mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
445 044 коммитов 613 Ветки 98 Теги 5,8 GiB
Граф коммитов

344 Коммитов

Автор SHA1 Сообщение Дата
Benjamin Peterson e9994b284c No bug - fix typo r=me DONTBUILD 
--HG--
extra : amend_source : e7e16dfcc70b23f175a0470811cbb46c976f9f1c
 2015-01-19 14:13:24 -05:00
Brian Smith 610a109833 Bug 1115910: Remove now-unneeded nullptr polyfill for old versions of GCC, r=keeler 
--HG--
extra : rebase_source : 11e0060fd9b7622f0ec6792b69aa3c2ea9128aa5
 2015-01-13 01:03:08 -08:00
Brian Smith cc811435fd Bug 1115906, Part 3: Make formatting of struct/class/enum class more consistent, r=keeler 
--HG--
extra : rebase_source : 0ba4b630b93775ff68abc583238ba2525b8d56f5
 2015-01-13 16:53:34 -08:00
Brian Smith e538f2d921 Bug 1115906, Part 2: Annotate classes and member functions with override and final, r=keeler 
--HG--
extra : rebase_source : 79bb236bef83ed3e884d73e029ac29a5aa999840
extra : source : d14d86bcebd38be80d00a263c3145eb0dbcc53cd
 2015-01-13 16:54:10 -08:00
Brian Smith 825d71887a Bug 1115906, Part 1: Add workarounds for missing final/override support in GCC before version 4.7, r=keeler 
--HG--
rename : security/pkix/include/pkix/nullptr.h => security/pkix/include/pkix/stdkeywords.h
extra : rebase_source : 9cacd9729ac4cfb1e4bf920c8afdffb831b60d36
extra : source : f673d05dfc9a6d830e5e3c01976b41588cc70ead
 2015-01-07 14:53:11 -08:00
Masatoshi Kimura 1c35db3bcc Bug 1120664 - Rename mozilla::pkix::Result::ERROR_INVALID_TIME to avoid collision with a macro defined in windows.h. r=bsmith 2015-01-15 07:24:18 +09:00
Brian Smith 89a83cfb14 Bug 1118122: Reland Bug 1115903, Part 2: Delete most defaulted assignment operators and some defaulted copy constructors, r=jcj 
--HG--
extra : rebase_source : 9fae7948648e355f2ac15275a343ac0806f82f3b
 2015-01-12 23:12:01 -08:00
Brad Lassey 854d7d9706 bug 1118554 - fix gcc4.9 warnings on Android, <cstdlib> instead of <stdlib.h> r=gcp 
--HG--
extra : rebase_source : cbb04c5973878e350e890c4df2ce271d32b7587e
 2015-01-08 10:19:39 -05:00
Jacek Caban 52f5ce5e18 Bug 1119179 - Avoid gmtime_r duplication if it's provided by mingw. r=bsmith 2015-01-09 11:41:15 +01:00
Brian Smith c1795f4024 Bug 1118599 - Remove now-unneeded MOZILLA_PKIX_ENUM_CLASS workaround for GCC enum class bugs. r=mmc 2015-01-06 18:28:09 -08:00
Brad Lassey 33ab8e9b66 bug 1118554 - make android's stdcxx work r=glandium 2015-01-06 23:34:31 -05:00
Brian Smith b8ce64b2a8 Bug 1073867, Part 5: Make DSS test faster, r=mmc 
--HG--
extra : rebase_source : 5d3ae5b6c777382d69134d5c38fca0c52c93c3a2
extra : histedit_source : 15209d1249d2eb638143409404cbbe15f0a2715b
 2014-12-24 17:56:10 -08:00
Brian Smith 566e222bca Bug 1117003 - Backout cset ca3c73188295 (Bug 1115903, Part 2), r=ehsan 2015-01-02 12:26:14 -08:00
Brian Smith ff754b5ae0 Bug 1115903, Part 2: Delete most defaulted assignment operators and some defaulted copy constructors, r=jcj 
--HG--
extra : rebase_source : 6c8575de36355521baf69bba89eba530cd4e8b09
 2014-12-26 23:49:47 -08:00
Brian Smith 68b341641d Bug 1115903, Remove VS2010 workarounds, r=mmc 
--HG--
extra : rebase_source : 742973c0f2d547371fbeca72e384053c70b5ba0f
 2014-12-26 21:39:54 -08:00
Brian Smith f52e40c633 Bug 1115761, Part 4: Add "fall through" comment, r=jcj 
--HG--
