Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-05 08:35:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
410,300 Commits 615 Branches 98 Tags 5.9 GiB
29b0a1ca08
Commit Graph

9387 Commits

Author SHA1 Message Date
Bob Owen
4fecdb4ceb Bug 1141169: Add moz.build BUG_COMPONENT metadata for security/sandbox/ r=jld 2015-03-10 08:03:12 +00:00
Bob Owen
b08af57c17 Bug 1137166: Change the Content moreStrict sandbox pref to an integer to indicate the level of sandboxing. r=tabraldes 2015-03-10 08:03:12 +00:00
Mike Hommey
364038011c Bug 868814 - Fold mozalloc library into mozglue. r=njn 
--HG--
rename : memory/mozalloc/moz.build => memory/mozalloc/staticruntime/moz.build
 2015-03-10 10:01:52 +09:00
Masatoshi Kimura
83b1b594b5 Bug 1106470 - Drop SSLv3 support entirely from PSM. r=keeler 2015-03-10 01:22:59 +09:00
Jed Davis
19355a43d5 Bug 1137007 - Detect namespace and SECCOMP_FILTER_FLAG_TSYNC support in SandboxInfo. r=kang, r=Unfocused 
Currently, only user namespace support is detected.  This is targeted at
desktop, where (1) user namespace creation is effectively a prerequisite
for unsharing any other namespace, and (2) any kernel with user
namespace support almost certainly has all the others.

Bonus fix: remove extra copy of sandbox flag key names in about:support;
if JS property iteration order ever ceases to follow creation order, the
table rows could be permuted, but this doesn't really matter.
 2015-03-06 13:59:00 -05:00
David Keeler
cc58dd5d1a Bug 1136616 - Allow underscores in reference DNS-IDs in mozilla::pkix name matching. r=briansmith 2015-03-03 13:34:45 -08:00
Phil Ringnalda
8f5c1764fb Merge m-c to m-i 2015-03-07 19:39:49 -08:00
Phil Ringnalda
ecf64b97b2 Merge m-i to m-c, a=merge 2015-03-07 19:11:54 -08:00
ffxbld
b74611a261 No bug, Automated HPKP preload list update from host bld-linux64-spot-157 - a=hpkp-update 2015-03-07 03:27:15 -08:00
ffxbld
1ec58518aa No bug, Automated HSTS preload list update from host bld-linux64-spot-157 - a=hsts-update 2015-03-07 03:27:13 -08:00
David Keeler
44fb9d4eff bug 1129771 - disable IPv6 in PSM xpcshell TLS connection tests due to failures on OS X 10.10 r=cykesiopka a=ryanvm on a CLOSED TREE 
In the process of investigating the intermittent failures listed in
bug 1129771, I discovered that the code would frequently get stuck connecting
to [::1] (where no server was listening) and wouldn't fall back to trying
127.0.0.1 (where the test server was listening). This change prevents the code
attempting to connect to [::1]. There probably is an underlying bug here, but
it appears to be in OS X itself and I have neither the time nor expertise to
investigate further.

