Commit Graph

1027 Commits

Author SHA1 Message Date
kaie@kuix.de
85c65d089e Bug 400085, nsNSSCertificate::hasValidEVOidTag compare DER, not strings Patch contributed by Honza Bambas, r=rrelyea, r=kengert, approval1.9=beltzner 2008-03-06 22:14:33 -08:00
gavin@gavinsharp.com
7b3cc60dbc Bug 419111: unfrozen interfaces listed in SDK_XPIDLSRCS, r=kaie, sr=bzbarsky 2008-03-05 14:08:20 -08:00
reed@reedloden.com
0649a78124 Bug 351580 - "Possible null pointer dereferences in |nsCrypto::GenerateCRMFRequest|" (Fixed !NULL checks + GC rooting) [p=honzab@allpeers.com (Honza Bambas [mayhemer]) r=mrbkap a=blocking1.9+] 2008-03-04 03:25:44 -08:00
kaie@kuix.de
dde03743df Bug 418958, Enable Go Daddy root CA certificates for EV use r=rrelyea, a1.9b4=beltzner 2008-02-28 10:00:57 -08:00
dcamp@mozilla.com
dc356cb6ed Bug 415799: Interface and implementation for HMAC support. p=honzab@allpeers.com (Jan Bambas), r=kaie, r=rrelyea, sr=dveditz, blocking1.9=sayrer 2008-02-26 22:31:13 -08:00
wtc@google.com
7d9ede46bb Bug 415033: added a hidden preference (in about:config) for enabling or disabling the TLS session ticket extension. The patch is contributed by Nagendra Modadugu <ngm+mozilla@google.com>. r=wtc,rrelyea,kengert a1.9+=damons Modified Files: netwerk/base/public/security-prefs.js security/manager/ssl/src/nsNSSComponent.cpp 2008-02-26 15:09:39 -08:00
kaie@kuix.de
5cdf20b455 Bug 416827, Enable Digicert root CA certificate for EV use r=rrelyea, approval1.9=beltzner 2008-02-22 00:54:42 -08:00
kaie@kuix.de
3a4b65eee4 Bug 418701, Enable Quo Vadis root CA certificate for EV use r=rrelyea, approval1.9=beltzner 2008-02-22 00:51:59 -08:00
kaie@kuix.de
ab4d620f27 Bug 416850, Deleting a security exception and then re-adding it causes cert exception to remain valid r=rrelyea, approval1.9=beltzner 2008-02-22 00:50:11 -08:00
kaie@kuix.de
feb4af8baf Bug 372876, Read from SSL socket leaks memory r=rrelyea, blocking1.9=sayrer 2008-02-21 17:07:16 -08:00
dcamp@mozilla.com
60509057ee Bug 350873: nsStreamLoader code accessed on secondary thread [ASSERTION: nsStreamLoader not thread-safe]. r=kengert, sr=dveditz, b1.9=sayrer 2008-02-21 17:05:17 -08:00
kaie@kuix.de
40f6f1da73 Bug 415213, uninitialized variables in PSM r=rrelyea, a1.9=dsicore 2008-02-13 08:14:25 -08:00
kaie@kuix.de
b3944fe7fb Bug 413627, nsCertOverrideService can't register observers (NS_ERROR_UNEXPECTED) intended to fix blocking1.9+ Bug 414808 Patch contributed by Ehsan Akhgari, timeless and some trivial tweaks by myself Thanks to Tomcat for help with testing r=me, a=mtschrep, blocking1.9-on-414808=beltzner 2008-01-31 22:04:56 -08:00
kaie@kuix.de
3084b041e7 Bug 409091, SSL Client Auth prompt should indicate port number r=rrelyea, a1.9=mtschrep 2008-01-22 15:47:55 -08:00
kaie@kuix.de
a2a4a72d69 Bug 405139, EV certs should be treated as providing less certainty of identity if OCSP is disabled. r=rrelyea, a1.9=mtschrep 2008-01-22 15:46:49 -08:00
kaie@kuix.de
723e7f78f7 Bug 412786, uninitialized variable r=rrelyea, a1.9=mtschrep 2008-01-22 15:44:29 -08:00
kaie@kuix.de
0810da1295 Bug 412455, Regression, EV UI no longer shows up r=rrelyea, a1.9=mtschrep 2008-01-22 15:43:12 -08:00
kaie@kuix.de
968e988b7c Bug 399590, Update Mozilla trunk to use NSS tag NSS_3_12_BETA1 r=rrelyea, a1.9=mtschrep 2008-01-18 02:40:58 -08:00
kaie@kuix.de
b2b540186b Bug 409280, nsIProtectedAuthThread is not embedding friendly Patch contributed by Christian Persch (GNOME) r=kengert, blocking1.9=mtschrep 2008-01-15 14:41:52 -08:00
kaie@kuix.de
aafeaa3c85 Bug 407523, Error page should not allow adding an exception for inadequate key usage r=rrelyea, a=mtschrep 2008-01-15 13:41:06 -08:00
benjamin@smedbergs.us
b3e87aa63b Bug 411327 - nsIXPCNativeCallContext should not inherit from nsISupports, r=mrbkap, a=schrep 2008-01-15 07:50:57 -08:00
dtownsend@oxymoronical.com
eb23ab4e4f Bug 404726: Addon compatibility check gives many alerts (toolkit and security portions). r=gavin.sharp, r=kengert 2008-01-15 07:06:34 -08:00
kaie@kuix.de
943c91c3c1 Bug 408432, Add Exception fails for certs with no DNS names (no CN, no SAN) r=rrelyea, blocking1.9=dsicore 2008-01-14 08:04:00 -08:00
kaie@kuix.de
530dacb132 bug 406999, Enhance EV performance; Never combine EV with Cert Overrides r=rrelyea, blocking1.9=mtschrep 2008-01-14 07:45:07 -08:00
jruderman@hmc.edu
67357b119f Add crashtest for keygen 2007-12-16 17:27:11 -08:00
kaie@kuix.de
0e1b22477e fixes bug 406290 r=wtc, a=beltzner 2007-12-14 09:39:30 -08:00
kaie@kuix.de
6dd7c7585e Bug 403691, unable to display decoded policies extension in certs from https://www.digicert.com r=kengert, a=beltzner 2007-12-14 08:11:57 -08:00
kaie@kuix.de
a557b8e17c bug 119500, PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported Patch contributed by Petr Kostka r=rrelyea, sr=kengert, a=dsicore Addon Patch to provide dummy implementations for gtk-embedding and camino. r=mark, sr=jst 2007-12-04 23:34:55 -08:00
kaie@kuix.de
b672ba3b51 bug 119500, PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported Patch contributed by Petr Kostka r=rrelyea, sr=kengert, a=dsicore Addon Patch to provide dummy implementations for gtk-embedding and camino. r=mark, sr=jst 2007-12-04 23:31:43 -08:00
