security/apps/AppTrustDomain.h
fe6ddfaa325f8e9b57b134cd5ff48753726b8aff
created 2019-05-06 23:05 +0000
pushed 2019-05-06 23:55 +0000
Dana Keeler Dana Keeler - bug 1549249 - hard-code new add-on signing intermediate so it's always available r=jcj,kmag a=lizzard FIREFOX_ESR_67b18_RELBRANCH DEVEDITION_67_0b18_BUILD1 DEVEDITION_67_0b18_RELEASE FENNEC_67_0b18_BUILD1 FENNEC_67_0b18_RELEASE FIREFOX_67_0b18_BUILD1 FIREFOX_67_0b18_RELEASE
6f3709b3878117466168c40affa7bca0b60cf75b
created 2018-11-30 11:46 +0100
pushed 2018-12-03 16:23 +0000
Sylvestre Ledru Sylvestre Ledru - Bug 1511181 - Reformat everything to the Google coding style r=ehsan a=clang-format
432a98e50d2bfab224328254266069aef1a474cc
created 2018-10-02 14:59 +0200
pushed 2018-10-15 21:07 +0000
Franziskus Kiefer Franziskus Kiefer - Bug 1479787 - use NSS mozpkix in Firefox, r=mt,keeler,glandium
7c1d15e5f6b014dd6b8a247efe012db74c654a4f
created 2017-04-03 17:17 -0700
pushed 2017-06-12 13:08 +0000
David Keeler David Keeler - bug 1349762 - handle two GlobalSign EV root transfers r=Cykesiopka,jcj
414739984c09671ee55e40121589fbd1c26ed0d1
created 2017-02-06 23:43 +0800
pushed 2017-04-18 12:07 +0000
Cykesiopka Cykesiopka - Bug 1332636 - Remove PSM support for Firefox Marketplace apps and Trusted Hosted Apps. r=keeler
676ca54f13dbfbab36e40b1bbc0e42416c6a3ea8
created 2016-12-14 20:10 +0800
pushed 2017-03-06 20:48 +0000
Cykesiopka Cykesiopka - Bug 1313715 - Avoid unnecessary uses of PR_SetError() under security/apps/ and security/certverifier/. r=keeler
990aca9e4d11f4973f71e438f324579e3f217cae
created 2016-06-15 11:11 +0300
pushed 2016-09-19 13:38 +0000
Sergei Chernov Sergei Chernov - Bug 1275238 - Certificate Transparency support in mozilla::pkix; r=keeler
8b2fb1aabf141e0c9f9d1f75af9b130c56733217
created 2016-05-05 16:11 -0700
pushed 2016-08-01 13:59 +0000
David Keeler David Keeler - bug 982932 - only allow Netscape-stepUp to be used for serverAuth for old CA certificates r=Cykesiopka,jcj
6fc34759465ee7246858c63d090270797cd1f220
created 2016-05-05 14:56 -0700
pushed 2016-08-01 13:59 +0000
Cykesiopka Cykesiopka - Bug 1267905 - Replace uses of ScopedCERTCertList with UniqueCERTCertList. r=keeler
9c98c0300a89bfe655a1213c91ceb57c517e8bf7
created 2016-04-20 01:14 -0700
pushed 2016-06-06 19:02 +0000
Cykesiopka Cykesiopka - Bug 1260643 - Convert most uses of ScopedCERTCertificate in PSM to UniqueCERTCertificate. r=keeler
e1c2a29753eb768f7584ae2768f3fe284a221b99
created 2015-12-06 08:06 -0500
pushed 2016-03-07 14:18 +0000
Nathan Froyd Nathan Froyd - Bug 1232454 - use UniquePtr<T[]> instead of nsAutoArrayPtr<T> in security/apps/; r=keeler
a2335e0a53d9e28a234328d4ffe721738717e779
created 2015-10-08 17:08 +0800
pushed 2015-12-14 20:08 +0000
Jonathan Hao Jonathan Hao - Bug 1178448 - Use imported CA in developer mode. r=keeler,valentin
0516d4db29a9d76361dd51331036e0b059b4dd60
created 2015-09-11 14:52 -0400
pushed 2015-10-29 11:30 +0000
Richard Barnes Richard Barnes - Bug 942515 - Show Untrusted Connection Error for SHA-1-based SSL certificates with notBefore >= 2016-01-01 r=keeler
31d0ae4d8c62e08a17784a6be2ad185d6b2f4e23
created 2015-07-09 07:22 +0100
pushed 2015-09-21 14:04 +0000
Mark Goodwin Mark Goodwin - Bug 1159155 - Add telemetry probe for SHA-1 usage (r=keeler)
a2b818a26d8528a8da37b16622e06df4d0c1676f
created 2015-06-29 22:19 +0200
pushed 2015-09-21 14:04 +0000
Cykesiopka Cykesiopka - Bug 1145679 - Reject EV status for end-entity EV certs with overly long validity periods. r=keeler
