97b61a9ea6
Remove dead files. r=wtchang
2005-11-04 01:02:50 +00:00
58312a336d
Remove nmake Makefiles and references to them. r=nelson
2005-11-04 01:01:37 +00:00
82076672d5
Remove dead files. r=wtchang
2005-11-04 00:48:41 +00:00
d815f7cf12
311934 added PORT_JSSE_SERVER and PORT_JSSE_SERVER plus testing bypass r=sandeep
2005-11-03 23:30:38 +00:00
0f4039e012
313176 allow JSS to enable more NSS SSLOptions r=wtc, sr=nelson
2005-11-03 23:09:26 +00:00
689c90bc99
fix bug 252436, non-ascii characters not recognized by master password dialog
...
r=dbaron, sr=shaver
2005-11-03 11:25:53 +00:00
bf76f2aab1
Bugzilla id: 314583, removed linking of JVM to JSS library and replaced
...
reference to classes.zip with rt.jar.
2005-11-03 00:11:59 +00:00
b4be330175
Bug 314821 - stop building dist/gre because nobody uses it and all plans to use it have evaporated, r=cls+dougt
2005-11-02 21:50:36 +00:00
8ad396e8b9
Import NSPR 4.6 and NSS 3.10.2 temporarily. We will import NSPR 4.6.1
...
and NSS 3.11 when they are released.
2005-11-01 19:00:12 +00:00
e58a8fe88b
Bugzilla Bug 308242: expose the opFlags and the temporary/permanent
...
attributes of PK11_TokenKeyGenWithFlags. r=glen.beasley.
Modified Files:
crypto/KeyGenerator.java crypto/SymmetricKey.java
pkcs11/PK11KeyGenerator.c pkcs11/PK11KeyGenerator.java
2005-11-01 18:38:47 +00:00
e9b3d77725
Fix for 314115 . Comments about QuickDER and classic ASN.1 decoders relating to SECItem.type field
2005-10-31 18:52:20 +00:00
b7643ddac3
Fix for 314115 - QuickDER modifies SECItem.type while decoding. r=wtchang
2005-10-31 18:34:42 +00:00
bd65f6edd5
Bug 289444 Adding access keys p=giacomo.magnini@portalis.it r=kaie sr=me
2005-10-30 11:21:44 +00:00
54fc46b257
Bugzila bug : 314098 Changed Double to Double.doubleValue() in constructing java.Security.Provider(). sr=wtc
2005-10-28 22:22:44 +00:00
9c1b72f7f8
Bug 311827: Make GetAttr return a bool rather then an nsresult.
...
r/sr=bz
2005-10-28 11:25:24 +00:00
0d11c9e874
Bugzilla bug : 314098. Modified JSS provider version to 4.1.1 in
...
JSSProvider.java. Reflected this information in all places that needs
to be changed when there is a change in JSS version. r=wtc
2005-10-28 04:21:16 +00:00
e955d37c8b
Bugzilla bug 314089: On HP-UX, use rt.jar instead of classes.zip; for JDK
...
1.4 or later use the "server" JVM. Fixed an error in the pathname of
rt.jar for Linux. r=sandeep.konchady.
2005-10-28 00:20:38 +00:00
151cfa866e
Bugzilla Bug 302212: set DARWIN_SDK_DSOFLAGS and pass -F arguments to ld
...
when GCC <= 3. Contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
2005-10-28 00:06:56 +00:00
9f00787971
Bugzilla bug 239960: cvs removed cmd/swfort. r=relyea.
2005-10-27 22:49:22 +00:00
ec848a59a1
Bugzilla Bug 308242: added the extractablePairs method to KeyPairGenerator
...
to make the new PK11_ATTR_EXTRACTABLE/PK11_ATTR_UNEXTRACTABLE flags of the
new PK11_GenerateKeyPairWithFlags function available to JSS. r=nkwan.
sr=glen.beasley.
Modified Files:
crypto/KeyPairGenerator.java crypto/KeyPairGeneratorSpi.java
pkcs11/PK11KeyPairGenerator.c pkcs11/PK11KeyPairGenerator.java
2005-10-27 20:47:26 +00:00
6bb2f4c9a4
Bugzilla Bug 302212: allow Mac OS X x86 builds to target SDKs. The patch
...
was written by Mark Mentovai <mark@moxienet.com>. r=joshmoz. sr=bryner.
Modified Files:
configure.in config/autoconf.mk.in config/config.mk
extensions/java/xpcom/tools/xpidl/Makefile.in
security/manager/Makefile.in xpcom/typelib/xpidl/Makefile.in
2005-10-26 19:01:18 +00:00
d0fa45f6e1
Bugzilla Bug 302212: allow Mac OS X x86 builds to target SDKs. The patch
...
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc,joshmoz.
2005-10-26 17:00:07 +00:00
9b02f81647
fixes bug 271194 "When going from a secure to a non-secure page without clicking a button in the security dialog, the non-secure page appears as secure" patch by kai, r=dveditz, sr=darin
2005-10-21 18:33:26 +00:00
2982dcd8d0
Bugzilla bug 298522: added power-up self tests for HMAC SHA-1 and HMAC
...
SHA-256. The patch is contributed by Glen Beasley of Sun. r=wtc.
2005-10-20 21:46:51 +00:00
63680b1e17
Bugzilla bug 312774: support building and running the test with IBM JDK.
...
Removed the class name and provider name of the SUN provider. Instead,
we compare our message digest result with the result of all providers that
support the message digest algorithm. The patch is contributed by Rich
Megginson of Red Hat and improved by Glen Beasley of Sun. r=wtc.
2005-10-19 01:17:44 +00:00
f1989d462e
Build fipstest.
2005-10-19 01:14:20 +00:00
1074e8d40b
Add dependency on freebl so ssl will rebuild if freebl has changed.
2005-10-19 01:04:16 +00:00
4b3046e544
Add dependency on freebl so softoken will rebuild if freebl has changed.
2005-10-19 01:03:31 +00:00
c550139189
Added a shell script for running the NIST AES Algorithm Validation Suite.
2005-10-19 00:55:20 +00:00
26fa27cb5e
Bugzilla bug 312774: support building with IBM JDK on Linux. Added -L
...
linker flags for IBM JDK's pathnames. The patch is contributed by Rich
Megginson of Red Hat. r=wtc,glen.beasley.
2005-10-18 22:36:19 +00:00
4af416f017
fixes bug 304286 "Certificate failures during automatic check for updates should not give user choice to connect anyway" r=biesi sr=dveditz
2005-10-15 02:46:06 +00:00
3cc2568dbc
Bugzilla Bug 312395: Added FIPS AES Known Answer Test, Multi-block Message
...
Test, and Monte Carlo Test in ECB and CBC modes. Also changed the types
of some variables from int to unsigned int to fix compiler warnings about
signed/unsigned comparisons.
2005-10-14 20:04:39 +00:00
f1ab1aa413
Bugzilla bug 311440: ssl3_ConsumeHandshakeVariable now longer returns a
...
SECItem pointing to memory allocated with PORT_Alloc, so we don't need to
use PORT_Free to free the SECItem's buffer. r=nelsonb.
