KotJohansson/UXP-Fixed
1
0
Fork 0
mirror of https://github.com/ManchildProductions/UXP-Fixed.git synced 2026-06-19 03:38:35 +00:00
Code Issues Projects Releases Wiki Activity
2,352 Commits 42 Branches 102 Tags
312b0e42cfb3982b8e2f62ba17052dfe1a616b7e
Commit Graph

57 Commits

Author SHA1 Message Date
wolfbeast 95379e3377 Ensure we got an nsISSLStatus when deserializing in TransportSecurityInfo. 2018-10-04 22:24:52 +02:00
trav90 778b3c4d7e Update HSTS preload list 
Tag #447
 2018-09-29 08:37:22 -05:00
wolfbeast 347aea437f Get rid of the incorrect mechanism to remove insecure fallback hosts. 
This fixes #797.
 2018-09-29 10:09:13 +02:00
trav90 2f64d5eeec Update HSTS preload list 
Tag #447
 2018-09-11 17:30:37 -05:00
wolfbeast ab961aeb54 Remove all C++ Telemetry Accumulation calls. 
This creates a number of stubs and leaves some surrounding code that may be irrelevant (eg. recorded time stamps, status variables).
Stub resolution/removal should be a follow-up to this.
 2018-09-03 10:11:38 +02:00
wolfbeast 1425f020c4 Remove support for TLS session caches in TLSServerSocket. 
This resolves #738
 2018-09-01 23:45:10 +02:00
trav90 cc0e6c7ece Update HSTS preload list 
Tag #447
 2018-08-27 05:43:33 -05:00
wolfbeast bfc5b53cf9 Fix missed in32->int64 in df85212009 
Tag #709.
 2018-08-17 19:23:37 +02:00
wolfbeast 26debee733 Reinstate RC4 and mark 3DES weak. 
Tag #709
 2018-08-17 06:39:04 +02:00
wolfbeast df85212009 Extend {EnabledWeakCiphers} bit field to allow more cipher suites. 
Tag #709.
 2018-08-17 06:33:23 +02:00
wolfbeast ab10600379 Update NSS to 3.38 
- Added HACL*Poly1305 32-bit (INRIA/Microsoft)
- Updated to final TLS 1.3 draft version (28)
- Removed TLS 1.3 prerelease draft limit check
- Removed NPN code
- Enabled dev/urandom-only RNG on Linux with NSS_SEED_ONLY_DEV_URANDOM for non-standard environments
- Fixed several bugs with TLS 1.3 negotiation
- Updated internal certificate store
- Added support for the TLS Record Size Limit Extension.
- Fixed CVE-2018-0495
- Various security fixes in the ASN.1 code.
 2018-08-14 16:42:52 +02:00
trav90 e79f2ee694 Update HSTS preload list 
Tag #447
 2018-08-01 05:42:29 -05:00
yami bdcae58fa6 replace "certErrorCodePrefix2" with "certErrorCodePrefix" 2018-07-22 15:29:06 +02:00
wolfbeast c534a0ca24 Remove incorrect debug assertion. 
solves #631, solves #664
 2018-07-22 08:24:16 +02:00
trav90 4d358ef73c Update HSTS preload list 
Tag #447
 2018-07-17 05:53:04 -05:00
wolfbeast 4c9914227e Merge branch 'ported-upstream' 2018-07-02 17:51:09 +02:00
wolfbeast aa6329b694 Don't leak newTemplate in pk11_copyAttributes() 
Cherry-pick of NSS fix from 3.37
 2018-07-01 16:31:31 +02:00
wolfbeast 535e9399e6 Remove SSL Error Reporting telemetry 2018-06-29 17:40:01 +02:00
trav90 ba241f0825 Update HSTS preload list 
Tag #447
 2018-06-21 05:29:04 -05:00
wolfbeast 7d3b69729b Fix SSL status ambiguity. 
- Adds CipherSuite string with the full suite
- Changes CipherName to be the actual cipher name instead of the (erroneous) full suite like Firefox does.
 2018-06-20 19:14:58 +02:00
JustOff f83f62e1bf Update NSS to 3.36.4-RTM 2018-06-11 16:42:50 +03:00
JustOff b1ddd8a8af [PALEMOON] Add missed strings required by page info 2018-06-08 19:10:23 +03:00
Moonchild 306f3865cc Merge pull request #461 from trav90/HSTS 
Improve HSTS preload list generation
 2018-06-07 15:03:27 +02:00
trav90 b789cbe5c1 Regenerate the HSTS preload list 2018-06-07 07:21:38 -05:00
trav90 cef7fcb377 Restore clearly-delimited format for the HSTS preload list 2018-06-06 08:30:34 -05:00
JustOff 6603359347 Request NSS to use DBM as the storage file format 2018-06-06 15:24:07 +02:00
wolfbeast 6f84242a35 Revert "Restore NSS default storage file format to DBM when no prefix is given." 
This reverts commit b2c78bbf83.
 2018-06-06 15:23:14 +02:00
trav90 3b7938d7a1 Increase concurrent lookups to 15 when generating HSTS preload list 2018-06-05 22:25:18 -05:00
trav90 a32e0cb8c7 Update HSTS preload list generation script 
Previous behavior: if an entry was in the previously-used list, and there would be an error connecting to or processing the host, it would adopt it using the previous status, with a new minimum required max age TTL.
New behavior: if an entry is in the previously-used list, and there is an error connecting to or processing the host, it will be dropped from the preload list.

