Граф коммитов

9990 Коммитов

Автор SHA1 Сообщение Дата
Jan de Mooij 68d44577b4 Bug 1237232 - Properly check the result of Vector append() calls in security/. r=keeler 2016-01-13 22:05:08 +01:00
Chris Peterson 3f4e7bf8d5 Bug 1235188 - Fix -Wformat warnings in security/certverifier/. r=keeler
security/certverifier/NSSCertDBTrustDomain.cpp:433:26 [-Wformat] format specifies type 'long' but the argument has underlying type 'int'
security/certverifier/NSSCertDBTrustDomain.cpp:433:48 [-Wformat] format specifies type 'long long' but the argument has type 'mozilla::pkix::Time'
2015-12-28 18:41:54 -07:00
ffxbld 9c54b2fdae No bug, Automated HPKP preload list update from host bld-linux64-spot-506 - a=hpkp-update 2016-01-09 04:38:50 -08:00
ffxbld 98b790fabc No bug, Automated HSTS preload list update from host bld-linux64-spot-506 - a=hsts-update 2016-01-09 04:38:48 -08:00
Shu-yu Guo 1768759efb Bug 1220564 - Update chrome code uses of genexprs and legacy comprehensions. (r=billm) 2016-01-06 16:02:16 -08:00
David Keeler 83aec61b67 bug 1230377 - part 2/2: simplify nsIKeyObject and nsIKeyObjectFactory r=jcj
nsIKeyObject and nsIKeyObjectFactory defined an interface that was largely
unimplemented. This cuts the interface back to what actually exists in code.

--HG--
extra : rebase_source : 6241e801c3bd7f17518af648158fcfdcd0bda9cf
2015-12-04 10:36:51 -08:00
David Keeler 3da7665447 bug 1230377 - part 1/2: ensure nsKeyObject releases NSS resources on shutdown r=jcj
--HG--
extra : rebase_source : 869dfb9450224677a05ac8566056872e8ff82c82
2015-12-03 16:22:34 -08:00
Ehsan Akhgari 1f26ea8aca Bug 1214305 - Part 10: Clean up global DataStorage references in the child process; r=keeler 2016-01-04 16:30:02 -05:00
ffxbld 67ff8ead96 No bug, Automated HPKP preload list update from host bld-linux64-spot-389 - a=hpkp-update 2016-01-02 04:05:33 -08:00
ffxbld 5b3f84c48b No bug, Automated HSTS preload list update from host bld-linux64-spot-389 - a=hsts-update 2016-01-02 04:05:31 -08:00
Chris Peterson 4034ee65b8 Bug 1235308 - Fix -Wimplicit-fallthrough warnings in security/. r=keeler
security/certverifier/NSSCertDBTrustDomain.cpp:282:5 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
security/manager/ssl/nsNSSComponent.cpp:149:3 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
security/manager/ssl/nsSecureBrowserUIImpl.cpp:1406:5 [-Wimplicit-fallthrough] unannotated fall-through between switch labels
2015-12-25 00:03:35 -07:00
ffxbld eb1ef42d57 No bug, Automated HPKP preload list update from host bld-linux64-spot-593 - a=hpkp-update 2015-12-26 04:05:29 -08:00
ffxbld 3af3c75cc9 No bug, Automated HSTS preload list update from host bld-linux64-spot-593 - a=hsts-update 2015-12-26 04:05:27 -08:00
Mike Hommey d7478b6b1e Bug 1234955 - Make TEST_DIRS a SPECIAL_VARIABLE. r=gps
Using TEST_DIRS is nothing more than a shortcut for

if CONFIG['ENABLE_TESTS']:
    DIRS += [...]

As such, we might as well remove it being a separate variable, and use some
Context magic to just fill DIRS when ENABLE_TESTS is set.

