Commit Graph

2090 Commits

Author SHA1 Message Date
Ryan VanderMeulen
8f44adceee Merge inbound to m-c. a=merge 2014-06-23 10:42:32 -04:00
ffxbld
387e4e4978 No bug, Automated HSTS preload list update from host bld-linux64-spot-1030 - a=hsts-update 2014-06-21 03:14:13 -07:00
Harsh Pathak
ad1b14886e bug 956147 - Use Scoped PLArenaPool in GetSubjectAltNames to avoid memory leaks. r=keeler. 2014-06-19 14:36:31 -07:00
Brian Smith
3be55730af Bug 1006812: Use mozilla::pkix::der to decode the key usage extension, r=keeler
--HG--
extra : rebase_source : e445c913994dc027e1179543d7b6cab2505e734d
2014-06-19 00:13:20 -07:00
Camilo Viecco
4547fc975b Bug 1015973 - Improve cert error decoding. r=keeler
--HG--
extra : rebase_source : e812bc94b7c30727ef3a17fab0dac03633254083
2014-06-02 09:04:39 -07:00
David Keeler
7431ca657e bug 1027711 - remove some unused const variables in PSM r=cviecco 2014-06-19 10:31:06 -07:00
Brian Smith
ee56f24882 Bug 1027311, Part 3: Remove irrelevant & problematic extensions from test_cert_signatures test certificates, r=cviecco
--HG--
extra : rebase_source : 574e46ea5664b1985ac19dab395e75f75f0bdccb
2014-06-18 13:40:18 -07:00
Brian Smith
64d2f4a8e1 Bug 1027311, Part 2: Remove irrelevant & problematic extensions from test_ev_certs test certificates, r=cviecco
--HG--
extra : rebase_source : 413b57030d95d8e0293933e01c5877909ceb27ff
2014-06-18 15:05:45 -07:00
Brian Smith
f15940bcb5 Bug 1027311, Part 1: Remove irrelevant & problematic extensions from test_certificate_usages test certificates, r=cviecco
--HG--
extra : rebase_source : e9a4072de3d24797929fc37c85ba99517bb6bad1
2014-06-18 13:56:36 -07:00
Brian Smith
a8a48f6bb4 Bug 1027255: Add ASSERT_/EXPECT_ GTest helpers for mozilla::pkix::Result, r=mmc
--HG--
extra : rebase_source : 2fb8807724ba59028ec32e8d287296a905bd3615
2014-06-18 23:40:34 -07:00
Brian Smith
3398077c81 Bug 611752: Remove XPCOM CMS interfaces (nsICMS* and nsISMimeCert), r=keeler
--HG--
extra : rebase_source : d5f70ff8b084fa9d53309d28d2ad478a478f4ff6
2014-06-15 20:51:51 -07:00
Brian Smith
6879fc02dd Bug 1022970: Switch from UNIFIED_SOURCES back to SOURCES in security/pkix, security/certverifier, and security/manager/ssl/src, r=keeler
--HG--
extra : rebase_source : 7d45d018be6b23af199c1e9c858fb5bb3bb5a01b
2014-06-16 22:57:55 -07:00
Brian Smith
1ff76502ae Bug 1026371: Remove useless comments in CertVerifier.cpp, r=cviecco
--HG--
extra : rebase_source : 58444ab17c68bcde6938540b3b074af55e417687
2014-06-16 23:37:53 -07:00
Birunthan Mohanathas
c910458886 Bug 1016240 - Exterminate CR+LF line endings. r=briansmith,cpearce,ehsan,gavin 2014-06-18 17:56:02 -07:00
Benoit Jacob
79a09b081b Bug 1027251 - Fix or whitelist dangerous public destructors in security/ - r=bsmith 2014-06-18 22:29:00 -04:00
Monica Chew
955a182d6f Bug 1027133: Enable test mode for *.twitter.com (r=keeler) 2014-06-18 16:23:13 -04:00
David Keeler
23ad75a565 bug 1017826 - follow-up to fix indentation r=me a=whitespace-only DONTBUILD 2014-06-17 09:14:00 -07:00
Harsh Pathak
85a5bc6e6a Bug 1017826 - prevent a potential memory leak in OCSPCache::Put. r=keeler 2014-06-16 20:27:00 +02:00
Nathan Froyd
9e632a1ea1 Bug 1018375 - part 4 - use a linker script for libnss3 on Linux-like OSes; r=glandium 2014-05-30 14:34:54 -04:00
Nathan Froyd
7b6f38d2db Bug 1018375 - part 3 - use a static list of NSS def files for MOZ_FOLD_LIBS groveling; r=glandium 2014-06-03 14:23:06 -04:00
Harsh Pathak
2c75ba8d1d bug 550052 - add length check when decoding key usage bit strings. r=dkeeler 2014-06-10 16:56:00 +02:00
Harsh Pathak
b2c0ef83be Bug 1017348 - DumpASN1Object/ifdef-ed out code removed. r=dkeeler 2014-06-10 16:58:00 +02:00
Phil Ringnalda
61e8743b62 Merge m-i to m-c, a=merge 2014-06-15 09:28:20 -07:00
ffxbld
ae1625362c No bug, Automated HSTS preload list update from host bld-linux64-spot-006 - a=hsts-update 2014-06-14 03:14:44 -07:00
Wan-Teh Chang
61a2cf4501 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 4. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150, bug 1007126, bug 1021102.
