nelsonb%netscape.com
66dbe61852
One more fix for HPUX and Solaris.
2003-01-16 01:44:43 +00:00
jpierre%netscape.com
bd1c6e2d6f
Fix incorrect usage of QuickDER . See bug 160805 comment 16
2003-01-16 00:56:10 +00:00
nelsonb%netscape.com
52c0e7f513
Fix compilation error. This file is only compiled on 2 platforms.
2003-01-16 00:55:53 +00:00
nelsonb%netscape.com
191e2830e1
Switch from the old vendor-defined mechanism numbers to the new official
...
PKCS 11 mechanism numbers. These numbers will appear in v2.20.
2003-01-16 00:43:58 +00:00
nelsonb%netscape.com
48e7307212
Enforce that softoken's mechanisms are used only with the PKCS 11
...
functions that they're defined to work with.
2003-01-16 00:28:05 +00:00
nelsonb%netscape.com
b4debe71ef
Complete the addition of AES Key Wrap to blapi in freebl.
2003-01-16 00:15:21 +00:00
nelsonb%netscape.com
f8ffa9b2df
Remove the implementation of CKM_KEY_WRAP_LYNKS from softoken.
2003-01-16 00:14:07 +00:00
nelsonb%netscape.com
c74e098433
aeskeywrap.c - implement AES Key Wrap algorithm from RFC 3394
2003-01-14 22:16:04 +00:00
glen.beasley%sun.com
63fb2576a6
solaris pkg version
2003-01-14 20:26:36 +00:00
bishakhabanerjee%netscape.com
f96d105632
Bug 171263 - NSS test apps to check return value of NSS_Shutdown
2003-01-14 01:03:21 +00:00
bishakhabanerjee%netscape.com
3f8b500ca5
Bug 171263 - NSS test apps shd check return value of NSS_Shutdown
2003-01-13 22:36:39 +00:00
glen.beasley%sun.com
a448ee37c6
solaris pkging support
2003-01-13 20:35:36 +00:00
glen.beasley%sun.com
0ba6c54296
solaris pkg support
2003-01-13 19:44:21 +00:00
glen.beasley%sun.com
d362c01efd
Solaris pkg support
2003-01-13 19:43:15 +00:00
relyea%netscape.com
6418dccb57
Check for Empty CRL list as well.
...
Bug 164501.
2003-01-10 19:09:46 +00:00
relyea%netscape.com
536df41f30
Declare PK11_TokenRefresh()
2003-01-10 17:53:01 +00:00
relyea%netscape.com
449530f503
Add the ability to generate certs with multiple DNS names.
2003-01-09 22:59:42 +00:00
glen.beasley%sun.com
173ecd55e4
Solaris pkg copyright
2003-01-09 22:53:13 +00:00
relyea%netscape.com
5c9c0d249b
Remember to include the global: tag
2003-01-09 18:44:26 +00:00
relyea%netscape.com
e99b341301
backport NSS 3.7 fixes to the tip.
2003-01-09 18:15:11 +00:00
wtc%netscape.com
22b938bb47
Bug 186201: should handle a null 'environ' pointer, which can happen on
...
Solaris if NSS is loaded with dlopen() by an executable linked with the
RTLD_GROUP flag.
2003-01-09 04:34:31 +00:00
wtc%netscape.com
ec08fd394a
Bug 187629: do not refresh a CERTCertificate if the same instance of a
...
cached cert is added to the collection.
2003-01-09 04:29:01 +00:00
dbaron%dbaron.org
b9083989bb
Bug 178643: Remove uses of NS_INIT_ISUPPORTS, since it is no longer needed. r=timeless sr=jag
2003-01-08 23:19:20 +00:00
dbaron%dbaron.org
84f33505f2
Bug 178643: Remove uses of NS_INIT_ISUPPORTS, since it is no longer needed. r=timeless sr=jag
2003-01-08 22:45:23 +00:00
wtc%netscape.com
39a4a9cc69
Bug 186586: If at NSS shutdown there are still certs in the cert caches,
...
cause NSS shutdown and the next NSS initialization to fail but do not
destroy the cert caches (and the crypto context and trust domain containing
them) to avoid a crash if the NSS client destroys the certs later. New
error codes needed to be added to indicate the failure of NSS shutdown and
NSS initialization due to this cause.