extra : rebase_source : 1e40d7d7d85c1a02eb6195ecee1038ea40a6a9ab
 2014-12-26 15:07:56 -08:00
Brian Smith f118650ad8 Bug 1115761, Part 3: Rename NSS-based crypto functions, r=jcj 
--HG--
extra : rebase_source : b11b172fac76c7845d2a97cabf1bad9e04a50367
 2014-12-23 14:51:52 -08:00
Brian Smith 2d40b79203 Bug 1115761, Part 2: Use NotReached more consistently in pkixnss.cpp, r=jcj 
--HG--
extra : rebase_source : 80647fc11d40d822dc042af1d797cb34062a84ab
 2014-12-23 22:35:53 -08:00
Brian Smith 95a228e3fe Bug 1115761, Part 1: Remove obsolete references to NSS stuff in comments, r=jcj 
--HG--
extra : rebase_source : 65af59d9695b424f057b40c54aab6973a39bcc25
 2014-12-26 12:40:45 -08:00
Brian Smith a5f0730d19 Bug 1035414, Part 2: Always check subject's issuer matches issuer's subject, r=jcj 
--HG--
extra : rebase_source : a75eca6ed909fa4f241b1a736656b7e8c99eb3ea
 2014-12-26 10:13:18 -08:00
Brian Smith 13010b71a5 Bug 1035414, Part 1: Test issuer/subject name matching, r=jcj 
--HG--
extra : rebase_source : 8faab27888502083565db3681f10a310b69b1845
 2014-12-26 11:35:48 -08:00
Brian Smith aeda384b1a Bug 1073867, Part 4: Test that DSS end-entity certificates are rejected, r=mmc 
--HG--
extra : rebase_source : 7cfdcdf08f2ae8909062b8803de6702ab47ec65a
 2014-12-26 11:40:51 -08:00
Brian Smith dcacbfd4ce Bug 1073867, Part 3: Reject DSS end-entity certificates, r=mmc 
--HG--
extra : rebase_source : 76546b57aade1a15b394a2e53d8c12d62906dcac
 2014-12-24 00:51:52 -08:00
Brian Smith c5b4fd868c Bug 1115181: Remove pkixnss.h dependency from pkixcert_signature_algorithm_tests, r=keeler 
--HG--
extra : rebase_source : 2a4e11338b06d33ab8ad1536dc05c082db330d68
 2014-12-23 14:51:16 -08:00
Brian Smith 63c92c06cd Bug 1070444: Remove NSS dependencies in pkixbuild_tests.cpp, r=keeler 
--HG--
extra : rebase_source : f07e38d40f1644cce30191f5d8ab29ac06582683
 2014-12-22 01:20:59 -08:00
Brian Smith 899807654a Bug 1114701: Replace function pointers with function references, r=keeler 
--HG--
extra : rebase_source : 350e7f8170f6b1176e46b829026e9ee27b3303e5
 2014-12-23 12:43:25 -08:00
Daniel Holbert 3aec4f3024 Bug 1114671: Use function pointer (instead of reference) in pkix/bind.h, for consistency & to fix -Wignored-qualifiers build warning for 'const'. r=briansmith 2014-12-22 13:04:36 -08:00
J.C. Jones b47d94a0c8 Bug 968451 - Document the exported functions exposed from mozilla::pkix (pkix/pkix.h). r=keeler 2014-12-19 12:25:00 +01:00
Brian Smith 510bbfd05d Bug 1073867, Part 1: Remove DSS certificate support from mozilla::pkix, r=keeler 
--HG--
extra : rebase_source : 3bef46a794e53584fd35b7640a6f4c9aaea4acab
 2014-12-04 20:55:15 -08:00
Brian Smith 1543a46c03 Bug 1111399, Part 2: Implement RFC822 (email) name constraints, r=keeler 
--HG--
extra : rebase_source : 5905e247eee4d3562d741e6e9656dc4c40d821e4
 2014-12-20 08:15:35 -08:00
Brian Smith c61befa56f Bug 1111399, Part 1: Preconditions for RFC822 name constraints, r=keeler 
--HG--
extra : rebase_source : cd20b448a6c77ba27c86cb3d8e6c121f92a2ba93
 2014-12-20 07:35:44 -08:00
Brian Smith e0efc82826 Bug 1111398: Rename ValidDNSIDMatchType to IDRole, r=keeler 
--HG--
extra : rebase_source : a07e58b82a61db595711c0ab887bec70d4145888
 2014-12-13 22:29:58 -08:00
Brian Smith 87719d0a59 Bug 1111397: Refactor error handling for name matching, r=keeler 
--HG--
