5bfa1a1ac8
bug 1430906 - don't hold around a test key forever in mozilla::pkix gtests r=franziskus
...
Before this patch, mozilla::pkix gtests would generate a public/private key pair
and stash it in a global variable. Since this wasn't part of XPCOM nor tracked
by the PSM/NSS shutdown machinery, it wouldn't get released at the appropriate
time. The solution to this is to generate the key and then essentially export it
as data, so no NSS objects are held alive. Since NSS considers private keys
stored in the persistent database sensitive and won't export them in the clear,
we "encrypt" the key material with an empty password so we can import it when
necessary. (While the gtests don't use persistent keys, the test utilties in the
gtests are also used by some xpcshell tests that do use persistent keys, hence
the need to encrypt the key material.)
--HG--
extra : rebase_source : df10c25a462a3ba0396f5ba4a43a52fb924548ff
extra : amend_source : d95722891e49a99c471046cd9c758e914a02838e
2018-01-12 13:57:51 -08:00
2877a35271
Bug 1430274 - Define MOZ_ALSA for more source files. r=jld
2018-01-18 15:18:37 -07:00
dc1715ad21
Merge inbound to mozilla-central. a=merge
2018-01-18 23:53:03 +02:00
0d6a403dd2
Merge autoland to mozilla-central. a=merge
2018-01-18 23:46:09 +02:00
12872ceb18
No bug, Automated HPKP preload list update from host bld-linux64-spot-302 - a=hpkp-update
2018-01-18 11:22:36 -08:00
3735019997
No bug, Automated HSTS preload list update from host bld-linux64-spot-302 - a=hsts-update
2018-01-18 11:22:32 -08:00
92e228aa49
Merge inbound to mozilla-central. a=merge
2018-01-17 23:48:10 +02:00
37e9f519f9
No bug, Automated HPKP preload list update from host bld-linux64-spot-324 - a=hpkp-update
2018-01-17 11:37:03 -08:00
866b399106
No bug, Automated HSTS preload list update from host bld-linux64-spot-324 - a=hsts-update
2018-01-17 11:37:00 -08:00
e5687f9731
Bug 1430118 - Look for log file names in the passed environment. r=bobowen
...
MozReview-Commit-ID: HVUDYoEwjCd
--HG--
extra : rebase_source : 4121114558901489cd3954f433fe70bdea32a683
2018-01-17 09:54:48 +01:00
6071f20f6c
Bug 1430374 - Remove support for progressmeter tree cells. r=bz,dao
...
MozReview-Commit-ID: 3hydkeoneC0
--HG--
extra : rebase_source : eca404511d1fc2d9d7e9711fbd1accefd3781b16
2018-01-18 10:36:05 +00:00
00db3443a3
Bug 1355977 - don't show GMT twice in certificate details. r=zibi
2018-01-16 16:17:00 +02:00
4040649e6d
Bug 1420060, uplift NSS_3_35_RTM, no code change, only version number. Require version 3.35 for building. r=me
...
UPGRADE_NSS_RELEASE
2018-01-18 15:33:36 +01:00
757c55dc4f
Merge mozilla-central to autoland. a=merge CLOSED TREE
2018-01-16 23:49:24 +02:00
312b6a44e5
No bug, Automated HPKP preload list update from host bld-linux64-spot-309 - a=hpkp-update
2018-01-16 12:59:54 -08:00
e4a2ac5bbe
No bug, Automated HSTS preload list update from host bld-linux64-spot-309 - a=hsts-update
2018-01-16 12:59:50 -08:00
89f94440e6
bug 1263765 - remove nsIBadCertListener2 implementation from the add certificate exception dialog r=jcj
...
This reworks the certificate-fetching portion of the add certificate exception
dialog so as to not require a nsIBadCertListener2 implementation, which is
deprecated. The solution is simple: use the onerror/onload callbacks on the
XMLHttpRequest object to grab the appropriate information.
MozReview-Commit-ID: IjNrNfYA28P
--HG--
extra : rebase_source : 4a09b2eaf81d675444553156a0e098be54703115
2018-01-11 15:25:05 -08:00
54161e9fb9
No bug, Automated HPKP preload list update from host bld-linux64-spot-306 - a=hpkp-update
2018-01-15 10:59:32 -08:00
52c9e21d6b
No bug, Automated HSTS preload list update from host bld-linux64-spot-306 - a=hsts-update
2018-01-15 10:59:29 -08:00
4579f798bf
No bug, Automated HPKP preload list update from host bld-linux64-spot-302 - a=hpkp-update
2018-01-14 11:03:43 -08:00
6f34584a20
No bug, Automated HSTS preload list update from host bld-linux64-spot-302 - a=hsts-update
2018-01-14 11:03:40 -08:00
37efe4d0e6
Bug 1428535 - Add missing override specifiers to overridden virtual functions. r=froydnj
...
