Mark Capella
4666038a24
Bug 712936 - Convert users of PR_STATIC_ASSERT to MOZ_STATIC_ASSERT. r=jwalden
2012-04-02 17:21:24 -07:00
Steve Workman
078c2208d5
Bug 682244 - Change CRL autoupdate pref from formatted date to integer. sr=bsmith r=kaie
2012-03-23 15:12:48 -07:00
Kai Engert
ff45f86f4f
Bug 681937, Enhance PSM's key generation strategy with tokens/escrow, r=rrelyea
2012-03-21 23:22:15 +01:00
Kai Engert
2a8b3dd0bf
Bug 673381, patch v3 for NSPR/NSS versions in about:support, make build time minimum NSPR/NSS versions available to JS, r=rrelyea
2012-03-13 00:04:35 +01:00
Justin Lebar
064e2cf3f9
Bug 729940 - Part 2: Stop using crappy hash functions in Gecko. r=bz
...
--HG--
extra : rebase_source : 6fa267a89878cc1a766d8618569debcea9b12e48
2012-03-12 18:53:18 -04:00
Kai Engert
c31cb0817e
Bug 732390, Add preference to configure acceptance of MD5 in signatures, still accept by default, NSS calls r+=rrelyea, PSM pref code r+=honzab, pref name feedback+=dveditz
2012-03-10 22:18:13 +01:00
Igor Bukanov
f0bddf0e88
bug 728250 - remove JSPrincipals::codebase. r=:luke,:bz
...
In just 2 cases where JSPrincipals::codebase is used it can be reconstructed from the values stored in the associated nsJSPrincipal. In addition the patch makes nsJSprincipals to inherit both from nsIPrincipal and JSPrincipals allowing to use static_cast to convert between nsIPrincipal and JSPrincipals pointers and to drop many cases of manual JSPrincipal reference counting.
2012-03-09 10:48:50 +01:00
Wan-Teh Chang
83b6360b4a
Bug 732317 - Fix bugs in the code for displaying a certificate's issuerUniqueID and subjectUniqueID. r=kaie
2012-03-08 18:48:44 -05:00
Kai Engert
b13c74fa13
Bug 673381, first part, allow to to query NSPR/NSS library version numbers from JS, r=honzab
2012-03-01 17:29:48 +01:00
Bas Schouten
be63948579
Bug 725552 - Part 1: Turn MutexAutoLock into a template with specializations. r=cjones
2012-02-16 04:11:34 +01:00
Nathan Froyd
f21ac239c3
Bug 700659 - Slay nsHashSets in security. r=kaie
2011-11-08 15:24:09 -05:00
Atul Aggarwal
80acff567d
Bug 703178 - Fixing Wunused-but-set-variable warning in security/manager/ssl/src. r=kaie
...
--HG--
extra : rebase_source : a2fba6e6728fdc0381b6f5cd4d6d5df247307206
2012-02-21 23:09:58 +05:30
Neil Deakin
36ff9c0df5
Bug 499008, part 3, remove nsIDOMNSEvent::tmpRealOriginalTarget, r=smaug
2012-02-17 09:16:59 -05:00
Brian Smith
6224f9906a
Bug 710176, Part 3: Abort the connection during send or recv when we time out assuming TLS intolerance, r=kaie
2012-02-13 16:18:48 -08:00
Brian Smith
58b944227e
Bug 713934: Update SetCertVerificationResult to use SSL_AuthCertificateComplete, r=honzab
2012-02-13 16:18:28 -08:00
Geoff Lankow
c4d2ef72bf
Bug 718255 - Merge nsIPrefBranch2 with nsIPrefBranch - Part G, remove remaining uses of nsIPrefBranch2; r=bsmedberg
2012-01-18 23:23:28 +13:00
Igor Bukanov
748c9f34a7
bug 724310 - drop cx argument from JSObject field and fixed slots infallible API. r=:Waldo
...
--HG--
extra : rebase_source : b78519db2ff008eb5143676d2db47935f0e89f45
2012-02-05 21:07:23 +01:00
Igor Bukanov
38fe4ed717
backout merge for bug 724310. r=irc
2012-02-09 21:28:22 +01:00
Igor Bukanov
e4e3433d0c
bug 723517 - drop cx argument from JSObject field and fixed slots infallible API. r=:Waldo
...
--HG--
extra : rebase_source : c461dfc0e0e0462ab262cc01c2a771d3bb0971cc
2012-02-05 21:07:23 +01:00
Brian Smith
d374a04d69
Bug 712363, Part 5: Add back synchronous cert validation for Thunderbird, r=honzab
2012-01-31 08:05:11 -08:00
Brian Smith
8c37521583
Bug 712363, Part 4: Split the creation of CertErrorRunnable from the dispatching of it, r=honzab
2012-01-31 08:05:06 -08:00
Brian Smith
76d81b957e
Bug 712363, Part 3: Correct the documentation of how threading works, r=honzab
2012-01-31 08:05:02 -08:00
Brian Smith
eaf84600a1
Bug 712363, Part 2: Move CertErrorRunnable, SSLServerCertVerificationResult, and HandleBadCertificate to SSLServerCertVerification.cpp, r=honzab
2012-01-31 08:04:57 -08:00
Honza Bambas
457582786d
Bug 712363, Part 1: Make SyncRunnableBase work without deadlocking when run on the main thread, r=honzab
2012-01-31 08:04:53 -08:00
Brian Smith
8252ce8593
Bug 716636, Part 2: Fix cert authentication lock reentrence, r=honzab
2012-01-31 05:19:52 -08:00
Brian Smith
47be1f8f9c
Bug 716636, Part 1: Fix TLS toleraance lock reentrence, r=honzab
2012-01-31 05:19:25 -08:00
Brian Smith
ed1f53fc9d
Bug 710176, Part 1: Do not do TLS intolerance timeout during cert validation, r=honzab
2012-01-31 04:23:42 -08:00
Mike Hommey
259a566ae5
Bug 712579 - Load nssckbi from the location of nss3. r=kaie
2011-12-27 18:11:17 +01:00
Jeff Walden
5d0d2b2e73
Bug 711647 - Add MOZ_DELETE to a bunch of deliberately-not-implemented methods across the tree. r=dbaron
...
