wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
194,041 Commits 1 Branch 166 Tags 1.2 GiB
65dfa136df
Commit Graph

1730 Commits

Author SHA1 Message Date
Camilo Viecco
557392561a Bug 987816 - test certificateUsageVerifyCA can return success. r=dkeeler 
--HG--
rename : toolkit/library/libxul.mk => toolkit/library/Makefile.in
rename : toolkit/library/libxul.mozbuild => toolkit/library/moz.build
extra : rebase_source : 145fd4fce17325ca9e34681f3451c66c33bfd1a1
 2014-03-28 15:53:08 -07:00
Mike Hommey
d55f8470ad Bug 988168 - Better integrate gtest libxul in the build system. r=mshal 
--HG--
rename : toolkit/library/Makefile.in => toolkit/library/libxul.mk
rename : toolkit/library/moz.build => toolkit/library/libxul.mozbuild
 2014-03-29 07:50:08 +09:00
Camilo Viecco
4ebeba8a03 Bug 982292 - Enhance EKU testing. r=dkeeler 2014-03-18 08:59:37 -07:00
Benjamin Peterson
1b0c0d2f10 Bug 988718 - Mark nsSecurityHeaderParser explicit. r=dkeeler 2014-03-27 12:51:25 -04:00
Antonio M. Amaya
572fc8db93 Bug 880043 - Signed packaged installation test certificate generation. r=cviecco 
--HG--
rename : security/manager/ssl/tests/unit/test_signed_apps/nss_ctypes.py => security/manager/ssl/tests/unit/test_signed_apps/gentestfiles/nss_ctypes.py
rename : security/manager/ssl/tests/unit/test_signed_apps/sign_b2g_app.py => security/manager/ssl/tests/unit/test_signed_apps/gentestfiles/sign_b2g_app.py
 2014-03-27 11:02:27 -04:00
David Keeler
00785d6113 bug 986171 - mozilla::pkix: telemetry for what cert validation library is in use r=cviecco 2014-03-26 09:41:08 -07:00
David Keeler
1ea866dced Backed out changeset d9e136a02980 (bug 986171) for build bustage r=backout 2014-03-25 14:02:42 -07:00
David Keeler
d56c7b6534 bug 986171 - mozilla::pkix: telemetry for what cert validation library is in use r=cviecco 2014-03-25 13:43:01 -07:00
David Keeler
1898826bf2 bug 987217 - free leaking encodedRequest in GenerateCRMFRequest r=cviecco 2014-03-25 10:38:03 -07:00
Camilo Viecco
da379b1daf Bug 969188 - Part 3/3 - Test handling of v1/v2/v3 certificates from PSM. r=keeler 
--HG--
extra : rebase_source : 321d603913f07a0afe64400e300146873e8a81af
 2014-02-25 15:37:22 -08:00
Phil Ringnalda
39747a1529 Merge m-c to m-i 2014-03-22 08:09:46 -07:00
ffxbld
2306430b7a No bug, Automated HSTS preload list update from host bld-linux64-spot-008 - a=hsts-update 2014-03-22 03:20:45 -07:00
David Keeler
d33e060a52 bug 969758 - ignore "snionly" property in Google's HSTS preload list r=cviecco DONTBUILD because NPOTB 2014-03-21 14:09:04 -07:00
David Keeler
2fb9ff870f bug 985201 - follow-up: fix comment mentioning "Insanity" (it should be "mozilla::pkix") r=me DONTBUILD 2014-03-20 15:36:23 -07:00
David Keeler
676eaf13b4 bug 985201 - rename insanity::pkix to mozilla::pkix r=cviecco r=briansmith 
--HG--
rename : security/insanity/include/insanity/ScopedPtr.h => security/pkix/include/pkix/ScopedPtr.h
rename : security/insanity/include/insanity/bind.h => security/pkix/include/pkix/bind.h
rename : security/insanity/include/insanity/nullptr.h => security/pkix/include/pkix/nullptr.h
rename : security/insanity/include/insanity/pkix.h => security/pkix/include/pkix/pkix.h
rename : security/insanity/include/insanity/pkixtypes.h => security/pkix/include/pkix/pkixtypes.h
rename : security/insanity/lib/pkixbind.cpp => security/pkix/lib/pkixbind.cpp
rename : security/insanity/lib/pkixbuild.cpp => security/pkix/lib/pkixbuild.cpp
rename : security/insanity/lib/pkixcheck.cpp => security/pkix/lib/pkixcheck.cpp
rename : security/insanity/lib/pkixcheck.h => security/pkix/lib/pkixcheck.h
rename : security/insanity/lib/pkixder.cpp => security/pkix/lib/pkixder.cpp
rename : security/insanity/lib/pkixder.h => security/pkix/lib/pkixder.h
rename : security/insanity/lib/pkixkey.cpp => security/pkix/lib/pkixkey.cpp
rename : security/insanity/lib/pkixocsp.cpp => security/pkix/lib/pkixocsp.cpp
rename : security/insanity/lib/pkixutil.h => security/pkix/lib/pkixutil.h
rename : security/insanity/moz.build => security/pkix/moz.build
rename : security/insanity/test/lib/moz.build => security/pkix/test/lib/moz.build
rename : security/insanity/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestutil.cpp
rename : security/insanity/test/lib/pkixtestutil.h => security/pkix/test/lib/pkixtestutil.h
 2014-03-20 14:29:21 -07:00
David Keeler
43eeb69107 bug 984567 - insanity::pkix: handle/test malformed OCSP responses r=briansmith r=cviecco 2014-03-19 09:36:10 -07:00
Camilo Viecco
424c0bfa64 Bug 966820 - Add test for trustbits for Certverifier. r=dkeeler 
--HG--
rename : layout/reftests/abs-pos/table-internal-5-ref.html => layout/reftests/abs-pos/table-internal-1-ref.html
rename : layout/reftests/abs-pos/table-internal-6-ref.html => layout/reftests/abs-pos/table-internal-3-ref.html
rename : layout/reftests/abs-pos/table-internal-7-ref.html => layout/reftests/abs-pos/table-internal-4-ref.html
extra : rebase_source : d854bd51bd84e9f7e21980a31c822726e4401dd9
 2014-03-06 14:17:50 -08:00
Paolo Amadini
8dd6c66f29 Bug 984788 - Convert legacy uses of promise.js to Promise.jsm. rs=Yoric 2014-03-18 15:16:02 +01:00
Neil Rashbrook
c3b2f90f39 Bug 514280 Stop using nsCOMPtr for concrete types r=bsmedberg 
--HG--
extra : rebase_source : f8fb50de9292320eb7589dd28dc566d0f5044da6
 2014-03-18 00:23:03 +00:00
Wes Kocher
c0dba87922 Backed out 2 changesets (bug 514280) for OSX build bustage on a CLOSED TREE 
Backed out changeset 2a015b45d808 (bug 514280)
Backed out changeset a01f97c1ed02 (bug 514280)
 2014-03-17 15:19:53 -07:00
David Keeler
472a6edd05 bug 977870 - insanity::pkix: consume the rest of input when a CertID doesn't match in an OCSP response r=briansmith 2014-03-17 14:34:34 -07:00
David Keeler
