Wes Kocher
a8d80abaf6
Merge m-c to inbound a=merge
2014-08-22 17:05:17 -07:00
Olli Pettay
d72906c30d
Bug 314095 - Eliminate nsIContent::GetDocument, r=jst
...
--HG--
extra : rebase_source : dd8f690940825b298a478b65b68a57418a9962ff
2014-08-22 23:11:27 +03:00
David Keeler
4ee21d300f
bug 1057128 - add --clobber to generate_certs.sh, disabled by default (don't unnecessarily regenerate all certificates) r=rbarnes DONTBUILD because NPOTB
2014-08-22 10:25:46 -07:00
David Keeler
3e8057dc3d
bug 775370 - (part 1/2) introduce DataStorage r=froydnj r=mmc
2013-09-09 13:37:21 -07:00
Wan-Teh Chang
cdfed1ffd4
Bug 1063445: Update to NSS_3_17_1_BETA2.
...
Includes the fixes for bug 1041326, bug 1058933, bug 1001332, bug 1057783.
2014-09-05 08:18:18 -07:00
Chris Peterson
64bed2314d
Bug 1052033 - Fix warnings in security/sandbox and mark as FAIL_ON_WARNINGS. r=smichaud
2014-08-09 14:25:24 -07:00
Ryan VanderMeulen
5fe0932115
Merge inbound to m-c. a=merge
2014-08-16 17:42:29 -04:00
ffxbld
e3b3b65eb1
No bug, Automated HPKP preload list update from host bld-linux64-spot-329 - a=hpkp-update
2014-08-16 03:15:25 -07:00
ffxbld
93cb810873
No bug, Automated HSTS preload list update from host bld-linux64-spot-329 - a=hsts-update
2014-08-16 03:15:23 -07:00
Garrett Robinson
90fa6beb03
Bug 1029155 - Tests for storing failed certificate chains r=keeler
2014-08-15 11:27:31 -07:00
Garrett Robinson
691dcd68c1
Bug 1029155 - Store peer certificate chain from failed connections on TransportSecurityInfo r=keeler
2014-08-15 11:27:22 -07:00
Brian Smith
026854c3f0
Bug 1053627, Part 2: Use MOZILLA_PKIX_ARRAY_LENGTH instead of PR_ARRAY_SIZE, r=keeler
...
--HG--
extra : rebase_source : b9ae99d93921cb2f3a8f4395e9240389752fd2de
2014-08-13 21:01:35 -07:00
Brian Smith
edb0ac64e0
Bug 1053627, Part 1: use sizeof instead of PR_ARRAY_SIZE for byte arrays, r=keeler
...
--HG--
extra : rebase_source : a01364ed6b64800142f18d3d350f50ca178ea4bb
2014-08-04 19:21:52 -07:00
Brian Smith
5a78d0179b
Bug 1053621: Stop using PR_NOT_REACHED in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : b70a3ca2f3dade0439cf902bf4042716e7d1bbd3
2014-08-04 19:19:29 -07:00
Brian Smith
1709415e43
Bug 1053620: Replaces uses of PR_Abort with std::abort in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : 2e1f3eec5305e89bfa28fbda856b4e36515a2819
2014-08-04 19:12:34 -07:00
Brian Smith
d08286d3d3
Bug 1053617: Reduce scope of DER encoding debugging logic to the file it is used in, r=keeler
...
--HG--
extra : rebase_source : c22f7e96dfdd1997626769ac03c6d189321eec1a
2014-08-04 19:07:26 -07:00
Brian Smith
9a2a60943d
Bug 1053616: Remove uses of PR_SetError from mozilla::pkix tests, r=keeler
...
--HG--
extra : rebase_source : 1fc7ce9ab400c39e3c4afb68940be93cc2a0b848
2014-08-13 17:50:42 -07:00
Cykesiopka
f4a67332e8
Bug 1052257 - Add and use error code specific to inadequate key sizes. r=keeler
2014-08-12 22:24:00 -04:00
Jed Davis
1c8a8d2d9b
No bug - Add trailing newlines for non-Android Linux sandbox logging. r=kang
...
--HG--
extra : rebase_source : c0e936b62289c0e5eecad41fce9afac881fe4667
2014-08-14 15:39:14 -07:00
David Keeler
c3d3df58ac
bug 1030963 - remove non-standard window.crypto functions/properties r=jst r=briansmith r=glandium
2014-08-14 09:38:42 -07:00
Brian Smith
3e57ff4e5a
Bug 1048642, Part 3: Remove SECStatus GTest utilities, r=cviecco
...
--HG--
extra : rebase_source : f77202ad8d271604d7620cc5f704a51338c356ab
2014-08-03 22:45:05 -07:00
Brian Smith
065cf239b1
Bug 1048642, Part 2: Change GenerateKeyPair return type from SECStatus to Result, r=cviecco
...
--HG--
extra : rebase_source : 652277e952d224175ea57d4509124ff8180440cb
2014-08-04 10:59:21 -07:00
Brian Smith
4a58c8b13e
Bug 1048642, Part 1: Change TamperOnce return type from SECStatus to Result, r=cviecco
...
--HG--
extra : rebase_source : 1d2e8014153d8bfc6f9008dd9b6b9e4d5ac5dcb7
2014-08-03 22:49:10 -07:00
Kai Engert
bca16ce1ed
Bug 1049006 - Update Mozilla 33 to use NSS 3.17 final and NSPR 4.10.7 final, r=wtc
2014-08-13 21:47:00 +02:00
Jed Davis
033a6785eb
Bug 1043733 - Require sandboxing to load Gecko Media Plugins on Linux. r=jesup r=kang
...
Also refactors how sandbox support and disabling are handled, and allows
simulating a lack of sandbox support with an env var (for testing
without rebuilding a kernel).
2014-08-12 21:28:27 -07:00
David Keeler
3d57f23fab
bug 1040446 - mozilla::pkix: add error code for CA cert used as end-entity cert r=briansmith
2014-08-11 12:35:45 -07:00
Brian Smith
9c4276d25b
Bug 1048070, Part 2: Remove uses of PR_NOT_REACHED and PR_ARRAY_SIZE in mozilla::pkix, r=keeeler
...
--HG--
extra : rebase_source : d373a7526c1048770bed8bacb7e14c8f10e832cb
2014-08-03 18:24:35 -07:00
Brian Smith
3f64294312
Bug 1048070, Part 1: Replace uses of PR_ASSERT in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : 3f1dbb4babb6d575bde3088c92aeb6f28d689210
2014-08-02 09:17:59 -07:00
Brian Smith
ea0e98acf5
Bug 1042479: Accept the OIW sha1WithRSASignature OID, r=keeler
...
