mozilla
/
pjs
зеркало из https://github.com/mozilla/pjs.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
109 037 коммитов 40 Ветки 136 Теги 1,1 GiB
Граф коммитов

3699 Коммитов

Автор SHA1 Сообщение Дата
kaie%netscape.com ef2a7ad3c1 b=144435 Allow to edit trust for other people's certificate 
r=javi sr=alecf
 2002-08-06 13:18:12 +00:00
kaie%netscape.com a811506968 b=74339 Support import of SSL, S/MIME, and CA certs 
r=javi sr=alecf
 2002-08-06 13:11:15 +00:00
kaie%netscape.com d9ef748788 b=159053 Memory leak in nsSecureBrowserUIImpl 
r=jkeiser sr=alecf
 2002-08-06 13:06:21 +00:00
kaie%netscape.com 7981ebb379 b=135546 Fix internal slot reference leak in cryptojs_generateOneKeyPair() 
r=wtc sr=alecf
 2002-08-06 12:54:39 +00:00
kaie%netscape.com 9887192835 b=132589 Fix incorrect verification status when viewing email-signing-only certificates. 
r=javi sr=alecf
 2002-08-06 12:51:43 +00:00
henry.jia%sun.com 31cd9553b8 3rd patch for bug 158080 
Description: replace the hardcode of "@mozilla.org/embedcomp/window-watcher;1" with NS_WINDOWWATCHER_CONTRACTID
Patch by Henry.Jia@sun.com
r=anto, sr=alecf
 2002-08-06 05:37:58 +00:00
henry.jia%sun.com edb10a6aac 2nd patch for bug 158080 
Description: replace the hardcode of "@mozilla.org/embedcomp/window-watcher;1" with NS_WINDOWWATCHER_CONTRACTID
Patch by Henry.Jia@sun.com
r=anto, sr=alecf
 2002-08-06 05:11:23 +00:00
jpierre%netscape.com a7c941d2d3 Fix for 158141 - add 5 minute slop time for OCSP 2002-08-04 02:50:40 +00:00
relyea%netscape.com ad79e542e0 Turn on reset functionality for multiaccessdb clients. 2002-08-02 21:41:01 +00:00
relyea%netscape.com 0cd1ab2a75 1) factor out fortezzav1 from the chain processing code to make the code easier 
to read.
2) only extract keys if we are using fortezzav1 cert (should speed up cert verify
a bit).
3) Add function to verify a specific CA cert to verify a userCert Usage.
 2002-08-02 17:51:20 +00:00
relyea%netscape.com 7cb1945111 Merge back 3.5 changes to the tip 2002-08-02 17:43:36 +00:00
jpierre%netscape.com a90ba74ddc Fix compiler warnings on NT 2002-08-02 00:53:15 +00:00
jpierre%netscape.com d5f399f630 Fix incorrect macro usage 2002-08-02 00:28:23 +00:00
nelsonb%netscape.com ce72d3cec3 Correct the test of IP addresses in Subject Alternative Name extensions. 
bug 103752.
 2002-08-01 22:51:56 +00:00
relyea%netscape.com 45a4cf9464 Don't crash if we try to read a nickname that has an invalid cert with it. 2002-08-01 22:28:11 +00:00
ian.mcgreer%sun.com 95561a1ee0 this was obviously backwards 2002-08-01 14:23:49 +00:00
wtc%netscape.com 6d4a99f7e2 Bug 157730: minor tweak suggested by brendan. 2002-08-01 05:17:49 +00:00
relyea%netscape.com 8a7de1da92 1) collections have size values that need to be updated. 
2) handle the case where we can't get the encoding from the cert.
3) Check the cert validity when we first extract it.
 2002-08-01 01:21:28 +00:00
nicolson%netscape.com 05aa5aec95 Turn off the beta flag. Time for JSS 3.2 RTM! 2002-07-31 22:36:06 +00:00
relyea%netscape.com 80904d0654 Arg.. version 1.63 was a misapplied patch, (supposed to be checked into the 
3.5 branch). The result is 1.63 backs out 1.62, which is not the intent.
restore 1.62.
 2002-07-31 18:55:59 +00:00
relyea%netscape.com 2b34e7be71 Bug 157730. Don't crash on bogus input from a PKCS #11 device. 
review = be & wtc.
a = asa
 2002-07-31 18:50:11 +00:00
relyea%netscape.com a3d7c8df8e Protection against Token misbehaving tokens 2002-07-31 02:00:13 +00:00
wtc%netscape.com 24787c4832 Bug 148220: FIPS 198's key size requirement broke the NSS QA. Backing it 
out.
 2002-07-31 00:55:35 +00:00
wtc%netscape.com d5f09bb41b Bug 148220: the previous checkin missed the inclusion of secerr.h. 2002-07-30 23:19:44 +00:00
nelsonb%netscape.com c5ab2eb27e Fix code to work when subjectAltName extension not present in server cert. 
Bug 103752.
 2002-07-30 23:15:43 +00:00
wtc%netscape.com ec0d140a8e Bug 148220: enforce FIPS 198's requirement on the secret key's length. 
Added an assertion.  Set the error code on error return.
