Richard Barnes
|
d86025defe
|
Bug 1045973 - sec_error_extension_value_invalid: mozilla::pkix does not accept certificates with x509v3 extensions in x509v1 or x509v2 certificates
|
2014-09-22 14:22:02 -04:00 |
Brian Smith
|
c5500b85df
|
Bug 1065264: Use MOZILLA_PKIX_MAP_LIST to define mozilla::pkix::Result, r=keeler
--HG--
extra : rebase_source : a91f7ab118f802fed6441edf00a245fe90c8e506
|
2014-09-10 00:17:24 -07:00 |
|
Brian Smith
|
ddb8aedc17
|
Bug 1065173: Move more NSS dependencies to pkixtestnss.cpp, r=keeler
--HG--
extra : rebase_source : 205fa72506e175c0fe418c5428675e754a86c820
|
2014-09-08 20:41:53 -07:00 |
|
Brian Smith
|
d4a0b9e59c
|
Bug 1063031: Remove mozilla::pkix::test::NSSTest, r=keeler
--HG--
rename : security/pkix/test/gtest/nssgtest.cpp => security/pkix/test/gtest/pkixgtest.cpp
extra : rebase_source : 205faf2054134b3a7aecd55d53f73d19f2f86103
|
2014-08-31 20:42:28 -07:00 |
Camilo Viecco
|
9a1ec24aef
|
Bug 1067565 - Built-in pins expires decades later. r=keeler
|
2014-09-15 17:17:12 -07:00 |
|
Brian Smith
|
c857f8e0f4
|
Bug 1063013, Part 4: Move MapResultToName and MAP_LIST out of pkixnss.h/pkixnss.cpp, r=keeler
--HG--
rename : security/pkix/lib/pkixnss.cpp => security/pkix/lib/pkixresult.cpp
extra : rebase_source : 2fec0a279f7ef6acdd7ac8bf749190eef33df70d
|
2014-08-31 19:42:36 -07:00 |
|
Brian Smith
|
030872a85c
|
Bug 1063013, Part 3: Move dependencies on pkixnss to pkixtestnss, r=keeler
--HG--
rename : security/pkix/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestnss.cpp
extra : rebase_source : b22bd341a5c72ba87efcf23a4e048bba8adf1544
|
2014-08-31 19:16:26 -07:00 |
|
Brian Smith
|
18c10a4998
|
Bug 1063013, Part 2: Remove unnecessary pkixnss dependency from pkixocsp_CreateEncodedOCSPRequest, r=keeler
--HG--
rename : security/pkix/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestnss.cpp
extra : rebase_source : e91ec652edc54255cd29871c91550c3ee49438c5
|
2014-08-31 19:04:15 -07:00 |
|
Brian Smith
|
06a6c4e0be
|
Bug 1063013, Part 1: Remove pkixnss dependency from pkixtestutil.cpp, r=keeler
--HG--
rename : security/pkix/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestnss.cpp
extra : rebase_source : e55c2e0c73a59b84629d071a64d8597ec5cc56ae
|
2014-09-04 17:21:28 -07:00 |
|
Brian Smith
|
8dbcf66d66
|
Bug 1063006: Centralize direct use of NSS for crypto in the mozilla::pkix test suite, r=keeler
--HG--
rename : security/pkix/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestnss.cpp
extra : rebase_source : 93515d39abf91168fa86268f9b26f8c62d0d411e
|
2014-08-31 17:47:09 -07:00 |
|
Brian Smith
|
ba3ad3aa0e
|
Bug 1059924, Part 2: Test that the high tag number form is rejected, r=keeler
--HG--
extra : rebase_source : 66793ce13ed8635cd47051fc2c93651d6936614e
|
2014-08-21 15:48:40 -07:00 |
|
Brian Smith
|
a37dba0312
|
Bug 1061483 follow-up: remove now-unused deleteCharArray function, r=me, a=bustage
--HG--
extra : rebase_source : 63d509bd7b95681227d27a733260bc33b1a22338
|
2014-09-04 15:53:07 -07:00 |
|
Brian Smith
|
418571330e
|
Bug 1061483: Remove dependency on NSPR's PR_smprintf, r=cviecco
--HG--
extra : rebase_source : 64e2f862456e8e1434814631b0a7b461d83de37a
|
2014-08-31 22:03:22 -07:00 |
|
Brian Smith
|
4170cfe622
|
Bug 1061021, Part 17: Use now-unused PLArenaPool infrastructure, r=keeler
--HG--
extra : rebase_source : b6f241d33cefd3b14c585e806e9c920ec6844fce
|
2014-08-30 23:30:20 -07:00 |
|
Brian Smith
|
6e2797899e
|
Bug 1061021, Part 16: Stop using PLArenaPool in pkixocsp_CreateEncodedOCSPRequest, r=keeler
--HG--
extra : rebase_source : 551d0c0e45d770c2218fb77874737fe23909d6c9
|
2014-08-30 23:27:15 -07:00 |
|
Brian Smith
|
26f076840d
|
Bug 1061021, Part 15: Stop using PLArenaPool in CreateEncodedOCSPResponse, r=keeler
--HG--
extra : rebase_source : 00c3f77cd1e7e0d81b0acac84631b81e4cac59bd
|
2014-09-01 19:23:01 -07:00 |
|
Brian Smith
|
1966d956d1
|
Bug 1061021, Part 14: Stop using PLArenaPool in CreateEncodedCertificate, r=keeler
--HG--
extra : rebase_source : 46c292a31fbc4bb7242c93d0d47479600f379323
|
2014-08-30 23:09:18 -07:00 |
|
Brian Smith
|
c7a8deb8a0
|
Bug 1061021, Part 13: Remove Output class, r=keeler
--HG--
extra : rebase_source : 9d768451f2f1d6ad0db3cb75401494d6409fd818
|
2014-08-30 20:47:58 -07:00 |
|
Brian Smith
|
5419f381e4
|
Bug 1061021, Part 12: Stop using PLArenaPool for ResponseData encoding, r=keeler
--HG--
extra : rebase_source : 745ae45d9dd0509973d8e5c50a8cc2dfae82295f
|
2014-08-30 20:42:19 -07:00 |
|
Brian Smith
|
c697d86d9d
|
Bug 1061021, Part 11: Stop using PLArenaPool for TBSCertificate and SignedData encoding, r=keeler
--HG--
extra : rebase_source : 09b06f79b57247dd89919ede12baabcb09dbeb19
|
2014-08-30 19:55:52 -07:00 |
|
Brian Smith
|
dedfff0a81
|
