mozilla
/
pjs
зеркало из https://github.com/mozilla/pjs.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
171 827 коммитов 40 Ветки 136 Теги 1,1 GiB
Граф коммитов

6220 Коммитов

Автор SHA1 Сообщение Дата
kaie%kuix.de 1ce6ee2a89 Bug 337486, mismatch between PK11_FindCertFromNickname and FindCerts 
r=rrelyea, r=julien.pierre
 2006-06-26 23:21:07 +00:00
julien.pierre.bugs%sun.com 604d865157 Fix for bug 335748 . Add NSS_ENABLE_ECC and NSS_ECC_MORE_THAN_SUITE_B build macros. r=nelson, rrelyea 2006-06-26 21:16:54 +00:00
kaie%kuix.de 78e425ba44 Bug 310446, Add a user feedback message when certs for import are being ignored 
also fixes
Bug 176507, Certificates added without warning or confirmation
r=rrelyea, string-review=beltzner
 2006-06-26 17:13:13 +00:00
richm%stanfordalumni.org 498b38db59 bump spec revision to 2 2006-06-26 15:16:39 +00:00
timeless%mozdev.org e1d478fb0a Bug 309877 PSM/NSS init (thus SSL/https) fails when no profile exists 
original patch by benb r=rrelyea moa=kaie
 2006-06-25 07:12:44 +00:00
mrbkap%gmail.com 44c4148643 Keep a strong reference to the context that we're operating on. This involves 
giving the sandbox context an nsISupports private data that controls its
lifetime. bug 337462, r+sr=jst
 2006-06-24 04:33:24 +00:00
christophe.ravel.bugs%sun.com b497d7c856 JSS 4.2.4 release candidate. 2006-06-23 22:32:51 +00:00
rrelyea%redhat.com e27ebec51e bug 335748 ECC support for Mozilla. r=wtc 2006-06-23 17:01:38 +00:00
rrelyea%redhat.com 63f322630d Bug 335748 ECC support for mozilla. 
r=wtc
 2006-06-23 16:57:43 +00:00
richm%stanfordalumni.org d216da6e85 do not erase source tarball 2006-06-23 15:28:29 +00:00
richm%stanfordalumni.org 81de66bdc7 added LICENSE file; renamed svrcore.spec to svrcore-devel.spec and made other changes to comply with fedora packaging guidelines - see https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=196393 2006-06-23 15:15:07 +00:00
richm%stanfordalumni.org 4fd3c51f1f remove patch file copying 2006-06-22 19:42:14 +00:00
richm%stanfordalumni.org ab8050212c bump version to 4.0.2; now using HEAD of mozilla/security/coreconf which has fixed the coreconf location patch, so get rid of patch file 2006-06-22 19:38:24 +00:00
kaie%kuix.de 9d552c5fda Bug 337797, Can't send signed email as the first crypto operation in FIPS mode 
r=rrelyea
 2006-06-22 18:54:15 +00:00
kaie%kuix.de 4460f9988f Land missing portion of bug 235773, Conform to NSS upstream build options, r=wtchang 2006-06-22 18:47:44 +00:00
gavin%gavinsharp.com f00d33fd20 Bug 213207: make security mismatch dialog default to "Cancel", and fix other dialogs to use the dialog binding's standard default button attribute, r=kaie, ui-r=beltzner 2006-06-22 05:05:28 +00:00
wtchang%redhat.com 964136ed2c Bugzilla Bug 338798: in C89, local struct variables can only be initialized 
by constant expressions.  HP C compiler version B.11.11.08 generates
incorrect code silently if the initializers are non-constant expressions.
r=alexei.volkov,julien.pierre.
 2006-06-21 00:40:59 +00:00
neil.williams%sun.com adfa6afb5a Bug 337613, FipsTest assertion failure 
r=glen
 2006-06-20 21:40:16 +00:00
wtchang%redhat.com 2f57af8e44 Bugzilla Bug 337034: nested two related tests. r=relyea. 2006-06-17 00:09:59 +00:00
julien.pierre.bugs%sun.com 899e6ce42f Workaround (or fix) for bug 341573 . Switch compiler option from -fsimple=2 to -fsimple=1 2006-06-16 04:41:34 +00:00
alexei.volkov.bugs%sun.com 5044fff858 [Bug 337110] OOM Crash and memory leak [@ PK11_CreatePBEParams]. r=julien, sr=nelson 2006-06-16 00:42:46 +00:00
wtchang%redhat.com a49ee28fa8 Bugzilla Bug 341590: in FIPS mode, softoken should report the more serious 
fatalError condition before the !isLoggedIn condition. r=nelson.
 2006-06-15 23:55:59 +00:00
christophe.ravel.bugs%sun.com cd1aaf4212 Bugzilla 337793: Create a test to check all EC curves 
r+ Christophe
Committed on behalf of Nelson.
 2006-06-15 19:26:01 +00:00
alexei.volkov.bugs%sun.com 3816951a1c [Bug 337008] OOM crash [@ nssList_Add - STAN_InitTokenForSlotInfo - STAN_LoadDefaultNSS3TrustDomain][@ nssList_Clone - nssList_CreateIterator - STAN_LoadDefaultNSS3TrustDomain] Dereferencing possibly NULL "(td)->tokenList". r=nelson, sr=wtc 2006-06-13 21:36:29 +00:00
wtchang%redhat.com 4d7ec1f89a Bugzilla Bug 341111: added a dummy reference to the SCCS and RCS version 
strings so that they won't be optimized away. r=nelsonb.
 2006-06-13 17:48:03 +00:00
alexei.volkov.bugs%sun.com fabd34f574 [Bug 337110] OOM Crash [@ PK11_CreatePBEParams]. r=nelson 2006-06-13 17:33:06 +00:00
mhammond%skippinet.com.au d5ad1dc2b9 Land DOM_AGNOSTIC3_BRANCH, bug 255942. r=a few people, sr=brendan. 2006-06-13 03:07:47 +00:00
alexei.volkov.bugs%sun.com be7f1dcb5e [Bug 337099] Crash [@ PK11_ParamFromIV] Variable "iv" tracked as NULL 
was dereferenced. r=nelson
 2006-06-12 21:16:49 +00:00
alexei.volkov.bugs%sun.com fe5a005e2c [Bug 339886] param leaked at NSS_CMSCipherContext_StartEncrypt(nss/lib/smime/cmscipher.c). r=nelson 2006-06-12 21:05:12 +00:00
nelson%bolyard.com 5e409752f7 Don't call nssCKFWToken_Destroy with NULL. Bug 340018. r=alexei.volkov 2006-06-10 22:21:10 +00:00
nelson%bolyard.com 07841bf20e Fix leak and OOM crash. Bug 338352 and 338356. Coverity. 
