99fd87410b
Bug 1808816 - find potential client certificates on the socket thread rather than the main thread r=jschanck
...
Differential Revision: https://phabricator.services.mozilla.com/D166371
2023-01-09 21:46:59 +00:00
e35344c5cf
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D166295
2023-01-09 13:09:38 +00:00
d5b0265d37
Bug 1805486 - land NSS NSS_3_87_RTM UPGRADE_NSS_RELEASE, r=nss-reviewers,bbeurdouche
...
Differential Revision: https://phabricator.services.mozilla.com/D166083
2023-01-05 16:31:20 +00:00
20f1afb0b5
Bug 1806041 - limit CIG checking to nightly builds r=yjuglaret
...
Differential Revision: https://phabricator.services.mozilla.com/D165997
2023-01-05 14:59:48 +00:00
9858b2a52e
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=dmeehan
...
Differential Revision: https://phabricator.services.mozilla.com/D166045
2023-01-05 13:10:13 +00:00
d86f570a9a
Bug 1808379 - don't return reference to temporary object r=yjuglaret
...
Differential Revision: https://phabricator.services.mozilla.com/D165995
2023-01-05 12:40:28 +00:00
9095a45904
Bug 1805371 - avoid building and running FaultyServer tests with system NSS. r=glandium,necko-reviewers,kershaw
...
Differential Revision: https://phabricator.services.mozilla.com/D164952
2023-01-03 17:48:24 +00:00
9594c03938
Bug 1808115 - Remove the separate EmbedPrompter wrapper, use Prompter instead. r=Gijs,necko-reviewers,geckoview-reviewers,valentin,m_kato
...
We no longer support the legacy add-ons, so this should not be necessary.
Differential Revision: https://phabricator.services.mozilla.com/D165764
2023-01-03 17:19:48 +00:00
11543ba854
Bug 1802290 - Remove +x permissions on more files r=linter-reviewers,andi
...
Differential Revision: https://phabricator.services.mozilla.com/D165841
2023-01-03 08:17:50 +00:00
742e8d773c
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D165811
2023-01-02 17:17:51 +00:00
bd687d3319
Bug 1744362 - Part 12: fix build and some tests r=handyman
...
- In sandboxBroker.cpp Be more careful about checking whether GetDependentModules() is returning an empty span to avoid ASAN problems
- In TestCrossProcessWin.cpp, make UniquePtr live as long as the Span that wraps it
- In LauncherRegistryInfo, mingw doesn't allow using `constexpr` with expressions containing '|', so just make flags `const` instead.
Differential Revision: https://phabricator.services.mozilla.com/D165561
2022-12-30 20:10:06 +00:00
61206c170d
Bug 1744362 - Part 5: Access the shared section through DllServices r=handyman
...
Differential Revision: https://phabricator.services.mozilla.com/D164487
2022-12-30 20:10:03 +00:00
1a73588968
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=diannaS
...
Differential Revision: https://phabricator.services.mozilla.com/D165673
2022-12-29 13:32:06 +00:00
1f8d23143a
Bug 1802288 - remove trailing whitespaces in idl/webidl files r=credential-management-reviewers,webidl,smaug,sgalich
...
Differential Revision: https://phabricator.services.mozilla.com/D165559
2022-12-28 09:52:44 +00:00
5e31c1c2cf
Backed out 12 changesets (bug 1744362) for causing build bustages.
...
Backed out changeset 3f63f21115e2 (bug 1744362)
Backed out changeset 0df403e8f6ba (bug 1744362)
Backed out changeset 34f51e6aee96 (bug 1744362)
Backed out changeset 39ff51df4a45 (bug 1744362)
Backed out changeset da9133df4cd4 (bug 1744362)
Backed out changeset 315c57948afa (bug 1744362)
Backed out changeset a2d8f526e0ff (bug 1744362)
Backed out changeset 401ebbc0159d (bug 1744362)
Backed out changeset 2911fe484cc3 (bug 1744362)
Backed out changeset d1f4b99f352b (bug 1744362)
Backed out changeset 0a3ce8ea039e (bug 1744362)
Backed out changeset ab1292118c00 (bug 1744362)
2022-12-27 22:54:30 +02:00
90ae8103e3
Bug 1744362 - Part 12: fix build and some tests r=handyman
...
- In sandboxBroker.cpp Be more careful about checking whether GetDependentModules() is returning an empty span to avoid ASAN problems
- In TestCrossProcessWin.cpp, make UniquePtr live as long as the Span that wraps it
- In LauncherRegistryInfo, mingw doesn't allow using `constexpr` with expressions containing '|', so just make flags `const` instead.
Depends on D164738
Differential Revision: https://phabricator.services.mozilla.com/D165561
2022-12-27 20:06:43 +00:00
882bef3d41
Bug 1744362 - Part 5: Access the shared section through DllServices r=handyman
...
