Tom Schuster
|
0cece61bf9
|
Bug 886752 - Show TLS/SSL version in page info dialog. r=dao
|
2014-10-24 13:53:35 +02:00 |
|
Tom Schuster
|
86fd344b7d
|
Bug 886752 - Add TLS version to SSLStatus and additional cleanup. r=keeler
|
2014-10-24 13:53:34 +02:00 |
|
Brian Smith
|
be86e7036f
|
Bug 1063281, Part 9: Switch Gecko from NSS to CheckCertHostname, r=keeler
--HG--
extra : rebase_source : 340eb682ba1f9dbd51652438433e7d0196494e1f
|
2014-09-21 17:43:29 -07:00 |
|
David Keeler
|
8102e18fce
|
backout f69fa3c13d1f (bug 1085509) for causing test_cert_overrides.js to fail
|
2014-10-23 11:50:17 -07:00 |
|
David Keeler
|
4b9df1c400
|
bug 1085509 - add telemetry for how many permanent certificate overrides users have r=mmc r=jcj
|
2014-10-23 10:10:57 -07:00 |
|
ffxbld
|
7e8f9e1287
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-1094 - a=hpkp-update
|
2014-10-22 14:02:48 -07:00 |
|
ffxbld
|
6a65858a36
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-1094 - a=hsts-update
|
2014-10-22 14:02:46 -07:00 |
|
David Keeler
|
e7bce8b740
|
bug 1083085 - update where getHSTSPreloadList.js and genHPKPStaticPins.js think Chromium's lists are r=mmc DONTBUILD NPOTB
|
2014-10-21 15:20:02 -07:00 |
|
Martin Thomson
|
bce23f254a
|
Bug 1083058 - Adding pref to control TLS version fallback, r=keeler
From af667978f8915e6ebfaf02f8967b3d320d409a24 Mon Sep 17 00:00:00 2001
---
netwerk/base/public/security-prefs.js | 1 +
security/manager/ssl/src/nsNSSIOLayer.cpp | 21 +++++-
security/manager/ssl/src/nsNSSIOLayer.h | 2 +
.../manager/ssl/tests/gtest/TLSIntoleranceTest.cpp | 76 +++++++++++++++++++---
4 files changed, 90 insertions(+), 10 deletions(-)
|
2014-10-02 16:36:48 -07:00 |
|
Carsten "Tomcat" Book
|
c34c839a9d
|
merge mozilla-inbound to mozilla-central a=merge
|
2014-10-20 14:34:56 +02:00 |
|
ffxbld
|
1b100cf67c
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-069 - a=hpkp-update
|
2014-10-18 03:18:53 -07:00 |
|
ffxbld
|
c7dfe52b9c
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-069 - a=hsts-update
|
2014-10-18 03:18:51 -07:00 |
|
Jim Mathies
|
d67a45d1db
|
Bug 1083325 - Gracefully deal with null ssl status when serializing/deserializing TransportSecurityInfo. r=dkeeler
|
2014-10-16 14:11:19 -05:00 |
|
Cykesiopka
|
da52458817
|
Bug 622859 - Tests for bug 622859. r=briansmith,keeler
|
2014-10-16 05:22:00 +02:00 |
|
Tanvi Vyas
|
de385a4c7d
|
Bug 418354 - update test for bug 455367. Insecure image loads should be considered mixed display content regardless of whether image data was actually returned. r=honzab
|
2014-10-18 13:21:23 -07:00 |
|
David Keeler
|
4a350b2635
|
bug 1042889 - test certificate overrides for untrusted x509v1 certificates used as CAs r=mmc
|
2014-10-15 10:42:13 -07:00 |
|
David Keeler
|
88b847b951
|
bug 1042889 - allow overrides for untrusted x509v1 certificates used as CAs r=mmc
|
2014-10-15 10:39:57 -07:00 |
|
David Keeler
|
53212f7804
|
bug 1042889 - use a separate error for untrusted x509v1 certificates used as CAs r=briansmith
|
2014-10-15 10:38:51 -07:00 |
|
Martin Thomson
|
bc8b199253
|
