KotJohansson/UXP-Fixed
1
0
Fork 0
mirror of https://github.com/ManchildProductions/UXP-Fixed.git synced 2026-05-26 17:45:49 +00:00
Code Issues Projects Releases Wiki Activity
6,208 Commits 42 Branches 102 Tags
release
Commit Graph

163 Commits

Author SHA1 Message Date
ManchildProductions 28cd9f3df7 Update UXP to version from palemoon-29.4.1-source.tar.xz 2021-09-17 14:43:35 -04:00
Matt A. Tobin 94b353bc9b [NSS hotpatch] Hard disable AVX2 in NSS Build System 2021-03-20 08:56:02 +00:00
Moonchild 0c847a4637 Issue #1693 - Update NSS to 3.52.2-UXP 
Update root certificates and port NSS sec patches from previous work.
 2021-03-20 08:55:04 +00:00
Moonchild 0f1072adf2 [NSS] Update root certificates. 2021-03-20 08:54:43 +00:00
J.C. Jones ac5b704ce9 [NSS] Prevent slotLock race in NSC_GetTokenInfo 
Basically, NSC_GetTokenInfo doesn't lock slot->slotLock before accessing slot
after obtaining it, even though slotLock is defined as its lock.
 2021-03-20 08:54:35 +00:00
Sohaib ul Hassan 84c05b5af4 [NSS] Implement constant-time GCD and modular inversion 
The implementation is based on the work by Bernstein and Yang
(https://eprint.iacr.org/2019/266)
"Fast constant-time gcd computation and modular inversion".

It fixes the old mp_gcd and s_mp_invmod_odd_m functions. The patch also fixes
mpl_significant_bits s_mp_div_2d and s_mp_mul_2d by having less control flow to
reduce side-channel leaks.

Co-authored by : Billy Bob Brumley
 2021-03-20 08:54:24 +00:00
Moonchild 852c6cd024 Issue #1693 - Update NSS to 3.52.1-RTM 2021-03-20 08:53:53 +00:00
Moonchild e47391b526 Issue #1746 - Revert "Update to NSS 3.59.1.1" 2021-03-20 08:53:19 +00:00
Moonchild e79563a0b4 Issue #1746 - Update pkix code with later NSS code. 2021-03-20 08:53:00 +00:00
Moonchild 85b0f705d9 Issue #457 - Remove duplicate PKCS11 definitions 2021-02-24 11:09:47 +00:00
Moonchild 29271977c9 [security] Hold mutex when accessing TSI fields. 2021-02-24 11:08:36 +00:00
Matt A. Tobin a625decfc9 [NSS hotpatch] Hard disable AVX2 in NSS Build System 
This should be ported to the NSS repo
 2021-01-03 03:11:22 -05:00
Moonchild 029bcfe189 Issue #1693 - Update NSS to 3.59.1.1 
This updates to MoonchildProductions/NSS@bd49b2b88 in the repo created for our
consumption of the library.
 2020-12-23 19:02:52 +00:00
Moonchild 958205f4da [NSS] Version and build bump 2020-12-01 14:20:15 +00:00
Moonchild cca3b9062d [NSS] Update root certificates. 2020-12-01 14:19:59 +00:00
adesh 5ef801fdc5 Issue #1280 - Follow-up: Get rid of HPKP pinning mode. 
This was a leftover from HPKP removal.

Also remove a couple of unused variables from security/manager/ssl/nsSiteSecurityService.cpp.
 2020-11-10 23:07:22 -05:00
Moonchild 6a4c3caa8e Issue #1656 - Nuke the remaining vim lines in UXP 
Closes #1656
 2020-10-26 19:09:16 +00:00
Moonchild 6b9f2095a3 Issue #1656 - Part 9: Single-line-comment style. 2020-09-24 08:56:05 +00:00
Moonchild 4a42352e64 Issue #1656 - Part 8: Devtools and misc. 2020-09-24 08:10:23 +00:00
Moonchild d5a2c45aad Issue #1656 - Part 6: Clean up the build files 2020-09-23 15:52:00 +00:00
Moonchild 7523b9ea04 Issue #1656 - Part 4: Manual cleanup 2020-09-23 15:37:46 +00:00
Moonchild 18ea98f7a9 Issue #1656 - Part 4: Tackle *.idl, *.css, *.ipdlh, *.webidl, *.cc 2020-09-23 15:24:52 +00:00
Moonchild 528b88d704 Issue #1656 - Part 3: Nuke more vim config lines in the tree. 
Another S&R run with some smarter matching.
 2020-09-23 15:14:30 +00:00
Moonchild a680bdc637 Issue #1656 - Part 1: Nuke most vim config lines in the tree. 
Since these are just interpreted comments, there's 0 impact on actual code.
This removes all lines that match /* vim: set(.*)tw=80: */ with S&R -- there are
a few others scattered around which will be removed manually in a second part.
 2020-09-23 13:55:00 +00:00
adeshkp 61ab2b98ea Issue #1280 - Remove hostname parameter to trust domain. 
Host name was purely being used for HPKP and since HPKP is killed,
this can also go. Currently it doesn't do anything other than
generating build warnings.
 2020-09-12 04:11:03 -04:00
Moonchild 59683edb8d [NSS] Version and build bump 2020-08-29 13:24:13 +00:00
J.C. Jones 58cc431b02 [NSS] Prevent slotLock race in NSC_GetTokenInfo 
Basically, NSC_GetTokenInfo doesn't lock slot->slotLock before accessing slot
after obtaining it, even though slotLock is defined as its lock.
 2020-08-29 13:04:08 +00:00
Moonchild c5e5d70688 [NSS] Version and build bump 2020-07-09 18:55:01 +00:00
Sohaib ul Hassan 3e56a2c97d [NSS] Implement constant-time GCD and modular inversion 
The implementation is based on the work by Bernstein and Yang
(https://eprint.iacr.org/2019/266)
"Fast constant-time gcd computation and modular inversion".