Differential Revision: https://phabricator.services.mozilla.com/D164487
2022-12-27 20:06:40 +00:00
822be63b67
Backed out 11 changesets (bug 1744362) for causing multiple failures and build bustages. CLOSED TREE
...
Backed out changeset 4b2e3689cea0 (bug 1744362)
Backed out changeset cf1db931c466 (bug 1744362)
Backed out changeset 8c87571dbb3e (bug 1744362)
Backed out changeset 8b50446f91e5 (bug 1744362)
Backed out changeset 848632184f56 (bug 1744362)
Backed out changeset acfdb2bcaa9f (bug 1744362)
Backed out changeset 80b67f7ea109 (bug 1744362)
Backed out changeset c88902b60d1f (bug 1744362)
Backed out changeset 438f74bb5b7c (bug 1744362)
Backed out changeset 704a4150d210 (bug 1744362)
Backed out changeset 1dd7e7c111da (bug 1744362)
2022-12-27 16:25:04 +02:00
99ea21dafe
Bug 1744362 - Part 5: Access the shared section through DllServices r=handyman
...
Differential Revision: https://phabricator.services.mozilla.com/D164487
2022-12-27 12:59:08 +00:00
b07bb5c8bf
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=diannaS
...
Differential Revision: https://phabricator.services.mozilla.com/D165520
2022-12-26 15:37:07 +00:00
f69e697461
Bug 1801836 - Remove no longer necessary 'from __future__' imports. r=linter-reviewers,glandium,webdriver-reviewers,perftest-reviewers,geckoview-reviewers,jld,ahal,owlish,afinder DONTBUILD
...
Differential Revision: https://phabricator.services.mozilla.com/D165395
2022-12-23 22:45:46 +00:00
07f8e9babd
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D165389
2022-12-22 14:54:32 +00:00
8dd5f19d92
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D165231
2022-12-21 04:03:00 +00:00
2b72ef3e89
Bug 1801607 - Improve certManager layout. r=mconley,settings-reviewers
...
Allow the tabbox/tabpanels to shrink, and remove an useless <vbox>.
Differential Revision: https://phabricator.services.mozilla.com/D163660
2022-12-20 09:19:09 +00:00
b3afaa09ad
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D165011
2022-12-19 14:48:41 +00:00
93d4366b2d
Bug 1805486 - land NSS NSS_3_87_BETA1 UPGRADE_NSS_RELEASE, r=nss-reviewers,jschanck
...
Differential Revision: https://phabricator.services.mozilla.com/D164919
2022-12-16 18:33:28 +00:00
e6d1635f6e
Bug 1772924 - Remove osfile.jsm usage in /security/sandbox/ r=haik
...
Differential Revision: https://phabricator.services.mozilla.com/D163404
2022-12-16 00:29:46 +00:00
1071f00713
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D164800
2022-12-15 14:04:48 +00:00
a94c9b3808
Backed out changeset 9a6e4fbe0be0 (bug 1772924) for failures on browser_content_sandbox_fs_xdg.js. CLOSED TREE
2022-12-15 05:29:28 +02:00
2b616f5008
Bug 1772924 - Remove osfile.jsm usage in /security/sandbox/ r=haik
...
Differential Revision: https://phabricator.services.mozilla.com/D163404
2022-12-15 02:47:48 +00:00
d6331d843b
Bug 177175 - cancel subsequent PKCS#11 password prompts if more than one happens concurrently r=jschanck
...
Unfortunately, since NSS can prompt for PKCS#11 authentication on the main
thread, the prompt in question results in a nested event loop, which means that
the prompt code can be re-entered and another prompt can appear before the
first is dealt with. As long as NSS can run on the main thread, this will
continue to be the case. Recently we've done a lot of work to prevent NSS
running on the main thread, but that work is by no means complete. In the
meantime, we can paper over this situation by cancelling any prompts that come
after one that is still in progress. This will cause some NSS operations to
fail in a way that should be recoverable by simply retrying them (e.g. the user
can refresh the page or close and re-open it).
Differential Revision: https://phabricator.services.mozilla.com/D164280
2022-12-13 20:43:37 +00:00
b76b1c4d68
Bug 177175 - re-implement PKCS#11 protected auth UI with modern components r=jschanck,fluent-reviewers,flod
...
The previous implementation used some heavyweight, outdated, and unnecessary
components to achieve its effect. This patch greatly simplifies the
implementation.
Differential Revision: https://phabricator.services.mozilla.com/D164279
2022-12-13 20:43:36 +00:00
cc88d42fef
Bug 1804793 - add missing data-l10n-args for tokenName in changepassword.xhtml r=Gijs
...
Differential Revision: https://phabricator.services.mozilla.com/D164278
2022-12-13 19:59:53 +00:00
28f5b1d868
Bug 1805282 - update static pinning information url r=jschanck
...
