e92acaf731
Backing out previous checkin. This was a separate unreviewed patch.
2005-08-01 18:26:12 +00:00
beaf291bda
Bug 298906 crash when accepting new certificate permanently on taschenonkel.de
...
r=wtc, sr=nelson
2005-08-01 18:23:56 +00:00
041697865b
Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support. r=relyea.
2005-07-29 23:43:40 +00:00
a9e17a122a
Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support to
...
PK11_GenerateKeyPair. r=relyea.
2005-07-29 23:23:35 +00:00
e235cbe797
Bug 278276 Slot List Elements cannot be freed by applications.
...
wtchang: review+
julien.pierre.bugs: superreview+
2005-07-28 23:17:43 +00:00
54ff4e6077
bug 278276 Slot List Elements cannot be freed by applications.
...
wtchang: review+
julien.pierre.bugs: superreview+
E
2005-07-28 23:16:26 +00:00
310824f641
bug 278276 Slot List Elements cannot be freed by applications.
...
Export a free function for slot list elements.
r = wtc & julien.
2005-07-28 23:13:21 +00:00
eb4965a8e3
Bugzilla Bug 302262: fixed an error in the comment. Set the error code
...
if signature verification fails. r=nelsonb.
2005-07-27 18:48:44 +00:00
45fcf6685b
Bugzilla Bug 298514: Moved the FIPS 140-2 pairwise consistency check from
...
pk11wrap to softoken because the softoken shared library is our new crypto
module boundary. r=relyea,nelsonb.
Modified files: pk11wrap/pk11akey.c softoken/fipstokn.c softoken/pkcs11c.c
2005-07-22 22:11:22 +00:00
418134de55
Bugzilla Bug 298957: moved PK11_TokenKeyGenWithFlags from the NSS_3.11
...
section to the NSS_3.10.1 section because we plan to export that function
in NSS 3.10.1. r=jpierre.
2005-07-22 01:43:36 +00:00
c5ac83be4e
Bugzilla Bug 298516: fixed problems found by code inspection. r=relyea.
...
Modified Files: pk11db.c pkcs11.c
2005-07-22 00:47:18 +00:00
f4b2352922
Bugzilla Bug 298957: make the new function PK11_TokenKeyGenWithFlags
...
"legacy free" and move the code that set the CKF_ENCRYPT flag by default
and the Fortezza hack code to PK11_TokenKeyGen. r=relyea.
2005-07-22 00:07:52 +00:00
5e18c64463
Bugzilla Bug 288647: enable building NSS with an NSPR binary distribution.
...
Introduced NSPR_INCLUDE_DIR and NSPR_LIB_DIR make variables. Portions of
the patch were contributed by Chris Seawood <cls@seawood.org>. r=relyea.
Modified Files:
coreconf/OS2.mk coreconf/OpenVMS.mk coreconf/location.mk
nss/cmd/platlibs.mk nss/cmd/shlibsign/Makefile
nss/cmd/shlibsign/sign.cmd nss/cmd/shlibsign/sign.sh
nss/lib/ckfw/builtins/Makefile
nss/lib/fortcrypt/swfort/pkcs11/Makefile nss/lib/nss/config.mk
nss/lib/smime/config.mk nss/lib/softoken/config.mk
nss/lib/ssl/config.mk
2005-07-21 23:48:30 +00:00
c262e0afca
Fix for 217024 . Address Wan-Teh's concerns about naming and documentation. Also fix AIX build by removing extraneous comma.
2005-07-09 00:34:43 +00:00
13277e65d5
Bugzilla bug 300068: fixed the bug that "collection" is used uninitialized
...
if "td", "c", or "cc" is NULL. The patch is contributed by Wolfgang
Rosenauer <mozilla@rosenauer.org>. r=wtc.
2005-07-08 17:06:15 +00:00
85c39c7708
Fix for bug 217024 . Add a function to compare validity times. r=relyea
2005-07-08 07:06:56 +00:00
c15d9d4cd9
Fix for bug 292809 . Add flags to NSS_Initialize to better cooperate with the Java SunPKCS11 provider. r=relyea, wtchang
2005-07-08 04:41:32 +00:00
74bc01599e
Bugzilla Bug 287418: remove redundant memory allocation in DSA and ECDSA sign
...
wtchang: review+
julien.pierre.bugs: superreview+
2005-07-07 20:19:36 +00:00
d1ef7d6ff8
Fix for 297735 . C_Initialize should return CKR_CANT_LOCK . r=wtchang,rrelyea
2005-07-06 22:32:12 +00:00
90e2222ab3
Removed an extraneous line at the end of file added in the previous
...
checkin.
