Jonathan Griffin
369ec3ac0f
Bug 1136892 - Create an xpcshell-addons tag for running addon-specific xpcshell tests, r=chmanchester
...
--HG--
extra : commitid : 6kGKslC9h14
2015-08-18 11:26:14 -07:00
Kai Engert
641cf3a3ad
Bug 1194135, set NSS version to final 3.20 tag, no code change, DONTBUILD
2015-08-19 18:41:53 +02:00
Wes Kocher
fe6faf7d6b
Backed out changeset 688775a8227f (bug 1136892) for mass bustage prompting a CLOSED TREE
2015-08-18 11:58:05 -07:00
Christoph Kerschbaumer
10a7d6a5b9
Bug 1195606
- Use channel->ascynOpen2 in security/manager/ssl/nsNSSCallbacks.cpp (r=sicking)
2015-08-18 09:54:09 -07:00
Jonathan Griffin
dde975f7a0
Bug 1136892 - Create an xpcshell-addons tag for running addon-specific xpcshell tests, r=chmanchester
...
--HG--
extra : commitid : FN6nc0Yis2o
2015-08-18 11:26:14 -07:00
Arnaud Bienner
2755fa9a57
Bug 1190086 - Use new String::Contains(char) method more widely r=froydnj
...
--HG--
extra : rebase_source : 81df1495200d3734ea1c4c13818ae764a445f4b3
2015-08-14 00:49:15 +02:00
David Keeler
23a9820f27
bug 1190603 - rename prime256v1 to secp256r1 in test_keysize.js to reduce confusion r=Cykesiopka
...
OpenSSL refers to the curve in question as 'prime256v1', but rfc 5480,
mozilla::pkix, and the test framework refer to it as secp256r1, so we
should be consistent.
--HG--
rename : security/manager/ssl/tests/unit/test_keysize/ee_secp224r1_224-int_prime256v1_256-root_rsa_2048.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp224r1_224-int_secp256r1_256-root_rsa_2048.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_secp224r1_224-int_prime256v1_256-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp224r1_224-int_secp256r1_256-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_secp256k1_256-int_prime256v1_256-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp256k1_256-int_secp256r1_256-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_prime256v1_256-int_rsa_1016-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp256r1_256-int_rsa_1016-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_prime256v1_256-int_secp224r1_224-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp256r1_256-int_secp224r1_224-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_prime256v1_256-int_prime256v1_256-root_secp224r1_224.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp256r1_256-int_secp256r1_256-root_secp224r1_224.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_prime256v1_256-int_prime256v1_256-root_secp256k1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp256r1_256-int_secp256r1_256-root_secp256k1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_secp384r1_384-int_prime256v1_256-root_rsa_2048.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp384r1_384-int_secp256r1_256-root_rsa_2048.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/ee_secp521r1_521-int_secp384r1_384-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/ee_secp521r1_521-int_secp384r1_384-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_rsa_1016-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_rsa_1016-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_secp224r1_224-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp224r1_224-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_prime256v1_256-root_rsa_2048.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp256r1_256-root_rsa_2048.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_prime256v1_256-root_secp224r1_224.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp256r1_256-root_secp224r1_224.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_prime256v1_256-root_secp256k1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp256r1_256-root_secp256k1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_prime256v1_256-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp256r1_256-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/int_secp384r1_384-root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/int_secp384r1_384-root_secp256r1_256.pem.certspec
rename : security/manager/ssl/tests/unit/test_keysize/root_prime256v1_256.pem.certspec => security/manager/ssl/tests/unit/test_keysize/root_secp256r1_256.pem.certspec
2015-08-05 13:39:11 -07:00
David Keeler
70897766ec
bug 1190603 - convert test_keysize.js to generate certificates at build time r=Cykesiopka
2015-08-03 17:02:58 -07:00
Aryeh Gregor
ff2ceb15ed
Bug 1193298 - Part 2: Use .get() to convert from RefPtr to raw pointer. r=froydnj
2015-08-11 06:45:00 -04:00
Jed Davis
b7a032eb04
Bug 1004011 - Support SECCOMP_FILTER_FLAG_TSYNC if available. r=kang
...
--HG--
extra : rebase_source : 32be610d889fedb518e062a4a416331be21378d3
2015-08-11 16:30:00 -04:00
Tanvi Vyas
7b0ea8ee04
Bug 1182551 - Updating nsSecureBrowserUIImpl so that insecure pages with mixed content iframes don't get marked as broken. r=keeler
2015-08-13 17:13:48 -07:00
Kai Engert
531a2c1719
Bug 1194135, Update Mozilla to NSS 3.20, r=mt
2015-08-13 11:31:23 +02:00
Nathan Froyd
8f318ea950
Bug 1193021 - clean up reference-counting in security/; r=keeler
2015-07-01 13:10:53 -04:00
David Keeler
7ce068b7e9
bug 1190532 - change default key specification from implicit to explicit in pycert.py r=Cykesiopka
...
