Граф коммитов

4283 Коммитов

Автор SHA1 Сообщение Дата
alexei.volkov.bugs%sun.com e9899fa07e 365966: infinite recursive call in VFY_VerifyDigestDirect. r=nelson 2007-01-09 00:37:20 +00:00
nelson%bolyard.com ce323f5d17 Bug 321584. When importing a PKCS#12 file that has no friendly names,
construct new friendly names, so the import will succeed. r=neil.williams
2007-01-06 06:05:50 +00:00
wtchang%redhat.com 3108c0b56e Bug 51429: in safe_pclose, we may call kill + waitpid(WNOHANG) 1000 times
without giving the child any time to receive the SIGKILL signal and
terminate, break out of the while loop, and leave the child behind as a
zombie process.  The patch is contributed by John G. Myers
<jgmyers@speakeasy.net> and Tomas Mraz of Red Hat. r=neil.williams,relyea
2007-01-06 01:45:56 +00:00
wtchang%redhat.com 4085de657d Bug 51429: make sure that safe_popen cannot fail (in the parent process)
after fork succeeded.  r=neil.williams
2007-01-06 01:18:24 +00:00
nelson%bolyard.com 15963b1ed8 Fix crash when importing (unwrapping) private key with no label.
Bug 335481. r=julien,rrelyea
2007-01-05 09:46:55 +00:00
nelson%bolyard.com 5dbd7fac02 When storing new CRL, Find old CRL and if it can be decoded, delete it.
Bug 363749. r=wtchang,alexei.volkov
2007-01-05 01:32:18 +00:00
alexei.volkov.bugs%sun.com 37cdb4f755 359331: modutil -changepw strict shutdown failure. r=nelson 2007-01-05 00:33:54 +00:00
alexei.volkov.bugs%sun.com 94b26cb24b 353895: klocwork Null ptr derefs in pki/pkibase.c. r=nelson 2007-01-05 00:25:05 +00:00
alexei.volkov.bugs%sun.com 19b31abc6a 353912: Misc klocwork bugs in lib/ckfw. r=nelson 2007-01-05 00:23:14 +00:00
alexei.volkov.bugs%sun.com ae1b9b3386 353780: Klocwork NULL ptr dereferences in pkcs11.c. r=nelson 2007-01-05 00:21:45 +00:00
alexei.volkov.bugs%sun.com 916c3e90b4 340218: Coverity 910, memory leaks in CRMF code. r=nelson 2007-01-05 00:00:50 +00:00
alexei.volkov.bugs%sun.com bb79adf6e0 301496: NSS_Shutdown failure in p7sign. r=nelson 2007-01-04 22:42:41 +00:00
alexei.volkov.bugs%sun.com 0f8727be10 342461 - verify signature on an OCSP response without intermediate decoding and encoding. r=nelson 2007-01-04 20:38:29 +00:00
alexei.volkov.bugs%sun.com 2f4800c822 Bug 158242: PK11_PutCRL is very memory inefficient. r=nelson, julien 2007-01-04 20:25:41 +00:00
alexei.volkov.bugs%sun.com 3827e72683 Bug 363987: crlutil does not change thisUpdate date when creating a modified CRL. r=nelson,neil 2007-01-04 20:18:58 +00:00
alexei.volkov.bugs%sun.com 126e48ff41 Bug 363480 ocspclnt needs option to take cert from specified file. r=nelson 2007-01-04 20:07:33 +00:00
neil.williams%sun.com 382bf24c53 Bug 339906, r=nelson, sec_pkcs12_install_bags passes uninitialized variables 2007-01-03 23:02:12 +00:00
nelson%bolyard.com 33b126149c Bug 353904. Fix potential NULL ptr deref. Klocwork. r=alexei.volkov 2007-01-03 12:57:41 +00:00
nelson%bolyard.com a2f54df6a6 Bug 354423. Get the right string length. R=alexei.volkov,rrelyea 2007-01-03 12:54:10 +00:00
nelson%bolyard.com d0fdcbf71c Improve checking of received SSL2 records.
Bug 364319, bug 364323. r=rrelyea, wtchang
2007-01-03 05:30:33 +00:00
wtchang%redhat.com db39c54c49 Bug 236613: added newline at end of file. 2006-12-12 23:26:40 +00:00
gerv%gerv.net caae487a24 Bug 236613: change to MPL/LGPL/GPL tri-license. 2006-12-11 09:45:41 +00:00
wtchang%redhat.com 9f7d451f99 Bugzilla Bug 358785: merged the mozilla/security/nss/lib/libpkix from the
NSS_LIBPKIX_BRANCH onto the NSS trunk.  Approved by rrelyea and nelsonb.
2006-12-09 00:27:38 +00:00
wtchang%redhat.com 6defe87ad2 Bugzilla Bug 363073: verify that the peer's ephemeral public key is the
type we expect before using it.  r=nelsonb
Modified Files: ssl3con.c ssl3ecc.c
2006-12-08 22:37:29 +00:00
wtchang%redhat.com 36db94292d Bugzilla Bug 357197: a small but subtle change to reject a hash algorithm
identifier with bogus 'parameters', and a large but straightforward change
of renaming function arguments and improving comments to clarify the
asymmetry between the two certID arguments. r=nelsonb
2006-12-08 22:10:52 +00:00
wtchang%redhat.com 3628ebbf9c Bugzilla Bug 345482: changed abspath to core_abspath to avoid conflict with
the built-in abspath function of GNU make 3.81.  The patch is contributed
by Benjamin Smedberg <benjamin@smedbergs.us>. r=wtc,christophe.ravel
Modified Files:
	coreconf/rules.mk nss/cmd/shlibsign/Makefile
	nss/lib/freebl/Makefile nss/lib/pk11wrap/Makefile
2006-12-07 01:57:18 +00:00
wtchang%redhat.com 5a40d49a00 Bug 332350: fixed a typo in the comment. 2006-12-06 23:00:17 +00:00
wtchang%redhat.com f43e37d11b Bugzilla Bug 342795: the call-once functions need to store the error code
on failure so that the error code can be retrieved later. r=nelsonb and
alexei.volkov.