kaie@kuix.de
7404fedffa Bug 378241, Changes from bug 107491 lead to tons of thread-safety asserts r=rrelyea, r=wtc, sr=benjamin, blocking1.9=benjamin 2007-12-04 10:53:14 -08:00
kaie@kuix.de
67bf3693e9 Bug 404059, connection to t-mobile hotspot startup page takes very long Landing workaround patch (shorten timeout) r=rrelyea, blocking1.9=mtschrep 2007-12-03 14:58:06 -08:00
Olli.Pettay@helsinki.fi
cda16f551b Bug 401906, nsCertTreeDispInfo leaks, r=kengert, a=dsicore 2007-11-30 11:55:31 -08:00
cbiesinger@gmx.at
4360b9ffe5 bug 262116 make disk cache serialize/deserialize the security info, if present also make nsNSSSocketInfo serializable PSM part: r=kaie sr=darin rest: r+sr=darin 2007-11-30 10:05:54 -08:00
cbiesinger@gmx.at
cde1accb1a bug 405481 add nsISerializable and nsIClassInfo to nsNSSCertificate's QI impl r+sr=bz a=beltzner 2007-11-28 14:22:13 -08:00
rrelyea@redhat.com
c09d43c431 Enable real EV checking. Bug 289520. patch by kai engert. review rrelyea approval mtschrep. 2007-11-21 14:28:13 -08:00
kaie@kuix.de
74e478d629 Bug 402726, Allow to view cert on SSL protocol errors r=rrelyea, r=neil, r=gavin, a=dsicore 2007-11-20 09:59:33 -08:00
kaie@kuix.de
9323f6a736 Bug 401755, Cleanup nsNSSIOLayer.cpp->getErrorMessage Patch v3 to address regression r=rrelyea, a=mtschrep 2007-11-20 09:56:04 -08:00
bzbarsky@mit.edu
705a0393ea Remove some duplicated code. Bug 397651, r=kaie, sr=jst, a=schrep 2007-11-19 20:32:06 -08:00
kaie@kuix.de
c8c4b197ac Bug 404046, File nsIdentityChecking.cpp needs license header r=rrelyea, a=dsicore 2007-11-19 11:33:03 -08:00
kaie@kuix.de
727e0e371e bug 399589, PSM + tip of NSS, error ‘SECAlgorithmIDTemplate’ not declared r=rrelyea, a=mtschrep 2007-11-19 09:02:43 -08:00
kaie@kuix.de
f2e2a270fb Bug 399696, allow temporary certificate exceptions r=rrelyeea, a=vladimir 2007-11-19 07:32:43 -08:00
kaie@kuix.de
13d865d8e4 Bug 401755, Cleanup nsNSSIOLayer.cpp->getErrorMessage r=rrelyea, a=mtschrep 2007-11-12 16:41:29 -08:00
kaie@kuix.de
2869efb571 Bug 399318, Fix 2 one time leaks in nsKeygenHandler r=rrelyea, a=mtschrep 2007-11-12 16:31:23 -08:00
kaie@kuix.de
911f7d9d6f Bug 402602, https://paypal.com doesn't trigger the netError page that allows exceptions r=rrelyea, blocking-1.9=dsicore 2007-11-12 16:12:30 -08:00
kaie@kuix.de
e57bc0544e Bug 401954, Include latest NSS error strings r=nelson, a=mtschrep 2007-11-12 16:11:54 -08:00
kaie@kuix.de
a87665b45d Bug 400195, cert exception file has unix line endings on Windows r=nelson, a/blocking=sayrer 2007-11-09 07:12:34 -08:00
kaie@kuix.de
9f5339be7b Bug 399706, glibc detected: free(): invalid pointer attempting to select cert Landing better patch. r=rrelyea, a/blocking=beltzner 2007-11-09 07:09:58 -08:00
reed@reedloden.com
f5f27fd7da Bug 401575 - "Support cert overriding from SSL error pages" [p=johnath r=kaie r=gavin r+sr=bzbarsky ui-r=beltzner a=blocking1.9+ for M9] 2007-11-03 11:49:47 -07:00
reed@reedloden.com
aeb9c559c1 Bustage fix for bug 398718. 2007-10-30 13:59:26 -07:00
reed@reedloden.com
f453d049c0 Bug 398718 - "Better explanatory text for SSL error pages" [p=kaie/johnath r=rrelyea r=biesi a=blocking1.9+ for M9] 2007-10-30 13:26:25 -07:00
kaie@kuix.de
b798d096a4 Bug 399706, glibc detected: free(): invalid pointer attempting to select cert Regression fix for crash introduced by recent landing for bug 392790. Using minimal fix for M9 endgame. r=kengert, r=Kaspar Brand, a=beltzner 2007-10-24 15:30:34 -07:00
kaie@kuix.de
0762d8a400 Bug 374336, add knowledge of Extended Validation / EV Certificates to PSM r=rrelyea, a=mconnor/beltzner 2007-10-23 11:30:16 -07:00
kaie@kuix.de
62979d92f2 relanding Bug 399043, Workaround for Add-Certificate-Exception for (mail) ports blocked by Necko r=rrelyea, a=sayrer 2007-10-19 12:16:34 -07:00
kaie@kuix.de
8b0144895e relanding Bug 399022, Leak-prone code in nsCertTree r=bzbarsky, a=sayrer 2007-10-19 12:12:07 -07:00
kaie@kuix.de
8e87f98dbd relanding: Bug 399045, PSM should remember valid intermediate CA certificates r=rrelyea, a=sayrer 2007-10-19 12:10:09 -07:00
reed@reedloden.com
fdc5b563f9 Bug 345665 - "nsKeygenHandler calls nsITokenDialogs ::ChooseToken with NULL context" [p=chpe r=kaie sr=dveditz a1.9=sayrer] 2007-10-18 23:10:39 -07:00
kaie@kuix.de
cc10e25877 backing out all my patches from yesterday, 399043 398549 399022 399045 345665 2007-10-16 17:18:55 -07:00
kaie@kuix.de
0eeb2e6c81 Bug 345665, nsKeygenHandler calls nsITokenDialogs ::ChooseToken with NULL context Patch contributed by Christian Persch r=kengert, sr=dveditz, a=sayrer 2007-10-15 17:38:58 -07:00
kaie@kuix.de
6a02ed9c37 Bug 399045, PSM should remember valid intermediate CA certificates r=rrelyea, a=sayrer 2007-10-15 17:38:16 -07:00
kaie@kuix.de
252b29b6b2 Bug 399022, Leak-prone code in nsCertTree r=bzbarsky, a=sayrer 2007-10-15 17:37:03 -07:00
kaie@kuix.de
d586f9c3d1 Bug 399043, Workaround for Add-Certificate-Exception for (mail) ports blocked by Necko r=rrelyea, a=sayrer 2007-10-15 17:33:01 -07:00
benjamin@smedbergs.us
190309e089 Bug 398566 - Set MOZ_FIX_LINK_PATHS unconditionally, r=luser a=sayrer 2007-10-13 14:13:50 -07:00
