
8e7148a29c Bug 968323: Declare prlog variables inside #ifdef PR_LOGGING instead of MOZ_LOGGING, in /security, to fix build failures in --disable-logging builds. r=briansmith 2014-02-05 22:11:26 -08:00
Daniel Holbert
43ce0ebc64 Bug 968491: Mark security/certverifier/ as FAIL_ON_WARNINGS. r=briansmith 2014-02-05 22:11:24 -08:00
Camilo Viecco
2c91d307ea Bug 968491 helper-patch: Temporarily #ifdef out static function 'insertErrorIntoVerifyLog' to address Wunused-function build warning. r=briansmith 2014-02-05 22:11:16 -08:00
Jed Davis
319cd8feae Bug 945498 - Use breakpad to report seccomp violations as crashes. r=ted, r=kang 
Upstream issue for breakpad patch: https://breakpad.appspot.com/1114003/
 2014-02-05 13:29:51 -05:00
Brian Smith
4ba4c8f029 Bug 958916: Update to NSS 3.15.5 release candidate 0, (NSS_3_15_5_RC0), r=me 
--HG--
extra : rebase_source : 03eeda2f9f6968811d69c1e44eb8dc00472d7558
 2014-02-05 19:32:56 -08:00
Monica Chew
daa8048fbe Bug 967298: Make nsIX509CertList instantiable (r=briansmith) 2014-02-03 22:25:50 -08:00
Honza Bambas
b68a255707 Bug 828183 - disable NTLM generic module, effectively disable arbitrary NTLMv1 in Firefox, r=bsmith 2014-02-04 01:52:55 +01:00
Brian Smith
1235699f64 Bug 967299: Fix async/sync issue in test_ev_certs.js, r=keeler 
--HG--
extra : rebase_source : bb7e0a593205ff95de35cf4eecb65ed9dc91a630
 2014-02-03 16:05:33 -08:00
Brian Smith
9fd512a8b9 Bug 967175: Remove EV entries for ValiCert (Go Daddy) roots removed in bug 936304, r=kwilson 
--HG--
extra : rebase_source : b87998d88f38057d37b7518cf1f4fb485c505b31
 2014-02-03 14:29:05 -08:00
David Keeler
a3dcf00b0e Bug 964493, Part 2: Test, r=briansmith 
--HG--
extra : rebase_source : 4bc219aaece6f16458ce7755acf552bf956e01a0
 2014-01-31 11:32:48 -08:00
Brian Smith
f5dee705f7 Bug 958916: Update to NSS 3.15.5 beta 3 (NSS_3_15_5_BETA3), r=me 
--HG--
extra : rebase_source : 569c37a2b5ff3fb6e65a15f82b4c0fb1f2ae603d
 2014-02-03 13:34:34 -08:00
David Keeler
b6af6d819b bug 965379 - refactor getting the profile directory in nsNSSComponent::InitializeNSS r=briansmith 2014-02-02 13:00:45 -08:00
David Keeler
b23d366e84 bug 965379 - properly indent nsNSSComponent::InitializeNSS r=briansmith 2014-02-02 13:02:27 -08:00
Ryan VanderMeulen
0f91046fc6 Merge m-c to inbound. 2014-02-01 17:22:56 -05:00
David Keeler
0a1c541b76 bug 966670 - remove PSMContentDownloader.h r=briansmith 2014-02-01 13:42:59 -08:00
ffxbld
9e20af7fb9 No bug, Automated HSTS preload list update from host bld-linux64-ec2-363 - a=hsts-update 2014-02-01 03:16:13 -08:00
Michael Shal
5f37657f54 Bug 963123 - NNS Windows build fix to prevent lower case working directories to make the build fail. r=glandium 2014-01-30 11:14:35 -05:00
Camilo Viecco
a18d495121 Bug 962693: Add function to add arbitrary errors to tail of verifylog. r=keeler 2014-01-24 14:13:25 -08:00
Monica Chew
0da87bcc7d Bug 966557: Add nsIX509CertDB.ConstructX509FromRawDER (r=bsmith) 2014-01-31 17:33:28 -08:00
Daniel Holbert
f66bb84889 Bug 968363: Mark security/manager/ssl/src/ as FAIL_ON_WARNINGS. r=briansmith 2014-02-06 00:12:17 -08:00
Daniel Holbert
18f6059797 Bug 968348: Remove some set-but-never-read variables, an inline a PR_LOGGING-only variable, to fix build warnings in security/manager/ssl/src/. r=keeler 2014-02-06 00:12:16 -08:00
Brian R. Bondy
4fbe9c94fa Bug 961757 - Add the ability to include shim first for a buildable sandbox on Windows. r=glandium 
--HG--
rename : security/sandbox/base/at_exit.cc => security/sandbox/chromium/base/at_exit.cc
rename : security/sandbox/base/at_exit.h => security/sandbox/chromium/base/at_exit.h
rename : security/sandbox/base/atomic_ref_count.h => security/sandbox/chromium/base/atomic_ref_count.h
rename : security/sandbox/base/atomic_sequence_num.h => security/sandbox/chromium/base/atomic_sequence_num.h
rename : security/sandbox/base/atomicops.h => security/sandbox/chromium/base/atomicops.h
rename : security/sandbox/base/atomicops_internals_tsan.h => security/sandbox/chromium/base/atomicops_internals_tsan.h
rename : security/sandbox/base/atomicops_internals_x86_gcc.h => security/sandbox/chromium/base/atomicops_internals_x86_gcc.h
rename : security/sandbox/base/atomicops_internals_x86_msvc.h => security/sandbox/chromium/base/atomicops_internals_x86_msvc.h
rename : security/sandbox/base/base_export.h => security/sandbox/chromium/base/base_export.h