 2002-07-30 22:59:13 +00:00
relyea%netscape.com 4d790bb178 Fix pkcs12 memory leak. 2002-07-30 22:51:13 +00:00
bishakhabanerjee%netscape.com 13b03a32e7 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 21:25:56 +00:00
bishakhabanerjee%netscape.com e4036ae80a Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:57:44 +00:00
bishakhabanerjee%netscape.com 78e3ad68c8 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:44:13 +00:00
bishakhabanerjee%netscape.com d58f761774 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:36:29 +00:00
nelsonb%netscape.com 44acb4b48b Examine SubjectAltName extensions for SSL server name matching. 
Bug 103752.
 2002-07-30 19:32:33 +00:00
bishakhabanerjee%netscape.com def6778596 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 19:01:18 +00:00
bishakhabanerjee%netscape.com 8dc870524a Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:49:46 +00:00
bishakhabanerjee%netscape.com c7152dd157 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:44:36 +00:00
bishakhabanerjee%netscape.com c8ceaa27e6 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:36:50 +00:00
wtc%netscape.com 9f4cbf833c Bug 159976: removed the incorrect linker options for building a bundle on 
Mac OS X. The patch is contributed by Ben Hines <bhines@alumni.ucsd.edu>.
 2002-07-29 21:48:39 +00:00
nelsonb%netscape.com 44719ac35e Add missing const qualifiers to NSS's regular expression match functions. 2002-07-29 21:30:31 +00:00
wtc%netscape.com 36702e0594 Fixed the comment. The length of the secret may be larger than 64 bytes. 2002-07-26 18:20:59 +00:00
wtc%netscape.com 9dc824d9ff Removed unused ASN.1 templates and unnecessary declarations. 
Modified Files: lowcert.c pcertt.h
 2002-07-25 03:59:38 +00:00
kaie%netscape.com ce4ce38ba8 b=141268 OCSP error messages should say OCSP, not OSCP (typo) 
r=hixie sr=alecf a=asa
 2002-07-25 02:48:33 +00:00
kaie%netscape.com 56dd877a20 b=113844 "Load PKCS#11 Device" dialog sized incorrectly 
r=kaie/javi  sr=alecf  a=asa
 2002-07-25 02:26:52 +00:00
relyea%netscape.com b82ff2b665 return certs in sorted order. 2002-07-23 00:34:20 +00:00
bishakhabanerjee%netscape.com 3270a46349 Setting number of tests to 252 to take out warnings on nightly QA reports -Bug 156959 2002-07-19 23:46:10 +00:00
wtc%netscape.com fb50c0a97c Bug 158339: we should not call secmod_freeParams if RNG_RNGInit fails. 2002-07-19 18:31:30 +00:00
jpierre%netscape.com 13efab0f65 Fix for 158221 - make crlutil save memory by using the new PK11_ImportCRL function with the CRL_DECODE_DONT_COPY_DER option 2002-07-19 01:07:27 +00:00
jpierre%netscape.com 6a2b391359 158005 - add new CRL decode and import functions . Benefits are : 
- ability to import to any slot
- ability to specify decode options, such as "don't copy DER"
- ability to specify import options, such as "don't do CRL checks"
This patch also maps the existing functions SEC_NewCrl and CERT_ImportCRL
to this new function, eliminating the code duplication that existed
 2002-07-19 00:59:34 +00:00
nicolson%netscape.com 2800b9ee96 Fix 157998: unable to importCertToPerm 2002-07-19 00:20:24 +00:00
jpierre%netscape.com b059277104 Fix for 156802 - remove improper check in CRL decoding 2002-07-19 00:12:13 +00:00
jpierre%netscape.com 14197dc32d Remove unreferenced variables 2002-07-18 23:50:03 +00:00
jpierre%netscape.com 490f5c0a1c Fix for 139292 - NSS_NoDBInit regression 2002-07-18 23:08:55 +00:00
leaf%mozilla.org dd33dbb91f bug 154840, r=cls, sr=brendan, a=jesup update localeVersion strings 2002-07-17 23:51:49 +00:00
jpierre%netscape.com cb4bf10847 Fix usage 2002-07-17 22:53:33 +00:00
jpierre%netscape.com 36185ce154 Fix for 157996 - add support for SEC_NewCrl browser emulation mode in crlutil 2002-07-17 22:22:26 +00:00
wtc%netscape.com f345296d94 Bug 157946: removed the unused -m option. Added the -v option to Usage(). 2002-07-17 18:39:02 +00:00
glen.beasley%sun.com efe7cada73 typecast for AIX build proper way 2002-07-17 01:14:58 +00:00
jpierre%netscape.com 6885c32ccc Fix for 153245 2002-07-17 00:21:09 +00:00
glen.beasley%sun.com ce4348b26e typecast for AIX build 2002-07-16 23:52:45 +00:00
wtc%netscape.com b9861f3df6 Bug 157750: handle the possibility that some certs do not have a label. 2002-07-16 21:13:40 +00:00
relyea%netscape.com 8a63e2ef9d Automatically recover from database corruptions when importing new certs. 2002-07-16 16:44:22 +00:00
jpierre%netscape.com d17c215334 Make certutil use the new CERT_VerifyCertificate function when verifying certs 2002-07-16 00:45:50 +00:00
nicolson%netscape.com 68b4565d1e fix 157622: cleanup javadoc warnings. 