The old behavior would allow entries to persist on the HSTS preload list when they drop off the 'net. Considering domain churn, it would cause issues for new owners for having a persisted HSTS entry preloaded in the browser.
Bonus: it keeps our HSTS preload list lean.
 2018-06-05 22:23:30 -05:00
wolfbeast b2c78bbf83 Restore NSS default storage file format to DBM when no prefix is given. 2018-06-05 22:38:40 +02:00
wolfbeast e10349ab8d Update NSS to 3.35-RTM 2018-06-05 22:24:08 +02:00
Gaming4JC bd85173562 Remove support and tests for HSTS priming from the tree. Fixes #384 2018-05-26 15:42:45 -04:00
wolfbeast 6571d2ceb4 Remove MOZ_WIDGET_GONK [1/2] 
Tag #288
 2018-05-12 16:19:58 +02:00
wolfbeast 43f7a588f9 Nuke the sandbox 2018-05-03 05:55:15 +02:00
wolfbeast 4613b91eca Remove sandbox ductwork conditional code. 2018-05-03 01:24:31 +02:00
wolfbeast e1490c07e2 Remove GMP sandbox code. 2018-05-02 23:30:36 +02:00
wolfbeast 755e102078 Remove content process sandbox code. 2018-05-02 21:58:04 +02:00
janekptacijarabaci 3442ae7718 Fix unsafe "instanceof" negations 
https://github.com/MoonchildProductions/Pale-Moon/pull/1173
 2018-05-02 06:57:57 +02:00
Matt A. Tobin 69ac2db129 Partially revert 1ef526f0f - sftkpwd.c 
#82 #265
 2018-04-26 19:23:01 -04:00
wolfbeast fba28f1975 Revert "Update NSS to 3.35-RTM" 
This reverts commit f1a0f0a56f.
 2018-04-25 21:33:33 +02:00
janekptacijarabaci c3ec00a152 moebius#119: (Windows) Security - Certificate Stores - NSSCertDBTrustDomain allows end-entities to be their own trust anchors 
https://github.com/MoonchildProductions/moebius/pull/119
 2018-04-23 09:10:12 +02:00
wolfbeast 1ef526f0f0 Strengthen the use of the Master Password. 
- Use 30k iterations instead of 1.
- Enforce minimum password length of 8 characters.
- Adjust strength meter accordingly.

This resolves #82.
 2018-04-18 14:05:21 +02:00
janekptacijarabaci 374231de93 moebius#126: [very minor fix] Fix typo in a comment in NSSCertDBTrustDomain.cpp 
https://github.com/MoonchildProductions/moebius/pull/126
 2018-04-13 20:53:27 +02:00
wolfbeast 4e368f8199 Remove base conditional code for crash reporter and injector. 2018-03-30 08:50:58 +02:00
trav90 daab331cf5 Disable -Wimplicit-fallthrough for a chromium file 
GCC 7 supports the clang option -Wimplicit-fallthrough.
 2018-03-04 15:26:51 -06:00
wolfbeast 2998d0f5e2 Fix build system translation errors. 
Follow-up to 11a8a39f6d
 2018-03-04 10:13:33 +01:00
Moonchild e272829137 Merge pull request #34 from janekptacijarabaci/devtools_import-from-moebius_1 
Port across devtools enhancements
 2018-03-02 10:32:45 +01:00
Matt A. Tobin 11a8a39f6d Use MOZ_FENNEC and MOZ_XULRUNNER instead of checking MOZ_BUILD_APP in most places 2018-03-01 14:26:41 -05:00
janekptacijarabaci 228d252ab1 DevTools - network - security (improvements) 
https://github.com/MoonchildProductions/moebius/pull/113
https://github.com/MoonchildProductions/moebius/pull/118
https://github.com/MoonchildProductions/moebius/pull/127
 2018-03-01 09:02:37 +01:00
wolfbeast f1a0f0a56f Update NSS to 3.35-RTM 2018-02-23 11:04:39 +01:00