Brian Smith
5bd1df9e3f
Bug 799007: Remove support for low/weak/null cipher suites, r=honzab, r=dao
2012-11-10 20:49:29 -08:00
Brian Smith
a71cf40b82
backout cset b36d5c933092 due to orange
2012-11-10 19:09:07 -08:00
Brian Smith
3c7bd35add
Bug 799007: Remove support for low/weak/null cipher suites, r=honzab, r=dao
...
--HG--
extra : rebase_source : 822ef336a5cdeb7d6693dbe46844a26465600854
2012-11-10 18:18:14 -08:00
Brian Smith
e24b1fa596
Bug 802302: Remove obsolete OCSP responder override UI and API, r=honzab
...
--HG--
extra : rebase_source : 5d241a8b9573f442c37d0aeef0689ae5054dd08d
2012-10-15 20:39:11 -07:00
Bobby Holley
10241f928c
Bug 789224 - Separate certificate principals out from CAPS. r=dveditz
...
There's no longer any reason why "certificate principals" need to be principals at all.
I tried to rip them out entirely, but it looks like they're still used vestigially at XPI
install time to display author information. But there's no reason that they have to be
porkbarreled into the security-critical objects that we pass around all over the place.
So let's make them their own deal.
I was tempted to call them "certificate holders", but that would involve renaming methods and
cause more compat fuss than necessary.
--HG--
rename : caps/idl/nsISignatureVerifier.idl => security/manager/ssl/public/nsISignatureVerifier.idl
2012-10-22 08:29:56 +02:00
Ehsan Akhgari
e368dc9c85
Bug 579517 - Part 1: Automated conversion of NSPR numeric types to stdint types in Gecko; r=bsmedberg
...
This patch was generated by a script. Here's the source of the script for
future reference:
function convert() {
echo "Converting $1 to $2..."
find . ! -wholename "*nsprpub*" \
! -wholename "*security/nss*" \
! -wholename "*/.hg*" \
! -wholename "obj-ff-dbg*" \
! -name nsXPCOMCID.h \
! -name prtypes.h \
-type f \
\( -iname "*.cpp" \
-o -iname "*.h" \
-o -iname "*.c" \
-o -iname "*.cc" \
-o -iname "*.idl" \
-o -iname "*.ipdl" \
-o -iname "*.ipdlh" \
-o -iname "*.mm" \) | \
xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}
convert PRInt8 int8_t
convert PRUint8 uint8_t
convert PRInt16 int16_t
convert PRUint16 uint16_t
convert PRInt32 int32_t
convert PRUint32 uint32_t
convert PRInt64 int64_t
convert PRUint64 uint64_t
convert PRIntn int
convert PRUintn unsigned
convert PRSize size_t
convert PROffset32 int32_t
convert PROffset64 int64_t
convert PRPtrdiff ptrdiff_t
convert PRFloat64 double
2012-08-22 11:56:38 -04:00
Aryeh Gregor
4e199a1679
Bug 780618 - Move all error codes to nsError.h; r=ehsan
2012-07-27 17:03:27 +03:00
Mike Hommey
70d7c821af
Bug 774032 bonus - Use @DEPTH@ and @relativesrcdir@ in Makefile.in. r=ted
2012-08-04 20:26:44 +02:00
Brian Smith
a53de0d5cc
Bug 758314 - Allow end-user to override error when MD5 cert is encountered, r=kaie
...
--HG--
rename : mobile/android/base/resources/layout-land-v14/tabs_panel_toolbar_menu.xml => mobile/android/base/resources/layout-land-v14/tabs_panel_toolbar.xml
extra : rebase_source : ed78fedd30fcd329a24de652a6d906e78759dc7c
2012-07-10 19:42:50 -07:00
Geoff Lankow
5cefea8480
Bug 749930 - Replace uses of nsILocalFile with nsIFile (compiled code only); r=bsmedberg
2012-06-06 14:08:30 +12:00
Gervase Markham
6b6c8775e0
Bug 759095 - upgrade license to MPL 2, and other licensing cleanups.
2012-05-31 10:33:35 +01:00
Gervase Markham
68d38d677f
Bug 759095 - upgrade license to MPL 2, and other licensing cleanups.
...
