24e1ed50fa
Bug 1621350 - land NSS 710d10a72934 UPGRADE_NSS_RELEASE, r=jcj
...
2020-03-10 Kevin Jacobs <kjacobs@mozilla.com>
* lib/ssl/ssl3exthandle.c:
Bug 1618915 - Fix UBSAN issue in ssl_ParseSessionTicket
r=jcj,bbeurdouche
[710d10a72934] [tip]
2020-03-09 Kevin Jacobs <kjacobs@mozilla.com>
* lib/ssl/ssl3exthandle.c:
Bug 1618739https://bugzilla.mozilla.org/show_bug.cgi?id=1618400
[2c989888dee7]
2020-02-28 Benjamin Beurdouche <bbeurdouche@mozilla.com>
* automation/taskcluster/graph/src/extend.js, coreconf/arch.mk,
coreconf/config.mk, lib/freebl/Makefile, lib/freebl/blapii.h,
lib/freebl/blinit.c, lib/freebl/chacha20poly1305.c,
lib/freebl/freebl.gyp,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.h,
lib/freebl/verified/Hacl_Chacha20_Vec256.c,
lib/freebl/verified/Hacl_Chacha20_Vec256.h,
lib/freebl/verified/Hacl_Poly1305_256.c,
lib/freebl/verified/Hacl_Poly1305_256.h, nss-tool/hw-support.c:
Bug 1612493 - Support for HACL* AVX2 code for Chacha20, Poly1305 and
Chacha20Poly1305. r=kjacobs
*** Bug 1612493 - Import AVX2 code from HACL*
*** Bug 1612493 - Add CPU detection for AVX2, BMI1, BMI2, FMA, MOVBE
*** Bug 1612493 - New flag NSS_DISABLE_AVX2 for freebl/Makefile and
freebl.gyp
*** Bug 1612493 - Disable use of AVX2 on GCC 4.4 which doesn’t
support -mavx2
*** Bug 1612493 - Disable tests when the platform doesn't have
support for AVX2
[d5deac55f543]
* automation/taskcluster/scripts/run_hacl.sh,
lib/freebl/verified/Hacl_Chacha20.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_128.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_32.c,
lib/freebl/verified/Hacl_Chacha20_Vec128.c,
lib/freebl/verified/Hacl_Curve25519_51.c,
lib/freebl/verified/Hacl_Kremlib.h,
lib/freebl/verified/Hacl_Poly1305_128.c,
lib/freebl/verified/Hacl_Poly1305_32.c,
lib/freebl/verified/kremlin/include/kremlin/internal/types.h,
lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128.h, li
b/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128_Verifie
d.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt_8_1
6_32_64.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/LowStar_
Endianness.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/fstar
_uint128_gcc64.h, lib/freebl/verified/libintvector.h:
Bug 1617533 - Update of HACL* after libintvector.h and coding style
changes. r=kjacobs
*** Bug 1617533 - Clang format
*** Bug 1617533 - Update HACL* commit for job in Taskcluster
*** Bug 1617533 - Update HACL* Kremlin code
[b6677ae9067e]
Differential Revision: https://phabricator.services.mozilla.com/D66264
--HG--
extra : moz-landing-system : lando
2020-03-10 21:35:56 +00:00
7d0c94a0e9
Backed out 8 changesets (bug 1506602, bug 1194529) for Browser-chrome failures in browser/browser_aaa_eventTelemetry_run_first.js. CLOSED TREE
...