2005-07-06 18:56:37 +00:00
c5850af8e0
Bug 294556 (not all functions exported) reviews wtc nelsonb
...
Bug 298627 (need to access random number generator on a slot). reviews wtc julien
2005-07-06 18:46:36 +00:00
532b71515b
Bugzilla Bug 298957: pk11_FlagsToAttributes should not add attributes
...
whose type is 0. r=relyea.
2005-07-06 18:36:05 +00:00
252506980a
Bugzilla Bug 298957: code cleanup -- the array size can be MAX_TEMPL_ATTRS.
...
r=relyea.
2005-07-06 18:34:39 +00:00
c693c55f14
Trivial comment fix.
2005-07-05 22:41:33 +00:00
362379fb01
Bugzilla Bug 287057: fixed memory leaks in callers of cert_FindExtension.
...
pass NULL as the SECItem* argument if we only want to know if the extension
exists but don't need its value. r=jpierre,nelsonb.
Modified Files:
certdb/certdb.c certdb/genname.c certhigh/certhigh.c
certhigh/certhtml.c certhigh/crlv2.c certhigh/ocsp.c
2005-06-30 20:53:57 +00:00
a55ffcb3aa
Bugzilla Bug 298957: added new function PK11_TokenKeyGenWithFlags.
...
r=relyea,nelsonb.
Modified files: nss/nss.def pk11wrap/pk11pub.h pk11wrap/pk11skey.c
2005-06-30 17:50:41 +00:00
ee926c8ce3
Bugzilla Bug 298962: Removed dead code: nssBestCertificate_SetArgs,
...
nssBestCertificate_Callback, and nssBestCertificateCB. r=jpierre,nelsonb.
Modified files: certificate.c pkitm.h
2005-06-28 17:55:29 +00:00
34498db691
Bugzilla Bug 298953: fixed a memory leak in sslBuffer_Grow if PORT_Realloc
...
fails. r=nelsonb.
2005-06-28 17:48:26 +00:00
bdac92c933
Fix for 298538 - fix signature verification in S/MIME with signer-only cert. r=wtchang, nelson
2005-06-27 22:21:19 +00:00
3315373550
Bugzilla Bug 295754: moved duplicate function subject_list_sort to
...
certificate.c and renamed it nssCertificate_SubjectListSort.
r=relyea,nelsonb.
Modified files: certificate.c pkim.h pkistore.c tdcache.c
2005-06-27 21:50:06 +00:00
3d421f1dd3
After branching NSS_3_10_BRANCH, the tip target is 3.11
2005-06-27 18:21:02 +00:00
deb187bb46
Bugzilla Bug 295754: fixed a crash in subject_list_sort if a cert is not
...
decodable (e.g., it has unsupported critical extension). r=relyea,nelsonb.
Modified Files: pkistore.c tdcache.c
2005-06-24 00:33:28 +00:00
d4fec45c1d
Bugzilla Bug 298537: replaced hardcoded 3 and 8 with the NSS_VMAJOR and
...
NSS_VMINOR macros defined in nss.h. r=relyea,nelsonb.
2005-06-23 23:41:29 +00:00
78d75c2672
Arg! This change was supposed to go to a branch, not the tip. back it out now.
...
bob
2005-06-20 23:14:45 +00:00
ce5dcdb61c
Test multiaccess Databases. This patch causes softoken to Always use the
...
multiaccess Database for clients. This is not intended for the final release
2005-06-20 23:11:25 +00:00
85e5788236
Get the Processer cache line size. This file contains processor and OS
...
specific content. Currently it only works well with x86 and 64-bit PPC.
2005-06-09 20:43:40 +00:00
0ea8a4266e
Bugzilla bug 295298: enforce RSA key size limits when generating a new
...
key pair. r=nelsonb,jpierre.
2005-05-27 23:53:19 +00:00
4a29a230ce
Allow DSA signature output buffer to exceed required length.
...
Bug 191470. r=nelson. Patch by rrelyea@redhat.com .