2014-06-13 14:17:18 -07:00
Camilo Viecco
007c3dfb85 Bug 998513 - Test GeneralizedTime encodings in mozilla::pkix. r=keeler. 2014-06-13 12:50:11 -07:00
Wes Kocher
f0ebc18ca2 Merge m-c to fx-team 2014-06-11 18:52:12 -07:00
Monica Chew
68b5959bb3 Bug 1004352: Enable pinning for Google in production mode (r=keeler) 2014-06-11 15:32:37 -07:00
Gijs Kruitbosch
b881af4217 Bug 908534 - change of event sink should trigger OnSecurityChange notifications, r=dkeeler 2014-06-11 11:19:17 +01:00
David Keeler
72e5b879dd bug 1017160 - remove nsINSSCertErrorDialog and implementation r=cviecco 2014-06-09 16:35:35 -07:00
David Keeler
a1ba22a9d2 bug 1020993 - properly handle unknown critical extensions in BackCert::Init r=briansmith 2014-06-09 13:57:44 -07:00
Harsh Pathak
b671eb2af2 Bug 997370 - Update comment in nsIX509Cert.idl to reflect certificate fingerprint instead of public key. r=cviecco 2014-06-09 10:58:00 -04:00
Ryan VanderMeulen
6f355e5e59 Merge m-c to inbound on a CLOSED TREE. a=me 2014-06-07 13:36:44 -04:00
ffxbld
da3750634f No bug, Automated HSTS preload list update from host bld-linux64-spot-051 - a=hsts-update 2014-06-07 03:18:25 -07:00
David Keeler
d98be01fdd bug 1019198 - fail handshake if given an expired OCSP response and fetching a new one fails r=briansmith 2014-06-06 09:20:50 -07:00
Camilo Viecco
2754803080 Bug 1000548 - Leaking arenas allocated in mozilla::pkix r=keeler
--HG--
extra : rebase_source : 6b0aaef098a4fa4d5749013a332b6b7602640b36
2014-06-05 16:28:46 -07:00
Ed Morley
dd53384926 Backed out changeset 189492a9a115 (bug 1020695) for mochitest-2 failures in test_WebCrypto.html; CLOSED TREE 2014-06-05 15:52:01 +01:00
Wan-Teh Chang
1c2b9ab842 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
2014-06-05 07:06:32 -07:00
Wan-Teh Chang
27b5fea348 Revert 8406a2b981c5 to fix build bustage.
> Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
> bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
> bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
> bug 963150.
2014-06-04 21:26:33 -07:00
Wan-Teh Chang
19a284c6e7 Bug 1020695: Update Mozilla to use NSS 3.16.2 Beta 3. Includes fixes for
bug 1013088, bug 996237, bug 970539, bug 1016567, bug 485732, bug 334013,
bug 959864, bug 1016836, bug 1016811, bug 1018536, bug 996250, bug 1009227,
bug 963150.
2014-06-04 21:03:47 -07:00
David Keeler
afd6b3a4c0 bug 1003566 - part 2/2: prevent OCSP requests from being upgraded to HTTPS by HSTS r=cviecco 2014-06-04 09:58:28 -07:00
Camilo Viecco
f8058010ea Bug 1021797 - Rename ArenaFalseCleaner to PORT_FreeArena_false. r=keeler
--HG--
extra : rebase_source : e7316ee06f58f42afbaf68d7e5f7948277fd15fd
2014-06-06 14:11:08 -07:00
Monica Chew
2a8bdf8ac7 Bug 1020485: Enable pinning in test mode for accounts.firefox.com (r=keeler) 2014-06-06 13:44:59 -07:00
Brian Smith
d069eee1bd Bug 1020683, Part 3: Fix build bustage, a=BUSTAGE on a CLOSED TREE
--HG--
extra : rebase_source : 8eaa3eae911b0e75129988d58a19e5e76257b369
2014-06-06 12:04:36 -07:00
Brian Smith
842a9f0d8f Bug 1020682: Simplify mozilla::pkix results cert chain construction and make it more efficient, r=cviecco
--HG--
extra : rebase_source : 69cb8ea66e075c89bbcbab3ca115cc2ccc95fa4f
2014-06-04 01:28:44 -07:00
Brian Smith
94b0c6c505 Bug 1020683, Part 2: Remove more references to CERTCertificate from mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 9dce7585975fb23fe04f5714ece18645b22b2261
2014-06-04 00:03:28 -07:00
Brian Smith
56c22cc57c Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler
--HG--
extra : rebase_source : 416938498080c4d44874025f1da4562ab1c7c3c8
2014-06-05 15:18:32 -07:00
Brian Smith
0988b16d24 Bug 1018411: Factor out signed data parsing in mozilla::pkix into a reusable and separately-testable function, r=keeler
--HG--
extra : rebase_source : d65a760f9f8efb656f238794019bd451ca163c0b
2014-05-31 18:54:34 -07:00
Jed Davis
1cac9a15d9 Bug 1014299 - Add times() to seccomp whitelist. r=kang
This system call seems to be used by some versions of the Qualcomm Adreno
graphics drivers when we run WebGL apps.
2014-06-02 14:52:00 +02:00
Sébastien Blin
6b33204ed4 Bug 1019722 - Remove a double assignment to lastRdn to fix a minor warning found by scan-build, the LLVM/Clang static analyzer. r=keeler 2014-06-02 20:16:14 +02:00