reed@reedloden.com
a647c41131 Bug 392790 - "In certificate selection dialogs, also show e-mail addresses from the subjectAltName extension" [p=mozbugzilla@velox.ch (Kaspar Brand) r=kaie sr=rrelyea a1.9=sayrer] 2007-10-13 00:46:11 -07:00
sdwilsh@shawnwilsher.com
9d653231ba Bug 369428 - nsExternalAppHandler::SetUpTempFile uses a poor source of randomness, resulting in predictable filenames. r=kaie, sr=rrelyea, a=blocking1.9 2007-10-12 15:48:07 -07:00
sdwilsh@shawnwilsher.com
103189add3 Full backout of Bug 369428 2007-10-12 08:30:45 -07:00
sdwilsh@shawnwilsher.com
eea39bddb7 Bug 369428 - nsExternalAppHandler::SetUpTempFile uses a poor source of randomness, resulting in predictable filenames. r=kaie, sr=rrelyea, a=blocking1.9 2007-10-12 06:00:57 -07:00
kaie@kuix.de
3378a7656a Bug 397296, Firefox builds need to use the current NSS CVS tag r=mconnor, blocking-firefox3=benjamin 2007-10-11 12:03:05 -07:00
bzbarsky@mit.edu
07549c4ecf Don't leak strings from <keygen>. Bug 398665, r=kaie, sr=jst, a=dbaron 2007-10-09 19:10:00 -07:00
kaie@kuix.de
ad2bb22af2 Bug 327181, Improve error reporting for invalid-certificate errors (error page for https, or combined dialog) Code in mozilla/security/manager: r=rrelyea Code elsewhere: r=mconnor, sr=dveditz blocking1.9=mconnor 2007-10-03 04:47:26 -07:00
kaie@kuix.de
61d16d4cd9 Bug 327181, Improve error reporting for invalid-certificate errors (error page for https, or combined dialog) Code in mozilla/security/manager: r=rrelyea Code elsewhere: r=mconnor, sr=dveditz blocking1.9=mconnor 2007-10-03 04:43:54 -07:00
kaie@kuix.de
6613df3bd1 Bug 315871, In Certificate Viewer, allow to export cert or full chain Also covers Bug 161275, Support export of SSL, S/MIME, and CA certs Patch contributed by Kaspar Brand r=kengert, sr=rrelyea, a=dsicore 2007-10-01 09:38:21 -07:00
bent.mozilla@gmail.com
1232ee381c Bug 397319 - "Add JSAutoRequest to other users of GetArgvPtr". r+sr+a=jst. 2007-09-28 11:15:26 -07:00
dbaron@dbaron.org
84930cd3ec Fix leak of mPendingHTTPRequest in nsSSLThread::rememberPendingHTTPRequest by converting it to an nsCOMPtr. b=394528 r=kengert sr=bzbarsky a=bsmedberg 2007-09-17 17:31:37 -07:00
reed@reedloden.com
e761042ec3 Bug 392780 - "nsNSSCertificateDB::FindCertByDBKey() crashes on invalid input" [p=mozbugzilla@velox.ch (Kaspar Brand) r=rrelyea sr=kaie a1.9=bzbarsky] 2007-09-17 13:46:27 -07:00
jag@tty.nl
167cbfff3a Bug 394139: Replace a bunch of NS_DEFINE_CIDs with CONTRACTIDs. r=/sr=/a=bsmedberg 2007-09-05 06:04:54 -07:00
jwalden@mit.edu
423d30ba39 Bug 348748 - Replace a cast that's commented out; I think my script ignored comment contents and thus missed this, but I haven't looked at the source recently enough to be sure. r=bsmedberg on the script, a=no-functionality-change 2007-09-05 00:13:46 -07:00
dtownsend@oxymoronical.com
9842dc1237 Bug 390615: Add scriptable interface to verify digital signatures. r=kaie, a=blocking-1.9 2007-09-03 10:32:39 -07:00
kaie@kuix.de
d9fa93d8b4 bug 386654, Implement notification for EV certs r=rrelyea, sr=bzbarsky, a=bzbarsky 2007-08-23 14:28:15 -07:00
bzbarsky@mit.edu
6da8502521 Make it possible to fastload NSSCertificates. Bug 388128, r=kaie, sr=brendan, a=bzbarsky 2007-08-23 11:59:12 -07:00
kairo@kairo.at
9474ce3bd8 bug 385458 - UI strings using "browser" when meaning "application", r=kaie 2007-08-05 04:53:59 -07:00
kaie@kuix.de
d193b24d27 Bug 376329, Thunderbird fails on certificate path with circular references
r=nelson
2007-07-25 15:57:51 -07:00
kaie@kuix.de
5b82067aa4 Bug 382223, Add support for Camellia to PSM
Patch contributed by okazaki
r=kengert
2007-07-25 15:53:30 -07:00
rrelyea@redhat.com
695f5ec87a Bug 388403 Land NSS 3.12 Alpha r=kai. 2007-07-23 12:02:59 -07:00
kaie@kuix.de
d5fc3b59ef Bug 387011, Crash when importing certificate [@ nsNSSCertificateDB::ImportCertsFromFile]
r=rrelyea
2007-07-23 03:48:51 -07:00
kaie@kuix.de
eda243077c Bug 387613, Crash [@ nsNSSCertificate::GetCert fb3ac2be] on click submit on chrome://pippki/content/editcacert.xul
r=rrelyea
2007-07-23 03:25:23 -07:00
kaie@kuix.de
cdf4a621f2 Bug 380744, Thunderbird reports "unable to decrypt" on truncated decryptable messages
r=relyea, sr=mscott
2007-07-16 23:13:38 -07:00
jwalden@mit.edu
6d7584839a Bug 348748 - Replace all instances of NS_STATIC_CAST and friends with C++ casts (and simultaneously bitrot nearly every patch in existence). r=bsmedberg on the script that did this. Tune in next time for Macro Wars: Episode II: Attack on the LL_* Macros. 2007-07-08 00:08:04 -07:00
kaie@kuix.de
88ab18656e Bug 176501, mozilla apps must manage NSS configuration for PKCS#11 shared libs, including nssckbi.dll
Incremental Patch v4, make sure we indeed look in all possible locations.
r=rrelyea
2007-06-27 06:15:02 -07:00
kaie@kuix.de
461c345b39 Bug 385904, Actually hook up the new NSS error strings
r=rrelyea
2007-06-27 06:12:03 -07:00
kaie@kuix.de
ceeaa1575b Bug 370875, "ASSERTION: nsSecureBrowserUIImpl not thread-safe" * 4 loading any https site
Patch contributed by Neil, r=kengert
2007-06-25 14:45:30 -07:00
kaie@kuix.de
1f070ca133 Bug 383390, follow up check in, adding a unit Test.