2006-12-06 21:50:40 +00:00
christophe.ravel.bugs%sun.com ca95de552d Bugzilla 362857 Simplify the NSS version string definition.
r+ wtchang
2006-12-06 21:14:54 +00:00
wtchang%redhat.com 3af4185ee2 Bugzilla Bug 362857: simplified the NSS and softoken version string
definition.  r=christophe.ravel,nelsonb.
Modified files: nss/nss.h softoken/softkver.h
2006-12-06 19:51:30 +00:00
kaie%kuix.de 7d28513beb Bug 362967, export SECMOD_DeleteModuleEx
r=rrelyea, r=wtchang
2006-12-06 17:56:04 +00:00
kaie%kuix.de 75410ae8da follow up checkin, make sure entries in nss.def are sorted 2006-12-06 17:32:47 +00:00
kaie%kuix.de c2228af20b Export two NSS functions, required for:
Bug 307319, Certificate details show incorrect public key information
r=rrelyea
2006-12-06 17:12:41 +00:00
wtchang%redhat.com 93d4e5a864 Bugzilla Bug 357197: when we compare hash algorithm identifiers, allow the
'parameters' to be either NULL or missing.  r=nelsonb,relyea
2006-12-06 02:25:52 +00:00
wtchang%redhat.com 6fcff517e0 Bugzilla Bug 358248: SSL_ShutdownServerSessionIDCache should stop the
LockPoller thread.  r=nelsonb,relyea
2006-12-06 01:36:08 +00:00
wtchang%redhat.com f430d03a0b Bugzilla Bug 362173: The NSS cryptographic module (the softoken and freebl
shared libraries) should have its own version numbers. r=nelsonb and
neil.williams.
Modified Files:
	lib/freebl/freebl.rc lib/freebl/freeblver.c
	lib/softoken/manifest.mn lib/softoken/pkcs11.c
	lib/softoken/softkver.c lib/softoken/softokn.rc
Added Files:
	lib/softoken/softkver.h
2006-12-04 23:31:35 +00:00
alexei.volkov.bugs%sun.com e3c549190e 343231: certutil issues certs for invalid requests. r=nelson 2006-12-01 01:10:03 +00:00
wtchang%redhat.com e02f09041f Bugzilla Bug 358785: fixed incorrect x509PolicyConstraints OID and typos in
a comment. r=relyea
2006-11-30 00:27:28 +00:00
wtchang%redhat.com d3cc76a662 Bugzilla Bug 361089: fixed memory leaks in mp_bdivmod. r=douglas.stebila 2006-11-30 00:21:04 +00:00
christophe.ravel.bugs%sun.com 394cd26fbd 335454: Unable to find library 'libsoftokn3.sl' on HP-UX 64 bit
r=nelson, sr=wan-teh
2006-11-17 01:30:16 +00:00
neil.williams%sun.com b82ec2ed15 bug 360818, set RPATH for signtool, signver
r=wan-teh, nelson
2006-11-17 01:16:53 +00:00
nelson%bolyard.com 3ce134cf12 Export two new functions that were added in NSS 3.11:
SSL_ForceHandshakeWithTimeout and SSL_ReHandshakeWithTimeout
Bug 127960. r=alexei.volkov,wtchang
2006-11-15 00:14:42 +00:00
wtchang%redhat.com f6144cb805 Bugzilla Bug 359484: made the fix for bug 341707 work for the SSL2 client
hello case. r=nelsonb,alexei.volkov
2006-11-14 01:09:54 +00:00
wtchang%redhat.com 492039f374 Bugzilla Bug 357197: fixed the fallthrough case in ocsp_CertIDsMatch. The
patch is contributed by Steve Parkinson <sparkins@redhat.com>. r=nelson,wtc
2006-11-13 18:16:58 +00:00
kaie%kuix.de 7820ce6270 Bug 356309, CertVerifyLog in CERT_VerifyCertificate terminates early on expired certs
r=rrelyea
2006-11-08 18:41:53 +00:00
kaie%kuix.de 5d1ba10a53 Bug 359280, fix typo in mozilla/security/nss/cmd/lib/SSLerrs.h
r=nelson
2006-11-02 22:07:57 +00:00
alexei.volkov.bugs%sun.com 07c83e0e53 353763: klocwork Null ptr dereferences in pk11cert.c. r=nelson 2006-10-31 00:31:53 +00:00
alexei.volkov.bugs%sun.com 0625316efb 353865: klocwork Null ptr deref in softoken/pk11db.c. r=nelson 2006-10-31 00:29:43 +00:00
alexei.volkov.bugs%sun.com 33f9b12c9f 353902: klocwork bugs in stanpcertdb.c. r=nelson 2006-10-31 00:24:38 +00:00
alexei.volkov.bugs%sun.com 341b92ca26 additional fix for 353909: klocwork ptr dereference before NULL check in devutil.c. r=nelson 2006-10-31 00:21:24 +00:00
alexei.volkov.bugs%sun.com 1deb23d955 353909: klocwork ptr dereference before NULL check in devutil.c. r=nelson 2006-10-31 00:05:04 +00:00
julien.pierre.bugs%sun.com 280bcba7da Fix for bug 350948 . freebl macro change gives 1% improvement in RSA on Solaris AMD64 2006-10-26 22:22:57 +00:00
nelson%bolyard.com a723cfe070 Fix leaks in softoken's argument string parsin. r=rrelyea,alexei.
