Cykesiopka
8b1facad54
Bug 1167866 - Add result strings to PSM test_cert* xpcshell tests. r=keeler
...
--HG--
extra : rebase_source : 306e5f3230350fefe1ade0f748f8d593a79f3392
2015-05-23 19:57:32 -07:00
Phil Ringnalda
9e5deef0e2
Merge m-i to m-c, a=merge
2015-05-23 13:31:21 -07:00
ffxbld
70743008c3
No bug, Automated HPKP preload list update from host bld-linux64-spot-023 - a=hpkp-update
2015-05-23 03:32:23 -07:00
ffxbld
3cb82ca5b5
No bug, Automated HSTS preload list update from host bld-linux64-spot-023 - a=hsts-update
2015-05-23 03:32:21 -07:00
Makoto Kato
685504d65d
Bug 958421 - XUL dialog for certificate is security/manager/pki/resouces is unnecessary on Firefox Android. r=snorp
2015-05-22 14:28:04 +09:00
Nathan Froyd
db188ea282
Bug 1160485 - remove implicit conversion from RefPtr<T> to TemporaryRef<T>; r=ehsan
...
Having this implicit conversion means that we can silently do extra
refcounting when it's completely unnecessary. It's also an obstacle to
making RefPtr more nsRefPtr-like, so let's get rid of it.
2015-05-01 09:14:16 -04:00
Tim Taubert
ab7196486a
Bug 1060112 - Don't treat OCSP responses omitting the requested certificate status as "unknown certificate" responses blocking the connection r=keeler
2015-05-21 13:39:34 -04:00
Eric Rahm
3925a960aa
Bug 1165515 - Part 1: Convert PR_LOG to MOZ_LOG. r=froydnj
2015-05-21 13:22:04 -07:00
Nicholas Nethercote
e90de3e5e0
Bug 1166586 (part 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj.
...
This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs
in a constructor and the PL_DHashTableFinish() call occurs in a destructor.
--HG--
extra : rebase_source : d8dc450f80ac23b8455141b471cc9ae823e1e384
2015-05-04 22:59:24 -07:00
David Keeler
309d57da39
Bug 1166031 - Update PSM xpcshell small RSA key test to reflect new error. r=Cykesiopka
...
Previously NSS would accept smaller RSA key sizes than PSM would in TLS handshakes. Now that the limit is the same, NSS handles the handshake termination with a different error code before PSM can make its own policy decision.
--HG--
extra : rebase_source : ceb01cc28cb63e9ca52b935ea22d917d79dee1b9
2015-05-21 12:57:03 -07:00
Cykesiopka
740177a058
Bug 1166078 - Clean up and add expected result strings to test_hmac.js. r=keeler
...
--HG--
extra : rebase_source : 7d8d3e38e2f706324bb4563f65a4d85b1af8866b
2015-05-18 15:22:54 -07:00
Birunthan Mohanathas
ed468964b8
Bug 1164714 - Flatten security/manager/pki/src/ directory. r=keeler
...
--HG--
rename : security/manager/pki/src/nsASN1Tree.cpp => security/manager/pki/nsASN1Tree.cpp
rename : security/manager/pki/src/nsASN1Tree.h => security/manager/pki/nsASN1Tree.h
rename : security/manager/pki/src/nsNSSDialogHelper.cpp => security/manager/pki/nsNSSDialogHelper.cpp
rename : security/manager/pki/src/nsNSSDialogHelper.h => security/manager/pki/nsNSSDialogHelper.h
rename : security/manager/pki/src/nsNSSDialogs.cpp => security/manager/pki/nsNSSDialogs.cpp
rename : security/manager/pki/src/nsNSSDialogs.h => security/manager/pki/nsNSSDialogs.h
rename : security/manager/pki/src/nsPKIModule.cpp => security/manager/pki/nsPKIModule.cpp
rename : security/manager/pki/src/nsPKIParamBlock.cpp => security/manager/pki/nsPKIParamBlock.cpp
rename : security/manager/pki/src/nsPKIParamBlock.h => security/manager/pki/nsPKIParamBlock.h
2015-05-19 10:47:42 -07:00
Birunthan Mohanathas
b8b7e39d71
Bug 1164714 - Flatten security/manager/pki/public/ directory. r=keeler
...
--HG--
rename : security/manager/pki/public/nsIASN1Tree.idl => security/manager/pki/nsIASN1Tree.idl
rename : security/manager/pki/public/nsIPKIParamBlock.idl => security/manager/pki/nsIPKIParamBlock.idl
2015-05-19 10:47:38 -07:00
Eric Rahm
4879ae86f4
Bug 1165518 - Part 2: Replace prlog.h with Logging.h. rs=froydnj
2015-05-19 11:15:34 -07:00
David Keeler
44861c2d49
bug 1165911 - do more safety checks when gathering successful TLS connection telemetry r=Cykesiopka
2015-05-18 10:37:38 -07:00
Nicholas Nethercote
4a930bc0f3
Back out a1f7ae44c7bb (bug 1164373) for causing intermittent test failures.
...
--HG--
extra : rebase_source : ac3d87bc11cf5cff81bc94f72ba01d1f05dfe445
2015-05-18 19:00:54 -07:00
Carsten "Tomcat" Book
09631fba2e
merge mozilla-inbound to mozilla-central a=merge
2015-05-18 13:43:01 +02:00
cedric
c38e008367
Bug 1152842 - Remove legacy Download Manager support from test_bug383369.html. r=paolo
2015-05-11 17:43:15 -07:00
Phil Ringnalda
e67e1e2a38
Merge m-c to m-i
2015-05-16 09:49:14 -07:00
Phil Ringnalda
d22fb4c9fd
Merge m-i to m-c, a=merge
2015-05-16 08:50:37 -07:00
ffxbld
d89ecd849b
No bug, Automated HPKP preload list update from host bld-linux64-spot-152 - a=hpkp-update
2015-05-16 03:30:30 -07:00
ffxbld
0c4a5d8d8b
No bug, Automated HSTS preload list update from host bld-linux64-spot-152 - a=hsts-update
2015-05-16 03:30:28 -07:00
Neil Rashbrook
cf42e317ab
Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan
2015-05-16 09:07:10 +01:00
Nicholas Nethercote
eab9ff6d25
Back out all four patches from bug 1161377. r=me.
...
Due to Android startup regressions (bug 1163066) and plugin crashes (bug
1165155).
--HG--
extra : rebase_source : 380f79e67dff4c4eaa2614f286a4d0669666b652
2015-05-14 21:48:43 -07:00
Wes Kocher
3c714c42eb
Backed out changeset 17cfad44e12b (bug 1155963) for breaking b2g builds
2015-05-14 16:35:18 -07:00
Neil Rashbrook
ae441fafa2
Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan
2015-05-15 00:00:33 +01:00
Cykesiopka
cb7ae71daf
Bug 1164409 - Reduce PSM xpcshell script code duplication. r=keeler
2015-05-15 02:28:00 -04:00
David Keeler
4e7fc3055e
bug 1141189 - implement skipping expensive revocation checks (OCSP fetching) for short-lived certificates r=rbarnes
2015-04-06 16:10:28 -07:00
Nicholas Nethercote
424c7b08b9
Bug 1164373 - Remove two static constructors involving PR_NewLogModule(). r=froydnj.
...
--HG--
extra : rebase_source : 089cbc39be20f60ca3c7e07b9f42034f19c4ea29
2015-05-13 18:02:56 -07:00
Nicholas Nethercote
ba79e01ad2
Bug 1161377 (part 3, attempt 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj.