Bug 1061021, Part 10: Stop using PLArenaPool for extension encoding, r=keeler
--HG--
extra : rebase_source : 02b6dcc97204c04ec35b214ea2ce4b9297c78612
|
2014-08-30 19:16:24 -07:00 |
|
Brian Smith
|
d1e3997695
|
Bug 1061021, Part 9: Stop using PLArenaPool for SingleResponse encoding, r=keeler
--HG--
extra : rebase_source : a39a5dfec9b7aaa43ee2cffc15021bb404ada1ca
|
2014-08-30 18:00:02 -07:00 |
|
Brian Smith
|
a67503eadb
|
Bug 1061021, Part 8: Stop using PLArenaPool for CertID encoding, r=keeler
--HG--
extra : rebase_source : 236902fb9eb330444e4cfc4ad380646bc992e8a8
|
2014-08-30 17:47:22 -07:00 |
|
Brian Smith
|
24aa747308
|
Bug 1061021, Part 7: Stop using PLArenaPool for SignedData encoding, r=keeler
--HG--
extra : rebase_source : de654a47d7421d2c14bba9db1686bc01a2f1edf8
|
2014-08-30 17:40:41 -07:00 |
|
Brian Smith
|
653ade1f65
|
Bug 1061021, Part 6: Stop using PLArenaPool for boolean encoding, r=keeler
--HG--
extra : rebase_source : 557eef72848af7dd70eddb4983de25e2e50da5f3
|
2014-08-30 17:00:16 -07:00 |
|
Brian Smith
|
3c92292236
|
Bug 1061021, Part 5: Remove InitInputFromSECItem, r=keeler
--HG--
extra : rebase_source : 353ad008af15700266226b6f3f535385cb182d09
|
2014-08-30 16:49:49 -07:00 |
|
Brian Smith
|
61df71edb6
|
Bug 1061021, Part 4: Stop using PLArenaPool for time encoding, r=keeler
--HG--
extra : rebase_source : ed41c22713cc75ce238923c00a5abda48f142e57
|
2014-08-30 16:33:47 -07:00 |
|
Brian Smith
|
314958b44f
|
Bug 1061021, Part 3: Stop using PLArenaPool for BitString encoding, r=keeler
--HG--
extra : rebase_source : 79c9c2dd4844e67f0922c32e47bcc3e360fb32d5
|
2014-08-30 16:15:11 -07:00 |
|
Brian Smith
|
f854a1e2f2
|
Bug 1061021, Part 2: Stop using NSS to encode integers and serial number, r=keeler
--HG--
extra : rebase_source : cebea2b16ac81278a1453a5fb58fe75e90e22742
|
2014-08-30 16:07:16 -07:00 |
|
Brian Smith
|
8b26ecac0b
|
Bug 1061021, Part 1: Stop using NSS to encode names in tests, r=keeler
--HG--
extra : rebase_source : 1fa1826fe356314e80784915e08d5a787bf2259f
|
2014-08-30 23:11:23 -07:00 |
|
Brian Smith
|
a6be0bc849
|
Bug 1059924, Part 1: Centralize tag and length decoding in mozilla::pkix's DER decoder, r=keeler
--HG--
extra : rebase_source : 6702a599f07cf83deac832eab0712dc716ea2561
|
2014-09-02 22:03:30 -07:00 |
|
Brian Smith
|
a891fc79d8
|
Bug 1059928: Remove SECOidTag from mozilla::pkix testsuite interface, r=keeler
--HG--
extra : rebase_source : 79d0d3031a9176d492730f374cea3b5f035086e1
|
2014-08-29 16:06:38 -07:00 |
David Keeler
|
a250e4de47
|
bug 1057123 - mozilla::pkix: allow end-entity certificates to assert keyCertSign in some cases r=briansmith
|
2014-09-03 10:12:55 -07:00 |
Mike Hommey
|
ed70c5f377
|
Bug 1041941 - Use templates for programs, simple programs, libraries and C++ unit tests. r=gps
|
2014-09-03 14:10:54 +09:00 |
Ehsan Akhgari
|
aafc47e9e9
|
Bug 1060975 - Fix bad implicit constructors in security; r=bsmith
|
2014-08-31 19:26:27 -04:00 |
|
Camilo Viecco
|
7b968ad142
|
Bug 1039166 - Fix intermittent gtest ASAN errors. r=dkeeler
|
2014-08-28 15:33:10 -07:00 |
|
Brian Smith
|
127e03fe0a
|
Bug 1059926: Give DottedOIDToCode.py the ability to generate more encodings, r=keeler
--HG--
extra : rebase_source : 8fabeb5802530789925ae47d1f1cc4b27e4bf899
extra : histedit_source : 1329e925ada56b29c9e05991b85b320d4ae0e3a3
|
2014-08-28 09:58:13 -07:00 |
|
Brian Smith
|
6452321116
|
Bug 1057793: Fix build warning on MSVC 2013, r=keeler
--HG--
extra : rebase_source : eb908d0f3d313991cab78d707c7f666ab9d9eaf5
extra : histedit_source : 3d69a511f82895d8b741960205e96488b4f2ebbb
|
2014-08-17 16:49:19 -07:00 |
|
Brian Smith
|
ede2da1dd5
|
Bug 1057791: Switch PR_ASSERT to assert in pkixcheck.cpp, r=keeler
--HG--
extra : rebase_source : a63e822eed9914046127c466f7e5c4f0e3e84361
extra : histedit_source : fc9d16f67cc349f5c7d3964c5dc58de1e5b9e986
|
2014-08-17 16:50:45 -07:00 |
|
Brian Smith
|
5846749954
|
Bug 1057790: Limit scope of CERTCertificate-related stuff to the scope it is used, r=keeler
--HG--
extra : rebase_source : 41b84cc08a928d0cdf57062d89f6d9495351437f
extra : histedit_source : bfbc35434d1318b6e6259bca72e6e1688842e5ad
|
2014-08-04 15:32:15 -07:00 |
|
Brian Smith
|
01f0b82f34
|
Bug 1053924: Remove dependencies on PRTime in mozilla::pkix's test code, r=keeler
--HG--
extra : rebase_source : deb2dcec5c56ef86d95df319b5a61165d9d761a7
|
2014-08-08 10:33:18 -07:00 |
Cykesiopka
|
bfd5ec525f
|
Bug 1052529 - Add missing l10n strings for mozilla::pkix errors. r=keeler
|
2014-08-26 00:03:00 +02:00 |
|
David Keeler
|
800c5b4b9f
|
bug 1009161 - mozilla::pkix: allow the Netscape certificate type extension if more standardized information is present r=briansmith
|
2014-08-25 09:25:36 -07:00 |
|
Camilo Viecco
|
a7b51fb02b
|
Bug 1047177 - Treat v4 certs as v3 certs (1/2). r=keeler.