It fixes the old mp_gcd and s_mp_invmod_odd_m functions. The patch also fixes
mpl_significant_bits s_mp_div_2d and s_mp_mul_2d by having less control flow to
reduce side-channel leaks.

Co-authored by : Billy Bob Brumley
 2020-07-09 18:51:51 +00:00
Moonchild b0901eb099 Issue #439 - Remove, fix and clean up automated tests 
With the big amount of code churn around DOM a lot of tests
broke severely enough that they caused build bustage.
This commit cleans up, removes or otherwise fixes tests
that are broken, no longer relevant or obsolete.
 2020-06-08 18:12:08 +00:00
Moonchild da8fbfb4d5 [NSS] Bump NSS version 2020-06-03 10:47:56 +00:00
Moonchild 760c45dbe1 [NSS] Force a fixed length for DSA exponentiation 2020-06-03 10:15:17 +00:00
Moonchild d42beba473 Merge pull request #1502 from athenian200/nss348_solaris 
Un-bust building of NSS after update to 3.48 on Solaris.
 2020-03-31 11:40:05 +02:00
wolfbeast a205ee7040 Issue #1280 - Un-bust certerror pages and ForgetAboutSite 2020-03-31 09:44:30 +02:00
athenian200 389f436c15 Issue #1501 - Un-bust building of NSS after update to 3.48 on Solaris. 2020-03-30 22:54:29 -05:00
wolfbeast 0afd46b48d Issue #1280 - Part 2: Remove HPKP tests. 2020-03-28 11:02:10 +01:00
wolfbeast 55aa6ce7b3 Issue #1280 - Part 1: Remove HPKP components. 
This also removes leftover plumbing for storing preload information
in SiteSecurityService since no service still uses it.
 2020-03-28 01:06:56 +01:00
wolfbeast e9723a6fdb Issue #1498 - Part 6: Remove STS preloadlist pref. 2020-03-27 23:27:07 +01:00
wolfbeast 50ebd35073 Issue #1498 - Part 5: Update SSService CID and correct mismatch. 2020-03-27 16:16:43 +01:00
wolfbeast 8ea2c0d5ed Issue #1498 - Part 4: Remove clearPreloads. 
Also tag #1280
 2020-03-27 15:13:00 +01:00
wolfbeast 9c4aef8675 Issue #1498 - Part 3: Remove support for storing "knockout" values. 2020-03-27 15:07:34 +01:00
wolfbeast 09a229c702 Issue #1498 - Part 1: Stop persisting preload states. 
Since we don't use preloading anymore for either HPKP or HSTS, we no
longer need persistent storage in the profile for preload states.
Tag #1280 also
 2020-03-27 14:02:23 +01:00
wolfbeast 595c8d53df Issue #1498 - Part 1: Stop using HSTS preload lists. 2020-03-27 12:49:01 +01:00
Matt A. Tobin bc127ada3b Take nsSiteSecurityService out of UNIFIED_SOURCES 
It exceeded the obj file sections limit because of the HSTS preload list so it cannot be built in UNIFIED mode.
 2020-03-25 01:02:52 -04:00
wolfbeast cc9b40cc21 Issue #447 - Update HSTS preload list 2020-03-24 20:35:47 +00:00
wolfbeast 6f1d8fcce1 Issue #1467 - Part 4: Rename NSS_SQLSTORE to MOZ_SECURITY_SQLSTORE. 
Rename the build config option accordingly.
 2020-03-19 23:01:29 +01:00
wolfbeast 6cbe27d149 Issue #1467 - Part 3: Use UTF-8 file paths for NSS-SQL database. 2020-03-17 20:14:22 +01:00
wolfbeast 2a4827ea40 Issue #1467 - Part 1: Set up conditional NSS-SQL builds. 
- Adds buildconfig option --enable-nss-sqlstore
- Prefixes NSS dbinit with either sql: or dbm: depending on config
- Pre-initializes mozStorage when NSS-SQL storage is used to prevent
  an sqlite3_config race in NSS Init
 2020-03-16 13:38:19 +01:00
Matt A. Tobin 9b86872d37 Issue #1053 - Remove android support from nsNSSComponent.cpp 2020-02-28 16:51:00 -05:00
wolfbeast 33ad27614a Issue #447 - Update HSTS preload list & reduce debug spew 
Commented out spewing dump() statements in loops. With the ever growing
HSTS list it takes too much time and is pointless to display.
 2020-02-01 01:37:52 +00:00