2005-10-14 16:48:58 +00:00
e43c3ce2ce
Bugzilla Bug 312202: checked in HP-UX IPF (Itanium) porting changes
...
contributed by Grace Lu of HP. Use the .so suffix for shared libraries
on HP-UX IPF. Support building on HP-UX B.11.23. r=wtc.
Modified Files:
coreconf/HP-UX.mk nss/lib/nss/nssinit.c
Added Files:
coreconf/HP-UXB.11.23.mk
2005-10-12 19:04:13 +00:00
e853dbd1aa
Bugzilla Bug 302998: disallow x=0,1 and k=0. r=nelsonb.
2005-10-12 00:48:25 +00:00
e900e4197d
CBug 290263, patch CERT_CreateCertificateRequest for doing extensions
...
r=bob
`VS: ----------------------------------------------------------------------
2005-10-12 00:10:17 +00:00
f71abec372
Bugzilla Bug 311074: cvs removed the unused nfspwd.pl script (which only
...
worked on the old Netscape intranet). r=relyea.
Modified Files: OS2.mk command.mk rules.mk
Removed Files: nsinstall/nfspwd nsinstall/nfspwd.pl
2005-10-10 23:46:13 +00:00
0999eacfac
Attempt to fix HPUX test failures.
...
Bug 311279 crmftest core dumps on HP-UX
(verbal) r=wtc
2005-10-08 00:57:31 +00:00
f0ecbc1907
Bugzilla Bug 304360: generate ECC key with private key value less than the
...
group order using a combination of ANSI X9.62 A.4.1 and FIPS 186-2 Change
Notice 1. Also changed structure of EC key generation functions to match
the scheme used in dsa.c. The patch is contributed by Douglas Stebila
<douglas@stebila.ca> of Sun Labs. r=wtc.
2005-10-06 23:16:20 +00:00
137ae27c40
Bugzilla Bug 257693: set the correct error code in EC_ValidatePublicKey.
...
Documented the return values of ECPoint_validate. Have the tests compare
the return value of ECPoint_validate with MP_NO for negative test cases.
r=doublas.stebila.
Modified Files:
ec.c ecl/ecl.h ecl/tests/ec2_test.c ecl/tests/ecp_test.c
2005-10-06 21:42:55 +00:00
106649493f
Bugzilla Bug 311074: removed the unused nfspwd Perl script from TARGETS,
...
which caused "gmake clean" to break on a read-only source tree. The patch
is contributed by Benjamin Smedberg <benjamin@smedbergs.us>. r=wtc.
2005-10-05 22:25:37 +00:00
f1c1c9ff83
Bugzilla bug 259135: fixed build breakage. In C, declarations must precede
...
code.
2005-10-05 22:03:14 +00:00
a2a6f7d5d0
Bugzilla bug 259135: minor comment fix.
2005-10-05 17:58:01 +00:00
ec898fad19
171027 removed deprecated code from tests ran by all.pl sr=sandeep
2005-10-05 17:09:03 +00:00
ce927b8172
259135 added SHA 256,384,512 and AES powerupself tests sr=Wan-Teh
2005-10-05 16:31:01 +00:00
3f0a5a238f
Back out non-reviewed strictly white space change in pk11sdr.c
2005-10-04 01:11:01 +00:00
cf9da5e041
Made the test compile and link without errors.
2005-10-04 00:46:50 +00:00
c37177be01
Fixed test file line endings. This file must be considered part of the
...
NSS module because it needs the private NSS header blapi.h.
2005-10-04 00:35:51 +00:00
36b838d2de
Fixed test file line endings.
2005-10-04 00:28:55 +00:00
42340d8d1f
Bugzilla bug 310518: map CKR_PIN_INVALID and CKR_PIN_LEN_RANGE to
...
SEC_ERROR_INVALID_PASSWORD instead of SEC_ERROR_BAD_PASSWORD. r=relyea.
2005-10-03 22:41:45 +00:00
017d2e48a7
remove depricated mechanisms so pk11table continues to build.
2005-10-03 22:19:43 +00:00
c498db1b4e
Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey]
...
r=wtc [part 3 of 3]
2005-10-03 22:01:57 +00:00
383e05c9b6
Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey]
...
r=wtc [part 2 of 3]
2005-10-03 22:00:22 +00:00
1dbbf4afca
This change was not part of bug 272484 and has not been reviewed.
...
Back it out.
2005-10-03 21:58:24 +00:00
aacba3b4b3
Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey]
...
The problem only happens if we try to import a key into a token which then fails
to import. The basic issue was a hack in the pkcs 7 code to support PKCS 12, A
special structure was used to replace the SymKey structure, and the code 'knew'
the special structure existed before it dealt with the symkey. The fix addes a
new capability to symkeys, where applications can attach application specific
data to the key structure. PKCS 12 uses this to attache the PBE information
for CMS. (part 1 of 3)
This patch also improves the key's reuse of sessions, so sessions are not thrashed
when SSL is used with them.
r=wtc
2005-10-03 21:55:29 +00:00
7e9cc2edcf
Bug 309542 Fix a11y problems and crop="right" is deprecated in page info dialog
...
p=me r=db48x sr=neil.parkwaycc.co.uk
2005-10-02 00:09:37 +00:00
7cdc2237f9
Bugzilla Bug 294106: removed an assertion that's no longer necessary.
...
Added buffer length error checking to back up an assertion. r=nelsonb.
2005-09-30 22:01:46 +00:00
ca331d0f84
Bugzilla Bug 244922 ASN.1 encoder outputs trash for optional may-stream subtemplate
...
r=nelson (original patch by nelson, modifications by me).
2005-09-30 19:22:48 +00:00
ab4bcd2e06
238319: Sun packages changes.
...
Add an extra line to the copyright file to have the same as NSS and NSPR.
2005-09-30 01:56:59 +00:00
b8ff00fa4d
Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported
...
wtc's review r=wtc
2005-09-29 23:44:39 +00:00
b5dad5e71d
Bugzilla Bug 294106: dsa.c: use const in the function prototype of
...
DSA_GenerateGlobalRandomBytes. prng_fips1861.c: implemented Algorithm 1
of FIPS 186-2 Change Notice 1 and increased the size (b) of the RNG's
seed-key from 160 bits to 256 bits. r=relyea,nelsonb.
2005-09-29 23:22:53 +00:00
f07d043fa0
Tests won't pass if we don't build crmftest
2005-09-29 22:01:52 +00:00
f7650e2dfd
Bug 308887 CRMF request generation problem when using latest firefox
...
Add crmf tests to the test suite.
2005-09-29 21:36:42 +00:00
bb4e6de04d
Bugzilla Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported
...
r=nelson
This is only the NSS portion of this patch. The PSM portion will be checked in once the
NSS portion is mainlined to mozilla.
2005-09-29 21:00:58 +00:00
7b66c63352
Bugzilla Bug 164692 SSL ops that timeout should throw
...
java.net.SocketTimeoutException. sr=Glen.Beasley
2005-09-29 18:48:34 +00:00
5ca23c5ac1
Bug 271317, remove the old fortezza code
2005-09-29 18:09:11 +00:00
0c257cc408
Bugzilla Bug 298630 freebl needs a memory cache invariant RSA implementation.
