ffxbld
3bce5dbd2f
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-07-04 08:48:09 -07:00
Alex Gaynor
53f0246cfd
Bug 1377164 - Improve the readability of the macOS plugin sandbox policy; r=haik
...
MozReview-Commit-ID: 9R8qT98ESQJ
--HG--
extra : rebase_source : 537f0dc3c46bee9b8e295689fbcbc8c63415c5d1
2017-06-29 10:53:04 -07:00
Mats Palmgren
977a9e5f89
Bug 1376498 part 4 - Make all nsClassHashtable::RemoveAndForget() consumers use Remove() instead. r=froydnj
...
MozReview-Commit-ID: G64YQLlgm6r
2017-07-05 02:01:45 +02:00
Wes Kocher
5226f27e3e
Merge m-c to inbound, a=merge
...
MozReview-Commit-ID: 7LPTKLiLUcj
2017-07-03 17:37:38 -07:00
Frederik Braun
56838ddb04
Bug 1351608 - Disable warnings for existing violations to no-unsanitize rule r=Standard8.
...
MozReview-Commit-ID: 7cTNL5jMtRw
2017-07-03 20:07:02 +01:00
Wes Kocher
50ae69bb30
Merge inbound to m-c a=merge
...
MozReview-Commit-ID: 2BQd8Y4xcTc
2017-07-03 17:35:58 -07:00
ffxbld
a3a739de04
No bug, Automated HPKP preload list update from host bld-linux64-spot-309 - a=hpkp-update
2017-07-03 08:46:18 -07:00
ffxbld
28c447101f
No bug, Automated HSTS preload list update from host bld-linux64-spot-309 - a=hsts-update
2017-07-03 08:46:15 -07:00
Carsten "Tomcat" Book
4529b3adc4
merge mozilla-inbound to mozilla-central a=merge
2017-07-03 10:14:42 +02:00
ffxbld
5bb6dfcb33
No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update
2017-07-02 08:40:29 -07:00
ffxbld
56ac343904
No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update
2017-07-02 08:40:26 -07:00
Phil Ringnalda
68f5ce100a
Merge autoland to m-c, a=merge
...
MozReview-Commit-ID: Gr2qiJufRRz
2017-07-01 17:34:20 -07:00
ffxbld
a1aa8b434a
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-07-01 08:42:21 -07:00
ffxbld
688fcf9801
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-07-01 08:42:18 -07:00
Nicholas Nethercote
3e439bb4f8
Bug 1376638 - Minimize uses of prmem.h. r=glandium.
...
It's silly to use prmem.h within Firefox code given that in our configuration
its functions are just wrappers for malloc() et al. (Indeed, in some places we
mix PR_Malloc() with free(), or malloc() with PR_Free().)
This patch removes all uses, except for the places where we need to use
PR_Free() to free something allocated by another NSPR function; in those cases
I've added a comment explaining which function did the allocation.
--HG--
extra : rebase_source : 0f781bca68b5bf3c4c191e09e277dfc8becffa09
2017-06-30 19:05:41 -07:00
Carsten "Tomcat" Book
2aefedb342
Merge mozilla-central to mozilla-inbound
2017-07-03 11:01:38 +02:00
Franziskus Kiefer
2e41bcc0ca
Bug 1370890 - land NSS 825e5d444e99 UPGRADE_NSS_RELEASE, r=me
2017-07-03 10:18:45 +02:00
ffxbld
dde5c48035
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2017-06-30 08:49:21 -07:00
ffxbld
68f3156646
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2017-06-30 08:49:18 -07:00
ffxbld
17ebac6811
No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update
2017-06-29 08:52:25 -07:00
ffxbld
296804ce45
No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update
2017-06-29 08:52:22 -07:00
Jan Keromnes
09971ac7d3
Bug 1376643 - Use 'override' and '= default' on applicable methods in security/sandbox/. r=gcp
2017-06-27 17:57:00 +02:00
Jan Keromnes
df076300b1
Bug 1376643 - Use 'nullptr' where applicable in security/sandbox/. r=gcp
2017-06-27 17:56:00 +02:00
ffxbld
e43fbfafef
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-28 13:55:02 -07:00
ffxbld
d945533918
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-28 13:54:59 -07:00
Carsten "Tomcat" Book
7918eeee02
merge mozilla-inbound to mozilla-central a=merge
2017-06-28 13:23:29 +02:00
Ryan VanderMeulen
2edcd80e00
Merge m-c to autoland. a=merge
2017-06-27 20:07:08 -04:00
Jed Davis
8e5d5bda0f
Bug 1362537 - Re-disallow accept4 in Linux content processes. r=gcp
...
MozReview-Commit-ID: Gml8lR1Heu1
--HG--
extra : rebase_source : 6b466f887bd1802277a506295a9c6cc575196385
2017-06-27 14:52:25 -07:00
ffxbld
fdb811340a
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2017-06-27 08:39:08 -07:00
ffxbld
8a2097b4fd
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2017-06-27 08:39:05 -07:00
Phil Ringnalda
b9099ac2ed
Merge m-c to m-i
...
MozReview-Commit-ID: JGHd8l9bexC
2017-06-26 20:35:27 -07:00
ffxbld
b425854d9b
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2017-06-26 08:40:01 -07:00
ffxbld
68b6a86704
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2017-06-26 08:39:58 -07:00
Carsten "Tomcat" Book
259377b6ab
merge mozilla-inbound to mozilla-central a=merge
2017-06-26 13:25:51 +02:00
ffxbld
1b7b1ec949
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-25 08:35:48 -07:00
ffxbld
cdd2e436c7
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-25 08:35:45 -07:00
ffxbld
0042b377da
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-24 08:41:00 -07:00
ffxbld
f30338674d
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-24 08:40:57 -07:00
ffxbld
77b256dc98
No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update
2017-06-23 08:34:57 -07:00
ffxbld
d9351ba8ef
No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update
2017-06-23 08:34:54 -07:00
Nicholas Nethercote
f1364a75ea
Bug 1374580 (part 3) - Remove ns{,C}Substring typedefs. r=froydnj.