Patch contributed by Nils Maier, comments provided by Jeff Walden
r=kengert
2007-06-21 08:22:43 -07:00
rrelyea@redhat.com
1daaf9dc7b Backing previous patch because it broke the universal binary Mac build. 2007-06-19 01:41:28 -07:00
rrelyea@redhat.com
7da4e3c47b bug 217538 Check in NSS 3.12 into FF 3.0
r=kaie
2007-06-19 00:32:12 -07:00
kaie@kuix.de
3db3c7333e Bug 355643, Review PSM's error message overrides - are NSS errors better?Removing overrides, thereby enabling NSS messages.r=nelson 2007-06-12 19:48:41 -07:00
kaie@kuix.de
623f7ec6db Bug 375759, Cert manager showing date strings for "Your Certificates" namesFollow up checkin to improve memory use.r=kengert 2007-06-12 19:46:07 -07:00
kaie@kuix.de
3f24fa47f6 Bug 383390, nsICrypto Hash truncates to 32 byte; renders sha384 and sha512 corruptPatch contributed by Nils Maierr=kengert 2007-06-10 18:42:36 -07:00
kaie@kuix.de
e62734761e Bug 378629, SSL file uploads settle into oscillating pattern with very small packetsr=rrelyea 2007-06-10 16:42:28 -07:00
kaie@kuix.de
42e0a9a00c Bug 375759, Cert manager showing date strings for "Your Certificates" namesPatch contributed by Kaspar Brandr=kengert 2007-06-10 16:24:15 -07:00
kaie@kuix.de
146b7c014e Bug 110161. Code related to the plan to enable OCSP by default.r=rrelyea, toolkit r=mconnor 2007-05-30 16:13:28 -07:00
kaie@kuix.de
5a918bf8aa bug 334185, potential crasher fixr=kengert 2007-05-29 18:20:09 -07:00
kaie@kuix.de
fcf90f31c6 bug 380558, Some event waiting in PSM make the CPU wake from idle with no reasonPatch contributed by Mike Hommeyr=kengert 2007-05-29 18:14:32 -07:00
bzbarsky@mit.edu
76c4fecf5f Make PSM make sure to shut down NSS before trying to start it up with theinitial profile on app startup. Fix leak of one of the user modules that waspreventing a clean shutdown. Bug 379582, r=rrelyea, kaie, sr=biesi. 2007-05-14 14:09:58 -07:00
kaie@kuix.de
6100caf3ca Bug 379190, crashes when loading chrome urlsr=rrelyea 2007-05-09 16:43:01 -07:00
benjamin@smedbergs.us
baab01ada6 Bug 376636 - Building with gcc 4.3 and -pendatic fails due to extra semicolons, patch by Art Haas <ahaas@airmail.net>, rs=me 2007-04-23 07:21:53 -07:00
cbiesinger@web.de
c6ef8b6043 Bug 375878 remove users of Recycle()patch by taras glek r+sr=biesi 2007-03-30 15:44:22 -07:00
dbaron@dbaron.org
d98d9fdec5 Remove unused getKey callback from PLDHashTableOps/JSDHashTableOps. b=374906 r=bsmedberg 2007-03-27 08:33:38 -07:00
hg@mozilla.com
05e5d33a57 Free the (distributed) Lizard! Automatic merge from CVS: Module mozilla: tag HG_REPO_INITIAL_IMPORT at 22 Mar 2007 10:30 PDT, 2007-03-22 10:30:00 -07:00
kaie%kuix.de
72bf637e4f Bug 368126, client abandons SSL connection during bad cert dialogs
Incremental patch v2
r=nelson, sr=rrelyea
2007-03-07 19:54:54 +00:00
kaie%kuix.de
88b4027c75 Bug 317630, PSM's FIPS token label is truncated
r=rrelyea
2007-02-20 16:26:07 +00:00
kaie%kuix.de
a9459f49db Patch v9 - mozilla/security/manager portion
Enabling final portion of patch, enabling new SSL error page.
r=rrelyea
2007-02-18 04:26:02 +00:00
kaie%kuix.de
72cce1e6f4 Bug 107491, improve SSL error messages
Patch v9 - mozilla/security/manager portion
Not yet enabling as browser error page
r=rrelyea
2007-02-17 03:47:59 +00:00
kaie%kuix.de
2ce19dbaa4 Bug 370136, Firefox 2.0.0.1 and later breaks automatic client certificate authentification.
Fixes a regression introduced with the fix for bug 328346.
Thanks a lot to Momtchil Momtchev for identifying the cause and providing the initial patch.
r=kengert/rrelyea
2007-02-16 08:01:40 +00:00
kaie%kuix.de
5ebd315aa8 bug 363455, Enhance PSM's SSL handling on blocking sockets
r=wtchang
2007-02-15 02:46:25 +00:00
kaie%kuix.de
e1ef76bcb1 bug 367878, Mistake in PSM's OCSP pref switching code
r=rrelyea/nelson
Checking in two patches at once.
2007-02-09 19:29:12 +00:00
kaie%kuix.de
67ce3c3059 bug 368126, client abandons SSL connection during bad cert dialogs
bug 365898, SSL handshake timeout is too short
r=rrelyea
2007-02-09 19:12:33 +00:00
kaie%kuix.de
40ce17ceed bug 302803, Changes to enabled SSL versions do not take immediate effect
r=nelson
2007-01-16 06:10:51 +00:00
kaie%kuix.de
4553b718c8 Bug 164707, Provide a way to view/delete orphan certs
Supplemental patch
r=rrelyea
2007-01-06 16:36:19 +00:00
kaie%kuix.de
584a6edf70 Bug 355409, unable to search LDAP server (over SSL) with tbird 2.0 build, but 1.5.0.7 works
r=wtchang
2006-12-11 13:51:25 +00:00
gerv%gerv.net
caae487a24 Bug 236613: change to MPL/LGPL/GPL tri-license. 2006-12-11 09:45:41 +00:00
kaie%kuix.de
5be8e17fe9 Bug 362980, Unable to verify the identity of [www.something.com] as a trusted site
Fixes a regression from yesterday's checkin for bug 176501.
