ffxbld
a92f2bc083
No bug, Automated HPKP preload list update from host bld-linux64-spot-115 - a=hpkp-update
2014-10-25 03:19:28 -07:00
ffxbld
3d5dc9dcf8
No bug, Automated HSTS preload list update from host bld-linux64-spot-115 - a=hsts-update
2014-10-25 03:19:26 -07:00
Monica Chew
e8c341b1fd
Bug 1083539: Fix dropped return value check (r=keeler)
2014-10-23 17:07:45 -07:00
Tom Schuster
0130a12af3
Bug 886752 - Show TLS/SSL version in page info dialog. r=dao
2014-10-24 13:53:35 +02:00
Tom Schuster
cba793218d
Bug 886752 - Add TLS version to SSLStatus and additional cleanup. r=keeler
2014-10-24 13:53:34 +02:00
Jed Davis
5ec3c350dd
Bug 1081242 - Make ASAN's error reporting work while sandboxed on Linux. r=kang
2014-10-21 11:18:00 +02:00
Brian Smith
cfc481b264
Bug 1085497
: Add Input::size_type, r=mmc
...
--HG--
extra : rebase_source : 098eae9234be99e683c0d44b35e1ec7058a086dd
2014-10-16 18:23:27 -07:00
Brian Smith
e93675a04e
Bug 1063281, Part 9: Switch Gecko from NSS to CheckCertHostname, r=keeler
...
--HG--
extra : rebase_source : 340eb682ba1f9dbd51652438433e7d0196494e1f
2014-09-21 17:43:29 -07:00
Brian Smith
6926e8bc53
Bug 1063281, Part 8: Rewrite PresentedDNSIDMatchesReferenceDNSID, r=keeler
...
--HG--
extra : rebase_source : a74e8d89a3ddfe5f6af70f32d31f1dc06600d90a
2014-10-15 19:21:35 -07:00
Brian Smith
d7d68e721d
Bug 1063281, Part 7: Implement IsValidPresentedDNSID, r=keeler
...
--HG--
extra : rebase_source : 32d85980d8d486bb806e169a8241256ad57fa9d1
2014-10-16 15:59:34 -07:00
Brian Smith
8d32c13ab3
Bug 1083539: Factor out common SEQUENCE unwrapping logic into reusable functions, r=mmc
...
--HG--
extra : rebase_source : 93d669d3cbe178339fe59c1d9345c773b4e238d4
2014-10-14 02:07:08 -07:00
Brian Smith
bda4ef165a
Bug 1063281, Part 6: Implement CheckCertHostname, r=keeler
...
--HG--
extra : rebase_source : c28fe67d319f64b2efa326fd8649ef529c487c05
2014-10-15 16:10:32 -07:00
Brian Smith
72d294039c
Bug 1063281, Part 5: Implement DNS ID matching, r=keeler
...
--HG--
extra : rebase_source : 5221245ce8da065d64a7ff17bdfde0e617562447
2014-09-30 19:40:15 -07:00
Brian Smith
149817ebfc
Bug 1063281, Part 4: Implement ParseIPv6Address, r=keeler
...
--HG--
extra : rebase_source : 9a75a81a840591aaf73acd5be4d7ca504b6432e5
2014-09-06 01:10:24 -07:00
Brian Smith
0e87ec98c7
Bug 1063281, Part 3: Implement ParseIPv4Address, r=keeler
...
--HG--
extra : rebase_source : fbafcb7573be8fa83036a8fadbfa74938ab7a4a6
2014-09-05 23:20:18 -07:00
Brian Smith
4a2c8b5274
Bug 1063281, Part 2: Implement IsValidDNSName, r=keeler
...
--HG--
extra : rebase_source : 202898df26c7321f543ab7aeb222cdc6db67fe0d
2014-09-30 14:41:39 -07:00
Brian Smith
3b8c2fc2a8
Bug 1063281, Part 1: Expose moilla::pkix::BackCert::GetSubjectAltName, r=keeler
...
