mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
453 833 коммитов 615 Ветки 98 Теги 5,7 GiB
Граф коммитов

9965 Коммитов

Автор SHA1 Сообщение Дата
Masatoshi Kimura 4bd144165f Bug 1224875 - Enable TLS extended master secret. r=keeler 2015-12-13 12:09:18 +09:00
ffxbld d729dd725a No bug, Automated HPKP preload list update from host bld-linux64-spot-1077 - a=hpkp-update 2015-12-12 04:08:02 -08:00
ffxbld 28f9941a1a No bug, Automated HSTS preload list update from host bld-linux64-spot-1077 - a=hsts-update 2015-12-12 04:08:00 -08:00
Magnus Melin b3dba24f5a Bug 1200567 - ensure shipped blocklist.xml doesn't affect the test_cert_blocklist.js. r=dkeeler 
Caused comm-central TEST-UNEXPECTED-FAIL | security/manager/ssl/tests/unit/test_cert_blocklist.js | - revocations.txt should be as expected
 2015-12-10 19:08:09 +02:00
Ryan VanderMeulen ec5f2e23e7 Merge m-c to inbound. a=merge 
--HG--
rename : browser/.eslintrc => storage/.eslintrc
rename : devtools/.eslintrc => toolkit/components/extensions/.eslintrc
extra : rebase_source : 5b2d39a455c81a001bd26e7bc85e7fbacdb79171
 2015-12-05 15:27:33 -05:00
Ryan VanderMeulen 289a16635a Merge fx-team to m-c. a=merge 2015-12-05 15:09:41 -05:00
ffxbld 4dd525a926 No bug, Automated HPKP preload list update from host bld-linux64-spot-049 - a=hpkp-update 2015-12-05 04:05:19 -08:00
ffxbld d2a4d282da No bug, Automated HSTS preload list update from host bld-linux64-spot-049 - a=hsts-update 2015-12-05 04:05:17 -08:00
Panos Astithas 92b2551106 Bug 1207146 - Add a link to expert technical information in the cert error page. r=Gijs,keeler 2015-12-04 19:46:13 +02:00
Bob Owen 05eb71c3a0 Bug 1229804: Use the correct string length in Windows sandbox logging. r=tabraldes 2015-12-03 11:19:14 +00:00
Carsten "Tomcat" Book df451fe7b0 merge mozilla-inbound to mozilla-central a=merge 2015-12-03 12:00:42 +01:00
ffxbld d661411aa5 No bug, Automated HPKP preload list update from host bld-linux64-spot-369 - a=hpkp-update 2015-12-02 14:59:16 -08:00
ffxbld eb8afa37f2 No bug, Automated HSTS preload list update from host bld-linux64-spot-369 - a=hsts-update 2015-12-02 14:59:14 -08:00
Mike Hommey 4005d567f9 Bug 1225682 - Don't use nsAuto{,C}String as class member variables in security/manager/. r=keeler 2015-12-02 11:04:37 +09:00
Xidorn Quan fb855297f6 Bug 1229587 part 2 - Use verbose format to disable C4061 to workaround bug of VS2015u1. r=keeler 
--HG--
extra : source : 96b812b70961a22ae01a377eb9aaaf405ed13349
 2015-12-03 09:29:42 +11:00
Xidorn Quan 8cd346c251 Bug 1229587 part 1 - Disable C4464 warning newly added in VS2015u1. r=keeler 
--HG--
extra : source : 1c79d789b2de950e8024d857f9315ea362141969
 2015-12-03 09:29:42 +11:00
Cykesiopka cb705a63a6 Bug 1224968 - Support public key input to unbreak periodic HPKP updates. r=keeler 
be448badb1%5E!/#F0 switched SHA1 hashes to public keys for static pins. This broke genHPKPStaticPins.js and thus periodic HPKP updates, since the file doesn't handle public keys.

The changes here mostly mirror ba1f296240.
 2015-12-01 00:30:00 +01:00
Cykesiopka ee7d82a508 Bug 1228794 - Convert test_getchain.js to generate certificates at build time. r=keeler 
With this change, CertUtils.py is no longer needed.

