wtc%netscape.com
6b642a0259
Bugzilla bug 122712: moved the two newly exported symbols to the right
...
place.
2002-02-01 21:16:43 +00:00
ian.mcgreer%sun.com
f2b84b4779
fix cert leak found by client auth
2002-02-01 18:18:13 +00:00
relyea%netscape.com
677076a9bb
Fix memory leak.
2002-02-01 17:57:05 +00:00
ian.mcgreer%sun.com
c124ec770d
bug 121628, persistent cache of hardware token certs
2002-02-01 17:25:15 +00:00
wtc%netscape.com
3b6cd1ed50
Bugzilla bug 119340: install a SIGTERM handler on Linux for debugging.
2002-02-01 05:57:49 +00:00
relyea%netscape.com
24ec92e64a
certutil -L now opens the DB ReadOnly. Add the '-X' option to the test is still
...
testing the R/W case.
2002-02-01 02:28:32 +00:00
relyea%netscape.com
f462f5a326
Make the following functions open the databases Readonly:
...
ListCerts PrintHelp ListKeys ListModules CheckCertValidity Version
Add an option (-X) to restore the old behaviour of openning the Databases R/W
2002-02-01 02:26:40 +00:00
ian.mcgreer%sun.com
8939b19afe
have certutil shutdown cleanly so purify is easier to deal with
2002-01-31 19:27:07 +00:00
relyea%netscape.com
82e1be6d15
Fix thread local storage leak.
2002-01-31 19:18:55 +00:00
javi%netscape.com
2bfd470c5f
Make the projects depend on a .exp file that doesn't start with '_' so that we know the .exp file wasn't generated by CodeWarrior.
2002-01-31 19:10:46 +00:00
javi%netscape.com
f67c98ba51
Use LoadableRoots.mcp.exp instead of _*.exp so that we know
...
the .exp wasn't generated by CodeWarrior.
2002-01-31 19:05:27 +00:00
ian.mcgreer%sun.com
9a03239427
couple of fixes
2002-01-31 17:28:49 +00:00
ian.mcgreer%sun.com
7f14d4e1fb
bug 90518, implement methods for dumping the state of the cache and temp cert store in NSS 3.4
2002-01-31 17:08:32 +00:00
ddrinan%netscape.com
92c85311ed
Checkin for relyea. Call CERT_DestoryCertificateList instead of CERT_DestroyCertList
2002-01-31 04:00:12 +00:00
relyea%netscape.com
3adedc6688
Fix certlist memory leak.
2002-01-31 02:19:43 +00:00
wtc%netscape.com
eeef12be2f
Bugzilla bug 119340: backed out the fix. We are still seeing the
...
"selfserv process not detectable" errors on Linux and I don't have
time to get to the bottom of it.
Modified files:
cmd/selfserv/selfserv.c tests/common/init.sh tests/ssl/ssl.sh
2002-01-31 02:03:57 +00:00
wtc%netscape.com
dc7133e6ef
Bugzilla bug 122712: temporarily export two additional symbols for Mozilla
...
static build.
2002-01-31 01:03:21 +00:00
sonja.mirtitsch%sun.com
7b6f72131a
put the sleep 30 back into the linux ssl test to give the selfserv time
...
to free the socket...
2002-01-31 01:01:47 +00:00
relyea%netscape.com
5862391160
restore checks for critical extenstions and fail if we have any we don't
...
recognize. Just remove the bogus check that v2 crls must have critical extensions
2002-01-31 00:42:43 +00:00
sonja.mirtitsch%sun.com
37e7d17867
next thry for bug 115200
2002-01-31 00:34:04 +00:00
relyea%netscape.com
71237064fc
Set token flag when saving the CRLs so they actually get put into the database!
2002-01-31 00:18:09 +00:00
relyea%netscape.com
622f360f9e
Fix searching code so it can find CRL's
2002-01-31 00:16:29 +00:00
sonja.mirtitsch%sun.com
81a33a5f77
another try for QA / RE / tinderbox problem bug #115200
2002-01-30 04:37:35 +00:00
relyea%netscape.com
f62b6e82b9
Unsigned values are always greater than '0'!
2002-01-30 00:48:24 +00:00
relyea%netscape.com
9a66c5386d
Indexes are zero based. Do our realloc when index == size (not after).
2002-01-30 00:25:34 +00:00
relyea%netscape.com
c66d0660f4
1) put some defensive programming so we don't crash on invalid der.
...