rename : security/sandbox/base/base_paths.cc => security/sandbox/chromium/base/base_paths.cc
rename : security/sandbox/base/base_paths.h => security/sandbox/chromium/base/base_paths.h
rename : security/sandbox/base/base_paths_win.cc => security/sandbox/chromium/base/base_paths_win.cc
rename : security/sandbox/base/base_paths_win.h => security/sandbox/chromium/base/base_paths_win.h
rename : security/sandbox/base/base_switches.cc => security/sandbox/chromium/base/base_switches.cc
rename : security/sandbox/base/base_switches.h => security/sandbox/chromium/base/base_switches.h
rename : security/sandbox/base/basictypes.h => security/sandbox/chromium/base/basictypes.h
rename : security/sandbox/base/bind.h => security/sandbox/chromium/base/bind.h
rename : security/sandbox/base/bind_helpers.h => security/sandbox/chromium/base/bind_helpers.h
rename : security/sandbox/base/bind_internal.h => security/sandbox/chromium/base/bind_internal.h
rename : security/sandbox/base/bind_internal_win.h => security/sandbox/chromium/base/bind_internal_win.h
rename : security/sandbox/base/callback.h => security/sandbox/chromium/base/callback.h
rename : security/sandbox/base/callback_forward.h => security/sandbox/chromium/base/callback_forward.h
rename : security/sandbox/base/callback_internal.cc => security/sandbox/chromium/base/callback_internal.cc
rename : security/sandbox/base/callback_internal.h => security/sandbox/chromium/base/callback_internal.h
rename : security/sandbox/base/command_line.cc => security/sandbox/chromium/base/command_line.cc
rename : security/sandbox/base/command_line.h => security/sandbox/chromium/base/command_line.h
rename : security/sandbox/base/compiler_specific.h => security/sandbox/chromium/base/compiler_specific.h
rename : security/sandbox/base/containers/hash_tables.h => security/sandbox/chromium/base/containers/hash_tables.h
rename : security/sandbox/base/cpu.cc => security/sandbox/chromium/base/cpu.cc
rename : security/sandbox/base/cpu.h => security/sandbox/chromium/base/cpu.h
rename : security/sandbox/base/critical_closure.h => security/sandbox/chromium/base/critical_closure.h
rename : security/sandbox/base/debug/alias.cc => security/sandbox/chromium/base/debug/alias.cc
rename : security/sandbox/base/debug/alias.h => security/sandbox/chromium/base/debug/alias.h
rename : security/sandbox/base/debug/debugger.h => security/sandbox/chromium/base/debug/debugger.h
rename : security/sandbox/base/debug/leak_annotations.h => security/sandbox/chromium/base/debug/leak_annotations.h
rename : security/sandbox/base/debug/profiler.cc => security/sandbox/chromium/base/debug/profiler.cc
rename : security/sandbox/base/debug/profiler.h => security/sandbox/chromium/base/debug/profiler.h
rename : security/sandbox/base/environment.h => security/sandbox/chromium/base/environment.h
rename : security/sandbox/base/file_descriptor_posix.h => security/sandbox/chromium/base/file_descriptor_posix.h
rename : security/sandbox/base/file_util.cc => security/sandbox/chromium/base/file_util.cc
rename : security/sandbox/base/file_util.h => security/sandbox/chromium/base/file_util.h
rename : security/sandbox/base/file_util_win.cc => security/sandbox/chromium/base/file_util_win.cc
rename : security/sandbox/base/file_version_info.h => security/sandbox/chromium/base/file_version_info.h
rename : security/sandbox/base/file_version_info_win.h => security/sandbox/chromium/base/file_version_info_win.h
rename : security/sandbox/base/files/file_path.h => security/sandbox/chromium/base/files/file_path.h
rename : security/sandbox/base/float_util.h => security/sandbox/chromium/base/float_util.h
rename : security/sandbox/base/format_macros.h => security/sandbox/chromium/base/format_macros.h
rename : security/sandbox/base/guid.h => security/sandbox/chromium/base/guid.h
rename : security/sandbox/base/lazy_instance.cc => security/sandbox/chromium/base/lazy_instance.cc
rename : security/sandbox/base/lazy_instance.h => security/sandbox/chromium/base/lazy_instance.h
rename : security/sandbox/base/location.cc => security/sandbox/chromium/base/location.cc
rename : security/sandbox/base/location.h => security/sandbox/chromium/base/location.h
rename : security/sandbox/base/logging.cc => security/sandbox/chromium/base/logging.cc
rename : security/sandbox/base/logging.h => security/sandbox/chromium/base/logging.h