Backed out changeset 0848e3945164 (bug 1506602)
Backed out changeset a8b80ec1830e (bug 1506602)
Backed out changeset e83a89eb5007 (bug 1194529)
Backed out changeset 7bf0a8463e53 (bug 1194529)
Backed out changeset 5b5cbd52e30f (bug 1194529)
Backed out changeset 55c38d92f65a (bug 1194529)
Backed out changeset 3242adb0ff8e (bug 1194529)
Backed out changeset c2f10d341da8 (bug 1194529)
--HG--
rename : browser/modules/OSKeyStore.jsm => browser/extensions/formautofill/OSKeyStore.jsm
rename : browser/modules/test/OSKeyStoreTestUtils.jsm => browser/extensions/formautofill/test/fixtures/OSKeyStoreTestUtils.jsm
rename : browser/modules/test/unit/test_osKeyStore.js => browser/extensions/formautofill/test/unit/test_osKeyStore.js
2020-03-11 01:48:36 +02:00
2a88bd2f12
Bug 1506602 - Show the full product name in the OS auth dialog. r=MattN,fluent-reviewers,flod
...
Differential Revision: https://phabricator.services.mozilla.com/D64521
--HG--
extra : moz-landing-system : lando
2020-03-10 20:01:40 +00:00
d5c223abf7
Bug 1506602 - Associate the OS auth dialog with the parent window on Windows to center the dialog and prevent the user from interacting with the browser while the dialog is present. r=MattN,keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D62348
--HG--
extra : moz-landing-system : lando
2020-03-10 20:01:33 +00:00
6ef2792e0e
Bug 1621044 - Update in-tree consumers of bindgen. r=keeler,rhunt
...
Differential Revision: https://phabricator.services.mozilla.com/D66281
--HG--
extra : moz-landing-system : lando
2020-03-10 21:07:34 +00:00
980c6f3033
Bug 1621044 - Update rkv. r=vporof
...
See last patch of this bug for the third_party/ changes.
Differential Revision: https://phabricator.services.mozilla.com/D66279
--HG--
extra : moz-landing-system : lando
2020-03-10 21:04:51 +00:00
091526302b
Bug 1620744 - Convert generate_mapfile.py to py3; r=firefox-build-system-reviewers,rstewart
...
Differential Revision: https://phabricator.services.mozilla.com/D65854
--HG--
extra : moz-landing-system : lando
2020-03-10 20:19:34 +00:00
09acd57d19
Backed out 13 changesets (bug 1620744) for causing diffoscope failures firefox/browser/chrome/browser/content/browser/built_in_addons.json
...
CLOSED TREE
Backed out changeset 6beda54bcb9b (bug 1620744162074416207441620744162074416207441620744162074416207441620744162074416207441620744
2020-03-10 21:13:18 +02:00
ed1692cfb3
Bug 1620744 - Convert generate_mapfile.py to py3; r=firefox-build-system-reviewers,rstewart
...
Differential Revision: https://phabricator.services.mozilla.com/D65854
--HG--
extra : moz-landing-system : lando
2020-03-09 22:02:41 +00:00
fb2b3d4e41
Backed out 2 changesets (bug 1614933) for busages complaining about IdleSchedulerChild.cpp CLOSED TREE
...
Backed out changeset ff92f800a74e (bug 1614933)
Backed out changeset 5cee8f603ae4 (bug 1614933)
2020-03-10 17:21:55 +02:00
9336e8143b
Bug 1614933 - Gather content processes' crash annotations at exception time instead of using IPC; r=froydnj
...
Crash annotations in content processes are currently sent over IPC via
shared memory buffers. To pave the way for the Rust rewrite of the exception
handler we are removing this code and gathering all the crash annotations
within the content processes themselves. This patch causes annotations to be
stored in the global table of each content process. They are then streamed
out to the parent process by the exception handler together with the
exception-time annotations.
This has a number of benefits:
* we have one less channel to exchange data between content processes and
the parent process
* we save memory because we don't need to allocate the shared memory buffers
* annotations are faster because we don't stream them all out every time one
changes
* we won't truncate annotations anymore if we run out of space in the shared
segment.
* we don't need delayed annotations anymore, so we can get rid of the
associated machinery
As I refactored the code I tried to adjust all the obsolete comments,
consolidate shared code and remove the redundant steps that were sometimes
present. In many places we had two entire crash annotation tables we merged to
change just a couple; that comes from the fact that historically we loaded
them from disk. Now it doesn't matter anymore and we can just go ahead and
change the ones we care about.