Bug 339173. Modified Files: pk11db.c pk11pars.h
2006-10-25 18:47:02 +00:00
wtchang%redhat.com 61caebbe8a Bugzilla Bug 351140: handle the case that params->field is an invalid
value.  The patch is by Ryan Jones <sciguyryan+bugzilla@gmail.com>.
r=nelsonb,wtc.
2006-10-24 00:05:43 +00:00
alexei.volkov.bugs%sun.com 966e3934b8 265784: SSL interoperability regression testing. r=nelson
To turn on the feature, set and export env variable
IOPR_HOSTADDR_LIST to space separated interoperability server fqdn list
2006-10-23 23:46:47 +00:00
wtchang%redhat.com 91dfa64226 Bugzilla Bug 341122: it's not necessary to test slot->slotLock because
slot->slotLock cannot be NULL at that point.  The patch is contributed by
Ryan Jones <sciguyryan+bugzilla@gmail.com>. r=nelsonb,wtc.
2006-10-23 22:56:31 +00:00
wtchang%redhat.com c491737eac Bugzilla Bug 339907: fixed the leak of sha1cx. The patch is contributed by
Ryan Jones <sciguyryan+bugzilla@gmail.com>. r=nelsonb,wtc.
2006-10-23 21:24:38 +00:00
wtchang%redhat.com 4c82545467 Bugzilla Bug 351897: Say a != b instead of (! (a == b)). r=jpierre. 2006-10-23 20:46:50 +00:00
wtchang%redhat.com dbb6ae1065 Bugzilla Bug 357015: it turns out the code is correct. it's the comment
that's wrong.
2006-10-18 23:45:32 +00:00
wtchang%redhat.com a9aa5230b7 Bugzilla Bug 357015: added a comment to describe the actual number of files
ReadSystemFiles reads.
2006-10-18 23:05:59 +00:00
slavomir.katuscak%sun.com 951283acfa Fix for previous patch. 2006-10-18 17:59:40 +00:00
wtchang%redhat.com a3c9bc84e3 Bugzilla Bug 356595: noted in the comment that GetCurrentProcess returns
a constant pseudo handle. Added a GetCurrentThreadId call. r=glen.beasley,
neil.williams.
2006-10-17 17:58:06 +00:00
slavomir.katuscak%sun.com 9ed6996ee7 1. Adding timestamps + total time measure for testing subscripts
2. Enables using TESTS variable from system environment (for example TESTS=cert
./all.sh will test only cert tests)
2006-10-17 09:48:17 +00:00
wtchang%redhat.com 7e38c40e38 Bugzilla Bug 355297: changed the way we reseed the RNG so that we modify
all the 256 bits of XKEY. Define struct SHA256ContextStr in the new header
sha256.h so that prng_fips1861.c can use it. r=nelsonb,jpierre.
Modified files: manifest.mn prng_fips1861.c sha512.c
Added file: sha256.h
2006-10-13 16:54:04 +00:00
glen.beasley%sun.com 081ca00a78 355297 rng update checking in wan-tehs patch 2006-10-12 22:48:19 +00:00
glen.beasley%sun.com 390792a63d 356073 C_GetTokenInfo should return CKR_CRYPTOKI_NOT_INITIALIZED if not initialized r=nelson,sr=neil 2006-10-12 22:27:16 +00:00
wtchang%redhat.com 51cd930242 Bugzilla Bug 355297: added new function RNG_SystemRNG, which gets random
bits from the system RNG, and use it for the very first RNG_RandomUpdate
call in rng_init so that we initialize the RNG's XKEY with high quality
entropy. r=jpierre,relyea.
Modified Files:
	os2_rand.c prng_fips1861.c secrng.h unix_rand.c win_rand.c
2006-10-12 02:23:49 +00:00
wtchang%redhat.com ffca628aba Bugzilla Bug 354900: code cleanup -- consolidates some duplicate code,
checks for NULL pointers, and renames the SFTK_IS_SECURE_KEY_OBJECT macro.
r=glen.beasley,relyea.
