83ceb87c51
Fix for 293686 . signver has command-line options with optional arguments. r=nelsonb
2005-09-19 20:52:11 +00:00
3241563dc1
238319: Sun packages changes.
...
Change libfreebl name on Solaris x86 (following changes from Bugzilla 303508).
2005-09-19 19:12:24 +00:00
a567b0b7d9
Only do expensive GetName() calls if we're actually logging. Bug 304847,
...
r=kaie, sr=dmose
2005-09-19 03:23:21 +00:00
e7338f0a91
Bug 284636 Fix typo in Website Certified by an Unknown Authority alert
...
Patch by stephend and Kurt <supernova_00@yahoo.com> r=kaie sr=bzbarsky
2005-09-19 00:05:02 +00:00
ad39a7ded6
Bugzilla bug 303508: a more elegant way to decide when we need to prefix
...
LIBRARY_VERSION with '_'. r=nelsonb.
2005-09-16 23:18:01 +00:00
c9cc74edbc
Fix hoarked build from previous checkin. Doh.
2005-09-16 21:28:20 +00:00
976c2df41a
Bugzilla Bug 298517: when in FIPS mode, impose minimum password length and
...
quality to ensure a password guessing probability of less than 1 in
10,000,000, and impose a one second delay after failed login attempt to
allow at most 60 login attempts per minute. r=relyea,nelsonb.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
2005-09-16 20:37:58 +00:00
34f69db6a3
Fix for bug 127960 . Add SSL force handshake APIs which take a timeout . r=nelson
2005-09-16 20:33:09 +00:00
3d76d4e597
Fix bug 307293: make sure we initialize the mType and mTag members of nsNSSASN1Object. r=wtchang, sr=rrelyea.
2005-09-16 18:57:55 +00:00
3e13aeb576
Bugzilla Bug 288728: handle invalid values of recipient identifier type.
...
r=jpierre,relyea.
2005-09-16 17:54:31 +00:00
fce7dd3516
Bugzilla Bug 288728: use a whitelist instead of a blacklist when checking
...
for invalid values of "type". r=jpierre,relyea.
2005-09-16 17:52:37 +00:00
c1d23a672f
Bugzilla Bug 303508: removed the underscore from the name of the "single"
...
freebl shared library (freebl_3.dll -> freebl3.dll). Do the recursive
child builds without changing directories. This fixed the BUILD_TREE build
problem. r=nelsonb,saul.edwards.
Modified files: Makefile freebl.def manifest.mn
2005-09-16 17:17:45 +00:00
ef4eb9a0e4
Bugzilla Bug 303508: enhanced the makefile rule for $(MAPFILE). Added
...
the new variable MAPFILE_SOURCE instead of the hardcoded
$(LIBRARY_NAME).def to represent the "source" mapfile, and use $< to
refer to the "source" mapfile (prerequisite of the target) in
PROCESS_MAP_FILE. r=nelsonb.
Modified Files:
AIX.mk BSD_OS.mk Darwin.mk FreeBSD.mk HP-UX.mk IRIX.mk
Linux.mk Linux2.1.mk Linux2.2.mk Linux2.4.mk Linux2.5.mk
Linux2.6.mk NCR3.0.mk NEC4.2.mk NetBSD.mk OS2.mk OSF1.mk
OpenUNIX.mk OpenVMS.mk ReliantUNIX.mk SCO_SV3.2.mk SunOS5.mk
UNIXWARE2.1.mk WIN16.mk WIN32.mk WINCE.mk rules.mk ruleset.mk
2005-09-16 17:09:23 +00:00
b11dc01e94
Removed an unnecessary -L linker flag. r=nelsonb,saul.edwards.
2005-09-16 17:02:49 +00:00
267dd6e80f
Bugzilla Bug 303508: code cleanup. r=nelsonb,jpierre.
2005-09-16 16:59:22 +00:00
4bb21db05f
Modified import.pl, jdk.mk and release.pl under coreconf and all.pl under
...
jss test directory for bug #302550 . Attached below is the diff of the
changes done to these files.
Index: coreconf/import.pl
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/import.pl,v
retrieving revision 1.2
diff -u -r1.2 import.pl
--- coreconf/import.pl 25 Apr 2004 15:02:17 -0000 1.2
+++ coreconf/import.pl 15 Sep 2005 18:37:51 -0000
@@ -46,7 +46,6 @@
#######-- read in variables on command line into %var
-$var{ZIP} = "zip";
$var{UNZIP} = "unzip -o";
&parse_argv;
Index: coreconf/jdk.mk
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/jdk.mk,v
retrieving revision 1.14
diff -u -r1.14 jdk.mk
--- coreconf/jdk.mk 25 Apr 2004 15:02:17 -0000 1.14
+++ coreconf/jdk.mk 15 Sep 2005 18:37:52 -0000
@@ -123,14 +123,14 @@
# set [Sun Solaris] platforms
ifeq ($(OS_ARCH), SunOS)
- JAVA_CLASSES = $(JAVA_HOME)/lib/classes.zip
+ JAVA_CLASSES = $(JAVA_HOME)/jre/lib/rt.jar
ifeq ($(JRE_HOME),)
JRE_HOME = $(JAVA_HOME)
JRE_CLASSES = $(JAVA_CLASSES)
else
ifeq ($(JRE_CLASSES),)
- JRE_CLASSES = $(JRE_HOME)/lib/classes.zip
+ JRE_CLASSES = $(JRE_HOME)/lib/rt.jar
endif
endif
@@ -144,9 +144,13 @@
# (3) specify "linker" information
ifeq ($(USE_64), 1)
- JAVA_CPU = $(shell uname -p)v9
+ ifeq ($(CPU_ARCH), x86_64)
+ JAVA_CPU = amd64
+ else
+ JAVA_CPU := $(shell uname -p)v9
+ endif
else
- JAVA_CPU = $(shell uname -p)
+ JAVA_CPU := $(shell uname -p)
endif
ifeq ($(JDK_VERSION), 1.1)
@@ -163,8 +167,6 @@
ifneq ($(JDK_VERSION), 1.1)
ifeq ($(USE_64), 1)
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server
-else
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/classic
endif
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)
JAVA_LIBS += -ljvm -ljava
@@ -220,14 +222,14 @@
# set [Redhat Linux] platforms
ifeq ($(OS_ARCH), Linux)
- JAVA_CLASSES = $(JAVA_HOME)/lib/classes.zip
+ JAVA_CLASSES = $(JAVA_HOME)/jre/lib/rt.jar
ifeq ($(JRE_HOME),)
JRE_HOME = $(JAVA_HOME)
JRE_CLASSES = $(JAVA_CLASSES)
else
ifeq ($(JRE_CLASSES),)
- JRE_CLASSES = $(JRE_HOME)/lib/classes.zip
+ JRE_CLASSES = $(JRE_HOME)/jre/lib/rt.jar
endif
endif
@@ -241,16 +243,21 @@
# (3) specify "linker" information
JAVA_CPU = i386
-
+ ifeq ($(CPU_ARCH),x86_64)
+ ifeq ($(USE_64), 1)
+ JAVA_CPU = amd64
+ else
+ JAVA_CPU = i386
+ endif
+ endif
JAVA_LIBDIR = jre/lib/$(JAVA_CPU)
JAVA_CLIBS =
ifeq ($(JDK_VERSION), 1.4)
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server -ljvm