--HG--
extra : rebase_source : c89ae439a21f11fce66a785e8732ca8793d51936
2014-08-17 17:24:20 -07:00
David Keeler
c78d7b0266
backout f69fa3c13d1f (bug 1085509
) for causing test_cert_overrides.js to fail
2014-10-23 11:50:17 -07:00
David Keeler
39a7d91875
bug 1085509
- add telemetry for how many permanent certificate overrides users have r=mmc r=jcj
2014-10-23 10:10:57 -07:00
ffxbld
918c518e8b
No bug, Automated HPKP preload list update from host bld-linux64-spot-1094 - a=hpkp-update
2014-10-22 14:02:48 -07:00
ffxbld
7c18fd1d5d
No bug, Automated HSTS preload list update from host bld-linux64-spot-1094 - a=hsts-update
2014-10-22 14:02:46 -07:00
David Keeler
46c48f2321
bug 1083085
- update where getHSTSPreloadList.js and genHPKPStaticPins.js think Chromium's lists are r=mmc DONTBUILD NPOTB
2014-10-21 15:20:02 -07:00
Martin Thomson
e4182ac689
Bug 1083058 - Adding pref to control TLS version fallback, r=keeler
...
From af667978f8915e6ebfaf02f8967b3d320d409a24 Mon Sep 17 00:00:00 2001
---
netwerk/base/public/security-prefs.js | 1 +
security/manager/ssl/src/nsNSSIOLayer.cpp | 21 +++++-
security/manager/ssl/src/nsNSSIOLayer.h | 2 +
.../manager/ssl/tests/gtest/TLSIntoleranceTest.cpp | 76 +++++++++++++++++++---
4 files changed, 90 insertions(+), 10 deletions(-)
2014-10-02 16:36:48 -07:00
Jed Davis
82a97e04c9
Bug 1078838 - Restrict clone(2) flags for sandboxed content processes. r=kang
...
--HG--
extra : amend_source : f80a3a672f5496f76d8649f0c8ab905044ea81ac
2014-10-20 12:29:25 -07:00
Carsten "Tomcat" Book
db53227352
merge mozilla-inbound to mozilla-central a=merge
2014-10-20 14:34:56 +02:00
ffxbld
0c786b120d
No bug, Automated HPKP preload list update from host bld-linux64-spot-069 - a=hpkp-update
2014-10-18 03:18:53 -07:00
ffxbld
a20f696cba
No bug, Automated HSTS preload list update from host bld-linux64-spot-069 - a=hsts-update
2014-10-18 03:18:51 -07:00
Jim Mathies
5dcb538c28
Bug 1083325
- Gracefully deal with null ssl status when serializing/deserializing TransportSecurityInfo. r=dkeeler
2014-10-16 14:11:19 -05:00
Cykesiopka
1c4af4e6a1
Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith
2014-10-18 15:18:00 +02:00
Cykesiopka
c30bd575d3
Bug 622859 - Tests for bug 622859. r=briansmith,keeler
2014-10-16 05:22:00 +02:00
Tanvi Vyas
12cc245a41
Bug 418354 - update test for bug 455367. Insecure image loads should be considered mixed display content regardless of whether image data was actually returned. r=honzab
2014-10-18 13:21:23 -07:00
David Keeler
8c488b9625
bug 1042889 - test certificate overrides for untrusted x509v1 certificates used as CAs r=mmc
2014-10-15 10:42:13 -07:00
David Keeler
36e798be2b
bug 1042889 - allow overrides for untrusted x509v1 certificates used as CAs r=mmc
2014-10-15 10:39:57 -07:00
David Keeler
0a4f56b330
bug 1042889 - use a separate error for untrusted x509v1 certificates used as CAs r=briansmith
2014-10-15 10:38:51 -07:00
Bob Owen
64a69cb8af
Bug 1080567: Don't report registry NAME_NOT_FOUND errors for the Windows warn only sandbox. r=tabraldes
2014-10-13 15:12:28 +01:00
Martin Thomson
e10ee742fd
Bug 1076983 - Disabling SSL 3.0 with pref
2014-10-14 17:17:35 -07:00
Jon Morton
1700296f02
Bug 979835: Port BoxObject and its subclasses to WebIDL. r=khuey sr=bz
...
