655056191f
Deleted useless local variable 'arena' in cert_ImportCAChain.
2003-08-08 23:15:50 +00:00
a32141f5d2
Bugscape bug 49314: code cleanup. Throw InvalidKeyException directly
...
instead of NoSuchAlgorithmException.
2003-08-07 21:45:35 +00:00
7523a62658
215190 delete CA created certs
2003-08-07 00:34:32 +00:00
f6be8fe74f
Add shared DHashTableOps for [const] char *key use-cases, clean up dhash API abusages (214839, r=dougt, sr=dbaron).
2003-08-05 20:09:21 +00:00
1ded6df12e
Convert public key to JSS public key.
2003-08-05 18:54:49 +00:00
13f5b9e4ff
Bugzilla bug 214695: fixed incorrect use of PR_AtomicDecrement on reference
...
counts. The reference count should not be read "naked". Instead, we
should simply use the return value of PR_AtomicDecrement for the result of
the decrement.
Modified Files: dev/devmod.c dev/devslot.c dev/devtoken.c pki/certificate.c
pki/pkibase.c
2003-08-01 02:02:47 +00:00
5da7e31f4d
Fix bug 213084. Detect when cert in signature cannot be imported.
...
Detect NULL pointer, don't crash.
2003-07-31 00:16:27 +00:00
9b590c4f17
Bug 213903: removing unused variables 'delold', 'save', 'entry'
2003-07-28 22:55:16 +00:00
52a39ca16f
Bug 213902 : removing unused variable "next" in "cert_DecodeNameConstraintSubTree"
2003-07-28 21:53:16 +00:00
95256ce645
DeCOMify GetParent/GetBindingParent/GetDocument on nsIContent. Bug 213823,
...
r+sr=jst
2003-07-28 21:35:53 +00:00
0c479eebe6
remove no longer used include blapi.h
2003-07-24 23:01:08 +00:00
9c22160a4b
Bug 83536.
...
Merge script principal implementations into one class.
Should reduce footprint, speed up calls to caps a little bit, and fixes several memory leaks.
Also fixes bugs 211174 and 211263
r=jst@netscape.com
sr=bzbarsky@mit.edu
moa=mstoltz@netscape.com (he looked at an earlier patch and said it looked fine, and will do a retroactive review when he returns from vacation as well)
2003-07-24 05:15:20 +00:00
c771349946
Allow freebl to build correctly under MS VC++ .net 2003 . sr=nelsonb
2003-07-22 02:04:57 +00:00
e3b945b14b
Bugzilla bug 213192: take the first two components of $(OS_RELEASE) the
...
right way. The basename function that we were using only works when
$(OS_RELEASE) has exactly three components. The patch is contributed by
Ed Catmur <ed@catmur.co.uk>. r=wtc.
2003-07-21 23:40:51 +00:00
b5a53a661e
Bugzilla bug 211350: support IRIX Alpha releases, whose 'uname -r' output
...
contains "-ALPHA...".
2003-07-21 18:51:08 +00:00
f008bc2bad
Bug 25886: Get rid of a bunch of unused NS_DEFINE_IID, NS_DEFINE_CID. r=caillon, sr=dbaron
2003-07-20 07:47:59 +00:00
5d8a4a4934
Bugzilla bug 212797: added Linux2.6.mk so that we can build on Linux 2.6
...
kernels.
2003-07-19 21:21:50 +00:00
a08188e177
Bugzilla bug 213158: fixed the misspelling of "attach". The patch is
...
contributed by Pierre Chanial <chanial@noos.fr>.
Modified Files: pk11slot.c secmodt.h
2003-07-19 20:49:35 +00:00
20004e3489
Bug 73353: clean up MODULE/REQUIRES story. r=cls, sr=bryner
2003-07-13 22:29:00 +00:00
e17d8ed21d
change the doctype from window to dialog. Thanks to Christian Biesinger for pointing that out.
...
r/sr=mscott
2003-07-12 03:31:16 +00:00
c860a04974
Bug #212459 --> Give the certificate manager a face lift. Add a 5 pixel border around the tabbox,
...
add an ok button which can be used to dismiss the window, inherit the ok/help buttons from the dialog
overlay.
Add spacing between the tree control and the edit / delete buttons underneath the tree control.
r=kaie
sr=sspitzer
2003-07-12 00:36:01 +00:00
8a8acecae0
Backed out Bob Relyea's workaround for the deadlock in rev. 1.15. The
...
correct fix is in rev. 1.36 of tdcache.c (see Bugzilla bug 212112).
2003-07-11 21:52:04 +00:00
32ec0bd37b
Remove dependency on secrng.h. We don't need it.
2003-07-11 18:13:26 +00:00
d8bfc7ae2c
Restore sslreq.txt to text form, where it will have different line
...
endings on unix, than on windows or on Mac.
2003-07-11 04:14:24 +00:00
a7db0ece51
Test with the new file sslreq.dat rather than the old file sslreq.txt.
2003-07-11 04:05:12 +00:00
d5d6b8ccc7
This is sslreq.txt with a different file name, to clearly show that
...
this file is to be treated as a binary file, not as text.
2003-07-11 03:55:55 +00:00
bd92e280fe
Bug 212112: we don't need to lock td->cache->lock while calling
...
STAN_ForceCERTCertificateUpdate. This fixed a recursive deadlock.
r=mcgreer.
2003-07-10 01:24:17 +00:00
634e667950
Change cert_GetCertificateEmailAddresses to return NULL rather than
...
a pointer to an empty string when a cert has no email addresses.
Partial fix for bug 211540. Modified certdb/alg1485.c
2003-07-09 04:14:23 +00:00
9b53efa290
Bug 212004: in CERT_IsUserCert we should test for a null cert->trust and
...
treat it as no trust. r=nelsonb.
2003-07-09 04:12:16 +00:00
77b1d5b56e
Export SEC_DupCRL and declare it in certdb.h. Bug 208194.
...
Modified Files: nss/nss.def certdb/certdb.h
2003-07-09 04:00:48 +00:00
60aaf7bbf5
Bug 211384: fixed the bug that importing a CRL that already exists in the
...