Have the build system automatically copy overview-summary.html over
index.html so we get a frame-free version.
 2002-07-15 22:52:58 +00:00
nicolson%netscape.com 0f9d234467 Fix 157622: cleanup javadoc warnings. 
These changes should only affect documentation. There should be no
functional effect of the changes.
 2002-07-15 22:48:06 +00:00
kaie%netscape.com e1b0a90c89 b=153232 Add better error message for -8182 
r=javi sr=alecf a=asa
 2002-07-15 13:39:13 +00:00
kaie%netscape.com d362e84143 b=151250 False warning posting to https site from http site. 
r=javi sr=alecf a=asa
 2002-07-15 13:37:22 +00:00
kaie%netscape.com 344b6e8c89 b=114893 Can't send encrypted mail if encryption cert has not been imported. Smartcard issue. 
r=javi sr=alecf a=asa
 2002-07-15 13:35:30 +00:00
relyea%netscape.com 40f89278ca Fix solaris signed/unsigned warnings. 
On updating nicknames, create a nickname record if one doesn't exist (that is
somehow the database got corrupted).
 2002-07-13 02:45:04 +00:00
nicolson%netscape.com ed3566e59e put back the assertion check. 2002-07-12 21:12:22 +00:00
nicolson%netscape.com 94a3048596 Fix misspelled exception name. 2002-07-12 21:08:22 +00:00
nicolson%netscape.com 89ec05fa00 add default constructor 2002-07-12 21:07:40 +00:00
nicolson%netscape.com ebd1a1d22a This test isn't working yet, but I may get it working at some point. 2002-07-12 20:33:39 +00:00
nicolson%netscape.com 8d57d014f2 Fix 98613: using SSLSocket after close causes crash. 
Now the SSLSocket and SSLServerSocket close() methods only call PR_Close()
on the underlying fd. Freeing data structures is postponed until the
Java object is finalized.
 2002-07-12 04:26:56 +00:00
nicolson%netscape.com beda85c213 clarify error message. 2002-07-12 04:09:14 +00:00
relyea%netscape.com 86ca5973e4 Update the CERTDB_USER bits when our key gets imported through pkcs #12. 2002-07-12 03:27:44 +00:00
jpierre%netscape.com 8e7f3bc41b Make CERT_VerifyCertificate actually work . Oops. 2002-07-12 02:37:49 +00:00
relyea%netscape.com a2208d3364 1) When looking for a trust token, return tokens in the following priority order: 
1) r/w token with trust.
2) r/o token with trust.
3) r/w token
4) r/o token

Also, don't crash if we try to change the trust on a cert in temp storage, just return an error.
 2002-07-10 21:34:01 +00:00
wtc%netscape.com 607ae02d9d Bug 155626: Handle the failure of ocsp_CreateCertID and use the new 
CERT_GetOCSPResponseStatus function.
 2002-07-10 15:16:10 +00:00
wtc%netscape.com 839d83606d Sorted the NSS 3.6 symbols in alphabetical order. 2002-07-10 15:04:23 +00:00
jpierre%netscape.com 78012324a3 Fix for 149832 : 
do not check certUsageVerifyCA
clean-up comments
correctly check for signature after first try
 2002-07-10 05:02:46 +00:00
jpierre%netscape.com e005507203 Back out last change 2002-07-10 03:41:02 +00:00
jpierre%netscape.com 3bb2262619 Fix bug in new CERT_VerifyCertificate function - fix for 149832 2002-07-10 03:30:15 +00:00
relyea%netscape.com 0526487d2c Handle the case where the cert is in both the built-ins and the internal module. 2002-07-10 03:24:14 +00:00
relyea%netscape.com 57ee98d5bd Don't crash if a pkcs #11 device gives us an invalid CRL (or even a valid CRL that we don't know how to parse). 2002-07-10 01:31:01 +00:00
relyea%netscape.com dab9832efb Don't delete the nickname entry until we go to delete the subject entry as well. 2002-07-10 01:04:10 +00:00
jpierre%netscape.com 15d93f6e71 Fix for 154212 2002-07-10 00:56:16 +00:00
jpierre%netscape.com 820318fca7 Fix for 154212 - update patch for CERT_SaveSMimeProfile based on Bob's comments 2002-07-10 00:07:39 +00:00
wtc%netscape.com adc5eeddfc Removed README.TXT, which is just README with Windows line endings (CRLF). 2002-07-09 17:11:25 +00:00
wtc%netscape.com 4534998fa4 Added the README file, which explains how to add a root CA certificate to 
the nssckbi loadable root certs module.
 2002-07-09 17:00:30 +00:00
relyea%netscape.com 3a18a4bf07 treat lastTime of 0 as never having checked (not within the interval). 2002-07-09 04:40:35 +00:00
relyea%netscape.com 6cec2e90ae 1) fix return type warning in pk11ListCertsCallback. 
2) treat lastTime==0 as always outside the delay time. (removes spurious
prompts in FIPS mode on some platforms.)
