48090e59a8
Bugzilla Bug 336509: check for continuous RNG test failure after direct and
...
indirect uses of the RNG. r=relyea,nelsonb.
Modified files: fipstokn.c keydb.c pkcs11.c pkcs11c.c pkcs11i.h rsawrapr.c
softoken.h
2006-07-31 18:10:17 +00:00
adfb2d0b34
Bugzilla bug 336509: Made prng_GenerateGlobalRandomBytes static because
...
it's only used in this file. r=neil.williams.
2006-07-29 00:28:12 +00:00
b843464eb3
Bugzilla Bug 345502: C89 doesn't allow initializing a local array. Fixed
...
some array sizes. The patch is contributed by Glen Beasley of Sun. r=wtc.
2006-07-28 20:45:01 +00:00
40a16f74c9
Bugzilla Bug 345941: fixed another bug that we might pass uninitialized
...
'req' to fclose(). Thanks to Wolfgang Rosenauer <mozilla@rosenauer.org> for
reporting the bug and reviewing the patch.
2006-07-28 20:19:02 +00:00
97881e483f
Bugzilla Bug 345941: fixed the bug that we might pass uninitialized 'req'
...
to fclose(). r=glen.beasley. Thanks to Wolfgang Rosenauer
<mozilla@rosenauer.org> for the bug report.
2006-07-27 16:56:56 +00:00
ee588c0e0d
Bugzilla Bug 345775: use SECITEM_FreeItem(..., PR_TRUE) to completely free
...
the SECItem allocated in getECParams. r=alexei.volkov.
2006-07-27 00:33:23 +00:00
fcc85009ca
Bugzilla Bug 345779: removed two useless assignments and fixed an error in
...
the comment. r=douglas.stebila.
2006-07-26 23:17:46 +00:00
c240d4542b
345502 RNG power up selftest r=wtc
2006-07-24 03:54:09 +00:00
e923291d6e
Correct ifdefs so that non-ECC builds will continue to build correctly.
...
r=wtchang bug 341707.
2006-07-20 00:17:23 +00:00
aa48d36259
Curve-limited clients must not negotiate ECC ciphersuites unless they send the supported curve extension. This means that when they are nogotiating SSL 3.0
...
and not TLS, they should not negotiate ECC ciphersuites at all.
Bug 341707. r=rrelyea.
2006-07-19 01:40:17 +00:00
7cb9a6798d
Workaround bogus assertion failure in MSVC 8 (Express, 2005) RTL by switching
...
from the old _findfirst, _findnext file enumeration API to the newer
FindFirstFile, FindNextFile API. Might be slower, but won't crash if it finds
files older than 1970. Bug 331404. r=julien.pierre
2006-07-19 01:33:41 +00:00
916abfcc17
Coverity bug 340217. Fix leak, crash, and failure to set error codes in
...
CMMF_POPODecKeyChallContDecryptChallenge. r=alexei.volkov
2006-07-19 00:44:02 +00:00
4fde45d139
Remove FORTEZZA code from this file. Coverity CID 874. r=rrelyea.
2006-07-19 00:36:38 +00:00
29bf58a380
Remove dead function SECU_GetPBEPassword from nss/cmd/lib/secutil.*
...
Patch contributed by Jon Smirl <jonsmirl@gmail.com>
Coverity CID 516. Bug 337081. r=nelson@bolyard.com
2006-07-19 00:21:12 +00:00
3e2150fc10
Bugzilla Bug 338367: Turn GF2M_POPULATE and GFP_POPULATE macros into functions. r+=wtchang
2006-07-19 00:14:31 +00:00
4769c68bf6
Stop using EXTENSION_NOT_FOUND error in OCSP code. r=julien. bug 287850.
2006-07-19 00:08:52 +00:00
49af285a1d
Bugzilla bug 295291: regenerated using the new certdata.perl script.
2006-07-18 23:38:14 +00:00
664d338da2
334459: Variable "(cache)->sharedCache" tracked as NULL was passed to a function that dereferences it. [@ CloseCache - InitCache]. r=nelson
2006-07-17 22:14:48 +00:00
9ea0404651
341291: Coverity 689 - potential NULL ptr crash in ssl3_SendCertificate. r=nelson
2006-07-17 22:08:03 +00:00
4d331091de
341120: Coverity 541 nss_cms_recipients_traverse leaks "rle". r=nelson
2006-07-17 21:57:35 +00:00
8191f90940
341115: Multiple NULL ptr dereferences in nss/lib/base/arena.c. r=nelson
2006-07-17 21:51:32 +00:00
f656732765
Bugzilla Bug 295291: removed the unused variable 'a' and sort the
...
definitions of constants in certdata.c. r=nelsonb.
2006-07-17 16:50:45 +00:00
1ea9ecb85c
Bug 343682, crash in libcrmf with ecc
...
patch=rrelyea, r=kengert, r=nelson
2006-07-13 20:59:51 +00:00
1bf725b1cb
Fix for bug 341708 . Have client send alert if it detects an invalid server key exchange. r=nelson
2006-06-28 21:15:04 +00:00
1360e00abe
Bugzilla Bug 338798: use PR_FindFunctionSymbol to look up function
...
symbols. r=alexei.volkov,nelson.
Modified files: freebl/loader.c softoken/dbinit.c
2006-06-26 23:42:59 +00:00
ab411b37bd
Bugzilla Bug 338798: in C89, local struct variables can only be initialized
...
by constant expressions. HP C compiler version B.11.11.08 generates
incorrect code silently if the initializers are non-constant expressions.
r=alexei.volkov,julien.pierre.
Modified files: cmd/crmftest/testcrmf.c lib/ssl/ssl3con.c
2006-06-26 23:32:19 +00:00
189631b3b1
Bug 337486, mismatch between PK11_FindCertFromNickname and FindCerts
...
r=rrelyea, r=julien.pierre
2006-06-26 23:21:07 +00:00
3f13baf101
bug 335748 ECC support for Mozilla. r=wtc
2006-06-23 17:01:38 +00:00
89fba5eac1
Bug 335748 ECC support for mozilla.
...
r=wtc
2006-06-23 16:57:43 +00:00
f25d1d70cd
Bugzilla Bug 338798: in C89, local struct variables can only be initialized
...
by constant expressions. HP C compiler version B.11.11.08 generates
incorrect code silently if the initializers are non-constant expressions.
r=alexei.volkov,julien.pierre.
2006-06-21 00:40:59 +00:00
034af09812
Bugzilla Bug 337034: nested two related tests. r=relyea.
