wine/gecko
0
0
Fork 0
mirror of https://gitlab.winehq.org/wine/wine-gecko.git synced 2024-09-13 09:24:08 -07:00
Code Issues Packages Projects Releases Wiki Activity
207,383 Commits 1 Branch 166 Tags 1.2 GiB
e704d89de8
Commit Graph

2486 Commits

Author SHA1 Message Date
Brian Smith
3c6b23c907 Bug 1053620: Replaces uses of PR_Abort with std::abort in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 2e1f3eec5305e89bfa28fbda856b4e36515a2819
 2014-08-04 19:12:34 -07:00
Brian Smith
a88a48f1d9 Bug 1053617: Reduce scope of DER encoding debugging logic to the file it is used in, r=keeler 
--HG--
extra : rebase_source : c22f7e96dfdd1997626769ac03c6d189321eec1a
 2014-08-04 19:07:26 -07:00
Brian Smith
dff4bec65a Bug 1053616: Remove uses of PR_SetError from mozilla::pkix tests, r=keeler 
--HG--
extra : rebase_source : 1fc7ce9ab400c39e3c4afb68940be93cc2a0b848
 2014-08-13 17:50:42 -07:00
Cykesiopka
6a3e20c777 Bug 1052257 - Add and use error code specific to inadequate key sizes. r=keeler 2014-08-12 22:24:00 -04:00
Jed Davis
212cc5b860 No bug - Add trailing newlines for non-Android Linux sandbox logging. r=kang 
--HG--
extra : rebase_source : c0e936b62289c0e5eecad41fce9afac881fe4667
 2014-08-14 15:39:14 -07:00
David Keeler
843f8bbee8 bug 1030963 - remove non-standard window.crypto functions/properties r=jst r=briansmith r=glandium 2014-08-14 09:38:42 -07:00
Brian Smith
216d7d38fa Bug 1048642, Part 3: Remove SECStatus GTest utilities, r=cviecco 
--HG--
extra : rebase_source : f77202ad8d271604d7620cc5f704a51338c356ab
 2014-08-03 22:45:05 -07:00
Brian Smith
ea4ed53367 Bug 1048642, Part 2: Change GenerateKeyPair return type from SECStatus to Result, r=cviecco 
--HG--
extra : rebase_source : 652277e952d224175ea57d4509124ff8180440cb
 2014-08-04 10:59:21 -07:00
Brian Smith
d5d44c4e2a Bug 1048642, Part 1: Change TamperOnce return type from SECStatus to Result, r=cviecco 
--HG--
extra : rebase_source : 1d2e8014153d8bfc6f9008dd9b6b9e4d5ac5dcb7
 2014-08-03 22:49:10 -07:00
Kai Engert
c5e02a5354 Bug 1049006 - Update Mozilla 33 to use NSS 3.17 final and NSPR 4.10.7 final, r=wtc 2014-08-13 21:47:00 +02:00
Jed Davis
66d1734f54 Bug 1043733 - Require sandboxing to load Gecko Media Plugins on Linux. r=jesup r=kang 
Also refactors how sandbox support and disabling are handled, and allows
simulating a lack of sandbox support with an env var (for testing
without rebuilding a kernel).
 2014-08-12 21:28:27 -07:00
David Keeler
2ee3959bc7 bug 1040446 - mozilla::pkix: add error code for CA cert used as end-entity cert r=briansmith 2014-08-11 12:35:45 -07:00
Brian Smith
8c9ce89101 Bug 1048070, Part 2: Remove uses of PR_NOT_REACHED and PR_ARRAY_SIZE in mozilla::pkix, r=keeeler 
--HG--
extra : rebase_source : d373a7526c1048770bed8bacb7e14c8f10e832cb
 2014-08-03 18:24:35 -07:00
Brian Smith
f5ad3ac382 Bug 1048070, Part 1: Replace uses of PR_ASSERT in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 3f1dbb4babb6d575bde3088c92aeb6f28d689210
 2014-08-02 09:17:59 -07:00
Brian Smith
b1f7e52f48 Bug 1042479: Accept the OIW sha1WithRSASignature OID, r=keeler 
--HG--
extra : rebase_source : 98dfbf1b5130898604e86c54ad4a8453aa87bde4
 2014-08-04 16:34:47 -07:00
Patrick McManus
49861055d6 bug 1040323 - SecureBrowserUI needs to consider scheme, not just security of connection r=dkeeler 2014-07-28 14:37:41 -04:00
Ryan VanderMeulen
db9cc2a062 Merge inbound to m-c. a=merge 2014-08-09 11:19:46 -04:00
ffxbld
c1e28f2f77 No bug, Automated HPKP preload list update from host bld-linux64-spot-011 - a=hpkp-update 2014-08-09 03:14:42 -07:00
ffxbld
458edb90f7 No bug, Automated HSTS preload list update from host bld-linux64-spot-011 - a=hsts-update 2014-08-09 03:14:40 -07:00
Wes Kocher
ea2ca055ae Merge m-c to inbound on a CLOSED TREE 2014-08-08 14:15:34 -07:00
Steven Michaud
d67d41563b Bug 1012949 - Sandbox the OpenH264 plugin for Mac r=rjesup,areinald,ted a=PatchNeedsToLandToday 2014-08-08 11:55:22 -05:00
J. Ryan Stinnett
1b2191be57 Bug 1040130 - Allow specifying a client cert for sockets. r=keeler, r=mcmanus 2014-08-07 16:32:00 -04:00
Nicholas Nethercote
8c60d14a1a Bug 1050009 - Initialize pldhash tables with a length, not a capacity. r=roc. 
