Thomas Zimmermann
cf8b7dbf88
Bug 1264226: Don't use '_COARSE' Posix clocks if not defined, r=jld,a=ritu
...
Not all systems (i.e., Gonk) support CLOCK_MONOTONIC_COARSE and
CLOCK_REALTIME_COARSE. With this patch, we don't refer to them if
they are not supported.
2016-04-14 10:12:39 +02:00
Chris Pearce
17e3f53706
Bug 1245789 - Whitelist functions needed by Widevine CDM in GMP child processes. r=jed,a=ritu
...
MozReview-Commit-ID: C6bpItv1qpi
2016-04-12 16:12:21 +12:00
Chris Pearce
2e8393234e
Bug 1245789 - Load Widevine CDM with sandbox level USER_RESTRICTED instead of USER_LOCKDOWN. r=bobowen,a=ritu
...
Otherwise Widevine CDM won't load on Windows. Other GMPs are still loaded at USER_LOCKDOWN.
MozReview-Commit-ID: aCTG1tQuwt
2016-04-12 16:12:20 +12:00
ffxbld
6ed6d0eeb1
No bug, Automated HPKP preload list update from host bld-linux64-spot-1050 - a=hpkp-update
2016-04-16 05:03:19 -07:00
ffxbld
a368f9629e
No bug, Automated HSTS preload list update from host bld-linux64-spot-1050 - a=hsts-update
2016-04-16 05:03:17 -07:00
Bob Owen
6aa0237d95
Bug 1256992 Part 2: Move SandboxBroker Initialization earlier and add telemetry and extra null checks. r=aklotz, a=ritu
...
MozReview-Commit-ID: Fu05wLn27UG
2016-04-07 08:28:14 +01:00
Bob Owen
cc49fd5338
Bug 1256992: Initialize Windows sandbox BrokerServices before any child processes are created. r=aklotz, r=bholley, a=ritu
2016-04-13 15:37:35 +01:00
Carsten "Tomcat" Book
611f4cad0d
Backed out changeset 6bba1d23fd2c (bug 1256992) for problems in conflict resolution
2016-04-13 16:23:59 +02:00
Carsten "Tomcat" Book
f941ff23d8
Backed out changeset 727c6549ed88 (bug 1256992)
2016-04-13 16:23:30 +02:00
Bob Owen
f222b069b5
Bug 1256992 Part 2: Move SandboxBroker Initialization earlier and add telemetry and extra null checks. r=aklotz, a=ritu
...
MozReview-Commit-ID: Fu05wLn27UG
2016-04-07 08:28:14 +01:00
Bob Owen
38ac893967
Bug 1256992: Initialize Windows sandbox BrokerServices before any child processes are created. r=aklotz, r=bholley, a=ritu
2016-03-23 08:10:43 +00:00
Wes Kocher
36d7bd2f09
Backed out changeset 30de9ac21a78 (bug 1256992) for causing crashes a=backout
...
MozReview-Commit-ID: L30XEzrSo0y
2016-03-28 10:51:05 -07:00
Bob Owen
a82bda1031
Bug 1256992: Initialize Windows sandbox BrokerServices before any child processes are created. r=aklotz, r=bholley, a=lizzard
2016-03-23 08:10:43 +00:00
Richard Barnes
f557d18c1b
Bug 1254653 - Add telemetry to measure how often we encounter EV certificates r=keeler a=ritu
...
MozReview-Commit-ID: FvDpMGEJGLQ
2016-03-08 17:30:40 -05:00
ffxbld
bfab5a90cb
No bug, Automated HPKP preload list update from host bld-linux64-spot-574 - a=hpkp-update
2016-03-12 04:44:17 -08:00
ffxbld
496b51f67a
No bug, Automated HSTS preload list update from host bld-linux64-spot-574 - a=hsts-update
2016-03-12 04:44:14 -08:00
Cykesiopka
a1d3d64ef3
Bug 1253958 - Make getHSTSPreloadList.js and genHPKPStaticPins.js gracefully handle trailing whitespace in URL entries. r=dkeeler, a=ritu DONTBUILD
...