ed25ed39d5 bug 982754 - allow some inadequate key usage overrides r=cviecco 2014-03-13 16:49:12 -07:00
Neil Rashbrook
b07eaa1644 Bug 514280 Stop using nsCOMPtr for concrete types r=bsmedberg 
--HG--
extra : rebase_source : eaca8b2925eaffb49e29a617cd72c0d6686e6d9e
 2014-03-17 19:07:09 +00:00
Jon Coppeard
6ca748883c Bug 959787 - Handlify JS_ExecuteScript, JS_EvaluateScript and other JS APIs r=sfink r=bz 2014-03-17 16:17:58 +00:00
Phil Ringnalda
8c19bde08b Merge m-c to m-i 2014-03-15 12:32:04 -07:00
Kyle Huey
510a49016d Bug 967364: Rename already_AddRefed::get to take. r=bsmedberg 2014-03-15 12:00:15 -07:00
ffxbld
ba946c8294 No bug, Automated HSTS preload list update from host bld-linux64-spot-485 - a=hsts-update 2014-03-15 03:17:07 -07:00
Bill McCloskey
aa5f40a77e Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted) 2014-03-13 21:38:19 -07:00
Wes Kocher
a3277d291d Backed out changeset 88425ad0f06a (bug 982828) for introducing various mochitest-5 failures on a CLOSED TREE 
* * *
Backed out changeset 94f9ebdc6662 (bug 982828)
 2014-03-13 19:41:21 -07:00
Bill McCloskey
f4f6bf8e4d Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted) 2014-03-13 15:41:41 -07:00
Bill McCloskey
7193069fa0 Backed out changeset d6261f65070a 2014-03-13 15:52:27 -07:00
Bill McCloskey
69a746922b Bug 982828 - [e10s] Disable mochitest-plain tests that don't pass in e10s (r=ted) 2014-03-13 15:41:41 -07:00
David Keeler
609e9a9f16 bug 969048 - adjust OCSP stapling telemetry for insanity::pkix r=briansmith r=cviecco 2014-03-13 09:41:03 -07:00
Vaibhav Agarwal
74d0d984a3 Bug 971132 - B2G mochitests should use the new manifest format for runtests; r=jmaher 2014-03-13 10:40:10 -04:00
David Keeler
8fc5d6daee bug 915932 - cache OCSP responses when using insanity::pkix r=cviecco r=briansmith 2014-03-12 13:08:48 -07:00
David Keeler
341b865887 bug 982403 - separate the compilation of certverifier and insanity::pkix r=cviecco r=briansmith 
--HG--
rename : security/certverifier/moz.build => security/insanity/moz.build
 2014-03-12 13:08:18 -07:00
David Keeler
6d6c54d69b Bug 974715 - Create more flexible OCSP response generation code. r=briansmith, r=cviecco 2014-03-10 14:04:31 -07:00
Brian Smith
ec6bc705e3 Bug 947584: Use official IANA names for cipher suites in PSM, r=cviecco 
--HG--
extra : rebase_source : fafec912dc96480cb4f00bddec00d40e5e9db088
 2014-03-09 20:21:12 -07:00
ffxbld
0992075bf2 No bug, Automated HSTS preload list update from host bld-linux64-spot-041 - a=hsts-update 2014-03-08 04:29:12 -08:00
Luke Wagner
b2189937c6 Bug 980180 - remove principals as an argument to compilation, part 2 (r=terrence) 
--HG--
extra : rebase_source : 86791b50b4293ba5506f1e0f5c64730338f552e6
 2014-03-06 16:28:07 -06:00
Vaibhav Agarwal
417b7f2e77 Bug 970925 - convert testing/mochitest/android.json into skip-if statements in mochitest.ini files; r=jmaher 2014-03-06 13:42:47 -05:00
Ted Mielczarek
5db86de6a8 Bug 977699 - Move the few remaining mochitests to manifests. r=jmaher 2014-03-04 15:54:31 -05:00
David Keeler
06559f1667 bug 978797 - stop classifying SEC_ERROR_INADEQUATE_KEY_USAGE as a "bad cert" error r=briansmith 2014-03-03 15:39:07 -08:00
Brian Smith
4b8d4318a5 Bug 978117: Enable test_signed_apps.js and test_signed_apps-marketplace.js on Android and B2G, r=cviecco 
--HG--
extra : rebase_source : acc33b667f19583d94d300d4e4a73cb3e225bbd6
 2014-03-01 20:55:57 -08:00
Brian Smith
185ce0c8d9 Bug 978120: Enable more PSM xpcshell tests on Android and B2G, r=keeler 
--HG--
extra : rebase_source : 439914322f2b2f2ebd7bf529e3a4a59f36831a7e
 2014-03-01 19:02:58 -08:00
Brian Smith
f91269e634 Bug 978120: Make nsIX509Cert.setCerttrust, and nsIX509CertDB.addCert, and nsIX509CertDB2.addCertFromBase64 work on Android and B2G, r=keeler 
--HG--
extra : rebase_source : 5582716fe0c650366e3cf5e85a30748a7d22b156
 2014-03-01 19:01:23 -08:00
Ed Morley
1169e3e5fb Merge latest green inbound changeset and mozilla-central 2014-03-03 14:44:44 +00:00
ffxbld
204086414a No bug, Automated HSTS preload list update from host bld-linux64-spot-483 - a=hsts-update 2014-03-01 03:17:30 -08:00
Brian Smith
ca2ea62abf Bug 978111, Bug 978426: Disable test_sts_preloadlist_perwindowpb.js on B2G/ARM, a=bustage 
--HG--
extra : rebase_source : 434af7dc53cf57eca1335a6e0ad0a4785c547e72
 2014-02-28 21:12:07 -08:00
Brian Smith
4637429114 Bug 978185: Improve error codes returned from nsIX509CertDB.addCert and nsIX50CertDB.setCertTrust, r=keeler 
--HG--
extra : rebase_source : e32a913f085524d113b17d03917c10ad92c7f6e1
 2014-02-28 11:19:38 -08:00
Brian Smith
a5d253392f Bug 978111: Enable already-working PSM xpcshell tests on Android and B2G, r=cviecco 
--HG--
extra : rebase_source : c14ef67870f2b40a3319e6bc8df0ddfe9dd222e3
 2014-02-28 11:16:16 -08:00
Andrew McCreight
537eb6fa81 Bug 962608 - Make PL_DHashTableInit infallible by default. r=briansmith,bsmedberg,ehsan,froydnj,jduell,jfkthame,roc,smaug 2014-02-27 10:04:09 -08:00
Brian Smith
c13108b590 Bug 921885: Use insanity::pkix for EV cert verification when insanity::pkix is the selected implementation, r=cviecco, r=keeler 
--HG--
extra : rebase_source : b1fd1f8eace675484b3c2d568e5e74f767f1d2ad
 2014-02-23 22:15:53 -08:00
Brian Smith
29c8950e17 Bug 970810: Expand name constraint tests to test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : b8190690743a12623c7524429215fc7d8a8dea49
extra : histedit_source : fd9877f98303dd237b302e6c606ca11f4c36fd7c
 2014-02-25 01:15:52 -08:00
Camilo Viecco
2e520f51df Bug 900727: Add name constraints to psm in xpcshell. r=bsmith 2013-12-12 10:28:06 -08:00
Brian Smith
db4827dbd4 Bug 975122: Allow cert error overrides when insanity::pkix is used, r?cviecco, r?keeler 
--HG--