The security/manager/ssl/tests/unit/moz.build change ensures that the order
of DIRS before the change is kept, not because it matters, but because it
allows to confirm that nothing else is modified by this change.
2015-12-24 13:12:49 +09:00
Nathan Froyd 2c2f66f499 Bug 1232454 - use UniquePtr<T[]> instead of nsAutoArrayPtr<T> in security/apps/; r=keeler
As a nice side effect, we also fix a (rare) memory leak in
AppTrustDomain::SetTrustedRoot.
2015-12-06 08:06:03 -05:00
Wes Kocher b71c3763d0 Backed out changeset f103fd636405 (bug 1232582) for b2g debug xpcshell failures in test_name_constraints.js 2015-12-21 11:01:22 -08:00
Carsten "Tomcat" Book 537c84d51c Merge mozilla-central to mozilla-inbound 2015-12-21 11:54:26 +01:00
ffxbld 0349798a7f No bug, Automated HPKP preload list update from host bld-linux64-spot-573 - a=hpkp-update 2015-12-19 04:09:26 -08:00
ffxbld beab6972e5 No bug, Automated HSTS preload list update from host bld-linux64-spot-573 - a=hsts-update 2015-12-19 04:09:24 -08:00
Cykesiopka 20d4ccd20d Bug 1232582 - Sort PSM xpcshell.ini and fix --tag psm to actually run all tests. r=dkeeler
--HG--
extra : transplant_source : X%02%F1%9Cq%90%8B%0D%04K%C1%1E%A0%BB%F5%7D%2Bs%1BQ
2015-12-17 07:55:54 -08:00
Cykesiopka 05919374b8 Bug 1229284 - Remove support for SHA-1 hashes in genHPKPStaticPins.js. r=keeler 2015-12-17 07:52:00 +01:00
David Keeler cf2300da93 bug 1230994 - December 2015 batch of EV root CA changes r=mgoodwin
Adds:
  bug 1193480:
    CN=Certification Authority of WoSign G2,O=WoSign CA Limited,C=CN
    CN=CA WoSign ECC Root,O=WoSign CA Limited,C=CN
  bug 1147675:
    CN=TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6,O=TÜRKTRUST Bilgi İletişim ve Bilişim Güvenliği Hizmetleri A...,L=Ankara,C=TR
  bug 1230985:
    OU=Security Communication RootCA2,O="SECOM Trust Systems CO.,LTD.",C=JP
  bug 1213044:
    CN=OISTE WISeKey Global Root GB CA,OU=OISTE Foundation Endorsed,O=WISeKey,C=CH
2015-12-14 14:44:44 -08:00
Carsten "Tomcat" Book ee3a10a104 Merge mozilla-central to mozilla-inbound 2015-12-16 12:03:47 +01:00
Nick Alexander 151142df55 Bug 1227248 - Part 2: Add GeneratedTest{Certificate,Key} mozbuild templates. r=gps
--HG--
extra : commitid : 793A1duvlom
extra : rebase_source : 5a8fa9f0fb76dceb19525986381cb2a28676601b
extra : histedit_source : aebc6e99e83aaafba08626517850ff4ee23e4c82
2015-12-14 11:50:56 -08:00
Jed Davis 48de284e31 Bug 1222500 - Handle unexpected thread creation better on desktop Linux. r=gdestuynder 2015-11-30 18:21:00 +01:00
Masatoshi Kimura 4bd144165f Bug 1224875 - Enable TLS extended master secret. r=keeler 2015-12-13 12:09:18 +09:00
ffxbld d729dd725a No bug, Automated HPKP preload list update from host bld-linux64-spot-1077 - a=hpkp-update 2015-12-12 04:08:02 -08:00
ffxbld 28f9941a1a No bug, Automated HSTS preload list update from host bld-linux64-spot-1077 - a=hsts-update 2015-12-12 04:08:00 -08:00
Magnus Melin b3dba24f5a Bug 1200567 - ensure shipped blocklist.xml doesn't affect the test_cert_blocklist.js. r=dkeeler
Caused comm-central TEST-UNEXPECTED-FAIL | security/manager/ssl/tests/unit/test_cert_blocklist.js | - revocations.txt should be as expected
2015-12-10 19:08:09 +02:00
Ryan VanderMeulen ec5f2e23e7 Merge m-c to inbound. a=merge
--HG--
rename : browser/.eslintrc => storage/.eslintrc
rename : devtools/.eslintrc => toolkit/components/extensions/.eslintrc
extra : rebase_source : 5b2d39a455c81a001bd26e7bc85e7fbacdb79171
2015-12-05 15:27:33 -05:00
Ryan VanderMeulen 289a16635a Merge fx-team to m-c. a=merge 2015-12-05 15:09:41 -05:00
ffxbld 4dd525a926 No bug, Automated HPKP preload list update from host bld-linux64-spot-049 - a=hpkp-update 2015-12-05 04:05:19 -08:00
ffxbld d2a4d282da No bug, Automated HSTS preload list update from host bld-linux64-spot-049 - a=hsts-update 2015-12-05 04:05:17 -08:00
Panos Astithas 92b2551106 Bug 1207146 - Add a link to expert technical information in the cert error page. r=Gijs,keeler 2015-12-04 19:46:13 +02:00
Bob Owen 05eb71c3a0 Bug 1229804: Use the correct string length in Windows sandbox logging. r=tabraldes 2015-12-03 11:19:14 +00:00
Carsten "Tomcat" Book df451fe7b0 merge mozilla-inbound to mozilla-central a=merge 2015-12-03 12:00:42 +01:00
ffxbld d661411aa5 No bug, Automated HPKP preload list update from host bld-linux64-spot-369 - a=hpkp-update 2015-12-02 14:59:16 -08:00
ffxbld eb8afa37f2 No bug, Automated HSTS preload list update from host bld-linux64-spot-369 - a=hsts-update 2015-12-02 14:59:14 -08:00
Mike Hommey 4005d567f9 Bug 1225682 - Don't use nsAuto{,C}String as class member variables in security/manager/. r=keeler 2015-12-02 11:04:37 +09:00
Xidorn Quan fb855297f6 Bug 1229587 part 2 - Use verbose format to disable C4061 to workaround bug of VS2015u1. r=keeler
--HG--
extra : source : 96b812b70961a22ae01a377eb9aaaf405ed13349
2015-12-03 09:29:42 +11:00
Xidorn Quan 8cd346c251 Bug 1229587 part 1 - Disable C4464 warning newly added in VS2015u1. r=keeler
--HG--
extra : source : 1c79d789b2de950e8024d857f9315ea362141969
2015-12-03 09:29:42 +11:00
Cykesiopka cb705a63a6 Bug 1224968 - Support public key input to unbreak periodic HPKP updates. r=keeler
be448badb1%5E!/#F0 switched SHA1 hashes to public keys for static pins. This broke genHPKPStaticPins.js and thus periodic HPKP updates, since the file doesn't handle public keys.

