summaryrefslogtreecommitdiff
path: root/security/manager/ssl
Commit message (Collapse)AuthorAge
* Issue #2342: Use [[nodiscard]] in /uriloader /widgetMoonchild2023-11-08
| | | | Also a few misc low-volume places.
* Issue #1656 - Remove more vim control lines.Moonchild2023-05-05
| | | | | | | Vim control lines were re-introduced or not entirely cleaned up. This nukes them again. Removing from modules, netwerk, security, storage, testing, toolkit, and a few scattered misc files. More to come.
* Issue #2180 - Follow-up: Move sentinel check up a bit.Moonchild2023-03-28
|
* Issue #2180 - Add pref to control NSS TLS 1.3 protocol downgrade sentinelMoonchild2023-03-28
|
* Issue #1966 - Remove support for Firefox Marketplace "apps"Moonchild2022-07-22
| | | | Because UXP may be a platform, but it's not a mobile OS.
* Issue #738 - Follow-up: Remove explicit session cache cleanup routine from ↵FranklinDM2022-04-18
| | | | | | | | | | | | ShutdownNSS This is no longer needed because the call to SSL_ConfigServerSessionIDCache on startup was already removed (see 1425f020c47b3cbe134f71717299714aead28502), meaning LocksInitializedEarly does not become true and only causes an assertion on debug builds. On the other hand, SSL_ClearSessionCache is already called on XPCOM shutdown and calling it again here is redundant. Additional context: https://bugzilla.mozilla.org/show_bug.cgi?id=1485087#c5 Based on https://bugzilla.mozilla.org/show_bug.cgi?id=1485087
* Issue #21 - Remove remaining telemetry structs, callers and flags.Moonchild2022-04-02
|
* Issue #21 - Remove Telemetry plumbing and fix build.Moonchild2022-04-02
| | | | | Note this won't give working applications. Requires FE changes and additional js module changes (next part).
* Issue #1053 - Clean up docs and some code comments.Moonchild2022-04-01
| | | | Polish only, no code changes.
* Issue #1831 - Add an option to enable TLS 1.3 "compatibility" mode.Moonchild2022-04-01
| | | | | | | | | Critical note: this potentially reduces the strength of TLS 1.3 and should only be enabled if absolutely necessary to access a site. A browser restart is required for the pref change to take effect as it is set on NSS initialization. Resolves #1831
* Issue #1830 - Remove --disable-xul config and conditionals.Moonchild2022-04-01
|
* Issue #1746 - Update pkix code with later NSS code.Moonchild2021-03-14
|
* Issue #457 - Remove duplicate PKCS11 definitionsMoonchild2021-02-24
|
* [security] Hold mutex when accessing TSI fields.Moonchild2021-02-24
|
* Issue #1280 - Follow-up: Get rid of HPKP pinning mode.adesh2020-11-10
| | | | | | This was a leftover from HPKP removal. Also remove a couple of unused variables from security/manager/ssl/nsSiteSecurityService.cpp.
* Issue #1656 - Nuke the remaining vim lines in UXPMoonchild2020-10-26
| | | | Closes #1656
* Issue #1656 - Part 8: Devtools and misc.Moonchild2020-09-24
|
* Issue #1656 - Part 6: Clean up the build filesMoonchild2020-09-23
|
* Issue #1656 - Part 3: Nuke more vim config lines in the tree.Moonchild2020-09-23
| | | | Another S&R run with some smarter matching.
* Issue #1656 - Part 1: Nuke most vim config lines in the tree.Moonchild2020-09-23
| | | | | | Since these are just interpreted comments, there's 0 impact on actual code. This removes all lines that match /* vim: set(.*)tw=80: */ with S&R -- there are a few others scattered around which will be removed manually in a second part.
* Issue #439 - Remove, fix and clean up automated testsMoonchild2020-06-08
| | | | | | | With the big amount of code churn around DOM a lot of tests broke severely enough that they caused build bustage. This commit cleans up, removes or otherwise fixes tests that are broken, no longer relevant or obsolete.