 2002-07-09 04:39:35 +00:00
dmose%netscape.com 64f48b7503 Backing out the patch for bug 87902; a one-line change that caused an SSL/SMTP regression (bug 155431) 2002-07-08 23:24:30 +00:00
jpierre%netscape.com 725d6b457a Add new CERT_VerifyCertificate function - fix for 149832 2002-07-04 03:09:49 +00:00
glen.beasley%sun.com d6d3001dfe verify certificate in memory method 2002-07-04 00:36:52 +00:00
nicolson%netscape.com 3dcc1ea9ef Fix 120785: SSLSocket does not throw java.net.BindException. 2002-07-04 00:29:24 +00:00
nicolson%netscape.com 11837bbc04 need to include nspr.h. 2002-07-04 00:25:46 +00:00
glen.beasley%sun.com 1fba049990 verify cert in memory 2002-07-04 00:10:48 +00:00
nicolson%netscape.com c492307e02 Fix 121710: throw better SSL exceptions. 2002-07-04 00:03:47 +00:00
nicolson%netscape.com 50591b0122 Print subject name instead of issuer name. 2002-07-03 23:58:58 +00:00
nicolson%netscape.com 9ce34687c6 Update documentation for these functions. 2002-07-03 23:57:12 +00:00
nicolson%netscape.com ea4b451e87 deprecate old classes in favor of the JCA. 2002-07-03 23:51:20 +00:00
nicolson%netscape.com 5c3d6dfdd7 moved JSSSecureRandomSpi into provider/java/security directory. 2002-07-03 23:49:32 +00:00
nicolson%netscape.com 4604a3386c Provider classes have been moved into the java/security and javax/crypto 
subdirectories.
 2002-07-03 23:48:53 +00:00
nicolson%netscape.com 431701e468 Fix 106846: Version strings in CryptoManager need updating. 2002-07-03 23:46:02 +00:00
javi%netscape.com 1335837b09 Go back to the lower case mechanism for the ocspResponse_* flags. 2002-07-03 20:22:27 +00:00
javi%netscape.com 6ef5342006 Final patch for Bug 155626 which enables 3rd party apps to use the NSS 
libraries to encode/decode OCSP responses/requests on their own.
 2002-07-03 20:18:10 +00:00
javi%netscape.com 5df2b90529 Use the newly exported symbol names. 2002-07-03 00:13:25 +00:00
javi%netscape.com 74cf1db5b9 Break up OCSP so that 3rd party apps can send off an OCSP request and parse 
it.
 2002-07-03 00:02:39 +00:00
relyea%netscape.com d929569334 Handle the case where we don't get the Token object from NewToken (It gets converted from a session object in handleobjects). 2002-07-02 19:58:49 +00:00
relyea%netscape.com 2691dfaecb More performance improvements in listing certs: 
1) reduce more short term memory allocate/frees.
	2) remove sha1 hash calculations from critical paths.
	3) when listing user certs, skip decoding of non-user certs.
 2002-07-02 15:11:29 +00:00
nicolson%netscape.com a00af9cae3 typo in error message 2002-06-28 20:14:47 +00:00
ssaux%netscape.com a8b8613277 b=154624 Cannot change master password r=javi sr=mscott 2002-06-28 18:08:19 +00:00
relyea%netscape.com 52a3e39f51 Initialize type fields to supress purify uninitialized reference warnings. 2002-06-28 03:00:10 +00:00
jpierre%netscape.com f3834c4493 Add VISA root cert - bug 139874 2002-06-28 01:07:37 +00:00
nicolson%netscape.com 0952ef1652 remove spurious println. 2002-06-27 21:16:42 +00:00
wtc%netscape.com 5f1bf71ea2 Bugzilla bug 154656: changed "softoken" to "softokn" to match the file 
name.
 2002-06-27 18:34:17 +00:00
jpierre%netscape.com 34637a1925 Fix for 154212 - make CERT_SaveSMimeProfile copy the cert to the database if it comes from an external source 2002-06-27 00:18:35 +00:00
kaie%netscape.com b0937b8228 b=154240 security fix 
r=javi sr=alecf
 2002-06-26 14:15:11 +00:00
kaie%netscape.com cc3cbfef64 b=154084 entering/leaving secure site alert pops up incessantly 
r=javi sr=alecf
 2002-06-25 23:32:42 +00:00
bzbarsky%mit.edu a5be4d7f1b Fix stretched icon. Bug 110456, patch by Chris Brien 
<christopher_brien@hotmail.com>, r=bzbarsky,ssaux, sr=alecf
 2002-06-25 23:29:48 +00:00
relyea%netscape.com bf47db16b4 Initialize type field to clear off purify warnings. 2002-06-25 23:00:59 +00:00
relyea%netscape.com 36d3327a4e Don't force the update if the cert doesn't already exist. 2002-06-25 22:58:13 +00:00
relyea%netscape.com 388eae96fc Collect the full names of the certs, not just the stan names. 2002-06-25 22:57:22 +00:00
relyea%netscape.com b68687620e Add new function which returns the NSS 3.4 style nickname directly from a 
NSSCertificate structure.