2006-06-17 00:09:59 +00:00
543d49b730
Workaround (or fix) for bug 341573 . Switch compiler option from -fsimple=2 to -fsimple=1
2006-06-16 04:41:34 +00:00
3e699dc0f0
[Bug 337110] OOM Crash and memory leak [@ PK11_CreatePBEParams]. r=julien, sr=nelson
2006-06-16 00:42:46 +00:00
d3ad378479
Bugzilla Bug 341590: in FIPS mode, softoken should report the more serious
...
fatalError condition before the !isLoggedIn condition. r=nelson.
2006-06-15 23:55:59 +00:00
7d92147b35
Bugzilla 337793: Create a test to check all EC curves
...
r+ Christophe
Committed on behalf of Nelson.
2006-06-15 19:26:01 +00:00
d5aa4d29c5
[Bug 337008] OOM crash [@ nssList_Add - STAN_InitTokenForSlotInfo - STAN_LoadDefaultNSS3TrustDomain][@ nssList_Clone - nssList_CreateIterator - STAN_LoadDefaultNSS3TrustDomain] Dereferencing possibly NULL "(td)->tokenList". r=nelson, sr=wtc
2006-06-13 21:36:29 +00:00
82930ed07a
Bugzilla Bug 341111: added a dummy reference to the SCCS and RCS version
...
strings so that they won't be optimized away. r=nelsonb.
2006-06-13 17:48:03 +00:00
51b89f627d
[Bug 337110] OOM Crash [@ PK11_CreatePBEParams]. r=nelson
2006-06-13 17:33:06 +00:00
4fe5c22675
[Bug 337099] Crash [@ PK11_ParamFromIV] Variable "iv" tracked as NULL
...
was dereferenced. r=nelson
2006-06-12 21:16:49 +00:00
cc3d04b60e
[Bug 339886] param leaked at NSS_CMSCipherContext_StartEncrypt(nss/lib/smime/cmscipher.c). r=nelson
2006-06-12 21:05:12 +00:00
7d6b311cd3
Don't call nssCKFWToken_Destroy with NULL. Bug 340018. r=alexei.volkov
2006-06-10 22:21:10 +00:00
4f4902f94e
Fix leak and OOM crash. Bug 338352 and 338356. Coverity.
...
r=rrelyea, alexei.volkov
2006-06-10 22:13:46 +00:00
e9a0aa7867
Fix for bug 340917 - crlutil should init NSS read-only for list option. r=alexei.volkov
2006-06-09 21:55:11 +00:00
969191a00e
Bug 340183, Add the Netlock Class QA root certificate
...
Approval for adding CA cert granted by Frank Hecker in bug 313942
Patch by Wan-Teh Chang, r=me
2006-06-09 21:02:16 +00:00
5337c5aee0
Fix broken build.
2006-06-09 18:12:50 +00:00
bae0b415d1
Fix leaks in CERT_DistNamesFromNicknames (bug 339916) and in
...
CERT_GetCertNicknames (bug 339919). Coverity bugs. r=alexei.volkov
2006-06-09 01:24:39 +00:00
29a3a59542
Fix for bug 340909 . Add batch command to usage. r=nelson
2006-06-09 01:24:23 +00:00
5498c37db3
Fix leak in NSS_CMSEncoder_Start error path. Bug 339914. r=alexei.volkov
2006-06-08 22:01:02 +00:00
4c913b0390
Fix leak in sec_asn1d_add_to_subitems. Bug 339913. r=alexei.volkov
2006-06-08 21:40:31 +00:00
acfa788133
340734 update ref to 140-1 to 140 r=neilWilliams
2006-06-08 18:19:09 +00:00
5b368c8808
Remove dead code. Coverity 506. r=nelson,wtchang. Bug 337027.
...
Patch by Jon Smirl <jonsmirl@yahoo.com>
2006-06-07 18:36:26 +00:00
995213d2df
Fix bug 337104 and bug 337105. Don't crash if we run out of memory
...
in ssl2_ConstructCipherSpecs(). r=Alexei.Volkov Coverity 442 & 443.
2006-06-07 17:53:19 +00:00
172c1bdf45
Fix for bug 326637 . Unnecessary request of PKCS11 device password. r=rrelyea
2006-06-07 02:30:27 +00:00
e602259ec8
Fix for bug 340040 - add certutil option to verify an OCSP responder cert. r=nelson
2006-06-06 01:06:23 +00:00
e70d27d7ba
[Bug 339908] 3 NULL ptr crashes when PK11_GetBestSlot returns NULL. r=nelson
2006-06-02 20:34:04 +00:00
41c9c343c1
Import NSPR 4.6.2.
2006-06-02 05:18:01 +00:00
cdd64c7beb
Bugzilla bug 338599: added new function SECKEY_SignatureLen and use it
...
instead of SECKEY_PublicKeyStrength to get ECDSA signature lengths.
Removed the 'type' member from the VFYContextStr structure because that
info is in the 'key->keyType' field. Set error codes when functions
fail (return 0). r=nelsonb.
Modified Files:
cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secvfy.c
nss/nss.def ssl/ssl3con.c
2006-05-31 23:54:52 +00:00
72df55c274
[Bug 220380] Add SSL client auth stress tests.
...
Attachment "auth patch"(#222740 ). r=nelson
2006-05-31 18:06:02 +00:00
a07f869b7a
Bugzilla Bug 338552: added StartCom CA certificate to NSS. The patch is
...
contributed by Eddy Nigg, StartCom Ltd. <eddy_nigg@startcom.org>. r=wtc.
a=hecker.
Modified Files: certdata.c certdata.txt nssckbi.h
2006-05-31 17:18:54 +00:00
ba7825ee28
Fix for bug 336477 . Fix for CERT_UncacheCRL error checking. r=nelson
2006-05-31 01:57:55 +00:00
47817668ff
[Bug 337014] OOM crash [@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen][@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen] Dereferencing possibly NULL "varena". r=nelson
2006-05-22 23:08:04 +00:00
3aa52be061
[Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c) [Attachment 222949]. r=nelson
2006-05-22 22:38:56 +00:00
3533f0c590
Bugzilla Bug 320336: improved the comments for SECITEM_AllocItem in
...
secitem.h. Made SECITEM_AllocItem fail (return NULL) if the allocation of
the buffer fails, as documented. r=nelsonb.
Modified files: secitem.c secitem.h
2006-05-22 22:24:34 +00:00
68708d13f4
Bugzilla Bug 298520: moved the RSA maximum size macros from rsa.c to
...
blapit.h. Removed an out-of-date comment from blapit.h. r=nelsonb.
