Cykesiopka
a150859d8e
Bug 1248874 - Replace Scoped.h templates used only by PSM in ScopedNSSTypes.h with UniquePtr equivalents. r=dkeeler
...
MozReview-Commit-ID: 5OClBV522lv
--HG--
extra : transplant_source : G%A3%3B%A0%AC%0D%25%F2%C5K%DC8%0F%90%1B%7Bf%E0%93%F7
2016-02-18 06:01:39 -08:00
Cykesiopka
f64795a71b
Bug 1246365
- Enable eslint "comma-spacing" and "semi" rules for PSM. r=keeler
...
MozReview-Commit-ID: 7FVcD7O9mpG
--HG--
extra : transplant_source : R%C3B%B73%0A%9E%FA%83_%CF%FE%86O%B4%FF%C4f%EB%9C
2016-02-18 21:16:50 -08:00
Kai Engert
5553a6adbf
Bug 1245053, landing NSS_3_23_BETA5, r=mt
2016-02-23 00:50:19 +01:00
Ehsan Akhgari
f9727da7b1
Bug 1188045 - Part 1: Move the definition of sandboxTarget::Instance() out-of-line; r=bobowen,glandium
...
This is required so that delay-loading xul.dll works with clang-cl.
2016-02-22 09:55:09 -05:00
David Keeler
62bd6f7a62
bug 1248099 - add extended key usage tests for mozilla::pkix r=Cykesiopka,jcj
...
MozReview-Commit-ID: 9rXn5Q1wsnx
--HG--
extra : rebase_source : f598007d568c7394898294d66b1845a173f97dc2
2016-02-12 17:24:54 -08:00
David Keeler
51a37ae665
bug 1241650 - remove nsIX509CertDB.findCertNicknames r=mgoodwin
...
MozReview-Commit-ID: JtU7H5qGvge
--HG--
extra : rebase_source : fae856a160e5cc987702794f805030b2d1cc3533
2016-01-21 15:14:31 -08:00
Ben Kelly
156ed9a0ed
Bug 1247580
P2 Add gtest to ensure we can continue to deserialize old security info strings. r=bz
2016-02-17 07:18:00 -08:00
Ben Kelly
7382b7bc31
Bug 1247580
P1 Allow old nsIX509Cert serialized objects to be read off disk. r=bz
2016-02-17 07:18:00 -08:00
Cykesiopka
e5ab49e43e
Bug 1247847 - Use smart pointers in nsNSSCertHelper.cpp to manage NSS resources. r=keeler
...
This lets us remove things like gotos in the code, and makes resource ownership slightly clearer.
MozReview-Commit-ID: Kucn7exhLd7
--HG--
extra : transplant_source : %27%FF%D2tjLI%9B5ep%21%B7%FA%92%08%14%07%12%C6
2016-02-16 16:25:09 -08:00
Cykesiopka
eb91d4f287
Bug 1244245 - Enable eslint "curly" rule for PSM. r=keeler
...
Also includes minor cleanup.
MozReview-Commit-ID: CHgbTIa3s2O
--HG--
extra : transplant_source : %FD%ACi%DE%3E%28%0D%D2_%5Dc%1Dk%E6%E8%EDw%D5%FA%93
2016-02-16 17:27:49 -08:00
ISHIKAWA, Chiaki
be2b50a7f8
Bug 1248252 - Improper outdated octal constant syntax in M-C tree. Use '0o' prefix. r=dao
...
Be warned. Do not attemp to change the .js "test" source code in ./js
They are meant to check
- the outdated 0666 octal constant is still parsed correctly,
- the outdated 0666 octal constant raises syntax error flag
in strict mode, etc.
So leave them alone.
2016-02-15 08:57:00 +01:00
Sebastian Hengst
be7b0e4539
Backed out 2 changesets (bug 1247250) for bustage. r=bustage on a CLOSED TREE
...
Backed out changeset 8aded3a039f5 (bug 1247250)
Backed out changeset 374e6d0abf0e (bug 1247250)
2016-02-12 00:42:48 +01:00
Masatoshi Kimura
8e3a5c71be
Bug 1247250 - followup: fix comments to reflect the review comment. r=keeler DONTBUILD
2016-02-12 07:43:21 +09:00
Masatoshi Kimura
e40094eb48
Bug 1247250 - Enable TLS 1.3 draft 11 anti-downgrade on non-secure fallback. r=keeler
2016-02-12 07:36:37 +09:00
Cykesiopka
103a609a33
Bug 1243193 - Use Assert.throws() more in PSM tests. r=keeler
2016-02-10 21:40:00 +01:00
Aidin Gharibnavaz
686438c658
Bug 1164581 - Adding an overload for NS_ProxyRelease that accepts already_AddRefed, and removing all the others. r=bobbyholley
2016-02-10 08:23:00 +01:00
David Keeler
28c09863cb
bug 1241564 - remove EV treatment for TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı SHA-1 root certificate r=Cykesiopka
...
