security/certverifier/NSSCertDBTrustDomain.cpp
e0c00c1861af255cc20060c69e30bb8595dd00b3
created 2014-08-08 08:39 -0400
pushed 2014-08-08 12:40 +0000
Ehsan Akhgari Ehsan Akhgari - Bug 579517 follow-up: Remove NSPR types that crept in
a4a8b3b58191206f53748d823cf255fba4042253
created 2014-08-02 08:49 -0700
pushed 2014-08-03 18:00 +0000
Brian Smith Brian Smith - Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler
64719bb171797b81c6d155251da939904777fa31
created 2014-08-01 23:16 -0700
pushed 2014-08-03 18:00 +0000
Brian Smith Brian Smith - Bug 1047792: Rely on mozilla::pkix to filter out expired certs instead of CERT_CreateSubjectCertList, r=keeler
c989be71f8443b628a15cd0aab16f47de73d3582
created 2014-07-31 12:17 -0700
pushed 2014-08-01 03:47 +0000
Brian Smith Brian Smith - Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler
c04d170a0bd9ad169065d5546a1149554a543422
created 2014-07-18 22:30 -0700
pushed 2014-08-01 03:47 +0000
Brian Smith Brian Smith - Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler
a6147f19dc56aecfcce19a019d8f966db8a32492
created 2014-07-20 11:06 -0700
pushed 2014-07-31 17:37 +0000
Brian Smith Brian Smith - Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco
5f7dc391e8611d1f12f77d55f2c5a56ef8f6f29e
created 2014-07-18 11:48 -0700
pushed 2014-07-31 17:37 +0000
Brian Smith Brian Smith - Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler
1ed822e820d355e4fae79631f6f888e0b7389fd1
created 2014-07-25 16:59 -0700
pushed 2014-07-26 04:56 +0000
David Keeler David Keeler - bug 1040889 - don't re-cache OCSP server failures if no fetch was attempted r=briansmith r=cviecco
83b81059b2a2c5af28632891978c3ee589958f0f
created 2014-07-15 19:49 -0400
pushed 2014-07-16 13:38 +0000
Cykesiopka Cykesiopka - Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith
2ea91aa53633847fb32c280a079d9a958534f215
created 2014-07-06 19:36 -0700
pushed 2014-07-15 01:15 +0000
Brian Smith Brian Smith - Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler
578899c0b81952253e829c2e6fa8de1b83afe624
created 2014-07-10 19:00 -0700
pushed 2014-07-15 01:15 +0000
Brian Smith Brian Smith - Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler
440f68cba022b72dd87c1c84de1579cb8295d4eb
created 2014-07-10 22:38 -0700
pushed 2014-07-11 21:30 +0000
Brian Smith Brian Smith - Bug 1037324: Delegate additional name constraint selection to the TrustDomain in mozilla::pkix, r=cviecco
0ed88d692f42f34802beafcea77797f61c918155
created 2014-07-06 15:55 -0700
pushed 2014-07-09 17:41 +0000
Brian Smith Brian Smith - Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler
3acf9162f52d566e5d446ddc7ce24dd5d390e365
created 2014-07-03 21:49 -0700
pushed 2014-07-07 21:54 +0000
Brian Smith Brian Smith - Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc
44c19e8283c2b4e590b3ffdfbfbdef6f370056cc
created 2014-07-02 16:15 -0700
pushed 2014-07-07 21:36 +0000
Brian Smith Brian Smith - Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler
911d02f2c02a13fbdf80083f6d00886e35523f20
created 2014-07-03 16:59 -0700
pushed 2014-07-07 20:17 +0000
Brian Smith Brian Smith - Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler
b3ebf7675c7bd1d85ed1b7290e1d2c3ae28a0490
created 2014-06-16 23:13 -0700
pushed 2014-06-21 01:22 +0000
Brian Smith Brian Smith - Bug 975229: Remove NSS-based certificate verification, r=keeler
3d54fd14fb9c6fce3336ea14831ff51b6bbc6b5d
created 2014-06-20 10:10 -0700
pushed 2014-06-21 00:49 +0000
Brian Smith Brian Smith - Bug 1026261: Remove CERTCertificate from mozilla::pkix revocation checking API, r=keeler
31310e4551300a8dfa3c35042112900387826ee0
created 2014-06-20 09:01 -0700
pushed 2014-06-20 16:03 +0000
David Keeler David Keeler - bug 997509 - heed expired Revoked or Unknown OCSP responses r=briansmith
fa797212429e813a44f198c59763a44027a1cadc
created 2014-06-05 15:18 -0700
pushed 2014-06-06 18:26 +0000
Brian Smith Brian Smith - Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler
3697556d43f79c2eb9dfdfe283e96c4ca065608f
created 2014-06-06 09:20 -0700
pushed 2014-06-06 16:22 +0000
David Keeler David Keeler - bug 1019198 - fail handshake if given an expired OCSP response and fetching a new one fails r=briansmith
44be87ea2e1be101218c3cb66032f599c465610a
created 2014-06-03 10:47 -0700
pushed 2014-06-03 19:48 +0000
Brian Smith Brian Smith - Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler
71b7b1f1e87bf233c4d08dd20e04372b1b751549
created 2014-05-30 16:12 -0700
pushed 2014-05-30 23:34 +0000
Camilo Viecco Camilo Viecco - Bug 991815 - Part 1/2 - Allow intermediate OCSP responses up to 1 year old. r=keeler
