gecko-dev

Граф коммитов

Автор	SHA1	Сообщение	Дата
Cykesiopka	0a9aea4ab2	Bug 1145679 - Reject EV status for end-entity EV certs with overly long validity periods. r=keeler --HG-- extra : rebase_source : ec44bb566cce8ab14f740457d6ba1d863b39c256	2015-06-29 22:19:00 +02:00
David Keeler	e09f6209c4	bug 1174292 - convert test_cert_version.js to generate certificates at build time r=Cykesiopka Also remove redundant test-cases.	2015-06-12 14:56:07 -07:00
Carsten "Tomcat" Book	90ccc67e4e	merge mozilla-inbound to mozilla-central a=merge	2015-06-29 14:17:02 +02:00
ffxbld	117313c482	No bug, Automated HPKP preload list update from host bld-linux64-spot-098 - a=hpkp-update	2015-06-27 03:33:49 -07:00
ffxbld	7ee431527f	No bug, Automated HSTS preload list update from host bld-linux64-spot-098 - a=hsts-update	2015-06-27 03:33:47 -07:00
Carsten "Tomcat" Book	87e3154dff	merge mozilla-inbound to mozilla-central a=merge	2015-06-22 14:03:17 +02:00
Ryan VanderMeulen	2ff7670bf1	Bug `1029775` - Skip test_ocsp_stapling_expired.js on B2G debug for frequent intermittent failures. --HG-- extra : rebase_source : 3eb53f648d6663ca0f3f1380eb8a81b66a491d1a	2015-06-21 21:22:08 -04:00
ffxbld	94d833221d	No bug, Automated HPKP preload list update from host bld-linux64-spot-224 - a=hpkp-update	2015-06-20 03:33:00 -07:00
ffxbld	1a89ffacb7	No bug, Automated HSTS preload list update from host bld-linux64-spot-224 - a=hsts-update	2015-06-20 03:32:58 -07:00
Ryan VanderMeulen	42deb0e71d	Bug 1176097 - Update NSS to NSS_3_19_2_RTM. --HG-- extra : rebase_source : c668a4f77efd06e5914b69d06f5a2eab4233f9f3	2015-06-19 14:01:18 -04:00
Bob Owen	2e341f2ff1	Bug 1177594: Use a USER_RESTRICTED token level on GMP process when integrity levels are available. r=cpearce	2015-06-26 14:19:12 +01:00
Ryan VanderMeulen	5f5c327690	Backed out changeset 8b4e4083639e (bug 1171931) for B2G debug emulator bustage.	2015-06-25 19:48:42 -04:00
Bob Owen	cc27f74877	Bug 1172388: Use a USER_RESTRICTED access level token on Windows 10. r=cpearce	2015-06-19 23:35:43 +01:00
Jed Davis	1fb9a20a64	Bug 1176085 - Fix second/nanosecond confusion in Linux sandbox start error case. r=kang --HG-- extra : amend_source : e546416d9c058305f4cb00d1c015daaec8ab1362	2015-06-19 14:26:44 -07:00
Juan Gomez	702a59d135	Bug 1171931 - Refactor duplicated code using XRE_IsParent/ContentProcess. r=froydnj --HG-- extra : rebase_source : 2ecbe6c1dd8a7ad8dc529b53349ad431cf1116c9	2015-06-24 14:11:00 -04:00
Benoit Girard	8d6a67f6d3	Bug 1172216 - Move nsStackwalk to mozglue. r=glandium --HG-- rename : xpcom/base/nsStackWalk.cpp => mozglue/misc/StackWalk.cpp rename : xpcom/base/nsStackWalk.h => mozglue/misc/StackWalk.h extra : commitid : EMbWGfjKvdq extra : rebase_source : b7308eb569cc1a019d3b7a92aaff0de7a49b5682	2015-06-10 16:32:45 -04:00
Bob Owen	bef4807107	Bug 1165895: Add NPAPI sandbox rule for the crash server pipe and x64 Temp dir write access. r=bbondy	2015-06-18 12:01:38 +01:00
Masatoshi Kimura	e287cf641e	Bug 1165549 - Update fallback whitelist. r=keeler	2015-06-17 20:52:33 +09:00
David Keeler	fdaeee62c1	bug 1173565 - convert test_pinning_dynamic.js to generate certificates at build time r=Cykesiopka Also fixes up references to test_pinning_dynamic certificates in test_pinning_header_parsing.js	2015-06-09 10:35:47 -07:00
Cykesiopka	cfd306a839	Bug 1171820 - Convert test_bug483440.html mochitest to an xpcshell test. r=keeler --HG-- rename : security/manager/ssl/tests/mochitest/bugs/test_bug483440.html => security/manager/ssl/tests/unit/test_certviewer_invalid_oids.js rename : build/pgo/certs/bug483440-attack2b.ca => security/manager/ssl/tests/unit/test_certviewer_invalid_oids/bug483440-attack2b.pem rename : build/pgo/certs/bug483440-attack7.ca => security/manager/ssl/tests/unit/test_certviewer_invalid_oids/bug483440-attack7.pem rename : build/pgo/certs/bug483440-pk10oflo.ca => security/manager/ssl/tests/unit/test_certviewer_invalid_oids/bug483440-pk10oflo.pem	2015-06-13 00:51:00 +02:00
Birunthan Mohanathas	0544e6bf2c	Bug 1164714 - Move netwerk/test/TestSTSParser.cpp into security/manager/ssl/tests/. r=keeler --HG-- rename : netwerk/test/TestSTSParser.cpp => security/manager/ssl/tests/compiled/TestSTSParser.cpp	2015-06-14 21:37:12 -07:00
David Keeler	fe26522550	bug 1172615 - check for and return early in the case of authentication bypass in AuthCertificateHook r=mcmanus --HG-- extra : amend_source : 305df6e1ea028333d3077653f3e3fc098f40dd3f	2015-06-08 13:18:23 -07:00
Jed Davis	8ac1db457e	Bug 1168555 - Work around Nuwa not always being single-threaded when a normal content process is. r=kang	2015-06-10 13:38:00 -04:00
Kai Engert	4de03b092c	Bug 1174102 - Update to NSS 3.19.2, landing NSS_3_19_2_BETA1, r=nss-confcall	2015-06-12 11:10:17 +02:00
Cykesiopka	c7d8bf951d	Bug 1171819 - Convert test_cert_eku-*.js to generate certificates at build time. r=keeler --HG-- extra : rebase_source : a683669da992833336c6aa03961b143d428ee0b7	2015-06-10 22:50:00 +02:00
Mike Perry	1c707fb2d0	Bug 629558 - Pref to make Intermediate Cert Store memory-only. r=keeler --HG-- extra : rebase_source : 2678d1f74624fe1aa7db44053647a39fb8c8f8dc	2015-06-10 14:14:00 +02:00
Atul Kumar	246d750391	Bug 1136301 - Null check for mCert->slot added in destructorSafeDestroyNSSReference & MarkForPermDeletion. Formatting update in MarkForPermDeletion. r=keeler	2015-06-10 09:46:16 -07:00
David Keeler	d67edd7f93	bug 1170303 - treat malformed name information in certificates as a domain name mismatch r=Cykesiopka	2015-06-01 13:55:23 -07:00
David Keeler	9091a35bfb	bug 1171557 - make test_cert_trust.js certs a bit more realistic r=mgoodwin According to the Baseline Requirements, root certificates MUST NOT have the extendedKeyUsage extension. The extension is optional for intermediates and required for end-entity certificates. This change modifies the test certificates so they're more in line with the BRs.	2015-06-03 15:37:38 -07:00
David Keeler	c3704cadb3	bug 1171557 - convert test_cert_trust.js to generate certificates at build time r=mgoodwin	2015-06-03 15:12:00 -07:00
