3b87f4167c
Bug 570616 - nsNSSSocketInfo cannot deserialize when mCert was null. r=bz
2010-08-13 00:57:28 -07:00
f561e6a88d
Bug 580679: Build NSS with the TLS zlib compression code.
...
Add the security.ssl.enable_compression preference to
enable TLS compression, disabled by default.
r=khuey,kaie,sayrer,ted. approval2.0+ by bsmedberg.
2010-08-12 14:12:05 -07:00
f3e725de22
Don't bother checking if NSS is in a child process unless MOZ_IPC is defined. r+a+=bz
...
Followup to Bug 559711. e10s HTTP: turn off NSS in child process(es)
2010-08-09 18:46:20 -04:00
d6046ea06d
Bug 559711 - Disable NSS in the content process, r=honzab
2010-08-09 14:38:44 -04:00
dc23c8f9f4
Bug 583908: Test the SSL_ENABLE_FALSE_START macro to allow building
...
with NSS 3.12.7 or older. r=kaie. approval2.0+ by sayrer.
2010-08-06 18:01:21 -07:00
137eb3f5f0
Bug 583908: Enable TLS false start by default. Add the preference
...
security.ssl.enable_false_start to disable it. r=sayrer.
approval2.0+ by sayrer.
2010-08-02 22:10:52 -07:00
4fc12f82be
Bug 538531 - valgrind: UMR in sec_asn1e_write_contents() because PSM passes uninitialized SECItem to NSS r=sayrer,honzab.moz
...
--HG--
extra : rebase_source : 5adcbbde9728161c83ab3967e059ec8c50495edc
2010-07-18 11:25:16 +02:00
6061afc7d9
Bug 560256 - Ignore document.write() from external scripts when there is no proper insertion point. r=jonas.
2010-06-19 09:38:41 +03:00
f94d6c3608
Merge mozilla-central to tracemonkey.
2010-07-06 11:05:39 -07:00
4bd9280674
Bug 562387 - Convert NS_NEWXPCOM/NS_DELETEXPCOM to new/delete. r=bsmedberg
2010-07-05 11:42:18 +02:00
2fd899ed0f
Merge mozilla-central to tracemonkey.
2010-07-02 17:25:52 -07:00
d0f35f6883
Remove @status FROZEN and @status UNDER_REVIEW. r=bsmedberg
...
--HG--
extra : rebase_source : 7fab31a6b7898e05ff828482390846cc9ce2854d
2010-07-02 10:27:06 -04:00
b2124655df
Backed out changeset 59ace8d80ce8
2010-07-04 22:01:13 +02:00
8952503f91
Bug 562387 - Convert NS_NEWXPCOM/NS_DELETEXPCOM to new/delete. r=bsmedberg
2010-07-04 21:39:17 +02:00
a677e5bf91
Merge mozilla-central, including the Electrolysis changes, into the branch for bug 568691.
2010-07-01 11:55:57 -04:00
0df0345c66
Merge mozilla-central into the "branch" for but 568691. The omnijar XPT/component/chrome registration was removed during this merge, and will be re-added to the component manager shortly.
...
--HG--
rename : content/base/public/nsIChromeRegistry.idl => chrome/public/nsIChromeRegistry.idl
2010-06-21 11:41:42 -04:00
a7e67d32ad
Bug 568691 part B - mechanical changes to in-tree binary modules needed to get them building and registering correctly. After this patch, xpcshell appears to work.
2010-06-10 14:11:40 -04:00
386cfabff6
Backed out 9cfe0ace0e95 (SecurityInfo). Segfaulting.
2010-06-30 17:42:30 -07:00
8faab2606c
e10s HTTPS: securityInfo. sr=biesi.
2010-06-30 09:17:51 -07:00
386a098a89
Merge from m-c.
...
Fair amount of merge conflicts.
Biggest item was changes to nsHttpChannel from web sockets changes.
Other likely suspects if things are borken:
nsFrameLoader.cpp:
- nsFrameLoader::EnsureMessageManager: pass "this" (orig e10s code) or
nsnull (m-c) to local process call to new nsFrameMessageManager(),
callback arg? Smaug said null.
- only calling SetCallBackData for local case. also +r smaug.
nsPrefBranch.cpp had fairly extensive merge conflicts.
nsChromeRegistry had lots of changes.
Dougt did most of the non-necko changes (thanks).
--HG--
rename : netwerk/protocol/http/nsHttpChannel.cpp => netwerk/protocol/http/nsHttpChannelAuthProvider.cpp
rename : netwerk/protocol/http/nsHttpChannel.h => netwerk/protocol/http/nsHttpChannelAuthProvider.h
2010-06-22 17:33:57 -07:00
b2c88178e3
Merging with M-C.
...
Hand merged the following files:
U chrome/src/nsChromeRegistry.cpp
U chrome/src/nsChromeRegistry.h
U content/base/src/nsFrameLoader.cpp
U content/base/src/nsFrameLoader.h
U dom/src/geolocation/nsGeolocation.cpp
U dom/src/geolocation/nsGeolocation.h
U netwerk/build/Makefile.in
U netwerk/cookie/nsCookieService.cpp
U netwerk/cookie/nsCookieService.h
--HG--
rename : extensions/cookie/test/unit/test_cookies.js => extensions/cookie/test/unit/test_cookies_thirdparty.js
rename : netwerk/cookie/src/nsCookieService.cpp => netwerk/cookie/nsCookieService.cpp
rename : netwerk/cookie/src/nsCookieService.h => netwerk/cookie/nsCookieService.h
rename : netwerk/dns/src/nsIDNKitInterface.h => netwerk/dns/nsIDNKitInterface.h
rename : netwerk/protocol/http/src/nsHttp.h => netwerk/protocol/http/nsHttp.h
rename : netwerk/protocol/http/src/nsHttpChannel.cpp => netwerk/protocol/http/nsHttpChannel.cpp
rename : netwerk/protocol/http/src/nsHttpChannel.h => netwerk/protocol/http/nsHttpChannel.h
rename : netwerk/protocol/http/src/nsHttpChunkedDecoder.h => netwerk/protocol/http/nsHttpChunkedDecoder.h
rename : netwerk/protocol/http/src/nsHttpHandler.cpp => netwerk/protocol/http/nsHttpHandler.cpp
rename : netwerk/protocol/http/src/nsHttpHeaderArray.h => netwerk/protocol/http/nsHttpHeaderArray.h
rename : netwerk/protocol/http/src/nsHttpRequestHead.h => netwerk/protocol/http/nsHttpRequestHead.h
rename : netwerk/protocol/http/src/nsHttpResponseHead.h => netwerk/protocol/http/nsHttpResponseHead.h
rename : netwerk/protocol/http/src/nsHttpTransaction.cpp => netwerk/protocol/http/nsHttpTransaction.cpp
rename : netwerk/protocol/res/src/nsResProtocolHandler.cpp => netwerk/protocol/res/nsResProtocolHandler.cpp
rename : netwerk/protocol/res/src/nsResProtocolHandler.h => netwerk/protocol/res/nsResProtocolHandler.h
2010-06-07 13:38:02 -07:00
0dc0f3273e
merge with m-c. resolved conflicts in:
...
U chrome/src/nsChromeRegistry.cpp
U content/base/src/Makefile.in
U dom/base/nsDOMClassInfo.cpp
U toolkit/toolkit-tiers.mk
--HG--
rename : toolkit/mozapps/extensions/test/unit/test_bug541420.js => toolkit/mozapps/extensions/test/xpcshell/test_bug541420.js
2010-05-11 11:09:54 -07:00
9478c01a40
Remove stray line breaks from NS_ERROR messages, since they interfere with log processing. rs=jst
...
--HG--
extra : rebase_source : 87421691da969e0ebe5fbfbc44cd8f18617d1351
2010-06-17 13:28:38 -07:00
3875488c7e
Bug 530384 - Replace PR_MIN/PR_MAX with NS_MIN/NS_MAX in security/manager. r=kaie
2010-06-17 21:46:24 +02:00
5ebad349f1
backout changeset 9a0a17e18b72 - wrong commit info
2010-06-17 21:57:13 +02:00
64d6e856c2
Bug 530384 - Replace PR_MIN/PR_MAX with NS_MIN/NS_MAX in security/manager. r=kaie
2010-06-17 21:46:24 +02:00
87fe91746b
Bug 559333 useless signed check of PRUint32 index in nsCertTree::DeleteEntryObject
...
r=kaie
2010-06-16 18:54:22 +02:00
0403e4139f
Bug 354273 S/MIME signed emails include duplicate cert in chain. r=nelson
2010-06-15 14:23:05 +01:00
a835a85bb1
Bug 498311, HTTPS site is marked TLS intolerant and SSLv2 handshake is used when the stop loading button is clicked, r=kaie
2010-06-12 13:30:26 +02:00
4129f47992
Bug 542460 - Remove executable permission on source files [r=ted.mielczarek]
2010-05-06 09:32:50 +02:00
8c1dcec454
Bug 562310 Part 6: Convert C-string version (nsCCommaSeparatedTokenizer) into generic nsCCharSeparatedTokenizer class, too. r=roc
2010-05-04 07:43:48 -07:00
76eb0b7a70
Bug 562310 Part 1: Rename file nsCommaSeparatedTokenizer.h to nsCharSeparatedTokenizer.h (and update #includes). r=roc
...