* * *
imported patch rm-dummy-params

--HG--
extra : rebase_source : c25987eb11bae197218d5fc53b77def19afa36ac
 2014-08-06 06:31:21 -07:00
Georgios Kontaxis
94fb6d585f Bug 1048643: extended nsDocShell with flags to indicate tracking protection status (similar to mixed content blocked/loaded status) 2014-08-07 13:35:03 -07:00
David Keeler
5b64bd9042 Bug 1036546 - Soft-disable proprietary window.crypto functions via the pref dom.unsafe_legacy_crypto.enabled. r=smaug 2014-08-05 10:48:24 -07:00
Mike Hommey
0f4c5d9244 Bug 1047267 - Move remaining OS_LIBS and EXTRA_LIBS to moz.build. r=gps 
* * *
Bug 1047267 - To fold with "Move remaining OS_LIBS and EXTRA_LIBS to moz.build"
 2014-08-07 14:21:03 +09:00
Mike Hommey
790fddf2bc Bug 1049281 - Move third-party build system "drivers" to config/external, and stop using static dirs. r=gps 
--HG--
rename : intl/icu/Makefile.in => config/external/icu/Makefile.in
rename : config/nspr/Makefile.in => config/external/nspr/Makefile.in
rename : config/nspr/moz.build => config/external/nspr/moz.build
rename : security/build/Makefile.in => config/external/nss/Makefile.in
rename : security/build/moz.build => config/external/nss/moz.build
rename : security/build/nspr-dummy.def => config/external/nss/nspr-dummy.def
rename : security/build/nss.def => config/external/nss/nss.def
rename : security/build/nss.mk => config/external/nss/nss.mk
 2014-08-07 02:58:52 +09:00
Mike Hommey
855f2512fe Bug 1048993 - Use nsinstall from $(topobjdir)/config instead of $(DIST)/bin to avoid races when make wants to reinstall it for some reason. r=mshal 2014-08-07 02:58:50 +09:00
Nathan Froyd
7d196c1018 Bug 1042226 - move DEFINES += -DAB_CD=$(AB_CD) pattern into config.mk; r=mshal 2014-08-01 12:53:05 -04:00
Monica Chew
99125bd7ad Bug 1047560: Enable pinning on dropbox (r=keeler) 2014-08-01 13:12:38 -07:00
Mike Hommey
ec54bf6c1f Bug 1045783 - Move most OS_LIBS to moz.build and do some related cleanup. r=mshal 2014-08-06 07:25:33 +09:00
Kai Engert
0a20f9f9da Bug 1049006 - Update Mozilla to use NSS 3.17, r=wtc 2014-08-05 22:22:19 +02:00
Ehsan Akhgari
8d232f5b1b Bug 579517 follow-up: Remove NSPR types that crept in 2014-08-08 08:39:07 -04:00
Martin Thomson
b7cd6fe9d1 Bug 996237 - Fix nss.def for Android/B2G. r=wtc 2014-08-04 11:51:00 -04:00
Ehsan Akhgari
7207465c1b Bug 1047782 - Fix some bad impliciit constructors in netwerk/; r=mcmanus 2014-08-05 09:20:50 -04:00
Jed Davis
b55b89b5b5 Bug 1047620 - Fix sandboxing for B2G --disable-jemalloc builds. r=kang 
--HG--
extra : rebase_source : 1b2ec6491277a9dc451ab767d8563076cf522c27
 2014-08-04 15:11:33 -07:00
Jed Davis
7bab545482 Bug 1012951 - Add Linux sandboxing for GeckoMediaPlugin processes. r=kang r=ted 
--HG--
extra : rebase_source : 1b890000d5b8d2a8954cdd1118a1023eba829c29
 2014-08-04 15:11:18 -07:00
Jed Davis
54f805e8b9 Bug 1046541 - Use stdio for non-Android Linux sandbox error messages. r=kang 
--HG--
extra : rebase_source : e93a4a76f8188d715886e263a366d694c28b4525
 2014-08-04 15:11:04 -07:00
Eric Rahm
0e0bb45c16 Bug 1047176 - Part 1: Disable warning C4640 in certverifier. r=keeler 
--HG--
extra : rebase_source : a608f8704f57312902b05258ff53a4d1f2010cbc
 2014-08-04 11:29:25 -07:00
Patrick McManus
49dc4df69c bug 1027720 - enforce h2 requirement that sever uses aead r=hurley r=dkeeler 2014-08-04 16:54:10 -04:00
Ed Morley
f332657b91 Backed out changeset fa05c69d7de1 (bug 996237) 2014-08-04 15:34:15 +01:00
Martin Thomson
956130d07e Bug 996237 - Fix nss.def for Android/B2G. r=wtc 2014-08-01 14:44:00 -04:00
Ed Morley
70fd63dbf8 Backed out changeset 972daa5dd3c5 (bug 1027720) for build failures 2014-08-04 14:33:14 +01:00
Patrick McManus
14ff8aa315 bug 1027720 - enforce h2 requirement that sever uses aead r=hurley r=dkeeler 2014-08-01 16:59:00 -04:00
Ed Morley
070f2d591a Merge mozilla-central and inbound 2014-08-04 12:23:28 +01:00
Ed Morley
9d59f296b7 Backed out changeset cabe3163d4bc (bug 1047560) for conflicting with the automated HPKP preload list update 2014-08-04 12:22:36 +01:00
Ed Morley
e9d2f903a0 Merge latest green b2g-inbound changeset and mozilla-central; a=merge 2014-08-04 12:13:23 +01:00
ffxbld
25c551edb5 No bug, Automated HPKP preload list update from host bld-linux64-spot-075 - a=hpkp-update 2014-08-02 03:22:22 -07:00
ffxbld
39929f0b5e No bug, Automated HSTS preload list update from host bld-linux64-spot-075 - a=hsts-update 2014-08-02 03:22:20 -07:00
Bob Owen
4b8f00253c Bug 1045646 - Part 2: Replace AutoPushJSContext in nsCryptoRunnable::Run. r=bholley 2014-08-01 09:00:58 +01:00
Brian Smith
0441bbeeef Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler 
--HG--
extra : rebase_source : 2cc39d3c322c1355aad003f2497659a091febac2
 2014-08-02 08:49:12 -07:00
Brian Smith
1b48468046 Bug 1047792: Rely on mozilla::pkix to filter out expired certs instead of CERT_CreateSubjectCertList, r=keeler 
--HG--
extra : rebase_source : 5182147037b69f0ac3c3cd060d6e2af71bfde2e7
 2014-08-01 23:16:21 -07:00
Brian Smith
f56b3e7407 Bug 1041344: Refactor mozilla::pkix::CheckCertificatePolicies, r=cviecco 
--HG--
extra : rebase_source : d40184b986e9c6ed44c0b39a485292a91f924f13
 2014-07-19 18:51:10 -07:00
Monica Chew
25d32d07f3 Bug 1047560: Enable pinning on dropbox (r=keeler) 2014-08-01 13:12:38 -07:00
Jed Davis
b31eafbe86 Bug 1046525 - Allow get{e,}gid and sched_{g,s}etparam in sandboxed content processes. r=kang 
Some of these were already in the desktop whitelist; those duplicates
are removed.