--HG--
extra : rebase_source : 4cfb69672aa54274bb4ee850f23f0bbbe8e9e49f
|
2014-08-21 14:47:25 -07:00 |
|
Brian Smith
|
026854c3f0
|
Bug 1053627, Part 2: Use MOZILLA_PKIX_ARRAY_LENGTH instead of PR_ARRAY_SIZE, r=keeler
--HG--
extra : rebase_source : b9ae99d93921cb2f3a8f4395e9240389752fd2de
|
2014-08-13 21:01:35 -07:00 |
|
Brian Smith
|
edb0ac64e0
|
Bug 1053627, Part 1: use sizeof instead of PR_ARRAY_SIZE for byte arrays, r=keeler
--HG--
extra : rebase_source : a01364ed6b64800142f18d3d350f50ca178ea4bb
|
2014-08-04 19:21:52 -07:00 |
|
Brian Smith
|
5a78d0179b
|
Bug 1053621: Stop using PR_NOT_REACHED in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : b70a3ca2f3dade0439cf902bf4042716e7d1bbd3
|
2014-08-04 19:19:29 -07:00 |
|
Brian Smith
|
1709415e43
|
Bug 1053620: Replaces uses of PR_Abort with std::abort in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 2e1f3eec5305e89bfa28fbda856b4e36515a2819
|
2014-08-04 19:12:34 -07:00 |
|
Brian Smith
|
d08286d3d3
|
Bug 1053617: Reduce scope of DER encoding debugging logic to the file it is used in, r=keeler
--HG--
extra : rebase_source : c22f7e96dfdd1997626769ac03c6d189321eec1a
|
2014-08-04 19:07:26 -07:00 |
|
Brian Smith
|
9a2a60943d
|
Bug 1053616: Remove uses of PR_SetError from mozilla::pkix tests, r=keeler
--HG--
extra : rebase_source : 1fc7ce9ab400c39e3c4afb68940be93cc2a0b848
|
2014-08-13 17:50:42 -07:00 |
|
Cykesiopka
|
f4a67332e8
|
Bug 1052257 - Add and use error code specific to inadequate key sizes. r=keeler
|
2014-08-12 22:24:00 -04:00 |
|
Brian Smith
|
3e57ff4e5a
|
Bug 1048642, Part 3: Remove SECStatus GTest utilities, r=cviecco
--HG--
extra : rebase_source : f77202ad8d271604d7620cc5f704a51338c356ab
|
2014-08-03 22:45:05 -07:00 |
|
Brian Smith
|
065cf239b1
|
Bug 1048642, Part 2: Change GenerateKeyPair return type from SECStatus to Result, r=cviecco
--HG--
extra : rebase_source : 652277e952d224175ea57d4509124ff8180440cb
|
2014-08-04 10:59:21 -07:00 |
|
Brian Smith
|
4a58c8b13e
|
Bug 1048642, Part 1: Change TamperOnce return type from SECStatus to Result, r=cviecco
--HG--
extra : rebase_source : 1d2e8014153d8bfc6f9008dd9b6b9e4d5ac5dcb7
|
2014-08-03 22:49:10 -07:00 |
|
David Keeler
|
3d57f23fab
|
bug 1040446 - mozilla::pkix: add error code for CA cert used as end-entity cert r=briansmith
|
2014-08-11 12:35:45 -07:00 |
|
Brian Smith
|
9c4276d25b
|
Bug 1048070, Part 2: Remove uses of PR_NOT_REACHED and PR_ARRAY_SIZE in mozilla::pkix, r=keeeler
--HG--
extra : rebase_source : d373a7526c1048770bed8bacb7e14c8f10e832cb
|
2014-08-03 18:24:35 -07:00 |
|
Brian Smith
|
3f64294312
|
Bug 1048070, Part 1: Replace uses of PR_ASSERT in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 3f1dbb4babb6d575bde3088c92aeb6f28d689210
|
2014-08-02 09:17:59 -07:00 |
|
Brian Smith
|
ea0e98acf5
|
Bug 1042479: Accept the OIW sha1WithRSASignature OID, r=keeler
--HG--
extra : rebase_source : 98dfbf1b5130898604e86c54ad4a8453aa87bde4
|
2014-08-04 16:34:47 -07:00 |
|
David Keeler
|
bff07e5d42
|
bug 1047494 - refactor tautological size check in mozilla::pkix::VerifySignedData r=briansmith
|
2014-08-08 11:28:44 -07:00 |
|
Brian Smith
|
0ccaf0860c
|
Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler
--HG--
extra : rebase_source : 2cc39d3c322c1355aad003f2497659a091febac2
|
2014-08-02 08:49:12 -07:00 |
|
Brian Smith
|
de725ae5ef
|
Bug 1047792: Rely on mozilla::pkix to filter out expired certs instead of CERT_CreateSubjectCertList, r=keeler
--HG--
extra : rebase_source : 5182147037b69f0ac3c3cd060d6e2af71bfde2e7
|
2014-08-01 23:16:21 -07:00 |
|
Brian Smith
|
25a73829af
|
Bug 1041344: Refactor mozilla::pkix::CheckCertificatePolicies, r=cviecco
--HG--
extra : rebase_source : d40184b986e9c6ed44c0b39a485292a91f924f13
|
2014-07-19 18:51:10 -07:00 |
|
Brian Smith
|
18c07f1b91
|
Bug 1041186, Part 3: More renaming, r=keeler
--HG--
extra : rebase_source : e4d70240f25f566c3bde91d515739bf46853fe8d
|
2014-07-31 20:55:52 -07:00 |
|
Brian Smith
|
d77dac0580
|
Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler
--HG--
extra : rebase_source : bf57a9eb6ae5c122912e00a47156010e5ea99478
|
2014-07-31 12:17:31 -07:00 |
|
Brian Smith
|
ffe743ee06
|
Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 0f4a33f2c66594930ba9c79233648c70e33ba27c
|
2014-07-18 22:30:51 -07:00 |
|
Brian Smith
|
5f56fc60d6
|
Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco
--HG--
extra : rebase_source : d5c07dc29a95ccb75a7a8f199de26d43950b9ed4
|
2014-07-20 11:06:26 -07:00 |
|
Brian Smith
|
a95b2088a5
|
Bug 1039601: Use bounds-checked DERArray instead of plain arrays in pkixocsp.cpp, r=cviecco
--HG--
extra : rebase_source : cbe6257fc470069de0f7cb4f9f169550980a6b98
|
2014-07-16 09:54:10 -07:00 |
|
Brian Smith
|
c45dc156d1
|
Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler
--HG--
extra : rebase_source : 4f3e41916cd7e2c74679d468eeeb702af3321532
|
2014-07-18 11:48:49 -07:00 |
|
Mike Hommey
|
622bf09730
|
Bug 1041864 - Remove LIBRARY_NAMEs that aren't used. r=mshal
|
2014-07-23 08:39:56 +09:00 |
|
Cykesiopka
|
0289b45f0c
|
Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith
|
2014-07-15 19:49:00 -04:00 |
|
Brian Smith
|
8483b958ad
|
Bug 1038837: Factor out mozilla::pkix::Input into a separate header, r=mmc
--HG--
rename : security/pkix/lib/pkixder.h => security/pkix/include/pkix/Input.h
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : 09bac0a183932f721cdfd32936595867e4dc26ce
|
2014-07-13 13:17:36 -07:00 |
|
Brian Smith
|
96c220acca
|
Bug 1038828: Replace mozilla::pkix::der::Result with uses of mozilla::pkix::Result, r=mmc
--HG--
rename : security/pkix/lib/pkixutil.h => security/pkix/include/pkix/Result.h
extra : rebase_source : e385af4bab665627aa5d434db04830065cbc641f
|
2014-07-15 10:33:49 -07:00 |
|
Brian Smith
|
1c90cc26f0
|
Bug 916629, Part 4: Unit tests for trust of delegated OCSP responder certificates for mozilla::pkix, r=keeler
--HG--
extra : rebase_source : c473285add9faee9a876677404935bdc253832cb
|
2014-07-10 21:20:17 -07:00 |
|
Brian Smith
|
a60ce49776