--HG--
rename : xpcom/ds/nsCommaSeparatedTokenizer.h => xpcom/ds/nsCharSeparatedTokenizer.h
2010-05-04 07:43:48 -07:00
eb2ff88741
Bug 555860, Enable Certplus Class 2 Primary CA for EV in PSM
...
r=rrelyea, r=honzab
2010-05-03 13:34:56 +02:00
2eae427786
Bug 549641, Firefox raises alarm (in error console) about SSL servers being vulnerable to CVE-2009-3555
...
r=rrelyea, r=honzab
2010-05-03 13:34:16 +02:00
41337c956c
Bug 557888 - nsCertAlreadyExists always leaks unused arena, r=kaie
...
--HG--
extra : rebase_source : 33db7306106d05a695da3928648f4540fb673eb0
2010-04-07 13:24:00 -07:00
447ebae44b
Bug 557893 - ProcessRDN leaks decodeItem on failure, r=kaie
...
--HG--
extra : rebase_source : 4cdfdf205b6de7a810a4bf86cacd5c3e1635aa8d
2010-04-07 13:46:00 -07:00
453380b2a7
Merge
2010-03-12 15:20:36 -08:00
6b6e9978a3
Bug 544097 Chaning mochitests to run against mochi.test instead of localhost r=ted, waldo, dwitte p=jmaher. Landed on CLOSED TREE
2010-03-12 13:53:36 -08:00
f7e0599a99
Bug 456409 GetSlotWithMechanism leaks slot list element in several path
...
Handle OOM relating to PK11_GetFirstSafe/PK11_FreeSlotListElement
r=kaie
--HG--
extra : rebase_source : 738e54658fbf7b4d27cb307454a2a9904d07a138
2010-03-12 07:50:11 +01:00
c741a38e65
Merge
2010-03-01 15:36:51 -08:00
66e2a2f448
Merge from mozilla-central
2010-02-22 21:31:18 -06:00
e2d74b698a
Bug 462919, ability to override NSS database path for xulrunner applications
...
merged and adjusted whitespace. r=rrelyea
2010-02-18 13:24:05 +01:00
440e6facc8
Bug 540332, Update PSM to include the latest NSS error codes
...
Patch v3, yet another string, r=wtc
2010-02-18 13:21:44 +01:00
bef52a9b34
Bug 546644 - Remove trailing white space from test_bug521461.html. r=honzab.moz.
...
--HG--
extra : rebase_source : 0c601a1c1365c47c23deedae5e850028ae7024f1
2010-02-22 14:17:35 +02:00
26010bfe9d
Bug 546644 - Remove trailing white space from test_innerHtml[Delayed]UnsecurePicture.html. r=honzab.moz.
...
--HG--
extra : rebase_source : c8cbc1e282a189a88bd5dc84d75bf2cb8f6c13b9
2010-02-22 14:17:35 +02:00
12091aa8ea
Bug 544698 part 1: Move value processing from submission code to elements. Decomtaminate. Kill a few dead functions. r=jst
2010-02-24 21:58:16 -08:00
96319c4535
backing out changesets e939397fc6a5, 88529662c474 and 3d7c54b194bb due to random hangs in pgo tests
2010-03-09 22:33:11 -05:00
1c8d232df2
Bug 544097 changing mochitests to use mochi.test instead of localhost for windows mobile refactoring p=jmaher, r=ted,dwitte, sayrer, waldo, ctalbert
2010-03-09 08:55:39 -08:00
a7c3948d0a
Backed out changeset 8ce70abd7777
2010-03-09 01:14:21 -05:00
694ec71da0
Bug 544097 Change mochitests to use mochi.test instead of localhost for mobile refactoring p=jmaher r=ted,dwitte,sayrer
2010-03-08 19:21:33 -08:00
5b4513c7e9
Backed out changeset b4372055f473 -- due to unexplained orange on OS X Leak test (Bd) box
2010-03-07 17:34:23 -08:00
3cd691129e
Bug 544097 - Change mochitests to use mochi.test instead of localhost for mobile test refactoring p=jmaher, r=sayrer,dwitte
2010-03-07 16:08:05 -08:00
103fa1295e
Merge mozilla-central to tracemonkey.
2010-06-21 18:01:14 -07:00
41b9495dcf
Bug 565157 - typed JS_AddRoot (r=igor)
2010-06-07 17:05:02 -07:00
a3abf70391
Merge mozilla-central into electrolysis
2010-02-09 11:39:28 -05:00
efa70ad28e
Merge mozilla-central into electrolysis.
2010-02-03 13:28:22 -05:00
868688bc4b
Bug 456099 followup: Remove unneeded & unused variables introduced by earlier outparam-deletion patch. r=smaug
2010-02-02 12:05:22 -08:00
62caa75f94
Bug 535649 - Implement UI around CVE-2009-3555 and draft-rescorla-tls-renegotiation, r=rrelyea
...
== NSS 3.12.6 will block some renegotiation attempts on SSL sockets by default
== This patch does not yet implement new UI by default, but adds 4 new prefs to get fine grained control (blocking/allowing, displaying broken state)
== One of the prefs is a temporary pref that is supposed to go away at some point in the future
2010-02-07 13:09:51 +01:00
2bfab230a2
Bug 540332, Update PSM to include the latest NSS error codes, r=rrelyea
2010-02-07 13:06:53 +01:00
5ce04ab127
Merge mozilla-central to electrolysis.
2010-01-06 11:27:39 -05:00
ce04e613ae
merging
2010-01-05 23:50:02 +01:00
2ca671cc18
Bug 327181 - actually deleting nsIBadCertListener.idl r/sr=biesi
2010-01-05 23:42:34 +01:00
4e352d7aeb
Merge mozilla-central into electrolysis
2009-12-04 11:28:50 -05:00
7146022112
Bug 499716, Enable Buypass Class 3 CA 1 for EV in PSM
...
r=rrelyea, approval-1.9.2=johnath
2009-12-04 07:10:35 +01:00
e53a7195d5
Merge mozilla-central into Electrolysis.
2009-11-24 10:06:03 -05:00
d74c6776f3
Merge mozilla-central into electrolysis.
2009-11-19 12:41:46 -05:00
aa6998dee6
Bug 520607 - Remove use of "ntlm" auth module and replace with use of "sys-ntlm". r=wtc, cbiesinger. sr=bz.
2009-11-19 16:12:43 -06:00
2f47360eda
Bug 523356 - Remote event listeners for Electrolysis, r=bsmedberg
2009-11-17 16:22:23 +02:00
837ced7851
Backout Bug 523356
2009-11-17 13:56:49 +02:00
7084484409
Bug 523356 - Remote event listeners for Electrolysis, r=bsmedberg
2009-11-17 10:43:39 +02:00
3eccd7000e
Bug 472014 - the smartcardmonitoringthread code uses the wrong allocator and isn't careful about buffer sizes, r=rrelyea
2009-11-14 20:54:46 -08:00
284d0a4d47
Bug 528184 - Invalid read, missing null check in nsNSSIOLayer.cpp. r=kaie
2009-11-12 19:45:37 +02:00
0d39e46fc6
Bug 527347 - nsIScriptableUnicodeConverter::convertToByteArray aLen out param should be optional. r=smontagu
2009-11-12 11:07:00 +01:00
c888c1980e
Back out bug 487059, fix tests and EM to cope, r=gavin,beltzner, bug 524995
...
--HG--
extra : rebase_source : d8414b8de165cf2fa534719c36416d82d21872c6
2009-10-29 14:44:10 +01:00
11f96c5208
Bug 427716 - don't get modules before locks, r=kaie
2009-10-25 10:03:13 -07:00
4cbf4b3e0c
Bug 521461 - SSL spoofing by setting location.href to SSL page with 204 (No Content) response: security ui treats 204/205 top level requests as subrequests, r=bzbarsky
2009-10-16 16:48:20 +02:00
c827f3a584
Electrolysis-plugin-only bookkeeping commit.
2009-12-15 20:33:05 -05:00
6c111ee4ae
Bug 568120 - Possible intermittent oranges in tests with iframe onload handlers pointing to functions defined later; r=sicking
...
--HG--
extra : rebase_source : 1f4fd2b78e396303cefbe42f0e4dcf602694ee01
2010-05-25 20:33:17 -04:00
2d04ada140
Bug 469856 (patch from Bug 413171) - "could not initialize the application's security component" with non-native characters in the profile path, r=bsmedberg moa=kaie
...
