697f0e4ef3
Update NSS to NSS_3_12_8_BETA1. approval2.0+ by dtownsend in
...
bug 437904 and by sayrer in bug 525092. Also includes fixes
for bug 526231, bug 575174, and bug 580679.
--HG--
extra : rebase_source : 74988b3cb91db5dccc5f904c12cbee4acfa46162
2010-08-02 13:49:18 -07:00
51a435185d
Bug 575620, landing NSS 3.12.7 beta 2
...
r=wtc
2010-07-19 07:45:52 +02:00
5d7a8d0f68
Bug 527659, Update Mozilla-central to NSS 3.12.6
...
=== r=rrelyea for upgrading to release candidate 1
=== reapplying bug 519550 on top
=== includes PSM makefile tweak to keep TLS disabled (variables changed in the updated NSS snapshot)
=== change configure.in to require the newer system NSS, r=wtc
2010-02-12 09:47:51 +01:00
aad067a3a5
Bug 527659, Update mozilla-central to NSS 3.12.6 (beta)
...
== NSS portion
== r=rrelyea/wtc for upgrading mozilla-central to cvs tag NSS_3_12_6_BETA1
== This includes reapplying the (merged) patch from bug 519550 on top of NSS.
== PSM portion
== Includes the patch to disable TLS compression, r=kaie
== Include the patch to disable zlib test programs, which don't work on maemo, r=kaie
2010-02-07 12:54:28 +01:00
7ad8828630
Bug 450646, Upgrade Mozilla to NSS 3.12.1 release candidate 1
...
r=rrelyea
2008-08-15 06:12:54 +02:00
2f67dc2ab9
Import NSS_3_12_RC4
2008-06-06 08:40:11 -04:00
0054412272
Bug 374866. Reftests for text-transform. r=dbaron
2007-03-22 16:01:14 -07:00
dc9bbef2e3
Fix for bug 423839 . Add multiple PKCS#11 token password command-line option to NSS tools. r=nelson
2008-08-08 23:48:12 +00:00
df22189846
Bug 403563: implement the TLS session ticket extension (rfc4507bis). The
...
patch is contributed by Nagendra Modadugu <ngm+mozilla@google.com>. A
small portion (PKCS #11 code and tests) was written by Wan-Teh Chang
<wtc@google.com>. r=nelson,wtc
Modified Files:
cmd/lib/SSLerrs.h cmd/selfserv/selfserv.c
cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
lib/ssl/manifest.mn lib/ssl/ssl.h lib/ssl/ssl3con.c
lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslerr.h
lib/ssl/sslimpl.h lib/ssl/sslnonce.c lib/ssl/sslsnce.c
lib/ssl/sslsock.c lib/ssl/sslt.h tests/ssl/sslstress.txt
Added Files:
lib/ssl/ssl3ext.c
2008-03-06 20:16:24 +00:00
359339f02a
Bug 266941: Strsclnt patch. r=nelson
2008-03-04 09:36:03 +00:00
a194416226
Bug 402308: fixed several compiler warnings in nss/cmd. r=nelson.
...
Modified Files:
checkcert/checkcert.c crmftest/testcrmf.c pk12util/pk12util.c
shlibsign/shlibsign.c strsclnt/strsclnt.c vfychain/vfychain.c
2007-11-05 17:13:28 +00:00
b33e44d093
Bug 402114: fix the incorrect prototypes of SSL handshake callbacks.
...
r=nelson.
Modified Files:
SSLsample/client.c SSLsample/server.c SSLsample/sslsample.c
SSLsample/sslsample.h strsclnt/strsclnt.c vfyserv/vfyserv.c
vfyserv/vfyserv.h vfyserv/vfyutil.c
2007-11-01 22:05:23 +00:00
0b39a2228b
Bug 272279. Make strsclnt use IPv4 or IPv6, like tstclnt. r=julien
2007-07-24 04:51:31 +00:00
878c0b579d
Add missing TLS_RSA_WITH_NULL_SHA cipher suite. Bug 370957. r=slavo,julien
2007-04-26 00:20:12 +00:00
fbaaab9726
129218 - memory leaks in tstclnt. r=neil, sr=nelson
2007-03-13 15:40:58 +00:00
4f564288b5
Bug 367037 - don't call usage from any thread but the primordial thread.
...
Instead, return from the thread so the primordial thread will clean up.
