wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
282,788 Commits 1 Branch 166 Tags 1.2 GiB
e128e82c8e
Commit Graph

3648 Commits

Author SHA1 Message Date
simplyblue
964cc276c9 Bug 1241646 - remove unused token arguments from nsIX509CertDB r=keeler 2016-01-30 13:50:58 +05:30
Kai Engert
60413c234e Bug 1244062, NSPR_4_12_BETA2, and Bug 1245053, NSS_3_23_BETA2 2016-02-02 11:50:47 +01:00
Bob Owen
4f68f5682b Bug 1173371 Part 2: Change Chromium sandbox to allow rules for files on network drives to be added. a=aklotz 2016-02-01 08:59:00 +00:00
Bob Owen
09e1c980e1 Bug 1173371 Part 1: Take Chromium commit 0e49d029d5a1a25d971880b9e44d67ac70b31a80 for sandbox code. r=aklotz 
From Chromium commit comment:
Sandbox: Add support for file system policies that use implied device paths.

A policy rule of the form \HarddiskVolume0\Foo\bar allows sandboxed code
to use \\.\HarddiskVolume0\Foo\bar directly.
 2016-02-01 08:59:00 +00:00
Mark Goodwin
8fd1c92167 Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler 
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
 2016-01-30 08:07:38 +00:00
Kyle Huey
94f653c385 Bug 1241764: Replace nsPIDOMWindow with nsPIDOMWindowInner/Outer. r=mrbkap,smaug 2016-01-30 09:05:36 -08:00
Wes Kocher
0d8c068131 Backed out 2 changesets (bug 1241821) for android build bustage CLOSED TREE 
Backed out changeset ae7246d654c8 (bug 1241821)
Backed out changeset bdecb787f1a2 (bug 1241821)
 2016-01-29 14:57:27 -08:00
Wes Kocher
0dbf70741f Followup to Bug 1241821 - ESLint fix 2016-01-29 14:36:13 -08:00
Mark Goodwin
8bbe983427 Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler 
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
 2016-01-29 13:45:17 +00:00
Wes Kocher
e140c5c85c Backed out changeset 7ec471c99263 (bug 1219482) to hopefully fix the intermittent hazard failures CLOSED TREE 2016-01-29 10:15:34 -08:00
Kai Engert
227ee955a9 Bug 1228410, land NSS_3_22_RTM, r=nss-confcall 2016-01-29 12:16:10 +01:00
Bill McCloskey
8916b1d998 Bug 1240871 - Don't allow implicit "async" in IPDL (r=mccr8,billm) 2016-01-28 20:56:37 -08:00
sajitk
aa19e7110d Bug 1219482 - Replace PRLogModuleInfo with LazyLogModule in security subdirectory. r=froydnj 2016-01-28 10:36:00 -05:00
David Keeler
4c0510a13f bug 1242032 - change some pipnss logging output from Debug to Verbose r=Cykesiopka 
Logging output that happens with every TLS socket poll, read, or write
should really be Verbose, not Debug.
 2016-01-27 13:04:33 -08:00
David Keeler
e005138b30 bug 1241317 - gather telemetry on prevalence of FIPS r=jcj r=vladan 2016-01-21 11:22:12 -08:00
Carsten "Tomcat" Book
10715e4ef6 Merge mozilla-central to mozilla-inbound 2016-01-27 12:10:56 +01:00
Carsten "Tomcat" Book
45b3ce32b0 merge mozilla-inbound to mozilla-central a=merge 2016-01-27 11:59:49 +01:00
Cykesiopka
11df5f817c Bug 1242254 - Enable initial set of eslint rules for PSM. r=dkeeler 
These rules are copied from toolkit/.eslintrc (with non-passing rules excluded and previously commented out and passing rules included).
 2016-01-24 02:35:36 -08:00
Cykesiopka
1c640ed571 Bug 1232582 - Sort PSM xpcshell.ini and fix --tag psm to actually run all tests. r=keeler 2016-01-26 20:23:00 +01:00
Gijs Kruitbosch
0ab0d55754 Bug 1241614 - don't overflow:auto the container, use em to size the dialog to avoid hidpi visibility issues, r=dolske,ttaubert 2016-01-22 11:18:54 +00:00
Kai Engert
3502fd5cd1 Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall 2016-01-25 16:14:18 +01:00
Cykesiopka
85b97e8e23 Bug 1235089 - Split out OCSP Must Staple tests from test_ocsp_stapling.js to avoid intermittent time outs. r=keeler 
test_ocsp_stapling.js can take ~290s to run on e.g. b2g-emu-x86-kk, which is very close to the default 300s limit.
Splitting out some tests should reduce the intermittent time outs.
 2016-01-24 02:24:00 -05:00
Phil Ringnalda
5b3c533797 Merge m-i to m-c, a=merge 2016-01-23 17:42:50 -08:00
ffxbld
a1e5e28378 No bug, Automated HPKP preload list update from host bld-linux64-spot-309 - a=hpkp-update 2016-01-23 04:36:34 -08:00
ffxbld
a3d598471e No bug, Automated HSTS preload list update from host bld-linux64-spot-309 - a=hsts-update 2016-01-23 04:36:32 -08:00
Cykesiopka
dabbad20c7 Bug 1233328 - Part 2: Use SHA-256 StaticFingerprints directly instead of StaticPinset since the SHA-1 StaticFingerprints entry will always be null. r=keeler 2016-01-20 20:45:29 -08:00