extra : rebase_source : 47f5e779a16c462e40baa2d9cec2e83946c9076c
 2014-02-22 19:08:06 -08:00
Raymond Etornam Agbeame(:retornam)
6d832f03cf Bug 970614 - Remove code wrapped in #if 0 ... #endif blocks in PSM. r=keeler 2014-02-24 09:41:55 -05:00
Ehsan Akhgari
0f5851acbd Bug 935778 - Part 0.3: Spray some more MOZ_DECLARE_REFCOUNTED_TYPENAME across the tree 2014-02-20 23:07:24 -05:00
David Keeler
27afebfba2 bug 969479 - only prevent TLS fallback for STARTTLS r=briansmith 2014-02-20 15:14:32 -08:00
Brian Smith
2e66c4833d Bug 915931, Part 4: Expand OCSP xpcshell tests to test insanity::pkix, r=keeler 
--HG--
extra : rebase_source : e645de251c459d6fa38996bb7bfd35e21eaf3b72
 2014-02-17 13:19:54 -08:00
Ms2ger
6e066deaea Bug 968856 - Move unconditional LOCAL_INCLUDES into moz.build; r=mshal 2014-02-15 21:24:59 +01:00
Phil Ringnalda
045a2cbe55 Merge m-i to m-c 2014-02-15 09:54:57 -08:00
ffxbld
b9dfc6f557 No bug, Automated HSTS preload list update from host bld-linux64-spot-071 - a=hsts-update 2014-02-15 03:20:10 -08:00
Vaibhav Agarwal
d109cb3fc7 Bug 970925 - convert testing/mochitest/android.json into skip-if statements in mochitest.ini files; r=jmaher 2014-02-15 04:53:02 -05:00
Brian Smith
83e4eaa908 Bug 896620: Make marketplace certs work on in all products, r=keeler 
--HG--
extra : source : 86ec7137a8892f75918c77e605df970f5b96ef62
extra : histedit_source : 33326790804d49e6ec658626116ebf870d94d445
 2014-02-14 14:37:07 -08:00
David Keeler
30ccf7829f bug 967975 - certificate error override telemetry r=briansmith 
--HG--
rename : security/manager/ssl/tests/unit/tlsserver/cmd/OCSPStaplingServer.cpp => security/manager/ssl/tests/unit/tlsserver/cmd/BadCertServer.cpp
 2014-02-13 14:53:29 -08:00
Jeff Walden
2619346f9f Bug 969165 - Convert Atomic<T> where T != bool but is used as a bool over to Atomic<bool>, now that it's supported, in security/manager/. r=bsmith 
--HG--
extra : rebase_source : 3632af6471e41d099a0948542d26a7df527efaad
 2014-02-06 22:17:07 -08:00
Brian Smith
91ddc1d104 Bug 971178, Part 4: Expand test_intermediates_basic_constraints.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : b419a3087b3d327c9a48d984551abeac4943be7a
 2014-02-11 16:24:45 -08:00
Brian Smith
f1350c0f8f Bug 971178, Part 3: Expand test_certificate_usages.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : 3810925d18767d1b04f8a47004a0ab7a631e5b4b
 2014-02-11 01:42:41 -08:00
Brian Smith
6581563f7a Bug 971178, Part 2: Make test_getchains.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : ff9620bad6b20a84cf179af7ffa7a74f6ffd6640
 2014-02-11 01:42:55 -08:00
Brian Smith
b8f2b8be6a Bug 971178, Part 1: Expand test_cert_signatures.js test insanity::pkix, r=cviecco 
--HG--
extra : rebase_source : 90cf68bdb50b8499aeda3e14c476977db9e43c2a
 2014-02-11 01:42:24 -08:00
Camilo Viecco
0bca16e9bd Bug 877376: Add tests for intermediate CA basic constraints and KU/EKU, r=briansmith 
--HG--
extra : rebase_source : b831ab0e459af4ea0f43a1184e32b333f43b2f01
 2013-05-23 10:15:19 -07:00
Brian Smith
84299706e6 Bug 878932, Part 2: Make certificate verification implementation prefs dynamic, r=cviecco 
--HG--
extra : rebase_source : 4b413cfd8e122ee4e0fea64d624285856e2cb0cb
 2014-01-20 15:55:12 -08:00
Brian Smith
bbf60e0ee9 Bug 878932, Part 1: add insanity::pkix as an option for certificate verification, r=keeler, r=cviecco 
--HG--
extra : rebase_source : c1f75dff6ac7f32e082517af701654abebaee250
 2014-02-10 11:41:12 -08:00
Brian Smith
0dd915920a Bug 970512: Remove uninteresting cases for certificate usage verification, r=cviecco 
--HG--
extra : rebase_source : 6df6dcfb39f8b4e2cd063115470af04675c0f768
extra : source : 56e0904260b417ce181e2a35978f6d77e78ef2c2
 2013-10-13 23:34:28 -07:00
Brian Smith
a543241ac1 Bug 969938: Stop adding id-KP-OCSPSigning EKU to CA certificates in tests, r=cviecco 
--HG--
extra : rebase_source : 9f5e42ea788e63fb93e3a37632be12093096e63d
 2014-02-08 21:01:39 -08:00
David Keeler
e6f147946b bug 961528 - holepunch chart.apis.google.com from the HSTS preload list r=briansmith 2014-02-11 10:21:57 -08:00
Jacek Caban
867f117090 Bug 969330 - Fix -Werror=int-to-pointer-cast in windows-only code. r=ehsan 2014-02-10 12:05:22 +01:00
ffxbld
5c2460d500 No bug, Automated HSTS preload list update from host bld-linux64-ec2-400 - a=hsts-update 2014-02-08 03:17:31 -08:00
Daniel Holbert
6fb15215a9 Bug 968363: Mark security/manager/ssl/src/ as FAIL_ON_WARNINGS. r=briansmith 2014-02-06 00:12:17 -08:00
Daniel Holbert
6fa076714c Bug 968348: Remove some set-but-never-read variables, an inline a PR_LOGGING-only variable, to fix build warnings in security/manager/ssl/src/. r=keeler 2014-02-06 00:12:16 -08:00
Daniel Holbert
9e611f121a Bug 968323: Declare prlog variables inside #ifdef PR_LOGGING instead of MOZ_LOGGING, in /security, to fix build failures in --disable-logging builds. r=briansmith 2014-02-05 22:11:26 -08:00
Daniel Holbert
3695b32275 Bug 968338 followup: Add missing #include for unused.h. (bustage fix on a CLOSED TREE) 2014-02-05 14:14:54 -08:00
Daniel Holbert
ec8f21dd23 Bug 968338: Pass unused-in-some-build-configurations variable 'mFdForLogging' to mozilla::unused, to suppress clang warning in SSLServerCertVerification.cpp. r=bsmith 2014-02-05 13:39:27 -08:00
Daniel Holbert
c287205b92 (no bug) Fix a few DOS newline characters in SSLServerCertVerification.cpp. (no review, whitespace-only) 2014-02-05 13:39:26 -08:00
David Keeler
1002e4f24e bug 860076 - remove SkipOcsp/SkipOcspOff r=briansmith 
--HG--
rename : security/manager/ssl/tests/mochitest/browser/browser_certificateManagerLeak.js => security/manager/ssl/tests/mochitest/browser/browser_certViewer.js
 2014-02-04 16:13:47 -08:00
David Keeler