r=rrelyea, alexei.volkov
 2006-06-10 22:13:46 +00:00
julien.pierre.bugs%sun.com b656eeff6f Fix for bug 340917 - crlutil should init NSS read-only for list option. r=alexei.volkov 2006-06-09 21:55:11 +00:00
kaie%kuix.de dc2c405850 Bug 340183, Add the Netlock Class QA root certificate 
Approval for adding CA cert granted by Frank Hecker in bug 313942
Patch by Wan-Teh Chang, r=me
 2006-06-09 21:02:16 +00:00
nelson%bolyard.com d8f1dd86cd Fix broken build. 2006-06-09 18:12:50 +00:00
nelson%bolyard.com ff440c16df Fix leaks in CERT_DistNamesFromNicknames (bug 339916) and in 
CERT_GetCertNicknames (bug 339919). Coverity bugs. r=alexei.volkov
 2006-06-09 01:24:39 +00:00
julien.pierre.bugs%sun.com cc5926cfe9 Fix for bug 340909 . Add batch command to usage. r=nelson 2006-06-09 01:24:23 +00:00
nelson%bolyard.com 3dd8d0d907 Fix leak in NSS_CMSEncoder_Start error path. Bug 339914. r=alexei.volkov 2006-06-08 22:01:02 +00:00
nelson%bolyard.com 9c4f4cd42c Fix leak in sec_asn1d_add_to_subitems. Bug 339913. r=alexei.volkov 2006-06-08 21:40:30 +00:00
glen.beasley%sun.com 8eb963e03a 340734 update ref to 140-1 to 140 r=neilWilliams 2006-06-08 18:19:09 +00:00
steffen.wilberg%web.de 65d78b97d5 Bug 309052: remove broken Help button from CRL manager in Firefox. r=mconnor, kaie 2006-06-07 22:48:23 +00:00
nelson%bolyard.com 76f419d7b6 Remove dead code. Coverity 506. r=nelson,wtchang. Bug 337027. 
Patch by Jon Smirl <jonsmirl@yahoo.com>
 2006-06-07 18:36:26 +00:00
nelson%bolyard.com c606ef0c5f Fix bug 337104 and bug 337105. Don't crash if we run out of memory 
in ssl2_ConstructCipherSpecs().  r=Alexei.Volkov  Coverity 442 & 443.
 2006-06-07 17:53:19 +00:00
julien.pierre.bugs%sun.com f5b1468503 Fix for bug 326637 . Unnecessary request of PKCS11 device password. r=rrelyea 2006-06-07 02:30:27 +00:00
Jan.Varga%gmail.com 5ab0398355 Fix for bug 296040. Cell-based selection in trees 
r=Neil Deakin, sr=Neil Rashbrook, sponsored by BEToptions
 2006-06-06 20:05:13 +00:00
julien.pierre.bugs%sun.com 8aa09ef206 Fix for bug 340040 - add certutil option to verify an OCSP responder cert. r=nelson 2006-06-06 01:06:23 +00:00
timeless%mozdev.org 9391198a55 Bug 337917 Make consumers stop using cids from other modules 
r=smontagu sr=darin
 2006-06-03 23:35:59 +00:00
alexei.volkov.bugs%sun.com a79dd03c29 [Bug 339908] 3 NULL ptr crashes when PK11_GetBestSlot returns NULL. r=nelson 2006-06-02 20:34:04 +00:00
wtchang%redhat.com 9f827e24d8 Import NSPR 4.6.2 and NSS 3.11.1. 2006-06-02 05:20:37 +00:00
wtchang%redhat.com f6c1a8581a Import NSPR 4.6.2. 2006-06-02 05:18:01 +00:00
wtchang%redhat.com 34e36b9e04 Bugzilla bug 338599: added new function SECKEY_SignatureLen and use it 
instead of SECKEY_PublicKeyStrength to get ECDSA signature lengths.
Removed the 'type' member from the VFYContextStr structure because that
info is in the 'key->keyType' field.  Set error codes when functions
fail (return 0). r=nelsonb.
Modified Files:
	cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secvfy.c
	nss/nss.def ssl/ssl3con.c
 2006-05-31 23:54:52 +00:00
alexei.volkov.bugs%sun.com c332ce14e9 [Bug 220380] Add SSL client auth stress tests. 
Attachment "auth patch"(#222740). r=nelson
 2006-05-31 18:06:02 +00:00
wtchang%redhat.com 91c3167816 Bugzilla Bug 338552: added StartCom CA certificate to NSS. The patch is 
contributed by  Eddy Nigg, StartCom Ltd. <eddy_nigg@startcom.org>. r=wtc.
a=hecker.
Modified Files: certdata.c certdata.txt nssckbi.h
 2006-05-31 17:18:54 +00:00
julien.pierre.bugs%sun.com 5fc5a905a0 Fix for bug 336477 . Fix for CERT_UncacheCRL error checking. r=nelson 2006-05-31 01:57:55 +00:00
richm%stanfordalumni.org 6976b848c8 fixes from Nathan to fix the rpm build script 2006-05-24 13:40:09 +00:00
glen.beasley%sun.com 6a1e2d4459 335619 Template Fix for optional elements by rocky-s r=nkwan 2006-05-24 03:18:17 +00:00
glen.beasley%sun.com 10fedd99b7 338484 Run SSL tests in FIPS mode 2006-05-24 03:09:42 +00:00
alexei.volkov.bugs%sun.com fbeb1e622a [Bug 337014] OOM crash [@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen][@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen] Dereferencing possibly NULL "varena". r=nelson 2006-05-22 23:08:04 +00:00
alexei.volkov.bugs%sun.com 5d33d9eb9a [Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c) [Attachment 222949]. r=nelson 2006-05-22 22:38:56 +00:00
wtchang%redhat.com af74c4cc82 Bugzilla Bug 320336: improved the comments for SECITEM_AllocItem in 
secitem.h.  Made SECITEM_AllocItem fail (return NULL) if the allocation of
the buffer fails, as documented. r=nelsonb.
Modified files: secitem.c secitem.h
 2006-05-22 22:24:34 +00:00
wtchang%redhat.com 504ec551d2 Bugzilla Bug 298520: moved the RSA maximum size macros from rsa.c to 
blapit.h.  Removed an out-of-date comment from blapit.h. r=nelsonb.
Modified files: blapit.h rsa.c
 2006-05-22 22:10:40 +00:00
wtchang%redhat.com 7371799647 Bugzilla Bug 298520: added a comment explain the meaning of the MAX_KEY_LEN 
macro. r=nelsonb.
 2006-05-22 22:08:40 +00:00
alexei.volkov.bugs%sun.com 2ea761455d [Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c). r=nelson 2006-05-22 21:46:14 +00:00
bugzilla%arlen.demon.co.uk 9b3d7fe28d Bug 235773 TLS ECC cipher suites: PSM backend, SeaMonkey UI 
Removal of files and entries in jar.mn
r=kengert
 2006-05-22 14:33:09 +00:00
wtchang%redhat.com 6ac2945b15 Bug 236613: change to MPL/LGPL/GPL tri-license. 2006-05-21 21:02:26 +00:00
alexei.volkov.bugs%sun.com dcaeb9d028 [Bug 220380] Add SSL client auth stress tests. Attachment #4. r=julien 2006-05-20 18:32:08 +00:00
kaie%kuix.de e877c41a17 bug 338421, Can no longer create SSL session to Cisco VPN concentrator by host name 
Patch contributed by Bill Gianopoulos
r=kengert/nelson
 2006-05-20 02:36:48 +00:00
nelson%bolyard.com 36ff5b1ae5 Promote the use of curve secp192r1 for client auth, since it is faster 
than most.  Bug 332350.  r=rrelyea.