 2002-06-25 22:33:37 +00:00
ian.mcgreer%sun.com 77f6bf5223 two more places to dump templates 2002-06-25 19:40:16 +00:00
ian.mcgreer%sun.com 1ac81e9eee fix AIX builds, 64-bit compiler chokes on large switches in debug builds 2002-06-25 16:57:40 +00:00
relyea%netscape.com 466f850a10 Fix solaris compiler error/warning. Fix prototype to return correct value (PRBool not PRStatus). 2002-06-24 23:54:16 +00:00
kaie%netscape.com b0a64c5799 b=87902 Cannot reach TLS intolerant servers through SSL proxy. 
r=javi sr=darin
 2002-06-24 23:02:08 +00:00
relyea%netscape.com acca079eec Don't decode or extract trust for certs if we are just getting the nicknames -- particularly for user certs. 2002-06-24 22:36:59 +00:00
ian.mcgreer%sun.com 5cbb17c379 fix broken AIX builds 2002-06-24 22:29:12 +00:00
ian.mcgreer%sun.com 6c5c445334 log more mechanisms and templates 2002-06-24 22:22:57 +00:00
relyea%netscape.com c951743a6e Copy the type value as well as the rest. 2002-06-24 21:57:27 +00:00
relyea%netscape.com 360a5def46 More performance improvements for PK11ListCerts/ CERT_GetUserCertByUsage(). 2002-06-24 21:54:41 +00:00
nelsonb%netscape.com 0ab3e1d86d Fix bug 135261. Create symbolic names for the values 2 and 3 for the 
SSL_REQUIRE_CERTIFICATE option.  Value 2 has always been the default.
New Value 3 is appropriate for servers that want to re-request, but
still not require, client-auth from a client with whom an SSL session
is already established.
 2002-06-22 01:40:32 +00:00
nicolson%netscape.com 2398114330 Fix 128259: Cannot get SSL trust for a CA residing on PKCS#11 module. 2002-06-21 23:53:58 +00:00
relyea%netscape.com 94826d03c3 Need to preserve non-modifiable trustbits. 2002-06-21 22:28:03 +00:00
relyea%netscape.com 8cecf90735 zero structure before we fill it in, not after 2002-06-21 20:25:49 +00:00
nicolson%netscape.com cc9a198e79 fix a build error in JDK 1.2. 2002-06-21 18:31:36 +00:00
wtc%netscape.com b57b8df897 Bug 153380: TLS is enabled by default now. 2002-06-21 18:25:46 +00:00
kaie%netscape.com 5eb67585c2 b=90956 Dot (.) instead of localized characters in pipnss module 
r=ssaux sr=alecf
 2002-06-20 23:41:02 +00:00
kaie%netscape.com 2d8dba1be3 https surfing: Clicking on a link early leads to "mixed/broken" lock icon 
r=javi sr=rpotts
 2002-06-20 23:36:48 +00:00
bryner%netscape.com c4f4e41719 Don't crash if NSSDialogs doesn't implement nsICertificateDialogs (bug 150862). r=kaie, sr=blake. 2002-06-20 23:31:47 +00:00
javi%netscape.com 8e5dba016b Make the file C++ friendly. 2002-06-20 22:32:38 +00:00
relyea%netscape.com 07e1a10985 Reduce the cost of decoding a certificate. 2002-06-20 18:53:16 +00:00
relyea%netscape.com 5f13750389 reduce the calls to get the login state as these calls seem to be pretty expensive 
for some tokens.
 2002-06-20 18:49:45 +00:00
relyea%netscape.com 74259157e1 Patches to reduce the cost of getting attributes on certs or finding certs in lists. 2002-06-20 18:46:47 +00:00
nicolson%netscape.com f6d9041eac catch a null pointer and throw it back to Java, instead of crashing in C. 2002-06-19 22:59:08 +00:00
nicolson%netscape.com 19ed977293 upgrade to NSS 3.4.2. 2002-06-19 22:58:40 +00:00
nicolson%netscape.com 80da6ed3a6 add SSLClientAuth test. 
remove obsolete socketTest.
Get passwords from a file so we can run in batch mode.
 2002-06-19 22:50:47 +00:00
nicolson%netscape.com 64de9139f6 Fix 112227: set SSL server without nickname 
Specify the certificate to use for both server and client auth directly,
rather than by nickname.
 2002-06-19 20:33:28 +00:00
stephend%netscape.com 97e151dbf5 Bug 151418. Polish Page Info & Certificate Details. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-19 20:32:54 +00:00
ian.mcgreer%sun.com 818326aebc bug 98926, PKCS#11 session logging 2002-06-19 18:32:57 +00:00
rangansen%netscape.com 987e670221 exporting CERT_VerifyCertChain. r=relyea 2002-06-19 15:58:51 +00:00
ian.mcgreer%sun.com 72c56dfde5 missed part of last patch (bug 145322) 2002-06-19 15:26:55 +00:00
ian.mcgreer%sun.com a230a74e47 bug 145322, second patch, clean up pk11_saveContextHelper 2002-06-19 15:22:54 +00:00
ian.mcgreer%sun.com 84f44c2426 bug 145322, reduce the number of PKCS#11 sessions used in SSL connections, implement new function PK11_SaveContextAlloc 
r=relyea
 2002-06-19 15:21:37 +00:00
ian.mcgreer%sun.com 41ebe0592b bug 150704, PK11_Finalize can crash because softoken does not implement C_XXXFinal correctly 2002-06-19 14:59:24 +00:00
bishakhabanerjee%netscape.com e5b3ecac7a correcting init_mcom function to enable "nssqa" to run at Netscape - 150752 2002-06-18 21:45:31 +00:00
relyea%netscape.com a9c4b2875a 1) Map flags both coming and going. 