00f70ac6cf bug 967629 - don't release any nsNSSShutDownObject in any destructorSafeDestroyNSSReference r=cviecco 2014-02-04 16:14:51 -08:00
Monica Chew
7a7febbd96 Bug 967298: Make nsIX509CertList instantiable (r=briansmith) 2014-02-03 22:25:50 -08:00
Honza Bambas
8abe5e1893 Bug 828183 - disable NTLM generic module, effectively disable arbitrary NTLMv1 in Firefox, r=bsmith 2014-02-04 01:52:55 +01:00
Brian Smith
ccd33163bb Bug 967299: Fix async/sync issue in test_ev_certs.js, r=keeler 
--HG--
extra : rebase_source : bb7e0a593205ff95de35cf4eecb65ed9dc91a630
 2014-02-03 16:05:33 -08:00
David Keeler
576b9b1513 Bug 964493, Part 2: Test, r=briansmith 
--HG--
extra : rebase_source : 4bc219aaece6f16458ce7755acf552bf956e01a0
 2014-01-31 11:32:48 -08:00
David Keeler
12ecfb8778 bug 965379 - refactor getting the profile directory in nsNSSComponent::InitializeNSS r=briansmith 2014-02-02 13:00:45 -08:00
David Keeler
91ee7961d8 bug 965379 - properly indent nsNSSComponent::InitializeNSS r=briansmith 2014-02-02 13:02:27 -08:00
Ryan VanderMeulen
2a828dc50d Merge m-c to inbound. 2014-02-01 17:22:56 -05:00
David Keeler
316680a481 bug 966670 - remove PSMContentDownloader.h r=briansmith 2014-02-01 13:42:59 -08:00
ffxbld
bbb727217f No bug, Automated HSTS preload list update from host bld-linux64-ec2-363 - a=hsts-update 2014-02-01 03:16:13 -08:00
Camilo Viecco
ad891a09df Bug 962833: ensure-certverify-returns secfailure on MUST_BE_EV and no ev certificate. r=dkeeler 2014-01-24 13:57:35 -08:00
Monica Chew
ac711145e2 Bug 966557: Add nsIX509CertDB.ConstructX509FromRawDER (r=bsmith) 2014-01-31 17:33:28 -08:00
Ehsan Akhgari
275064aea3 Bug 964061 - Part 2: Remove nsIDOMCRMFObject; r=bzbarsky 
--HG--
extra : rebase_source : 888e33d68bdcd6e03b56f75036ea00142831961d
 2014-01-27 08:27:06 -08:00
Ehsan Akhgari
39c2869469 Bug 964061 - Part 1: Convert CRMFObject to WebIDL bindings; r=bzbarsky 
--HG--
extra : rebase_source : 39a2b35df50cdd42624fb0e7a14383e8d40cea4b
 2014-01-27 08:27:04 -08:00
Nathan Froyd
cbd28985b4 Bug 938786 - notify the secure browser UI, if any, first in NotifySubmitObservers; r=bz 2014-01-23 15:06:20 -05:00
Brian Smith
75350facfc Bug 891066, Part 9: Move DisableMD5 to NSSCertDBTrustDomain, r=dkeeler 
--HG--
extra : rebase_source : aaf658c12a74fc53f1591333f10d54e78fe1d992
 2014-01-20 01:30:25 -08:00
Wes Kocher
fb335f32a2 Backed out changeset f693f6c91b23 (bug 860076) for browser_-certViewer.js failures on a CLOSED TREE 2014-01-30 18:33:31 -08:00
David Keeler
c2b38aa436 bug 860076 - remove SkipOcsp for being totally bogus r=briansmith 
--HG--
rename : security/manager/ssl/tests/mochitest/browser/browser_certificateManagerLeak.js => security/manager/ssl/tests/mochitest/browser/browser_certViewer.js
 2014-01-30 14:55:51 -08:00
Brian Smith
2a2f34d8a0 Bug 891066, Part 8: Add stapled OCSP response to CertVerifier, r=cviecco 
--HG--
extra : rebase_source : ffe0762228d1217cb51e2f8fad2e0605d7d61344
extra : source : f721d60b6bf74467381590457ce3542f83a2f43a
 2013-09-27 19:53:36 -07:00
Brian Smith
b44267cc19 Bug 891066, Part 7: Give CertVerifier its own NSPR logging module, r=cviecco 
--HG--
extra : rebase_source : a6b38c4026fe70c9789cbe4830df57c943382f5b
extra : source : 591daff856840016c979ed9b4fdbed4ed68f22a6
 2013-07-10 23:47:09 -07:00
Brian Smith
90ca67f6b9 Bug 891066, Part 6: Move SSL server cert verification logic to security/certverifier, r=cviecco 
--HG--
extra : rebase_source : e30b5b46e075c52651bb5320b17660f85a50abbb
extra : source : ef41444d0a7d1f6697c7a4d431fffe8db1724605
 2013-07-08 16:30:59 -07:00
Brian Smith
f060a22e83 Bug 891066, Part 5: Switch to security::pkix::ScopedCERTCertList, r=cviecco 
--HG--
extra : rebase_source : 59015f864e612f18a2f7bb62092b692ae8d47853
extra : source : 31f68b8a192b45720fe931176cdc0565e8c6fd80
 2014-01-22 17:13:19 -08:00
Brian Smith
47e4f89e18 Bug 733454: Remove hard-coded blocklisting in PSM for Comodo and DigiNotar, r=cviecco 
--HG--
extra : rebase_source : 3a3ab5246bd6e2af4a0952c64181cad6feb5c424
extra : source : 2e540dd35edfa0ef3549ed4dd8f0b15b57cb2806
 2013-07-01 11:39:16 -07:00
Brian Smith
c4e883c95b Bug 891066, Part 3: Move more initialization of NSS to security/certverifier, r=keeler 
--HG--
extra : rebase_source : 33aad105028f849d0bbe1c37b60eab50f2f22c88
 2014-01-20 22:10:33 -08:00
Brian Smith
ab6d498dc5 Bug 891066, part 2: Move CertVerifier to security/certverifier, r=keeler 
--HG--
extra : rebase_source : dd59a391825b776b075e855660c2488105e2d741
 2014-01-26 19:36:28 -08:00
Brian Smith
e3600ee3dd Bug 891066, Part 1: Remove CertVerifier's dependency on nsNSSComponent, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 3242f78d6d4d68080997dd56dae1fd0675750d5e
extra : source : 965c9f30e9b87e418bbf6ab43657257e94992223
 2014-01-19 14:05:40 -08:00
Brian Smith
1721983314 Bug 961454: Clean up whitespace in key PSM files, r=keeler, r=cviecco 
--HG--
extra : rebase_source : 53f14cc6f97814eb9913a1ddad1a19631e2af08a
 2014-01-21 17:30:44 -08:00
ffxbld
2c46a614e1 No bug, Automated HSTS preload list update from host bld-centos6-hp-006 - a=hsts-update 2014-01-25 03:14:57 -08:00
David Keeler
fab1e9adcc bug 951354 - test nsNSSCertificateDB for proper shutdown r=cviecco a=abillings 2014-01-21 16:47:47 -08:00
Ms2ger
437f4d6ea7 Merge latest PGO-green changeset from inbound to central. 2014-01-20 09:30:38 +01:00
Ms2ger
a8af3aad23 Bug 956015 - Add an infallible nsIDocShellTreeItem::ItemType; r=bz 2014-01-20 08:58:26 +01:00
Brian Smith
fdb83baba8 Bug 952874: Fix telemetry for RSA/DHE key sizes of 1025-1280 bits and fix misspelling, r=keeler 2014-01-18 17:59:24 -08:00
Brian Smith
a7de8dd058 Bug 950858: Make cipher suite telemetry code less crash-prone, r=keeler 2014-01-18 16:52:16 -08:00
Phil Ringnalda