Previously using an empty string would result in pycert.py returning the
default shared RSA key. This resulted in empty keyspec files being added
to the tree, which was confusing. This should end the confusion by making
the key specification process explicit rather than implicit.
2015-08-06 11:35:40 -07:00
David Keeler
948094db6e
bug 1189427
- convert test_ocsp_fetch_method.js to generate certificates at build time r=mgoodwin
2015-07-30 10:20:52 -07:00
Kai Engert
8238eb63a4
Bug 1190794, land final NSS_3_19_3_RTM tag, no code change, DONTBUILD
2015-08-07 20:19:06 +02:00
Makoto Kato
c3c571a9ee
Bug 1166323 - Fix unexpcetd changed on previous landed. r=dkeeler
2015-08-07 13:41:49 +09:00
Cykesiopka
d9d018971e
Bug 1164609 - Remove EV treatment for expired Buypass Class 3 CA 1 root certificate. r=keeler
...
--HG--
extra : rebase_source : 65e2c8746098d8fb2cd5347b557c23a3832d435a
2015-08-07 00:21:00 +02:00
Carsten "Tomcat" Book
fca5cdc8bc
Backed out changeset 9618f92995ab (bug 1166323) for linux x64 test bustage on a CLOSED TREE
2015-08-07 07:24:40 +02:00
Makoto Kato
6fb6d7a35c
Bug 1166323 - Fix unexpcetd changed on previous landed. r=dkeeler
2015-08-07 13:41:49 +09:00
Carsten "Tomcat" Book
ba03e3c181
Backed out 2 changesets (bug 1016555, bug 1189427
) for making Android 4.3 API11+ debug X3 perma fail in test_ev_certs.js
...
Backed out changeset ebd4e3880403 (bug 1189427
)
Backed out changeset 331e489c7534 (bug 1016555)
2015-08-06 11:51:27 +02:00
Cykesiopka
d93ee984a0
Bug 1124649 - Part 1 - Add specific error messages for various types of STS and PKP header failures. r=keeler,hurley
...
--HG--
extra : rebase_source : 8210ed5f89cec8c42d5a78b9101f1c54d91e04c6
2015-08-05 07:51:00 +02:00
David Keeler
ae2c1351bc
bug 1189427
- convert test_ocsp_fetch_method.js to generate certificates at build time r=mgoodwin
2015-07-30 10:20:52 -07:00
Birunthan Mohanathas
7315345693
Bug 1191100
- Remove XPIDL signature comments in .cpp files. r=ehsan
...
Comment-only so DONTBUILD.
2015-08-04 16:17:36 -07:00
Kai Engert
80c4460491
Bug 1190794, Update to NSS 3.19.3 to pick up ca-certificates v 2.5, landing NSS_3_19_3_RC0, r=kwilson
2015-08-04 22:37:05 +02:00
David Keeler
59ef11f506
bug 1188100 - fold PSM's test_client_cert.js into necko's test_tls_server.js r=mcmanus
...
--HG--
rename : security/manager/ssl/tests/unit/test_client_cert/cert_dialog.js => netwerk/test/unit/client_cert_chooser.js
rename : security/manager/ssl/tests/unit/test_client_cert/cert_dialog.manifest => netwerk/test/unit/client_cert_chooser.manifest
extra : amend_source : 249efd8e1bc537cf14b3199865df18b8aba62d10
2015-07-29 14:27:54 -07:00
Carsten "Tomcat" Book
49d83b3b7d
Merge mozilla-central to mozilla-inbound
2015-08-03 15:45:57 +02:00
Carsten "Tomcat" Book
6b441cd90a
merge mozilla-inbound to mozilla-central a=merge
2015-08-03 13:56:39 +02:00
Makoto Kato
50e851b877
Bug 830801 - Part 2. Remove NOMINMAX define from moz.build. r=mshal
2015-08-03 10:07:09 +09:00
ffxbld
abb4d538ee
No bug, Automated HPKP preload list update from host bld-linux64-spot-317 - a=hpkp-update
2015-08-01 03:34:19 -07:00
ffxbld
ae7af3ea3c
No bug, Automated HSTS preload list update from host bld-linux64-spot-317 - a=hsts-update
2015-08-01 03:34:17 -07:00
ffxbld
b44231402a
No bug, Automated HPKP preload list update from host bld-linux64-spot-010 - a=hpkp-update
2015-07-30 13:51:28 -07:00
ffxbld
eb03434709
No bug, Automated HSTS preload list update from host bld-linux64-spot-010 - a=hsts-update
2015-07-30 13:51:26 -07:00
Cykesiopka
8a9392bf5e
Bug 1189166 - Cleanup some PSM test generation files post Bug 1181823. r=dkeeler
...