rename : security/sandbox/base/logging_win.cc => security/sandbox/chromium/base/logging_win.cc
rename : security/sandbox/base/logging_win.h => security/sandbox/chromium/base/logging_win.h
rename : security/sandbox/base/memory/aligned_memory.h => security/sandbox/chromium/base/memory/aligned_memory.h
rename : security/sandbox/base/memory/raw_scoped_refptr_mismatch_checker.h => security/sandbox/chromium/base/memory/raw_scoped_refptr_mismatch_checker.h
rename : security/sandbox/base/memory/ref_counted.cc => security/sandbox/chromium/base/memory/ref_counted.cc
rename : security/sandbox/base/memory/ref_counted.h => security/sandbox/chromium/base/memory/ref_counted.h
rename : security/sandbox/base/memory/scoped_ptr.h => security/sandbox/chromium/base/memory/scoped_ptr.h
rename : security/sandbox/base/memory/singleton.cc => security/sandbox/chromium/base/memory/singleton.cc
rename : security/sandbox/base/memory/singleton.h => security/sandbox/chromium/base/memory/singleton.h
rename : security/sandbox/base/memory/weak_ptr.h => security/sandbox/chromium/base/memory/weak_ptr.h
rename : security/sandbox/base/move.h => security/sandbox/chromium/base/move.h
rename : security/sandbox/base/observer_list.h => security/sandbox/chromium/base/observer_list.h
rename : security/sandbox/base/observer_list_threadsafe.h => security/sandbox/chromium/base/observer_list_threadsafe.h
rename : security/sandbox/base/os_compat_nacl.h => security/sandbox/chromium/base/os_compat_nacl.h
rename : security/sandbox/base/path_service.cc => security/sandbox/chromium/base/path_service.cc
rename : security/sandbox/base/path_service.h => security/sandbox/chromium/base/path_service.h
rename : security/sandbox/base/pending_task.h => security/sandbox/chromium/base/pending_task.h
rename : security/sandbox/base/platform_file.cc => security/sandbox/chromium/base/platform_file.cc
rename : security/sandbox/base/platform_file.h => security/sandbox/chromium/base/platform_file.h
rename : security/sandbox/base/port.h => security/sandbox/chromium/base/port.h
rename : security/sandbox/base/process/process_handle.h => security/sandbox/chromium/base/process/process_handle.h
rename : security/sandbox/base/profiler/alternate_timer.h => security/sandbox/chromium/base/profiler/alternate_timer.h
rename : security/sandbox/base/profiler/tracked_time.h => security/sandbox/chromium/base/profiler/tracked_time.h
rename : security/sandbox/base/rand_util.h => security/sandbox/chromium/base/rand_util.h
rename : security/sandbox/base/run_loop.h => security/sandbox/chromium/base/run_loop.h
rename : security/sandbox/base/scoped_clear_errno.h => security/sandbox/chromium/base/scoped_clear_errno.h
rename : security/sandbox/base/sequence_checker.h => security/sandbox/chromium/base/sequence_checker.h
rename : security/sandbox/base/sequence_checker_impl.h => security/sandbox/chromium/base/sequence_checker_impl.h
rename : security/sandbox/base/sequenced_task_runner.h => security/sandbox/chromium/base/sequenced_task_runner.h
rename : security/sandbox/base/sequenced_task_runner_helpers.h => security/sandbox/chromium/base/sequenced_task_runner_helpers.h
rename : security/sandbox/base/shim/base/gtest_prod_util.h => security/sandbox/chromium/base/shim/base/gtest_prod_util.h
rename : security/sandbox/base/shim/base/logging.cpp => security/sandbox/chromium/base/shim/base/logging.cpp
rename : security/sandbox/base/shim/base/strings/string_piece.h => security/sandbox/chromium/base/shim/base/strings/string_piece.h
rename : security/sandbox/base/shim/base/third_party/nspr/prtime.h => security/sandbox/chromium/base/shim/base/third_party/nspr/prtime.h
rename : security/sandbox/base/shim/base/third_party/nspr/prtypes.h => security/sandbox/chromium/base/shim/base/third_party/nspr/prtypes.h
rename : security/sandbox/base/shim/base/tracked_objects.h => security/sandbox/chromium/base/shim/base/tracked_objects.h
rename : security/sandbox/base/shim/sdkdecls.h => security/sandbox/chromium/base/shim/sdkdecls.h
rename : security/sandbox/base/single_thread_task_runner.h => security/sandbox/chromium/base/single_thread_task_runner.h
rename : security/sandbox/base/stl_util.h => security/sandbox/chromium/base/stl_util.h
rename : security/sandbox/base/strings/nullable_string16.cc => security/sandbox/chromium/base/strings/nullable_string16.cc
rename : security/sandbox/base/strings/nullable_string16.h => security/sandbox/chromium/base/strings/nullable_string16.h
