mcgreer%netscape.com
ca1878cfa5
force certutil to always return 255 on error. Make sure there is only one pointer to password callback arg.
2001-08-09 20:57:58 +00:00
mcgreer%netscape.com
c63a539773
print a useful error message when password fails
2001-08-09 20:14:15 +00:00
mcgreer%netscape.com
d454f0472f
when doing file passwords, only open the file once to retrieve the password, then keep it in memory. Seems to fix scripting problems (especially in FIPS, which hits the password prompt a lot).
2001-08-09 13:58:30 +00:00
mcgreer%netscape.com
7a148171dd
fix for 92962, need to chomp newline at end of message body.
2001-08-09 13:30:44 +00:00
mcgreer%netscape.com
66923155b9
Look for the private key when listing keys.
...
The second part of this patch was checked in, see revision 1.28. Yet, somehow, it never showed up.
2001-08-08 13:37:42 +00:00
mcgreer%netscape.com
5da4560b7a
copy the plaintext password over
2001-08-07 21:11:46 +00:00
mcgreer%netscape.com
070a6e685b
Yet Another Instance Of Needing to Send the Password Down for FIPS
2001-08-07 16:46:52 +00:00
mcgreer%netscape.com
0b46751d74
fix bug in param allocation
2001-08-07 16:35:06 +00:00
mcgreer%netscape.com
6c177391c5
implement key deletion in certutil
2001-08-07 16:04:12 +00:00
mcgreer%netscape.com
070debc909
undo last change
2001-08-07 00:45:42 +00:00
mcgreer%netscape.com
1f0128a692
fix hash password integrity
2001-08-07 00:45:22 +00:00
mcgreer%netscape.com
78068a5ef5
more changes for fips to make sure token is logged in
2001-08-06 20:37:27 +00:00
mcgreer%netscape.com
be0c0a0e5c
more FIPS fixes. it's possible the old crypto lib alloc'ed the PQG params and copied them over when creating the DSA key, otherwise this code would have never worked. It's also possible this code was never tested as-is. At any rate, the static vars go out of scope and wreak havoc later on, so alloc the memory.
2001-08-06 18:57:16 +00:00
mcgreer%netscape.com
1edee3f9a8
another FIPS workaround
2001-08-06 18:19:12 +00:00
mcgreer%netscape.com
4502e6e9b2
more FIPS changes, keep pw context with key to avoid pw prompt
2001-08-06 16:01:10 +00:00
mcgreer%netscape.com
f78082d28d
fix DSA key gen
2001-08-02 21:06:38 +00:00
mcgreer%netscape.com
9ee2624f53
changes to make FIPS mode work
2001-08-02 21:04:14 +00:00
mcgreer%netscape.com
867a310a99
fix for 90510, listing individual certs from token
2001-07-24 19:26:53 +00:00
nicolson%netscape.com
d47babf58c
Fix bug 90228: Signtool not picking up hidden (dot) files when performing
...
signing.
Don't skip files that start with "." and "#".
2001-07-20 21:31:33 +00:00
wtc%netscape.com
ce413b8c54
Bugzilla bug 70758: additional changes for this bug. r=nicolson.
...
Modified files: list.c sign.c verify.c
2001-07-06 13:28:21 +00:00
mcgreer%netscape.com
332c61b5aa
changes needed to make addbuiltin build again
2001-06-29 14:09:25 +00:00
wtc%netscape.com
f2143ac49e
Bugzilla bug 86528: have tstclnt exit with 254 (= -2 mod 256) where it
...
was exiting with -2 before so that old test script that expects 254
continues to work. r=larryh.
Modified Files: tstclnt.c sslauth.txt
2001-06-27 00:29:01 +00:00
nicolson%netscape.com
24e6add7cd
ERRX is still -1.
2001-06-25 21:34:22 +00:00
nicolson%netscape.com
78a4f9bc36
Fix 70758: signtool fails on Windows 2000, returns still 0.
2001-06-25 21:33:56 +00:00
wtc%netscape.com
7481a570da
Bugzilla bug #86528 : fixed tstclnt so that it always exits with a
...
nonnegative status. This way we can correctly extract its exit status on
Windows, so the temporary workaround in ssl.sh can be removed. Changed
sslauth.txt to match the new exit status of tstclnt. r=larryh.
Modified files:
cmd/tstclnt/tstclnt.c tests/ssl/ssl.sh tests/ssl/sslauth.txt
2001-06-25 19:53:16 +00:00
nelsonb%netscape.com
b6f929ea59
Fix bug 85465. Detect EOF on stdin when reading it to seed PRNG.
...
Also eliminate some compiler warnings.
2001-06-18 21:31:04 +00:00
mcgreer%netscape.com
a5b5e560b9
temporarily add debug output to bltest to try and track down win32 RSA QA failures.
2001-06-13 15:31:20 +00:00
wtc%netscape.com
29aa0c3c90
Bugzilla bug #77884 : fixed discrepancy between the size of an array and
...
the variable that represents the array size. Let the compiler compute
the value for us instead of using hardcoded constants. Thanks to
andrew@fernandes.org for reporting and tracking down this bug.