...
All the instances are converted as follows.
- nsSubstring --> nsAString
- nsCSubstring --> nsACString
--HG--
extra : rebase_source : cfd2238c52e3cb4d13e3bd5ddb80ba6584ab6d91
2017-06-20 19:19:52 +10:00
Nicholas Nethercote
fe9268c4cd
Bug 1374580 (part 2) - Remove nsAFlat{,C}String typedefs. r=froydnj.
...
All the instances are converted as follows.
- nsAFlatString --> nsString
- nsAFlatCString --> nsCString
--HG--
extra : rebase_source : b37350642c58a85a08363df2e7c610873faa6e41
2017-06-20 19:19:05 +10:00
Nicholas Nethercote
1572f96f5d
Bug 1374580 (part 1) - Remove nsASingleFragment{,C}String typedefs. r=froydnj.
...
All the instances are converted as follows.
- nsASingleFragmentString --> nsAString
- nsASingleFragmentCString --> nsACString
--HG--
extra : rebase_source : e6a1ddc8938fecd9a735b15e872c054edf4c7910
2017-06-20 19:18:17 +10:00
ffxbld
3291398f10
No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update
2017-06-22 09:09:14 -07:00
ffxbld
f3958ec1f3
No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update
2017-06-22 09:09:11 -07:00
Florian Quèze
66f6d259bc
Bug 1374282 - script generated patch to remove Task.jsm calls, r=Mossop.
2017-06-22 12:51:42 +02:00
Nicholas Nethercote
23156fd9b3
Bug 1374920 - Change nsTokenEventRunnable::mType from |nsString| to |const char*|. r=dkeeler.
...
|const char*| is good enough for a field that can only take on the values
"smartcard-insert" or "smartcard-remove". And it avoids an
NS_ConvertUTF16toUTF8 conversion.
2017-06-22 15:39:15 +10:00
Alex Gaynor
f76801e348
Bug 1379803 - on macOS, only allow the creation of regular files and directories in writable directories; r=haik
...
This specifically disallows the creation of ttys and symlinks. Writable
directories are needed for plugins, which lazily create the plugintmp directory.
If/when the plugin API surface is reduced we can restrict down to just regular
files.
MozReview-Commit-ID: Ec6qeaiHSsB
--HG--
extra : rebase_source : 252a3cbf7954b9c09092b896ef8af45310438a86
2017-07-11 09:51:04 -04:00
Ryan VanderMeulen
a8806a9105
Merge m-c to inbound. a=merge
2017-06-27 20:06:39 -04:00
Wes Kocher
ac0fd2038c
Merge inbound to m-c a=merge
...
MozReview-Commit-ID: 3LXFVwSoMvs
2017-06-21 17:58:17 -07:00
Wes Kocher
7f420b59d4
Merge autoland to central, a=merge
...
MozReview-Commit-ID: C4bl6Ufaiwv
2017-06-21 16:54:41 -07:00
Nathan Froyd
27c58cf89f
Bug 1372670 - part 3 - add spinEventLoopUntil to nsIThreadManager; r=erahm,florian
2017-06-21 12:59:28 -04:00
ffxbld
ae94cfb36d
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2017-06-21 08:40:54 -07:00
ffxbld
00cfe814d5
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2017-06-21 08:40:51 -07:00
Mark Banner
70710367aa
Bug 1374674 - Enable more ESLint rules across the tree to help developers where we're already passing them (no-class-assign, no-const-assign, no-dupe-class-members). r=mossop
...
MozReview-Commit-ID: 6jJPhH08Ae7
--HG--
extra : rebase_source : 64efb6660fdd1a0d4390e8f9e4842199249ca54f
2017-06-20 16:16:12 +01:00
Wes Kocher
c0e1236f1a
Merge autoland to m-c a=merge
...
MozReview-Commit-ID: LFtpTAueYrF
2017-06-20 18:24:29 -07:00
Wes Kocher
586bef635e
Merge inbound to central, a=merge
...
MozReview-Commit-ID: 1SvQU51m5qC
2017-06-20 17:58:46 -07:00
ffxbld
e1eeddde1e
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-20 08:47:01 -07:00
ffxbld
e22d02a6eb
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-20 08:46:58 -07:00
Wes Kocher
976d5437f9
Merge m-c to autoland, a=merge
...
MozReview-Commit-ID: 6A96Fe0GPjw
2017-06-19 17:37:53 -07:00
Wes Kocher
1e80580419
Merge autoland to central, a=merge
...
MozReview-Commit-ID: 4NzLU3zKJOz
2017-06-19 17:01:09 -07:00
ffxbld
2bcd258281
No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update
2017-06-19 08:39:22 -07:00
ffxbld
604ae6476d
No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update
2017-06-19 08:39:19 -07:00
Alex Gaynor
1141573ee9
Bug 1374660
- Removed redundant declarations from macOS content sandbox policy; r=haik
...
MozReview-Commit-ID: Gw6AnH8r9sL
--HG--
extra : rebase_source : 62bb4dc335ab3f38a42543a488d07129a8d92a33
2017-06-20 10:27:18 -04:00
Bill McCloskey
f115503a0b
Bug 1372405
- Provide names for all runnables in the tree (r=froydnj)
...