DB causes NSS_Shutdown to fail. Two files were changed. 1. crl.c: we
should not obtain a slot reference because PK11_FindCrlByName already
obtained a slot reference. 2. pk11cert.c: cleaned up code and fixed a slot
reference leak if the SECITEM_AllocItem call fails. r=nelsonb.
2003-07-08 18:41:28 +00:00
90f86dc111
Re-enabled the fix for bug 208177.
2003-07-08 18:11:24 +00:00
2dc27003e2
b=210948 Some file dialogs have harcoded filter description
...
patch from Vincent B�ron
r=kaie sr=brendan
2003-07-08 14:46:21 +00:00
f82f7c9d38
b=195574 SSL extremely flaky if Ask for Master Password is 'Every time'
...
r=darin sr=brendan
2003-07-08 14:41:02 +00:00
f6802aac5b
patch to correct false failure reporting - bug 167825
2003-07-03 17:50:18 +00:00
a206d21cd7
Add missing declaration of NSS_Get_SECKEY_EncryptedPrivateKeyInfoTemplate
2003-07-03 07:04:30 +00:00
edb69e7969
Fix bug 211049. Another issue with empty pointer lists from group
...
decodings. Patch by Wan-Teh Chang <wtc@netscape.com>.
2003-07-01 01:16:57 +00:00
8c68d71e97
Change the function definitions in dev so that the ctags program will
...
produce valid tags from these sources.
2003-07-01 00:32:22 +00:00
b71485c4fe
Bug 210660: backed out the main change in the fix for bug 145322 because
...
the adoption of session is not thread safe. This eliminates most of the
saving of sessions, but we must be correct first, and then optimize.
r=nicolson,nelsonb.
Modified Files: pk11func.h pk11skey.c
2003-06-27 22:28:50 +00:00
66b6198a4f
Fix several bugs reported in bug 210707.
...
Change loops over RDNs and AVAs to detect NULL pointers.
Change list of attribute type "keywords" to match RFCs and internet
drafts.
Quote attribute values strings that contain adjacent embedded blanks.
Don't quote hex string values.
Always use hex string values when type OID is unrecognized.
2003-06-27 00:33:05 +00:00
a3501517f5
Move the declaration for CERT_CompareNameSpace from cert.h to genname.h
...
because it is a private function. Change the interface for this
function so that it returns a SECStatus, unambiguously indicating the
success or failure of the name constraints test. The function no
longer takes a list of cert subject names, instead, it takes a list
of cert pointers, and optionally outputs one of those pointers when
an error occurs. This eliminates a cert reference leak.
2003-06-26 01:56:34 +00:00
b54a7e669d
This patch extracts rfc822 names from a cert's distinguished name at the
...
time when the list of cert names is being built and builds a GeneralName
out of it, just as if the rfc822 name had come from a subject alt name
extension. This way, no special handling is needed of either directory
names or rfc822 names in the name constraints code. The special "phase 1"
loop in cert_CompareNameWithConstraints disappears compmletely. And all
the cases in the (former phase 2) loop can now simply assert that the
name's type matches the constraint's type exactly.
This patch also factors out the code that creates new CERTGeneralNames and
that copies a single CERTGeneralName into new separate functions. This
eliminates a lot of duplicated code whose correctness required lengthy
inspection. Now these primitive operations are centralized.
2003-06-26 01:25:10 +00:00
195925a071
enabling log scraping in header instead
2003-06-25 21:57:21 +00:00
7361de7ee8
enabling log scraping in header instead, where RESULTDIRURL gets created
2003-06-25 21:56:19 +00:00
0d74efc36a
removed new variable for Win platform - extra - don't need
2003-06-25 21:39:54 +00:00
2ff0613d68
fix URL for Windows platform
2003-06-25 20:43:18 +00:00
e886704557
taking out un-needed stuff
2003-06-25 17:39:38 +00:00
02c8289ae0
Shorten the clickable text portion of RESULTDIRURL.
2003-06-25 04:23:34 +00:00
21cb365b1b
enabling log scraping
2003-06-25 00:55:13 +00:00
2e8edec781
Fixing bug 209884. Writing an inline helper to safely get an nsIScriptContext from a JSContext and making direct callers of JS_GetContextPrivate() use the helper. r=caillon@aillon.org, sr=peterv@netscape.com
2003-06-24 21:43:01 +00:00
854c25c27f
Whitespace cleanup. This patch causes numerous lines that were wider
...
than 80 columns to be folded according to NSS coding conventions.
This patch does not fix any run-time error.
2003-06-23 23:15:33 +00:00
98ada63a79
bug 205649 : replace U+00E5 represented in ISO-8859-1 (0xe5) with U+00E5 in
...
UTF-8 in all XUL files to make them to be genuinely encoded in UTF-8. All the
changes are in comments so that this shouldn't affect anything at run-time.
(r=hwaara)
2003-06-23 13:18:12 +00:00
0eb7881d00
CERT_EncodeGeneralName and CERT_DecodeGeneralName contain large switch
...
statements that repeat code for every case. This patch factors out that
common code from the cases, making the switches much smaller and reducing
bloat.
2003-06-21 08:10:07 +00:00
c40a094aad
Cleanup CERT_GetGeneralNameByType so that it detects when it has
...
encountered a general name of a type that it doesn't recognize, and
so that it properly casts the return value to be of the right type.
2003-06-21 07:07:47 +00:00
c45b36fd03
The general name code uses arenas, which is good, but it never marks
...
and releases space in the arenas, so the arenas just grow and grow
until the test is completely over. This patch adds comments showing
where mark and release calls could (and probably should) be added.
It also changes CERT_CopyGeneralName to have only two exit paths,
two return statements, in preparation for the eventual use of mark and
release.
2003-06-21 06:44:43 +00:00
f97a7f6cd8
a) Add more missing null pointer tests that I discovered. Bug 208649.
...
b) change all PORT_*Alloc calls that allocate new structs or arrays of
same to use the PORT_*New* macros instead.
c) ifdef out some dead functions that are rife with failure to detect
allocation failures.