--HG--
rename : layout/xul/nsIPopupBoxObject.idl => dom/webidl/PopupBoxObject.webidl
rename : layout/xul/tree/nsITreeBoxObject.idl => dom/webidl/TreeBoxObject.webidl
rename : layout/xul/nsBoxObject.cpp => layout/xul/BoxObject.cpp
rename : layout/xul/nsBoxObject.h => layout/xul/BoxObject.h
rename : layout/xul/nsListBoxObject.cpp => layout/xul/ListBoxObject.cpp
rename : layout/xul/nsMenuBoxObject.cpp => layout/xul/MenuBoxObject.cpp
rename : layout/xul/nsPopupBoxObject.cpp => layout/xul/PopupBoxObject.cpp
2014-10-14 13:15:21 -07:00
Jed Davis
56cddbd763
Bug 1080077 - For sandbox failures with no crash reporter, log the C stack. r=kang
...
This is mostly for ASAN builds, which --disable-crash-reporter, but also
fixes a related papercut: debug builds don't use the crash reporter
unless overridden with an environment variable.
Note: this is Linux-only, so NS_StackWalk is always part of the build;
see also bug 1063455.
2014-10-13 18:48:17 -07:00
Mike Hommey
951b27b2b0
Bug 1080994 - Build libclearkey without a dependency on mozalloc or mozglue. r=dkeeler,r=cpearce
2014-10-14 07:13:25 +09:00
Sylvestre Ledru
20095be902
Bug 1081935 - Missing UUID bump. r=gavin a=me
2014-10-13 17:27:42 +02:00
Ryan VanderMeulen
ad3210dd8e
Merge inbound to m-c. a=merge
2014-10-11 16:16:00 -04:00
ffxbld
aa2c9e3dc4
No bug, Automated HPKP preload list update from host bld-linux64-spot-412 - a=hpkp-update
2014-10-11 03:18:06 -07:00
ffxbld
662e6c9a21
No bug, Automated HSTS preload list update from host bld-linux64-spot-412 - a=hsts-update
2014-10-11 03:18:03 -07:00
Stephen Pohl
0b58cd9573
Bug 1077282: Cleanup uses of GreD vs GreBinD, introcuded by v2 signature changes on OSX. Based on initial patch by rstrong. r=bsmedberg
2014-10-10 15:06:57 -04:00
Kai Engert
2251b66f13
Bug 1075686, Update Mozilla 35 to use NSS 3.17.2, RTM
2014-10-10 19:16:08 +02:00
Patrick McManus
9c3bce6805
bug 1003448 - HTTP/2 Alternate Service and Opportunistic Security [1/2 PSM] r=keeler
2014-08-20 16:30:16 -04:00
Brian Smith
0cacd2ed70
Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler
2014-10-05 17:18:11 -07:00
Carsten "Tomcat" Book
da90427b6c
Backed out changeset b885a82dc02a (bug 1078108) for breaking B2g ICS Builds
2014-10-10 09:01:45 +02:00
Brian Smith
2565f9b33d
Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler
...
--HG--
extra : rebase_source : 3115275b2b1c5337cbea0fd43a2221fcd54dadc1
extra : source : bb5694e268255b6549ccaaaddca74fbb83d4bda1
2014-10-05 17:18:11 -07:00
Brian Smith
201e27f5f3
Bug 1077926: Make test certificate generation faster by reusing key, r=keeler
...
--HG--
extra : rebase_source : 8734920020e0889ea6cac1e878b182326bbf81d6
2014-10-07 18:30:47 -07:00