601c015e0a
331515: selfserv Bus error on 3DES ciphersuites; r=julien, sr=nelson
2006-03-29 07:23:40 +00:00
ed974bdaa4
Remove comment in ssl.sh that messes execution. Part of fix for bug 331413.
2006-03-29 06:54:56 +00:00
2718276062
Fix for bug 330068 . Increment counter variable atomically. Be more verbose. r=nelson
2006-03-29 05:05:09 +00:00
3666e85fea
Partial fix for bug 331413 . Allow selfserv to be tested for reference leaks. r=nelson
2006-03-29 05:03:10 +00:00
e69d6ac070
Bug 301249 - Checkout and build mozilla/dbm as part of NSS instead of the mozilla client, and pull NSS by the release tag instead of by the NSS_CLIENT_TAG which is now deprecated! r=dougt (+nelsonb)
2006-03-27 16:21:55 +00:00
8133edd3dc
318970 wtc fix for RSA fipstest using RSA_HashSign r=neilW sr= brelyea
2006-03-25 23:45:23 +00:00
e0e96b99fd
Bug 321350 Implement optimized code for NIST Suite B elliptic curves
...
r=douglas r=vipul
2006-03-24 22:55:51 +00:00
84418c784c
Backout changes for bug 321350
...
Implement optimized code for NIST Suite B elliptic curves
Those changes broke the build on Solaris. r=Sheriff Nelson
2006-03-24 09:08:24 +00:00
d62ddfa0b3
Check argc. b=330900 r=kengert sr=jst
2006-03-24 06:51:24 +00:00
22f4437ae4
321350 Implement optimized code for NIST Suite B elliptic curves
...
r=douglas.
2006-03-23 19:55:37 +00:00
6b0609fb19
bugzilla #331369 - avoid calling fromRaw which calls into a non-ECC compliant NSS function
2006-03-22 21:53:52 +00:00
f368fa9bc8
Bug 238051 Enable SSL session reuse for ECC cipher suites
...
r=nelson r=thomas.
patch in bug + white space changes suggested by nelson.
2006-03-22 19:18:30 +00:00
5cdb03b3a0
Updated previous patch with douglas's input. (still bug 323817
...
Truncation of hashes for ECDSA should be done at bit level, not octet level).
r= vipul r=douglas
2006-03-22 19:02:06 +00:00
6517b91848
Fix indexing botch. Patch from Mikolaj J. Habryn <dichro-mozilla@rcpt.to>. r=kengert sr=dbaron b=330897
2006-03-22 07:40:40 +00:00
4f7109ca35
Bug 273637 3 locks in softoken have unsafe initialization
...
r=alexi r=julien
2006-03-21 19:36:53 +00:00
1df4844d30
Correct bug entry:
...
25683 EC param parsing error not propagated correctly
r=andreas.
2006-03-21 19:33:52 +00:00
05bebd6e05
Backing out previous changes that invalid or incorrect log entries for this
...
patch.
2006-03-21 19:30:10 +00:00
5560cefbe0
*** empty log message ***
2006-03-21 19:23:30 +00:00
69677b52b9
bug 284450, Only use SSL V2 compatible hello, if SSL V2 is enabled
...
r=jgmyers, r=nelson
2006-03-21 18:43:09 +00:00
a8ad190dbf
Bug 273637 3 locks in softoken have unsafe initialization
...
r=alexi r=julien
2006-03-21 02:28:48 +00:00
b90e7c50e0
Avoid stack overflow while generating primes. Bug 310145. r=wtchang
2006-03-19 05:09:30 +00:00
6b22522ae5
Bug 238051 Enable SSL session reuse for ECC cipher suites
...
r=nelson
2006-03-17 21:15:09 +00:00
a3d27aefe2
Bug 329072 client sometimes fails to authenticate despite having cert
...
r= nelson
2006-03-17 20:44:23 +00:00
27b4c6e8f2
Bug 323817 Truncation of hashes for ECDSA should be done at bit level, not octet level
...
r=vipul.gupta@sun.com
2006-03-17 16:58:06 +00:00
b4f12c8c77
Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails
...