The changes here mostly mirror ba1f296240.
2015-12-01 00:30:00 +01:00
Cykesiopka ee7d82a508 Bug 1228794 - Convert test_getchain.js to generate certificates at build time. r=keeler
With this change, CertUtils.py is no longer needed.

--HG--
extra : rebase_source : 2e7c7f82c17fd44d97fc68f657f3c313f4b4d125
2015-12-01 00:28:00 +01:00
Bogdan Postelnicu d61cdc0082 Bug 1228346 - initialize mOCSPMustStapleEnabled in constructor. r=dkeeler
--HG--
extra : rebase_source : be8c14f84b53f6e546ff242b40208ec3a1f1be03
2015-11-26 07:40:00 +01:00
David Keeler a328c0c4e8 bug 986956 - only ever initialize NSS once per process r=Cykesiopka r=mgoodwin
As a consequence, if NSS is initialized when there is no profile directory, NSS
will not persist changes. Other failures may occur (e.g. see bug 1216882).
2015-11-19 13:31:52 -08:00
Mark Goodwin 7c0ac05619 Bug 1227970 - Perform preference checks to allow OCSP Bypass for OneCRL via Kinto r=keeler
--HG--
extra : commitid : 5UjOTtwGffb
extra : rebase_source : 3ab4f4702056bde2fc6a1c4b22f5ed6abc59b918
2015-11-26 16:57:21 +00:00
Carsten "Tomcat" Book 4e4b15962c Merge mozilla-central to mozilla-inbound 2015-11-25 13:57:30 +01:00
Jonathan Hao 7882aa6f0e Bug 1225422 - Update the PrivilegedPackageRoot certificate. r=keeler 2015-11-19 15:08:05 +08:00
Julian Hector 4b2655c8d9 Bug 1215303 - Part 2 - automatically enable broker when in permissive mode r=jld 2015-11-13 12:29:47 +00:00
Julian Hector 46f56a1f0e Bug 1215303 - Part 1 - add permissive mode r=jld 2015-11-13 12:27:45 +00:00