Differential Revision: https://phabricator.services.mozilla.com/D62586
--HG--
extra : moz-landing-system : lando
2020-03-10 14:59:22 +00:00
49040b8671
Bug 1614933 - Ensure that glibc's lazy initializers run before we enable the content process sandbox on Linux; r=jld
...
Differential Revision: https://phabricator.services.mozilla.com/D63471
--HG--
extra : moz-landing-system : lando
2020-03-10 14:59:22 +00:00
98301e7475
Bug 1608558 - pt4 - use security.sandbox.socket.process.level for linux socket process sandbox. r=gcp
...
Differential Revision: https://phabricator.services.mozilla.com/D63716
--HG--
extra : moz-landing-system : lando
2020-03-09 14:57:13 +00:00
5e124284d9
Bug 1608558 - pt3 - add EvaluateSocketCall and missing cases to EvaluateSyscall for Socket process sandbox. r=gcp
...
Differential Revision: https://phabricator.services.mozilla.com/D62445
--HG--
extra : moz-landing-system : lando
2020-03-09 14:56:43 +00:00
40fb8ff87d
Bug 1608558 - pt2 - add SandboxBrokerPolicyFactory::GetSocketProcessPolicy to allow access to certs. r=jld,gcp
...
Differential Revision: https://phabricator.services.mozilla.com/D62444
--HG--
extra : moz-landing-system : lando
2020-03-09 14:56:24 +00:00
140e0771d3
Bug 1608558 - pt1 - add linux sandboxing to socket process. r=gcp
...
Differential Revision: https://phabricator.services.mozilla.com/D60014
--HG--
extra : moz-landing-system : lando
2020-03-09 14:56:03 +00:00
04c07a5211
No Bug, mozilla-central repo-update HSTS HPKP remote-settings - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D65998
--HG--
extra : moz-landing-system : lando
2020-03-09 13:44:52 +00:00
15cfe23b88
Bug 1620542 - Automatically fix ESLint errors in .eslintrc.js files. r=mossop
...
# ignore-this-changeset
Differential Revision: https://phabricator.services.mozilla.com/D65703
--HG--
extra : moz-landing-system : lando
2020-03-07 10:09:44 +00:00
d992a091fa
Bug 1615401 - Part 3: Use OSInfo::Kernel32Version() to select a thunk resolver. r=bobowen
...
Cherry-picking Chromium's commit 01c8afd0dc14a1acef383c5f231258d0cfac95e5
to fix the crash caused by Chromium's sandbox code.
The original bug on Chromium side: https://crbug.com/1053805
Differential Revision: https://phabricator.services.mozilla.com/D65745
Depends on D65802
2020-03-06 18:52:25 +02:00
866761cd8a
Bug 1615401 - Part 2: Keep Chromium's file_version_info_win.cpp updated r=bobowen
...
Cherry-picking the following commits from Chromium to keep file_version_info_win.cpp
up-to-date.
1. Use StringPiece rather than std::string for Version parsing.
15a9d1733ffde745d058e93de3a37d4bb23ded3ahttps://phabricator.services.mozilla.com/D65802
Depends on D65744
2020-03-06 22:24:01 +02:00
0d29a60c01
Bug 1615401 - Part 1: Partially implement FileVersionInfoWin to use from OSInfo::Kernel32BaseVersion(). r=bobowen
...
This patch partially implements `FileVersionInfoWin` and `base::FilePath` class of
Chromium sandbox so that a coming patch can use `base::win::OSInfo::Kernel32BaseVersion()`.
Differential Revision: https://phabricator.services.mozilla.com/D65744
2020-03-06 18:51:54 +02:00
6182246ebe
Bug 1614053 - land NSS NSS_3_51_RTM UPGRADE_NSS_RELEASE, r=jcj
...