- else
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/classic -ljvm
+ JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server -ljvm
endif
+
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR) -ljava
JAVA_LIBS += $(JAVA_CLIBS)
Index: coreconf/release.pl
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/release.pl,v
retrieving revision 1.3
diff -u -r1.3 release.pl
--- coreconf/release.pl 25 Apr 2004 15:02:17 -0000 1.3
+++ coreconf/release.pl 15 Sep 2005 18:37:52 -0000
@@ -41,7 +41,14 @@
#######-- read in variables on command line into %var
-$var{ZIP} = "zip";
+$use_jar = 1;
+$ZIP = "$ENV{JAVA_HOME}/bin/jar";
+
+if ( $ENV{JAVA_HOME} eq "" ) {
+ $ZIP = "zip";
+ $use_jar = 0;
+}
+
&parse_argv;
@@ -56,11 +63,15 @@
($jardir,$jaropts) = split(/\|/,$jarinfo);
- $zipoptions = "-T";
- if ($jaropts =~ /a/) {
- if ($var{OS_ARCH} eq 'WINNT') {
- $zipoptions .= ' -ll';
- }
+ if ( $use_jar ) {
+ $zipoptions = "-cvf";
+ } else {
+ $zipoptions = "-T -r";
+ if ($jaropts =~ /a/) {
+ if ($var{OS_ARCH} eq 'WINNT') {
+ $zipoptions .= ' -ll';
+ }
+ }
}
# just in case the directory ends in a /, remove it
@@ -117,8 +128,8 @@
}
closedir(DIR);
- print STDERR "zip $zipoptions -r $jarfile $filelist\n";
- system("zip $zipoptions -r $jarfile $filelist");
+ print STDERR "$ZIP $zipoptions $jarfile $filelist\n";
+ system("$ZIP $zipoptions $jarfile $filelist");
rmdir("META-INF");
for $i (1 .. $dirdepth) {
chdir("..");
Index: jss/org/mozilla/jss/tests/all.pl
===================================================================
RCS file: /cvsroot/mozilla/security/jss/org/mozilla/jss/tests/all.pl,v
retrieving revision 1.22
diff -u -r1.22 all.pl
--- jss/org/mozilla/jss/tests/all.pl 6 Sep 2005 17:57:40 -0000 1.22
+++ jss/org/mozilla/jss/tests/all.pl 15 Sep 2005 18:37:54 -0000
@@ -136,12 +136,26 @@
exit(1);
}
+ #
+ # Use 64-bit Java on AMD64.
+ #
+
$java = "$ENV{JAVA_HOME}/jre/bin/java$exe_suffix";
+ my $java_64bit = 0;
+ if ($osname eq "SunOS") {
+ if ($ENV{USE_64}) {
+ my $cpu = `/usr/bin/isainfo -n`;
+ if ($cpu == "amd64") {
+ $java = "$ENV{JAVA_HOME}/jre/bin/amd64/java$exe_suffix";
+ $java_64bit = 1;
+ }
+ }
+ }
(-f $java) or die "'$java' does not exist\n";
$java = $java . $ENV{NATIVE_FLAG};
- if ($ENV{USE_64}) {
- $java = $java . " -d64";
+ if ($ENV{USE_64} && !$java_64bit) {
+ $java = $java . " -d64";
}
$pwfile = "passwords";
2005-09-16 00:33:23 +00:00
05c807a27d
Plug leaks in SSL bypass code. Add freeit argument to HMAC_Destroy function.
...
Change existing callers to pass this argument. Call HMAC_Destroy from SSL.
Bug 305147. r=Julien.Pierre
Modified Files: freebl/alghmac.c freebl/alghmac.h freebl/loader.c
freebl/loader.h freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
ssl/ssl3con.c
2005-09-14 04:12:50 +00:00
bb2b9eb520
Bugzilla Bug 301554: Clear the 'present' flag if slot fails to refresh.
...
relyea wrote the patch. r=wtc,nelsonb.
2005-09-14 01:35:02 +00:00
9d5fbfdeae
bug 292368 remove obsolete file; replaced by nsICryptoHash
2005-09-12 17:51:57 +00:00
945c39235d
Fix regression introduced in last checkin. If the caller disables the
...
use of locks while locks are in use, don't forget to unlock the locks
already locked on the stack. bug 305147. r=julien.pierre
2005-09-10 01:18:40 +00:00
d9d3cf6f93
Bug 305147: add -B (bypass SSL) and -s (disable SSL locking) to server and client commands; add bypass testing to SSL test suite.
2005-09-09 04:50:07 +00:00
ef28ad5885
Implement two new SSL socket options: SSL_BYPASS_PKCS11 and SSL_NO_LOCKS.
...
Reorganize the SSL Socket structure contents to obviate ssl3 pointer.
Move much of the ECC code from ssl3con to new file ssl3ecc.c. derive.c
implements derivation of the SSL/TLS master secret and the encryption and
MAC keys and IVs without using PKCS11. Bug 305147. r=rrelyea.
Modified Files: ssl/config.mk ssl/manifest.mn ssl/ssl.h ssl/ssl3con.c
ssl/ssl3gthr.c ssl/sslauth.c ssl/sslcon.c ssl/ssldef.c ssl/sslgathr.c
ssl/sslimpl.h ssl/sslinfo.c ssl/sslnonce.c ssl/sslsecur.c ssl/sslsnce.c
ssl/sslsock.c
Added Files: ssl/derive.c ssl/ssl3ecc.c
2005-09-09 03:02:16 +00:00
5a95eff411
Export function PK11_MapSignKeyType for use by libSSL. Bug 305147.
...
r=relyea.
Modified Files: nss/nss.def pk11wrap/pk11mech.c pk11wrap/pk11obj.c
pk11wrap/pk11pub.h pk11wrap/secmodi.h
2005-09-09 02:03:57 +00:00
982861b69c
238319: Sun packages changes.
...
Install 64 bit libraries in lib64 on Linux.
2005-09-08 22:23:54 +00:00
bfb9fa2c94
Packaging for bug 303508: new freebl library names for Solaris packages.
...
Note that Linux does not require these changes because the Makefile picks up
all .so and .chk files for Linux packages.
2005-09-08 02:25:49 +00:00
a7841eb094
Bugzilla Bug 299197: define two bitflags for every PKCS #11 object
...
attribute with no exceptions. renamed PK11_ATTR_READONLY as
PK11_ATTR_UNMODIFIABLE. In pk11_OpFlagsToAttributes, backed out a change
I made before. Made pk11_AttrFlagsToAttributes table-driven. In
pk11_loadPrivKeyWithFlags, fixed the bug (always loading the public key as
a token object). Other code cleanups. r=relyea,nelsonb.
Modified files: pk11akey.c pk11obj.c pk11pub.h pk11skey.c secmodt.h
2005-09-07 18:23:35 +00:00
046c62d43f
Bug 303508: Add freebl shared libs that do 64-bit integer math. Bug 274984: softoken fails to load freebl in setuid programs. freebl becomes a shared library on all platforms. r=nelson
...