...
r=nelson
2005-09-29 17:17:09 +00:00
9f3f33c4d8
Add better tests for detached signatures. Actually test the other sha
...
variants rather than just say we do. done in the context of bug 30887
r=nelson
2005-09-29 17:14:19 +00:00
3d845c1f73
Make the dates shown in the Expired Certificate alert have consistent (short) format. Bug 246905, patch by Constantine A. Murenin <cnst+bmo@bugmail.mojo.ru>, r=jgmyers, sr=brendan
2005-09-29 08:41:22 +00:00
ab65fadf87
Bug 271317, remove the old fortezza code
2005-09-29 00:36:53 +00:00
6bae625be5
Internal NSS defines shared between softoken and the rest of NSS, but not
...
exported.
added as part of bug 305697.
2005-09-28 23:52:59 +00:00
c641f2799f
Bugzilla Bug 310336: support building on Windows Server 2003.
...
r=Sandeep.Konchady.
2005-09-28 23:14:44 +00:00
d8e2256322
Bug 305697 Softoken needs to give on the fly access to additional databases. Part 2, User interface
...
r=julien
2005-09-28 17:17:49 +00:00
73c2c7913b
bug 305697: open additional database on the fly in softoken. part1: softoken changes.
...
r=julien
2005-09-28 17:12:17 +00:00
9d1b27d77f
Avoid NULL ptr deref. Bug 310260. patch by Glen.Beasley. r=nelson.
2005-09-28 07:55:37 +00:00
c12e2be57c
Bugzilla bug 298045: when importing a package of CA certs, display and ask
...
the user to trust the root most CA (instead of the leaf most CA) in the
package. Also make sure that the cert is indeed a CA cert. r=kaie,relyea.
sr=sfraser.
2005-09-26 22:43:22 +00:00
f21769892b
Bug 303508, committing attachment 196965. r=nelson,saul
2005-09-23 02:15:03 +00:00
1be2e6565e
Eliminate environment variable SSLNOLOCKS, add environment variable
...
SSLFORCELOCKS. Make SSL_FDX option mutually exclusive with SSL_NOLOCKS
option. Bug 305147. r=rrelyea.
2005-09-23 01:04:32 +00:00
392492409b
Don't crash when printing an ASN.1 NULL primitive with a NULL prefix
...
string. Bug 309651. r=wtchang.
2005-09-22 22:45:32 +00:00
cc926643d7
Bugzilla bug 309640: replaced the French accented a (�) with ASCII a
...
because IBM JDK can't handle that 8-bit character in UTF8 locales. The
patch is contributed by Rich Megginson of Red Hat. r=wtc,glen.beasley.
2005-09-22 17:58:35 +00:00
c06cbabaf1
Unset Beta flag to sync up JSS 4.1.1 RTM with NSS 3.10.2 RTM build date.
2005-09-21 21:06:54 +00:00
984c14b592
Add version info to freebl shared libs for Windows and Unix. bub 303508.
...
Modified Files: config.mk ldvector.c manifest.mn
Added Files: freebl.rc freeblver.c r=wtc.
2005-09-21 03:01:49 +00:00
8e90b38bb0
Replace "fast" and "slow" with fpu and int in loader.c. Also add a
...
comment explaining ISA lists. r=wtc. bug 303508.
2005-09-21 02:53:25 +00:00
5a7a4f41b6
Bug 299197: added the comment for PK11_TokenKeyGen back. r=relyea.
2005-09-21 01:32:11 +00:00
e6c2b3be72
Bug 299197: fixed comments. r=relyea.
2005-09-21 01:31:37 +00:00
8fd73066f5
fix bug 217611: Page Info can be opened multiple times
...
patch by Jason Barnabe (np) <jason_barnabe@fastmail.fm>, r=mconnor
2005-09-21 01:12:29 +00:00
6745cd57ef
Only call C_WaitForSlotEvent if the module is PKCS #11 v2.01 or later.
...
bug 196811 r=wtc sr=julien
2005-09-20 20:56:07 +00:00
bc02bfe07d
Fix for 293686. Check status from SECU_ParseCommandLine. r=nelson
2005-09-20 05:13:01 +00:00
2bd2306d6c
Fix for 292390. NSS tools with missing command-line operands cause crash. r=nelson
2005-09-19 20:59:46 +00:00
83ceb87c51
Fix for 293686 . signver has command-line options with optional arguments. r=nelsonb
2005-09-19 20:52:11 +00:00
3241563dc1
238319: Sun packages changes.
...
Change libfreebl name on Solaris x86 (following changes from Bugzilla 303508).
2005-09-19 19:12:24 +00:00
a567b0b7d9
Only do expensive GetName() calls if we're actually logging. Bug 304847,
...
r=kaie, sr=dmose
2005-09-19 03:23:21 +00:00
e7338f0a91
Bug 284636 Fix typo in Website Certified by an Unknown Authority alert
...
Patch by stephend and Kurt <supernova_00@yahoo.com> r=kaie sr=bzbarsky
2005-09-19 00:05:02 +00:00
ad39a7ded6
Bugzilla bug 303508: a more elegant way to decide when we need to prefix
...
LIBRARY_VERSION with '_'. r=nelsonb.
2005-09-16 23:18:01 +00:00
c9cc74edbc
Fix hoarked build from previous checkin. Doh.
2005-09-16 21:28:20 +00:00
976c2df41a
Bugzilla Bug 298517: when in FIPS mode, impose minimum password length and
...
quality to ensure a password guessing probability of less than 1 in
10,000,000, and impose a one second delay after failed login attempt to
allow at most 60 login attempts per minute. r=relyea,nelsonb.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
2005-09-16 20:37:58 +00:00
34f69db6a3
Fix for bug 127960 . Add SSL force handshake APIs which take a timeout . r=nelson
2005-09-16 20:33:09 +00:00
3d76d4e597
Fix bug 307293: make sure we initialize the mType and mTag members of nsNSSASN1Object. r=wtchang, sr=rrelyea.
2005-09-16 18:57:55 +00:00
3e13aeb576
Bugzilla Bug 288728: handle invalid values of recipient identifier type.
...
r=jpierre,relyea.
2005-09-16 17:54:31 +00:00
fce7dd3516
Bugzilla Bug 288728: use a whitelist instead of a blacklist when checking
...
for invalid values of "type". r=jpierre,relyea.
2005-09-16 17:52:37 +00:00
c1d23a672f
Bugzilla Bug 303508: removed the underscore from the name of the "single"
...
freebl shared library (freebl_3.dll -> freebl3.dll). Do the recursive
child builds without changing directories. This fixed the BUILD_TREE build
problem. r=nelsonb,saul.edwards.
Modified files: Makefile freebl.def manifest.mn
2005-09-16 17:17:45 +00:00
ef4eb9a0e4
Bugzilla Bug 303508: enhanced the makefile rule for $(MAPFILE). Added
...
the new variable MAPFILE_SOURCE instead of the hardcoded
$(LIBRARY_NAME).def to represent the "source" mapfile, and use $< to
refer to the "source" mapfile (prerequisite of the target) in
PROCESS_MAP_FILE. r=nelsonb.