1853f12d7d8c336d0689a8d3e0e21e174609f50a
created 2015-04-06 16:10 -0700
pushed 2015-08-10 18:23 +0000
David Keeler David Keeler - bug 1141189 - implement skipping expensive revocation checks (OCSP fetching) for short-lived certificates r=rbarnes
ac4464790ec4896a5188fa50cfc69ae0ffeddc08
created 2015-03-21 12:28 -0400
pushed 2015-05-11 18:39 +0000
Ehsan Akhgari Ehsan Akhgari - Bug 1145631 - Part 1: Replace MOZ_OVERRIDE and MOZ_FINAL with override and final in the tree; r=froydnj
eee856befda3b54b11383be5192ce333de40ea08
created 2015-03-05 16:41 +0100
pushed 2015-05-11 18:39 +0000
Cykesiopka Cykesiopka - Bug 1139177 - RSA public key size checking cleanups. r=keeler
99f4f20645206379f887d0914e48745310cad12e
created 2015-02-14 16:59 -0800
pushed 2015-05-11 18:39 +0000
Brian Smith Brian Smith - Bug 1131767: Prune away paths using unacceptable algorithms earlier, r=keeler
a20c7910a82fa2df2f3398c1108d102bac9128b0
created 2015-03-25 12:42 -0400
pushed 2015-03-30 18:32 +0000
Ehsan Akhgari Ehsan Akhgari - Bug 1145631 - Part 1: Replace MOZ_OVERRIDE and MOZ_FINAL with override and final in the tree; r=froydnj
5e39cbc525ad091f8ee8cd2a9fbfcf49f3e89c36
created 2015-02-07 12:14 -0800
pushed 2015-03-30 18:32 +0000
Brian Smith Brian Smith - Bug 1130754: Avoid recalculating tbsCertificate digest, r=keeler
3fe8d7d7f9f7373d0d3a3341d1a46347c06c85c7
created 2015-02-02 16:17 -0800
pushed 2015-03-30 18:32 +0000
Brian Smith Brian Smith - Bug 1122841, Part 2: Centralize checking of public key, r=keeler
df15e57ae78d43f86271b9878d3c338a4ebb89be
created 2015-01-02 01:25 -0500
pushed 2015-02-23 15:17 +0000
Ehsan Akhgari Ehsan Akhgari - Bug 1117043 - Mark virtual overridden functions as MOZ_OVERRIDE in security; r=bsmith
f564fff0642cfbd82f7192d7e2d8b00610e16091
created 2014-10-18 15:18 +0200
pushed 2015-01-12 19:37 +0000
Cykesiopka Cykesiopka - Bug 622859 - Reject EV certificates with key sizes below RSA 2048. r=briansmith
4f90b7fb1918462222c557100342cdd627e2f3f3
created 2014-09-25 11:18 -0700
pushed 2014-11-28 15:29 +0000
David Keeler David Keeler - bug 1071308 - (2/2) remove libpkix-style chain validation callback from CertVerifier r=cviecco
a4a8b3b58191206f53748d823cf255fba4042253
created 2014-08-02 08:49 -0700
pushed 2014-10-13 16:35 +0000
Brian Smith Brian Smith - Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler
c989be71f8443b628a15cd0aab16f47de73d3582
created 2014-07-31 12:17 -0700
pushed 2014-10-13 16:35 +0000
Brian Smith Brian Smith - Bug 1041186, Part 2: Rename Input to Reader and InputBuffer to Input, r=keeler
c04d170a0bd9ad169065d5546a1149554a543422
created 2014-07-18 22:30 -0700
pushed 2014-10-13 16:35 +0000
Brian Smith Brian Smith - Bug 1041186, Part 1: Improve buffer overflow protection in mozilla::pkix, r=keeler
a6147f19dc56aecfcce19a019d8f966db8a32492
created 2014-07-20 11:06 -0700
pushed 2014-10-13 16:35 +0000
Brian Smith Brian Smith - Bug 1041343: Use references instead of pointers for TrustLevel output parameters, r=cviecco
1f599d357743c088c6e1237580d367a9c5a6278c
created 2014-07-18 11:48 -0700
pushed 2014-09-15 22:39 +0000
Brian Smith Brian Smith - Bug 1039064 - Use strongly-typed enum instead of NSPR-style error handling. r=keeler, a=lmandel
b8c9b76b6585da4b72cb4822185c4076299bbc9e
created 2014-09-15 15:57 -0400
pushed 2014-09-15 19:56 +0000
Ryan VanderMeulen Ryan VanderMeulen - Backed out 3 changesets (bug 1039064, bug 1040446, bug 1034124) for ASAN xpcshell hangs.