Modified files: fipsaudt.c fipstokn.c
2006-10-10 22:28:48 +00:00
alexei.volkov.bugs%sun.com 3b9a109d82 353908: klocwork OOM crash in tdcache.c. r=nelson 2006-10-09 22:29:12 +00:00
alexei.volkov.bugs%sun.com a8f4eefb65 353903: klocwork oom crash in softoken/keydb.c. r=nelson 2006-10-09 22:28:07 +00:00
alexei.volkov.bugs%sun.com f4e98c2852 353888: klockwork IDs for ssl3con.c. r=nelson 2006-10-09 22:26:44 +00:00
alexei.volkov.bugs%sun.com 12668703e3 353777: Klocwork Null ptr dereferences in pk11obj.c. r=nelson 2006-10-09 22:25:36 +00:00
alexei.volkov.bugs%sun.com 164d4c2907 353773: klocwork Null ptr dereferences in pk11nobj.c. r=nelson 2006-10-09 22:24:18 +00:00
alexei.volkov.bugs%sun.com 76dff9c91f 353760: klocwork null pointer dereference in p7decode.c. r=nelson 2006-10-09 22:22:33 +00:00
alexei.volkov.bugs%sun.com 4cc26433e6 353742: klocwork null ptr dereferences in pki3hack.c. r=nelson 2006-10-09 22:21:41 +00:00
alexei.volkov.bugs%sun.com c93ff6a5f2 353742: klocwork null ptr dereference in ocsp_DecodeResponseBytes. r=nelson 2006-10-09 22:19:58 +00:00
alexei.volkov.bugs%sun.com 6d632efb6c 353741: klocwork cascading memory leak in mpp_make_prime. r=nelson 2006-10-09 22:18:38 +00:00
alexei.volkov.bugs%sun.com c8c6d0c339 353739: Klocwork Null ptr dereferences in instance.c. r=nelson 2006-10-09 22:16:59 +00:00
alexei.volkov.bugs%sun.com a555a69765 353423: Klocwork bugs in nss/lib/pk11wrap/dev3hack.c. r=nelson 2006-10-09 22:14:04 +00:00
alexei.volkov.bugs%sun.com eb392ed332 353416: Klocwork 76593 null ptr deref in nssCryptokiPrivateKey_SetCertificate. r=nelson 2006-10-09 22:11:44 +00:00
alexei.volkov.bugs%sun.com a168b0dbcc 353375: Klocwork 76513 - Null ptr deref in nssCertificateList_DoCallback. r=nelson 2006-10-09 18:51:55 +00:00
alexei.volkov.bugs%sun.com a7edef3088 353371: Klocwork 91117 - Null Pointer Dereference in CERT_CertChainFromCert. r=nelson 2006-10-09 18:45:02 +00:00
alexei.volkov.bugs%sun.com fc1706cbbb 338226: Core files may be reported in the wrong tests for SSL, or missed. r=neil 2006-10-09 17:42:58 +00:00
wtchang%redhat.com 4d79de55ec Bugzilla Bug 354565: improved an error message as suggested by Neil
Williams.
2006-10-06 23:50:48 +00:00
wtchang%redhat.com 80b56f2e83 Bugzilla Bug 115951: libfreebl3.dylib should be built as a loadable bundle
just like libnssckbi.dylib because it is only dynamically loaded.  We don't
have the import library freebl3.lib on Windows either. r=julien.pierre
2006-10-06 23:45:39 +00:00
wtchang%redhat.com 6f25509ce4 Bugzilla Bug 354900: audit the modifications, accesses, deletions, and
additions of cryptographic keys.  r=glen.beasley,relyea.
Modified files: fipstokn.c manifest.mn pkcs11c.c softoken.h
Added file: fipsaudt.c
2006-10-02 22:48:31 +00:00
wtchang%redhat.com 73f3b25c8c Bugzilla Bug 351482: fail if some of the needed functions don't exist.
r=glen.beasley,relyea.
2006-10-02 22:04:33 +00:00
julien.pierre.bugs%sun.com 81bb832c8f Fix for bug 115951 . Separate BL_Cleanup and BL_Unload . r=wtchang,nelson 2006-10-02 21:15:46 +00:00
nelson%bolyard.com 7c15fcda7a Bug 354384. Fix some (not all) of the reference leaks in vfyserv.
Also, improve usage message.  r=alexei,julien
2006-10-01 05:47:18 +00:00
nelson%bolyard.com d4df5484a3 Bug 354313. Fix leak in STAN_GetCERTCertificateName. r=julien,rrelyea 2006-10-01 05:37:24 +00:00
alexei.volkov.bugs%sun.com 0154446bb1 353413: Klocwork 76541 free uninitialized pointer in CERT_FindCertURLExtension. r=nelson 2006-09-29 20:20:21 +00:00
alexei.volkov.bugs%sun.com 956aaa0068 353374: Klocwork 76494 - Null ptr derefs in CERT_FormatName. r=nelson 2006-09-29 20:18:55 +00:00
alexei.volkov.bugs%sun.com c89f85e085 341114: Coverity 517 SECU_ParseCommandLine leaks optstate. r=nelson 2006-09-29 20:15:47 +00:00
alexei.volkov.bugs%sun.com 2e23193e89 354403:: nssList_CreateIterator returns pointer to a freed memory if the function fails to allocate a lock. r=nelson 2006-09-29 20:13:30 +00:00
alexei.volkov.bugs%sun.com 11e889d320 354008: klocwork bugs in freebl. r=nelson 2006-09-29 20:12:21 +00:00
alexei.volkov.bugs%sun.com 21c4f16a00 321600: SECMOD_LoadPKCS11Module calls to PR_GetLibraryName must use PR_FreeLibraryName. r=wtchang. Patch provided by timeless. 2006-09-29 19:53:07 +00:00
alexei.volkov.bugs%sun.com 3041f905ec 314178: NSS PK11 Module: certificates with unknown AlgorythmIdentifiers make ThunderBird crashed. r=nelson, sr=julien 2006-09-29 19:38:42 +00:00
kaie%kuix.de 4336a5d2a5 Bug 350200, Implement DHMAC based POP (ProofOfPossession)
r=rrelyea, r=nelson
2006-09-28 22:25:55 +00:00
wtchang%redhat.com fd110ec6de Bugzilla Bug 354565: detect SHA tests that are incorrectly configured for
BIT oriented implementations. r=glen.beasley
2006-09-28 16:37:25 +00:00
julien.pierre.bugs%sun.com 24aa200d7b Fix for bug 115951 . Unload freebl dynamic library . Also fix tiny one-time leak of library name . r=nelson,wtchang 2006-09-28 00:40:55 +00:00
julien.pierre.bugs%sun.com fe0ff2999b Fix for bug 353910 . Memory leak in RNG_RNGInit . r=nelson, wtchang 2006-09-26 22:20:18 +00:00
julien.pierre.bugs%sun.com ddd30a01be Fix for bug 351897 . OCSP check should only be skipped for certificateStausResponder usage alone . 2006-09-26 20:18:57 +00:00
kaie%kuix.de 8713ab7b8f Bug 353422, Klocwork bugs in nss/lib/crmf
r=nelson, r=rrelyea
Patch inspired by Nelson
2006-09-26 18:57:28 +00:00
nelson%bolyard.com ff07e960c1 Fix build bustage caused by previous checkin. 2006-09-25 21:46:06 +00:00
julien.pierre.bugs%sun.com 909e463e76 Fix for bug 353896 . Assert at compile time if NSS_ECC_MORE_THAN_SUITE_B is set. For NSS_3_11_BRANCH and tip. r=nelson, alexei 2006-09-25 20:51:11 +00:00
nelson%bolyard.com 2f72927b06 Unifdef USE_MOZ_THREAD (bug 351510) and remove dead code (bug 351443).