Modified Files:
AIX.mk BSD_OS.mk Darwin.mk FreeBSD.mk HP-UX.mk IRIX.mk
Linux.mk Linux2.1.mk Linux2.2.mk Linux2.4.mk Linux2.5.mk
Linux2.6.mk NCR3.0.mk NEC4.2.mk NetBSD.mk OS2.mk OSF1.mk
OpenUNIX.mk OpenVMS.mk ReliantUNIX.mk SCO_SV3.2.mk SunOS5.mk
UNIXWARE2.1.mk WIN16.mk WIN32.mk WINCE.mk rules.mk ruleset.mk
2005-09-16 17:09:23 +00:00
b11dc01e94
Removed an unnecessary -L linker flag. r=nelsonb,saul.edwards.
2005-09-16 17:02:49 +00:00
267dd6e80f
Bugzilla Bug 303508: code cleanup. r=nelsonb,jpierre.
2005-09-16 16:59:22 +00:00
4bb21db05f
Modified import.pl, jdk.mk and release.pl under coreconf and all.pl under
...
jss test directory for bug #302550 . Attached below is the diff of the
changes done to these files.
Index: coreconf/import.pl
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/import.pl,v
retrieving revision 1.2
diff -u -r1.2 import.pl
--- coreconf/import.pl 25 Apr 2004 15:02:17 -0000 1.2
+++ coreconf/import.pl 15 Sep 2005 18:37:51 -0000
@@ -46,7 +46,6 @@
#######-- read in variables on command line into %var
-$var{ZIP} = "zip";
$var{UNZIP} = "unzip -o";
&parse_argv;
Index: coreconf/jdk.mk
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/jdk.mk,v
retrieving revision 1.14
diff -u -r1.14 jdk.mk
--- coreconf/jdk.mk 25 Apr 2004 15:02:17 -0000 1.14
+++ coreconf/jdk.mk 15 Sep 2005 18:37:52 -0000
@@ -123,14 +123,14 @@
# set [Sun Solaris] platforms
ifeq ($(OS_ARCH), SunOS)
- JAVA_CLASSES = $(JAVA_HOME)/lib/classes.zip
+ JAVA_CLASSES = $(JAVA_HOME)/jre/lib/rt.jar
ifeq ($(JRE_HOME),)
JRE_HOME = $(JAVA_HOME)
JRE_CLASSES = $(JAVA_CLASSES)
else
ifeq ($(JRE_CLASSES),)
- JRE_CLASSES = $(JRE_HOME)/lib/classes.zip
+ JRE_CLASSES = $(JRE_HOME)/lib/rt.jar
endif
endif
@@ -144,9 +144,13 @@
# (3) specify "linker" information
ifeq ($(USE_64), 1)
- JAVA_CPU = $(shell uname -p)v9
+ ifeq ($(CPU_ARCH), x86_64)
+ JAVA_CPU = amd64
+ else
+ JAVA_CPU := $(shell uname -p)v9
+ endif
else
- JAVA_CPU = $(shell uname -p)
+ JAVA_CPU := $(shell uname -p)
endif
ifeq ($(JDK_VERSION), 1.1)
@@ -163,8 +167,6 @@
ifneq ($(JDK_VERSION), 1.1)
ifeq ($(USE_64), 1)
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server
-else
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/classic
endif
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)
JAVA_LIBS += -ljvm -ljava
@@ -220,14 +222,14 @@
# set [Redhat Linux] platforms
ifeq ($(OS_ARCH), Linux)
- JAVA_CLASSES = $(JAVA_HOME)/lib/classes.zip
+ JAVA_CLASSES = $(JAVA_HOME)/jre/lib/rt.jar
ifeq ($(JRE_HOME),)
JRE_HOME = $(JAVA_HOME)
JRE_CLASSES = $(JAVA_CLASSES)
else
ifeq ($(JRE_CLASSES),)
- JRE_CLASSES = $(JRE_HOME)/lib/classes.zip
+ JRE_CLASSES = $(JRE_HOME)/jre/lib/rt.jar
endif
endif
@@ -241,16 +243,21 @@
# (3) specify "linker" information
JAVA_CPU = i386
-
+ ifeq ($(CPU_ARCH),x86_64)
+ ifeq ($(USE_64), 1)
+ JAVA_CPU = amd64
+ else
+ JAVA_CPU = i386
+ endif
+ endif
JAVA_LIBDIR = jre/lib/$(JAVA_CPU)
JAVA_CLIBS =
ifeq ($(JDK_VERSION), 1.4)
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server -ljvm
- else
- JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/classic -ljvm
+ JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR)/server -ljvm
endif
+
JAVA_LIBS += -L$(JAVA_HOME)/$(JAVA_LIBDIR) -ljava
JAVA_LIBS += $(JAVA_CLIBS)
Index: coreconf/release.pl
===================================================================
RCS file: /cvsroot/mozilla/security/coreconf/release.pl,v
retrieving revision 1.3
diff -u -r1.3 release.pl
--- coreconf/release.pl 25 Apr 2004 15:02:17 -0000 1.3
+++ coreconf/release.pl 15 Sep 2005 18:37:52 -0000
@@ -41,7 +41,14 @@
#######-- read in variables on command line into %var
-$var{ZIP} = "zip";
+$use_jar = 1;
+$ZIP = "$ENV{JAVA_HOME}/bin/jar";
+
+if ( $ENV{JAVA_HOME} eq "" ) {
+ $ZIP = "zip";
+ $use_jar = 0;
+}
+
&parse_argv;
@@ -56,11 +63,15 @@
($jardir,$jaropts) = split(/\|/,$jarinfo);
- $zipoptions = "-T";
- if ($jaropts =~ /a/) {
- if ($var{OS_ARCH} eq 'WINNT') {
- $zipoptions .= ' -ll';
- }
+ if ( $use_jar ) {
+ $zipoptions = "-cvf";
+ } else {
+ $zipoptions = "-T -r";
+ if ($jaropts =~ /a/) {
+ if ($var{OS_ARCH} eq 'WINNT') {
+ $zipoptions .= ' -ll';
+ }
+ }
}
# just in case the directory ends in a /, remove it
@@ -117,8 +128,8 @@
}
closedir(DIR);
- print STDERR "zip $zipoptions -r $jarfile $filelist\n";
- system("zip $zipoptions -r $jarfile $filelist");
+ print STDERR "$ZIP $zipoptions $jarfile $filelist\n";
+ system("$ZIP $zipoptions $jarfile $filelist");
rmdir("META-INF");
for $i (1 .. $dirdepth) {
chdir("..");
Index: jss/org/mozilla/jss/tests/all.pl
===================================================================
RCS file: /cvsroot/mozilla/security/jss/org/mozilla/jss/tests/all.pl,v
retrieving revision 1.22
diff -u -r1.22 all.pl
--- jss/org/mozilla/jss/tests/all.pl 6 Sep 2005 17:57:40 -0000 1.22
+++ jss/org/mozilla/jss/tests/all.pl 15 Sep 2005 18:37:54 -0000
@@ -136,12 +136,26 @@
exit(1);
}
+ #
+ # Use 64-bit Java on AMD64.