2003-01-08 21:58:29 +00:00
wtc%netscape.com
cd80470fa2
Bug 186586: If at NSS shutdown there are still certs in the cert caches,
...
cause NSS shutdown and the next NSS initialization to fail but do not
destroy the cert caches (and the crypto context and trust domain containing
them) to avoid a crash if the NSS client destroys the certs later. New
error codes needed to be added to indicate the failure of NSS shutdown and
NSS initialization due to this cause.
Modified Files:
base/errorval.c nss/nssinit.c pki/pki3hack.c pki/pki3hack.h
pki/pkistore.c pki/pkistore.h pki/tdcache.c pki/trustdomain.c
util/secerr.h
2003-01-08 21:48:47 +00:00
wtc%netscape.com
209f994fd3
Need to call SSL_ClearSessionCache before calling NSS_Shutdown.
2003-01-08 21:40:52 +00:00
bishakhabanerjee%netscape.com
c50dfa28ad
checking return value of NSS_Shutdown. Bug 171263
2003-01-07 22:53:13 +00:00
bishakhabanerjee%netscape.com
1b239a8ed0
checking return value of NSS_Shutdown. Bug 171263
2003-01-07 22:31:36 +00:00
bishakhabanerjee%netscape.com
985e092196
new revision: 1.19; previous revision: 1.18
2003-01-07 22:29:54 +00:00
bishakhabanerjee%netscape.com
2430651225
set and exported NSS_STRICT_SHUTDOWN. Bug 171263
2003-01-07 22:10:10 +00:00
kaie%netscape.com
8ac4991f54
b=184940 Enable additional SSL ciphers, add configuration UI
...
r=javi sr=jaggernaut
2003-01-07 00:58:24 +00:00
kaie%netscape.com
b6f99631b7
b=177260 Fix known leaks in PSM, track blocking PSM UI, track open SSL sockets
...
r=javi sr=darin
2003-01-06 22:23:49 +00:00
kairo%kairo.at
a6f4446e42
change all localeVersion strings, as well as brand.dtd/region.dtd to 1.3b; bug 185698, r=tao, sr=blizzard
2003-01-03 19:57:47 +00:00
dbaron%fas.harvard.edu
a34c46af22
Change my email address from dbaron@fas.harvard.edu to dbaron@dbaron.org. Comment changes only.
2003-01-01 23:53:20 +00:00
nicolson%netscape.com
9460ab9be1
Upgrade version from 3.2 to 3.3.
...
Uncomment MessageDigest implementations (doh!).
2003-01-01 02:58:22 +00:00
nicolson%netscape.com
5e1bcfd6d2
Add DigestTest to all.pl.
...
Make DigestTest and SigTest return nonzero error code on failure.
2003-01-01 02:57:50 +00:00
seawood%netscape.com
bbb7dec113
Add hack upon dependency hack to Avoid constant NSS rebuilds when pulling from CVS.
2002-12-28 05:50:17 +00:00
seawood%netscape.com
d5efcdfb6d
Start installing GRE libraries & components into a separate dist/gre directory as part of the default build.
...
Bug #186241 r=dougt
2002-12-28 01:15:07 +00:00
wtc%netscape.com
6eb33bd89e
Bug 183612: added some comments.
2002-12-24 02:25:36 +00:00
wtc%netscape.com
158222292b
Bug 183612: SECMOD_InitCallOnce() and SECMOD_CleanupCallOnce() should be
...
declared and defined with an argument list of "(void)" instead of "()".
Modified Files: pk11cert.c secmodi.h
2002-12-19 07:03:39 +00:00
nicolson%netscape.com
76ceb77be4
Fix 186097: ProofOfPossession.encode() has paranoid assertion.