MozReview-Commit-ID: 9ktEj2kgfYo
2016-02-09 13:30:22 -08:00
David Keeler
5ceb0c8a89
bug 1246765 - remove unnecessary resource://app/ registration from getHSTSPreloadList.js r=Cykesiopka DONTBUILD NPOTB
2016-02-08 12:56:34 -08:00
Cykesiopka
19922e4976
Bug 503515 - Try and ensure exported certificates include an extension by default. r=keeler
...
--HG--
extra : rebase_source : b3d595ae962d70afc208b34afe616b6ef88133a8
2016-02-09 00:17:00 +01:00
Bob Owen
ed46787107
Bug 1219369: In Windows debug builds allow write access to TEMP for logging purposes. r=tabraldes
2016-02-09 08:31:18 +00:00
Kai Engert
880b7f8386
Bug 1245053, land NSS_3_23_BETA4, r=me, includes a makefile change to adjust for NSS changes, patch by EKR, r=kaie
2016-02-08 16:16:25 +01:00
Carsten "Tomcat" Book
5b358688b7
Backed out changeset c18e29c1b369 (bug 1164581) for cpp unit tests test failures
...
--HG--
extra : rebase_source : fb6fd434c8e3f4b5fa53ea645a54c07cab207894
2016-02-08 11:17:38 +01:00
Aidin Gharibnavaz
69cf7e035f
Bug 1164581 - Adding an overload for NS_ProxyRelease that accepts already_AddRefed, and removing all the others. r=bobbyholley
...
--HG--
extra : rebase_source : 3c6bba6613a14e48239d302bdd0f7fe2e322265d
2016-02-07 10:56:00 +01:00
Cykesiopka
7e014d6be0
Bug 1243182 - Enable eslint "space-infix-ops" rule for PSM. r=keeler
...
Also includes minor cleanups.
2016-02-06 21:05:02 -08:00
Cykesiopka
6a5e8155c8
Bug 1064402 - Part 2: Remove nsIX509CertDB.importServerCertificate() and nsIX509Cert::SERVER_CERT support in importCertsFromFile(). r=keeler
2016-02-06 20:41:11 -08:00
Cykesiopka
370bac0f07
Bug 1064402 - Part 1: Remove Import button in Servers tab of the Certificate Manager. r=keeler
...
It no longer serves any useful purpose:
1. It is no longer possible to add explicit trust for server certs post Bug 825583.
1A. The Add Exception feature is better suited for this anyways.
2. It isn't possible to set explicit distrust in the Cert Manager, only remove explicit trust.
3. Importing may also inadvertently cause verification failures (see Bug 1202636
).
2016-02-06 20:40:57 -08:00
Cykesiopka
1e1cca77d4
Bug 1243180 - Enable eslint "no-trailing-spaces" rule for PSM. r=keeler
...
Also does some minor cleanup.
2016-02-03 01:51:00 +01:00
simplyblue
addf646a4c
Bug 1241646 - remove unused token arguments from nsIX509CertDB r=keeler
2016-01-30 13:50:58 +05:30
Kai Engert
d3fd404b9b
Bug 1244062, NSPR_4_12_BETA2, and Bug 1245053, NSS_3_23_BETA2
2016-02-02 11:50:47 +01:00
Bob Owen
73686ad0d7
Bug 1173371
Part 2: Change Chromium sandbox to allow rules for files on network drives to be added. a=aklotz
2016-02-01 08:59:00 +00:00
Bob Owen
0b2edad801
Bug 1173371
Part 1: Take Chromium commit 0e49d029d5a1a25d971880b9e44d67ac70b31a80 for sandbox code. r=aklotz
...
From Chromium commit comment:
Sandbox: Add support for file system policies that use implied device paths.
A policy rule of the form \HarddiskVolume0\Foo\bar allows sandboxed code
to use \\.\HarddiskVolume0\Foo\bar directly.
2016-02-01 08:59:00 +00:00
Mark Goodwin
282a183d55
Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler
...