+ #
+
$java = "$ENV{JAVA_HOME}/jre/bin/java$exe_suffix";
+ my $java_64bit = 0;
+ if ($osname eq "SunOS") {
+ if ($ENV{USE_64}) {
+ my $cpu = `/usr/bin/isainfo -n`;
+ if ($cpu == "amd64") {
+ $java = "$ENV{JAVA_HOME}/jre/bin/amd64/java$exe_suffix";
+ $java_64bit = 1;
+ }
+ }
+ }
(-f $java) or die "'$java' does not exist\n";
$java = $java . $ENV{NATIVE_FLAG};
- if ($ENV{USE_64}) {
- $java = $java . " -d64";
+ if ($ENV{USE_64} && !$java_64bit) {
+ $java = $java . " -d64";
}
$pwfile = "passwords";
2005-09-16 00:33:23 +00:00
05c807a27d
Plug leaks in SSL bypass code. Add freeit argument to HMAC_Destroy function.
...
Change existing callers to pass this argument. Call HMAC_Destroy from SSL.
Bug 305147. r=Julien.Pierre
Modified Files: freebl/alghmac.c freebl/alghmac.h freebl/loader.c
freebl/loader.h freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
ssl/ssl3con.c
2005-09-14 04:12:50 +00:00
bb2b9eb520
Bugzilla Bug 301554: Clear the 'present' flag if slot fails to refresh.
...
relyea wrote the patch. r=wtc,nelsonb.
2005-09-14 01:35:02 +00:00
9d5fbfdeae
bug 292368 remove obsolete file; replaced by nsICryptoHash
2005-09-12 17:51:57 +00:00
945c39235d
Fix regression introduced in last checkin. If the caller disables the
...
use of locks while locks are in use, don't forget to unlock the locks
already locked on the stack. bug 305147. r=julien.pierre
2005-09-10 01:18:40 +00:00
d9d3cf6f93
Bug 305147: add -B (bypass SSL) and -s (disable SSL locking) to server and client commands; add bypass testing to SSL test suite.
2005-09-09 04:50:07 +00:00
ef28ad5885
Implement two new SSL socket options: SSL_BYPASS_PKCS11 and SSL_NO_LOCKS.
...
Reorganize the SSL Socket structure contents to obviate ssl3 pointer.
Move much of the ECC code from ssl3con to new file ssl3ecc.c. derive.c
implements derivation of the SSL/TLS master secret and the encryption and
MAC keys and IVs without using PKCS11. Bug 305147. r=rrelyea.
Modified Files: ssl/config.mk ssl/manifest.mn ssl/ssl.h ssl/ssl3con.c
ssl/ssl3gthr.c ssl/sslauth.c ssl/sslcon.c ssl/ssldef.c ssl/sslgathr.c
ssl/sslimpl.h ssl/sslinfo.c ssl/sslnonce.c ssl/sslsecur.c ssl/sslsnce.c
ssl/sslsock.c
Added Files: ssl/derive.c ssl/ssl3ecc.c
2005-09-09 03:02:16 +00:00
5a95eff411
Export function PK11_MapSignKeyType for use by libSSL. Bug 305147.
...
r=relyea.
Modified Files: nss/nss.def pk11wrap/pk11mech.c pk11wrap/pk11obj.c
pk11wrap/pk11pub.h pk11wrap/secmodi.h
2005-09-09 02:03:57 +00:00
982861b69c
238319: Sun packages changes.
...
Install 64 bit libraries in lib64 on Linux.
2005-09-08 22:23:54 +00:00
bfb9fa2c94
Packaging for bug 303508: new freebl library names for Solaris packages.
...
Note that Linux does not require these changes because the Makefile picks up
all .so and .chk files for Linux packages.
2005-09-08 02:25:49 +00:00
a7841eb094
Bugzilla Bug 299197: define two bitflags for every PKCS #11 object
...
attribute with no exceptions. renamed PK11_ATTR_READONLY as
PK11_ATTR_UNMODIFIABLE. In pk11_OpFlagsToAttributes, backed out a change
I made before. Made pk11_AttrFlagsToAttributes table-driven. In
pk11_loadPrivKeyWithFlags, fixed the bug (always loading the public key as
a token object). Other code cleanups. r=relyea,nelsonb.
Modified files: pk11akey.c pk11obj.c pk11pub.h pk11skey.c secmodt.h
2005-09-07 18:23:35 +00:00
046c62d43f
Bug 303508: Add freebl shared libs that do 64-bit integer math. Bug 274984: softoken fails to load freebl in setuid programs. freebl becomes a shared library on all platforms. r=nelson
...
Modified Files:
coreconf/HP-UXB.11.mk coreconf/SunOS5.mk
nss/cmd/shlibsign/Makefile nss/cmd/shlibsign/manifest.mn
nss/lib/freebl/Makefile nss/lib/freebl/arcfour.c
nss/lib/freebl/blapi.h nss/lib/freebl/config.mk
nss/lib/freebl/ldvector.c nss/lib/freebl/loader.c
nss/lib/freebl/loader.h nss/lib/freebl/manifest.mn
Added Files:
nss/lib/freebl/freebl.def
2005-09-07 02:47:16 +00:00
903845deae
306114 enable/disable FIPS modes files: CryptoManager.c, tests/all.pl, tests/FipsTest.java r=sandeep,sr=wtc
2005-09-06 17:57:40 +00:00
8e83cd4a27
305984 update FIPS values for cipher suites file=sslinfo.c r=bob,sr=wtc
2005-09-06 17:15:32 +00:00
555d7f8815
Fix bug 306795: nsNSSCertificateDB::IsCertTrusted() fails to check the return value from CERT_GetCertTrust(), so can return random trust bits. r=dougt, sr=rrelyea
2005-09-04 19:05:01 +00:00
5c5544016c
Added Password.clear() and PBEKeyGenParams.clear() so that the objects are
...
released when GC tries to collect them.
2005-09-02 22:48:46 +00:00
57109efa29
Adding JSS SelfServ test client and server.
2005-09-02 20:58:08 +00:00
5b4d5638cf
Fix 306785 . Memory leaks in PQG_ParamGenSeedLen . r=nelson
2005-09-02 20:05:35 +00:00
a7eca3e9fd
Bugzilla Bug 299197: added PK11AttrFlags and PK11_GenerateKeyPairWithFlags.
...
Modified PK11_TokenKeyGenWithFlags to take a PK11AttrFlags parameter.
PK11AttrFlags controls the values of commonly used PKCS #11 object
attributes that have Boolean values. r=relyea,nelsonb.
Modified Files:
nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11obj.c
pk11wrap/pk11pub.h pk11wrap/pk11skey.c pk11wrap/secmodi.h
pk11wrap/secmodt.h
2005-09-02 18:25:04 +00:00
cba3b38bf8
Bugzilla Bug 305835: removed NSS_ENABLE_ECC ifdefs under nss/lib except
...
nss/lib/{freebl,softoken,ssl}. r=nelsonb.