2003-06-21 05:23:07 +00:00
87bcdd00c7
Fix deadlock bugscape 46733
2003-06-20 23:34:46 +00:00
20c2ba3f7f
sigh, another time
2003-06-20 23:24:11 +00:00
2f8ca931b2
one more time, trying to make link clickable
2003-06-20 18:36:57 +00:00
c46e246f05
Declare src argument to SEC_ASN1DecodeItem to be const.
2003-06-20 01:52:19 +00:00
b969bf4b64
Don't include private and unnecessary js header files.
2003-06-19 23:13:59 +00:00
6e7873e60b
echo out RESULTDIRURL; r=wtc
2003-06-19 23:04:25 +00:00
2350158b22
made RESULTDIRURL clickable link; r=wtc
2003-06-19 23:03:59 +00:00
3d80fd68c8
Carry Wan-Teh's fix for bug 208996 forward to trunk.
2003-06-19 03:48:19 +00:00
1b8ef33451
Fix numerous more potential NULL pointer deref crashes. Bug 208038
2003-06-19 01:08:53 +00:00
c10a03ec6a
checking in version 1.60 with additional space
2003-06-18 19:13:11 +00:00
4e44c2364d
Bug 209661 remove unnecessary NS_LITERAL_CSTRING( with ).get() r=jag sr=alecf
2003-06-18 14:31:45 +00:00
7fe19d8d55
backing out my recent changes - some platforms showing tests failed
2003-06-18 08:13:07 +00:00
ffece90162
had to put in netscape specific unix base dir as well
2003-06-18 07:11:15 +00:00
42f215d88f
put URL specific stuff inside nscp specific loop
2003-06-18 06:02:28 +00:00
4e4909c4db
Further refinements to the Name Constraints checking logic, to make it
...
more compliant with RFC 3280. Bug 208047.
2003-06-18 04:32:44 +00:00
1674961d5e
Move declarations of NSS private functions for general names from cert.h
...
to genname.h, and eliminate declarations from cert.h that were also
in genname.h. If we ever decide to make any of these functions public,
we can move their declarations back to cert.h.
2003-06-18 00:38:12 +00:00
b7d5426a55
Make CERT_DecodeAVAValue take const inputs and detect NULL pointers.
...
Rewrite CERT_CompareAVA to compare the type OIDs first, and then if
the values are not of the same encoding, convert them before comparing.
Also, do comparisons of printableString encoding properly. Bug 208649.
2003-06-17 23:44:14 +00:00
6b7628ab46
b=209082 Certificate viewer is broken
...
r=danm sr=jst
2003-06-17 23:16:23 +00:00
8770abe071
modified header to print link of resultsdir to browser log
2003-06-17 21:21:33 +00:00
ba75de772b
Bug 209087
...
Content interface out-parameters should use ptr-to-ptrs instead of ref-to-ptrs and some small deCOMtamination.
r+sr=jst@netscape.com
2003-06-13 20:10:01 +00:00
e2f19a7070
b=209168 Mozilla Mail S/Mime instructs NSS to import the wrong certs
...
r=relyea sr=kin
2003-06-12 20:03:40 +00:00
0d1f5df277
const. Got it? Const!
2003-06-11 23:12:38 +00:00
6934dc37a9
Removing old cfm build files. Use the CFM_LAST_RITES tag to resurrect. r=macdev
2003-06-10 20:12:33 +00:00
fa4bc3aeac
Removing old cfm build files. r=macdev
2003-06-10 19:03:46 +00:00
2b945570e0
Harden SECITEM_CompareItem against NULL pointers.
2003-06-07 03:05:49 +00:00
95192f3460
Add echo-requires-recursive rule to get a full list of tree's dependencies
2003-06-06 19:21:57 +00:00
24f3d87aec
Rewrite of cert_CompareNameWithConstraints and the static functions it
...
calls, to make it conform with RFC 3280. Bug 208047.
2003-06-06 09:12:21 +00:00
42c05f5adf
Rewrite SECITEM_ItemsAreEqual to be faster when item lengths are not
...
equal and to not crash if an item contains a NULL data pointer.
2003-06-06 04:51:26 +00:00
67066de273
Add new OIDs for directory name attribute types. Bug 207711.
2003-06-06 04:48:45 +00:00
d88e22d7a7
Augment and centralize the list of known cert name attribute types.
...
Bug 207711.
2003-06-06 01:17:04 +00:00
ea8360788d
Eliminate more NULL pointer dereferences. Bug 207740.
2003-06-05 04:59:38 +00:00
a37c36f1a7
Bug 208343: removed two Baltimore root certificates.
...
Modified Files: certdata.c certdata.txt
2003-06-05 00:53:27 +00:00
6ab8b20067
Temporarily disabled the fix for bug 208177 so that we can debug bug
...
167825.
2003-06-04 14:49:13 +00:00
108ef75354
bug 207642 - update localeVersion for 1.5a - r=rchen, sr=blizzard
2003-06-04 11:11:19 +00:00
81e3889b8f
PORT_Alloc and PORT_ZAlloc always allocate at least one byte, even if
...
the caller requests zero bytes. This patch makes PORT_ArenaAlloc
and PORT_ArenaZAlloc do the same.
2003-06-03 23:24:31 +00:00
70fd6c9c78
Bug 208177: Our HP-UX build machine has a strange problem. If a 64-bit
...
PA-RISC executable calls getcwd() in a network-mounted directory, it fails
with ENOENT. Since nsinstall calls getcwd(), this breaks our 64-bit HP-UX
nightly builds. We worked around this problem by building nsinstall as a
32-bit PA-RISC executable for 64-bit PA-RISC builds. This checkin added a
new make variable INTERNAL_TOOLS which can be set in makefiles whose target
is a tool used only during the build. Such a tool can be built differently
from NSS proper as long as the tool runs on the build machine.
Modified Files: HP-UXB.11.mk nsinstall/Makefile
2003-06-03 23:14:03 +00:00
9ea284e156
bug 156256, removed unused Stan files with long names
2003-06-03 20:59:15 +00:00
6a94e6afc1
Bug 207379: added instructions for removing a builtin root CA cert from
...
