gecko-dev

Граф коммитов

Автор	SHA1	Сообщение	Дата
Brian Smith	e93675a04e	Bug 1063281, Part 9: Switch Gecko from NSS to CheckCertHostname, r=keeler --HG-- extra : rebase_source : 340eb682ba1f9dbd51652438433e7d0196494e1f	2014-09-21 17:43:29 -07:00
Cykesiopka	1c4af4e6a1	Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith	2014-10-18 15:18:00 +02:00
Cykesiopka	c30bd575d3	Bug 622859 - Tests for bug 622859. r=briansmith,keeler	2014-10-16 05:22:00 +02:00
Carsten "Tomcat" Book	e5ad1e7db2	Backed out changeset 3afdc3253979 (bug 622859) for breaking m1 tests	2014-10-17 13:14:29 +02:00
Carsten "Tomcat" Book	d893b9cc90	Backed out changeset f5fa8ea86d3b (bug 622859)	2014-10-17 13:13:01 +02:00
Cykesiopka	ef48a9fa7c	Bug 622859 - Tests for bug 622859. r=briansmith,keeler	2014-10-16 05:22:00 +02:00
Cykesiopka	01941f880c	Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith	2014-10-16 05:13:00 +02:00
Camilo Viecco	c2c7007b5f	Bug 787133 - (hpkp) Part 1/2. Header Parsing and interface within PSM. r=keeler, r=mcmanus	2014-09-03 10:24:12 -07:00
David Keeler	fd860abf57	bug 1071308 - (2/2) remove libpkix-style chain validation callback from CertVerifier r=cviecco	2014-09-25 11:18:56 -07:00
David Keeler	863d5f9477	bug 1071308 - (1/2) rename pinning_enforcement_level to PinningMode for brevity r=cviecco	2014-09-25 11:08:36 -07:00
David Keeler	db0e8cfdbd	bug 1066190 - ensure that pinning checks are done for otherwise overridable errors r=mmc	2014-09-12 13:20:43 -07:00
David Keeler	c1853c5db4	bug 1050546 - telemetry for baseline requirements sections 9.2.1 and 9.2.2 (subject alt names/common name) r=rbarnes	2014-09-03 11:44:08 -07:00
Ehsan Akhgari	6deacdf4e9	Bug 1061942 - Switch back security/certverifier and security/manager to use unified builds; r=bsmith	2014-09-02 18:28:11 -04:00
Wes Kocher	c0770e9a92	Backed out 1 changesets (bug 1050546) for build bustage Backed out changeset c7a9e8177202 (bug 1050546)	2014-09-02 16:49:51 -07:00
David Keeler	18cd42500e	bug 1050546 - telemetry for baseline requirements sections 9.2.1 and 9.2.2 (subject alt names/common name) r=rbarnes	2014-09-02 12:10:47 -07:00
Camilo Viecco	a47a7b45b5	Bug 1052099 - August 2014 batch of EV root CA changes. r=keeler --HG-- extra : rebase_source : 4303f1fb6988ff462edd908295708788a24a64f1	2014-08-27 11:31:20 -07:00
David Keeler	1f84bc411b	bug 1049095 - re-verify joinee certificate with joining hostname when joining connections r=briansmith r=mcmanus r=cviecco r=mmc r=rbarnes	2014-08-21 10:37:23 -07:00
David Keeler	c3d3df58ac	bug 1030963 - remove non-standard window.crypto functions/properties r=jst r=briansmith r=glandium	2014-08-14 09:38:42 -07:00
Ehsan Akhgari	7257b2f870	Bug 579517 follow-up: Remove NSPR types that crept in	2014-08-08 08:39:07 -04:00
Eric Rahm	6fc80c7e16	Bug 1047176 - Part 1: Disable warning C4640 in certverifier. r=keeler --HG-- extra : rebase_source : a608f8704f57312902b05258ff53a4d1f2010cbc	2014-08-04 11:29:25 -07:00
Brian Smith	0ccaf0860c	Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler --HG-- extra : rebase_source : 2cc39d3c322c1355aad003f2497659a091febac2	2014-08-02 08:49:12 -07:00
Brian Smith	de725ae5ef	Bug 1047792: Rely on mozilla::pkix to filter out expired certs instead of CERT_CreateSubjectCertList, r=keeler --HG-- extra : rebase_source : 5182147037b69f0ac3c3cd060d6e2af71bfde2e7	2014-08-01 23:16:21 -07:00
Brian Smith	d77dac0580	Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler --HG-- extra : rebase_source : bf57a9eb6ae5c122912e00a47156010e5ea99478	2014-07-31 12:17:31 -07:00
Brian Smith	ffe743ee06	Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler --HG-- extra : rebase_source : 0f4a33f2c66594930ba9c79233648c70e33ba27c	2014-07-18 22:30:51 -07:00
Brian Smith	5f56fc60d6	Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco --HG-- extra : rebase_source : d5c07dc29a95ccb75a7a8f199de26d43950b9ed4	2014-07-20 11:06:26 -07:00
Brian Smith	c45dc156d1	Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler --HG-- extra : rebase_source : 4f3e41916cd7e2c74679d468eeeb702af3321532	2014-07-18 11:48:49 -07:00
David Keeler	67d0a99f3a	bug 1040889 - don't re-cache OCSP server failures if no fetch was attempted r=briansmith r=cviecco --HG-- extra : rebase_source : e00c84e62ecca3e97794d3ceafcd1f5f618045d1	2014-07-25 16:59:22 -07:00