--HG--
extra : rebase_source : 98dfbf1b5130898604e86c54ad4a8453aa87bde4
2014-08-04 16:34:47 -07:00
Patrick McManus
b82e230f36
bug 1040323 - SecureBrowserUI needs to consider scheme, not just security of connection r=dkeeler
2014-07-28 14:37:41 -04:00
Ryan VanderMeulen
0e89667592
Merge inbound to m-c. a=merge
2014-08-09 11:19:46 -04:00
ffxbld
40f698d0cb
No bug, Automated HPKP preload list update from host bld-linux64-spot-011 - a=hpkp-update
2014-08-09 03:14:42 -07:00
ffxbld
509bcaeb60
No bug, Automated HSTS preload list update from host bld-linux64-spot-011 - a=hsts-update
2014-08-09 03:14:40 -07:00
Wes Kocher
98f9eac6dd
Merge m-c to inbound on a CLOSED TREE
2014-08-08 14:15:34 -07:00
Steven Michaud
844fdf04eb
Bug 1012949
- Sandbox the OpenH264 plugin for Mac r=rjesup,areinald,ted a=PatchNeedsToLandToday
2014-08-08 11:55:22 -05:00
J. Ryan Stinnett
ce8794da11
Bug 1040130 - Allow specifying a client cert for sockets. r=keeler, r=mcmanus
2014-08-07 16:32:00 -04:00
Nicholas Nethercote
a7cf4142b4
Bug 1050009 - Initialize pldhash tables with a length, not a capacity. r=roc.
...
* * *
imported patch rm-dummy-params
--HG--
extra : rebase_source : c25987eb11bae197218d5fc53b77def19afa36ac
2014-08-06 06:31:21 -07:00
Georgios Kontaxis
9bddbaa73e
Bug 1048643: extended nsDocShell with flags to indicate tracking protection status (similar to mixed content blocked/loaded status)
2014-08-07 13:35:03 -07:00
David Keeler
14eafa8e5d
Bug 1036546 - Soft-disable proprietary window.crypto functions via the pref dom.unsafe_legacy_crypto.enabled. r=smaug
2014-08-05 10:48:24 -07:00
Mike Hommey
89777800f9
Bug 1047267 - Move remaining OS_LIBS and EXTRA_LIBS to moz.build. r=gps
...
* * *
Bug 1047267 - To fold with "Move remaining OS_LIBS and EXTRA_LIBS to moz.build"
2014-08-07 14:21:03 +09:00
Mike Hommey
e8b438350d
Bug 1049281 - Move third-party build system "drivers" to config/external, and stop using static dirs. r=gps
...
--HG--
rename : intl/icu/Makefile.in => config/external/icu/Makefile.in
rename : config/nspr/Makefile.in => config/external/nspr/Makefile.in
rename : config/nspr/moz.build => config/external/nspr/moz.build
rename : security/build/Makefile.in => config/external/nss/Makefile.in
rename : security/build/moz.build => config/external/nss/moz.build
rename : security/build/nspr-dummy.def => config/external/nss/nspr-dummy.def
rename : security/build/nss.def => config/external/nss/nss.def
rename : security/build/nss.mk => config/external/nss/nss.mk
2014-08-07 02:58:52 +09:00
Mike Hommey
4a01b3b147
Bug 1048993 - Use nsinstall from $(topobjdir)/config instead of $(DIST)/bin to avoid races when make wants to reinstall it for some reason. r=mshal
2014-08-07 02:58:50 +09:00
Nathan Froyd
e1583db863
Bug 1042226 - move DEFINES += -DAB_CD=$(AB_CD) pattern into config.mk; r=mshal
2014-08-01 12:53:05 -04:00
Monica Chew
afefa8ea41
Bug 1047560: Enable pinning on dropbox (r=keeler)
2014-08-01 13:12:38 -07:00
Mike Hommey
d9443ec932
Bug 1045783 - Move most OS_LIBS to moz.build and do some related cleanup. r=mshal
2014-08-06 07:25:33 +09:00
Kai Engert
a5a24cc8bb
Bug 1049006 - Update Mozilla to use NSS 3.17, r=wtc
2014-08-05 22:22:19 +02:00
Ehsan Akhgari
7257b2f870
Bug 579517 follow-up: Remove NSPR types that crept in
2014-08-08 08:39:07 -04:00
Martin Thomson
d926cc34de
Bug 996237 - Fix nss.def for Android/B2G. r=wtc
2014-08-04 11:51:00 -04:00
Ehsan Akhgari
0403683a4f
Bug 1047782 - Fix some bad impliciit constructors in netwerk/; r=mcmanus
2014-08-05 09:20:50 -04:00
Jed Davis
b0bd63525b
Bug 1047620 - Fix sandboxing for B2G --disable-jemalloc builds. r=kang
...
--HG--
extra : rebase_source : 1b2ec6491277a9dc451ab767d8563076cf522c27
2014-08-04 15:11:33 -07:00
Jed Davis
9d31844f0c
Bug 1012951 - Add Linux sandboxing for GeckoMediaPlugin processes. r=kang r=ted
...
--HG--
extra : rebase_source : 1b890000d5b8d2a8954cdd1118a1023eba829c29
2014-08-04 15:11:18 -07:00
Jed Davis
d2d145dc65
Bug 1046541 - Use stdio for non-Android Linux sandbox error messages. r=kang
...
--HG--
extra : rebase_source : e93a4a76f8188d715886e263a366d694c28b4525
2014-08-04 15:11:04 -07:00
Eric Rahm
6fc80c7e16
Bug 1047176 - Part 1: Disable warning C4640 in certverifier. r=keeler
...
--HG--
extra : rebase_source : a608f8704f57312902b05258ff53a4d1f2010cbc
2014-08-04 11:29:25 -07:00
Patrick McManus
f8a14606da
bug 1027720 - enforce h2 requirement that sever uses aead r=hurley r=dkeeler
2014-08-04 16:54:10 -04:00
Ed Morley
9239e94fea
Backed out changeset fa05c69d7de1 (bug 996237)
2014-08-04 15:34:15 +01:00
Martin Thomson
b3853a0865
Bug 996237 - Fix nss.def for Android/B2G. r=wtc
2014-08-01 14:44:00 -04:00
Ed Morley
606b89b834
Backed out changeset 972daa5dd3c5 (bug 1027720) for build failures
2014-08-04 14:33:14 +01:00
Patrick McManus
004b6798a9
bug 1027720 - enforce h2 requirement that sever uses aead r=hurley r=dkeeler
2014-08-01 16:59:00 -04:00
Ed Morley
7feeef7c09
Merge mozilla-central and inbound
2014-08-04 12:23:28 +01:00
Ed Morley
b17124bab9
Backed out changeset cabe3163d4bc (bug 1047560) for conflicting with the automated HPKP preload list update
2014-08-04 12:22:36 +01:00
Ed Morley
efe972f974
Merge latest green b2g-inbound changeset and mozilla-central; a=merge
2014-08-04 12:13:23 +01:00
ffxbld
a86bcdd47d
No bug, Automated HPKP preload list update from host bld-linux64-spot-075 - a=hpkp-update
2014-08-02 03:22:22 -07:00
ffxbld
b2a536ffc2
No bug, Automated HSTS preload list update from host bld-linux64-spot-075 - a=hsts-update
2014-08-02 03:22:20 -07:00
Bob Owen
8c896093c8
Bug 1045646 - Part 2: Replace AutoPushJSContext in nsCryptoRunnable::Run. r=bholley
2014-08-01 09:00:58 +01:00
Brian Smith
0ccaf0860c
Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler
...
--HG--
extra : rebase_source : 2cc39d3c322c1355aad003f2497659a091febac2
2014-08-02 08:49:12 -07:00
Brian Smith
de725ae5ef
Bug 1047792: Rely on mozilla::pkix to filter out expired certs instead of CERT_CreateSubjectCertList, r=keeler
...
