1[DEFAULT]
2head = head_psm.js
3tags = psm
4firefox-appdir = browser
5support-files =
6  corrupted_crlite_helper.js
7  bad_certs/**
8  ocsp_certs/**
9  test_baseline_requirements/**
10  test_broken_fips/**
11  test_cert_eku/**
12  test_cert_embedded_null/**
13  test_cert_isBuiltInRoot_reload/**
14  test_cert_keyUsage/**
15  test_cert_overrides_read_only/**
16  test_cert_sha1/**
17  test_cert_signatures/**
18  test_cert_storage_direct/**
19  test_cert_storage_preexisting/**
20  test_cert_storage_preexisting_crlite/**
21  test_cert_trust/**
22  test_cert_utf8/**
23  test_cert_version/**
24  test_certDB_import/**
25  test_content_signing/**
26  test_crlite_filters/**
27  test_crlite_preexisting/**
28  test_crlite_corrupted/**
29  test_ct/**
30  test_delegated_credentials/**
31  test_encrypted_client_hello/**
32  test_ev_certs/**
33  test_intermediate_basic_usage_constraints/**
34  test_intermediate_preloads/**
35  test_keysize/**
36  test_keysize_ev/**
37  test_missing_intermediate/**
38  test_name_constraints/**
39  test_ocsp_url/**
40  test_onecrl/**
41  test_sanctions/**
42  test_sdr_preexisting/**
43  test_sdr_preexisting_with_password/**
44  test_self_signed_certs/**
45  test_signed_apps/**
46  test_validity/**
47  tlsserver/**
48
49[test_add_preexisting_cert.js]
50[test_baseline_requirements_subject_common_name.js]
51[test_blocklist_onecrl.js]
52# Skip signature tests for Thunderbird (Bug 1341983).
53skip-if = appname == "thunderbird"
54tags = remote-settings blocklist psm
55[test_broken_fips.js]
56# FIPS has never been a thing on Android, so the workaround doesn't
57# exist on that platform.
58# FIPS still works on Linux, so this test doesn't make any sense there.
59# FIPS still works on Windows, but running the test to ensure that it does not
60# break with a non-ASCII profile path.
61skip-if = toolkit == 'android' || os == 'linux'
62[test_cert_storage.js]
63tags = addons psm blocklist
64[test_cert_storage_broken_db.js]
65[test_cert_storage_direct.js]
66[test_cert_storage_preexisting.js]
67[test_cert_storage_preexisting_crlite.js]
68# This test cannot succeed on 32-bit platforms. See bugs 1546361 and 1548956.
69skip-if = bits != 64
70[test_cert_storage_prefs.js]
71[test_cert_chains.js]
72run-sequentially = hardcoded ports
73[test_cert_dbKey.js]
74[test_cert_eku.js]
75[test_cert_embedded_null.js]
76[test_cert_expiration_canary.js]
77run-if = nightly_build
78[test_cert_keyUsage.js]
79[test_cert_isBuiltInRoot.js]
80[test_cert_isBuiltInRoot_reload.js]
81[test_cert_overrides.js]
82run-sequentially = hardcoded ports
83[test_cert_overrides_read_only.js]
84run-sequentially = hardcoded ports
85[test_cert_override_bits_mismatches.js]
86run-sequentially = hardcoded ports
87[test_cert_override_read.js]
88[test_cert_sha1.js]
89[test_cert_signatures.js]
90[test_cert_trust.js]
91[test_cert_version.js]
92[test_cert_utf8.js]
93[test_certDB_export_pkcs12.js]
94[test_certDB_export_pkcs12_with_primary_password.js]
95[test_certDB_import.js]
96# nsCertificateDialogs not available in geckoview, bug 1554276
97skip-if = toolkit == 'android' && processor == 'x86_64'
98[test_certDB_import_pkcs12.js]
99[test_certDB_import_with_primary_password.js]
100# nsCertificateDialogs not available in geckoview, bug 1554276
101skip-if = toolkit == 'android' && processor == 'x86_64'
102[test_constructX509FromBase64.js]
103[test_content_signing.js]
104[test_crlite_filters.js]
105tags = remote-settings psm
106[test_crlite_preexisting.js]
107[test_crlite_filter_corrupted.js]
108[test_crlite_stash_corrupted.js]
109[test_crlite_enrollment_version.js]
110[test_crlite_enrollment_trunc1.js]
111[test_crlite_coverage_version.js]
112[test_crlite_coverage_trunc1.js]
113[test_crlite_coverage_trunc2.js]
114[test_crlite_coverage_trunc3.js]
115[test_crlite_coverage_missing.js]
116[test_ct.js]
117# Requires hard-coded debug-only data
118skip-if = !debug
119run-sequentially = hardcoded ports
120[test_db_format_pref_new.js]
121# Android always has and always will use the new format, so
122# this test doesn't apply.
