c17a2288af51556f88675b3b4c770e72dfad2595: Bug 1435644 - Fix and regenerate test_cert_eku/ certs to get test_cert_eku.js passing again. r=keeler, a=test-only
Cykesiopka <cykesiopka.bmo@gmail.com> - Mon, 05 Feb 2018 10:32:54 -0800 - rev 445711
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1435644 - Fix and regenerate test_cert_eku/ certs to get test_cert_eku.js passing again. r=keeler, a=test-only ca.pem is used to sign certificates that are either verified at time 2016-08-25 or time "now", with the earliest such certificate having a notBefore of 2015-07-24. As such, ca.pem.certspec needs to have a notBefore time that is no later than 2015-07-24, but be valid for a reasonably long time. Therefore, ca.pem.certspec is changed so the cert has a notBefore of 2015-01-01, and is valid for 20 years. ee-int-nsSGC-*.pem are verified at time 2016-08-25, and so need to be valid at that time. Therefore, the ee-int-nsSGC-*.pem.certspec files are changed so the corresponding certs have validity periods that match their intermediates. MozReview-Commit-ID: duOnvGGcuD
0734ae99655e64c30e29968d628b9f4a6c00123a: Bug 1435644 - Regenerate the security/manager/ssl test certificates and keys. r=franziskus, a=test-only
Emilio Cobos Álvarez <emilio@crisal.io> - Mon, 05 Feb 2018 18:14:35 +0200 - rev 445710
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1435644 - Regenerate the security/manager/ssl test certificates and keys. r=franziskus, a=test-only For this, I've uncommented the relevant bits in moz.build files, then: ./mach build security/manager for dir in $(rg GeneratedTestCertificate | grep security | cut -d : -f 1); do cp obj-x86_64-pc-linux-gnu/$(dirname $dir)/*.pem $(dirname $dir); done And same with GeneratedTestKey / *.key. Also regenerate the signed apps and metadata for tests expecting specific dates. MozReview-Commit-ID: C2bkSo6YYCU
e14c47f4ceffdf20139d17a3922bf3711165bfc2: Bug 1413336 - Regenerate all the certificates! r=Cykesiopka, a=test-only
David Keeler <dkeeler@mozilla.com> - Wed, 08 Nov 2017 12:57:03 -0800 - rev 445709
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Regenerate all the certificates! r=Cykesiopka, a=test-only Also regenerate the test_signed_app.js testcases. MozReview-Commit-ID: 483uNQT0wuG
0356904016f4fb03e46b3468cf40d4f0a964bb22: Bug 1413336 - Replace setComponentByName with direct property setters. r=Cykesiopka, a=test-only
David Keeler <dkeeler@mozilla.com> - Tue, 14 Nov 2017 13:35:10 -0800 - rev 445708
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Replace setComponentByName with direct property setters. r=Cykesiopka, a=test-only MozReview-Commit-ID: EIIzP04YHo9
28fc6ddf2aa2e5654b609a1baaf1ed24d78ae166: Bug 1413336 - Ensure text files generated by pycert et. al. have trailing newlines. r=Cykesiopka, a=test-only
David Keeler <dkeeler@mozilla.com> - Wed, 25 Oct 2017 16:59:18 -0700 - rev 445707
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Ensure text files generated by pycert et. al. have trailing newlines. r=Cykesiopka, a=test-only MozReview-Commit-ID: KduWJRzTxBp
1f054fd582140b84ea63fd6c49365877dd95ae75: Bug 1413336 - Make certificate serial number generation not depend on pyasn1 object string representation. r=Cykesiopka, a=test-only
David Keeler <dkeeler@mozilla.com> - Wed, 08 Nov 2017 14:12:03 -0800 - rev 445706