 2006-05-19 03:59:06 +00:00
nelson%bolyard.com 5a8ca34ce9 Eliminate a crash and plug a leak in the error path for function 
nssSMIMEProfile_Create. Coverity bug 337101. r=alexei.volkov.
 2006-05-18 23:29:19 +00:00
nelson%bolyard.com e72c25b0c0 Avoid crash if "item" pointer is NULL. Coverity bug 333555. 
r=wtchang,alexei.volkov
 2006-05-18 21:20:04 +00:00
alexei.volkov.bugs%sun.com 1ba3290360 [Bug 337008] OOM crash [@ nssList_Add - STAN_InitTokenForSlotInfo - STAN_LoadDefaultNSS3TrustDomain][@ nssList_Clone - nssList_CreateIterator - STAN_LoadDefaultNSS3TrustDomain] Dereferencing possibly NULL "(td)->tokenList". r=nelson, sr=wtc 2006-05-18 21:00:58 +00:00
alexei.volkov.bugs%sun.com 05dfd98f89 [Bug 337010] OOM crash [@ NSC_DigestKey] Dereferencing possibly NULL "att". r=ne 
lson,wtc
 2006-05-18 20:52:50 +00:00
nelson%bolyard.com 6113f329ce Plug leak. Free cache. Coverity bug 338201. r=alexei.volkov 2006-05-18 20:46:19 +00:00
nelson%bolyard.com 86aff1cbdf Fix several Coverity bugs. Bug 336982. NULL ptr check after ptr deref'ed. 
Bug 337080.  Dead code.  r=alexei.volkov
 2006-05-18 20:39:19 +00:00
nelson%bolyard.com 000e1bafa1 Remove dead old FORTEZZA KEA code. Coverity bug 337098. r=rrelyea,wtchang 2006-05-18 20:24:23 +00:00
alexei.volkov.bugs%sun.com 63a306d826 [Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. (second patch) r=nelson 2006-05-18 20:21:12 +00:00
nelson%bolyard.com dc9a12cb8d Don't dereference a NULL secmodprefix argument. Coverity Bug 336981. 
r=alexei.volkov
 2006-05-18 19:44:24 +00:00
nelson%bolyard.com 74d2ccc785 In SEC_PKCS12DecoderGetCerts, don't dereference p12dcx until AFTER it has 
been checked for NULL. Coverity bug 336971. r=alexei.volkov
 2006-05-18 19:38:59 +00:00
nelson%bolyard.com 8bd2d1df8f Add 3 assertions to satisfy coverity that tmpt is never NULL in these 
places.  Bug 336995. r=akexei.volkov,wtchang
 2006-05-18 19:32:44 +00:00
nelson%bolyard.com 607d9cc069 Plug leak. Free "info" in error path. Coverity bug 336475. 
r=wtchang,alexei.volkov
 2006-05-18 04:35:32 +00:00
nelson%bolyard.com 715d420b77 Correct the amount returned by ssl_Writev for short writes on non-blocking 
sockets.  Bug 338325. patch by Chris Newman <chris.newman@sun.com>
r=nelson
 2006-05-18 01:10:21 +00:00
wtchang%redhat.com f94d37ae7f Bugzilla bug 338367: check that the array index params->name is within 
bounds before taking an element from the ecCurve_map array.
r=doublas.stebila.
 2006-05-17 23:58:18 +00:00
julien.pierre.bugs%sun.com 3840d8ffbf Fix for bug 222300. r=nelson,wtchang 2006-05-17 22:20:08 +00:00
alexei.volkov.bugs%sun.com 0cae94a7e1 [Bug 337011] OOM crash [@ sftk_handleKeyObject][@ sftk_handleKeyParameterObject] Dereferencing possibly NULL "attribute". r=nelson 2006-05-17 20:52:16 +00:00
alexei.volkov.bugs%sun.com 7e414dbf0f [Bug 337326] Leak in nsslowcert_UpdateSubjectEmailAddr (security/nss/lib/softoken/pcertdb.c). r=nelson 2006-05-17 20:46:47 +00:00
alexei.volkov.bugs%sun.com 1d7acda0c5 [Bug 337009] OOM crash [@ nssList_Count - nssTrustDomain_GetCertsFromCache] Dereferencing possibly NULL "certList". r=nelson 2006-05-17 20:38:59 +00:00
alexei.volkov.bugs%sun.com 951d5dab6d [Bug 337332] Leak in OpenNewDB (security/nss/lib/softoken/keydb.c). r=nelson 2006-05-17 17:56:32 +00:00
wtchang%redhat.com 186930c8cf Bugzilla Bug 337887: use the -mnop-fun-dllimport flag so that we can use 
a pointer to a function declared with the dllimport attribute as a constant
address.  We need to use such function pointers to initialize a const
structure in nss/lib/ssl/sslsock.c.  The patch is contributed by Chris
Seawood <cls@seawood.org>.  r=wtc.
 2006-05-17 16:37:59 +00:00
alexei.volkov.bugs%sun.com e779bc3002 [Bug 336485] coverity thinks that nssPKIObject_GetInstances could return null which would lead to a crash [@ listCertsCallback]. r=nelson 2006-05-16 23:47:43 +00:00
julien.pierre.bugs%sun.com e68d3074e5 Fix for bug 335036. certutil tries to shutdown NSS even if it didn't initialize . r=wtchang, nelson 2006-05-16 02:16:25 +00:00
wtchang%redhat.com 29617c243e Bugzilla Bug 337025: removed more unused or trivially used variables. 
r=alexei.volkov,nelson.bolyard.
 2006-05-16 01:57:04 +00:00
wtchang%redhat.com 9dd0f7625a Bug 305835: Remove NSS_ENABLE_ECC ifdefs in libssl. r=wtc,nelsonb 2006-05-16 01:14:43 +00:00
kaie%kuix.de f9d15206bc But 235773, Seamonkey only, removes UI to edit and show cipher info 
r=rrelyea, ui-review=neil
 2006-05-16 01:09:37 +00:00
wtchang%redhat.com a8e38b26cd Bugzilla Bug 298506: a first cut at Solaris auditing. The patch is 
contributed by Glen Beasley of Sun. r=wtc.
