Commit Graph

792 Commits

Author SHA1 Message Date
Brian Smith
e8bc45b0bd Bug 712363, Part 5: Add back synchronous cert validation for Thunderbird, r=honzab 2012-01-31 08:05:11 -08:00
Brian Smith
18ca355d46 Bug 712363, Part 4: Split the creation of CertErrorRunnable from the dispatching of it, r=honzab 2012-01-31 08:05:06 -08:00
Brian Smith
58f39daec5 Bug 712363, Part 3: Correct the documentation of how threading works, r=honzab 2012-01-31 08:05:02 -08:00
Brian Smith
90228141cd Bug 712363, Part 2: Move CertErrorRunnable, SSLServerCertVerificationResult, and HandleBadCertificate to SSLServerCertVerification.cpp, r=honzab 2012-01-31 08:04:57 -08:00
Honza Bambas
4eec804aae Bug 712363, Part 1: Make SyncRunnableBase work without deadlocking when run on the main thread, r=honzab 2012-01-31 08:04:53 -08:00
Brian Smith
9afea7b820 Bug 716636, Part 2: Fix cert authentication lock reentrence, r=honzab 2012-01-31 05:19:52 -08:00
Brian Smith
63e61f7ddf Bug 716636, Part 1: Fix TLS toleraance lock reentrence, r=honzab 2012-01-31 05:19:25 -08:00
Brian Smith
37aba7feac Bug 710176, Part 2: Import ssl_Poll fix from bug 542832, r=kaie 2012-01-31 04:24:16 -08:00
Brian Smith
9526ec8c86 Bug 710176, Part 1: Do not do TLS intolerance timeout during cert validation, r=honzab 2012-01-31 04:23:42 -08:00
Mike Hommey
cbcc9ee1f5 Bug 717906 - Enable NSS lowhash API so that Mozilla builds work on Fedora. r=rrelyea 2012-01-19 08:19:48 +01:00
Mike Hommey
80f48f8b67 Bug 717906 - Allow to enable NSS lowhash API without requiring FREEBL_NO_DEPEND. r=rrelyea 2012-01-19 08:19:44 +01:00
Mike Hommey
e57c5d9515 Bug 712579 - Load nssckbi from the location of nss3. r=kaie 2011-12-27 18:11:17 +01:00
Mike Hommey
1f8a59e8a7 Bug 712284 - Remove dladdr hack for NSS on android. r=ted 2012-01-10 09:10:53 +01:00
Mike Hommey
ad5b853130 Bug 708570 - Make libfreebl depend on nspr. r=ted 2012-01-10 09:10:53 +01:00
Jeff Walden
841701c767 Bug 711647 - Add MOZ_DELETE to a bunch of deliberately-not-implemented methods across the tree. r=dbaron
--HG--
extra : rebase_source : 507006c0f099da6851b585d2062267d285978ad7
2011-12-16 14:42:07 -05:00
Patrick McManus
787708094c bug 631801 - workaround pr_available() assert r=honzab sr=biesi r=bsmith 2011-12-20 15:14:54 -05:00
Kai Engert
51ea2ad466 Bug 661681 - Enable A-Trust-nQual-03 root certificate for EV in PSM
r=honzab
2011-12-18 16:08:38 +01:00
Patrick McManus
2d124278c9 bug 528288 - reland spdy after libxul weightloss a=khuey CLOSED TREE 2011-12-13 10:55:50 -05:00
Ed Morley
160bed2536 Backout SPDY to keep us under the MSVC virtual address space limit during win PGO builds (bug 709193)
Backs out 952d14a9e508 (bug 707173), c170c678c9ac (bug 708305), 0a5f66d5d8e4 (bug 707662), 3204b70435fe (bug 706236) and the main landing range 48807fde0339:0bd45ead1676 (bug 528288).