2005-05-21 21:35:24 +00:00
776f619ed3
Bugzilla Bug 294071: removed out-of-date comments and dead code. r=nelsonb.
2005-05-18 00:03:11 +00:00
d732b79ef7
Rename NEXT_ITERATION macro to NEXT_USAGE to make code clearer
2005-05-17 17:41:17 +00:00
440e83af87
Fix for 265369 - fix compiler warning in unix_rand . r=nelson
2005-05-10 21:14:51 +00:00
eea9e1cf6e
Bugzilla Bug 291858: fixed incorrect definitions of the CKM_SHAxxx_HMAC,
...
CKM_SHAxxx_HMAC_GENERAL, CKM_ECDH1_DERIVE, CKM_ECDH1_COFACTOR_DERIVE, and
CKM_ECMQV_DERIVE macros. r=nelsonb,relyea.
2005-04-28 16:53:19 +00:00
965baf82fe
Change NSS version to 3.10.1 Beta.
2005-04-27 20:28:39 +00:00
ecc84eb4f9
Bug 291555. Makes certutil process null CSR ext req lists as it did before NSS3.10. r=nelson
2005-04-23 03:58:19 +00:00
5e63b7f6ea
Changing beta flag to RTM.
2005-04-19 22:53:46 +00:00
42a0ce41b8
Bugzilla bug 275576: added "Root" to the nickname for the "Global
...
Chambersign" root. r=nelsonb.
Modified files: certdata.txt certdata.c
2005-04-18 16:08:10 +00:00
4fc82729a0
Fix for 290121. Replace PRIntervalTime with PRTime when checking for the need to query the token for CRLs. r=nelson
2005-04-17 03:17:07 +00:00
21d400ad87
Bugzilla Bug 288095: removed unnecessary #include "alghmac.h". alghmac.h
...
and pkcs11i.h don't need to be exported to the outside of lib/softoken.
r=relyea,nelsonb.
Modified Files:
pk11wrap/pk11pbe.c pkcs12/p12d.c pkcs12/p12e.c
pkcs12/p12local.c softoken/manifest.mn
2005-04-15 16:38:46 +00:00
120b9a050a
Bugzilla Bug 258416: trust Sonera Class 1 CA only for S/MIME. r=nelsonb.
...
Modified files: certdata.c certdata.txt
2005-04-14 16:45:04 +00:00
ea71e973ee
Fix for 290121 - always fill the CRL cache on first entry, to fix AIX problem. r=nelson
2005-04-13 18:08:48 +00:00
b5f156a073
Bugzilla Bug 287495: added Go Daddy Class 2 CA and Starfield Class 2 CA.
...
Bumped the nssckbi module's version to 1.53. Updated the instructions in
README. r=relyea,nelsonb.
Modified Files: README certdata.c certdata.txt nssckbi.h
2005-04-13 01:45:53 +00:00
558ede79f2
Fix for bug 265003: Add CRL generation to crlutil. Reviewed JP+
2005-04-12 02:24:17 +00:00
8531d56da0
Correct name of extension from "Invalid Date" to "Invalidity Date".
2005-04-11 21:27:01 +00:00
25d048d7e1
Report correct error code when input cert file contains extra stuff.
...
bug 289819. r=julien.pierre
2005-04-11 02:52:01 +00:00
63464b4cb3
Fix for 280121 - allow encoding simple templates with SEC_ASN1_INLINE and SEC_ASN1_OPTIONAL . r=nelson
2005-04-09 05:06:34 +00:00
69128f6c3c
Don't crash in NSC_CopyObject after failing to copy a token object.
...
Bug 289529. r=relyea.
2005-04-09 00:42:01 +00:00
964a4ebea4
Back out the preceeding fortezza removal patch, which was accidentally
...
applied to the trunk, not to the intended branch.
2005-04-06 21:35:45 +00:00
e42ce41730
Remove fortezza support from libSSL and related commands. Bug 239960.
...
ON PERFORMANCE_HACKS_BRANCH. r=rrelyea.
2005-04-06 19:43:19 +00:00
9043ac3fba
Fix implementation of SSL_NO_STEP_DOWN. Bug 148452. r=julien.pierre.
...