Modified Files:
coreconf/HP-UXB.11.mk coreconf/SunOS5.mk
nss/cmd/shlibsign/Makefile nss/cmd/shlibsign/manifest.mn
nss/lib/freebl/Makefile nss/lib/freebl/arcfour.c
nss/lib/freebl/blapi.h nss/lib/freebl/config.mk
nss/lib/freebl/ldvector.c nss/lib/freebl/loader.c
nss/lib/freebl/loader.h nss/lib/freebl/manifest.mn
Added Files:
nss/lib/freebl/freebl.def
2005-09-07 02:47:16 +00:00
903845deae
306114 enable/disable FIPS modes files: CryptoManager.c, tests/all.pl, tests/FipsTest.java r=sandeep,sr=wtc
2005-09-06 17:57:40 +00:00
8e83cd4a27
305984 update FIPS values for cipher suites file=sslinfo.c r=bob,sr=wtc
2005-09-06 17:15:32 +00:00
555d7f8815
Fix bug 306795: nsNSSCertificateDB::IsCertTrusted() fails to check the return value from CERT_GetCertTrust(), so can return random trust bits. r=dougt, sr=rrelyea
2005-09-04 19:05:01 +00:00
5c5544016c
Added Password.clear() and PBEKeyGenParams.clear() so that the objects are
...
released when GC tries to collect them.
2005-09-02 22:48:46 +00:00
57109efa29
Adding JSS SelfServ test client and server.
2005-09-02 20:58:08 +00:00
5b4d5638cf
Fix 306785 . Memory leaks in PQG_ParamGenSeedLen . r=nelson
2005-09-02 20:05:35 +00:00
a7eca3e9fd
Bugzilla Bug 299197: added PK11AttrFlags and PK11_GenerateKeyPairWithFlags.
...
Modified PK11_TokenKeyGenWithFlags to take a PK11AttrFlags parameter.
PK11AttrFlags controls the values of commonly used PKCS #11 object
attributes that have Boolean values. r=relyea,nelsonb.
Modified Files:
nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11obj.c
pk11wrap/pk11pub.h pk11wrap/pk11skey.c pk11wrap/secmodi.h
pk11wrap/secmodt.h
2005-09-02 18:25:04 +00:00
cba3b38bf8
Bugzilla Bug 305835: removed NSS_ENABLE_ECC ifdefs under nss/lib except
...
nss/lib/{freebl,softoken,ssl}. r=nelsonb.
Modified Files:
cryptohi/keyhi.h cryptohi/manifest.mn cryptohi/seckey.c
cryptohi/secsign.c freebl/ec.c pk11wrap/manifest.mn
pk11wrap/pk11akey.c pk11wrap/pk11cert.c pk11wrap/pk11mech.c
pk11wrap/pk11obj.c pk11wrap/pk11skey.c pkcs12/manifest.mn
pkcs12/p12d.c pkcs7/config.mk pkcs7/p7decode.c
pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
smime/config.mk
2005-09-02 01:24:57 +00:00
51ef3c3c86
Bugzilla Bug 303507: changed GCC's default OPTIMIZER back to -O2.
...
r=saul.edwards.
2005-09-02 00:59:00 +00:00
cd99a16d73
Bug 306615 - Fold PSM into libxul r=darin
2005-09-01 12:43:58 +00:00
31be7b72ae
Bugzilla Bug 257693: code cleanup. 1. Change "X9.63" to "X9.62". 2. In
...
EC_ValidatePublicKey, set error codes and handle a NULL return from
ECGroup_fromName. 3. In the ECGroupStr structure, move the validate_point
field up. 4. In the test cases, if the tests that should fail, passed,
say so in the error messages. r=douglas@stebila.ca .
Modified Files:
blapi.h ec.c ecl/ecl-priv.h ecl/ecl.c ecl/ecl.h
ecl/tests/ec2_test.c ecl/tests/ecp_test.c
2005-08-27 01:09:22 +00:00
70a6278752
Bug 263182: Page Info (Security tab) doesn't explain mixed secure/insecure, r=kaie.bugs, sr=neil.parkwaycc.co.uk
2005-08-26 20:34:31 +00:00
32258b61c3
Bug 302284. add xpi hash support to InstallTrigger.install(). r=dveditz, sr=shaver, a=asa
2005-08-26 06:46:21 +00:00
2ffa7acc60
Fix for 297802 . r=wtchang . Add $(OS_LIBS) to MKSHLIB rules.
...
Add -z defs linker option for Solaris and Linux .
Also add -z ignore on Solaris .
2005-08-26 02:17:05 +00:00
94441eaca9
Bugzilla bug 302212: backed out the previous checkin. The corresponding
...
Mozilla patch hasn't been checked in yet.
2005-08-25 23:23:40 +00:00
2ce7b3583b
Bug 302416 NSS root cert module & fortezza should not be using NSPR static libraries
...
r=wtc
sr-julien
Side effects: Root cert module now works with CKF_OS_LOCKING_OK and not callbacks,
but does not work if CKF_OS_LOCKING_OK == 0 and callbacks are define.
2005-08-25 20:08:27 +00:00
ca3db23c1b
Addendum to 303507 - set default OPTIMIZER for Linux and Solaris gcc builds
...
to -O3, consolidate flags to Linux.mk.
2005-08-24 23:58:36 +00:00
e779630b1d
Uprev JSS version to 4.1.1 Beta.
2005-08-24 23:39:12 +00:00
82ecd8b212
Bugzilla Bug 296410: further simplify the code by always referencing the
...
buffer using the same union member. r=relyea.
VFYContextCVS: ----------------------------------------------------------------------
2005-08-24 23:05:39 +00:00
fcf4d7234a
Bugzilla bug 302670: backed out the use of system zlib because some Linux
...
distributions are using zlib 1.1.4, which causes our signtool tests to
fail intermittently. Don't know why.
2005-08-20 01:05:44 +00:00
8fc7f718f2
add optional support for mit kerberos for windows, patches by cneberg@gmail.com, r=darin, sr=bienvenu 280792
2005-08-19 14:25:22 +00:00
128802ea92
Fix AIX build problem
2005-08-18 23:37:31 +00:00
e06cb45930
Bugzilla Bug 266123: support 64-bit PowerPC builds for Linux distributions
...
(such as Red Hat and Fedora) whose GCC generates 32-bit code by default.
r=cls.
2005-08-18 17:48:26 +00:00
dcf936ec0b
Remove fortezza header files from package. Bug 239960. patch by
...
wtchang@redhat.com , r=nelson@bolyard.com Modified Files: prototype
2005-08-18 03:42:00 +00:00
f4a87f8d99
bug 277587 nsSecureBrowserUIImpl's nsUIContext interface requestor doesn't give
...
access to the dom window
patch by Christian Persch <chpe@gnome.org> r=jgmyers sr=roc a=asa
2005-08-17 13:38:03 +00:00
80d221a4a4
Fix for bug 217024. add a function for comparing cert validity periods. r=wtchang
2005-08-17 02:04:12 +00:00
699f97c20b
Bug Id: 304195
...