f3115a9f645c1a88e4f21a38b214d3665945222d
created 2014-07-18 11:48 -0700
pushed 2014-09-15 15:58 +0000
Brian Smith Brian Smith - Bug 1039064: Use strongly-typed enum instead of NSPR-style error handling, r=keeler a=lmandel
83b81059b2a2c5af28632891978c3ee589958f0f
created 2014-07-15 19:49 -0400
pushed 2014-09-02 16:39 +0000
Cykesiopka Cykesiopka - Bug 360126 - Stop accepting certs that use RSA1023 or weaker; Original patch by Richard van den Berg. r=briansmith
2ea91aa53633847fb32c280a079d9a958534f215
created 2014-07-06 19:36 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1036105: Delegate digest operations to the TrustDomain in mozilla::pkix, r=keeler
578899c0b81952253e829c2e6fa8de1b83afe624
created 2014-07-10 19:00 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1036107, Part 1: Stop using CERTSignedData in mozilla::pkix, r=keeler
0ed88d692f42f34802beafcea77797f61c918155
created 2014-07-06 15:55 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1035009: Stop using CERTCertList in mozilla::pkix, r=keeler
3acf9162f52d566e5d446ddc7ce24dd5d390e365
created 2014-07-03 21:49 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1034636: Remove mozilla::pkix::ScopedCERTCertifciate and mozilla::pkix::ScopedPLArenaPool, r=mmc
44c19e8283c2b4e590b3ffdfbfbdef6f370056cc
created 2014-07-02 16:15 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1033563, Part 3: Change mozilla::pkix::TrustDomain::FindPotentialIssuers API to be iterator-like, r=keeler
911d02f2c02a13fbdf80083f6d00886e35523f20
created 2014-07-03 16:59 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1029247, Part 2: Parse certificates using mozilla::pkix::der, r=keeler
3d54fd14fb9c6fce3336ea14831ff51b6bbc6b5d
created 2014-06-20 10:10 -0700
pushed 2014-09-02 16:39 +0000
Brian Smith Brian Smith - Bug 1026261: Remove CERTCertificate from mozilla::pkix revocation checking API, r=keeler
fa797212429e813a44f198c59763a44027a1cadc
created 2014-06-05 15:18 -0700
pushed 2014-07-21 20:25 +0000
Brian Smith Brian Smith - Bug 1020683, Part 1: Remove internal uses of CERTCertificate from mozilla::pkix::VerifyEncodedOCSPResponse, r=keeler
44be87ea2e1be101218c3cb66032f599c465610a
created 2014-06-03 10:47 -0700
pushed 2014-07-21 20:25 +0000
Brian Smith Brian Smith - Bug 1019814: Remove CERTCertificate dependency from TrustDomain::GetCertTrust, r=keeler
a4ae7060f43ac1a4e49b30dfd7a95c5212940d4b
created 2014-05-15 18:59 -0700
pushed 2014-07-21 20:25 +0000
Brian Smith Brian Smith - Bug 1006958: Use mozilla::pkix::der to parse certificate policies instead of NSS, r=keeler
c968e47ef70893902ed49f65ade8a2ffe116ea11
created 2014-04-25 16:29 -0700
pushed 2014-07-21 20:25 +0000
Brian Smith Brian Smith - Bug 1002933: Use Strongly-typed enums more often in mozilla::pkix, r=mmc
affd460bc3d7ee6d8a6347bd7ae7faa4c7dc1ecd
created 2014-02-05 14:49 -0800
pushed 2014-07-21 20:25 +0000
Camilo Viecco Camilo Viecco - Bug 744204 - Allow Certificate key pinning Part 2 - Certverifier Interface. r=keeler
04ea38d3515f3dd7e739cfed8005fa70634c06fb
created 2014-03-20 14:29 -0700
pushed 2014-06-09 21:49 +0000
David Keeler David Keeler - bug 985201 - rename insanity::pkix to mozilla::pkix r=cviecco r=briansmith
1d447f155ab728bc5a83b6f3f7a03e69f9dea977
created 2014-02-24 12:37 -0800
pushed 2014-03-17 21:55 +0000
Brian Smith Brian Smith - Bug 921886: Add certificate policiy support to insanity::pkix, r=keeler, r=cviecco, a=sledru
4d6c9d219ee3b8c5503c39456ef42bebe2f6e364
created 2014-02-16 18:09 -0800
pushed 2014-03-17 21:55 +0000
Brian Smith Brian Smith - Bug 878932, Parts 1-3: Add OCSP response parsing & validation to insanity::pkix, r=keeler, a=sledru
0f5364659f88f5e763b932944a024707b2991d67
created 2014-02-18 13:33 -0800
pushed 2014-03-17 21:55 +0000
Marco Castelluccio Marco Castelluccio - Bug 896620: Make marketplace certs work on in all products, r=keeler, r=briansmith, a=sledru
less more (0) tip