--HG--
extra : rebase_source : da55a4937383eda2baf7c9a362501da8ee664146
2012-05-29 16:52:43 +01:00
Kai Engert
c4e7e180f2
Bug 673381, patch v3 for NSPR/NSS versions in about:support, make build time minimum NSPR/NSS versions available to JS, r=rrelyea
2012-03-13 00:04:35 +01:00
Kai Engert
75ac364082
Bug 673381, first part, allow to to query NSPR/NSS library version numbers from JS, r=honzab
2012-03-01 17:29:48 +01:00
Patrick McManus
5e196c87ab
bug 528288 spdy - nsisslsocketcontrol::mayjoinconnection() r=honzab r=bsmith sr=honzab sr=biesi
...
patch 17
2011-12-02 10:28:57 -05:00
Patrick McManus
7b7e03e318
bug 528288 spdy - only coalesce (i.e. ip pool) hostnames with compatible ssl certs sr=biesi r=honzab r=bsmith
...
patch 9
2011-12-02 10:28:57 -05:00
Benjamin Smedberg
dee00f8b91
Bug 675702: Call nsICertVerificationListener on the main thread, rev. 1, r=bsmith, r=mayhemer
2011-11-02 21:06:51 -07:00
Brian Smith
c70f428cda
Bug 686248: Add isExtendedValidation to nsISSLStatus so it can be used by mobile, r=meyhemer
...
--HG--
extra : rebase_source : 6d21f2fdc3cb587874662cc23f84503e63b95ed1
2011-10-30 11:43:06 -07:00
Brian Smith
752d0bfb1d
Bug 677409: Remove unused nsICipherInfo API, r=kaie
2011-08-17 20:20:50 -07:00
Michael Wu
fbcd07dca0
Bug 676465 - Replace PRBool with boolean in IDL files, r=bsmedberg
2011-08-06 22:03:32 -07:00
Kai Engert
97271fa8e4
Bug 479393, Add libpkix-based certificate validation to PSM (off by default), r=rrelyea, r=bsmith
2011-05-05 22:41:40 +02:00
Brian Smith
a5edaf27e8
Bug 637361: Backout bug 573043
2011-03-01 19:11:22 -08:00
Honza Bambas
48a2c64df8
Fix bug 573043. r=jmathies@mozilla.com, a=blocker.
...
--HG--
rename : security/manager/ssl/public/nsISSLStatus.idl => netwerk/base/public/nsISSLStatus.idl
rename : security/manager/boot/public/nsISSLStatusProvider.idl => netwerk/base/public/nsISSLStatusProvider.idl
rename : security/manager/ssl/public/nsIX509Cert.idl => netwerk/base/public/nsIX509Cert.idl
2011-02-08 16:12:29 -08:00
Kai Engert
28f32b7a5b
Bug 612613, Comments only: Clarify intention of nsIX509CertDB::findEmail[Encryption|Signing]Cert
...
r=honzab, a=comment-only
DONTBUILD
2010-11-27 17:40:07 +01:00
timeless@mozdev.org
8ae3094574
Bug 564584 @mozilla.org/security/certoverride;1 overrides crashes the application [@ nsNSSComponent::LogoutAuthenticatedPK11]; r=kaie a=bsmedberg
2010-05-25 17:34:13 +03:00
Honza Bambas
c32ff56c91
Bug 536301 - e10s HTTPS: securityInfo. r=jduell, sr=kaie
2010-08-13 01:06:40 -07:00
Mitchell Field
d0f35f6883
Remove @status FROZEN and @status UNDER_REVIEW. r=bsmedberg
...
--HG--
extra : rebase_source : 7fab31a6b7898e05ff828482390846cc9ce2854d
2010-07-02 10:27:06 -04:00
timeless@mozdev.org
ce04e613ae
merging
2010-01-05 23:50:02 +01:00
timeless@mozdev.org
2ca671cc18
Bug 327181 - actually deleting nsIBadCertListener.idl r/sr=biesi
2010-01-05 23:42:34 +01:00
Benjamin Smedberg
1559de55e2
Bug 326628 try #2 - remove window.pkcs11 and fix the device manager not to use that API, r=kaie
2009-05-28 19:36:21 -07:00
Benjamin Smedberg
d9efb6995e
Final merge to back out bug 326628 (and followup bug 487980) due to regression bug 494899.
2009-05-27 09:15:21 -04:00
Benjamin Smedberg
48077de5cc
Backed out changeset eea9639048b8, bug 326628 main patch, due to regression bug 494899
2009-05-27 09:09:01 -04:00
Kai Engert
3d486c9ebb
Bug 431819, IMAP/POP/SMTP/LDAP with SSL client auth, Thunderbird repeatedly prompts for client certificate
...