Cykesiopka
1681c20e98 Bug 1233328 - Part 1: Ignore SHA-1 pins in PublicKeyPinningService.cpp. r=keeler 2016-01-20 20:40:01 -08:00
Sylvestre Ledru
14ec5bc735 Bug 1218816 - Remove useless semicolons. Found by coccinelle. r=Ehsan 2016-01-22 16:58:49 +01:00
David Keeler
da78a4c1e5 bug 1240173 - improve nsIX509Cert.dbKey r=Cykesiopka 2016-01-15 14:33:56 -08:00
David Keeler
b148041aa0 bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 
Before this patch, we were measuring where SHA-1 was being used in TLS
certificates: nowhere, in end-entities, in intermediates, or in both. However,
the possible SHA-1 policies don't differentiate between end-entities and
intermediates and instead depended on whether or not each certificate has a
notBefore value after 2015 (i.e. >= 0:00:00 1 January 2016 UTC). We need to
gather telemetry on the possible policy configurations.
 2016-01-13 12:50:42 -08:00
David Keeler
4db6ac86e6 bug 1239609 - audit nsNSSShutDownObject destructors for correctness r=Cykesiopka,sworkman 2016-01-22 14:49:39 -08:00
Patrick McManus
20437ce530 Bug 1240168 - weak_crypto test assumed blocking semantics from main thread r=keeler 2016-01-15 15:30:20 -05:00
Tim Taubert
8fa3f8ac39 Bug 1191936 - Implement RSA-PSS signing and verification r=rbarnes,smaug 2015-10-13 20:22:43 +02:00
Ryan VanderMeulen
c8d5c7eec8 Merge inbound to m-c. a=merge 2016-01-17 14:37:29 -05:00
ffxbld
0f45208a7e No bug, Automated HPKP preload list update from host bld-linux64-spot-439 - a=hpkp-update 2016-01-16 04:03:46 -08:00
ffxbld
17bbbc2074 No bug, Automated HSTS preload list update from host bld-linux64-spot-439 - a=hsts-update 2016-01-16 04:03:44 -08:00
Jan de Mooij
7bc551b91f Bug 1237232 - Properly check the result of Vector append() calls in security/. r=keeler 2016-01-13 22:05:08 +01:00
David Keeler
44456277d9 bug 1232766 - update the preloaded pinset for Google domains r=rbarnes 
Also includes a script for making this process faster in the future.
 2015-12-28 12:30:14 -08:00
Chris Peterson
6c29d61f36 Bug 1235188 - Fix -Wformat warnings in security/certverifier/. r=keeler 
security/certverifier/NSSCertDBTrustDomain.cpp:433:26 [-Wformat] format specifies type 'long' but the argument has underlying type 'int'
security/certverifier/NSSCertDBTrustDomain.cpp:433:48 [-Wformat] format specifies type 'long long' but the argument has type 'mozilla::pkix::Time'
 2015-12-28 18:41:54 -07:00
ffxbld
96f100ba52 No bug, Automated HPKP preload list update from host bld-linux64-spot-506 - a=hpkp-update 2016-01-09 04:38:50 -08:00
ffxbld
6ef8b4c625 No bug, Automated HSTS preload list update from host bld-linux64-spot-506 - a=hsts-update 2016-01-09 04:38:48 -08:00
Shu-yu Guo
f2f1b10394 Bug 1220564 - Update chrome code uses of genexprs and legacy comprehensions. (r=billm) 2016-01-06 16:02:16 -08:00
David Keeler
8046507c00 bug 1230377 - part 2/2: simplify nsIKeyObject and nsIKeyObjectFactory r=jcj 
nsIKeyObject and nsIKeyObjectFactory defined an interface that was largely
unimplemented. This cuts the interface back to what actually exists in code.
 2015-12-04 10:36:51 -08:00
David Keeler
5055ffc98a bug 1230377 - part 1/2: ensure nsKeyObject releases NSS resources on shutdown r=jcj 2015-12-03 16:22:34 -08:00
Ehsan Akhgari
d46f7de5c6 Bug 1214305 - Part 10: Clean up global DataStorage references in the child process; r=keeler 2016-01-04 16:30:02 -05:00
ffxbld
e1624fefcf No bug, Automated HPKP preload list update from host bld-linux64-spot-389 - a=hpkp-update 2016-01-02 04:05:33 -08:00
ffxbld
af8c9be897 No bug, Automated HSTS preload list update from host bld-linux64-spot-389 - a=hsts-update 2016-01-02 04:05:31 -08:00
Chris Peterson
2c32eb8528 Bug 1235308 - Fix -Wimplicit-fallthrough warnings in security/. r=keeler 
security/certverifier/NSSCertDBTrustDomain.cpp:282:5 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
security/manager/ssl/nsNSSComponent.cpp:149:3 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
security/manager/ssl/nsSecureBrowserUIImpl.cpp:1406:5 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
 2015-12-25 00:03:35 -07:00
ffxbld
72274d0faf No bug, Automated HPKP preload list update from host bld-linux64-spot-593 - a=hpkp-update 2015-12-26 04:05:29 -08:00
ffxbld
f7db1ac230 No bug, Automated HSTS preload list update from host bld-linux64-spot-593 - a=hsts-update 2015-12-26 04:05:27 -08:00