2001-06-06 17:00:51 +00:00
wtc%netscape.com
df8687e8f6
The strip function should be unnecessary.
2001-06-02 02:35:51 +00:00
wtc%netscape.com
2961017d5d
Deleted the comment altogether because the code it described had been
...
deleted.
2001-05-31 23:25:46 +00:00
wtc%netscape.com
97dd71b727
Fixed a typo.
2001-05-31 23:19:15 +00:00
wtc%netscape.com
8388ae052d
Added the realclean and clobber_all targets.
2001-05-25 01:20:07 +00:00
larryh%netscape.com
7c39f6468b
Bugzilla: 81706. strsclnt exit code
2001-05-24 16:44:25 +00:00
javi%netscape.com
d251e0ed4c
Make crmfcgi build once again
2001-05-08 20:19:12 +00:00
relyea%netscape.com
43b7fe814b
Fix NT build problems.
2001-04-25 16:35:25 +00:00
kirke%netscape.com
f5d55452bc
64970 stress tests don't fail when selfserver is gone
...
Added -q argument (quit after about 60 seconds waiting for selfserv).
2001-04-24 23:02:34 +00:00
relyea%netscape.com
e3c9c38158
Add client requested features to coreconf:
...
building cross platform.
targetting the Objects to a separate tree.
2001-04-24 16:47:50 +00:00
nelsonb%netscape.com
b2d4d53739
Merge in changes from NSS 3.2.1.
2001-04-11 22:47:14 +00:00
nelsonb%netscape.com
aee93030c0
Remove unnecessary global tables of cipherSuite numbers. This solves
...
a problem with gcc on Linux, which overrides local/automatic definitions
with global ones.
2001-04-11 20:03:22 +00:00
nelsonb%netscape.com
b4e192dc29
Fix leak of cert reference in cert authentication callback functions.
2001-03-30 00:40:24 +00:00
relyea%netscape.com
48b8d71340
Change structure passing to pointer passing.
...
removed debugging printf's
2001-03-23 19:33:59 +00:00
nelsonb%netscape.com
cc91679cd9
Add function SECU_PrintBuf() which prints a buffer in hex and ASCII.
2001-03-20 04:23:38 +00:00
nelsonb%netscape.com
e42af5fa30
Use $TMP, $TMPDIR, or $TEMP for directory to hold server SID cache file.
...
Implements RFE 70617.
2001-03-02 02:52:21 +00:00
kirke%netscape.com
f0fde27571
Bug 69582 endless loop on EOF reading Extensions
2001-03-01 21:45:33 +00:00
relyea%netscape.com
9d01803642
change '-p' to '-P' to be consistant with other tools.
2001-03-01 01:21:56 +00:00
relyea%netscape.com
4c010838b2
On NT, it looks like isatty doesn't always work. Since we always use stdin for this use
...
that test instead.
2001-02-28 01:58:02 +00:00
relyea%netscape.com
a1f1e67e84
Finish WinNT changes.
2001-02-28 01:57:08 +00:00
relyea%netscape.com
c2baea888a
Add '-p' to specify a dbprefix.
...
Move the Tempfile created on input to /tmp so the code works in directories
that aren't writeable.
Fix the code to remove the Tempfile when done.
Use SECU_ConfigureDir so that we get the same defaultdb as other tools.
2001-02-28 01:21:11 +00:00
mcgreer%netscape.com
7a923cca51
fix for #63982 , -o not using file password
2001-02-22 23:35:17 +00:00
relyea%netscape.com
0a1f85a8bd
OK, let's not get sloppy on the types... flags should be a PRUint32.
2001-02-10 02:05:19 +00:00
relyea%netscape.com
126437e7e3
Make the public interface use a flags variable instead of a billion little
...
Bools.
suggested and reviewed by wtc in bug 66230
2001-02-10 02:03:03 +00:00
relyea%netscape.com
a2d46ed98c
update certutil and modutil to use the new NSS_Initialize signature.
...
modutil can now specify it's nocertdb paramter.
bug 64260 reviewed by wtc
2001-02-09 01:38:04 +00:00
nelsonb%netscape.com
7dcf6f9722
Make SSL API consistent in using SECStatus as return value for functions
...
that return only values in that enumeration. Bug 68097. R&A = relyea.
Modified Files:
lib/ssl/ssl.h lib/ssl/sslauth.c lib/ssl/sslsecur.c
lib/ssl/sslsnce.c lib/ssl/sslsock.c cmd/selfserv/selfserv.c
cmd/strsclnt/strsclnt.c
2001-02-09 00:32:14 +00:00
nelsonb%netscape.com
9c6844617f
Changes suggested by Wan-Teh.
2001-02-08 01:32:32 +00:00
nelsonb%netscape.com
e9439fc5c2
Big changes to get better SSL performance out of selfserv.
...
Launch all connection handler threads at program startup, and reuse those
threads for new connections, rather than creating new threads for each
connection and having them terminate at the end of each connection.