--HG--
extra : rebase_source : b1ca64d17ceee32c4702e49568a6ba3e04e800f1
2008-12-15 11:35:40 +01:00
3802efc70d
Bug 436043 time errors (certErrorExpired and certErrorNotYetValid) should indicate "now"
...
show the current time in addition to the unacceptable time
r=kaie
2009-09-27 11:23:27 +02:00
3898813fcc
Bug 447589 - nsPK11Token::ChangePassword does not allow null arguments. r=kaie
2009-09-27 11:19:11 +02:00
675bd2ec08
Bug 470240 - unrecognized certificate should highlight the case when there's no chain provided. r=kaie
2009-09-26 21:04:19 +02:00
6abbe132c6
bug 512759 - mochitest-plain timeouts on Linux/Mac SeaMonkey, also set useDownloadDir during the test, r=KaiRo, also fix KaiRo's nits on clearing instead of re-setting prefs at the end of the test
2009-08-30 13:39:17 +02:00
91b204c923
Bug 495384: Initialize NSS by calling NSS_Initialize with
...
NSS_INIT_NOROOTINIT to turn off the loading of the root certs
module in nss_Init. We load the root certs module in the
InstallLoadableRoots function, so we don't need nss_Init to load
it. r=rrelyea,kaie.
2009-08-29 10:04:30 -07:00
e879695cc2
b=511808; followup patch, ensure that we GetBoolPref succeeded before enabling ciphers; r=johnath,r=wtc
2009-08-27 10:20:17 -07:00
b8cdafe055
Bug 477118 - https webpage with data: images trigger a Page contains unencrypted information mixed content warning, r=bz
2009-08-25 21:25:32 +02:00
9802042744
Bug 329869 - Dynamically loaded scripts don't degrade security state, r=honzab,kaie
2009-08-25 21:25:32 +02:00
ba372f3a4c
Followup to bug 398573 - remove REQUIRES from the tree since it is no longer used... automatically generated patch, rs=ted
2009-08-25 08:59:31 -07:00
672d60d0bf
Bug 507379 - hostname from SSL_RevealURL is null checked too late [@ nsDependentCString - nsNSSBadCertHandler]; r=kaie
2009-08-25 15:22:28 +02:00
bbafe35620
Bug 480619 - Firefox does not load CSS and images when loading a secure (SSL, https) page for the first time (or after â€کclear private data’) and requires refresh to load properly (test); r=biesi,kaie
2009-08-23 11:00:38 +04:30
b5592178c6
Bug 467948: Fix some "deprecated conversion from string constant" compiler warnings", round 2. r=dbaron
2009-08-18 08:48:32 -07:00
46761e528c
Bug 507370 - ssltunnel may hang with 100% CPU load, breaking the tests execution, r=ted
2009-08-17 18:41:27 +02:00
50ea1c00ed
Bug 510135: Back out this change because it breaks the Linux build
...
(jump to label 'loser' crosses initialization of
'CertificateGeneralName* current').
2009-08-15 21:29:29 -07:00
f7e7fdc369
Bug 510135: Fix leaks of certificatePolicies and subjectAltName
...
extensions. r=alexei.volkov.
2009-08-15 20:51:10 -07:00
b71a1a1cfa
Bug 489502 - Replace NS_ASSERTION(0, ...) by NS_ERROR(...) in mozilla-central; r=benjamin
2009-08-14 16:09:00 +02:00
683a2e9c02
Bug 510135: Don't need to decode policy OID in CERTPolicyInfo
...
because the 'oid' member contains the decoded policy OID. Use
CERT_REV_M_IGNORE_MISSING_FRESH_INFO (the default) for clarity.
r=alexei.volkov
2009-08-14 06:37:31 -07:00
f1e6b4e452
Bug 504101 mRememberClientAuthCertificate is unintialized
...
r=kaie
2009-08-12 11:49:52 +02:00
b98bb36896
Bug 478839 - Support South Korean SEED crypto cipher suites. r=nelson
2009-08-09 09:19:06 +02:00
49d150f5fa
Bug 508835 - test_bug472986.html intermitently fails, orange fix
2009-08-07 10:40:21 +02:00
b97a0e78a3
Bug 444021 - Remove useless |#include "nsILocale[Service|].h"|; (Av1) Just remove them; r=smontagu
2009-08-06 20:00:41 +02:00
408a69e9bf
Bug 495387 - A few naughty things build their tests without ENABLE_TESTS, security tests fix, r=jwalden, a=beltzner
2009-08-06 16:29:26 +02:00
2c969d8724
Backed out changeset 60add17e8ed3
2009-08-05 16:44:03 +12:00
c5041f44f7
Bug 486081. Remove unused nsTime class. r=roc
...
--HG--
extra : rebase_source : 582694b45d1d56759a619a4243abfc5a05453d8a
2009-08-05 14:39:05 +12:00
9a7c591b1f
Bug 483440 - PSM doesn't detect invalid OID encodings in Cert Viewer Details tab, r=nelson+johnath
2009-07-29 22:23:27 +02:00
487118f352
Bug 483437 - PSM doesn't properly escape AVA Values in Cert Viewer Details tab, r=nelson+benjamin
2009-07-29 22:23:27 +02:00
079d6376b1
Bug 492717 - nsNTLMAuthModule.cpp ParseType2Msg(): need to check |offset| value; (Av1) offset and length; r=(kaie + rrelyea) no_sr
2009-07-29 14:38:36 +02:00
dbff2f3e5e
Bug 427715 - nsCryptoHash apparently being called while NSS is in shutdown state [@ NSSRWLock_LockRead_Util], r=kaie
2009-07-28 23:26:26 +02:00
49f9e7320b
Bug 412833 - TLS intolerant server condition is concluded prematurely, r=nelson
2009-07-20 17:25:04 +02:00
ec00532cf8
Add default OCSP responder for trustwave. b=497184 r=johnath sr=kaie
2009-07-16 11:40:24 -04:00
59458f68ea
Add default OCSP responder for globalsign. b=497172 r=nelson
2009-07-16 11:37:22 -04:00
2549d9ea3e
Bug 329869 - Dynamically loaded scripts don't degrade security state, r=kaie
2009-06-28 18:51:02 +02:00
233642a52c
Bug 414635 - nsICryptoHash reinitialization implementation is inefficient, PSM part, r=kaie+wtc
2009-06-28 12:02:50 +02:00
43d5f221c2
Bug 427715 - fixing build bustage on linux
2009-06-24 20:07:46 +02:00
65d8462672
Bug 455590, use new drag and drop api with trees, r=neil,sr=smaug
2009-06-24 13:12:33 -04:00
fc5a81de1e
Bug 427715 - nsCryptoHash apparently being called while NSS is in shutdown state [@ NSSRWLock_LockRead_Util], r=kaie
2009-06-24 18:56:52 +02:00
1833849152
Bug 495764 - remove unused methods from nsIPrivateDOMEvent, r+sr=jst
...
--HG--
extra : rebase_source : a1ad4daa29a7025a0345ece37752b8e6374d7b1f
2009-06-24 12:02:37 +03:00
5c69014ee8
Bug 486990 - Context Menu can be disabled by stopping propagation, r=enn, sr=neil
2009-06-23 13:07:39 +03:00
4e1d24ee7e
backout Bug 486990
...
--HG--
extra : rebase_source : 5947dd5fcc29bfb333c53cc2f60a00895910e9bb
2009-06-17 16:22:37 +03:00
6e6975e220
Bug 486990 - Context Menu can be disabled by stopping propagation, r=enn, sr=neil
...
--HG--
extra : rebase_source : a425f116d1350ff1204f1b031754a262ec73f8b1
2009-06-17 13:26:21 +03:00
9c8455122d
Back out b8e531a6c961 (Bug 474369), it really did cause the windows dhtml regression
...
--HG--
extra : rebase_source : 568114bcfc5a7710d9e2c2fe5e234fa190bebba1
2009-06-16 14:38:51 +02:00
21896afffc
Bug 474369 - get rid of nsVoidArray, remaining parts; r=bz, sr=dbaron
2009-05-07 17:15:26 +02:00
81ff957c42
Bug 497832: Restore const keyword on char*s in nsMyTrustedEVInfo struct, to reduce compiler spam. r=kaie
2009-06-13 22:09:38 -07:00
a18d5b035f
Bug 495387 - A few naughty things build their tests without ENABLE_TESTS, r=ted
2009-06-13 11:53:37 -07:00
77ee365941
Bug 480619 - FF does not load objects over secure connection after 'clear private data', r=kaie
2009-06-12 22:04:43 -04:00
118ee75268
Back out bug 474369, suspected of causing dhtml and tp3 regression
2009-06-12 23:20:55 +02:00
990fceee6e
Bug 474369 - get rid of nsVoidArray, remaining parts; r=bz, sr=dbaron
...