Eric Rahm	6ac04795af	Bug `1145893` - Shutdown nsNSSComponent background threads during xpcom-shutdown. r=keeler, a=me	2015-03-23 10:58:25 -07:00
Richard Barnes	8a4bc22436	Bug `1010068` - Disable OCSP for DV certificates in Firefox for Android r=keeler	2015-05-28 13:29:13 -07:00
Ryan VanderMeulen	56574135d1	Backed out changeset fda85020d842 (bug `1010068`) for Android test_cert_overrides.js failures. CLOSED TREE	2015-06-08 11:37:33 -04:00
Richard Barnes	3824033dee	Bug `1010068` - Disable OCSP for DV certificates in Firefox for Android r=keeler	2015-05-28 13:29:13 -07:00
Carsten "Tomcat" Book	ac2974150a	merge mozilla-inbound to mozilla-central a=merge	2015-06-08 11:55:30 +02:00
ffxbld	9df7fce9a4	No bug, Automated HPKP preload list update from host bld-linux64-spot-1061 - a=hpkp-update	2015-06-06 03:26:59 -07:00
ffxbld	671e873521	No bug, Automated HSTS preload list update from host bld-linux64-spot-1061 - a=hsts-update	2015-06-06 03:26:57 -07:00
Jed Davis	9db695d73b	Bug 1055310 - Step 3: Move syscall interceptions into SandboxFilter.cpp. r=kang We can now keep the part of the policy implemented by upcalls to userspace in the same place as the part of the policy that's handled entirely in the kernel. This will become more useful in the future (e.g., bug 930258).	2015-06-05 15:17:40 -07:00
Jed Davis	5e4e0f9184	Bug 1055310 - Step 2: Move SIGSYS handling to Chromium TrapRegistry. r=kang This is more complicated than I'd like it to be, because we don't have a good way to combine a specific trap function's knowledge that we want to get a crash dump with the SIGSYS handler's copy of the unprocessed signal info (which breakpad wants). The bpf_dsl interface requires a specific trap function type (via the TrapRegistry superclass), so even if we implement our own registry we can't change what's passed to it. Normally we could use thread-local storage to get around that, but it's not async signal safe. As a result there is an imperfect compromise: the trap function returns a failure with ENOSYS, Chromium's SIGSYS handler writes it into the context, our SIGSYS handler reads it back out and uses a copy of the original signal context for the crash dump. Other error codes (and returning ENOSYS via the seccomp-bpf policy itself) are handled normally.	2015-06-05 15:17:35 -07:00
Jed Davis	3bd337c32c	Bug 1055310 - Step 1: Convert seccomp-bpf policies to Chromium PolicyCompiler. r=kang This completely rewrites SandboxFilter.cpp and removes SandboxAssembler. System calls are now loosely grouped by what they do, now that order doesn't matter, and most of the intersection the content and media plugin whitelists is moved into a common superclass. Hopefully this improves the readability and comprehensibility of the syscall policies. Also, the macros that take the syscall name are gone, because a plain case label usually suffices now (the CASES_FOR_thing macros are a little unsightly, but they're relatively simple), and at one point we saw strange macro expansion issues with system header files that #define'd some syscall names. The signal handling is not migrated yet, so Trap() actions can't be used yet; the next patch will take care of that, and to keep the intermediate state working there's a minimal shim. Bonus fix: non-const global variables use the "g" prefix; "s" is for static class members and static variables in a function (where the default is to allocate a separate copy per instance/activation).	2015-06-05 15:17:32 -07:00
David Keeler	1658fa2a61	bug 969985 - cleanup of test_certificate_usages.js - see the rest of this commit message r=mgoodwin Converts test_certificate_usages.js to generate certificates at build time. Also does miscellaneous cleanup to use modern JS practices. Since the test_cert_eku-* suite of tests covers the extended key usage extension, removes superfluous testcases involving EKU. Finally, renames test_certificate_usages.js to test_cert_keyUsage.js for a more consistent naming scheme. --HG-- rename : security/manager/ssl/tests/unit/test_certificate_usages.js => security/manager/ssl/tests/unit/test_cert_keyUsage.js	2015-06-02 10:58:59 -07:00
Eric Rahm	75c4bebb79	Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_. rs=froydnj This is straightforward mapping of PR_LOG levels to their LogLevel counterparts: PR_LOG_ERROR -> LogLevel::Error PR_LOG_WARNING -> LogLevel::Warning PR_LOG_WARN -> LogLevel::Warning PR_LOG_INFO -> LogLevel::Info PR_LOG_DEBUG -> LogLevel::Debug PR_LOG_NOTICE -> LogLevel::Debug PR_LOG_VERBOSE -> LogLevel::Verbose Instances of PRLogModuleLevel were mapped to a fully qualified mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a fully qualified mozilla::LogLevel:: level, and all other instances were mapped to us a shorter format of LogLevel::*. Bustage for usage of the non-fully qualified LogLevel were fixed by adding \|using mozilla::LogLevel;\| where appropriate.	2015-06-03 15:25:57 -07:00
Eric Rahm	67f6de2a30	Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj	2015-06-03 15:22:35 -07:00
Eric Rahm	cc58068318	Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some to PR_LOG_ERROR.	2015-06-03 15:22:30 -07:00
Eric Rahm	f50b813989	Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj	2015-06-03 15:22:28 -07:00
Cykesiopka	0d334e23eb	Bug 1169195 - Convert test_bug644006.html mochitest to an xpcshell test. r=keeler --HG-- rename : security/manager/ssl/tests/mochitest/bugs/test_bug644006.html => security/manager/ssl/tests/unit/test_constructX509FromBase64.js	2015-06-02 22:49:00 -04:00
Bob Owen	07490a1951	Bug 1166669: Enable process-level mitigations for the Windows content process sandbox. r=tabraldes	2015-06-03 09:13:00 +01:00
Nicholas Nethercote	e849e6588b	Bug 1170416 (part 3) - Remove the PLDHashTable2 typedef. r=froydnj. --HG-- extra : rebase_source : 9510ea47204fffa163cac43aeaaac6ae1ad80419	2015-05-19 16:46:17 -07:00
Mike Hommey	d060bd3d86	Bug 1170431 - Pass buildid as input to pycert.py. r=gps	2015-06-03 07:10:25 +09:00
Mike Hommey	79ea9f2368	Bug 1170431 part 0 - Use the *Path classes for GENERATED_FILES scripts and inputs. r=gps	2015-06-03 07:10:12 +09:00