--HG--
extra : amend_source : 3ab4b50e3f1980b4d7b93cc17f34b926e2aa2396
 2014-08-01 15:05:44 -07:00
Brian Smith
6fd326c0c2 Bug 1041186, Part 3: More renaming, r=keeler 
--HG--
extra : rebase_source : e4d70240f25f566c3bde91d515739bf46853fe8d
 2014-07-31 20:55:52 -07:00
Brian Smith
c0428247ef Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler 
--HG--
extra : rebase_source : bf57a9eb6ae5c122912e00a47156010e5ea99478
 2014-07-31 12:17:31 -07:00
Brian Smith
e3aee85ed9 Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 0f4a33f2c66594930ba9c79233648c70e33ba27c
 2014-07-18 22:30:51 -07:00
Brian Smith
7417889c50 Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco 
--HG--
extra : rebase_source : d5c07dc29a95ccb75a7a8f199de26d43950b9ed4
 2014-07-20 11:06:26 -07:00
Brian Smith
0da7cb4337 Bug 1039601: Use bounds-checked DERArray instead of plain arrays in pkixocsp.cpp, r=cviecco 
--HG--
extra : rebase_source : cbe6257fc470069de0f7cb4f9f169550980a6b98
 2014-07-16 09:54:10 -07:00
Brian Smith
8d436cc99b Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler 
--HG--
extra : rebase_source : 4f3e41916cd7e2c74679d468eeeb702af3321532
 2014-07-18 11:48:49 -07:00
Nathan Froyd
9ea6c585f8 Bug 1042878 - part 2 - move MOZ_CAIRO_CFLAGS et al additions to C*FLAGS into moz.build; r=glandium 2014-07-24 11:55:33 -04:00
Andrew McCreight
e07ffa6f70 Bug 1029151 - Remove dangerous public destructor of nsNSSCertificate. r=keeler 2014-07-30 13:00:29 -07:00
Andrew McCreight
b0d567103a Bug 1029150 - Remove dangerous public destructor of nsCryptoRunnable. r=keeler 2014-07-30 13:00:29 -07:00
Ed Morley
433e593c8c Backed out changeset d50d7e88f35e (bug 1012951) for LSan failures 2014-07-30 16:49:43 +01:00
Jed Davis
ac97af274c Bug 1012951 - Sandbox GMP plugins on Linux using seccomp-bpf. r=kang r=ted 2014-07-29 15:31:12 -07:00
Ehsan Akhgari
38ec6af068 Bug 1045436 - Fix more bad implicit constructors in XPCOM; r=froydnj 2014-07-29 20:43:56 -04:00
Mike Hommey
90e6ca0914 Bug 1043865 - Remove the remainder of compilation bits from the libs tier. r=gps 2014-07-29 08:59:27 +09:00
Mike Hommey
cc5c6d1ecc Bug 1043862 - Make the binaries target use the compile tier. r=gps 2014-07-29 08:58:28 +09:00
Mike Hommey
1e79fe55c2 Bug 1043802 - Remove TOOLS_DIRS and TEST_TOOLS_DIRS. r=gps 2014-07-29 08:55:55 +09:00
Carsten "Tomcat" Book
e337b5b7eb merge mozilla-inbound to mozilla-central a=merge 2014-07-28 15:32:36 +02:00
ffxbld
3b2ce275a6 No bug, Automated HPKP preload list update from host b-linux64-ix-0010 - a=hpkp-update 2014-07-26 03:16:45 -07:00
ffxbld
9516130581 No bug, Automated HSTS preload list update from host b-linux64-ix-0010 - a=hsts-update 2014-07-26 03:16:43 -07:00
Jed Davis
4f62652919 Bug 1017393 - Record rejected syscall number in crash dump. r=kang 2014-07-24 11:36:00 +02:00
David Keeler
be17e2782a bug 1040889 - don't re-cache OCSP server failures if no fetch was attempted r=briansmith r=cviecco 
--HG--
extra : rebase_source : e00c84e62ecca3e97794d3ceafcd1f5f618045d1
 2014-07-25 16:59:22 -07:00
Mike Hommey
dbad84b131 Bug 1043344 - Move libraries and programs build to the compile tier. r=gps 2014-07-25 07:14:40 +09:00
Jeff Walden
c07e58085e Bug 1037100 - Remove all use of ScopedDeleteArray from miscellaneous places. r=jcranmer 
--HG--
extra : rebase_source : 937557b819742ee62e10a4afa6c5152b910cd8b2
 2014-07-10 20:37:40 -07:00
Alexandre Poirot
5a3800bc64 Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files; fix previous bustage on a CLOSED TREE, r=ahal 2014-07-02 15:40:56 -07:00
Brian Smith
dab038ab36 Bug 1041730: Remove unused parameters from PublicKeyPinningService, r=cviecco 
--HG--
extra : rebase_source : 6a091a32ab5178899fc1f9ceb57614f4a87f25c3
 2014-07-21 19:18:31 -07:00
Brian Smith
6b8a8a8eb7 Bug 1039031: Print name of server in TLS/OCSP tests, r=cviecco 
--HG--
extra : rebase_source : 4d5ae2bdd920f29c6f820b6daf035ddb12406b12
 2014-07-15 16:58:31 -07:00
Marco Castelluccio
c38f173ebb Bug 1021345 - Allow apps to be installed from the Marketplace staging server. r=fabrice 2014-07-23 13:20:25 +02:00
Mike Hommey
ad9b49263a Bug 1041936 part 2 - Directly use the static library "xul" to link into "xul-gtest" instead of having an intermediate library "xul" used by "xul-shared" and "xul-gtest". r=gps 2014-07-23 13:33:09 +09:00
Mike Hommey
71623acdd6 Bug 1036894 part 9 - Replace all EXTRA_DSO_LDOPTS, SHARED_LIBRARY_LIBS and LIBS with EXTRA_LIBS, OS_LIBS or OS_LDFLAGS, appropriately. r=gps 
OS_LIBS for libraries that are not part of the gecko tree, EXTRA_LIBS for
libraries, such as NSPR, that are in the tree, but are not handled by
moz.build just yet. Those EXTRA_LIBS may also come from a system library.