rename : security/sandbox/base/strings/string16.h => security/sandbox/chromium/base/strings/string16.h
rename : security/sandbox/base/strings/string_number_conversions.cc => security/sandbox/chromium/base/strings/string_number_conversions.cc
rename : security/sandbox/base/strings/string_number_conversions.h => security/sandbox/chromium/base/strings/string_number_conversions.h
rename : security/sandbox/base/strings/string_piece.cc => security/sandbox/chromium/base/strings/string_piece.cc
rename : security/sandbox/base/strings/string_piece.h => security/sandbox/chromium/base/strings/string_piece.h
rename : security/sandbox/base/strings/string_util.h => security/sandbox/chromium/base/strings/string_util.h
rename : security/sandbox/base/strings/string_util_constants.cc => security/sandbox/chromium/base/strings/string_util_constants.cc
rename : security/sandbox/base/strings/string_util_stripped.cc => security/sandbox/chromium/base/strings/string_util_stripped.cc
rename : security/sandbox/base/strings/string_util_win.h => security/sandbox/chromium/base/strings/string_util_win.h
rename : security/sandbox/base/strings/stringprintf.cc => security/sandbox/chromium/base/strings/stringprintf.cc
rename : security/sandbox/base/strings/stringprintf.h => security/sandbox/chromium/base/strings/stringprintf.h
rename : security/sandbox/base/strings/utf_string_conversion_utils.cc => security/sandbox/chromium/base/strings/utf_string_conversion_utils.cc
rename : security/sandbox/base/strings/utf_string_conversion_utils.h => security/sandbox/chromium/base/strings/utf_string_conversion_utils.h
rename : security/sandbox/base/strings/utf_string_conversions.cc => security/sandbox/chromium/base/strings/utf_string_conversions.cc
rename : security/sandbox/base/strings/utf_string_conversions.h => security/sandbox/chromium/base/strings/utf_string_conversions.h
rename : security/sandbox/base/synchronization/lock.cc => security/sandbox/chromium/base/synchronization/lock.cc
rename : security/sandbox/base/synchronization/lock.h => security/sandbox/chromium/base/synchronization/lock.h
rename : security/sandbox/base/synchronization/lock_impl.h => security/sandbox/chromium/base/synchronization/lock_impl.h
rename : security/sandbox/base/synchronization/lock_impl_win.cc => security/sandbox/chromium/base/synchronization/lock_impl_win.cc
rename : security/sandbox/base/sys_info.h => security/sandbox/chromium/base/sys_info.h
rename : security/sandbox/base/task_runner.h => security/sandbox/chromium/base/task_runner.h
rename : security/sandbox/base/template_util.h => security/sandbox/chromium/base/template_util.h
rename : security/sandbox/base/third_party/dmg_fp/LICENSE => security/sandbox/chromium/base/third_party/dmg_fp/LICENSE
rename : security/sandbox/base/third_party/dmg_fp/dmg_fp.h => security/sandbox/chromium/base/third_party/dmg_fp/dmg_fp.h
rename : security/sandbox/base/third_party/dmg_fp/dtoa.cc => security/sandbox/chromium/base/third_party/dmg_fp/dtoa.cc
rename : security/sandbox/base/third_party/dmg_fp/g_fmt.cc => security/sandbox/chromium/base/third_party/dmg_fp/g_fmt.cc
rename : security/sandbox/base/third_party/dynamic_annotations/LICENSE => security/sandbox/chromium/base/third_party/dynamic_annotations/LICENSE
rename : security/sandbox/base/third_party/dynamic_annotations/dynamic_annotations.h => security/sandbox/chromium/base/third_party/dynamic_annotations/dynamic_annotations.h
rename : security/sandbox/base/third_party/icu/LICENSE => security/sandbox/chromium/base/third_party/icu/LICENSE
rename : security/sandbox/base/third_party/icu/icu_utf.cc => security/sandbox/chromium/base/third_party/icu/icu_utf.cc
rename : security/sandbox/base/third_party/icu/icu_utf.h => security/sandbox/chromium/base/third_party/icu/icu_utf.h
rename : security/sandbox/base/thread_task_runner_handle.h => security/sandbox/chromium/base/thread_task_runner_handle.h
rename : security/sandbox/base/threading/platform_thread.h => security/sandbox/chromium/base/threading/platform_thread.h
rename : security/sandbox/base/threading/platform_thread_win.cc => security/sandbox/chromium/base/threading/platform_thread_win.cc
rename : security/sandbox/base/threading/sequenced_worker_pool.h => security/sandbox/chromium/base/threading/sequenced_worker_pool.h