Modified Files:
	cmd/platlibs.mk lib/softoken/config.mk lib/softoken/fipstokn.c
 2006-05-16 01:04:05 +00:00
kaie%kuix.de d29da504bd bug 235773, Patch v13 
This check in will make PSM aware of ECC cipher suites. Nightly builds will not yet contain ECC, because NSS is still
being compiled with ECC disabled.
r=rrelyea/darin
 2006-05-16 00:33:44 +00:00
julien.pierre.bugs%sun.com 1c2c7ef6d1 Fix for bug 335036 . NSS_Shutdown() does not check that NSS is initialized. r=nelson, alexei 2006-05-16 00:10:04 +00:00
julien.pierre.bugs%sun.com 355ffcddab Fix for bug 337789 . PK11_FindKeyByAnyCert doe snot work if softoken is in FIPS140-2 mode. r=wtchang, rrelyea, nelson 2006-05-15 23:51:01 +00:00
alexei.volkov.bugs%sun.com b21f80cbe1 [Bug 336482] crash or hopefully deadcode [@ crmf_copy_poposigningkey] 
because Pointer "destPopoSignKey" dereferenced before NULL check. r=nelson
 2006-05-15 21:05:13 +00:00
alexei.volkov.bugs%sun.com 984af57822 Patch contributed by jonsmirl@yahoo.com 
[Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. r=wtchang
 2006-05-15 20:58:10 +00:00
alexei.volkov.bugs%sun.com ec9f7e1887 Patch contributed by jonsmirl@yahoo.com 
[Bug 337086] Coverity 446, dead code in mozilla/security/nss/lib/certhigh/ocsp.c. r=wtchang
 2006-05-15 20:52:01 +00:00
alexei.volkov.bugs%sun.com 16a84cc635 Patch contributed by jonsmirl@yahoo.com 
[Bug 337085] Coverity 447, dead code in mozilla/security/nss/lib/certhigh/ocsp.c
. r=wtchang
 2006-05-15 20:44:46 +00:00
alexei.volkov.bugs%sun.com 4e7d70e6a7 Patch contributed by timeless@bemail.org 
[Bug 337025] Coverity 411, dead code in mozilla/security/nss/lib/certdb/stanpcertdb.c. r=nelson
 2006-05-15 20:39:38 +00:00
christophe.ravel.bugs%sun.com 7a34787c99 Bugzilla 315445: Temp directory for AMD and Intel are the same, hence over writing each others files causing the tests to fail. 
r+=glen.beasley
 2006-05-15 18:38:48 +00:00
nelson%bolyard.com 812639c340 Remove files nsres.h and nsres.c from manifest.mn. Bug 336198. r=wtchang 2006-05-13 00:47:52 +00:00
alexei.volkov.bugs%sun.com 6f023dcf53 Patch contributed by timeless@bemail.org 
[Bug 336992] crash [@ pk11_DoKeys] "arg" Pointer dereferenced before NULL check. r=nelson
 2006-05-13 00:46:51 +00:00
alexei.volkov.bugs%sun.com bbe6e8f9c5 Patch contributed by timeless@bemail.org 
[Bug 336972] OOM crash [@ PK11_ImportDERPrivateKeyInfoAndReturnKey] "pki" Pointer allocated by PORT_NewArena dereferenced without NULL check. r=nelson
 2006-05-13 00:41:16 +00:00
alexei.volkov.bugs%sun.com 729d4b4079 Patch contributed by timeless@bemail.org 
[Bug 336466] oom crash [@ CERT_DecodeAuthKeyID]. r=nelson
 2006-05-13 00:33:09 +00:00
alexei.volkov.bugs%sun.com 7475a20656 Patch contributed by jonsmirl@yahoo.com 
[Bug 336935] Coverity 172, dead code in mozilla/security/nss/lib/softoken/keydb.c. r=nelson, r=alexei.volkov.bugs
 2006-05-13 00:27:22 +00:00
julien.pierre.bugs%sun.com b1cd34d3bf Fix for bug 336477. Memory leak in CERT_UncacheCRL . r=nelson 2006-05-13 00:27:12 +00:00
alexei.volkov.bugs%sun.com fec71bb342 Patch contributed by jonsmirl@yahoo.com 
[Bug 336932] Coverity 163, dead code in mozilla/security/nss/lib/ssl/ssl3con.c. r=nelson
 2006-05-13 00:15:43 +00:00
alexei.volkov.bugs%sun.com fcabbc4e8d Patch contributed by timeless@bemail.org 
[Bug 336481] oom crash [@ crmf_copy_cert_req_msg]
 2006-05-13 00:03:12 +00:00
nelson%bolyard.com 5e393813ff Bug 337093. Remove dead code at label loser in function dbs_readBlob 
Patch by Jon Smirl <jonsmirl@yahoo.com>, r=wtchang.  Coverity bug
 2006-05-12 23:37:58 +00:00
wtchang%redhat.com 26a2faa4f4 Bugzilla Bug 336521: we should search the build tree (${DIST}/${OBJDIR}) 
before /bin and /usr/bin. r=slavomir.katuscak
 2006-05-12 20:50:53 +00:00
wtchang%redhat.com 91040ba950 Bugzilla Bug 336934: removed ununsed variable ck_id. The patch is 
contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
 2006-05-12 20:42:13 +00:00
wtchang%redhat.com 8e36011d8e Bugzilla Bug 336937: removed a test that is guaranteed to be true. The 
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
 2006-05-12 20:33:47 +00:00
wtchang%redhat.com c27522f973 Bugzilla bug 336938: removed a test that is guaranteed to be false. The 
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=wtc.
 2006-05-12 16:49:07 +00:00
christophe.ravel.bugs%sun.com ac1c7bcb1c Change JSS version to 4.2.4 Beta. 2006-05-11 22:58:33 +00:00
richm%stanfordalumni.org d105e63963 Bug: 334561 
Description: Clean up spec file for RPM build
Fix Description: Make the spec files use the conventions used by the Fedora/Red Hat packaging system
 2006-05-11 14:51:02 +00:00
timeless%mozdev.org 1eeaad9dab Bug 336479 oomish crash [@ cryptojs_GetScriptPrincipal] because of a missing * 
r=kaie sr=bz
 2006-05-11 13:20:37 +00:00
timeless%mozdev.org e1804d6436 Bug 333689 [@ nsCertTree::ToggleOpenState] 
patch by gijskruitbosch+bugs@gmail.com r=kaie sr=neil
 2006-05-11 13:18:15 +00:00
wtchang%redhat.com 06ff3819b8 Bugzilla Bug 298506: Do not log the token name (so the declaration of 
sftk_getDefTokName in pkcs11i.h and the previous change to sftk_SlotFromID
weren't necessary). Use Linux's audit subsystem if available. r=relyea.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
 2006-05-10 21:33:11 +00:00
darin%meer.net 7d3e7d7acd landing patch for bug 326273 "Implement nsIThreadManager" (Mac portions by Mark Mentovai) with reviews from bienvenu, bsmedberg, bzbarsky, josh, roc, and ssieb 2006-05-10 17:30:15 +00:00
wtchang%redhat.com 75071ce85c Bugzilla Bug 298522: implemented ECDSA power-up self-test. The patch was 
written by Glen Beasley of Sun. r=wtc.
 2006-05-08 18:20:28 +00:00
timeless%mozdev.org fe275a70e0 Bug 331023 Cleanup of IDL files; fixing type inconsistencies 
removing stillborn interface nsICertSelect
r=kaie
 2006-05-07 01:36:31 +00:00
timeless%mozdev.org 28727e3bf3 Bug 331023 Cleanup of IDL files; fixing type inconsistencies 
removing stillborn interface
r=kaie
 2006-05-07 01:34:59 +00:00
timeless%mozdev.org 21859b93ad Bug 334193 nsContinueDespiteCertError's default case should set rv 
r=kaie sr=bz
 2006-05-06 22:33:44 +00:00
wtchang%redhat.com 1558324c75 Bugzilla Bug 333925: added a comment to paraphrase an obscure if statement. 2006-05-05 23:54:05 +00:00
wtchang%redhat.com 1c7f0bd0d7 Bugzilla Bug 333925: worked around AES test failures of code compiled by 
Forte 6 update 2 by using the old optimization flags used in NSS 3.10.
r=relyea.