The main thread is now the acceptor thread. It creates a queue of
accepted but unprocessed connections. NSPR Condition variables are used
to schedule the connection handler threads.
Only one GET /stop message is now required to terminate selfserv.
Note, the -2 (full duplex) option is temporarily disabled until I get it
to work with this new thread model.
Add new -D command line option to suppress TCP Nagle delays.
Used to verify the fix to bug 67898.
2001-02-07 01:56:30 +00:00
nelsonb%netscape.com
c216172478
Add new -D command line option to suppress TCP Nagle delays.
...
This is used to verify the fix for bug 67898.
2001-02-07 01:50:46 +00:00
mcgreer%netscape.com
532933e0be
bug 67132. certutil crashes on -C -x combination, deny it for now.
...
certutil -C was not recognizing the -a (ascii) option, implement it.
r=wtc
2001-02-06 18:26:30 +00:00
relyea%netscape.com
0373ca7fe5
Bug 67501: Fix suggested by Nelson. Make '-d' option work again in sdrtest.
2001-02-06 01:05:21 +00:00
wtc%netscape.com
804472db43
Bugzilla bug #60143 : checked in OpenVMS patch from Colin Blake
...
<colin@theblakes.com>.
Modified Files:
coreconf/OpenVMS.mk coreconf/arch.mk coreconf/rules.mk
coreconf/ruleset.mk nss/cmd/lib/secpwd.c nss/lib/nss/nss.h
nss/lib/nss/nssinit.c
2001-02-04 05:52:42 +00:00
mcgreer%netscape.com
c4d36363d2
get pk12util working with shared libs. Change ciphersuites to
...
be disabled by default to allow user control. Export a couple
more functions to allow ciphersuite preferences.
2001-02-02 15:24:29 +00:00
wtc%netscape.com
a83eb31b00
Bugzilla bug #63768 : removed references to the obsolete PURE_LIBRARY,
...
HAVE_PURIFY etc. make variables in NSS files. Reviewed by nelson Bolyard.
Modified Files:
cmd/platrules.mk cmd/crmf-cgi/config.mk cmd/crmftest/config.mk
cmd/lib/config.mk cmd/zlib/config.mk lib/base/config.mk
lib/certdb/config.mk lib/certhigh/config.mk lib/ckfw/config.mk
lib/crmf/config.mk lib/cryptohi/config.mk
lib/fortcrypt/swfort/config.mk lib/freebl/config.mk
lib/jar/config.mk lib/nss/config.mk lib/pk11wrap/config.mk
lib/pkcs12/config.mk lib/pkcs7/config.mk lib/smime/config.mk
lib/softoken/config.mk lib/ssl/config.mk lib/util/config.mk
2001-02-02 01:49:57 +00:00
relyea%netscape.com
261bf7afac
remove cdbhdl.h and recode. bug 64206 reviewed by wtc.
2001-02-01 19:05:10 +00:00
relyea%netscape.com
0f7d6dba5f
remove cdbhdl.h bug 64260 reviewed by wtc.
2001-02-01 18:09:50 +00:00
kirke%netscape.com
c1a3909887
Resolved merge conflict with Ian.
2001-02-01 01:29:04 +00:00
kirke%netscape.com
eb932053fa
Fixed bogus tab introduced by my previous checkin.
2001-02-01 00:57:26 +00:00
kirke%netscape.com
b4bed1dcdb
Resolves bug 66244 - Many NSS command do not detect failure of NSS_Init* functions. Introduced SECU_PrintPRandOSError(progName); to print on failure. Each command is responsible for exiting with appropriate status to distinguish failure points.
2001-01-31 23:25:02 +00:00
wtc%netscape.com
1ca200c1e1
Bugzilla bug #62855 : checked in OS/2 makefile patches from Javier
...
Pedemonte <pedemont@us.ibm.com>.
Modified Files:
coreconf/OS2.mk coreconf/arch.mk coreconf/prefix.mk
coreconf/rules.mk coreconf/suffix.mk nss/Makefile
nss/cmd/platlibs.mk nss/lib/ckfw/builtins/config.mk
2001-01-31 21:29:31 +00:00
wtc%netscape.com
39bfa805f3
I found that #include <unistd.h> is still needed on Unix for getpid().
2001-01-31 19:18:09 +00:00
wtc%netscape.com
0669b974b3
Bugzilla bug #62855 : checked in OS/2 patches from Javier Pedemonte
...
<pedemont@us.ibm.com>.
Modified files: selfserv.c, swfutl.c, os2_rand.c.
2001-01-31 19:09:48 +00:00
wtc%netscape.com
f3e44424d8
Backed out the previous checkin as it requires
...
sec_port_ucs4_utf8_conversion_function and
sec_port_ucs2_utf8_conversion_function be exported on Unix.
2001-01-31 03:44:43 +00:00
wtc%netscape.com
218134872a
We can just pass NULL as the 'envp' argument to PR_CreateProcess, so we
...
do not need to get the declaration of 'environ' on Unix. Reviewed by
Nelson Bolyard.
2001-01-31 03:39:59 +00:00
mcgreer%netscape.com
b0f6416250
change pk12util to use shared libs.