2) set the start offset correctly for multi-byte lengths when decoding sets
and sequences
2002-01-30 00:24:12 +00:00
relyea%netscape.com
9d74b35058
Restore idempontency to nss_init*
2002-01-29 22:27:15 +00:00
relyea%netscape.com
25bac17639
Built-ins set the ulValueLen to -1 to indicate an unknown attribute type.
2002-01-29 21:12:13 +00:00
relyea%netscape.com
341b18d960
Token and slot names are already converted to NULL terminated strings in the slot structure
2002-01-29 21:10:50 +00:00
relyea%netscape.com
41c843a2f4
Don't leak memory in the arena pool
2002-01-29 19:00:47 +00:00
relyea%netscape.com
f28551787a
More 'pretty print' improvements. Decode context specific data a little more.
2002-01-29 17:50:27 +00:00
ian.mcgreer%sun.com
abec66154f
changes related to bug 115660
...
* fipstoken will only force authentication for object-related functions when the object is a private or secret key
* certutil does not authenticate to token when in FIPS and only doing cert-related operations
* QA does not provide password to certutil when doing cert-related operations in FIPS tests
2002-01-29 17:30:22 +00:00
relyea%netscape.com
6b96fe3f81
(sigh) not only do we need to find the objects, we need to be able to read
...
them as well.
2002-01-28 23:28:29 +00:00
sonja.mirtitsch%sun.com
a4ddcd12a1
fixed typo
2002-01-28 20:59:23 +00:00
jpierre%netscape.com
aacd33fea8
Fix for 69556 - remove expired CA "Verisign Class 4 Primary CA"
2002-01-28 20:43:37 +00:00
sonja.mirtitsch%sun.com
8b6bfb5e27
attempted fix for bug 115200, tinderbox reports false failures on machines
...
that run 32 and 63 bit tinderboxes
2002-01-28 19:35:53 +00:00
relyea%netscape.com
a90e3c83fb
Fix crashing problem when trying two switch from fips to non-fips and back.
...
bug 119214.
2002-01-28 19:18:41 +00:00
wtc%netscape.com
d2e3ab55fb
Bugzilla bug 100447: on BSD/OS 4.2 and 4.3, we have problem calling
...
safe_popen in a threaded program. So we don't call safe_popen when
we obtained some entropy from /dev/urandom. Thanks to lidl@pix.net
for the bug report and the fix.
2002-01-27 00:14:59 +00:00
wtc%netscape.com
63dd3ebaf8
Bugzilla bug 111206: make the Solaris version test flexible so that we
...
don't need to add a new test for each new Solaris release.
2002-01-26 16:19:51 +00:00
relyea%netscape.com
6aadda5c42
Fix PBE_Context failure by making sure CKM_PBA is it's own keygen type.
2002-01-26 01:20:50 +00:00
relyea%netscape.com
0f9ca80078
Fix 2 memory leaks and a UMR.
...
(keyhand needs to be initialized before we start xor hashing)
Free item and time elements which are transparently allocated for us.
2002-01-26 00:16:03 +00:00
relyea%netscape.com
cfab32ea30
Change Sha1_hash to a simple XOR hash for building key handles for token
...
objects.
2002-01-25 19:09:34 +00:00
relyea%netscape.com
e760d6d971
Fix key leak in S/Mime.
2002-01-25 19:08:19 +00:00
relyea%netscape.com
a7723c632d
Fix bug 115660. Note that fixing the bugs necessitates fixing the test
...
cases as well. The test case was depending on the failure to read certs to
detect the failure to read keys. Now certutil returns a failure if no keys
are found. This also means that the FIPS test after the key and cert
has been deleted should expect a failure to list any keys.
2002-01-25 19:03:17 +00:00
relyea%netscape.com
0117ba048e
Too agressive on fixing leaks;). This one isn't a leak.
...
bob
2002-01-24 21:33:51 +00:00
ian.mcgreer%sun.com
f41585bde3
fix aix issues
2002-01-24 15:45:55 +00:00
relyea%netscape.com
ebaa5bbf31
Fix NT crash on startup. (load builtins after trust domain gets initialized).
2002-01-24 02:46:07 +00:00
nicolson%netscape.com
951f75091e
Fix 118679: PK11SDR_Encrypt fails if not logged into token.
2002-01-24 01:06:22 +00:00
ian.mcgreer%sun.com
75f5e9ba76
implement istemp and isperm in case clients depend on it, make sure certs own a reference to their slot and then free it
2002-01-24 00:58:02 +00:00
ian.mcgreer%sun.com
82686aae13
fix leakage in traversal functions that convert certs to CERTCertificates
2002-01-24 00:34:03 +00:00