Modified Files:
cryptohi/keyhi.h cryptohi/manifest.mn cryptohi/seckey.c
cryptohi/secsign.c freebl/ec.c pk11wrap/manifest.mn
pk11wrap/pk11akey.c pk11wrap/pk11cert.c pk11wrap/pk11mech.c
pk11wrap/pk11obj.c pk11wrap/pk11skey.c pkcs12/manifest.mn
pkcs12/p12d.c pkcs7/config.mk pkcs7/p7decode.c
pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
smime/config.mk
2005-09-02 01:24:57 +00:00
51ef3c3c86
Bugzilla Bug 303507: changed GCC's default OPTIMIZER back to -O2.
...
r=saul.edwards.
2005-09-02 00:59:00 +00:00
cd99a16d73
Bug 306615 - Fold PSM into libxul r=darin
2005-09-01 12:43:58 +00:00
31be7b72ae
Bugzilla Bug 257693: code cleanup. 1. Change "X9.63" to "X9.62". 2. In
...
EC_ValidatePublicKey, set error codes and handle a NULL return from
ECGroup_fromName. 3. In the ECGroupStr structure, move the validate_point
field up. 4. In the test cases, if the tests that should fail, passed,
say so in the error messages. r=douglas@stebila.ca .
Modified Files:
blapi.h ec.c ecl/ecl-priv.h ecl/ecl.c ecl/ecl.h
ecl/tests/ec2_test.c ecl/tests/ecp_test.c
2005-08-27 01:09:22 +00:00
70a6278752
Bug 263182: Page Info (Security tab) doesn't explain mixed secure/insecure, r=kaie.bugs, sr=neil.parkwaycc.co.uk
2005-08-26 20:34:31 +00:00
32258b61c3
Bug 302284. add xpi hash support to InstallTrigger.install(). r=dveditz, sr=shaver, a=asa
2005-08-26 06:46:21 +00:00
2ffa7acc60
Fix for 297802 . r=wtchang . Add $(OS_LIBS) to MKSHLIB rules.
...
Add -z defs linker option for Solaris and Linux .
Also add -z ignore on Solaris .
2005-08-26 02:17:05 +00:00
94441eaca9
Bugzilla bug 302212: backed out the previous checkin. The corresponding
...
Mozilla patch hasn't been checked in yet.
2005-08-25 23:23:40 +00:00
2ce7b3583b
Bug 302416 NSS root cert module & fortezza should not be using NSPR static libraries
...
r=wtc
sr-julien
Side effects: Root cert module now works with CKF_OS_LOCKING_OK and not callbacks,
but does not work if CKF_OS_LOCKING_OK == 0 and callbacks are define.
2005-08-25 20:08:27 +00:00
ca3db23c1b
Addendum to 303507 - set default OPTIMIZER for Linux and Solaris gcc builds
...
to -O3, consolidate flags to Linux.mk.
2005-08-24 23:58:36 +00:00
e779630b1d
Uprev JSS version to 4.1.1 Beta.
2005-08-24 23:39:12 +00:00
82ecd8b212
Bugzilla Bug 296410: further simplify the code by always referencing the
...
buffer using the same union member. r=relyea.
VFYContextCVS: ----------------------------------------------------------------------
2005-08-24 23:05:39 +00:00
fcf4d7234a
Bugzilla bug 302670: backed out the use of system zlib because some Linux
...
distributions are using zlib 1.1.4, which causes our signtool tests to
fail intermittently. Don't know why.
2005-08-20 01:05:44 +00:00
8fc7f718f2
add optional support for mit kerberos for windows, patches by cneberg@gmail.com, r=darin, sr=bienvenu 280792
2005-08-19 14:25:22 +00:00
128802ea92
Fix AIX build problem
2005-08-18 23:37:31 +00:00
e06cb45930
Bugzilla Bug 266123: support 64-bit PowerPC builds for Linux distributions
...
(such as Red Hat and Fedora) whose GCC generates 32-bit code by default.
r=cls.
2005-08-18 17:48:26 +00:00
dcf936ec0b
Remove fortezza header files from package. Bug 239960. patch by
...
wtchang@redhat.com , r=nelson@bolyard.com Modified Files: prototype
2005-08-18 03:42:00 +00:00
f4a87f8d99
bug 277587 nsSecureBrowserUIImpl's nsUIContext interface requestor doesn't give
...
access to the dom window
patch by Christian Persch <chpe@gnome.org> r=jgmyers sr=roc a=asa
2005-08-17 13:38:03 +00:00
80d221a4a4
Fix for bug 217024. add a function for comparing cert validity periods. r=wtchang
2005-08-17 02:04:12 +00:00
699f97c20b
Bug Id: 304195
...
Added try/catch block around the method calls within toString(). Calls
such as getInetAddress(), getPort() etc does not check if the socket is
closed, and when applications use toString() on a closed socket, there
is an uncaught exception.
2005-08-16 23:44:45 +00:00
c146e4b366
Bug 303507: Add comba for MPI's multiply and square routines.
...
This code is currently for AMD 64 on both Linux and Solaris only.
2005-08-16 19:25:48 +00:00
28f26c51fa
Remove fortezza code from libSSL and from the SSL test programs.
...
Stop building fortezza's special software token, and fortezza specific
test programs. Bug 239960. r=rrelyea.
Modified Files:
cmd/manifest.mn cmd/platlibs.mk cmd/SSLsample/server.c
cmd/SSLsample/sslsample.c cmd/modutil/modutil.c
cmd/selfserv/selfserv.c cmd/sslstrength/sslstrength.c
cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
cmd/vfyserv/vfyserv.c cmd/vfyserv/vfyutil.c lib/manifest.mn
lib/ssl/nsskea.c lib/ssl/preenc.h lib/ssl/prelib.c
lib/ssl/ssl.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslauth.c lib/ssl/sslcon.c lib/ssl/sslenum.c
lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
lib/ssl/sslsecur.c lib/ssl/sslsnce.c lib/ssl/sslsock.c
lib/ssl/sslt.h
2005-08-16 03:42:26 +00:00
77d848c1f9
Bugzilla bug 296410: checked in a better fix than the previous checkin.
...
Also removed the unused, unexported function SEC_VerifyFile. r=nelsonb.
2005-08-16 01:57:51 +00:00
c4ab59c71b
Bugzilla bug 296410: removed unused, unexported function SEC_SignFile.
...
r=nelsonb.
2005-08-16 01:52:17 +00:00
972d589547
Bugzilla Bug 302670: enable NSS to use system zlib and do that on Linux.
...
r=nelsonb.
Modified Files:
coreconf/Linux.mk nss/cmd/Makefile nss/cmd/manifest.mn
nss/cmd/platlibs.mk
2005-08-16 01:08:59 +00:00
cf5e252283
Bugzilla Bug 302212: enable Mac OS X x86 builds to target SDKs. The patch
...
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
2005-08-15 22:44:22 +00:00
5b13de7790
Bugzilla Bug 298612: make sure that the int argument that we pass to the
...
isspace, etc. macros is EOF or between 0 and 255. r=nelsonb.
2005-08-15 22:06:47 +00:00
8121b310d2
Bugzilla Bug 298957: removed a comment. The code already does what the
...
comment asked for. r=relyea.