Patch contributed by ehsan.akhgari@gmail.com. r=nelson, alexei.volkov
Modified Files: jarint.h jarsign.c jarver.c manifest.mn
Removed Files: jarevil.c jarevil.h
2006-09-25 19:45:40 +00:00
nelson%bolyard.com c33352aa54 Fix leaks in jarfile.c (bug 338453), jarjart.c (bug 351408), and
jarver.c (bug 337361). Patch contributed by ehsan.akhgari@gmail.com
2006-09-25 19:20:37 +00:00
wtchang%redhat.com a326c3f815 Bugzilla Bug 334914: removed a useless null check. Contributed by
Ryan Jones <sciguyryan+bugzilla@gmail.com>.  r=wtc
2006-09-22 19:02:07 +00:00
wtchang%redhat.com 9fb73060ed Bugzilla Bug 353749: for DSA KAT increased the size of P to 1024 bits
used nistK283 binary field curve KAT. Contributed by Glen Beasley of Sun.
r=wtc.
2006-09-22 18:33:25 +00:00
julien.pierre.bugs%sun.com f7ae527571 Fix for bug 353572. Leak in sftk_OpenCertDB . r=alexei,nelson 2006-09-22 00:19:49 +00:00
julien.pierre.bugs%sun.com 172a1a4154 Fix for bug 353608 . NSS_RegisterShutdown may fail, and appData argument is always NULL . r=wtchang,nelson 2006-09-21 20:08:15 +00:00
alexei.volkov.bugs%sun.com d34ae89a56 201139: SSLTap should display plain text for NULL cipher suites. r=nelson 2006-09-20 22:37:35 +00:00
julien.pierre.bugs%sun.com fa847eba0a Fix for bug 352439 - reference leaks in modutil . r=alexei.volkov 2006-09-15 23:10:13 +00:00
wtchang%redhat.com 8dcf31baf6 Added "Basic ECC" and "Extended ECC" to the NSS version string. 2006-09-15 01:04:40 +00:00
wtchang%redhat.com 915932de14 Import NSPR 4.6.3. 2006-09-15 01:01:21 +00:00
kaie%kuix.de 9827ee91b9 Bug 351756, Add 7 new root CA certs to NSS
r=wtchang
2006-09-12 23:38:40 +00:00
wtchang%redhat.com df5d67c889 Change DecryptSigBlock to return the parsed DigestInfo's length, so
the caller can check it.  Fixed a memory leak on error. r=nelson,rrelyea
bug 351848.
2006-09-12 17:13:20 +00:00
julien.pierre.bugs%sun.com 89010b6a94 Fix for bug 352041 . oom in CERT_DecodeDERCrlWithFlags . r=alexei,nelson 2006-09-11 23:12:30 +00:00
glen.beasley%sun.com 62e437574c 351872 mem leak fix for ecdsa powerupselftest r=julien, sr=wan-teh 2006-09-09 00:24:01 +00:00
julien.pierre.bugs%sun.com 29bca86d06 Fix typo in comment. 2006-09-08 21:24:25 +00:00
julien.pierre.bugs%sun.com e76630a134 Fix for bug 332222 . Add support for mixed ECDH RSA SSL cipher suites. Patch contributed by Slavomir Katuscak . r=julien 2006-09-08 21:15:41 +00:00
wtchang%redhat.com f2a1a681f6 Bugzilla Bug 342582: Use the PKCS #11 headers in NSS on Windows, too. 2006-09-08 00:55:03 +00:00
wtchang%redhat.com 19b2578fa2 Bugzilla Bug 342582: removed a space after "PROGRAM = pk11mode", which
broke the Windows build (because the executable name became pk11mode .exe).
Also removed unnecessary variable definitions.
2006-09-08 00:50:09 +00:00
wtchang%redhat.com 0647084026 Bugzilla Bug 351482: Use audit_log_user_message, if available. Otherwise,
fall back on audit_send_user_message, which exists in older versions of
libaudit.so.0. r=glen.beasley,relyea.
2006-09-08 00:16:53 +00:00
julien.pierre.bugs%sun.com db3c2fdfb7 Bug 348198 : trace startup and shutdown time for selfserv. Patch contributed by Slavomir Katuscak. r=julien,alexei 2006-09-07 23:54:07 +00:00
wtchang%redhat.com f382413f1a Bugzilla Bug 342582: include <stdarg.h> instead of "prprf.h" for va_list,
va_start, etc.
2006-09-07 21:09:24 +00:00
wtchang%redhat.com d704ecc250 Bugzilla Bug 342582: improved PKM_CK_RVtoStr: map our vendor-defined error
codes, and return "unknown error" instead of NULL for unknown error codes.