Modified files: blapit.h rsa.c
2006-05-22 22:10:40 +00:00
06496e21ff
Bugzilla Bug 298520: added a comment explain the meaning of the MAX_KEY_LEN
...
macro. r=nelsonb.
2006-05-22 22:08:40 +00:00
7cd142bd9c
[Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c). r=nelson
2006-05-22 21:46:14 +00:00
a0ac292413
Bug 236613: change to MPL/LGPL/GPL tri-license.
2006-05-21 21:02:26 +00:00
538a18fde0
[Bug 220380] Add SSL client auth stress tests. Attachment #4 . r=julien
2006-05-20 18:32:08 +00:00
43d0a92ac7
Promote the use of curve secp192r1 for client auth, since it is faster
...
than most. Bug 332350. r=rrelyea.
2006-05-19 03:59:06 +00:00
505671ed77
Eliminate a crash and plug a leak in the error path for function
...
nssSMIMEProfile_Create. Coverity bug 337101. r=alexei.volkov.
2006-05-18 23:29:19 +00:00
1eb10c802e
Avoid crash if "item" pointer is NULL. Coverity bug 333555.
...
r=wtchang,alexei.volkov
2006-05-18 21:20:04 +00:00
e05b17bc20
[Bug 337008] OOM crash [@ nssList_Add - STAN_InitTokenForSlotInfo - STAN_LoadDefaultNSS3TrustDomain][@ nssList_Clone - nssList_CreateIterator - STAN_LoadDefaultNSS3TrustDomain] Dereferencing possibly NULL "(td)->tokenList". r=nelson, sr=wtc
2006-05-18 21:00:58 +00:00
b0a8ac4918
[Bug 337010] OOM crash [@ NSC_DigestKey] Dereferencing possibly NULL "att". r=ne
...
lson,wtc
2006-05-18 20:52:50 +00:00
08e023d910
Plug leak. Free cache. Coverity bug 338201. r=alexei.volkov
2006-05-18 20:46:19 +00:00
5c56ef5776
Fix several Coverity bugs. Bug 336982. NULL ptr check after ptr deref'ed.
...
Bug 337080. Dead code. r=alexei.volkov
2006-05-18 20:39:19 +00:00
88c4f3a0b3
Remove dead old FORTEZZA KEA code. Coverity bug 337098. r=rrelyea,wtchang
2006-05-18 20:24:23 +00:00
538630b067
[Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. (second patch) r=nelson
2006-05-18 20:21:12 +00:00
a1423c99e4
Don't dereference a NULL secmodprefix argument. Coverity Bug 336981.
...
r=alexei.volkov
2006-05-18 19:44:24 +00:00
780c599d61
In SEC_PKCS12DecoderGetCerts, don't dereference p12dcx until AFTER it has
...
been checked for NULL. Coverity bug 336971. r=alexei.volkov
2006-05-18 19:38:59 +00:00
0a6525e406
Add 3 assertions to satisfy coverity that tmpt is never NULL in these
...
places. Bug 336995. r=akexei.volkov,wtchang
2006-05-18 19:32:44 +00:00
68f51af5fe
Plug leak. Free "info" in error path. Coverity bug 336475.
...
r=wtchang,alexei.volkov
2006-05-18 04:35:32 +00:00
9dc19d4fe0
Correct the amount returned by ssl_Writev for short writes on non-blocking
...
sockets. Bug 338325. patch by Chris Newman <chris.newman@sun.com>
r=nelson
2006-05-18 01:10:21 +00:00
5e3f18a4c6
Bugzilla bug 338367: check that the array index params->name is within
...
bounds before taking an element from the ecCurve_map array.
r=doublas.stebila.
2006-05-17 23:58:18 +00:00
6f65f3a2dd
Fix for bug 222300. r=nelson,wtchang
2006-05-17 22:20:08 +00:00
e58e3e05ba
[Bug 337011] OOM crash [@ sftk_handleKeyObject][@ sftk_handleKeyParameterObject] Dereferencing possibly NULL "attribute". r=nelson
2006-05-17 20:52:16 +00:00
5713a8afaf
[Bug 337326] Leak in nsslowcert_UpdateSubjectEmailAddr (security/nss/lib/softoken/pcertdb.c). r=nelson
2006-05-17 20:46:47 +00:00
e1b759198c
[Bug 337009] OOM crash [@ nssList_Count - nssTrustDomain_GetCertsFromCache] Dereferencing possibly NULL "certList". r=nelson
2006-05-17 20:38:59 +00:00
ef6e49c6b2
[Bug 337332] Leak in OpenNewDB (security/nss/lib/softoken/keydb.c). r=nelson
2006-05-17 17:56:32 +00:00
4fe8d81c2b
[Bug 336485] coverity thinks that nssPKIObject_GetInstances could return null which would lead to a crash [@ listCertsCallback]. r=nelson
2006-05-16 23:47:43 +00:00
b0d4b44133
Fix for bug 335036. certutil tries to shutdown NSS even if it didn't initialize . r=wtchang, nelson
2006-05-16 02:16:25 +00:00
844f45261e
Bugzilla Bug 337025: removed more unused or trivially used variables.
...
r=alexei.volkov,nelson.bolyard.
2006-05-16 01:57:04 +00:00
942eb77419
Bug 305835: Remove NSS_ENABLE_ECC ifdefs in libssl. r=wtc,nelsonb
2006-05-16 01:14:43 +00:00
49a4fc689f
Bugzilla Bug 298506: a first cut at Solaris auditing. The patch is
...
contributed by Glen Beasley of Sun. r=wtc.
Modified Files:
cmd/platlibs.mk lib/softoken/config.mk lib/softoken/fipstokn.c
2006-05-16 01:04:05 +00:00
42f2f41bff
Fix for bug 335036 . NSS_Shutdown() does not check that NSS is initialized. r=nelson, alexei
2006-05-16 00:10:04 +00:00
5ea61ffe76
Fix for bug 337789 . PK11_FindKeyByAnyCert doe snot work if softoken is in FIPS140-2 mode. r=wtchang, rrelyea, nelson
2006-05-15 23:51:01 +00:00
6b1e6d3bf2
[Bug 336482] crash or hopefully deadcode [@ crmf_copy_poposigningkey]
...
because Pointer "destPopoSignKey" dereferenced before NULL check. r=nelson
2006-05-15 21:05:13 +00:00
5940997e85
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. r=wtchang
2006-05-15 20:58:10 +00:00
968bb1125f
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337086] Coverity 446, dead code in mozilla/security/nss/lib/certhigh/ocsp.c. r=wtchang
2006-05-15 20:52:01 +00:00
7b49a9fc5a
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337085] Coverity 447, dead code in mozilla/security/nss/lib/certhigh/ocsp.c
. r=wtchang
2006-05-15 20:44:46 +00:00
02307faea5
Patch contributed by timeless@bemail.org
...