--HG--
extra : rebase_source : 5182147037b69f0ac3c3cd060d6e2af71bfde2e7
2014-08-01 23:16:21 -07:00
Brian Smith
25a73829af
Bug 1041344: Refactor mozilla::pkix::CheckCertificatePolicies, r=cviecco
...
--HG--
extra : rebase_source : d40184b986e9c6ed44c0b39a485292a91f924f13
2014-07-19 18:51:10 -07:00
Monica Chew
6eea93a408
Bug 1047560: Enable pinning on dropbox (r=keeler)
2014-08-01 13:12:38 -07:00
Jed Davis
9b70e225e5
Bug 1046525 - Allow get{e,}gid and sched_{g,s}etparam in sandboxed content processes. r=kang
...
Some of these were already in the desktop whitelist; those duplicates
are removed.
--HG--
extra : amend_source : 3ab4b50e3f1980b4d7b93cc17f34b926e2aa2396
2014-08-01 15:05:44 -07:00
Brian Smith
18c07f1b91
Bug 1041186, Part 3: More renaming, r=keeler
...
--HG--
extra : rebase_source : e4d70240f25f566c3bde91d515739bf46853fe8d
2014-07-31 20:55:52 -07:00
Brian Smith
d77dac0580
Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler
...
--HG--
extra : rebase_source : bf57a9eb6ae5c122912e00a47156010e5ea99478
2014-07-31 12:17:31 -07:00
Brian Smith
ffe743ee06
Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : 0f4a33f2c66594930ba9c79233648c70e33ba27c
2014-07-18 22:30:51 -07:00
Brian Smith
5f56fc60d6
Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco
...
--HG--
extra : rebase_source : d5c07dc29a95ccb75a7a8f199de26d43950b9ed4
2014-07-20 11:06:26 -07:00
Brian Smith
a95b2088a5
Bug 1039601: Use bounds-checked DERArray instead of plain arrays in pkixocsp.cpp, r=cviecco
...
--HG--
extra : rebase_source : cbe6257fc470069de0f7cb4f9f169550980a6b98
2014-07-16 09:54:10 -07:00
Brian Smith
c45dc156d1
Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler
...
--HG--
extra : rebase_source : 4f3e41916cd7e2c74679d468eeeb702af3321532
2014-07-18 11:48:49 -07:00
Nathan Froyd
12c76f15f7
Bug 1042878 - part 2 - move MOZ_CAIRO_CFLAGS et al additions to C*FLAGS into moz.build; r=glandium
2014-07-24 11:55:33 -04:00
Andrew McCreight
426692835a
Bug 1029151 - Remove dangerous public destructor of nsNSSCertificate. r=keeler
2014-07-30 13:00:29 -07:00
Andrew McCreight
14c7458527
Bug 1029150 - Remove dangerous public destructor of nsCryptoRunnable. r=keeler
2014-07-30 13:00:29 -07:00
Ed Morley
dcbfd040d1
Backed out changeset d50d7e88f35e (bug 1012951) for LSan failures
2014-07-30 16:49:43 +01:00
Jed Davis
8cff1bfff8
Bug 1012951 - Sandbox GMP plugins on Linux using seccomp-bpf. r=kang r=ted
2014-07-29 15:31:12 -07:00
Ehsan Akhgari
3fa82c9346
Bug 1045436 - Fix more bad implicit constructors in XPCOM; r=froydnj
2014-07-29 20:43:56 -04:00
Mike Hommey
c48f53e37a
Bug 1043865 - Remove the remainder of compilation bits from the libs tier. r=gps
2014-07-29 08:59:27 +09:00
Mike Hommey
179299ea01
Bug 1043862 - Make the binaries target use the compile tier. r=gps
2014-07-29 08:58:28 +09:00
Mike Hommey
5f6ba110e6
Bug 1043802 - Remove TOOLS_DIRS and TEST_TOOLS_DIRS. r=gps
2014-07-29 08:55:55 +09:00
Carsten "Tomcat" Book
bcf40664e4
merge mozilla-inbound to mozilla-central a=merge
2014-07-28 15:32:36 +02:00
ffxbld
634832a160
No bug, Automated HPKP preload list update from host b-linux64-ix-0010 - a=hpkp-update
2014-07-26 03:16:45 -07:00
ffxbld
e56e203db4
No bug, Automated HSTS preload list update from host b-linux64-ix-0010 - a=hsts-update
2014-07-26 03:16:43 -07:00
Jed Davis
301d254a40
Bug 1017393 - Record rejected syscall number in crash dump. r=kang
2014-07-24 11:36:00 +02:00
David Keeler
67d0a99f3a
bug 1040889 - don't re-cache OCSP server failures if no fetch was attempted r=briansmith r=cviecco
...
--HG--
extra : rebase_source : e00c84e62ecca3e97794d3ceafcd1f5f618045d1
2014-07-25 16:59:22 -07:00
Mike Hommey
a62cdc4fa7
Bug 1043344 - Move libraries and programs build to the compile tier. r=gps
2014-07-25 07:14:40 +09:00
Jeff Walden
235c1f7500
Bug 1037100 - Remove all use of ScopedDeleteArray from miscellaneous places. r=jcranmer
...
--HG--
extra : rebase_source : 937557b819742ee62e10a4afa6c5152b910cd8b2
2014-07-10 20:37:40 -07:00
Alexandre Poirot
7ea4dd517f
Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files; fix previous bustage on a CLOSED TREE, r=ahal
2014-07-02 15:40:56 -07:00
Brian Smith
2544688b97
Bug 1041730: Remove unused parameters from PublicKeyPinningService, r=cviecco
...
--HG--
extra : rebase_source : 6a091a32ab5178899fc1f9ceb57614f4a87f25c3
2014-07-21 19:18:31 -07:00
Brian Smith
a2f498819e
Bug 1039031: Print name of server in TLS/OCSP tests, r=cviecco
...
--HG--
extra : rebase_source : 4d5ae2bdd920f29c6f820b6daf035ddb12406b12
2014-07-15 16:58:31 -07:00
Marco Castelluccio
3236b9594b
Bug 1021345 - Allow apps to be installed from the Marketplace staging server. r=fabrice
2014-07-23 13:20:25 +02:00
Mike Hommey
7cab62150a
Bug 1041936 part 2 - Directly use the static library "xul" to link into "xul-gtest" instead of having an intermediate library "xul" used by "xul-shared" and "xul-gtest". r=gps
2014-07-23 13:33:09 +09:00
Mike Hommey
95063176fa
Bug 1036894
part 9 - Replace all EXTRA_DSO_LDOPTS, SHARED_LIBRARY_LIBS and LIBS with EXTRA_LIBS, OS_LIBS or OS_LDFLAGS, appropriately. r=gps
...
OS_LIBS for libraries that are not part of the gecko tree, EXTRA_LIBS for
libraries, such as NSPR, that are in the tree, but are not handled by
moz.build just yet. Those EXTRA_LIBS may also come from a system library.
However, in cases where the expanded variables are always empty for the
in-tree case, OS_LIBS is used (as for, e.g. MOZ_ZLIB_LIBS). OS_LDFLAGS is
used exclusively for non-library linker flags.
Always pass EXTRA_LIBS before OS_LIBS on linker command lines.
Forbid EXTRA_DSO_LDOPTS, SHARED_LIBRARY_LIBS and LIBS in Makefiles.