Modified Files: sslimpl.h sslinfo.c sslsecur.c sslsock.c
2005-04-05 03:48:20 +00:00
041a1d0ea4
Fix gcc compiler warning
2005-04-05 00:55:55 +00:00
e8746172bc
Fix for bug 287654 - check message value against RSA modulus. r=nelson
2005-04-05 00:14:07 +00:00
2ccc721112
This fixes Bugzilla Bug 288227 by initializing the stepUp flag in
...
nssCryptokiTrust_GetAttributes(). r=nelsonb
2005-04-04 18:46:23 +00:00
c791aec550
Fix for 287654 . Check input buffer length for C_Encrypt with RSA . r=nelson
2005-04-04 09:27:42 +00:00
404cda5f6a
Fix for bug 288726. error in SECMOD_CancelWait
2005-04-02 06:02:53 +00:00
eb709ccc1e
Silence compiler warnings
2005-04-02 05:33:41 +00:00
57a10ae424
Remove unused variable
2005-04-02 05:17:27 +00:00
b9f5f6b506
Rename functions that are shared by pk11wrap and softoken from sftk_ to
...
secmod_. Bug 286685. r=relyea.
2005-04-02 00:46:13 +00:00
dfa901f8a4
Bugzilla bug 288657: fixed the bug that pk11_AnyUnwrapKey returns a
...
partially constructed symKey object if C_UnwrapKey fails with
CKR_DEVICE_ERROR. r=relyea.
2005-04-01 22:27:44 +00:00
e858110cb5
Set NSS version to 3.10 Beta 3.
2005-03-30 00:22:36 +00:00
5e7fe884cb
Rename all internal private softoken functions types and symbols from
...
PK11 or pk11 prefixes to SFTK or sftk prefixes. Bug 286685.
r=relyea,wtchang Modified Files:
cmd/bltest/blapitest.c lib/pk11wrap/pk11pars.c lib/softoken/dbinit.c
lib/softoken/dbmshim.c lib/softoken/fipstest.c lib/softoken/fipstokn.c
lib/softoken/pcertdb.c lib/softoken/pk11db.c lib/softoken/pk11pars.h
lib/softoken/pkcs11.c lib/softoken/pkcs11c.c lib/softoken/pkcs11i.h
lib/softoken/pkcs11u.c lib/softoken/softoken.h lib/softoken/tlsprf.c
2005-03-29 18:21:18 +00:00
cc75c3d36d
Bugzilla Bug 286439: Removed PKCS11_USE_THREADS and PK11_USE_THREADS.
...
r=relyea,nelsonb.
Modified Files:
pk11wrap/pk11list.c pk11wrap/pk11pars.c pk11wrap/pk11skey.c
pk11wrap/pk11slot.c pk11wrap/pk11util.c pk11wrap/secmod.h
pk11wrap/secmodi.h pk11wrap/secmodt.h pk11wrap/secmodti.h
softoken/pkcs11.c softoken/pkcs11i.h softoken/pkcs11u.c
2005-03-28 20:45:37 +00:00
d86d23feaa
Removed an extraneous ^M character at the end of a line.
2005-03-28 19:37:28 +00:00
625cbdde94
Got rid of extraneous ^M characters at some line endings.
2005-03-17 21:28:40 +00:00
b9140c1464
Bugzilla Bug 286302: made PK11_CreateSymKey static and renamed it
...
pk11_CreateSymKey. r=nelsonb.
Modified Files: pk11priv.h pk11skey.c
2005-03-16 22:40:35 +00:00
6a6e78bebc
Bugzilla Bug 286313: code cleanup: use PORT_New and PORT_ZNew to allocate
...
structures. r=nelsonb.
2005-03-16 21:57:47 +00:00
9c64b5c980
Bugzilla Bug 286318: performance optimization: save the result of
...
PK11_SESSION_LOCK in a local variable and reuse the result. r=nelsonb.
Modified Files: pkcs11.c pkcs11u.c
2005-03-16 19:24:45 +00:00
864a33cb41
Bugzilla Bug 286313: pk11_getKeyFromList can call PORT_Alloc instead of
...
PORT_ZAlloc. PK11_CreateSymKey should set the data.type member. r=jpierre
2005-03-16 19:10:49 +00:00
c731461d07
Bugzilla Bug 286298: comment formatting changes only.
...
Modified Files: pkcs11i.h pkcs11u.c
2005-03-16 19:02:04 +00:00
5261b12d28
Bugzilla Bug 286298: removed the PKCS11_STATIC_ATTRIBUTES and
...