Use SEC_GetSignatureAlgorithmOidTag() to map to the signature oid.
r=wtc
2006-03-15 21:46:24 +00:00
338d439f2f
Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails
...
patch makes SHA1 the default hashing for RSA rather than MD5.
patch by wtc r=rrelyea.
2006-03-15 21:42:21 +00:00
aedc2aa4dd
bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined
...
r=wtc
2006-03-15 19:22:32 +00:00
415567e012
bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined
...
r=wtc
2006-03-15 19:13:12 +00:00
86ecb2b046
Bug 236933, Disable SSL2 and other weak ciphers by default
...
This patch (v3c) removes the UI to control SSL 2.
Firefox UI-review: beltzner
Firefox code review: mconnor
SeaMonkey UI-review: neil
Seamonkey+PSM code review: rrelyea
2006-03-14 21:29:13 +00:00
ec2c925bf4
Bug 324448. Convert mpi_x86.asm to mpi_x86_asm.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre sr=nelson@bolyard.com
2006-03-10 06:48:46 +00:00
02e3d7578a
Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
2006-03-09 23:50:43 +00:00
312856d27c
Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC.
...
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre sr=nelson@bolyard.com
2006-03-09 23:46:45 +00:00
c6858ae1e4
Bug 329002. fix cert reference leak. r=alexei.volkov,rrelyea
2006-03-09 23:38:57 +00:00
b458a866f2
Bugzilla 324887: merge ECC and non-ECC QA test scripts.
...
Add return code and error message for ssl_stress and ssl_cov.
r=vipul, sr=nelson.
2006-03-08 00:47:28 +00:00
4951f5bfdc
Bugzilla Bug 329575: ECPoint_mul should multiply a point by the group order
...
faithfully because this operation is required by the public key validation
algorithm. r=douglas.stebila,vipul.gupta.
2006-03-08 00:19:34 +00:00
4d4f8dd3de
Bugzilla Bug 320578: added a new function ec_GenerateRandomPrivateKey to
...
generate a random private key without bias using the algorithm of FIPS
186-2 Change Notice 1, and use it to generate EC private key d and ECDSA
ephemeral private key k. The patch is contributed by Douglas Stebila
<douglas@stebila.ca> and improved by me. r=douglas.stebila,vipul.gupta.
2006-03-06 23:48:39 +00:00
8e014c0581
fix bug 328771
...
r=rrelyea sr=dveditz
2006-03-04 12:22:22 +00:00
4f233bf7c1
Bugzilla Bug 324887: The previous checkin introduced a comment bug. A
...
comment line must begin with exactly one '#' character followed by white
space.
2006-03-03 22:10:30 +00:00
7c9d71030c
Bugzilla Bug 324887: merged ECC and non-ECC QA test scripts and removed
...
ECC QA test scripts. The patch is written by Vipul Gupta and Christophe
Ravel of Sun. r=wtc,nelsonb,jpierre
Modified Files:
cert/cert.sh smime/smime.sh ssl/ssl.sh ssl/sslauth.txt
ssl/sslcov.txt ssl/sslstress.txt tools/tools.sh
Removed Files:
fixtests.sh cert/eccert.sh smime/ecsmime.sh ssl/ecssl.sh
ssl/ecsslauth.txt ssl/ecsslcov.txt ssl/ecsslstress.txt
tools/ectools.sh
2006-03-03 20:06:03 +00:00
e1c95dc9e4
Bugzilla bug 326482: code cleanup: ssl3_NewKeyPair should not create a key
...
pair with only one key. r=nelson.bolyard.
2006-03-03 18:48:09 +00:00
db54a3ba4d
Bugzilla bug 326482: removed incorrect comments. r=nelson.bolyard.