Carsten "Tomcat" Book	5471309381	Backed out 14 changesets (bug 1165515) for linux x64 e10s m2 test failures Backed out changeset d68dcf2ef372 (bug 1165515) Backed out changeset 7c3b45a47811 (bug 1165515) Backed out changeset b668b617bef2 (bug 1165515) Backed out changeset d0916e1283a2 (bug 1165515) Backed out changeset ac4dc7489942 (bug 1165515) Backed out changeset e9632ce8bc65 (bug 1165515) Backed out changeset c16d215cc7e4 (bug 1165515) Backed out changeset e4d474f3c51a (bug 1165515) Backed out changeset d87680bf9f7c (bug 1165515) Backed out changeset b3c0a45ba99e (bug 1165515) Backed out changeset 9370fa197674 (bug 1165515) Backed out changeset 50970d668ca1 (bug 1165515) Backed out changeset ffa4eb6d24b9 (bug 1165515) Backed out changeset 5fcf1203cc1d (bug 1165515) --HG-- extra : rebase_source : 6fb850d063cbabe738f97f0380302153e3eae97a	2015-06-02 13:05:56 +02:00
Eric Rahm	a9afd68cef	Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_. rs=froydnj This is straightforward mapping of PR_LOG levels to their LogLevel counterparts: PR_LOG_ERROR -> LogLevel::Error PR_LOG_WARNING -> LogLevel::Warning PR_LOG_WARN -> LogLevel::Warning PR_LOG_INFO -> LogLevel::Info PR_LOG_DEBUG -> LogLevel::Debug PR_LOG_NOTICE -> LogLevel::Debug PR_LOG_VERBOSE -> LogLevel::Verbose Instances of PRLogModuleLevel were mapped to a fully qualified mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a fully qualified mozilla::LogLevel:: level, and all other instances were mapped to us a shorter format of LogLevel::*. Bustage for usage of the non-fully qualified LogLevel were fixed by adding \|using mozilla::LogLevel;\| where appropriate.	2015-06-01 22:17:33 -07:00
Eric Rahm	fb40eb5516	Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj	2015-06-01 22:17:26 -07:00
Eric Rahm	28978ade8c	Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some to PR_LOG_ERROR.	2015-06-01 22:17:21 -07:00
Eric Rahm	141e0ff4a2	Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj	2015-06-01 22:17:19 -07:00
Wes Kocher	4e9f80ed2e	Backed out 14 changesets (bug 1165515) for b2g mochitest-6 permafail CLOSED TREE Backed out changeset 9b97e2aa2ed9 (bug 1165515) Backed out changeset 150606c022a2 (bug 1165515) Backed out changeset 4e875a488349 (bug 1165515) Backed out changeset 467e7feeb546 (bug 1165515) Backed out changeset d6b6cc373197 (bug 1165515) Backed out changeset 0615265b593c (bug 1165515) Backed out changeset fafd1dce9f08 (bug 1165515) Backed out changeset d1df869245f9 (bug 1165515) Backed out changeset 6876a7c63611 (bug 1165515) Backed out changeset b7841c94a9a3 (bug 1165515) Backed out changeset e5e3617f7c73 (bug 1165515) Backed out changeset 39be3db95978 (bug 1165515) Backed out changeset 0ec74176f8de (bug 1165515) Backed out changeset 5b928dd10d71 (bug 1165515)	2015-06-01 17:57:58 -07:00
Eric Rahm	f82c0e7caf	Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_. rs=froydnj This is straightforward mapping of PR_LOG levels to their LogLevel counterparts: PR_LOG_ERROR -> LogLevel::Error PR_LOG_WARNING -> LogLevel::Warning PR_LOG_WARN -> LogLevel::Warning PR_LOG_INFO -> LogLevel::Info PR_LOG_DEBUG -> LogLevel::Debug PR_LOG_NOTICE -> LogLevel::Debug PR_LOG_VERBOSE -> LogLevel::Verbose Instances of PRLogModuleLevel were mapped to a fully qualified mozilla::LogLevel, instances of PR_LOG levels in #defines were mapped to a fully qualified mozilla::LogLevel:: level, and all other instances were mapped to us a shorter format of LogLevel::*. Bustage for usage of the non-fully qualified LogLevel were fixed by adding \|using mozilla::LogLevel;\| where appropriate.	2015-06-01 14:31:01 -07:00
Eric Rahm	4095cdb19f	Bug 1165515 - Part 9: Remove instances of using numeric log levels 1-5. rs=froydnj	2015-06-01 14:31:00 -07:00
Eric Rahm	0a502beb23	Bug 1165515 - Part 5: Convert instances of PR_LOG_ALWAYS. r=froydnj Most instances were converted to PR_LOG_INFO, some to PR_LOG_DEBUG, and some to PR_LOG_ERROR.	2015-06-01 14:31:00 -07:00
Eric Rahm	dc090e3fe5	Bug 1165515 - Part 3: Convert PR_LOG_TEST to MOZ_LOG_TEST. r=froydnj	2015-06-01 14:31:00 -07:00
Carsten "Tomcat" Book	7531d9be17	Merge mozilla-central to mozilla-inbound	2015-06-01 15:19:42 +02:00
Carsten "Tomcat" Book	cfa2965ba6	merge mozilla-inbound to mozilla-central a=merge	2015-06-01 15:00:24 +02:00
ffxbld	b6ea902b96	No bug, Automated HPKP preload list update from host bld-linux64-spot-534 - a=hpkp-update	2015-05-30 03:26:59 -07:00
ffxbld	e6879816ca	No bug, Automated HSTS preload list update from host bld-linux64-spot-534 - a=hsts-update	2015-05-30 03:26:57 -07:00
Cykesiopka	71fd1e3612	Bug 1169530 - Add l10n string for SSL_ERROR_WEAK_SERVER_CERT_KEY. r=dkeeler Also removes the strings for the SSL_ERROR_UNUSED_5 and SSL_ERROR_UNUSED_10 errors. --HG-- extra : rebase_source : 252d8f50085ccc57294a71c31f3b8b37c9cf2a90	2015-05-28 22:50:00 +02:00
Bob Owen	51a5fe52f3	Bug 1123759: Set low integrity on NPAPI processes for Windows sandboxing policy level >= 2. r=bbondy, r=bsmedberg	2015-05-22 17:05:45 +01:00
David Keeler	a83c753047	bug 1166976 - generate some PSM xpcshell test certificates at build time r=Cykesiopka,mgoodwin,froydnj	2015-05-20 16:35:16 -07:00
Ryan VanderMeulen	5eae5c2c7b	Bug 1166031 - Update NSS to NSS_3_19_1_RTM. a=sledru --HG-- extra : transplant_source : %A7%DD%B5%C6%8C%1C%C1%C1%8C%CBY%E4%AD%87%0Bt%02%A9%B0%13	2015-05-28 14:14:52 -04:00
Nicholas Nethercote	df91e412ac	Bug 1168007 (part 7) - Use PLDHashTable2 in nsCertTree. r=froydnj. It's possible that Clear() will be called on a table that hasn't had anything inserted in it, but that's ok. --HG-- extra : rebase_source : 454a79d9ec0fbf8d82706c12535c5862fe687cba	2015-05-18 21:14:51 -07:00
Nicholas Nethercote	58ee0c69e5	Bug 1168007 (part 6) - Use PLDHashTable2 in nsSecureBrowserUIImpl. r=froydnj. --HG-- extra : rebase_source : fe8f14d5caf24931bace563518b7541beb838074	2015-05-18 21:02:48 -07:00
Cykesiopka	563c609fd0	Bug 1168695 - Add result strings to PSM xpcshell HPKP tests. r=keeler --HG-- extra : rebase_source : 75fd17476020a68c60fd5e733c4d7a30fd05b8da	2015-05-28 02:26:00 +02:00
