7f956c0bfb
merge mozilla-inbound to mozilla-central a=merge
2016-02-29 11:35:30 +01:00
b9a9010687
Bug 1249595 - Enable 11 more ESLint rules for PSM. r=keeler
...
MozReview-Commit-ID: FxS9SPRMMxf
--HG--
extra : transplant_source : %18%08%F0%EB%E3%AD%3E%F7%94%80%05%C0%D0P%5Co.%940%7E
2016-02-26 12:35:34 -08:00
6ca62e9a7f
Bug 1245053, Upgrade Mozilla 47 to use NSS 3.23, land RC0, r=me
2016-02-26 11:23:11 +01:00
896a7362d7
Bug 1247860 - Enable ChaCha20/Poly1305 cipher suites r=emk,keeler
2016-02-26 12:37:19 +01:00
a1c1defa04
bug 1199850 - remove unnecessary PSM xpcshell extended key usage tests r=Cykesiopka,jcj
...
MozReview-Commit-ID: 8Uz4bN87872
--HG--
extra : rebase_source : a3021481a40c7e974a3b756021e274beeb7f30d6
2016-02-24 14:20:01 -08:00
3cdbeb2bd6
Bug 1237847 - [e10s] Null deref crash when running test_pluginstream_newstream.html; r=bobowen
...
Modify the Mac sandbox to allow temporary files to be created in a
parent-specified subdirectory of NS_OS_TEMP_DIR. This is similar to the
Windows approach. The parent provides a UUID in a preference which is
used by the content process to form the subdirectory name.
MozReview-Commit-ID: 6BONpfZz8ZI
--HG--
extra : rebase_source : ad18e091918356a1a40c13f1453972b4512ad476
2016-02-25 15:26:13 -08:00
6a5ff52e36
backing out c815269c99c8, bug 1245053, CLOSED TREE
2016-02-25 18:51:37 +01:00
48201519cb
Bug 1245053, test NSS_3_23_BETA7, r=me
2016-02-25 15:35:08 +01:00
e232fcd2d4
Merge mozilla-central to mozilla-inbound
2016-02-25 11:59:05 +01:00
3695dd59e0
merge mozilla-inbound to mozilla-central a=merge
2016-02-25 11:57:51 +01:00
45a1207cdf
Bug 1201437 - Make cert override tests check for STATE_CERT_USER_OVERRIDDEN. r=keeler
...
MozReview-Commit-ID: G6KQPXHbEPL
--HG--
extra : rebase_source : 9ed61d521996d96d2d18f5d602439bedc46393c0
2016-02-24 22:45:12 -08:00
0147157053
Bug 1201437 - Add new WebProgress state flag for user-overridden cert. r=keeler
...
MozReview-Commit-ID: cvBYSZykK0
--HG--
extra : rebase_source : 68038f9d21a33efac139eedd26636f815217d2d6
2016-02-24 22:46:52 -08:00
a150859d8e
Bug 1248874 - Replace Scoped.h templates used only by PSM in ScopedNSSTypes.h with UniquePtr equivalents. r=dkeeler
...
MozReview-Commit-ID: 5OClBV522lv
--HG--
extra : transplant_source : G%A3%3B%A0%AC%0D%25%F2%C5K%DC8%0F%90%1B%7Bf%E0%93%F7
2016-02-18 06:01:39 -08:00
f64795a71b
Bug 1246365 - Enable eslint "comma-spacing" and "semi" rules for PSM. r=keeler
...
MozReview-Commit-ID: 7FVcD7O9mpG
--HG--
extra : transplant_source : R%C3B%B73%0A%9E%FA%83_%CF%FE%86O%B4%FF%C4f%EB%9C
2016-02-18 21:16:50 -08:00
da44ab790c
Bug 1220237 - Remove uses of nsIEnumerator from PSM. r=keeler
...
MozReview-Commit-ID: 3FhBCqnJz4n
--HG--
extra : transplant_source : %1B%9B%40%EAzK%A2%F6%B0%FF%FF%A3O%A6%D7%25c%DD%F1U
2016-02-24 17:42:45 -08:00
5553a6adbf
Bug 1245053, landing NSS_3_23_BETA5, r=mt
2016-02-23 00:50:19 +01:00
f9727da7b1
Bug 1188045 - Part 1: Move the definition of sandboxTarget::Instance() out-of-line; r=bobowen,glandium
...
This is required so that delay-loading xul.dll works with clang-cl.