09777cb478 Merge m-i to m-c 2014-01-18 15:17:10 -08:00
ffxbld
6cad0e7b51 No bug, Automated HSTS preload list update from host bld-linux64-ec2-438 - a=hsts-update 2014-01-18 03:20:19 -08:00
Brian Smith
9713f359fa Bug 960714: Make NPN and ALPN prefs dynamic, r=keeler, r=mcmanus 
--HG--
extra : rebase_source : 42ff8c05b682e755d51ec79e2cb26db7cedd382f
 2014-01-16 21:38:59 -08:00
David Keeler
a868e1c605 bug 960723 - fix failingOCSPResponder in test_ev_certs.js r=briansmith 2014-01-16 13:18:38 -08:00
Patrick McManus
eed1f67347 Bug 890994: ALPN support for Gecko, r=briansmith 2014-01-14 15:34:23 -05:00
Wes Kocher
d73c5e3013 Backed out changeset 8526c7a38761 (bug 951354) for CPP unittest bustage 2014-01-17 17:50:17 -08:00
David Keeler
e5d8b74d4e bug 951354 - test nsNSSCertificateDB for proper shutdown r=cviecco a=abillings 2014-01-17 16:22:51 -08:00
Raymond Etornam Agbeame(:retornam)
374ffaece6 Bug 950169 - remove unused arguments for LogInvalidCertError r=keeler 2014-01-17 11:57:57 -08:00
David Keeler
9aca2e7e9a bug 950240 - don't do DV fallback for nsIIdentityInfo.isExtendedValidation r=briansmith 2014-01-17 11:04:09 -08:00
David Keeler
a421073e54 bug 947759 - unconditionally add Google sites to the HSTS preload list r=cviecco DONTBUILD NPOTB 2014-01-15 11:22:06 -08:00
David Keeler
d28656fb1a bug 959796 - refactor error reporting in getHSTSPreloadList.js r=cviecco DONTBUILD NPOTB 2014-01-15 11:20:55 -08:00
Brian Smith
8565c44c20 Bug 923304, Part 2: Adjust EV tests, r=keeler 
--HG--
extra : rebase_source : f0cfd0089a99dddd8852e0613bc2a31e5c12b1de
 2014-01-14 15:22:09 -08:00
Brian Smith
921c2d255a Bug 923304, Part 1: Add test for OCSP response signed by CA that has an OCSP URI, r=keeler, r=briansmith 
--HG--
extra : rebase_source : 7cafe0781563382c2221e865201beb023fea3628
 2014-01-13 02:33:08 -08:00
David Keeler
dc049e658e bug 957368 - standardize and simplify nsNSSShutDownObject implementations r=cviecco r=briansmith 2014-01-14 09:28:43 -08:00
Garrett Robinson
3ceb749a52 Bug 883975 - CSP 1.1 hash-source. r=sstamm, r=dholbert, r=mrbkap 2014-01-02 11:14:06 -08:00
Brian Smith
4268442c28 Bug 957667: Decouple OCSP stapling pref from the OCSP fetching pref, and couple the OCSP required pref to the OCSP fetching pref, r=keeler 
--HG--
extra : rebase_source : 86cb86f76f4def579fcf07e479025852849c34f8
extra : source : 08115711a4e6e77971c9e872fb6c68e88ac9693e
 2014-01-08 08:51:06 -08:00
Brian Smith
225d0f3c9e Bug 959026: Add telemetry about cases where we don't do OCSP fetching when we expect to, r=keeler 
--HG--
extra : rebase_source : f7e9826569325f497273a92eec5127c414baa8bc
extra : source : bb5bb5a1b571e54695a4c8d5be0cc447f29f0358
 2014-01-12 19:31:40 -08:00
Ryan VanderMeulen
614d80980a Backed out changesets 1b892043a386 and 0e14b3468b94 (bug 923304) and changeset 2e2c276950b9 (bug 950129) for xpcshell failures. 2014-01-13 18:00:34 -05:00
Ryan VanderMeulen
4d0972315d Merge inbound to m-c. 2014-01-13 17:44:24 -05:00
Brian Smith
0d8a085890 Bug 923304, Part 2: Adjust EV tests, r=keeler 
--HG--
extra : source : 97bf218ac3bb44e81074ca95877ca8b6414265b3
 2013-12-28 11:28:49 -08:00
Brian Smith
a6fda06c4f Bug 923304, Part 1: Add test for OCSP response signed by CA that has an OCSP URI, r=keeler, r=briansmith 
--HG--
extra : source : e7afcba6743e40755d28a296b00c395392864657
 2014-01-13 02:33:08 -08:00
Patrick McManus
fa1a932713 bug 951199 - Interface for Socket Level Access to TLS Version Used r=dkeeler r=bsmith 2013-10-09 17:21:48 -07:00
Nemina Amarasinghe
fe42b2da6d Bug 946075 - Remove extra space from ssl_error_bad_cert_domain error message contains in TransportSecurityInfo.cpp. r=dkeeler 2014-01-13 09:28:14 -05:00
Brian Smith
54577ca0b6 Bug 957665: Add telemetry to measure how many people have OCSP enabled, r=keeler 
--HG--
extra : rebase_source : e6dd0d7d06ce0eb5b2f34a77a851dd7c0655ac3e
 2014-01-08 08:59:53 -08:00
David Keeler
af14c1e77c bug 950268 - fix leak in nsCertTree::GetDispInfoAtIndex r=cviecco 2014-01-09 10:02:08 -08:00
Phil Ringnalda
b1d0a82ada Back out 2e7e2de7b13e (bug 948574) for b2g mochitest crashes 
CLOSED TREE
 2014-01-07 21:10:23 -08:00
David Keeler
312c00712f bug 948574 - remote nsISiteSecurityService::IsSecureURI r=bz 2014-01-07 11:31:30 -08:00
Brian Smith
47f12dab81 Bug 952876: Add test for bug 952808 (OCSP stapling not honored when there is a error entry in the OCSP cache), r=keeler 2014-01-06 14:45:35 -08:00
Brian Smith
34c79e6c63 Bug 933109: Add tests to verify that we retry OCSP when we have a cached Unknown response, r=keeler 2014-01-06 14:41:04 -08:00
Wes Kocher
e58ffe9455 Backed out changeset 75e5396d0847 (bug 933109) for xpcshell bustage 2014-01-06 17:50:53 -08:00
Wes Kocher
f21b041b0f Backed out changeset b8f1b1cfc9e2 (bug 952876) 2014-01-06 17:50:23 -08:00
Brian Smith
e5e4f7555e Bug 952876: Add test for bug 952808 (OCSP stapling not honored when there is a error entry in the OCSP cache), r=keeler 
--HG--
extra : rebase_source : d83e4b3681b36616441e6fd412969998a19eae4c
extra : amend_source : 475bff5dd333fb54729fdace0f295c6e026c5a18
 2014-01-06 14:45:35 -08:00
Brian Smith
1bd1da9540 Bug 933109: Add tests to verify that we retry OCSP when we have a cached Unknown response, r=keeler 
--HG--
extra : rebase_source : 4e73c5812e75adf053f2158a88a6a8e58307c9d7
 2014-01-06 14:41:04 -08:00
David Keeler
15f6ba41c8 bug 951354 - nsNSSCertificateDB: call shutdown(calledFromObject) in destructor r=cviecco a=abillings 2013-12-19 11:45:50 -08:00
Ehsan Akhgari
ebd358dfd7 Bug 927728 - Part 1: Replace PRUnichar with char16_t; r=roc 
This patch was automatically generated by the following script:

#!/bin/bash
# Command to convert PRUnichar to char16_t

function convert() {
echo "Converting $1 to $2..."