2005-08-15 21:34:42 +00:00
c27b32ee74
Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit]
...
sr=brendan r=wtc a=dbaron
The issue is the use of the PL_DHash* functions. It's possible that a given call
to PL_DHashOperate which adds a new entry may cause the hash table to expand,
and all the existing entries to be reallocated. PL_DHash does this by allocating
new memory, then copying the entries.
getCacheEntry() returns one of these hash entries. CmpBy() makes two consecutive
calls to getCacheEntry, then uses the returned entries for it's comparisons. If
the second entry call causes a new entry to be added to the table, and causes
the hash table to expand, the pointer to the first entry we retrieved will point
to freed memory.
The fix is to make the usable entry a pointer in the hashtable entry, and return
that pointer. When the hashtable rebuilds it's entries, the pointer will be
copied to the new entry and not be disturbed.
2005-08-15 21:23:51 +00:00
9e61c55322
Bugzilla Bug 289530: fixed signed/unsigned comparison compiler warnings.
...
Fixed compilation errors of new ECC code added in the previous checkin.
r=nelsonb.
2005-08-15 21:23:39 +00:00
e2c8a46f5d
Remove ^M from the tree version of mpcpucache.c
2005-08-15 19:00:17 +00:00
25b554bf61
Bug 285932: Faster SHA1 implementation for AMD64: sha-fast-amd64-sun.s is
...
currently only for Solaris AMD 64 when using Sun studio compilers.
2005-08-15 16:55:22 +00:00
621c5a33b9
Bugzilla bug 302286: fixed the bug that NSS misinterpreted the
...
CKA_PRIME_BITS attribute for DSA's p parameter. r=relyea.
Modified files: pk11wrap/pk11pqg.c softoken/pkcs11c.c
2005-08-13 00:09:26 +00:00
969627a498
Bugzilla Bug 302286: PQG_PBITS_TO_INDEX should reject p bits that are
...
less than 512 or greater than 1024. r=relyea.
2005-08-13 00:07:18 +00:00
5188670e0f
Bugzilla Bug 296410: enlarge the buffer size for message digest so that
...
we can generate and verify signatures that use SHA-512. r=relyea
Modified files: secsign.c secvfy.c
2005-08-12 23:50:19 +00:00
4076a88c87
Bugzilla bug 240554: Alice's cert doesn't need to be added to Bob's db.
...
r=relyea.
Modified files: cert.sh eccert.sh
2005-08-12 23:27:44 +00:00
b5353837ab
Bugzilla bug 240554: we should pass the signature algorithm, not the
...
public key's algorithm, to VFY_VerifyData and VFY_VerifyDigest. Only
fixed this in cmssiginfo.c. In p7decode.c I just added comments saying
they should be fixed. r=relyea.
Modified files: lib/smime/cmssiginfo.c lib/pkcs7/p7decode.c
2005-08-12 23:26:38 +00:00
ca392c90f5
Bugzilla bug 240554: set (better) error codes and removed an unreachable
...
break statement. r=relyea.
2005-08-12 23:24:22 +00:00
bbe1282737
Bugzilla bug 240554: fixed signed/unsigned comparison compiler warning.
...
r=relyea.
2005-08-12 23:22:28 +00:00
a6a7905900
Bugzilla bug 292239: have the softoken report Cryptoki version 2.20.
...
r=relyea.
2005-08-12 23:14:22 +00:00
e24f7e1094
Bugzilla bug 292239: added a change missed in the previous checkin.
...
r=relyea.
2005-08-12 23:12:18 +00:00
49a89c3069
Correct mistyped version of wtc patch.
2005-08-12 22:19:19 +00:00
55b4144f9d
Bug 292239 r wtc & julien
...
Merge PKCS #11 v2.20 header files
2005-08-12 18:58:47 +00:00
c6c36cd39d
As per Wan-Teh's suggestion, the comments are modified to look as shown below.
...
#/********************************************************************/
#/* The VERSION Strings should be updated in the following */
#/* files everytime a new release of JSS is generated: */
#/* */
#/* org/mozilla/jss/CryptoManager.java */
#/* org/mozilla/jss/CryptoManager.c */
#/* org/mozilla/jss/util/jssver.h */
#/* lib/manifest.mn */
#/* */
#/********************************************************************/
2005-08-12 18:39:14 +00:00
45c3d02536
Bug 303010 Certificate upgrade can drop S/MIME certificates
...
r=wtc.
Delay loading the S/MIME records on upgrade until the cert is loaded
2005-08-12 18:01:26 +00:00
0d8b79a0bf
Followup changes to bzabarsky's review for bug 296639. Reviews pending, a=drivers@mozilla.org
2005-08-12 04:11:00 +00:00
67aea017d2
Bugzilla Bug 257693: actually implemented EC_ValidatePublicKey and added a
...
test case. The patch is contributed by Douglas Stebila
<douglas@stebila.ca>. r=wtc.
Modified Files:
ec.c ecl/ec2.h ecl/ec2_aff.c ecl/ecl-priv.h ecl/ecl.c
ecl/ecl.h ecl/ecp.h ecl/ecp_aff.c ecl/tests/ec2_test.c
ecl/tests/ecp_test.c
2005-08-12 00:59:19 +00:00
786c40bad2
Bugzilla Bug 298514: added a missing break statement and removed an unused
...
variable. r=jpierre.
2005-08-12 00:44:35 +00:00
127b305341
Bugzilla Bug 240554: added ECDSA support in S/MIME. The patch is
...
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified Files:
cryptohi/secsign.c pkcs7/config.mk pkcs7/p7decode.c
pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
smime/config.mk
2005-08-11 23:11:40 +00:00
7d8e8ba46d
Bugzilla Bug 240554: added S/MIME tests for ECDSA. The patch is
...
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified files: fixtests.sh cert/eccert.sh
Added file: smime/ecsmime.sh
2005-08-11 22:50:12 +00:00
8068688212
Older release of JSS had an issue with gradually slowing socket read time when
...
transfering large files (> 10MB). In order to test this in current and future
release, there needs to be a test client that can read a file and transfer it to
a server (remote or local) via JSS socket. The server should report the number
of bytes read and the time it took to read these bytes. There should not no
degradation in read time if there is no leak of any sort.
This is not part of all.pl, but is a client/server that uses JSS to transfer
files securely. The main purpose of this test would be to test the performance
of large file transfer using JSS.
NOTE: If bufferedStream.mark(Integer.MAX_VALUE); method is invoked then fill
method of BufferedInputStream class copies lot of data using System.arraycopy
(which in-turn use memcpy). This causes very high CPU usage. This is one of
the reasons secure large file transfer can become slow over time.
2005-08-11 18:28:59 +00:00
22fdd8ffba
A faster c implementation of SHA1 for most platforms. Bug 285932.
...
r=wtchang Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-11 01:01:08 +00:00
b4f3839481
Bugzilla Bug 303116: fixed an off-by-one error in the size of the NAF
...
buffer. We access this buffer using indices from 0 to orderBitSize.
r=douglas.stebila.
2005-08-10 20:35:07 +00:00
82d8abed91
Bugzilla Bug 303116: fixed an off-by-one error when duplicating a string.
