d7b153e145
Bug 127740: added a comment to explain the thread yield in
...
ssl3_SendApplicationData.
2002-09-30 20:51:05 +00:00
0051b0f950
Bug 153380: document the default values for the SSL options.
2002-09-18 22:32:19 +00:00
58167f8fae
Fix NT build
2002-09-07 02:48:45 +00:00
78ade1e7f9
Fix compiler warnings
2002-09-07 01:48:46 +00:00
e179fe8904
Fix 164126: makefile build error.
...
Change the NSS module name from "security" to "nss".
2002-09-06 16:38:56 +00:00
a897ae16a9
Bugs 166734 and 166785: fixed compiler warnings reported by gcc on Linux.
...
The patch for this checkin is attached to bug 166785.
2002-09-06 00:27:52 +00:00
644319e67f
Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529.
2002-08-09 21:53:17 +00:00
3843ef99c0
Fix bug 160207 by changing the error alerts we send for failed decryption.
2002-08-07 20:01:51 +00:00
65f7eca2f9
Checking in riceman+bmo@mail.rit.edu's patch for bug 133702
2002-07-30 20:57:44 +00:00
43480112f3
Initialize type field to clear off purify warnings.
2002-06-25 23:00:59 +00:00
071fe9ae9c
Fix bug 135261. Create symbolic names for the values 2 and 3 for the
...
SSL_REQUIRE_CERTIFICATE option. Value 2 has always been the default.
New Value 3 is appropriate for servers that want to re-request, but
still not require, client-auth from a client with whom an SSL session
is already established.
2002-06-22 01:40:32 +00:00
47b432c0f5
Bug 153380: TLS is enabled by default now.
2002-06-21 18:25:46 +00:00
607f12501a
bug 145322, reduce the number of PKCS#11 sessions used in SSL connections, implement new function PK11_SaveContextAlloc
...
r=relyea
2002-06-19 15:21:37 +00:00
5b50af192d
Bugzilla bug 145178: added OpenBSD build support. The patch is contributed
...
by Christopher Seawood <seawood@netscape.com>.
Modified Files: coreconf/config.mk sslmutex.c sslmutex.h
Added Files: coreconf/OpenBSD.mk
2002-05-18 03:24:17 +00:00
ec52ca8b50
Bugzilla bug 138532: use pipes instead of semaphores for NetBSD, which does
...
not have semaphore.h. Thanks to Chris Seawood <seawood@netscape.com> for
the patch. Modified files: sslmutex.h sslmutex.c
2002-05-16 13:36:03 +00:00
272f7f9153
Fixed build breakage on BeOS -- made the ifdef match the one in sslsnce.c.
2002-05-16 05:32:30 +00:00
e4f5bd3810
Bugzilla bug 127062: use PR_MSG_PEEK instead of MSG_PEEK.
2002-05-01 00:21:50 +00:00
ba4e5d74fc
Fix build error on NT.
2002-04-04 01:41:19 +00:00
f9e447b703
Make libSSL build for WinCE.
2002-04-04 00:14:12 +00:00
15d009d11b
If an error occurs when attempting to write previously buffered data on
...
a socket, do not override the error code with PR_WOULD_BLOCK_ERROR.
bug 132899.
2002-03-23 01:06:08 +00:00
4ef12717ce
bug 132889, sense of boolean 'blocking' is reversed within the HANDLE_ERR macro of ssl_WriteV
2002-03-22 22:48:02 +00:00
26f5c0d8ba
Add new bits to struct returned by SSL_GetCipherSuiteInfo. Bug 132438.
2002-03-22 21:43:43 +00:00
1ced872252
Bugzilla bug 129408: final adjustments of the NSS 3.4 *.def files. List
...
the symbols in alphabetical order. In softokn.def, changed "Sofoken 3.4
release" to "NSS 3.4 release, which is what we use in other *.def files.
Added seven new PKCS7 exports to smime.def. r=relyea
Modified files: nss.def smime.def softokn.def ssl.def
2002-03-07 21:18:49 +00:00
208526857e
Bug 127785 - checked in cseawood's patch
2002-02-27 21:49:41 +00:00
681ff24ca9
1. the sslSecurityInfo and sslGather structs are now part of the sslSocket
...
rather than being pointed to by the sslSocket. This reduces the number
of malloc/free calls, and greatly reduces pointer fetches, and null
pointer checks. sslGather and sslSecurityInfo are separately initialized.
2. SSL_ResetHandshake no longer deallocates and reallocates the sslSecurityInfo and all its subcomponents.
3. Many places that formerly did not check for memory allocation failures
now do check, and do the right thing when allocation failed.
2002-02-27 04:40:17 +00:00
4bfe43978d
Change ssl_GetPeerInfo to no longer assume that an address is IPV6 if
...
it's not IPv4. Fixes a bug on systems that don't support IPV6, but
do support other address families.
2002-02-26 00:28:15 +00:00
6c79ece2fe
Bugzilla bug 70217: ported NSS to BeOS. The patch is contributed by
...
Christopher Seawood <seawood@netscape.com>.
2002-02-22 04:23:30 +00:00
ddf21869a1
Bugzilla bug 125730: fixed OpenVMS build breakage. Thanks to Colin Blakes
...