2001-01-30 19:49:52 +00:00
wtc%netscape.com
a122eb5a2e
Bugzilla bug #54989 : Use the AIX -brtl linker option to link the NSS
...
utilities with NSPR shared libraries. Reviewed by Bob Relyea.
2001-01-30 19:11:22 +00:00
nelsonb%netscape.com
06f8df58de
Add multi-process server capability to selfserv. Bug 66630.
...
New -M command line option runs multiple selfserv processes,
all serving in parallel on the same TCP listen socket.
2001-01-27 00:36:15 +00:00
mcgreer%netscape.com
1f5e95bb36
thought I'd be cool and make it build with DSO's, but alas, need CERT_DecodeTrustString...
2001-01-26 16:45:46 +00:00
mcgreer%netscape.com
523c951da7
initial checkin of tool which converts CA certs into format for certdata.txt
2001-01-26 16:32:10 +00:00
wtc%netscape.com
ef5aed7aaa
Bugzilla bug #65416 : assign values to enumeration constants in secutil.h
...
and nssilock.h explicitly. Reviewed by Ian McGreer.
2001-01-25 19:05:50 +00:00
nelsonb%netscape.com
bbb9df0829
Detect failures of NSS_Init and report them.
...
This fixes bug 66244 for certutil (only).
2001-01-25 04:14:22 +00:00
sonmi%netscape.com
07415aa237
cleanup after testclient -q successfully connected before exiting
2001-01-23 05:01:24 +00:00
sonmi%netscape.com
22ebe36804
do_accept now ignores the PR_CONNECT_RESET_ERROR
2001-01-23 04:56:53 +00:00
mcgreer%netscape.com
deab71f885
add option for db prefix
2001-01-22 20:14:05 +00:00
mcgreer%netscape.com
655cf6e4ed
dbprefix option added
2001-01-22 19:51:41 +00:00
mcgreer%netscape.com
5f188b705a
make blapitest return error codes so QA lights up correctly. Fix bug with DSA
...
self-test. r=wtc
2001-01-18 21:45:47 +00:00
sonmi%netscape.com
49a2766afc
changed the stopQ conditionvariable to theadQ
2001-01-17 02:26:27 +00:00
nelsonb%netscape.com
14c87961d5
Add implementation of SSL_RSA_WITH_RC4_128_SHA SSL3 cipher suite,
...
which is not enabled by default. Bug 59795.
2001-01-13 02:05:15 +00:00
nelsonb%netscape.com
59a40ba22f
Suppress EOF messages unless running with -v. Bug 60879.
2001-01-13 00:55:30 +00:00
mcgreer%netscape.com
1bd1fe5b0b
removing use of external NSS_CMSArray_Count
2001-01-12 18:37:41 +00:00
nelsonb%netscape.com
eea673c43a
MSVC won't let you initialize a pointer in a data structure with the
...
address of an external variable that comes from another DLL.
This is a fundamental difference between WIN32 DLLs and Unix DSOs.
So, for every SEC_ASN1Template inside of libnss3 that is referenced by
other templates outside of libnss3, a new "chooser" function was created
that returns the address of that template. For WIN32, the templates
outside of libnss3 access libnss3's templates by the chooser function
rather than by direct reference. Some simple macros allow Unix to
continue to use direct references, avoiding the extra function calls.
With these changes, all.sh (qa script) passes all tests on NT with DLLs.
Modified Files:
cmd/checkcert/checkcert.c cmd/lib/secutil.c lib/asn1/asn1t.h
lib/certdb/certdb.c lib/certdb/certt.h lib/certdb/crl.c
lib/certhigh/certreq.c lib/crmf/asn1cmn.c lib/crmf/crmfcont.c
lib/crmf/crmftmpl.c lib/cryptohi/secsign.c lib/nss/nss.def
lib/pkcs12/p12local.c lib/pkcs12/p12tmpl.c
lib/pkcs7/certread.c lib/pkcs7/p7decode.c lib/pkcs7/p7local.c
lib/smime/cmsasn1.c lib/smime/cmsattr.c lib/smime/cmspubkey.c
lib/smime/cmssigdata.c lib/smime/smimeutil.c
lib/softoken/keydb.c lib/softoken/keydbt.h lib/util/secalgid.c
lib/util/secasn1.h lib/util/secasn1d.c lib/util/secasn1t.h
lib/util/secasn1u.c lib/util/secdig.c lib/util/secdig.h
lib/util/secoid.h
2001-01-07 08:13:13 +00:00
nelsonb%netscape.com
fbb67a9c4c
Eliminate warnings about functions returning values of the wrong type.
2001-01-07 07:49:22 +00:00
nelsonb%netscape.com
a97e2c5e3d
Add missing declaration of library function printflags().
2001-01-07 07:48:04 +00:00
nelsonb%netscape.com
6edc66e859
This program tests low level functions that aren't exported from the DSOs,
...
so it must be built with the static libs.