2020-03-06 Kevin Jacobs <kjacobs@mozilla.com>
* lib/nss/nss.h, lib/softoken/softkver.h, lib/util/nssutil.h:
Set version numbers to 3.51 final
[d3e6d637eaec] [NSS_3_51_RTM] <NSS_3_51_BRANCH>
2020-03-03 Kevin Jacobs <kjacobs@mozilla.com>
* .hgtags:
Added tag NSS_3_51_BETA2 for changeset 6e610ed9b196
[bea0b3a5d451] <NSS_3_51_BRANCH>
Differential Revision: https://phabricator.services.mozilla.com/D65817
--HG--
extra : moz-landing-system : lando
2020-03-06 22:25:37 +00:00
6133e75b71
Bug 1620449 - Convert gen_cert_header.py to py3; r=firefox-build-system-reviewers,rstewart
...
Differential Revision: https://phabricator.services.mozilla.com/D65632
--HG--
extra : moz-landing-system : lando
2020-03-06 17:31:15 +00:00
39c3d77141
No Bug, mozilla-central repo-update HSTS HPKP blocklist remote-settings tld-suffixes - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D65516
--HG--
extra : moz-landing-system : lando
2020-03-05 17:17:28 +00:00
4966f2d8a2
Bug 1620232 - Fix build bustage r=jcj
...
Differential Revision: https://phabricator.services.mozilla.com/D65555
--HG--
extra : moz-landing-system : lando
2020-03-05 16:28:51 +00:00
00346924ff
bug 1619021 - avoid caching intermediate certificates that are in cert_storage (intermediate preloading) r=kjacobs
...
Differential Revision: https://phabricator.services.mozilla.com/D65177
--HG--
rename : security/manager/ssl/tests/unit/bad_certs/default-ee.key => security/manager/ssl/tests/unit/test_intermediate_preloads/default-ee.key
rename : security/manager/ssl/tests/unit/bad_certs/default-ee.key.keyspec => security/manager/ssl/tests/unit/test_intermediate_preloads/default-ee.key.keyspec
rename : security/manager/ssl/tests/unit/test_intermediate_preloads/ee.pem => security/manager/ssl/tests/unit/test_intermediate_preloads/default-ee.pem
rename : security/manager/ssl/tests/unit/test_intermediate_preloads/ee.pem.certspec => security/manager/ssl/tests/unit/test_intermediate_preloads/default-ee.pem.certspec
extra : moz-landing-system : lando
2020-03-04 19:04:58 +00:00
48d51baf21
Bug 1512471 - Introduce PVerifySSLServerCert for the certificate verification r=keeler,jld
...
Differential Revision: https://phabricator.services.mozilla.com/D50834
--HG--
extra : moz-landing-system : lando
2020-02-28 10:58:56 +00:00
d782507dc9
Bug 1614053 - land NSS NSS_3_51_BETA2 UPGRADE_NSS_RELEASE, r=jcj
...
2020-03-03 Kevin Jacobs <kjacobs@mozilla.com>
* automation/taskcluster/scripts/run_hacl.sh,
lib/freebl/verified/Hacl_Chacha20.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_128.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_32.c,
lib/freebl/verified/Hacl_Chacha20_Vec128.c,
lib/freebl/verified/Hacl_Curve25519_51.c,
lib/freebl/verified/Hacl_Kremlib.h,
lib/freebl/verified/Hacl_Poly1305_128.c,
lib/freebl/verified/Hacl_Poly1305_32.c,
lib/freebl/verified/kremlin/include/kremlin/internal/types.h,
lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128.h, li
b/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128_Verifie
d.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt_8_1
6_32_64.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/LowStar_
Endianness.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/fstar
_uint128_gcc64.h, lib/freebl/verified/libintvector.h:
Backed out changeset b6677ae9067e (Bug 1612493) for Windows build
failures.