However, in cases where the expanded variables are always empty for the
in-tree case, OS_LIBS is used (as for, e.g. MOZ_ZLIB_LIBS). OS_LDFLAGS is
used exclusively for non-library linker flags.

Always pass EXTRA_LIBS before OS_LIBS on linker command lines.

Forbid EXTRA_DSO_LDOPTS, SHARED_LIBRARY_LIBS and LIBS in Makefiles.
 2014-07-23 13:31:02 +09:00
Mike Hommey
e5c43ef995 Bug 1036894 part 8 - Move most in-tree library linkage information to moz.build, as USE_LIBS. r=gps 2014-07-23 13:30:52 +09:00
Mike Hommey
90c742edc2 Bug 1036894 part 6 - Emit SimplePrograms for CPP_UNIT_TESTs, and make the corresponding moz.build config look like that of SIMPLE_PROGRAMS. r=gps 2014-07-23 13:29:44 +09:00
Mike Hommey
31cd528278 Bug 1036894 part 1 - Move MAKE_FRAMEWORK, SDK_LIBRARY, SHARED_LIBRARY_NAME and STATIC_LIBRARY_NAME to moz.build. r=gps 
At the same time, make the Library data more useful in the build frontend.
 2014-07-23 13:29:09 +09:00
Wes Kocher
3ffa891f7d Merge m-c to inbound 2014-07-22 18:39:17 -07:00
Jonathan Griffin
efbbf73c27 Backed out changeset 64586374a208 on a CLOSED TREE 2014-07-22 18:29:57 -07:00
Jim Mathies
fe50a84be0 Bug 948574 - Provide limited access to nsISiteSecurityService apis in the child, and prevent the direct creation of nsISiteSecurityService. r=bz, sr=ptheriault, original author: David Keeler <dkeeler@mozilla.com> 2014-07-22 07:17:45 -05:00
Ehsan Akhgari
c7a033be8e Bug 1041325 - Use intrin.h for _ReturnAddress in the chromium sandbox code; r=bbondy 
--HG--
extra : rebase_source : 06bb642636a9f3df2e75eb950816a7d48da85faf
 2014-07-20 19:05:44 -04:00
Ehsan Akhgari
9b1a4d8138 Backed out changeset 4b792c35d0be (bug 1041325) because of build bustage 2014-07-20 19:19:05 -04:00
Ehsan Akhgari
16367b70ab Bug 1041325 - Use intrin.h for _ReturnAddress in the chromium sandbox code; r=bbondy 2014-07-20 19:05:44 -04:00
Ryan VanderMeulen
ff865012d8 Merge m-c to inbound. a=merge 2014-07-20 15:14:23 -04:00
ffxbld
9b268f3bb8 No bug, Automated HPKP preload list update from host bld-linux64-spot-477 - a=hpkp-update 2014-07-19 03:17:35 -07:00
ffxbld
cbb9460772 No bug, Automated HSTS preload list update from host bld-linux64-spot-477 - a=hsts-update 2014-07-19 03:17:32 -07:00
Alexandre Poirot
09c66c2ebd Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files; fix previous bustage on a CLOSED TREE, r=ahal 2014-07-02 15:40:56 -07:00
Jonathan Griffin
0cd20a2c49 Backout 4f6d9db92389 for bustage on a CLOSED TREE 2014-07-22 17:55:50 -07:00
Mike Hommey
b99bba5c3f Bug 1041864 - Remove LIBRARY_NAMEs that aren't used. r=mshal 2014-07-23 08:39:56 +09:00
Alexandre Poirot
c044256760 Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files. r=ahal 2014-07-02 15:40:56 -07:00
Camilo Viecco
1cf5856cb9 Bug 1004353 - Enable pinning for TOR websites. r=mmc 
--HG--
extra : rebase_source : d880368dd9eaaafcde353ce187438ae074994bfa
 2014-07-22 14:28:52 -07:00
Jed Davis
1cdd0d8544 Bug 1037211 - Remove MOZ_CONTENT_SANDBOX_REPORTER by making it always true. r=kang r=ted 
--HG--
extra : amend_source : 450d51dab077794e194bf407044de95627de0cde
 2014-07-17 14:57:28 -07:00
Richard Barnes
9058c6eba3 Bug 1034852 - Add support for AES-KW to WebCrypto API r=keeler 2014-07-19 07:04:00 -05:00
Richard Barnes
a978414e83 Bug 1025230 - Allow import/export of JWK-formatted keys in WebCrypto r=bz,keeler 2014-07-19 08:25:00 -05:00
Makoto Kato
12c0753107 Bug 984033 - Large OOM in nsStreamLoader::WriteSegmentFun. r=honza 2014-07-17 17:37:33 +09:00
Jed Davis
285d65221e Bug 1038900 - Dynamically allocate signal number for sandbox startup. r=kang 2014-07-16 13:37:00 +02:00
Tim Abraldes
2271b8aa31 bug 985252. Build sandbox code regardless of whether --enable-content-sandbox/MOZ_CONTENT_SANDBOX is provided. Enable sandboxing of GMP plugins. Enable SandboxBroker to set different security policies for different process types. r=bbondy, r=cpearce, r=bent 2014-07-16 16:01:34 -07:00
Wan-Teh Chang
971754ce50 Bug 1025729: Update NSS to NSS_3_17_BETA1. 