MozReview-Commit-ID: DKR6ROiHRS7
2017-06-26 14:19:58 -07:00
Nicholas Nethercote
033f83145c
Bug 1375387 - Reorder and section-ify GeckoProfiler.h. r=mstange.
...
This patch gives some structure and order to the profiler's API.
It also renames AutoProfilerRegister as AutoProfilerRegisterThread, to match
profiler_register_thread().
2017-06-22 14:28:47 +10:00
David Keeler
52cc80c4fe
Bug 1368652
- Use Mozilla string types to display OIDs in the certificate viewer. r=Cykesiopka
2017-06-01 12:26:41 -07:00
Gian-Carlo Pascutto
f2e7c8b77a
Bug 1374281. r=jld
...
MozReview-Commit-ID: Ko5m5i4Wkd6
--HG--
extra : rebase_source : 3076315ef3639a89f752addbb01d5d08a9c2db75
2017-06-19 20:07:38 +02:00
Alex Gaynor
f514ff97b3
Bug 1379182 - Remove some unnecessary file-write permissions types from the content process on macOS; r=haik
...
On macOS, the file-write* permission type contains numerous sub-permissions (see
bug for full listing). Restrict the ones we allow to only the two we need:
file-write-create and file-write-data. This primarily reduces kernel attack
surface, I'm not aware of any bad things that could be done directly with the
removed permissions.
MozReview-Commit-ID: 3VvjFesy2qx
--HG--
extra : rebase_source : 934ec17c44c9ef3d7fab29919d66cf1a55d57697
2017-07-07 11:05:01 -04:00
Wes Kocher
5dd57ee395
Merge m-c to inbound, a=merge
...
MozReview-Commit-ID: IVwrN2VivZT
2017-07-07 17:30:32 -07:00
Alex Gaynor
d40ad40466
Bug 1376976 - Restrict sysctl access in the content process to a whitelist of sysctl names. r=jld, r=haik
...
MozReview-Commit-ID: 14yoiP1gskM
2017-06-29 13:55:15 -07:00
Carsten "Tomcat" Book
651904c8a0
Merge mozilla-central to autoland
2017-07-04 11:12:45 +02:00
Kate McKinley
396962011a
Bug 1363546 - Store and report HSTS upgrade source r=francois,keeler,mayhemer p=francois
...
Add a field to the HSTS cache which indicates the source of the HSTS
entry if known, from the preload list, organically seen header, or HSTS
priming, or unknown otherwise. Also adds telemetry to collect the source
when upgrading in NS_ShouldSecureUpgrade.
MozReview-Commit-ID: 3IwyYe3Cn73
--HG--
extra : rebase_source : 9b8daac3aa02bd7a1b4285fb1e5731a817a76b7f
2017-05-23 15:31:37 -07:00
Alex Gaynor
b636380391
Bug 1374557
- Part 1 - Add the ability to specify a list of paths to whitelist read access to in the macOS content sandbox; r=haik
...
MozReview-Commit-ID: HXBkyR7Tts2
--HG--
extra : rebase_source : 6daf50a4d7a4ff2ff85dfac43891149353e813aa
2017-06-21 10:19:28 -04:00
Carsten "Tomcat" Book
038afacb9f
Backed out changeset 2ae22a66e02d (bug 1366694) for memory leaks
2017-07-11 13:14:55 +02:00
Carsten "Tomcat" Book
05734fd002
Backed out changeset 88b71119fbf8 (bug 1366694)
2017-07-11 13:14:38 +02:00
Carsten "Tomcat" Book
7e0d52f50e
Merge mozilla-central to inbound
2017-07-11 13:00:28 +02:00
Bob Owen
db58bdb9ca
Bug 1377555 Part 3: Don't use restricting SIDs when running from a network drive. r=jimm
2017-07-11 09:44:21 +01:00
Bob Owen
bbf27f0cae
Bug 1377555 Part 2: Add option to Windows chromium sandbox policy to not use restricting SIDs. r=jimm
2017-07-11 09:44:20 +01:00
Bob Owen
01f2685a30
Bug 1377555 Part 1: Back out changesets 04edb03fb817 and d17ac655cc51. r=jimm
...
This backouts the previous change to detect and change the sandbox policy
when running from a network drive.
2017-07-11 09:44:20 +01:00
Bob Owen
25e5ff4cde
Bug 1366694 Part 2: Don't run sandbox file system test in DEBUG on Windows. r=jimm
...
This is because in DEBUG mode we currently give full access to TEMP dir
for logging purposes and the temporary profile is created in the TEMP dir.
2017-07-11 09:44:20 +01:00
Bob Owen
ecbd6ca808
Bug 1366694 Part 1: Allow user handles in the content process job in DEBUG builds. r=jimm
2017-07-07 15:51:17 +01:00
Jim Mathies
6fa192cf93
Bug 1381326 - Enable MITIGATION_EXTENSION_POINT_DISABLE feature for Windows content. r=bobowen
...
MozReview-Commit-ID: 34MNqN5ln7J
--HG--
extra : rebase_source : 3b5565d5b387f70c562cf1b8e306dd2df8d57233
2017-07-16 12:08:18 -05:00
David Keeler
a196a1c7c3
bug 1291886 - clarify/fix locking in nsNSSComponent r=Cykesiopka,jcj
...
Some of the locking in nsNSSComponent was inconsistent and/or just wrong. This
clarifies what is protected by the lock and makes sure it is consistently
acquired when those resources are accessed.
This should also address potential deadlocks when other code would attempt to
acquire nsNSSComponent resources during shutdown.
This patch also removes some items in nsNSSComponent that are no longer
relevant.