2002-12-19 02:31:38 +00:00
wtc%netscape.com
b5e025dea3
Bug 183612: renamed some new functions to be consistent with existing
...
function names containing SubjectKey and PublicKey. Moved internal
functions to private headers and use the lowercase cert_ prefix for the
internal functions for subject key ID mapping hash table. r=nelsonb.
2002-12-19 00:26:34 +00:00
relyea%netscape.com
04963b62bb
Bug 186058
2002-12-18 23:55:53 +00:00
nicolson%netscape.com
a7f090b8a6
Partial fix for 184754: assertion violation in get_token_certs_for_cache.
...
Don't assert if we fail to lookup the cert we just imported. It could
be a bug in the PKCS #11 driver. Instead, throw an exception.
2002-12-18 23:14:48 +00:00
kaie%netscape.com
5245de3429
Temporary fix for bug 182803.
...
While this masks the reported crashes, this is nothing more than a workaround patch.
As long as this patch is in place, any attempt to do profile switching at run time will fail.
We need real fixes for bug 181230 and 177260.
r=javi sr=darin
2002-12-18 12:50:35 +00:00
wtc%netscape.com
ee51cff828
Bug 183612: fixed the bug that 'extra' may be used uninitialized. r=javi.
2002-12-18 02:06:01 +00:00
wtc%netscape.com
8c5bcf00c1
Set NSS version to 3.8 Beta on the trunk.
2002-12-17 23:04:46 +00:00
wtc%netscape.com
a67a4928f3
Export CERT_DestroyOCSPResponse in 3.7. Moved HASH_GetHashObjectByOidTag,
...
HASH_GetHashTypeByOidTag, and SECITEM_ItemsAreEqual from 3.7 to 3.8.
2002-12-17 23:02:53 +00:00
relyea%netscape.com
2602912c3d
Make sure the session is protected over PKCS #11 calls.
2002-12-17 18:22:38 +00:00
wtc%netscape.com
1c4cebd09f
Need to test for null pointers before destroying the lock and condition
...
variable. If NSS initialization fails, this lock and condition variable
may not get created.
2002-12-17 02:47:46 +00:00
wtc%netscape.com
5a045514c6
I made a mistake in the previous checkin. certdb.h doesn't need to be
...
included because the new function CERT_FindCertBySubjKeyID is declared in
cert.h.
2002-12-17 02:08:51 +00:00
wtc%netscape.com
12860a5501
Bug 183612: added support for looking up a cert by subject key ID and
...
creating a CMS recipient info from a subject key ID. The patch was
contributed by Javi Delgadillo <javi@netscape.com>. r=relyea, wtc.
Modified Files:
certdb/cert.h certdb/certdb.c certdb/certdb.h certdb/certv3.c
certdb/stanpcertdb.c nss/nss.def nss/nssinit.c
pk11wrap/pk11cert.c pk11wrap/pk11func.h pk11wrap/secmod.h
pki/pki3hack.c smime/cms.h smime/cmslocal.h smime/cmspubkey.c
smime/cmsrecinfo.c smime/cmssiginfo.c smime/cmst.h
smime/smime.def
2002-12-17 01:39:46 +00:00
dougt%netscape.com
8d74b970e3
Allow caller to obtain cert. r=mstoltz, javi. sr=dveditz, b=179016
2002-12-13 22:26:43 +00:00
kaie%netscape.com
3880b9cdab
b=182258 Give separate signature validity and sender address mismatch feedback
...
r=javi sr=bienvenu
2002-12-13 20:47:32 +00:00
relyea%netscape.com
3e6d515d45
Increment the tmpbuf pointer to the correct index point
2002-12-13 19:02:13 +00:00
nicolson%netscape.com
f5c66b92aa
Fix 180827: Update version strings for JSS 3.3.