--HG--
extra : rebase_source : 507006c0f099da6851b585d2062267d285978ad7
2011-12-16 14:42:07 -05:00
Patrick McManus
1b25aa0168
bug 631801 - workaround pr_available() assert r=honzab sr=biesi r=bsmith
2011-12-20 15:14:54 -05:00
Kai Engert
4f31bf6664
Bug 661681 - Enable A-Trust-nQual-03 root certificate for EV in PSM
...
r=honzab
2011-12-18 16:08:38 +01:00
Patrick McManus
3ba70e69a9
bug 528288 - reland spdy after libxul weightloss a=khuey CLOSED TREE
2011-12-13 10:55:50 -05:00
Ed Morley
dd38904e41
Backout SPDY to keep us under the MSVC virtual address space limit during win PGO builds (bug 709193)
...
Backs out 952d14a9e508 (bug 707173), c170c678c9ac (bug 708305), 0a5f66d5d8e4 (bug 707662), 3204b70435fe (bug 706236) and the main landing range 48807fde0339:0bd45ead1676 (bug 528288).
2011-12-10 22:36:26 +00:00
Honza Bambas
e950abfddf
Bug 703024 - Back out bug 662996 (OCSP requests leak cookies) because of bug 701019, r=bsmith
2011-12-06 12:16:16 +01:00
Patrick McManus
79aaa35fb5
bug 528288 - spdy don't coalesce onto connections that have used client certs and don't send client certs from connections that have been joined r=bsmith sr=honzab
...
patch 19
2011-12-02 10:30:16 -05:00
Patrick McManus
ac80bfadf7
bug 528288 spdy - nsisslsocketcontrol::mayjoinconnection() r=honzab r=bsmith sr=honzab sr=biesi
...
patch 17
2011-12-02 10:28:57 -05:00
Patrick McManus
69e082c5ad
bug 528288 - disallow spdy from http created in nsNSSCallbacks to avoid OSCP/CRL loops with alternate-protocol sr=biesi r=honzab
...
patch 15
2011-12-02 10:28:57 -05:00
Patrick McManus
1be1b4fd14
bug 528288 - spdy - disallow server cert changes through renegotiation when using spdy r=bsmith sr=honzab
...
patch 13
2011-12-02 10:28:57 -05:00
Patrick McManus
65d9f31933
bug 528288 spdy - only coalesce (i.e. ip pool) hostnames with compatible ssl certs sr=biesi r=honzab r=bsmith
...
patch 9
2011-12-02 10:28:57 -05:00
Patrick McManus
82c9bf6d8e
bug 528222 Basic SPDY web transport support. r=honzab r=bsmith sr=biesi
...
patch 0
2011-12-02 10:28:56 -05:00
Brian Smith
b8838b211d
Bug 674147 (Remove the SSL Thread) Part 2: Everything else, r=honzab
2011-12-01 14:37:57 -08:00
Brian Smith
aee6d31135
Bug 674147 (Remove the SSL Thread) Part 1: Move certificate validation code to new file, preserving history, r=honzab
...
--HG--
rename : security/manager/ssl/src/nsNSSCallbacks.cpp => security/manager/ssl/src/SSLServerCertVerification.cpp
2011-12-01 14:37:23 -08:00
Brian Smith
356e23eb7f
Bug 703508: Make nsNSSSocketInfo::GetErrorMessage() lazily format the error message, r=honzab
2011-12-01 14:36:41 -08:00
Olli Pettay
fdb741699d
Bug 698929 - Implement event.stopImmediatePropagation, r=jst
...
--HG--
extra : rebase_source : 76d19175a58a4ac8113b144a19f9d7679ad54dd0
2011-11-04 19:17:19 +02:00
Brian Smith
dea2432024
Bug 675221: Remove XPCOM proxy header #includes from PSM, r=kaie
2011-11-02 21:17:54 -07:00
Brian Smith
56d0f35c7c
Bug 675221: Notify observers of PSM's background threads on the main thread, r=kaie
2011-11-02 21:14:33 -07:00
Benjamin Smedberg
e31950332a
Bug 675702: Call nsICertVerificationListener on the main thread, rev. 1, r=bsmith, r=mayhemer
2011-11-02 21:06:51 -07:00
Brian Smith
6b17e10db1
Bug 675221: Remove XPCOM Proxies from PSM UI prompts, r=kaie
2011-11-02 21:02:48 -07:00
Brian Smith
a32be92ce5
Bug 675221: Remove XPCOM Proxies from nsNSSSocketInfo::GetPreviousCert, r=mayhemer
2011-11-02 21:01:47 -07:00
Brian Smith
c1eb7360a3
Bug 698983: Fix extended validation indicator, r=mayhemer
2011-11-02 20:59:56 -07:00