Cykesiopka	c2bc81fbea	Bug 1167254 - Convert test_bug234856.html mochitest to an xpcshell test. r=keeler --HG-- extra : rebase_source : c8bad9f0d55aa2a037ae508da988a137c5239006	2015-05-28 02:22:00 +02:00
Makoto Kato	6ddb65f184	Bug 1166323 - Remove IME sequence number. r=masayuki,nchen	2015-05-28 13:51:40 +09:00
Birunthan Mohanathas	20a5506187	Bug 1164714 - Fix unified compilation bustage on Windows. r=me CLOSED TREE	2015-05-27 19:37:09 -07:00
Birunthan Mohanathas	133069acd0	Bug 1164714 - Move netwerk/base/nsISiteSecurityService.idl into security/manager/ssl. r=keeler,mcmanus --HG-- rename : netwerk/base/nsISiteSecurityService.idl => security/manager/ssl/nsISiteSecurityService.idl	2015-05-26 10:31:30 -07:00
Birunthan Mohanathas	a028ea5c2d	Bug 1164714 - Move and flatten security/manager/boot/{public,src}/ into security/manager/ssl/. r=keeler --HG-- rename : security/manager/boot/src/CertBlocklist.cpp => security/manager/ssl/CertBlocklist.cpp rename : security/manager/boot/src/CertBlocklist.h => security/manager/ssl/CertBlocklist.h rename : security/manager/boot/src/DataStorage.cpp => security/manager/ssl/DataStorage.cpp rename : security/manager/boot/src/DataStorage.h => security/manager/ssl/DataStorage.h rename : security/manager/boot/src/PublicKeyPinningService.cpp => security/manager/ssl/PublicKeyPinningService.cpp rename : security/manager/boot/src/PublicKeyPinningService.h => security/manager/ssl/PublicKeyPinningService.h rename : security/manager/boot/src/RootCertificateTelemetryUtils.cpp => security/manager/ssl/RootCertificateTelemetryUtils.cpp rename : security/manager/boot/src/RootCertificateTelemetryUtils.h => security/manager/ssl/RootCertificateTelemetryUtils.h rename : security/manager/boot/src/RootHashes.inc => security/manager/ssl/RootHashes.inc rename : security/manager/boot/src/StaticHPKPins.errors => security/manager/ssl/StaticHPKPins.errors rename : security/manager/boot/src/StaticHPKPins.h => security/manager/ssl/StaticHPKPins.h rename : security/manager/boot/src/nsEntropyCollector.cpp => security/manager/ssl/nsEntropyCollector.cpp rename : security/manager/boot/src/nsEntropyCollector.h => security/manager/ssl/nsEntropyCollector.h rename : security/manager/boot/public/nsIBufEntropyCollector.idl => security/manager/ssl/nsIBufEntropyCollector.idl rename : security/manager/boot/public/nsICertBlocklist.idl => security/manager/ssl/nsICertBlocklist.idl rename : security/manager/boot/public/nsISSLStatusProvider.idl => security/manager/ssl/nsISSLStatusProvider.idl rename : security/manager/boot/public/nsISecurityUITelemetry.idl => security/manager/ssl/nsISecurityUITelemetry.idl rename : security/manager/boot/src/nsSTSPreloadList.errors => security/manager/ssl/nsSTSPreloadList.errors rename : security/manager/boot/src/nsSTSPreloadList.inc => security/manager/ssl/nsSTSPreloadList.inc rename : security/manager/boot/src/nsSecureBrowserUIImpl.cpp => security/manager/ssl/nsSecureBrowserUIImpl.cpp rename : security/manager/boot/src/nsSecureBrowserUIImpl.h => security/manager/ssl/nsSecureBrowserUIImpl.h rename : security/manager/boot/src/nsSecurityHeaderParser.cpp => security/manager/ssl/nsSecurityHeaderParser.cpp rename : security/manager/boot/src/nsSecurityHeaderParser.h => security/manager/ssl/nsSecurityHeaderParser.h rename : security/manager/boot/src/nsSiteSecurityService.cpp => security/manager/ssl/nsSiteSecurityService.cpp rename : security/manager/boot/src/nsSiteSecurityService.h => security/manager/ssl/nsSiteSecurityService.h	2015-05-26 10:31:25 -07:00
Birunthan Mohanathas	ae04912e48	Bug 1164714 - Flatten security/manager/ssl/src/ directory. r=keeler --HG-- rename : security/manager/ssl/src/CryptoTask.cpp => security/manager/ssl/CryptoTask.cpp rename : security/manager/ssl/src/CryptoTask.h => security/manager/ssl/CryptoTask.h rename : security/manager/ssl/src/CryptoUtil.h => security/manager/ssl/CryptoUtil.h rename : security/manager/ssl/src/IntolerantFallbackList.inc => security/manager/ssl/IntolerantFallbackList.inc rename : security/manager/ssl/src/NSSErrorsService.cpp => security/manager/ssl/NSSErrorsService.cpp rename : security/manager/ssl/src/NSSErrorsService.h => security/manager/ssl/NSSErrorsService.h rename : security/manager/ssl/src/PPSMContentDownloader.ipdl => security/manager/ssl/PPSMContentDownloader.ipdl rename : security/manager/ssl/src/PSMContentListener.cpp => security/manager/ssl/PSMContentListener.cpp rename : security/manager/ssl/src/PSMContentListener.h => security/manager/ssl/PSMContentListener.h rename : security/manager/ssl/src/PSMRunnable.cpp => security/manager/ssl/PSMRunnable.cpp rename : security/manager/ssl/src/PSMRunnable.h => security/manager/ssl/PSMRunnable.h rename : security/manager/ssl/src/PublicSSL.h => security/manager/ssl/PublicSSL.h rename : security/manager/ssl/src/SSLServerCertVerification.cpp => security/manager/ssl/SSLServerCertVerification.cpp rename : security/manager/ssl/src/SSLServerCertVerification.h => security/manager/ssl/SSLServerCertVerification.h rename : security/manager/ssl/src/ScopedNSSTypes.h => security/manager/ssl/ScopedNSSTypes.h rename : security/manager/ssl/src/SharedCertVerifier.h => security/manager/ssl/SharedCertVerifier.h rename : security/manager/ssl/src/SharedSSLState.cpp => security/manager/ssl/SharedSSLState.cpp rename : security/manager/ssl/src/SharedSSLState.h => security/manager/ssl/SharedSSLState.h rename : security/manager/ssl/src/TransportSecurityInfo.cpp => security/manager/ssl/TransportSecurityInfo.cpp rename : security/manager/ssl/src/TransportSecurityInfo.h => security/manager/ssl/TransportSecurityInfo.h rename : security/manager/ssl/src/md4.c => security/manager/ssl/md4.c rename : security/manager/ssl/src/md4.h => security/manager/ssl/md4.h rename : security/manager/ssl/src/nsCertOverrideService.cpp => security/manager/ssl/nsCertOverrideService.cpp rename : security/manager/ssl/src/nsCertOverrideService.h => security/manager/ssl/nsCertOverrideService.h rename : security/manager/ssl/src/nsCertPicker.cpp => security/manager/ssl/nsCertPicker.cpp rename : security/manager/ssl/src/nsCertPicker.h => security/manager/ssl/nsCertPicker.h rename : security/manager/ssl/src/nsCertTree.cpp => security/manager/ssl/nsCertTree.cpp rename : security/manager/ssl/src/nsCertTree.h => security/manager/ssl/nsCertTree.h rename : security/manager/ssl/src/nsCertVerificationThread.cpp => security/manager/ssl/nsCertVerificationThread.cpp rename : security/manager/ssl/src/nsCertVerificationThread.h => security/manager/ssl/nsCertVerificationThread.h rename : security/manager/ssl/src/nsClientAuthRemember.cpp => security/manager/ssl/nsClientAuthRemember.cpp rename : security/manager/ssl/src/nsClientAuthRemember.h => security/manager/ssl/nsClientAuthRemember.h rename : security/manager/ssl/src/nsCrypto.cpp => security/manager/ssl/nsCrypto.cpp rename : security/manager/ssl/src/nsCrypto.h => security/manager/ssl/nsCrypto.h rename : security/manager/ssl/src/nsCryptoHash.cpp => security/manager/ssl/nsCryptoHash.cpp rename : security/manager/ssl/src/nsCryptoHash.h => security/manager/ssl/nsCryptoHash.h rename : security/manager/ssl/src/nsDataSignatureVerifier.cpp => security/manager/ssl/nsDataSignatureVerifier.cpp rename : security/manager/ssl/src/nsDataSignatureVerifier.h => security/manager/ssl/nsDataSignatureVerifier.h rename : security/manager/ssl/src/nsKeyModule.cpp => security/manager/ssl/nsKeyModule.cpp rename : security/manager/ssl/src/nsKeyModule.h => security/manager/ssl/nsKeyModule.h rename : security/manager/ssl/src/nsKeygenHandler.cpp => security/manager/ssl/nsKeygenHandler.cpp rename : security/manager/ssl/src/nsKeygenHandler.h => security/manager/ssl/nsKeygenHandler.h rename : security/manager/ssl/src/nsKeygenHandlerContent.cpp => security/manager/ssl/nsKeygenHandlerContent.cpp rename : security/manager/ssl/src/nsKeygenHandlerContent.h => security/manager/ssl/nsKeygenHandlerContent.h rename : security/manager/ssl/src/nsKeygenThread.cpp => security/manager/ssl/nsKeygenThread.cpp rename : security/manager/ssl/src/nsKeygenThread.h => security/manager/ssl/nsKeygenThread.h rename : security/manager/ssl/src/nsNSSASN1Object.cpp => security/manager/ssl/nsNSSASN1Object.cpp rename : security/manager/ssl/src/nsNSSASN1Object.h => security/manager/ssl/nsNSSASN1Object.h rename : security/manager/ssl/src/nsNSSCallbacks.cpp => security/manager/ssl/nsNSSCallbacks.cpp rename : security/manager/ssl/src/nsNSSCallbacks.h => security/manager/ssl/nsNSSCallbacks.h rename : security/manager/ssl/src/nsNSSCertHelper.cpp => security/manager/ssl/nsNSSCertHelper.cpp rename : security/manager/ssl/src/nsNSSCertHelper.h => security/manager/ssl/nsNSSCertHelper.h rename : security/manager/ssl/src/nsNSSCertTrust.cpp => security/manager/ssl/nsNSSCertTrust.cpp rename : security/manager/ssl/src/nsNSSCertTrust.h => security/manager/ssl/nsNSSCertTrust.h rename : security/manager/ssl/src/nsNSSCertValidity.cpp => security/manager/ssl/nsNSSCertValidity.cpp rename : security/manager/ssl/src/nsNSSCertValidity.h => security/manager/ssl/nsNSSCertValidity.h rename : security/manager/ssl/src/nsNSSCertificate.cpp => security/manager/ssl/nsNSSCertificate.cpp rename : security/manager/ssl/src/nsNSSCertificate.h => security/manager/ssl/nsNSSCertificate.h rename : security/manager/ssl/src/nsNSSCertificateDB.cpp => security/manager/ssl/nsNSSCertificateDB.cpp rename : security/manager/ssl/src/nsNSSCertificateDB.h => security/manager/ssl/nsNSSCertificateDB.h rename : security/manager/ssl/src/nsNSSCertificateFakeTransport.cpp => security/manager/ssl/nsNSSCertificateFakeTransport.cpp rename : security/manager/ssl/src/nsNSSCertificateFakeTransport.h => security/manager/ssl/nsNSSCertificateFakeTransport.h rename : security/manager/ssl/src/nsNSSComponent.cpp => security/manager/ssl/nsNSSComponent.cpp rename : security/manager/ssl/src/nsNSSComponent.h => security/manager/ssl/nsNSSComponent.h rename : security/manager/ssl/src/nsNSSErrors.cpp => security/manager/ssl/nsNSSErrors.cpp rename : security/manager/ssl/src/nsNSSHelper.h => security/manager/ssl/nsNSSHelper.h rename : security/manager/ssl/src/nsNSSIOLayer.cpp => security/manager/ssl/nsNSSIOLayer.cpp rename : security/manager/ssl/src/nsNSSIOLayer.h => security/manager/ssl/nsNSSIOLayer.h rename : security/manager/ssl/src/nsNSSModule.cpp => security/manager/ssl/nsNSSModule.cpp rename : security/manager/ssl/src/nsNSSShutDown.cpp => security/manager/ssl/nsNSSShutDown.cpp rename : security/manager/ssl/src/nsNSSShutDown.h => security/manager/ssl/nsNSSShutDown.h rename : security/manager/ssl/src/nsNSSVersion.cpp => security/manager/ssl/nsNSSVersion.cpp rename : security/manager/ssl/src/nsNSSVersion.h => security/manager/ssl/nsNSSVersion.h rename : security/manager/ssl/src/nsNTLMAuthModule.cpp => security/manager/ssl/nsNTLMAuthModule.cpp rename : security/manager/ssl/src/nsNTLMAuthModule.h => security/manager/ssl/nsNTLMAuthModule.h rename : security/manager/ssl/src/nsPK11TokenDB.cpp => security/manager/ssl/nsPK11TokenDB.cpp rename : security/manager/ssl/src/nsPK11TokenDB.h => security/manager/ssl/nsPK11TokenDB.h rename : security/manager/ssl/src/nsPKCS11Slot.cpp => security/manager/ssl/nsPKCS11Slot.cpp rename : security/manager/ssl/src/nsPKCS11Slot.h => security/manager/ssl/nsPKCS11Slot.h rename : security/manager/ssl/src/nsPKCS12Blob.cpp => security/manager/ssl/nsPKCS12Blob.cpp rename : security/manager/ssl/src/nsPKCS12Blob.h => security/manager/ssl/nsPKCS12Blob.h rename : security/manager/ssl/src/nsPSMBackgroundThread.cpp => security/manager/ssl/nsPSMBackgroundThread.cpp rename : security/manager/ssl/src/nsPSMBackgroundThread.h => security/manager/ssl/nsPSMBackgroundThread.h rename : security/manager/ssl/src/nsProtectedAuthThread.cpp => security/manager/ssl/nsProtectedAuthThread.cpp rename : security/manager/ssl/src/nsProtectedAuthThread.h => security/manager/ssl/nsProtectedAuthThread.h rename : security/manager/ssl/src/nsRandomGenerator.cpp => security/manager/ssl/nsRandomGenerator.cpp rename : security/manager/ssl/src/nsRandomGenerator.h => security/manager/ssl/nsRandomGenerator.h rename : security/manager/ssl/src/nsSDR.cpp => security/manager/ssl/nsSDR.cpp