NSS.
2003-06-02 23:16:51 +00:00
3deaa56778
Back out rev 1.27, which turned verbose mode on by default for debugging
...
QA test script failures that only occurred on tinderbox machines.
bug 207313 is now fixed.
2003-06-02 20:39:48 +00:00
712fea2e39
Bug 204555: Eliminated other potential crashes in code related to
...
certificate names. r=wtc. (The patch is Nelson's.)
2003-06-02 18:10:43 +00:00
bf31f92133
This patch does two things, one large and one small. Bug 207313.
...
1, It uses two new symbols SSOCK_FD and STDIN_FD instead of 0 and 1 to
reference members of the poll set array. I just could never remember whether
pollset[0] was the socket or was stdin. Now I don't have to remember.
This changes a lot of lines, but is very simple.
2. It implementa a new flag clientSpeaksFirst, set with the -f option.
The only effect of this flag is whether the value of
pollset[SSOCK_FD].in_flags is initially zero (if true) or PR_POLL_READ (if false). Note that pollset[SSOCK_FD].in_flags is set to PR_POLL_READ after
each succesful write to the socket.
2003-06-01 03:01:39 +00:00
34fcdc2566
Bug 206926: Added the makefile rule to export PRIVATE_EXPORTS headers.
2003-05-31 00:12:18 +00:00
bebd4ac34e
Bug 206926: 1. Undo the changes to secrng.h, pqgutil.h, swfutl.c,
...
unix_rand.c, and win_rand.c. 2. Make secrng.h and pqgutil.h private.
3. Public header pk11pqg.h can't include private header pqgutil.h.
4. Many files don't need to include secrng.h. A few don't need to include
pqgutil.h. 5. Remove duplicate declarations of PQG_DestroyParams and
PQG_DestroyVerify from blapi.h.
2003-05-30 23:31:32 +00:00
072b028b11
Eliminate TCP connection reset errors that occur when server requires
...
client auth and SSL3 client doesn't authenticate. The fix is to coalesce
the SSL3 no_certificate alert record with the following records (e.g.
client_key_exchange handshake, change_cipher_spec and finished handshake).
Fix bugs 207313 and 118668.
2003-05-30 23:22:39 +00:00
c7f2b76a30
Resolves bug 206971 - selfserv should OptimizeSpeed (use NSS_Initialize).
...
Both selfserv and strsclnt no longer OptimizeSpace. Moved SECMOD_DB
defines from nssinit.c to nss.h, make it availble for public use with
NSS_Initialize().
2003-05-30 17:25:13 +00:00
2ede35f2c3
Back out rev 1.28 to test some hypotheses about bug 207313.
2003-05-30 10:06:29 +00:00
01d479d131
Correct all the tests in which the server requires client auth, but the
...
client does not supply it, so that the client actually will NOT supply
it. Previously, the client was supplying client auth in all these tests,
and the https requests were completing succesfully, when they should have
been failing. Bug 207398.
2003-05-30 05:40:40 +00:00
772d71205a
Change the SSL3 stress test to disable TLS, so that it will actually
...
test SSL3. Uses the new -T option recently added to strsclnt.
2003-05-30 05:38:12 +00:00
c8b735a8c3
Add -3 and -T options, with same meaning as in tstclnt and selfserv,
...
disabling SSL3 and TLS respectively. With this change, the QA stress
tests that say they're testing SSL3 or TLS can finally test what they
claim they are testing.
2003-05-30 05:35:52 +00:00
4b13346f0d
Bugzilla 207379: removed the certificate "ValiCert OCSP Responder".
...
Bumped version to 1.40 (for NSS 3.9). r=relyea.
Modified Files: certdata.c certdata.txt nssckbi.h
2003-05-29 14:26:16 +00:00
8576f4ea62
Correctly copy RDNs with empty AVA lists. Partial fix for bug 204555.
2003-05-28 21:18:09 +00:00
ba98042a1a
Adding Darwin 6.5 platform
2003-05-28 17:28:36 +00:00
1e2859edec
Fix this file to be proper http request syntax. Note: file is now a
...
binary file to assure identical line endings on all platforms.
2003-05-28 02:18:27 +00:00
92993f0ad4
All diagnostic output goes to stderr, not stdout. This change facilitates
...
investigation of bug 207313.
2003-05-28 02:11:17 +00:00
2a87d0d523
Bug 206926: certcgi.c should not include blapi.h. Use the PK11_PQG_
...
functions instead.
2003-05-28 00:47:47 +00:00
710239c9ca
Bug 206934: use __declspec instead of _declspec. __declspec is the
...
documented form and the only form accepted by the MinGW compiler. The
patch is contributed by Christopher Seawood <seawood@netscape.com>. r=wtc.
2003-05-28 00:07:36 +00:00
a5136af537
Checked in more temporary debugging code for the strange QA failure on
...
Windows.
2003-05-25 19:19:28 +00:00
f85e9f91a8
Enabled verbose mode temporarily for debugging a strange QA failure on
...
Windows.
2003-05-25 04:16:03 +00:00
dd3c7fb4fe
Bug 206926: now that secrng.h and pqgutil.h include blapit.h instead of
...
blapi.h, some files that include secrng.h or pqgutil.h need to include
blapi.h directly.
Modified Files: certcgi.c swfutl.c unix_rand.c win_rand.c
2003-05-25 01:21:27 +00:00
3f9a09add1
Fix bugs experienced with oddly constructed general names.
...
Partially fixes bug 204555. r=wtc a=sspitzer
2003-05-24 06:27:35 +00:00
32142748e9
Corrently build the array of pointers to parsed group members, even when
...
the group was empty. Fixes bug 174885 and partially fixes 204555.
2003-05-24 05:57:21 +00:00
cb71ea9601
Include nss.h for the declaration of NSS_Shutdown. Use "" around prmem.h
...
and prio.h.
2003-05-24 05:23:42 +00:00
01eb2b316f
Bug 206926: make blapi.h private. Public headers that included blapi.h
...
now include blapit.h. It is necessary to make blapit.h because some
public headers and PSM use the types defined in it. r=relyea,nelsonb.
