Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-27 20:25:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
550,687 Commits 615 Branches 98 Tags 5.9 GiB
6528324a47
Commit Graph

12025 Commits

Author SHA1 Message Date
ffxbld
3bce5dbd2f No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-07-04 08:48:09 -07:00
Alex Gaynor
53f0246cfd Bug 1377164 - Improve the readability of the macOS plugin sandbox policy; r=haik 
MozReview-Commit-ID: 9R8qT98ESQJ

--HG--
extra : rebase_source : 537f0dc3c46bee9b8e295689fbcbc8c63415c5d1
 2017-06-29 10:53:04 -07:00
Mats Palmgren
977a9e5f89 Bug 1376498 part 4 - Make all nsClassHashtable::RemoveAndForget() consumers use Remove() instead. r=froydnj 
MozReview-Commit-ID: G64YQLlgm6r
 2017-07-05 02:01:45 +02:00
Wes Kocher
5226f27e3e Merge m-c to inbound, a=merge 
MozReview-Commit-ID: 7LPTKLiLUcj
 2017-07-03 17:37:38 -07:00
Frederik Braun
56838ddb04 Bug 1351608 - Disable warnings for existing violations to no-unsanitize rule r=Standard8. 
MozReview-Commit-ID: 7cTNL5jMtRw
 2017-07-03 20:07:02 +01:00
Wes Kocher
50ae69bb30 Merge inbound to m-c a=merge 
MozReview-Commit-ID: 2BQd8Y4xcTc
 2017-07-03 17:35:58 -07:00
ffxbld
a3a739de04 No bug, Automated HPKP preload list update from host bld-linux64-spot-309 - a=hpkp-update 2017-07-03 08:46:18 -07:00
ffxbld
28c447101f No bug, Automated HSTS preload list update from host bld-linux64-spot-309 - a=hsts-update 2017-07-03 08:46:15 -07:00
Carsten "Tomcat" Book
4529b3adc4 merge mozilla-inbound to mozilla-central a=merge 2017-07-03 10:14:42 +02:00
ffxbld
5bb6dfcb33 No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update 2017-07-02 08:40:29 -07:00
ffxbld
56ac343904 No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update 2017-07-02 08:40:26 -07:00
Phil Ringnalda
68f5ce100a Merge autoland to m-c, a=merge 
MozReview-Commit-ID: Gr2qiJufRRz
 2017-07-01 17:34:20 -07:00
ffxbld
a1aa8b434a No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-07-01 08:42:21 -07:00
ffxbld
688fcf9801 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-07-01 08:42:18 -07:00
Nicholas Nethercote
3e439bb4f8 Bug 1376638 - Minimize uses of prmem.h. r=glandium. 
It's silly to use prmem.h within Firefox code given that in our configuration
its functions are just wrappers for malloc() et al. (Indeed, in some places we
mix PR_Malloc() with free(), or malloc() with PR_Free().)

This patch removes all uses, except for the places where we need to use
PR_Free() to free something allocated by another NSPR function; in those cases
I've added a comment explaining which function did the allocation.

--HG--
extra : rebase_source : 0f781bca68b5bf3c4c191e09e277dfc8becffa09
 2017-06-30 19:05:41 -07:00
Carsten "Tomcat" Book
2aefedb342 Merge mozilla-central to mozilla-inbound 2017-07-03 11:01:38 +02:00
Franziskus Kiefer
2e41bcc0ca Bug 1370890 - land NSS 825e5d444e99 UPGRADE_NSS_RELEASE, r=me 2017-07-03 10:18:45 +02:00
ffxbld
dde5c48035 No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update 2017-06-30 08:49:21 -07:00
ffxbld
68f3156646 No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update 2017-06-30 08:49:18 -07:00
ffxbld
17ebac6811 No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update 2017-06-29 08:52:25 -07:00
ffxbld
296804ce45 No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update 2017-06-29 08:52:22 -07:00
Jan Keromnes
09971ac7d3 Bug 1376643 - Use 'override' and '= default' on applicable methods in security/sandbox/. r=gcp 2017-06-27 17:57:00 +02:00
Jan Keromnes
df076300b1 Bug 1376643 - Use 'nullptr' where applicable in security/sandbox/. r=gcp 2017-06-27 17:56:00 +02:00
ffxbld
e43fbfafef No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-28 13:55:02 -07:00
ffxbld
d945533918 No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-28 13:54:59 -07:00
Carsten "Tomcat" Book
7918eeee02 merge mozilla-inbound to mozilla-central a=merge 2017-06-28 13:23:29 +02:00
Ryan VanderMeulen
2edcd80e00 Merge m-c to autoland. a=merge 2017-06-27 20:07:08 -04:00
Jed Davis
8e5d5bda0f Bug 1362537 - Re-disallow accept4 in Linux content processes. r=gcp 
MozReview-Commit-ID: Gml8lR1Heu1

--HG--
extra : rebase_source : 6b466f887bd1802277a506295a9c6cc575196385
 2017-06-27 14:52:25 -07:00
ffxbld
fdb811340a No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update 2017-06-27 08:39:08 -07:00
ffxbld
8a2097b4fd No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update 2017-06-27 08:39:05 -07:00
Phil Ringnalda
b9099ac2ed Merge m-c to m-i 
MozReview-Commit-ID: JGHd8l9bexC
 2017-06-26 20:35:27 -07:00
ffxbld
b425854d9b No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update 2017-06-26 08:40:01 -07:00
ffxbld
68b6a86704 No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update 2017-06-26 08:39:58 -07:00
Carsten "Tomcat" Book
259377b6ab merge mozilla-inbound to mozilla-central a=merge 2017-06-26 13:25:51 +02:00
ffxbld
1b7b1ec949 No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-25 08:35:48 -07:00
ffxbld
cdd2e436c7 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-25 08:35:45 -07:00
ffxbld
0042b377da No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-24 08:41:00 -07:00
ffxbld
f30338674d No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-24 08:40:57 -07:00
ffxbld
77b256dc98 No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update 2017-06-23 08:34:57 -07:00
ffxbld
d9351ba8ef No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update 2017-06-23 08:34:54 -07:00
Nicholas Nethercote
f1364a75ea Bug 1374580 (part 3) - Remove ns{,C}Substring typedefs. r=froydnj. 
All the instances are converted as follows.