|
Bug 916629, Part 3: Unit tests for OCSP responses signed by a delegated OCSP responder for mozilla::pkix, r=keeler
--HG--
extra : rebase_source : c2c78458aa674dcc1e1426a0efc81df19b73ac4f
|
2014-07-10 22:14:57 -07:00 |
|
Brian Smith
|
4df6195ea8
|
Bug 916629, Part 2: Unit tests for "successful" OCSP responses for mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 14633119755cbfd55fc3bfef9cf482de3d638b53
|
2014-07-15 10:09:26 -07:00 |
|
Brian Smith
|
d1fd17671c
|
Bug 916629, Part 1: Unit tests for OCSP responses without responseBytes, r=keeler
--HG--
extra : rebase_source : 62ef4209745ff8f2c5a852beb1a9823cbe7c7ff4
|
2014-07-14 23:09:36 -07:00 |
|
Brian Smith
|
17375cc8b3
|
Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : dd8dc1243ea2e37955a15f2481e1c452311e90d8
extra : histedit_source : adc1a2035d41c608d3f0ebe14bba159b2857502d
|
2014-07-06 19:36:05 -07:00 |
|
Brian Smith
|
beb502cd9f
|
Bug 1036107, Part 2: Test algorithm identifier parsing, r=keeler
--HG--
extra : rebase_source : c800d42856d81ba8cceaadde0caa98477b3008f4
extra : histedit_source : 71305fa34b435450525ae3a3e603aef065eaec14
|
2014-07-10 18:30:58 -07:00 |
|
Brian Smith
|
c162caba82
|
Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 94c49062ae3ddf755651f151e2d648543b10e1ad
extra : histedit_source : a7377bf1d9adb62e1c584e2adeb793aa074245fb
|
2014-07-10 19:00:32 -07:00 |
|
Brian Smith
|
b14f27897b
|
Bug 1037324: Delegate additional name constraint selection to the TrustDomain in mozilla::pkix, r=cviecco
--HG--
extra : rebase_source : 300f33bfb3a0c9ae1525695b080674c1fb21eafc
|
2014-07-10 22:38:59 -07:00 |
|
Brian Smith
|
94e53dc0be
|
Bug 1035942: Decide whether to consider end-entity CN as a dnsName in CheckNameConstraints instead of in BuildCertChain, r=cviecco
--HG--
extra : rebase_source : 19c5949253e4e631b0bd841f17f000885001b327
extra : histedit_source : dce57eb862a2a13d07d11fdf6917afcf6cb4136c
|
2014-07-08 13:04:17 -07:00 |
|
Brian Smith
|
3f110246be
|
Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler
--HG--
extra : rebase_source : fc2b39e5e2b44fea365914e83a7d1f2dc9b784bc
extra : histedit_source : b40e5e8cb106fe87f6f065b01ca43adb0bf3a605
|
2014-07-06 15:55:38 -07:00 |
|
Camilo Viecco
|
867a197ca1
|
Bug 1030204 - 1/2 Name constraint ANSSI(DCISS) Root cert in mozilla::pkix. r=keeler
--HG--
extra : rebase_source : 221ca75af601649731bf83cace2e6b0edcd4b2ab
|
2014-07-08 16:16:26 -07:00 |
Chris Peterson
|
b200e46a0e
|
Bug 1035607 - Remove unused empty_null to fix -Wunused warning-as-error in security/pkix. r=briansmith
|
2014-07-07 20:37:21 -07:00 |
|
Brian Smith
|
7d7bb101fa
|
Bug 1035470: Use signature algorithm OID instead of digest algorithm OID in the signature field of certificates in mozilla::pkix tests, r=cviecco
--HG--
extra : rebase_source : 99b1d5c0739221e90d4b04738f9362135f42a23c
|
2014-07-07 00:46:10 -07:00 |
|
Brian Smith
|
416e15c804
|
Bug 1035008, Part 2: Modify existing mozilla::pkix GTests to follow naming conventions, r=mmc
--HG--
rename : security/pkix/test/gtest/pkix_cert_chain_length_tests.cpp => security/pkix/test/gtest/pkixbuild_tests.cpp
rename : security/pkix/test/gtest/pkix_cert_extension_tests.cpp => security/pkix/test/gtest/pkixcert_extension_tests.cpp
rename : security/pkix/test/gtest/pkix_ocsp_request_tests.cpp => security/pkix/test/gtest/pkixocsp_CreateEncodedOCSPRequest_tests.cpp
extra : rebase_source : 05035197c37cd2fecf0c6e2f5231eeabfd4f64fd
extra : histedit_source : db050cf69b025e34e992a68b8b57665608c6a3d9
|
2014-07-05 22:14:25 -07:00 |
|
Brian Smith
|
2a32961e87
|
Bug 1035008, Part 1: Document naming convention for mozilla::pkix GTests, r=mmc
--HG--
extra : rebase_source : 8239f56513d8aba59eb8851bd219295fb6920b64
extra : histedit_source : 90856c24e66c7cc451c65cfd72a005cb2949085a
|
2014-07-06 15:59:08 -07:00 |
|
Brian Smith
|
783ead1861
|
Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc
--HG--
extra : rebase_source : 68e6da2f1e1c7fa678ef4cc81d23cc6298709108
extra : histedit_source : feba4c589dbf004ee50e2dea1fca0809f8f97674
|
2014-07-03 21:49:56 -07:00 |
|
Brian Smith
|
f5ec8594e7
|
Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler
--HG--
extra : rebase_source : e8c734ecb2de2c52dd8909c8b48f4bdb09d0128e
|
2014-07-02 16:15:16 -07:00 |
|
Brian Smith
|
4c63d2fa78
|
Bug 1033563, Part 2: Convert mozilla::pkix::BuildForwardInner into an iterator-type thing, r=keeler
--HG--
extra : rebase_source : 175e308191441035db4f3eed4a855205bab1a3f3
|
2014-07-02 15:03:58 -07:00 |
|
Brian Smith
|
172778c87b
|
Bug 1033563, Part 1: Move revocation checking code from mozilla::pkix::BuildForward to BuildForwardInner, r=keeler
--HG--
extra : rebase_source : 0f11eb64ffb00d953c39d81f4877067bd173eadd
|
2014-07-02 12:21:41 -07:00 |
|
Brian Smith
|
89e560be23
|
Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler
--HG--
extra : rebase_source : e093922497d005734c590a59f175993a7715bce8
|
2014-07-03 16:59:42 -07:00 |
|
Brian Smith
|
e614192751
|
Bug 1029247, Part 1: Add new overload to mozilla::pkix::bind, r=keeler
--HG--
extra : rebase_source : 7a9dc499ed6ad038e4840953744a9fcd6578290b
|
2014-06-21 18:06:30 -07:00 |
|
Brian Smith
|
d4e1dc58f6
|
Bug 1034632: Fix suppression of warnings for MOZILLA_PKIX_ENUM_CLASS, r=mmc
--HG--
extra : rebase_source : 962fa75dab803f1d139096fa5d41b4b656e32f86
|
2014-07-03 20:41:07 -07:00 |
|
Brian Smith
|
b8878b14f6
|
Bug 1034412: Clarify definition of mozilla::pkix::der::SEQUENCE, r=mmc
--HG--
extra : rebase_source : 3e139a66133c1d7916fbc13c7cec2b12e9545122
|
2014-06-30 21:58:34 -07:00 |
|
Brian Smith
|
c74e0b81e0
|
Bug 1019770: Add tests for checking of notAfter and notBefore, r=cviecco
--HG--
extra : rebase_source : 614e002886ffa73e7e38218ebb3ea2509edcd1a4
|
2014-06-30 19:12:35 -07:00 |
|
Brian Smith
|
493ba137ec
|
Bug 1033103: Add and use mozilla::pkix::der::ExpectTagAndGetTLV, r=keeler
--HG--
extra : rebase_source : 16461be12705998799f5c84e2043d68b0c431cb0
|
2014-07-01 13:25:43 -07:00 |
|
Brian Smith
|
b5b2484458
|