This fixes many leaks. r=neil.williams,alexei.volkov
For any errors involving bad cipher letters, print a meaningful error.
2007-03-10 00:54:44 +00:00
ade9cc968d
129218 - memory leaks in tstclnt. r=neil
2007-03-05 21:01:25 +00:00
e38625b373
129218 - memory leaks in tstclnt. Fix mem leak in strsclnt.c/main/PL_CreateOptState. r=wtc
2007-03-05 19:48:16 +00:00
dcaeb9d028
[Bug 220380] Add SSL client auth stress tests. Attachment #4 . r=julien
2006-05-20 18:32:08 +00:00
56e0778f65
Add and use new -2 option for strsclnt to disable SSL2 compatible client
...
hellos, so we can stress test TLS hello extensions. Bug 333559.
r=julien.pierre,rrelyea
2006-04-13 22:43:31 +00:00
020f267488
Add new -i (ignore errors) command line option to strsclnt. Strsclnt now
...
stops soon after the first error unless the -i option is given.
Strsclnt and tstclnt now look for an environment variable named
NSS_DEBUG_TIMEOUT, and if present, its value is used as a timeout time
for all socket IO operations. Bug 332348. r=julien.pierre.
2006-04-04 07:31:46 +00:00
01550d8a23
Fix for 330068 . Be more verbose in strsclnt error cases
2006-03-29 22:35:44 +00:00
2718276062
Fix for bug 330068 . Increment counter variable atomically. Be more verbose. r=nelson
2006-03-29 05:05:09 +00:00
bce474d96e
Fix for bug 317856 . uninitialized variable correction. r=wtchang
2006-01-20 22:55:15 +00:00
b9bbd71bdd
Fix for bug 317856 . compiler warnings in strsclnt
2006-01-20 00:43:23 +00:00
f8302eae78
Bugzilla Bug 236245: Updated NSS to "ECC Cipher Suites for TLS" draft 12
...
plus upcoming revisions. The patch is contributed by Douglas Stebila
of Sun Labs <douglas@stebila.ca>. r=wtc.
Modified Files:
cmd/selfserv/selfserv.c cmd/strsclnt/strsclnt.c
cmd/tstclnt/tstclnt.c cmd/vfyserv/vfyserv.c lib/ssl/ssl3con.c
lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslenum.c
lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
lib/ssl/sslsock.c tests/ssl/ecssl.sh tests/ssl/ecsslauth.txt
tests/ssl/ecsslcov.txt tests/ssl/ecsslstress.txt
tests/ssl/ssl.sh
2005-12-14 01:49:40 +00:00
d9d3cf6f93
Bug 305147: add -B (bypass SSL) and -s (disable SSL locking) to server and client commands; add bypass testing to SSL test suite.
2005-09-09 04:50:07 +00:00
28f26c51fa
Remove fortezza code from libSSL and from the SSL test programs.
...
Stop building fortezza's special software token, and fortezza specific
test programs. Bug 239960. r=rrelyea.
Modified Files:
cmd/manifest.mn cmd/platlibs.mk cmd/SSLsample/server.c
cmd/SSLsample/sslsample.c cmd/modutil/modutil.c
cmd/selfserv/selfserv.c cmd/sslstrength/sslstrength.c
cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
cmd/vfyserv/vfyserv.c cmd/vfyserv/vfyutil.c lib/manifest.mn
lib/ssl/nsskea.c lib/ssl/preenc.h lib/ssl/prelib.c
lib/ssl/ssl.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslauth.c lib/ssl/sslcon.c lib/ssl/sslenum.c
lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
lib/ssl/sslsecur.c lib/ssl/sslsnce.c lib/ssl/sslsock.c
lib/ssl/sslt.h
2005-08-16 03:42:26 +00:00
f15866be62
Fix for bug 292151 . Prevent strsclnt from starting threads for each connection. Allow specifying a ratio of full handshakes . r=nelson
2005-07-25 20:39:14 +00:00
bd6a46d8d3
Fix for 293091 - add double -o option to skip cert verification completely. r=nelson
2005-05-07 04:10:55 +00:00
964a4ebea4
Back out the preceeding fortezza removal patch, which was accidentally
...
applied to the trunk, not to the intended branch.
2005-04-06 21:35:45 +00:00
e42ce41730
Remove fortezza support from libSSL and related commands. Bug 239960.
...
ON PERFORMANCE_HACKS_BRANCH. r=rrelyea.