find . ! -wholename "*nsprpub*" \
       ! -wholename "*security/nss*" \
       ! -wholename "*modules/libmar*" \
       ! -wholename "*/.hg*" \
       ! -wholename "obj-ff-dbg*" \
       ! -name prtypes.h \
       ! -name Char16.h \
         -type f \
      \( -iname "*.cpp" \
         -o -iname "*.h" \
         -o -iname "*.c" \
         -o -iname "*.cc" \
         -o -iname "*.idl" \
         -o -iname "*.ipdl" \
         -o -iname "*.ipdlh" \
         -o -iname "*.mm" \) | \
    xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}

convert PRUnichar char16_t
 2014-01-04 10:02:17 -05:00
ffxbld
1e84c8d649 No bug, Automated HSTS preload list update from host bld-linux64-ec2-441 - a=hsts-update 2014-01-04 03:20:04 -08:00
ffxbld
1b45db05aa No bug, Automated HSTS preload list update from host bld-linux64-ec2-018 - a=hsts-update 2013-12-28 03:23:00 -08:00
ffxbld
4b0fae6f2f No bug, Automated HSTS preload list update from host bld-centos6-hp-016 - a=hsts-update 2013-12-21 03:14:20 -08:00
Gregory Szorc
158ed8b3ec Bug 774572 - Part 2: Define JAR_MANIFESTS in moz.build files; r=glandium 
Every directory with a jar.mn now has JAR_MANIFESTS defined in its
moz.build file.

We also removed the may_skip special consideration of jar.mn files
because this information is now available during tier traversal by the
reader courtesy of the variables being present in moz.build files.

--HG--
extra : rebase_source : 21049b15e6bd9cf65b0805ccaccc4ba5aae93c98
extra : amend_source : 0b1ea866d725beef92d37c6f6d475369ac002e19
 2013-12-10 16:18:11 +09:00
David Keeler
018e03fe74 bug 887321 - initial OCSP stapling telemetry r=briansmith 2013-12-16 09:32:16 -08:00
Trevor Saunders
907dfc4528 bug 949821 - use MOZ_UTF16 more and NS_LITERAL_STRING less r=froydnj 2013-12-12 20:50:01 -05:00
Raymond Etornam Agbeame
b6a36ce552 Bug 945857: Remove the security.fresh_revocation_info.require preference, r=briansmith 2013-12-16 00:09:21 -08:00
Phil Ringnalda
3a1d0374aa Merge m-i to m-c 2013-12-14 18:20:38 -08:00
ffxbld
f00e1e651f No bug, Automated HSTS preload list update from host bld-linux64-ix-037 - a=hsts-update 2013-12-14 03:18:03 -08:00
David Keeler
183762aa4e bug 950253 - fix typo in getHSTSPreloadList.js r=briansmith DONTBUILD because NPOTB 2013-12-13 16:06:54 -08:00
Bobby Holley
a7395d2ec6 Bug 937317 - Replace all instance of null cx pushing with AutoSystemCaller. r=bz 
This is an easy bonus chunk of the work to phase out cx pushing in the browser.
 2013-12-11 17:51:58 -08:00
Camilo Viecco
e92b932f63 Bug 938046 - Part 4. Tests for consistency of getchain and getissuer. r=dkeeler 2013-11-21 13:50:51 -08:00
Camilo Viecco
1ee1446f11 Bug 938046 - Part 3. Iterate only through valid users on getchain r=dkeeler 2013-12-11 13:04:07 -08:00
Camilo Viecco
0158164ec2 Bug 938046 - Part 2. Get issuer uses getchain to comput issuer. r=dkeeler 2013-11-21 13:50:49 -08:00
Camilo Viecco
bdf275bc24 Bug 938046 - Part 1. Iterate through variable not over const. r=dkeeler 2013-11-21 13:45:20 -08:00
Cykesiopka
a856c7f1a1 Bug 910986 - Fix cert trust editing in People tab of Cert Manager. r=dkeeler 2013-12-10 10:36:47 -05:00
Cykesiopka
d659aa3ac8 Bug 539710 - Use char16_t ',' instead of NS_LITERAL_STRING in nsNSSCertificate.cpp. r=dkeeler 2013-12-10 10:36:31 -05:00
Camilo Viecco
b10aaf2d3e Bug 936808 - Serialize calls to PK11 routines in SSLServerCertVerification. r=briansmith 2013-12-09 09:12:47 -08:00
Birunthan Mohanathas
759ab69b0a Bug 713082 - Part 2: Rename Util.h to ArrayUtils.h. r=Waldo 
--HG--
rename : mfbt/Util.h => mfbt/ArrayUtils.h
 2013-12-08 21:52:54 -05:00
Brian Smith
d64b1c97c0 Bug 942152, r=dkeeler, r=honzab 
--HG--
extra : rebase_source : 7f0bab4efa26e9c185b29fdb14d846035147fd2f
 2013-12-05 20:33:49 -08:00
Phil Ringnalda
e2e1627d17 Back out 35371620801a:bf2019278b77 (bug 937317) for gaia-ui-test bustage and frequent timeouts in its own test 2013-12-07 11:08:56 -08:00
ffxbld
3c0a9dc3b1 No bug, Automated HSTS preload list update from host bld-linux64-ec2-351 - a=hsts-update 2013-12-07 03:22:31 -08:00
Camilo Viecco
df14c5d1d1 Bug 945349 - CertVerifier should check early for bad usages. r=briansmith 2013-12-06 13:42:44 -08:00
Bobby Holley
4d56f0a83d Bug 937317 - Replace all instance of null cx pushing with AutoSystemCaller. r=bz 
This is an easy bonus chunk of the work to phase out cx pushing in the browser.
 2013-12-06 12:01:42 -08:00
Raymond Etornam Agbeame
d183132bf1 Bug 945855: Remove the security.first_network_revocation_method pref, r=briansmith 
--HG--
extra : rebase_source : e416ba1e78f95234d403c078ad81b5fddcce947a
extra : amend_source : 7adbe291df748b5a6d1f1122573e862bdc5f5f11
 2013-12-06 00:55:17 -08:00
Cykesiopka
437fb46beb Bug 945851: Remove pref for showing dialog box when NSS initialization fails, r=briansmith 
--HG--
extra : rebase_source : 1142d1775b8846e8bd46109affc62df262e598d4
 2013-12-06 00:12:08 -08:00
Carsten "Tomcat" Book
f0d2b953c5 Backed out changeset 374e44c835a8 (bug 937317) WinXP Build Bustage on a CLOSED TREE 2013-12-06 08:41:42 +01:00
Chris Peterson
e77c67135d Bug 946116 - Remove unused isResumedSession variable from nsNSSCallbacks.cpp. r=bsmith 2013-12-03 21:07:29 -08:00
Bobby Holley
c8308277c1 Bug 937317 - Replace all instance of null cx pushing with AutoSystemCaller. r=bz 
This is an easy bonus chunk of the work to phase out cx pushing in the browser.