2014-07-23 13:31:02 +09:00
Mike Hommey
5fab42fcaf
Bug 1036894
part 8 - Move most in-tree library linkage information to moz.build, as USE_LIBS. r=gps
2014-07-23 13:30:52 +09:00
Mike Hommey
6d6d400ea1
Bug 1036894
part 6 - Emit SimplePrograms for CPP_UNIT_TESTs, and make the corresponding moz.build config look like that of SIMPLE_PROGRAMS. r=gps
2014-07-23 13:29:44 +09:00
Mike Hommey
a33d7d67e6
Bug 1036894
part 1 - Move MAKE_FRAMEWORK, SDK_LIBRARY, SHARED_LIBRARY_NAME and STATIC_LIBRARY_NAME to moz.build. r=gps
...
At the same time, make the Library data more useful in the build frontend.
2014-07-23 13:29:09 +09:00
Wes Kocher
be4af0e0fd
Merge m-c to inbound
2014-07-22 18:39:17 -07:00
Jonathan Griffin
1c5d8636ac
Backed out changeset 64586374a208 on a CLOSED TREE
2014-07-22 18:29:57 -07:00
Jim Mathies
e5f4ec183a
Bug 948574 - Provide limited access to nsISiteSecurityService apis in the child, and prevent the direct creation of nsISiteSecurityService. r=bz, sr=ptheriault, original author: David Keeler <dkeeler@mozilla.com>
2014-07-22 07:17:45 -05:00
Ehsan Akhgari
a50127383b
Bug 1041325 - Use intrin.h for _ReturnAddress in the chromium sandbox code; r=bbondy
...
--HG--
extra : rebase_source : 06bb642636a9f3df2e75eb950816a7d48da85faf
2014-07-20 19:05:44 -04:00
Ehsan Akhgari
da7f65d605
Backed out changeset 4b792c35d0be (bug 1041325) because of build bustage
2014-07-20 19:19:05 -04:00
Ehsan Akhgari
006ec45925
Bug 1041325 - Use intrin.h for _ReturnAddress in the chromium sandbox code; r=bbondy
2014-07-20 19:05:44 -04:00
Ryan VanderMeulen
21d58ba963
Merge m-c to inbound. a=merge
2014-07-20 15:14:23 -04:00
ffxbld
bc78cf0191
No bug, Automated HPKP preload list update from host bld-linux64-spot-477 - a=hpkp-update
2014-07-19 03:17:35 -07:00
ffxbld
a6a2bd935e
No bug, Automated HSTS preload list update from host bld-linux64-spot-477 - a=hsts-update
2014-07-19 03:17:32 -07:00
Alexandre Poirot
98afd25e0d
Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files; fix previous bustage on a CLOSED TREE, r=ahal
2014-07-02 15:40:56 -07:00
Jonathan Griffin
38f79ff899
Backout 4f6d9db92389 for bustage on a CLOSED TREE
2014-07-22 17:55:50 -07:00
Mike Hommey
622bf09730
Bug 1041864 - Remove LIBRARY_NAMEs that aren't used. r=mshal
2014-07-23 08:39:56 +09:00
Alexandre Poirot
37506aa45c
Bug 1027242 - Blacklist mulet's failing tests + expose 'mulet' to ini files. r=ahal
2014-07-02 15:40:56 -07:00
Camilo Viecco
2fb2490eb9
Bug 1004353 - Enable pinning for TOR websites. r=mmc
...
--HG--
extra : rebase_source : d880368dd9eaaafcde353ce187438ae074994bfa
2014-07-22 14:28:52 -07:00
Jed Davis
90ebf4e684
Bug 1037211 - Remove MOZ_CONTENT_SANDBOX_REPORTER by making it always true. r=kang r=ted
...
--HG--
extra : amend_source : 450d51dab077794e194bf407044de95627de0cde
2014-07-17 14:57:28 -07:00
Richard Barnes
91cfa4eae8
Bug 1034852 - Add support for AES-KW to WebCrypto API r=keeler
2014-07-19 07:04:00 -05:00
Richard Barnes
e10fdbd715
Bug 1025230 - Allow import/export of JWK-formatted keys in WebCrypto r=bz,keeler
2014-07-19 08:25:00 -05:00
Makoto Kato
3708a1ba13
Bug 984033 - Large OOM in nsStreamLoader::WriteSegmentFun. r=honza
2014-07-17 17:37:33 +09:00
Jed Davis
c55ab9dd20
Bug 1038900 - Dynamically allocate signal number for sandbox startup. r=kang
2014-07-16 13:37:00 +02:00
Tim Abraldes
1aaa7148c1
bug 985252. Build sandbox code regardless of whether --enable-content-sandbox/MOZ_CONTENT_SANDBOX is provided. Enable sandboxing of GMP plugins. Enable SandboxBroker
to set different security policies for different process types. r=bbondy, r=cpearce, r=bent
2014-07-16 16:01:34 -07:00
Wan-Teh Chang
22a38b2f79
Bug 1025729: Update NSS to NSS_3_17_BETA1.
...
Also includes fixes for bug 836658, bug 1026148, bug 1028582, bug 920719.
2014-07-16 14:26:11 -07:00
Cykesiopka
a04b962a5e
Bug 360126 - OCSP Delegated Responder Test. r=briansmith
2014-07-15 19:51:00 -04:00
Cykesiopka
4e47589e4d
Bug 360126 - Main tests. r=cviecco
2014-07-15 19:50:00 -04:00
Cykesiopka
0289b45f0c
Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith
2014-07-15 19:49:00 -04:00
Bob Owen
d1da9cff99
Bug 1035275 - Remove unused base Chromium code. r=bbondy
2014-07-07 13:59:11 +01:00
Brian Smith
8483b958ad
Bug 1038837: Factor out mozilla::pkix::Input into a separate header, r=mmc
...
--HG--
rename : security/pkix/lib/pkixder.h => security/pkix/include/pkix/Input.h
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : 09bac0a183932f721cdfd32936595867e4dc26ce
2014-07-13 13:17:36 -07:00
Brian Smith
96c220acca
Bug 1038828: Replace mozilla::pkix::der::Result with uses of mozilla::pkix::Result, r=mmc
...
--HG--
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : e385af4bab665627aa5d434db04830065cbc641f
2014-07-15 10:33:49 -07:00
Jed Davis
2ff3fcad0d
Bug 1038490 - Fix misuse of MOZ_WIDGET_GONK in Linux content process sandbox policy. r=kang
...
--HG--
extra : amend_source : 0a7fe8ca751b59102cbc23316b18982268306423
2014-07-14 18:35:56 -07:00
Jed Davis
79f8763545
Bug 1038486 - Fix Linux desktop seccomp sandbox build on 32-bit x86. r=kang
...
--HG--
extra : amend_source : 130d2cbd485734997739ea96ac5d83c01899d8b0
2014-07-09 16:52:56 -07:00
Brian Smith
1c90cc26f0
Bug 916629, Part 4: Unit tests for trust of delegated OCSP responder certificates for mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : c473285add9faee9a876677404935bdc253832cb
2014-07-10 21:20:17 -07:00
Brian Smith
a60ce49776
Bug 916629, Part 3: Unit tests for OCSP responses signed by a delegated OCSP responder for mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : c2c78458aa674dcc1e1426a0efc81df19b73ac4f
2014-07-10 22:14:57 -07:00
Brian Smith
4df6195ea8
Bug 916629, Part 2: Unit tests for "successful" OCSP responses for mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : 14633119755cbfd55fc3bfef9cf482de3d638b53
2014-07-15 10:09:26 -07:00
Brian Smith
d1fd17671c
Bug 916629, Part 1: Unit tests for OCSP responses without responseBytes, r=keeler
...