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Make certificate serial number generation not depend on pyasn1 object string representation. r=Cykesiopka, a=test-only MozReview-Commit-ID: 69GjudEKwQM
7065deadb7742f4a70cb5ab3823bb53c7355e82c: Bug 1413336 - Fix pycert.py and pykey.py with respect to pyasn1/pyasn1-modules updates. r=Cykesiopka, a=test-only
David Keeler <dkeeler@mozilla.com> - Wed, 08 Nov 2017 13:23:17 -0800 - rev 445705
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Fix pycert.py and pykey.py with respect to pyasn1/pyasn1-modules updates. r=Cykesiopka, a=test-only MozReview-Commit-ID: CsxOF7LdEHB
c197126fd051c56febcb138e4dce799ea58923f5: Bug 1413336 - Update pyasn1-modules to 0.1.5. r=ted, a=test-only
David Keeler <dkeeler@mozilla.com> - Fri, 03 Nov 2017 16:54:56 -0700 - rev 445704
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Update pyasn1-modules to 0.1.5. r=ted, a=test-only MozReview-Commit-ID: LxvkXFhlZUw
5264677c688188bafb2524194971c19d969ef273: Bug 1413336 - Update pyasn1 to 0.3.7. r=ted, a=test-only
David Keeler <dkeeler@mozilla.com> - Fri, 03 Nov 2017 16:53:21 -0700 - rev 445703
Push 1642 by ryanvm@gmail.com at Mon, 05 Feb 2018 20:55:06 +0000
Bug 1413336 - Update pyasn1 to 0.3.7. r=ted, a=test-only MozReview-Commit-ID: L3bvhOZRQyN
53be1a6f038b09ded1925b0eb62d4f3c97ef8ae5: No bug - Tagging c2db4a50dc5c93b44852d9a5201f7ec062ecc6cb with FENNEC_58_0_1_BUILD1, FENNEC_58_0_1_RELEASE a=release CLOSED TREE
ffxbld <release@mozilla.com> - Mon, 29 Jan 2018 09:59:14 -0800 - rev 445702
Push 1641 by ffxbld at Mon, 29 Jan 2018 17:59:24 +0000
No bug - Tagging c2db4a50dc5c93b44852d9a5201f7ec062ecc6cb with FENNEC_58_0_1_BUILD1, FENNEC_58_0_1_RELEASE a=release CLOSED TREE
7bdca3e9adf3ba026086b84e8e6219f4ee44ee8b: No bug - Tagging c2db4a50dc5c93b44852d9a5201f7ec062ecc6cb with FIREFOX_58_0_1_BUILD1, FIREFOX_58_0_1_RELEASE a=release CLOSED TREE
ffxbld <release@mozilla.com> - Mon, 29 Jan 2018 09:23:41 -0800 - rev 445701
Push 1640 by ffxbld at Mon, 29 Jan 2018 17:23:51 +0000
No bug - Tagging c2db4a50dc5c93b44852d9a5201f7ec062ecc6cb with FIREFOX_58_0_1_BUILD1, FIREFOX_58_0_1_RELEASE a=release CLOSED TREE
7b33432dfcd7426e7676cb283835fa0341f0675c: Automatic version bump. CLOSED TREE NO BUG a=release
ffxbld <release@mozilla.com> - Mon, 29 Jan 2018 09:23:35 -0800 - rev 445700
Push 1640 by ffxbld at Mon, 29 Jan 2018 17:23:51 +0000
Automatic version bump. CLOSED TREE NO BUG a=release
f33f0b05eaed2a7bc9f82145a4d95b114abae287: bug 1432335: remove bz2 remnants from release & esr. r=callek, a=release DONTBUILD
Ben Hearsum <bhearsum@mozilla.com> - Mon, 29 Jan 2018 10:56:11 -0500 - rev 445699
Push 1639 by bhearsum@mozilla.com at Mon, 29 Jan 2018 15:56:25 +0000
bug 1432335: remove bz2 remnants from release & esr. r=callek, a=release DONTBUILD
c2db4a50dc5c93b44852d9a5201f7ec062ecc6cb: Bug 1432966: Sanitize HTML fragments created for chrome-privileged documents. r=bz f=gijs a=jcristau FENNEC_58_0_1_BUILD1 FENNEC_58_0_1_RELEASE FIREFOX_58_0_1_BUILD1 FIREFOX_58_0_1_RELEASE
Kris Maglione <maglione.k@gmail.com> - Wed, 24 Jan 2018 14:56:48 -0800 - rev 445698
Push 1638 by jcristau@mozilla.com at Sun, 28 Jan 2018 19:12:52 +0000
