Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-10 03:45:46 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
391,782 Commits 615 Branches 98 Tags 6 GiB
0d92fda72d
Commit Graph

9018 Commits

Author SHA1 Message Date
Jed Davis
59573e5f85 Bug 1077057 - Expose Linux sandboxing information to JS via nsSystemInfo. r=kang r=froydnj 
This adds "hasSeccompBPF" for seccomp-bpf support; other "has" keys
will be added in the future (e.g., user namespaces).

This also adds "canSandboxContent" and "canSandboxMedia", which are
absent if the corresponding type of sandboxing isn't enabled at build
type (or is disabled with environment variables), and otherwise present
as a boolean indicating whether that type of sandboxing is supported.
Currently this is always the same as hasSeccompBPF, but that could change
in the future.

Some changes have been made to the "mozilla/Sandbox.h" interface to
support this; the idea is that the MOZ_DISABLE_*_SANDBOX environment
variables should be equivalent to disabling MOZ_*_SANDBOX at build time.
 2014-11-06 13:11:00 +01:00
David Keeler
fc748d0372 bug 1039642 - follow-up to fix non-unified build bustage (missing include and namespace) r=bustage a=metered 2014-11-06 14:23:21 -08:00
David Keeler
1218b5626e bug 1039642 - clean up the implementation of nsPkcs11 for style and safety r=jcj r=mmc a=metered 2014-11-05 14:05:46 -08:00
David Keeler
25ee944cea bug 1039642 - test that smart card events are no longer emitted after removing a PKCS#11 module r=jcj r=mmc a=metered 
--HG--
rename : security/manager/ssl/tests/unit/test_pkcs11_insert_remove.js => security/manager/ssl/tests/unit/test_pkcs11_no_events_after_removal.js
 2014-11-05 13:54:21 -08:00
David Keeler
2a4f463dac bug 1039642 - stop PKCS#11 module threads before deleting them r=jcj r=mmc a=metered 2014-11-05 13:53:28 -08:00
Jed Davis
e6ede214a5 Bug 1093893 - Fix B2G sandbox for ICS Bionic pthread_kill(). r=kang 2014-11-06 11:04:14 -08:00
Chris Peterson
312462d737 Bug 1092710 - Fix -Wunused-const-variable warning-as-error in non-unified security/certverifier. r=keeler 
--HG--
extra : rebase_source : c13f7e565c8459263191f9bb16d4221b6f163443
 2014-11-01 12:14:41 -07:00
Dragana Damjanovic
78d081c21d Bug 1087213 - Implenent bind function in nsNSSIOLayer. r=honza 2014-10-22 02:06:00 +02:00
Monica Chew
d68cf9f6e1 Bug 1004781: Remove unnecessary cert for facebook (r=keeler) 2014-11-04 10:54:26 -08:00
Monica Chew
eeb4a7f756 Bug 1092606: Don't import Chromium pinsets for domains that are already in our list (r=keeler,jcj) 2014-11-04 10:53:52 -08:00
David Keeler
98fef4165e bug 1079658 - follow-up bustage fix (unnecessary multi-line C++-style comment) r=bustage on a CLOSED TREE 2014-11-03 13:48:48 -08:00
David Keeler
cd0d5fbdc0 bug 1079658 - check for the id-pkix-ocsp-nocheck extension when decoding certificates r=briansmith 2014-11-03 11:35:15 -08:00
Bob Owen
5cc944a89b Bug 1076903: Add a Chromium LICENSE file to security/sandbox/win/src. r=gerv 2014-11-03 15:34:26 +00:00
Chris Peterson
4a7b70b334 Bug 1092028 - Fix -Wunused-const-variable warning-as-error in security/pkix/test/gtest. r=bsmith 2014-10-30 23:17:27 -07:00
ffxbld
cd1c581c5d No bug, Automated HPKP preload list update from host b-linux64-ix-0009 - a=hpkp-update 2014-11-01 03:19:47 -07:00
ffxbld
5c654c7c4c No bug, Automated HSTS preload list update from host b-linux64-ix-0009 - a=hsts-update 2014-11-01 03:19:44 -07:00
Garrett Robinson
6f9b6ed2cf Bug 846489 - Part 1 - Expose error code on TransportSecurityInfo. r=keeler 2014-10-30 12:50:00 +01:00
Carsten "Tomcat" Book
b82ba6feba Backed out changeset 5fb2f4662098 (bug 846498) for wrong bug number in commit message 2014-10-31 10:03:53 +01:00
Masatoshi Kimura
bcda188339 Bug 1088915 - Stop offering RC4 in the first handshakes. r=keeler 2014-10-22 01:11:29 +09:00
Masatoshi Kimura
2b45a125ae Bug 947149 - Remove useless and even misleading word and dead code. r=keeler, dolske 2014-10-30 15:22:00 +01:00
Garrett Robinson
d7c1f641cc Bug 846498 - Expose error code on TransportSecurityInfo. r=keeler 2014-10-30 12:50:00 +01:00
Brian Smith
2d31127cff Reland Bug 1063281, Part 9: Switch Gecko from NSS to CheckCertHostname, r=keeler 
--HG--
extra : rebase_source : 3a5e3bc2e113035e9c88b571bac68f3dbe2c8f04
 2014-10-28 15:28:38 -07:00
Brian Smith
774861532b Bug 1089104: Add support for TeletexString-encoded CN-IDs to CheckCertHostname, r=keeler 
--HG--
extra : rebase_source : 320794deae857a574f509b7277ea64576abd37b3
 2014-10-29 17:19:45 -07:00
Brian Smith
228f03d6d1 Bug 1089393: Fix hex excape sequences ('\0x' -> '\x') in pkixnames_tests.cpp, r=mmc 
--HG--
extra : rebase_source : a0136045ce9b957976f8eb2ef8ad6c9eae0a8ad7
 2014-10-26 11:29:42 -07:00
Monica Chew
3e0f2fd921 Bug 1004781: Actually remove the pinset (r=keeler) 2014-10-30 16:21:09 -07:00
Monica Chew
1e19be7e65 Bug 1004781: Remove our pinset for facebook since it's in chromium now (r=keeler) 2014-10-30 16:14:19 -07:00
David Keeler
07d210cc76 bug 1085509 - follow-up to include forgotten Telemetry.h header (non-unified build bustage) r=bustage 2014-10-30 13:12:01 -07:00
David Keeler
2fa7ba1743 bug 1085509 - add telemetry for how many permanent certificate overrides users have r=mmc r=jcj 2014-10-29 16:25:16 -07:00
David Keeler
13b42021f6 bug 1085509 - fix nsCertOverrideService so its initialization doesn't depend on NSS r=mmc 2014-10-24 10:46:30 -07:00
André Reinald
436338cb49 Bug 1076385 - Sandbox the content process on Mac. r=smichaud 2014-10-30 13:33:17 -05:00
Carsten "Tomcat" Book
421fb1a714 Backed out changeset b4665be856d7 (bug 1089305) for frequent b2g/android xpcshell test failures 2014-10-30 15:26:02 +01:00
Cykesiopka
9c4c923488 Bug 1089305 - Switch EV tests to SQL DB and partially clean up scripts. r=keeler 2014-10-29 11:09:00 +01:00
Martin Thomson
2656d11288 Bug 1088950 - Adding some testing. r=dkeeler 2014-10-27 17:48:00 +01:00
Martin Thomson
2aa2c784b9 Bug 1088950 - Fix handling of inappropriate_fallback alert. r=keeler 2014-10-27 17:47:00 +01:00
Mike Hommey
47c853314f Bug 1077148 part 4 - Add and use new moz.build templates for Gecko programs and libraries. r=gps 
There are, sadly, many combinations of linkage in use throughout the tree.
The main differentiator, though, is between program/libraries related to
Gecko or not. Kind of. Some need mozglue, some don't. Some need dependent
linkage, some standalone.