2006-03-03 18:45:54 +00:00
83ae991c8d
Fix standalone mpi Makefile to build on OS/X. Bug 327405.
...
Patch contributed by Douglas Stebila <douglas@stebila.ca>
2006-03-03 04:21:56 +00:00
dd859170b7
Bug 327677. Fix cert object reference leak. r=julien.pierre,nelson
...
Patch contributed by Alexei Volkov <alexei.volkov.bugs@sun.com>
2006-03-03 04:00:49 +00:00
10904973ae
Bug 236613: change to MPL/LGPL/GPL tri-license.
2006-03-02 22:48:55 +00:00
86add9f57e
Bugzilla Bug 320589: fixed PK11_SignatureLen to return the exact length of
...
ECDSA signatures. Backed out a temporary workaround in
ECDSA_SignDigestWithSeed. Made other changes related to signature lengths.
r=relyea,nelson.bolyard.
Modified Files:
cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secsign.c
freebl/ec.c pk11wrap/pk11obj.c pk11wrap/pk11pub.h
ssl/ssl3con.c
2006-03-02 00:07:08 +00:00
3401675964
bug 168629, Mozilla incorrectly prompts about submitting to an insecure location from a secure one with base
...
href="https://..."
r=rrelyea, sr=bzbarsky
2006-03-01 23:38:30 +00:00
239b405b14
Bugzilla Bug 326403: use "Mozilla Foundation" as the manufacturer or
...
producer of our shared libraries/DLLs. Removed the optional copyright
notices from our DLLs. r=relyea,jpierre.
Modified Files:
lib/ckfw/builtins/constants.c lib/ckfw/builtins/nssckbi.rc
lib/ckfw/capi/nsscapi.rc lib/ckfw/dbm/instance.c
lib/freebl/freebl.rc lib/nss/nss.rc lib/smime/smime.rc
lib/softoken/pkcs11.c lib/softoken/softokn.rc lib/ssl/ssl.rc
2006-03-01 19:44:36 +00:00
c9bd3d91a9
Remove mp_init/mp_clear calls (and potential mallocs,frees and zeros)
...
in tight loops for bug #326482
r=nelson
2006-03-01 17:09:17 +00:00
53ae20dc78
bug 326482 Implement the derive sensitive only for those derivation functions that require it.
...
fixes a performance problem with ECDH.
r=wtchang, nelson.
2006-03-01 16:12:22 +00:00
f39afabe6b
Bug 327405. Correct EC keypair Generation. r=vipul.gupta,nelson.bolyard
...
Patch contributed by Douglas Stebila <douglas@stebila.ca>
2006-03-01 07:06:24 +00:00
68bf5f0340
Bug 328262. Increment ssl3 statistics counters atomicly. r=wtchang,julien.pierre
2006-03-01 05:45:45 +00:00
e1f071ebf1
Bugzilla Bug 327978: removed obsolete files, superseded by the ecl
...
directory. r=douglas.stebila.
Removed files: GF2m_ecl.c GF2m_ecl.h GFp_ecl.c GFp_ecl.h
2006-02-28 23:43:19 +00:00
1f27da68d4
Bugzilla bug 327855: OS2 GCC build should define XP_OS2_EMX for NSPR
...
headers. Removed a duplicate XP_OS2 definition. r=Peter Weilbacher and
Julien Pierre.
2006-02-28 21:34:29 +00:00
3ef09fc4bf
bug 328302, Cert Viewer: Prefix "raw bytes" display with size information
...
r=rrelyea
2006-02-28 18:30:01 +00:00
969236afbb
Bug 326315. Warning Reduction. On TRUNK only. r=Julien.Pierre
2006-02-28 05:56:07 +00:00
d91164bf0e
Bug 325683. EC param parsing error not propagated correctly.
...