--HG--
extra : rebase_source : 4f0310323c3e7ac7e9e8c453d41aa0ef9cbd910a
2015-07-29 23:56:33 -07:00
Bob Owen
77826e3c4a
Bug 1171796: Add sandbox rule for child process NSPR log file on Windows. r=bbondy
...
This also moves the initialization of the sandbox TargetServices to earlier in
plugin-container.cpp content_process_main, because it needs to happen before
xul.dll loads.
2015-07-30 10:04:42 +01:00
David Keeler
b49becac5d
bug 1181823 - convert test_ev_certs.js, test_keysize_ev.js, and test_validity.js to generate certificates at build time r=Cykesiopka r=mgoodwin
2015-06-17 16:02:08 -07:00
Bobby Holley
97b9240b34
Bug 1188696
- Hoist nsRefPtr.h into MFBT. r=froydnj
2015-07-29 10:44:59 -07:00
Douglas Bagnall
5cea0a9df6
Bug 1046421 - Do not disclose the system hostname via NTLM handler. r=honzab
...
The hostname here is matched on the AD DC to the userWorkstations
attribute, however this is on a total trust basis in terms of what the
client specifies here.
The impact of this patch is that a user who is restricted by this
attribute to log on to only certain (Windows, in reality)
workstations, may not be able to perform a manual NTLM logon to an
intranet site, unless they set network.generic-ntlm-auth.workstation
to the name of their workstation (actually, any host in that list).
The default value is set to WORKSTATION.
This patch was originally written by Andrew Bartlett, and modified by
Douglas Bagnall following review feedback from Honza Bambas and Tim
Brown.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2015-07-24 13:36:11 +12:00
David Keeler
1b1d908d0f
bug 1187029 - convert test_bug480509.html to an xpcshell test r=jcj
2015-07-23 13:31:45 -07:00
Steven Michaud
265ad075b1
Bug 1175881 - about:sync-log can't read files on OS X with e10s on and content process sandbox enabled. r=areinald
2015-07-28 12:09:34 -05:00
David Keeler
3a4c2d822a
bug 1179660 - define 'now' as the first second of the current year for pycert r=Cykesiopka
...
This is to avoid a dependency on the buildid so we don't have to
regenerate all of the test certificate with every ./mach build.
This can cause problems very near midnight on New Year's Eve.
If this happens, kick off a new build and get back to the party.
2015-07-15 16:20:54 -07:00
Xidorn Quan
cec576a922
Bug 1187173 - Disable warning C4623 on security/certverifier. r=briansmith
...
--HG--
extra : source : 9f3acfedff8cf4a26266bb578dc69727e799c0cf
extra : amend_source : cb1d0a6e8c6d9199429159cb9a20484f5aa95b8d
2015-07-24 13:38:12 +10:00
Jed Davis
315c4ad9c2
Bug 1186709 - Remove MOZ_IMPLICIT from security/sandbox/chromium. r=bobowen
2015-07-23 08:28:00 -04:00
Jed Davis
39f6ab2a28
Bug 1157864 - Record chromium patch applied in previous commit. r=me
2015-07-22 15:48:49 -07:00
Felix Janda
acfe5cf4cf
Bug 1157864 - chromium sandbox: Fix compilation for systems without <sys/cdefs.h>. r=jld
2015-02-05 22:41:38 +01:00
Masatoshi Kimura
0e28f550d3
Bug 1181562 - Update fallback whitelist. r=keeler
2015-07-22 20:35:26 +09:00
Nicholas Nethercote
1ac7d5d5b1
Bug 1182959 (part 5) - Use nsTHashtable::Iterator in nsCertOverrideService. r=honzab.
...
--HG--
extra : rebase_source : c36d0f9e4a2242a934e2848b6f977f33d6ac76cc
2015-07-20 17:12:03 -07:00
Nicholas Nethercote
746d9d6e0a
Bug 1182959 (part 4) - Remove BlocklistSaveInfo. r=honzab.
...
--HG--
extra : rebase_source : c46e23885d97ef05504db32e0fd8cae05b55232a
2015-07-20 17:12:03 -07:00
Nicholas Nethercote
6ceff73a0f
Bug 1182959 (part 3) - Use nsTHashtable::Iterator in CertBlockList. r=honzab.
...
--HG--
extra : rebase_source : 4df2d9845e7a04c11bc6076ea7844fba7b5ca3a9
2015-07-20 17:12:03 -07:00
Nicholas Nethercote
e0bd2455c1
Bug 1182959 (part 2) - Use nsTHashtable::Iterator in CertBlockList. r=honzab.
...
--HG--
extra : rebase_source : f2b69832a8f789919db84706591e96bcf4bd0a1d
2015-07-20 17:12:03 -07:00