- nsSubstring  --> nsAString
- nsCSubstring --> nsACString

--HG--
extra : rebase_source : cfd2238c52e3cb4d13e3bd5ddb80ba6584ab6d91
 2017-06-20 19:19:52 +10:00
Nicholas Nethercote
fe9268c4cd Bug 1374580 (part 2) - Remove nsAFlat{,C}String typedefs. r=froydnj. 
All the instances are converted as follows.

- nsAFlatString  --> nsString
- nsAFlatCString --> nsCString

--HG--
extra : rebase_source : b37350642c58a85a08363df2e7c610873faa6e41
 2017-06-20 19:19:05 +10:00
Nicholas Nethercote
1572f96f5d Bug 1374580 (part 1) - Remove nsASingleFragment{,C}String typedefs. r=froydnj. 
All the instances are converted as follows.

- nsASingleFragmentString  --> nsAString
- nsASingleFragmentCString --> nsACString

--HG--
extra : rebase_source : e6a1ddc8938fecd9a735b15e872c054edf4c7910
 2017-06-20 19:18:17 +10:00
ffxbld
3291398f10 No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update 2017-06-22 09:09:14 -07:00
ffxbld
f3958ec1f3 No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update 2017-06-22 09:09:11 -07:00
Florian Quèze
66f6d259bc Bug 1374282 - script generated patch to remove Task.jsm calls, r=Mossop. 2017-06-22 12:51:42 +02:00
Nicholas Nethercote
23156fd9b3 Bug 1374920 - Change nsTokenEventRunnable::mType from |nsString| to |const char*|. r=dkeeler. 
|const char*| is good enough for a field that can only take on the values
"smartcard-insert" or "smartcard-remove". And it avoids an
NS_ConvertUTF16toUTF8 conversion.
 2017-06-22 15:39:15 +10:00
Alex Gaynor
f76801e348 Bug 1379803 - on macOS, only allow the creation of regular files and directories in writable directories; r=haik 
This specifically disallows the creation of ttys and symlinks. Writable
directories are needed for plugins, which lazily create the plugintmp directory.
If/when the plugin API surface is reduced we can restrict down to just regular
files.

MozReview-Commit-ID: Ec6qeaiHSsB

--HG--
extra : rebase_source : 252a3cbf7954b9c09092b896ef8af45310438a86
 2017-07-11 09:51:04 -04:00
Ryan VanderMeulen
a8806a9105 Merge m-c to inbound. a=merge 2017-06-27 20:06:39 -04:00
Wes Kocher
ac0fd2038c Merge inbound to m-c a=merge 
MozReview-Commit-ID: 3LXFVwSoMvs
 2017-06-21 17:58:17 -07:00
Wes Kocher
7f420b59d4 Merge autoland to central, a=merge 
MozReview-Commit-ID: C4bl6Ufaiwv
 2017-06-21 16:54:41 -07:00
Nathan Froyd
27c58cf89f Bug 1372670 - part 3 - add spinEventLoopUntil to nsIThreadManager; r=erahm,florian 2017-06-21 12:59:28 -04:00
ffxbld
ae94cfb36d No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update 2017-06-21 08:40:54 -07:00
ffxbld
00cfe814d5 No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update 2017-06-21 08:40:51 -07:00
Mark Banner
70710367aa Bug 1374674 - Enable more ESLint rules across the tree to help developers where we're already passing them (no-class-assign, no-const-assign, no-dupe-class-members). r=mossop 
MozReview-Commit-ID: 6jJPhH08Ae7

--HG--
extra : rebase_source : 64efb6660fdd1a0d4390e8f9e4842199249ca54f
 2017-06-20 16:16:12 +01:00
Wes Kocher
c0e1236f1a Merge autoland to m-c a=merge 
MozReview-Commit-ID: LFtpTAueYrF
 2017-06-20 18:24:29 -07:00
Wes Kocher
586bef635e Merge inbound to central, a=merge 
MozReview-Commit-ID: 1SvQU51m5qC
 2017-06-20 17:58:46 -07:00
ffxbld
e1eeddde1e No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-20 08:47:01 -07:00
ffxbld
e22d02a6eb No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-20 08:46:58 -07:00
Wes Kocher
976d5437f9 Merge m-c to autoland, a=merge 
MozReview-Commit-ID: 6A96Fe0GPjw
 2017-06-19 17:37:53 -07:00
Wes Kocher
1e80580419 Merge autoland to central, a=merge 
MozReview-Commit-ID: 4NzLU3zKJOz
 2017-06-19 17:01:09 -07:00
ffxbld
2bcd258281 No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update 2017-06-19 08:39:22 -07:00
ffxbld
604ae6476d No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update 2017-06-19 08:39:19 -07:00
Alex Gaynor
1141573ee9 Bug 1374660 - Removed redundant declarations from macOS content sandbox policy; r=haik 
MozReview-Commit-ID: Gw6AnH8r9sL

--HG--
extra : rebase_source : 62bb4dc335ab3f38a42543a488d07129a8d92a33
 2017-06-20 10:27:18 -04:00
Bill McCloskey
f115503a0b Bug 1372405 - Provide names for all runnables in the tree (r=froydnj) 
MozReview-Commit-ID: DKR6ROiHRS7
 2017-06-26 14:19:58 -07:00
Nicholas Nethercote
033f83145c Bug 1375387 - Reorder and section-ify GeckoProfiler.h. r=mstange. 
This patch gives some structure and order to the profiler's API.