Bug 1076983 - Disabling SSL 3.0 with pref
|
2014-10-14 17:17:35 -07:00 |
|
Jon Morton
|
c559dd1ab0
|
Bug 979835: Port BoxObject and its subclasses to WebIDL. r=khuey sr=bz
--HG--
rename : layout/xul/nsIPopupBoxObject.idl => dom/webidl/PopupBoxObject.webidl
rename : layout/xul/tree/nsITreeBoxObject.idl => dom/webidl/TreeBoxObject.webidl
rename : layout/xul/nsBoxObject.cpp => layout/xul/BoxObject.cpp
rename : layout/xul/nsBoxObject.h => layout/xul/BoxObject.h
rename : layout/xul/nsListBoxObject.cpp => layout/xul/ListBoxObject.cpp
rename : layout/xul/nsMenuBoxObject.cpp => layout/xul/MenuBoxObject.cpp
rename : layout/xul/nsPopupBoxObject.cpp => layout/xul/PopupBoxObject.cpp
|
2014-10-14 13:15:21 -07:00 |
|
Mike Hommey
|
15f1451100
|
Bug 1080994 - Build libclearkey without a dependency on mozalloc or mozglue. r=dkeeler,r=cpearce
|
2014-10-14 07:13:25 +09:00 |
|
Sylvestre Ledru
|
b195bd8153
|
Bug 1081935 - Missing UUID bump. r=gavin a=me
|
2014-10-13 17:27:42 +02:00 |
|
Ryan VanderMeulen
|
22a114c180
|
Merge inbound to m-c. a=merge
|
2014-10-11 16:16:00 -04:00 |
|
ffxbld
|
51a28c3854
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-412 - a=hpkp-update
|
2014-10-11 03:18:06 -07:00 |
|
ffxbld
|
bb1a8f547e
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-412 - a=hsts-update
|
2014-10-11 03:18:03 -07:00 |
|
Stephen Pohl
|
af02c5db64
|
Bug 1077282: Cleanup uses of GreD vs GreBinD, introcuded by v2 signature changes on OSX. Based on initial patch by rstrong. r=bsmedberg
|
2014-10-10 15:06:57 -04:00 |
|
Patrick McManus
|
54f6387dd6
|
bug 1003448 - HTTP/2 Alternate Service and Opportunistic Security [1/2 PSM] r=keeler
|
2014-08-20 16:30:16 -04:00 |
|
Brian Smith
|
18375948d5
|
Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler
|
2014-10-05 17:18:11 -07:00 |
|
Carsten "Tomcat" Book
|
d7ae207a0f
|
Backed out changeset b885a82dc02a (bug 1078108) for breaking B2g ICS Builds
|
2014-10-10 09:01:45 +02:00 |
|
Brian Smith
|
2079cba797
|
Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler
--HG--
extra : rebase_source : 3115275b2b1c5337cbea0fd43a2221fcd54dadc1
extra : source : bb5694e268255b6549ccaaaddca74fbb83d4bda1
|
2014-10-05 17:18:11 -07:00 |
|
Eric Rahm
|
739ad6c34e
|
Bug 806819 - Part 4: Add files that were excluded from unified builds back in. r=ehsan
|
2014-10-08 13:19:14 -07:00 |
|
Eric Rahm
|
be71a0b71a
|
Bug 806819 - Part 3: Remove redundant FORCE_PR_LOG entries. r=ehsan
|
2014-10-08 13:17:32 -07:00 |
|
Brian Smith
|
4ae1f9d65b
|
Bug 1077859: Make ENCODING_FAILED safe to use in static initializers, r=mmc
--HG--
extra : rebase_source : f0483e775c6fefc256fc9527b1b1118086cc121f
|
2014-10-03 15:52:38 -07:00 |
|
Andrew Halberstadt
|
6fe6152e95
|
Bug 1066735 - Remove root b2g and android specific xpcshell manifests, r=chmanchester
|
2014-10-07 18:18:28 -04:00 |
|
David Keeler
|
b1ec84c2a7
|
bug 1077891 - update getHSTSPreloadList.js to reflect changes to nsISiteSecurityService r=mmc DONTBUILD NPOTB
|
2014-10-06 11:28:15 -07:00 |
|
Carsten "Tomcat" Book
|
0cda511c11
|