Fix the cases that Andreas identified. Patch by Andreas.Sterbenz@sun.com
r=Julien,wtchang,nelson
2006-02-28 05:44:56 +00:00
61b48c1f2f
Bug 326690. Enable modutil to configure default slots for the
...
AES, SHA256 or SHA512 mechanisms. r=rrelyea,julien.pierre
2006-02-28 05:16:00 +00:00
2f2900ce2e
Bug 327105. Reintroduce an old bug that prevents _DHE_ cipher suites
...
from being negotiated by NSS servers. Necessary until the server side
of the _DHE_ cipher suites is fully implemented. r=Julien,Wan-Teh,Vipul
2006-02-28 04:20:23 +00:00
dff8039a7a
Bugzilla Bug 320038: checked in a better fix that allows us to write
...
EC domain parameters as hex strings with leading 00's. r=douglas.stebila
sr=relyea.
Modified files: softoken/ecdecode.c freebl/ecl/ecl-curve.h
2006-02-27 23:18:34 +00:00
a8247496ad
Bugzilla Bug 322871: moved the three new EC-related JNI function symbols to
...
a new JSS_4.2.3 section. r=sandeep.konchady.
2006-02-24 23:56:41 +00:00
d3491803d2
integrated patch 'build fix' from bugzilla #328246
2006-02-24 19:40:34 +00:00
a39794becf
Bugzilla bug: 328233 Fix for using SunJCE for all platformas that do not
...
use IBM JDK. sr=Alexei.Volkov
2006-02-23 16:47:17 +00:00
8870a7917e
Bugzilla Bug 322871: Checked in Bob Relyea's patch again.
...
Add multi-hash ECC to jss (based on the 1.4 JCE).
2006-02-23 01:21:52 +00:00
a33cc5c3df
Bug 322578: backed out the previous checkin. We avoided it by changing NSS.
...
r=mark.mentovai.
2006-02-22 22:40:03 +00:00
1a8b4bd028
Bugzilla bug 322578: support ppc<->x86 cross builds for Mac OS X. The
...
patch is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
2006-02-22 22:26:34 +00:00
6272976cfc
Bugzilla Bug 328228: fixed the typo "secp169k1". The patch is contributed
...
by jyri <jyri.virkki@sun.com>. r=wtc,vipul.gupta.
Modified files: bltest/blapitest.c certutil/certutil.c
2006-02-22 22:15:57 +00:00
f6ee50a1b0
Change NSS version to 3.12 Beta on the tip.
2006-02-22 21:22:54 +00:00
28c1f4ad33
bug 321598, Double memory free in nsIX509::getRawDER
...
r=rrelyea
2006-02-22 20:36:53 +00:00
5a28fa6cbc
Bugzilla Bug 326754: the previous checkin made us fail the NIST DSA PQGGen
...
test for [mod = 768] only. Backed out the more likely culprit.
2006-02-22 02:12:09 +00:00
36c22a97e3
Bugzilla bug: 310368 Missed a file.
...
sr=Glen r=Alexei
2006-02-21 23:38:58 +00:00
40548840b8
Bugzilla bug: 326699 Added check for libjss4.$platform_lib_extension
...
sr=Alexei.Volkov r=Christophe.Ravel
2006-02-21 23:27:49 +00:00
713e3bd05b
Bugzilla bug: 310368 Modified JSSE_SSLServer and JSS_SSLClient for proper
...
cipher preference and communication. sr=Glen.Beasley r=Alexei.Volkov
2006-02-21 23:25:25 +00:00
245692418c
Bugzilla bug: 322998 Fix for SSLServerSocket.accept() consuming exception
...
cause. sr=Wan-Teh r=Alexei.Volkov
2006-02-21 22:43:27 +00:00
dbd781b833
322578 Support ppc<->x86 cross builds for Mac OS X. Core cross-compile support. r=bsmedberg r=cls sr=bryner
2006-02-21 00:21:55 +00:00
0c86eb4eee
Bugzilla Bug 327529: unnamed arguments (third and after) for CERT_CreateRDN
...
must have the correct CERTAVA * type because compilers can't do automatic
type conversions. r=nelsonb,jpierre.