2002-12-13 06:12:30 +00:00
wtc%netscape.com
d212358f78
Bug 185074: open the files we just did a "chmod -w" on once to work around
...
a Mac OS X NFS bug. Subsequent opens will see the file is readonly with no
delay.
2002-12-13 02:06:34 +00:00
nelsonb%netscape.com
49ca4445ae
Clean up command line options parsing and Usage message.
2002-12-13 01:25:45 +00:00
relyea%netscape.com
88da4209b7
Use correct sense of the timeout value.
2002-12-13 00:25:21 +00:00
nelsonb%netscape.com
a4ffefd8be
Support SHA256, SHA384, and SHA512 hashes in NSS.
2002-12-12 06:05:45 +00:00
relyea%netscape.com
15ce24e7da
Don't break solaris or linux (add the ';')
2002-12-11 17:56:49 +00:00
relyea%netscape.com
986ee61360
Export new command to pull for token change events.
2002-12-11 17:53:20 +00:00
relyea%netscape.com
79fda8d95f
Program to test smartcard removal and insertion detection.
2002-12-11 17:44:53 +00:00
relyea%netscape.com
b3956b6cb3
Add token removal blocking function.
2002-12-11 17:43:24 +00:00
thayes%netscape.com
8d4be901b5
Bug 184557: Allow usage specified on command line (-u) to be used to validate
...
certificates used for signing (-S option). Also add special handling for
nickname "NONE" in the -Y option. This specifies that no certificate and
encryption key preference should be included in the signature object.
2002-12-11 01:44:37 +00:00
wtc%netscape.com
79592c0eb3
Bug 180294: moved the OpenVMS build from the POSIX subsystem to native
...
VMS (GNV). The patch is contributed by Colin Blakes <colin@theblakes.com>.
Modified files: OpenVMS.mk config.mk rules.mk nsinstall/nsinstall.c
2002-12-10 20:27:45 +00:00
relyea%netscape.com
abf1a9ae02
Sigh, this is what was breaking the Linux builds... incorrect initializer.
2002-12-10 18:09:16 +00:00
relyea%netscape.com
5a83c35578
Make SubjectAltEncode a public function. Fixes build breakage in Linux
2002-12-10 17:41:16 +00:00
relyea%netscape.com
1e02f10049
Add test cases for multiple email addresses in a single certificate.
2002-12-10 17:19:00 +00:00
relyea%netscape.com
7ba80c7f5c
Add code to create multiple email addresses in a single cert.
2002-12-10 17:18:06 +00:00
relyea%netscape.com
fa12d2382e
Export the AltSubjectEncode function so our test programs can build certs
...
with multiple email addresses.
2002-12-10 17:15:15 +00:00
relyea%netscape.com
962c8ddfb3
Create profiles for all the email addresses in a certificate.
2002-12-10 17:14:17 +00:00
relyea%netscape.com
603a1de75c
Fix padding value.
2002-12-06 19:11:57 +00:00
nelsonb%netscape.com
aad3764409
Expunge dead code.
2002-12-05 22:16:22 +00:00
nelsonb%netscape.com
62b8516bb9
Don't compile the .c files in lib/pki1 on the trunk. These files are used
...
only in Stan.
2002-12-05 22:15:36 +00:00
wtc%netscape.com
5fa50f792d
Bug 39494: added a check to prevent buffer overflow. r=mcgreer,nelsonb.
2002-12-04 23:41:49 +00:00
wtc%netscape.com
89bb676522
Fixed the build breakage of const unsigned char[] and unsigned char *
...
mismatch on the Mac (compiler warnings on other platforms) by adding
(unsigned char *) typecasts. r=relyea. (Bug 183350)
2002-12-04 00:28:56 +00:00
kaie%netscape.com
2fda7d4793
b=182158 JavaScript error when pressing Ok in "Cert already exists" dialog - setWindowName is not defined
...
r=kaie sr=alecf
2002-12-03 15:27:27 +00:00
wtc%netscape.com
f64d594319
Bug 181913: disable the makefile rule for .s for OS/2 so that .asm files
...
are used when there are same-named .s files in the same directory. The
patch is contributed by Javier Pedemonte <pedemont@us.ibm.com>.