Bug 1033092: Add unit tests for mozilla::pkix::der::ExpectTagAndGetValue, r=keeler
--HG--
extra : rebase_source : 8ad8960969e5ee5bf47054f1c285a85cbbdb18cf
|
2014-07-01 16:28:45 -07:00 |
|
David Keeler
|
80e2e520b3
|
bug 1019770 - follow-up to remove unused const GENERALIZED_TIME_LENGTH r=briansmith
|
2014-07-02 10:04:31 -07:00 |
|
Brian Smith
|
4fdd6599dc
|
Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler
--HG--
extra : rebase_source : d0bf802f4ff3fe9900ed7444c046617aa27faea9
|
2014-06-26 14:22:20 -07:00 |
|
Brian Smith
|
4036ffd34b
|
Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco
--HG--
extra : rebase_source : f38fd90973b4bdf2cff5887c7d48f7e7b2a7126b
|
2014-07-01 18:01:28 -07:00 |
|
Brian Smith
|
c849dbb035
|
Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco
--HG--
extra : rebase_source : fe0b6f06a374dd1e50233c352031e6fdbde1c5f9
|
2014-06-24 10:51:53 -07:00 |
|
Brian Smith
|
fb1fde93b7
|
Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco
--HG--
extra : rebase_source : 2b1fa83599c4d0748757b25b56f65e10d41504c8
|
2014-06-24 21:48:12 -07:00 |
Wes Kocher
|
a2eaaf7841
|
Backed out changeset 5ea9b7bd2db5 (bug 1019770)
|
2014-07-01 17:43:47 -07:00 |
|
Wes Kocher
|
23fbb8d92d
|
Backed out changeset 981f8345edd8 (bug 1019770)
|
2014-07-01 17:43:43 -07:00 |
|
Wes Kocher
|
a1c6a7db77
|
Backed out changeset 91b03a644dbe (bug 1019770)
|
2014-07-01 17:43:38 -07:00 |
|
Wes Kocher
|
ea7141a1d8
|
Backed out changeset f97578949399 (bug 1032947)
|
2014-07-01 17:43:33 -07:00 |
|
Brian Smith
|
cd8fb3a537
|
Bug 1032947: Change CheckNameConstraints to construct CERTCertificate instances when needed, r=keeler
--HG--
extra : rebase_source : 64bd4c390f708213242e0d4987b7117b0049d02a
|
2014-06-26 14:22:20 -07:00 |
|
Brian Smith
|
41accdc485
|
Bug 1019770: Add more tests for parsing GeneralizedTime and TimeChoice, r=cviecco
--HG--
extra : rebase_source : 5e8171a2a849d61866ccdff33f06d96f04fc4bd5
|
2014-06-30 17:11:56 -07:00 |
|
Brian Smith
|
1b4e9f681c
|
Bug 1019770, Part 2: modify existing GeneralizedTime tests to test TimeChoice too, r=cviecco
--HG--
extra : rebase_source : 8c891cc5269482d1ccf4c1c688e5576a2b8864f8
|
2014-06-24 10:51:53 -07:00 |
|
Brian Smith
|
7f7734a4ba
|
Bug 1019770: Use mozilla::pkix::der to decode times and certificate validity period, r=cviecco
--HG--
extra : rebase_source : 05e348b4ae9bb88fdd0895ec5dcec55993ca17c4
|
2014-06-24 21:48:12 -07:00 |
|
Brian Smith
|
af3daeff63
|
Bug 1031542: Add test case for key usage without any value bits, r=keeler
--HG--
extra : rebase_source : 25bdc0db6b042fe6fbba61b80cb8a4ac7cb588eb
|
2014-06-27 15:21:48 -07:00 |
|
Brian Smith
|
a1d6f81702
|
Bug 1030475: Use a valid id-ce-inhibitAnyPolicy extension value for test pkix_cert_extensions.KnownCriticalCEExtension, r=keeler
--HG--
extra : rebase_source : 34972b2842d65ad6d716b0fbccf4984f9efd1fbf
|
2014-06-25 17:14:32 -07:00 |
|
Brian Smith
|
a73a0dc5d2
|
Bug 1030478: Make the AIA extension used in pkix_cert_extensions.CriticalAIAExtension less invalid, r=keeler
--HG--
extra : rebase_source : 42241cb4c8d2ba4e3e0ccc937059f9510765314b
|
2014-06-25 16:42:50 -07:00 |
|
Brian Smith
|
fcdcfb823b
|
Bug 1031022: Go back to accepting explicit encoding of v1 for certificates and OCSP responses, r=cviecco
--HG--
extra : rebase_source : f0adf63879a48db6c036cce1a3e9a7b65e44fc4e
|
2014-06-26 17:03:48 -07:00 |
|
Brian Smith
|
f97af56e30
|
Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler
--HG--
extra : rebase_source : a1d66b75838e9dfad486f5654db6d977e5c1d97a
extra : histedit_source : 34e05d8b3d94500b9cb4f1e311f8fe526b97ba6e
|
2014-06-24 21:52:50 -07:00 |
|
Brian Smith
|
73c952f2fb
|
Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco
--HG--
extra : rebase_source : 7e91710ed7cd6e68875c2d26f0b503835968e1f2
extra : histedit_source : e07446cad5edbf6cbb048304bc2b2af4395410db
|
2014-06-25 01:32:06 -07:00 |
|
Brian Smith
|
e88af673ae
|
Bug 1029992, Improve AlgorithmIdentifier decoding in mozilla::pkix, r=cviecco
--HG--
extra : rebase_source : dec7d3e00afe3a9e433f789baf09c0c41679b0e2
extra : histedit_source : 47657cfde7a266b5d5322b024800abe316e9dbd6
|
2014-06-24 21:47:50 -07:00 |
Carsten "Tomcat" Book
|
ec63c69c72
|
Backed out changeset 4f21e9bc729a (bug 1029364) for B2G Device and Emulator Bustage on a CLOSED TREE
|
2014-06-25 10:01:17 +02:00 |
|
Carsten "Tomcat" Book
|
a198d5204e
|
Backed out changeset a10da316a35f (bug 1029341)
|
2014-06-25 10:00:42 +02:00 |
|
Brian Smith
|
abcf9d2012
|
Bug 1029341: Factor out decoding of certificate/OCSP extensions, r=keeler
--HG--
extra : rebase_source : e307bea95d29cf78c9eaa7ddb1f2b2c195a59dc9
|
2014-06-24 21:52:50 -07:00 |
|
Brian Smith
|
f9aac2f45e
|
Bug 1029364: Centralize version parsing in BackCert::Init, r=cviecco
--HG--
extra : rebase_source : 79d5f29c2af1ec77d6bb8a7936bb0a17f28e8d52
|
2014-06-19 16:17:28 -07:00 |
|
Brian Smith
|
ca4f473450
|
Bug 1026261: Remove CERTCertificate from mozilla::pkix revocation checking API, r=keeler
--HG--
extra : rebase_source : 6798f494bd351961ea02abba07b5860839bbc418
|
2014-06-20 10:10:51 -07:00 |
|
David Keeler
|
c13f6d39c7
|
bug 997509 - heed expired Revoked or Unknown OCSP responses r=briansmith
|
2014-06-20 09:01:57 -07:00 |
|
Brian Smith
|
b76e937c55
|
Bug 1006812: Use mozilla::pkix::der to decode the key usage extension, r=keeler
--HG--
extra : rebase_source : e445c913994dc027e1179543d7b6cab2505e734d
|
2014-06-19 00:13:20 -07:00 |
|
Brian Smith
|
2858e7b2a9
|
Bug 1027255: Add ASSERT_/EXPECT_ GTest helpers for mozilla::pkix::Result, r=mmc
--HG--
extra : rebase_source : 2fb8807724ba59028ec32e8d287296a905bd3615
|
2014-06-18 23:40:34 -07:00 |
|
Brian Smith
|
d779fddb49
|
Bug 1022970: Switch from UNIFIED_SOURCES back to SOURCES in security/pkix, security/certverifier, and security/manager/ssl/src, r=keeler
--HG--
extra : rebase_source : 7d45d018be6b23af199c1e9c858fb5bb3bb5a01b
|
2014-06-16 22:57:55 -07:00 |
|
Camilo Viecco
|
a8ba8291e3
|
Bug 998513 - Test GeneralizedTime encodings in mozilla::pkix. r=keeler.