MozReview-Commit-ID: 9iA5lfAixpj
--HG--
extra : rebase_source : 1c05788efe5d6345256cca505b089198bd7e4a20
2017-06-08 14:49:13 -07:00
Kate McKinley
a809b5b8d6
Bug 1374453 - turn HSTS priming on in Beta r=ckerschb
...
MozReview-Commit-ID: JHc47g8cDmb
--HG--
extra : rebase_source : cb67f51ac7fef74f43cc05d02bac4ef13c3ded15
2017-06-19 14:46:48 -07:00
Kate McKinley
9108666ee6
Bug 1374443 - Decrease HSTS priming timeout to 2s r=ckerschb
...
MozReview-Commit-ID: 7brYAUXwHvE
--HG--
extra : rebase_source : 4ef6f27cc855b828ac742f2990dc12668bd910aa
2017-06-19 14:35:27 -07:00
Paolo Amadini
10ee6a5c4e
Bug 1362970 - Part 2 - Script-generated patch to convert .then(null, ...) to .catch(...). r=florian
...
Changes to Promise tests designed to test .then(null) have been reverted, and the browser/extensions directory was excluded because the projects it contains have a separate process for accepting changes.
MozReview-Commit-ID: 1buqgX1EP4P
--HG--
extra : rebase_source : 3a9ea310d3e4a8642aabbc10636c04bfe2e77070
2017-06-19 11:32:37 +01:00
Carsten "Tomcat" Book
de892834ed
Merge mozilla-central to mozilla-inbound
2017-06-20 11:31:34 +02:00
Alex Gaynor
bb1ea70f5f
Bug 1357758 - Replace the file-read blacklist in the macOS sandbox policy with a whitelist of the allowed paths; r=haik
...
This makes the policy easier to audit, harder to regress, and easier to further prune the content processes's permissions.
MozReview-Commit-ID: 6VqEoGsWSGH
--HG--
extra : rebase_source : 58a9d35dd6e58624779294b49df5cc7e34cb4320
2017-04-18 15:57:54 -04:00
Wes Kocher
bfc45b98b9
Merge m-c to inbound, a=merge
...
MozReview-Commit-ID: 9XdoB5MuVz6
2017-07-05 17:17:41 -07:00
Bob Owen
1eb1c9091d
Bug 1378061: Only set user's SID in USER_LIMITED as deny only when not using restricting SIDs. r=jimm
2017-07-05 21:00:55 +01:00
Kai Engert
10b5520799
Bug 1380706, PSM should depend on mozStorage, as a workaround for a sqlite3_config race, r=keeler
2017-07-14 15:31:30 +02:00
Carsten "Tomcat" Book
ea1b86680c
Backed out changeset 9846de3bd954 (bug 1372405
)
...
--HG--
extra : rebase_source : 5d4a48e8ec394c329994689d938d2a6e9b2752b0
2017-06-20 08:27:02 +02:00
Bill McCloskey
4592152411
Bug 1372405
- Provide names for all runnables in the tree (r=froydnj)
...
MozReview-Commit-ID: DKR6ROiHRS7
2017-06-19 22:25:47 -07:00
Bevis Tseng
d1637b9c5a
Bug 1372453 - Part 2: Name the caller of ProxyReleaseEvent. r=billm
...
MozReview-Commit-ID: LYhSWnZkq0i
2017-06-14 09:27:17 +08:00
ffxbld
7cc377ce3f
No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update
2017-06-18 08:24:54 -07:00
ffxbld
a6c7ba400c
No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update
2017-06-18 08:24:51 -07:00
ffxbld
b95a1a9583
No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update
2017-06-17 08:38:30 -07:00
ffxbld
091d02c281
No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update
2017-06-17 08:38:27 -07:00
ffxbld
b2d072aa58
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-16 08:37:44 -07:00
ffxbld
870c286510
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-16 08:37:41 -07:00
David Keeler
0b2a439e7e
bug 1373068 - fix the ctypes declaration of SSL_ClearSessionCache in head_psm.js r=Cykesiopka
...
SSL_ClearSessionCache is `void SSL_ClearSessionCache()`. In head_psm.js it was
being declared as `SECStatus SSL_ClearSessionCache()` and the "return value" was
being checked, which was incorrect. This apparently wasn't causing failures on
any of our test runs, but with tsan enabled the check would fail.
MozReview-Commit-ID: 6KosOVPu8K4
--HG--
extra : rebase_source : 73addb80a5ab5263a182207a0f4277daf8ae32a5
2017-06-14 15:10:28 -07:00
Andrew Halberstadt
c9beaa56b4
Bug 1373294 - Fix E305 (two blank lines after method or class) in files enabled by flake8 linter, r=jmaher
...
This is needed before we can upgrade to flake8 3.3.0, as that version starts flagging these errors.
These files were modified by running:
autopep8 --select E305 --in-place -r <dir>
on the affected directories. I did it one dir at a time and verified the result after each.
MozReview-Commit-ID: FmlsfiKIbtr
--HG--
extra : rebase_source : 9df32258cadff5d27a0e72113c57f782756c0b18
2017-06-15 12:10:59 -04:00
ffxbld
c365df1999
No bug, Automated HPKP preload list update from host bld-linux64-spot-382 - a=hpkp-update
2017-06-15 08:38:35 -07:00
ffxbld
fc60e8619a
No bug, Automated HSTS preload list update from host bld-linux64-spot-382 - a=hsts-update
2017-06-15 08:38:32 -07:00
ffxbld
c49a70b53f
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-14 08:33:27 -07:00
ffxbld
b98ce20b57
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-14 08:33:24 -07:00
Wes Kocher
ebf35623cd
Merge mozilla-central to autoland a=merge
...
UPGRADE_NSS_RELEASE
2017-06-13 18:57:32 -07:00
Wes Kocher
1af6d5cf57
Merge inbound to central, a=merge
...