MozReview-Commit-ID: Kyc7JzxVEo0
2016-03-06 16:02:52 -08:00
Daniel Holbert
b558b91755
Bug 1253194: Suppress -Wimplicit-fallthrough clang warning for intentional fallthrough in icu_utf.cc (which is imported code). r=bobowen
2016-03-04 09:00:40 -08:00
Kai Engert
c184fdbf21
Bug 1245053, NSS_3_23_RTM, only version numbers finalized, no code changes, DONTBUILD
2016-03-03 10:53:54 +01:00
Cykesiopka
47c99a6a51
Bug 1250254 - Enable ESLint "no-throw-literal" rule for PSM. r=dkeeler
...
MozReview-Commit-ID: LZcitO0FTWH
2016-02-29 20:05:55 -08:00
David Keeler
0124d8c332
bug 1049969 - add symbols file for the test pkcs11 module so it works on Windows r=jcj
...
MozReview-Commit-ID: KRaAmd7icd8
2016-03-01 17:12:38 -08:00
Cykesiopka
9d878c5380
Bug 1250256 - Partially clean up nsSDR.cpp. r=keeler
...
MozReview-Commit-ID: FoS4oTjnd7F
2016-03-01 20:07:53 -08:00
Aniket Vyas
f536af3bf5
bug 1197314: Remove PR_snprintf calls in security/manager/ssl/ r=keeler
...
MozReview-Commit-ID: Kq5kWzC1UHU
2016-02-26 15:31:43 -08:00
David Keeler
48644bf5fb
bug 1250818 - remove certificate issuer organization to common name fallback r=Cykesiopka
...
Before this change, if a certificate's issuer DN did not have an organization
component, nsIX509Cert.issuerOrganization would fall back to using the issuer
common name. This was never a good idea, because this gave misleading
information to consumers of this interface. Furthermore, it appears that all
consumers of this interface already do such a fallback (for display purposes)
when they've determined that it's a reasonable thing to do.
MozReview-Commit-ID: p2gmSP0nZW
2016-02-26 13:18:02 -08:00
Cykesiopka
7f7bacceb6
Bug 1173679 - Add tests for the "security.OCSP.enabled" pref. r=dkeeler
...
MozReview-Commit-ID: BQurIgVY8os
2016-02-28 17:49:06 -08:00
Carsten "Tomcat" Book
c8d269cfd6
merge mozilla-inbound to mozilla-central a=merge
2016-02-29 11:35:30 +01:00
Cykesiopka
d36ccebcb0
Bug 1249595 - Enable 11 more ESLint rules for PSM. r=keeler
...
MozReview-Commit-ID: FxS9SPRMMxf
2016-02-26 12:35:34 -08:00
Kai Engert
1f11d8252a
Bug 1245053, Upgrade Mozilla 47 to use NSS 3.23, land RC0, r=me
2016-02-26 11:23:11 +01:00
Tim Taubert
230478a40e
Bug 1247860 - Enable ChaCha20/Poly1305 cipher suites r=emk,keeler
2016-02-26 12:37:19 +01:00
David Keeler
82b06ed14d
bug 1199850 - remove unnecessary PSM xpcshell extended key usage tests r=Cykesiopka,jcj
...
MozReview-Commit-ID: 8Uz4bN87872
2016-02-24 14:20:01 -08:00
Haik Aftandilian
5e3dc1e103
Bug 1237847 - [e10s] Null deref crash when running test_pluginstream_newstream.html; r=bobowen
...
Modify the Mac sandbox to allow temporary files to be created in a
parent-specified subdirectory of NS_OS_TEMP_DIR. This is similar to the
Windows approach. The parent provides a UUID in a preference which is
used by the content process to form the subdirectory name.
MozReview-Commit-ID: 6BONpfZz8ZI
2016-02-25 15:26:13 -08:00
Kai Engert
c28e5ae35d
backing out c815269c99c8, bug 1245053, CLOSED TREE
2016-02-25 18:51:37 +01:00
Kai Engert
6256167d05
Bug 1245053, test NSS_3_23_BETA7, r=me
2016-02-25 15:35:08 +01:00
Carsten "Tomcat" Book
3379a0fb45
Merge mozilla-central to mozilla-inbound
2016-02-25 11:59:05 +01:00
Carsten "Tomcat" Book
1fd7281917
merge mozilla-inbound to mozilla-central a=merge
2016-02-25 11:57:51 +01:00
Nihanth Subramanya
b8edae8583
Bug 1201437 - Make cert override tests check for STATE_CERT_USER_OVERRIDDEN. r=keeler
...