|
2014-06-13 12:50:11 -07:00 |
|
David Keeler
|
8bf1ded425
|
bug 1020993 - properly handle unknown critical extensions in BackCert::Init r=briansmith
|
2014-06-09 13:57:44 -07:00 |
|
Camilo Viecco
|
ec7f60ff2a
|
Bug 1021797 - Rename ArenaFalseCleaner to PORT_FreeArena_false. r=keeler
--HG--
extra : rebase_source : e7316ee06f58f42afbaf68d7e5f7948277fd15fd
|
2014-06-06 14:11:08 -07:00 |
|
Brian Smith
|
8b0f8d773d
|
Bug 1020683, Part 3: Fix build bustage, a=BUSTAGE on a CLOSED TREE
--HG--
extra : rebase_source : 8eaa3eae911b0e75129988d58a19e5e76257b369
|
2014-06-06 12:04:36 -07:00 |
|
Brian Smith
|
e0cd7eb210
|
Bug 1020682: Simplify mozilla::pkix results cert chain construction and make it more efficient, r=cviecco
--HG--
extra : rebase_source : 69cb8ea66e075c89bbcbab3ca115cc2ccc95fa4f
|
2014-06-04 01:28:44 -07:00 |
|
Brian Smith
|
f9aa591c9a
|
Bug 1020683, Part 2: Remove more references to CERTCertificate from mozilla::pkix, r=keeler
--HG--
extra : rebase_source : 9dce7585975fb23fe04f5714ece18645b22b2261
|
2014-06-04 00:03:28 -07:00 |
|
Brian Smith
|
67bd0799fb
|
Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler
--HG--
extra : rebase_source : 416938498080c4d44874025f1da4562ab1c7c3c8
|
2014-06-05 15:18:32 -07:00 |
|
Brian Smith
|
86f062c18f
|
Bug 1018411: Factor out signed data parsing in mozilla::pkix into a reusable and separately-testable function, r=keeler
--HG--
extra : rebase_source : d65a760f9f8efb656f238794019bd451ca163c0b
|
2014-05-31 18:54:34 -07:00 |
|
Camilo Viecco
|
de303fb49e
|
Bug 1000548 - Leaking arenas allocated in mozilla::pkix r=keeler
--HG--
extra : rebase_source : 6b0aaef098a4fa4d5749013a332b6b7602640b36
|
2014-06-05 16:28:46 -07:00 |
|
Brian Smith
|
279c66a9b8
|
Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler
--HG--
extra : rebase_source : 9abf0522f02d00ac2f63f2327ddbe8d119ffc64f
|
2014-06-03 10:47:25 -07:00 |
|
Brian Smith
|
ecfed7ae84
|
Bug 1019109: Add DottedOIDToCode.py tool, r=keeler
--HG--
extra : rebase_source : 44a92234f884af4500bc6eb5a1fc4dd4cfd38dc2
|
2014-06-02 10:50:04 -07:00 |
|
Brian Smith
|
d7a28e81d0
|
Bug 1018633: Simplify the max cert chain length check code in mozilla::pkix and make it more efficient, r=cviecco
--HG--
extra : rebase_source : 7fa4cc6c1b46357abed0c57c6e24c622049c5acb
|
2014-05-31 16:32:58 -07:00 |
|
Brian Smith
|
151ad4b5a6
|
Bug 1001188: Set the error code when the max cert chain length limit is exceeded, r=cviecco
--HG--
extra : rebase_source : ce9e1faa083f5c679e20a2b6d9e8d482462e75b0
|
2014-05-31 16:55:54 -07:00 |
|
Brian Smith
|
e508e0ac8a
|
Bug 1018642: Factor out reusable NSS GTest infrastructure into a new NSSTest class, r=cviecco
--HG--
extra : rebase_source : 101c316c1ea54f5092a21af4d7a1be349c504800
|
2014-05-30 16:46:49 -07:00 |
|
Brian Smith
|
efadae2e83
|
Bug 1018064: Replace mozilla::pkix::der::Input::Match with mozilla::pkix::der::Input::MatchRest, r=mmc
--HG--
extra : rebase_source : 5c5b14cf23b1e40854d241cbc482de40b01ac494
|
2014-05-29 22:09:45 -07:00 |
|
Brian Smith
|
4c65ffea41
|
Bug 1018061: Have mozilla::pkix::der::Input::Read use EnsureLength instead of its own checks, r=mmc
--HG--
extra : rebase_source : f46d6b9bdcd7d7a272fb39f22312a89d2695db56
|
2014-05-29 23:36:30 -07:00 |
|
Camilo Viecco
|
5bce267045
|
Bug 991815 - Part 1/2 - Allow intermediate OCSP responses up to 1 year old. r=keeler
--HG--
extra : rebase_source : 28d5336da1dc44932b92ce2c59fca5fcb2b8a3d8
|
2014-05-30 16:12:36 -07:00 |
|
Brian Smith
|
3b00a198b6
|
Bug 1018033: Prevent buffer read overflow due to integer overflow in mozilla::pkix::der::Input::EnsureLength, r=keeler
--HG--
extra : rebase_source : e4e88d61e448fa475a106a06b9f32181906fba0f
|
2014-05-29 23:37:40 -07:00 |
|
Brian Smith
|
30d9839f83
|
Bug 1018041: Fix linking error in pkix_ocsp_request_tests when GTest is enabled on Windows, r=keeler
--HG--
extra : rebase_source : 36c5ee4f5cc40adb1079e34bd309147a662fc45f
|
2014-05-29 23:06:10 -07:00 |
|
Chris Peterson
|
84e89d2fa5
|
Bug 1007708 - Part 1: Fix warnings in security/pkix/test/ and mark as FAIL_ON_WARNINGS. r=briansmith
|
2014-05-17 20:12:10 -07:00 |
|
David Keeler
|
cc40dbbc9d
|
bug 986150 - fix some comments in mozilla::pkix DER tests r=mmc
|
2014-05-19 12:14:51 -07:00 |
|
David Keeler
|
3a148b5121
|
bug 986150 - test mozilla::pkix::der::OptionalBoolean r=mmc
|
2014-05-19 12:14:44 -07:00 |
|
David Keeler
|
c7191763ea
|
bug 1002814 - OCSP requests: long serial check should be on cert, not issuerCert r=briansmith
|
2014-05-14 10:05:32 -07:00 |
|
David Keeler
|
1793f7acdc
|
bug 1002814 - retry PK11_GenerateKeyPair when it fails non-fatally r=briansmith
|
2014-05-19 11:13:04 -07:00 |
|
Brian Smith
|
2912321bc5
|
Bug 1006958: Use mozilla::pkix::der to parse certificate policies instead of NSS, r=keeler
--HG--
extra : rebase_source : fde88efebc1025bc4f825aa38df809d04b1b250a
|
2014-05-15 18:59:52 -07:00 |
|
Brian Smith
|
f834909bb0
|
Bug 1010581: Document Expect/Match/Skip terminology in mozilla::pkix::der and make that code more consistent, r=keeler