...
--HG--
extra : rebase_source : 990907701818b7da2b4e8955c419bb61130e266f
2015-05-12 17:33:26 -07:00
David Keeler
3c315d18c3
bug 1102436 - remove PublicKeyPinningService::CheckChainAgainstAllNames r=Cykesiopka
2015-05-07 11:06:07 -07:00
Cykesiopka
737fac0f14
Bug 1163358 - Add "psm" tag to PSM xpcshell and mochitest manifests. r=dkeeler
...
--HG--
extra : rebase_source : 43570fd1ec37a363df530dac0fd457c1019d194d
2015-05-09 18:21:00 +02:00
Mike Hommey
fe90037862
Bug 1043692 - Add a DIST_INSTALL variable to moz.build, and replace NO_DIST_INSTALL with it. r=gps
2015-05-12 07:55:21 +09:00
Nicholas Nethercote
0323a0a1b5
Backout c375efe78e07 (bug 1161377 part 3) for (probably) increasing the static constructor count and regressing Fennec start-up time. r=me.
2015-05-10 22:16:18 -07:00
Phil Ringnalda
256161c570
Merge m-c to m-c, a=merge
2015-05-09 14:16:58 -07:00
ffxbld
2e46137393
No bug, Automated HPKP preload list update from host bld-linux64-spot-270 - a=hpkp-update
2015-05-09 03:31:59 -07:00
ffxbld
9dfe0d6356
No bug, Automated HSTS preload list update from host bld-linux64-spot-270 - a=hsts-update
2015-05-09 03:31:58 -07:00
Wes Kocher
e43a05d6d2
Merge fx-team to m-c a=merge
2015-05-08 10:29:41 -07:00
Eric Rahm
bfb87f34ff
Bug 1162691 - Part 2: Wrap expensive calls in PR_LOG_TEST. r=froydnj
...
Check that logging is enabled before performing potentially expensive
operations.
2015-05-08 14:36:34 -07:00
Eric Rahm
4eceb82c1f
Bug 1162691 - Part 1: Remove instances of #ifdef PR_LOGGING in security. r=froydnj
...
PR_LOGGING is now always defined, we can remove #ifdefs checking for it.
2015-05-08 14:36:33 -07:00
Daniel Veditz
7b4994dfc8
Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler
...
--HG--
extra : rebase_source : 5728bfc05f8326f5392a787d38bc64ec8dbefe21
extra : source : a02ea85607a2c0989f057053858125fa5046763b
2015-05-05 20:21:00 +02:00
Cykesiopka
f7b3a781d8
Bug 1153446
- Replace instances of double spacing with single spacing in nsserrors.properties. r=dkeeler
2015-05-01 02:40:00 +02:00
Phil Ringnalda
0dc457eba2
Merge m-i to m-c, a=merge
2015-05-02 10:02:17 -07:00
ffxbld
ba8964f0c6
No bug, Automated HPKP preload list update from host bld-linux64-spot-137 - a=hpkp-update
2015-05-02 03:30:49 -07:00
ffxbld
aaf9d7d061
No bug, Automated HSTS preload list update from host bld-linux64-spot-137 - a=hsts-update
2015-05-02 03:30:48 -07:00
Mike Hommey
924c9eb636
Bug 1134923 - Remove NS_Alloc/NS_Realloc/NS_Free. r=nfroyd
...
They are kept around for the sake of the standalone glue, which is used
for e.g. webapprt, which doesn't have direct access to jemalloc, and thus
still needs a wrapper to go through the xpcom function list and get to
jemalloc from there.
2015-05-01 09:40:30 +09:00
Nicholas Nethercote
c8ff2d51c8
Bug 1159972 - Remove the fallible version of PL_DHashTableInit(). r=froydnj.
...
It's no longer needed now that entry storage isn't allocated there. (The other
possible causes of failures in that function are less interesting and simply
crashing is a reasonable thing to do for them.)
This also makes PL_DNewHashTable() infallible, so I removed some
now-unnecessary checks of its result.
--HG--
extra : rebase_source : 4c6ab0c449bc18e8bace8bf036b5bd78d3a2f1c4
2015-04-29 16:38:29 -07:00
Masatoshi Kimura
8beb5af44d
Bug 1145844 - Update fallback whitelist. r=keeler
2015-04-29 13:48:53 +09:00
Nicholas Nethercote
17348fdef0
Bug 1161377 (part 3) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj.
...
This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs
in a constructor and the PL_DHashTableFinish() call occurs in a destructor.
2015-05-04 22:59:24 -07:00
Mark Goodwin
cb581e0eff
Bug 1128607 - Test the freshness check for OneCRL (r=keeler)
2015-05-07 18:54:07 +01:00
Mark Goodwin
f82bee04e1
Bug 1128607 - Add freshness check for OneCRL (r=keeler)
2015-05-07 18:54:05 +01:00
Patrick McManus
6c728ddf43
bug 1153212 - 2/2 Necko explicitly track origin vs routed host and give psm only origin r=dkeeler r=hurley IGNORE IDL
...
Allow necko to simultaneously track the dual concept of routed host
and origin (authenticated host). The origin is given to the socket
provider and the routed host is inserted at DNS lookup time as if it
were a SRV or CNAME.
--HG--
extra : rebase_source : f9cc87b92084025443bc0374b1dd994f01662ebb
2015-04-09 11:31:59 -04:00
Patrick McManus
6a940b1edd
bug 1153212 - 1/2 revert 90d6a38931fa to make room for better fix r=backout
...
--HG--
extra : rebase_source : a812bd796d4aa9df8e51c32a014663c025f3e0a6
2015-05-07 13:16:26 -04:00
Andrew Bartlett
ca3e5326e2
Bug 734229 - Partially address by refusing to re-negotiate on NTLM. r=mayhemer, r=keeler
...
Now only one NTLM Negotiate packet will be sent per connection, rather
than again after a failed authentication. The problem situation is
triggered due to failed Negotiate authentication, and is probably more
complex.
Pair-programmed-with: Garming Sam <garming@catalyst.net.nz>
--HG--
extra : rebase_source : dc2bac8a3b7dab5e774dcfb9ce33b73c7233d686
2014-11-28 11:34:06 +13:00
David Major
ebde6b9f4f
Bug 1157835: Remove the MSVC_ENABLE_PGO flag from the build system. r=glandium
...
--HG--
extra : rebase_source : 0c47c99bb8b92f8361a51fd81b20a2cc8647a986
2015-04-27 19:59:27 -04:00
Carsten "Tomcat" Book
596e5f9960
merge fx-team to mozilla-central a=merge
2015-04-27 12:34:03 +02:00
ffxbld
2ecabecaa7
No bug, Automated HPKP preload list update from host bld-linux64-spot-039 - a=hpkp-update
2015-04-25 03:32:33 -07:00
ffxbld
d0e7b73b16
No bug, Automated HSTS preload list update from host bld-linux64-spot-039 - a=hsts-update
2015-04-25 03:32:31 -07:00
Dave Townsend
7b5d12ad46
Bug 1038068: Check add-on signatures and refuse to install unsigned or broken add-ons (preffed off for now). r=dveditz
...
--HG--
extra : source : 3b48e1a81a170634dce964cd462c752d09680805
2015-03-31 11:32:40 -07:00
Carsten "Tomcat" Book
cdf101ec43
merge mozilla-inbound to mozilla-central a=merge
2015-04-24 14:37:13 +02:00
Fabrice Desré
471d07992f
Bug 1144600 - Don't crash when submitting <keygen> on b2g r=dkeeler
2015-04-23 13:35:49 -07:00
Blake Kaplan
24f35dfe49
Bug 1124076 - Properly detect certs when loaded and prompt to import them. r=sworkman/dkeeler
...