 2006-05-05 23:39:29 +00:00
wtchang%redhat.com cd93a908f1 Bugzilla Bug 334679: removed a duplicate line in ec_GF2m_validate_point. 
r=douglas.stebila.
 2006-05-05 23:08:50 +00:00
wtchang%redhat.com 91e0c508bd Added/removed blank lines to eliminate the diffs between the trunk and the 
NSS_3_11_BRANCH.
Modified files: pkcs11.c pkcs11c.c
 2006-05-05 20:31:30 +00:00
wtchang%redhat.com 1e3fcc37a0 Bugzilla Bug 298506: implemented FIPS 140-2 Security Level 2 audit 
requirements. r=glen.beasley.
Modified Files:
	fipstokn.c pkcs11.c pkcs11c.c pkcs11i.h softoken.h softoknt.h
 2006-05-05 20:02:47 +00:00
julien.pierre.bugs%sun.com 2c96d725d6 Fix for bug 336335 . Plug leak of a temporary bignum in modular exponentiation . r=wtchang 2006-05-05 01:22:59 +00:00
dveditz%cruzio.com 40db24602b bug 283565 fix leak, return more specific error on OOM. patch by timeless, r=kengert, sr=dveditz, a=dveditz 2006-05-04 17:59:36 +00:00
julien.pierre.bugs%sun.com 11723362a4 Fix for bug 336335 - memory leaks in ECC code. r=wtchang 2006-05-04 01:05:04 +00:00
julien.pierre.bugs%sun.com 6b6c883634 Fix for bug 219932 . NISCC test script enhancements. Patch submitted by Jason Reid (jason.m.reid@sun.com) . r=slavomir.katuscak@sun.com,julien.pierre@sun.com 2006-05-01 22:52:32 +00:00
julien.pierre.bugs%sun.com be7b45548d Fix for bug 335021. Add SEC_ASN1_CONSTRUCTED to S/MIME EKP template. r=relyea 2006-04-29 00:18:42 +00:00
rrelyea%redhat.com ea2f6788bc Attachment #215739: Use SSE2 multiply instructions on intel processors. for bug #326482 
r=nelson r=wtc
 2006-04-28 17:06:22 +00:00
benjamin%smedbergs.us 1da150a196 Bug 333308 - make clean/distclean misses various files, patch by Mike Hommey <mh+mozilla@glandium.org>, r=me 2006-04-28 14:54:54 +00:00
christophe.ravel.bugs%sun.com fc04f7fa5e [Bug 334843] Add rpath for HP-UX on pa-risc 
r+ neil.williams.
 2006-04-27 23:36:20 +00:00
glen.beasley%sun.com 100582d55a JSS version 4.2.3 RTM 2006-04-27 23:18:44 +00:00
alexei.volkov.bugs%sun.com 42518adb1a [Bug 334274] double free in CRMF_EncryptedKeyGetEncryptedValue. r=nelson 2006-04-27 22:09:28 +00:00
alexei.volkov.bugs%sun.com f89a2a47f6 [Bug 334326] DecodeV4DBCertEntry: Variable "(entry)->nickname" tracked as NULL was passed to a function that dereferences it. r=rrelyea 2006-04-27 18:35:24 +00:00
bzbarsky%mit.edu 533eb3c678 Rename GetNodePrincipal to NodePrincipal. Bug 327246, r+sr=sicking 2006-04-27 18:21:11 +00:00
alexei.volkov.bugs%sun.com 9d830cc7c0 [Bug 334454] Variable "(key)->pkcs11Slot" tracked as NULL was passed to a function that dereferences it. [@ SECKEY_CopyPrivateKey - SSL_ConfigSecureServer]. r=nelson 2006-04-26 19:40:56 +00:00
alexei.volkov.bugs%sun.com deecb18bef [Bug 333389] sftk_NewAttribute should not crash when so is NULL [@ sftk_NewAttribute]. r=nelson 2006-04-26 19:18:00 +00:00
alexei.volkov.bugs%sun.com 3be7f320c2 [Bug 334522] pk12util crash in SEC_PKCS12DecoderValidateBags. r=nelson 2006-04-26 06:47:30 +00:00
gijskruitbosch%gmail.com 4f14b9bf85 Bug 153232 - Missing break; for BAD_SIGNATURE case 
r+sr = Kai Engert
 2006-04-25 14:33:15 +00:00
nelson%bolyard.com 36da56edd4 Disable AMD64 assembly optimizations. Bug 334057. r=nelson 2006-04-25 05:51:23 +00:00
nelson%bolyard.com 348e94e86f Bug 294537: ssltap should display ASCII CA names from cert request message 
r=alexei.volkov
 2006-04-25 04:58:45 +00:00
nelson%bolyard.com d954094b3e Backout the last change, undoing the fix for bug 320336 and bug 333405. 2006-04-25 04:39:24 +00:00
alexei.volkov.bugs%sun.com d337da0f9f [Bug 334277] double free in [@ sftk_FreeAttribute - sftk_DeleteAttributeType]. r=relyea 2006-04-25 02:33:58 +00:00
alexei.volkov.bugs%sun.com a1b44415b1 [Bug 334276] double free in [@ SECKEY_CopyPublicKey]. r=nelson 2006-04-25 02:23:52 +00:00
wtchang%redhat.com 67a579d353 Bugzilla Bug 335275: include pk11pqg.h to declare the PK11_PQG_ functions. 
The PK11_PQG_ functions operate on PQGParams, so we declare pqgParams as
a pointer to PQGParams, and cast a SECKEYParams pointer to a PQGParams
pointer. (SECKEYParams and PQGParams are isomorphic.)  r=nelson.
 2006-04-25 01:26:42 +00:00
wtchang%redhat.com 0d1fe7135f Bugzilla Bug 320336: SECITEM_AllocItem should return a NULL pointer if the 
allocation of its 'data' buffer fails. r=nelson.  This checkin fixed bug
333405 as a byproduct.
Modified files: secitem.c secitem.h
 2006-04-24 22:50:13 +00:00
nelson%bolyard.com 7778802c53 Remove call to printf in ecl/ecp_224.c Bug 334448. r=wtchang 2006-04-24 21:27:38 +00:00
wtchang%redhat.com cc75ab1cb9 Bugzilla bug 335275: compile with the GCC flag 
-Werror-implicit-function-declaration. r=nelsonb.
Modified files: Linux.mk SunOS5.mk
 2006-04-24 20:07:15 +00:00
nelson%bolyard.com 03361a06ad Display TLS hello extensions and alerts. Display ECC cipher suites. 
Bug 333600 and bug 334314. r=Alexei.Volkov
 2006-04-24 06:11:41 +00:00
nelson%bolyard.com 3576a2ba86 Put nss.def file sections in numeric order, and alphabetical order 
within sections.
 2006-04-24 05:08:04 +00:00
nelson%bolyard.com 1adeecc0fc Bug 323350. sr=rrelyea. This patch makes 3 changes: 
1) it adds a new ifdef which enables SSL to limit itself to the 3 Suite B
   curves.