Modified Files: cryptohi.h lib/freebl/manifest.mn secrng.h pqgutil.h
2003-05-24 03:34:55 +00:00
e7b42b7c8d
Fixed a typo in the comment.
2003-05-23 23:01:26 +00:00
4b6c99ba60
Bug 204067 Creating "@mozilla.org/nsCMSEncoder;1" and then deleting it crashes because m_ecx isn't initialized
...
patch by rginda r=kaie sr=kin
2003-05-23 21:55:15 +00:00
149f719c00
bug 100649: Length() being used where IsEmpty() is meant
...
treewide changes to convert incorrect usages of string.Length() to string.IsEmpty().
thanks to afatecha@idea.com.py (Ariel Fatecha) for the patch. r=dwitte, sr=jst.
got the ok from Asa to land into a closed tree.
2003-05-23 21:34:47 +00:00
aec6c77d26
b=168452 PSM embedding freeze/ final step/ mark interfaces as frozen
...
r=javi sr=alecf a=sspitzer
2003-05-23 05:58:11 +00:00
33da453eca
Report the right error code for unrecognized OIDs.
2003-05-22 05:20:02 +00:00
409587a472
Make tstclnt interactive on Windows. Bug 206031.
2003-05-22 04:34:38 +00:00
e9a18c8d67
Eliminate double-spacing of output on windows. Bug 206551. r=wtc.
2003-05-22 01:51:18 +00:00
6b75dc22a3
coreconf needs HP-UXB.11.22.mk to build on new HP box - bug 177984
2003-05-21 22:08:37 +00:00
cfe22ef6ed
Fixing memory leak. Multiple object creations clobber static allocations. b=206480, r=kaie,sr=dbaron,a=asa
2003-05-21 21:36:46 +00:00
aca94e5f5c
Fix bug 205912, NSS rebuilds too often. Update a timestamp file in the source tree whenever client.mk pulls updates to NSS, and make a second timestamp file dependent on the first that's touched after cleaning NSS. r=seawood, sr=brendan.
2003-05-21 20:13:24 +00:00
a1766026ec
update to JSS 3.4 RTM.
2003-05-19 21:44:23 +00:00
bf4e7b2c83
Partial fix for 189964: support more algorithm names.
2003-05-19 18:36:38 +00:00
5eb8cc5f7c
Remove MOZ_PHOENIX #ifdef in nsSecurityWarningDialogs.cpp; set default security dialog prefs in all.js instead. Fixes bug 172091. Affects firebird build only.
2003-05-19 04:23:22 +00:00
7c9e3ae16a
If the verbose option is given twice (e.g. -vv) and the server requests
...
client auhtentication, tstclnt will display the server's list of trusted
client CA names.
2003-05-17 05:38:01 +00:00
db009648c6
Add comments explaining why UMRs are not a problem.
2003-05-17 01:26:41 +00:00
88601a07fa
Correct offset arithmetic for "choice" templates. Bug 161580.
...
Patch by wtc@netscape.com
2003-05-17 01:18:53 +00:00
23d01e2ae6
Remove MOZILLA_BSAFE_BUILD. Bug 193090.
2003-05-16 20:21:20 +00:00
f00ea64eba
Remove files that were part of MOZILLA_BSAFE_BUILD. Bug 193090.
2003-05-16 20:17:11 +00:00
3f12350ff9
Remove support for MOZILLA_BSAFE_BUILD. Bug 193090.
2003-05-16 20:14:59 +00:00
d155870200
bug 204788, DirectoryString should default to UTF8String
...
r=nelsonb
2003-05-15 21:24:10 +00:00
596f1103a6
Shifted from -xO3 to -xO4 optimization under Solaris.
...
Resolves bug 204093.
2003-05-15 19:12:10 +00:00
903e186861
Fix for bug 204015 - make strsclnt reuse token after it is unplugged . r=nelsonb
2003-05-15 17:09:19 +00:00
4395ffebed
Update ssltap's list of TLS ciphersuites. Bug 201158.
2003-05-15 06:28:44 +00:00
193d888612
201047 ssl timeouts
2003-05-14 22:34:38 +00:00
54018823e7
*** empty log message ***
2003-05-14 22:34:21 +00:00
71a9d575b6
bug 202838, move operations outside of slot->objectLock
...
r=relyea
2003-05-14 22:09:03 +00:00
9ac2e427d3
Removed an error that was mistakenly introduced in rev. 1.56.
2003-05-14 00:30:21 +00:00
b7e4279032
Fix 205066: double-free in PK11KeyGenerator.c:constructSHA1PBAKey()
2003-05-14 00:04:02 +00:00
59b6a2fe5b
Bug 202593: Create slot->freeListLock and slot->sessionLock in the order
...
consistent with the cleanup code on error return.
2003-05-13 23:00:28 +00:00
2efa58870a
Bug 202593: the newly added 'lock' field in the NSSToken structure is not
...
being used.
2003-05-13 22:59:20 +00:00
e7648a5336
Fixing Makefiles to support DEPENDENT_LIBS. r=kai, a=blizzard, b=205444
2003-05-13 18:28:40 +00:00
565dc5f8df
bug 203049, move some operations outside of slot->slotLock
...
r=relyea
2003-05-12 21:32:38 +00:00
5c85975408
Fix bug 202270. Eliminate a potential infinite loop.
2003-05-12 21:07:01 +00:00
9165ddce88
Bug 205346: need to include <unistd.h> on BeOS for isatty(). Thanks to
...
timeless@bemail.org for the patch.
2003-05-12 19:52:44 +00:00
06cc999c61
Bug 205346: fixed a compiler warning about a zero-length format string for
...
sprintf.
2003-05-12 18:58:33 +00:00
a10abe7fb3
Bug 202593 and bug 204980: fixed a recursive deadlock introduced by the
...
fix for bug 202593. The session returned by nssSlot_CreateSession doesn't
need its own lock. It is either protected by a higher-level lock (the
slot or module lock) or used by only one thread throughout its lifetime.