[Bug 337025] Coverity 411, dead code in mozilla/security/nss/lib/certdb/stanpcertdb.c. r=nelson
2006-05-15 20:39:38 +00:00
b2eede4173
Patch contributed by timeless@bemail.org
...
[Bug 336992] crash [@ pk11_DoKeys] "arg" Pointer dereferenced before NULL check. r=nelson
2006-05-13 00:46:51 +00:00
39db992bd1
Patch contributed by timeless@bemail.org
...
[Bug 336972] OOM crash [@ PK11_ImportDERPrivateKeyInfoAndReturnKey] "pki" Pointer allocated by PORT_NewArena dereferenced without NULL check. r=nelson
2006-05-13 00:41:16 +00:00
4176224c5b
Patch contributed by timeless@bemail.org
...
[Bug 336466] oom crash [@ CERT_DecodeAuthKeyID]. r=nelson
2006-05-13 00:33:09 +00:00
0d612a798a
Patch contributed by jonsmirl@yahoo.com
...
[Bug 336935] Coverity 172, dead code in mozilla/security/nss/lib/softoken/keydb.c. r=nelson, r=alexei.volkov.bugs
2006-05-13 00:27:22 +00:00
a172cbe397
Fix for bug 336477. Memory leak in CERT_UncacheCRL . r=nelson
2006-05-13 00:27:12 +00:00
d76295c913
Patch contributed by jonsmirl@yahoo.com
...
[Bug 336932] Coverity 163, dead code in mozilla/security/nss/lib/ssl/ssl3con.c. r=nelson
2006-05-13 00:15:43 +00:00
73626f65a8
Patch contributed by timeless@bemail.org
...
[Bug 336481] oom crash [@ crmf_copy_cert_req_msg]
2006-05-13 00:03:12 +00:00
28a533ac47
Bug 337093. Remove dead code at label loser in function dbs_readBlob
...
Patch by Jon Smirl <jonsmirl@yahoo.com>, r=wtchang. Coverity bug
2006-05-12 23:37:58 +00:00
2a00f3c4d2
Bugzilla Bug 336521: we should search the build tree (${DIST}/${OBJDIR})
...
before /bin and /usr/bin. r=slavomir.katuscak
2006-05-12 20:50:53 +00:00
68093029ef
Bugzilla Bug 336934: removed ununsed variable ck_id. The patch is
...
contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
2006-05-12 20:42:13 +00:00
4e43ea1d0a
Bugzilla Bug 336937: removed a test that is guaranteed to be true. The
...
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
2006-05-12 20:33:47 +00:00
cddae0bdc9
Bugzilla bug 336938: removed a test that is guaranteed to be false. The
...
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=wtc.
2006-05-12 16:49:07 +00:00
321cb8386e
Bugzilla Bug 298506: Do not log the token name (so the declaration of
...
sftk_getDefTokName in pkcs11i.h and the previous change to sftk_SlotFromID
weren't necessary). Use Linux's audit subsystem if available. r=relyea.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
2006-05-10 21:33:11 +00:00
90e7d73574
Bugzilla Bug 298522: implemented ECDSA power-up self-test. The patch was
...
written by Glen Beasley of Sun. r=wtc.
2006-05-08 18:20:28 +00:00
16146af129
Bugzilla Bug 333925: added a comment to paraphrase an obscure if statement.
2006-05-05 23:54:05 +00:00
580b97817e
Bugzilla Bug 333925: worked around AES test failures of code compiled by
...
Forte 6 update 2 by using the old optimization flags used in NSS 3.10.
r=relyea.
2006-05-05 23:39:29 +00:00
836e0c0b9c
Bugzilla Bug 334679: removed a duplicate line in ec_GF2m_validate_point.
...
r=douglas.stebila.
2006-05-05 23:08:50 +00:00
798e8d1bc1
Added/removed blank lines to eliminate the diffs between the trunk and the
...
NSS_3_11_BRANCH.
Modified files: pkcs11.c pkcs11c.c
2006-05-05 20:31:30 +00:00
01891a9574
Bugzilla Bug 298506: implemented FIPS 140-2 Security Level 2 audit
...
requirements. r=glen.beasley.
Modified Files:
fipstokn.c pkcs11.c pkcs11c.c pkcs11i.h softoken.h softoknt.h
2006-05-05 20:02:47 +00:00
ba58910b9e
Fix for bug 336335 . Plug leak of a temporary bignum in modular exponentiation . r=wtchang
2006-05-05 01:22:59 +00:00
1964aace2e
Fix for bug 336335 - memory leaks in ECC code. r=wtchang
2006-05-04 01:05:04 +00:00
7015af0983
Fix for bug 219932 . NISCC test script enhancements. Patch submitted by Jason Reid (jason.m.reid@sun.com) . r=slavomir.katuscak@sun.com,julien.pierre@sun.com
2006-05-01 22:52:32 +00:00
d15ad02799
Fix for bug 335021. Add SEC_ASN1_CONSTRUCTED to S/MIME EKP template. r=relyea
2006-04-29 00:18:42 +00:00
5f24a2a77c
Attachment #215739 : Use SSE2 multiply instructions on intel processors. for bug #326482
...
r=nelson r=wtc
2006-04-28 17:06:22 +00:00
a8e64c65ca
[Bug 334843] Add rpath for HP-UX on pa-risc
...
r+ neil.williams.
2006-04-27 23:36:20 +00:00
143f21193c
[Bug 334274] double free in CRMF_EncryptedKeyGetEncryptedValue. r=nelson
2006-04-27 22:09:28 +00:00
f5f5d893ff
[Bug 334326] DecodeV4DBCertEntry: Variable "(entry)->nickname" tracked as NULL was passed to a function that dereferences it. r=rrelyea
2006-04-27 18:35:24 +00:00
20919d892f
[Bug 334454] Variable "(key)->pkcs11Slot" tracked as NULL was passed to a function that dereferences it. [@ SECKEY_CopyPrivateKey - SSL_ConfigSecureServer]. r=nelson
2006-04-26 19:40:56 +00:00
49cb46e26c
[Bug 333389] sftk_NewAttribute should not crash when so is NULL [@ sftk_NewAttribute]. r=nelson
2006-04-26 19:18:00 +00:00
c353bf9e7b
[Bug 334522] pk12util crash in SEC_PKCS12DecoderValidateBags. r=nelson
2006-04-26 06:47:30 +00:00
b9c189458d
Disable AMD64 assembly optimizations. Bug 334057. r=nelson
2006-04-25 05:51:23 +00:00
249561bf3b
Bug 294537: ssltap should display ASCII CA names from cert request message
...
r=alexei.volkov
2006-04-25 04:58:45 +00:00
f02321e973
Backout the last change, undoing the fix for bug 320336 and bug 333405.