Also includes fixes for bug 836658, bug 1026148, bug 1028582, bug 920719.
 2014-07-16 14:26:11 -07:00
Cykesiopka
70596433c6 Bug 360126 - OCSP Delegated Responder Test. r=briansmith 2014-07-15 19:51:00 -04:00
Cykesiopka
2863e90900 Bug 360126 - Main tests. r=cviecco 2014-07-15 19:50:00 -04:00
Cykesiopka
65dfa136df Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith 2014-07-15 19:49:00 -04:00
Bob Owen
4f4b3629bb Bug 1035275 - Remove unused base Chromium code. r=bbondy 2014-07-07 13:59:11 +01:00
Brian Smith
e3618bd35b Bug 1038837: Factor out mozilla::pkix::Input into a separate header, r=mmc 
--HG--
rename : security/pkix/lib/pkixder.h => security/pkix/include/pkix/Input.h
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : 09bac0a183932f721cdfd32936595867e4dc26ce
 2014-07-13 13:17:36 -07:00
Brian Smith
7b3263e6c9 Bug 1038828: Replace mozilla::pkix::der::Result with uses of mozilla::pkix::Result, r=mmc 
--HG--
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : e385af4bab665627aa5d434db04830065cbc641f
 2014-07-15 10:33:49 -07:00
Jed Davis
ad5a014572 Bug 1038490 - Fix misuse of MOZ_WIDGET_GONK in Linux content process sandbox policy. r=kang 
--HG--
extra : amend_source : 0a7fe8ca751b59102cbc23316b18982268306423
 2014-07-14 18:35:56 -07:00
Jed Davis
ada7d21572 Bug 1038486 - Fix Linux desktop seccomp sandbox build on 32-bit x86. r=kang 
--HG--
extra : amend_source : 130d2cbd485734997739ea96ac5d83c01899d8b0
 2014-07-09 16:52:56 -07:00
Brian Smith
bc7b3b4b4c Bug 916629, Part 4: Unit tests for trust of delegated OCSP responder certificates for mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : c473285add9faee9a876677404935bdc253832cb
 2014-07-10 21:20:17 -07:00
Brian Smith
1beed22447 Bug 916629, Part 3: Unit tests for OCSP responses signed by a delegated OCSP responder for mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : c2c78458aa674dcc1e1426a0efc81df19b73ac4f
 2014-07-10 22:14:57 -07:00
Brian Smith
ba1f6e4228 Bug 916629, Part 2: Unit tests for "successful" OCSP responses for mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 14633119755cbfd55fc3bfef9cf482de3d638b53
 2014-07-15 10:09:26 -07:00
Brian Smith
e367b4a22f Bug 916629, Part 1: Unit tests for OCSP responses without responseBytes, r=keeler 
--HG--
extra : rebase_source : 62ef4209745ff8f2c5a852beb1a9823cbe7c7ff4
 2014-07-14 23:09:36 -07:00
jvoisin
7c10650a8f Bug 1035786 - Fix namespace bug in Linux sandbox LOG_ERROR macro. r=jld 2014-07-08 05:53:00 +01:00
Jed Davis
d9856e93b1 Bug 1035786 - Avoid warning-as-error sandbox build failure with an explicit cast. r=gdestuynder 
getpid() is never negative, so this is safe.