2002-12-02 22:57:21 +00:00
kaie%netscape.com
da1410e6e1
b=115294 Support S/Mime signing only configuration / relax certificate configuration requirements
...
r=javi sr=sspitzer
2002-11-28 18:31:03 +00:00
wtc%netscape.com
0def6ffdbe
Bug 181878: fixed two more bugs in the new code to support multiple email
...
addresses per certificate. r=nelsonb.
2002-11-27 01:28:03 +00:00
wtc%netscape.com
b78a21a145
Bug 182086: on Mac OS X, ranlib needs to be rerun after static libraries
...
are moved.
2002-11-26 23:05:56 +00:00
relyea%netscape.com
c40360b6a9
More review changes,
...
Fix incorrect return in pcertdb.c
2002-11-26 22:14:56 +00:00
relyea%netscape.com
25a292272c
Incorporate some of Nelson's review changes.
...
Collapse all the profile data into an array for easier processing when printing out.
2002-11-26 21:03:18 +00:00
relyea%netscape.com
7ee6bebcae
Move mac build changes from 3.6 branch back to the trunk
2002-11-26 21:00:31 +00:00
wtc%netscape.com
fd00621e5c
Bug 180228: moved CERT_CRLCacheRefreshIssuer from the NSS_3.6.1 section to
...
the NSS_3.7 section.
2002-11-26 19:21:55 +00:00
relyea%netscape.com
c296a3a69f
Incorporate Terry's and Nelson's reviews.
2002-11-26 18:27:25 +00:00
nelsonb%netscape.com
4bdff07d6f
Back out my last change.
2002-11-26 07:07:20 +00:00
nelsonb%netscape.com
c4ae2fc1f4
Eliminate bug due to uninitialized variable index. Eliminate leak.
...
Remove lots of warnings about signed/unsigned and assigning int to uchar.
2002-11-26 05:58:51 +00:00
relyea%netscape.com
58543311f7
Bug 181878 allow multiple email addresses to point to a single subject record.
2002-11-26 00:13:54 +00:00
nelsonb%netscape.com
b415060cf8
Put the nss 3.7 section after the nss 3.6.1 section.
2002-11-21 23:22:52 +00:00
ian.mcgreer%sun.com
72edde5172
bug 172247, don't allow import of duplicate issuer/serial certs
2002-11-21 20:43:15 +00:00
nelsonb%netscape.com
e2809aa4e8
Add tests for sha256, sha384, and sha512.
2002-11-21 05:44:41 +00:00
nelsonb%netscape.com
6b8d4e688b
Add test modes for sha256, sha384 and sha512.
...
Fix the -c (restart) option for testing hashes. It works with all hashes.
When the -d option is given along with the -i or -o filename option,
and the filename is not absolute, the filename is taken to be relative to
the the mode's test directory.
2002-11-21 05:44:03 +00:00
nelsonb%netscape.com
924b265d37
Use the 32-bit code on Solaris x86 platforms, too.
2002-11-21 02:54:04 +00:00
nelsonb%netscape.com
f8fead2f58
Add test cases from FIPS 180-2.
2002-11-21 02:26:50 +00:00
nelsonb%netscape.com
c9be494de9
Back out revision 1.2, which was a workaround for a c preprocessor bug
...
in a certain version of the c compiler for Dec/Compaq Alpha OSF1.
The file now requires one of these compilers on that platform:
Compaq C V6.3-132 or Compaq C V6.4-214 (dtk)
2002-11-20 05:25:58 +00:00
nelsonb%netscape.com
6986b980f7
Optimization: change macros to do only 32-bit arithmetic on platforms
...
with only 32-bit registers.
2002-11-20 00:48:09 +00:00
jpierre%netscape.com
e965a244ec
Fix for bug 180894 - don't assert in ShutdownCRLCache()
2002-11-19 21:37:50 +00:00