Commit Graph

1606 Commits

Author SHA1 Message Date
David Keeler
3660be1571 bug 1005355 - look for PSM test binaries in /data/local/xpcb/ on Android/B2G r=mmc 2014-05-12 14:38:00 -07:00
Monica Chew
e1cffc99ed Bug 772756: Implement sha1 support, import Chrome's pinsets wholesale, add test mode (r=cviecco,keeler) 2014-05-08 17:18:50 -07:00
Carsten "Tomcat" Book
012c32e909 merge mozilla-inbound to mozilla-central 2014-05-12 13:33:19 +02:00
ffxbld
ab22bc9ea2 No bug, Automated HSTS preload list update from host bld-linux64-spot-382 - a=hsts-update 2014-05-10 03:26:08 -07:00
David Keeler
ec8d8ab69e bug 1005266 - specify a timeout for the socket in test_ocsp_timeout.js r=mmc 2014-05-09 15:17:43 -07:00
Camilo Viecco
3e488201d3 Bug 1007986 - Remove 1024 bit roots from mozilla pin list. r=mmc 2014-05-09 10:58:47 -07:00
Bobby Holley
0a5fb33d0a Bug 997987 - Remove usage of nsIScriptSecurityManager::GetSubjectPrincipal. r=Ms2ger 2014-05-06 15:43:03 -07:00
Camilo Viecco
7975f9a0c7 Bug 1006107 - Disable pining by default, setup pinning for *.addons.mozilla.org. r=dkeeler
--HG--
extra : rebase_source : 93b1dbd5dc31490424060729a3941deffa8ee1d5
2014-05-05 13:59:32 -07:00
Monica Chew
f1a0dc002c Bug 1005364: Disable pinning for all mozilla properties (r=keeler) 2014-05-04 15:36:38 -07:00
Brian Smith
02c940dedf Bug 1005198: Make it easy to create test certificates in GTest tests, r=keeler
--HG--
extra : rebase_source : 0b1ec263a5a1ce1856afb12f11ea4c35c2aa55d0
extra : histedit_source : 40a3a3fc1993de0fcdeb5593a1a1df4dc94832b8
2014-04-25 19:57:40 -07:00
ffxbld
c0633c3827 No bug, Automated HSTS preload list update from host bld-linux64-spot-043 - a=hsts-update 2014-05-03 03:18:44 -07:00
David Keeler
33497d228a bug 1004270 - use SQL cert/key DBs in PSM tests so we can run them on Android r=briansmith 2014-05-02 15:06:29 -07:00
Camilo Viecco
2114fc7458 Bug 951315 - Add telemetry to PK pinning. r=dkeeler 2014-04-30 17:04:00 -07:00
Monica Chew
2b01945b12 Bug 1002696 - Minimum set of changes to make genHPKPStaticPins.js productionizable. r=cviecco, dkeeler
--HG--
rename : security/manager/boot/src/PreloadedHPKPins.json => security/manager/tools/PreloadedHPKPins.json
rename : security/manager/boot/src/genHPKPStaticPins.js => security/manager/tools/genHPKPStaticPins.js
2014-05-01 14:48:37 -07:00
David Keeler
3bb0dcd8ba bug 982248 - NSSCertDBTrustDomain: specify timeout for OCSP requests r=briansmith 2014-05-01 15:07:55 -07:00
Monica Chew
b93e188e37 Bug 998057: Add tests for certificate pinning (r=cviecco,dkeeler) 2014-04-30 20:11:35 -07:00
Monica Chew
17cd41868a Backed out changeset 9c8fbf297d51
Camilo did not land his patch that this depends on, my bad.
2014-04-30 20:01:34 -07:00
Monica Chew
2d85c28b2d Bug 998057: Add tests for certificate pinning (r=cviecco,dkeeler) 2014-04-30 19:56:03 -07:00
Monica Chew
94e6bf9ad7 Bug 998057: Add test pinset to the pin generator (r=cviecco)
--HG--
rename : security/manager/ssl/tests/unit/tlsserver/default-ee.der => security/manager/boot/src/default-ee.der
2014-04-30 15:30:44 -07:00
Camilo Viecco
b3ac77c27f Bug 744204 - Allow Certificate key pinning Part 2 - Certverifier Interface. r=keeler
--HG--
extra : rebase_source : 2f9748ba0b241c697e22b7ff72f2f5a0fad4a2ca
2014-02-05 14:49:10 -08:00
Richard Barnes
9e4f3258ed Bug 1003604 - Make nsNSSShutDownObject::isAlreadyShutDown() const. r=dkeeler 2014-04-29 17:45:00 +02:00
Rodrigo Rodriguez Jr.
f307a82a31 Bug 952650 (part 11) - Remove JSVAL_TO_INT. r=njn.
--HG--
extra : rebase_source : 41923458bbf8fd957c9a57685df4969f1190bd9f
2014-04-27 19:55:08 -07:00
Rodrigo Rodriguez Jr.
34da22f61e Bug 952650 (part 9) - Remove JSVAL_IS_INT. r=njn.
--HG--
extra : rebase_source : dc0c170914c2370c218cdbbe671d2a68628f5a87
2014-04-27 19:47:02 -07:00
Rodrigo Rodriguez Jr.
413ffc41d6 Bug 952650 (part 1) - Remove JSVAL_IS_NULL. r=terrence.