Added try/catch block around the method calls within toString(). Calls
such as getInetAddress(), getPort() etc does not check if the socket is
closed, and when applications use toString() on a closed socket, there
is an uncaught exception.
2005-08-16 23:44:45 +00:00
c146e4b366
Bug 303507: Add comba for MPI's multiply and square routines.
...
This code is currently for AMD 64 on both Linux and Solaris only.
2005-08-16 19:25:48 +00:00
28f26c51fa
Remove fortezza code from libSSL and from the SSL test programs.
...
Stop building fortezza's special software token, and fortezza specific
test programs. Bug 239960. r=rrelyea.
Modified Files:
cmd/manifest.mn cmd/platlibs.mk cmd/SSLsample/server.c
cmd/SSLsample/sslsample.c cmd/modutil/modutil.c
cmd/selfserv/selfserv.c cmd/sslstrength/sslstrength.c
cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
cmd/vfyserv/vfyserv.c cmd/vfyserv/vfyutil.c lib/manifest.mn
lib/ssl/nsskea.c lib/ssl/preenc.h lib/ssl/prelib.c
lib/ssl/ssl.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslauth.c lib/ssl/sslcon.c lib/ssl/sslenum.c
lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
lib/ssl/sslsecur.c lib/ssl/sslsnce.c lib/ssl/sslsock.c
lib/ssl/sslt.h
2005-08-16 03:42:26 +00:00
77d848c1f9
Bugzilla bug 296410: checked in a better fix than the previous checkin.
...
Also removed the unused, unexported function SEC_VerifyFile. r=nelsonb.
2005-08-16 01:57:51 +00:00
c4ab59c71b
Bugzilla bug 296410: removed unused, unexported function SEC_SignFile.
...
r=nelsonb.
2005-08-16 01:52:17 +00:00
972d589547
Bugzilla Bug 302670: enable NSS to use system zlib and do that on Linux.
...
r=nelsonb.
Modified Files:
coreconf/Linux.mk nss/cmd/Makefile nss/cmd/manifest.mn
nss/cmd/platlibs.mk
2005-08-16 01:08:59 +00:00
cf5e252283
Bugzilla Bug 302212: enable Mac OS X x86 builds to target SDKs. The patch
...
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
2005-08-15 22:44:22 +00:00
5b13de7790
Bugzilla Bug 298612: make sure that the int argument that we pass to the
...
isspace, etc. macros is EOF or between 0 and 255. r=nelsonb.
2005-08-15 22:06:47 +00:00
8121b310d2
Bugzilla Bug 298957: removed a comment. The code already does what the
...
comment asked for. r=relyea.
2005-08-15 21:34:42 +00:00
c27b32ee74
Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit]
...
sr=brendan r=wtc a=dbaron
The issue is the use of the PL_DHash* functions. It's possible that a given call
to PL_DHashOperate which adds a new entry may cause the hash table to expand,
and all the existing entries to be reallocated. PL_DHash does this by allocating
new memory, then copying the entries.
getCacheEntry() returns one of these hash entries. CmpBy() makes two consecutive
calls to getCacheEntry, then uses the returned entries for it's comparisons. If
the second entry call causes a new entry to be added to the table, and causes
the hash table to expand, the pointer to the first entry we retrieved will point
to freed memory.
The fix is to make the usable entry a pointer in the hashtable entry, and return
that pointer. When the hashtable rebuilds it's entries, the pointer will be
copied to the new entry and not be disturbed.
2005-08-15 21:23:51 +00:00
9e61c55322
Bugzilla Bug 289530: fixed signed/unsigned comparison compiler warnings.
...
Fixed compilation errors of new ECC code added in the previous checkin.
r=nelsonb.
2005-08-15 21:23:39 +00:00
e2c8a46f5d
Remove ^M from the tree version of mpcpucache.c
2005-08-15 19:00:17 +00:00
25b554bf61
Bug 285932: Faster SHA1 implementation for AMD64: sha-fast-amd64-sun.s is
...
currently only for Solaris AMD 64 when using Sun studio compilers.
2005-08-15 16:55:22 +00:00
621c5a33b9
Bugzilla bug 302286: fixed the bug that NSS misinterpreted the
...
CKA_PRIME_BITS attribute for DSA's p parameter. r=relyea.
Modified files: pk11wrap/pk11pqg.c softoken/pkcs11c.c
2005-08-13 00:09:26 +00:00
969627a498
Bugzilla Bug 302286: PQG_PBITS_TO_INDEX should reject p bits that are
...
less than 512 or greater than 1024. r=relyea.
2005-08-13 00:07:18 +00:00
5188670e0f
Bugzilla Bug 296410: enlarge the buffer size for message digest so that
...
we can generate and verify signatures that use SHA-512. r=relyea
Modified files: secsign.c secvfy.c
2005-08-12 23:50:19 +00:00
4076a88c87
Bugzilla bug 240554: Alice's cert doesn't need to be added to Bob's db.
...
r=relyea.
Modified files: cert.sh eccert.sh
2005-08-12 23:27:44 +00:00
b5353837ab
Bugzilla bug 240554: we should pass the signature algorithm, not the
...
public key's algorithm, to VFY_VerifyData and VFY_VerifyDigest. Only
fixed this in cmssiginfo.c. In p7decode.c I just added comments saying
they should be fixed. r=relyea.
Modified files: lib/smime/cmssiginfo.c lib/pkcs7/p7decode.c
2005-08-12 23:26:38 +00:00
ca392c90f5
Bugzilla bug 240554: set (better) error codes and removed an unreachable
...
break statement. r=relyea.
2005-08-12 23:24:22 +00:00
bbe1282737
Bugzilla bug 240554: fixed signed/unsigned comparison compiler warning.
...
r=relyea.
2005-08-12 23:22:28 +00:00
a6a7905900
Bugzilla bug 292239: have the softoken report Cryptoki version 2.20.
...
r=relyea.
2005-08-12 23:14:22 +00:00
e24f7e1094
Bugzilla bug 292239: added a change missed in the previous checkin.
...
r=relyea.
2005-08-12 23:12:18 +00:00
49a89c3069
Correct mistyped version of wtc patch.
2005-08-12 22:19:19 +00:00
55b4144f9d
Bug 292239 r wtc & julien
...
Merge PKCS #11 v2.20 header files
2005-08-12 18:58:47 +00:00
c6c36cd39d
As per Wan-Teh's suggestion, the comments are modified to look as shown below.
...
#/********************************************************************/
#/* The VERSION Strings should be updated in the following */
#/* files everytime a new release of JSS is generated: */
#/* */
#/* org/mozilla/jss/CryptoManager.java */
#/* org/mozilla/jss/CryptoManager.c */
#/* org/mozilla/jss/util/jssver.h */
#/* lib/manifest.mn */
#/* */
#/********************************************************************/
2005-08-12 18:39:14 +00:00
45c3d02536
Bug 303010 Certificate upgrade can drop S/MIME certificates
...
r=wtc.