2011-12-10 22:36:26 +00:00
Honza Bambas
2c160b4c7f Bug 703024 - Back out bug 662996 (OCSP requests leak cookies) because of bug 701019, r=bsmith 2011-12-06 12:16:16 +01:00
Patrick McManus
5b61a6d8df bug 528288 - spdy don't coalesce onto connections that have used client certs and don't send client certs from connections that have been joined r=bsmith sr=honzab
patch 19
2011-12-02 10:30:16 -05:00
Patrick McManus
da9a5434a6 bug 528288 spdy - nsisslsocketcontrol::mayjoinconnection() r=honzab r=bsmith sr=honzab sr=biesi
patch 17
2011-12-02 10:28:57 -05:00
Patrick McManus
db6da0efcf bug 528288 - disallow spdy from http created in nsNSSCallbacks to avoid OSCP/CRL loops with alternate-protocol sr=biesi r=honzab
patch 15
2011-12-02 10:28:57 -05:00
Patrick McManus
c6aa24c4c9 bug 528288 - spdy - disallow server cert changes through renegotiation when using spdy r=bsmith sr=honzab
patch 13
2011-12-02 10:28:57 -05:00
Patrick McManus
86482de5c9 bug 528288 spdy - only coalesce (i.e. ip pool) hostnames with compatible ssl certs sr=biesi r=honzab r=bsmith
patch 9
2011-12-02 10:28:57 -05:00
Patrick McManus
ce94c7ff4d bug 528222 Basic SPDY web transport support. r=honzab r=bsmith sr=biesi
patch 0
2011-12-02 10:28:56 -05:00
Brian Smith
3a9ab8c22c Bug 674147 (Remove the SSL Thread) Part 2: Everything else, r=honzab 2011-12-01 14:37:57 -08:00
Brian Smith
331cf8f88a Bug 674147 (Remove the SSL Thread) Part 1: Move certificate validation code to new file, preserving history, r=honzab
--HG--
rename : security/manager/ssl/src/nsNSSCallbacks.cpp => security/manager/ssl/src/SSLServerCertVerification.cpp
2011-12-01 14:37:23 -08:00
Brian Smith
1995227db2 Bug 703508: Make nsNSSSocketInfo::GetErrorMessage() lazily format the error message, r=honzab 2011-12-01 14:36:41 -08:00
Brian Smith
5d6af04289 Bug 698552: Add SSL_RestartAfterAuthCertificate to mozilla-central's copy of NSS_3_13_2_BETA1, r=kaie, r=honzab 2011-12-01 14:33:37 -08:00
Brian Smith
51e20dd1d1 Bug 698552: Update to NSS 3.13.2 BETA1 (NSS_3_13_2_BETA1), r=kaie, r=honzab 2011-12-01 14:27:28 -08:00
Michael Wu
3e0835d415 Bug 694206 - Add Gonk (B2G) widget backend, r=cjones 2011-11-10 16:17:46 -08:00
Oonishi Atsushi
ebc58fb880 Bug 311007 - Add aFlags arg to onLocationChange(...), to distinguish between same-document and different-document. r=smaug, sr=bzbarsky 2011-11-10 15:01:11 +01:00
Ed Morley
6a998be2c5 Backout 4997c6f8b24d (bug 616542) for causing locally run mochitest-browser-chrome test runs to fail 2011-11-05 18:35:59 +00:00
Rail Aliiev
364e83c545 Bug 616542 - Shorten file path length of mochitest; r=ted 2011-11-04 21:13:42 +00:00
Marco Bonardo
c48ef6e9ea Merge mozilla-central to mozilla-inbound 2011-11-04 21:56:10 +01:00
Olli Pettay
e36091a737 Bug 698929 - Implement event.stopImmediatePropagation, r=jst
--HG--
extra : rebase_source : 76d19175a58a4ac8113b144a19f9d7679ad54dd0
2011-11-04 19:17:19 +02:00
Brian Smith
1c4e1ba16c Bug 675221: Remove XPCOM proxy header #includes from PSM, r=kaie 2011-11-02 21:17:54 -07:00
Brian Smith
31a61d3dbc Bug 675221: Notify observers of PSM's background threads on the main thread, r=kaie 2011-11-02 21:14:33 -07:00
Benjamin Smedberg
a56d8001e1 Bug 675702: Call nsICertVerificationListener on the main thread, rev. 1, r=bsmith, r=mayhemer 2011-11-02 21:06:51 -07:00
Brian Smith
2b427075da Bug 675221: Remove XPCOM Proxies from PSM UI prompts, r=kaie 2011-11-02 21:02:48 -07:00
Brian Smith
1b9d8e8f68 Bug 675221: Remove XPCOM Proxies from nsNSSSocketInfo::GetPreviousCert, r=mayhemer 2011-11-02 21:01:47 -07:00
Brian Smith
7dc0898df0 Bug 698983: Fix extended validation indicator, r=mayhemer 2011-11-02 20:59:56 -07:00
Brian Smith
8d03da7492 Bug 669061: Upgrade Mozilla to NSS 3.13.1, r=wtc
--HG--
extra : rebase_source : d43ffd0eae375aae83017b855859ef2bc78d30d6
2011-11-02 20:54:18 -07:00
Brian Smith
0a9bf5fc31 Bug 675702 - Remove XPCOM Proxies: Do PSM client certificate processing on the main thread, r=kaie
--HG--
extra : rebase_source : 810f54d98fdad7e70ed2d8db8b13292d1d1bfa61
2011-10-30 17:35:14 -07:00
Brian Smith
a43aa7b046 Bug 686248: Add isExtendedValidation to nsISSLStatus so it can be used by mobile, r=meyhemer
--HG--
extra : rebase_source : 6d21f2fdc3cb587874662cc23f84503e63b95ed1
2011-10-30 11:43:06 -07:00
Kai Engert
dabffacd7f Bug 698753, Distrust two Malaysian Sub-CAs. r=rrelyea 2011-11-04 20:01:14 +01:00
Wan-Teh Chang
ab03d01ce0 Bug 695833: Update NSS to NSS_3_13_1_BETA2. Includes fixes for
bug 647706 and bug 691997.  See individual bugs for code reviews.
2011-10-22 17:46:33 -07:00
Wan-Teh Chang
5376f19d06 Bug 695833: Update NSS to NSS_3_13_1_BETA1, which includes fixes for
bug 693228 and bug 694148.  See individual bugs for code reviews.
2011-10-19 14:31:23 -07:00
Brian Smith
03cac665c5 Bug 686150: Do not verify client certificates when they are being used for SSL client auth, r=honzab.moz 2011-10-17 17:04:09 -07:00