2) it corrects the creation and parsing of the Supported Curve extension to
   conform with the lastest definition, by using 2 bytes to encode the list
   length,
3) it changes the algorithm that picks the curve for ECDHE to choose a curve
   that is at least as strong as the "weakest link", is mutually supported
   by client and server, and is the fastest for its size.
 2006-04-23 00:17:18 +00:00
julien.pierre.bugs%sun.com 2bb5326ad4 Fix for bug 335039. Declare nssCKFWCRyptoOperation_UpdateCombo. r=wtchang 2006-04-22 05:30:18 +00:00
julien.pierre.bugs%sun.com 327800e01c Fix red tree on Windows. 2006-04-22 05:18:20 +00:00
alexei.volkov.bugs%sun.com f860030293 [Bug 334183] Double free on error because CERT_FindCertIssuer unexpectedly calls CERT_DestroyCertificate. r=alexei 2006-04-22 02:09:09 +00:00
julien.pierre.bugs%sun.com 9c4db6bb37 Fix for bug 331413 . replace signal with sigaction; fix logging. r=wtchang 2006-04-22 01:28:14 +00:00
alexei.volkov.bugs%sun.com 10716d62bd Patch contributed by timeless@bemail.org 
[Bug 334449] oom Crash in crmf_template_copy_secalg. r=nelson
 2006-04-22 01:25:57 +00:00
alexei.volkov.bugs%sun.com da21bcb177 Patch contributed by timeless@bemail.org 
[Bug 334436] nsslowcert_UpdateSubjectEmailAddr doesn't consistently use emailAddrs as a guard of nemailAddrs guarding emailAddrs[0]. r=nelson
 2006-04-22 01:19:41 +00:00
alexei.volkov.bugs%sun.com 04cf2a1ef8 Patch contributed by timeless@bemail.org 
[Bug 334328] nsspkcs5_PKCS12PBE: Variable "A" tracked as NULL was dereferenced. r=nelson
 2006-04-22 01:13:15 +00:00
alexei.volkov.bugs%sun.com e5c5562641 [Bug 334275] double free in [@ PK11_ListPublicKeysInSlot]. r=nelson 2006-04-22 01:08:17 +00:00
alexei.volkov.bugs%sun.com e501f654c4 [Bug 334273] double free in SECKEY_DecodeDERSubjectPublicKeyInfo. r=nelson 2006-04-22 01:03:18 +00:00
alexei.volkov.bugs%sun.com eff087e1e9 [Bug 334240] double free in nsslowkey_ConvertToPublicKey if SECITEM_CopyItem or SECITEM_CopyItem fail. r=nelson 2006-04-22 00:59:13 +00:00
alexei.volkov.bugs%sun.com 56865501c8 [Bug 334236] double free in PK11_ListPrivKeysInSlot if keys allocation fails. r=nelson 2006-04-22 00:55:29 +00:00
wtchang%redhat.com d57bf7591a Bugzilla Bug 333932: fixed Solaris SPARC GCC build failures. 
r=christophe.ravel
 2006-04-22 00:13:29 +00:00
alexei.volkov.bugs%sun.com 60cc810354 [Bug 334234] PK11_NewSlotInfo returns freed objects if lock allocations fail. r=nelson 2006-04-21 23:29:37 +00:00
wtchang%redhat.com e867c340a2 Bugzilla Bug 334533: in getPQseed we always set the most significant bit of 
SEED to 1 to make NIST CMVP's PQG parameter validation tool happy. In
PQG_ParamGenSeedLen we require the length of SEED be at least 20 bytes.
r=nelson.
 2006-04-21 17:48:30 +00:00
wtchang%redhat.com cf972acbcf Bugzilla Bug 298522: changed RSA modulus size to 1024 bits and added known 
answer tests for RSA SHA1, SHA256, SHA384, and SHA512 signatures.  The
patch is written by Glen Beasley. r=wtc.
 2006-04-21 17:13:50 +00:00
wtchang%redhat.com fe960835f8 Bugzilla Bug 236245: Use a stack buffer for ec_params.data in 
ssl3_SendECDHServerKeyExchange. r=nelson.
 2006-04-21 16:19:48 +00:00
wtchang%redhat.com a9d89dfa7e Bugzilla Bug 334553: fixed the comments because mp_digit is actually 64-bit 
(unsigned long or unsigned long long). r=nelson.
 2006-04-21 16:13:02 +00:00
rrelyea%redhat.com 6d35f6e09d Performance tests for ec curves. Test's freebl and pkcs11 interfaces. 2006-04-21 01:40:48 +00:00
wtchang%redhat.com a451a3674a Bugzilla Bug 326754: checked the change back in. We failed the NIST DSA 
PQGGen test for some other reason (bug 334533).
 2006-04-20 21:55:24 +00:00
kaie%kuix.de 9e58e31dc8 Bug 333691, [@ nsSSLThread::requestPoll - nsSSLIOLayerPoll] 
r=rrelyea
 2006-04-20 16:21:57 +00:00
kaie%kuix.de 72235157d4 Bug 333385, [@ nsKeygenThread::UserCanceled] 
r=rrelyea
 2006-04-20 16:21:26 +00:00
kaie%kuix.de d69f53927b Bug 333404, freeString is unused DEADCODE in nsCrypto::ImportUserCertificates 
r=rrelyea
 2006-04-20 16:21:00 +00:00
kaie%kuix.de 9434ada70b Bug 333767, nsNSSCertificateDB::AddCertFromBase64 mishandles trust settings 
r=darin/kengert
 2006-04-20 16:20:32 +00:00
nelson%bolyard.com 1f801d58d2 Bug 80092: SSL write indicates all data sent when some is buffered. 
SSL now follows NSPR socket semantics and never returns a short write
count on a blocking socket.  On a blocking socket, it returns either
the full count or -1 (with an error code set).
For non-blocking sockets, SSL no longer returns a full write count
when some of the data remains buffered in the SSL record layer.
Instead it returns a number is that always at least 1 byte short of a
full write count, so that the caller will  keep retrying until it is done.
SSL makes sure that the first byte sent by the caller in the retry
matches the last byte previously buffered.  r=rrelyea.
Modified Files: ssl3con.c sslcon.c ssldef.c sslimpl.h sslsecur.c
 2006-04-20 08:46:34 +00:00
nelson%bolyard.com 41f4f6af5c Fix buffer overflow regression. Bug 236245. sr=wtchang 2006-04-20 06:57:54 +00:00
alexei.volkov.bugs%sun.com bc0594812b Patch contributed by timeless@bemail.org 
[Bug 334459] Variable "cipherName" tracked as NULL was passed to a
 function that dereferences it. [@ PORT_Strdup - SSL_SecurityStatus]. r=nelson
 2006-04-20 00:20:45 +00:00
alexei.volkov.bugs%sun.com 9a357d43aa Patch contributed by timeless@bemail.org 
[Bug 334446] oom Crash in nssCKFWFindObjects_Create. r=nelson
 2006-04-20 00:03:33 +00:00
alexei.volkov.bugs%sun.com ee09b992d0 Patch contributed by timeless@bemail.org 
[Bug 334443] oom Crash in nssCKFWSession_Create. r=nelson
 2006-04-19 23:50:43 +00:00
alexei.volkov.bugs%sun.com 9d9e9fd36c Patch contributed by timeless@bemail.org 
[Bug 334438] oom Crash in ReadDBCertEntry. r=nelson
 2006-04-19 23:43:10 +00:00
alexei.volkov.bugs%sun.com 036803b272 Patch contributed by timeless@bemail.org 
[Bug 334442] Incorrect use of realloc oom Crash in secmod_ReadPermDB;r=nelson
 2006-04-19 22:53:45 +00:00
alexei.volkov.bugs%sun.com 6e5c579e53 Patch contributed by nelson@bolyard.com. 