(applies to firefox with SSL client auth, too)
r=relyea for an earlier patch that was checked in to mozilla-1.8.x more than a year ago
r=honzab on the diff on top of that earlier patch
a=beltzner for landing on restricted trunk
2009-05-21 00:21:51 +02:00
Benjamin Smedberg
56cce7342e
Fix mis-spellings of "receive" to kick builds on a CLOSED TREE.
2009-05-18 09:48:36 -04:00
Benjamin Smedberg
5a7f33d593
Bug 326628 Try #2 - User content can pop up PKCS11 dialogs, which is annoying and entirely unnecessary r+sr=jsr,r=kaie
2009-04-10 13:21:04 -04:00
Benjamin Smedberg
882ae00fd6
Back out everything from bug 326628 because it's too red to fix on the fly. CLOSED TREE
2009-04-09 16:01:02 -04:00
Benjamin Smedberg
7fd586cb4d
Bug 326628 - user content can pop up pkcs11 dialogs, which is annoying and entirely unnecessary r+sr=jst,r=kaie
2009-04-08 10:27:45 -04:00
Boris Zbarsky
e3f12b7fc7
Bug 475912. Rev nsITokenDialogs iid in CLOSED TREE
2009-02-03 15:45:26 -05:00
Jesper Kristensen
72d89b4502
Bug 401292 - application and addon updates fail when Danish Government browser extension is installed; Second patch v1; r=dveditz
2008-12-06 18:31:39 +01:00
Jesper Kristensen
b148f70864
Bug 401292 - application and addon updates fail when Danish Government browser extension is installed; r=(dveditz + kaie)
2008-10-29 05:39:28 +01:00
Reed Loden
1c77a41798
Merge backout changeset for bug 454406
2008-10-01 01:03:35 -05:00
Reed Loden
984577563b
Bug 454406 - "SSL handshakes fail after asking PSM to remember user's choice of client auth cert" (backed out changeset 6615b044bcd8 from bug 431819)
2008-10-01 01:01:39 -05:00
Kai Engert
61a477cdbc
Bug 439722, Make the "bad cert error dialog" more helpful
...
r=rrelyea, sr=dveditz
2008-08-26 00:26:08 +02:00
Kai Engert
0f228913f3
Bug 431819, SSL client auth, repeated prompts for client certificate
...
r=rrelyea, r=dveditz
2008-06-18 21:36:29 +02:00
gavin@gavinsharp.com
3642b0dbe2
Bug 413909: nsCertOverrideService IDN handling is broken, and its port handling is also quite cumbersome, patch by Honza Bambas <honzab@allpeers.com>, r=kaie, a=shaver
2008-04-22 13:03:20 -07:00
kaie@kuix.de
3b89434010
Single patch for 3 overlapping fixes. Bug 420187, hang in nsNSSHttpRequestSession::internal_send_receive_attempt r=rrelyea Bug 383369, fixing a regression from 335801 r=rrelyea Bug 358438, fix proposed by and portions contributed by Honza Bambas r=honzab, r=rrelyea approval1.9 for combined patch = beltzner
2008-04-11 21:47:22 -07:00
kaie@kuix.de
45057e2e6d
Bug 327181, follow up checkin to fix IDL comment r=rrelyea, approval1.9=beltzner
2008-04-08 22:25:44 -07:00
reed@reedloden.com
ac89e9bc4e
Bug 419794 - "work out key API for nsICryptoHMAC" (API use nsIKeyObject + fix nsKeyModule + nsICryptoHMAC usage fix) [p=honzab@allpeers.com (Honza Bambas [mayhemer]) r=rrelyea sr=dveditz a=blocking1.9+]
2008-03-18 12:45:40 -07:00
gavin@gavinsharp.com
7b3cc60dbc
Bug 419111: unfrozen interfaces listed in SDK_XPIDLSRCS, r=kaie, sr=bzbarsky
2008-03-05 14:08:20 -08:00
kaie@kuix.de
b2b540186b
Bug 409280, nsIProtectedAuthThread is not embedding friendly Patch contributed by Christian Persch (GNOME) r=kengert, blocking1.9=mtschrep
2008-01-15 14:41:52 -08:00