--HG--
extra : rebase_source : 2f40cba97555521222512c7cd793c2a2adcca333
2009-05-07 17:15:26 +02:00
9a4c0b4b6f
Bug 495618 - "Reloading form posts fails with javascript nsIPromptService implementation". r+sr=bzbarsky
2009-06-11 13:09:34 -04:00
1559de55e2
Bug 326628 try #2 - remove window.pkcs11 and fix the device manager not to use that API, r=kaie
2009-05-28 19:36:21 -07:00
d9efb6995e
Final merge to back out bug 326628 (and followup bug 487980) due to regression bug 494899.
2009-05-27 09:15:21 -04:00
48077de5cc
Backed out changeset eea9639048b8, bug 326628 main patch, due to regression bug 494899
2009-05-27 09:09:01 -04:00
33fadf45ea
EV enablement for 6 roots. b=493709 r=kaie
...
WellsSecure, SECOM Trust, StartCom, SwissSign, Cybertrust, DigiNotar
2009-05-22 11:41:44 -04:00
3d486c9ebb
Bug 431819, IMAP/POP/SMTP/LDAP with SSL client auth, Thunderbird repeatedly prompts for client certificate
...
(applies to firefox with SSL client auth, too)
r=relyea for an earlier patch that was checked in to mozilla-1.8.x more than a year ago
r=honzab on the diff on top of that earlier patch
a=beltzner for landing on restricted trunk
2009-05-21 00:21:51 +02:00
8ca895d0e6
Bug 445871 - SSL certificates added as exceptions should never be treated as EV, r=kaie, sr=bz
2009-05-20 10:23:41 +02:00
dd2848c629
Backed out changeset 461d728271d1
2009-05-19 13:51:18 +01:00
6a70c37113
Bug 474369 - get rid of nsVoidArray, remaining parts; r=bz, sr=dbaron
2009-05-07 17:15:26 +02:00
56cce7342e
Fix mis-spellings of "receive" to kick builds on a CLOSED TREE.
2009-05-18 09:48:36 -04:00
c878c11e71
backing out because this appears to have caused leaks
2009-05-13 09:13:09 -04:00
d1370f1423
Bug 445871 - SSL certificates added as exceptions should never be treated as EV, r=kaie
2009-05-13 11:50:46 +02:00
5a7f33d593
Bug 326628 Try #2 - User content can pop up PKCS11 dialogs, which is annoying and entirely unnecessary r+sr=jsr,r=kaie
2009-04-10 13:21:04 -04:00
882ae00fd6
Back out everything from bug 326628 because it's too red to fix on the fly. CLOSED TREE
2009-04-09 16:01:02 -04:00
7fd586cb4d
Bug 326628 - user content can pop up pkcs11 dialogs, which is annoying and entirely unnecessary r+sr=jst,r=kaie
2009-04-08 10:27:45 -04:00
b8c77c9fa2
Bug 487632 - test_unsecureIframeMetaRedirect.html intermittently fails, disabling the test temporarily
2009-04-09 18:11:31 +02:00
cc6646c40e
Bug 480713, disabling test_dynUnsecureRedirect.html
2009-04-08 14:21:32 +02:00
c5c01a59b6
Bug 480713 - nsDocLoader doesn't clear requests from mRequestInfoHash, security UI may not report mixed content, r,sr=jst
2009-04-08 10:45:32 +02:00
fe8cf6b9bf
Bug 485052, Embed a list of default OCSP Responder URLs for certain CAs
...
Patch contributed by Rob Stradling (Comodo)
r=kaie
2009-04-07 04:19:28 +02:00
c4264c7353
backout Bug 486990
2009-04-28 06:42:59 -07:00
0880b44b86
Bug 486990, move contextmenu listener to system event group, r=enn, sr=neil
2009-04-25 11:45:30 +03:00
7fc1313abe
bug 327524 - crash test by Martijn Wargers.
2009-04-24 10:08:11 -07:00
44b0f6d72b
Bug 453466 - in ff3 an imported self-signed server certificate can't be marked trusted (edit button disabled), r=honzab
2009-03-18 15:59:57 +01:00
af74d3a22c
Bug 480226 - Fix warnings in security/manager/ssl/src; r=kaie
2009-03-15 14:58:38 +01:00
47975f691c
Bug 456705 - Firefox 2.0.0.17 crashes when opening a https-site or on shutdown with FoxyProxy 2.8.5 [@ nsSSLThread::Run], r=kaie
2009-02-28 15:06:40 +01:00
51f4dd8122
Backout 5dde4d86be49
2009-02-27 16:20:31 +01:00
280b1f5ff7
Bug 456705 - Firefox 2.0.0.17 crashes when opening a https-site or on shutdown with FoxyProxy 2.8.5 [@ nsSSLThread::Run], r=kaie
2009-02-27 15:09:06 +01:00
b85360d3e8
Bug 357593 - PSM cannot display givenName and surname in DNs, r=kaie
2009-02-27 15:09:05 +01:00
0c5cd1fb59
Backed out changeset 209a7cc3150e (Bug 479393)
2009-02-25 21:49:47 -08:00
5b8a7c550c
Bug 479393: Call CERT_SetUsePKIXForValidation(PR_TRUE) after
...
initializing NSS to make the old NSS cert validation APIs use the
new libpkix cert validation engine internally. r=kaie.
2009-02-25 17:51:31 -08:00
4dfe755ab7
Bug 400822 - Cert Viewer crashes when encountering improperly encoded GeneralNames (in AIA or CDP extensions) [@ ProcessGeneralName]; (Cv1) Use NS_ENSURE_ARG_POINTER(); r=kaie
2009-02-21 03:09:16 +01:00
e139fa17ee
Bug 452401 - Create tests for mixed content, disabling the tests
2009-02-18 19:44:07 +01:00
99c9a828c3
Backout bug 456705
2009-02-18 15:40:36 +01:00
575b54377d
Backout bug 456705
2009-02-18 15:38:51 +01:00
349c9e2873
Bug 456705 - Firefox 2.0.0.17 crashes when opening a https-site or on shutdown with FoxyProxy 2.8.5 [@ nsSSLThread::Run], r=kaie
2009-02-18 14:31:31 +01:00
f851a1dd3f
Bug 413909 - nsCertOverrideService IDN handling is broken, re-enabling already landed test
2009-02-18 14:31:30 +01:00
e35cf3d5b5
Bug 452401 - Create tests for mixed content, r=kaie
...
--HG--
rename : security/manager/ssl/tests/mochitest/test_bug413909.html => security/manager/ssl/tests/mochitest/bugs/test_bug413909.html
2009-02-18 14:31:31 +01:00
e006a13751
Bug 466080 - Make more things honor the LOAD_ANONYMOUS flag r=sicking,MisterSSL, sr=sicking
2009-02-17 14:06:52 -08:00
6740ce42ec
Fix for bug 391448 (Force layout/dom/content code to use classinfo macros that don't use the service manager.). r/sr=jst.
2009-02-17 15:08:08 +01:00
9fc7da24b7
Bug 459657: nsNSSBadCertHandler leaks nsIBadCertListener2 proxy. r=kaie
2009-02-12 12:13:48 +00:00
540ada8cff
Bug 475702: nsICertOverrideService.rememberValidityOverride leaks an nsStringBuffer for each call. r=kaie
2009-02-11 18:14:39 +00:00
bb36a0e533
Backed out changeset c8d43645a578 (bug 320954) for burning leak tests
2009-02-07 14:38:26 -08:00
d6c7aba28e
Bug 320954 - PSM no profile handling code is broken, leading to pr_asserts, r=kaie
2009-02-07 13:50:21 -08:00
e3f12b7fc7
Bug 475912. Rev nsITokenDialogs iid in CLOSED TREE
2009-02-03 15:45:26 -05:00
d8f1bff747
Bug 461047 - Replace nsStringArray with nsTArray<nsString>. r+sr=roc
2009-01-18 21:14:14 +01:00
804cc7ee91
Backed out changeset 8019a959aade
2009-01-16 22:20:33 +13:00
065bde22f3
Bug 461047. Replace nsStringArray with nsTArray<nsString>. r+sr=roc
...