Bug 1432966: Sanitize HTML fragments created for chrome-privileged documents. r=bz f=gijs a=jcristau This is a short-term solution to our inability to apply CSP to chrome-privileged documents. Ideally, we should be preventing all inline script execution in chrome-privileged documents, since the reprecussions of XSS in chrome documents are much worse than in content documents. Unfortunately, that's not possible in the near term because a) we don't support CSP in system principal documents at all, and b) we rely heavily on inline JS in our static XUL. This stop-gap solution at least prevents some of the most common vectors of XSS attack, by automatically sanitizing any HTML fragment created for a chrome-privileged document. MozReview-Commit-ID: 5w17celRFr
331ee799295505824ab78888835846fb69d0d386: Bug 1433065 - Make the Chromium sandbox DLL blocking Nightly only. r=jimm, a=ritu
Bob Owen <bobowencode@gmail.com> - Thu, 25 Jan 2018 16:13:03 +0000 - rev 445697
Push 1637 by ryanvm@gmail.com at Fri, 26 Jan 2018 19:40:49 +0000
Bug 1433065 - Make the Chromium sandbox DLL blocking Nightly only. r=jimm, a=ritu
586e26fcca79a844c6f5fcebf17068423b283d02: Bug 1420641 - Don't reuse safe-browsing db from 57 for 58 on Android. r=dimi, a=sledru
Jim Chen <nchen@mozilla.com> - Thu, 18 Jan 2018 17:57:32 -0500 - rev 445696
Push 1636 by ryanvm@gmail.com at Thu, 25 Jan 2018 15:01:09 +0000
Bug 1420641 - Don't reuse safe-browsing db from 57 for 58 on Android. r=dimi, a=sledru This patch, when applied on the 58 branch, temporarily changes the version number of the safe-browsing databases so that we don't try to reuse any databases from 57, that were causing the startup slowdown. When 58 regenerates the databases, it will be using the new v4 source that doesn't have this issue. On update to 59, the version numbers will revert to before and we will regenerate the databases again, which I don't think will be too much of a problem. MozReview-Commit-ID: E3Ih7GoYa0D
d953a00cf2e9bcad3b5ecf955b616140284f54fe: No bug - Tagging 1186e4f737ee4e991864fedbe5345e13dd41819f with FENNEC_58_0_BUILD2, FENNEC_58_0_RELEASE a=release CLOSED TREE
ffxbld <release@mozilla.com> - Tue, 23 Jan 2018 05:56:43 -0800 - rev 445695
Push 1635 by ffxbld at Tue, 23 Jan 2018 13:56:55 +0000
No bug - Tagging 1186e4f737ee4e991864fedbe5345e13dd41819f with FENNEC_58_0_BUILD2, FENNEC_58_0_RELEASE a=release CLOSED TREE
b39c4988405e61b122dd58bce7a32ca572093a3b: No bug - Tagging 40755aa80f41ee6df8995ae44044caf7a024b128 with FIREFOX_58_0_BUILD6, FIREFOX_58_0_RELEASE a=release CLOSED TREE
ffxbld <release@mozilla.com> - Tue, 23 Jan 2018 05:23:51 -0800 - rev 445694
Push 1634 by ffxbld at Tue, 23 Jan 2018 13:24:03 +0000
No bug - Tagging 40755aa80f41ee6df8995ae44044caf7a024b128 with FIREFOX_58_0_BUILD6, FIREFOX_58_0_RELEASE a=release CLOSED TREE
552bf7a7659c0d82c39827db8d279cbeb252eb9a: Automatic version bump. CLOSED TREE NO BUG a=release
ffxbld <release@mozilla.com> - Tue, 23 Jan 2018 05:23:46 -0800 - rev 445693
Push 1634 by ffxbld at Tue, 23 Jan 2018 13:24:03 +0000
Automatic version bump. CLOSED TREE NO BUG a=release
40755aa80f41ee6df8995ae44044caf7a024b128: Bug 1431381 - Pin the version of construct in the funsize balrog submitter too. r=callek, a=bustage FIREFOX_58_0_BUILD6 FIREFOX_58_0_RELEASE
Ryan VanderMeulen <ryanvm@gmail.com> - Thu, 18 Jan 2018 16:53:27 -0500 - rev 445692
Push 1633 by ryanvm@gmail.com at Thu, 18 Jan 2018 21:54:08 +0000
Bug 1431381 - Pin the version of construct in the funsize balrog submitter too. r=callek, a=bustage
(0) -300000 -100000 -30000 -10000 -3000 -1000 -300 -100 -50 -20 +20 +50 +100 +300 +1000 +3000 +10000 +30000 tip