[Bug 334327] pk11_CreateNewContextInSlot: Variable "(context)->key" tracked as NULL was passed to a function that dereferences it. r=alexei
 2006-04-19 22:32:30 +00:00
wtchang%redhat.com 4f7485a0cd Bugzilla bug 334553: use the ULL suffix with unsigned long long constants. 
r=douglas.stebila.
Modified files: ecl/ecp_256.c mpi/mp_gf2m.c
 2006-04-19 22:19:09 +00:00
wtchang%redhat.com d84b85ab89 Bugzilla bug 334683: removed extraneous semicolons. r=alexei.volkov. 
Modified files: cmd/certutil/certutil.c lib/pki/pkistore.h
 2006-04-19 19:04:23 +00:00
julien.pierre.bugs%sun.com 6b06044287 Fix for bug 331413. Don't set SO_LINGER in the Win95 build to workaround NSPR bug 332348. r=wtchang 2006-04-18 22:56:44 +00:00
wtchang%redhat.com c015e94462 Bugzilla Bug 333917: the non-x86 code in at least the DES_CBCEn and 
DES_EDE3CBCEn functions violates ANSI C's aliasing rules.  So we compile
this file with strict aliasing rules turned off. r=nelsonb.
 2006-04-18 17:33:56 +00:00
timeless%mozdev.org 6768a5a433 Bug 332324 crash [@ IsChildOfDomWindow] 
r=kaie sr=bz
 2006-04-16 20:33:28 +00:00
nelson%bolyard.com b2865a93c9 Don't add 3 to the user-supplied number of validity months. Bug 333679. 
r=neil.williams
 2006-04-15 01:00:11 +00:00
julien.pierre.bugs%sun.com 6d1015000c Fix for bug 262375 . Add clobber_dbm and clobber_nspr targets, as well as nss_clean_all . r=nelson 2006-04-14 22:48:31 +00:00
gavin%gavinsharp.com aa52b10d67 Bug 331749: chrome://pippki/content/newserver.js is not UTF-8, patch by Philip Withnall <bugzilla@tecnocode.co.uk>, r=kaie 2006-04-14 19:12:31 +00:00
nelson%bolyard.com 402758d2c0 big cleanup of error codes returned by pkcs12 library. 
No longer returns SEC_ERROR_NO_MEMORY for every possible error code.
Bug 321584. r=neil.williams
 2006-04-14 18:34:44 +00:00
nelson%bolyard.com 8227715200 Fix broken optimized builds, caused by last checkin. Bug 236245. 2006-04-14 00:43:19 +00:00
nelson%bolyard.com 1c45d9d1ee Implement TLS Hello extensions for ECC. Bug 236245. r=rrelyea. 
This patch has a known problem, choosing ephemeral ECDH curves
according to the wrong (suboptimal, non-FIPS) criteria.
Modified Files: ssl3con.c ssl3ecc.c sslimpl.h
 2006-04-13 23:08:18 +00:00
nelson%bolyard.com 56e0778f65 Add and use new -2 option for strsclnt to disable SSL2 compatible client 
hellos, so we can stress test TLS hello extensions.  Bug 333559.
r=julien.pierre,rrelyea
 2006-04-13 22:43:31 +00:00
wtchang%redhat.com 3bdf9baec8 Bugzilla Bug 330114: corrected the checks for the PKCS #1 v1.5 padding 
string and the length of the data (hash). r=nelsonb,relyea.
 2006-04-13 22:12:17 +00:00
gijskruitbosch%gmail.com 75239445ad Bug 333692 - Possible crash (Coverity) [@ PK11_DestroyContext - md5sum] 
r+sr=darin
 2006-04-12 22:33:52 +00:00
benjamin%smedbergs.us 185c761605 Freeze nsIArray (requires separating nsIMutableArray into another .idl file); also removes NS_NewArray and moves do_QueryElementAt into the glue, r=darin 2006-04-12 15:43:32 +00:00
julien.pierre.bugs%sun.com 92b2f48d10 Fix for 333657 . Increase maximum RSA key size to 8192 bits in freebl. r=nelson 2006-04-12 05:37:52 +00:00
alexei.volkov.bugs%sun.com 682c8b8e69 [Bug 332272] add core detection functionality to all.sh; r=nelson 2006-04-12 01:14:27 +00:00
wtchang%redhat.com c4307dce10 Bugzilla Bug 331413: assert that the worker threads empty the jobQ before 
they terminate.  Fix a socket leak when the SSL_ImportFD call in
handle_connection fails. r=nelson.bolyard.
 2006-04-11 21:12:28 +00:00
nelson%bolyard.com 520dcda31b Implement new API for registering and deregistering shutdown callback functions. 
Patch by Bob Relyea and Nelson Bolyard. r=rrelyea,nelson  Bug 326482.
 2006-04-08 05:11:55 +00:00
nelson%bolyard.com c1fbfcc40a Bug 333090: CKM_DH_PKCS_KEY_PAIR_GEN always fails. r=nelson, sr=rrelyea 
Patch contributed by Andreas.Sterbenz@sun.com
 2006-04-08 05:05:01 +00:00
nelson%bolyard.com 00dfcbd256 WORKAROUND: disable all the ECDH_RSA cipher suites tests, since all those 
tests require a cert with an EC public key and an RSA signature, and the
test scripts do not presently generate such a cert.
This workaround can be backed out when the real fix is available.
Bug 332222. r=neil.williams
 2006-04-08 04:28:32 +00:00
sandeep.konchady%sun.com 7dd8d26542 Bugzilla bug : 316448. Deprecated references to fortezza in code and test. 
sr=glen.beasley
 2006-04-07 15:56:50 +00:00
kaie%kuix.de 90586fbeae bug 331648, signed/unsigned bug submitting CRMF cert requests 
r=rrelyea, sr=nelson
 2006-04-07 11:41:18 +00:00
nelson%bolyard.com 7a6d9fd99d Implement generic support for TLS Hello Extensions. Bug 226271. r=vipul 2006-04-07 06:24:07 +00:00
julien.pierre.bugs%sun.com 06cfd97468 Fix for bug 311164 . Initialize stan cert store object early to fix a race condition. r=nelson 2006-04-07 05:49:04 +00:00
julien.pierre.bugs%sun.com abf63f3923 Fix for bug 315793 . Wan-Teh's feedback for PWD 2006-04-07 04:10:28 +00:00
cbiesinger%web.de eb2e0f5225 move an unfrozen interface out of SDK_XPIDLSRC (was added there in bug 111384) 2006-04-06 14:02:29 +00:00
julien.pierre.bugs%sun.com b79555f358 Fix for bug 315793 . Make shlibsign run in the OBJDIR rather than the source directory . r=nelson 2006-04-06 06:22:02 +00:00
julien.pierre.bugs%sun.com c4a1fdc5db Fix for bug 315798 . run bltest and rsaperf from source directories in the QA . r=nelson 2006-04-06 06:19:41 +00:00
nelson%bolyard.com 4c932f8b38 Don't negotiate an ECDH_RSA cipher suite when the server's only ECDH cert 
has an ECDSA signature.  bug 332350. r=vipul.gupta.