--HG--
extra : rebase_source : 7a20af24c97867efbb28dafa6a70ea1b4cf00e58
2009-01-16 20:51:04 +13:00
3b7a8f015b
Bug 368130 Bogus "SSL is disabled" error when SSL3 is disabled, r=kaie
2009-01-15 20:02:20 -08:00
ac5ad83898
Bug 486404 Various XPCOM allocator mismatches in PSM r=mayhemer
2009-04-15 17:04:24 +01:00
1dc3fc2723
Backed out changeset 03bc3379822a
2009-01-14 00:59:52 -08:00
693cc6fc91
Bug 466080 - Make more things honor the LOAD_ANONYMOUS flag r=sicking,MisterSSL, sr=sicking
2009-01-13 23:06:39 -08:00
43ab1e7298
Remove seemingly unused crypto.alert() API in favor of window.alert() that we all know and love. r+sr=jst@mozilla.org
2009-01-06 15:55:06 -08:00
364de97efe
Bug 431776 - sdr doesn't handle oom, r=kaie
2009-01-01 22:12:22 -08:00
fc60372461
Bug 400822 - Cert Viewer crashes when encountering improperly encoded GeneralNames (in AIA or CDP extensions) [@ ProcessGeneralName]; r=kaie
2008-12-21 18:23:19 +01:00
72d89b4502
Bug 401292 - application and addon updates fail when Danish Government browser extension is installed; Second patch v1; r=dveditz
2008-12-06 18:31:39 +01:00
538c9fb42a
Bug 461888 - Remove unused PACKAGE_FILE and PACKAGE_VARS and .pkg files, mozilla-central part, r=bsmedberg
2008-11-03 19:46:28 -08:00
b148f70864
Bug 401292 - application and addon updates fail when Danish Government browser extension is installed; r=(dveditz + kaie)
2008-10-29 05:39:28 +01:00
175ed63a52
Bug 460829, Temporary SSL server exceptions must not use permanent cert import
...
r=rrelyea
2008-10-23 04:16:06 +02:00
e602080bc5
Bug 450429, Enable COMODO ECC Certificate Authority for EV in PSM
...
r=nelson
2008-10-22 04:29:51 +02:00
eb14d5b0b4
Bug 439062 - Wording in SSL error dialogs contain inappropriate HTML tags; r=rrelyea
2008-10-16 03:14:03 +02:00
c7c1e56e40
Bug 456945 - EV failure, off by one error; r=rrelyea
2008-10-16 03:06:44 +02:00
933cbc4e6d
(2nd) Fix build bustage after workaround for
...
Bug 413909 - nsCertOverrideService IDN handling is broken; tests; r=kaie
2008-10-10 19:16:52 +02:00
66239ea53b
Fix build bustage after workaround for
...
Bug 413909 - nsCertOverrideService IDN handling is broken; tests; r=kaie
2008-10-10 19:08:02 +02:00
b0d1fbce6f
Disable the test for
...
Bug 413909 - nsCertOverrideService IDN handling is broken; tests; r=kaie
which seems to leak the world.
2008-10-10 18:50:50 +02:00
623c5127c0
Bug 413909 - nsCertOverrideService IDN handling is broken; tests; r=kaie
...
--HG--
rename : security/manager/ssl/tests/test_datasignatureverifier.js => security/manager/ssl/tests/unit/test_datasignatureverifier.js
rename : security/manager/ssl/tests/test_hash_algorithms.js => security/manager/ssl/tests/unit/test_hash_algorithms.js
rename : security/manager/ssl/tests/test_hmac.js => security/manager/ssl/tests/unit/test_hmac.js
2008-10-10 16:41:38 +02:00
e4062632a7
Bug 456099: outparamdel nsIPrivateDOMEvent r+sr=jst
2008-10-09 16:23:07 -07:00
5b263e95c7
Try again to really back out everything from bug 431819 in order to fix bug 454406.
2008-10-01 01:58:56 -05:00
0d5cc2c10e
Re-add two files added by bug 431819 that didn't need to be backed out for fixing bug 454406.
2008-10-01 01:36:49 -05:00
1c77a41798
Merge backout changeset for bug 454406
2008-10-01 01:03:35 -05:00
984577563b
Bug 454406 - "SSL handshakes fail after asking PSM to remember user's choice of client auth cert" (backed out changeset 6615b044bcd8 from bug 431819)
2008-10-01 01:01:39 -05:00
b059c56ec7
bug 454419: fix prbool stuff. r=kaie
2008-09-25 15:34:22 -07:00
7c8fe9b1d4
Bug 451909 - kill MOZ_XUL_APP now that all apps set it; files removal; r=ted.mielczarek
2008-09-20 15:54:40 +02:00
5b62bbc28a
Backed out changeset 38140c8a8327 to see if it fixes Bug 454896 (sporadic RLk)
2008-09-11 12:02:09 -07:00
8a3b5e186c
Bug 436379 - "Make docshell and securebrowserui only accessible on the main thread". r=kaie.
2008-09-10 13:14:08 -07:00
3b08a324be
Bug 451909 kill MOZ_XUL_APP now that all apps set it. docshell/toolkit cleanup r=benjamin, makefile cleanups r=ted
2008-09-02 10:45:14 +01:00
25cba5d7a3
Bug 451571 - Delete SetExceptionWasThrown (r=dbradley, sr=jst)
2008-08-30 18:58:36 -05:00
61a477cdbc
Bug 439722, Make the "bad cert error dialog" more helpful
...
r=rrelyea, sr=dveditz
2008-08-26 00:26:08 +02:00
c15ccd6a06
Bug 228448 - Remove '=='/'!=' 'PR_FALSE'/'PR_TRUE'
...
(Dv1a) </security/manager/ssl/src/ns*.cpp>
r=kaie
2008-08-20 00:18:58 -05:00
3c8395dc50
Bug 148194 - "Remove session-logout code from security module" ((Av1-19T) <nsNSSComponent.cpp>) [r=kaie]
2008-08-20 00:17:20 -05:00
e49ebc6e53
bug 449892, Enable additional EV roots for FF 3.0.2
...
r=rrelyea
2008-08-20 03:57:23 +02:00
a9a9af8651
Bug 450187 – "nsNTLMAuthModule.cpp(827) : warning C4390: ';' : empty controlled statement found; is this the intent?"
...
(Av1) <nsNTLMAuthModule.cpp>
2008-08-12 01:41:37 +02:00
b67eace0f6
Bug 445570 - heap autostring in PSM, r=kaie
2008-08-18 12:45:38 -04:00
25214addfe
Bug 443284, crash on login to ActivIdentity/ActivClient smartcard using acpkcs211.dll
...
Patches contributed by timeless and Dani Church
r=kaie, r=rrelyea
2008-08-14 18:42:40 +02:00
531c69ad96
Bug 307319 - Certificate details show incorrect public key information
...
r=rrelyea
2008-07-17 13:14:54 -04:00
7dfd2524b5
Bug 442561, enable Entrust Root Certification Authority for EV
...
r=rrelyea
2008-07-08 23:27:13 +02:00
a8e30bab93
Bug 429794, Lk (trace malloc leaks) test results have become very unstable
...
r=nelson
2008-07-08 22:42:51 +02:00
0f228913f3
Bug 431819, SSL client auth, repeated prompts for client certificate
...
r=rrelyea, r=dveditz
2008-06-18 21:36:29 +02:00
7c88a89044
Bug 436870, FF3 RC1 loses SSL certificate exceptions
...
Patch contributed by Honza Bambas
r=kaie
2008-06-18 21:20:16 +02:00
214543d96c
Bug 426830, remove unused nick_template_with_num
...
r=rrelyea
2008-06-11 20:20:24 +02:00
654875982b
Bug 426555, nsClientAuthRememberService must be refcounted and implement nsISupportsWeakReference
...
r+sr=mrbkap
2008-06-27 16:28:08 +02:00
250b4a6398
Bug 431384, Enable Network Solutions Certificate Authority for EV r=rrelyea, a1.9=beltzner
2008-05-03 18:36:46 -07:00
6c15848f3c
Bug 406954, Unable to add exception for server certificates with empty subject names r=rrelyea, a1.9=shaver
2008-04-23 19:05:37 -07:00
ac6a91f30e
Bug 429110, Random crashing ( [@ PR_AtomicIncrement] ?) ( [@ nsIOService::NewURI] ?) r=rrelyea, a1.9=shaver
2008-04-22 15:46:44 -07:00
3642b0dbe2
Bug 413909: nsCertOverrideService IDN handling is broken, and its port handling is also quite cumbersome, patch by Honza Bambas <honzab@allpeers.com>, r=kaie, a=shaver
2008-04-22 13:03:20 -07:00
3b89434010
Single patch for 3 overlapping fixes. Bug 420187, hang in nsNSSHttpRequestSession::internal_send_receive_attempt r=rrelyea Bug 383369, fixing a regression from 335801 r=rrelyea Bug 358438, fix proposed by and portions contributed by Honza Bambas r=honzab, r=rrelyea approval1.9 for combined patch = beltzner
2008-04-11 21:47:22 -07:00
f33ecfeb49
Bug 423002, Incorrect error message with certificates which contain subjectAltName r=rrelyea, a1.9=beltzner
2008-04-10 18:28:09 -07:00
00ceab7c32
Bug 428415, Don't pass uninitialized values to NSS CERT_PKIXVerifyCert r=rrelyea, a1.9=dsicore
2008-04-10 18:26:19 -07:00
45057e2e6d
Bug 327181, follow up checkin to fix IDL comment r=rrelyea, approval1.9=beltzner
2008-04-08 22:25:44 -07:00
5e10923152
Bug 406755, EV certs not recognized as EV with some cross-certification scenarios second landing attempt, earlier EV verification, patch 9 r=rrelyea also landing a regression fix, which applies to debug mode compilation code, only r=rrelyea blocking1.9=dsicore
2008-04-08 18:48:02 -07:00
14bb22dd51
Bug 425518, Enable multiple roots for EV (and remove 1): Geotrust, Thawte, Verisign, Trustwave, Comodo r=rrelyea, r=nelson, blocking1.9=dsicore
2008-04-08 17:28:48 -07:00
7213ca4454
Backing out the "early ev verification" patch from bug 406755, as an attempt to fix a tinderbox test failure (crash).