rename : security/sandbox/base/threading/thread_checker_impl.h => security/sandbox/chromium/base/threading/thread_checker_impl.h
rename : security/sandbox/base/threading/thread_collision_warner.cc => security/sandbox/chromium/base/threading/thread_collision_warner.cc
rename : security/sandbox/base/threading/thread_collision_warner.h => security/sandbox/chromium/base/threading/thread_collision_warner.h
rename : security/sandbox/base/threading/thread_id_name_manager.cc => security/sandbox/chromium/base/threading/thread_id_name_manager.cc
rename : security/sandbox/base/threading/thread_id_name_manager.h => security/sandbox/chromium/base/threading/thread_id_name_manager.h
rename : security/sandbox/base/threading/thread_local.h => security/sandbox/chromium/base/threading/thread_local.h
rename : security/sandbox/base/threading/thread_local_storage.h => security/sandbox/chromium/base/threading/thread_local_storage.h
rename : security/sandbox/base/threading/thread_local_win.cc => security/sandbox/chromium/base/threading/thread_local_win.cc
rename : security/sandbox/base/threading/thread_restrictions.cc => security/sandbox/chromium/base/threading/thread_restrictions.cc
rename : security/sandbox/base/threading/thread_restrictions.h => security/sandbox/chromium/base/threading/thread_restrictions.h
rename : security/sandbox/base/time/time.cc => security/sandbox/chromium/base/time/time.cc
rename : security/sandbox/base/time/time.h => security/sandbox/chromium/base/time/time.h
rename : security/sandbox/base/time/time_win.cc => security/sandbox/chromium/base/time/time_win.cc
rename : security/sandbox/base/tracking_info.h => security/sandbox/chromium/base/tracking_info.h
rename : security/sandbox/base/tuple.h => security/sandbox/chromium/base/tuple.h
rename : security/sandbox/base/values.h => security/sandbox/chromium/base/values.h
rename : security/sandbox/base/version.h => security/sandbox/chromium/base/version.h
rename : security/sandbox/base/win/event_trace_provider.cc => security/sandbox/chromium/base/win/event_trace_provider.cc
rename : security/sandbox/base/win/event_trace_provider.h => security/sandbox/chromium/base/win/event_trace_provider.h
rename : security/sandbox/base/win/pe_image.cc => security/sandbox/chromium/base/win/pe_image.cc
rename : security/sandbox/base/win/pe_image.h => security/sandbox/chromium/base/win/pe_image.h
rename : security/sandbox/base/win/registry.cc => security/sandbox/chromium/base/win/registry.cc
rename : security/sandbox/base/win/registry.h => security/sandbox/chromium/base/win/registry.h
rename : security/sandbox/base/win/scoped_handle.cc => security/sandbox/chromium/base/win/scoped_handle.cc
rename : security/sandbox/base/win/scoped_handle.h => security/sandbox/chromium/base/win/scoped_handle.h
rename : security/sandbox/base/win/scoped_process_information.cc => security/sandbox/chromium/base/win/scoped_process_information.cc
rename : security/sandbox/base/win/scoped_process_information.h => security/sandbox/chromium/base/win/scoped_process_information.h
rename : security/sandbox/base/win/startup_information.cc => security/sandbox/chromium/base/win/startup_information.cc
rename : security/sandbox/base/win/startup_information.h => security/sandbox/chromium/base/win/startup_information.h
rename : security/sandbox/base/win/windows_version.cc => security/sandbox/chromium/base/win/windows_version.cc
rename : security/sandbox/base/win/windows_version.h => security/sandbox/chromium/base/win/windows_version.h
 2014-01-28 15:19:22 -05:00
Jed Davis
b84e184fac Bug 964427 - Whitelist msync (asm.js cache) and sched_get_priority_m{in,ax} (webrtc). r=kang 2014-01-28 09:04:39 -05:00
Camilo Viecco
687e8383e4 Bug 962833: ensure-certverify-returns secfailure on MUST_BE_EV and no ev certificate. r=dkeeler 2014-01-24 13:57:35 -08:00
Ehsan Akhgari
9a53bde08a Bug 964061 - Part 2: Remove nsIDOMCRMFObject; r=bzbarsky 
--HG--
extra : rebase_source : 888e33d68bdcd6e03b56f75036ea00142831961d
 2014-01-27 08:27:06 -08:00
Ehsan Akhgari
1281428936 Bug 964061 - Part 1: Convert CRMFObject to WebIDL bindings; r=bzbarsky 
--HG--
extra : rebase_source : 39a2b35df50cdd42624fb0e7a14383e8d40cea4b
 2014-01-27 08:27:04 -08:00
Nathan Froyd
ed3ed17460 Bug 938786 - notify the secure browser UI, if any, first in NotifySubmitObservers; r=bz 2014-01-23 15:06:20 -05:00
Brian Smith
c7bfa5dd85 Bug 891066, Part 9: Move DisableMD5 to NSSCertDBTrustDomain, r=dkeeler 