2001-01-07 07:47:17 +00:00
nelsonb%netscape.com
920c5a1f77
The recent deletion of the SECU_Password function from cmd/lib made this
...
progam stop compiling. So, as a temporary measure, to fix the build,
ifdef out the calls to the missing functions, and always behave as if
the "-n none" option had been supplied.
2001-01-07 07:46:36 +00:00
nelsonb%netscape.com
1ddc0c071d
Get this file to build again on Windows.
2001-01-07 07:44:39 +00:00
nelsonb%netscape.com
cf51c9006f
Add missing #include "nss.h"
2001-01-07 07:43:28 +00:00
relyea%netscape.com
69ba9f4f57
Move SDR tests to use nss dll's
2001-01-07 00:32:36 +00:00
relyea%netscape.com
941360ff6e
Remove depricated Open function
2001-01-07 00:29:25 +00:00
relyea%netscape.com
7922b6463d
Remove depricated functions that's referencing a removed symbol
2001-01-06 23:55:22 +00:00
relyea%netscape.com
d246ad65a3
Fix initialization to use NSS_Init* functions rather than low level
...
init functions.
2001-01-06 22:09:04 +00:00
relyea%netscape.com
1825c169ff
derdump needs to initialize NSS before calling the SECU functions.
2001-01-06 21:12:29 +00:00
relyea%netscape.com
5353a5b656
Use NSS_initialization.
...
Remove Low level SECKEY calls (not the private key management is now broken
until PK11 calls are added to replace them).
2001-01-06 21:11:34 +00:00
relyea%netscape.com
899444b644
Use NSS initialization.
2001-01-06 21:10:18 +00:00
relyea%netscape.com
dcb55c3980
Move the cert searching and printing utility function out of secutil.c so that
...
most functions which call secutil can still be used in the shared libraries.
2001-01-06 21:09:28 +00:00
relyea%netscape.com
b91a0677ac
remove depricated functions from secutil.
2001-01-06 21:05:36 +00:00
nelsonb%netscape.com
793dba6814
Stop using deprecated SSL functions. Convert them to the supported ones.
2001-01-06 02:40:02 +00:00
mcgreer%netscape.com
dcf2480ab4
add support for AES
...
reduce compiler warnings
2001-01-05 22:38:50 +00:00
wtc%netscape.com
af6f7dd1b8
Call NSS_Init() to initialize NSS. It's not necessary to call PR_Init()
...
because NSPR is implicitly initialized.
2001-01-05 21:14:47 +00:00
nelsonb%netscape.com
1311ab52d4
Changes to deal with exporting data from Windows DLLs.
...
SECHashObjects[] is no longer exported.
New function HASH_GetHashObject returns pointer to selected const object.
SSL statistics are now in a structure whose address is obtained via a
call to SSL_GetStatistics().
On NT, the new symbol NSS_USE_STATIC_LIBS must be declared in programs
that use the static SSL library.
Also, propagate "const" declaration for SECHashObjects.
2001-01-05 01:38:26 +00:00
nelsonb%netscape.com
97cc48fda6
Reduce warnings by adding missing #includes to eliminate calls to
...
undeclared functions.
2001-01-04 08:21:15 +00:00
wtc%netscape.com
4c72980500
Bugzilla bug #64238 : removed the unnecessary inclusion of mcom_db.h from
...
cryptohi.h, pk11func.h, secpkcs7.h, and cms.h. Some files now need to
include <errno.h>. They were including <errno.h> indirectly through
mcom_db.h.
Modified Files:
cmd/atob/atob.c cmd/btoa/btoa.c cmd/derdump/derdump.c
lib/cryptohi/cryptohi.h lib/pk11wrap/pk11func.h
lib/pkcs7/secpkcs7.h lib/smime/cms.h lib/ssl/sslsnce.c
2001-01-04 00:44:30 +00:00
larryh%netscape.com
c94eecfbf1
Bugzilla: 64132. NSS lock contention
2001-01-03 20:54:29 +00:00
larryh%netscape.com
351f30a205
Bugzilla: 64132. NSS lock instrumentation
2001-01-03 19:51:22 +00:00
kirke%netscape.com
ddb4ac045d
Made argument processing more robust (ala stresclnt.c). We now detect
...
and fail when something on the command line is not recognized. Also
exiting with distinct status values for all error conditions (previously
we always exited with '1').
2001-01-02 22:19:55 +00:00
wtc%netscape.com
175186f0b2
Put -lnss3 after -lsmime3 and -lssl3, which depend on -lnss3.
2000-12-28 00:49:50 +00:00
nelsonb%netscape.com
ca6ec16975
Fix an error message to correctly report the name of the failed init
...
function.
2000-12-27 02:38:47 +00:00
relyea%netscape.com
ab78f09b9b
Add dynamic Library support to commands. Mark those that commands that still
...
need to be build with static libraries appropriately.
2000-12-22 17:09:07 +00:00
mcgreer%netscape.com
2321dc1d05
dump usage before doing anything when no args passed, bug 63520
2000-12-21 22:14:02 +00:00
mcgreer%netscape.com
8df1f34f24
fix bug 63447 where certutil was opening an unneccessary output terminal.