UPGRADE_NSS_RELEASE
MozReview-Commit-ID: CBIFPwA5aNp
--HG--
extra : amend_source : 035a5be59d0046a643d0f836a95195e8c4ade4a6
2017-06-13 18:27:10 -07:00
ffxbld
13bca384b3
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-13 08:37:54 -07:00
ffxbld
cdd7ceaa16
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-13 08:37:50 -07:00
ffxbld
687bfe6a46
No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update
2017-06-12 08:25:15 -07:00
ffxbld
1d51d00cbc
No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update
2017-06-12 08:25:12 -07:00
ffxbld
d840ebd585
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2017-06-11 08:31:38 -07:00
ffxbld
19a63c3db3
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2017-06-11 08:31:35 -07:00
ffxbld
fee636af73
No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update
2017-06-10 08:28:28 -07:00
ffxbld
494c299b4c
No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update
2017-06-10 08:28:25 -07:00
Wes Kocher
038efa62a3
Merge m-c to autoland, a=merge
...
MozReview-Commit-ID: HYPYecdsMhL
2017-06-09 16:00:04 -07:00
Wes Kocher
a4cc130bcc
Merge autoland to central, a=merge
...
MozReview-Commit-ID: Jpywgkn7waG
2017-06-09 13:28:20 -07:00
ffxbld
cb712cd137
No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update
2017-06-09 08:28:37 -07:00
ffxbld
005b20e0a4
No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update
2017-06-09 08:28:34 -07:00
Carsten "Tomcat" Book
d5a13ba05e
merge mozilla-inbound to mozilla-central a=merge
2017-06-09 12:58:49 +02:00
Alex Gaynor
0403c42ccf
Bug 1371701 - Fixed sandboxing tests to reflect that we're enabling file content process for all channels r=bobowen
...
MozReview-Commit-ID: ICXZjEU2n6L
--HG--
extra : rebase_source : f28d5d61f6a0cdfecb2804239c407c730c4fd2ba
2017-06-09 11:24:07 -04:00
Wes Kocher
1be06aea28
Merge m-c to autoland, a=merge
...
UPGRADE_NSS_RELEASE
MozReview-Commit-ID: ItWcUAUYyaj
--HG--
extra : amend_source : fc43f23f0e12d5f88d72be9526a953d8015e6975
2017-06-08 18:44:32 -07:00
Wes Kocher
39dd8b763b
Merge inbound to central, a=merge
...
UPGRADE_NSS_RELEASE
MozReview-Commit-ID: 4of9LS9sA2I
--HG--
extra : amend_source : c399503fa642c04d256ee0ce53b099601259f90a
2017-06-08 18:10:10 -07:00
ffxbld
9b5314f2d1
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-08 09:27:12 -07:00
ffxbld
ecdb9dfade
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-08 09:27:09 -07:00
Carsten "Tomcat" Book
247a47fac9
Merge mozilla-central to mozilla-inbound
2017-06-08 15:16:36 +02:00
Jed Davis
da2db41a9c
Bug 1362601 - Don't crash on sandbox violation if known-problem injected libs are present. r=gcp
...
MozReview-Commit-ID: HCbavpMUxYm
--HG--
extra : rebase_source : ec0cc9dcbf07831209b438504311b45f5b8990a8
2017-06-07 16:33:11 -06:00
Franziskus Kiefer
02d51071b4
Bug 1345368 - land NSS NSS_3_31_RTM UPGRADE_NSS_RELEASE, r=me
2017-06-08 12:57:33 +02:00
David Keeler
e426fddb4a
bug 1369911 - gather telemetry on the prevalence of 3rd party PKCS#11 modules r=bsmedberg,Cykesiopka data-review=bsmedberg
...
MozReview-Commit-ID: Dw99Jm64QNU
--HG--
extra : rebase_source : 9e9f6c5342f992c9040e85b0eab129d7751e9887
2017-06-02 16:44:06 -07:00
Ryan VanderMeulen
9b7a73b65a
Merge m-c to autoland. a=merge
...
UPGRADE_NSPR_RELEASE UPGRADE_NSS_RELEASE
--HG--
extra : amend_source : a59e53ba2f8db608f613f21ad6da2b5be8814aa4
2017-06-07 22:55:56 -04:00
Ryan VanderMeulen
e886d1846a
Merge inbound to m-c. a=merge
...
UPGRADE_NSPR_RELEASE UPGRADE_NSS_RELEASE
--HG--
extra : amend_source : a7800e9214d5a8325af0d1f5e5dcc77273f4ce95
2017-06-07 22:52:40 -04:00
ffxbld
086a61dfbf
No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update
2017-06-07 08:36:43 -07:00
ffxbld
9286331337
No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update
2017-06-07 08:36:40 -07:00
ffxbld
cd09b99007
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-06 08:39:25 -07:00
ffxbld
12a027af8e
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-06 08:39:22 -07:00
Rajesh Kathiriya
6d3eb2c851
Bug 1370232 - Enabled the ESLint no-unneeded-ternary rule across mozilla-central. r=standard8
...
MozReview-Commit-ID: AH9ArRkjh78
--HG--
extra : rebase_source : bdd4c4f8a4779ea373479a9cba772c036e00e816
2017-06-13 00:23:54 +05:30
Franziskus Kiefer
bcc2da0b6a
Bug 1345368 - adapt to new NSS certdata.py, r=ted
...
UPGRADE_NSS_RELEASE
--HG--
extra : rebase_source : e995f611f59a8f10af70781a1ee50e6c89f4a8d9
2017-06-06 09:59:42 +02:00
Franziskus Kiefer
9a70331f36
Bug 1345368 - Disable test_broken_fips on all platforms other than mac, r=keeler
...