--HG--
extra : rebase_source : 62ef4209745ff8f2c5a852beb1a9823cbe7c7ff4
2014-07-14 23:09:36 -07:00
jvoisin
20443103f0
Bug 1035786 - Fix namespace bug in Linux sandbox LOG_ERROR macro. r=jld
2014-07-08 05:53:00 +01:00
Jed Davis
51e7e12a6c
Bug 1035786 - Avoid warning-as-error sandbox build failure with an explicit cast. r=gdestuynder
...
getpid() is never negative, so this is safe.
2014-07-10 17:37:45 -07:00
Bob Owen
d9210e4477
Bug 1035786 - Fix member variable initialisation order in LogMessage stub in Linux Sandbox.cpp. r=jld
2014-07-09 12:32:49 +01:00
Tim Taubert
09f7b51771
Bug 1026398 - Add support for RSA-OAEP to WebCrypto API r=rbarnes,bz,dkeeler
...
* * *
Bug 1026398 - Add RSA-OAEP tests r=rbarnes
2014-07-14 18:33:12 -07:00
Brian Smith
7cd854102a
Bug 1038098: Save intermediate certificates during TLS handshake, r=keeler
...
--HG--
extra : rebase_source : 99e2551e78bc8eac91174e5320c15623ede26642
extra : histedit_source : c4af1c24b95b1b3c8a86d06575645b6ffc5308a6
2014-07-14 16:43:33 -07:00
Brian Smith
17375cc8b3
Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : dd8dc1243ea2e37955a15f2481e1c452311e90d8
extra : histedit_source : adc1a2035d41c608d3f0ebe14bba159b2857502d
2014-07-06 19:36:05 -07:00
Brian Smith
beb502cd9f
Bug 1036107, Part 2: Test algorithm identifier parsing, r=keeler
...
--HG--
extra : rebase_source : c800d42856d81ba8cceaadde0caa98477b3008f4
extra : histedit_source : 71305fa34b435450525ae3a3e603aef065eaec14
2014-07-10 18:30:58 -07:00
Brian Smith
c162caba82
Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : 94c49062ae3ddf755651f151e2d648543b10e1ad
extra : histedit_source : a7377bf1d9adb62e1c584e2adeb793aa074245fb
2014-07-10 19:00:32 -07:00
Birunthan Mohanathas
be38d67e26
Bug 1038417 - Convert tabs to spaces in moz.build files. r=gps
2014-07-14 15:58:10 -07:00
Monica Chew
5d17335955
Bug 1020485: Enable production mode for fxa (r=keeler)
2014-07-14 13:06:25 -07:00
Carsten "Tomcat" Book
90fb1d9bfd
merge mozilla-inbound to mozilla-central a=merge
2014-07-14 14:34:36 +02:00
ffxbld
51ac93f62d
No bug, Automated HPKP preload list update from host bld-linux64-spot-135 - a=hpkp-update
2014-07-12 03:13:54 -07:00
ffxbld
8ea8348fac
No bug, Automated HSTS preload list update from host bld-linux64-spot-135 - a=hsts-update
2014-07-12 03:13:52 -07:00
Ryan VanderMeulen
296caa949c
Merge inbound to m-c. a=merge
2014-07-11 16:34:56 -04:00
ffxbld
457f78b54e
No bug, Automated HPKP preload list update from host bld-linux64-spot-1092 - a=hpkp-update
2014-07-11 06:19:00 -07:00
ffxbld
9acfc86acf
No bug, Automated HSTS preload list update from host bld-linux64-spot-1092 - a=hsts-update
2014-07-11 06:18:58 -07:00
Ed Morley
65aa1f33ef
Backed out changeset 5460c4558253 (bug 1026398) for test_WebCrypto.html timeouts on B2G; CLOSED TREE
2014-07-11 17:01:44 +01:00
Mike Hommey
70a5917917
Bug 1036864 - Remove EXPORT_LIBRARY. r=mshal
2014-07-11 19:06:55 +09:00
Brian Smith
60c3387388
Bug 1036765: Disable cipher suites that are not in the "Browser Cipher Suite" proposal that are still enabled, r=keeler
...
--HG--
extra : rebase_source : af06ac8fe6c2132b942ca4a1a50a12505b3ca508
extra : histedit_source : 2127635c80fbff235136980990993e753509e802
2014-07-09 18:33:38 -07:00
Harsh Pathak
1716725017
Bug 1036080 - Fix addCertFromBase64() to update trust bits of existing permanent certificates. r=keeler
2014-07-10 11:38:00 +02:00
Richard Barnes
d3ecd20c07
Bug 1021607 - Add support for PBKDF2 to WebCrypto API. r=bz
...
0001 - Introduce BasicSymmetricKeyAlgorithm r=rbarnes
0002 - Implement import key operation for PBKDF2 r=bz,rbarnes
0003 - Introduce MapAlgorithmNameToMechanism() r=rbarnes
0004 - Implement derive bits operation for PBKDF2 r=rbarnes,keeler,bz
0005 - Introduce GetKeySizeForAlgorithm() r=rbarnes
0006 - Implement derive keys operation for PBKDF2 r=rbarnes,bz
2014-07-12 20:06:00 +02:00
Richard Barnes
f58a5d84f8
Bug 1026398 - Add support for RSA-OAEP to WebCrypto API. r=bz,dkeeler
2014-07-10 13:44:00 +02:00
Nathan Yee
b346b2aea3
Bug 1006671 - Remove unnecessary JSContext argument to nsContentUtils::GetContentSecurityPolicy. r=bholley
2014-07-10 19:25:00 +02:00
Monica Chew
0d4a092978
Bug 1036142: Don't use kPublicKeyPinningPreloadListLength (r=keeler)
2014-07-09 12:58:40 -07:00
Brian Smith
94e53dc0be
Bug 1035942: Decide whether to consider end-entity CN as a dnsName in CheckNameConstraints instead of in BuildCertChain, r=cviecco
...
--HG--
extra : rebase_source : 19c5949253e4e631b0bd841f17f000885001b327
extra : histedit_source : dce57eb862a2a13d07d11fdf6917afcf6cb4136c
2014-07-08 13:04:17 -07:00
Brian Smith
3f110246be
Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler
...
--HG--
extra : rebase_source : fc2b39e5e2b44fea365914e83a7d1f2dc9b784bc
extra : histedit_source : b40e5e8cb106fe87f6f065b01ca43adb0bf3a605
2014-07-06 15:55:38 -07:00
Mike Shal
ba3758b281
Bug 1036569 - Fix NSS_STATIC_LIBS with carriage return on Windows; r=glandium
2014-07-09 14:38:29 -04:00
Camilo Viecco
65d9a348ea
Bug 1030204
- 2/2 Tests for Name constraints for ANSSI(DCISS) Root cert in psm. r=keeler
...
--HG--
extra : rebase_source : 0b64f7206446a8c414df5b0f4a9653f0180b8b44
2014-07-08 16:16:22 -07:00
Camilo Viecco
867a197ca1
Bug 1030204
- 1/2 Name constraint ANSSI(DCISS) Root cert in mozilla::pkix. r=keeler
...