rename : security/manager/ssl/src/nsSDR.h => security/manager/ssl/nsSDR.h rename : security/manager/ssl/src/nsSSLSocketProvider.cpp => security/manager/ssl/nsSSLSocketProvider.cpp rename : security/manager/ssl/src/nsSSLSocketProvider.h => security/manager/ssl/nsSSLSocketProvider.h rename : security/manager/ssl/src/nsSSLStatus.cpp => security/manager/ssl/nsSSLStatus.cpp rename : security/manager/ssl/src/nsSSLStatus.h => security/manager/ssl/nsSSLStatus.h rename : security/manager/ssl/src/nsSmartCardMonitor.cpp => security/manager/ssl/nsSmartCardMonitor.cpp rename : security/manager/ssl/src/nsSmartCardMonitor.h => security/manager/ssl/nsSmartCardMonitor.h rename : security/manager/ssl/src/nsTLSSocketProvider.cpp => security/manager/ssl/nsTLSSocketProvider.cpp rename : security/manager/ssl/src/nsTLSSocketProvider.h => security/manager/ssl/nsTLSSocketProvider.h rename : security/manager/ssl/src/nsUsageArrayHelper.cpp => security/manager/ssl/nsUsageArrayHelper.cpp rename : security/manager/ssl/src/nsUsageArrayHelper.h => security/manager/ssl/nsUsageArrayHelper.h rename : security/manager/ssl/src/nsVerificationJob.h => security/manager/ssl/nsVerificationJob.h	2015-05-26 10:31:23 -07:00
Birunthan Mohanathas	e02a99f68f	Bug 1164714 - Flatten security/manager/ssl/public/ directory. r=keeler --HG-- rename : security/manager/ssl/public/nsIASN1Object.idl => security/manager/ssl/nsIASN1Object.idl rename : security/manager/ssl/public/nsIASN1PrintableItem.idl => security/manager/ssl/nsIASN1PrintableItem.idl rename : security/manager/ssl/public/nsIASN1Sequence.idl => security/manager/ssl/nsIASN1Sequence.idl rename : security/manager/ssl/public/nsIAssociatedContentSecurity.idl => security/manager/ssl/nsIAssociatedContentSecurity.idl rename : security/manager/ssl/public/nsIBadCertListener2.idl => security/manager/ssl/nsIBadCertListener2.idl rename : security/manager/ssl/public/nsICertOverrideService.idl => security/manager/ssl/nsICertOverrideService.idl rename : security/manager/ssl/public/nsICertPickDialogs.idl => security/manager/ssl/nsICertPickDialogs.idl rename : security/manager/ssl/public/nsICertTree.idl => security/manager/ssl/nsICertTree.idl rename : security/manager/ssl/public/nsICertificateDialogs.idl => security/manager/ssl/nsICertificateDialogs.idl rename : security/manager/ssl/public/nsIClientAuthDialogs.idl => security/manager/ssl/nsIClientAuthDialogs.idl rename : security/manager/ssl/public/nsIDataSignatureVerifier.idl => security/manager/ssl/nsIDataSignatureVerifier.idl rename : security/manager/ssl/public/nsIGenKeypairInfoDlg.idl => security/manager/ssl/nsIGenKeypairInfoDlg.idl rename : security/manager/ssl/public/nsIKeyModule.idl => security/manager/ssl/nsIKeyModule.idl rename : security/manager/ssl/public/nsIKeygenThread.idl => security/manager/ssl/nsIKeygenThread.idl rename : security/manager/ssl/public/nsINSSVersion.idl => security/manager/ssl/nsINSSVersion.idl rename : security/manager/ssl/public/nsIPK11Token.idl => security/manager/ssl/nsIPK11Token.idl rename : security/manager/ssl/public/nsIPK11TokenDB.idl => security/manager/ssl/nsIPK11TokenDB.idl rename : security/manager/ssl/public/nsIPKCS11.idl => security/manager/ssl/nsIPKCS11.idl rename : security/manager/ssl/public/nsIPKCS11Module.idl => security/manager/ssl/nsIPKCS11Module.idl rename : security/manager/ssl/public/nsIPKCS11ModuleDB.idl => security/manager/ssl/nsIPKCS11ModuleDB.idl rename : security/manager/ssl/public/nsIPKCS11Slot.idl => security/manager/ssl/nsIPKCS11Slot.idl rename : security/manager/ssl/public/nsIProtectedAuthThread.idl => security/manager/ssl/nsIProtectedAuthThread.idl rename : security/manager/ssl/public/nsISSLStatus.idl => security/manager/ssl/nsISSLStatus.idl rename : security/manager/ssl/public/nsITokenDialogs.idl => security/manager/ssl/nsITokenDialogs.idl rename : security/manager/ssl/public/nsITokenPasswordDialogs.idl => security/manager/ssl/nsITokenPasswordDialogs.idl rename : security/manager/ssl/public/nsIUserCertPicker.idl => security/manager/ssl/nsIUserCertPicker.idl rename : security/manager/ssl/public/nsIX509Cert.idl => security/manager/ssl/nsIX509Cert.idl rename : security/manager/ssl/public/nsIX509CertDB.idl => security/manager/ssl/nsIX509CertDB.idl rename : security/manager/ssl/public/nsIX509CertList.idl => security/manager/ssl/nsIX509CertList.idl rename : security/manager/ssl/public/nsIX509CertValidity.idl => security/manager/ssl/nsIX509CertValidity.idl	2015-05-26 10:30:46 -07:00
Mike Hommey	ea7750bcb1	Bug 991983 - Define SOURCES as SourcePath. r=gps	2015-05-28 07:34:15 +09:00
Kaspar Brand	b24a26ecdc	Bug 1168048 - Avoid potential null-pointer dereferencing in nsNSSCertificateDB r=keeler --HG-- extra : histedit_source : 63ddf50ccbd79eb320c52aa47959f76a8b247e21	2015-05-27 14:12:26 -07:00
Cykesiopka	8b1facad54	Bug 1167866 - Add result strings to PSM test_cert* xpcshell tests. r=keeler --HG-- extra : rebase_source : 306e5f3230350fefe1ade0f748f8d593a79f3392	2015-05-23 19:57:32 -07:00
Phil Ringnalda	9e5deef0e2	Merge m-i to m-c, a=merge	2015-05-23 13:31:21 -07:00
ffxbld	70743008c3	No bug, Automated HPKP preload list update from host bld-linux64-spot-023 - a=hpkp-update	2015-05-23 03:32:23 -07:00
ffxbld	3cb82ca5b5	No bug, Automated HSTS preload list update from host bld-linux64-spot-023 - a=hsts-update	2015-05-23 03:32:21 -07:00
Makoto Kato	685504d65d	Bug 958421 - XUL dialog for certificate is security/manager/pki/resouces is unnecessary on Firefox Android. r=snorp	2015-05-22 14:28:04 +09:00
Nathan Froyd	db188ea282	Bug 1160485 - remove implicit conversion from RefPtr<T> to TemporaryRef<T>; r=ehsan Having this implicit conversion means that we can silently do extra refcounting when it's completely unnecessary. It's also an obstacle to making RefPtr more nsRefPtr-like, so let's get rid of it.	2015-05-01 09:14:16 -04:00
Tim Taubert	ab7196486a	Bug 1060112 - Don't treat OCSP responses omitting the requested certificate status as "unknown certificate" responses blocking the connection r=keeler	2015-05-21 13:39:34 -04:00