[6e610ed9b196] [NSS_3_51_BETA2] <NSS_3_51_BRANCH>
* automation/taskcluster/graph/src/extend.js, coreconf/arch.mk,
coreconf/config.mk, lib/freebl/Makefile, lib/freebl/blapii.h,
lib/freebl/blinit.c, lib/freebl/chacha20poly1305.c,
lib/freebl/freebl.gyp,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.h,
lib/freebl/verified/Hacl_Chacha20_Vec256.c,
lib/freebl/verified/Hacl_Chacha20_Vec256.h,
lib/freebl/verified/Hacl_Poly1305_256.c,
lib/freebl/verified/Hacl_Poly1305_256.h, nss-tool/hw-support.c:
Backed out changeset d5deac55f543
[4215a0b45a22] <NSS_3_51_BRANCH>
2020-03-02 Kevin Jacobs <kjacobs@mozilla.com>
* .hgtags:
Added tag NSS_3_51_BETA1 for changeset b17a367b83de
[9564790a9cf6] <NSS_3_51_BRANCH>
* lib/freebl/blinit.c:
Bug 1614183 - Fixup, clang-format. r=me
[b17a367b83de] [NSS_3_51_BETA1]
2020-03-02 Giulio Benetti <giulio.benetti@benettiengineering.com>
* lib/freebl/blinit.c:
Bug 1614183 - Check if PPC __has_include(<sys/auxv.h>). r=kjacobs
Some build environment doesn't provide <sys/auxv.h> and this causes
build failure, so let's check if that header exists by using
__has_include() helper.
Signed-off-by: Giulio Benetti
<giulio.benetti@benettiengineering.com>
[bb7c46049f26]
2020-03-02 Kurt Miller <kurt@intricatesoftware.com>
* lib/freebl/blinit.c:
Bug 1618400 - Fix unused variable 'getauxval' on OpenBSD/arm64 r=jcj
https://bugzilla.mozilla.org/show_bug.cgi?id=1618400
[2c989888dee7]
2020-02-28 Benjamin Beurdouche <bbeurdouche@mozilla.com>
* automation/taskcluster/graph/src/extend.js, coreconf/arch.mk,
coreconf/config.mk, lib/freebl/Makefile, lib/freebl/blapii.h,
lib/freebl/blinit.c, lib/freebl/chacha20poly1305.c,
lib/freebl/freebl.gyp,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_256.h,
lib/freebl/verified/Hacl_Chacha20_Vec256.c,
lib/freebl/verified/Hacl_Chacha20_Vec256.h,
lib/freebl/verified/Hacl_Poly1305_256.c,
lib/freebl/verified/Hacl_Poly1305_256.h, nss-tool/hw-support.c:
Bug 1612493 - Support for HACL* AVX2 code for Chacha20, Poly1305 and
Chacha20Poly1305. r=kjacobs
*** Bug 1612493 - Import AVX2 code from HACL*
*** Bug 1612493 - Add CPU detection for AVX2, BMI1, BMI2, FMA, MOVBE
*** Bug 1612493 - New flag NSS_DISABLE_AVX2 for freebl/Makefile and
freebl.gyp
*** Bug 1612493 - Disable use of AVX2 on GCC 4.4 which doesn’t
support -mavx2
*** Bug 1612493 - Disable tests when the platform doesn't have
support for AVX2
[d5deac55f543]
* automation/taskcluster/scripts/run_hacl.sh,
lib/freebl/verified/Hacl_Chacha20.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_128.c,
lib/freebl/verified/Hacl_Chacha20Poly1305_32.c,
lib/freebl/verified/Hacl_Chacha20_Vec128.c,
lib/freebl/verified/Hacl_Curve25519_51.c,
lib/freebl/verified/Hacl_Kremlib.h,
lib/freebl/verified/Hacl_Poly1305_128.c,
lib/freebl/verified/Hacl_Poly1305_32.c,
lib/freebl/verified/kremlin/include/kremlin/internal/types.h,
lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128.h, li
b/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt128_Verifie
d.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/FStar_UInt_8_1
6_32_64.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/LowStar_
Endianness.h, lib/freebl/verified/kremlin/kremlib/dist/minimal/fstar
_uint128_gcc64.h, lib/freebl/verified/libintvector.h:
Bug 1617533 - Update of HACL* after libintvector.h and coding style
changes. r=kjacobs
*** Bug 1617533 - Clang format
*** Bug 1617533 - Update HACL* commit for job in Taskcluster
*** Bug 1617533 - Update HACL* Kremlin code
[b6677ae9067e]
Differential Revision: https://phabricator.services.mozilla.com/D65270
--HG--
extra : moz-landing-system : lando
2020-03-04 05:04:32 +00:00
87cd113e41
Bug 1584104 - Add some information needed by parent process to nsITransportSecurityInfo r=keeler
...