It also renames AutoProfilerRegister as AutoProfilerRegisterThread, to match
profiler_register_thread().
 2017-06-22 14:28:47 +10:00
David Keeler
52cc80c4fe Bug 1368652 - Use Mozilla string types to display OIDs in the certificate viewer. r=Cykesiopka 2017-06-01 12:26:41 -07:00
Gian-Carlo Pascutto
f2e7c8b77a Bug 1374281. r=jld 
MozReview-Commit-ID: Ko5m5i4Wkd6

--HG--
extra : rebase_source : 3076315ef3639a89f752addbb01d5d08a9c2db75
 2017-06-19 20:07:38 +02:00
Alex Gaynor
f514ff97b3 Bug 1379182 - Remove some unnecessary file-write permissions types from the content process on macOS; r=haik 
On macOS, the file-write* permission type contains numerous sub-permissions (see
bug for full listing). Restrict the ones we allow to only the two we need:
file-write-create and file-write-data. This primarily reduces kernel attack
surface, I'm not aware of any bad things that could be done directly with the
removed permissions.

MozReview-Commit-ID: 3VvjFesy2qx

--HG--
extra : rebase_source : 934ec17c44c9ef3d7fab29919d66cf1a55d57697
 2017-07-07 11:05:01 -04:00
Wes Kocher
5dd57ee395 Merge m-c to inbound, a=merge 
MozReview-Commit-ID: IVwrN2VivZT
 2017-07-07 17:30:32 -07:00
Alex Gaynor
d40ad40466 Bug 1376976 - Restrict sysctl access in the content process to a whitelist of sysctl names. r=jld, r=haik 
MozReview-Commit-ID: 14yoiP1gskM
 2017-06-29 13:55:15 -07:00
Carsten "Tomcat" Book
651904c8a0 Merge mozilla-central to autoland 2017-07-04 11:12:45 +02:00
Kate McKinley
396962011a Bug 1363546 - Store and report HSTS upgrade source r=francois,keeler,mayhemer p=francois 
Add a field to the HSTS cache which indicates the source of the HSTS
entry if known, from the preload list, organically seen header, or HSTS
priming, or unknown otherwise. Also adds telemetry to collect the source
when upgrading in NS_ShouldSecureUpgrade.

MozReview-Commit-ID: 3IwyYe3Cn73

--HG--
extra : rebase_source : 9b8daac3aa02bd7a1b4285fb1e5731a817a76b7f
 2017-05-23 15:31:37 -07:00
Alex Gaynor
b636380391 Bug 1374557 - Part 1 - Add the ability to specify a list of paths to whitelist read access to in the macOS content sandbox; r=haik 
MozReview-Commit-ID: HXBkyR7Tts2

--HG--
extra : rebase_source : 6daf50a4d7a4ff2ff85dfac43891149353e813aa
 2017-06-21 10:19:28 -04:00
Carsten "Tomcat" Book
038afacb9f Backed out changeset 2ae22a66e02d (bug 1366694) for memory leaks 2017-07-11 13:14:55 +02:00
Carsten "Tomcat" Book
05734fd002 Backed out changeset 88b71119fbf8 (bug 1366694) 2017-07-11 13:14:38 +02:00
Carsten "Tomcat" Book
7e0d52f50e Merge mozilla-central to inbound 2017-07-11 13:00:28 +02:00
Bob Owen
db58bdb9ca Bug 1377555 Part 3: Don't use restricting SIDs when running from a network drive. r=jimm 2017-07-11 09:44:21 +01:00
Bob Owen
bbf27f0cae Bug 1377555 Part 2: Add option to Windows chromium sandbox policy to not use restricting SIDs. r=jimm 2017-07-11 09:44:20 +01:00
Bob Owen
01f2685a30 Bug 1377555 Part 1: Back out changesets 04edb03fb817 and d17ac655cc51. r=jimm 
This backouts the previous change to detect and change the sandbox policy
when running from a network drive.
 2017-07-11 09:44:20 +01:00
Bob Owen
25e5ff4cde Bug 1366694 Part 2: Don't run sandbox file system test in DEBUG on Windows. r=jimm 
This is because in DEBUG mode we currently give full access to TEMP dir
for logging purposes and the temporary profile is created in the TEMP dir.
 2017-07-11 09:44:20 +01:00
Bob Owen
ecbd6ca808 Bug 1366694 Part 1: Allow user handles in the content process job in DEBUG builds. r=jimm 2017-07-07 15:51:17 +01:00
Jim Mathies
6fa192cf93 Bug 1381326 - Enable MITIGATION_EXTENSION_POINT_DISABLE feature for Windows content. r=bobowen 
MozReview-Commit-ID: 34MNqN5ln7J

--HG--
extra : rebase_source : 3b5565d5b387f70c562cf1b8e306dd2df8d57233
 2017-07-16 12:08:18 -05:00
David Keeler
a196a1c7c3 bug 1291886 - clarify/fix locking in nsNSSComponent r=Cykesiopka,jcj 
Some of the locking in nsNSSComponent was inconsistent and/or just wrong. This
clarifies what is protected by the lock and makes sure it is consistently
acquired when those resources are accessed.
This should also address potential deadlocks when other code would attempt to
acquire nsNSSComponent resources during shutdown.
This patch also removes some items in nsNSSComponent that are no longer
relevant.