2006-04-25 04:39:24 +00:00
7fc553fcf8
[Bug 334277] double free in [@ sftk_FreeAttribute - sftk_DeleteAttributeType]. r=relyea
2006-04-25 02:33:58 +00:00
97c78b7911
[Bug 334276] double free in [@ SECKEY_CopyPublicKey]. r=nelson
2006-04-25 02:23:52 +00:00
085b36691e
Bugzilla Bug 320336: SECITEM_AllocItem should return a NULL pointer if the
...
allocation of its 'data' buffer fails. r=nelson. This checkin fixed bug
333405 as a byproduct.
Modified files: secitem.c secitem.h
2006-04-24 22:50:13 +00:00
dbe80e7489
Remove call to printf in ecl/ecp_224.c Bug 334448. r=wtchang
2006-04-24 21:27:38 +00:00
dafe77ce6c
Display TLS hello extensions and alerts. Display ECC cipher suites.
...
Bug 333600 and bug 334314. r=Alexei.Volkov
2006-04-24 06:11:41 +00:00
1930ea6074
Put nss.def file sections in numeric order, and alphabetical order
...
within sections.
2006-04-24 05:08:04 +00:00
0c05899fa2
Bug 323350. sr=rrelyea. This patch makes 3 changes:
...
1) it adds a new ifdef which enables SSL to limit itself to the 3 Suite B
curves.
2) it corrects the creation and parsing of the Supported Curve extension to
conform with the lastest definition, by using 2 bytes to encode the list
length,
3) it changes the algorithm that picks the curve for ECDHE to choose a curve
that is at least as strong as the "weakest link", is mutually supported
by client and server, and is the fastest for its size.
2006-04-23 00:17:18 +00:00
ff004c3373
Fix for bug 335039. Declare nssCKFWCRyptoOperation_UpdateCombo. r=wtchang
2006-04-22 05:30:18 +00:00
0a709d0578
Fix red tree on Windows.
2006-04-22 05:18:20 +00:00
fc87dbb2fe
[Bug 334183] Double free on error because CERT_FindCertIssuer unexpectedly calls CERT_DestroyCertificate. r=alexei
2006-04-22 02:09:09 +00:00
1d134e6b56
Fix for bug 331413 . replace signal with sigaction; fix logging. r=wtchang
2006-04-22 01:28:14 +00:00
76a9749ba0
Patch contributed by timeless@bemail.org
...
[Bug 334449] oom Crash in crmf_template_copy_secalg. r=nelson
2006-04-22 01:25:57 +00:00
d4f39e6449
Patch contributed by timeless@bemail.org
...
[Bug 334436] nsslowcert_UpdateSubjectEmailAddr doesn't consistently use emailAddrs as a guard of nemailAddrs guarding emailAddrs[0]. r=nelson
2006-04-22 01:19:41 +00:00
aea5eb0f12
Patch contributed by timeless@bemail.org
...
[Bug 334328] nsspkcs5_PKCS12PBE: Variable "A" tracked as NULL was dereferenced. r=nelson
2006-04-22 01:13:15 +00:00
86494ef39a
[Bug 334275] double free in [@ PK11_ListPublicKeysInSlot]. r=nelson
2006-04-22 01:08:17 +00:00
9c061b607a
[Bug 334273] double free in SECKEY_DecodeDERSubjectPublicKeyInfo. r=nelson
2006-04-22 01:03:18 +00:00
5f88dfbdaa
[Bug 334240] double free in nsslowkey_ConvertToPublicKey if SECITEM_CopyItem or SECITEM_CopyItem fail. r=nelson
2006-04-22 00:59:13 +00:00
8feb62dbd0
[Bug 334236] double free in PK11_ListPrivKeysInSlot if keys allocation fails. r=nelson
2006-04-22 00:55:29 +00:00
e8b0114d09
Bugzilla Bug 333932: fixed Solaris SPARC GCC build failures.
...
r=christophe.ravel
2006-04-22 00:13:29 +00:00
5f22914b4a
[Bug 334234] PK11_NewSlotInfo returns freed objects if lock allocations fail. r=nelson
2006-04-21 23:29:37 +00:00
6f1bd4dc40
Bugzilla Bug 334533: in getPQseed we always set the most significant bit of
...
SEED to 1 to make NIST CMVP's PQG parameter validation tool happy. In
PQG_ParamGenSeedLen we require the length of SEED be at least 20 bytes.
r=nelson.
2006-04-21 17:48:30 +00:00
37a7e6c417
Bugzilla Bug 298522: changed RSA modulus size to 1024 bits and added known
...
answer tests for RSA SHA1, SHA256, SHA384, and SHA512 signatures. The
patch is written by Glen Beasley. r=wtc.
2006-04-21 17:13:50 +00:00
d0604ba735
Bugzilla Bug 236245: Use a stack buffer for ec_params.data in
...
ssl3_SendECDHServerKeyExchange. r=nelson.
2006-04-21 16:19:48 +00:00
333657e660
Bugzilla Bug 334553: fixed the comments because mp_digit is actually 64-bit
...
(unsigned long or unsigned long long). r=nelson.
2006-04-21 16:13:02 +00:00
5cd56974be
Performance tests for ec curves. Test's freebl and pkcs11 interfaces.
2006-04-21 01:40:48 +00:00
432ccc0173
Bugzilla Bug 326754: checked the change back in. We failed the NIST DSA
...
PQGGen test for some other reason (bug 334533).
2006-04-20 21:55:24 +00:00
fe04651c77
Bug 80092: SSL write indicates all data sent when some is buffered.
...
SSL now follows NSPR socket semantics and never returns a short write
count on a blocking socket. On a blocking socket, it returns either
the full count or -1 (with an error code set).
For non-blocking sockets, SSL no longer returns a full write count
when some of the data remains buffered in the SSL record layer.
Instead it returns a number is that always at least 1 byte short of a
full write count, so that the caller will keep retrying until it is done.