When socket process is enabled, parent process needs some information in `CommonSocketControl`, but `CommonSocketControl` is only accessible in socket process.
This patch moves some data members from `CommonSocketControl` to `nsTransportSecurityInfo` and make it possible for parent process to get the needed data.
Differential Revision: https://phabricator.services.mozilla.com/D64084
--HG--
extra : moz-landing-system : lando
2020-03-02 20:28:15 +00:00
2690d1d20f
No Bug, mozilla-central repo-update HSTS HPKP blocklist remote-settings - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D64941
--HG--
extra : moz-landing-system : lando
2020-03-02 13:42:22 +00:00
3c97d64247
Bug 1616780 - Also add __NR_sched_setattr to the list of thread function r=jld
...
Differential Revision: https://phabricator.services.mozilla.com/D64736
--HG--
extra : moz-landing-system : lando
2020-02-29 04:14:52 +00:00
4d7b3b72ef
Bug 1614053 - land NSS 52a75c5373ef UPGRADE_NSS_RELEASE, r=jcj
...
2020-02-27 Kevin Jacobs <kjacobs@mozilla.com>
* gtests/ssl_gtest/ssl_extension_unittest.cc,
gtests/ssl_gtest/ssl_gtest.gyp,
gtests/ssl_gtest/ssl_masking_unittest.cc,
gtests/ssl_gtest/tls_filter.cc, gtests/ssl_gtest/tls_filter.h,
gtests/ssl_gtest/tls_hkdf_unittest.cc,
gtests/ssl_gtest/tls_protect.cc, lib/ssl/dtls13con.c,
lib/ssl/ssl3con.c, lib/ssl/ssl3prot.h, lib/ssl/sslexp.h,
lib/ssl/sslimpl.h, lib/ssl/sslinfo.c, lib/ssl/sslprimitive.c,
lib/ssl/sslsock.c, lib/ssl/tls13con.c, lib/ssl/tls13esni.c,
lib/ssl/tls13hkdf.c, lib/ssl/tls13hkdf.h, lib/ssl/tls13replay.c:
Bug 1608892 - Update DTLS 1.3 to draft-34 r=mt
This patch updates the DTLS 1.3 implementation to draft-34. Notable
changes:
1) Key separation via `ssl_protocol_variant`. 2) No longer apply
sequence number masking when in `UNSAFE_FUZZER_MODE`. This allowed
removal of workarounds for unpadded (<16B) ciphertexts being used as
input to `SSL_CreateMask`. 3) Compile ssl_gtests in
`UNSAFE_FUZZER_MODE` iff `--fuzz=tls` was specified. Currently all
gtests are compiled this way if `--fuzz`, but lib/ssl only if
`--fuzz=tls`. (See above, we can't have ssl_gtests in fuzzer mode,
but not lib/ssl, since the masking mismatch will break filters). 4)
Parameterize masking tests, as appropriate. 5) Reject non-empty
legacy_cookie, and test. 6) Reject ciphertexts <16B in length in
`dtls13_MaskSequenceNumber` (if not `UNSAFE_FUZZER_MODE`).