2008-04-07 19:22:26 -07:00
d897a746f4
Bug 406755, EV certs not recognized as EV with some cross-certification scenarios Additional patch for Earlier EV verification, v8 r=wtc, r=nelson, blocking1.9=dsicore
2008-04-07 17:10:41 -07:00
aa9db0ee05
Bug 427081, Allow to override SEC_ERROR_INADEQUATE_KEY_USAGE r=nelson, a1.9=dsicore
2008-04-04 17:02:31 -07:00
893656978c
Bug 420187. Backing out all 3 patches from today, because of regressions. a=shaver
2008-03-25 20:06:52 -07:00
796151f650
Bug 420187, hang in nsNSSHttpRequestSession::internal_send_receive_attempt Follow up patch to fix leak tinderbox bustage, r=rrelyea
2008-03-25 14:49:35 -07:00
49b860a42b
Attempt to fix red tinderbox, trivial mismatch between NS_IMETHODIMP and nsresult. Follow up to my fix for bug 420187.
2008-03-25 13:09:18 -07:00
cfd263a72b
bug 420187, hang in nsNSSHttpRequestSession::internal_send_receive_attempt r=rrelyea, pending more comments blocking1.9=shaver approval1.9b5=beltzner
2008-03-25 12:34:48 -07:00
ac89e9bc4e
Bug 419794 - "work out key API for nsICryptoHMAC" (API use nsIKeyObject + fix nsKeyModule + nsICryptoHMAC usage fix) [p=honzab@allpeers.com (Honza Bambas [mayhemer]) r=rrelyea sr=dveditz a=blocking1.9+]
2008-03-18 12:45:40 -07:00
3f26b6b9b8
Bug 423475, Paypal crashes loading main site r=rrelyea, blocking1.9=beltzner
2008-03-17 11:42:04 -07:00
5e595d1fea
Show certificate error pages (instead of dialogs) in frames. b=423247, p=kengert, r=rrelyea, r=bzbarsky, a=blocking-1.9 (ted)
2008-03-17 11:13:37 -07:00
4d099dd482
Bug 406755, EV certs not recognized as EV with some cross-certification scenarios r=rrelyea, blocking1.9=dsicore
2008-03-16 06:42:32 -07:00
823a00b43b
bug 374336, add knowledge of Extended Validation / EV Certificates to PSM Follow up fix contributed by Neil that fixes allocator mismatch. r=kengert, approval1.9=dsicore
2008-03-14 08:22:50 -07:00
85c65d089e
Bug 400085, nsNSSCertificate::hasValidEVOidTag compare DER, not strings Patch contributed by Honza Bambas, r=rrelyea, r=kengert, approval1.9=beltzner
2008-03-06 22:14:33 -08:00
7b3cc60dbc
Bug 419111: unfrozen interfaces listed in SDK_XPIDLSRCS, r=kaie, sr=bzbarsky
2008-03-05 14:08:20 -08:00
0649a78124
Bug 351580 - "Possible null pointer dereferences in |nsCrypto::GenerateCRMFRequest|" (Fixed !NULL checks + GC rooting) [p=honzab@allpeers.com (Honza Bambas [mayhemer]) r=mrbkap a=blocking1.9+]
2008-03-04 03:25:44 -08:00
dde03743df
Bug 418958, Enable Go Daddy root CA certificates for EV use r=rrelyea, a1.9b4=beltzner
2008-02-28 10:00:57 -08:00
dc356cb6ed
Bug 415799: Interface and implementation for HMAC support. p=honzab@allpeers.com (Jan Bambas), r=kaie, r=rrelyea, sr=dveditz, blocking1.9=sayrer
2008-02-26 22:31:13 -08:00
7d9ede46bb
Bug 415033: added a hidden preference (in about:config) for enabling or disabling the TLS session ticket extension. The patch is contributed by Nagendra Modadugu <ngm+mozilla@google.com>. r=wtc,rrelyea,kengert a1.9+=damons Modified Files: netwerk/base/public/security-prefs.js security/manager/ssl/src/nsNSSComponent.cpp
2008-02-26 15:09:39 -08:00
5cdf20b455
Bug 416827, Enable Digicert root CA certificate for EV use r=rrelyea, approval1.9=beltzner
2008-02-22 00:54:42 -08:00
3a4b65eee4
Bug 418701, Enable Quo Vadis root CA certificate for EV use r=rrelyea, approval1.9=beltzner
2008-02-22 00:51:59 -08:00
ab4d620f27
Bug 416850, Deleting a security exception and then re-adding it causes cert exception to remain valid r=rrelyea, approval1.9=beltzner
2008-02-22 00:50:11 -08:00
feb4af8baf
Bug 372876, Read from SSL socket leaks memory r=rrelyea, blocking1.9=sayrer
2008-02-21 17:07:16 -08:00
60509057ee
Bug 350873: nsStreamLoader code accessed on secondary thread [ASSERTION: nsStreamLoader not thread-safe]. r=kengert, sr=dveditz, b1.9=sayrer
2008-02-21 17:05:17 -08:00
40f6f1da73
Bug 415213, uninitialized variables in PSM r=rrelyea, a1.9=dsicore
2008-02-13 08:14:25 -08:00
b3944fe7fb
Bug 413627, nsCertOverrideService can't register observers (NS_ERROR_UNEXPECTED) intended to fix blocking1.9+ Bug 414808 Patch contributed by Ehsan Akhgari, timeless and some trivial tweaks by myself Thanks to Tomcat for help with testing r=me, a=mtschrep, blocking1.9-on-414808=beltzner
2008-01-31 22:04:56 -08:00
3084b041e7
Bug 409091, SSL Client Auth prompt should indicate port number r=rrelyea, a1.9=mtschrep
2008-01-22 15:47:55 -08:00
a2a4a72d69
Bug 405139, EV certs should be treated as providing less certainty of identity if OCSP is disabled. r=rrelyea, a1.9=mtschrep
2008-01-22 15:46:49 -08:00
723e7f78f7
Bug 412786, uninitialized variable r=rrelyea, a1.9=mtschrep
2008-01-22 15:44:29 -08:00
0810da1295
Bug 412455, Regression, EV UI no longer shows up r=rrelyea, a1.9=mtschrep
2008-01-22 15:43:12 -08:00
968e988b7c
Bug 399590, Update Mozilla trunk to use NSS tag NSS_3_12_BETA1 r=rrelyea, a1.9=mtschrep
2008-01-18 02:40:58 -08:00
b2b540186b
Bug 409280, nsIProtectedAuthThread is not embedding friendly Patch contributed by Christian Persch (GNOME) r=kengert, blocking1.9=mtschrep
2008-01-15 14:41:52 -08:00
aafeaa3c85
Bug 407523, Error page should not allow adding an exception for inadequate key usage r=rrelyea, a=mtschrep
2008-01-15 13:41:06 -08:00
b3e87aa63b
Bug 411327 - nsIXPCNativeCallContext should not inherit from nsISupports, r=mrbkap, a=schrep
2008-01-15 07:50:57 -08:00
eb23ab4e4f
Bug 404726: Addon compatibility check gives many alerts (toolkit and security portions). r=gavin.sharp, r=kengert
2008-01-15 07:06:34 -08:00
943c91c3c1
Bug 408432, Add Exception fails for certs with no DNS names (no CN, no SAN) r=rrelyea, blocking1.9=dsicore
2008-01-14 08:04:00 -08:00
530dacb132
bug 406999, Enhance EV performance; Never combine EV with Cert Overrides r=rrelyea, blocking1.9=mtschrep
2008-01-14 07:45:07 -08:00
67357b119f
Add crashtest for keygen
2007-12-16 17:27:11 -08:00
0e1b22477e
fixes bug 406290 r=wtc, a=beltzner
2007-12-14 09:39:30 -08:00
6dd7c7585e
Bug 403691, unable to display decoded policies extension in certs from https://www.digicert.com r=kengert, a=beltzner
2007-12-14 08:11:57 -08:00
a557b8e17c
bug 119500, PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported Patch contributed by Petr Kostka r=rrelyea, sr=kengert, a=dsicore Addon Patch to provide dummy implementations for gtk-embedding and camino. r=mark, sr=jst
2007-12-04 23:34:55 -08:00
b672ba3b51
bug 119500, PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported Patch contributed by Petr Kostka r=rrelyea, sr=kengert, a=dsicore Addon Patch to provide dummy implementations for gtk-embedding and camino. r=mark, sr=jst
2007-12-04 23:31:43 -08:00
7404fedffa
Bug 378241, Changes from bug 107491 lead to tons of thread-safety asserts r=rrelyea, r=wtc, sr=benjamin, blocking1.9=benjamin
2007-12-04 10:53:14 -08:00
67bf3693e9
Bug 404059, connection to t-mobile hotspot startup page takes very long Landing workaround patch (shorten timeout) r=rrelyea, blocking1.9=mtschrep
2007-12-03 14:58:06 -08:00
cda16f551b
Bug 401906, nsCertTreeDispInfo leaks, r=kengert, a=dsicore
2007-11-30 11:55:31 -08:00
4360b9ffe5
bug 262116 make disk cache serialize/deserialize the security info, if present also make nsNSSSocketInfo serializable PSM part: r=kaie sr=darin rest: r+sr=darin
2007-11-30 10:05:54 -08:00
cde1accb1a
bug 405481 add nsISerializable and nsIClassInfo to nsNSSCertificate's QI impl r+sr=bz a=beltzner
2007-11-28 14:22:13 -08:00
c09d43c431
Enable real EV checking. Bug 289520. patch by kai engert. review rrelyea approval mtschrep.
