Skip to content
GitLab
Switch branch/tag
  1. 14 Jan, 2021 1 commit
  3. 09 Jan, 2020 1 commit
  5. 05 Feb, 2019 2 commits
  7. 05 Feb, 2018 1 commit
    • Emilio Cobos Álvarez's avatar
      Bug 1435644: Regenerate the security/manager/ssl test certificates and keys.... · 01d66315
      Emilio Cobos Álvarez authored 
      Bug 1435644: Regenerate the security/manager/ssl test certificates and keys. r=franziskus a=Aryx on a CLOSED TREE

For this, I've uncommented the relevant bits in moz.build files, then:

  ./mach build security/manager
  for dir in $(rg GeneratedTestCertificate | grep security | cut -d : -f 1); do
    cp obj-x86_64-pc-linux-gnu/$(dirname $dir)/*.pem $(dirname $dir);
  done

And same with GeneratedTestKey / *.key

MozReview-Commit-ID: C2bkSo6YYCU

--HG--
extra : amend_source : b59d21b695544a1a4b6c45ba9c00c40f8ceb0f1a
      01d66315
  9. 08 Nov, 2017 1 commit
  11. 19 Jan, 2017 1 commit
  13. 06 Jul, 2016 1 commit
    • David Keeler's avatar
      bug 1284946 - remove usages-related APIs from nsIX509Cert r=Cykesiopka,Felipe,jcj · 56d2f86c
      David Keeler authored 
      nsIX509Cert provided the APIs getUsagesArray, requestUsagesArrayAsync, and
getUsagesString. These APIs were problematic in that the synchronous ones would
cause certificate verification to block the main thread and the asynchronous one
was needlessly indirect in its definition (it made use of two additional
special-case xpidl types) and needlessly complex in its implementation (it
required nsNSSComponent to manually manage a background thread without the aid
of recent improvements in that area (e.g. CryptoTask)). Furthermore, these APIs
would return string descriptions of the usages the certificate in question had
been verified for rather than using more concrete identifiers or values. This
paradigm is usable but imprecise. The new nsIX509CertDB API
asyncVerifyCertAtTime is much more expressive, enforces off-main-thread
computation, and makes use of CryptoTask for a simple implementation. Using this
API, previous uses of the old nsIX509Cert APIs can be replaced. As an additional
benefit, this removes a ton of obsolete C++ code.

MozReview-Commit-ID: KXVTcjAKehu

--HG--
extra : rebase_source : 50c51f73b2b61ed0ad4dc9702cc5df470ce998bc
      56d2f86c
  15. 09 Jan, 2020 2 commits
  17. 05 Feb, 2019 2 commits
  19. 05 Feb, 2018 1 commit
  21. 19 Jan, 2017 1 commit
    • David Keeler's avatar
      Bug 1332131 - Regenerate psm xpcshell test certificates to avoid failures when... · 2af5ea6d
      David Keeler authored 
      Bug 1332131 - Regenerate psm xpcshell test certificates to avoid failures when they expire. r=Cykesiopka, a=test-only

MozReview-Commit-ID: 5rzoVC6fpRO

--HG--
extra : rebase_source : cb0416371e513a875078889785c5217fa4b944d5
extra : source : d15f6cbb443d1979bff7d2e974448b6bb3dedcd9
extra : histedit_source : 3c9b031ed1291fccf22ac0a27c9bb9f46f56c609
      2af5ea6d
  23. 05 Feb, 2019 2 commits
  25. 05 Feb, 2018 1 commit
    • Emilio Cobos Álvarez's avatar
      Bug 1435644 - Regenerate the security/manager/ssl test certificates and keys.... · 0ccfb328
      Emilio Cobos Álvarez authored 
      Bug 1435644 - Regenerate the security/manager/ssl test certificates and keys. r=franziskus, a=test-only

For this, I've uncommented the relevant bits in moz.build files, then:

  ./mach build security/manager
  for dir in $(rg GeneratedTestCertificate | grep security | cut -d : -f 1); do
    cp obj-x86_64-pc-linux-gnu/$(dirname $dir)/*.pem $(dirname $dir);
  done

And same with GeneratedTestKey / *.key. Also regenerate the signed apps and metadata for tests expecting specific dates.

MozReview-Commit-ID: C2bkSo6YYCU

--HG--
extra : source : 95fd9deac911b5bb667d8750c9669822d68b80fc
extra : intermediate-source : 87c5dfa3fc645fab244a4dd294b0ba6c128ca7b9
extra : histedit_source : e473910425d1832523c97d151ed55467211f0ad6%2Cae2e623cfdb062b5347612f8011bd6d36b036288
      0ccfb328
  27. 08 Nov, 2017 1 commit
  29. 19 Jan, 2017 1 commit