2016-02-22 09:55:09 -05:00
62bd6f7a62
bug 1248099 - add extended key usage tests for mozilla::pkix r=Cykesiopka,jcj
...
MozReview-Commit-ID: 9rXn5Q1wsnx
--HG--
extra : rebase_source : f598007d568c7394898294d66b1845a173f97dc2
2016-02-12 17:24:54 -08:00
51a37ae665
bug 1241650 - remove nsIX509CertDB.findCertNicknames r=mgoodwin
...
MozReview-Commit-ID: JtU7H5qGvge
--HG--
extra : rebase_source : fae856a160e5cc987702794f805030b2d1cc3533
2016-01-21 15:14:31 -08:00
156ed9a0ed
Bug 1247580 P2 Add gtest to ensure we can continue to deserialize old security info strings. r=bz
2016-02-17 07:18:00 -08:00
7382b7bc31
Bug 1247580 P1 Allow old nsIX509Cert serialized objects to be read off disk. r=bz
2016-02-17 07:18:00 -08:00
e5ab49e43e
Bug 1247847 - Use smart pointers in nsNSSCertHelper.cpp to manage NSS resources. r=keeler
...
This lets us remove things like gotos in the code, and makes resource ownership slightly clearer.
MozReview-Commit-ID: Kucn7exhLd7
--HG--
extra : transplant_source : %27%FF%D2tjLI%9B5ep%21%B7%FA%92%08%14%07%12%C6
2016-02-16 16:25:09 -08:00
eb91d4f287
Bug 1244245 - Enable eslint "curly" rule for PSM. r=keeler
...
Also includes minor cleanup.
MozReview-Commit-ID: CHgbTIa3s2O
--HG--
extra : transplant_source : %FD%ACi%DE%3E%28%0D%D2_%5Dc%1Dk%E6%E8%EDw%D5%FA%93
2016-02-16 17:27:49 -08:00
be2b50a7f8
Bug 1248252 - Improper outdated octal constant syntax in M-C tree. Use '0o' prefix. r=dao
...
Be warned. Do not attemp to change the .js "test" source code in ./js
They are meant to check
- the outdated 0666 octal constant is still parsed correctly,
- the outdated 0666 octal constant raises syntax error flag
in strict mode, etc.
So leave them alone.
2016-02-15 08:57:00 +01:00
be7b0e4539
Backed out 2 changesets (bug 1247250) for bustage. r=bustage on a CLOSED TREE
...
Backed out changeset 8aded3a039f5 (bug 1247250)
Backed out changeset 374e6d0abf0e (bug 1247250)
2016-02-12 00:42:48 +01:00
8e3a5c71be
Bug 1247250 - followup: fix comments to reflect the review comment. r=keeler DONTBUILD
2016-02-12 07:43:21 +09:00
e40094eb48
Bug 1247250 - Enable TLS 1.3 draft 11 anti-downgrade on non-secure fallback. r=keeler
2016-02-12 07:36:37 +09:00
103a609a33
Bug 1243193 - Use Assert.throws() more in PSM tests. r=keeler
2016-02-10 21:40:00 +01:00
686438c658
Bug 1164581 - Adding an overload for NS_ProxyRelease that accepts already_AddRefed, and removing all the others. r=bobbyholley
2016-02-10 08:23:00 +01:00
28c09863cb
bug 1241564 - remove EV treatment for TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı SHA-1 root certificate r=Cykesiopka
...
MozReview-Commit-ID: 9ktEj2kgfYo
2016-02-09 13:30:22 -08:00
5ceb0c8a89
bug 1246765 - remove unnecessary resource://app/ registration from getHSTSPreloadList.js r=Cykesiopka DONTBUILD NPOTB
2016-02-08 12:56:34 -08:00
19922e4976
Bug 503515 - Try and ensure exported certificates include an extension by default. r=keeler
...
--HG--
extra : rebase_source : b3d595ae962d70afc208b34afe616b6ef88133a8
2016-02-09 00:17:00 +01:00
ed46787107
Bug 1219369: In Windows debug builds allow write access to TEMP for logging purposes. r=tabraldes
2016-02-09 08:31:18 +00:00
880b7f8386
Bug 1245053, land NSS_3_23_BETA4, r=me, includes a makefile change to adjust for NSS changes, patch by EKR, r=kaie
2016-02-08 16:16:25 +01:00
5b358688b7
Backed out changeset c18e29c1b369 (bug 1164581) for cpp unit tests test failures
...