PKCS11_REF_COUNT_ATTRIBUTES macros, supporting only one of the three
attribute allocation strategies (static allocation). r=jpierre.
Modified Files: pkcs11i.h pkcs11u.c
2005-03-16 18:48:34 +00:00
bcd85ba9a6
Eliminate one cause of double-deletes of PKCS11 keys and sessions.
...
Bug 283690. Patch contributed by Bob Relyea. r=nelson.
2005-03-15 05:27:31 +00:00
40c2351b11
Bugzilla Bug 276183: added a comment for PK11_HashBuf.
2005-03-14 19:22:06 +00:00
f680c5848a
Bugzilla Bug 284386: the OID for RFC 1327 ucl was incorrectly encoded.
2005-03-14 18:04:44 +00:00
93e59a7b8e
Bugzilla Bug 284386: fixed build error using gcc4. gcc4 disallows arrays
...
of incomplete element type (which are invalid in C). We moved the
declaration of nss_builtin_oids to pki1.h, after the definition of NSSOID.
r=caillon.
Modified Files: oiddata.h oidgen.perl pki1.h
2005-03-14 18:02:00 +00:00
513619b5fe
Fix for 176705 - fix rpath on AMD64 platform. r=saul, sr=wtchang
2005-03-09 23:04:49 +00:00
bbb9afe908
r=nelson Bug=263779
2005-03-09 23:02:48 +00:00
4dd0613833
Do not crash if Server SID cache is uninitialized. Bug 237724 r=Julien
...
Instead, if SSL_NO_CACHE is not set, return an error code.
2005-03-09 05:20:44 +00:00
c3324f6db0
Add root CA certs for XRamp, Camerafina and NetLock.
...
Bugs 274723. 275576, and 280744. r=Jullien.Pierre
2005-03-08 08:44:57 +00:00
97f165a4d3
Fix for 285233 - need extra symbols to be exported to support CRL generation. Ch
...
ecking in for alexei volkov . r=nelson
2005-03-08 07:08:48 +00:00
ab69637678
Fix for bug 270689 . minor issues remaining with list cleanup and on-the-fly lock creation
2005-03-08 05:52:33 +00:00
591b4107c7
Bugzilla Bug 284839: checked in Bob Relyea's patch to improve the
...
responsiveness of SECMOD_WaitForAnyTokenEvent. r=wtc,nelsonb.
Modified Files: lib/dev/dev.h lib/dev/devslot.c lib/pk11wrap/pk11util.c
2005-03-07 21:20:38 +00:00
09da7192a3
Bugzilla Bug 263779: update the comment to reflect the new code.
...
Modified Files: secoid.c secoidt.h
2005-03-07 18:34:48 +00:00
745019c654
Export CERT_SequenceOfCertExtensionTemplate on Windows.
...
Fix type of "attributes" member of struct CERTCertificateRequestStr.
Bug 284200. r=nelson.williams & wtchang.
2005-03-05 08:03:04 +00:00
63c0586b33
Added a blank line after the triple license header to match the output
...
of the new oidgen.perl.
2005-03-04 18:30:12 +00:00
30daac841f
Fix for 283765. Fix for UMR in NSSUsage. r=julien
2005-03-04 04:32:04 +00:00
f42c08d492
Fix crash in CRL sorting callbacks from qsort.
2005-03-03 04:07:26 +00:00
5159a63922
Bug 263779 r=nelson@bolyard.com
...
This patch adds a new OID which is needed for the certutil patch which will follow.
2005-03-02 02:54:54 +00:00
f10a756e86
Report invalid key when key import fails. Do not go on and use invalid
...
key handle. Bug 283642. r=relyea
2005-02-27 15:25:46 +00:00
0126f05e21
Fix for bug 272327 . AMD64 assembly optimization for bignum multiply. r=nelson
2005-02-25 04:30:11 +00:00
29e17bc32b
Move static functions out of certi.h header file and into crl.c source file, to remove warnings with gcc
2005-02-25 00:54:29 +00:00
8c1e2f0c4a
Undo accidental deletion of PORT_ZFree
2005-02-24 06:02:16 +00:00
relyea%netscape.com
wtchang%redhat.com
julien.pierre.bugs%sun.com
christophe.ravel.bugs%sun.com
nelsonb%netscape.com
neil.williams%sun.com
alexei.volkov.bugs%sun.com