--HG--
extra : rebase_source : 12aa2e1e9eed4f32a75732a65cbfaba9789d5d39
|
2014-05-14 19:30:09 -07:00 |
|
Brian Smith
|
077fb4cfcf
|
Bug 1006041: Use mozilla::pkix::der for decoding the extended key usage extension, r=keeler
--HG--
extra : rebase_source : b4b62f117d653784eb6ad058554faf520a1bd90b
|
2014-05-14 01:02:34 -07:00 |
|
Brian Smith
|
921579aca0
|
Bug 989564, Part 2: Remove CERTCertificate dependency from CheckBasicConstraints, r=keeler
--HG--
extra : rebase_source : c0ce62f44109cbcdf65da770a1154814733a6b49
|
2014-04-25 20:27:27 -07:00 |
|
Brian Smith
|
33238b8f26
|
Bug 989564, Part 1: Decode basic constraints extension using mozilla::pkix::der, r=keeler
--HG--
extra : rebase_source : 89560218a69596868cb8a93c69ee72656b0abf77
|
2014-05-05 09:55:57 -07:00 |
Gervase Markham
|
a28ceb8833
|
Bug 1007195 - Change licensing on mozilla::pkix to dual Apache 2/MPL 2. r=briansmith.
|
2014-05-14 14:37:25 +01:00 |
Jacek Caban
|
729caf70d4
|
Bug 1005309 - Fixed MSVC detection.
--HG--
extra : rebase_source : 0b61de1270eb861234539de675c2d381e217f55c
|
2014-05-12 11:01:22 +02:00 |
|
David Keeler
|
675aff56b2
|
bug 1007962 - CreateEncodedCertificate should take a SECItem as its serialNumber argument r=mmc
|
2014-05-08 15:33:38 -07:00 |
|
David Keeler
|
ea0182ae63
|
bug 1007813 - match CreateEncodedCertificate declaration to its definition r=mmc
|
2014-05-08 11:51:50 -07:00 |
Monica Chew
|
baff68ca81
|
Bug 1000354: Fix comment and make test clearer (r=keeler)
|
2014-05-07 15:48:23 -07:00 |
|
Brian Smith
|
c92ecd7e9b
|
Bug 1005667: Fix build warning due to buggy test code in pkixtestutil.cpp, r=dholbert
|
2014-05-04 11:04:48 -07:00 |
|
Brian Smith
|
75f6d3a530
|
Bug 1005309, Part 2: Enable extended compiler warnings (-W4 -Wall) in mozilla::pkix, r=mmc
--HG--
extra : rebase_source : 033574a0b26582753baec003becfaf15bbd85003
extra : histedit_source : 2d52c47f92b8f694203c2eb580b37be78ccf2f9c
|
2014-05-03 17:50:26 -07:00 |
|
Brian Smith
|
fc861849bc
|
Bug 1005309, Part 1: Improve type conversion and error checking for hashing done in mozilla::pkix's pkixocsp.cpp. r=mmc
--HG--
extra : rebase_source : 79c248ebc45d722249ae7adbbd2527dc9985f6f0
extra : histedit_source : 8ea66942cec4252d9d7e625da22b5ad9964485a1
|
2014-05-02 11:53:06 -07:00 |
|
Brian Smith
|
f0a3398f72
|
Bug 1005256: Improve parameter validation in mozilla::pkix::der::Input::GetSECItem, r=mmc
--HG--
extra : rebase_source : 93b65e103c86747ddaf463e639aacffdf7ccb08f
extra : histedit_source : 10ef0ab13fb9de710ea3c589600db4632f9cf4a0
|
2014-05-02 11:52:10 -07:00 |
|
Brian Smith
|
a46aa03484
|
Bug 1005208: Rename issuerKeyHash to keyHash in mozilla::pkix's pkixocsp.cpp, r=mmc
--HG--
extra : rebase_source : ede4ed17cb56e3e52325ecadc2c5ded33c4a6013
extra : histedit_source : b727000e81bbc8afa6b9f8188b97065f59da45ad
|
2014-05-02 10:40:03 -07:00 |
|
Brian Smith
|
20a90d85b4
|
Bug 1005198: Make it easy to create test certificates in GTest tests, r=keeler
--HG--
extra : rebase_source : 0b1ec263a5a1ce1856afb12f11ea4c35c2aa55d0
extra : histedit_source : 40a3a3fc1993de0fcdeb5593a1a1df4dc94832b8
|
2014-04-25 19:57:40 -07:00 |
|
Brian Smith
|
6c43d7c225
|
Bug 1003290: Fix OID parser template type, r=keeler
--HG--
extra : rebase_source : c33e450b84234ae7471118c2f8749593a59d9298
|
2014-04-25 16:31:30 -07:00 |
|
Brian Smith
|
9ae1a34e11
|
Bug 1002933: Use Strongly-typed enums more often in mozilla::pkix, r=mmc
--HG--
extra : rebase_source : 3f67f48d1f4150df0830f89e6c07bbbf3a8fc7e8
|
2014-04-25 16:29:26 -07:00 |
|
Brian Smith
|
456d4f8a4d
|
Bug 1002929: Avoid implicit conversion of Result to boolean in mozilla::der::GeneralizedTime, r=keeler
--HG--
extra : rebase_source : 8966d41f1837611b83ac84b347aeddfade9bc949
|
2014-04-24 16:08:30 -07:00 |
|
Camilo Viecco
|
a54a4f05cf
|
Bug 744204 - Allow Certificate key pinning Part 2 - Certverifier Interface. r=keeler
--HG--
extra : rebase_source : 2f9748ba0b241c697e22b7ff72f2f5a0fad4a2ca
|
2014-02-05 14:49:10 -08:00 |
|
Brian Smith
|
4cbf0ef630
|
Bug 998067: Add utility code for making it easier to create GTests based on NSS, r=keeler
--HG--
extra : rebase_source : 8ae08d1ccc9329aa567cfc7ac590ddb026155bae
|
2014-04-16 21:38:01 -07:00 |
|
Brian Smith
|
8c0e54d6a8
|
Bug 1000544: Use "Fail(x, y)" instead of "PR_SetError(y, 0); return x;" more consistently, r=mmc
--HG--
extra : rebase_source : 96addac738b8ffe39c7a92d546388d5f13fc2340
|
2014-04-23 14:13:32 -07:00 |
|
Brian Smith
|
bd4b0a0668
|
Bug 1000482: Remove unused stapledOCSPResponse parmaeter from BuildForwardInner, r=mmc, r=keeler
--HG--
extra : rebase_source : b5d67d3488aa3df5690a7dd2b76495ac4986a723
|
2014-04-23 13:42:38 -07:00 |
|
Brian Smith
|
d6bedee1bf
|
Bug 1000483: Remove unused isTrustAnchor parameter from CheckKeyUsage, r=cviecco
--HG--
extra : rebase_source : 96e7b76362d6219193c814d35c332aae2ed5b48f
|
2014-04-23 13:38:19 -07:00 |
Stefan Arentz
|
4c3ba2b965
|
Bug 968490: Add mozilla::pkix::der unit tests (r=cviecco)
|