Eric Rahm	3925a960aa	Bug 1165515 - Part 1: Convert PR_LOG to MOZ_LOG. r=froydnj	2015-05-21 13:22:04 -07:00
Nicholas Nethercote	e90de3e5e0	Bug 1166586 (part 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs in a constructor and the PL_DHashTableFinish() call occurs in a destructor. --HG-- extra : rebase_source : d8dc450f80ac23b8455141b471cc9ae823e1e384	2015-05-04 22:59:24 -07:00
Ryan VanderMeulen	5edd9ca1e4	Backed out changeset 38ff380719e4 (bug 1166031) for test_WebCrypto_DH.html failures.	2015-05-20 22:05:15 -04:00
Ryan VanderMeulen	2249f71a31	Bug 1166031 - Update NSS to NSS_3_19_1_BETA1. r=mt	2015-05-20 21:06:06 -04:00
David Keeler	309d57da39	Bug 1166031 - Update PSM xpcshell small RSA key test to reflect new error. r=Cykesiopka Previously NSS would accept smaller RSA key sizes than PSM would in TLS handshakes. Now that the limit is the same, NSS handles the handshake termination with a different error code before PSM can make its own policy decision. --HG-- extra : rebase_source : ceb01cc28cb63e9ca52b935ea22d917d79dee1b9	2015-05-21 12:57:03 -07:00
Ryan VanderMeulen	d29d3d14b0	Bug 1166031 - Update NSS to NSS_3_19_1_BETA1. r=mt --HG-- extra : rebase_source : bb3c28e7ece399d4e1902e96b052a4c7c69e81af extra : source : 38ff380719e46767d2eadd47891980e47a473d0f	2015-05-20 21:06:06 -04:00
Cykesiopka	740177a058	Bug 1166078 - Clean up and add expected result strings to test_hmac.js. r=keeler --HG-- extra : rebase_source : 7d8d3e38e2f706324bb4563f65a4d85b1af8866b	2015-05-18 15:22:54 -07:00
Birunthan Mohanathas	ed468964b8	Bug 1164714 - Flatten security/manager/pki/src/ directory. r=keeler --HG-- rename : security/manager/pki/src/nsASN1Tree.cpp => security/manager/pki/nsASN1Tree.cpp rename : security/manager/pki/src/nsASN1Tree.h => security/manager/pki/nsASN1Tree.h rename : security/manager/pki/src/nsNSSDialogHelper.cpp => security/manager/pki/nsNSSDialogHelper.cpp rename : security/manager/pki/src/nsNSSDialogHelper.h => security/manager/pki/nsNSSDialogHelper.h rename : security/manager/pki/src/nsNSSDialogs.cpp => security/manager/pki/nsNSSDialogs.cpp rename : security/manager/pki/src/nsNSSDialogs.h => security/manager/pki/nsNSSDialogs.h rename : security/manager/pki/src/nsPKIModule.cpp => security/manager/pki/nsPKIModule.cpp rename : security/manager/pki/src/nsPKIParamBlock.cpp => security/manager/pki/nsPKIParamBlock.cpp rename : security/manager/pki/src/nsPKIParamBlock.h => security/manager/pki/nsPKIParamBlock.h	2015-05-19 10:47:42 -07:00
Birunthan Mohanathas	b8b7e39d71	Bug 1164714 - Flatten security/manager/pki/public/ directory. r=keeler --HG-- rename : security/manager/pki/public/nsIASN1Tree.idl => security/manager/pki/nsIASN1Tree.idl rename : security/manager/pki/public/nsIPKIParamBlock.idl => security/manager/pki/nsIPKIParamBlock.idl	2015-05-19 10:47:38 -07:00
Eric Rahm	4879ae86f4	Bug 1165518 - Part 2: Replace prlog.h with Logging.h. rs=froydnj	2015-05-19 11:15:34 -07:00
David Keeler	44861c2d49	bug 1165911 - do more safety checks when gathering successful TLS connection telemetry r=Cykesiopka	2015-05-18 10:37:38 -07:00
Nicholas Nethercote	4a930bc0f3	Back out a1f7ae44c7bb (bug 1164373) for causing intermittent test failures. --HG-- extra : rebase_source : ac3d87bc11cf5cff81bc94f72ba01d1f05dfe445	2015-05-18 19:00:54 -07:00
Carsten "Tomcat" Book	09631fba2e	merge mozilla-inbound to mozilla-central a=merge	2015-05-18 13:43:01 +02:00
cedric	c38e008367	Bug 1152842 - Remove legacy Download Manager support from test_bug383369.html. r=paolo	2015-05-11 17:43:15 -07:00
Richard Barnes	cfe5014bab	Backed out changeset fe10feec1ede because of OCSP test failures	2015-05-16 16:38:34 -04:00
Richard Barnes	a9f5d9c05c	Bug `1010068` - Disable OCSP for DV certificates in Firefox for Android r=keeler	2015-05-15 16:17:47 -04:00
Phil Ringnalda	e67e1e2a38	Merge m-c to m-i	2015-05-16 09:49:14 -07:00
Phil Ringnalda	d22fb4c9fd	Merge m-i to m-c, a=merge	2015-05-16 08:50:37 -07:00
ffxbld	d89ecd849b	No bug, Automated HPKP preload list update from host bld-linux64-spot-152 - a=hpkp-update	2015-05-16 03:30:30 -07:00
ffxbld	0c4a5d8d8b	No bug, Automated HSTS preload list update from host bld-linux64-spot-152 - a=hsts-update	2015-05-16 03:30:28 -07:00
Neil Rashbrook	cf42e317ab	Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan	2015-05-16 09:07:10 +01:00
Nicholas Nethercote	eab9ff6d25	Back out all four patches from bug 1161377. r=me. Due to Android startup regressions (bug 1163066) and plugin crashes (bug 1165155). --HG-- extra : rebase_source : 380f79e67dff4c4eaa2614f286a4d0669666b652	2015-05-14 21:48:43 -07:00
Wes Kocher	3c714c42eb	Backed out changeset 17cfad44e12b (bug 1155963) for breaking b2g builds	2015-05-14 16:35:18 -07:00
Jed Davis	06998bb825	Bug 1162965 - Use /dev/shm instead of /tmp for sandbox chroot if possible. r=kang	2015-05-14 16:19:08 -07:00
Neil Rashbrook	ae441fafa2	Bug 1155963 Only allow NS_LITERAL_CSTRING to be used on compile-time literals r=froydnj,ehsan	2015-05-15 00:00:33 +01:00
Cykesiopka	cb7ae71daf	Bug 1164409 - Reduce PSM xpcshell script code duplication. r=keeler	2015-05-15 02:28:00 -04:00
David Keeler	4e7fc3055e	bug 1141189 - implement skipping expensive revocation checks (OCSP fetching) for short-lived certificates r=rbarnes	2015-04-06 16:10:28 -07:00
Nicholas Nethercote	424c7b08b9	Bug 1164373 - Remove two static constructors involving PR_NewLogModule(). r=froydnj. --HG-- extra : rebase_source : 089cbc39be20f60ca3c7e07b9f42034f19c4ea29	2015-05-13 18:02:56 -07:00
Nicholas Nethercote	ba79e01ad2	Bug 1161377 (part 3, attempt 2) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. --HG-- extra : rebase_source : 990907701818b7da2b4e8955c419bb61130e266f	2015-05-12 17:33:26 -07:00
David Major	8cac570831	Bug 1149718: Fix wow_helper lib path for VS2015. r=glandium --HG-- extra : rebase_source : 91893548992b2c0929abaa4e81bce60e473247ff	2015-05-12 18:20:28 -04:00
David Keeler	3c315d18c3	bug 1102436 - remove PublicKeyPinningService::CheckChainAgainstAllNames r=Cykesiopka	2015-05-07 11:06:07 -07:00
Cykesiopka	737fac0f14	Bug 1163358 - Add "psm" tag to PSM xpcshell and mochitest manifests. r=dkeeler --HG-- extra : rebase_source : 43570fd1ec37a363df530dac0fd457c1019d194d	2015-05-09 18:21:00 +02:00