 2013-12-05 21:34:17 -08:00
Camilo Viecco
887aa6047d Bug 585122 - In PSM provide EV only with OCSP revocation (Part 2: tests). r=briansmith. 2013-12-02 11:12:21 -08:00
Camilo Viecco
a1040bf48f Bug 585122 - Part 1. EV do not request CRL. r=briansmith. 2013-12-02 11:08:06 -08:00
Steffen Wilberg
7542ae498f Bug 945871: Remove the security.ssl3.ecdh_* preferences, r=briansmith 
--HG--
extra : rebase_source : 39f680c48ae198263af61b8c2cc07bdb7dc829a7
 2013-12-03 18:56:33 -08:00
Cykesiopka
f5adbcaf50 Bug 915937 - Cleanup #defines in nsNSSComponent.cpp and change them to static consts. r=bsmith 2013-12-03 15:23:27 -05:00
Nathan Froyd
2b73940866 Bug 942109 - constify PLDHashTableOps in security/manager/; r=briansmith 2013-11-20 13:42:08 -05:00
Camilo Viecco
f577979fe4 Bug 942918 - remove ev tests that use crl for revocation check. r=dkeeler 2013-12-02 15:20:24 -08:00
Brian Smith
7f355c58e6 Bug 945195: Do insecure fallback from TLS 1.0 to SSL 3.0 when we receive a FIN during the initial handshake, r=honzab 
--HG--
extra : rebase_source : d10091aea21f7d552f682d54383bf43ece7633ed
 2013-12-02 10:48:06 -08:00
Ajitesh Gupta
6b707d4378 Bug 917047: Remove the security.enable_md5_signatures pref, r=briansmith 
--HG--
extra : rebase_source : ae721bc7f91b399e61c2efb869e15ab902c810e0
 2013-11-19 16:05:26 -08:00
ffxbld
a3292f8191 No bug, Automated HSTS preload list update from host bld-linux64-ec2-170 - a=hsts-update 2013-11-30 03:19:19 -08:00
Mike Hommey
9245936f8b Bug 874266 - Move all DEFINES that can be moved to moz.build. r=mshal 2013-11-27 22:55:07 +09:00
Mike Hommey
2b828323f2 Backout changeset 3fd4b546eed4 (bug 874266) and changeset a35d2e3a872f (bug 942043) for ASAN build bustage and Windows test bustage 
--HG--
extra : amend_source : f20d09aeff1c8b5cbd0f1d24c7ce04e86f3aed1d
 2013-11-28 14:24:05 +09:00
Mike Hommey
d210f8ff00 Bug 874266 - Move all DEFINES that can be moved to moz.build. r=mshal 2013-11-28 13:08:16 +09:00
Camilo Viecco
a930076740 Bug 917380 - part2 - test ensure disabled ev root certs remain untrusted. r=briansmith 2013-10-29 14:56:34 -07:00
Camilo Viecco
01b5a10348 Bug 917380 - Part 1 - Add filters for EV root list. r=briansmith 2013-10-21 14:27:46 -07:00
Camilo Viecco
4867756afe Bug 927016 - Create EV testsuite in xpcshell. r=keeler 2013-11-21 13:40:31 -08:00
David Keeler
4ca8cde553 bug 929617 - disregard expired stapled OCSP responses, acquire fresh ones r=briansmith 2013-11-25 15:40:11 -08:00
David Keeler
199e914302 bug 943115 - return early in CreateCertErrorRunnable for non-overridable errors r=briansmith 2013-11-26 13:49:47 -08:00
Patrick McManus
1cf2a2c447 Bug 942729, Part 2: Remove unused expected symmetric cipher mechanism, r=briansmith 
--HG--
extra : rebase_source : 9630808b663d6a670c2e45d242177a640817f2ee
 2013-11-25 18:12:40 -05:00
Brian Smith
1af2ea48ab Bug 942729, Part 1: Re-enable TLS False Start, r=mcmanus 
--HG--
extra : rebase_source : 9908b1cbc3a30e9868739a10a705de8dbf30c5e1
 2013-11-20 13:49:33 -08:00
Ehsan Akhgari
d6792974b0 Bug 942033 - Build security/manager in unified mode; r=bsmith 
--HG--
extra : rebase_source : d48b78001772e0421a6dfc2ecd204434c33cd2d4
 2013-11-26 13:18:21 -05:00
Mike Hommey
62cde4eed8 Bug 940407 - Kill GTEST_SOURCES. r=gps 2013-11-26 11:48:58 +09:00
Brian Smith
d0a8f7663c Bug 942728 - Fix telemetry for cipher suites and crypto algorithms andkey sizes, r=keeler, a=lsblakk 
--HG--
extra : rebase_source : bd0bc0d67fe811612df4210b2b5e19f1d5eca5a0
 2013-11-21 13:35:23 -08:00
Phil Ringnalda
9710fc9cf4 Merge m-i to m-c 2013-11-23 08:18:35 -08:00
ffxbld
38118fee51 No bug, Automated HSTS preload list update from host bld-linux64-ix-034 - a=hsts-update 2013-11-23 03:17:46 -08:00
David Keeler
c4a1548118 bug 909044 - make generate_certs.sh work on windows r=briansmith DONTBUILD NPOTB 2013-11-22 11:03:34 -08:00
Camilo Viecco
1779a62ab0 Bug 938805 - Create standalone oscpResponseGenerator for testing. r=keeler 2013-10-29 14:02:35 -07:00
Patrick McManus
a64352d983 bug 802649 network priority for ocsp r=bsmith r=honzab 
--HG--
extra : rebase_source : 17554ab7627e1d42a4736078254f94f36cf9c48b
 2013-11-20 09:57:56 -05:00
Camilo Viecco
922b598103 Bug 912155 - Adding new interface in nssCertifcateDB for testing. r=bsmith 2013-11-11 16:37:06 -08:00
Mike Hommey
a65383e1e9 Bug 939632 - Remove LIBRARY_NAME for leaf libraries. r=gps 
Landing on a CLOSED TREE.