Backed out changeset 76000f9f12da (bug 1077859) for causing frequent Mac OSX XPCshell test failures
|
2014-10-07 12:53:42 +02:00 |
|
Brian Smith
|
271b89efa7
|
Bug 1077859: Make ENCODING_FAILED safe to use in static initializers, r=mmc
--HG--
extra : rebase_source : 78e1410ab6c94bd6b20a78208a2421db338aed94
|
2014-10-03 15:52:38 -07:00 |
|
Wes Kocher
|
5000218064
|
Backed out 5 changesets (bug 806819) for WinXP test failures on a CLOSED TREE
Backed out changeset 009ae35b0c67 (bug 806819)
Backed out changeset 5a57f87f5061 (bug 806819)
Backed out changeset f06cd735b5b3 (bug 806819)
Backed out changeset e25a2a8d4af4 (bug 806819)
Backed out changeset 70a167982c3f (bug 806819)
|
2014-10-06 16:32:50 -07:00 |
|
Eric Rahm
|
600bc87781
|
Bug 806819 - Part 4: Add files that were excluded from unified builds back in. r=ehsan
--HG--
extra : rebase_source : 49a3f57d94fc94702f1604175c4e206091b67197
|
2014-10-06 13:11:24 -07:00 |
|
Eric Rahm
|
4a41e11c21
|
Bug 806819 - Part 3: Remove redundant FORCE_PR_LOG entries. r=ehsan
--HG--
extra : rebase_source : c96eea1c12ea8c19314393f0e8b4b57a4316a61d
|
2014-10-06 13:08:20 -07:00 |
|
Neil Rashbrook
|
4e640c803d
|
Bug 1075976 Clean up XPCOM string usage r=keeler
|
2014-10-05 22:09:39 +01:00 |
|
Phil Ringnalda
|
918d6b75c9
|
Merge m-i to m-c, a=merge
|
2014-10-05 09:34:55 -07:00 |
|
Phil Ringnalda
|
17a64ccd9b
|
Backed out 2 changesets (bug 1003448) since their dependency was backed out
CLOSED TREE
Backed out changeset 61f98b1d29f9 (bug 1003448)
Backed out changeset 8e947d1636f1 (bug 1003448)
|
2014-10-04 20:10:19 -07:00 |
|
ffxbld
|
431f675f92
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-197 - a=hpkp-update
|
2014-10-04 03:19:30 -07:00 |
|
ffxbld
|
75dff16733
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-197 - a=hsts-update
|
2014-10-04 03:19:28 -07:00 |
|
Ryan VanderMeulen
|
6a176819f4
|
Backed out 3 changesets (bug 1076129, bug 1003448) for frequent xpcshell crashes on a CLOSED TREE.
Backed out changeset 3034162ee435 (bug 1003448)
Backed out changeset 086fe4b0ba14 (bug 1003448)
Backed out changeset 1babd65ebec7 (bug 1076129)
|
2014-10-02 15:53:21 -04:00 |
|
Patrick McManus
|
889702b1cc
|
bug 1003448 - HTTP/2 Alternate Service and Opportunistic Security [1/2 PSM] r=keeler
|
2014-08-20 16:30:16 -04:00 |
|
Martin Thomson
|
0f65e8939d
|
Bug 1072382 - Remove version intolerance marker on inappropriate_fallback alert, r=keeler
|
2014-10-02 10:03:30 -07:00 |
|
Carsten "Tomcat" Book
|
3d0ce0976d
|
merge fx-team to mozilla-central a=merge
|
2014-09-30 15:10:47 +02:00 |
|
Cykesiopka
|
fe6534baab
|
Bug 1073865 - Add missing SSL_ERROR l10n strings v1. r=dkeeler
|
2014-09-27 14:02:00 +02:00 |
|
Camilo Viecco
|
7caba5f564
|
Bug 787133 - (hpkp) Part 2/2. Tests r=keeler
|
2014-09-29 20:31:08 -07:00 |
|
Stephen Pohl
|
d16e3504d5
|
Mac v2 signing - Bug 1060562 - Update xpcshell-tests for the new v2 bundle structure on OSX. r=jmaher
|
2014-09-29 11:51:29 -07:00 |
|
ffxbld
|
5b68b0e1b2
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-046 - a=hpkp-update
|
2014-09-27 03:16:58 -07:00 |
|
ffxbld
|
83cf7b8500