--HG--
extra : rebase_source : 67201c5646f3d1c8abe5122051cddaee148c418a
2017-06-07 09:16:45 +02:00
Franziskus Kiefer
747a09639e
Bug 1345368 - land NSS NSS_3_31_BETA2 UPGRADE_NSS_RELEASE, r=me
...
--HG--
extra : rebase_source : 3999b2f4d1c47a92c19c39cafd6d9c4c45a85383
2017-06-07 09:21:08 +02:00
Mark Banner
c93c2a1504
Bug 1370240 - Enable the ESLint no-control-regex rule across mozilla-central. r=mossop
...
MozReview-Commit-ID: IN7YMk7yhAO
--HG--
extra : rebase_source : be0a9cae6eae14d4f097eced2e231a96c89c9c47
2017-06-05 15:43:09 +01:00
ffxbld
61528d699c
No bug, Automated HPKP preload list update from host bld-linux64-spot-030 - a=hpkp-update
2017-06-05 08:39:51 -07:00
ffxbld
b6a127253e
No bug, Automated HSTS preload list update from host bld-linux64-spot-030 - a=hsts-update
2017-06-05 08:39:48 -07:00
Cykesiopka
ab8411f21d
Bug 1368107 - Make SSLErrorMessageType an enum class. r=keeler
...
Enum classes are safer and nicer.
MozReview-Commit-ID: FDT3Gb1t9w1
--HG--
extra : rebase_source : 92d67db5f7ea4a64e3101b0e3a93e9fccbfa132e
2017-06-03 13:36:41 +08:00
Cykesiopka
0ac2ac7fa3
Bug 1368107 - Make some TransportSecurityInfo nsresult functions return void. r=keeler
...
These functions in practice are all infallible and are unchecked by callers, so
there's no point in having them return nsresult.
MozReview-Commit-ID: BOypKLUZZBi
--HG--
extra : rebase_source : 95c8e9ca6d74d04f2836aea2bcdb1c751d3e9308
2017-06-03 13:36:16 +08:00
Cykesiopka
875885fbf4
Bug 1368107 - Remove fallible version of TransportSecurityInfo::GetPort(). r=keeler
...
The function is infallible in pratice, and so is unnecessary when there's an
actual infallible version.
MozReview-Commit-ID: FTuVyqwjZ8O
--HG--
extra : rebase_source : 88f511d730bb02b5e28a86cb366ae1c915e0a8b1
2017-06-03 13:36:04 +08:00
Cykesiopka
0adca03a5d
Bug 1368107 - Remove TransportSecurityInfo::GetHostNameRaw(). r=keeler
...
GetHostNameRaw() returns a char* string, which is less safe and ergonomic
compared to the Mozilla string classes. GetHostName() can be used instead.
MozReview-Commit-ID: GYvTnISNN35
--HG--
extra : rebase_source : da257f5fba2c26cd92d932c3d1d363458b84a65b
2017-06-03 13:35:51 +08:00
ffxbld
507743376d
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-04 08:18:02 -07:00
ffxbld
a38378d203
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-04 08:17:59 -07:00
Sebastian Hengst
2a8940299d
merge autoland to mozilla-central. r=merge a=merge
...
MozReview-Commit-ID: LKdCEt8LelR
2017-06-03 20:12:42 +02:00
ffxbld
a13364b7c5
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-03 08:34:04 -07:00
ffxbld
ba2cb002c0
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-03 08:34:01 -07:00
Wes Kocher
0d038d6513
Merge autoland to m-c a=merge
...
MozReview-Commit-ID: Fjt5XIDd0p6
2017-06-02 17:21:39 -07:00
ffxbld
7b88c78694
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-06-02 08:23:24 -07:00
ffxbld
be07550ffc
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-06-02 08:23:21 -07:00
Jed Davis
b129f08d7f
Bug 1322784 - Gently fail utime(), to deal with GConf/ORBit. r=gcp
...
MozReview-Commit-ID: B4LmSGR6OEz
--HG--
extra : rebase_source : 613409994c0ba50c34c57537343484f1dc85b7aa
2017-05-30 23:13:37 -06:00
Tom Ritter
9d75725eb8
Bug 1350362 Fix NSS Build System for MinGW r=ted
...
MozReview-Commit-ID: 4QROlna5Cvg
--HG--
extra : rebase_source : a13c7080a6ee445bf3d10248305a6eb88405c173
2017-05-12 11:39:00 -05:00
ffxbld
5c64ad5e40
No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update
2017-06-01 08:22:16 -07:00
ffxbld
9dbe8dec8a
No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update
2017-06-01 08:22:13 -07:00
Wes Kocher
d4af1fa9e1
Merge m-c to inbound, a=merge
...
MozReview-Commit-ID: E2oiCGaL6uX
2017-06-08 18:42:21 -07:00
Bob Owen
a3df44ccee
Bug 1323188: Don't use restricting SIDs in the sandbox access tokens when running from a network drive. r=jimm
2017-06-07 20:20:02 +01:00
Alex Gaynor
d27dc0ba0b
Bug 1358223 - Part 1 - On Windows and macOS hardcode the minimum content sandbox level at 1. r=bobowen,haik,jimm
...
If the "security.sandbox.content.level" preference is set to a value less than
1, all consumers will automatically treat it as if it were level 1. On Linux and
Nightly builds, setting the sandbox level to 0 is still allowed, for now.