Mike Hommey	622bf09730	Bug 1041864 - Remove LIBRARY_NAMEs that aren't used. r=mshal	2014-07-23 08:39:56 +09:00
Cykesiopka	0289b45f0c	Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith	2014-07-15 19:49:00 -04:00
Brian Smith	7cd854102a	Bug 1038098: Save intermediate certificates during TLS handshake, r=keeler --HG-- extra : rebase_source : 99e2551e78bc8eac91174e5320c15623ede26642 extra : histedit_source : c4af1c24b95b1b3c8a86d06575645b6ffc5308a6	2014-07-14 16:43:33 -07:00
Brian Smith	17375cc8b3	Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler --HG-- extra : rebase_source : dd8dc1243ea2e37955a15f2481e1c452311e90d8 extra : histedit_source : adc1a2035d41c608d3f0ebe14bba159b2857502d	2014-07-06 19:36:05 -07:00
Brian Smith	c162caba82	Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler --HG-- extra : rebase_source : 94c49062ae3ddf755651f151e2d648543b10e1ad extra : histedit_source : a7377bf1d9adb62e1c584e2adeb793aa074245fb	2014-07-10 19:00:32 -07:00
Brian Smith	b14f27897b	Bug 1037324: Delegate additional name constraint selection to the TrustDomain in mozilla::pkix, r=cviecco --HG-- extra : rebase_source : 300f33bfb3a0c9ae1525695b080674c1fb21eafc	2014-07-10 22:38:59 -07:00
Brian Smith	3f110246be	Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler --HG-- extra : rebase_source : fc2b39e5e2b44fea365914e83a7d1f2dc9b784bc extra : histedit_source : b40e5e8cb106fe87f6f065b01ca43adb0bf3a605	2014-07-06 15:55:38 -07:00
Brian Smith	783ead1861	Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc --HG-- extra : rebase_source : 68e6da2f1e1c7fa678ef4cc81d23cc6298709108 extra : histedit_source : feba4c589dbf004ee50e2dea1fca0809f8f97674	2014-07-03 21:49:56 -07:00
Brian Smith	f5ec8594e7	Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler --HG-- extra : rebase_source : e8c734ecb2de2c52dd8909c8b48f4bdb09d0128e	2014-07-02 16:15:16 -07:00
Brian Smith	89e560be23	Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler --HG-- extra : rebase_source : e093922497d005734c590a59f175993a7715bce8	2014-07-03 16:59:42 -07:00
Brian Smith	949d837110	Bug 1035034: Fix typo in CertVerifier, r=cviecco --HG-- extra : rebase_source : b8871ee8cf1e156ef48d363ea49e8b82ab268d98	2014-07-06 19:15:13 -07:00
Brian Smith	2d9e74e8ee	Bug 975229: Remove NSS-based certificate verification, r=keeler --HG-- extra : rebase_source : 49cb20f1b51e2d9993a35decd820764e20ad9be9	2014-06-16 23:13:29 -07:00
Brian Smith	ca4f473450	Bug 1026261: Remove CERTCertificate from mozilla::pkix revocation checking API, r=keeler --HG-- extra : rebase_source : 6798f494bd351961ea02abba07b5860839bbc418	2014-06-20 10:10:51 -07:00
David Keeler	c13f6d39c7	bug 997509 - heed expired Revoked or Unknown OCSP responses r=briansmith	2014-06-20 09:01:57 -07:00
Brian Smith	b76e937c55	Bug 1006812: Use mozilla::pkix::der to decode the key usage extension, r=keeler --HG-- extra : rebase_source : e445c913994dc027e1179543d7b6cab2505e734d	2014-06-19 00:13:20 -07:00
Brian Smith	d779fddb49	Bug 1022970: Switch from UNIFIED_SOURCES back to SOURCES in security/pkix, security/certverifier, and security/manager/ssl/src, r=keeler --HG-- extra : rebase_source : 7d45d018be6b23af199c1e9c858fb5bb3bb5a01b	2014-06-16 22:57:55 -07:00
Brian Smith	30fd4b4013	Bug 1026371: Remove useless comments in CertVerifier.cpp, r=cviecco --HG-- extra : rebase_source : 58444ab17c68bcde6938540b3b074af55e417687	2014-06-16 23:37:53 -07:00
David Keeler	29ec0cc30a	bug 1017826 - follow-up to fix indentation r=me a=whitespace-only DONTBUILD	2014-06-17 09:14:00 -07:00
Harsh Pathak	6c21b7c10e	Bug 1017826 - prevent a potential memory leak in OCSPCache::Put. r=keeler	2014-06-16 20:27:00 +02:00
Brian Smith	67bd0799fb	Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler --HG-- extra : rebase_source : 416938498080c4d44874025f1da4562ab1c7c3c8	2014-06-05 15:18:32 -07:00
David Keeler	5f24a86888	bug `1019198` - fail handshake if given an expired OCSP response and fetching a new one fails r=briansmith	2014-06-06 09:20:50 -07:00
Brian Smith	279c66a9b8	Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler --HG-- extra : rebase_source : 9abf0522f02d00ac2f63f2327ddbe8d119ffc64f	2014-06-03 10:47:25 -07:00
Camilo Viecco	5bce267045	Bug 991815 - Part 1/2 - Allow intermediate OCSP responses up to 1 year old. r=keeler --HG-- extra : rebase_source : 28d5336da1dc44932b92ce2c59fca5fcb2b8a3d8	2014-05-30 16:12:36 -07:00

1 2 3

101 Коммитов