Delay loading the S/MIME records on upgrade until the cert is loaded
2005-08-12 18:01:26 +00:00
0d8b79a0bf
Followup changes to bzabarsky's review for bug 296639. Reviews pending, a=drivers@mozilla.org
2005-08-12 04:11:00 +00:00
67aea017d2
Bugzilla Bug 257693: actually implemented EC_ValidatePublicKey and added a
...
test case. The patch is contributed by Douglas Stebila
<douglas@stebila.ca>. r=wtc.
Modified Files:
ec.c ecl/ec2.h ecl/ec2_aff.c ecl/ecl-priv.h ecl/ecl.c
ecl/ecl.h ecl/ecp.h ecl/ecp_aff.c ecl/tests/ec2_test.c
ecl/tests/ecp_test.c
2005-08-12 00:59:19 +00:00
786c40bad2
Bugzilla Bug 298514: added a missing break statement and removed an unused
...
variable. r=jpierre.
2005-08-12 00:44:35 +00:00
127b305341
Bugzilla Bug 240554: added ECDSA support in S/MIME. The patch is
...
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified Files:
cryptohi/secsign.c pkcs7/config.mk pkcs7/p7decode.c
pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
smime/config.mk
2005-08-11 23:11:40 +00:00
7d8e8ba46d
Bugzilla Bug 240554: added S/MIME tests for ECDSA. The patch is
...
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified files: fixtests.sh cert/eccert.sh
Added file: smime/ecsmime.sh
2005-08-11 22:50:12 +00:00
8068688212
Older release of JSS had an issue with gradually slowing socket read time when
...
transfering large files (> 10MB). In order to test this in current and future
release, there needs to be a test client that can read a file and transfer it to
a server (remote or local) via JSS socket. The server should report the number
of bytes read and the time it took to read these bytes. There should not no
degradation in read time if there is no leak of any sort.
This is not part of all.pl, but is a client/server that uses JSS to transfer
files securely. The main purpose of this test would be to test the performance
of large file transfer using JSS.
NOTE: If bufferedStream.mark(Integer.MAX_VALUE); method is invoked then fill
method of BufferedInputStream class copies lot of data using System.arraycopy
(which in-turn use memcpy). This causes very high CPU usage. This is one of
the reasons secure large file transfer can become slow over time.
2005-08-11 18:28:59 +00:00
22fdd8ffba
A faster c implementation of SHA1 for most platforms. Bug 285932.
...
r=wtchang Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-11 01:01:08 +00:00
b4f3839481
Bugzilla Bug 303116: fixed an off-by-one error in the size of the NAF
...
buffer. We access this buffer using indices from 0 to orderBitSize.
r=douglas.stebila.
2005-08-10 20:35:07 +00:00
82d8abed91
Bugzilla Bug 303116: fixed an off-by-one error when duplicating a string.
...
r=douglas.stebila.
2005-08-10 18:49:29 +00:00
11f925a103
Bugzilla Bug 303116: this file doesn't need to include <strings.h>, which
...
doesn't exist on Windows. r=relyea.
Bugzilla Bug 303130: fixed memory leak of mp_int in ECPoints_mul.
r=douglas.stebila.
2005-08-10 18:46:29 +00:00
bd99a181d7
Bugzilla Bug 266123: added ppc64 support. The patch is contributed by
...
Markus Rothe <markus@unixforces.net>. r=wtc.
2005-08-09 22:31:24 +00:00
bffb758135
Bugzilla bug 303986: do not assume the line ending is '\n'; it may be the
...
two character sequence '\r''\n'. Make sure a character is a digit before
using it as a digit. r=jpierre.
2005-08-09 22:19:09 +00:00
76a434d784
Address review comments. Add test after PORT_Assert. Bug 303334.
...
r=rrelyea,sr=wtchang
Modified Files: rijndael.c
2005-08-09 03:09:38 +00:00
3cd784dac3
Make changes from review feedback. Bug 303316. r=wtchang.
...
Modified Files: freebl/alghmac.h freebl/blapi.h freebl/ldvector.c
freebl/loader.c freebl/loader.h freebl/rawhash.c
freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
2005-08-09 02:54:54 +00:00
2ad11ed9ab
297057 fix case of doOK()
...
patch by Frank Wein <bugzilla@mcsmurf.de> r=kaie sr=neil a=bsmedberg
2005-08-06 21:34:04 +00:00
e72b820468
Add a new assembly language source file with multiplication code for
...
Sparc v8 (not V8plus) CPUs. This works around a performance regression
by restoring the former code. Bug 303338. r=wtchang.
Modified Files: Makefile
Added Files: mpi/mpv_sparcv8x.s
2005-08-06 11:08:41 +00:00
6ec4ef560a
Add a comment clarifying that this source file is for sparc v8plus CPUs.
...
Upgrade license to tri-license. Fix a bunch of whitespace problems,
WAY too much indentation. Related to bug 303338. r=wtchang.
Modified Files: mpi/mpv_sparcv8.s
2005-08-06 11:06:55 +00:00
0b22829278
Move the TLS Pseudo Random Function (PRF) and the HMAC algorithm from
...
softoken to freebl. Bug 303316. r=wtchang (with suggested changes)
Modified Files:
freebl/blapi.h freebl/ldvector.c freebl/loader.c
freebl/loader.h freebl/manifest.mn softoken/lowpbe.c
softoken/manifest.mn softoken/pkcs11c.c softoken/pkcs11i.h
softoken/tlsprf.c
Added Files:
freebl/alghmac.c freebl/alghmac.h freebl/rawhash.c
freebl/tlsprfalg.c
Removed Files:
softoken/alghmac.c softoken/alghmac.h softoken/rawhash.c
2005-08-06 09:27:28 +00:00
af23fd0e10
This is the last trunk version of this file. The file will be moved
...
to nss/lib/freebl. This version is identical to the first version
of this file in nss/lib/freebl. Bug 303316. r=wtchang.
Modified Files: alghmac.c alghmac.h rawhash.c
2005-08-06 09:24:13 +00:00
712ac6c118
Add new functions for blapi symmetric ciphers and digest functions,
...
so that all those functions can initialize a preallocated context.
Bug 303334. r=rrelyea.
Modified Files: aeskeywrap.c alg2268.c arcfour.c blapi.h blapit.h desblapi.c
ldvector.c loader.c loader.h md2.c md5.c rijndael.c rijndael.h sha512.c
2005-08-06 07:24:21 +00:00
a7df55323e
Faster SHA1 implementation. Further corrections expected. bug 285932.
...
r=wtchang Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-06 07:10:34 +00:00
0470958574
Fix for bug 303494 . SEC_LookupCrls passes the address of a stack variable that goes out of scope. r=nelson,wtchang
2005-08-05 21:15:22 +00:00
42b62af1e4
Removed noeccert.sh and noectools.sh from CVS. These two files are
...
automatically created by the fixtests.sh script by copying the non-ECC
(default) test scripts to these names. r=vipul.gupta.
Removed Files: cert/noeccert.sh tools/noectools.sh
2005-08-04 16:27:07 +00:00
ff2c18ee11
Minimo only. Backing out 300373.
2005-08-03 05:24:18 +00:00
aa3332449b
NSC_CopyObject can now copy token keys to session keys. Bug 289530.