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-046 - a=hsts-update
|
2014-09-27 03:16:56 -07:00 |
|
David Keeler
|
3e19283352
|
bug 1071308 - (1/2) rename pinning_enforcement_level to PinningMode for brevity r=cviecco
|
2014-09-25 11:08:36 -07:00 |
|
Camilo Viecco
|
3353899ecd
|
Bug 787133 - (hpkp) Part 1/2. Header Parsing and interface within PSM. r=keeler, r=mcmanus
|
2014-09-03 10:24:12 -07:00 |
|
Richard Barnes
|
60c48eb89d
|
Bug 1045973 - sec_error_extension_value_invalid: mozilla::pkix does not accept certificates with x509v3 extensions in x509v1 or x509v2 certificates r=keeler
|
2014-09-23 16:48:54 -04:00 |
|
Ehsan Akhgari
|
17d927530c
|
Fix more bad implicit constructors in security, blanket-rs=bsmith, no bug
|
2014-09-23 09:13:26 -04:00 |
|
Vlatko Markovic
|
081fef0a34
|
Bug 1059216 - Verification of Trusted Hosted Apps manifest signature, part 1. r=dkeeler,rlb
|
2014-09-22 07:58:59 -07:00 |
|
Robin Thunell
|
3b04dbe2e6
|
Bug 1059208 - Add scripts for signing manifest files of Trusted Hosted Apps r=dkeeler
|
2014-09-22 07:58:59 -07:00 |
|
ffxbld
|
57fd0ff0d0
|
No bug, Automated HPKP preload list update from host b-linux64-ix-0007 - a=hpkp-update
|
2014-09-20 03:17:29 -07:00 |
|
ffxbld
|
db7a12fb67
|
No bug, Automated HSTS preload list update from host b-linux64-ix-0007 - a=hsts-update
|
2014-09-20 03:17:26 -07:00 |
|
Arthur Edelstein
|
758e11be76
|
Bug 967977 - Add pref to disable session identifiers (session tickets and session IDs). r=dkeeler
|
2014-09-08 15:32:00 -04:00 |
|
Patrick McManus
|
b73c2efb3c
|
bug 1003448 - HTTP/2 Alternate Service and Opportunistic Security [1/2 PSM] r=keeler
|
2014-08-20 16:30:16 -04:00 |
|
Martin Thomson
|
6106ddd104
|
Bug 1075991 - Tracking cause of inappropriate TLS version fallback, r=keeler
|
2014-10-03 11:01:24 -07:00 |
|
Martin Thomson
|
c8f2753778
|
Bug 1075991 - Remember version intolerance reason code, r=keeler
|
2014-10-03 11:01:24 -07:00 |
|
Monica Chew
|
4ec9c87796
|
Bug 1030135: Set is_moz if the pinset name contains mozilla, set bucket id for pinsets containing the string mozilla (r=keeler)
|
2014-10-02 16:45:13 -07:00 |
|
J.C. Jones
|
550cc2e2c1
|
Bug 1054498 - Report pinning violations by CA r=keeler
|
2014-10-17 10:33:50 -07:00 |
|
Carsten "Tomcat" Book
|
9679e704b6
|
Backed out changeset f5fa8ea86d3b (bug 622859)
|
2014-10-17 13:13:01 +02:00 |
|
Cykesiopka
|
da9e1d2029
|
Bug 622859 - Tests for bug 622859. r=briansmith,keeler
|
2014-10-16 05:22:00 +02:00 |
|
David Keeler
|
f76c788d8e
|
bug 1055238 - add nsNSSCertListFakeTransport so nsIX509CertList can survive the child process r=rbarnes
|
2014-09-16 15:49:37 -07:00 |
|
David Keeler
|
01f24cb277
|
bug 1055238 - clean up nsNSSCertificateFakeTransport.{cpp,h} for style nits r=rbarnes
|
2014-09-16 13:24:13 -07:00 |
|
Camilo Viecco
|
2cb42272c4
|
Bug 787133 - (hpkp) testing of internal storage and idl r=keeler.
--HG--
extra : rebase_source : c4f83f38a3b8f293a1ca61f2f0a6f90df6ff7840
|
2014-09-12 14:59:37 -07:00 |
|
Camilo Viecco
|
025a95d373
|
Bug 787133 - (hpkp) Internal storage of hpkp data. r=keeler.