MozReview-Commit-ID: 9iA5lfAixpj

--HG--
extra : rebase_source : 1c05788efe5d6345256cca505b089198bd7e4a20
 2017-06-08 14:49:13 -07:00
Kate McKinley
a809b5b8d6 Bug 1374453 - turn HSTS priming on in Beta r=ckerschb 
MozReview-Commit-ID: JHc47g8cDmb

--HG--
extra : rebase_source : cb67f51ac7fef74f43cc05d02bac4ef13c3ded15
 2017-06-19 14:46:48 -07:00
Kate McKinley
9108666ee6 Bug 1374443 - Decrease HSTS priming timeout to 2s r=ckerschb 
MozReview-Commit-ID: 7brYAUXwHvE

--HG--
extra : rebase_source : 4ef6f27cc855b828ac742f2990dc12668bd910aa
 2017-06-19 14:35:27 -07:00
Paolo Amadini
10ee6a5c4e Bug 1362970 - Part 2 - Script-generated patch to convert .then(null, ...) to .catch(...). r=florian 
Changes to Promise tests designed to test .then(null) have been reverted, and the browser/extensions directory was excluded because the projects it contains have a separate process for accepting changes.

MozReview-Commit-ID: 1buqgX1EP4P

--HG--
extra : rebase_source : 3a9ea310d3e4a8642aabbc10636c04bfe2e77070
 2017-06-19 11:32:37 +01:00
Carsten "Tomcat" Book
de892834ed Merge mozilla-central to mozilla-inbound 2017-06-20 11:31:34 +02:00
Alex Gaynor
bb1ea70f5f Bug 1357758 - Replace the file-read blacklist in the macOS sandbox policy with a whitelist of the allowed paths; r=haik 
This makes the policy easier to audit, harder to regress, and easier to further prune the content processes's permissions.

MozReview-Commit-ID: 6VqEoGsWSGH

--HG--
extra : rebase_source : 58a9d35dd6e58624779294b49df5cc7e34cb4320
 2017-04-18 15:57:54 -04:00
Wes Kocher
bfc45b98b9 Merge m-c to inbound, a=merge 
MozReview-Commit-ID: 9XdoB5MuVz6
 2017-07-05 17:17:41 -07:00
Bob Owen
1eb1c9091d Bug 1378061: Only set user's SID in USER_LIMITED as deny only when not using restricting SIDs. r=jimm 2017-07-05 21:00:55 +01:00
Kai Engert
10b5520799 Bug 1380706, PSM should depend on mozStorage, as a workaround for a sqlite3_config race, r=keeler 2017-07-14 15:31:30 +02:00
Carsten "Tomcat" Book
ea1b86680c Backed out changeset 9846de3bd954 (bug 1372405) 
--HG--
extra : rebase_source : 5d4a48e8ec394c329994689d938d2a6e9b2752b0
 2017-06-20 08:27:02 +02:00
Bill McCloskey
4592152411 Bug 1372405 - Provide names for all runnables in the tree (r=froydnj) 
MozReview-Commit-ID: DKR6ROiHRS7
 2017-06-19 22:25:47 -07:00
Bevis Tseng
d1637b9c5a Bug 1372453 - Part 2: Name the caller of ProxyReleaseEvent. r=billm 
MozReview-Commit-ID: LYhSWnZkq0i
 2017-06-14 09:27:17 +08:00
ffxbld
7cc377ce3f No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update 2017-06-18 08:24:54 -07:00
ffxbld
a6c7ba400c No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update 2017-06-18 08:24:51 -07:00
ffxbld
b95a1a9583 No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update 2017-06-17 08:38:30 -07:00
ffxbld
091d02c281 No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update 2017-06-17 08:38:27 -07:00
ffxbld
b2d072aa58 No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-16 08:37:44 -07:00
ffxbld
870c286510 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-16 08:37:41 -07:00
David Keeler
0b2a439e7e bug 1373068 - fix the ctypes declaration of SSL_ClearSessionCache in head_psm.js r=Cykesiopka 
SSL_ClearSessionCache is `void SSL_ClearSessionCache()`. In head_psm.js it was
being declared as `SECStatus SSL_ClearSessionCache()` and the "return value" was
being checked, which was incorrect. This apparently wasn't causing failures on
any of our test runs, but with tsan enabled the check would fail.

MozReview-Commit-ID: 6KosOVPu8K4

--HG--
extra : rebase_source : 73addb80a5ab5263a182207a0f4277daf8ae32a5
 2017-06-14 15:10:28 -07:00
Andrew Halberstadt
c9beaa56b4 Bug 1373294 - Fix E305 (two blank lines after method or class) in files enabled by flake8 linter, r=jmaher 
This is needed before we can upgrade to flake8 3.3.0, as that version starts flagging these errors.

These files were modified by running:
autopep8 --select E305 --in-place -r <dir>

on the affected directories. I did it one dir at a time and verified the result after each.

MozReview-Commit-ID: FmlsfiKIbtr

--HG--
extra : rebase_source : 9df32258cadff5d27a0e72113c57f782756c0b18
 2017-06-15 12:10:59 -04:00
ffxbld
c365df1999 No bug, Automated HPKP preload list update from host bld-linux64-spot-382 - a=hpkp-update 2017-06-15 08:38:35 -07:00
ffxbld
fc60e8619a No bug, Automated HSTS preload list update from host bld-linux64-spot-382 - a=hsts-update 2017-06-15 08:38:32 -07:00
ffxbld
c49a70b53f No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-14 08:33:27 -07:00
ffxbld
b98ce20b57 No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-14 08:33:24 -07:00
Wes Kocher
ebf35623cd Merge mozilla-central to autoland a=merge 
UPGRADE_NSS_RELEASE
 2017-06-13 18:57:32 -07:00
Wes Kocher
1af6d5cf57 Merge inbound to central, a=merge 
UPGRADE_NSS_RELEASE
MozReview-Commit-ID: CBIFPwA5aNp