Mike Hommey	fe90037862	Bug 1043692 - Add a DIST_INSTALL variable to moz.build, and replace NO_DIST_INSTALL with it. r=gps	2015-05-12 07:55:21 +09:00
Bob Owen	94925de358	Bug `1146874` Part 1: Check that Windows sandboxed process starts correctly. r=tabraldes	2015-05-11 08:24:39 +01:00
Nicholas Nethercote	0323a0a1b5	Backout c375efe78e07 (bug 1161377 part 3) for (probably) increasing the static constructor count and regressing Fennec start-up time. r=me.	2015-05-10 22:16:18 -07:00
Phil Ringnalda	256161c570	Merge m-c to m-c, a=merge	2015-05-09 14:16:58 -07:00
ffxbld	2e46137393	No bug, Automated HPKP preload list update from host bld-linux64-spot-270 - a=hpkp-update	2015-05-09 03:31:59 -07:00
ffxbld	9dfe0d6356	No bug, Automated HSTS preload list update from host bld-linux64-spot-270 - a=hsts-update	2015-05-09 03:31:58 -07:00
Wes Kocher	e43a05d6d2	Merge fx-team to m-c a=merge	2015-05-08 10:29:41 -07:00
Eric Rahm	bfb87f34ff	Bug 1162691 - Part 2: Wrap expensive calls in PR_LOG_TEST. r=froydnj Check that logging is enabled before performing potentially expensive operations.	2015-05-08 14:36:34 -07:00
Eric Rahm	4eceb82c1f	Bug 1162691 - Part 1: Remove instances of #ifdef PR_LOGGING in security. r=froydnj PR_LOGGING is now always defined, we can remove #ifdefs checking for it.	2015-05-08 14:36:33 -07:00
Daniel Veditz	7b4994dfc8	Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler --HG-- extra : rebase_source : 5728bfc05f8326f5392a787d38bc64ec8dbefe21 extra : source : a02ea85607a2c0989f057053858125fa5046763b	2015-05-05 20:21:00 +02:00
Bob Owen	d65b604e3b	Bug 1158773: Use the same initial and delayed integrity level for Windows content sandbox level 0. r=tabraldes	2015-05-06 10:11:56 +01:00
L. David Baron	d8275d9234	Back out changeset a02ea85607a2 (bug 1038072) for widespread test failures (at least Linux, Android, and Mulet), on a CLOSED TREE.	2015-05-06 09:58:55 +02:00
Daniel Veditz	a956162b00	Bug 1038072 - signature verification for JAR files unpacked into a directory. r=keeler --HG-- extra : rebase_source : 3afa62b566718cfbfaaf53765d385187388e83e5	2015-05-05 20:21:00 +02:00
Nicholas Nethercote	17348fdef0	Bug 1161377 (part 3) - Convert some easy PL_DHashTable{Init,Finish} cases. r=froydnj. This patch converts easy cases, i.e. where the PL_DHashTableInit() call occurs in a constructor and the PL_DHashTableFinish() call occurs in a destructor.	2015-05-04 22:59:24 -07:00
Mark Goodwin	cb581e0eff	Bug 1128607 - Test the freshness check for OneCRL (r=keeler)	2015-05-07 18:54:07 +01:00
Mark Goodwin	f82bee04e1	Bug 1128607 - Add freshness check for OneCRL (r=keeler)	2015-05-07 18:54:05 +01:00
Patrick McManus	6c728ddf43	bug 1153212 - 2/2 Necko explicitly track origin vs routed host and give psm only origin r=dkeeler r=hurley IGNORE IDL Allow necko to simultaneously track the dual concept of routed host and origin (authenticated host). The origin is given to the socket provider and the routed host is inserted at DNS lookup time as if it were a SRV or CNAME. --HG-- extra : rebase_source : f9cc87b92084025443bc0374b1dd994f01662ebb	2015-04-09 11:31:59 -04:00
Patrick McManus	6a940b1edd	bug 1153212 - 1/2 revert 90d6a38931fa to make room for better fix r=backout --HG-- extra : rebase_source : a812bd796d4aa9df8e51c32a014663c025f3e0a6	2015-05-07 13:16:26 -04:00
Kai Engert	c0e295b256	Bug `1144055`, Upgrade Firefox to use NSS 3.19, landing NSS_3_19_RTM	2015-05-04 21:34:38 +02:00
Cykesiopka	f7b3a781d8	Bug `1153446` - Replace instances of double spacing with single spacing in nsserrors.properties. r=dkeeler	2015-05-01 02:40:00 +02:00
Phil Ringnalda	0dc457eba2	Merge m-i to m-c, a=merge	2015-05-02 10:02:17 -07:00
ffxbld	ba8964f0c6	No bug, Automated HPKP preload list update from host bld-linux64-spot-137 - a=hpkp-update	2015-05-02 03:30:49 -07:00
ffxbld	aaf9d7d061	No bug, Automated HSTS preload list update from host bld-linux64-spot-137 - a=hsts-update	2015-05-02 03:30:48 -07:00
Mike Hommey	924c9eb636	Bug 1134923 - Remove NS_Alloc/NS_Realloc/NS_Free. r=nfroyd They are kept around for the sake of the standalone glue, which is used for e.g. webapprt, which doesn't have direct access to jemalloc, and thus still needs a wrapper to go through the xpcom function list and get to jemalloc from there.	2015-05-01 09:40:30 +09:00
Nicholas Nethercote	c8ff2d51c8	Bug 1159972 - Remove the fallible version of PL_DHashTableInit(). r=froydnj. It's no longer needed now that entry storage isn't allocated there. (The other possible causes of failures in that function are less interesting and simply crashing is a reasonable thing to do for them.) This also makes PL_DNewHashTable() infallible, so I removed some now-unnecessary checks of its result. --HG-- extra : rebase_source : 4c6ab0c449bc18e8bace8bf036b5bd78d3a2f1c4	2015-04-29 16:38:29 -07:00
Bob Owen	2343aee19b	Bug 1150515: Set the subsystem to WINDOWS,5.02 for wow_helper so that it runs on WinXP 64-bit. r=glandium	2015-04-30 09:48:03 +01:00
Masatoshi Kimura	8beb5af44d	Bug 1145844 - Update fallback whitelist. r=keeler	2015-04-29 13:48:53 +09:00
Andrew Bartlett	ca3e5326e2	Bug 734229 - Partially address by refusing to re-negotiate on NTLM. r=mayhemer, r=keeler Now only one NTLM Negotiate packet will be sent per connection, rather than again after a failed authentication. The problem situation is triggered due to failed Negotiate authentication, and is probably more complex. Pair-programmed-with: Garming Sam <garming@catalyst.net.nz> --HG-- extra : rebase_source : dc2bac8a3b7dab5e774dcfb9ce33b73c7233d686	2014-11-28 11:34:06 +13:00
David Major	ebde6b9f4f	Bug 1157835: Remove the MSVC_ENABLE_PGO flag from the build system. r=glandium --HG-- extra : rebase_source : 0c47c99bb8b92f8361a51fd81b20a2cc8647a986	2015-04-27 19:59:27 -04:00
Carsten "Tomcat" Book	596e5f9960	merge fx-team to mozilla-central a=merge	2015-04-27 12:34:03 +02:00
Carsten "Tomcat" Book	107708af7c	merge mozilla-inbound to mozilla-central a=merge	2015-04-27 12:00:14 +02:00

1 2 3 4 5 ...

9761 Коммитов