...
r=rrelyea. Modified Files: pkcs11.c pkcs11u.c
2005-08-03 02:26:55 +00:00
adccce135e
Implement PK11_CopyTokenPrivKeyToSessionPrivKey, function to copy token
...
RSA private key to a session key, to eliminate DB lookups and 3DES
unwrapping for every use. Bug 274538. r=rrelyea.
Modified Files: nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11pub.h
2005-08-03 01:57:40 +00:00
13863082f7
Eliminate numerous potential causes of sending invalid (zero) session
...
handles down to a PKCS11 module. Bug 292049. r=relyea.
Modified Files: pk11akey.c pk11auth.c pk11obj.c pk11skey.c pk11slot.c
pk11util.c
2005-08-03 01:22:07 +00:00
b0838b2892
Bug 283569 OOM crash [@ nsNSS_SSLGetClientAuthData]
...
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-08-02 14:22:50 +00:00
6960719ce2
remove NSS_CLASSIC code from pk11cert.c and pk11nobj.c.
...
bug 293847 r=rrelyea
2005-08-02 01:34:38 +00:00
b7037acd16
Bugzilla Bug 298957: PK11_TokenKeyGenWithFlags will be released in NSS
...
3.10.2.
2005-08-02 01:04:55 +00:00
f7f6bb0747
Bugzilla Bug 298957: improved the comment for PK11_TokenKeyGenWithFlags.
...
r=relyea.
2005-08-02 01:03:08 +00:00
952622d9e8
Bugzilla Bug 302663: SECKEY_CopySubjectPublicKeyInfo needs to copy the
...
subjectPublicKeyInfo as a bit string. r=nelsonb,jpierre. Thanks to
Mikhail Teterin <mi+mozilla@aldan.algebra.com> for the bug report and
Purify output.
2005-08-02 00:34:00 +00:00
04d838a825
Bugzilla Bug 302262: Check for SECITEM_AllocItem failure in
...
MPINT_TO_SECITEM. r=nelsonb.
2005-08-01 22:43:54 +00:00
ad129dcd2d
Added a comment that answers the question "why isn't there a pairwise
...
consistency test for Diffie-Hellman or ECDH key pairs?"
2005-08-01 21:04:41 +00:00
f553ba239b
Bugzilla Bug 298906 really check in the patch to the tip, not a test branch
...
crash when accepting new certificate permanently on taschenonkel.de
r=wtc, r=nelson
2005-08-01 20:41:30 +00:00
73b7830ac6
Bugzilla Bug 302262: dsa.c should use the macros defined in secmpi.h.
...
r=nelsonb.
2005-08-01 18:51:06 +00:00
244b7788b3
I have to many patches in one tree! Stay at 1.103 until this patch has a bug and
...
reviews!
2005-08-01 18:32:45 +00:00
e9dab9bb67
These changes were part of a different patch, reviews are not yet complete.
...
Backing out to previous versions.
2005-08-01 18:31:12 +00:00
84638b39e7
ARG -- reverted to the wrong version. The correct version was 1.103, not 1.102
2005-08-01 18:27:30 +00:00
e92acaf731
Backing out previous checkin. This was a separate unreviewed patch.
2005-08-01 18:26:12 +00:00
beaf291bda
Bug 298906 crash when accepting new certificate permanently on taschenonkel.de
...
r=wtc, sr=nelson
2005-08-01 18:23:56 +00:00
c230fc2f52
form action=javascript: shouldn't trigger the insecure submit warning (bug 182179). Patch by Iain MacDonnell, r=dveditz, sr=darin, a=asa
2005-07-31 19:06:27 +00:00
041697865b
Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support. r=relyea.
2005-07-29 23:43:40 +00:00
a9e17a122a
Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support to
...
PK11_GenerateKeyPair. r=relyea.
2005-07-29 23:23:35 +00:00
e235cbe797
Bug 278276 Slot List Elements cannot be freed by applications.
...
wtchang: review+
julien.pierre.bugs: superreview+
2005-07-28 23:17:43 +00:00
54ff4e6077
bug 278276 Slot List Elements cannot be freed by applications.
...
wtchang: review+
julien.pierre.bugs: superreview+
E
2005-07-28 23:16:26 +00:00
310824f641
bug 278276 Slot List Elements cannot be freed by applications.
...
Export a free function for slot list elements.
r = wtc & julien.
2005-07-28 23:13:21 +00:00
1f513e2a0f
bug 194141 - missing calls to SSL_ClearSessionCache, r=nelson.bolyard, sr=dveditz, a=bsmedberg
2005-07-28 18:15:20 +00:00
eb4965a8e3
Bugzilla Bug 302262: fixed an error in the comment. Set the error code
...
if signature verification fails. r=nelsonb.
2005-07-27 18:48:44 +00:00
f15866be62
Fix for bug 292151 . Prevent strsclnt from starting threads for each connection. Allow specifying a ratio of full handshakes . r=nelson
2005-07-25 20:39:14 +00:00
45fcf6685b
Bugzilla Bug 298514: Moved the FIPS 140-2 pairwise consistency check from
...
pk11wrap to softoken because the softoken shared library is our new crypto
module boundary. r=relyea,nelsonb.
Modified files: pk11wrap/pk11akey.c softoken/fipstokn.c softoken/pkcs11c.c
2005-07-22 22:11:22 +00:00
dc27182f65
Expose the subject name for the cert and an nsISupports pointer to the cert on
...
nsIPrincipal that represents a certificate principal. Change preference
storage to ensure matches in not only the fingerprint but also the subjectName
before applying privileges from preferences to a certificate principal. Remove
possibility for creating certificate principals without a useful identifying
name and make sure that names don't get munged by being forced to ASCII. Bug
240661, r=caillon, sr=dveditz, a=bsmedberg
2005-07-22 19:05:42 +00:00
1ad56bbc2a
238319: Sun packages changes
...
Change rpm packaging for RHEL3 i386 and x86_64.
2005-07-22 15:32:50 +00:00
418134de55
Bugzilla Bug 298957: moved PK11_TokenKeyGenWithFlags from the NSS_3.11
...
section to the NSS_3.10.1 section because we plan to export that function
in NSS 3.10.1. r=jpierre.
2005-07-22 01:43:36 +00:00
c5ac83be4e
Bugzilla Bug 298516: fixed problems found by code inspection. r=relyea.
...
Modified Files: pk11db.c pkcs11.c
2005-07-22 00:47:18 +00:00
f4b2352922
Bugzilla Bug 298957: make the new function PK11_TokenKeyGenWithFlags
...
"legacy free" and move the code that set the CKF_ENCRYPT flag by default
and the Fortezza hack code to PK11_TokenKeyGen. r=relyea.
2005-07-22 00:07:52 +00:00
5e18c64463
Bugzilla Bug 288647: enable building NSS with an NSPR binary distribution.
...
Introduced NSPR_INCLUDE_DIR and NSPR_LIB_DIR make variables. Portions of
the patch were contributed by Chris Seawood <cls@seawood.org>. r=relyea.