Modified files: alg1485.c secname.c
2006-02-20 23:06:55 +00:00
9b1dea62aa
bug=325366, Certificates: Large MS CA version causes decoding failure
...
Patch contributed by Martin v. Loewis
r=kengert
2006-02-20 13:20:47 +00:00
b3c171eb42
Renamed DSA_TEST_SEED_BYTES to PQG_TEST_SEED_BYTES.
2006-02-18 02:39:12 +00:00
f84184efdf
Bugzilla Bug 327384: fixed an off-by-one error in the size of the 'genenc'
...
array. The patch is contributed by Andreas Sterbenz
<Andreas.Sterbenz@sun.com>. r=wtc,nelsonb
2006-02-16 22:33:13 +00:00
dbf6d0080b
Bugzilla bug: 317479. Added IBMJCE for tests to work with IBM JDK.
...
sr=glen.beasley r=alexei.volkov
2006-02-16 19:54:08 +00:00
f688fccbca
bug 327126 prevent missing JSContext during generateCRMFRequest() r=mrbkap, r=kengert, sr=dbaron
2006-02-16 05:38:52 +00:00
ea2bb064f4
fix by wan-teh for RSA siggen tests r=glen
2006-02-16 01:50:55 +00:00
e49bf918fc
Bugzilla Bug 318967: use 160-bit SEED when generating DSA domain parameters
...
(PQG). Removed unused keySizeIndex variables. Handle the return value and
result output parameter of PQG_VerifyParams separately. Pad H with leading
0's when printing. r=glen.beasley.
2006-02-16 01:28:35 +00:00
50ed7e0d79
Fix for bug 321765. Allow NSS to decode certs with unsupported critical extensions. r=wtchang,nelson,rrelyea.
2006-02-16 00:06:24 +00:00
5156715044
[Bug 326963] Interoperability test with apache/mod_ssl: tstclnt
...
produces: assertion failure: secmod_PrivateModuleCount == 0; r=nelson, sr=julie
n
2006-02-15 22:22:32 +00:00
3bd336da98
Bugzilla Bug 318962: fixed signed/unsigned comparison warnings by MSVC.
...
r=glen.beasley.
2006-02-15 19:14:09 +00:00
88f7f20136
Bugzilla Bug 318968: more ECDSA test cleanup. Do not zeroize when freezing
...
ECParams' arenas. Use EC_CopyParams to copy ECParams to an EC public key
and allocate the public key's value from the same arena. r=glen.beasley.
2006-02-15 19:06:51 +00:00
915ecf8936
322871: JSS needs to handle ECC keys and certs`
...
Back out changes by rrelyea (2006-02-10) and glen.beasley (2006-02-14).
r+: wtc
2006-02-14 23:53:05 +00:00
b244d5e0da
temp build fix
2006-02-14 20:16:45 +00:00
44d4dbe3f6
Bugzilla Bug 326754: fixed two minor bugs related to the h parameter in
...
PQG parameter generation. r=nelsonb,glen.beasley.
2006-02-14 03:04:57 +00:00
cb0068da5a
Bugzilla Bug 326144: need to zeroize a SECItem that contains a copy of the
...
secret key. r=relyea,jpierre.
2006-02-14 02:55:09 +00:00
f0bf04743d
Bugzilla bug 326751: CKR_SIGNATURE_INVALID is a much better default error
...
code for NSC_VerifyRecover than CKR_DEVICE_ERROR is. r=relyea.
2006-02-11 02:03:25 +00:00
a2642d5f53
318970 RSA sigver test fix r=wan-teh
2006-02-10 23:27:38 +00:00
e2c07cef61
Add multi-hash ECC to jss (based on the 1.4 JCE).
2006-02-10 22:06:22 +00:00
4266eddd80
Bugzilla Bug 326482 NSS ECC performance problems.