 2014-07-10 17:37:45 -07:00
Bob Owen
218decde34 Bug 1035786 - Fix member variable initialisation order in LogMessage stub in Linux Sandbox.cpp. r=jld 2014-07-09 12:32:49 +01:00
Tim Taubert
ca2ba72632 Bug 1026398 - Add support for RSA-OAEP to WebCrypto API r=rbarnes,bz,dkeeler 
* * *
Bug 1026398 - Add RSA-OAEP tests r=rbarnes
 2014-07-14 18:33:12 -07:00
Brian Smith
46bdbab7f8 Bug 1038098: Save intermediate certificates during TLS handshake, r=keeler 
--HG--
extra : rebase_source : 99e2551e78bc8eac91174e5320c15623ede26642
extra : histedit_source : c4af1c24b95b1b3c8a86d06575645b6ffc5308a6
 2014-07-14 16:43:33 -07:00
Brian Smith
8fd4eed261 Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : dd8dc1243ea2e37955a15f2481e1c452311e90d8
extra : histedit_source : adc1a2035d41c608d3f0ebe14bba159b2857502d
 2014-07-06 19:36:05 -07:00
Brian Smith
ac8cb082e7 Bug 1036107, Part 2: Test algorithm identifier parsing, r=keeler 
--HG--
extra : rebase_source : c800d42856d81ba8cceaadde0caa98477b3008f4
extra : histedit_source : 71305fa34b435450525ae3a3e603aef065eaec14
 2014-07-10 18:30:58 -07:00
Brian Smith
16a3da199e Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 94c49062ae3ddf755651f151e2d648543b10e1ad
extra : histedit_source : a7377bf1d9adb62e1c584e2adeb793aa074245fb
 2014-07-10 19:00:32 -07:00
Birunthan Mohanathas
a3b4387964 Bug 1038417 - Convert tabs to spaces in moz.build files. r=gps 2014-07-14 15:58:10 -07:00
Monica Chew
c611beb0e3 Bug 1020485: Enable production mode for fxa (r=keeler) 2014-07-14 13:06:25 -07:00
Carsten "Tomcat" Book
845c7a4d1b merge mozilla-inbound to mozilla-central a=merge 2014-07-14 14:34:36 +02:00
ffxbld
6abb482be9 No bug, Automated HPKP preload list update from host bld-linux64-spot-135 - a=hpkp-update 2014-07-12 03:13:54 -07:00
ffxbld
d7e396dc18 No bug, Automated HSTS preload list update from host bld-linux64-spot-135 - a=hsts-update 2014-07-12 03:13:52 -07:00
Ryan VanderMeulen
27a0fdf6de Merge inbound to m-c. a=merge 2014-07-11 16:34:56 -04:00
ffxbld
2489cb2f72 No bug, Automated HPKP preload list update from host bld-linux64-spot-1092 - a=hpkp-update 2014-07-11 06:19:00 -07:00
ffxbld
3b8181f62d No bug, Automated HSTS preload list update from host bld-linux64-spot-1092 - a=hsts-update 2014-07-11 06:18:58 -07:00
Ed Morley
d847619d99 Backed out changeset 5460c4558253 (bug 1026398) for test_WebCrypto.html timeouts on B2G; CLOSED TREE 2014-07-11 17:01:44 +01:00
Mike Hommey
07267c6f7f Bug 1036864 - Remove EXPORT_LIBRARY. r=mshal 2014-07-11 19:06:55 +09:00
Brian Smith
66d7df7a7b Bug 1036765: Disable cipher suites that are not in the "Browser Cipher Suite" proposal that are still enabled, r=keeler 
--HG--
extra : rebase_source : af06ac8fe6c2132b942ca4a1a50a12505b3ca508
extra : histedit_source : 2127635c80fbff235136980990993e753509e802
 2014-07-09 18:33:38 -07:00
Harsh Pathak
0f97085326 Bug 1036080 - Fix addCertFromBase64() to update trust bits of existing permanent certificates. r=keeler 2014-07-10 11:38:00 +02:00
Richard Barnes
293d38e687 Bug 1021607 - Add support for PBKDF2 to WebCrypto API. r=bz 
0001 - Introduce BasicSymmetricKeyAlgorithm r=rbarnes
0002 - Implement import key operation for PBKDF2 r=bz,rbarnes
0003 - Introduce MapAlgorithmNameToMechanism() r=rbarnes
0004 - Implement derive bits operation for PBKDF2 r=rbarnes,keeler,bz
0005 - Introduce GetKeySizeForAlgorithm() r=rbarnes
0006 - Implement derive keys operation for PBKDF2 r=rbarnes,bz
 2014-07-12 20:06:00 +02:00
Richard Barnes
1011dd627f Bug 1026398 - Add support for RSA-OAEP to WebCrypto API. r=bz,dkeeler 2014-07-10 13:44:00 +02:00
Nathan Yee
da5b38f868 Bug 1006671 - Remove unnecessary JSContext argument to nsContentUtils::GetContentSecurityPolicy. r=bholley 2014-07-10 19:25:00 +02:00
Monica Chew
7e4c6f1d21 Bug 1036142: Don't use kPublicKeyPinningPreloadListLength (r=keeler) 2014-07-09 12:58:40 -07:00
Brian Smith
53e0350589 Bug 1035942: Decide whether to consider end-entity CN as a dnsName in CheckNameConstraints instead of in BuildCertChain, r=cviecco 
--HG--
extra : rebase_source : 19c5949253e4e631b0bd841f17f000885001b327
extra : histedit_source : dce57eb862a2a13d07d11fdf6917afcf6cb4136c
 2014-07-08 13:04:17 -07:00
Brian Smith
d66c74e652 Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : fc2b39e5e2b44fea365914e83a7d1f2dc9b784bc
extra : histedit_source : b40e5e8cb106fe87f6f065b01ca43adb0bf3a605
 2014-07-06 15:55:38 -07:00
Mike Shal
fb0a8cf672 Bug 1036569 - Fix NSS_STATIC_LIBS with carriage return on Windows; r=glandium 2014-07-09 14:38:29 -04:00
Camilo Viecco
07061b97ea Bug 1030204 - 2/2 Tests for Name constraints for ANSSI(DCISS) Root cert in psm. r=keeler 
--HG--
extra : rebase_source : 0b64f7206446a8c414df5b0f4a9653f0180b8b44
 2014-07-08 16:16:22 -07:00
Camilo Viecco