--HG--
extra : rebase_source : aaf658c12a74fc53f1591333f10d54e78fe1d992
 2014-01-20 01:30:25 -08:00
Wes Kocher
98304f06e0 Backed out changeset f693f6c91b23 (bug 860076) for browser_-certViewer.js failures on a CLOSED TREE 2014-01-30 18:33:31 -08:00
David Keeler
a9ba42182d bug 860076 - remove SkipOcsp for being totally bogus r=briansmith 
--HG--
rename : security/manager/ssl/tests/mochitest/browser/browser_certificateManagerLeak.js => security/manager/ssl/tests/mochitest/browser/browser_certViewer.js
 2014-01-30 14:55:51 -08:00
Brian Smith
6d3abea576 Bug 921888: Fix nullptr workaround to work with clang, r=cviecco 
--HG--
extra : rebase_source : 39e8badba1865a695bca49b2fbd4b266c804f361
extra : source : 259e4540e192da66a2ec5cdd26dfc43d506c51c6
 2013-09-29 23:53:25 -07:00
Brian Smith
b71ba84d6e Bug 921891, Part 1: Add insanity::pkix::Result and insanity::pkix::TrustDomain, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 2157dbe076e0f50d7c618964804fd17d7e735904
extra : source : 682de9276170560ac62d5bc5ffbe5b707060321b
 2013-10-13 23:38:49 -07:00
Brian Smith
a6308c6759 Bug 921889: Add minimal std::bind/ref/cref polyfill to insanity::pkix, r=keeler 
--HG--
extra : rebase_source : fe8677986461e9d81e471df91360f98b3dd0c97f
extra : source : 6f777ffc1bbc4f3575a0f2c8c1dc63b0fa4b02b0
 2013-09-29 12:08:13 -07:00
Brian Smith
de10055819 Bug 921887: Add minimal DER decoder to insanity::pkix, r=keeler 
--HG--
extra : rebase_source : 12becc63c3f1d4f04f0164d236b6759e9f4e81cc
extra : source : 6db5ba057f8d557eaf238d35d539e4c3dc08be1a
 2013-09-29 12:08:33 -07:00
Brian Smith
5bc05fdca2 Bug 921890: Add key extraction and signature verification to insanity::pkix, r=keeler, r=cviecco 
--HG--
extra : rebase_source : c94380aedc563b3eecddb9bcac60b532f5799eee
extra : source : e33ed267eeee330807dff6c6347e11c0a4e86809
 2013-10-01 01:08:42 -07:00
Daniel Holbert
98cc83dce4 Bug 968338 followup: Add missing #include for unused.h. (bustage fix on a CLOSED TREE) 2014-02-05 14:14:54 -08:00
Daniel Holbert
c090e300a5 Bug 968338: Pass unused-in-some-build-configurations variable 'mFdForLogging' to mozilla::unused, to suppress clang warning in SSLServerCertVerification.cpp. r=bsmith 2014-02-05 13:39:27 -08:00
Daniel Holbert
fc607da413 (no bug) Fix a few DOS newline characters in SSLServerCertVerification.cpp. (no review, whitespace-only) 2014-02-05 13:39:26 -08:00
David Keeler
a5d4a05b2c bug 860076 - remove SkipOcsp/SkipOcspOff r=briansmith 
--HG--
rename : security/manager/ssl/tests/mochitest/browser/browser_certificateManagerLeak.js => security/manager/ssl/tests/mochitest/browser/browser_certViewer.js
 2014-02-04 16:13:47 -08:00
David Keeler
7748def053 bug 967629 - don't release any nsNSSShutDownObject in any destructorSafeDestroyNSSReference r=cviecco 2014-02-04 16:14:51 -08:00
Brian Smith
1b1969c34c Bug 891066, Part 8: Add stapled OCSP response to CertVerifier, r=cviecco 
--HG--
extra : rebase_source : ffe0762228d1217cb51e2f8fad2e0605d7d61344
extra : source : f721d60b6bf74467381590457ce3542f83a2f43a
 2013-09-27 19:53:36 -07:00
Brian Smith
8d1ce51125 Bug 891066, Part 7: Give CertVerifier its own NSPR logging module, r=cviecco 
--HG--
extra : rebase_source : a6b38c4026fe70c9789cbe4830df57c943382f5b
extra : source : 591daff856840016c979ed9b4fdbed4ed68f22a6
 2013-07-10 23:47:09 -07:00
Brian Smith
7a10c3c09e Bug 891066, Part 6: Move SSL server cert verification logic to security/certverifier, r=cviecco 
--HG--
extra : rebase_source : e30b5b46e075c52651bb5320b17660f85a50abbb
extra : source : ef41444d0a7d1f6697c7a4d431fffe8db1724605
 2013-07-08 16:30:59 -07:00
Brian Smith
4ad841d213 Bug 891066, Part 5: Switch to security::pkix::ScopedCERTCertList, r=cviecco 
--HG--
extra : rebase_source : 59015f864e612f18a2f7bb62092b692ae8d47853
extra : source : 31f68b8a192b45720fe931176cdc0565e8c6fd80
 2014-01-22 17:13:19 -08:00
Brian Smith
08a97151f0 Bug 733454: Remove hard-coded blocklisting in PSM for Comodo and DigiNotar, r=cviecco 
--HG--
extra : rebase_source : 3a3ab5246bd6e2af4a0952c64181cad6feb5c424
extra : source : 2e540dd35edfa0ef3549ed4dd8f0b15b57cb2806
 2013-07-01 11:39:16 -07:00
Brian Smith
2ded1d0f58 Bug 891066, Part 4: Fix indention, r=me, a=whitespace-only 
--HG--
extra : rebase_source : 0b9dad2a331b729f614b9b3ee29793a3c89ae053
extra : source : 651a8ef41d0611f0dbc72cbd663071958fea649b