--HG--
extra : rebase_source : 11fb8b1c1a3044b82668136f4cfec4c758d9270c
2015-04-22 12:55:23 -07:00
David Keeler
a4f79b207d
bug 1157873 - remove certificates from CNNIC whitelist that aren't in the Pilot Certificate Transparency log r=rbarnes
...
Also remove certificates where notBefore is on or after 1 April 2015.
2015-04-21 16:07:33 -07:00
Nathan Toone
0343243a12
Bug 1124076 followup - fix the build when PR_LOGGING is not defined. r=mrbkap
2015-04-23 13:24:57 -07:00
David Keeler
6c532d910b
bug 1081128 - test_pinning.js takes ~300 seconds on b2g debug emulator - request a longer timeout for it r=Cykesiopka
...
--HG--
extra : amend_source : 9ba64939a0f277c9407f47731186cfea4da64774
2015-04-22 11:06:36 -07:00
Francois Marier
17b87281f2
Bug 1147212 - Add support for goog-unwanted-shavar. r=gcp,r=matej,r=smaug
...
--HG--
rename : toolkit/components/url-classifier/tests/mochitest/evilWorker.js => toolkit/components/url-classifier/tests/mochitest/unwantedWorker.js
extra : rebase_source : efe09564160fb2fcb1adb5f6599183f053268c40
2015-04-22 21:01:37 +12:00
Carsten "Tomcat" Book
ed2915b75f
Backed out changeset 7f3cf84c11a9 (bug 1124076) for bustage on a CLOSED TREE
2015-04-22 13:44:23 +02:00
Blake Kaplan
3a94be560c
Bug 1124076 - Properly detect certs when loaded and prompt to import them. r=sworkman/dkeeler
...
--HG--
extra : rebase_source : 00240091ae66180390a76a9613a4215cf591401d
2015-04-21 14:56:00 +02:00
Patrick McManus
04795f03be
bug 1153212 - Alt-Svc Fixes r=dkeeler r=hurley
2015-04-13 17:11:59 -04:00
Phil Ringnalda
7d4e804ec6
Merge m-i to m-c, a=merge
2015-04-18 16:36:32 -07:00
ffxbld
a178fd47b7
No bug, Automated HPKP preload list update from host bld-linux64-spot-222 - a=hpkp-update
2015-04-18 03:29:47 -07:00
ffxbld
aa4085d52f
No bug, Automated HSTS preload list update from host bld-linux64-spot-222 - a=hsts-update
2015-04-18 03:29:45 -07:00
Neil Deakin
af1ece91c4
Bug 1153248, re-enable a bunch of tests that now work with e10s, r=billm
2015-04-16 15:38:12 -04:00
David Keeler
5ff51a7744
bug 1151512 - only allow whitelisted certificates to be issued by CNNIC root certificates r=jcj r=rbarnes
2015-04-07 17:29:05 -07:00
David Keeler
81764496cd
bug 1147497 - Add API for querying site pin status. Disallow overrides for sites that have pins. r=mmc r=smaug r=cykesiopka r=past
2015-03-25 11:04:49 -07:00
Landry Breuil
c755113bc5
Bug 1153090 followup - consistently use sizeof(hash) r=dkeeler
2015-04-14 22:19:18 +02:00
Landry Breuil
88aa8d67cc
Bug 1153090 - Unaligned access in cert block list (r=keeler)
2015-04-14 21:19:52 +02:00
Brian Smith
566d65be48
Bug 1153738: Make ScopedPtr a minimal proper subset of std::unique_ptr, r=keeler
...
Remove all features of ScopedPtr that aren't in std::unique_ptr, and
remove all currently-unused features of ScopedPtr. In particular,
replace |operator=(T*)| with |reset(T* p = nullptr)| and make
|operator bool| explicit.
--HG--
rename : security/pkix/include/pkix/ScopedPtr.h => security/pkix/lib/ScopedPtr.h
extra : rebase_source : 206bfb32aa5a04a4719f28b4aca59fe2f0abbec3
2015-04-13 00:28:11 -10:00
Brian Smith
b1035c0992
Bug 1153737: Avoid unnecessary uses of mozilla::pkix::ScopedPtr, r=keeler
...
--HG--
extra : rebase_source : ea7083439f22cb40d6c97f872ef9866144516745
2015-04-12 19:57:48 -10:00
Carsten "Tomcat" Book
ede9c4f220
merge mozilla-inbound to mozilla-central a=merge
2015-04-13 12:00:00 +02:00
ffxbld
bd0890186b
No bug, Automated HPKP preload list update from host bld-linux64-spot-009 - a=hpkp-update
2015-04-11 03:29:55 -07:00
ffxbld
83c81d6e76
No bug, Automated HSTS preload list update from host bld-linux64-spot-009 - a=hsts-update
2015-04-11 03:29:53 -07:00
David Keeler
01409dbd35
bug 1147085 - remove nsINSSCertCache (replace it with nsIX509CertDB.getCerts()) r=Cykesiopka
2015-04-03 14:01:05 -07:00
Patrick McManus
bdc70031c6
Bug 1152895 - remove dead code in nsSSLIOLayerSetOptions r=dkeeler
2015-04-09 13:40:04 -04:00
Cykesiopka
3487ae0262
Bug 1147725 - Disable test_ocsp_fetch_method.js and test_ocsp_url.js on slow B2G Emulator debug builds. r=keeler
...
--HG--
extra : rebase_source : 87d4b8284b33498a50542d49b956db84cdae1b62
2015-04-06 14:05:00 +02:00
Phil Ringnalda
fa3a91e936
Merge m-i to m-c, a=merge
2015-04-04 09:59:17 -07:00
ffxbld
3a6df834e2
No bug, Automated HPKP preload list update from host bld-linux64-spot-220 - a=hpkp-update
2015-04-04 03:27:46 -07:00
ffxbld
81b8c93237
No bug, Automated HSTS preload list update from host bld-linux64-spot-220 - a=hsts-update
2015-04-04 03:27:44 -07:00
Cykesiopka
c2f2ce39ec
Bug 1149805 - Switch head_psm.js to Assert.jsm methods and add expected result strings. r=keeler
2015-04-02 05:50:00 -04:00
Cykesiopka
6680672cfb
Bug 488480 - Correct documentation about the function hasMatchingOverride() in nsICertOverrideService.idl. Original patch by Johnathan Nightingale. r=keeler
...
IGNORE IDL
--HG--
extra : rebase_source : 3e2f7be6a165caf413726d13c9ccee26abbd2925
2015-04-02 05:45:00 -04:00
Nathan Froyd
4c7234747e
Bug 1143651 - don't use CallQueryInterface when the compiler can do the cast for us; r=ehsan
2015-03-12 13:20:29 -04:00
Cykesiopka
7eb3221db7
Bug 1147726: Disable test_keysize_ev.js on slow B2G Emulator debug builds. r=dkeeler
2015-03-31 11:53:00 +02:00
Brian Smith
a0437d5b8f
Bug 1146057: Remove support for GCC 4.6, r=keeler
...
Since Gecko now requires GCC 4.7 or later, we no longer need to
work around the lack of support for "override" and "final" in
earlier versions of GCC.