 2006-04-06 04:40:49 +00:00
julien.pierre.bugs%sun.com 072e4ae85d Partial fix for bug 332348 . Add PR_POLL_EXCEPT to a PR_Poll . Allows tstclnt to wake up if server goes away. r=wtchang 2006-04-06 01:49:03 +00:00
nelson%bolyard.com df3a1c8fa5 Fix shell script error that caused undetected QA failures. Bug 311931. 
r=nelson.bolyard,alexei.volkov
 2006-04-05 19:35:47 +00:00
nkwan%redhat.com aa72ac0422 Updated tip to use NSS_3_11_RTM 2006-04-05 02:06:31 +00:00
dbaron%dbaron.org ac49c790c1 Remove uses of MOZ_DECL_CTOR_COUNTER, which is always defined to nothing. b=332745 rs=roc,bzbarsky 2006-04-05 00:00:44 +00:00
kaie%kuix.de e4a7a33017 Follow-up checkin to bug 111384, fixes the tinderbox tests failure. 
If the thread runner C function calls the pure virtual Run too early,
before the constructor finished, it will crash.
This patch delays thread creation and virtual function call to a
separate startThread call.
Thanks a lot to Jag for his help in finding the problem!
r=jag
 2006-04-04 13:18:48 +00:00
kaie%kuix.de 67587ec2e2 bug 111384, Support OCSP requests through a proxy 
combined r= by darin / rrelyea
second checkin attempt
 2006-04-04 13:14:40 +00:00
kaie%kuix.de 8957938fd7 backing out my checkin, because we can't reproduce the tinderbox test 
failure
 2006-04-04 09:48:08 +00:00
nelson%bolyard.com 020f267488 Add new -i (ignore errors) command line option to strsclnt. Strsclnt now 
stops soon after the first error unless the -i option is given.
Strsclnt and tstclnt now look for an environment variable named
NSS_DEBUG_TIMEOUT, and if present, its value is used as a timeout time
for all socket IO operations.  Bug 332348. r=julien.pierre.
 2006-04-04 07:31:46 +00:00
kaie%kuix.de 18f6a01631 bug 111384, Support OCSP requests through a proxy 
combined r= by darin / rrelyea
 2006-04-04 06:41:37 +00:00
nelson%bolyard.com 476b7d2303 Eliminate duplicated header files in cmd/SSLsample. Bug 332633. 
r=julien.pierre
Modified Files: SSLsample/client.mn SSLsample/server.mn lib/manifest.mn
Removed Files:  SSLsample/NSPRerrs.h SSLsample/SECerrs.h SSLsample/SSLerrs.h
 2006-04-04 01:56:27 +00:00
glen.beasley%sun.com fcf0285383 David Baron fix for valgrind report of UMR r=wtchang sr=Nelson 2006-04-04 01:01:51 +00:00
nelson%bolyard.com d5e09c7ca8 Define alerts and error codes for TLS Hello extensions. Bug 226271. 
r=julien.pierre
 2006-04-04 00:32:27 +00:00
nkwan%redhat.com dcb658cb4b bugzilla #332608 - added new function to just delete certificate 2006-04-03 23:09:49 +00:00
rrelyea%redhat.com 878b55fa39 Bug 332381 pk12util fails to import key/cert onto LunaSA HSM 
r=nelson
 2006-03-31 21:35:37 +00:00
gerv%gerv.net e7a53f8e59 Bug 236613: change to MPL/LGPL/GPL tri-license. 2006-03-31 04:41:00 +00:00
rrelyea%redhat.com aa172e9eab bug 309701 Softtoken C_CreateObject() should not require 
CKA_NETSCAPE_DB attribute to be present

r=alexei
 2006-03-31 00:38:48 +00:00
rrelyea%redhat.com 4a9bb235ce From Bug 331279. 
Free ECDHE Ephemeral key. Fixes server-side leak.
r=julien r=alexei
 2006-03-30 21:07:22 +00:00
julien.pierre.bugs%sun.com 01550d8a23 Fix for 330068 . Be more verbose in strsclnt error cases 2006-03-29 22:35:44 +00:00
alexei.volkov.bugs%sun.com 601c015e0a 331515: selfserv Bus error on 3DES ciphersuites; r=julien, sr=nelson 2006-03-29 07:23:40 +00:00
julien.pierre.bugs%sun.com ed974bdaa4 Remove comment in ssl.sh that messes execution. Part of fix for bug 331413. 2006-03-29 06:54:56 +00:00
julien.pierre.bugs%sun.com 2718276062 Fix for bug 330068 . Increment counter variable atomically. Be more verbose. r=nelson 2006-03-29 05:05:09 +00:00
julien.pierre.bugs%sun.com 3666e85fea Partial fix for bug 331413 . Allow selfserv to be tested for reference leaks. r=nelson 2006-03-29 05:03:10 +00:00
benjamin%smedbergs.us e69d6ac070 Bug 301249 - Checkout and build mozilla/dbm as part of NSS instead of the mozilla client, and pull NSS by the release tag instead of by the NSS_CLIENT_TAG which is now deprecated! r=dougt (+nelsonb) 2006-03-27 16:21:55 +00:00
glen.beasley%sun.com 8133edd3dc 318970 wtc fix for RSA fipstest using RSA_HashSign r=neilW sr= brelyea 2006-03-25 23:45:23 +00:00
rrelyea%redhat.com e0e96b99fd Bug 321350 Implement optimized code for NIST Suite B elliptic curves 
r=douglas r=vipul
 2006-03-24 22:55:51 +00:00
nelson%bolyard.com 84418c784c Backout changes for bug 321350 
Implement optimized code for NIST Suite B elliptic curves
Those changes broke the build on Solaris.  r=Sheriff Nelson
 2006-03-24 09:08:24 +00:00
dbaron%dbaron.org d62ddfa0b3 Check argc. b=330900 r=kengert sr=jst 2006-03-24 06:51:24 +00:00
rrelyea%redhat.com 22f4437ae4 321350 Implement optimized code for NIST Suite B elliptic curves 
r=douglas.
 2006-03-23 19:55:37 +00:00
nkwan%redhat.com 6b0609fb19 bugzilla #331369 - avoid calling fromRaw which calls into a non-ECC compliant NSS function 2006-03-22 21:53:52 +00:00
rrelyea%redhat.com f368fa9bc8 Bug 238051 Enable SSL session reuse for ECC cipher suites 
r=nelson r=thomas.

patch in bug + white space changes suggested by nelson.
 2006-03-22 19:18:30 +00:00
rrelyea%redhat.com 5cdb03b3a0 Updated previous patch with douglas's input. (still bug 323817 
Truncation of hashes for ECDSA should be done at bit level, not octet level).
r= vipul r=douglas
 2006-03-22 19:02:06 +00:00