mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
146 904 коммитов 615 Ветки 98 Теги 5,9 GiB
Граф коммитов

5397 Коммитов

Автор SHA1 Сообщение Дата
glen.beasley%sun.com 2a16957317 306114 enable/disable FIPS modes files: CryptoManager.c, tests/all.pl, tests/FipsTest.java r=sandeep,sr=wtc 2005-09-06 17:57:40 +00:00
glen.beasley%sun.com 8ebcacd943 305984 update FIPS values for cipher suites file=sslinfo.c r=bob,sr=wtc 2005-09-06 17:15:32 +00:00
smfr%smfr.org c6ba13f2ab Fix bug 306795: nsNSSCertificateDB::IsCertTrusted() fails to check the return value from CERT_GetCertTrust(), so can return random trust bits. r=dougt, sr=rrelyea 2005-09-04 19:05:01 +00:00
sandeep.konchady%sun.com fca60837f2 Added Password.clear() and PBEKeyGenParams.clear() so that the objects are 
released when GC tries to collect them.
 2005-09-02 22:48:46 +00:00
sandeep.konchady%sun.com 09666e78db Adding JSS SelfServ test client and server. 2005-09-02 20:58:08 +00:00
julien.pierre.bugs%sun.com 132ddbe43e Fix 306785 . Memory leaks in PQG_ParamGenSeedLen . r=nelson 2005-09-02 20:05:35 +00:00
wtchang%redhat.com db235ef59a Bugzilla Bug 299197: added PK11AttrFlags and PK11_GenerateKeyPairWithFlags. 
Modified PK11_TokenKeyGenWithFlags to take a PK11AttrFlags parameter.
PK11AttrFlags controls the values of commonly used PKCS #11 object
attributes that have Boolean values. r=relyea,nelsonb.
Modified Files:
	nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11obj.c
	pk11wrap/pk11pub.h pk11wrap/pk11skey.c pk11wrap/secmodi.h
	pk11wrap/secmodt.h
 2005-09-02 18:25:04 +00:00
wtchang%redhat.com 184d7ab678 Bugzilla Bug 305835: removed NSS_ENABLE_ECC ifdefs under nss/lib except 
nss/lib/{freebl,softoken,ssl}. r=nelsonb.
Modified Files:
	cryptohi/keyhi.h cryptohi/manifest.mn cryptohi/seckey.c
	cryptohi/secsign.c freebl/ec.c pk11wrap/manifest.mn
	pk11wrap/pk11akey.c pk11wrap/pk11cert.c pk11wrap/pk11mech.c
	pk11wrap/pk11obj.c pk11wrap/pk11skey.c pkcs12/manifest.mn
	pkcs12/p12d.c pkcs7/config.mk pkcs7/p7decode.c
	pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
	smime/config.mk
 2005-09-02 01:24:57 +00:00
wtchang%redhat.com 4113e9229d Bugzilla Bug 303507: changed GCC's default OPTIMIZER back to -O2. 
r=saul.edwards.
 2005-09-02 00:59:00 +00:00
bsmedberg%covad.net a63c75a8a1 Bug 306615 - Fold PSM into libxul r=darin 2005-09-01 12:43:58 +00:00
wtchang%redhat.com afccecc775 Bugzilla Bug 257693: code cleanup. 1. Change "X9.63" to "X9.62". 2. In 
EC_ValidatePublicKey, set error codes and handle a NULL return from
ECGroup_fromName.  3. In the ECGroupStr structure, move the validate_point
field up.  4. In the test cases, if the tests that should fail, passed,
say so in the error messages.  r=douglas@stebila.ca.
Modified Files:
	blapi.h ec.c ecl/ecl-priv.h ecl/ecl.c ecl/ecl.h
	ecl/tests/ec2_test.c ecl/tests/ecp_test.c
 2005-08-27 01:09:22 +00:00
gavin%gavinsharp.com 5c09c35d46 Bug 263182: Page Info (Security tab) doesn't explain mixed secure/insecure, r=kaie.bugs, sr=neil.parkwaycc.co.uk 2005-08-26 20:34:31 +00:00
dougt%meer.net 7c0ee6b9d3 Bug 302284. add xpi hash support to InstallTrigger.install(). r=dveditz, sr=shaver, a=asa 2005-08-26 06:46:21 +00:00
julien.pierre.bugs%sun.com 32714968eb Fix for 297802 . r=wtchang . Add $(OS_LIBS) to MKSHLIB rules. 
Add -z defs linker option for Solaris and Linux .
Also add -z ignore on Solaris .
 2005-08-26 02:17:05 +00:00
wtchang%redhat.com dd1fe47c6d Bugzilla bug 302212: backed out the previous checkin. The corresponding 
Mozilla patch hasn't been checked in yet.
 2005-08-25 23:23:40 +00:00
relyea%netscape.com 33f6464950 Bug 302416 NSS root cert module & fortezza should not be using NSPR static libraries 
r=wtc
sr-julien
Side effects: Root cert module now works with CKF_OS_LOCKING_OK and not callbacks,
but does not work if CKF_OS_LOCKING_OK == 0 and callbacks are define.
 2005-08-25 20:08:27 +00:00
saul.edwards%sun.com 54f6fe8f80 Addendum to 303507 - set default OPTIMIZER for Linux and Solaris gcc builds 
to -O3, consolidate flags to Linux.mk.
 2005-08-24 23:58:36 +00:00
christophe.ravel.bugs%sun.com a58024a52e Uprev JSS version to 4.1.1 Beta. 2005-08-24 23:39:12 +00:00