--HG--
extra : amend_source : 035a5be59d0046a643d0f836a95195e8c4ade4a6
 2017-06-13 18:27:10 -07:00
ffxbld
13bca384b3 No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-13 08:37:54 -07:00
ffxbld
cdd7ceaa16 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-13 08:37:50 -07:00
ffxbld
687bfe6a46 No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update 2017-06-12 08:25:15 -07:00
ffxbld
1d51d00cbc No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update 2017-06-12 08:25:12 -07:00
ffxbld
d840ebd585 No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update 2017-06-11 08:31:38 -07:00
ffxbld
19a63c3db3 No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update 2017-06-11 08:31:35 -07:00
ffxbld
fee636af73 No bug, Automated HPKP preload list update from host bld-linux64-spot-304 - a=hpkp-update 2017-06-10 08:28:28 -07:00
ffxbld
494c299b4c No bug, Automated HSTS preload list update from host bld-linux64-spot-304 - a=hsts-update 2017-06-10 08:28:25 -07:00
Wes Kocher
038efa62a3 Merge m-c to autoland, a=merge 
MozReview-Commit-ID: HYPYecdsMhL
 2017-06-09 16:00:04 -07:00
Wes Kocher
a4cc130bcc Merge autoland to central, a=merge 
MozReview-Commit-ID: Jpywgkn7waG
 2017-06-09 13:28:20 -07:00
ffxbld
cb712cd137 No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update 2017-06-09 08:28:37 -07:00
ffxbld
005b20e0a4 No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update 2017-06-09 08:28:34 -07:00
Carsten "Tomcat" Book
d5a13ba05e merge mozilla-inbound to mozilla-central a=merge 2017-06-09 12:58:49 +02:00
Alex Gaynor
0403c42ccf Bug 1371701 - Fixed sandboxing tests to reflect that we're enabling file content process for all channels r=bobowen 
MozReview-Commit-ID: ICXZjEU2n6L

--HG--
extra : rebase_source : f28d5d61f6a0cdfecb2804239c407c730c4fd2ba
 2017-06-09 11:24:07 -04:00
Wes Kocher
1be06aea28 Merge m-c to autoland, a=merge 
UPGRADE_NSS_RELEASE

MozReview-Commit-ID: ItWcUAUYyaj

--HG--
extra : amend_source : fc43f23f0e12d5f88d72be9526a953d8015e6975
 2017-06-08 18:44:32 -07:00
Wes Kocher
39dd8b763b Merge inbound to central, a=merge 
UPGRADE_NSS_RELEASE

MozReview-Commit-ID: 4of9LS9sA2I

--HG--
extra : amend_source : c399503fa642c04d256ee0ce53b099601259f90a
 2017-06-08 18:10:10 -07:00
ffxbld
9b5314f2d1 No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-08 09:27:12 -07:00
ffxbld
ecdb9dfade No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-08 09:27:09 -07:00
Carsten "Tomcat" Book
247a47fac9 Merge mozilla-central to mozilla-inbound 2017-06-08 15:16:36 +02:00
Jed Davis
da2db41a9c Bug 1362601 - Don't crash on sandbox violation if known-problem injected libs are present. r=gcp 
MozReview-Commit-ID: HCbavpMUxYm

--HG--
extra : rebase_source : ec0cc9dcbf07831209b438504311b45f5b8990a8
 2017-06-07 16:33:11 -06:00
Franziskus Kiefer
02d51071b4 Bug 1345368 - land NSS NSS_3_31_RTM UPGRADE_NSS_RELEASE, r=me 2017-06-08 12:57:33 +02:00
David Keeler
e426fddb4a bug 1369911 - gather telemetry on the prevalence of 3rd party PKCS#11 modules r=bsmedberg,Cykesiopka data-review=bsmedberg 
MozReview-Commit-ID: Dw99Jm64QNU

--HG--
extra : rebase_source : 9e9f6c5342f992c9040e85b0eab129d7751e9887
 2017-06-02 16:44:06 -07:00
Ryan VanderMeulen
9b7a73b65a Merge m-c to autoland. a=merge 
UPGRADE_NSPR_RELEASE UPGRADE_NSS_RELEASE

--HG--
extra : amend_source : a59e53ba2f8db608f613f21ad6da2b5be8814aa4
 2017-06-07 22:55:56 -04:00
Ryan VanderMeulen
e886d1846a Merge inbound to m-c. a=merge 
UPGRADE_NSPR_RELEASE UPGRADE_NSS_RELEASE

--HG--
extra : amend_source : a7800e9214d5a8325af0d1f5e5dcc77273f4ce95
 2017-06-07 22:52:40 -04:00
ffxbld
086a61dfbf No bug, Automated HPKP preload list update from host bld-linux64-spot-303 - a=hpkp-update 2017-06-07 08:36:43 -07:00
ffxbld
9286331337 No bug, Automated HSTS preload list update from host bld-linux64-spot-303 - a=hsts-update 2017-06-07 08:36:40 -07:00
ffxbld
cd09b99007 No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-06 08:39:25 -07:00
ffxbld
12a027af8e No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-06 08:39:22 -07:00
Rajesh Kathiriya
6d3eb2c851 Bug 1370232 - Enabled the ESLint no-unneeded-ternary rule across mozilla-central. r=standard8 
MozReview-Commit-ID: AH9ArRkjh78

--HG--
extra : rebase_source : bdd4c4f8a4779ea373479a9cba772c036e00e816
 2017-06-13 00:23:54 +05:30
Franziskus Kiefer
bcc2da0b6a Bug 1345368 - adapt to new NSS certdata.py, r=ted 
UPGRADE_NSS_RELEASE

--HG--
extra : rebase_source : e995f611f59a8f10af70781a1ee50e6c89f4a8d9
 2017-06-06 09:59:42 +02:00
Franziskus Kiefer
9a70331f36 Bug 1345368 - Disable test_broken_fips on all platforms other than mac, r=keeler 
--HG--
extra : rebase_source : 67201c5646f3d1c8abe5122051cddaee148c418a
 2017-06-07 09:16:45 +02:00
Franziskus Kiefer
747a09639e Bug 1345368 - land NSS NSS_3_31_BETA2 UPGRADE_NSS_RELEASE, r=me 
--HG--
extra : rebase_source : 3999b2f4d1c47a92c19c39cafd6d9c4c45a85383
 2017-06-07 09:21:08 +02:00
Mark Banner
c93c2a1504 Bug 1370240 - Enable the ESLint no-control-regex rule across mozilla-central. r=mossop 
MozReview-Commit-ID: IN7YMk7yhAO