--HG--
extra : rebase_source : 0f104f16be9e7c1ff87bbdd0d4ba6700b1081fb8
2015-03-30 20:18:46 -10:00
Mike Hommey
b077d9624d
Bug 1134920 - Use moz_xmalloc/moz_xrealloc/free instead of nsMemory::Alloc/Realloc/Free. r=nfroyd
2015-04-01 13:51:45 +09:00
Mark Goodwin
d7b3e00bed
Bug 1138848 - Tests for modified OneCRL (r=keeler, unfocused)
...
* * *
* * *
give blocklist debug info to NSPR_LOG
2015-03-31 15:10:19 -07:00
Mark Goodwin
1b0d6fb879
Bug 1138848 - Modify OneCRL blocklist for subject / public key blocking (r=keeler, unfocused)
2015-03-31 15:10:09 -07:00
David Keeler
5a690c59fa
bug 844351 - remove nsISSLErrorListener r=cykesiopka
...
--HG--
extra : amend_source : e2adec756356509f0a4601bbeabf7ba7c8d15a8e
2015-03-24 16:00:10 -07:00
Cykesiopka
ee04a8b86a
Bug 1147247 - Use PRErrorCodeSuccess constant instead of literal 0 to represent success in PSM xpcshell tests. r=dkeeler
...
--HG--
extra : rebase_source : 75a144cbf0e166f92884275fb6c511c98d7e61bd
2015-03-27 23:16:00 +01:00
David Cooper
bb6cbdf02b
Bug 667471 - Pretty print names of ECDSA with SHA-2 algorithms in Certificate Viewer. r=dkeeler
...
--HG--
extra : rebase_source : eb961cbdf8fe1ccf74642d86c03ee6c41c30f2d4
2015-03-27 23:13:00 +01:00
Mike Hommey
c39e359c7d
Bug 1138293 - Use malloc/free/realloc/calloc instead of moz_malloc/moz_free/moz_realloc/moz_calloc. r=njn
...
The distinction between moz_malloc/moz_free and malloc/free is not
interesting. We are inconsistent in our use of one or the other, and
I wouldn't be surprised if we are mixing them anyways.
2015-03-31 12:32:49 +09:00
Brian Smith
36b7acc82a
Bug 1136278
, Part 2: Refactor test SubjectPublicKeyInfo generation, r=keeler
...
--HG--
extra : rebase_source : 7bb0327749fd013ba5de17483d21a9e9f21eb07a
extra : source : 9f3617a5b85a8a2ae9a82c0f0584b413a9b635b4
2015-02-26 13:10:13 -08:00
Andrew McCreight
2f48802ae0
Bug 1147572 - Remove implementation language field from DOM class info. r=jst
2015-03-30 10:45:39 -07:00
Jan-Ivar Bruaroey
c6676519f2
Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, florian, billm, jesup
2015-03-03 09:51:05 -05:00
Andrew McCreight
46dfeaba0b
Bug 1148070 - Change nsIClassInfo::getHelperForLanguage() to getScriptableHelper(). r=bholley
2015-03-29 07:52:54 -07:00
Randell Jesup
2b3486247c
Backed out 6 changesets (bug 1046245) on a CLOSED TREE
2015-03-29 01:42:32 -04:00
Jan-Ivar Bruaroey
cdd0b089a5
Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup
2015-03-03 09:51:05 -05:00
Phil Ringnalda
24b4f38005
Back out 6 changesets (bug 1046245) for thinking that MSVC would have anything to do with a __PRETTY_FUNCTION__
...
CLOSED TREE
Backed out changeset 9e3ecca831d8 (bug 1046245)
Backed out changeset 87dc145f4da8 (bug 1046245)
Backed out changeset 01606cf19a77 (bug 1046245)
Backed out changeset 2ed2b15fe940 (bug 1046245)
Backed out changeset 2b99b193828a (bug 1046245)
Backed out changeset d1ac67faccbb (bug 1046245)
2015-03-28 19:57:17 -07:00
Jan-Ivar Bruaroey
222e93c87c
Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup
2015-03-03 09:51:05 -05:00
Ryan VanderMeulen
003e8f5278
Backed out 6 changesets (bug 1046245) for bustage on a CLOSED TREE.
...
Backed out changeset 222c2f9e3bc9 (bug 1046245)
Backed out changeset 4251eef464a2 (bug 1046245)
Backed out changeset 592f4cc23197 (bug 1046245)
Backed out changeset 5bfb9a1c0550 (bug 1046245)
Backed out changeset e966a5df87b6 (bug 1046245)
Backed out changeset 609f3ca64004 (bug 1046245)
2015-03-28 16:24:25 -04:00
Jan-Ivar Bruaroey
59e13faed0
Bug 1046245 - enumerateDevices w/non-blocking e10s, nsICryptoHMAC, clear cookies, lambdas. r=keeler, r=florian, r=billm, r=jesup
2015-03-03 09:51:05 -05:00
Phil Ringnalda
e44926f4c1
Merge m-i to m-c, a=merge
2015-03-28 11:44:16 -07:00
ffxbld
ad47b2b11c
No bug, Automated HPKP preload list update from host bld-linux64-spot-1005 - a=hpkp-update
2015-03-28 03:27:37 -07:00
ffxbld
7ffd3e55ce
No bug, Automated HSTS preload list update from host bld-linux64-spot-1005 - a=hsts-update
2015-03-28 03:27:36 -07:00
Andrea Marchesini
e6f385fb3d
Bug 1148527 - Indentation fix after bug 1145631, r=ehsan
2015-03-27 18:52:19 +00:00
Tanvi Vyas
0ca524deb8
Bug 947079 - Hack to prevent getting a mixed content icon on a fully secure page. r=keeler
2015-03-26 11:54:53 -07:00
Cykesiopka
b44239d022
Bug 996872 - Reduce calls to getXPCOMStatusFromNSS() in PSM xpcshell tests. r=keeler relanding on a CLOSED TREE
2015-03-25 17:29:05 -07:00
Wes Kocher
9b0a211a65
Backed out changeset 3a38c3d97f44 (bug 996872) on the theory that it somehow broke lots of tests, forcing a prolonged CLOSED TREE
2015-03-25 14:40:44 -07:00
Cykesiopka
958425a841
Bug 996872 - Reduce calls to getXPCOMStatusFromNSS() in PSM xpcshell tests. r=keeler
2015-03-25 11:40:46 -07:00
David Keeler
0bf38c806e
bug 1138716 - update PSM data structures that depend on root CA changes r=mmc
2015-03-23 10:36:55 -07:00
Phil Ringnalda
fc8b8ab2ac
Merge m-c to m-i
2015-03-21 12:50:09 -07:00
Phil Ringnalda
09f1e96e74
Merge m-i to m-c, a=merge
2015-03-21 12:31:07 -07:00
ffxbld
21922001d8
No bug, Automated HPKP preload list update from host bld-linux64-spot-1002 - a=hpkp-update
2015-03-21 03:30:42 -07:00
ffxbld
9d9da119ca
No bug, Automated HSTS preload list update from host bld-linux64-spot-1002 - a=hsts-update
2015-03-21 03:30:40 -07:00
Ehsan Akhgari
883849ee32
Bug 1145631 - Part 1: Replace MOZ_OVERRIDE and MOZ_FINAL with override and final in the tree; r=froydnj
...