MozReview-Commit-ID: DCPTnyBooIe
--HG--
extra : rebase_source : cfec2d96faeb11656d86d760a34e0a04cacddb13
extra : intermediate-source : 6176724d63788b0fe8caa3f91607c2d93dbaa7ec
extra : source : eebbb0600447f9b64aae3bcd47b4be66c02a51ea
2017-11-05 19:37:28 -08:00
e32752514d
Merge mozilla-inbound to mozilla-central. a=merge
2018-01-13 23:49:24 +02:00
9781fa968b
No bug, Automated HPKP preload list update from host bld-linux64-spot-302 - a=hpkp-update
2018-01-13 11:04:33 -08:00
e2ae589f60
No bug, Automated HSTS preload list update from host bld-linux64-spot-302 - a=hsts-update
2018-01-13 11:04:29 -08:00
ede3b33617
Bug 1430268 - Unconditionally enable compat mode. r=keeler
...
Summary: Needed for real TLS 1.3 deployment
Reviewers: mt
Differential Revision: https://phabricator.services.mozilla.com/D342
2018-01-13 10:18:53 -08:00
7476b71e00
Merge inbound to mozilla-central r=merge a=merge
2018-01-12 23:59:06 +02:00
bcf400ed70
No bug, Automated HPKP preload list update from host bld-linux64-spot-324 - a=hpkp-update
2018-01-12 10:58:23 -08:00
600c92d089
No bug, Automated HSTS preload list update from host bld-linux64-spot-324 - a=hsts-update
2018-01-12 10:58:19 -08:00
508c6b8852
No bug, Automated HPKP preload list update from host bld-linux64-spot-326 - a=hpkp-update
2018-01-11 11:24:52 -08:00
74d31a9bf9
No bug, Automated HSTS preload list update from host bld-linux64-spot-326 - a=hsts-update
2018-01-11 11:24:48 -08:00
f7400ad72e
Merge inbound to mozilla-central r=merge a=merge
2018-01-11 11:54:56 +02:00
e97980a95e
Bug 1424917 - Remove support for HSTS Priming. r=mayhemer, r=ckerschb
...
This patch removes support and tests for HSTS priming from the tree.
2018-01-10 11:07:00 -05:00
5e902ff6cd
Backed out changeset 28f876e75d47 (bug 1417680)for failing GTest
...
--HG--
extra : rebase_source : 2890c797a7cf05d6e82d84e64fd4cd5ed6ec5eb9
2018-01-11 02:56:49 +02:00
8c8754b21f
Bug 1428538 - Use UTF-8 file paths for NSS database. r=keeler
2017-12-28 20:56:33 +09:00
e1c5635b55
Bug 1420060, restrict export of symbols to Windows, suggested by Masatoshi Kimura, r=kaie
2018-01-11 15:04:17 +01:00
46f290697e
Bug 1420060, export new NSS APIs in Firefox' specific API export list, r=franziskus
2018-01-11 14:42:09 +01:00
14be89415f
Bug 1420060, NSS_3_35_BETA1, r=franziskus
...
UPGRADE_NSS_RELEASE
2018-01-11 14:09:34 +01:00
ccebfc1873
Merge mozilla-central to autoland r=merge
2018-01-11 00:03:38 +02:00
59fa32fd74
No bug, Automated HPKP preload list update from host bld-linux64-spot-302 - a=hpkp-update
2018-01-10 11:13:16 -08:00
69f2798cbe
No bug, Automated HSTS preload list update from host bld-linux64-spot-302 - a=hsts-update
2018-01-10 11:13:12 -08:00
68c0e33233
Bug 1429133 - Some FontExplorer managed fonts are not rendered. r=Alex_Gaynor
...
MozReview-Commit-ID: L5x3GNb3HGU
--HG--
extra : rebase_source : fd123e19142e98f4712db19d240b5c636aeb3ecf
2018-01-10 11:33:47 -08:00
fb578c1b74
Merge mozilla-central to inbound. r=merge a=merge on a CLOSED TREE
2018-01-10 02:02:13 +02:00
3c8c1653f7
No bug, Automated HPKP preload list update from host bld-linux64-spot-302 - a=hpkp-update
2018-01-09 11:06:09 -08:00
782a0a23af
No bug, Automated HSTS preload list update from host bld-linux64-spot-302 - a=hsts-update
2018-01-09 11:06:06 -08:00
a881c4a167
Bug 1403844 - Verify COSE signature on add-ons, r=keeler
...