2006-09-07 20:33:43 +00:00
glen.beasley%sun.com 2d5e80463b 342582 changed RSA modulus and public exponent 2006-09-07 18:35:48 +00:00
glen.beasley%sun.com 5b7fb670f0 342582 AIX runtime error and some cleanup 2006-09-07 18:16:52 +00:00
glen.beasley%sun.com 9a0b0a63eb 342582 removed AIX warnings 2006-09-07 06:09:26 +00:00
glen.beasley%sun.com 944520e643 342582 all test passed msg 2006-09-06 21:50:59 +00:00
glen.beasley%sun.com eb966db896 342582 hpux update 2006-09-06 21:19:54 +00:00
julien.pierre.bugs%sun.com f6998636c2 Fix for bug 351270 . Assertion in unix_rand.c . 2006-09-06 21:07:32 +00:00
nelson%bolyard.com 492710966f Improve the validity tests on the AlgorithmID when verifying a PKCS#1 v1.5
RSA signature.  Bug 351079. r=rrelyea,wtchang.
2006-09-05 09:45:46 +00:00
nelson%bolyard.com 135dffb589 Also trace the DH(E) PMS. bug 349966. r=julien.pierre, wtchang 2006-09-02 18:53:54 +00:00
wtchang%redhat.com a52fd375bf Bugzilla bug 342582: this program may use NSPR but it should not link with
any NSS libraries.
2006-09-01 22:23:34 +00:00
wtchang%redhat.com 20531859de Bugzilla bug 342582: need to set slotID. Other minor fixes. 2006-09-01 22:15:37 +00:00
wtchang%redhat.com bd735b0358 Bugzilla bug 342582: MODULE should be nss so we can include NSS headers. 2006-09-01 22:13:20 +00:00
julien.pierre.bugs%sun.com 8382e02245 Fix for bug 182758 . Use only /dev/urandom on Solaris when available . If not, use libkstat . r=nelson, wtchang 2006-09-01 22:08:52 +00:00
wtchang%redhat.com c89e1aadf1 Bugzilla Bug 349609: sftk_MACUpdate only works with multi-part operations.
r=glen.beasley,relyea.
2006-09-01 17:07:59 +00:00
glen.beasley%sun.com 53cbd62fa5 fix warnins on redhat4 2006-08-31 22:26:58 +00:00
glen.beasley%sun.com 7883876093 initial checkin of pk11mode.c FIPS test program work in progress 2006-08-31 17:55:18 +00:00
nelson%bolyard.com 39ed376b7a When verifying a signed digest, ensure that the digest is DER encoded and
that there is no extra stuff after the DER encoded digest.  Bug 350640.
r=julien.pierre,rrelyea
2006-08-31 03:54:48 +00:00
alexei.volkov.bugs%sun.com d64e3427a6 337013: OOM crash [@ nssArena_Destroy - nssTrustDomain_TraverseCertificatesBySubject][@ nssArena_Destroy - nssTrustDomain_TraverseCertificatesByNickname] Dereferencing possibly NULL "tmpArena". r=nelson, sr=julien 2006-08-30 17:57:20 +00:00
glen.beasley%sun.com 4e8368c564 349965 added ECDSA key gen to power up self test r=wtc 2006-08-29 16:57:18 +00:00
nelson%bolyard.com 9b9542f673 Correctly zero-fill columns in weaved array. r=julien,wtchang. Bug 348359. 2006-08-29 02:41:38 +00:00
wtchang%redhat.com 531fe85b65 Bugzilla Bug 349632: made C_Verify work for multi-part mechanisms.
r=glen.beasley,relyea.
2006-08-26 01:49:48 +00:00
alexei.volkov.bugs%sun.com f28d70066b 330056: seckey_put_private_key leaks memory. r=nelson, sr=wtc 2006-08-25 23:04:15 +00:00
alexei.volkov.bugs%sun.com fdc6b5e64b 304361: smime: possible memory corruption when encoding/decoding smime_encryptionkeypref_template. r=nelson, sr=wtc 2006-08-25 22:26:18 +00:00
wtchang%redhat.com 6053e0ef78 Bugzilla bug 336813: do not set the nonstandard flag CKF_THREAD_SAFE. Set
CKF_DUAL_CRYPTO_OPERATIONS and the new v2.10 flag CKF_TOKEN_INITIALIZED.
r=relyea.
2006-08-24 22:52:21 +00:00
nelson%bolyard.com e356cbee97 re-enable SSLTRACE for keys and (pre)master secrets. Bug 349966. r=rrelyea 2006-08-24 22:10:03 +00:00
julien.pierre.bugs%sun.com a4dde368cc Back out Slavo's patch for bug 332222 in ssl.sh because tinderbox fails. 2006-08-24 19:48:08 +00:00
julien.pierre.bugs%sun.com 602921c658 Allow ssl.sh to support mixed ECC/RSA certs. Patch created by Slavomir Katuscak. r=nelson, rrelyea 2006-08-24 17:48:52 +00:00
julien.pierre.bugs%sun.com f333b2e5a9 Fix for bug 332222 . Allow ssl.sh to support mixed ECC/RSA certs. Patch created by Slavomir Katuscak. r=nelson, rrelyea 2006-08-23 23:32:01 +00:00
julien.pierre.bugs%sun.com a1e82132f0 Fix for bug 349920 . Don't optimize freebl libraries in debug build on Sparc . r=nelson, neil.williams 2006-08-23 22:56:20 +00:00
glen.beasley%sun.com 54fe81481a 349632 C_VerifyUpdate HMAC fix r=wtc,sr=bobR 2006-08-23 21:46:23 +00:00
julien.pierre.bugs%sun.com 45f5a763d7 Fix for bug 225525 . Resolve race assigning NSSCertificate fields which leaked memory and slot reference. r=nelson 2006-08-22 22:54:11 +00:00
nelson%bolyard.com 80a2861232 Fix race in CERT_NewTempCertificate. Bug 341323. r=julien,rrelyea 2006-08-22 03:30:14 +00:00
wtchang%redhat.com 98f2c3bf81 Bugzilla Bug 342476: backed out the previous checkin. Not sure if it's a
good idea.