extra : rebase_source : 7b1061874d7b6e02a158085c3a6580a7fc718bbe
 2014-12-13 17:05:46 -08:00
Brian Smith 72643b84e6 Bug 1111392: Add tests for malformed name constraints where there are no names of the constrained type, r=keeler 
--HG--
extra : rebase_source : 048619553c7725eee1cb73df64faae8c8890c995
 2014-10-30 16:48:31 -07:00
David Keeler c3ba2c1217 bug 1108408 - GeneralName types such as otherName where the value is a SEQUENCE should have the CONSTRUCTED bit set r=briansmith 2014-12-08 13:39:19 -08:00
Brian Smith 346599ec9c Bug 1107791 Remove support for unusual wildcard names in certificates, r=keeler 
--HG--
extra : rebase_source : bd142d2e85059a0d0fd36325242553e94a7d4377
 2014-12-04 17:12:09 -08:00
Brian Smith bd9d21676a Bug 1107790: Remove support for absolute hostnames in presented DNS IDs and name constraints, r=keeler 
--HG--
extra : rebase_source : cf402f902196e729026d713cd6d62f5c3b889a12
 2014-12-08 16:42:54 -08:00
Brian Smith 01259ceda5 Bug 1107946: Fixed unused variable warnings in pkixnames_tests.cpp, r=keeler 
--HG--
extra : rebase_source : 23d20e91c8b408363acab7c6d4d67a86d2293dff
 2014-12-05 12:14:49 -08:00
Brian Smith fc17106cf0 Bug 970542, Part 9: Better document name constraints as reference IDs, r=keeler 
--HG--
extra : rebase_source : 60413188771454081226d58d03156c15ce795ca7
 2014-10-26 11:26:26 -07:00
Brian Smith 65284e98f6 Bug 970542, Part 8: IPAddress name constraint tests, r=keeler 
--HG--
extra : rebase_source : e8cc0158248d4621da19dfef56089957af417f73
 2014-10-26 16:57:00 -07:00
Brian Smith 5fac205908 Bug 970542, Part 7: More CN-ID name constraint tests, r=keeler 
--HG--
extra : rebase_source : 7a3d1d31cdc08ea1b989428cfc85f60a00528c72
 2014-12-03 21:35:29 -08:00
Brian Smith ac1c16b716 Bug 970542, Part 6: DNSName name constraint tests, r=keeler 
--HG--
extra : rebase_source : ec31862fc25cfcba1454ae862a26e7a27513e9b6
 2014-10-19 23:53:45 -07:00
Brian Smith 7dd909b9e5 Bug 970542, Part 5: New name constraint implementation, r=keeler, r=mmc 
--HG--
extra : rebase_source : 849161ac892b05e5ff2d5552c632fc647d309085
 2014-10-18 15:38:42 -07:00
Brian Smith 2e28de4900 Bug 970542, Part 4: DirectoryName name constraint matching, r=keeler 
--HG--
extra : rebase_source : 01770088851823ae1005227dcd43d82d015f4b0e
 2014-10-18 14:51:37 -07:00
Brian Smith 39a86a3659 Bug 970542, Part 3: IPAddress name constraint matching, r=keeler 
--HG--
extra : rebase_source : f47ef9ead3323704595b91873811d1ead2403839
 2014-10-17 13:02:26 -07:00
Brian Smith 8b38009a34 Bug 970542, Part 2: DNSName name constraint matching, r=keeler 
--HG--
extra : rebase_source : 50b1a7d5d9da97cc64e09d5e6cdc41b8200c3551
 2014-10-20 22:20:58 -07:00
Brian Smith 8d8b1cf373 Bug 970542, Part 1: Refactor name matching within CN AVAs to reduce duplicate logic, r=keeler 
--HG--
extra : rebase_source : f129b24c58377f34ac7d80ee7d5e8775635843ff
 2014-10-16 16:44:27 -07:00
David Keeler 3cd3e496aa bug 1079436 - fix validThrough as returned by VerifyEncodedOCSPResponse r=briansmith 
validThrough should now be the time through which, if passed in as the given
time to validate an OCSP response at, VerifyEncodedOCSPResponse will still
consider it trustworthy. After that time, it will be expired. This makes it
so the OCSP cache compares validity period responses consistently with
mozilla::pkix.