2007-11-21 14:28:13 -08:00
74e478d629
Bug 402726, Allow to view cert on SSL protocol errors r=rrelyea, r=neil, r=gavin, a=dsicore
2007-11-20 09:59:33 -08:00
9323f6a736
Bug 401755, Cleanup nsNSSIOLayer.cpp->getErrorMessage Patch v3 to address regression r=rrelyea, a=mtschrep
2007-11-20 09:56:04 -08:00
705a0393ea
Remove some duplicated code. Bug 397651, r=kaie, sr=jst, a=schrep
2007-11-19 20:32:06 -08:00
c8c4b197ac
Bug 404046, File nsIdentityChecking.cpp needs license header r=rrelyea, a=dsicore
2007-11-19 11:33:03 -08:00
727e0e371e
bug 399589, PSM + tip of NSS, error ‘SECAlgorithmIDTemplate’ not declared r=rrelyea, a=mtschrep
2007-11-19 09:02:43 -08:00
f2e2a270fb
Bug 399696, allow temporary certificate exceptions r=rrelyeea, a=vladimir
2007-11-19 07:32:43 -08:00
13d865d8e4
Bug 401755, Cleanup nsNSSIOLayer.cpp->getErrorMessage r=rrelyea, a=mtschrep
2007-11-12 16:41:29 -08:00
2869efb571
Bug 399318, Fix 2 one time leaks in nsKeygenHandler r=rrelyea, a=mtschrep
2007-11-12 16:31:23 -08:00
911f7d9d6f
Bug 402602, https://paypal.com doesn't trigger the netError page that allows exceptions r=rrelyea, blocking-1.9=dsicore
2007-11-12 16:12:30 -08:00
e57bc0544e
Bug 401954, Include latest NSS error strings r=nelson, a=mtschrep
2007-11-12 16:11:54 -08:00
a87665b45d
Bug 400195, cert exception file has unix line endings on Windows r=nelson, a/blocking=sayrer
2007-11-09 07:12:34 -08:00
9f5339be7b
Bug 399706, glibc detected: free(): invalid pointer attempting to select cert Landing better patch. r=rrelyea, a/blocking=beltzner
2007-11-09 07:09:58 -08:00
f5f27fd7da
Bug 401575 - "Support cert overriding from SSL error pages" [p=johnath r=kaie r=gavin r+sr=bzbarsky ui-r=beltzner a=blocking1.9+ for M9]
2007-11-03 11:49:47 -07:00
aeb9c559c1
Bustage fix for bug 398718.
2007-10-30 13:59:26 -07:00
f453d049c0
Bug 398718 - "Better explanatory text for SSL error pages" [p=kaie/johnath r=rrelyea r=biesi a=blocking1.9+ for M9]
2007-10-30 13:26:25 -07:00
b798d096a4
Bug 399706, glibc detected: free(): invalid pointer attempting to select cert Regression fix for crash introduced by recent landing for bug 392790. Using minimal fix for M9 endgame. r=kengert, r=Kaspar Brand, a=beltzner
2007-10-24 15:30:34 -07:00
0762d8a400
Bug 374336, add knowledge of Extended Validation / EV Certificates to PSM r=rrelyea, a=mconnor/beltzner
2007-10-23 11:30:16 -07:00
62979d92f2
relanding Bug 399043, Workaround for Add-Certificate-Exception for (mail) ports blocked by Necko r=rrelyea, a=sayrer
2007-10-19 12:16:34 -07:00
8b0144895e
relanding Bug 399022, Leak-prone code in nsCertTree r=bzbarsky, a=sayrer
2007-10-19 12:12:07 -07:00
8e87f98dbd
relanding: Bug 399045, PSM should remember valid intermediate CA certificates r=rrelyea, a=sayrer
2007-10-19 12:10:09 -07:00
fdc5b563f9
Bug 345665 - "nsKeygenHandler calls nsITokenDialogs ::ChooseToken with NULL context" [p=chpe r=kaie sr=dveditz a1.9=sayrer]
2007-10-18 23:10:39 -07:00
cc10e25877
backing out all my patches from yesterday, 399043 398549 399022 399045 345665
2007-10-16 17:18:55 -07:00
0eeb2e6c81
Bug 345665, nsKeygenHandler calls nsITokenDialogs ::ChooseToken with NULL context Patch contributed by Christian Persch r=kengert, sr=dveditz, a=sayrer
2007-10-15 17:38:58 -07:00
6a02ed9c37
Bug 399045, PSM should remember valid intermediate CA certificates r=rrelyea, a=sayrer
2007-10-15 17:38:16 -07:00
252b29b6b2
Bug 399022, Leak-prone code in nsCertTree r=bzbarsky, a=sayrer
2007-10-15 17:37:03 -07:00
d586f9c3d1
Bug 399043, Workaround for Add-Certificate-Exception for (mail) ports blocked by Necko r=rrelyea, a=sayrer
2007-10-15 17:33:01 -07:00
190309e089
Bug 398566 - Set MOZ_FIX_LINK_PATHS unconditionally, r=luser a=sayrer
2007-10-13 14:13:50 -07:00
a647c41131
Bug 392790 - "In certificate selection dialogs, also show e-mail addresses from the subjectAltName extension" [p=mozbugzilla@velox.ch (Kaspar Brand) r=kaie sr=rrelyea a1.9=sayrer]
2007-10-13 00:46:11 -07:00
9d653231ba
Bug 369428 - nsExternalAppHandler::SetUpTempFile uses a poor source of randomness, resulting in predictable filenames. r=kaie, sr=rrelyea, a=blocking1.9
2007-10-12 15:48:07 -07:00
103189add3
Full backout of Bug 369428
2007-10-12 08:30:45 -07:00
eea39bddb7
Bug 369428 - nsExternalAppHandler::SetUpTempFile uses a poor source of randomness, resulting in predictable filenames. r=kaie, sr=rrelyea, a=blocking1.9
2007-10-12 06:00:57 -07:00
3378a7656a
Bug 397296, Firefox builds need to use the current NSS CVS tag r=mconnor, blocking-firefox3=benjamin
2007-10-11 12:03:05 -07:00
07549c4ecf
Don't leak strings from <keygen>. Bug 398665, r=kaie, sr=jst, a=dbaron
2007-10-09 19:10:00 -07:00
ad2bb22af2
Bug 327181, Improve error reporting for invalid-certificate errors (error page for https, or combined dialog) Code in mozilla/security/manager: r=rrelyea Code elsewhere: r=mconnor, sr=dveditz blocking1.9=mconnor
2007-10-03 04:47:26 -07:00
61d16d4cd9
Bug 327181, Improve error reporting for invalid-certificate errors (error page for https, or combined dialog) Code in mozilla/security/manager: r=rrelyea Code elsewhere: r=mconnor, sr=dveditz blocking1.9=mconnor
2007-10-03 04:43:54 -07:00
6613df3bd1
Bug 315871, In Certificate Viewer, allow to export cert or full chain Also covers Bug 161275, Support export of SSL, S/MIME, and CA certs Patch contributed by Kaspar Brand r=kengert, sr=rrelyea, a=dsicore
2007-10-01 09:38:21 -07:00
1232ee381c
Bug 397319 - "Add JSAutoRequest to other users of GetArgvPtr". r+sr+a=jst.
