Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | No Issue - Updates to Mac packaging for notarization. Add Mac entitlements. | Brian Smith | 2023-05-08 |
| | | | | | | Switch to using "create" instead of "makehybrid" when creating the disk image. This fixes bogus extended attributes which interfere with the code signature. Finally add any -bin or dylibs in the Resources folder since --deep skips that folder. | ||
* | Issue #1656 - Remove more vim control lines. | Moonchild | 2023-05-05 |
| | | | | | | | Vim control lines were re-introduced or not entirely cleaned up. This nukes them again. Removing from modules, netwerk, security, storage, testing, toolkit, and a few scattered misc files. More to come. | ||
* | Issue #2180 - Follow-up: Move sentinel check up a bit. | Moonchild | 2023-03-28 |
| | |||
* | Issue #2180 - Add pref to control NSS TLS 1.3 protocol downgrade sentinel | Moonchild | 2023-03-28 |
| | |||
* | Issue #2148 - Make Vector not use AlignedStorage for its inline element storage | FranklinDM | 2023-03-15 |
| | | | | See Bug 1338374 1/2 | ||
* | Issue #1693 - Follow-up: restore exported NSS symbols for mailnews. | Moonchild | 2023-03-07 |
| | | | | | | This restores the erroneously-removed CMS* symbol exports, as well as a few NSS functions that are likely to be used or have utility value in applications. | ||
* | Issue #1693 - Follow-up: restore exported NSS symbol for debug builds. | Moonchild | 2023-03-06 |
| | | | | Tag #1382 | ||
* | Issue #1693 - Update NSS symbols file for 3.79.4 upgrade | Job Bautista | 2023-03-04 |
| | | | | | Based on latest SeaMonkey's security/nss.symbols, as well as some unresolved external symbols I found myself. | ||
* | Issue #1693 - Update NSS to 3.79.4 | Job Bautista | 2023-03-04 |
| | |||
* | [NSS] Update NSS to 3.52.9 to pick up fixes. | Moonchild | 2023-02-19 |
| | |||
* | [No issue] Add executable bit to shell scripts in tree | trav90 | 2022-11-25 |
| | |||
* | No issue - Fix FreeBSD NSS build by adding FreeBSD to the list. | Brian Smith | 2022-09-04 |
| | |||
* | [NSS] Version bump | Moonchild | 2022-07-27 |
| | |||
* | [NSS] Fix uninitialized value in cert_ComputeCertType. | Moonchild | 2022-07-27 |
| | |||
* | [NSS] Avoid potential data race on primary password change. | Moonchild | 2022-07-27 |
| | |||
* | [NSS] protect SFTKSlot needLogin with slotLock. | Moonchild | 2022-07-27 |
| | |||
* | Issue #1966 - Remove support for Firefox Marketplace "apps" | Moonchild | 2022-07-22 |
| | | | | Because UXP may be a platform, but it's not a mobile OS. | ||
* | Update NSS to 3.52.7 | Moonchild | 2022-07-03 |
| | |||
* | [NSS] Update NSS to 3.52.6 | Moonchild | 2022-06-01 |
| | | | | - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple (Bug 1767590) | ||
* | Issue #1847 - Follow-up: Re-enable building of FIPS mode in NSS. | Moonchild | 2022-05-22 |
| | | | | | This fell by the wayside when transitioning to gyp, but there's no good transition path for people previously enabling the obsolete FIPS-140 mode. | ||
* | Update NSS to 3.52.5 | Moonchild | 2022-05-04 |
| | | | | | - Default configure to enable dbm - Remove a redundant check on ASN1 decoding (Bug 1753535) | ||
* | Issue #738 - Follow-up: Remove explicit session cache cleanup routine from ↵ | FranklinDM | 2022-04-18 |
| | | | | | | | | | | | | ShutdownNSS This is no longer needed because the call to SSL_ConfigServerSessionIDCache on startup was already removed (see 1425f020c47b3cbe134f71717299714aead28502), meaning LocksInitializedEarly does not become true and only causes an assertion on debug builds. On the other hand, SSL_ClearSessionCache is already called on XPCOM shutdown and calling it again here is redundant. Additional context: https://bugzilla.mozilla.org/show_bug.cgi?id=1485087#c5 Based on https://bugzilla.mozilla.org/show_bug.cgi?id=1485087 | ||
* | [NSS] Update NSS to 3.52.4 | Moonchild | 2022-04-08 |
| | |||