 2014-11-21 10:43:43 -08:00
Masatoshi Kimura 6887042777 Bug 1094495 - Disable C4480 in security/pkix. r=keeler 2014-11-12 07:41:42 +09:00
David Keeler 98fef4165e bug 1079658 - follow-up bustage fix (unnecessary multi-line C++-style comment) r=bustage on a CLOSED TREE 2014-11-03 13:48:48 -08:00
David Keeler cd0d5fbdc0 bug 1079658 - check for the id-pkix-ocsp-nocheck extension when decoding certificates r=briansmith 2014-11-03 11:35:15 -08:00
Chris Peterson 4a7b70b334 Bug 1092028 - Fix -Wunused-const-variable warning-as-error in security/pkix/test/gtest. r=bsmith 2014-10-30 23:17:27 -07:00
Brian Smith 774861532b Bug 1089104: Add support for TeletexString-encoded CN-IDs to CheckCertHostname, r=keeler 
--HG--
extra : rebase_source : 320794deae857a574f509b7277ea64576abd37b3
 2014-10-29 17:19:45 -07:00
Brian Smith 228f03d6d1 Bug 1089393: Fix hex excape sequences ('\0x' -> '\x') in pkixnames_tests.cpp, r=mmc 
--HG--
extra : rebase_source : a0136045ce9b957976f8eb2ef8ad6c9eae0a8ad7
 2014-10-26 11:29:42 -07:00
Monica Chew e8c341b1fd Bug 1083539: Fix dropped return value check (r=keeler) 2014-10-23 17:07:45 -07:00
Brian Smith cfc481b264 Bug 1085497: Add Input::size_type, r=mmc 
--HG--
extra : rebase_source : 098eae9234be99e683c0d44b35e1ec7058a086dd
 2014-10-16 18:23:27 -07:00
Brian Smith 6926e8bc53 Bug 1063281, Part 8: Rewrite PresentedDNSIDMatchesReferenceDNSID, r=keeler 
--HG--
extra : rebase_source : a74e8d89a3ddfe5f6af70f32d31f1dc06600d90a
 2014-10-15 19:21:35 -07:00
Brian Smith d7d68e721d Bug 1063281, Part 7: Implement IsValidPresentedDNSID, r=keeler 
--HG--
extra : rebase_source : 32d85980d8d486bb806e169a8241256ad57fa9d1
 2014-10-16 15:59:34 -07:00
Brian Smith 8d32c13ab3 Bug 1083539: Factor out common SEQUENCE unwrapping logic into reusable functions, r=mmc 
--HG--
extra : rebase_source : 93d669d3cbe178339fe59c1d9345c773b4e238d4
 2014-10-14 02:07:08 -07:00
Brian Smith bda4ef165a Bug 1063281, Part 6: Implement CheckCertHostname, r=keeler 
--HG--
extra : rebase_source : c28fe67d319f64b2efa326fd8649ef529c487c05
 2014-10-15 16:10:32 -07:00
Brian Smith 72d294039c Bug 1063281, Part 5: Implement DNS ID matching, r=keeler 
--HG--
extra : rebase_source : 5221245ce8da065d64a7ff17bdfde0e617562447
 2014-09-30 19:40:15 -07:00
Brian Smith 149817ebfc Bug 1063281, Part 4: Implement ParseIPv6Address, r=keeler 
--HG--
extra : rebase_source : 9a75a81a840591aaf73acd5be4d7ca504b6432e5
 2014-09-06 01:10:24 -07:00
Brian Smith 0e87ec98c7 Bug 1063281, Part 3: Implement ParseIPv4Address, r=keeler 
--HG--
extra : rebase_source : fbafcb7573be8fa83036a8fadbfa74938ab7a4a6
 2014-09-05 23:20:18 -07:00
Brian Smith 4a2c8b5274 Bug 1063281, Part 2: Implement IsValidDNSName, r=keeler 
--HG--
extra : rebase_source : 202898df26c7321f543ab7aeb222cdc6db67fe0d
 2014-09-30 14:41:39 -07:00
Brian Smith 3b8c2fc2a8 Bug 1063281, Part 1: Expose moilla::pkix::BackCert::GetSubjectAltName, r=keeler 