2000-12-21 01:51:37 +00:00
mcgreer%netscape.com
c7b1494e18
certs-only does not require input
2000-12-14 23:59:33 +00:00
nelsonb%netscape.com
21c18e5540
Make the -d option unnecessary when the built-in key is being used,
...
e.g. when -n none has been specifed.
2000-12-13 01:38:14 +00:00
mcgreer%netscape.com
897ecedd23
cmsutil was broken for STDIN input
2000-12-11 18:42:58 +00:00
larryh%netscape.com
e769c1df54
Bugzilla: 62396, fix threads in selfserv.c
2000-12-09 01:35:54 +00:00
relyea%netscape.com
9e96aea0f1
OpenVMS changes bug 60143
2000-12-07 22:25:18 +00:00
relyea%netscape.com
5a0634f3c0
Open VMS changes bug 60143
2000-12-07 22:24:46 +00:00
mcgreer%netscape.com
08b69559e6
fix debug output so it doesn't crash
2000-12-07 18:38:27 +00:00
nelsonb%netscape.com
c76148218a
Add a new -t option to specify the maximum number of threads, and hence
...
the maximum number of simultaneous connections. Default is now 8.
values < 1 or > 32 are ignored. Also, increase the minimum delay interval
for retrying failed connections from 10 to 50 milliseconds, and increase
it exponentially if/as more retries are required. These changes have
made the stress tests finish considerably faster, and have improved the
consistency from run to run. Previously runs times varies by 2:1 or more.
2000-12-07 05:34:50 +00:00
mcgreer%netscape.com
774c8f0401
still more debug output
2000-12-06 22:35:52 +00:00
mcgreer%netscape.com
107324d3c5
add some debug output to try and track down HP64 QA problem
2000-12-05 23:58:01 +00:00
mcgreer%netscape.com
7db461e1b8
uninit'ed var causes problem on some platforms
2000-12-05 01:13:24 +00:00
mcgreer%netscape.com
9ce79d6c32
table wasn't wide enough for long runs
2000-12-01 23:48:22 +00:00
mcgreer%netscape.com
092f821fa4
fix broken AIX build
2000-12-01 19:00:50 +00:00
mcgreer%netscape.com
83a8928dcd
check in b64 encoded seeds
2000-12-01 01:31:18 +00:00
mcgreer%netscape.com
39061cbbdb
massive changes to blapitest to allow for more flexible input types and improved
...
performance testing output.
2000-12-01 01:24:05 +00:00
mcgreer%netscape.com
8657145db0
fix broken builds, linked in wrong order
2000-11-30 19:13:01 +00:00
relyea%netscape.com
b13e8d38bb
Fix type casting problems in zip.c
2000-11-28 23:25:36 +00:00
relyea%netscape.com
e71c1551fe
remove extre PR_PUBLIC definition so everything will compile under AIX
2000-11-28 23:24:55 +00:00
mcgreer%netscape.com
b8f9c46b41
fix missing libraries in windows build
2000-11-28 23:21:38 +00:00
relyea%netscape.com
320b630de7
Add pkcs12 so the pk12util.c builds
2000-11-28 22:08:45 +00:00
relyea%netscape.com
744f0cb8cf
Use platlibs so the the builds work on NT as well.
2000-11-28 22:08:23 +00:00
mcgreer%netscape.com
a69820a596
changes suggested by bryner to build more of NSS's utilities
2000-11-28 00:36:53 +00:00
nelsonb%netscape.com
317fd465f9
When disabling SSL2, also disable ssl2 compatible client hellos.
...
This allows us to test with TLS servers that don't grok ssl2 hellos.
2000-11-17 21:57:02 +00:00
mcgreer%netscape.com
1f581f8bda
pk12util arises from the dead!
2000-11-09 23:00:00 +00:00
mcgreer%netscape.com
993de1b485
add new ping command to usage
2000-11-09 19:17:04 +00:00
mcgreer%netscape.com
ede896e5fc
add "-q" option for creating a client which will "ping" the server until it
...
is available, or for 1 minute, whichever comes first
2000-11-09 18:29:52 +00:00
nelsonb%netscape.com
595cf5ac5d
Build rsaperf benchmarking tool during nightly builds now.
2000-11-09 02:03:30 +00:00
nelsonb%netscape.com
45daa22eba
Add new default public and private RSA keys.
2000-11-08 02:46:20 +00:00
mcgreer%netscape.com
93f388db16
set up RNG for self-test (DSA needs it), and set default RSA public exponent
...
to 2**16 + 1
2000-11-04 01:11:48 +00:00
mcgreer%netscape.com
47d9d1ddb3
option for printing content version
2000-11-03 22:28:26 +00:00
mcgreer%netscape.com
89ff5ab2e3
back out last change
2000-11-02 07:45:35 +00:00
mcgreer%netscape.com
c574758854
option for dumping values in RSA key
2000-11-02 07:44:47 +00:00
nelsonb%netscape.com
d2df084113
Functions that provide default RSA public and private key for performance
...
benchmarks. Values for these keys to be supplied in next revision.