2007-09-28 11:15:26 -07:00
84930cd3ec
Fix leak of mPendingHTTPRequest in nsSSLThread::rememberPendingHTTPRequest by converting it to an nsCOMPtr. b=394528 r=kengert sr=bzbarsky a=bsmedberg
2007-09-17 17:31:37 -07:00
e761042ec3
Bug 392780 - "nsNSSCertificateDB::FindCertByDBKey() crashes on invalid input" [p=mozbugzilla@velox.ch (Kaspar Brand) r=rrelyea sr=kaie a1.9=bzbarsky]
2007-09-17 13:46:27 -07:00
167cbfff3a
Bug 394139: Replace a bunch of NS_DEFINE_CIDs with CONTRACTIDs. r=/sr=/a=bsmedberg
2007-09-05 06:04:54 -07:00
423d30ba39
Bug 348748 - Replace a cast that's commented out; I think my script ignored comment contents and thus missed this, but I haven't looked at the source recently enough to be sure. r=bsmedberg on the script, a=no-functionality-change
2007-09-05 00:13:46 -07:00
9842dc1237
Bug 390615: Add scriptable interface to verify digital signatures. r=kaie, a=blocking-1.9
2007-09-03 10:32:39 -07:00
d9fa93d8b4
bug 386654, Implement notification for EV certs r=rrelyea, sr=bzbarsky, a=bzbarsky
2007-08-23 14:28:15 -07:00
6da8502521
Make it possible to fastload NSSCertificates. Bug 388128, r=kaie, sr=brendan, a=bzbarsky
2007-08-23 11:59:12 -07:00
9474ce3bd8
bug 385458 - UI strings using "browser" when meaning "application", r=kaie
2007-08-05 04:53:59 -07:00
d193b24d27
Bug 376329, Thunderbird fails on certificate path with circular references
...
r=nelson
2007-07-25 15:57:51 -07:00
5b82067aa4
Bug 382223, Add support for Camellia to PSM
...
Patch contributed by okazaki
r=kengert
2007-07-25 15:53:30 -07:00
695f5ec87a
Bug 388403 Land NSS 3.12 Alpha r=kai.
2007-07-23 12:02:59 -07:00
d5fc3b59ef
Bug 387011, Crash when importing certificate [@ nsNSSCertificateDB::ImportCertsFromFile]
...
r=rrelyea
2007-07-23 03:48:51 -07:00
eda243077c
Bug 387613, Crash [@ nsNSSCertificate::GetCert fb3ac2be] on click submit on chrome://pippki/content/editcacert.xul
...
r=rrelyea
2007-07-23 03:25:23 -07:00
cdf4a621f2
Bug 380744, Thunderbird reports "unable to decrypt" on truncated decryptable messages
...
r=relyea, sr=mscott
2007-07-16 23:13:38 -07:00
6d7584839a
Bug 348748 - Replace all instances of NS_STATIC_CAST and friends with C++ casts (and simultaneously bitrot nearly every patch in existence). r=bsmedberg on the script that did this. Tune in next time for Macro Wars: Episode II: Attack on the LL_* Macros.
2007-07-08 00:08:04 -07:00
88ab18656e
Bug 176501, mozilla apps must manage NSS configuration for PKCS#11 shared libs, including nssckbi.dll
...
Incremental Patch v4, make sure we indeed look in all possible locations.
r=rrelyea
2007-06-27 06:15:02 -07:00
461c345b39
Bug 385904, Actually hook up the new NSS error strings
...
r=rrelyea
2007-06-27 06:12:03 -07:00
ceeaa1575b
Bug 370875, "ASSERTION: nsSecureBrowserUIImpl not thread-safe" * 4 loading any https site
...
Patch contributed by Neil, r=kengert
2007-06-25 14:45:30 -07:00
1f070ca133
Bug 383390, follow up check in, adding a unit Test.
...
Patch contributed by Nils Maier, comments provided by Jeff Walden
r=kengert
2007-06-21 08:22:43 -07:00
1daaf9dc7b
Backing previous patch because it broke the universal binary Mac build.
2007-06-19 01:41:28 -07:00
7da4e3c47b
bug 217538 Check in NSS 3.12 into FF 3.0
...
r=kaie
2007-06-19 00:32:12 -07:00
3db3c7333e
Bug 355643, Review PSM's error message overrides - are NSS errors better?Removing overrides, thereby enabling NSS messages.r=nelson
2007-06-12 19:48:41 -07:00
623f7ec6db
Bug 375759, Cert manager showing date strings for "Your Certificates" namesFollow up checkin to improve memory use.r=kengert
2007-06-12 19:46:07 -07:00
3f24fa47f6
Bug 383390, nsICrypto Hash truncates to 32 byte; renders sha384 and sha512 corruptPatch contributed by Nils Maierr=kengert
2007-06-10 18:42:36 -07:00
e62734761e
Bug 378629, SSL file uploads settle into oscillating pattern with very small packetsr=rrelyea
2007-06-10 16:42:28 -07:00
42e0a9a00c
Bug 375759, Cert manager showing date strings for "Your Certificates" namesPatch contributed by Kaspar Brandr=kengert
2007-06-10 16:24:15 -07:00
146b7c014e
Bug 110161. Code related to the plan to enable OCSP by default.r=rrelyea, toolkit r=mconnor
2007-05-30 16:13:28 -07:00
5a918bf8aa
bug 334185, potential crasher fixr=kengert
2007-05-29 18:20:09 -07:00
fcf90f31c6
bug 380558, Some event waiting in PSM make the CPU wake from idle with no reasonPatch contributed by Mike Hommeyr=kengert
2007-05-29 18:14:32 -07:00
76c4fecf5f
Make PSM make sure to shut down NSS before trying to start it up with theinitial profile on app startup. Fix leak of one of the user modules that waspreventing a clean shutdown. Bug 379582, r=rrelyea, kaie, sr=biesi.
2007-05-14 14:09:58 -07:00
6100caf3ca
Bug 379190, crashes when loading chrome urlsr=rrelyea
2007-05-09 16:43:01 -07:00
baab01ada6
Bug 376636 - Building with gcc 4.3 and -pendatic fails due to extra semicolons, patch by Art Haas <ahaas@airmail.net>, rs=me
2007-04-23 07:21:53 -07:00
c6ef8b6043
Bug 375878 remove users of Recycle()patch by taras glek r+sr=biesi
2007-03-30 15:44:22 -07:00
d98d9fdec5
Remove unused getKey callback from PLDHashTableOps/JSDHashTableOps. b=374906 r=bsmedberg
2007-03-27 08:33:38 -07:00
05e5d33a57
Free the (distributed) Lizard! Automatic merge from CVS: Module mozilla: tag HG_REPO_INITIAL_IMPORT at 22 Mar 2007 10:30 PDT,
2007-03-22 10:30:00 -07:00
72bf637e4f
Bug 368126, client abandons SSL connection during bad cert dialogs
...
Incremental patch v2
r=nelson, sr=rrelyea
2007-03-07 19:54:54 +00:00
88b4027c75
Bug 317630, PSM's FIPS token label is truncated
...
r=rrelyea
2007-02-20 16:26:07 +00:00
a9459f49db
Patch v9 - mozilla/security/manager portion
...
Enabling final portion of patch, enabling new SSL error page.
r=rrelyea
2007-02-18 04:26:02 +00:00
72cce1e6f4
Bug 107491, improve SSL error messages
...
Patch v9 - mozilla/security/manager portion
Not yet enabling as browser error page
r=rrelyea
2007-02-17 03:47:59 +00:00
2ce19dbaa4
Bug 370136, Firefox 2.0.0.1 and later breaks automatic client certificate authentification.
...
Fixes a regression introduced with the fix for bug 328346.
Thanks a lot to Momtchil Momtchev for identifying the cause and providing the initial patch.
r=kengert/rrelyea
2007-02-16 08:01:40 +00:00
Honza Bambas
Wan-Teh Chang
Justin Wood
Benjamin Smedberg
Julian Seward
Henri Sivonen
Robert Sayre
Saint Wesonga
Mitchell Field
Dão Gottwald
Jason Duell
Doug Turner
Jesse Ruderman
Jae-Seong Lee-Russo
Marco Bonardo
timeless@mozdev.org
Kai Engert
Mike Hommey
Daniel Holbert
Joel Maher
Chris Jones
Jonas Sicking
Brad Lassey
Kyle Huey
Clint Talbert
Joel Maher
Luke Wagner
Jim Mathies
Olli Pettay
Oleg Romashin
Gijs Kruitbosch
Ehsan Akhgari
Wladimir Palant
Nicolas JUSTIN
timeless
Vladimir Vukicevic
Ehsan Akhgari
Craig Topper
Hashem Masoud
Serge Gautherie
Robert O'Callahan
Yu-Hsun Lin
Paul Kehrer
Hideki Itoyama
Neil Deakin
Arpad Borsos
Phil Ringnalda
bjarne@runitsoft.com
Marco Pesenti Gritti
Eddy Nigg
Dave Townsend
Bob Clary
Blake Kaplan
Dave Camp
Honza Bambas
Peter Van der Beken
Boris Zbarsky
Fred Jendrzejewski
Neil Rashbrook
Ben Newman
Kaspar Brand
Jesper Kristensen
Taras Glek
Reed Loden
Ben Turner
Jason Orendorff
gavin@gavinsharp.com
johnath@mozilla.com
jruderman@hmc.edu
cbiesinger@gmx.at
rrelyea@redhat.com
sdwilsh@shawnwilsher.com
dbaron@dbaron.org
jag@tty.nl
jwalden@mit.edu
kairo@kairo.at
cbiesinger@web.de
hg@mozilla.com
kaie%kuix.de