<colin@theblakes.com> for the patch.
odified Files: sslmutex.c sslmutex.h sslsnce.c
2002-02-16 02:52:07 +00:00
cb5e5f1f21
Bugzilla bug 112198: use the -dylib_file ld option to link the ssl3 and
...
smime3 dylibs and the NSS tools so that they can find the indirectly
referenced libsoftokn3.dylib. Define and export DYLD_LIBRARY_PATH. The
patch is contributed by Brian Ryner <bryner@netscape.com>. r=wtc,beard.
Modified Files:
coreconf/Darwin.mk nss/cmd/platlibs.mk nss/lib/smime/config.mk
nss/lib/ssl/config.mk nss/tests/common/init.sh
2002-02-15 23:38:47 +00:00
e023b4422a
Change most coreconf and NSS makefiles to use OS_TARGET (which can
...
be overridden via an environment variable) rather than OS_ARCH.
This is a precursor to more flexibility in cross-platform builds.
Bug 104541.
2002-02-15 22:54:08 +00:00
da15146da7
Bugzilla bug 112198: Port NSS to Mac OS X (Darwin). The patch is
...
contributed by Javier Pedemonte <pedemonte@alumni.utexas.net>.
Modified Files:
coreconf/config.mk coreconf/nsinstall/nsinstall.c
coreconf/nsinstall/pathsub.c nss/lib/freebl/unix_rand.c
nss/lib/ssl/unix_err.c
2002-02-10 05:24:49 +00:00
494eb9ffcc
Plug one of the leaks reported in bugzilla bug 123081
2002-02-04 23:15:11 +00:00
531a6a7a9d
Changes required to get the trunk of NSS building on the Mac.
2002-01-09 23:22:23 +00:00
4b50e9da08
Fix 114787 - ssl_recv crashes in client. bogus assert. reviewed by nelson
2001-12-12 21:44:04 +00:00
fe2e2268dc
1) NT need the err= defines, use macros to set it appropriately (or not).
...
2) restore missing sec = function
2001-12-07 02:30:53 +00:00
256cddee89
emulate does not include PORT_ functions, use PR_ASSERT
2001-12-07 02:04:24 +00:00
75f3b7599d
Clean up compilier warnings on Solaris and Linux, most particularly:
...
1) Implicit declaration of function.
2) Possibly unitialized variables.
These warnings have indicated some real problems in the code, so many changes
are not just to silence the warnings, but to fix the problems. Others were
inocuous, but the warnings were silenced to reduce the noise.
2001-12-07 01:36:25 +00:00
3b03ab07c0
Bugzilla bug 111294: make NSS build on QNX6 (Neutrino). The patch was
...
contributed by Dave Inglis <dinglis@qnx.com>. r=wtc.
Modified Files:
coreconf/config.mk coreconf/nsinstall/nsinstall.c
nss/lib/freebl/unix_rand.c nss/lib/ssl/unix_err.c
Added Files:
coreconf/QNX.mk
2001-12-04 18:20:57 +00:00
35f75a1a56
Fixes for OS/2 build
2001-11-22 00:46:48 +00:00
ab7e346965
changes for PSM to compile against NSS shared libraries.
...
Move SSL and S/MIME to the new common MAPFILE usage
2001-11-21 18:00:28 +00:00
6d66aee5ea
Add localCert field to sid cache entry so SSL_LocalCertificate can
...
remember the certs it sent back when it established the SSL session.
Bug 78959. Also, hold on the certs in the received cert chain until
the SSL connection is complete. This makes it easier for applications
to look at the entire cert chain after the handshake is over without
having to write their own custom authCert callbacks. It is backwards
compatible with older NSS SSL applications, but may use more memory.
2001-11-09 05:39:36 +00:00
d2f7dcc16c
Implement new function SSL_LocalCertificate(). Bug 78959.
2001-11-08 02:15:38 +00:00
e27189dd1d
Land BOB_WORK_BRANCH unto the tip.
...
remove lots of depricated files.
move some files to appropriate directories (pcertdb *_rand
associated headers to soft token, for instance)
rename several stan files which had the same name as other nss files.
remove depricated functions.
2001-11-08 00:15:51 +00:00
9740e66d2f
Reimplement SSL_GetChannelInfo. Add new function SSL_GetCipherSuiteInfo().
...
Also, implement new ciphersuite preference order. Bug 78959.
2001-11-02 04:24:28 +00:00
f941ac3116
Put better comments by the table of preconfigured policies.
2001-11-02 04:00:27 +00:00
e5822372e8
Don't crash on SSL2 failures.
2001-10-31 20:03:29 +00:00
874e400e1a
Fix bug 107619. The new DHE_ ciphersuites were enabled by default.
...
Now they are disabled by default, for compatibility with NSS 2.0.
2001-10-30 21:09:47 +00:00
673f014f10
Fix Linux build
2001-10-08 18:49:17 +00:00
80858924e3
Fix for 102251 . Just updating a comment
2001-10-06 00:16:56 +00:00
b163eeba5a
Fix for 102251 . Implement 2-level locking for the SSL session cache to properly support SSL server applications using Windows NT fibers . Also optimize and enhance portability of locking primitives for single-process servers on all platforms by using a PRLock instead of cross-process locks . Reviewed by wtc
2001-10-06 00:14:33 +00:00
wtc%netscape.com
jpierre%netscape.com
nicolson%netscape.com
nelsonb%netscape.com
bishakhabanerjee%netscape.com
relyea%netscape.com
ian.mcgreer%sun.com
javi%netscape.com