--HG--
extra : rebase_source : be0a9cae6eae14d4f097eced2e231a96c89c9c47
 2017-06-05 15:43:09 +01:00
ffxbld
61528d699c No bug, Automated HPKP preload list update from host bld-linux64-spot-030 - a=hpkp-update 2017-06-05 08:39:51 -07:00
ffxbld
b6a127253e No bug, Automated HSTS preload list update from host bld-linux64-spot-030 - a=hsts-update 2017-06-05 08:39:48 -07:00
Cykesiopka
ab8411f21d Bug 1368107 - Make SSLErrorMessageType an enum class. r=keeler 
Enum classes are safer and nicer.

MozReview-Commit-ID: FDT3Gb1t9w1

--HG--
extra : rebase_source : 92d67db5f7ea4a64e3101b0e3a93e9fccbfa132e
 2017-06-03 13:36:41 +08:00
Cykesiopka
0ac2ac7fa3 Bug 1368107 - Make some TransportSecurityInfo nsresult functions return void. r=keeler 
These functions in practice are all infallible and are unchecked by callers, so
there's no point in having them return nsresult.

MozReview-Commit-ID: BOypKLUZZBi

--HG--
extra : rebase_source : 95c8e9ca6d74d04f2836aea2bcdb1c751d3e9308
 2017-06-03 13:36:16 +08:00
Cykesiopka
875885fbf4 Bug 1368107 - Remove fallible version of TransportSecurityInfo::GetPort(). r=keeler 
The function is infallible in pratice, and so is unnecessary when there's an
actual infallible version.

MozReview-Commit-ID: FTuVyqwjZ8O

--HG--
extra : rebase_source : 88f511d730bb02b5e28a86cb366ae1c915e0a8b1
 2017-06-03 13:36:04 +08:00
Cykesiopka
0adca03a5d Bug 1368107 - Remove TransportSecurityInfo::GetHostNameRaw(). r=keeler 
GetHostNameRaw() returns a char* string, which is less safe and ergonomic
compared to the Mozilla string classes. GetHostName() can be used instead.

MozReview-Commit-ID: GYvTnISNN35

--HG--
extra : rebase_source : da257f5fba2c26cd92d932c3d1d363458b84a65b
 2017-06-03 13:35:51 +08:00
ffxbld
507743376d No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-04 08:18:02 -07:00
ffxbld
a38378d203 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-04 08:17:59 -07:00
Sebastian Hengst
2a8940299d merge autoland to mozilla-central. r=merge a=merge 
MozReview-Commit-ID: LKdCEt8LelR
 2017-06-03 20:12:42 +02:00
ffxbld
a13364b7c5 No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-03 08:34:04 -07:00
ffxbld
ba2cb002c0 No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-03 08:34:01 -07:00
Wes Kocher
0d038d6513 Merge autoland to m-c a=merge 
MozReview-Commit-ID: Fjt5XIDd0p6
 2017-06-02 17:21:39 -07:00
ffxbld
7b88c78694 No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-06-02 08:23:24 -07:00
ffxbld
be07550ffc No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-06-02 08:23:21 -07:00
Jed Davis
b129f08d7f Bug 1322784 - Gently fail utime(), to deal with GConf/ORBit. r=gcp 
MozReview-Commit-ID: B4LmSGR6OEz

--HG--
extra : rebase_source : 613409994c0ba50c34c57537343484f1dc85b7aa
 2017-05-30 23:13:37 -06:00
Tom Ritter
9d75725eb8 Bug 1350362 Fix NSS Build System for MinGW r=ted 
MozReview-Commit-ID: 4QROlna5Cvg

--HG--
extra : rebase_source : a13c7080a6ee445bf3d10248305a6eb88405c173
 2017-05-12 11:39:00 -05:00
ffxbld
5c64ad5e40 No bug, Automated HPKP preload list update from host bld-linux64-spot-307 - a=hpkp-update 2017-06-01 08:22:16 -07:00
ffxbld
9dbe8dec8a No bug, Automated HSTS preload list update from host bld-linux64-spot-307 - a=hsts-update 2017-06-01 08:22:13 -07:00
Wes Kocher
d4af1fa9e1 Merge m-c to inbound, a=merge 
MozReview-Commit-ID: E2oiCGaL6uX
 2017-06-08 18:42:21 -07:00
Bob Owen
a3df44ccee Bug 1323188: Don't use restricting SIDs in the sandbox access tokens when running from a network drive. r=jimm 2017-06-07 20:20:02 +01:00
Alex Gaynor
d27dc0ba0b Bug 1358223 - Part 1 - On Windows and macOS hardcode the minimum content sandbox level at 1. r=bobowen,haik,jimm 
If the "security.sandbox.content.level" preference is set to a value less than
1, all consumers will automatically treat it as if it were level 1. On Linux and
Nightly builds, setting the sandbox level to 0 is still allowed, for now.

MozReview-Commit-ID: 9QNTCkdbTfm

--HG--
extra : rebase_source : cd5a853c46a5cd334504b339bef8df30a3cabe51
 2017-05-12 17:04:42 -04:00
Sebastian Hengst
fd03aa5bc8 Backed out changeset 4e283b54baa6 (bug 1358223) for build bustage on Android at dom/ipc/ContentChild.cpp:21. r=backout 2017-05-31 21:34:13 +02:00
Alex Gaynor
39f34ea898 Bug 1358223 - Part 1 - On Windows and macOS hardcode the minimum content sandbox level at 1. r=bobowen,haik,jimm 
If the "security.sandbox.content.level" preference is set to a value less than
1, all consumers will automatically treat it as if it were level 1. On Linux and
Nightly builds, setting the sandbox level to 0 is still allowed, for now.