This patch was automatically generated using the following script:
function convert() {
echo "Converting $1 to $2..."
find . \
! -wholename "*/.git*" \
! -wholename "obj-ff-dbg*" \
-type f \
\( -iname "*.cpp" \
-o -iname "*.h" \
-o -iname "*.c" \
-o -iname "*.cc" \
-o -iname "*.idl" \
-o -iname "*.ipdl" \
-o -iname "*.ipdlh" \
-o -iname "*.mm" \) | \
xargs -n 1 sed -i -e "s/\b$1\b/$2/g"
}
convert MOZ_OVERRIDE override
convert MOZ_FINAL final
2015-03-21 12:28:04 -04:00
Masatoshi Kimura
3a321cb760
Bug 1133187 - Update fallback whitelist. r=keeler
2015-03-18 15:36:00 +01:00
Cykesiopka
ae28024d8c
Bug 1131227 - Make the about:certerror Unknown Issuer string mention missing intermediates and unimported roots. r=keeler
2015-03-17 14:33:00 +01:00
Masatoshi Kimura
35c856f796
Bug 1143082 - Fix a message in the mixed content UI. r=dolske
2015-03-17 20:34:58 +09:00
ffxbld
d9bfa275b9
No bug, Automated HPKP preload list update from host bld-linux64-spot-532 - a=hpkp-update
2015-03-14 03:26:00 -07:00
ffxbld
3d091a2a8c
No bug, Automated HSTS preload list update from host bld-linux64-spot-532 - a=hsts-update
2015-03-14 03:25:58 -07:00
Nathan Froyd
b252a27930
Bug 1142503 - don't use QueryInterface when the compiler can do the cast for us; r=ehsan
...
Calling QueryInterface with a statically known IID should typically not
be necessary. In those cases where it's not, the compiler can do the
cast for us, though we have to supply the reference-counting that
QueryInterface would do.
In passing, several redundant null-checks for the result of |new T| have
been deleted.
2015-03-12 09:43:50 -04:00
David Keeler
12b79456cc
bug 1102443 - fix leak in key pinning logging by removing an unnecessary function call r=cykesiopka
...
Also took the opportunity to fix the logging message, since it didn't accurately
describe the information that was being printed.
--HG--
extra : amend_source : 40a0c2ba9c07757e5895a822ce3bb8b197674554
2015-03-12 14:31:26 -07:00
Jonathan Griffin
d1c61bc9b6
Bug 1116187 - Disable failing mochitest-chrome tests for B2G, r=gbrown
2015-02-06 16:30:37 -08:00
David Keeler
6978e35bf5
bug 1138332 - re-allow overrides for certificates signed by non-CA certificates r=mmc
...
--HG--
extra : amend_source : 92a2dcf71daa6b31be0dcae628a13b13b0fc443a
2015-03-11 11:11:22 -07:00
Cykesiopka
5814296e8c
Bug 1141815 - Remove nsIDOMCryptoDialogs interface and associated implementation; r=keeler
2015-03-12 10:24:05 +01:00
Cykesiopka
2aa9e4036e
Bug 1121117 - Add fuzz time to workaround non-monotonicity of Date(). r=keeler
...
--HG--
extra : rebase_source : 464d1e1bf8cb4624f4fda39d3ea6a55430073c6f
2015-03-19 19:57:00 +01:00
Ehsan Akhgari
0e3211475f
Bug 1140767 - Build more files in security/manager in unified mode; r=dkeeler
2015-03-10 22:52:22 -04:00
Mike Hommey
364038011c
Bug 868814 - Fold mozalloc library into mozglue. r=njn
...
--HG--
rename : memory/mozalloc/moz.build => memory/mozalloc/staticruntime/moz.build
2015-03-10 10:01:52 +09:00
Masatoshi Kimura
83b1b594b5
Bug 1106470 - Drop SSLv3 support entirely from PSM. r=keeler
2015-03-10 01:22:59 +09:00
Phil Ringnalda
ecf64b97b2
Merge m-i to m-c, a=merge
2015-03-07 19:11:54 -08:00
ffxbld
b74611a261
No bug, Automated HPKP preload list update from host bld-linux64-spot-157 - a=hpkp-update
2015-03-07 03:27:15 -08:00
ffxbld
1ec58518aa
No bug, Automated HSTS preload list update from host bld-linux64-spot-157 - a=hsts-update
2015-03-07 03:27:13 -08:00
David Keeler
44fb9d4eff
bug 1129771 - disable IPv6 in PSM xpcshell TLS connection tests due to failures on OS X 10.10 r=cykesiopka a=ryanvm on a CLOSED TREE
...
In the process of investigating the intermittent failures listed in
bug 1129771, I discovered that the code would frequently get stuck connecting
to [::1] (where no server was listening) and wouldn't fall back to trying
127.0.0.1 (where the test server was listening). This change prevents the code
attempting to connect to [::1]. There probably is an underlying bug here, but
it appears to be in OS X itself and I have neither the time nor expertise to
investigate further.
--HG--
extra : amend_source : 57b6a28858685d7ca3b6b0c7cbc7ed193280ca7c
2015-03-04 13:41:11 -08:00
Cykesiopka
171babfad4
Bug 1139177 - RSA public key size checking cleanups. r=keeler
2015-03-05 16:41:00 +01:00
David Keeler
cdb738f18d
bug 1137538 - remove nsIIdentityInfo and nsNSSSocketInfo::GetPreviousCert r=mayhemer
2015-02-27 11:33:36 -08:00
Masatoshi Kimura
3e7620bf97
Bug 1138882 - Add a pref to enable unrestricted RC4 fallback. r=keeler
2015-03-05 22:51:31 +09:00
Cykesiopka
fa79ef2aea
Bug 1121117 - Add some logging to test_ocsp_timeout.js to ease debugging. r=dkeeler
2015-03-03 14:25:00 +01:00
Wes Kocher
0de76a4c17
Merge b2g-inbound to m-c a=merge CLOSED TREE
2015-03-03 17:02:21 -08:00
Chuck Lee
6cb15b84a0
Bug 1012549 - 0004. Support read private key in keystore. r=dkeeler r=qdot
2015-02-28 21:54:24 +08:00
David Keeler
3b4360319c
bug 1085506 - gather telemetry for TLS handshake certificate verification errors r=rbarnes
2015-02-27 11:14:29 -08:00
Mark Goodwin
f4a1822554
Bug 1130757 - tests for bug 1130757. r=dkeeler
...
--HG--
extra : rebase_source : 7b047f5bddf3544ca82d3b8875925acdbdb02ea5
2015-03-02 08:19:00 +01:00
Cykesiopka
de906ce3ce
Bug 1130418 - Remove broken e-mail cert trust editing UI. r=emk
...
--HG--
extra : rebase_source : fb4c89e251e2ce3e4d9cf002a0cda4166a589a2c
2015-03-02 19:54:00 +01:00
Cykesiopka
4419d0186e
Bug 1130413 - Remove unused nsITokenPasswordDialogs::GetPassword() function. r=jjones
...
--HG--
extra : rebase_source : 85b9e442d6b5be401fdd389cc251add8a633bb23
2015-02-26 13:05:00 +01:00
Wes Kocher
b17feb3f40
Merge inbound to m-c a=merge
2015-03-02 12:12:47 -08:00
ffxbld
8084ed7b82
No bug, Automated HPKP preload list update from host bld-linux64-spot-044 - a=hpkp-update
2015-02-28 03:27:43 -08:00
ffxbld
94776e3384
No bug, Automated HSTS preload list update from host bld-linux64-spot-044 - a=hsts-update
2015-02-28 03:27:41 -08:00
David Keeler
d01ea02613
bug 1049740 - implement telemetry to measure compatibility impact of 2048-bit-minimum RSA keys r=briansmith
2015-02-24 15:48:05 -08:00
Boris Zbarsky
a7d78c82c0
Bug 1136388. Change nsIDocumentLoaderFactory and nsIURIContentListener to take MIME types as an XPCOM string, not a char*. r=smaug
2015-02-25 10:26:51 -05:00
Brian Smith
2672d3b5d3
Bug 1077864, Part 3: update nsserrors.properties so error message gets localized.