Modified Files:
coreconf/OS2.mk coreconf/OpenVMS.mk coreconf/location.mk
nss/cmd/platlibs.mk nss/cmd/shlibsign/Makefile
nss/cmd/shlibsign/sign.cmd nss/cmd/shlibsign/sign.sh
nss/lib/ckfw/builtins/Makefile
nss/lib/fortcrypt/swfort/pkcs11/Makefile nss/lib/nss/config.mk
nss/lib/smime/config.mk nss/lib/softoken/config.mk
nss/lib/ssl/config.mk
2005-07-21 23:48:30 +00:00
428f1c6c23
Bugzilla bug 301212: Upgraded to zlib 1.2.3. r=relyea.
...
Modified Files:
README adler32.c compress.c crc32.c deflate.c deflate.h
example.c gzio.c infback.c inffast.c inflate.c inflate.h
inftrees.c inftrees.h minigzip.c trees.c uncompr.c zconf.h
zlib.h zutil.c zutil.h
2005-07-20 20:32:42 +00:00
ac4652b036
Bug 296449 - Error in string handling within <keygen>
...
r=kaie.bugs@gmail.com , sr=dveditz@cruzio.com , a=benjamin@smedbergs.us
2005-07-20 19:31:22 +00:00
d8c194a5b7
Bug 283563 OOM crash [@ GetSlotWithMechanism][@ nsKeygenFormProcessor::GetPublicKey]
...
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-07-13 19:31:14 +00:00
c01350f64b
bug 224820 : support UTF-16/32 (non-byte oriented char. encoding) in the form submission : r=biesi, sr=bz, a=asa
2005-07-13 16:55:59 +00:00
519f094ca6
Fix leak due to non-use of already_AddRefed. Bug 296364, r=kaie, sr=bryner
2005-07-13 16:53:06 +00:00
b400dba297
Backing out my changes in the last few hours because Chase is tagging the tree. (the tree was open, but he was tagging)
2005-07-12 22:01:25 +00:00
fff88e8e4c
Fixing build bustage. Must use FORCE_USE_PIC when FORCE_SHARED_LIB. MINIMO only.
2005-07-12 21:39:45 +00:00
aaf4e43bbe
Fixing 300373. Build/Minimo change. To allow WinCE startup, some of our components must be loaded dynamically regardless if we are building static or not. r=bsmedberg, a=asa
2005-07-11 16:38:28 +00:00
c262e0afca
Fix for 217024 . Address Wan-Teh's concerns about naming and documentation. Also fix AIX build by removing extraneous comma.
2005-07-09 00:34:43 +00:00
13277e65d5
Bugzilla bug 300068: fixed the bug that "collection" is used uninitialized
...
if "td", "c", or "cc" is NULL. The patch is contributed by Wolfgang
Rosenauer <mozilla@rosenauer.org>. r=wtc.
2005-07-08 17:06:15 +00:00
85c39c7708
Fix for bug 217024 . Add a function to compare validity times. r=relyea
2005-07-08 07:06:56 +00:00
c15d9d4cd9
Fix for bug 292809 . Add flags to NSS_Initialize to better cooperate with the Java SunPKCS11 provider. r=relyea, wtchang
2005-07-08 04:41:32 +00:00
74bc01599e
Bugzilla Bug 287418: remove redundant memory allocation in DSA and ECDSA sign
...
wtchang: review+
julien.pierre.bugs: superreview+
2005-07-07 20:19:36 +00:00
a4a7cc85d3
Bugzilla Bug 294122: support building with MSYS (a set of Unix utilities
...
for Windows compiled with MinGW). The patch is contributed by Howard Chu
<hyc@symas.com>. r=wtc,cls.
Modified Files: arch.mk rules.mk
2005-07-07 16:50:47 +00:00
d1ef7d6ff8
Fix for 297735 . C_Initialize should return CKR_CANT_LOCK . r=wtchang,rrelyea
2005-07-06 22:32:12 +00:00
90e2222ab3
Removed an extraneous line at the end of file added in the previous
...
checkin.
2005-07-06 18:56:37 +00:00
c5850af8e0
Bug 294556 (not all functions exported) reviews wtc nelsonb
...
Bug 298627 (need to access random number generator on a slot). reviews wtc julien
2005-07-06 18:46:36 +00:00
532b71515b
Bugzilla Bug 298957: pk11_FlagsToAttributes should not add attributes
...
whose type is 0. r=relyea.
2005-07-06 18:36:05 +00:00
252506980a
Bugzilla Bug 298957: code cleanup -- the array size can be MAX_TEMPL_ATTRS.
...
r=relyea.
2005-07-06 18:34:39 +00:00
2496aabc3e
Bugzilla Bug 299445 - fixed the check for an incomplete code set.
2005-07-06 18:14:26 +00:00
721d20caed
Fix for 297849 . Allow x86 build on Linux x86_64 machine. r=wtchang
2005-07-05 22:48:38 +00:00
c693c55f14
Trivial comment fix.
2005-07-05 22:41:33 +00:00
02fa2849ed
Bugzilla Bug 298532: use -fPIC explicitly (which is the default). The
...
patch is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
2005-07-01 00:40:07 +00:00
362379fb01
Bugzilla Bug 287057: fixed memory leaks in callers of cert_FindExtension.
...
pass NULL as the SECItem* argument if we only want to know if the extension
exists but don't need its value. r=jpierre,nelsonb.
Modified Files:
certdb/certdb.c certdb/genname.c certhigh/certhigh.c
certhigh/certhtml.c certhigh/crlv2.c certhigh/ocsp.c
2005-06-30 20:53:57 +00:00
9df42172ea
Fix for 298955 - make rsaperf authenticate to hardware tokens. r=relyea
2005-06-30 20:38:33 +00:00
a55ffcb3aa
Bugzilla Bug 298957: added new function PK11_TokenKeyGenWithFlags.
...
r=relyea,nelsonb.
Modified files: nss/nss.def pk11wrap/pk11pub.h pk11wrap/pk11skey.c
2005-06-30 17:50:41 +00:00
cfc57b80b1
Bugzilla Bug 298532: updated for Mac 10.4u ("universal") SDK, which adds
...
support for Intel CPUs. The patch is contributed by Mark Mentovai
<mark@moxienet.com>. r=wtc.
2005-06-28 21:21:05 +00:00
ee926c8ce3
Bugzilla Bug 298962: Removed dead code: nssBestCertificate_SetArgs,
...
nssBestCertificate_Callback, and nssBestCertificateCB. r=jpierre,nelsonb.
Modified files: certificate.c pkitm.h
2005-06-28 17:55:29 +00:00
34498db691
Bugzilla Bug 298953: fixed a memory leak in sslBuffer_Grow if PORT_Realloc
...
fails. r=nelsonb.
2005-06-28 17:48:26 +00:00
bdac92c933
Fix for 298538 - fix signature verification in S/MIME with signer-only cert. r=wtchang, nelson
2005-06-27 22:21:19 +00:00
3315373550
Bugzilla Bug 295754: moved duplicate function subject_list_sort to
...
certificate.c and renamed it nssCertificate_SubjectListSort.
r=relyea,nelsonb.
Modified files: certificate.c pkim.h pkistore.c tdcache.c
2005-06-27 21:50:06 +00:00
1b933fd261
238319: Sun packages changes
...