Anyways, these new templates remove the need to manually define the
right dependencies against xpcomglue, nspr, mozalloc and mozglue
in most cases.

Places that build programs and were resetting MOZ_GLUE_PROGRAM_LDFLAGS
or that build libraries and were resetting MOZ_GLUE_LDFLAGS can now
just not use those Gecko-specific templates.
 2014-10-30 13:06:12 +09:00
Brian Smith
c7e81fdad6 Back out cset 9b72d139e817 (Bug 1063281, Part 9) due to compatibility regressions on a CLOSED TREE, a=ryanvm 
--HG--
extra : rebase_source : cd9b43c3f66df3c5de337f2013fe61fae798b3ba
 2014-10-28 12:30:53 -07:00
Carsten "Tomcat" Book
98dda84064 Backed out changeset 50650e0f0edf (bug 1085509) for causing perma failure in win7 xperf 2014-10-28 14:10:38 +01:00
Carsten "Tomcat" Book
b4bfea0bd6 Backed out changeset b591ad43d53e (bug 1085509) 2014-10-28 14:09:44 +01:00
David Keeler
90283cf32b bug 1085509 - add telemetry for how many permanent certificate overrides users have r=mmc r=jcj 2014-10-27 09:32:33 -07:00
David Keeler
84883c42e4 bug 1085509 - fix nsCertOverrideService so its initialization doesn't depend on NSS r=mmc 2014-10-24 10:46:30 -07:00
Phil Ringnalda
97c5c90a44 Merge m-i to m-c, a=merge 2014-10-26 09:12:36 -07:00
ffxbld
a92f2bc083 No bug, Automated HPKP preload list update from host bld-linux64-spot-115 - a=hpkp-update 2014-10-25 03:19:28 -07:00
ffxbld
3d5dc9dcf8 No bug, Automated HSTS preload list update from host bld-linux64-spot-115 - a=hsts-update 2014-10-25 03:19:26 -07:00
Monica Chew
e8c341b1fd Bug 1083539: Fix dropped return value check (r=keeler) 2014-10-23 17:07:45 -07:00
Tom Schuster
0130a12af3 Bug 886752 - Show TLS/SSL version in page info dialog. r=dao 2014-10-24 13:53:35 +02:00
Tom Schuster
cba793218d Bug 886752 - Add TLS version to SSLStatus and additional cleanup. r=keeler 2014-10-24 13:53:34 +02:00
Kai Engert
9c8e9bee73 Bug 1088969 - Upgrade Mozilla 36 to use NSS 3.18, landing beta 1, r=wtc 2014-10-25 00:34:34 +02:00
Jed Davis
5ec3c350dd Bug 1081242 - Make ASAN's error reporting work while sandboxed on Linux. r=kang 2014-10-21 11:18:00 +02:00
Brian Smith
cfc481b264 Bug 1085497: Add Input::size_type, r=mmc 
--HG--
extra : rebase_source : 098eae9234be99e683c0d44b35e1ec7058a086dd
 2014-10-16 18:23:27 -07:00
Brian Smith
e93675a04e Bug 1063281, Part 9: Switch Gecko from NSS to CheckCertHostname, r=keeler 
--HG--
extra : rebase_source : 340eb682ba1f9dbd51652438433e7d0196494e1f
 2014-09-21 17:43:29 -07:00