MozReview-Commit-ID: G6KQPXHbEPL
2016-02-24 22:45:12 -08:00
Nihanth Subramanya
4ab2924bcd
Bug 1201437 - Add new WebProgress state flag for user-overridden cert. r=keeler
...
MozReview-Commit-ID: cvBYSZykK0
2016-02-24 22:46:52 -08:00
Cykesiopka
4533d8e22a
Bug 1248874 - Replace Scoped.h templates used only by PSM in ScopedNSSTypes.h with UniquePtr equivalents. r=dkeeler
...
MozReview-Commit-ID: 5OClBV522lv
2016-02-18 06:01:39 -08:00
Cykesiopka
ce336e3c96
Bug 1246365
- Enable eslint "comma-spacing" and "semi" rules for PSM. r=keeler
...
MozReview-Commit-ID: 7FVcD7O9mpG
2016-02-18 21:16:50 -08:00
Cykesiopka
eb7fd9a45b
Bug 1220237 - Remove uses of nsIEnumerator from PSM. r=keeler
...
MozReview-Commit-ID: 3FhBCqnJz4n
2016-02-24 17:42:45 -08:00
Kai Engert
eb1f2b66e9
Bug 1245053, landing NSS_3_23_BETA5, r=mt
2016-02-23 00:50:19 +01:00
Ehsan Akhgari
a07f52bf8f
Bug 1188045 - Part 1: Move the definition of sandboxTarget::Instance() out-of-line; r=bobowen,glandium
...
This is required so that delay-loading xul.dll works with clang-cl.
2016-02-22 09:55:09 -05:00
David Keeler
90740beed3
bug 1248099 - add extended key usage tests for mozilla::pkix r=Cykesiopka,jcj
...
MozReview-Commit-ID: 9rXn5Q1wsnx
2016-02-12 17:24:54 -08:00
David Keeler
5ae396c14a
bug 1241650 - remove nsIX509CertDB.findCertNicknames r=mgoodwin
...
MozReview-Commit-ID: JtU7H5qGvge
2016-01-21 15:14:31 -08:00
Ben Kelly
dbc26d511e
Bug 1247580 P2 Add gtest to ensure we can continue to deserialize old security info strings. r=bz
2016-02-17 07:18:00 -08:00
Ben Kelly
1eb56118ec
Bug 1247580 P1 Allow old nsIX509Cert serialized objects to be read off disk. r=bz
2016-02-17 07:18:00 -08:00
Cykesiopka
c4f74176ee
Bug 1247847 - Use smart pointers in nsNSSCertHelper.cpp to manage NSS resources. r=keeler
...
This lets us remove things like gotos in the code, and makes resource ownership slightly clearer.
MozReview-Commit-ID: Kucn7exhLd7
2016-02-16 16:25:09 -08:00
Cykesiopka
9c8c496196
Bug 1244245 - Enable eslint "curly" rule for PSM. r=keeler
...
Also includes minor cleanup.
MozReview-Commit-ID: CHgbTIa3s2O
2016-02-16 17:27:49 -08:00
ISHIKAWA, Chiaki
72d38a6835
Bug 1248252 - Improper outdated octal constant syntax in M-C tree. Use '0o' prefix. r=dao
...
Be warned. Do not attemp to change the .js "test" source code in ./js
They are meant to check
- the outdated 0666 octal constant is still parsed correctly,
- the outdated 0666 octal constant raises syntax error flag
in strict mode, etc.
So leave them alone.
2016-02-15 08:57:00 +01:00
Sebastian Hengst
3f4b15c76b
Backed out 2 changesets (bug 1247250) for bustage. r=bustage on a CLOSED TREE
...
Backed out changeset 8aded3a039f5 (bug 1247250)
Backed out changeset 374e6d0abf0e (bug 1247250)
2016-02-12 00:42:48 +01:00