2000-10-26 00:29:09 +00:00
nelsonb%netscape.com
2b82871510
RSA performance benchmark program, ported to blapi from NSS 2.8.
2000-10-25 23:17:54 +00:00
nelsonb%netscape.com
1b19b2d3b6
An enhancement to the new -N feature. When -N is selected, do NOT wait
...
for the first https request to finish before launching all the others.
2000-10-13 01:25:44 +00:00
nelsonb%netscape.com
78d958f2e2
Add -v option. v means "verbose progress messages". Formerly, this
...
program was always very verbose. Now, it only outputs progress messages
when -v is specified. This is very useful for interactive use.
Cache statistics are written to stderr.
2000-10-13 00:50:05 +00:00
nelsonb%netscape.com
1f1201dd3d
Add new -N option. N means "No session reuse." -N disables the client
...
session cache, forcing all SSL handshakes to be FULL RSA handshakes.
2000-10-13 00:47:57 +00:00
wtc%netscape.com
277f8ea47d
Fixed the comment.
2000-10-11 07:21:38 +00:00
mcgreer%netscape.com
afd1c689cf
also do binary on stdout DER
2000-10-11 07:12:45 +00:00
mcgreer%netscape.com
2d404f1980
binary output always, for now
2000-10-11 07:04:30 +00:00
mcgreer%netscape.com
abf11ef663
fix output of DER's on windows
2000-10-11 06:52:06 +00:00
mcgreer%netscape.com
bf75619d8f
add a new function, SECU_TextFileToItem, for reading text files.
2000-10-11 00:56:32 +00:00
mcgreer%netscape.com
c66491f1f7
seperate text file reads from binary reads. Change all base64 encoded ciphertexts to end in LF instead of CRLF. This caused a bug on windows when checking out from CVS.
2000-10-11 00:55:45 +00:00
wtc%netscape.com
f7cb9d9b93
Print NSPR and OS error codes if PR_Open fails.
2000-10-10 02:38:08 +00:00
nelsonb%netscape.com
34c1f51a9d
All output messages from strsclnt now begin with the string "strsclnt: ".
...
This makes it easier to separate mixed client and server output.
2000-10-10 02:10:25 +00:00
nelsonb%netscape.com
05b9dba846
When an invalid option is encountered, print the usage message and exit.
...
Previously, it would simply silently stop parsing options and the program
would continue to run, leading to false successes in coverage tests.
2000-10-09 23:39:46 +00:00
nelsonb%netscape.com
96a4822448
Fix a crash caused by using a null PRFileDesc * after PR_Open fails.
2000-10-07 02:16:03 +00:00
nelsonb%netscape.com
5d154d8d5f
In lib/smime, detect null pointers returned by various functions.
...
Christian Kaiser fixed the test script to pass the right directory name
to the test program. The test script echoes all the cmsutil test
commands so that the error messages are associated with the proper one.
And cmsutil now puts its name on the front of its error messages.
2000-10-06 23:26:12 +00:00
nelsonb%netscape.com
90e2a74ac6
Call NSS_InitReadWrite instead of SECU_PKCS11Init, and check the result
...
for success. Fixes a crash. If it turns out that cmsutil doesn't need
to modifiy the cert and/or key DBs, then it should call NSS_Init, instead.
2000-10-06 21:45:01 +00:00
nelsonb%netscape.com
5afb009e51
Call NSS_NoDB_Init instead of that broken old SECU_PKCS11Init.
...
Also, test to see that the init succeeded.
2000-10-06 21:40:52 +00:00
nelsonb%netscape.com
2dd71c3c55
Prefix all selfserv's output messages with "selfserv: " so we can tell
...
client messages apart from server messages when the two are mixed.
When the verbose option is enabled, print out the session reuse stats
right after the first PR_Read completes, so we don't miss any.
2000-10-05 04:14:44 +00:00
nelsonb%netscape.com
c916074eb3
3 Changes:
...
- Test SSL2 (not SSL3) when only SSL2 ciphers have been chosen.
- Use a different metric for determining when multiple full handshakes
have been done with SSL2. (Can't use SSL3's counters for that purpose.)
- When PR_Connect returns a "connection reset by peer" error, silently
retry the operation with a new socket.
2000-10-05 04:11:31 +00:00
mcgreer%netscape.com
c65d5e509e
checked in wrong fix.
2000-10-05 02:41:09 +00:00
mcgreer%netscape.com
286b860d4f
fix for bug #55190 . Some 64-bit platforms will not return an alloc'ed pointer from an undeclared function.
2000-10-05 01:39:35 +00:00
wtc%netscape.com
e4efb1f7c1
Added bltest.
2000-10-03 02:45:59 +00:00
nelsonb%netscape.com
37f88721c8
Fix bug 54956, and cleanup some other things. Warning reduction.
2000-10-03 00:36:53 +00:00
mcgreer%netscape.com
55b0cfddec
fix problems encountered in shell script. it appears that "echo nss > passfile" creates a file with 6 bytes on NT using the dos shell. the added bytes were causing problems with password files, which this while loop attempted to fix. however, it broke DER-encoded input that has added whitespace at the end. this checkin returns SECU_FileToItem to it's original state, which blindly accepts whitespace characters at the end of the file.