2006-08-18 23:28:10 +00:00
wtchang%redhat.com faf581ad29 Backed out the unnecessary change in the previous checkin. 2006-08-18 22:56:18 +00:00
wtchang%redhat.com 894326bb94 Bugzilla Bug 342476: NSS should set and check the pReserved field in the
(extended) CK_C_INITIALIZE_ARGS structure.  r=nelsonb,relyea.
Modified files: pk11wrap/pk11load.c softoken/pkcs11.c
2006-08-18 22:48:41 +00:00
wtchang%redhat.com 1e8aeab6bb Bugzilla Bug 349011: marked local functions as static. The patch is
contributed by timeless <timeless@bemail.org>. r=wtc.
Modified files: crmfcont.c crmfpop.c crmfreq.c
2006-08-18 22:21:34 +00:00
wtchang%redhat.com 95ac6854cf Bugzilla Bug 53427: Added PORT_ArenaZRelease and change secasn1d.c to zero
our_pool before releasing or freeing it. r=nelsonb,jpierre.
Modified files: secasn1d.c secport.c secport.h
2006-08-15 23:56:01 +00:00
wtchang%redhat.com 3e79aee9fe Bugzilla Bug 53427: passed the correct 'zero' argument to PORT_FreeArena.
Removed dead code. r=nelsonb,relyea.
Modified Files:
	softoken/keydb.c softoken/lowpbe.c softoken/pkcs11c.c
	util/secdig.c
2006-08-15 01:34:38 +00:00
wtchang%redhat.com cf0212dd7a Bugzilla Bug 336813: Improved NSC_GetTokenInfo and FC_GetTokenInfo. Always
set CKF_RNG. Set the utcTime member to 16 zeros "0000000000000000".
Factored out the common flag CKF_RNG and CKF_THREAD_SAFE. r=nelsonb,relyea.
Modified files: fipstokn.c pkcs11.c
2006-08-14 17:52:31 +00:00
wtchang%redhat.com a480328757 Bugzilla Bug 347409: removed the on-demand initiation of the FIPS power-up
self-tests from FC_Login. We now require the user to shut down and restart
the softoken to initiate the power-up tests on demand. r=nelsonb.
2006-08-14 17:05:31 +00:00
wtchang%redhat.com a99d5c47c1 Bugzilla Bug 53427: PORT_FreeArena should zero memory before freeing it if
the 'zero' argument is true. r=nelsonb.
2006-08-14 16:56:39 +00:00
julien.pierre.bugs%sun.com e75f2dc686 Fix for bug 178894 . Unbreak build. 2006-08-07 20:48:04 +00:00
kaie%kuix.de 7b36815896 Bug 346551, init SECItem derTemp in crmf_encode_popoprivkey
r=wtchang
2006-08-07 20:02:59 +00:00
julien.pierre.bugs%sun.com 76317a1b0e Fix for bug 178894 . Quick decoder updates for lib/certdb and lib/certhigh . r=nelson . 2006-08-07 19:09:41 +00:00
julien.pierre.bugs%sun.com 6d267dce80 Fix for bug 177184 . NSS_CMSDecoder_Cancel might have a leak . And this patch might fix it, or not. But this bug needs to be put to rest. 2006-08-05 01:19:23 +00:00
wtchang%redhat.com fed6abf266 Bugzilla Bug 347024: Moved the software integrity test from
nsc_CommonInitialize to the new function sftk_fipsSoftwareIntegrityTest
and have sftk_fipsPowerUpSelfTest call sftk_fipsSoftwareIntegrityTest.
Updated the audit logging code.  Removed an extraneous comma between two
string literals in fipstokn.c. r=relyea,nelsonb.
Modified files: fipstest.c fipstokn.c pkcs11.c
2006-08-03 21:50:51 +00:00
wtchang%redhat.com acaeb20a50 Bugzilla Bug 336509: put the FIPS token in the Error state only when the
continuous RNG test fails.
2006-07-31 18:31:07 +00:00
wtchang%redhat.com 48090e59a8 Bugzilla Bug 336509: check for continuous RNG test failure after direct and
indirect uses of the RNG. r=relyea,nelsonb.
Modified files: fipstokn.c keydb.c pkcs11.c pkcs11c.c pkcs11i.h rsawrapr.c
                softoken.h
2006-07-31 18:10:17 +00:00
wtchang%redhat.com adfb2d0b34 Bugzilla bug 336509: Made prng_GenerateGlobalRandomBytes static because
it's only used in this file. r=neil.williams.
2006-07-29 00:28:12 +00:00
wtchang%redhat.com b843464eb3 Bugzilla Bug 345502: C89 doesn't allow initializing a local array. Fixed
some array sizes.  The patch is contributed by Glen Beasley of Sun. r=wtc.
2006-07-28 20:45:01 +00:00
wtchang%redhat.com 40a16f74c9 Bugzilla Bug 345941: fixed another bug that we might pass uninitialized
'req' to fclose(). Thanks to Wolfgang Rosenauer <mozilla@rosenauer.org> for
reporting the bug and reviewing the patch.