SSL makes sure that the first byte sent by the caller in the retry
matches the last byte previously buffered. r=rrelyea.
Modified Files: ssl3con.c sslcon.c ssldef.c sslimpl.h sslsecur.c
2006-04-20 08:46:34 +00:00
43a7c5e950
Fix buffer overflow regression. Bug 236245. sr=wtchang
2006-04-20 06:57:54 +00:00
b67f75bc05
Patch contributed by timeless@bemail.org
...
[Bug 334459] Variable "cipherName" tracked as NULL was passed to a
function that dereferences it. [@ PORT_Strdup - SSL_SecurityStatus]. r=nelson
2006-04-20 00:20:45 +00:00
0f639ba66a
Patch contributed by timeless@bemail.org
...
[Bug 334446] oom Crash in nssCKFWFindObjects_Create. r=nelson
2006-04-20 00:03:33 +00:00
60674bc568
Patch contributed by timeless@bemail.org
...
[Bug 334443] oom Crash in nssCKFWSession_Create. r=nelson
2006-04-19 23:50:43 +00:00
3a8f586a3c
Patch contributed by timeless@bemail.org
...
[Bug 334438] oom Crash in ReadDBCertEntry. r=nelson
2006-04-19 23:43:10 +00:00
ff6fa1f51c
Patch contributed by timeless@bemail.org
...
[Bug 334442] Incorrect use of realloc oom Crash in secmod_ReadPermDB;r=nelson
2006-04-19 22:53:45 +00:00
c501854878
Patch contributed by nelson@bolyard.com.
...
[Bug 334327] pk11_CreateNewContextInSlot: Variable "(context)->key" tracked as NULL was passed to a function that dereferences it. r=alexei
2006-04-19 22:32:30 +00:00
fcca57e69e
Bugzilla bug 334553: use the ULL suffix with unsigned long long constants.
...
r=douglas.stebila.
Modified files: ecl/ecp_256.c mpi/mp_gf2m.c
2006-04-19 22:19:09 +00:00
2c62bf1d13
Bugzilla bug 334683: removed extraneous semicolons. r=alexei.volkov.
...
Modified files: cmd/certutil/certutil.c lib/pki/pkistore.h
2006-04-19 19:04:23 +00:00
b41066e368
Fix for bug 331413. Don't set SO_LINGER in the Win95 build to workaround NSPR bug 332348. r=wtchang
2006-04-18 22:56:44 +00:00
0a3bf353d3
Bugzilla Bug 333917: the non-x86 code in at least the DES_CBCEn and
...
DES_EDE3CBCEn functions violates ANSI C's aliasing rules. So we compile
this file with strict aliasing rules turned off. r=nelsonb.
2006-04-18 17:33:56 +00:00
fa09229848
Don't add 3 to the user-supplied number of validity months. Bug 333679.
...
r=neil.williams
2006-04-15 01:00:11 +00:00
8eb43e8ec2
Fix for bug 262375 . Add clobber_dbm and clobber_nspr targets, as well as nss_clean_all . r=nelson
2006-04-14 22:48:31 +00:00
b39425fcfa
big cleanup of error codes returned by pkcs12 library.
...
No longer returns SEC_ERROR_NO_MEMORY for every possible error code.
Bug 321584. r=neil.williams
2006-04-14 18:34:44 +00:00
efdb126901
Fix broken optimized builds, caused by last checkin. Bug 236245.
2006-04-14 00:43:19 +00:00
c4fb4fa280
Implement TLS Hello extensions for ECC. Bug 236245. r=rrelyea.
...
This patch has a known problem, choosing ephemeral ECDH curves
according to the wrong (suboptimal, non-FIPS) criteria.
Modified Files: ssl3con.c ssl3ecc.c sslimpl.h
2006-04-13 23:08:18 +00:00
1cfdf61890
Add and use new -2 option for strsclnt to disable SSL2 compatible client
...
hellos, so we can stress test TLS hello extensions. Bug 333559.
r=julien.pierre,rrelyea
2006-04-13 22:43:31 +00:00
b95ecf558f
Bugzilla Bug 330114: corrected the checks for the PKCS #1 v1.5 padding
...
string and the length of the data (hash). r=nelsonb,relyea.
2006-04-13 22:12:17 +00:00
6493a984f5
Fix for 333657 . Increase maximum RSA key size to 8192 bits in freebl. r=nelson
2006-04-12 05:37:52 +00:00
258c59ba66
[Bug 332272] add core detection functionality to all.sh; r=nelson
2006-04-12 01:14:27 +00:00
90d708c409
Bugzilla Bug 331413: assert that the worker threads empty the jobQ before
...
they terminate. Fix a socket leak when the SSL_ImportFD call in
handle_connection fails. r=nelson.bolyard.
2006-04-11 21:12:28 +00:00
c65c61b8c5
Implement new API for registering and deregistering shutdown callback functions.
...
Patch by Bob Relyea and Nelson Bolyard. r=rrelyea,nelson Bug 326482.
2006-04-08 05:11:55 +00:00
424fabe58a
Bug 333090: CKM_DH_PKCS_KEY_PAIR_GEN always fails. r=nelson, sr=rrelyea
...
Patch contributed by Andreas.Sterbenz@sun.com
2006-04-08 05:05:01 +00:00
bbd7fa2247
WORKAROUND: disable all the ECDH_RSA cipher suites tests, since all those
...
tests require a cert with an EC public key and an RSA signature, and the
test scripts do not presently generate such a cert.
This workaround can be backed out when the real fix is available.
Bug 332222. r=neil.williams
2006-04-08 04:28:32 +00:00
1c0c7bbeb8
bug 331648, signed/unsigned bug submitting CRMF cert requests
...
r=rrelyea, sr=nelson
2006-04-07 11:41:18 +00:00
1f32c2cf8f
Implement generic support for TLS Hello Extensions. Bug 226271. r=vipul
2006-04-07 06:24:07 +00:00
7ceb91038f
Fix for bug 311164 . Initialize stan cert store object early to fix a race condition. r=nelson
2006-04-07 05:49:04 +00:00
b532759c4f
Fix for bug 315793 . Make shlibsign run in the OBJDIR rather than the source directory . r=nelson
2006-04-06 06:22:02 +00:00
7c86f12851
Fix for bug 315798 . run bltest and rsaperf from source directories in the QA . r=nelson
2006-04-06 06:19:41 +00:00
acfe04a6dd
Don't negotiate an ECDH_RSA cipher suite when the server's only ECDH cert
...
has an ECDSA signature. bug 332350. r=vipul.gupta.