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
2016-01-30 08:07:38 +00:00
Kyle Huey
91efc5a86c
Bug 1241764: Replace nsPIDOMWindow with nsPIDOMWindowInner/Outer. r=mrbkap,smaug
2016-01-30 09:05:36 -08:00
Wes Kocher
543c164cdc
Backed out 2 changesets (bug 1241821) for android build bustage CLOSED TREE
...
Backed out changeset ae7246d654c8 (bug 1241821)
Backed out changeset bdecb787f1a2 (bug 1241821)
--HG--
extra : commitid : HdwYW6HntXi
2016-01-29 14:57:27 -08:00
Wes Kocher
1f2034ed37
Followup to Bug 1241821 - ESLint fix
...
--HG--
extra : commitid : 5Pf2Sf7gxj9
2016-01-29 14:36:13 -08:00
Mark Goodwin
e7ee60296d
Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler
...
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
2016-01-29 13:45:17 +00:00
Wes Kocher
a40af4aa59
Backed out changeset 7ec471c99263 (bug 1219482) to hopefully fix the intermittent hazard failures CLOSED TREE
...
--HG--
extra : commitid : B8zmd9Xadpz
2016-01-29 10:15:34 -08:00
Kai Engert
2f1d53a477
Bug 1228410
, land NSS_3_22_RTM, r=nss-confcall
2016-01-29 12:16:10 +01:00
Bill McCloskey
c663839ade
Bug 1240871 - Don't allow implicit "async" in IPDL (r=mccr8,billm)
2016-01-28 20:56:37 -08:00
sajitk
1b0525a9d3
Bug 1219482 - Replace PRLogModuleInfo with LazyLogModule in security subdirectory. r=froydnj
...
--HG--
extra : rebase_source : 7aed4d8669dccd1270a88a0cacfa254e3b9f5950
2016-01-28 10:36:00 -05:00
David Keeler
1890b549c4
bug 1242032 - change some pipnss logging output from Debug to Verbose r=Cykesiopka
...
Logging output that happens with every TLS socket poll, read, or write
should really be Verbose, not Debug.
--HG--
extra : amend_source : 455a72faa041e51b5356410d7c216aa1fdadc6c6
2016-01-27 13:04:33 -08:00
David Keeler
32b5d6c545
bug 1241317 - gather telemetry on prevalence of FIPS r=jcj r=vladan
2016-01-21 11:22:12 -08:00
Carsten "Tomcat" Book
92b2943e68
Merge mozilla-central to mozilla-inbound
2016-01-27 12:10:56 +01:00
Carsten "Tomcat" Book
b9e929e1a7
merge mozilla-inbound to mozilla-central a=merge
2016-01-27 11:59:49 +01:00
Cykesiopka
7ccd56ad60
Bug 1242254 - Enable initial set of eslint rules for PSM. r=dkeeler
...
These rules are copied from toolkit/.eslintrc (with non-passing rules excluded and previously commented out and passing rules included).
--HG--
extra : rebase_source : 0afa42350cc961cbb3cf6d985b3978f4dc5d3dcb
2016-01-24 02:35:36 -08:00
Cykesiopka
c9747f9ecf
Bug 1232582 - Sort PSM xpcshell.ini and fix --tag psm to actually run all tests. r=keeler
2016-01-26 20:23:00 +01:00
Gijs Kruitbosch
90dcd6df86
Bug 1241614 - don't overflow:auto the container, use em to size the dialog to avoid hidpi visibility issues, r=dolske,ttaubert
...
--HG--
extra : commitid : DaBFhFU1YtS
extra : rebase_source : 28c1f92fcabe8a46fe40e805a763f7a508b592c0
2016-01-22 11:18:54 +00:00
Kai Engert
c12302354f
Bug 1228410
, land NSS 3.22 Beta 2, r=nss-confcall
...
--HG--
rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed
2016-01-25 16:14:18 +01:00
Cykesiopka
adf7436ccc
Bug 1235089 - Split out OCSP Must Staple tests from test_ocsp_stapling.js to avoid intermittent time outs. r=keeler
...
test_ocsp_stapling.js can take ~290s to run on e.g. b2g-emu-x86-kk, which is very close to the default 300s limit.
Splitting out some tests should reduce the intermittent time outs.
--HG--
rename : security/manager/ssl/tests/unit/test_ocsp_stapling.js => security/manager/ssl/tests/unit/test_ocsp_must_staple.js
2016-01-24 02:24:00 -05:00
Phil Ringnalda
a747e7e178
Merge m-i to m-c, a=merge
2016-01-23 17:42:50 -08:00