 2013-09-19 13:39:36 -07:00
Brian Smith
72d2c2836a Bug 891066, Part 3: Move more initialization of NSS to security/certverifier, r=keeler 
--HG--
extra : rebase_source : 33aad105028f849d0bbe1c37b60eab50f2f22c88
 2014-01-20 22:10:33 -08:00
Brian Smith
c82641564b Bug 891066, part 2: Move CertVerifier to security/certverifier, r=keeler 
--HG--
extra : rebase_source : dd59a391825b776b075e855660c2488105e2d741
 2014-01-26 19:36:28 -08:00
Brian Smith
5a83bd1831 Bug 891066, Part 1: Remove CertVerifier's dependency on nsNSSComponent, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 3242f78d6d4d68080997dd56dae1fd0675750d5e
extra : source : 965c9f30e9b87e418bbf6ab43657257e94992223
 2014-01-19 14:05:40 -08:00
Brian Smith
66b7c5ca69 Bug 961454: Clean up whitespace in key PSM files, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 53f14cc6f97814eb9913a1ddad1a19631e2af08a
 2014-01-21 17:30:44 -08:00
Camilo Viecco
4498164db8 Bug 916632 (insanity::pkix::ScopedPtr), Part 3: Work around old GCC's lack of nullptr, r=briansmith 
--HG--
extra : rebase_source : 4b212aad2968101717be1e2af9f17d54939bba46
extra : source : 39a083dfd00dd95fafd6444e9ea69ff1257e5eca
 2013-06-28 16:16:56 -07:00
Brian Smith
d13593cc3e Bug 916632 (insanity::pkix::ScopedPtr), Part 2: Add insanity::pkix's pkixtypes.h, r=cviecco 
--HG--
extra : rebase_source : a621a91751a57117a02696e9159e9cedc40883ff
extra : source : 04a20c24c869c848a191d0553f636fe27fe88ee8
 2013-07-08 12:30:32 -07:00
Brian Smith
c721012fa3 Bug 916632 (insanity::pkix::ScopedPtr), Part 1: Add insanity::pkix::ScopedPtr, r=cviecco 
--HG--
extra : rebase_source : 57180ed742a0ae16ea662ce2fdf1f79bad0f8dda
extra : source : e92633f954bcff92b47621337b3c8d8ad83ac543
 2013-09-05 02:01:58 -07:00
ffxbld
b5cf19e90e No bug, Automated HSTS preload list update from host bld-centos6-hp-006 - a=hsts-update 2014-01-25 03:14:57 -08:00
David Keeler
6596163a36 bug 951354 - test nsNSSCertificateDB for proper shutdown r=cviecco a=abillings 2014-01-21 16:47:47 -08:00
Jed Davis
7533caa9fa Bug 960365 - Whitelist uname for nsSystemInfo. r=kang 2014-01-21 15:48:00 -05:00
Ms2ger
64eb61d698 Merge latest PGO-green changeset from inbound to central. 2014-01-20 09:30:38 +01:00
Ms2ger
87874d98a0 Bug 956015 - Add an infallible nsIDocShellTreeItem::ItemType; r=bz 2014-01-20 08:58:26 +01:00
Brian Smith
ebb03d43dc Bug 952874: Fix telemetry for RSA/DHE key sizes of 1025-1280 bits and fix misspelling, r=keeler 2014-01-18 17:59:24 -08:00
Brian Smith
f4c7310a0a Bug 950858: Make cipher suite telemetry code less crash-prone, r=keeler 2014-01-18 16:52:16 -08:00
Phil Ringnalda
685a462788 Merge m-i to m-c 2014-01-18 15:17:10 -08:00
ffxbld
c465e6b79b No bug, Automated HSTS preload list update from host bld-linux64-ec2-438 - a=hsts-update 2014-01-18 03:20:19 -08:00
Brian Smith
6c098e07ae Bug 960714: Make NPN and ALPN prefs dynamic, r=keeler, r=mcmanus 
--HG--
extra : rebase_source : 42ff8c05b682e755d51ec79e2cb26db7cedd382f
 2014-01-16 21:38:59 -08:00
David Keeler
d104dacc3d bug 960723 - fix failingOCSPResponder in test_ev_certs.js r=briansmith 2014-01-16 13:18:38 -08:00
Patrick McManus
0022417aa6 Bug 890994: ALPN support for Gecko, r=briansmith 2014-01-14 15:34:23 -05:00
Brian Smith
c9817eea2c Bug 958916: Update NSS to NSS 3.15.5 beta 2 (NSS_3_15_5_BETA2) plus private patch for bug 950129, CLOBBER, r=me 
--HG--
extra : rebase_source : a0a28ba744ecf81510a4c5bec3a353e4fe275f5a
extra : amend_source : e8b89e0560fc75de5557b8e4543269363f417132
 2014-01-16 13:18:55 -08:00
Wes Kocher
910f68552b Backed out changeset 8526c7a38761 (bug 951354) for CPP unittest bustage 2014-01-17 17:50:17 -08:00
David Keeler
8b98fb7c40 bug 951354 - test nsNSSCertificateDB for proper shutdown r=cviecco a=abillings 2014-01-17 16:22:51 -08:00
Raymond Etornam Agbeame(:retornam)
ea4943cf98 Bug 950169 - remove unused arguments for LogInvalidCertError r=keeler 2014-01-17 11:57:57 -08:00
David Keeler
bc64055426 bug 950240 - don't do DV fallback for nsIIdentityInfo.isExtendedValidation r=briansmith 2014-01-17 11:04:09 -08:00
David Keeler
89f4802006 bug 947759 - unconditionally add Google sites to the HSTS preload list r=cviecco DONTBUILD NPOTB 2014-01-15 11:22:06 -08:00
David Keeler
33883e0b33 bug 959796 - refactor error reporting in getHSTSPreloadList.js r=cviecco DONTBUILD NPOTB 2014-01-15 11:20:55 -08:00
Brian Smith