Modified Files: dev/devslot.c pk11wrap/dev3hack.c
2003-05-10 14:21:40 +00:00
e270a63b63
Bug 204797: nssTokenObjectCache_Clear needs to lock the cache, otherwise
...
multiple threads could clear the cache at the same time after a token is
removed.
2003-05-10 14:19:04 +00:00
d687496b6b
Fix bug 143426 by not freeing names in loop that traverses them.
...
Patch contributed by liexter@hotmail.com (liqi)
2003-05-09 23:59:18 +00:00
84b6fcb28d
Fix 205069: broken loop logic in PFX.java.
2003-05-09 19:02:56 +00:00
bbd2773941
Replace unnecessary Debug.trace() statement with a comment in the code.
2003-05-09 18:57:15 +00:00
e987ab5834
fix bug in last patch
2003-05-09 18:12:11 +00:00
1da4936552
bug 191757, eliminate some memcpy calls from MD5
...
r=nelsonb
2003-05-08 17:51:55 +00:00
a30fe94a59
b=193170 PSM must disallow using NSS database with wrong profile
...
r=ccarlen sr=jag a=asa
2003-05-08 13:39:35 +00:00
34dac70182
Bug 204681: fixed build failure with MKS Toolkit on Windows XP. Handle
...
the more general 0x pattern instead of just 00 in the output of "uname -v".
2003-05-07 00:27:37 +00:00
73a7a4ca5f
Display an error message instead of crashing if the user forgets the -n
...
option with the -O (Dump Chain) option.
2003-05-06 02:50:03 +00:00
ed795df0c3
Don't display user's password in hex. Bug 200005.
2003-05-06 02:45:12 +00:00
014484fb3f
Don't accept END_OF_CONTENTS octets where they're not allowed. bug 202384.
2003-05-03 06:54:48 +00:00
18afa81190
Bug 204011: fixed the bug that nssPKIObjectCollection_AddInstances frees an
...
instance twice if add_object_instance fails. r=mcgreer.
2003-05-02 03:01:13 +00:00
285685a94f
Bug 203988: add build support for Linux/mips (such as Sony PlayStation 2
...
Linux). The patch is contributed by Paul Pietromonaco
<ppietro@users.playstation2-linux.com>. r=wtc.
2003-05-01 00:29:40 +00:00
d30d2f04a9
Removed gcc warning - bug 203449
2003-04-29 23:13:33 +00:00
33f9314e1c
Improve parameter class handling.
2003-04-28 23:32:39 +00:00
673009de15
Build with NSS 3.7.3 RTM.
2003-04-28 23:31:12 +00:00
7f171ff2aa
Fix blackflag 619793: support RC2/CBC/PKCS5Padding.
2003-04-28 21:48:33 +00:00
1e2d9de718
Move to JSS 3.4 beta.
2003-04-28 21:28:00 +00:00
c3847878a0
Declare the new function sec_asn1d_parent_is_indefinite as static.
2003-04-28 20:19:21 +00:00
f0c2b639dd
replace arena grow with code that grows memory nLog n, not n!
2003-04-28 17:56:46 +00:00
064ff5e88d
Fix two problems that together prevented NSS from reading encrypted
...
messages from Lotus notes. bug 202384.
1. Choice no longer treats END_OF_CONTENTS as a missing choice.
2. The code now correctly determines whether we are in an indefinite-
length encoded constructed type. Instead of merely looking at the
immediate parent and grandparent states, it walks the state stack
until it finds the next higher state that corresponds to a parsed
tag, ignoring inline, pointer, choice, and other non-tag states.
2003-04-26 03:41:24 +00:00
18ffdb1f98
Greatly enhance the debug printing done when conditionally compiled with
...
DEBUG_ASN1D_STATES defined.
2003-04-26 02:15:50 +00:00
882e317938
Change the more recently added "choice" functions to conform to the
...
coding style used throughout the rest of the file.
2003-04-26 01:40:49 +00:00
937bec27c0
bug 201081, better spreading of session id hash
...
r=relyea
2003-04-24 18:30:12 +00:00
ec0eb750a2
Change the naming scheme for the mingw libraries to use the following format:
...
static lib: libfoo.a
import lib: libfoo.dll.a
shared lib: foo.dll
Bug #134113 r=dmose
2003-04-23 00:54:38 +00:00
ff5beff781
bug 202553, replace reference mutex with atomic calls in PK11SlotInfo
...
r=relyea,wtc
2003-04-22 14:11:53 +00:00
bceb6e8e90
201245 convert SecretKey to SecretKeyFacade
2003-04-21 21:38:34 +00:00
86b2cf367f
Broke a long line.
2003-04-21 21:33:16 +00:00
6345631a99
Bug 134113: use "lib" as the prefix for static and import libraries in the
...
Win32 gcc (MinGW) build. The patch is contributed by Chris Seawood
<cls@seawood.org>.
2003-04-21 21:03:55 +00:00
890ecf85d2
Bug 134113: make NSS build on Win32 using GCC (MinGW). The patch
...
(attachment 121068) is contributed by Chris Seawood (cls@seawood.org ).
2003-04-20 04:23:37 +00:00
8a87e924dd
b=155760 Changing content by JavaScript document.write => open insecure
...
lock icon
r=javi sr=peterv
2003-04-19 14:04:59 +00:00
f11a7a6813
Bug 202593 NSS does not lock non-threadsafe modules correctly.
...
Consolidate one lock for non-thread safe modules (not one per slot).
2003-04-19 00:03:32 +00:00
0d76497e84
Bug 202593 NSS does not lock non-threadsafe modules correctly.
...
Consolidate one lock for non-thread safe modules (not one per slot).
2003-04-19 00:03:13 +00:00
0978e17a8a
bug 202312 - localeVersion update for 1.4b, r=rchen, sr=blizzard
2003-04-17 18:43:57 +00:00
368029417d
bug 198452, zero-byte memcpys
...
r=relyea
2003-04-17 17:05:09 +00:00
e5e7ae2540
Fix for 202348 - check cert & key pointers returned by client auth application callback, to fix crash . r=nelsonb
2003-04-17 02:03:39 +00:00
587a893855
Fix for 202058 - Compile source files wit absolute pathnames to ease debugging on Win32 & OS/2
2003-04-17 01:59:34 +00:00
c4b4a8dbb9
Fix for 201134 - race condition when verifying certs. Don't reset the value of nsCertType in CERTCertificate in the middle of the computation. r=nelsonb
2003-04-17 00:32:54 +00:00
b1fa33d277
Bug 201808:We don't need to use _declspec(dllexport) to export
...