* | Merge pull request 'Land final NSS-gyp work' (#1850) from nss-gyp-work into ↵ | Moonchild | 2022-04-08 |
|\ | | | | | | | | | | | master Reviewed-on: https://repo.palemoon.org/MoonchildProductions/UXP/pulls/1850 | ||
| * | Issue #1847 - Fixes for SunOS | Moonchild | 2022-04-07 |
| | | |||
| * | Issue #1847 - Update generate_certdata.py so it matches what this | Matt A. Tobin | 2022-04-07 |
| | | | | | | | | version of NSS expects. | ||
| * | Issue #1847 - Get NSS gyp to understand disabling avx2 in freebl | Matt A. Tobin | 2022-04-07 |
| | | |||
| * | Issue #1847 - Transfer build configuration to gyp | Matt A. Tobin | 2022-04-07 |
| | | |||
* | | [NSS] check for missing signedData field and bump version | Moonchild | 2022-04-08 |
|/ | |||
* | Issue #21 - Remove remaining telemetry structs, callers and flags. | Moonchild | 2022-04-02 |
| | |||
* | Issue #21 - Remove Telemetry plumbing and fix build. | Moonchild | 2022-04-02 |
| | | | | | Note this won't give working applications. Requires FE changes and additional js module changes (next part). | ||
* | Issue #1053 - Clean up docs and some code comments. | Moonchild | 2022-04-01 |
| | | | | Polish only, no code changes. | ||
* | Issue #1053 - First pass Android defines and remove Android Annotation | Moonchild | 2022-04-01 |
| | | | | processors, some Andoid packaging stuff, Eclipse IDE support et al. | ||
* | Issue #1831 - Add an option to enable TLS 1.3 "compatibility" mode. | Moonchild | 2022-04-01 |
| | | | | | | | | | Critical note: this potentially reduces the strength of TLS 1.3 and should only be enabled if absolutely necessary to access a site. A browser restart is required for the pref change to take effect as it is set on NSS initialization. Resolves #1831 | ||
* | Issue #1830 - Remove --disable-xul config and conditionals. | Moonchild | 2022-04-01 |
| | |||
* | No issue - Clean up some obsolete/archaic code paths. | Moonchild | 2022-04-01 |
| | |||
* | [NSS hotpatch] Hard disable AVX2 in NSS Build System | Matt A. Tobin | 2021-03-15 |
| | |||
* | Issue #1693 - Update NSS to 3.52.2-UXP | Moonchild | 2021-03-15 |
| | | | | Update root certificates and port NSS sec patches from previous work. | ||
* | [NSS] Update root certificates. | Moonchild | 2021-03-15 |
| | |||
* | [NSS] Prevent slotLock race in NSC_GetTokenInfo | J.C. Jones | 2021-03-15 |
| | | | | | Basically, NSC_GetTokenInfo doesn't lock slot->slotLock before accessing slot after obtaining it, even though slotLock is defined as its lock. | ||
* | [NSS] Implement constant-time GCD and modular inversion | Sohaib ul Hassan | 2021-03-15 |
| | | | | | | | | | | | | The implementation is based on the work by Bernstein and Yang (https://eprint.iacr.org/2019/266) "Fast constant-time gcd computation and modular inversion". It fixes the old mp_gcd and s_mp_invmod_odd_m functions. The patch also fixes mpl_significant_bits s_mp_div_2d and s_mp_mul_2d by having less control flow to reduce side-channel leaks. Co-authored by : Billy Bob Brumley | ||
* | Issue #1693 - Update NSS to 3.52.1-RTM | Moonchild | 2021-03-15 |
| | |||
* | Issue #1746 - Revert "Update to NSS 3.59.1.1" | Moonchild | 2021-03-14 |
| | |||
* | Issue #1746 - Update pkix code with later NSS code. | Moonchild | 2021-03-14 |
| | |||
* | Issue #457 - Remove duplicate PKCS11 definitions | Moonchild | 2021-02-24 |
| | |||
* | [security] Hold mutex when accessing TSI fields. | Moonchild | 2021-02-24 |
| | |||
* | [NSS hotpatch] Hard disable AVX2 in NSS Build System | Matt A. Tobin | 2021-01-03 |
| | | | | This should be ported to the NSS repo | ||
* | Issue #1693 - Update NSS to 3.59.1.1 | Moonchild | 2020-12-23 |
| | | | | | This updates to MoonchildProductions/NSS@bd49b2b88 in the repo created for our consumption of the library. | ||
* | [NSS] Version and build bump | Moonchild | 2020-12-01 |
| | |||
* | [NSS] Update root certificates. | Moonchild | 2020-12-01 |
| |