r=rrelyea, r=wtchang
2006-12-07 13:02:28 +00:00
kaie%kuix.de
4540b73845 Bug 345277, When "Certificate Viewer" is shut, the object leaks
r=rrelyea
2006-12-06 17:25:14 +00:00
kaie%kuix.de
6a93344bb3 Bug 360526, Cert not imported - Feedback prompt sometimes does not work
r=rrelyea
2006-12-06 16:31:32 +00:00
kaie%kuix.de
c204990ad5 Bug 360528, Can no longer import trusted email cert
r=rrelyea
2006-12-06 16:20:08 +00:00
kaie%kuix.de
625ec5ca20 Bug 176501, mozilla apps must manage NSS configuration for PKCS#11 shared libs, including nssckbi.dll
r=rrelyea
2006-12-06 15:42:39 +00:00
kaie%kuix.de
e71bbe8d57 Bug 356109, Improve KU_NON_REPUDIATION indication in client auth prompt
r=rrelyea
2006-11-08 18:14:21 +00:00
kaie%kuix.de
dcd873788a Bug 355447, Certificate Viewer shows no details for certs in chain
Patch v2 - make extension display in cert viewer more robust
Contributed by Kaspar Brand
r=kengert
2006-11-02 22:48:32 +00:00
kaie%kuix.de
690955f219 Bug 355447, Certificate Viewer shows no details for certs in chain
Fix template patch
r=kengert
2006-11-02 21:49:22 +00:00
kaie%kuix.de
1de51a708c Bug 328346, Certificates with keyusage nonRepudiation should not be used as SSL client certificates
Checking in incremental patch to fix an obvious mistake.
r=kengert
2006-11-02 18:51:27 +00:00
bzbarsky%mit.edu
0ce72c77cd Make nsIStreamLoader and nsIUnicharStreamLoader be stream listeners. Bug
281153, patch by Son Le <son.le0@gmail.com>, r=biesi, sr=darin
2006-10-24 21:47:40 +00:00
gavin%gavinsharp.com
075590b967 Bug 338022: remove dead code in buildASN1ObjectFromDER, patch by Ryan Jones <sciguyryan+bugzilla@gmail.com>, r=darin+kaie 2006-10-13 15:35:59 +00:00
kaie%kuix.de
328a1f6b55 Bug 328346, Certificates with keyusage nonRepudiation should not be used as SSL client certificates
r=rrelyea
2006-10-10 02:04:40 +00:00
kaie%kuix.de
4773f65967 Bug 344817, PSM: fix UI display problems for X.509 certs with empty DNs
Patch for GetWindowTitle, contributed by Kaspar Brand
r=kengert
2006-10-02 20:16:23 +00:00
kaie%kuix.de
630d4f6a21 Bug 352867, Cert Manager shows incorrect cert names if any twisty is closed
r=rrelyea
2006-10-02 20:11:49 +00:00
kaie%kuix.de
1928a929d5 Bug 352401, Cert Manager: If issuer org is empty, fall back to display common name
r=rrelyea
2006-10-02 20:06:27 +00:00
kaie%kuix.de
62f4c9518f Bug 326159, enhance cert request generation using KEYGEN tag and JS function crypto.generateCRMFRequest
r=rrelyea
Portions of this patch originally appeared in bug 235773 and were contributed by Sheueling Chang / Vipul Gupta / Douglas Stebila
2006-09-29 00:50:46 +00:00
kaie%kuix.de
6d4f2e307b Bug 307319, Certificate details show incorrect public key information
r=rrelyea
Patch contributed by Martin v. Loewis
2006-09-28 23:31:34 +00:00
kaie%kuix.de
e3587d973a Bug 337087, Coverity 406, dead code in mozilla/security/manager/ssl/src/nsSDR.cpp
r=kengert
Patch provided by Jon Smirl
2006-09-27 03:19:46 +00:00
kaie%kuix.de
6877823e96 Bug 344812, string ID typo in CertViewer: fix display of KU_CRL_SIGN key usage bit
r=kengert
Patch provided by Kaspar Brand
2006-09-26 18:47:05 +00:00
kaie%kuix.de
0875c1d09d Bug 353597, Process events while waiting for OCSP result on main thread
r=darin
Thanks a lot to Christian Biesinger for making me aware of this solution.
Thanks a lot to Darin Fisher for rewriting thread manager that provides the new API.
2006-09-26 17:52:56 +00:00
timeless%mozdev.org
2e095628b3 Bug 20232 Replace T::GetIID() (etc.) with NS_GET_IID(T)
r=bsmedberg sr=biesi
2006-09-17 00:25:25 +00:00
timeless%mozdev.org
664b6df306 Bug 20232 Replace T::GetIID() (etc.) with NS_GET_IID(T)
r=bsmedberg sr=biesi
2006-09-17 00:04:39 +00:00
timeless%mozdev.org
827475cb6f Bug 336094 [@ nsNSSSocketInfo::GetSSLStatus]
patch by kaie r=timeless sr=rrelyea
2006-09-16 23:44:02 +00:00
cbiesinger%web.de
74a2a1d30c Bug 351876 Move nsICryptoHash into necko
r=darin
2006-09-15 22:06:31 +00:00
sayrer%gmail.com
9395f31ee3 bug 348669. Remove inappropriate nsCRT::free usage. r=timeless, sr=dbaron 2006-09-08 04:35:17 +00:00
kaie%kuix.de
b78b66f628 bug 350512, Frequent error message: OCSP server error
r=rrelyea
2006-09-01 18:11:50 +00:00
kaie%kuix.de
26887466a9 Backing out patch for bug 326159, as it causes breakage on mac tinderbox 2006-08-31 23:02:55 +00:00
kaie%kuix.de
dce11b028e Bug 326159, enhance cert request generation using KEYGEN tag and JS function crypto.generateCRMFRequest
r=rrelyea
Portions of this patch originally appeared in bug 235773 and were contributed by Sheueling Chang / Vipul Gupta / Douglas Stebila
2006-08-31 21:56:25 +00:00
kaie%kuix.de
dccd3d8db7 Bug 340359, SSL Server stalls on v3 hello using TLS hello extensions
r=darin
2006-08-24 18:14:40 +00:00
kaie%kuix.de
56009fa348 Bug 86988, Sorting in certificate manager should be case insensitive
r=rrelyea
2006-08-24 18:06:43 +00:00
mrbkap%gmail.com
35e1f424c5 Propagate the exception out. bug 349241, r=kaie sr=jst 2006-08-18 22:07:14 +00:00
tony%ponderer.org
88af674fb3 fix bustage 2006-08-12 07:08:36 +00:00
tony%ponderer.org
26ad79b5fb bug 337733: implement an rc4 xpcom interface and key object
patch: nsIKeyObject and nsIKeyObjectFactory and nsIStreamCipher
r=darin,sr=rrelyea
2006-08-12 06:39:47 +00:00
kaie%kuix.de
e7f6dd96e7 Bug 316837, crash in [@ strchr - nsNSSCertificateDB::getCertNames] on cert without nickname
r=rrelyea
2006-08-10 19:26:06 +00:00
kaie%kuix.de
881d9c2167 Bug 342646, Trunk crashes while opening HTTPS links with Ad Muncher running
r=rrelyea
2006-08-07 20:15:45 +00:00
kaie%kuix.de
323c869df4 bug 236933, add on patch to address l10n review comments, renames string ids
r=l10n
2006-07-04 10:48:48 +00:00
kaie%kuix.de
170e16936d Follow up checkin for bug 336944,
address Darin's additional review comments.