C_GetFunctionList now. nssckbi.def takes care of that.
Modified Files: ckapi.perl nssck.api
2003-04-17 00:07:06 +00:00
d476b191aa
Bug 201808: added nssckbi.def, which exports C_GetFunctionList.
...
Modified Files: manifest.mn
Added Files: nssckbi.def
2003-04-16 22:22:22 +00:00
cae35890e9
Take out bogus dependency on ASN1Util.
2003-04-15 23:21:04 +00:00
8e9032b6de
Fix for 202053 - signing of softokn3.dll may fail on OS/2. Force the use of OS/2 CMD.EXE default shell . r=pedemont
2003-04-15 22:42:09 +00:00
ba0cf6a4d7
Fix 202182: Base64InputStream throws EOFException on valid input.
2003-04-15 22:39:36 +00:00
48e3bcebb1
Catch NULL pointers before passing them to C and risking a crash.
...
Improve javadoc.
2003-04-15 21:55:53 +00:00
56054249da
Bug 201555: enable stripping of EXEs on OS/2 with gcc. The LIBPATHSTRICT
...
change in sign.cmd is so that you can run a VACPP build when gcc is
building (otherwise shlibsign loads the wrong DLLs). The patch is
contributed by IBM.
Modified Files:
coreconf/OS2.mk nss/cmd/shlibsign/sign.cmd
2003-04-15 04:08:09 +00:00
47768abcf7
The .chk files should have the $(DLL_PREFIX), not $(LIB_PREFIX), because
...
they correspond to shared libraries/DLLs.
2003-04-12 20:44:45 +00:00
4d3b825ffa
Make --disable-xul work (bug 69995). We build enough XUL to support
...
scrollbars unconditionally, but can now leave out heavyweight widgets like
grid, listbox, and tree. r=bzbarsky, sr=alecf.
2003-04-11 00:56:27 +00:00
1d976ea382
b=200236 Change Master password dialog OK button disabled with matching passwords
...
r=javi sr=alecf
2003-04-10 18:16:22 +00:00
04f618e4d1
Fix for 201259 . Make the default client auth callback NSS_GetClientAuthData work with dual-key certs. r=nelsonb, sr=wtc
2003-04-09 22:23:10 +00:00
ac35f550f4
Remove misleading comment.
2003-04-09 21:30:19 +00:00
f65819ed32
Fix bug 200225. Don't report invalid CA cert on trusted root CAs.
2003-04-08 04:49:39 +00:00
2524841c6d
Set NSS version to 3.9 Beta.
2003-04-08 00:29:54 +00:00
6eef066c5b
Bug 200974: NetBSD uses GNU ld and so also needs -rpath-link.
2003-04-07 23:52:17 +00:00
7f319292df
b=50823 S/Mime: Support certificates with multiple listed email addresses
...
r=javi sr=alecf
2003-04-04 12:57:51 +00:00
4627ba7a34
Backed out the previous checkin, which broke our NT nightly build. It seems
...
that USE_CYGWIN is set (to some strange value) under MKS shell.
2003-04-03 14:48:00 +00:00
717f28d62b
*** empty log message ***
2003-04-03 07:59:40 +00:00
a953022637
Fix for bug 200394 - update softoken version to 3.8 . r=wtc
2003-04-03 02:14:59 +00:00
e6a808e01e
Set NSS version to 3.8.
2003-04-02 23:27:01 +00:00
84db79731c
Fix bug 200224. Eliminate null ptr dereference.
2003-04-02 23:24:01 +00:00
cd7a968a67
Import NSPR 4.3 RTM.
2003-04-02 23:22:57 +00:00
8a6801f0fe
Fix bug 95138. Make debug .EXE files with debug symbols.
2003-04-02 04:27:23 +00:00
d92f79a4d6
Bug 200179: prepend, rather than overwrite, the shared library search path.
...
We can't assume the shared library search path is not set.
2003-04-01 22:58:26 +00:00
08505503e5
Destroy the hash context, public key, private key, and slot so that NSS
...
shutdown will succeed. r=relyea.
2003-04-01 22:47:46 +00:00
8e7b2d5896
Added a missing {.
2003-04-01 22:03:07 +00:00
bd0947dad5
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:23:18 +00:00
680857dd96
checking return value of NSS_Shutdown - bug 171263
2003-04-01 19:13:50 +00:00
0eb8144a44
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:11:38 +00:00
648c40a01e
Checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:05:56 +00:00
d863d8633f
checking return value of NSS_Shutdown() - bug 171263
2003-04-01 19:00:50 +00:00
39243d2acf
Bug 180294: on OpenVMS we need to pass the C flags set in the environment
...
to NSS's coreconf. The easiest way to do this is to pass Mozilla's
OS_CFLAGS (which includes those flags) to NSS as XCFLAGS. r=wtc. sr=cls.
a=asa.
2003-04-01 15:07:41 +00:00
a772bc1075
Fix for 199227 - keep enumerating certs in tokens even if one token fails. r=relyea
2003-04-01 00:07:05 +00:00
f430edde06
Bug 195127: Turn off debugging output now that we have the AIX tinderbox
...
working correctly.
2003-03-29 04:30:02 +00:00
f101c77399
Bug 199628: support shlibsign on OpenVMS. Pass $(OS_TARGET) instead of
...
$(IS_WINDOWS) to sign.sh and sign.cmd (which ignores that argument). In
sign.sh, use a case statement with three cases: Windows, OpenVMS, and
others. The patch is contributed by Colin Blakes <colin@theblakes.com>.
Modified Files: Makefile sign.cmd sign.sh
2003-03-29 00:42:43 +00:00
0f451fa946
Changes to enable ECC over characteristic 2^m fields.
...