2014-03-26 16:00:03 -07:00 |
|
David Keeler
|
ca673b66f0
|
bug 991898 - mozilla::pkix: temporarily allow empty Extensions in OCSP responses r=briansmith
|
2014-04-17 16:01:18 -07:00 |
|
David Keeler
|
0860109f89
|
bug 997843 - mozilla::pkix::der::Input::Expect should take a uint16_t as its length argument r=briansmith
|
2014-04-17 09:50:06 -07:00 |
|
David Keeler
|
5490002e36
|
bug 982774 - der::ExpectTagAndGetLength: check that input has enough capacity for the length described r=briansmith
|
2014-04-16 13:30:09 -07:00 |
|
David Keeler
|
b3c8e42deb
|
bug 972753 - OCSP testing: delegated responses and including multiple certificates r=cviecco
|
2014-04-16 09:31:27 -07:00 |
|
David Keeler
|
e23cf356dc
|
bug 991209 - mozilla::pkix: allow non-end-entity certs to have OCSP signing EKU r=briansmith
|
2014-04-10 10:15:02 -07:00 |
|
David Keeler
|
281f1bd79b
|
bug 990603 - mozilla::pkix: defer reporting end-entity cert errors until after path building r=briansmith
|
2014-04-08 09:49:36 -07:00 |
|
David Keeler
|
dd61cf2b05
|
bug 989516 - mozilla::pkix: temporarily allow improper basicConstraint:cA encodings r=cviecco
|
2014-03-31 11:06:43 -07:00 |
|
David Keeler
|
be06439979
|
bug 987295 - mozilla::pkix: test ocsp extension decoding r=cviecco
|
2014-03-31 10:54:53 -07:00 |
|
David Keeler
|
8c4f3cc754
|
bug 987295 - mozilla::pkix: fix decoding OCSP response extensions r=cviecco
|
2014-03-31 13:24:16 -07:00 |
|
Camilo Viecco
|
95b0ba15e7
|
Bug 986156 - Allow anypolicyoid and reject on inhibitAnypolicy (mozilla::pkix). r=bsmith
--HG--
extra : rebase_source : dd61d4bfa64ed65582f3a1b4662f16740983a3ce
|
2014-03-28 10:00:29 -07:00 |
|
Camilo Viecco
|
d130bf6c69
|
Bug 982292 - Allow nsSGC to 'nest' TLS Web Server Authentication EKU in moz::pkix. r=bsmith
|
2014-03-13 11:06:44 -07:00 |
|
Brian Smith
|
6a59538495
|
Bug 982778: Initialize parameters of output value of der::AlgorithmIdentifier, r=keeler
|
2014-03-13 21:26:03 -07:00 |
|
Camilo Viecco
|
0b1f14ef5a
|
Bug 969188 - Part 2/3 - mozilla::pkix only decode v3 extensions in v3 certificates. r=briansmith
--HG--
extra : rebase_source : 86e58ccf8538d0f40d3b24b89a92dceac095cb21
|
2014-03-06 10:04:04 -08:00 |
|
Camilo Viecco
|
a97f568c99
|
Bug 969188 - Part 1/3 - Fix mozilla::pkix handling of trusted v1 certificates. r=briansmith
--HG--
extra : rebase_source : 242b4849a7820d23518936a8c86ddcb7d9684394
|
2014-03-06 10:04:04 -08:00 |
|
David Keeler
|
26057e30a1
|
bug 987262 - mozilla::pkix: refactor Nested AtEnd() checks in pkixder.h r=briansmith
|
2014-03-24 13:12:56 -07:00 |
|
David Keeler
|
d20d064223
|
bug 985021 - mozilla::pkix: temporarily accept pathLenConstraint in EE basic constraints extensions r=briansmith
|
2014-03-21 11:52:01 -07:00 |
|
David Keeler
|
e79c0e95dc
|
backout bug 985021 (8d622f4ec6e9) for another build breakage on a CLOSED TREE r=backout
|
2014-03-21 11:47:06 -07:00 |
|
David Keeler
|
26eb4bc123
|
bug 985021 - mozilla::pkix: temporarily accept pathLenConstraint in EE basic constraints extensions r=briansmith
|
2014-03-21 10:38:36 -07:00 |
|
David Keeler
|
5e94cb110d
|
backout bug 985021 (de535cd27ee7) for build breakage r=backout
|
2014-03-20 16:06:15 -07:00 |
|
David Keeler
|
4f8a213abd
|
bug 985021 - mozilla::pkix: temporarily accept pathLenConstraint in EE basic constraints extensions r=briansmith
|
2014-03-20 15:50:12 -07:00 |
|
David Keeler
|
b1405bc489
|
bug 985201 - rename insanity::pkix to mozilla::pkix r=cviecco r=briansmith
--HG--
rename : security/insanity/include/insanity/ScopedPtr.h => security/pkix/include/pkix/ScopedPtr.h
rename : security/insanity/include/insanity/bind.h => security/pkix/include/pkix/bind.h
rename : security/insanity/include/insanity/nullptr.h => security/pkix/include/pkix/nullptr.h
rename : security/insanity/include/insanity/pkix.h => security/pkix/include/pkix/pkix.h
rename : security/insanity/include/insanity/pkixtypes.h => security/pkix/include/pkix/pkixtypes.h
rename : security/insanity/lib/pkixbind.cpp => security/pkix/lib/pkixbind.cpp
rename : security/insanity/lib/pkixbuild.cpp => security/pkix/lib/pkixbuild.cpp
rename : security/insanity/lib/pkixcheck.cpp => security/pkix/lib/pkixcheck.cpp
rename : security/insanity/lib/pkixcheck.h => security/pkix/lib/pkixcheck.h
rename : security/insanity/lib/pkixder.cpp => security/pkix/lib/pkixder.cpp
rename : security/insanity/lib/pkixder.h => security/pkix/lib/pkixder.h
rename : security/insanity/lib/pkixkey.cpp => security/pkix/lib/pkixkey.cpp
rename : security/insanity/lib/pkixocsp.cpp => security/pkix/lib/pkixocsp.cpp
rename : security/insanity/lib/pkixutil.h => security/pkix/lib/pkixutil.h
rename : security/insanity/moz.build => security/pkix/moz.build
rename : security/insanity/test/lib/moz.build => security/pkix/test/lib/moz.build
rename : security/insanity/test/lib/pkixtestutil.cpp => security/pkix/test/lib/pkixtestutil.cpp
rename : security/insanity/test/lib/pkixtestutil.h => security/pkix/test/lib/pkixtestutil.h
|
2014-03-20 14:29:21 -07:00 |