2006-07-01 03:33:43 +00:00
kaie%kuix.de
627bde6367 Additional checkin for bug 236933, Patch 5 - strings,
in order to improve the error messages on weak crypto sites.
ui-r=beltzner, r=rrelyea
2006-07-01 03:18:34 +00:00
kaie%kuix.de
d1d616ab33 Bug 343230, When retrying on TLS intolerance sites, use SSL v2 compatible hellos
r=rrelyea
2006-07-01 03:11:21 +00:00
kaie%kuix.de
e6dde96640 Bug 324474, Revoked S/MIME certificate difficult to detect in received messages
r=rrelyea
2006-07-01 02:46:44 +00:00
kaie%kuix.de
ca09c146e6 Bug 335859, "<site> has received an incorrect or unexpected message. Error Code: -12229" when visiting site with SSL2
disabled
r=nelson
2006-06-30 21:35:28 +00:00
kaie%kuix.de
cd68486f24 Bug 336944, 100% CPU and delays with https/ssl activity
r=rrelyea, sr=darin
2006-06-30 21:26:31 +00:00
kaie%kuix.de
e88e2b934e Bug 331977, No error dialog is presented if an SSL rehandshake fails
r=rrelyea
2006-06-30 21:22:22 +00:00
kaie%kuix.de
11aa2b0a5d Bug 334293, nextUpdate used uninitialized in nsCRLInfo::nsCRLInfo if crl->nextUpdate.len == 0
r=rrelyea
2006-06-30 03:04:10 +00:00
kaie%kuix.de
a967c15213 Bug 337345, Leak in nsCrypto::GenerateCRMFRequest
r=rrelyea
2006-06-30 02:59:19 +00:00
kaie%kuix.de
1b1f520e94 Bug 310446, Add a user feedback message when certs for import are being ignored
also fixes
Bug 176507, Certificates added without warning or confirmation
r=rrelyea, string-review=beltzner
2006-06-26 17:13:13 +00:00
timeless%mozdev.org
a64f704309 Bug 309877 PSM/NSS init (thus SSL/https) fails when no profile exists
original patch by benb r=rrelyea moa=kaie
2006-06-25 07:12:44 +00:00
mrbkap%gmail.com
7b1e11248b Keep a strong reference to the context that we're operating on. This involves
giving the sandbox context an nsISupports private data that controls its
lifetime. bug 337462, r+sr=jst
2006-06-24 04:33:24 +00:00
kaie%kuix.de
2e3ac1bfad Bug 337797, Can't send signed email as the first crypto operation in FIPS mode
r=rrelyea
2006-06-22 18:54:15 +00:00
kaie%kuix.de
d473bb318e Land missing portion of bug 235773, Conform to NSS upstream build options, r=wtchang 2006-06-22 18:47:44 +00:00
mhammond%skippinet.com.au
0f241835df Land DOM_AGNOSTIC3_BRANCH, bug 255942. r=a few people, sr=brendan. 2006-06-13 03:07:47 +00:00
Jan.Varga%gmail.com
e5158d88ef Fix for bug 296040. Cell-based selection in trees
r=Neil Deakin, sr=Neil Rashbrook, sponsored by BEToptions
2006-06-06 20:05:13 +00:00
timeless%mozdev.org
a768026fc9 Bug 337917 Make consumers stop using cids from other modules
r=smontagu sr=darin
2006-06-03 23:35:59 +00:00
kaie%kuix.de
7d10a011c3 bug 338421, Can no longer create SSL session to Cisco VPN concentrator by host name
Patch contributed by Bill Gianopoulos
r=kengert/nelson
2006-05-20 02:36:48 +00:00
kaie%kuix.de
99c1cc7b57 bug 235773, Patch v13
This check in will make PSM aware of ECC cipher suites. Nightly builds will not yet contain ECC, because NSS is still
being compiled with ECC disabled.
r=rrelyea/darin
2006-05-16 00:33:44 +00:00
timeless%mozdev.org
b8d95581ed Bug 336479 oomish crash [@ cryptojs_GetScriptPrincipal] because of a missing *
r=kaie sr=bz
2006-05-11 13:20:37 +00:00
timeless%mozdev.org
e28bd85b3d Bug 333689 [@ nsCertTree::ToggleOpenState]
patch by gijskruitbosch+bugs@gmail.com r=kaie sr=neil
2006-05-11 13:18:15 +00:00
darin%meer.net
0318b8c707 landing patch for bug 326273 "Implement nsIThreadManager" (Mac portions by Mark Mentovai) with reviews from bienvenu, bsmedberg, bzbarsky, josh, roc, and ssieb 2006-05-10 17:30:15 +00:00
timeless%mozdev.org
46871128eb Bug 331023 Cleanup of IDL files; fixing type inconsistencies
removing stillborn interface nsICertSelect
r=kaie
2006-05-07 01:36:31 +00:00
timeless%mozdev.org
d005042d24 Bug 331023 Cleanup of IDL files; fixing type inconsistencies
removing stillborn interface
r=kaie
2006-05-07 01:34:59 +00:00
timeless%mozdev.org
09c5d65a0b Bug 334193 nsContinueDespiteCertError's default case should set rv
r=kaie sr=bz
2006-05-06 22:33:44 +00:00
dveditz%cruzio.com
27c2177d28 bug 283565 fix leak, return more specific error on OOM. patch by timeless, r=kengert, sr=dveditz, a=dveditz 2006-05-04 17:59:36 +00:00
gijskruitbosch%gmail.com
1419d819b2 Bug 153232 - Missing break; for BAD_SIGNATURE case
r+sr = Kai Engert
2006-04-25 14:33:15 +00:00
kaie%kuix.de
d68044ddc1 Bug 333691, [@ nsSSLThread::requestPoll - nsSSLIOLayerPoll]
r=rrelyea
2006-04-20 16:21:57 +00:00
kaie%kuix.de
9607d14ac4 Bug 333385, [@ nsKeygenThread::UserCanceled]
r=rrelyea
2006-04-20 16:21:26 +00:00
kaie%kuix.de
5161526b15 Bug 333404, freeString is unused DEADCODE in nsCrypto::ImportUserCertificates
r=rrelyea
2006-04-20 16:21:00 +00:00
kaie%kuix.de
15c4bee847 Bug 333767, nsNSSCertificateDB::AddCertFromBase64 mishandles trust settings
r=darin/kengert
2006-04-20 16:20:32 +00:00
gijskruitbosch%gmail.com
6c36adeee3 Bug 333692 - Possible crash (Coverity) [@ PK11_DestroyContext - md5sum]
r+sr=darin
2006-04-12 22:33:52 +00:00
benjamin%smedbergs.us
70a0f2207b Freeze nsIArray (requires separating nsIMutableArray into another .idl file); also removes NS_NewArray and moves do_QueryElementAt into the glue, r=darin 2006-04-12 15:43:32 +00:00
cbiesinger%web.de
ea26ee9065 move an unfrozen interface out of SDK_XPIDLSRC (was added there in bug 111384) 2006-04-06 14:02:29 +00:00
dbaron%dbaron.org
04b8c33eda Remove uses of MOZ_DECL_CTOR_COUNTER, which is always defined to nothing. b=332745 rs=roc,bzbarsky 2006-04-05 00:00:44 +00:00
kaie%kuix.de
f837429d3d Follow-up checkin to bug 111384, fixes the tinderbox tests failure.