--HG--
extra : rebase_source : 2e7c7f82c17fd44d97fc68f657f3c313f4b4d125
 2015-12-01 00:28:00 +01:00
Bogdan Postelnicu d61cdc0082 Bug 1228346 - initialize mOCSPMustStapleEnabled in constructor. r=dkeeler 
--HG--
extra : rebase_source : be8c14f84b53f6e546ff242b40208ec3a1f1be03
 2015-11-26 07:40:00 +01:00
David Keeler a328c0c4e8 bug 986956 - only ever initialize NSS once per process r=Cykesiopka r=mgoodwin 
As a consequence, if NSS is initialized when there is no profile directory, NSS
will not persist changes. Other failures may occur (e.g. see bug 1216882).
 2015-11-19 13:31:52 -08:00
Mark Goodwin 7c0ac05619 Bug 1227970 - Perform preference checks to allow OCSP Bypass for OneCRL via Kinto r=keeler 
--HG--
extra : commitid : 5UjOTtwGffb
extra : rebase_source : 3ab4f4702056bde2fc6a1c4b22f5ed6abc59b918
 2015-11-26 16:57:21 +00:00
Carsten "Tomcat" Book 4e4b15962c Merge mozilla-central to mozilla-inbound 2015-11-25 13:57:30 +01:00
Jonathan Hao 7882aa6f0e Bug 1225422 - Update the PrivilegedPackageRoot certificate. r=keeler 2015-11-19 15:08:05 +08:00
Julian Hector 4b2655c8d9 Bug 1215303 - Part 2 - automatically enable broker when in permissive mode r=jld 2015-11-13 12:29:47 +00:00
Julian Hector 46f56a1f0e Bug 1215303 - Part 1 - add permissive mode r=jld 2015-11-13 12:27:45 +00:00
Ben Bucksch 2572e8c3db Bug 1200802 - Accept RFC1929 SOCKS credentials in proxyInfo. r=michal 2015-11-24 22:56:00 +01:00
Carsten "Tomcat" Book 5f1ac1afb3 merge mozilla-inbound to mozilla-central a=merge 2015-11-23 14:08:50 +01:00
ffxbld 8ad105e9a0 No bug, Automated HPKP preload list update from host bld-linux64-spot-1073 - a=hpkp-update 2015-11-21 03:49:57 -08:00
ffxbld 71a59e9585 No bug, Automated HSTS preload list update from host bld-linux64-spot-1073 - a=hsts-update 2015-11-21 03:49:55 -08:00
David Keeler 05b2bbbd51 bug 1230234 - fix a leak in client auth certificate handling r=Cykesiopka 
Looks like this was essentially a copy/paste error. See changeset 04b4ea333800,
which appears to have landed as part of bug 675221 (the bug number annotation in
that commit message is incorrect).
 2015-12-03 12:43:23 -08:00
Mark Goodwin 854efb9851 Bug 1224467 - Add a preference for controlling whether oneCRL blocklists are updated via AMO. Also add a test. r=keeler,mossop 2015-11-18 11:53:54 +00:00
Carsten "Tomcat" Book a22ff2640a Merge mozilla-central to mozilla-inbound 2015-11-17 12:33:46 +01:00
Carsten "Tomcat" Book 6f7666a6c8 merge fx-team to mozilla-central a=merge 2015-11-17 12:10:03 +01:00
ffxbld 869bf240ee No bug, Automated HPKP preload list update from host bld-linux64-spot-383 - a=hpkp-update 2015-11-17 00:44:58 -08:00
ffxbld a3e192d586 No bug, Automated HSTS preload list update from host bld-linux64-spot-383 - a=hsts-update 2015-11-17 00:44:56 -08:00
Cykesiopka af62dfe8e5 Bug 1224478 - Replace do_check_* calls with their Assert.jsm equivalents in PSM xpcshell tests. r=keeler 
Also replaces if-do_throw() blocks with equivalent Assert.jsm method calls.
 2015-11-16 22:53:00 +01:00
Wes Kocher c0ece6bf0d Merge m-c to fx-team, a=merge 
--HG--
extra : commitid : 2bzybQqlwy0
 2015-11-16 17:28:26 -08:00
Panos Astithas d9c75611cd Make 'Go Back' button work even when there is nothing to go back to (bug 1221084); r=paolo 2015-11-16 15:37:27 +02:00
Cykesiopka c10edfff85 Bug 1224481 - Comment out CA certs removed in NSS 3.21 in PreloadedHPKPins.json to keep periodic Static HPKP updates working. r=dkeeler 
--HG--
extra : transplant_source : %EAM%5D1%93%28H%BA%82%C0%0F%BB%3D%9E%40%8B%BCx%EB%03
 2015-11-13 07:28:28 -08:00
Cykesiopka fedad480ea Bug 1222903 - Reject EV status for EV EE certs that are valid for longer than 27 months as well. r=keeler 2015-11-13 07:42:00 +01:00
David Keeler eae048cea6 bug 1222179 - remove unnecessary observation topics in nsNSSComponent r=Cykesiopka 
nsNSSComponent would (unnecessarily) observe "profile-change-net-teardown" and
"profile-change-net-restore". Now it no longer does.
 2015-11-12 16:21:33 -08:00
Mark Goodwin 9f468cf8f0 Bug 921907 - Enable OCSP must-staple. r=keeler 
--HG--
extra : commitid : LvP86DDj772
extra : rebase_source : e06438c614c00fd9d77ca88886368948f13d6454
extra : histedit_source : f72078bac3dd14d4166ddd3bf24b582b13de1519
 2015-11-20 11:44:25 +00:00
Kai Engert 826cd3d4e3 Bug 1211568, land NSS_3_21_RTM r=martin.thomson, and adjust Makefiles r=mh 2015-11-13 18:03:01 +01:00
Mark Goodwin a954826958 Bug 901698 - Some tests for OCSP-must-staple; r=keeler 2015-11-13 16:49:09 +00:00
Mark Goodwin 31adb1a5c5 Bug 901698 - Implement OCSP-must-staple; r=keeler 2015-11-13 16:49:08 +00:00
David Keeler a1cf24355b bug 1223466 - update extended validation information to deal with root removals in NSS 3.21 r=mgoodwin 
These entries were removed:

from bug 1204962:

CN=TC TrustCenter Universal CA III,OU=TC TrustCenter Universal CA,O=TC TrustCenter GmbH,C=DE
SHA-256: 309B4A87F6CA56C93169AAA99C6D988854D7892BD5437E2D07B29CBEDA55D35D
SHA-1: 9656CD7B57969895D0E141466806FBB8C6110687

from bug 1204997:

CN=A-Trust-nQual-03,OU=A-Trust-nQual-03,O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH,C=AT
SHA-256: 793CBF4559B9FDE38AB22DF16869F69881AE14C4B0139AC788A78A1AFCCA02FB
SHA-1: D3C063F219ED073E34AD5D750B327629FFD59AF2

from bug 1208461:

CN=UTN - DATACorp SGC,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US
SHA-256: 85FB2F91DD12275A0145B636534F84024AD68B69B8EE88684FF711375805B348
SHA-1: 58119F0E128287EA50FDD987456F4F78DCFAD6D4
 2015-11-10 10:13:18 -08:00
Wes Kocher ea2623adb5 Merge m-c to inbound, a=merge 
--HG--
extra : commitid : 93SodIi80b2
 2015-11-11 17:12:26 -08:00
Masatoshi Kimura fa64c65e7c Bug 1219088 - Clear the session cache when a weak crypto override is revoked. r=keeler 2015-11-11 23:13:34 +09:00
Masatoshi Kimura 4b8e5ced0f Bug 1223131 - Don't remove a host from the whitelist if the version fallback was needed. r=keeler 2015-11-12 07:18:37 +09:00
Ehsan Akhgari eac2db7101 Bug 1215723 - Part 5: Add an automated test; r=keeler 2015-10-30 15:30:00 -04:00