--HG--
extra : rebase_source : 1ef88ab5ebcf9634bd1de76ec1c9543eb87d265b
|
2014-09-12 14:59:37 -07:00 |
|
David Keeler
|
bc48dc5b1b
|
bug 1066190 - ensure that pinning checks are done for otherwise overridable errors r=mmc
|
2014-09-12 13:20:43 -07:00 |
|
Camilo Viecco
|
6d0d3604e5
|
Bug 1067565 - Built-in pins expires decades later. r=keeler
|
2014-09-15 17:17:12 -07:00 |
|
Wes Kocher
|
42b3b1714c
|
Merge m-c to inbound a=merge
|
2014-09-15 16:41:45 -07:00 |
|
ffxbld
|
06f4c95ee9
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-318 - a=hpkp-update
|
2014-09-15 14:35:39 -07:00 |
|
ffxbld
|
2787427cf9
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-318 - a=hsts-update
|
2014-09-15 14:35:37 -07:00 |
|
David Keeler
|
69ebd139fa
|
bug 973048 - follow-up to add another missed #include r=bustage on a CLOSED TREE
|
2014-09-15 13:50:18 -07:00 |
|
David Keeler
|
feeba637e3
|
bug 973048 - follow-up to add #include for ScopedPtr r=bustage on a CLOSED TREE
|
2014-09-15 13:02:47 -07:00 |
|
David Keeler
|
07cc464c9e
|
bug 973048 - replace nsNSSCleaner with Scoped types r=rbarnes
|
2014-09-15 12:31:43 -07:00 |
|
Carsten "Tomcat" Book
|
6d0df443bf
|
merge m-i to m-c a=merge
|
2014-09-12 15:07:38 +02:00 |
|
ffxbld
|
36c33a0bd0
|
No bug, Automated HPKP preload list update from host bld-linux64-spot-021 - a=hpkp-update
|
2014-09-11 20:51:37 -07:00 |
|
ffxbld
|
baa0da8253
|
No bug, Automated HSTS preload list update from host bld-linux64-spot-021 - a=hsts-update
|
2014-09-11 20:51:35 -07:00 |
|
Giovanni Sferro
|
596d5c0c5c
|
Bug 1050518 - Remove nsICertificatePrincipal. r=keeler
|
2014-09-10 20:31:00 -04:00 |
|
Brian Smith
|
93dd638168
|
Bug 1063006: Centralize direct use of NSS for crypto in the mozilla::pkix test suite, r=keeler
--HG--
rename : security/pkix/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestnss.cpp
extra : rebase_source : 93515d39abf91168fa86268f9b26f8c62d0d411e
|
2014-08-31 17:47:09 -07:00 |
|
Ehsan Akhgari
|
8f1ca2a08f
|
Bug 1064356 - Fix more bad implicit constructors in security; r=bsmith
|
2014-09-08 20:47:36 -04:00 |
|
David Keeler
|
e59d626477
|
bug 1004781 - follow-up to add "DigiCert ECC Secure Server CA" to Facebook's pinset r=mmc
|
2014-09-08 09:33:03 -07:00 |
|
Carsten "Tomcat" Book
|
ef8e5b7042
|
merge mozilla-inbound to mozilla-central a=merge
|
2014-09-08 15:22:16 +02:00 |
|
ffxbld
|
c132f161fe
|
No bug, Automated HPKP preload list update from host b-linux64-ix-0009 - a=hpkp-update
|
2014-09-06 03:17:54 -07:00 |
|
ffxbld
|
982f13ce9d
|
No bug, Automated HSTS preload list update from host b-linux64-ix-0009 - a=hsts-update
|
2014-09-06 03:17:51 -07:00 |
|
Wes Kocher
|
6e24e97e5b
|
Merge inbound to m-c a=merge
|
2014-09-05 19:04:52 -07:00 |
|
Monica Chew
|
5c0326bb2b
|
Bug 1030135: Enable pinning on services.mozilla.com in test mode (r=keeler,a=kwierso)
|
2014-09-05 12:04:26 -07:00 |
|
David Keeler
|
67aa5d4e20
|
bug 1046221 - make nsCryptoHMAC and nsCryptoHash actually check for NSS shutdown r=rbarnes
|
2014-09-05 11:04:22 -07:00 |
|
Monica Chew
|
c1f1fb37b4
|
Bug 1030135: Enable pinning on services.mozilla.com in test mode (r=keeler)
|
2014-09-05 12:04:26 -07:00 |
|
Brian Smith
|
493b0e85e9
|
Bug 1061021, Part 15: Stop using PLArenaPool in CreateEncodedOCSPResponse, r=keeler
--HG--
extra : rebase_source : 00c3f77cd1e7e0d81b0acac84631b81e4cac59bd
|
2014-09-01 19:23:01 -07:00 |
|
Brian Smith
|
713b17fe03
|
Bug 1061021, Part 14: Stop using PLArenaPool in CreateEncodedCertificate, r=keeler
--HG--
extra : rebase_source : 46c292a31fbc4bb7242c93d0d47479600f379323
|
2014-08-30 23:09:18 -07:00 |
|
Brian Smith
|
cf4c572f2d
|
Bug 1061021, Part 10: Stop using PLArenaPool for extension encoding, r=keeler
--HG--
extra : rebase_source : 02b6dcc97204c04ec35b214ea2ce4b9297c78612
|
2014-08-30 19:16:24 -07:00 |
|
David Keeler
|
eebd63d1c8
|
bug 775370 - (part 2/2) use DataStorage as back-end to nsSiteSecurityService r=briansmith
|
2014-09-04 10:42:31 -07:00 |
|