Reset the rpm release to 1 for NSS 3.11
2005-06-27 18:22:02 +00:00
3d421f1dd3
After branching NSS_3_10_BRANCH, the tip target is 3.11
2005-06-27 18:21:02 +00:00
06d3ac7721
Bugzilla Bug 298409: fixed an array index off-by-one error and a memory
...
leak. r=nelsonb.
2005-06-24 23:00:02 +00:00
deb187bb46
Bugzilla Bug 295754: fixed a crash in subject_list_sort if a cert is not
...
decodable (e.g., it has unsupported critical extension). r=relyea,nelsonb.
Modified Files: pkistore.c tdcache.c
2005-06-24 00:33:28 +00:00
d4fec45c1d
Bugzilla Bug 298537: replaced hardcoded 3 and 8 with the NSS_VMAJOR and
...
NSS_VMINOR macros defined in nss.h. r=relyea,nelsonb.
2005-06-23 23:41:29 +00:00
2a93cb923f
Bugzilla Bug 298409: fixed the bug that an array size was incorrectly
...
calculated. r=alexei.volkov.
2005-06-23 22:05:21 +00:00
cca45cda33
Bugzilla Bug 297826: add the -Zmap flag to create .map files for DLLs. The
...
patch is contributed by Peter Weilbacher <mozilla@Weilbacher.org>.
Reviewed by Julien Pierre and Michael Kaply.
2005-06-23 18:46:17 +00:00
97986b0e8b
Modified JSS/JSSE inter communication tests along with JSSPackageTest
...
and all.pl to use platform specific cert/keystore directory.
2005-06-23 05:59:36 +00:00
fd807f4d9d
297965 - Add a marker at the end of the test result report (result.html)
...
r: Julien
mozilla/security/nss/tests/common/cleanup.sh
Add END_OF_TEST<BR> before </BODY>
2005-06-21 16:31:57 +00:00
6793b91046
297573 - Modify JSS tests such that they access certs from platform specific directories
...
r: Sandeep
Force Perl to do unbuffered output to avoid having Java and
Perl output out of sync.
2005-06-21 01:17:30 +00:00
78d75c2672
Arg! This change was supposed to go to a branch, not the tip. back it out now.
...
bob
2005-06-20 23:14:45 +00:00
ce5dcdb61c
Test multiaccess Databases. This patch causes softoken to Always use the
...
multiaccess Database for clients. This is not intended for the final release
2005-06-20 23:11:25 +00:00
687eab8c8c
297573 - Modify JSS tests such that they access certs from platform specific directories
...
r=Sandeep, sr=Glen
Display the result of each test case and global pass rate.
2005-06-16 23:22:46 +00:00
286d943a86
fix for bug: 297015 - bltest should run multithreaded. r=julien
2005-06-16 21:11:02 +00:00
c48f8691a5
Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit]
...
patch by kaie r=timeless sr=darin a=shaver
2005-06-16 17:27:17 +00:00
bb1cd1328b
Bug 284366 PSM needs to handle Smart Cards seamlessly
...
fix casting on 64bit platforms
patch by ajschult@verizon.net r=rrelyea sr=jst a=asa
2005-06-16 02:00:32 +00:00
37e80e76f5
Fix assorted issues with fastback, including adding progress listener notifications and introducing the PageHide and PageShow events. See bug 292971 for all of the details. r=darin, sr=bzbarsky, a=shaver.
2005-06-15 23:52:46 +00:00
c414763657
297573 - Modify JSS tests such that they access certs from platform specific directories
...
r=Sandeep, sr=Glen
Make $testdir a specific directory for each run.
2005-06-15 18:39:37 +00:00
d55f3f8790
Back out last checkin, which broke the build on some platforms.
2005-06-14 05:51:51 +00:00
d051300a98
RFE fix 297015: bltest should run multithreaded. julien r+
2005-06-14 01:58:22 +00:00
85e5788236
Get the Processer cache line size. This file contains processor and OS
...
specific content. Currently it only works well with x86 and 64-bit PPC.
2005-06-09 20:43:40 +00:00
007bbbbb89
Fix the license. Still bug 284366 PSM needs to handle Smart Cards seamlessly
...
r+sr+a=shaver
(caught by Christian persch)
2005-06-02 16:40:29 +00:00
35f15674a5
Removing extraneous ;
2005-06-02 02:46:34 +00:00
05e8cfab89
Removing extraneous ;
2005-06-02 02:39:16 +00:00
f0eb83752d
Pass CC down to NSS build.
...
Bug #93206 r=cls sr=jpierre a=shaver
2005-06-02 02:03:05 +00:00
80fc160693
SmartCard support checkin.
...
Bug 284366 "PSM needs to handle Smart Cards seamlessly" r=timeless sr=jst
a=shaver
2005-06-02 01:22:42 +00:00
83a733d67f
SmartCard support checkin.
...
Bug 284366 "PSM needs to handle Smart Cards seamlessly" r=timeless sr=jst
a=shaver
2005-06-02 01:17:35 +00:00
deac1f8574
New file portion of SmartCard support checkin.
...
Bug 284366 "PSM needs to handle Smart Cards seamlessly" r=timeless sr=jst
a=shaver
2005-06-02 01:14:02 +00:00
f2e042b4ff
Mozilla Tiger build changes. Currently the mozilla branch is broken
...
without these changes.
Bug 292530 r=wtc (according to dougt).
Code builds agains NSS tip, verified by relyea
Patch created by Josh Aas
2005-06-01 21:00:22 +00:00
c7ccc7ad56
238319: Sun packages changes.
...
Adjust rpm release numbers.
2005-06-01 20:51:33 +00:00
08a23be39f
Bug 283566 OOM crash [@ nsNSSCertificate::GetDbKey][@ nsNSSCertificate::GetUsagesArray]
...
patch by ajschult@verizon.net r=kaie sr=darin a=shaver
2005-06-01 18:30:36 +00:00
05339dd922
Add a scriptable hash function API. basically what this does is moves the hashing function out of the nsISignatureVerifier.idl and creates a new interface nsICryptoHash which is scriptable. Because of this change, we needed to fix up all of the call sites. r=darin, sr=dveditz, a=shaver
2005-06-01 16:06:53 +00:00
0ea8a4266e
Bugzilla bug 295298: enforce RSA key size limits when generating a new
...
key pair. r=nelsonb,jpierre.
2005-05-27 23:53:19 +00:00
julien.pierre.bugs%sun.com
christophe.ravel.bugs%sun.com
bzbarsky%mit.edu
cst%andrew.cmu.edu
wtchang%redhat.com
smfr%smfr.org
sandeep.konchady%sun.com
nelsonb%netscape.com
cbiesinger%web.de
saul.edwards%sun.com
glen.beasley%sun.com
bsmedberg%covad.net
gavin%gavinsharp.com
dougt%meer.net
relyea%netscape.com
bienvenu%nventure.com
jst%mozilla.jstenback.com
timeless%mozdev.org
dveditz%cruzio.com
mconnor%steelgryphon.com
pkw%us.ibm.com
jshin%mailaps.org
alexei.volkov.bugs%sun.com
bryner%brianryner.com
cls%seawood.org