863d637d5c Bug 1030204 - 1/2 Name constraint ANSSI(DCISS) Root cert in mozilla::pkix. r=keeler 
--HG--
extra : rebase_source : 221ca75af601649731bf83cace2e6b0edcd4b2ab
 2014-07-08 16:16:26 -07:00
Monica Chew
085607a75a Bug 1035923: Remove deprecated certs from google_root_pems (r=keeler) 2014-07-08 16:01:29 -07:00
Benoit Jacob
539a8b5902 Bug 1035394 - Fix dangerous public destructors in security/ - r=bsmith 2014-07-08 17:23:18 -04:00
Camilo Viecco
6ce12bd4a1 Bug 827264 - Add some temporary android logging to nss. r=blassey 
--HG--
extra : rebase_source : 8f16d6b6cbaed2ef51fb5d1ecf7edbb0b8568ffe
 2014-06-27 13:55:11 -07:00
Chris Peterson
65da3b81ed Bug 1035607 - Remove unused empty_null to fix -Wunused warning-as-error in security/pkix. r=briansmith 2014-07-07 20:37:21 -07:00
Brian Smith
8d65effbf6 Bug 1035470: Use signature algorithm OID instead of digest algorithm OID in the signature field of certificates in mozilla::pkix tests, r=cviecco 
--HG--
extra : rebase_source : 99b1d5c0739221e90d4b04738f9362135f42a23c
 2014-07-07 00:46:10 -07:00
David Keeler
247c6dfcfe bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith 2014-07-07 15:33:24 -07:00
Brian Smith
876b584f49 Bug 1035008, Part 2: Modify existing mozilla::pkix GTests to follow naming conventions, r=mmc 
--HG--
rename : security/pkix/test/gtest/pkix_cert_chain_length_tests.cpp => security/pkix/test/gtest/pkixbuild_tests.cpp
rename : security/pkix/test/gtest/pkix_cert_extension_tests.cpp => security/pkix/test/gtest/pkixcert_extension_tests.cpp
rename : security/pkix/test/gtest/pkix_ocsp_request_tests.cpp => security/pkix/test/gtest/pkixocsp_CreateEncodedOCSPRequest_tests.cpp
extra : rebase_source : 05035197c37cd2fecf0c6e2f5231eeabfd4f64fd
extra : histedit_source : db050cf69b025e34e992a68b8b57665608c6a3d9
 2014-07-05 22:14:25 -07:00
Brian Smith
c178453b72 Bug 1035008, Part 1: Document naming convention for mozilla::pkix GTests, r=mmc 
--HG--
extra : rebase_source : 8239f56513d8aba59eb8851bd219295fb6920b64
extra : histedit_source : 90856c24e66c7cc451c65cfd72a005cb2949085a
 2014-07-06 15:59:08 -07:00
Brian Smith
358b82e03b Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc 
--HG--
extra : rebase_source : 68e6da2f1e1c7fa678ef4cc81d23cc6298709108
extra : histedit_source : feba4c589dbf004ee50e2dea1fca0809f8f97674
 2014-07-03 21:49:56 -07:00
Brian Smith
0c6544f1f0 Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler 
--HG--
extra : rebase_source : e8c734ecb2de2c52dd8909c8b48f4bdb09d0128e
 2014-07-02 16:15:16 -07:00
Brian Smith
f13fdc263c Bug 1033563, Part 2: Convert mozilla::pkix::BuildForwardInner into an iterator-type thing, r=keeler 
--HG--
extra : rebase_source : 175e308191441035db4f3eed4a855205bab1a3f3
 2014-07-02 15:03:58 -07:00
Brian Smith
f628a48e8e Bug 1033563, Part 1: Move revocation checking code from mozilla::pkix::BuildForward to BuildForwardInner, r=keeler 
--HG--
extra : rebase_source : 0f11eb64ffb00d953c39d81f4877067bd173eadd
 2014-07-02 12:21:41 -07:00
Brian Smith
549189d132 Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler 
--HG--
extra : rebase_source : e093922497d005734c590a59f175993a7715bce8
 2014-07-03 16:59:42 -07:00
Brian Smith
f58287e30a Bug 1035034: Fix typo in CertVerifier, r=cviecco 
--HG--
extra : rebase_source : b8871ee8cf1e156ef48d363ea49e8b82ab268d98
 2014-07-06 19:15:13 -07:00
Monica Chew
9e4228ecad Bug 1027133: Set test_mode=false for *.twitter.com (r=keeler) 2014-07-07 08:58:13 -07:00
Jan de Mooij
3c7459b21a Bug 1034191 - Make nsDependentJSString users work with Latin1 strings and nursery-allocated strings. r=bz 2014-07-05 17:30:54 +02:00
Brian Smith
66ce2813a7 Bug 1029247, Part 1: Add new overload to mozilla::pkix::bind, r=keeler 
--HG--
extra : rebase_source : 7a9dc499ed6ad038e4840953744a9fcd6578290b
 2014-06-21 18:06:30 -07:00
Brian Smith
f1d1e65aca Bug 1034634: Improve ScopedNSSTypes.h to compile without warnings, r=mmc 
--HG--
extra : rebase_source : a9cbc1ab3083f1e893552c49a4518453f3b7d1b7
 2014-07-03 20:40:46 -07:00
Brian Smith
d35cdc1555 Bug 1034632: Fix suppression of warnings for MOZILLA_PKIX_ENUM_CLASS, r=mmc 
--HG--
extra : rebase_source : 962fa75dab803f1d139096fa5d41b4b656e32f86
 2014-07-03 20:41:07 -07:00
Brian Smith
840e9d16c9 Bug 1034412: Clarify definition of mozilla::pkix::der::SEQUENCE, r=mmc 
--HG--
extra : rebase_source : 3e139a66133c1d7916fbc13c7cec2b12e9545122
 2014-06-30 21:58:34 -07:00
Zack Weinberg
1998b1670b Bug 234856: add automated test case (fixed by bug 235230). r=kaie 2014-07-04 12:22:32 -04:00
Marco Castelluccio
c56414d138 Bug 1029674 - Fix installation of apps with custom origin. r=myk,keeler 
--HG--
rename : toolkit/webapps/tests/test_packaged_launch.xul => toolkit/webapps/tests/test_custom_origin.xul