--HG--
extra : rebase_source : 221ca75af601649731bf83cace2e6b0edcd4b2ab
2014-07-08 16:16:26 -07:00
Monica Chew
fccf311e4a
Bug 1035923: Remove deprecated certs from google_root_pems (r=keeler)
2014-07-08 16:01:29 -07:00
Benoit Jacob
a0d5e2d502
Bug 1035394 - Fix dangerous public destructors in security/ - r=bsmith
2014-07-08 17:23:18 -04:00
Camilo Viecco
10177d7a71
Bug 827264 - Add some temporary android logging to nss. r=blassey
...
--HG--
extra : rebase_source : 8f16d6b6cbaed2ef51fb5d1ecf7edbb0b8568ffe
2014-06-27 13:55:11 -07:00
Chris Peterson
b200e46a0e
Bug 1035607 - Remove unused empty_null to fix -Wunused warning-as-error in security/pkix. r=briansmith
2014-07-07 20:37:21 -07:00
Brian Smith
7d7bb101fa
Bug 1035470: Use signature algorithm OID instead of digest algorithm OID in the signature field of certificates in mozilla::pkix tests, r=cviecco
...
--HG--
extra : rebase_source : 99b1d5c0739221e90d4b04738f9362135f42a23c
2014-07-07 00:46:10 -07:00
David Keeler
113550df5d
bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith
2014-07-07 15:33:24 -07:00
Brian Smith
416e15c804
Bug 1035008, Part 2: Modify existing mozilla::pkix GTests to follow naming conventions, r=mmc
...
--HG--
rename : security/pkix/test/gtest/pkix_cert_chain_length_tests.cpp => security/pkix/test/gtest/pkixbuild_tests.cpp
rename : security/pkix/test/gtest/pkix_cert_extension_tests.cpp => security/pkix/test/gtest/pkixcert_extension_tests.cpp
rename : security/pkix/test/gtest/pkix_ocsp_request_tests.cpp => security/pkix/test/gtest/pkixocsp_CreateEncodedOCSPRequest_tests.cpp
extra : rebase_source : 05035197c37cd2fecf0c6e2f5231eeabfd4f64fd
extra : histedit_source : db050cf69b025e34e992a68b8b57665608c6a3d9
2014-07-05 22:14:25 -07:00
Brian Smith
2a32961e87
Bug 1035008, Part 1: Document naming convention for mozilla::pkix GTests, r=mmc
...
--HG--
extra : rebase_source : 8239f56513d8aba59eb8851bd219295fb6920b64
extra : histedit_source : 90856c24e66c7cc451c65cfd72a005cb2949085a
2014-07-06 15:59:08 -07:00
Brian Smith
783ead1861
Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc
...
--HG--
extra : rebase_source : 68e6da2f1e1c7fa678ef4cc81d23cc6298709108
extra : histedit_source : feba4c589dbf004ee50e2dea1fca0809f8f97674
2014-07-03 21:49:56 -07:00
Brian Smith
f5ec8594e7
Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler
...
--HG--
extra : rebase_source : e8c734ecb2de2c52dd8909c8b48f4bdb09d0128e
2014-07-02 16:15:16 -07:00
Brian Smith
4c63d2fa78
Bug 1033563, Part 2: Convert mozilla::pkix::BuildForwardInner into an iterator-type thing, r=keeler
...
--HG--
extra : rebase_source : 175e308191441035db4f3eed4a855205bab1a3f3
2014-07-02 15:03:58 -07:00
Brian Smith
172778c87b
Bug 1033563, Part 1: Move revocation checking code from mozilla::pkix::BuildForward to BuildForwardInner, r=keeler
...
--HG--
extra : rebase_source : 0f11eb64ffb00d953c39d81f4877067bd173eadd
2014-07-02 12:21:41 -07:00
Brian Smith
89e560be23
Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler
...
--HG--
extra : rebase_source : e093922497d005734c590a59f175993a7715bce8
2014-07-03 16:59:42 -07:00
Brian Smith
949d837110
Bug 1035034
: Fix typo in CertVerifier, r=cviecco
...
--HG--
extra : rebase_source : b8871ee8cf1e156ef48d363ea49e8b82ab268d98
2014-07-06 19:15:13 -07:00
Monica Chew
dee96fd3f7
Bug 1027133: Set test_mode=false for *.twitter.com (r=keeler)
2014-07-07 08:58:13 -07:00
Jan de Mooij
44da586636
Bug 1034191 - Make nsDependentJSString users work with Latin1 strings and nursery-allocated strings. r=bz
2014-07-05 17:30:54 +02:00
Brian Smith
e614192751
Bug 1029247, Part 1: Add new overload to mozilla::pkix::bind, r=keeler
...
--HG--
extra : rebase_source : 7a9dc499ed6ad038e4840953744a9fcd6578290b
2014-06-21 18:06:30 -07:00
Brian Smith
3637060bbc
Bug 1034634: Improve ScopedNSSTypes.h to compile without warnings, r=mmc
...
--HG--
extra : rebase_source : a9cbc1ab3083f1e893552c49a4518453f3b7d1b7
2014-07-03 20:40:46 -07:00
Brian Smith
d4e1dc58f6
Bug 1034632: Fix suppression of warnings for MOZILLA_PKIX_ENUM_CLASS, r=mmc
...
--HG--
extra : rebase_source : 962fa75dab803f1d139096fa5d41b4b656e32f86
2014-07-03 20:41:07 -07:00
Brian Smith
b8878b14f6
Bug 1034412: Clarify definition of mozilla::pkix::der::SEQUENCE, r=mmc
...
--HG--
extra : rebase_source : 3e139a66133c1d7916fbc13c7cec2b12e9545122
2014-06-30 21:58:34 -07:00
Zack Weinberg
b1b4b8dc9d
Bug 234856: add automated test case (fixed by bug 235230). r=kaie
2014-07-04 12:22:32 -04:00
Marco Castelluccio
416979553c
Bug 1029674 - Fix installation of apps with custom origin. r=myk,keeler
...
--HG--
rename : toolkit/webapps/tests/test_packaged_launch.xul => toolkit/webapps/tests/test_custom_origin.xul
2014-07-04 15:23:16 +02:00
Harsh Pathak
7c4b2ba847
Bug 643041 - Merge nsIX509Cert2 and nsIX509Cert3 into nsIX509Cert, and merge nsIX509CertDB2 into nsIX509CertDB. r=keeler
...
--HG--
extra : rebase_source : 5283c637e45dbee9f741d56cda54fdef1afce16e
2014-07-03 22:09:24 -07:00
Brian Smith
c74e0b81e0
Bug 1019770: Add tests for checking of notAfter and notBefore, r=cviecco
...
--HG--
extra : rebase_source : 614e002886ffa73e7e38218ebb3ea2509edcd1a4
2014-06-30 19:12:35 -07:00
Monica Chew
43074631ad
Bug 1033872
: Split off api.accounts.firefox.com into a separate pinset (r=keeler)
2014-07-03 16:41:57 -07:00
Kai Engert
75b072ee06
Bug 1029561, Update to NSS 3.16.3 after July 1st to include root CA updates, r=rrelyea
2014-07-03 17:24:18 +02:00
Jed Davis
afdeb7bf07
Bug 956961 - Stop disabling sandboxing when DMD is enabled. r=kang
...