...
r=douglas.stebila.
2005-08-10 18:49:29 +00:00
11f925a103
Bugzilla Bug 303116: this file doesn't need to include <strings.h>, which
...
doesn't exist on Windows. r=relyea.
Bugzilla Bug 303130: fixed memory leak of mp_int in ECPoints_mul.
r=douglas.stebila.
2005-08-10 18:46:29 +00:00
bd99a181d7
Bugzilla Bug 266123: added ppc64 support. The patch is contributed by
...
Markus Rothe <markus@unixforces.net>. r=wtc.
2005-08-09 22:31:24 +00:00
bffb758135
Bugzilla bug 303986: do not assume the line ending is '\n'; it may be the
...
two character sequence '\r''\n'. Make sure a character is a digit before
using it as a digit. r=jpierre.
2005-08-09 22:19:09 +00:00
76a434d784
Address review comments. Add test after PORT_Assert. Bug 303334.
...
r=rrelyea,sr=wtchang
Modified Files: rijndael.c
2005-08-09 03:09:38 +00:00
3cd784dac3
Make changes from review feedback. Bug 303316. r=wtchang.
...
Modified Files: freebl/alghmac.h freebl/blapi.h freebl/ldvector.c
freebl/loader.c freebl/loader.h freebl/rawhash.c
freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
2005-08-09 02:54:54 +00:00
2ad11ed9ab
297057 fix case of doOK()
...
patch by Frank Wein <bugzilla@mcsmurf.de> r=kaie sr=neil a=bsmedberg
2005-08-06 21:34:04 +00:00
e72b820468
Add a new assembly language source file with multiplication code for
...
Sparc v8 (not V8plus) CPUs. This works around a performance regression
by restoring the former code. Bug 303338. r=wtchang.
Modified Files: Makefile
Added Files: mpi/mpv_sparcv8x.s
2005-08-06 11:08:41 +00:00
6ec4ef560a
Add a comment clarifying that this source file is for sparc v8plus CPUs.
...
Upgrade license to tri-license. Fix a bunch of whitespace problems,
WAY too much indentation. Related to bug 303338. r=wtchang.
Modified Files: mpi/mpv_sparcv8.s
2005-08-06 11:06:55 +00:00
0b22829278
Move the TLS Pseudo Random Function (PRF) and the HMAC algorithm from
...
softoken to freebl. Bug 303316. r=wtchang (with suggested changes)
Modified Files:
freebl/blapi.h freebl/ldvector.c freebl/loader.c
freebl/loader.h freebl/manifest.mn softoken/lowpbe.c
softoken/manifest.mn softoken/pkcs11c.c softoken/pkcs11i.h
softoken/tlsprf.c
Added Files:
freebl/alghmac.c freebl/alghmac.h freebl/rawhash.c
freebl/tlsprfalg.c
Removed Files:
softoken/alghmac.c softoken/alghmac.h softoken/rawhash.c
2005-08-06 09:27:28 +00:00
af23fd0e10
This is the last trunk version of this file. The file will be moved
...
to nss/lib/freebl. This version is identical to the first version
of this file in nss/lib/freebl. Bug 303316. r=wtchang.
Modified Files: alghmac.c alghmac.h rawhash.c
2005-08-06 09:24:13 +00:00
712ac6c118
Add new functions for blapi symmetric ciphers and digest functions,
...
so that all those functions can initialize a preallocated context.
Bug 303334. r=rrelyea.
Modified Files: aeskeywrap.c alg2268.c arcfour.c blapi.h blapit.h desblapi.c
ldvector.c loader.c loader.h md2.c md5.c rijndael.c rijndael.h sha512.c
2005-08-06 07:24:21 +00:00
a7df55323e
Faster SHA1 implementation. Further corrections expected. bug 285932.
...
r=wtchang Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-06 07:10:34 +00:00
0470958574
Fix for bug 303494 . SEC_LookupCrls passes the address of a stack variable that goes out of scope. r=nelson,wtchang
2005-08-05 21:15:22 +00:00
42b62af1e4
Removed noeccert.sh and noectools.sh from CVS. These two files are
...
automatically created by the fixtests.sh script by copying the non-ECC
(default) test scripts to these names. r=vipul.gupta.
Removed Files: cert/noeccert.sh tools/noectools.sh
2005-08-04 16:27:07 +00:00
ff2c18ee11
Minimo only. Backing out 300373.
2005-08-03 05:24:18 +00:00
aa3332449b
NSC_CopyObject can now copy token keys to session keys. Bug 289530.
...
r=rrelyea. Modified Files: pkcs11.c pkcs11u.c
2005-08-03 02:26:55 +00:00
adccce135e
Implement PK11_CopyTokenPrivKeyToSessionPrivKey, function to copy token
...
RSA private key to a session key, to eliminate DB lookups and 3DES
unwrapping for every use. Bug 274538. r=rrelyea.
Modified Files: nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11pub.h
2005-08-03 01:57:40 +00:00
13863082f7
Eliminate numerous potential causes of sending invalid (zero) session
...
handles down to a PKCS11 module. Bug 292049. r=relyea.
Modified Files: pk11akey.c pk11auth.c pk11obj.c pk11skey.c pk11slot.c
pk11util.c
2005-08-03 01:22:07 +00:00
b0838b2892
Bug 283569 OOM crash [@ nsNSS_SSLGetClientAuthData]
...
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-08-02 14:22:50 +00:00
6960719ce2
remove NSS_CLASSIC code from pk11cert.c and pk11nobj.c.
...
bug 293847 r=rrelyea
2005-08-02 01:34:38 +00:00
b7037acd16
Bugzilla Bug 298957: PK11_TokenKeyGenWithFlags will be released in NSS
...
3.10.2.
2005-08-02 01:04:55 +00:00
f7f6bb0747
Bugzilla Bug 298957: improved the comment for PK11_TokenKeyGenWithFlags.
...
r=relyea.
2005-08-02 01:03:08 +00:00
952622d9e8
Bugzilla Bug 302663: SECKEY_CopySubjectPublicKeyInfo needs to copy the
...
subjectPublicKeyInfo as a bit string. r=nelsonb,jpierre. Thanks to
Mikhail Teterin <mi+mozilla@aldan.algebra.com> for the bug report and
Purify output.
2005-08-02 00:34:00 +00:00
julien.pierre.bugs%sun.com
glen.beasley%sun.com
kaie%kuix.de
sandeep.konchady%sun.com
bsmedberg%covad.net
wtchang%redhat.com
neil%parkwaycc.co.uk
cvshook%sicking.cc
darin%meer.net
neil.williams%sun.com
relyea%netscape.com
bugzilla%arlen.demon.co.uk
christophe.ravel.bugs%sun.com
smontagu%smontagu.org
nelsonb%netscape.com
db48x%yahoo.com
bzbarsky%mit.edu
cst%andrew.cmu.edu
smfr%smfr.org
cbiesinger%web.de
saul.edwards%sun.com
gavin%gavinsharp.com
dougt%meer.net
bienvenu%nventure.com
jst%mozilla.jstenback.com
timeless%mozdev.org