 2014-07-04 15:23:16 +02:00
Harsh Pathak
fffec87019 Bug 643041 - Merge nsIX509Cert2 and nsIX509Cert3 into nsIX509Cert, and merge nsIX509CertDB2 into nsIX509CertDB. r=keeler 
--HG--
extra : rebase_source : 5283c637e45dbee9f741d56cda54fdef1afce16e
 2014-07-03 22:09:24 -07:00
Brian Smith
eabf3ca82e Bug 1019770: Add tests for checking of notAfter and notBefore, r=cviecco 
--HG--
extra : rebase_source : 614e002886ffa73e7e38218ebb3ea2509edcd1a4
 2014-06-30 19:12:35 -07:00
Monica Chew
92f36e6b6f Bug 1033872: Split off api.accounts.firefox.com into a separate pinset (r=keeler) 2014-07-03 16:41:57 -07:00
Kai Engert
b03f02387d Bug 1029561, Update to NSS 3.16.3 after July 1st to include root CA updates, r=rrelyea 2014-07-03 17:24:18 +02:00
Jed Davis
dd6575be07 Bug 956961 - Stop disabling sandboxing when DMD is enabled. r=kang 
--HG--
extra : rebase_source : 4737cfd613c1ddee8e1a4340e819eddc151e73f7
extra : histedit_source : 2d2610a775a3ae986157f61ef3797f4e88baa922
 2014-07-02 11:28:48 -07:00
Brian Smith
747d5ce9c9 Bug 1033103: Add and use mozilla::pkix::der::ExpectTagAndGetTLV, r=keeler 
--HG--
extra : rebase_source : 16461be12705998799f5c84e2043d68b0c431cb0
 2014-07-01 13:25:43 -07:00
Brian Smith
f98c380254 Bug 1033092: Add unit tests for mozilla::pkix::der::ExpectTagAndGetValue, r=keeler 
--HG--
extra : rebase_source : 8ad8960969e5ee5bf47054f1c285a85cbbdb18cf
 2014-07-01 16:28:45 -07:00
Wes Kocher
929077356e Backed out changeset 5206957b4f83 (bug 940506) for build bustage on a CLOSED TREE 2014-07-02 18:15:55 -07:00
Wes Kocher
20f50977c0 Merge m-c to inbound 2014-07-02 17:44:20 -07:00
Wes Kocher
6b3e1ca139 Merge inbound to m-c a=merge 2014-07-02 16:31:17 -07:00
David Keeler
51b554fb6a bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith 2014-07-02 11:15:26 -07:00
ffxbld
48104012ec No bug, Automated HPKP preload list update from host b-linux64-hp-0034 - a=hpkp-update 2014-07-02 10:05:51 -07:00
ffxbld
50c4cd24ee No bug, Automated HSTS preload list update from host b-linux64-hp-0034 - a=hsts-update 2014-07-02 10:05:48 -07:00
Wes Kocher
f174cd042e Backed out 3 changesets (bug 956961) for non-unified build bustage 
Backed out changeset f1be89cb58b9 (bug 956961)
Backed out changeset 272b01e4f856 (bug 956961)
Backed out changeset 56907af18c66 (bug 956961)
 2014-07-02 15:03:29 -07:00
Brian Smith
0c5e4c3465 Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler 
--HG--
extra : rebase_source : d0bf802f4ff3fe9900ed7444c046617aa27faea9
 2014-06-26 14:22:20 -07:00
Brian Smith
26dc5a975e Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco 
--HG--
extra : rebase_source : f38fd90973b4bdf2cff5887c7d48f7e7b2a7126b
 2014-07-01 18:01:28 -07:00
Brian Smith
35167f7fb2 Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco 
--HG--
extra : rebase_source : fe0b6f06a374dd1e50233c352031e6fdbde1c5f9
 2014-06-24 10:51:53 -07:00
Brian Smith
ffb9b0ea05 Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco 
--HG--
extra : rebase_source : 2b1fa83599c4d0748757b25b56f65e10d41504c8
 2014-06-24 21:48:12 -07:00
Brian Smith
c0edfa6daf Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler 
--HG--
extra : rebase_source : 22eaa4fbeb20d9b9524d550c1979f5ec27d963ac
 2014-06-29 15:15:45 -07:00
Wes Kocher
af7ae55f0c Backed out changeset 6728977a3687 (bug 1031952) to fix bustage on a CLOSED TREE 2014-07-01 17:44:18 -07:00
Wes Kocher
e94fb2297d Backed out changeset 5ea9b7bd2db5 (bug 1019770) 2014-07-01 17:43:47 -07:00
Wes Kocher
e28f2353af Backed out changeset 981f8345edd8 (bug 1019770) 2014-07-01 17:43:43 -07:00
Wes Kocher
f8ac718627 Backed out changeset 91b03a644dbe (bug 1019770) 2014-07-01 17:43:38 -07:00
Wes Kocher
33290e8d10 Backed out changeset f97578949399 (bug 1032947) 2014-07-01 17:43:33 -07:00
Brian Smith
215f38b298 Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler 
--HG--
extra : rebase_source : 64bd4c390f708213242e0d4987b7117b0049d02a
 2014-06-26 14:22:20 -07:00
Brian Smith
98aa2aa582 Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco 
--HG--
extra : rebase_source : 5e8171a2a849d61866ccdff33f06d96f04fc4bd5
 2014-06-30 17:11:56 -07:00
Brian Smith
8480ae43f4 Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco 
--HG--
extra : rebase_source : 8c891cc5269482d1ccf4c1c688e5576a2b8864f8
 2014-06-24 10:51:53 -07:00
Brian Smith
7d84462b7b Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco 
--HG--
extra : rebase_source : 05e348b4ae9bb88fdd0895ec5dcec55993ca17c4
 2014-06-24 21:48:12 -07:00
Brian Smith
e9bc359f89 Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler 
--HG--
extra : rebase_source : 92ccc85ffe5db10649242d8796daecc6833ca14a
 2014-06-29 15:15:45 -07:00
Monica Chew
9afcf9b174 Bug 1012875: Expire pins in 8 weeks once they reach stable (r=keeler) 2014-07-02 11:34:04 -07:00