Chrome has updated where it stores its static pinning information.
Differential Revision: https://phabricator.services.mozilla.com/D164498
2022-12-13 19:53:19 +00:00
04363d3827
Bug 1802689 - Add missing licenses info in Cargo.toml r=mhoye,necko-reviewers,kershaw,valentin
...
Differential Revision: https://phabricator.services.mozilla.com/D163157
2022-12-13 09:14:44 +00:00
5fd296e7b8
Bug 1804595 - Update osclientcerts to libloading 0.7. r=keeler,supply-chain-reviewers
...
Differential Revision: https://phabricator.services.mozilla.com/D164177
2022-12-13 00:37:50 +00:00
53ce0faad1
Bug 1804661 - Convert browser/components/BrowserGlue.jsm to an ES module. r=Gijs,settings-reviewers,perftest-reviewers,sparky
...
Differential Revision: https://phabricator.services.mozilla.com/D164204
2022-12-12 14:59:18 +00:00
fbbfc74875
No Bug, mozilla-central repo-update HSTS HPKP remote-settings tld-suffixes - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D164446
2022-12-12 13:48:29 +00:00
7f3ed4068d
Bug 1802996 - land NSS NSS_3_86_RTM UPGRADE_NSS_RELEASE, r=bbeurdouche
...
Differential Revision: https://phabricator.services.mozilla.com/D164263
2022-12-08 20:51:52 +00:00
255408cc51
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D164198
2022-12-08 14:23:48 +00:00
88838b311a
Bug 1801016: remove expiring telemetry "security.psm_ui_interaction" r=djackson
...
Differential Revision: https://phabricator.services.mozilla.com/D163972
2022-12-07 17:30:21 +00:00
9e6457328f
Bug 1802319 - Modification of the bug "Consider removing ECDSA_SHA1 signature algorithm". r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D162999
2022-12-07 11:34:55 +00:00
ff47c36f9b
Bug 1803914 - Automatically replace Cu.reportError with console.error (misc). r=mossop
...
Differential Revision: https://phabricator.services.mozilla.com/D163772
2022-12-06 14:34:57 +00:00
c5dcc9435f
Bug 1797279 - Add nsINSSComponent.asyncClearSSLExternalAndInternalSessionCache that waits for socket process to clear the cache r=keeler,necko-reviewers,kershaw
...
This is a test only method, and the fact that the operation is not sync
with socket process can possibly cause racy tests.
This patch adds an async version of clearSSLExternalAndInternalSessionCache
that returns a promise.
Differential Revision: https://phabricator.services.mozilla.com/D162153
2022-12-06 10:36:10 +00:00
21e1f65696
Bug 1784517 - Explicitly skip sandboxing tests on unsandboxed build types. r=jmaher
...
There are tools which consume `moz.build` files by reading every one in
the tree, rather than traversing `DIRS` for a specific build type (see
bug 1667271#89 for background); as a result, we can end up with
CI test jobs that try to run sandboxing tests on build types like Linux
ASan where `security/sandbox` isn't built, and fail.
This patch applies a suggested workaround: add an otherwise redundant
`skip-if` declaration to the test manifests to skip them on the platforms
where they're not part of the build.
Note that sandboxing is disabled in the presence of Linux ASan or TSan
by logic in `toolkit/moz.configure`, but for code coverage builds it's
done via the CI mozconfig files adding `--disable-sandbox`.
Differential Revision: https://phabricator.services.mozilla.com/D163411
2022-12-05 21:23:32 +00:00
3026e10680
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D163821
2022-12-05 14:05:21 +00:00
282382a80f
Bug 1802996 - land NSS NSS_3_86_BETA1 UPGRADE_NSS_RELEASE, r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D163641
2022-12-03 21:47:31 +00:00
06c7606fd3
Bug 1803704 - Disable EV Treatment for "Network Solutions Certificate Authority". r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D163735
2022-12-02 18:41:39 +00:00
5eaed27bd7
Backed out changeset 4534fc16cb5c (bug 1802996) for causing multiple failures UPGRADE_NSS_RELEASE CLOSED TREE
2022-12-01 18:47:20 -05:00
399c57a914
Bug 1802996 - land NSS NSS_3_86_BETA1 UPGRADE_NSS_RELEASE, r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D163641
2022-12-01 21:41:21 +00:00
Dana Keeler
ffxbld
Dennis Jackson
Greg Stoll
John Schanck
Mark Banner
Sylvestre Ledru
Toshihito Kikuchi
Butkovits Atila
Stanca Serban
Marco Castelluccio
Emilio Cobos Álvarez
Barret Rennie
Csoregi Natalia
Mike Hommey
Natalia Kulatova
Valentin Gosu
Jed Davis
Cristian Tuns