MozReview-Commit-ID: 9QNTCkdbTfm

--HG--
extra : rebase_source : 1a26ffc5b9f80e6df4c37c23f506e907ba44053a
 2017-05-12 17:04:42 -04:00
Alex Gaynor
1532472698 Bug 1368771 - Added a test which verifies that on macOS /Volumes isn't readable at sandbox level 3 r=haik 
r?haik

MozReview-Commit-ID: HPW4luz5n0M

--HG--
extra : rebase_source : c224b56de4b705758e2ab7820af02a4ef41d4040
 2017-05-30 13:52:57 -04:00
Ryan VanderMeulen
af691573d4 Merge m-c to autoland. a=merge 2017-05-30 12:59:41 -04:00
ffxbld
7c3223ec90 No bug, Automated HPKP preload list update from host bld-linux64-spot-383 - a=hpkp-update 2017-05-30 08:16:50 -07:00
ffxbld
c522116a60 No bug, Automated HSTS preload list update from host bld-linux64-spot-383 - a=hsts-update 2017-05-30 08:16:47 -07:00
Carsten "Tomcat" Book
b318c7dca7 merge mozilla-inbound to mozilla-central + UPGRADE_NSS_RELEASE a=merge 
--HG--
rename : toolkit/components/extensions/test/xpcshell/xpcshell.ini => toolkit/components/extensions/test/xpcshell/xpcshell-common.ini
extra : amend_source : 458fd54fe8070ca3034ac441267ff7025adb5251
 2017-05-30 11:37:46 +02:00
ffxbld
544308c147 No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update 2017-05-29 08:18:00 -07:00
ffxbld
d3a21a063c No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update 2017-05-29 08:17:57 -07:00
Franziskus Kiefer
afc9fc15dc Bug 1345368 - land NSS 29290a4a9bd0 UPGRADE_NSS_RELEASE, r=me 2017-05-29 09:27:40 +02:00
ffxbld
3724e0f28c No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update 2017-05-28 08:15:02 -07:00
ffxbld
c81b68804b No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update 2017-05-28 08:14:59 -07:00
ffxbld
596d188f6d No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update 2017-05-27 08:17:01 -07:00
ffxbld
a7c347e651 No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update 2017-05-27 08:16:58 -07:00
ffxbld
5a51fa544c No bug, Automated HPKP preload list update from host bld-linux64-spot-301 - a=hpkp-update 2017-05-26 08:16:49 -07:00
ffxbld
4fcea03f05 No bug, Automated HSTS preload list update from host bld-linux64-spot-301 - a=hsts-update 2017-05-26 08:16:46 -07:00
Cykesiopka
02bee25903 Bug 1366584 - Add initial [must_use] properties to PSM IDL files. r=keeler 
The [must_use] property on XPIDL methods and attributes is useful for making
sure errors are properly handled.

As a first step, this patch adds the property to PSM methods and attributes that
are already correctly checked everywhere.

MozReview-Commit-ID: KyGxwUK3x0X

--HG--
extra : rebase_source : 45bd3f8d305fe221cc1bba73a520f11829dc5a42
 2017-05-25 21:56:04 +08:00
David Keeler
3e029fa5c8 bug 1359514 - remove EV treatment for "Swisscom Root EV CA 2" r=kmckinley 
The "Swisscom Root EV CA 2" root is no longer in use and will be removed from
the built-in root CA list. However, we have to remove its EV treatment first.

MozReview-Commit-ID: 2TZRt5px7bl

--HG--
extra : rebase_source : 68902555ffe62a973cfaac3af531e96aa288a339
 2017-05-25 13:55:15 -07:00
Ryan VanderMeulen
d3f265330e Merge m-c to autoland. a=merge 2017-05-25 16:44:01 -04:00
Ryan VanderMeulen
b8ba243c22 Merge autoland to m-c. a=merge 2017-05-25 16:31:52 -04:00
ffxbld
3d5d49ce51 No bug, Automated HPKP preload list update from host bld-linux64-spot-308 - a=hpkp-update 2017-05-25 08:19:09 -07:00
ffxbld
56535cde6c No bug, Automated HSTS preload list update from host bld-linux64-spot-308 - a=hsts-update 2017-05-25 08:19:07 -07:00
David Keeler
98d942eac1 bug 1366100 - disable OCSP fetching for DV certificates in nightly r=jaws,jcj 
After this change, the platform will only fetch OCSP responses for EV
certificates (in nightly).

MozReview-Commit-ID: 3d9kzCYmnsa

--HG--
extra : rebase_source : e0cbbf6615e1ba813461dd13350f40ae7e0fbc07
 2017-05-23 17:07:51 -07:00
Jed Davis
f6b03fa260 Bug 1355274 - Polyfill SOCK_DGRAM socketpairs with SOCK_SEQPACKET, for libasyncns. r=gcp 
MozReview-Commit-ID: 2DeklSGsjUV

--HG--
extra : rebase_source : 8a202c23dc9a3ddede49b08ce1e0792dfb40bdbf
 2017-04-11 20:55:34 -06:00
Jed Davis
675bae8c8d Bug 1364533 - Allow madvise huge page hints. r=gcp 
MozReview-Commit-ID: 7sNWS2sFJCx