--HG--
extra : rebase_source : c89ae439a21f11fce66a785e8732ca8793d51936
 2014-08-17 17:24:20 -07:00
Cykesiopka 1c4af4e6a1 Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith 2014-10-18 15:18:00 +02:00
Carsten "Tomcat" Book e5ad1e7db2 Backed out changeset 3afdc3253979 (bug 622859) for breaking m1 tests 2014-10-17 13:14:29 +02:00
Cykesiopka 01941f880c Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith 2014-10-16 05:13:00 +02:00
David Keeler 0a4f56b330 bug 1042889 - use a separate error for untrusted x509v1 certificates used as CAs r=briansmith 2014-10-15 10:38:51 -07:00
Brian Smith 0cacd2ed70 Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler 2014-10-05 17:18:11 -07:00
Carsten "Tomcat" Book da90427b6c Backed out changeset b885a82dc02a (bug 1078108) for breaking B2g ICS Builds 2014-10-10 09:01:45 +02:00
Brian Smith 2565f9b33d Bug 1078108: Use a longer OCSP response validity period in tests, r=keeler 
--HG--
extra : rebase_source : 3115275b2b1c5337cbea0fd43a2221fcd54dadc1
extra : source : bb5694e268255b6549ccaaaddca74fbb83d4bda1
 2014-10-05 17:18:11 -07:00
Brian Smith 201e27f5f3 Bug 1077926: Make test certificate generation faster by reusing key, r=keeler 
--HG--
extra : rebase_source : 8734920020e0889ea6cac1e878b182326bbf81d6
 2014-10-07 18:30:47 -07:00
David Keeler a052b67f71 bug 1058812 - (3/3) mozilla::pkix: test handling unsupported signature algorithms r=briansmith 2014-10-08 09:48:15 -07:00
David Keeler af214d36f8 bug 1058812 - (2/3) mozilla::pkix: use ByteStrings to identify signature algorithm parameters in tests r=briansmith 2014-10-08 09:33:59 -07:00
David Keeler 42cd9ec5ca bug 1058812 - (1/3) mozilla::pkix: add SignatureAlgorithm::unsupported_algorithm to better handle e.g. roots signed with RSA/MD5 r=briansmith 2014-10-07 09:35:42 -07:00
David Keeler 71bd008415 backout 9815045d0c5a (bug 1058812 1/3) for mochitest orange on a CLOSED TREE 2014-10-08 12:10:46 -07:00
David Keeler 6e65e0bca0 backout 9692998f547e (bug 1058812 2/3) for mochitest orange on a CLOSED TREE 2014-10-08 12:10:10 -07:00
David Keeler 4279bb931d backout 0097b4ffaf33 (bug 1058812 3/3) for mochitest orange on a CLOSED TREE 2014-10-08 12:09:26 -07:00
David Keeler 3718659874 bug 1058812 - (3/3) mozilla::pkix: test handling unsupported signature algorithms r=briansmith 2014-10-08 09:48:15 -07:00
David Keeler 7ad555939c bug 1058812 - (2/3) mozilla::pkix: use ByteStrings to identify signature algorithm parameters in tests r=briansmith 2014-10-08 09:33:59 -07:00
David Keeler 5606be5b15 bug 1058812 - (1/3) mozilla::pkix: add SignatureAlgorithm::unsupported_algorithm to better handle e.g. roots signed with RSA/MD5 r=briansmith 2014-10-07 09:35:42 -07:00
Brian Smith 7c87c719cd Bug 1077887: Work around old GCC "enum class" bug, r=mmc 
--HG--
extra : rebase_source : 983e8d8bcfded10d1d1dca793d610996b40b444d