2) Finish transaction of the target database not the source database.
 2002-06-18 16:41:41 +00:00
kaie%netscape.com 34144c21e7 b=145730 Avoid unnecessary repeated "encrypted page" alerts on JavaScript links. 
r=jst sr=darin
 2002-06-18 14:17:10 +00:00
wtc%netscape.com bf909b356a Bug 151940: SEC_PKCS12DecoderVerify should call SEC_ASN1DecoderFinish first 
to detect insufficient input data error.
 2002-06-18 05:00:39 +00:00
relyea%netscape.com 3b0169836f Standardize the open flags as 'enums' when using multiaccess databases, no matter 
if we are using PR_ versions of the flags or O_ versions of the flags.
 2002-06-17 18:46:27 +00:00
kaie%netscape.com ea34611103 b=148610 Lock icon should be updated as early as possible. 
r=javi sr=rpotts
 2002-06-17 09:56:14 +00:00
stephend%netscape.com b48fd8f9a9 Bug145409. JS strict warnings in certManager.js. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-16 21:19:25 +00:00
nicolson%netscape.com 0700feee32 add new tests. 2002-06-14 18:15:45 +00:00
nicolson%netscape.com 6d11aafe59 remove broken code until bug is fixed. 2002-06-14 18:15:21 +00:00
nicolson%netscape.com ba0e5da12c remove bogus comment. 2002-06-14 18:13:27 +00:00
relyea%netscape.com 8ecce17ba5 check version of the existing DB, not the updatedb. 2002-06-14 17:29:56 +00:00
kaie%netscape.com 4c4d965cce b=119394 Support fetching certificates from LDAP servers. 
r=javi/dmose sr=mscott
 2002-06-14 02:10:02 +00:00
kaie%netscape.com 0651ac578a b=150863 Fix lock icon state for low/high crypto mix. 
r=javi sr=alecf
 2002-06-13 23:59:01 +00:00
relyea%netscape.com 65efceafe9 Add transactions to the database update portion of the code. 2002-06-13 23:25:37 +00:00
relyea%netscape.com b73e72fecf Update cert handle on token insertion/removal. 2002-06-13 21:43:30 +00:00
relyea%netscape.com 5af6761fdf Add series to keep track of object handle value validity. 2002-06-13 21:42:41 +00:00
relyea%netscape.com c4f501ea84 Reset the cert cache and clobber cert handles on token insertion an removal 2002-06-13 21:40:43 +00:00
jpierre%netscape.com 35d427682d Add missing AOL root CA certs 2002-06-13 10:14:50 +00:00
nicolson%netscape.com ee3a5ab4b0 add javadoc target. 2002-06-12 22:54:16 +00:00
nicolson%netscape.com 73767e2c4b remove these files--there's no C code in this directory. 2002-06-12 20:18:10 +00:00
nicolson%netscape.com 162f234bdc Grab NSS headers from directory "nss" instead of directory "security". 2002-06-12 20:11:22 +00:00
nicolson%netscape.com 6432d07503 remove makefiles for this directory, since it's only Java files. 2002-06-12 20:08:39 +00:00
kaie%netscape.com 0afcb51180 b=126944 Handle NSS error codes within PSM. 
r=ssaux sr=darin
 2002-06-12 16:44:22 +00:00
wtc%netscape.com c82952da17 Bug 150143: use map file to limit exported symbols on Mac OS X. The patch 
is contributed by Brian Ryner <bryner@netscape.com>.
Modified files: Darwin.mk rules.mk
 2002-06-12 00:21:19 +00:00
relyea%netscape.com c5df5f929f When checking NeedInit status, go back and check the token in case the token 
has been initialized offline.
 2002-06-11 23:33:25 +00:00
jpierre%netscape.com ab061f96db Update for root certs - bug 139874 2002-06-11 23:16:25 +00:00
kirk.erickson%sun.com 81f890d48e Fixed indentation caught by Wan-Teh (66606). 2002-06-11 22:41:45 +00:00
kirk.erickson%sun.com 936600b550 Resolves 66606. Added -O (enable OCSP checking). 2002-06-11 16:29:28 +00:00
ddrinan%netscape.com ef961ea641 Bug 150708. Incorrect keysize when finding bulk alg. r=wtc. 2002-06-10 22:00:32 +00:00
relyea%netscape.com fb5d7b49ac Return public and private keys in the order specified by the PKCS #11 spec. 2002-06-10 20:33:31 +00:00
leaf%mozilla.org 0034658953 updating locale version string for impending release, bug 149802 2002-06-07 07:45:38 +00:00
alecf%netscape.com f0263ddf07 fix for bug 101761 - REQUIRES update - remove all REQUIRES that are no longer necessary.. r=cls, a=asa (build-only changes) 2002-06-06 20:28:14 +00:00
jpierre%netscape.com 35ae180053 Fix for 141256 - rewrite OCSP HTTP download code to fix error handling 2002-06-06 01:05:40 +00:00
jpierre%netscape.com b497f3d9d4 Fix for 139874 - Inject Latest CA Root Certs 2002-06-06 00:12:56 +00:00
cathleen%netscape.com 12e47be3cf clean up last traces of nsCRT::strlen(char* s), bug 124536 r=dp, sr=brendan 2002-06-04 23:05:39 +00:00
thayes%netscape.com 9ff40a4655 Reserve OID (netscape_name_components 2) - see 605437 2002-06-04 21:46:05 +00:00
bishakhabanerjee%netscape.com 276ba298ce to build the new NSS tests.. bugzilla bug 144316 2002-06-03 17:16:57 +00:00
wtc%netscape.com c4394897ee Backed out the previous checkin, which is not being used and triggers 
a bug in gmake 3.76.1 with MKS shell on Windows.