--HG--
extra : rebase_source : 83d1cdaf71260fd99b688c23303ceb2de7b00031
2014-04-27 19:30:51 -07:00
Camilo Viecco
fe04ef65c2 Bug 744204 - Allow Key pining part 1 - Built-in Pinning Service. r=keeler 2013-06-20 10:35:43 -07:00
David Keeler
e37669ad7b bug 977865 - mozilla::pkix: add backoff for ocsp fetching when a responder fails r=cviecco 2014-04-28 16:38:15 -07:00
Birunthan Mohanathas
504b581650 Bug 900908 - Part 3: Change uses of numbered macros in nsIClassInfoImpl.h/nsISupportsImpl.h to the variadic variants. r=froydnj 2014-04-27 03:06:00 -04:00
Ryan VanderMeulen
7b427c4565 Merge m-c to inbound. 2014-04-26 21:41:26 -04:00
ffxbld
18f2d06933 No bug, Automated HSTS preload list update from host bld-linux64-spot-425 - a=hsts-update 2014-04-26 03:23:23 -07:00
Nathan Toone
15d86a0541 Bug 1001585 - Don't build tests directory if --disable-tests is specified. r=briansmith 2014-04-26 11:29:00 -04:00
Arpad Borsos
0ffd585a0c Bug 474369 - remove nsVoidArray includes; r=ehsan
--HG--
extra : rebase_source : dd3abeb623fd8b784fd6ba639c88def84a4daf58
2014-04-26 16:12:45 +02:00
Honza Bambas
782f02bd55 Bug 999306 - Add 'allow-insecure-ntlm-v1' preference for the generic NTLM v1 authentication module, r=jduell 2014-04-24 18:50:46 +02:00
Randell Jesup
c39b1723d8 Bug 996487: don't null out mThread while committing thread suicide r=bsmedberg 2014-04-22 15:32:13 -04:00
Camilo Viecco
4515570905 Bug 915930 - Make mozilla::pkix the default certificate verifier for all (not just desktop) r=briansmith
--HG--
extra : rebase_source : 56402e60078298dc64cf5476afda7c95671a7092
2014-04-25 13:22:30 -07:00
YFdyh000
7209169dc8 Bug 995528 - Certificate viewer describes not-valid-before date as issue date. r=honzab, ui-r=philipp 2014-04-21 10:58:04 -04:00
ffxbld
1a30be1a44 No bug, Automated HSTS preload list update from host bld-linux64-spot-454 - a=hsts-update 2014-04-19 03:14:16 -07:00
Randell Jesup
88cb135bdf Bug 988881: clean up CryptoTask (SignedJar) tasks instead of leaking them r=bsmedberg,mayhemer 2014-04-17 02:18:04 -04:00
Anuj Agarwal
0dc21bc644 Bug 897359 - Remove unimplemented popChallengeResponse, random, and disableRightClick methods. r=bz 2014-04-18 09:32:52 -04:00
David Keeler
284f933831 bug 991898 - mozilla::pkix: temporarily allow empty Extensions in OCSP responses r=briansmith 2014-04-17 16:01:18 -07:00
Camilo Viecco
55a077728c Bug 997795 - Cleanup decodings. r=dkeeler 2014-04-17 14:42:05 -07:00
Camilo Viecco
47dd4351c0 Bug 992972 - Add sha256SubjectPublicKeyInfoDigest attribute to nsIX509Cert. sr=bsmith 2014-04-07 10:35:57 -07:00
Patrick McManus
a142639b4a bug 993591 - PSM HTTP Fetch should own streamloader data r=dkeller r=mayhemmer 2014-04-09 17:48:17 -04:00
David Keeler
5deb7798b1 bug 972753 - OCSP testing: delegated responses and including multiple certificates r=cviecco 2014-04-16 09:31:27 -07:00
Raymond Etornam Agbeame(:retornam)
699e03848f Bug 934676 - Remove unused variable 'extracted' in ClientAuthDataRunnable::RunOnTargetThread. r=keeler 2014-04-15 15:46:00 +02:00
Monica Chew
1b724bad01 Bug 991177: Disallow overrides for SEC_ERROR_CA_CERT_INVALID (r=keeler) 2014-04-15 15:35:41 -07:00
Kyle Huey
c8e649664b Bug 991812: Remove uses of AtomicRefCounted<T> that live in Gecko. r=ehsan
--HG--
extra : rebase_source : 0d14e02c64d548fd3177681248d722683aaa87c3
2014-04-14 12:04:25 -07:00
David Keeler
9b13a83b9e bug 994932 - fix error checking in GetOCSPResponseForType r=retornam 2014-04-15 14:21:08 -07:00
Bobby Holley
a81ce7e83c Bug 989528 - Rename AutoSystemCaller to AutoNoJSAPI, and assert against pre-existing exceptions. r=bz 2014-04-14 20:27:00 -07:00
Ryan VanderMeulen
98cf3141ca Backed out changesets ddbac34527fe and fa82f32d0c39 (bug 991812) for B2G bustage.
CLOSED TREE
2014-04-14 16:16:18 -04:00
Kyle Huey
3fb3aae2f9 Bug 991812: Remove uses of AtomicRefCounted<T> that live in Gecko. r=ehsan 2014-04-14 12:04:25 -07:00