 2014-10-04 18:45:31 -07:00
Brian Smith 121791c43f Bug 1077859: Make ENCODING_FAILED safe to use in static initializers, r=mmc 
--HG--
extra : rebase_source : f0483e775c6fefc256fc9527b1b1118086cc121f
 2014-10-03 15:52:38 -07:00
Ehsan Akhgari 15ca5186a6 Fix one bad implicit constructor in pkix, no bug, blanket-rs=bsmith 2014-10-07 09:46:59 -04:00
Carsten "Tomcat" Book 811400331c Backed out changeset 76000f9f12da (bug 1077859) for causing frequent Mac OSX XPCshell test failures 2014-10-07 12:53:42 +02:00
Carsten "Tomcat" Book f3c6c6a49b Backed out changeset 16fe1b9eb9e6 (bug 1077887) 2014-10-07 12:53:03 +02:00
Carsten "Tomcat" Book 2dbcab7289 Backed out changeset 124b04c01c71 (bug 1077926) 2014-10-07 12:52:49 +02:00
Brian Smith 655ade7a8b Bug 1077926: Make test certificate generation faster by reusing key, r=keeler 
--HG--
extra : rebase_source : 360fe925397688c1d0a2386c4974def6b571f0d4
 2014-10-05 00:29:43 -07:00
Brian Smith 1fc729071e Bug 1077887: Work around old GCC "enum class" bug, r=mmc 
--HG--
extra : rebase_source : ce707672dfc0587760c09701fd6adbe26c874916
 2014-10-04 18:45:31 -07:00
Brian Smith 9e344e0256 Bug 1077859: Make ENCODING_FAILED safe to use in static initializers, r=mmc 
--HG--
extra : rebase_source : 78e1410ab6c94bd6b20a78208a2421db338aed94
 2014-10-03 15:52:38 -07:00
David Keeler 2f89ed3295 bug 1045739 - (part 2/2) mozilla::pkix: test that revocation checking doesn't occur for expired certificates r=mmc 2014-10-01 10:20:31 -07:00
Brian Smith 864c184e30 bug 1045739 - (1/2) mozilla::pkix: stop checking revocation for expired certificates r=keeler 2014-08-14 12:02:55 -07:00
David Keeler fd860abf57 bug 1071308 - (2/2) remove libpkix-style chain validation callback from CertVerifier r=cviecco 2014-09-25 11:18:56 -07:00
Richard Barnes f07a938b7c Bug 1045973 - sec_error_extension_value_invalid: mozilla::pkix does not accept certificates with x509v3 extensions in x509v1 or x509v2 certificates r=keeler 2014-09-23 16:48:54 -04:00
David Keeler 06b4f5bba9 bug 1060929 - mozilla::pkix: allow explicit encodings of default-valued BOOLEANs for compatibility r=briansmith 2014-09-22 09:26:10 -07:00
Richard Barnes 211a288b8e Backed out changeset 40d6ccba44f1 (bug 1045973) 2014-09-22 15:40:19 -04:00
Richard Barnes d86025defe Bug 1045973 - sec_error_extension_value_invalid: mozilla::pkix does not accept certificates with x509v3 extensions in x509v1 or x509v2 certificates 2014-09-22 14:22:02 -04:00
Brian Smith c5500b85df Bug 1065264: Use MOZILLA_PKIX_MAP_LIST to define mozilla::pkix::Result, r=keeler 
--HG--
extra : rebase_source : a91f7ab118f802fed6441edf00a245fe90c8e506
 2014-09-10 00:17:24 -07:00
Brian Smith ddb8aedc17 Bug 1065173: Move more NSS dependencies to pkixtestnss.cpp, r=keeler 
--HG--
extra : rebase_source : 205fa72506e175c0fe418c5428675e754a86c820
 2014-09-08 20:41:53 -07:00