* Issue #1280 - Un-bust certerror pages and ForgetAboutSitewolfbeast2020-03-31
|
* Issue #1280 - Part 2: Remove HPKP tests.wolfbeast2020-03-28
|
* Issue #1280 - Part 1: Remove HPKP components.wolfbeast2020-03-28
| | | | | This also removes leftover plumbing for storing preload information in SiteSecurityService since no service still uses it.
* Issue #1498 - Part 6: Remove STS preloadlist pref.wolfbeast2020-03-27
|
* Issue #1498 - Part 5: Update SSService CID and correct mismatch.wolfbeast2020-03-27
|
* Issue #1498 - Part 4: Remove clearPreloads.wolfbeast2020-03-27
| | | | Also tag #1280
* Issue #1498 - Part 3: Remove support for storing "knockout" values.wolfbeast2020-03-27
|
* Issue #1498 - Part 1: Stop persisting preload states.wolfbeast2020-03-27
| | | | | | Since we don't use preloading anymore for either HPKP or HSTS, we no longer need persistent storage in the profile for preload states. Tag #1280 also
* Issue #1498 - Part 1: Stop using HSTS preload lists.wolfbeast2020-03-27
|
* Take nsSiteSecurityService out of UNIFIED_SOURCESMatt A. Tobin2020-03-25
| | | | It exceeded the obj file sections limit because of the HSTS preload list so it cannot be built in UNIFIED mode.
* Issue #447 - Update HSTS preload listwolfbeast2020-03-24
|
* Issue #1467 - Part 4: Rename NSS_SQLSTORE to MOZ_SECURITY_SQLSTORE.wolfbeast2020-03-19
| | | | Rename the build config option accordingly.
* Issue #1467 - Part 3: Use UTF-8 file paths for NSS-SQL database.wolfbeast2020-03-17
|
* Issue #1467 - Part 1: Set up conditional NSS-SQL builds.wolfbeast2020-03-16
| | | | | | | - Adds buildconfig option --enable-nss-sqlstore - Prefixes NSS dbinit with either sql: or dbm: depending on config - Pre-initializes mozStorage when NSS-SQL storage is used to prevent an sqlite3_config race in NSS Init
* Issue #1053 - Remove android support from nsNSSComponent.cppMatt A. Tobin2020-02-28
|
* Issue #447 - Update HSTS preload list & reduce debug spewwolfbeast2020-02-01
| | | | | Commented out spewing dump() statements in loops. With the ever growing HSTS list it takes too much time and is pointless to display.
* Be more consistent about decoding IP addresses in PSM.wolfbeast2020-01-09
|
* Issue #1118 - Part 6: Fix various tests that are no longer correct.wolfbeast2019-12-22
| | | | | The behavior change of document.open() requires these tests to be changed to account for the new spec behavior.
* Issue #447 - Update HSTS preload listwolfbeast2019-11-19
|
* Issue #1289 - Part 3: Update tests.wolfbeast2019-11-14
|
* Issue #1289 - Part 2: Clear out the preload list except for testwolfbeast2019-11-14
| | | | domains.
* Issue #1289 - Part 1: Add a pref to disable HPKP header processing.wolfbeast2019-11-14
|
* Issue #447 - Update HSTS preload list.wolfbeast2019-11-09
|
* Properly implement various HSTS states.wolfbeast2019-09-05
| | | | | | | | Previously, HSTS preload list values could be overridden temporarily due to counter-intuitive behavior of the API's removeState function. This adds an explicit flag to the API for writing knockout values to the Site Security Service, with the default resetting to whatever the preload list state is.
* Update HSTS preload listtrav902019-06-26
| | | | Tag #447
* Update HSTS preload listwolfbeast2019-05-28
| | | | Tag #447
* Remove SecurityUI telemetry.adeshkp2019-04-21
|
* Fix order of member variables in a couple of initializer listsadeshkp2019-03-14
|
* Update HSTS preload listtrav902019-01-31
| | | | Tag #447
generated by cgit v1.2.3 (git 2.26.2) at 2024-11-10 03:25:14 +0000