6dcd584751cc23bea5b56dc3c455640dd1aa8c6c
created 2014-05-28 15:28 -0700
pushed 2014-05-29 17:06 +0000
David Keeler David Keeler - bug 1006710 - add class of PSM errors to SEC and SSL errors r=briansmith
c288e2c355abaa840d36f1b754708bb466df767f
created 2014-05-21 15:42 -0700
pushed 2014-05-28 21:06 +0000
Camilo Viecco Camilo Viecco - Bug 1005142 - Part 1/2 - Add OCSP get capabilities to OCSPRequestor. r=keeler
6deed68c2358d584d0988b200adc23fc88aa4113
created 2014-05-14 17:46 -0700
pushed 2014-05-16 07:43 +0000
Brian Smith Brian Smith - Bug 1010634, Part 1: Fix compiler warnings in certverifier, r=cviecco
a4ae7060f43ac1a4e49b30dfd7a95c5212940d4b
created 2014-05-15 18:59 -0700
pushed 2014-05-16 07:43 +0000
Brian Smith Brian Smith - Bug 1006958: Use mozilla::pkix::der to parse certificate policies instead of NSS, r=keeler
daee17c1458115ef05b91c19a13a407052bf9b9e
created 2014-05-01 15:07 -0700
pushed 2014-05-02 06:35 +0000
David Keeler David Keeler - bug 982248 - NSSCertDBTrustDomain: specify timeout for OCSP requests r=briansmith
c968e47ef70893902ed49f65ade8a2ffe116ea11
created 2014-04-25 16:29 -0700
pushed 2014-05-01 19:27 +0000
Brian Smith Brian Smith - Bug 1002933: Use Strongly-typed enums more often in mozilla::pkix, r=mmc
affd460bc3d7ee6d8a6347bd7ae7faa4c7dc1ecd
created 2014-02-05 14:49 -0800
pushed 2014-04-30 22:02 +0000
Camilo Viecco Camilo Viecco - Bug 744204 - Allow Certificate key pinning Part 2 - Certverifier Interface. r=keeler
6d813156e49133e6416cfd16873feec564936eb2
created 2014-04-28 16:38 -0700
pushed 2014-04-29 16:37 +0000
David Keeler David Keeler - bug 977865 - mozilla::pkix: add backoff for ocsp fetching when a responder fails r=cviecco
04ea38d3515f3dd7e739cfed8005fa70634c06fb
created 2014-03-20 14:29 -0700
pushed 2014-03-20 21:31 +0000
David Keeler David Keeler - bug 985201 - rename insanity::pkix to mozilla::pkix r=cviecco r=briansmith
21ad5a22138200921bbb78e155c2a573974dfd57
created 2014-03-13 09:41 -0700
pushed 2014-03-13 16:44 +0000
David Keeler David Keeler - bug 969048 - adjust OCSP stapling telemetry for insanity::pkix r=briansmith r=cviecco
840df518d026f9f7b9bf896fb7ef8d0b3e9fb9da
created 2014-03-12 13:08 -0700
pushed 2014-03-12 20:15 +0000
David Keeler David Keeler - bug 915932 - cache OCSP responses when using insanity::pkix r=cviecco r=briansmith
d16477b89f705e458383612ecb10e7ab1e56bd71
created 2014-03-01 20:55 -0800
pushed 2014-03-03 18:59 +0000
Brian Smith Brian Smith - Bug 978528: Return the correct error message when no potential issuers are found during path bulding in insanitY::pkix, r=cviecco
b7030189c2ca5697c8fba43220511ddc39fcce98
created 2014-02-23 22:15 -0800
pushed 2014-02-26 21:34 +0000
Brian Smith Brian Smith - Bug 921885: Use insanity::pkix for EV cert verification when insanity::pkix is the selected implementation, r=cviecco, r=keeler
e50c326ad721ba006716daa4f0a43c8e1584c06d
created 2014-02-24 12:37 -0800
pushed 2014-02-26 21:34 +0000
Brian Smith Brian Smith - Bug 921886: Add certificate policiy support to insanity::pkix, r=keeler, r=cviecco
302def56019a278411ed9d71e3de7126d1729811
created 2014-02-16 17:35 -0800
pushed 2014-02-19 07:28 +0000
Brian Smith Brian Smith - Bug 915931, Part 3: Integrate insanity::pkix OCSP support, r=keeler, r=cviecco
8cdaaf3da9f84ba309429aee968d2f55a905c63d
created 2014-02-14 14:37 -0800
pushed 2014-02-15 18:16 +0000
Brian Smith Brian Smith - Bug 896620: Make marketplace certs work on in all products, r=keeler
5eece3c778aaecfe6c4bcbeaae863f611ef47280
created 2014-02-10 11:41 -0800
pushed 2014-02-11 20:09 +0000
Brian Smith Brian Smith - Bug 878932, Part 1: add insanity::pkix as an option for certificate verification, r=keeler, r=cviecco
e6c9677b89d25bd044cda9d5029eda41b08f42ec
created 2014-01-20 01:30 -0800
pushed 2014-01-27 06:36 +0000
Brian Smith Brian Smith - Bug 891066, Part 9: Move DisableMD5 to NSSCertDBTrustDomain, r=dkeeler
3e3ddb3ce8d331b9898c04e1bb90764738366edc
created 2013-07-08 16:30 -0700
pushed 2014-01-27 06:36 +0000
Brian Smith Brian Smith - Bug 891066, Part 6: Move SSL server cert verification logic to security/certverifier, r=cviecco
25ee011845e78981970578064ee408e6d11dd8dc
created 2013-09-19 13:39 -0700
pushed 2014-01-27 06:36 +0000
Brian Smith Brian Smith - Bug 891066, Part 4: Fix indention, r=me, a=whitespace-only
95f848f55c90176dd061a54c6d8d9855dbfed258
created 2014-01-20 22:10 -0800
pushed 2014-01-27 06:36 +0000
Brian Smith Brian Smith - Bug 891066, Part 3: Move more initialization of NSS to security/certverifier, r=keeler
less more (0) tip