--HG--
extra : amend_source : 57b6a28858685d7ca3b6b0c7cbc7ed193280ca7c
 2015-03-04 13:41:11 -08:00
Cykesiopka
171babfad4 Bug 1139177 - RSA public key size checking cleanups. r=keeler 2015-03-05 16:41:00 +01:00
Jed Davis
01e2b0e158 Bug 1140111 - Whitelist readlinkat along with readlink. r=kang 2015-03-07 10:44:23 -05:00
Kai Engert
fc884b360e Bug 1137470, landing NSS_3_18_RC0 minus bug 1132496, r=nss-confcall 2015-03-07 14:49:00 +01:00
David Keeler
cdb738f18d bug 1137538 - remove nsIIdentityInfo and nsNSSSocketInfo::GetPreviousCert r=mayhemer 2015-02-27 11:33:36 -08:00
Masatoshi Kimura
3e7620bf97 Bug 1138882 - Add a pref to enable unrestricted RC4 fallback. r=keeler 2015-03-05 22:51:31 +09:00
Cykesiopka
fa79ef2aea Bug 1121117 - Add some logging to test_ocsp_timeout.js to ease debugging. r=dkeeler 2015-03-03 14:25:00 +01:00
Wes Kocher
0de76a4c17 Merge b2g-inbound to m-c a=merge CLOSED TREE 2015-03-03 17:02:21 -08:00
Chuck Lee
6cb15b84a0 Bug 1012549 - 0004. Support read private key in keystore. r=dkeeler r=qdot 2015-02-28 21:54:24 +08:00
David Keeler
3b4360319c bug 1085506 - gather telemetry for TLS handshake certificate verification errors r=rbarnes 2015-02-27 11:14:29 -08:00
Mark Goodwin
f4a1822554 Bug 1130757 - tests for bug 1130757. r=dkeeler 
--HG--
extra : rebase_source : 7b047f5bddf3544ca82d3b8875925acdbdb02ea5
 2015-03-02 08:19:00 +01:00
Mark Goodwin
3133a37202 Bug 1130757 - Move OneCRL check to NSSCertDBTrustDomain::GetCertTrust. r=dkeeler 
--HG--
extra : rebase_source : ce8cff0735865c00f33102b82c31af35145bda2c
 2015-02-26 04:38:00 +01:00
Cykesiopka
de906ce3ce Bug 1130418 - Remove broken e-mail cert trust editing UI. r=emk 
--HG--
extra : rebase_source : fb4c89e251e2ce3e4d9cf002a0cda4166a589a2c
 2015-03-02 19:54:00 +01:00
Cykesiopka
4419d0186e Bug 1130413 - Remove unused nsITokenPasswordDialogs::GetPassword() function. r=jjones 
--HG--
extra : rebase_source : 85b9e442d6b5be401fdd389cc251add8a633bb23
 2015-02-26 13:05:00 +01:00
Wes Kocher
b17feb3f40 Merge inbound to m-c a=merge 2015-03-02 12:12:47 -08:00
ffxbld
8084ed7b82 No bug, Automated HPKP preload list update from host bld-linux64-spot-044 - a=hpkp-update 2015-02-28 03:27:43 -08:00
ffxbld
94776e3384 No bug, Automated HSTS preload list update from host bld-linux64-spot-044 - a=hsts-update 2015-02-28 03:27:41 -08:00
Kai Engert
8c48f9f304 Bug 1137470 - Upgrade Firefox to NSS 3.18, landing NSS_3_18_BETA7, r=nss-confcall 2015-02-26 23:29:08 +01:00
David Keeler
d01ea02613 bug 1049740 - implement telemetry to measure compatibility impact of 2048-bit-minimum RSA keys r=briansmith 2015-02-24 15:48:05 -08:00
Boris Zbarsky
a7d78c82c0 Bug 1136388. Change nsIDocumentLoaderFactory and nsIURIContentListener to take MIME types as an XPCOM string, not a char*. r=smaug 2015-02-25 10:26:51 -05:00
Jed Davis
c5b6b444f2 Bug 1134942 - Whitelist fstatat and unlinkat for B2G content processes. r=gdestuynder 2015-02-20 12:16:00 +01:00
Brian Smith
2672d3b5d3 Bug 1077864, Part 3: update nsserrors.properties so error message gets localized. 2015-02-23 16:04:23 -08:00
Brian Smith
06b7804e70 Bug 1131767: Prune away paths using unacceptable algorithms earlier, r=keeler 
--HG--
extra : rebase_source : 79efad2c5f60120ff1022547ce7efa628a7acd0f
 2015-02-14 16:59:02 -08:00
Brian Smith
27cb600f2f Bug 1077864, Part 2: Override the trust level for OCSP response signer certs so that they are never considered trust anchors, r=keeler 
--HG--
extra : rebase_source : d0c599f7fc29b5fbcb7d8cd97980a3f39d39f515
 2015-02-14 15:59:38 -08:00
Brian Smith
bdb4294871 Bug 1077864, Part 1: Check consistency of certificates' signature and signatureAlgorithm fields, r=keeler 
--HG--
extra : rebase_source : 9a2ca8cb370169f675557987a6b1cc0dedb24ff6
 2015-02-22 16:59:03 -08:00
Brian Smith
f2235a16db Bug 1135407: Factor out duplicate logic in tests, r=keeler 
--HG--
extra : rebase_source : d93eef89cb6596cf35e2ebef29030423cf027f0b
 2015-02-21 14:12:38 -08:00
Ehsan Akhgari
baf73d756f Bug 1135745 - Disable the reserved-id-macro macro in security/pkix; r=briansmith 2015-02-23 13:40:09 -05:00
Ryan VanderMeulen
fd0387315e Merge inbound to m-c. a=merge 2015-02-21 16:40:27 -05:00
ffxbld
c2dabe6507 No bug, Automated HPKP preload list update from host bld-linux64-spot-148 - a=hpkp-update 2015-02-21 03:32:26 -08:00
ffxbld
00bf62f9f5 No bug, Automated HSTS preload list update from host bld-linux64-spot-148 - a=hsts-update 2015-02-21 03:32:24 -08:00
André Reinald
256a142a70 Bug 1083344 - Tighten rules for Mac OS content process sandbox - "rules part". r=smichaud 
--HG--
extra : histedit_source : f703a6a8abbf500cb882263426776fdb138b73a3
 2015-02-21 13:06:34 +01:00
André Reinald
70a296a23b Bug 1083344 - Tighten rules for Mac OS content process sandbox - "core part". r=smichaud 
--HG--
extra : histedit_source : 3c904474c57dbf086365cc6b26a55c34b2b449ae
 2015-02-18 14:10:27 +01:00
Brian Smith
ffe59cf419 Bug 1133618 - Move test SHA1 function to pkixtestutil.cpp. r=mmc 
--HG--
extra : histedit_source : ef579a4958356a12974b1f0f69ab2d6070ff8e65
 2015-02-16 16:37:03 -08:00
Brian Smith
bbf8006735 Bug 1130754 - Make PublicKeyAlgorithm an enum class. r=keeler 
--HG--
extra : histedit_source : 14d321bc2cbdf749fd05994571ca439ee62ab973
 2015-02-14 13:25:09 -08:00
Masatoshi Kimura
2bdace7384 Bug 1127339 - Detect SSLv3-only server in PSM. r=keeler 2015-02-21 17:20:22 +09:00
Cykesiopka
31ea56f770 Bug 1097622 - Add test cases for certs that have notBefore times earlier than the UNIX epoch. r=dkeeler 2015-02-17 06:15:00 -05:00
Cykesiopka
47f24e15e4 Bug 1097622 - Return ERROR_INVALID_TIME when decoding invalid time values. r=dkeeler 2015-02-18 15:56:00 -05:00
Cykesiopka
37b3759ab9 Bug 1097622 - Rename (mE|e)rrorCodeExpired variables to (mE|e)rrorCodeTime. r=dkeeler 2015-02-17 06:12:00 -05:00
Masatoshi Kimura
17cbaa2849 Bug 1133187 - Update fallback whitelist. r=keeler 2015-02-19 04:12:59 +09:00
Masatoshi Kimura
0101cbcbce Bug 1124039 - Allow RC4 only for whitelisted hosts. r=keeler 2015-02-19 04:12:58 +09:00