[52a75c5373ef] [tip]
2020-02-24 Jean-Luc Bonnafoux <jeanluc.bonnafoux@wanadoo.fr>
* lib/cryptohi/secsign.c:
Bug 1617387 fix compiler warning r=jcj
[ab0e7e272e36]
2020-02-24 Kevin Jacobs <kjacobs@mozilla.com>
* gtests/common/testvectors/p384ecdh-vectors.h,
gtests/common/testvectors/p521ecdh-vectors.h,
gtests/common/wycheproof/genTestVectors.py,
gtests/common/wycheproof/source_vectors/ecdh_secp384r1_test.json,
gtests/common/wycheproof/source_vectors/ecdh_secp521r1_test.json,
gtests/pk11_gtest/pk11_ecdh_unittest.cc:
Bug 1612259 - Add Wycheproof vectors for P384 and P521 ECDH.
r=bbeurdouche
[badb4da1ec85]
2020-02-19 Kevin Jacobs <kjacobs@mozilla.com>
* gtests/freebl_gtest/mpi_unittest.cc, lib/freebl/mpi/mplogic.h:
Bug 1609751 - Additional tests for mp_comba r=mt
Verify that when clamping, the upper 4 bytes of an `mp_digit` is
checked.
[a5e8c14016cd]
2020-02-19 Jean-Luc Bonnafoux <jeanluc.bonnafoux@wanadoo.fr>
* lib/freebl/ecl/ecp_25519.c:
Bug 1561337: fix compiler warning r=jcj
[4c771e6a79db]
Differential Revision: https://phabricator.services.mozilla.com/D64683
--HG--
extra : moz-landing-system : lando
2020-02-28 01:55:48 +00:00
e037cf93e5
Bug 1618710 - Refactoring nsClientAuthRememberService to work as a service r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D62585
--HG--
extra : moz-landing-system : lando
2020-02-28 01:32:38 +00:00
090056def5
Backed out changeset a538b0497336 (bug 634697) for causing android build bustages in /builds/worker/workspace/build/src/security/manager/ssl/nsNSSComponent.cpp CLOSED TREE
2020-02-28 01:05:11 +02:00
d3291a0a11
Bug 634697 - Refactoring nsClientAuthRememberService to work as a service r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D62585
--HG--
extra : moz-landing-system : lando
2020-02-27 21:28:34 +00:00
3da50ef6ba
No Bug, mozilla-central repo-update HSTS HPKP blocklist remote-settings tld-suffixes - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D64580
--HG--
extra : moz-landing-system : lando
2020-02-27 18:48:55 +00:00
3558de5641
Bug 1613255 - Remove redundant return statement. r=sylvestre
...
Differential Revision: https://phabricator.services.mozilla.com/D64354
--HG--
extra : moz-landing-system : lando
2020-02-27 18:25:56 +00:00
a1b1d6ff88
Bug 1616549 - Set resumption token again after handshake reset r=keeler
...
Differential Revision: https://phabricator.services.mozilla.com/D63319
--HG--
extra : moz-landing-system : lando
2020-02-27 12:44:10 +00:00
5f3cbafe43
Bug 1616675 - Add an IPv4 secure service to mochitests' ssltunnel r=keeler
...
WebAuthn needs to write a test to confirm it's prohibited when accessed via
an IP address. This adds the capability to get a SecureContext for an IP host.
It uses 127.0.0.2 so as to bypass restrictions on 127.0.0.1, and the use of .1
as a special-market in ssltunnel.
Differential Revision: https://phabricator.services.mozilla.com/D63570
--HG--
extra : moz-landing-system : lando
2020-02-26 23:15:02 +00:00
aaf6cb4e75
Bug 1617628 - Hide nsBaseHashtable Put overloads in nsRefPtrHashtable subclass. r=froydnj
...
Differential Revision: https://phabricator.services.mozilla.com/D63899
--HG--
extra : moz-landing-system : lando
2020-02-25 17:03:36 +00:00
a2d5cb90b0
Bug 1616780 - Add __NR_sched_getattr to the list of thread function r=jld
...