If the thread runner C function calls the pure virtual Run too early,
before the constructor finished, it will crash.
This patch delays thread creation and virtual function call to a
separate startThread call.
Thanks a lot to Jag for his help in finding the problem!
r=jag
2006-04-04 13:18:48 +00:00
kaie%kuix.de
9b7392ffd9 bug 111384, Support OCSP requests through a proxy
combined r= by darin / rrelyea
second checkin attempt
2006-04-04 13:14:40 +00:00
kaie%kuix.de
fb242b85a5 backing out my checkin, because we can't reproduce the tinderbox test
failure
2006-04-04 09:48:08 +00:00
kaie%kuix.de
b5aaffdfeb bug 111384, Support OCSP requests through a proxy
combined r= by darin / rrelyea
2006-04-04 06:41:37 +00:00
dbaron%dbaron.org
71d95480ca Check argc. b=330900 r=kengert sr=jst 2006-03-24 06:51:24 +00:00
dbaron%dbaron.org
8451367511 Fix indexing botch. Patch from Mikolaj J. Habryn <dichro-mozilla@rcpt.to>. r=kengert sr=dbaron b=330897 2006-03-22 07:40:40 +00:00
kaie%kuix.de
40486c9fe9 bug 284450, Only use SSL V2 compatible hello, if SSL V2 is enabled
r=jgmyers, r=nelson
2006-03-21 18:43:09 +00:00
kaie%kuix.de
aa712694ba fix bug 328771
r=rrelyea sr=dveditz
2006-03-04 12:22:22 +00:00
kaie%kuix.de
7962d03260 bug 328302, Cert Viewer: Prefix "raw bytes" display with size information
r=rrelyea
2006-02-28 18:30:01 +00:00
kaie%kuix.de
01c86dfa09 bug 321598, Double memory free in nsIX509::getRawDER
r=rrelyea
2006-02-22 20:36:53 +00:00
kaie%kuix.de
a0b2d16750 bug=325366, Certificates: Large MS CA version causes decoding failure
Patch contributed by Martin v. Loewis
r=kengert
2006-02-20 13:20:47 +00:00
dveditz%cruzio.com
bbb5617f66 bug 327126 prevent missing JSContext during generateCRMFRequest() r=mrbkap, r=kengert, sr=dbaron 2006-02-16 05:38:52 +00:00
cbiesinger%web.de
c2d981f764 bug 183156 remove *UCS2* functions, replacing them with *UTF16* ones
r+sr=darin
2006-02-03 14:18:39 +00:00
kaie%kuix.de
c5d0e51fc7 bug 323903, further improvements on displaying certificate extensions.
Patch contributed by Kaspar Brand, supplementing the recent checkin for bug 259031.
r=Martin v. Loewis / kengert
2006-01-30 23:21:00 +00:00
gavin%gavinsharp.com
8460174f41 Bug 323010: nsSecretDecoderRing::SetWindow should be NS_IMETHODIMP, not nsresult, patch by Jeff Walden <jwalden@mit.edu>, r+sr=dveditz 2006-01-26 01:06:42 +00:00
timeless%mozdev.org
8397d43a6a Bug 106386 Correct misspellings in source code
patch by philippuryear@gmail.com r=timeless rs=brendan
2006-01-12 07:57:31 +00:00
kaie%kuix.de
96d896ee39 Use a new IID for changed interface nsIX509CertDB2, supplemental checkin for bug 316710
r=rrelyea
2006-01-12 00:26:19 +00:00
timeless%mozdev.org
916b41ef3d Bug 322429 nsICertPicker is misleading
r=kaie sr=bz
2006-01-11 08:29:49 +00:00
kaie%kuix.de
23733e48f0 bug 101996, temp file with guessable name used during p12 import.
r=rrelyea
2006-01-10 02:51:24 +00:00
kaie%kuix.de
76c2868c0e bug 137506, Only internal token's keys can be exported
Patch by Bob Relyea, r=kengert
2006-01-10 02:29:25 +00:00
kaie%kuix.de
23de42117e bug 149834, Enhance PSM speed by using new NSS API CERT_VerifyCertificateNow
Patch by John G. Myers, r=kengert
2006-01-10 02:14:04 +00:00
kaie%kuix.de
b3b97237fb bug 316710, Land some generic crypto backend code, mostly cleanup, some small enhancements
Patch by Bob Relyea, r=kengert
2006-01-10 02:07:47 +00:00
kaie%kuix.de
50e1f3ea38 bug 259031, Add support for displaying certificate extensions
Patch contributed by Martin v. Loewis.
r=kengert/rrelyea/wtchang sr=shaver/rrelyea
2005-12-25 21:09:45 +00:00
kaie%kuix.de
f7632288b8 trying to fix SUN bustage 2005-12-20 12:25:21 +00:00
kaie%kuix.de
55526430f9 b=255408 Need to be able to build mozilla --with-system-nss
r=wtc/bsmedberg
Note: patches for bugs 288647 and 317620 might be required before enabling this build feature works.
2005-12-20 09:47:11 +00:00
kaie%kuix.de
3dd35f343e Backing out patch for bug 259031,
because of build failures on Windows.
2005-12-02 23:45:53 +00:00
kaie%kuix.de
e1db14b3c4 Trying to fix bustage from checkin for bug 259031. 2005-12-02 23:38:08 +00:00
kaie%kuix.de
f88b21c047 Bug 220815, Non localisable strings in nsCertPicker.cpp and nsNSSIOLayer.cpp
r=jgmyers, sr=shaver
2005-12-02 23:08:44 +00:00
kaie%kuix.de
abe3f8e6c5 Bug 259031, Add support for displaying certificate extensions
Patch provided by Martin v. Loewis
r=rrelyea r=kengert sr=shaver
2005-12-02 22:29:14 +00:00
timeless%mozdev.org
053abb8229 Bug 299099 remove useless references to nsVoidArray
r=kaie sr=bz
2005-12-01 04:23:37 +00:00
dbaron%dbaron.org
3c95294952 Make PL_InitEvent callers stop doing potentially dangerous casting of function pointers. b=305278 r=dougt sr=darin 2005-11-14 20:09:51 +00:00
bsmedberg%covad.net
78f6d0683d Bug 313309 part 2 - change the NS_DEFINE_STATIC_IID_ACCESSOR macro to NS_DECLARE, and make a NS_DEFINE_ macro that's outside the class declaration, r=shaver 2005-11-11 14:36:26 +00:00
kaie%kuix.de
01e04345d6 bug 265991, Can't import a pfx file encrypted with an empty password
r=wtchang, sr=dveditz
2005-11-11 13:28:56 +00:00
kaie%kuix.de
df2f98120c bug 200119, crash when I shutdown (StopCRLUpdateTimer) [@ nsHashtable::Reset ]
r=darin, sr=bienvenu
2005-11-08 17:49:52 +00:00
kaie%kuix.de
f242eb6db4 fix bug 252436, non-ascii characters not recognized by master password dialog
r=dbaron, sr=shaver
2005-11-03 11:25:53 +00:00
cvshook%sicking.cc
64a0fbd45f Bug 311827: Make GetAttr return a bool rather then an nsresult.