--HG--
extra : rebase_source : 4737cfd613c1ddee8e1a4340e819eddc151e73f7
extra : histedit_source : 2d2610a775a3ae986157f61ef3797f4e88baa922
2014-07-02 11:28:48 -07:00
Brian Smith
493ba137ec
Bug 1033103: Add and use mozilla::pkix::der::ExpectTagAndGetTLV, r=keeler
...
--HG--
extra : rebase_source : 16461be12705998799f5c84e2043d68b0c431cb0
2014-07-01 13:25:43 -07:00
Brian Smith
b5b2484458
Bug 1033092: Add unit tests for mozilla::pkix::der::ExpectTagAndGetValue, r=keeler
...
--HG--
extra : rebase_source : 8ad8960969e5ee5bf47054f1c285a85cbbdb18cf
2014-07-01 16:28:45 -07:00
Wes Kocher
21f4c1ac83
Backed out changeset 5206957b4f83 (bug 940506) for build bustage on a CLOSED TREE
2014-07-02 18:15:55 -07:00
Wes Kocher
2c188e3374
Merge m-c to inbound
2014-07-02 17:44:20 -07:00
Wes Kocher
075abc4af3
Merge inbound to m-c a=merge
2014-07-02 16:31:17 -07:00
David Keeler
0f5b0bc345
bug 940506 - remove nsIRecentBadCerts and implementation r=briansmith
2014-07-02 11:15:26 -07:00
ffxbld
35e5d94a2e
No bug, Automated HPKP preload list update from host b-linux64-hp-0034 - a=hpkp-update
2014-07-02 10:05:51 -07:00
ffxbld
372139bf9a
No bug, Automated HSTS preload list update from host b-linux64-hp-0034 - a=hsts-update
2014-07-02 10:05:48 -07:00
Wes Kocher
03cdc19fec
Backed out 3 changesets (bug 956961) for non-unified build bustage
...
Backed out changeset f1be89cb58b9 (bug 956961)
Backed out changeset 272b01e4f856 (bug 956961)
Backed out changeset 56907af18c66 (bug 956961)
2014-07-02 15:03:29 -07:00
Brian Smith
4fdd6599dc
Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler
...
--HG--
extra : rebase_source : d0bf802f4ff3fe9900ed7444c046617aa27faea9
2014-06-26 14:22:20 -07:00
Brian Smith
4036ffd34b
Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco
...
--HG--
extra : rebase_source : f38fd90973b4bdf2cff5887c7d48f7e7b2a7126b
2014-07-01 18:01:28 -07:00
Brian Smith
c849dbb035
Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco
...
--HG--
extra : rebase_source : fe0b6f06a374dd1e50233c352031e6fdbde1c5f9
2014-06-24 10:51:53 -07:00
Brian Smith
fb1fde93b7
Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco
...
--HG--
extra : rebase_source : 2b1fa83599c4d0748757b25b56f65e10d41504c8
2014-06-24 21:48:12 -07:00
Brian Smith
ffc0673b07
Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler
...
--HG--
extra : rebase_source : 22eaa4fbeb20d9b9524d550c1979f5ec27d963ac
2014-06-29 15:15:45 -07:00
Wes Kocher
1c9490da59
Backed out changeset 6728977a3687 (bug 1031952) to fix bustage on a CLOSED TREE
2014-07-01 17:44:18 -07:00
Wes Kocher
a2eaaf7841
Backed out changeset 5ea9b7bd2db5 (bug 1019770)
2014-07-01 17:43:47 -07:00
Wes Kocher
23fbb8d92d
Backed out changeset 981f8345edd8 (bug 1019770)
2014-07-01 17:43:43 -07:00
Wes Kocher
a1c6a7db77
Backed out changeset 91b03a644dbe (bug 1019770)
2014-07-01 17:43:38 -07:00
Wes Kocher
ea7141a1d8
Backed out changeset f97578949399 (bug 1032947)
2014-07-01 17:43:33 -07:00
Brian Smith
cd8fb3a537
Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler
...
--HG--
extra : rebase_source : 64bd4c390f708213242e0d4987b7117b0049d02a
2014-06-26 14:22:20 -07:00
Brian Smith
41accdc485
Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco
...
--HG--
extra : rebase_source : 5e8171a2a849d61866ccdff33f06d96f04fc4bd5
2014-06-30 17:11:56 -07:00
Brian Smith
1b4e9f681c
Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco
...
--HG--
extra : rebase_source : 8c891cc5269482d1ccf4c1c688e5576a2b8864f8
2014-06-24 10:51:53 -07:00
Brian Smith
7f7734a4ba
Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco
...
--HG--
extra : rebase_source : 05e348b4ae9bb88fdd0895ec5dcec55993ca17c4
2014-06-24 21:48:12 -07:00
Brian Smith
20671b9763
Bug 1031952: Remove preferences for obsolete cipher suites, r=keeler
...
--HG--
extra : rebase_source : 92ccc85ffe5db10649242d8796daecc6833ca14a
2014-06-29 15:15:45 -07:00
Monica Chew
cf58305707
Bug 1012875: Expire pins in 8 weeks once they reach stable (r=keeler)
2014-07-02 11:34:04 -07:00
Jed Davis
1ef012aafb
Bug 956961 - Stop disabling sandboxing when DMD is enabled. r=kang
...
--HG--
extra : amend_source : 66f2453794e6a8a581e1564e786cfc8cac1f6bbd
2014-07-02 11:28:48 -07:00
David Keeler
80e2e520b3
bug 1019770 - follow-up to remove unused const GENERALIZED_TIME_LENGTH r=briansmith
2014-07-02 10:04:31 -07:00
David Keeler
300346b437
bug 1025332 - use nsIDocshell.failedChannel in certificate exception dialog instead of recent bad certs service r=jaws
2014-06-13 16:13:09 -07:00
Kyle Huey
4266528680
Bug 1031051: Part 18 - Kill the old XPIDL-based event generator. r=smaug
2014-06-30 16:02:04 -07:00
Kyle Huey
30920f0855
Bug 1031051: Part 8 - Migrate SmartCardEvent to the WebIDL code generator. r=smaug
2014-06-30 16:02:02 -07:00
David Keeler
5df80b4290
bug 1005266 - disable test_ocsp_timeout.js on windows for frequent intermittent failures r=mmc
2014-06-30 13:14:31 -07:00
Joshua Cranmer
543133a600
Fix spelling mistake in changeset 3018d1b623ab (bug 1025998), r=bustage-fix a=bustage-fix
...
--HG--
extra : amend_source : 021b1b14fee5068e2176be9395c5c461f3333947
2014-06-29 21:34:47 -05:00
Joshua Cranmer
5626c3eb0f
Bug 1025998 - add a missed symbol for comm-central debug builds, rs=glandium, a=philor for landing on m-c directly.
2014-06-29 17:46:13 -05:00
Phil Ringnalda
34929c2096
Merge m-i to m-c, a=merge
2014-06-28 17:39:03 -07:00
ffxbld
46ffaff2bd
No bug, Automated HSTS preload list update from host bld-linux64-spot-147 - a=hsts-update
2014-06-28 03:40:19 -07:00
Nathan Froyd
1531e0e070
Bug 1025998 - part 2 - use hand-rolled .def files for linking NSS; r=glandium
2014-06-24 15:36:10 -04:00
Brian Smith
a1d6f81702
Bug 1030475: Use a valid id-ce-inhibitAnyPolicy extension value for test pkix_cert_extensions.KnownCriticalCEExtension, r=keeler
...