--HG--
extra : rebase_source : fb6fd434c8e3f4b5fa53ea645a54c07cab207894
2016-02-08 11:17:38 +01:00
7c3a491022
Bug 1247250 - Enable TLS 1.3 anti-downgrade on non-secure fallback. r=keeler
2016-02-24 19:35:00 +09:00
69cf7e035f
Bug 1164581 - Adding an overload for NS_ProxyRelease that accepts already_AddRefed, and removing all the others. r=bobbyholley
...
--HG--
extra : rebase_source : 3c6bba6613a14e48239d302bdd0f7fe2e322265d
2016-02-07 10:56:00 +01:00
7e014d6be0
Bug 1243182 - Enable eslint "space-infix-ops" rule for PSM. r=keeler
...
Also includes minor cleanups.
2016-02-06 21:05:02 -08:00
6a5e8155c8
Bug 1064402 - Part 2: Remove nsIX509CertDB.importServerCertificate() and nsIX509Cert::SERVER_CERT support in importCertsFromFile(). r=keeler
2016-02-06 20:41:11 -08:00
370bac0f07
Bug 1064402 - Part 1: Remove Import button in Servers tab of the Certificate Manager. r=keeler
...
It no longer serves any useful purpose:
1. It is no longer possible to add explicit trust for server certs post Bug 825583.
1A. The Add Exception feature is better suited for this anyways.
2. It isn't possible to set explicit distrust in the Cert Manager, only remove explicit trust.
3. Importing may also inadvertently cause verification failures (see Bug 1202636
2016-02-06 20:40:57 -08:00
1e1cca77d4
Bug 1243180 - Enable eslint "no-trailing-spaces" rule for PSM. r=keeler
...
Also does some minor cleanup.
2016-02-03 01:51:00 +01:00
addf646a4c
Bug 1241646 - remove unused token arguments from nsIX509CertDB r=keeler
2016-01-30 13:50:58 +05:30
d3fd404b9b
Bug 1244062, NSPR_4_12_BETA2, and Bug 1245053, NSS_3_23_BETA2
2016-02-02 11:50:47 +01:00
73686ad0d7
Bug 1173371 Part 2: Change Chromium sandbox to allow rules for files on network drives to be added. a=aklotz
2016-02-01 08:59:00 +00:00
0b2edad801
Bug 1173371 Part 1: Take Chromium commit 0e49d029d5a1a25d971880b9e44d67ac70b31a80 for sandbox code. r=aklotz
...
From Chromium commit comment:
Sandbox: Add support for file system policies that use implied device paths.
A policy rule of the form \HarddiskVolume0\Foo\bar allows sandboxed code
to use \\.\HarddiskVolume0\Foo\bar directly.
2016-02-01 08:59:00 +00:00
282a183d55
Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler
...
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
2016-01-30 08:07:38 +00:00
91efc5a86c
Bug 1241764: Replace nsPIDOMWindow with nsPIDOMWindowInner/Outer. r=mrbkap,smaug
2016-01-30 09:05:36 -08:00
543c164cdc
Backed out 2 changesets (bug 1241821) for android build bustage CLOSED TREE
...
Backed out changeset ae7246d654c8 (bug 1241821)
Backed out changeset bdecb787f1a2 (bug 1241821)
--HG--
extra : commitid : HdwYW6HntXi
2016-01-29 14:57:27 -08:00
1f2034ed37
Followup to Bug 1241821 - ESLint fix
...
--HG--
extra : commitid : 5Pf2Sf7gxj9
2016-01-29 14:36:13 -08:00
e7ee60296d
Bug 1241821 - Create a SecurityReporter component for TLS Error Reports r=mossop, keeler
...
This takes the TLS Error Reporting functionality used in the aboutNetError.xhtml
and aboutCertError.xhtml error pages and moves it to its own component. This
allows us to make use of this same error reporting functionality from elsewhere.
Notably, this allows us to send error reports for issues that occur when loading
subresources.
The xpcshell test included is in security/manager/ssl/tests because we need to
make use of tlsserver functionality from the PSM tests.
2016-01-29 13:45:17 +00:00
Carsten "Tomcat" Book
Cykesiopka
Kai Engert
Tim Taubert
David Keeler
Haik Aftandilian
Nihanth Subramanya
Ehsan Akhgari
Ben Kelly
ISHIKAWA, Chiaki
Sebastian Hengst
Masatoshi Kimura
Aidin Gharibnavaz
Bob Owen
simplyblue
Mark Goodwin
Kyle Huey
Wes Kocher