r/sr=bz
2005-10-28 11:25:24 +00:00
darin%meer.net
a6f6369c29 fixes bug 304286 "Certificate failures during automatic check for updates should not give user choice to connect anyway" r=biesi sr=dveditz 2005-10-15 02:46:06 +00:00
wtchang%redhat.com
3a398b46ec Bugzilla bug 298045: when importing a package of CA certs, display and ask
the user to trust the root most CA (instead of the leaf most CA) in the
package.  Also make sure that the cert is indeed a CA cert.  r=kaie,relyea.
sr=sfraser.
2005-09-26 22:43:22 +00:00
cst%andrew.cmu.edu
7ce62d0cd1 Bug 284636 Fix typo in Website Certified by an Unknown Authority alert
Patch by stephend and Kurt <supernova_00@yahoo.com> r=kaie sr=bzbarsky
2005-09-19 00:05:02 +00:00
smfr%smfr.org
8bda56063a Fix bug 307293: make sure we initialize the mType and mTag members of nsNSSASN1Object. r=wtchang, sr=rrelyea. 2005-09-16 18:57:55 +00:00
cbiesinger%web.de
853c2b4645 bug 292368 remove obsolete file; replaced by nsICryptoHash 2005-09-12 17:51:57 +00:00
smfr%smfr.org
c6ba13f2ab Fix bug 306795: nsNSSCertificateDB::IsCertTrusted() fails to check the return value from CERT_GetCertTrust(), so can return random trust bits. r=dougt, sr=rrelyea 2005-09-04 19:05:01 +00:00
bsmedberg%covad.net
a63c75a8a1 Bug 306615 - Fold PSM into libxul r=darin 2005-09-01 12:43:58 +00:00
dougt%meer.net
7c0ee6b9d3 Bug 302284. add xpi hash support to InstallTrigger.install(). r=dveditz, sr=shaver, a=asa 2005-08-26 06:46:21 +00:00
bienvenu%nventure.com
690785e15a add optional support for mit kerberos for windows, patches by cneberg@gmail.com, r=darin, sr=bienvenu 280792 2005-08-19 14:25:22 +00:00
relyea%netscape.com
80d892f39d Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit]
sr=brendan r=wtc a=dbaron

The issue is the use of the PL_DHash* functions. It's possible that a given call
to PL_DHashOperate which adds a new entry may cause the hash table to expand,
and all the existing entries to be reallocated. PL_DHash does this by allocating
new memory, then copying the entries.

getCacheEntry() returns one of these hash entries. CmpBy() makes two consecutive
calls to getCacheEntry, then uses the returned entries for it's comparisons. If
the second entry call causes a new entry to be added to the table, and causes
the hash table to expand, the pointer to the first entry we retrieved will point
to freed memory.

The fix is to make the usable entry a pointer in the hashtable entry, and return
that pointer. When the hashtable rebuilds it's entries, the pointer will be
copied to the new entry and not be disturbed.
2005-08-15 21:23:51 +00:00
dougt%meer.net
a3c8d78e87 Minimo only. Backing out 300373. 2005-08-03 05:24:18 +00:00
timeless%mozdev.org
d4d47484e2 Bug 283569 OOM crash [@ nsNSS_SSLGetClientAuthData]
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-08-02 14:22:50 +00:00
mconnor%steelgryphon.com
e246c70e9d bug 194141 - missing calls to SSL_ClearSessionCache, r=nelson.bolyard, sr=dveditz, a=bsmedberg 2005-07-28 18:15:20 +00:00
bzbarsky%mit.edu
10d1c576d9 Expose the subject name for the cert and an nsISupports pointer to the cert on
nsIPrincipal that represents a certificate principal.  Change preference
storage to ensure matches in not only the fingerprint but also the subjectName
before applying privileges from preferences to a certificate principal.  Remove
possibility for creating certificate principals without a useful identifying
name and make sure that names don't get munged by being forced to ASCII.  Bug
240661, r=caillon, sr=dveditz, a=bsmedberg
2005-07-22 19:05:42 +00:00
pkw%us.ibm.com
53beab23e9 Bug 296449 - Error in string handling within <keygen>
r=kaie.bugs@gmail.com, sr=dveditz@cruzio.com, a=benjamin@smedbergs.us
2005-07-20 19:31:22 +00:00
timeless%mozdev.org
f4f945e14e Bug 283563 OOM crash [@ GetSlotWithMechanism][@ nsKeygenFormProcessor::GetPublicKey]
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-07-13 19:31:14 +00:00
jshin%mailaps.org
fcf7e6f914 bug 224820 : support UTF-16/32 (non-byte oriented char. encoding) in the form submission : r=biesi, sr=bz, a=asa 2005-07-13 16:55:59 +00:00
bzbarsky%mit.edu
1ca43db890 Fix leak due to non-use of already_AddRefed. Bug 296364, r=kaie, sr=bryner 2005-07-13 16:53:06 +00:00
dougt%meer.net
3baac22e47 Backing out my changes in the last few hours because Chase is tagging the tree. (the tree was open, but he was tagging) 2005-07-12 22:01:25 +00:00
dougt%meer.net
094201f074 Fixing build bustage. Must use FORCE_USE_PIC when FORCE_SHARED_LIB. MINIMO only. 2005-07-12 21:39:45 +00:00
dougt%meer.net
5212116105 Fixing 300373. Build/Minimo change. To allow WinCE startup, some of our components must be loaded dynamically regardless if we are building static or not. r=bsmedberg, a=asa 2005-07-11 16:38:28 +00:00
timeless%mozdev.org
e1e8f80bf3 Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit]
patch by kaie r=timeless sr=darin a=shaver
2005-06-16 17:27:17 +00:00
timeless%mozdev.org
4f9c680880 Bug 284366 PSM needs to handle Smart Cards seamlessly
fix casting on 64bit platforms
patch by ajschult@verizon.net r=rrelyea sr=jst a=asa
2005-06-16 02:00:32 +00:00
relyea%netscape.com
e5049cdcc1 Fix the license. Still bug 284366 PSM needs to handle Smart Cards seamlessly
r+sr+a=shaver
(caught by Christian persch)
2005-06-02 16:40:29 +00:00