2015-02-23 16:04:23 -08:00
Ryan VanderMeulen
fd0387315e
Merge inbound to m-c. a=merge
2015-02-21 16:40:27 -05:00
ffxbld
c2dabe6507
No bug, Automated HPKP preload list update from host bld-linux64-spot-148 - a=hpkp-update
2015-02-21 03:32:26 -08:00
ffxbld
00bf62f9f5
No bug, Automated HSTS preload list update from host bld-linux64-spot-148 - a=hsts-update
2015-02-21 03:32:24 -08:00
Masatoshi Kimura
2bdace7384
Bug 1127339 - Detect SSLv3-only server in PSM. r=keeler
2015-02-21 17:20:22 +09:00
Cykesiopka
31ea56f770
Bug 1097622 - Add test cases for certs that have notBefore times earlier than the UNIX epoch. r=dkeeler
2015-02-17 06:15:00 -05:00
Cykesiopka
47f24e15e4
Bug 1097622 - Return ERROR_INVALID_TIME when decoding invalid time values. r=dkeeler
2015-02-18 15:56:00 -05:00
Cykesiopka
37b3759ab9
Bug 1097622 - Rename (mE|e)rrorCodeExpired variables to (mE|e)rrorCodeTime. r=dkeeler
2015-02-17 06:12:00 -05:00
Masatoshi Kimura
17cbaa2849
Bug 1133187 - Update fallback whitelist. r=keeler
2015-02-19 04:12:59 +09:00
Masatoshi Kimura
0101cbcbce
Bug 1124039 - Allow RC4 only for whitelisted hosts. r=keeler
2015-02-19 04:12:58 +09:00
Masatoshi Kimura
6b89f2db74
Bug 1137179 - Add wildcard support to the static fallback list. r=keeler
2015-02-28 08:53:44 +09:00
Cykesiopka
a64db6ab58
Bug 1136471 - Remove unused nsIIdentityInfo.getValidEVPolicyOid(). r=dkeeler
2015-02-26 13:05:00 -05:00
Chris Peterson
5ef9f4d21f
Bug 1133283 - Remove nonstandard expression closures from security/manager/ssl/tests. r=keeler
2015-01-24 23:48:22 -08:00
David Keeler
372a8a591d
bug 1123671
- if a non-overridable error is encountered when processing an overridable certificate error, report the non-overridable error r=mmc r=jcj
...
Also, SEC_ERROR_UNTRUSTED_ISSUER and SEC_ERROR_UNTRUSTED_CERT are not actually overridable, so don't pretend they are.
2015-01-23 14:04:44 -08:00
Chuck Lee
ce50eac5c5
Bug 1012549 - 0001. Support import PKCS12 certificate. r=dkeeler r=vchang
2015-02-28 21:54:16 +08:00
Christoph Kerschbaumer
b88b7049eb
Bug 1099296 - Attach LoadInfo to remaining callers of ioService and ProtocolHandlers - in security/ (r=keeler)
2015-02-17 10:09:40 -08:00
Carsten "Tomcat" Book
e2399947f4
Merge mozilla-central to mozilla-inbound
2015-02-16 16:14:51 +01:00
Carsten "Tomcat" Book
08fafcb3e2
merge mozilla-inbound to mozilla-central a=merge
2015-02-16 15:59:56 +01:00
ffxbld
99b5f33384
No bug, Automated HPKP preload list update from host bld-linux64-spot-1093 - a=hpkp-update
2015-02-14 03:21:57 -08:00
ffxbld
c9826729b7
No bug, Automated HSTS preload list update from host bld-linux64-spot-1093 - a=hsts-update
2015-02-14 03:21:55 -08:00
Masatoshi Kimura
eb132d66f6
Bug 1131880 - Modify the condition to disallow PR_CONNECT_RESET_ERROR on fallback. r=keeler
2015-02-16 20:03:06 +09:00
Masatoshi Kimura
7e78ba3eec
Backout 9507662057de (bug 1130670) and c731517a47e8 (bug 1124039) due to compatibility issues
2015-02-16 19:55:15 +09:00
Mike Hommey
6786219e1f
Bug 1120937 - Properly initialize string fields from the PKCS#11 test module. r=keeler
...
The string fields need to be padded with spaces, according to what
PK11_MakeString does to find the end of the string.
While here, factor all the string manipulations in the test module and
use some C++ template magic to do the right thing.
This changes the static asserts from (with clang):
pkcs11testmodule.cpp:45:3: error: static_assert failed
"TestManufacturerID too long - make it shorter"
static_assert(sizeof(TestManufacturerID) <= sizeof(pInfo->manufacturerID),
^ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
to:
pkcs11testmodule.cpp:46:3: error: static_assert failed
"DestSize >= SrcSize - 1"
static_assert(DestSize >= SrcSize - 1, "DestSize >= SrcSize - 1");
^ ~~~~~~~~~~~~~~~~~~~~~~~
pkcs11testmodule.cpp:58:3: note: in instantiation of function
template specialization 'CopyString<32, 63>' requested here
CopyString(pInfo->manufacturerID, TestManufacturerID);
^
which actually gives more information than before: it gives the length of
both buffers.
2015-02-13 10:29:18 +09:00
Masatoshi Kimura
1b6561194e
Bug 1130670 - Remove dead code that tracks strongCipherStatus. r=keeler
2015-02-14 15:16:04 +09:00
L. David Baron
d8275d9234
Back out changeset a02ea85607a2 (bug 1038072) for widespread test failures (at least Linux, Android, and Mulet), on a CLOSED TREE.
2015-05-06 09:58:55 +02:00
Daniel Veditz
a956162b00
Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler
...
--HG--
extra : rebase_source : 3afa62b566718cfbfaaf53765d385187388e83e5
2015-05-05 20:21:00 +02:00
Nicholas Nethercote
3a7b0a9f57
Bug 1131901 (part 1) - Make PL_DHashTableAdd() infallible by default, and add a fallible alternative. r=froydnj.
...
I kept all the existing PL_DHashTableAdd() calls fallible, in order to be
conservative, except for the ones in nsAtomTable.cpp which already were
followed immediately by an abort on failure.
--HG--
extra : rebase_source : 526d96ab65e4d7d71197b90d086d19fbdd79b7b5
2015-02-02 14:48:58 -08:00
Cykesiopka
d92c1180e0
Bug 1130405 - Remove unused pippki strings. r=jcj
2015-02-11 05:08:00 -05:00
Cykesiopka
edf6d8ff32
Bug 1130402 - Make use of currently unused certManager.dtd access key strings. r=jcj
2015-02-07 01:16:00 -05:00
Cykesiopka
2c768c2db6
Bug 1131475 - Make sure reference to "unable_to_toggle_fips" bundle key is in the correct case. r=jcj
2015-02-11 05:05:00 -05:00
Andrew McCreight
31ba9aaed9
Bug 1131199, part 2 - Make PLDHashtInitEntry infallible. r=froydnj
...
Also, drop the unused table argument.
2015-02-11 09:46:40 -08:00
Andrew McCreight
6ec7fe58dd
Bug 1131199, part 1 - Allocation of CompareCacheHashEntryPtr::entry is infallible. r=froydnj
2015-02-11 09:46:40 -08:00
Nicholas Nethercote
63e3218e4c
Back out changesets 2fcef6b54be7, 2be07829fefc, 66dfe37b8532, df3fcd2be8fd, 0a436bce77a6 (bug 1050035) for causing intermittent crashes and assertion failures.