--HG--
extra : rebase_source : 34972b2842d65ad6d716b0fbccf4984f9efd1fbf
2014-06-25 17:14:32 -07:00
Brian Smith
a73a0dc5d2
Bug 1030478: Make the AIA extension used in pkix_cert_extensions.CriticalAIAExtension less invalid, r=keeler
...
--HG--
extra : rebase_source : 42241cb4c8d2ba4e3e0ccc937059f9510765314b
2014-06-25 16:42:50 -07:00
Brian Smith
fcdcfb823b
Bug 1031022: Go back to accepting explicit encoding of v1 for certificates and OCSP responses, r=cviecco
...
--HG--
extra : rebase_source : f0adf63879a48db6c036cce1a3e9a7b65e44fc4e
2014-06-26 17:03:48 -07:00
Carsten "Tomcat" Book
5de1cd29b1
merge fx-team to mozilla-central a=merge
2014-06-26 15:33:24 +02:00
Wes Kocher
9241a8d8d6
Merge m-c to fx-team a=merge
2014-06-25 18:44:50 -07:00
Nathan Froyd
ce9d50225d
Backout bcd72aabb661, 1ed1c6212f4c, and 8d6f286139ef (bug 1025998) for xpcshell bustage leading to this CLOSED TREE
2014-06-25 17:00:06 -04:00
Nathan Froyd
607a7a1114
Bug 1025998 - also export symbols groveled out of NSS by ctypes; r=me to reopen this CLOSED TREE
2014-06-25 15:14:49 -04:00
Brian Smith
f97af56e30
Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler
...
--HG--
extra : rebase_source : a1d66b75838e9dfad486f5654db6d977e5c1d97a
extra : histedit_source : 34e05d8b3d94500b9cb4f1e311f8fe526b97ba6e
2014-06-24 21:52:50 -07:00
Brian Smith
73c952f2fb
Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco
...
--HG--
extra : rebase_source : 7e91710ed7cd6e68875c2d26f0b503835968e1f2
extra : histedit_source : e07446cad5edbf6cbb048304bc2b2af4395410db
2014-06-25 01:32:06 -07:00
Brian Smith
e88af673ae
Bug 1029992, Improve AlgorithmIdentifier decoding in mozilla::pkix, r=cviecco
...
--HG--
extra : rebase_source : dec7d3e00afe3a9e433f789baf09c0c41679b0e2
extra : histedit_source : 47657cfde7a266b5d5322b024800abe316e9dbd6
2014-06-24 21:47:50 -07:00
Nathan Froyd
9527ae8cf6
Bug 1025998 - part 2 - use hand-rolled .def files for linking NSS; r=glandium
2014-06-24 15:36:10 -04:00
Kai Engert
8dc0d88271
Bug 1020695, Update Mozilla to use NSS 3.16.2, r=wtc
2014-06-25 11:25:59 +02:00
Carsten "Tomcat" Book
ec63c69c72
Backed out changeset 4f21e9bc729a (bug 1029364) for B2G Device and Emulator Bustage on a CLOSED TREE
2014-06-25 10:01:17 +02:00
Carsten "Tomcat" Book
a198d5204e
Backed out changeset a10da316a35f (bug 1029341)
2014-06-25 10:00:42 +02:00
Brian Smith
abcf9d2012
Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler
...
--HG--
extra : rebase_source : e307bea95d29cf78c9eaa7ddb1f2b2c195a59dc9
2014-06-24 21:52:50 -07:00
Brian Smith
f9aac2f45e
Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco
...
--HG--
extra : rebase_source : 79d5f29c2af1ec77d6bb8a7936bb0a17f28e8d52
2014-06-19 16:17:28 -07:00
Jim Blandy
7e20285e70
Bug 914753: Make Emacs file variable header lines correct, or at least consistent. DONTBUILD r=ehsan
...
The -*- file variable lines -*- establish per-file settings that Emacs will
pick up. This patch makes the following changes to those lines (and touches
nothing else):
- Never set the buffer's mode.
Years ago, Emacs did not have a good JavaScript mode, so it made sense
to use Java or C++ mode in .js files. However, Emacs has had js-mode for
years now; it's perfectly serviceable, and is available and enabled by
default in all major Emacs packagings.
Selecting a mode in the -*- file variable line -*- is almost always the
wrong thing to do anyway. It overrides Emacs's default choice, which is
(now) reasonable; and even worse, it overrides settings the user might
have made in their '.emacs' file for that file extension. It's only
useful when there's something specific about that particular file that
makes a particular mode appropriate.
- Correctly propagate settings that establish the correct indentation
level for this file: c-basic-offset and js2-basic-offset should be
js-indent-level. Whatever value they're given should be preserved;
different parts of our tree use different indentation styles.
- We don't use tabs in Mozilla JS code. Always set indent-tabs-mode: nil.
Remove tab-width: settings, at least in files that don't contain tab
characters.
- Remove js2-mode settings that belong in the user's .emacs file, like
js2-skip-preprocessor-directives.
2014-06-24 22:12:07 -07:00
Brian R. Bondy
cacb9c55fc
Bug 598615 - Rename HAVE_64BIT_OS to HAVE_64BIT_BUILD. r=ted
2014-06-24 22:16:25 -04:00
Wes Kocher
b683b68251
Backed out 2 changesets (bug 1027890) for B2G Windows Build bustage on a CLOSED TREE
...
Backed out changeset bcd694f0e95d (bug 1027890)
Backed out changeset 49cadfcde709 (bug 1027890)
2014-06-24 18:33:46 -07:00
Mike Hommey
195a1f903a
Bug 1027890 - Remove all sorts of build system code dedicated to pymake. r=gps
2014-06-25 08:38:28 +09:00
Cykesiopka
3cec6ba9b8
Bug 270016 - Make the list of certs shown in the Delete/Distrust cert dialog scrollable. r=keeler
2014-06-23 23:51:00 +02:00
Brian Smith
bd8f23ccd6
Bug 1028643: Convert nsISignatureVerifier to use CertVerifier (mozilla::pkix) and move nsISignatureVerifier functionality to nsIDataSignatureVerifier, r=keeler
...
--HG--
extra : rebase_source : 14f6f5dedd7145d574ac5b4c86b6ad42b6716ae8
extra : histedit_source : f891fbe80c4ca9fc62849bc2d6d8ffad372a6bf0
2014-06-22 18:50:22 -07:00
Brian Smith
109e54dee4
Bug 1028493: Remove unused stapledOCSPResponse parameter from CreateCetErrorRunnable, r=mmc
...
--HG--
extra : rebase_source : 6ceddadff81fd607b53de317dc841e334bc76621
extra : histedit_source : d05fe4430c880da25c4d361977218ceb416d8f0d
2014-06-20 19:43:09 -07:00
Benoit Jacob
e3e3df494f
Bug 1028588 - Fix dangerous public destructors in security/ - r=bsmith
2014-06-23 18:40:03 -04:00
Honza Bambas
d8b9a11e34
Bug 1023748 - Allow NTLMv1 over SSL/TLS by default, r=jduell
2014-06-23 19:43:40 +02:00