requires client auth. Work around bug in NT TCP stack by only shutting
down the socket for SEND (not for BOTH) after sending a bad_certificate
alert. This avoids bogus CONNECTION_RESET_BY_PEER errors at the client.
sid cache entry is a multiple of 8 bytes long. On OSF1, reduce the
maximum number of POSIX semaphores so it doesn't exceed the per-process
limit of 256.
1. New SSL server session cache implementation that uses finer grained
locking to reduce lock contention, and does 128-way associative caching.
2. rename symbol SSL_SESSIONID_BYTES to SSL2_SESSIONID_BYTES.
3. Work around compiler bug on Solaris i386.
Modified Files:
manifest.mn sslcon.c sslimpl.h sslsecur.c sslsnce.c
and data is now buffered for sending and the application calls PR_Poll
to poll on read, poll on write also. This way, if the socket becomes
writable, the application's read attempt will send (more of) the buffered
write data.
cannot find the SSL layer on the specified PRFileDesc. Ensure all
callers detect when ssl_FindSocket returns NULL and handle it properly.
Bug 68241. Reviewed by jgmyers and relyea.
Modified Files:
prelib.c sslauth.c sslsecur.c sslsock.c
reading and writing) call PR_Send and PR_Recv with a non-infinite timeout
value, use that value for both underlying read and write operations.
Fixes bug 67402. Reviewed by Wan-Teh.
record of application data into a single write, when possible, to avoid
TCP's "Nagle" delays. Fixes bug 67898. r&a: wtc. Modified Files:
ssl3con.c sslimpl.h sslsecur.c sslsock.c
Define the NSS version macros and add NSS_VersionCheck in nss.h.
Add linker option to record internal name of shared libraries.
Add Windows resource files. Add rcs and sccs id strings that can be
retrieved with 'ident' and 'what'.
Modified Files:
coreconf/HP-UX.mk coreconf/OSF1.mk coreconf/SunOS5.mk
coreconf/WIN954.0.mk coreconf/WINNT4.0.mk coreconf/WINNT5.0.mk
coreconf/rules.mk nss/lib/nss/config.mk
nss/lib/nss/manifest.mn nss/lib/nss/nss.h
nss/lib/nss/nssinit.c nss/lib/smime/config.mk
nss/lib/smime/manifest.mn nss/lib/ssl/config.mk
nss/lib/ssl/manifest.mn
Added Files:
nss/lib/nss/nss.rc nss/lib/nss/nssver.c nss/lib/smime/smime.rc
nss/lib/smime/smimever.c nss/lib/ssl/ssl.rc
nss/lib/ssl/sslver.c
The same values that the compiler would assign are assigned, with only
one exception (cmmfNoPKIStatus in cmmft.h). This is patch id=22555,
reviewed by Nelson Bolyard.
SECHashObjects[] is no longer exported.
New function HASH_GetHashObject returns pointer to selected const object.
SSL statistics are now in a structure whose address is obtained via a
call to SSL_GetStatistics().
On NT, the new symbol NSS_USE_STATIC_LIBS must be declared in programs
that use the static SSL library.
Also, propagate "const" declaration for SECHashObjects.
cryptohi.h, pk11func.h, secpkcs7.h, and cms.h. Some files now need to
include <errno.h>. They were including <errno.h> indirectly through
mcom_db.h.
Modified Files:
cmd/atob/atob.c cmd/btoa/btoa.c cmd/derdump/derdump.c
lib/cryptohi/cryptohi.h lib/pk11wrap/pk11func.h
lib/pkcs7/secpkcs7.h lib/smime/cms.h lib/ssl/sslsnce.c
wtc%netscape.com
nelsonb%netscape.com
relyea%netscape.com
larryh%netscape.com