MozReview-Commit-ID: 9QNTCkdbTfm
--HG--
extra : rebase_source : cd5a853c46a5cd334504b339bef8df30a3cabe51
2017-05-12 17:04:42 -04:00
Sebastian Hengst
fd03aa5bc8
Backed out changeset 4e283b54baa6 (bug 1358223) for build bustage on Android at dom/ipc/ContentChild.cpp:21. r=backout
2017-05-31 21:34:13 +02:00
Alex Gaynor
39f34ea898
Bug 1358223 - Part 1 - On Windows and macOS hardcode the minimum content sandbox level at 1. r=bobowen,haik,jimm
...
If the "security.sandbox.content.level" preference is set to a value less than
1, all consumers will automatically treat it as if it were level 1. On Linux and
Nightly builds, setting the sandbox level to 0 is still allowed, for now.
MozReview-Commit-ID: 9QNTCkdbTfm
--HG--
extra : rebase_source : 1a26ffc5b9f80e6df4c37c23f506e907ba44053a
2017-05-12 17:04:42 -04:00
Alex Gaynor
1532472698
Bug 1368771 - Added a test which verifies that on macOS /Volumes isn't readable at sandbox level 3 r=haik
...
r?haik
MozReview-Commit-ID: HPW4luz5n0M
--HG--
extra : rebase_source : c224b56de4b705758e2ab7820af02a4ef41d4040
2017-05-30 13:52:57 -04:00
Ryan VanderMeulen
af691573d4
Merge m-c to autoland. a=merge
2017-05-30 12:59:41 -04:00
ffxbld
7c3223ec90
No bug, Automated HPKP preload list update from host bld-linux64-spot-383 - a=hpkp-update
2017-05-30 08:16:50 -07:00
ffxbld
c522116a60
No bug, Automated HSTS preload list update from host bld-linux64-spot-383 - a=hsts-update
2017-05-30 08:16:47 -07:00
Carsten "Tomcat" Book
b318c7dca7
merge mozilla-inbound to mozilla-central + UPGRADE_NSS_RELEASE a=merge
...
--HG--
rename : toolkit/components/extensions/test/xpcshell/xpcshell.ini => toolkit/components/extensions/test/xpcshell/xpcshell-common.ini
extra : amend_source : 458fd54fe8070ca3034ac441267ff7025adb5251
2017-05-30 11:37:46 +02:00
ffxbld
544308c147
No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update
2017-05-29 08:18:00 -07:00
ffxbld
d3a21a063c
No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update
2017-05-29 08:17:57 -07:00
Franziskus Kiefer
afc9fc15dc
Bug 1345368 - land NSS 29290a4a9bd0 UPGRADE_NSS_RELEASE, r=me
2017-05-29 09:27:40 +02:00
ffxbld
3724e0f28c
No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update
2017-05-28 08:15:02 -07:00
ffxbld
c81b68804b
No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update
2017-05-28 08:14:59 -07:00
ffxbld
596d188f6d
No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update
2017-05-27 08:17:01 -07:00
ffxbld
a7c347e651
No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update
2017-05-27 08:16:58 -07:00
ffxbld
5a51fa544c
No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update
2017-05-26 08:16:49 -07:00
ffxbld
4fcea03f05
No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update
2017-05-26 08:16:46 -07:00
Cykesiopka
02bee25903
Bug 1366584 - Add initial [must_use] properties to PSM IDL files. r=keeler
...
The [must_use] property on XPIDL methods and attributes is useful for making
sure errors are properly handled.
As a first step, this patch adds the property to PSM methods and attributes that
are already correctly checked everywhere.
MozReview-Commit-ID: KyGxwUK3x0X
--HG--
extra : rebase_source : 45bd3f8d305fe221cc1bba73a520f11829dc5a42
2017-05-25 21:56:04 +08:00
David Keeler
3e029fa5c8
bug 1359514 - remove EV treatment for "Swisscom Root EV CA 2" r=kmckinley
...
The "Swisscom Root EV CA 2" root is no longer in use and will be removed from
the built-in root CA list. However, we have to remove its EV treatment first.
MozReview-Commit-ID: 2TZRt5px7bl
--HG--
extra : rebase_source : 68902555ffe62a973cfaac3af531e96aa288a339
2017-05-25 13:55:15 -07:00
Ryan VanderMeulen
d3f265330e
Merge m-c to autoland. a=merge
2017-05-25 16:44:01 -04:00
Ryan VanderMeulen
b8ba243c22
Merge autoland to m-c. a=merge
2017-05-25 16:31:52 -04:00
ffxbld
3d5d49ce51
No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update
2017-05-25 08:19:09 -07:00
ffxbld
56535cde6c
No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update
2017-05-25 08:19:07 -07:00
David Keeler
98d942eac1
bug 1366100 - disable OCSP fetching for DV certificates in nightly r=jaws,jcj
...
After this change, the platform will only fetch OCSP responses for EV
certificates (in nightly).
MozReview-Commit-ID: 3d9kzCYmnsa
--HG--
extra : rebase_source : e0cbbf6615e1ba813461dd13350f40ae7e0fbc07
2017-05-23 17:07:51 -07:00
Jed Davis
f6b03fa260
Bug 1355274 - Polyfill SOCK_DGRAM socketpairs with SOCK_SEQPACKET, for libasyncns. r=gcp
...
MozReview-Commit-ID: 2DeklSGsjUV
--HG--
extra : rebase_source : 8a202c23dc9a3ddede49b08ce1e0792dfb40bdbf
2017-04-11 20:55:34 -06:00
Jed Davis
675bae8c8d
Bug 1364533 - Allow madvise huge page hints. r=gcp
...