...
the second change is forced because SECITEM_AllocItem asserts dst->data == NULL, and many NSS utilities pass uninitialized SECItem's around. In the future, those should be fixed, but for now zero the output buffer.
2000-10-02 22:30:27 +00:00
mcgreer%netscape.com
ccd7cc788f
changes to use blapitest on NT.
2000-09-29 22:27:14 +00:00
mcgreer%netscape.com
6d3b3ca957
brutish changes to get encrypted data working, will clean up later. allows test script for 3.1 to work.
2000-09-29 16:37:29 +00:00
mcgreer%netscape.com
255eadd741
add seeding call (for 3.1, for 3.2 I think this function needs to go away).
2000-09-29 15:27:00 +00:00
mcgreer%netscape.com
f912a0ccf0
add seeding call (req by RNG)
2000-09-29 15:25:42 +00:00
mcgreer%netscape.com
5a93a08faa
changes to allow build with RSA BSAFE Crypto-C library
2000-09-29 02:15:42 +00:00
nelsonb%netscape.com
0bd851314f
Fix crash when PR_Connect times out.
2000-09-28 01:50:15 +00:00
mcgreer%netscape.com
7f7a3f4d0d
changes for nss script. passed tests produce no output. fix dsa test case.
2000-09-27 23:03:21 +00:00
relyea%netscape.com
d630dde968
Use the new NSS_NoDB_init.
2000-09-23 00:00:05 +00:00
wtc%netscape.com
5e0b669489
Bugzilla bug #53114 : fixed license.
2000-09-22 14:55:03 +00:00
wtc%netscape.com
41adcd9362
Added a white space.
2000-09-22 14:52:32 +00:00
wtc%netscape.com
1bd68f8f77
Bugzilla bug #53114 : fixed license in nss/cmd/zlib/Makefile and
...
manifest.mn. Thanks to Brian Ryner <bryner@netscape.com> for the bug
report.
2000-09-22 05:35:35 +00:00
wtc%netscape.com
c42dded4ee
One only needs to link with either libcrypto or freebl. We need to copy
...
freebl/sha_fast.{c,h} to libcrypto to make libcrypto complete.
Modified files: nss/cmd/platlibs.mk, nss/lib/Makefile,
nss/lib/fortcrypt/swfort/pkcs11/Makefile.
2000-09-21 06:20:44 +00:00
relyea%netscape.com
9bd5c43fa0
OS/2 build changes.
2000-09-20 17:07:22 +00:00
mcgreer%netscape.com
30387a4f67
Check in self-test based on FIPS 186-1 appendix 5
2000-09-19 21:14:22 +00:00
chrisk%netscape.com
f86691004e
Fix bug # 53221: Call RNG_SystemInfoForRNG to provide RNG with enough
...
entropy for proper operation.
2000-09-19 19:34:46 +00:00
mcgreer%netscape.com
4cb280cca7
include support for adding S/MIME certs to the database. this will be needed for S/MIME test code.
2000-09-19 16:22:17 +00:00
wtc%netscape.com
82b40af680
Bugzilla bug #53143 : removed the definition of NSPR internal macros.
...
Modified files: FreeBSD.mk, HP-UXB.10.10.mk, HP-UXB.10.20.mk, Linux.mk,
OSF1.mk, SunOS5.mk, cmd/SSLsample/Makefile.NSS, lib/freebl/Makefile.
2000-09-19 02:24:31 +00:00
thayes%netscape.com
b52822dfb4
Initialize random number generator from system information. The new
...
RNG implementation fails if insufficient seed is not provided, which
would cause SDR key generation to fail.
2000-09-16 00:53:08 +00:00
relyea%netscape.com
800af76224
Fix merge problems from CVS. This version should now compile and work.
2000-09-15 21:01:53 +00:00
mcgreer%netscape.com
38ba5d81e9
NT still buggy with password files, this seems to fix it
2000-09-15 18:45:20 +00:00
mcgreer%netscape.com
2fbeac9dd1
extra #endif broke build
2000-09-15 15:58:42 +00:00
relyea%netscape.com
902093ca00
Propogate the password arg to the sign function.
2000-09-15 15:37:37 +00:00
relyea%netscape.com
b2e3a4121c
Fix NT so it can read from a password file. (do the correct EOL conversions).
...
Fix trust display for certs not in the database.
2000-09-15 15:35:03 +00:00
relyea%netscape.com
d8d0892b85
Fix certutil to read Certs from PKCS #11 modules. Make the 'all' option for
...
modules work for ListCerts and ListKeys. Allow password from file for these
options as well.
2000-09-14 21:12:13 +00:00
relyea%netscape.com
2af7e43e7e
Add option to get the server pid so we can kill the server later.
2000-09-13 21:25:13 +00:00
mcgreer%netscape.com
e130c0a252
fixes RFE from bug 49316 (will test on NT before verifying)
2000-09-13 06:43:52 +00:00