2005-04-06 19:43:19 +00:00
74da174aa1
initialize variable
2004-10-07 03:57:19 +00:00
5307ea40d4
Remove unused variables
2004-10-07 03:56:37 +00:00
2cdff0bb4f
Bug 236613: change to MPL/LGPL/GPL tri-license.
2004-04-25 15:03:26 +00:00
e395b0a792
Bugzilla bug 225373: the return value of CERT_NameToAscii must be freed
...
with PORT_Free.
Modified Files:
cmd/lib/secutil.c cmd/selfserv/selfserv.c
cmd/signver/pk7print.c cmd/strsclnt/strsclnt.c
cmd/tstclnt/tstclnt.c lib/certdb/cert.h
2003-11-13 16:10:45 +00:00
c7f2b76a30
Resolves bug 206971 - selfserv should OptimizeSpeed (use NSS_Initialize).
...
Both selfserv and strsclnt no longer OptimizeSpace. Moved SECMOD_DB
defines from nssinit.c to nss.h, make it availble for public use with
NSS_Initialize().
2003-05-30 17:25:13 +00:00
c8b735a8c3
Add -3 and -T options, with same meaning as in tstclnt and selfserv,
...
disabling SSL3 and TLS respectively. With this change, the QA stress
tests that say they're testing SSL3 or TLS can finally test what they
claim they are testing.
2003-05-30 05:35:52 +00:00
903e186861
Fix for bug 204015 - make strsclnt reuse token after it is unplugged . r=nelsonb
2003-05-15 17:09:19 +00:00
0f451fa946
Changes to enable ECC over characteristic 2^m fields.
...
Contribution from Vipul Gupta <Vipul.Gupta@Sun.COM>
Modified Files:
nss/cmd/strsclnt/strsclnt.c nss/lib/cryptohi/seckey.c
nss/lib/freebl/blapit.h nss/lib/freebl/ec.c
nss/lib/freebl/manifest.mn nss/lib/freebl/mpi/Makefile
nss/lib/softoken/ecdecode.c nss/lib/softoken/pkcs11.c
nss/lib/ssl/ssl3con.c nss/lib/util/secoid.c
nss/lib/util/secoidt.h
2003-03-29 00:18:30 +00:00
12a72288a3
Bug 145029: fixed compiler warnings (mostly "xxx might be used
...
uninitialized").
2003-01-17 02:49:11 +00:00
388899d82d
Need to call SSL_ClearSessionCache before calling NSS_Shutdown.
2003-01-08 21:40:52 +00:00
53f2c2caf6
checking return value of NSS_Shutdown. Bug 171263
2003-01-07 22:31:36 +00:00
76c9ac877e
Fix 164126: makefile build error.
...
Change the NSS module name from "security" to "nss".
2002-09-06 16:38:56 +00:00
fc73a7647f
fix a cert reference leak in strsclnt
2002-04-15 14:24:15 +00:00
8cff0b44bc
Add cross-platform (WinCE) support.
2002-04-04 00:00:27 +00:00
8cb24fcc5a
clean up certs & keys for purify
2002-02-15 20:50:47 +00:00
ab4a5bf572
Add code to test new SSL_LocalCertificate() function on first connection,
...
or on every connection if -vv option is used. Bug 78959.
Also, the nickname "none" can now be used to prevent performing client
authentication without having to use an invalid password.
2001-11-09 05:43:06 +00:00
2554d51a97
Reimplement SSL_GetChannelInfo. Add new function SSL_GetCipherSuiteInfo().
...
Also, implement new ciphersuite preference order. Bug 78959.
2001-11-02 04:24:28 +00:00
7cf0e718c5
Correct the test for length of data in SSL channel info struct.
2001-09-26 04:22:55 +00:00
Wan-Teh Chang
Kai Engert
Benjamin Smedberg
roc+@cs.cmu.edu
julien.pierre.boogz%sun.com
wtc%google.com
slavomir.katuscak%sun.com
nelson%bolyard.com
alexei.volkov.bugs%sun.com
julien.pierre.bugs%sun.com
wtchang%redhat.com
saul.edwards%sun.com
nelsonb%netscape.com
gerv%gerv.net
wchang0222%aol.com
kirk.erickson%sun.com
jpierre%netscape.com
wtc%netscape.com
bishakhabanerjee%netscape.com
nicolson%netscape.com
ian.mcgreer%sun.com