MozReview-Commit-ID: 7sNWS2sFJCx
--HG--
extra : rebase_source : c1730d2ac5d352dcaec1889d4f20dd9bc0a838a8
2017-05-12 20:04:07 -06:00
ffxbld
af8ecb9a1e
No bug, Automated HPKP preload list update from host bld-linux64-spot-376 - a=hpkp-update
2017-05-24 08:09:01 -07:00
ffxbld
08e4cade1c
No bug, Automated HSTS preload list update from host bld-linux64-spot-376 - a=hsts-update
2017-05-24 08:08:58 -07:00
Ryan VanderMeulen
e096678430
Merge m-c to autoland. a=merge UPGRADE_NSS_RELEASE
...
--HG--
rename : dom/security/test/sri/iframe_style_crossdomain.html => dom/security/test/sri/iframe_style_crossdomain_legacy.html
rename : mobile/android/themes/core/content.css => mobile/android/themes/geckoview/content.css
rename : mobile/android/themes/core/images/accessiblecaret-normal-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-normal-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-normal-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-xxhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-xxhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-xxhdpi.png
rename : mobile/android/themes/core/images/dropmarker-right.svg => mobile/android/themes/geckoview/images/dropmarker-right.svg
rename : mobile/android/themes/core/images/dropmarker.svg => mobile/android/themes/geckoview/images/dropmarker.svg
rename : mobile/android/themes/core/images/cast-active.svg => mobile/android/themes/geckoview/images/videocontrols-cast-active.svg
rename : mobile/android/themes/core/images/cast-ready.svg => mobile/android/themes/geckoview/images/videocontrols-cast-ready.svg
rename : mobile/android/themes/core/images/exitfullscreen.svg => mobile/android/themes/geckoview/images/videocontrols-exitfullscreen.svg
rename : mobile/android/themes/core/images/fullscreen.svg => mobile/android/themes/geckoview/images/videocontrols-fullscreen.svg
rename : mobile/android/themes/core/images/mute.svg => mobile/android/themes/geckoview/images/videocontrols-mute.svg
rename : mobile/android/themes/core/images/pause.svg => mobile/android/themes/geckoview/images/videocontrols-pause.svg
rename : mobile/android/themes/core/images/play.svg => mobile/android/themes/geckoview/images/videocontrols-play.svg
rename : mobile/android/themes/core/images/scrubber.svg => mobile/android/themes/geckoview/images/videocontrols-scrubber.svg
rename : mobile/android/themes/core/images/unmute.svg => mobile/android/themes/geckoview/images/videocontrols-unmute.svg
rename : mobile/android/themes/core/scrollbar-apz.css => mobile/android/themes/geckoview/scrollbar-apz.css
rename : mobile/android/themes/core/touchcontrols.css => mobile/android/themes/geckoview/videocontrols.css
extra : rebase_source : a5b4c2c75991990af25c4686ff96c199834ff317
2017-05-23 13:41:47 -04:00
ffxbld
0fea6cd28c
No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update
2017-05-23 08:08:00 -07:00
ffxbld
0704600a36
No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update
2017-05-23 08:07:57 -07:00
Franziskus Kiefer
073576f302
Backed out changeset bf6ee973f04e because of Android bustage UPGRADE_NSS_RELEASE
...
--HG--
extra : amend_source : 6502b79382c14536c060c03b428172cb6edc9d3f
2017-05-23 13:22:21 +02:00
Franziskus Kiefer
66f094103a
Bug 1345368 - land NSS 0c3800b6eaba UPGRADE_NSS_RELEASE, r=me
2017-05-23 12:36:33 +02:00
David Keeler
3ddfb3c1ce
bug 1364159 - potentially avoid calling CERT_CreateSubjectCertList in NSSCertDBTrustDomain::FindIssuer r=Cykesiopka,jcj
...
CERT_CreateSubjectCertList is not an inexpensive function call, since it
enumerates the certificate database (i.e. reads from disk a lot). If we're
verifying for a TLS handshake, however, we should already have in memory a
certificate chain sent by the peer (there are some cases where we won't, such as
session resumption (see bug 731478)). If we can, we should use those
certificates before falling back to calling CERT_CreateSubjectCertList.
MozReview-Commit-ID: ASjVGsELb1O
--HG--
extra : rebase_source : 1efc635d4a98079c87f77ef3794e4b2f20eec59f
2017-05-11 16:41:12 -07:00
Dan Banner
ea09f270ab
Bug 1368041
- Enable no-array-constructor across mozilla-central r=standard8
...
MozReview-Commit-ID: EXJNufdKKhJ
--HG--
extra : rebase_source : 66d17c7981c4b0987c482ce092b25990b42c07fb
2017-05-27 15:17:29 +01:00
Cykesiopka
73288e2bbf
Bug 1174555 - Improve state string parsing test coverage. r=keeler
...
MozReview-Commit-ID: Fv66f1gu4kT
--HG--
extra : rebase_source : f02a317fd958909d42bad9cd206f5a74f36d8689
2017-05-21 10:43:44 +08:00
Cykesiopka
114202795c
Bug 1174555 - Clean up some SiteSecurityService state file related tests. r=keeler
...
MozReview-Commit-ID: 6qXV04CUElu
--HG--
extra : rebase_source : ba47e0cfe9317703895df02277568e59cc56591c
2017-05-21 10:43:32 +08:00
Cykesiopka
c1efdc2244
Bug 1174555 - Stop using PR_sscanf() in nsSiteSecurityService.cpp. r=keeler
...
While the uses of PR_sscanf() in PSM are safe, the function in general is
vulnerable to format string attacks, and so should be avoided.
This change removes the only uses of the function in PSM and moves to the more
obviously safe mozilla::Tokenizer.
MozReview-Commit-ID: J4BP6JTE1zI
--HG--
extra : rebase_source : e77e8b1ba70bef6f0ff794b7d066bbbdebe8f58e
2017-05-21 10:43:18 +08:00