123skip-if = toolkit == 'android'
124[test_delegated_credentials.js]
125run-sequentially = hardcoded ports
126[test_encrypted_client_hello.js]
127run-sequentially = hardcoded ports
128[test_encrypted_client_hello_client_only.js]
129run-sequentially = hardcoded ports
130[test_der.js]
131[test_enterprise_roots.js]
132# This feature is implemented for Windows and OS X. However, we don't currently
133# have a way to test it on OS X.
134skip-if = os != 'win'
135[test_ev_certs.js]
136tags = blocklist psm
137run-sequentially = hardcoded ports
138[test_forget_about_site_security_headers.js]
139run-sequentially = hardcoded ports
140[test_hash_algorithms.js]
141[test_hash_algorithms_wrap.js]
142# bug 1124289 - run_test_in_child violates the sandbox on android
143skip-if = toolkit == 'android'
144[test_hmac.js]
145[test_intermediate_basic_usage_constraints.js]
146[test_intermediate_preloads.js]
147run-sequentially = hardcoded ports
148tags = blocklist psm remote-settings
149# Bug 1520297 - do something to handle tighter resource constraints on Android
150skip-if = toolkit == 'android'
151[test_allow_all_cert_errors.js]
152run-sequentially = hardcoded ports
153[test_keysize.js]
154[test_keysize_ev.js]
155run-sequentially = hardcoded ports
156[test_local_cert.js]
157[test_logoutAndTeardown.js]
158skip-if = socketprocess_networking && os == "linux" && debug
159run-sequentially = hardcoded ports
160[test_missing_intermediate.js]
161run-sequentially = hardcoded ports
162[test_name_constraints.js]
163[test_nonascii_path.js]
164[test_nsCertType.js]
165run-sequentially = hardcoded ports
166[test_nsIX509Cert_utf8.js]
167[test_nsIX509CertValidity.js]
168[test_nss_shutdown.js]
169[test_ocsp_caching.js]
170run-sequentially = hardcoded ports
171[test_ocsp_enabled_pref.js]
172run-sequentially = hardcoded ports
173[test_ocsp_must_staple.js]
174run-sequentially = hardcoded ports
175[test_ocsp_private_caching.js]
176run-sequentially = hardcoded ports
177[test_ocsp_no_hsts_upgrade.js]
178run-sequentially = hardcoded ports
179[test_ocsp_required.js]
180run-sequentially = hardcoded ports
181[test_ocsp_stapling.js]
182run-sequentially = hardcoded ports
183[test_ocsp_stapling_expired.js]
184run-sequentially = hardcoded ports
185[test_ocsp_stapling_with_intermediate.js]
186run-sequentially = hardcoded ports
187[test_ocsp_timeout.js]
188skip-if = (os == "win" && socketprocess_networking)
189run-sequentially = hardcoded ports
190[test_ocsp_url.js]
191run-sequentially = hardcoded ports
192[test_oskeystore.js]
193skip-if = apple_silicon # bug 1729538
194[test_osreauthenticator.js]
195# Reauthentication has been implemented on Windows and MacOS, so running this
196# test results in the OS popping up a dialog, which means we can't run it in
197# automation.
198skip-if = os == 'win' || os == 'mac'
199[test_password_prompt.js]
200[test_pinning.js]
201run-sequentially = hardcoded ports
202[test_sdr.js]
203[test_sdr_preexisting.js]
204# Not relevant to Android. See the comment in the test.
205skip-if = toolkit == 'android'
206[test_sdr_preexisting_with_password.js]
207# Not relevant to Android. See the comment in the test.
208skip-if = toolkit == 'android'
209[test_self_signed_certs.js]
210[test_session_resumption.js]
211skip-if =
212  os == "win" # Bug 1585916
213run-sequentially = hardcoded ports
214[test_signed_apps.js]
215[test_ssl_status.js]
216run-sequentially = hardcoded ports
217[test_sss_enumerate.js]
218run-sequentially = hardcoded ports
219[test_sss_eviction.js]
220[test_sss_originAttributes.js]
221run-sequentially = hardcoded ports
222[test_sss_readstate.js]
223[test_sss_readstate_empty.js]
224[test_sss_readstate_garbage.js]
225[test_sss_readstate_huge.js]
226[test_sss_resetState.js]
227run-sequentially = hardcoded ports
228[test_sss_savestate.js]
229[test_sss_sanitizeOnShutdown.js]
230firefox-appdir = browser
231# Sanitization works differently on Android - this doesn't apply.
232# browser/modules/Sanitizer.jsm used by the test isn't available in Thunderbird.
233skip-if = toolkit == 'android' || appname == 'thunderbird'
234[test_sts_fqdn.js]
235[test_sts_ipv4_ipv6.js]
236[test_sts_parser.js]
237[test_sts_preloadlist_perwindowpb.js]
238[test_sts_preloadlist_selfdestruct.js]
239[test_sanctions_symantec_apple_google.js]
240run-sequentially = hardcoded ports
241[test_validity.js]
242run-sequentially = hardcoded ports
243[test_x509.js]
244