2006-04-06 04:40:49 +00:00
51b246188b
Partial fix for bug 332348 . Add PR_POLL_EXCEPT to a PR_Poll . Allows tstclnt to wake up if server goes away. r=wtchang
2006-04-06 01:49:03 +00:00
53b9b7ff2f
Fix shell script error that caused undetected QA failures. Bug 311931.
...
r=nelson.bolyard,alexei.volkov
2006-04-05 19:35:47 +00:00
779a0beabf
Add new -i (ignore errors) command line option to strsclnt. Strsclnt now
...
stops soon after the first error unless the -i option is given.
Strsclnt and tstclnt now look for an environment variable named
NSS_DEBUG_TIMEOUT, and if present, its value is used as a timeout time
for all socket IO operations. Bug 332348. r=julien.pierre.
2006-04-04 07:31:46 +00:00
edbca07369
Eliminate duplicated header files in cmd/SSLsample. Bug 332633.
...
r=julien.pierre
Modified Files: SSLsample/client.mn SSLsample/server.mn lib/manifest.mn
Removed Files: SSLsample/NSPRerrs.h SSLsample/SECerrs.h SSLsample/SSLerrs.h
2006-04-04 01:56:27 +00:00
482dc1a71e
David Baron fix for valgrind report of UMR r=wtchang sr=Nelson
2006-04-04 01:01:51 +00:00
fecbcf26d6
Define alerts and error codes for TLS Hello extensions. Bug 226271.
...
r=julien.pierre
2006-04-04 00:32:27 +00:00
c152a5f5fa
Bug 332381 pk12util fails to import key/cert onto LunaSA HSM
...
r=nelson
2006-03-31 21:35:37 +00:00
41fd37565a
Bug 236613: change to MPL/LGPL/GPL tri-license.
2006-03-31 04:41:00 +00:00
2cef28020c
bug 309701 Softtoken C_CreateObject() should not require
...
CKA_NETSCAPE_DB attribute to be present
r=alexei
2006-03-31 00:38:48 +00:00
f6290f423b
From Bug 331279.
...
Free ECDHE Ephemeral key. Fixes server-side leak.
r=julien r=alexei
2006-03-30 21:07:22 +00:00
39ee00370d
Fix for 330068 . Be more verbose in strsclnt error cases
2006-03-29 22:35:44 +00:00
209577ded2
331515: selfserv Bus error on 3DES ciphersuites; r=julien, sr=nelson
2006-03-29 07:23:40 +00:00
b6762d713e
Remove comment in ssl.sh that messes execution. Part of fix for bug 331413.
2006-03-29 06:54:56 +00:00
01fe9ff1bf
Fix for bug 330068 . Increment counter variable atomically. Be more verbose. r=nelson
2006-03-29 05:05:09 +00:00
bd3cb7e1ef
Partial fix for bug 331413 . Allow selfserv to be tested for reference leaks. r=nelson
2006-03-29 05:03:10 +00:00
0224b3a860
318970 wtc fix for RSA fipstest using RSA_HashSign r=neilW sr= brelyea
2006-03-25 23:45:23 +00:00
c8e770c69d
Bug 321350 Implement optimized code for NIST Suite B elliptic curves
...
r=douglas r=vipul
2006-03-24 22:55:51 +00:00
a9beb655f0
Backout changes for bug 321350
...
Implement optimized code for NIST Suite B elliptic curves
Those changes broke the build on Solaris. r=Sheriff Nelson
2006-03-24 09:08:24 +00:00
e72ce470d4
321350 Implement optimized code for NIST Suite B elliptic curves
...
r=douglas.
2006-03-23 19:55:37 +00:00
e13e6cc7f7
Bug 238051 Enable SSL session reuse for ECC cipher suites
...
r=nelson r=thomas.
patch in bug + white space changes suggested by nelson.
2006-03-22 19:18:30 +00:00
2bfdfe5969
Updated previous patch with douglas's input. (still bug 323817
...
Truncation of hashes for ECDSA should be done at bit level, not octet level).
r= vipul r=douglas
2006-03-22 19:02:06 +00:00
01ef3de28a
Bug 273637 3 locks in softoken have unsafe initialization
...
r=alexi r=julien
2006-03-21 19:36:53 +00:00
dd7e2a2cf6
Correct bug entry:
...
25683 EC param parsing error not propagated correctly
r=andreas.
2006-03-21 19:33:52 +00:00
6a7da6374e
Backing out previous changes that invalid or incorrect log entries for this
...
patch.
2006-03-21 19:30:10 +00:00
e182cdf8e2
*** empty log message ***
2006-03-21 19:23:30 +00:00
c385e5088d
Bug 273637 3 locks in softoken have unsafe initialization
...
r=alexi r=julien
2006-03-21 02:28:48 +00:00
6c95b75b6a
Avoid stack overflow while generating primes. Bug 310145. r=wtchang
2006-03-19 05:09:30 +00:00
5f90fef71c
Bug 238051 Enable SSL session reuse for ECC cipher suites
...
r=nelson
2006-03-17 21:15:09 +00:00
14c38aa668
Bug 329072 client sometimes fails to authenticate despite having cert
...
r= nelson
2006-03-17 20:44:23 +00:00
9e18a1acf3
Bug 323817 Truncation of hashes for ECDSA should be done at bit level, not octet level
...
r=vipul.gupta@sun.com
2006-03-17 16:58:06 +00:00
11b860880e
Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails
...
Use SEC_GetSignatureAlgorithmOidTag() to map to the signature oid.
r=wtc
2006-03-15 21:46:24 +00:00
2b42f9feb9
Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails
...
patch makes SHA1 the default hashing for RSA rather than MD5.
patch by wtc r=rrelyea.
2006-03-15 21:42:21 +00:00
aab12ab3a8
bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined
...
r=wtc
2006-03-15 19:22:32 +00:00
c783f88c97
bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined
...
r=wtc
2006-03-15 19:13:12 +00:00
2996640c67
Bug 324448. Convert mpi_x86.asm to mpi_x86_asm.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre sr=nelson@bolyard.com
2006-03-10 06:48:46 +00:00
d42549b7ac
Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
2006-03-09 23:50:43 +00:00
41a9b174bd
Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre sr=nelson@bolyard.com
2006-03-09 23:46:45 +00:00
19a46702bf
Bug 329002. fix cert reference leak. r=alexei.volkov,rrelyea
2006-03-09 23:38:57 +00:00
3203ada5f3
Bugzilla 324887: merge ECC and non-ECC QA test scripts.