Contribution from Vipul Gupta <Vipul.Gupta@Sun.COM>
Modified Files:
nss/cmd/strsclnt/strsclnt.c nss/lib/cryptohi/seckey.c
nss/lib/freebl/blapit.h nss/lib/freebl/ec.c
nss/lib/freebl/manifest.mn nss/lib/freebl/mpi/Makefile
nss/lib/softoken/ecdecode.c nss/lib/softoken/pkcs11.c
nss/lib/ssl/ssl3con.c nss/lib/util/secoid.c
nss/lib/util/secoidt.h
2003-03-29 00:18:30 +00:00
37e98be036
Backout change that broke Sun's build - requires gmake 3.79
2003-03-28 20:07:30 +00:00
492b2f677f
Fix for bug 105271 - compile source files with full pathnames on Windows & OS/2 to help debugging. r=wtc
2003-03-28 02:35:39 +00:00
66d2e3f995
landing final patch for NTLM authentication based on WIN32 SSPI API, b=159015 r=kaie sr=dbaron a=asa
2003-03-27 19:31:53 +00:00
863a8d106e
Bug 195797: support building NSS with GCC 3.x on OS/2. The patch is
...
contributed by Javier Pedemonte <pedemont@us.ibm.com>.
Modified Files:
security/coreconf/OS2.mk security/coreconf/rules.mk
security/nss/cmd/shlibsign/sign.cmd
2003-03-27 15:40:54 +00:00
6215d0ea7f
Add missing return statement.
2003-03-27 03:07:47 +00:00
7452fc6021
Bug 199134: fixed build failures on FreeBSD. We need to specify -pthread
...
when linking an executable (already doing that when linking a shared lib),
and we need to use the -rpath-link flag to help the linker find the
shared libraries that we indirectly link with. r=cls.
Modified Files: coreconf/FreeBSD.mk nss/cmd/platlibs.mk
2003-03-27 01:17:28 +00:00
8abc036ff5
Bug 195127: set the LIBPATH environment variable (used by AIX) as absolute
...
pathname. It seems that AIX caches shared libraries. If another app loaded
the same shared library earlier, the cached copy of the shared library,
including the pathname with which it was loaded, will be used. So we need
to ensure that all apps load libsoftokn3.so with an absolute pathname so
that the pathname is correct to all apps.
2003-03-26 21:07:12 +00:00
ffa45bb3d5
Removed extraneous trailing / after directory pathnames.
2003-03-26 18:30:33 +00:00
6d0b871174
Add support for Elliptic Curve Cryptography. Bug 195135.
...
Contributor(s):
* Sheueling Chang Shantz <sheueling.chang@sun.com> and
* Douglas Stebila <douglas@stebila.ca>, Sun Microsystems Laboratories
Added Files:
GF2m_ecl.c GF2m_ecl.h mpi/mp_gf2m.c mpi/mp_gf2m.h
mpi/tests/mptest-b.c
2003-03-26 05:03:11 +00:00
5fa3007c43
Bug 199082: checked in Nelson's patch, which
...
a) changes selfserv to test the return value from NSS_Shutdown.
b) changes SECMOD_Shutdown to set the error code SEC_ERROR_BUSY before
returning SECFailure.
c) Adds a new function SSL_ShutdownServerSessionIDCache to ssl.h.
d) Changes selfserv to call SSL_ShutdownServerSessionIDCache before calling
NSS_Shutdown.
Modified Files:
cmd/selfserv/selfserv.c lib/pk11wrap/pk11util.c
lib/ssl/ssl.def lib/ssl/ssl.h lib/ssl/ssl3con.c
lib/ssl/sslimpl.h lib/ssl/sslsnce.c
2003-03-26 00:31:13 +00:00
666bc35aa8
Bug 194083: use qcc instead of gcc. The patch is contributed by
...
amardare@qnx.com .
2003-03-25 19:32:36 +00:00
6fa1295b3a
Fix bug 198099. Display DSA public keys in certs properly.
2003-03-25 03:45:04 +00:00
a9cd0398f3
Bug 198483 Uninitalized m_dcx causes shutdown crash [@ NSS_CMSDecoder_Cancel]
...
r=kaie sr=darin
2003-03-25 02:30:56 +00:00
663581cf1d
Bug 196352 JS_GetContextPrivate isn't used correctly
...
r=javi sr=heikki
2003-03-25 02:30:22 +00:00
ee32c19ea0
final patch for bug 198270 "Trunk crash resulting from minimo branch landing" patch=dougt r=kaie sr=darin
2003-03-25 02:17:05 +00:00
1dda713ef1
Fix build
2003-03-25 02:13:33 +00:00
853f67123e
bug 198622, redundant memset calls
2003-03-24 22:25:52 +00:00
24df80f866
Bug 142867: pk12util needs to be able to import intermediate CA's into hw
...
tokens.
2003-03-24 19:09:08 +00:00
f906970555
Removed the experimental change. It did not cause the intermittent QA
...
failures on the "aix64" tinderbox to go away.
2003-03-23 00:16:43 +00:00
7d5a549784
Deleted an obsolete comment.
2003-03-22 08:01:44 +00:00
af16248797
An experimental change for debugging bug 195127: on the 64-bit AIX
...
tinderbox the dist/${OBJDIR}/lib/libsoftokn3.chk symlink sometimes does
not get created.
2003-03-22 07:52:25 +00:00
wtc%netscape.com
glen.beasley%sun.com
brendan%mozilla.org
nicolson%netscape.com
nelsonb%netscape.com
bishakhabanerjee%netscape.com
bzbarsky%mit.edu
caillon%returnzero.com
jpierre%netscape.com
jaggernaut%netscape.com
scott%scott-macgregor.org
kaie%netscape.com
jst%netscape.com
jshin%mailaps.org
relyea%netscape.com
neil%parkwaycc.co.uk
seawood%netscape.com
kairo%kairo.at
ian.mcgreer%sun.com
kirk.erickson%sun.com
timeless%mozdev.org
dwitte%stanford.edu
dougt%meer.net
bryner%netscape.com
cls%seawood.org
darin%netscape.com