Introduced in:
8aeca4fa64https://phabricator.services.mozilla.com/D63451
--HG--
extra : moz-landing-system : lando
2020-02-24 22:04:16 +00:00
124379887c
Bug 1617327 - Part 2: Remove nsAutoPtr usage from ipc, security, IDB. r=mccr8,janv
...
This removes `nsAutoPtr` usage from ipc/. security/ failed to build due to missing includes so I fixed that as well. IDB was using `ThreadLocal` from ipc which had a member changed to a `UniquePtr` so needed to be updated as well. localstorage was missing some includes.
Differential Revision: https://phabricator.services.mozilla.com/D63745
--HG--
extra : moz-landing-system : lando
2020-02-24 19:26:40 +00:00
ca6530131a
Bug 1519636 - Reformat recent changes to the Google coding style r=Ehsan,kvark
...
# ignore-this-changeset
Differential Revision: https://phabricator.services.mozilla.com/D63787
--HG--
extra : moz-landing-system : lando
2020-02-24 15:33:38 +00:00
1a2afa385b
No Bug, mozilla-central repo-update HSTS HPKP blocklist remote-settings - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D63847
--HG--
extra : moz-landing-system : lando
2020-02-24 13:53:33 +00:00
e5696f1486
Bug 1611290 - Windows sandbox for socket process. r=bobowen
...
Differential Revision: https://phabricator.services.mozilla.com/D62772
--HG--
extra : moz-landing-system : lando
2020-02-21 15:49:54 +00:00
c8abdd68c2
Bug 1616630 - Use py3_action for GENERATED_FILES that already support it; r=firefox-build-system-reviewers,kvark,rstewart
...
Differential Revision: https://phabricator.services.mozilla.com/D63438
--HG--
extra : moz-landing-system : lando
2020-02-21 00:05:17 +00:00
6360b24e80
Backed out 2 changesets (bug 1616630) for Android bustage. CLOSED TREE
...
Backed out changeset 15016546c954 (bug 1616630)
Backed out changeset dcb7dc51633b (bug 1616630)
2020-02-20 21:24:11 +02:00
39492660f4
Bug 1616630 - Use py3_action for GENERATED_FILES that already support it; r=firefox-build-system-reviewers,kvark,rstewart
...
Depends on D63437
Differential Revision: https://phabricator.services.mozilla.com/D63438
--HG--
extra : moz-landing-system : lando
2020-02-20 16:21:55 +00:00
60706288cf
No Bug, mozilla-central repo-update HSTS HPKP blocklist remote-settings tld-suffixes - a=repo-update r=RyanVM
...
Differential Revision: https://phabricator.services.mozilla.com/D63465
--HG--
extra : moz-landing-system : lando
2020-02-20 13:40:32 +00:00
6d31f32301
bug 1616330 - handle reinitializing osclientcerts on macOS r=kjacobs
...
On macOS, dynamic libraries with thread-local-storage don't get unloaded. So,
if the osclientcerts library gets "unloaded", it doesn't actually go away. We
stop its background thread, so this isn't a problem, but if the osclientcerts
library gets re-enabled, all of its state comes back the same as before. So,
when NSS calls C_Initialize again, things like the manager proxy will already
be initialized. Before this patch, this situation would be an error. This patch
handles this case by dropping the old manager proxy and creating a new one.
Differential Revision: https://phabricator.services.mozilla.com/D63264
--HG--
extra : moz-landing-system : lando
2020-02-19 21:07:26 +00:00
Kevin Jacobs
Dorel Luca
Jared Wein
Emilio Cobos Álvarez
Mike Shal
Daniel Varga
Bogdan Tara
Gabriele Svelto
Michael Froman
ffxbld
Mark Banner
Toshihito Kikuchi
Kershaw Chang
Dana Keeler
Sylvestre Ledru
Moritz Birghan
shindli
manas
J.C. Jones
Simon Giesecke
Eric Rahm
Csoregi Natalia