 2002-06-01 04:31:44 +00:00
wtc%netscape.com 02cd9a7152 Use $(DLL_SUFFIX) instead of ${DLL_SUFFIX}. 2002-06-01 04:25:38 +00:00
nicolson%netscape.com 5fa7f3e19b Fix 147794: PK11_ImportDERPrivateKeyInfoAndReturnKey frees the private key incorrectly. 2002-06-01 00:43:46 +00:00
rangansen%netscape.com a69b8eca98 Fix to ensure change password on db is commited - using rv == SECSuccess would actually abort it. 
r = wtc
 2002-06-01 00:37:00 +00:00
kaie%netscape.com ccd53c19ba b=138479 Disable Security tab in View Frame Info 
r=javi sr=jag
 2002-05-30 04:56:16 +00:00
wtc%netscape.com 9d721941f6 This is a test. I changed Revision and Date to bogus values and want to 
see what actually got checked in.
 2002-05-30 02:08:07 +00:00
glen.beasley%sun.com 7482bb0552 for release eng to build multiple platforms 2002-05-30 00:47:18 +00:00
wtc%netscape.com 72310f0cb6 Import NSPR 4.2 and DBM 1.61. 2002-05-30 00:36:48 +00:00
nicolson%netscape.com 53a1a1529c Fix bug 112330: CryptoToken.changePassword(new ConsolePasswordCallback(), new ConsolePasswordCallback()) throws Native Exception. 
We were zeroing the password after freeing it, which in some cases caused
memory corruption and crashing.
 2002-05-29 21:54:14 +00:00
ian.mcgreer%sun.com 8da972fafe bug 136701, certutil should use PK11_ListCerts 2002-05-29 18:19:33 +00:00
kaie%netscape.com a67cfbacc5 b=130650 In page info, "Security" tab lacks shortcut. 
r=kaie sr=jag
 2002-05-29 03:40:46 +00:00
kaie%netscape.com 412b06829d b=110195 Master passwords steals focus in prefs 
r=kaie sr=alecf
 2002-05-29 03:32:04 +00:00
kirk.erickson%sun.com 39f40869dd Fixed OCSP typo. 2002-05-28 18:26:37 +00:00
wtc%netscape.com f53b2a3fe4 Bug 142575: use the PRIVATE keyword for the /EXPORT linker option. 2002-05-25 16:00:55 +00:00
wtc%netscape.com a46d397d1b Bug 142575: use the /EXPORT linker option on the command line. 
Modified files: nssinit.c config.mk
 2002-05-25 06:52:19 +00:00
wtc%netscape.com 80bf8da267 Bug 142575: a better fix. 2002-05-25 01:02:39 +00:00
wtc%netscape.com d7e1b26fba Bug 142575: added function forwarder for 'mktemp' for "bug compatibility". 2002-05-24 21:00:55 +00:00
javi%netscape.com 11e1c7df19 Make pkcs12.h C++ friendly. 2002-05-24 20:11:29 +00:00
wtc%netscape.com 823ecf3636 Back out the previous checkin. It broken the cmd/certcgi build. 2002-05-24 14:58:02 +00:00
javi%netscape.com d7cffca266 Add macros to make header file C++ friendly. 2002-05-24 00:53:48 +00:00
wtc%netscape.com 5e325c5e17 Bug 142575: on Windows added mktemp (which simply calls _mktemp in the C 
run-time library) to be backward compatible with the bug that mktemp was
accidentally exported from the nss3.dll in NSS 3.2.x and 3.3.x.
 2002-05-23 22:28:50 +00:00
kirk.erickson%sun.com 48cc6e3f23 Resolves bug 90070 (now exiting with PK12UERR_PK11GETSLOT 13). 2002-05-23 22:21:42 +00:00
nicolson%netscape.com 28a16a764c Fix 146515: PK11PrivKey.fromPrivateKeyInfo enables no operations for RSA keys 2002-05-23 20:32:10 +00:00
nicolson%netscape.com 96232e756b move new entry to end of file 2002-05-23 18:45:23 +00:00
nicolson%netscape.com d503b902ae cleanup tabs and spaces. 2002-05-23 18:45:00 +00:00
nicolson%netscape.com d1bbd143bc Various minor tweaks for code cleanliness. 2002-05-23 18:29:07 +00:00
glen.beasley%sun.com e56800b6f2 bug 144913 isCertValid addition 2002-05-23 17:52:23 +00:00
relyea%netscape.com 72625ff391 Refresh token cache after login on tokens that need to log in before they 
could read their certs.
 2002-05-22 23:13:05 +00:00
relyea%netscape.com 12e3d87c3a Close our peer database handles because some platforms (Mac) do bad things 
if you hold two berkelydb handles open to the same database in the same process.