 2013-11-19 11:50:54 +09:00
Mike Hommey
8ceb917350 Bug 939074 - Remove most LIBXUL_LIBRARY. rs=gps 2013-11-19 11:48:10 +09:00
Mike Hommey
9fe772e7fd Bug 939044 - Rename remaining MODULE definitions to XPIDL_MODULE. r=mshal 2013-11-19 11:47:43 +09:00
Mike Hommey
bb6779efe3 Bug 939044 - Remove most definitions of MODULE. r=mshal 2013-11-19 11:47:39 +09:00
Mike Hommey
d7b6f95761 Bug 935881 - Use FINAL_LIBRARY for all (fake) libraries that end up linked in a single other library. r=gps 2013-11-19 11:47:14 +09:00
Camilo Viecco
ac92dc4190 Bug 935769: Fix shutdown locks for nssCerList and nssCertListEnumerator. r=bsmith 2013-11-11 15:16:45 -08:00
Landry Breuil
c9b75df3f7 Bug 939498 - Properly include <algorithm> for std::max. r=bsmith 2013-11-18 11:04:13 +01:00
Brian Smith
db5e56dfcb Bug 901718, Part 2: fix comment, r=me 2013-11-17 14:00:00 -08:00
Brian Smith
28c2d9c5d5 Bug 934663 followup: fix unused variable warning, r=me 
--HG--
extra : rebase_source : e343b569df4d313f0f5f65fc82de99b9ea5b2ba9
 2013-11-17 13:53:18 -08:00
Brian Smith
756bf5d8e7 Bug 901718: Remove TLS intolerance fallback from TLS 1.0 to SSL 3.0 for connection resets, r=honzab 
--HG--
extra : rebase_source : 304e73126b66ae2e1a9fa6ae4c0cc3fa803aaac0
 2013-11-17 13:51:37 -08:00
Brian Smith
f9eb567f1a Bug 707275, Part 2: Add telemetry for cipher suites and key sizes, r=keeler 
--HG--
extra : rebase_source : bd5f91877de357b415b6f143eccc87434d72db2b
 2013-11-17 13:47:30 -08:00
Brian Smith
d5514d5bd0 Bug 707275, Part 1: Add telemetry for TLS intolerance, r=keeler 
--HG--
extra : rebase_source : 8331f1486ad764838812ea500742a97fbc025858
 2013-11-17 13:47:23 -08:00
Tom Schuster
f311064c6e Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz 2013-11-16 13:31:36 +01:00
Ms2ger
6b38d3ca3d Backout changesets ded0d64f6786:03f041d03f24 and 30cbd1abde1a (bug 935696, bug 933834 and bug 939194) for build bustage. 2013-11-17 16:39:25 +01:00
Tom Schuster
dd485f9336 Bug 933834 - Rename and handlify JS_ValueToString. r=terrence,bz 2013-11-16 13:31:36 +01:00
Chris Peterson
e98e016e4f Bug 937459 - Remove unused private fields from nsNSSSocketInfo class. r=briansmith 2013-11-11 14:06:29 -08:00
Garrett Robinson
2046aafb3c Bug 932116 - Allow copying certificate viewer text. r=dkeeler, r=bsmedberg 2013-11-13 17:39:48 -08:00
David Keeler
351ae40bdc bug 932519 - (3/3) add an optional additional cert name as a parameter to GetOCSPResponseForType r=cviecco r=briansmith 2013-11-11 13:36:29 -08:00
David Keeler
a2409d20fd bug 932519 - (2/3) rename OCSP response generation test code to remove "stapling" r=cviecco r=briansmith 2013-11-11 13:42:35 -08:00
David Keeler
05787ee46f bug 932519 - (1/3) move common OCSP response generation test code for refactoring r=cviecco r=briansmith 
--HG--
rename : security/manager/ssl/tests/unit/tlsserver/cmd/OCSPStaplingServer.cpp => security/manager/ssl/tests/unit/tlsserver/lib/OCSPCommon.cpp
rename : security/manager/ssl/tests/unit/tlsserver/cmd/OCSPStaplingServer.cpp => security/manager/ssl/tests/unit/tlsserver/lib/OCSPCommon.h
 2013-11-11 13:43:04 -08:00
David Keeler
af97bf4e6f bug 935618 - (2/2) generateCRMFRequest: test using a bad popcert parameter r=cviecco 2013-11-07 13:33:58 -08:00
David Keeler
abf7bbfe3e bug 935618 - (1/2) check for an ec certificate in nsConvertToActualKeyGenParams r=cviecco 2013-11-07 13:34:59 -08:00
Jacob Acord
cd8b6c36c4 Bug 934673 - Fix nsRandomGenerator::GenerateRandomBytes can leak r=keeler 2013-11-11 14:38:37 -08:00
Brian Smith
44c48384aa Bug 934663: Enable AES-GCM cipher suites; disable SEED, ECDH_*, and FIPS, and DSS+Camellia cipher suites, r=cviecco 
--HG--
extra : rebase_source : a1542ba09258448e571109bc4aa6423cd9ad616a
 2013-11-01 05:20:03 -07:00
Brian Smith
8f278c6de0 Bug 934327: Give OCSP-related NSS errors symbolic names in xpcshell tests, r=keeler 
--HG--
extra : rebase_source : 10bd4842f16a6a4e1cbd8d50505a70a6502d9581
 2013-10-14 21:36:18 -07:00
Garrett Robinson
fcd3642ac2 Bug 855326 - CSP 1.1 nonce-source for scripts and styles r=mrbkap r=dholbert r=geekboy 2013-11-08 15:44:39 -08:00
ffxbld
8f25c19a66 No bug, Automated HSTS preload list update from host bld-linux64-ec2-173 - a=hsts-update 2013-11-09 03:19:13 -08:00
Daniel Holbert
a943af2236 backout 57213b64023b (bug 855326) for build bustage in debug builds 
CLOSED TREE
 2013-11-08 11:22:36 -08:00
Garrett Robinson
99a316d224 Bug 855326 - CSP 1.1 nonce-source for scripts and styles. r=mrbkap r=dholbert r=geekboy 2013-11-08 09:20:43 -08:00
David Keeler
5f61d804d5 bug 934716 - generateCRMFRequest: accept only the first repeated keygen parameter r=cviecco 2013-11-07 10:42:59 -08:00
Michael Shuen
d283cd36a9 Bug 933995 - Check return value of ImportCertsIntoPermanentStorage and CERT_ImportCerts. r=dkeeler 2013-11-06 12:30:45 -05:00
Ryan VanderMeulen
f204ac27b3 Merge m-c to inbound. 2013-11-04 16:31:13 -05:00
Carsten "Tomcat" Book
f10da167db merge b2g-inbound to mozilla-central 2013-11-04 13:52:18 +01:00
Michael Shuen
8cc948db31 Bug 933998 - Prevent leak in nsNSSCertificateDB::ConstructX509FromBase64. r=bsmith 2013-11-04 14:22:37 -05:00
Meadhbh Hamrick
873b00084f Bug 861266: Enable TLS 1.2 by default, r=briansmith 
--HG--
extra : rebase_source : 4f28724d58791e1ee0e281ff48232f5aaca2048f
 2013-11-01 04:48:57 -07:00
Brian Smith
303d322823 Bug 932176: Add preference to control whether OCSP GET is used, off by default, r=cviecco 
--HG--
extra : rebase_source : 7cbc273155d04bc64a110eda9216c6f727ce0c18
 2013-10-24 14:32:09 -07:00
Brian Smith
b20d734e51 Bug 934171: Fix OCSP stapling test, r=mcmanus 
--HG--
extra : rebase_source : 4f77b595b2004dabf3444187424ac4426fb7a41a
 2013-11-02 19:57:26 -07:00
ffxbld
1394251eca No bug, Automated HSTS preload list update from host bld-linux64-ec2-406 - a=hsts-update 2013-11-02 03:19:53 -07:00
Mike Hommey
ff4fa14954 Bug 933135 - Treat SIMPLE_PROGRAMS more like PROGRAM. r=mshal 2013-11-02 08:43:55 +09:00