Summary:
MozReview-Commit-ID: 6YorBs4mY8B
Check for COSE signatures in add-ons.
Reviewers: keeler
Bug #: 1403844
Differential Revision: https://phabricator.services.mozilla.com/D298
--HG--
rename : security/manager/ssl/tests/unit/test_signed_apps/cose_multiple_signed.zip => security/manager/ssl/tests/unit/test_signed_apps/cose_multiple_signed_with_pkcs7.zip
rename : security/manager/ssl/tests/unit/test_signed_apps/cose_signed.zip => security/manager/ssl/tests/unit/test_signed_apps/cose_signed_with_pkcs7.zip
rename : third_party/rust/cose/src/cbor/mod.rs => third_party/rust/moz_cbor/src/lib.rs
extra : rebase_source : 0494590eb222e2c936e353e4dd6cf9fac8d822f3
2018-01-08 11:46:51 +01:00
3ba27ce458
Bug 1428918 - Enable Web Authentication in Nightly r=keeler,smaug
...
In advance of enabling Web Authentication in Firefox 60 [1], let's turn it on
for Nightly users.
[1] https://groups.google.com/forum/#!msg/mozilla.dev.platform/tsevyqfBHLE/lccldWNNBwAJ
MozReview-Commit-ID: ALyjBwojKtA
--HG--
extra : rebase_source : c51aef6bf12e1e26faa3d86269132eef7057c889
2018-01-08 18:37:35 -07:00
d07dee65a2
Backed out 6 changesets (bug 1386404) for failing /webdriver/test/ tests on Linux. r=backout on a CLOSED TREE
...
Backed out changeset be1441859e8b (bug 138640413864041386404138640413864041386404
2018-01-10 14:08:51 +02:00
bbfcdcd760
Merge mozilla-central to autoland. r=merge a=merge CLOSED TREE
...
--HG--
rename : security/manager/ssl/tests/unit/test_signed_apps/cose_multiple_signed.zip => security/manager/ssl/tests/unit/test_signed_apps/cose_multiple_signed_with_pkcs7.zip
rename : security/manager/ssl/tests/unit/test_signed_apps/cose_signed.zip => security/manager/ssl/tests/unit/test_signed_apps/cose_signed_with_pkcs7.zip
rename : third_party/rust/cose/src/cbor/mod.rs => third_party/rust/moz_cbor/src/lib.rs
extra : rebase_source : 5f16e3d25e86d41e201b8c28ead361fd6ac25c42
2018-01-10 12:07:47 +02:00
0c092c0ffe
bug 1428498 - don't require importing the server certificate for overrides to succeed r=jcj
...
Previously, adding a permanent certificate error override would depend on
successfully importing the server's certificate into the user's certificate
database. Consequently, if the user's database were in read-only mode (or if the
database couldn't be created due to code page issues on Windows), this would
prevent adding new certificate error overrides. It turns out this isn't even
necessary, because the implementation relies on the stored hash of the
certificate rather than the certificate itself. The stored certificate is only
for display purposes (and there's a fallback if the certificate can't be
stored).
There are remaining issues with non-ASCII characters in 8.3 paths on Windows
when the code page isn't western, but this is a larger issue that must be
addressed in other layers (i.e. NSS/NSPR).
MozReview-Commit-ID: KEzjxtAoeb4
--HG--
rename : security/manager/ssl/tests/unit/test_cert_overrides.js => security/manager/ssl/tests/unit/test_cert_overrides_read_only.js
extra : rebase_source : b41e863d8c85d80335dd56c8f5765b19b1de4e0c
2018-01-04 11:31:22 -08:00
David Keeler
Harald van Dijk
Ciure Andrei
ffxbld
Tiberius Oros
Gian-Carlo Pascutto
Tim Nguyen
Jorg K
Kai Engert
Margareta Eliza Balazs
Chris Peterson
Andreea Pavel
EKR
Csoregi Natalia
Kate McKinley
arthur.iakab
Masatoshi Kimura
Dorel Luca
Haik Aftandilian
Narcis Beleuzu
Franziskus Kiefer
J.C. Jones