--HG--
extra : rebase_source : c1730d2ac5d352dcaec1889d4f20dd9bc0a838a8
 2017-05-12 20:04:07 -06:00
ffxbld
af8ecb9a1e No bug, Automated HPKP preload list update from host bld-linux64-spot-376 - a=hpkp-update 2017-05-24 08:09:01 -07:00
ffxbld
08e4cade1c No bug, Automated HSTS preload list update from host bld-linux64-spot-376 - a=hsts-update 2017-05-24 08:08:58 -07:00
Ryan VanderMeulen
e096678430 Merge m-c to autoland. a=merge UPGRADE_NSS_RELEASE 
--HG--
rename : dom/security/test/sri/iframe_style_crossdomain.html => dom/security/test/sri/iframe_style_crossdomain_legacy.html
rename : mobile/android/themes/core/content.css => mobile/android/themes/geckoview/content.css
rename : mobile/android/themes/core/images/accessiblecaret-normal-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-normal-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-normal-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-normal-xxhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-left-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-left-xxhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-hdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-hdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-xhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-xhdpi.png
rename : mobile/android/themes/core/images/accessiblecaret-tilt-right-xxhdpi.png => mobile/android/themes/geckoview/images/accessiblecaret-tilt-right-xxhdpi.png
rename : mobile/android/themes/core/images/dropmarker-right.svg => mobile/android/themes/geckoview/images/dropmarker-right.svg
rename : mobile/android/themes/core/images/dropmarker.svg => mobile/android/themes/geckoview/images/dropmarker.svg
rename : mobile/android/themes/core/images/cast-active.svg => mobile/android/themes/geckoview/images/videocontrols-cast-active.svg
rename : mobile/android/themes/core/images/cast-ready.svg => mobile/android/themes/geckoview/images/videocontrols-cast-ready.svg
rename : mobile/android/themes/core/images/exitfullscreen.svg => mobile/android/themes/geckoview/images/videocontrols-exitfullscreen.svg
rename : mobile/android/themes/core/images/fullscreen.svg => mobile/android/themes/geckoview/images/videocontrols-fullscreen.svg
rename : mobile/android/themes/core/images/mute.svg => mobile/android/themes/geckoview/images/videocontrols-mute.svg
rename : mobile/android/themes/core/images/pause.svg => mobile/android/themes/geckoview/images/videocontrols-pause.svg
rename : mobile/android/themes/core/images/play.svg => mobile/android/themes/geckoview/images/videocontrols-play.svg
rename : mobile/android/themes/core/images/scrubber.svg => mobile/android/themes/geckoview/images/videocontrols-scrubber.svg
rename : mobile/android/themes/core/images/unmute.svg => mobile/android/themes/geckoview/images/videocontrols-unmute.svg
rename : mobile/android/themes/core/scrollbar-apz.css => mobile/android/themes/geckoview/scrollbar-apz.css
rename : mobile/android/themes/core/touchcontrols.css => mobile/android/themes/geckoview/videocontrols.css
extra : rebase_source : a5b4c2c75991990af25c4686ff96c199834ff317
 2017-05-23 13:41:47 -04:00
ffxbld
0fea6cd28c No bug, Automated HPKP preload list update from host bld-linux64-spot-305 - a=hpkp-update 2017-05-23 08:08:00 -07:00
ffxbld
0704600a36 No bug, Automated HSTS preload list update from host bld-linux64-spot-305 - a=hsts-update 2017-05-23 08:07:57 -07:00
Franziskus Kiefer
073576f302 Backed out changeset bf6ee973f04e because of Android bustage UPGRADE_NSS_RELEASE 
--HG--
extra : amend_source : 6502b79382c14536c060c03b428172cb6edc9d3f
 2017-05-23 13:22:21 +02:00
Franziskus Kiefer
66f094103a Bug 1345368 - land NSS 0c3800b6eaba UPGRADE_NSS_RELEASE, r=me 2017-05-23 12:36:33 +02:00
David Keeler
3ddfb3c1ce bug 1364159 - potentially avoid calling CERT_CreateSubjectCertList in NSSCertDBTrustDomain::FindIssuer r=Cykesiopka,jcj 
CERT_CreateSubjectCertList is not an inexpensive function call, since it
enumerates the certificate database (i.e. reads from disk a lot). If we're
verifying for a TLS handshake, however, we should already have in memory a
certificate chain sent by the peer (there are some cases where we won't, such as
session resumption (see bug 731478)). If we can, we should use those
certificates before falling back to calling CERT_CreateSubjectCertList.

MozReview-Commit-ID: ASjVGsELb1O

--HG--
extra : rebase_source : 1efc635d4a98079c87f77ef3794e4b2f20eec59f
 2017-05-11 16:41:12 -07:00
Dan Banner
ea09f270ab Bug 1368041 - Enable no-array-constructor across mozilla-central r=standard8 
MozReview-Commit-ID: EXJNufdKKhJ

--HG--
extra : rebase_source : 66d17c7981c4b0987c482ce092b25990b42c07fb
 2017-05-27 15:17:29 +01:00
Cykesiopka
73288e2bbf Bug 1174555 - Improve state string parsing test coverage. r=keeler 
MozReview-Commit-ID: Fv66f1gu4kT

--HG--
extra : rebase_source : f02a317fd958909d42bad9cd206f5a74f36d8689
 2017-05-21 10:43:44 +08:00
Cykesiopka
114202795c Bug 1174555 - Clean up some SiteSecurityService state file related tests. r=keeler 
MozReview-Commit-ID: 6qXV04CUElu

--HG--
extra : rebase_source : ba47e0cfe9317703895df02277568e59cc56591c
 2017-05-21 10:43:32 +08:00
Cykesiopka
c1efdc2244 Bug 1174555 - Stop using PR_sscanf() in nsSiteSecurityService.cpp. r=keeler 
While the uses of PR_sscanf() in PSM are safe, the function in general is
vulnerable to format string attacks, and so should be avoided.

This change removes the only uses of the function in PSM and moves to the more
obviously safe mozilla::Tokenizer.

MozReview-Commit-ID: J4BP6JTE1zI

--HG--
extra : rebase_source : e77e8b1ba70bef6f0ff794b7d066bbbdebe8f58e
 2017-05-21 10:43:18 +08:00