(actually a lot of platforms could cause problems, the Mac version of dbm (1.85)
just does the bad things right away).
 2002-05-22 21:47:23 +00:00
nicolson%netscape.com 121ad6444e Fix http://bugzilla.mozilla.org/show_bug.cgi?id=144934: generating DSA public key from spec is broken. 2002-05-22 02:13:31 +00:00
relyea%netscape.com bdb4739c86 Back out the change on Module destruction. 2002-05-22 00:25:48 +00:00
relyea%netscape.com 78d49962a7 Don't crash if url is specified, but the crl is broken 2002-05-21 21:26:52 +00:00
relyea%netscape.com 77c8edd9e2 Missing component when deleting should not be fatal 2002-05-21 21:26:14 +00:00
relyea%netscape.com 7992b938dc Fix spelling error. 
Clear out certs from the cache before the token goes away.
 2002-05-21 21:24:35 +00:00
relyea%netscape.com ae037a0020 Fix spelling error. 2002-05-21 21:23:33 +00:00
relyea%netscape.com 16d6f24791 Clear out certs associated with tokens that have just been taken off the trust domain. 2002-05-21 21:22:55 +00:00
jpierre%netscape.com f6482b1e32 Fix for bug 137645 - cached certificate does not get its nickname updated after P12 import of matching user certificate 2002-05-20 23:21:39 +00:00
ian.mcgreer%sun.com 15cbb51ea4 bug 144309, return value of STAN_GetCERTCertificate not checked 
r=wtc
 2002-05-20 18:05:11 +00:00
ian.mcgreer%sun.com bd35791189 fix bustage caused by generated file discrepancies 2002-05-20 16:01:21 +00:00
ian.mcgreer%sun.com 0a481f5a1d need to match ckapi.perl with generated target nssck.api, which was modified 2002-05-20 14:38:48 +00:00
wtc%netscape.com f50b1aceb0 Bugzilla bug 145178: added OpenBSD build support. The patch is contributed 
by Christopher Seawood <seawood@netscape.com>.
Modified Files: coreconf/config.mk sslmutex.c sslmutex.h
Added Files: coreconf/OpenBSD.mk
 2002-05-18 03:24:17 +00:00
wtc%netscape.com c01c8333dc Bugzilla bug 131171: added HP-UX IPF (ia64) support. Portions of the patch 
(attachment 84127) were contributed by Jim Dunn <jdunn@netscape.com>.
 2002-05-18 00:52:11 +00:00
wtc%netscape.com 4629198fde Bugzilla bug 145128: fixed a typo error in sec_pkcs5_rc4(). Also simplfied 
two other similar constructs.  r=relyea.
 2002-05-17 21:29:27 +00:00
kaie%netscape.com 80c24f7a91 b=143532 Only allow toggling FIPS when it is safe to 
r=javi sr=alecf
 2002-05-17 19:56:11 +00:00
ian.mcgreer%sun.com 92d2581332 bug 144448, incorrect use of ## operator in creating CKFW entry points 2002-05-17 18:57:34 +00:00
kaie%netscape.com 8892f15a70 b=144823 Localized certificate name is garbled, unable to send out signed/encrypted mail on a localized build 
r=javi sr=mscott
 2002-05-17 01:21:31 +00:00
relyea%netscape.com dfd4f9ba1c Fix Linux and Solaris builds 2002-05-17 00:39:26 +00:00
relyea%netscape.com 5781a451fd The tip is now NSS 3.6, make sure new builds properly indicate this 2002-05-16 22:12:37 +00:00
relyea%netscape.com 2c1512022e Add PK11_GetPBEIV to exported symbol list. 2002-05-16 22:12:10 +00:00
relyea%netscape.com 318e0b19d3 Add function to get the PBEIV. 2002-05-16 22:06:19 +00:00
relyea%netscape.com 96fcbeedc8 Add support to turn on or off optimizations based on parameters to NSS_Init functions 2002-05-16 22:05:17 +00:00
relyea%netscape.com db4d3c197d Make a single softoken which works for both servers and clients depending on configuration. 
Add the _PAD functions to the internal database token.
 2002-05-16 22:04:12 +00:00
rpotts%netscape.com 4d4116d281 bug #46856 (r=valeski, sr=darin). API Changes to nsIWebProgress/nsIWebProgressListener) 2002-05-16 20:57:37 +00:00
relyea%netscape.com d41f575216 Argh. I thought I had compiled this! fixe compile errors. 2002-05-16 20:48:27 +00:00
relyea%netscape.com 7252fee64d Add Transactions (still need to add transactions on database upgrade). 
Make trust objects their own objects to reduce a couple of unnecessary cert decodes.
 2002-05-16 20:39:04 +00:00
wtc%netscape.com 4d369b4b08 Bug 131171: added HP-UX 11.20 support. 2002-05-16 17:35:41 +00:00
wtc%netscape.com a2dc0c286f Bugzilla bug 138532: use pipes instead of semaphores for NetBSD, which does 
not have semaphore.h.  Thanks to Chris Seawood <seawood@netscape.com> for
the patch.  Modified files: sslmutex.h sslmutex.c
 2002-05-16 13:36:02 +00:00