...
--HG--
extra : rebase_source : eb30be83c3143c6c203585a80a18f180025efaba
2015-02-10 14:39:49 -08:00
Brian Smith
b0f87b9b6c
Bug 1122841, Part 2: Centralize checking of public key, r=keeler
...
--HG--
extra : rebase_source : 6b41ad2d3f37bead8d3ac8b48c5ee0b8063c795b
extra : source : d470b5a68bf915cfb12f0e948e1492463092883c
2015-02-02 16:17:08 -08:00
Masatoshi Kimura
83c11c2359
Bug 1124039 - Enable RC4 only if ClientHelloVersion <= TLS 1.0. r=keeler
2015-02-10 22:29:51 +09:00
Cykesiopka
500d8c1041
Bug 897690 - Remove misleading error message from AppendErrorTextUntrusted. r=dkeeler
...
--HG--
extra : rebase_source : b232fa770189e40916ca60a18c6b12c24d2a77dd
2015-02-09 03:50:00 +01:00
Nicholas Nethercote
242708cf72
Bug 1127201 (attempt 2, part 1) - Replace most NS_ABORT_IF_FALSE calls with MOZ_ASSERT. r=Waldo.
...
--HG--
extra : rebase_source : 488e401ff87e31a2074c4108c4df0572d9536667
2015-02-09 14:34:50 -08:00
Masatoshi Kimura
c199c43026
Bug 1126413 - Part 2: UI changes to display security info on broken secure pages. r=dolske
2015-02-10 04:16:23 +09:00
Masatoshi Kimura
8573fc1f7e
Bug 1126413 - Part 1: Expose nsISSLStatus for broken secure pages. r=keeler
2015-02-10 04:16:22 +09:00
Phil Ringnalda
c456d08848
Merge m-i to m-c, a=merge
2015-02-07 08:45:54 -08:00
ffxbld
a14db61a3f
No bug, Automated HPKP preload list update from host bld-linux64-spot-075 - a=hpkp-update
2015-02-07 03:24:40 -08:00
ffxbld
ae1fda75a2
No bug, Automated HSTS preload list update from host bld-linux64-spot-075 - a=hsts-update
2015-02-07 03:24:38 -08:00
Nicholas Nethercote
d34f0301b8
Bug 1127201 (part 2) - Convert all NS_ABORT_IF_FALSE calls to MOZ_ASSERT. r=Waldo.
...
--HG--
extra : rebase_source : 99182e70335d2b5ff95f8c528ae992d37294be3a
2015-02-04 20:05:36 -08:00
Masatoshi Kimura
21dab1da42
Bug 1128763 - Do insecure fallback after PR_CONNECT_RESET_ERROR for whitelisted sites only. r=keeler
2015-02-05 22:02:32 +09:00
Masatoshi Kimura
6fbc2ae89f
Bug 1116891 - Do fallback with RC4 cipher suites after PR_CONNECT_RESET_ERROR. r=bsmith
2015-02-05 22:02:31 +09:00
Masatoshi Kimura
b99b9fe12a
Bug 1127285 - Remove unused fallback reasons. r=keeler
2015-02-05 22:02:31 +09:00
Cykesiopka
03f599fcf0
Bug 1128917 - Replace getp12password.xul with a call to nsIPromptService::PromptPassword(). r=keeler
...
--HG--
extra : rebase_source : a92f80292395cbc9105cf9564f6f5005da2ff582
2015-02-05 03:28:00 +01:00
Masatoshi Kimura
562649fe82
Bug 1128227 - Add a static TLS insecure fallback whitelist. r=keeler
2015-02-07 13:03:23 +09:00
TheKK
3cda0706de
Bug 1092398 - "remove unused CertVerifier enums (missing_cert_download_config and crl_download_config)". r=honzab.moz
2015-01-23 06:17:00 +01:00
Nicholas Nethercote
b5913e0b3d
Bug 1050035 (part 4) - Make PL_DHashTableAdd() infallible by default, and add a fallible alternative. r=froydnj.
...
I kept all the existing PL_DHashTableAdd() calls fallible, in order to be
conservative, except for the ones in nsAtomTable.cpp which already were
followed immediately by an abort on failure.
--HG--
extra : rebase_source : eeba14d732077ef2e412f4caca852de6b6b85f55
2015-02-02 14:48:58 -08:00
Nicholas Nethercote
9a36fdbde4
Bug 1050035 (part 2) - Remove the fallible version of PL_DHashTableInit(). r=froydnj,mrbkap.
...
Because it's no longer needed now that entry storage isn't allocated there.
(The other possible causes of failures are much less interesting and simply
crashing is a reasonable thing to do for them.)
This also makes PL_DNewHashTable() infallible.
--HG--
extra : rebase_source : 848cc9bbdfe434525857183b8370d309f3acbf49
2015-02-01 20:19:08 -08:00
David Keeler
dcc3953291
bug 832837 - move insecure form submission warning from nsSecureBrowserUIImpl to the HTML form implementation r=mrbkap r=phlsa
...
As a result, we can remove nsSecurityWarningDialogs completely, which this patch also does.
2015-01-15 11:01:10 -08:00
Cykesiopka
caa1e7521a
Bug 78808 - Enable Cert Manager buttons only when they would have an effect. Original patch by Scott Johnson. r=keeler
2015-01-31 14:20:00 +01:00
Mike Hommey
a35dbaeebf
Bug 1126593 - Add a global fallible instance, so that using fallible works directly, everywhere. r=njn
...
--HG--
rename : memory/mozalloc/fallible.h => memory/fallible/fallible.h
2015-02-02 09:56:13 +09:00
Andrew McCreight
d3826daa16
Back out Bug 1127201 (part 2) for various problems.
2015-02-06 15:04:32 -08:00
Cykesiopka
eb24c24fb9
Bug 968560 - Return distinct error codes for certificates that are not valid yet, in mozilla::pkix. r=keeler
...
--HG--
extra : rebase_source : de63f37cdef477d96c1aef8253feca7013ba3bfd
2015-02-06 11:18:20 -08:00
Cykesiopka
06973aee53
Bug 968560 - Add missing Not-Yet-Valid cert override tests. r=dkeeler
...
--HG--
extra : rebase_source : 15d2774ad604561639306bb91134f6f63967e105
2015-02-06 11:18:04 -08:00
Phil Ringnalda
c408ae1430
Merge m-c to m-i
2015-01-31 09:13:30 -08:00
Masatoshi Kimura
f34f010bc1
backout 3d4d4a91f29a (bug 1102632) as some web pages can no longer connect without enabling SSLv3
2015-01-31 22:16:48 +09:00
ffxbld
5a3089ce04
No bug, Automated HPKP preload list update from host bld-linux64-spot-015 - a=hpkp-update
2015-01-31 03:38:09 -08:00
ffxbld
f0761aa2b1
No bug, Automated HSTS preload list update from host bld-linux64-spot-015 - a=hsts-update
2015-01-31 03:38:07 -08:00
Wes Kocher
f62801541d
Merge fx-team to m-c a=merge CLOSED TREE
2015-01-29 15:27:17 -08:00
Masatoshi Kimura
bf88ffa183
Bug 1123020 - Remove options to allow unrestricted renegotiation. r=keeler
2015-01-29 21:04:26 +09:00
Gijs Kruitbosch
36e608ec65
Bug 1126675 - indicate missing issuerName or subjectName as empty string, r=keeler
2015-01-28 15:42:41 +00:00
David Keeler
718bcfa712
backout cd0ec3afca5a (bug 832837) for mochitest bustage
2015-01-30 11:25:24 -08:00
David Keeler
11b9c65608
bug 832837 - move insecure form submission warning from nsSecureBrowserUIImpl to the HTML form implementation r=mrbkap r=phlsa
...