2ff1459932 Bug 923304, Part 2: Adjust EV tests, r=keeler 
--HG--
extra : rebase_source : f0cfd0089a99dddd8852e0613bc2a31e5c12b1de
 2014-01-14 15:22:09 -08:00
Brian Smith
a7976fde43 Bug 923304, Part 1: Add test for OCSP response signed by CA that has an OCSP URI, r=keeler, r=briansmith 
--HG--
extra : rebase_source : 7cafe0781563382c2221e865201beb023fea3628
 2014-01-13 02:33:08 -08:00
Brian Smith
1b3316007b Bug 950129: Make OCSP fetching policy for OCSP response signing certificates consistent, r=wtc, r=rrelyea 
--HG--
extra : rebase_source : 2369fcd80eb6ed5ec7e96657cdf8b43514c8357b
 2014-01-12 23:13:10 -08:00
David Keeler
e035c31de9 bug 957368 - standardize and simplify nsNSSShutDownObject implementations r=cviecco r=briansmith 2014-01-14 09:28:43 -08:00
Garrett Robinson
c3275ebb9b Bug 883975 - CSP 1.1 hash-source. r=sstamm, r=dholbert, r=mrbkap 2014-01-02 11:14:06 -08:00
Brian Smith
ed544d4449 Bug 957667: Decouple OCSP stapling pref from the OCSP fetching pref, and couple the OCSP required pref to the OCSP fetching pref, r=keeler 
--HG--
extra : rebase_source : 86cb86f76f4def579fcf07e479025852849c34f8
extra : source : 08115711a4e6e77971c9e872fb6c68e88ac9693e
 2014-01-08 08:51:06 -08:00
Brian Smith
c2e23acd65 Bug 959026: Add telemetry about cases where we don't do OCSP fetching when we expect to, r=keeler 
--HG--
extra : rebase_source : f7e9826569325f497273a92eec5127c414baa8bc
extra : source : bb5bb5a1b571e54695a4c8d5be0cc447f29f0358
 2014-01-12 19:31:40 -08:00
Ryan VanderMeulen
e0cdbb419c Backed out changesets 1b892043a386 and 0e14b3468b94 (bug 923304) and changeset 2e2c276950b9 (bug 950129) for xpcshell failures. 2014-01-13 18:00:34 -05:00
Ryan VanderMeulen
5b8b6a8f8d Merge inbound to m-c. 2014-01-13 17:44:24 -05:00
Brian Smith
8887393fc8 Bug 923304, Part 2: Adjust EV tests, r=keeler 
--HG--
extra : source : 97bf218ac3bb44e81074ca95877ca8b6414265b3
 2013-12-28 11:28:49 -08:00
Brian Smith
be7e34fa15 Bug 923304, Part 1: Add test for OCSP response signed by CA that has an OCSP URI, r=keeler, r=briansmith 
--HG--
extra : source : e7afcba6743e40755d28a296b00c395392864657
 2014-01-13 02:33:08 -08:00
Brian Smith
a8e7597704 Bug 950129: Make OCSP fetching policy for OCSP response signing certificates consistent, r=wtc, r=rrelyea 
--HG--
extra : source : 44afac41de6a81c1e4430afa10e6f2836599ecd8
 2014-01-12 23:13:10 -08:00
Brian Smith
3ea6c2482c Bug 958916: Update to NSS 3.15.5 beta 1 (NSS_3_15_5_BETA1), r=me 
--HG--
extra : rebase_source : 19606540e96bd00b737bc9c5782f8c445e006189
 2014-01-12 22:09:19 -08:00
Patrick McManus
0685b54dce bug 951199 - Interface for Socket Level Access to TLS Version Used r=dkeeler r=bsmith 2013-10-09 17:21:48 -07:00
Nemina Amarasinghe
9f41b1dc13 Bug 946075 - Remove extra space from ssl_error_bad_cert_domain error message contains in TransportSecurityInfo.cpp. r=dkeeler 2014-01-13 09:28:14 -05:00
Brian Smith
72db018702 Bug 957665: Add telemetry to measure how many people have OCSP enabled, r=keeler 
--HG--
extra : rebase_source : e6dd0d7d06ce0eb5b2f34a77a851dd7c0655ac3e
 2014-01-08 08:59:53 -08:00
Jed Davis
66de476356 Bug 945330 - Reword and slightly improve sandbox violation log message. r=kang 
The main goal is to have a message that unambiguously indicates a crash,
so mozharness can grep for it even if some of the details change later.

Also now includes the entire argument list; most syscalls don't use all
six, so the last few will be meaningless, but it can't hurt to log them.
 2014-01-10 08:22:58 -05:00
David Keeler
096e214cda bug 950268 - fix leak in nsCertTree::GetDispInfoAtIndex r=cviecco 2014-01-09 10:02:08 -08:00
Phil Ringnalda
2dc3add1e1 Back out 2e7e2de7b13e (bug 948574) for b2g mochitest crashes 
CLOSED TREE
 2014-01-07 21:10:23 -08:00
David Keeler
aac3b15929 bug 948574 - remote nsISiteSecurityService::IsSecureURI r=bz 2014-01-07 11:31:30 -08:00
Brian Smith
f0f24a2b99 Bug 952876: Add test for bug 952808 (OCSP stapling not honored when there is a error entry in the OCSP cache), r=keeler 2014-01-06 14:45:35 -08:00
Brian Smith
43a255861c Bug 933109: Add tests to verify that we retry OCSP when we have a cached Unknown response, r=keeler 2014-01-06 14:41:04 -08:00
Wes Kocher
20cc701976 Backed out changeset 75e5396d0847 (bug 933109) for xpcshell bustage 2014-01-06 17:50:53 -08:00
Wes Kocher
09a8dbc4f3 Backed out changeset b8f1b1cfc9e2 (bug 952876) 2014-01-06 17:50:23 -08:00