2006-07-28 20:19:02 +00:00
wtchang%redhat.com 97881e483f Bugzilla Bug 345941: fixed the bug that we might pass uninitialized 'req'
to fclose(). r=glen.beasley.  Thanks to Wolfgang Rosenauer
<mozilla@rosenauer.org> for the bug report.
2006-07-27 16:56:56 +00:00
wtchang%redhat.com ee588c0e0d Bugzilla Bug 345775: use SECITEM_FreeItem(..., PR_TRUE) to completely free
the SECItem allocated in getECParams. r=alexei.volkov.
2006-07-27 00:33:23 +00:00
wtchang%redhat.com fcc85009ca Bugzilla Bug 345779: removed two useless assignments and fixed an error in
the comment. r=douglas.stebila.
2006-07-26 23:17:46 +00:00
glen.beasley%sun.com c240d4542b 345502 RNG power up selftest r=wtc 2006-07-24 03:54:09 +00:00
nelson%bolyard.com e923291d6e Correct ifdefs so that non-ECC builds will continue to build correctly.
r=wtchang  bug 341707.
2006-07-20 00:17:23 +00:00
nelson%bolyard.com aa48d36259 Curve-limited clients must not negotiate ECC ciphersuites unless they send the supported curve extension. This means that when they are nogotiating SSL 3.0
and not TLS, they should not negotiate ECC ciphersuites at all.
Bug 341707.  r=rrelyea.
2006-07-19 01:40:17 +00:00
nelson%bolyard.com 7cb9a6798d Workaround bogus assertion failure in MSVC 8 (Express, 2005) RTL by switching
from the old _findfirst, _findnext file enumeration API to the newer
FindFirstFile, FindNextFile API.  Might be slower, but won't crash if it finds
files older than 1970.  Bug 331404. r=julien.pierre
2006-07-19 01:33:41 +00:00
nelson%bolyard.com 916abfcc17 Coverity bug 340217. Fix leak, crash, and failure to set error codes in
CMMF_POPODecKeyChallContDecryptChallenge. r=alexei.volkov
2006-07-19 00:44:02 +00:00
nelson%bolyard.com 4fde45d139 Remove FORTEZZA code from this file. Coverity CID 874. r=rrelyea. 2006-07-19 00:36:38 +00:00
nelson%bolyard.com 29bf58a380 Remove dead function SECU_GetPBEPassword from nss/cmd/lib/secutil.*
Patch contributed by Jon Smirl <jonsmirl@gmail.com>
Coverity CID 516. Bug 337081.  r=nelson@bolyard.com
2006-07-19 00:21:12 +00:00
douglas%stebila.ca 3e2150fc10 Bugzilla Bug 338367: Turn GF2M_POPULATE and GFP_POPULATE macros into functions. r+=wtchang 2006-07-19 00:14:31 +00:00
nelson%bolyard.com 4769c68bf6 Stop using EXTENSION_NOT_FOUND error in OCSP code. r=julien. bug 287850. 2006-07-19 00:08:52 +00:00
wtchang%redhat.com 49af285a1d Bugzilla bug 295291: regenerated using the new certdata.perl script. 2006-07-18 23:38:14 +00:00
alexei.volkov.bugs%sun.com 664d338da2 334459: Variable "(cache)->sharedCache" tracked as NULL was passed to a function that dereferences it. [@ CloseCache - InitCache]. r=nelson 2006-07-17 22:14:48 +00:00
alexei.volkov.bugs%sun.com 9ea0404651 341291: Coverity 689 - potential NULL ptr crash in ssl3_SendCertificate. r=nelson 2006-07-17 22:08:03 +00:00
alexei.volkov.bugs%sun.com 4d331091de 341120: Coverity 541 nss_cms_recipients_traverse leaks "rle". r=nelson 2006-07-17 21:57:35 +00:00
alexei.volkov.bugs%sun.com 8191f90940 341115: Multiple NULL ptr dereferences in nss/lib/base/arena.c. r=nelson 2006-07-17 21:51:32 +00:00
wtchang%redhat.com f656732765 Bugzilla Bug 295291: removed the unused variable 'a' and sort the
definitions of constants in certdata.c. r=nelsonb.
2006-07-17 16:50:45 +00:00
kaie%kuix.de 1ea9ecb85c Bug 343682, crash in libcrmf with ecc
patch=rrelyea, r=kengert, r=nelson
2006-07-13 20:59:51 +00:00
julien.pierre.bugs%sun.com 1bf725b1cb Fix for bug 341708 . Have client send alert if it detects an invalid server key exchange. r=nelson 2006-06-28 21:15:04 +00:00
wtchang%redhat.com 1360e00abe Bugzilla Bug 338798: use PR_FindFunctionSymbol to look up function
symbols. r=alexei.volkov,nelson.
Modified files: freebl/loader.c softoken/dbinit.c
2006-06-26 23:42:59 +00:00
wtchang%redhat.com ab411b37bd Bugzilla Bug 338798: in C89, local struct variables can only be initialized
by constant expressions.  HP C compiler version B.11.11.08 generates
incorrect code silently if the initializers are non-constant expressions.
r=alexei.volkov,julien.pierre.
Modified files: cmd/crmftest/testcrmf.c lib/ssl/ssl3con.c
2006-06-26 23:32:19 +00:00
kaie%kuix.de 189631b3b1 Bug 337486, mismatch between PK11_FindCertFromNickname and FindCerts
r=rrelyea, r=julien.pierre
2006-06-26 23:21:07 +00:00