wtchang%redhat.com d624f9129a Bugzilla Bug 296410: further simplify the code by always referencing the 
buffer using the same union member. r=relyea.
VFYContextCVS: ----------------------------------------------------------------------
 2005-08-24 23:05:39 +00:00
wtchang%redhat.com bb71b54311 Bugzilla bug 302670: backed out the use of system zlib because some Linux 
distributions are using zlib 1.1.4, which causes our signtool tests to
fail intermittently.  Don't know why.
 2005-08-20 01:05:44 +00:00
bienvenu%nventure.com 690785e15a add optional support for mit kerberos for windows, patches by cneberg@gmail.com, r=darin, sr=bienvenu 280792 2005-08-19 14:25:22 +00:00
julien.pierre.bugs%sun.com 22ff330626 Fix AIX build problem 2005-08-18 23:37:31 +00:00
wtchang%redhat.com b344095748 Bugzilla Bug 266123: support 64-bit PowerPC builds for Linux distributions 
(such as Red Hat and Fedora) whose GCC generates 32-bit code by default.
r=cls.
 2005-08-18 17:48:26 +00:00
nelsonb%netscape.com 3c64b87604 Remove fortezza header files from package. Bug 239960. patch by 
wtchang@redhat.com, r=nelson@bolyard.com Modified Files: prototype
 2005-08-18 03:42:00 +00:00
cbiesinger%web.de e519fb7724 bug 277587 nsSecureBrowserUIImpl's nsUIContext interface requestor doesn't give 
access to the dom window
patch by Christian Persch <chpe@gnome.org> r=jgmyers sr=roc a=asa
 2005-08-17 13:38:03 +00:00
julien.pierre.bugs%sun.com 6b5d842c09 Fix for bug 217024. add a function for comparing cert validity periods. r=wtchang 2005-08-17 02:04:12 +00:00
sandeep.konchady%sun.com 9c0e116e76 Bug Id: 304195 
Added try/catch block around the method calls within toString().  Calls
such as getInetAddress(), getPort() etc does not check if the socket is
closed, and when applications use toString() on a closed socket, there
is an uncaught exception.
 2005-08-16 23:44:45 +00:00
saul.edwards%sun.com c3fa2091c5 Bug 303507: Add comba for MPI's multiply and square routines. 
This code is currently for AMD 64 on both Linux and Solaris only.
 2005-08-16 19:25:48 +00:00
nelsonb%netscape.com d391504d03 Remove fortezza code from libSSL and from the SSL test programs. 
Stop building fortezza's special software token, and fortezza specific
test programs.   Bug 239960. r=rrelyea.
Modified Files:
    cmd/manifest.mn cmd/platlibs.mk cmd/SSLsample/server.c
    cmd/SSLsample/sslsample.c cmd/modutil/modutil.c
    cmd/selfserv/selfserv.c cmd/sslstrength/sslstrength.c
    cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
    cmd/vfyserv/vfyserv.c cmd/vfyserv/vfyutil.c lib/manifest.mn
    lib/ssl/nsskea.c lib/ssl/preenc.h lib/ssl/prelib.c
    lib/ssl/ssl.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
    lib/ssl/sslauth.c lib/ssl/sslcon.c lib/ssl/sslenum.c
    lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
    lib/ssl/sslsecur.c lib/ssl/sslsnce.c lib/ssl/sslsock.c
    lib/ssl/sslt.h
 2005-08-16 03:42:26 +00:00
wtchang%redhat.com 3e2e9c754f Bugzilla bug 296410: checked in a better fix than the previous checkin. 
Also removed the unused, unexported function SEC_VerifyFile. r=nelsonb.
 2005-08-16 01:57:51 +00:00
wtchang%redhat.com 88fb7bee52 Bugzilla bug 296410: removed unused, unexported function SEC_SignFile. 
r=nelsonb.
 2005-08-16 01:52:17 +00:00
wtchang%redhat.com af11fc1310 Bugzilla Bug 302670: enable NSS to use system zlib and do that on Linux. 
r=nelsonb.
Modified Files:
	coreconf/Linux.mk nss/cmd/Makefile nss/cmd/manifest.mn
	nss/cmd/platlibs.mk
 2005-08-16 01:08:59 +00:00
wtchang%redhat.com f95409ea4c Bugzilla Bug 302212: enable Mac OS X x86 builds to target SDKs. The patch 
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
 2005-08-15 22:44:22 +00:00
wtchang%redhat.com e758a9999b Bugzilla Bug 298612: make sure that the int argument that we pass to the 
isspace, etc. macros is EOF or between 0 and 255. r=nelsonb.
 2005-08-15 22:06:47 +00:00
wtchang%redhat.com 5e25df8763 Bugzilla Bug 298957: removed a comment. The code already does what the 
comment asked for. r=relyea.
 2005-08-15 21:34:42 +00:00
relyea%netscape.com 80d892f39d Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit] 
sr=brendan r=wtc a=dbaron