...
Add return code and error message for ssl_stress and ssl_cov.
r=vipul, sr=nelson.
2006-03-08 00:47:28 +00:00
a0ed51d33e
Bugzilla Bug 329575: ECPoint_mul should multiply a point by the group order
...
faithfully because this operation is required by the public key validation
algorithm. r=douglas.stebila,vipul.gupta.
2006-03-08 00:19:34 +00:00
d679dc6d35
Bugzilla Bug 320578: added a new function ec_GenerateRandomPrivateKey to
...
generate a random private key without bias using the algorithm of FIPS
186-2 Change Notice 1, and use it to generate EC private key d and ECDSA
ephemeral private key k. The patch is contributed by Douglas Stebila
<douglas@stebila.ca> and improved by me. r=douglas.stebila,vipul.gupta.
2006-03-06 23:48:39 +00:00
85a72075f3
Bugzilla Bug 324887: The previous checkin introduced a comment bug. A
...
comment line must begin with exactly one '#' character followed by white
space.
2006-03-03 22:10:30 +00:00
f1ca8f1fd1
Bugzilla Bug 324887: merged ECC and non-ECC QA test scripts and removed
...
ECC QA test scripts. The patch is written by Vipul Gupta and Christophe
Ravel of Sun. r=wtc,nelsonb,jpierre
Modified Files:
cert/cert.sh smime/smime.sh ssl/ssl.sh ssl/sslauth.txt
ssl/sslcov.txt ssl/sslstress.txt tools/tools.sh
Removed Files:
fixtests.sh cert/eccert.sh smime/ecsmime.sh ssl/ecssl.sh
ssl/ecsslauth.txt ssl/ecsslcov.txt ssl/ecsslstress.txt
tools/ectools.sh
2006-03-03 20:06:03 +00:00
de8be1e067
Bugzilla bug 326482: code cleanup: ssl3_NewKeyPair should not create a key
...
pair with only one key. r=nelson.bolyard.
2006-03-03 18:48:09 +00:00
aed20ed068
Bugzilla bug 326482: removed incorrect comments. r=nelson.bolyard.
2006-03-03 18:45:54 +00:00
ac042bff56
Fix standalone mpi Makefile to build on OS/X. Bug 327405.
...
Patch contributed by Douglas Stebila <douglas@stebila.ca>
2006-03-03 04:21:56 +00:00
5e2ca73982
Bug 327677. Fix cert object reference leak. r=julien.pierre,nelson
...
Patch contributed by Alexei Volkov <alexei.volkov.bugs@sun.com>
2006-03-03 04:00:49 +00:00
57a3c7aa21
Bug 236613: change to MPL/LGPL/GPL tri-license.
2006-03-02 22:48:55 +00:00
b69eb504ce
Bugzilla Bug 320589: fixed PK11_SignatureLen to return the exact length of
...
ECDSA signatures. Backed out a temporary workaround in
ECDSA_SignDigestWithSeed. Made other changes related to signature lengths.
r=relyea,nelson.bolyard.
Modified Files:
cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secsign.c
freebl/ec.c pk11wrap/pk11obj.c pk11wrap/pk11pub.h
ssl/ssl3con.c
2006-03-02 00:07:08 +00:00
8696bd362e
Bugzilla Bug 326403: use "Mozilla Foundation" as the manufacturer or
...
producer of our shared libraries/DLLs. Removed the optional copyright
notices from our DLLs. r=relyea,jpierre.
Modified Files:
lib/ckfw/builtins/constants.c lib/ckfw/builtins/nssckbi.rc
lib/ckfw/capi/nsscapi.rc lib/ckfw/dbm/instance.c
lib/freebl/freebl.rc lib/nss/nss.rc lib/smime/smime.rc
lib/softoken/pkcs11.c lib/softoken/softokn.rc lib/ssl/ssl.rc
2006-03-01 19:44:36 +00:00
f95ae18fe7
Remove mp_init/mp_clear calls (and potential mallocs,frees and zeros)
...
in tight loops for bug #326482
r=nelson
2006-03-01 17:09:17 +00:00
6a21aaef0e
bug 326482 Implement the derive sensitive only for those derivation functions that require it.
...
fixes a performance problem with ECDH.
r=wtchang, nelson.
2006-03-01 16:12:22 +00:00
340adcfbfa
Bug 327405. Correct EC keypair Generation. r=vipul.gupta,nelson.bolyard
...
Patch contributed by Douglas Stebila <douglas@stebila.ca>
2006-03-01 07:06:24 +00:00
56fc6fa166
Bug 328262. Increment ssl3 statistics counters atomicly. r=wtchang,julien.pierre
2006-03-01 05:45:45 +00:00
7986d13c5b
Bugzilla Bug 327978: removed obsolete files, superseded by the ecl
...
directory. r=douglas.stebila.
Removed files: GF2m_ecl.c GF2m_ecl.h GFp_ecl.c GFp_ecl.h
2006-02-28 23:43:19 +00:00
a86941f281
Bug 326315. Warning Reduction. On TRUNK only. r=Julien.Pierre
2006-02-28 05:56:07 +00:00
74a0a6eea2
Bug 325683. EC param parsing error not propagated correctly.
...
Fix the cases that Andreas identified. Patch by Andreas.Sterbenz@sun.com
r=Julien,wtchang,nelson
2006-02-28 05:44:56 +00:00
4b1a1b7cb3
Bug 326690. Enable modutil to configure default slots for the
...
AES, SHA256 or SHA512 mechanisms. r=rrelyea,julien.pierre
2006-02-28 05:16:00 +00:00
52395a4abb
Bug 327105. Reintroduce an old bug that prevents _DHE_ cipher suites
...
from being negotiated by NSS servers. Necessary until the server side
of the _DHE_ cipher suites is fully implemented. r=Julien,Wan-Teh,Vipul
2006-02-28 04:20:23 +00:00
7a0f0203c7
Bugzilla Bug 320038: checked in a better fix that allows us to write
...
EC domain parameters as hex strings with leading 00's. r=douglas.stebila
sr=relyea.
Modified files: softoken/ecdecode.c freebl/ecl/ecl-curve.h
2006-02-27 23:18:34 +00:00
wtchang%redhat.com
glen.beasley%sun.com
nelson%bolyard.com
douglas%stebila.ca
alexei.volkov.bugs%sun.com
kaie%kuix.de
julien.pierre.bugs%sun.com
rrelyea%redhat.com
christophe.ravel.bugs%sun.com
gerv%gerv.net