As a result, we can remove nsSecurityWarningDialogs completely, which this patch also does.
2015-01-15 11:01:10 -08:00
Masatoshi Kimura
4e8a902fda
Bug 1114816 - Implement TLS intolerance fallback whitelist. r=keeler
2015-01-29 03:52:42 +09:00
Cykesiopka
ad8382e07c
Bug 1125478 - Refactor and clean up key size test files. r=keeler
2015-01-27 22:11:00 +01:00
Nicholas Nethercote
3163cfc2c1
Bug 1124973 (part 2) - Introduce PL_DHashTableSearch(), and replace most PL_DHashTableLookup() calls with it. r=froydnj.
...
It feels safer to use a function with a new name, rather than just changing the
behaviour of the existing function.
For most of these cases the PL_DHashTableLookup() result was checked with
PL_DHASH_ENTRY_IS_{FREE,BUSY} so the conversion was easy. A few of them
preceded that check with a useless null check, but the intent of these was
still easy to determine.
I'll do the trickier ones in subsequent patches.
--HG--
extra : rebase_source : ab37a7a30be563861ded8631771181aacf054fd4
2015-01-22 21:06:55 -08:00
David Keeler
3752aec566
bug 1125503 - when canonicalizing hostnames, check string length before calling Last() r=mmc
...
--HG--
extra : amend_source : 9d07347f76b4d6b2fd1ab77f7025043575c3b4f9
2015-01-26 12:47:50 -08:00
Cykesiopka
3584ed3e5f
Bug 691148 - Remove unused strings from pipnss.properties. r=keeler
2015-01-26 21:30:00 +01:00
Chris Peterson
41af2cb673
Bug 1125592 - Fix -Wmaybe-uninitialized warning in security/manager/ssl/src/nsNSSASN1Object.cpp. r=dkeeler
2015-01-23 22:58:43 -08:00
Phil Ringnalda
a2c9403154
Merge m-i to m-c, a=merge
2015-01-24 08:27:17 -08:00
ffxbld
c0a485d057
No bug, Automated HPKP preload list update from host bld-linux64-spot-127 - a=hpkp-update
2015-01-24 03:27:50 -08:00
ffxbld
ecf187e0ce
No bug, Automated HSTS preload list update from host bld-linux64-spot-127 - a=hsts-update
2015-01-24 03:27:48 -08:00
Cykesiopka
0dff21f2ae
Bug 1077790 - Tests. r=keeler
...
--HG--
extra : rebase_source : c1f058a4d235651667b0cb7e84325bbc3d902966
2015-01-22 13:50:06 -08:00
David Keeler
11cb332d1e
bug 1114882 - allow nsICryptoHash to be used in a content process r=mayhemer
2015-01-16 11:59:25 -08:00
Wes Kocher
2731390e4d
Backed out changeset 7811ebf7e321 (bug 1114882) for Android S4 orange on a CLOSED TREE
2015-01-21 17:24:36 -08:00
Raymond Etornam Agbeame(:retornam)
900af2113f
Bug 1109235 - remove nsIStreamCipher and implementation r=keeler
2015-01-22 16:02:30 -08:00
David Keeler
fae1a9756b
bug 1114882 - allow nsICryptoHash to be used in a content process r=mayhemer
2015-01-16 11:59:25 -08:00
Ryan VanderMeulen
06f5f25641
Merge inbound to m-c. a=merge
2015-01-20 22:12:46 -05:00
ffxbld
e8dfde2d50
No bug, Automated HPKP preload list update from host bld-linux64-spot-1001 - a=hpkp-update
2015-01-20 15:17:19 -08:00
ffxbld
9c7a5b2da8
No bug, Automated HSTS preload list update from host bld-linux64-spot-1001 - a=hsts-update
2015-01-20 15:17:17 -08:00
Nicholas Nethercote
8bd1f6f072
Bug 1123151 (part 2) - Add PLDHashTable::IsInitialized(). r=froydnj.
...
This encapsulates most of the uses of PLDHashTable::ops.
--HG--
extra : rebase_source : 7760ce8e46a37e87dcfe590e809a21df01fe510f
2015-01-19 16:11:34 -08:00
Nicholas Nethercote
bd573c9b9c
Bug 1123151 (part 1) - Set PLDHashTable::ops consistently. r=froydnj.
...
Currently the setting of PLDHashTable::ops is very haphazard.
- PLDHashTable has no constructor, so it's not auto-nulled, so lots of places
null it themselves.
- In the fallible PLDHashTable::Init() function, if the entry storage
allocation fails we'll be left with a table that has |ops| set -- indicating
it's been initialized -- but has null entry storage. I'm not certain this can
cause problems but it feels unsafe, and some (but not all) callers of Init()
null it on failure.
- PLDHashTable does not null |ops| in Finish(), so some (but not all) callers
do this themselves.
This patch makes things simpler.
- It adds a constructor that zeroes |ops|.
- It modifies Init() so that it only sets |ops| once success is ensured.
- It zeroes |ops| in Finish().
- Finally, it removes all the now-unnecessary |ops| nulling done by the users
of PLDHashTable.
--HG--
extra : rebase_source : bb34979c218d152562a2f9c7e5215256c111cc5b
2015-01-19 16:01:24 -08:00
David Keeler
bf280b3310
bug 1123374 - fix CertBlocklist initialization when revocations.txt does not exist r=mgoodwin
...
--HG--
extra : amend_source : a3ee19306e36386f1f71f27ae5ce215c026360fe
2015-01-20 10:18:29 -08:00
Masatoshi Kimura
cb76e55fd8
Bug 1120393 - unittest to ensure nsITransportSecurityInfo.errorCode is correctly serialized. r=keeler
2015-01-16 21:48:38 +09:00
Masatoshi Kimura
0b9afb21b8
Bug 1120393 - Serialize/deserialize nsITransportSecurity.errorCode. r=keeler
2015-01-16 21:48:38 +09:00
Birunthan Mohanathas
2f07a9ef3a
Bug 1060696 - Remove NS_INIT_ISUPPORTS. r=froydnj
2015-01-16 07:34:46 +02:00
Nicholas Nethercote
69fe655b04
Bug 1121304 (part 2, attempt 2) - Remove PLDHashTableOps::{alloc,free}Table. r=froydnj.
...
--HG--
extra : rebase_source : bc119bd0d3b6944e8c5a000950e0c4052cb70aef
2015-01-14 14:35:56 -08:00
Phil Ringnalda
e39f0adeca
Backed out 2 changesets (bug 1121304) for consistent b2g hangs in webgl-color-test.html?frame=1&__&preserve&premult&_____
...
Backed out changeset 20651ac19549 (bug 1121304)
Backed out changeset 758afec77c95 (bug 1121304)
2015-01-14 22:02:23 -08:00
Nicholas Nethercote
e9735966fa
Bug 1121304 (part 2) - Remove PLDHashTableOps::{alloc,free}Table. r=froydnj.
2015-01-14 14:35:56 -08:00
Nicholas Nethercote
47221bc7f9
Bug 1120476 (part 4) - Remove PLDHashTableOps::finalize. r=froydnj.
...
--HG--
extra : rebase_source : b14dda8cdd5cd896d1e32950e38b2a9f7da4d99e
2015-01-13 19:02:35 -08:00