The issue is the use of the PL_DHash* functions. It's possible that a given call
to PL_DHashOperate which adds a new entry may cause the hash table to expand,
and all the existing entries to be reallocated. PL_DHash does this by allocating
new memory, then copying the entries.

getCacheEntry() returns one of these hash entries. CmpBy() makes two consecutive
calls to getCacheEntry, then uses the returned entries for it's comparisons. If
the second entry call causes a new entry to be added to the table, and causes
the hash table to expand, the pointer to the first entry we retrieved will point
to freed memory.

The fix is to make the usable entry a pointer in the hashtable entry, and return
that pointer. When the hashtable rebuilds it's entries, the pointer will be
copied to the new entry and not be disturbed.
 2005-08-15 21:23:51 +00:00
wtchang%redhat.com 55197b5cfd Bugzilla Bug 289530: fixed signed/unsigned comparison compiler warnings. 
Fixed compilation errors of new ECC code added in the previous checkin.
r=nelsonb.
 2005-08-15 21:23:39 +00:00
relyea%netscape.com 29e52be20d Remove ^M from the tree version of mpcpucache.c 2005-08-15 19:00:17 +00:00
saul.edwards%sun.com 95723d010a Bug 285932: Faster SHA1 implementation for AMD64: sha-fast-amd64-sun.s is 
currently only for Solaris AMD 64 when using Sun studio compilers.
 2005-08-15 16:55:22 +00:00
wtchang%redhat.com 2577eb148c Bugzilla bug 302286: fixed the bug that NSS misinterpreted the 
CKA_PRIME_BITS attribute for DSA's p parameter. r=relyea.
Modified files: pk11wrap/pk11pqg.c softoken/pkcs11c.c
 2005-08-13 00:09:26 +00:00
wtchang%redhat.com 12ebc20147 Bugzilla Bug 302286: PQG_PBITS_TO_INDEX should reject p bits that are 
less than 512 or greater than 1024. r=relyea.
 2005-08-13 00:07:18 +00:00
wtchang%redhat.com 0824c317a1 Bugzilla Bug 296410: enlarge the buffer size for message digest so that 
we can generate and verify signatures that use SHA-512. r=relyea
Modified files: secsign.c secvfy.c
 2005-08-12 23:50:19 +00:00
wtchang%redhat.com 3caf238827 Bugzilla bug 240554: Alice's cert doesn't need to be added to Bob's db. 
r=relyea.
Modified files: cert.sh eccert.sh
 2005-08-12 23:27:44 +00:00
wtchang%redhat.com 148653a358 Bugzilla bug 240554: we should pass the signature algorithm, not the 
public key's algorithm, to VFY_VerifyData and VFY_VerifyDigest. Only
fixed this in cmssiginfo.c.  In p7decode.c I just added comments saying
they should be fixed. r=relyea.
Modified files: lib/smime/cmssiginfo.c lib/pkcs7/p7decode.c
 2005-08-12 23:26:38 +00:00
wtchang%redhat.com 1a568d0852 Bugzilla bug 240554: set (better) error codes and removed an unreachable 
break statement. r=relyea.
 2005-08-12 23:24:22 +00:00
wtchang%redhat.com c0bd0e749a Bugzilla bug 240554: fixed signed/unsigned comparison compiler warning. 
r=relyea.
 2005-08-12 23:22:28 +00:00
wtchang%redhat.com e09393045c Bugzilla bug 292239: have the softoken report Cryptoki version 2.20. 
r=relyea.
 2005-08-12 23:14:22 +00:00
wtchang%redhat.com 2d2b80688d Bugzilla bug 292239: added a change missed in the previous checkin. 
r=relyea.
 2005-08-12 23:12:18 +00:00
relyea%netscape.com 684e5d1c2b Correct mistyped version of wtc patch. 2005-08-12 22:19:19 +00:00
relyea%netscape.com a584ef4a1d Bug 292239 r wtc & julien 
Merge PKCS #11 v2.20 header files
 2005-08-12 18:58:47 +00:00