...
Patch by Nelson, r=relyea.
Save the public key when we create the keypair so we can use it later.
2006-02-10 19:39:53 +00:00
fc19f10d2e
Bugzilla Bug 326482 NSS ECC performance problems.
...
r=nelsonb
Fix bug where ECC keys were not being copied on server startup
2006-02-10 18:54:58 +00:00
99a30b78f0
Bug 325657, r=Nelson,Wan-Teh, Unset ECL_USE_FP INT Solaris SPARC freebl
2006-02-10 04:38:05 +00:00
9a4d9a97c2
Bug 320187 NSC_WrapKey called with null output returns short length
...
r=nelsonb
2006-02-09 19:54:22 +00:00
a58511b4cd
Fixing bug 326358. checking for null mStringBundle is not needed. r/a=kaie
2006-02-09 18:52:28 +00:00
9caf87f451
Bug #325682 , Adds -Wl,-rpath to link step for Linux distributions
...
r=Nelson, sr=Wan-Teh
2006-02-09 00:12:17 +00:00
a855b8fda9
Bug 320583 Support for SHA256/384/512 with ECC signing
2006-02-08 06:14:31 +00:00
7111e6ebf7
Fix for bug 326144 . softoken leaks in nsc_pbe_key_gen. r=nelson, rrelyea
2006-02-07 00:43:31 +00:00
dbb143b269
Bugzilla Bug 318967: fixed compiler warnings, most of which were char *
...
and unsigned char * mismatches. r=glen.beasley.
2006-02-04 06:39:44 +00:00
6e44613a74
Fix build bustage, change // comment to /* */
2006-02-03 20:22:52 +00:00
93dc217dd8
bug 152426, delegation of HTTP download for OCSP
...
r=julien.pierre, r=rrelyea
2006-02-03 18:14:49 +00:00
a898e666b8
bug 183156 remove *UCS2* functions, replacing them with *UTF16* ones
...
r+sr=darin
2006-02-03 14:18:39 +00:00
b36cd3eaef
bug 245518 r=nelson, fix for p12 files encoded with null PWs
2006-02-02 20:26:03 +00:00
d4b05e6bb3
Work around bug 292285: don't encode x400 addresses, don't print CRL contents
...
r=julien.pierre
2006-02-02 07:56:19 +00:00
3dc55f1174
Allow CKM_ECDSA_SHA1 to be multipart. Bug 325494.
...
Patch contributed by Andreas Sterbenz <Andreas.Sterbenz@sun.com>
r=nelsonb,relyea,wtc.
2006-02-02 07:21:56 +00:00
a2cde1a2cd
[Bug 325307] infinite loop in SECU_FindCrlIssuer. r=julien
2006-02-02 02:45:02 +00:00
81fbb31a8a
[Bug 324878] crlutil -L outputs false CRL names. r=julien
2006-02-02 02:35:07 +00:00
bc7dfc231d
325305: minor memory leak in CERT_FindCertByNameString. r=wtc
2006-02-02 00:57:54 +00:00
9d4c7f77b0
added Windows build instructions - fixed spec file - added patch file for broken coreconf location.mk
2006-02-01 23:39:01 +00:00
3c41a24d51
Bugzilla bug: 324451. Changed JSS version to 4.2.3. sr=glen, r=alexei
2006-02-01 23:18:57 +00:00
ca31a3a1e8
Bugzilla Bug 318966: implemented the tests for the NIST RNG Validation
...
System. r=glen.beasley.
Modified file: fipstest.c
Added file: rng.sh
2006-02-01 21:28:25 +00:00
2deab42637
Bugzilla Bug 318966: added two RNG functions FIPS186Change_GenerateX and
...
FIPS186Change_ReduceModQForDSA to blapi.h for the NIST RNG Validation
System. r=relyea,nelsonb.
Modified files: blapi.h ldvector.c loader.c loader.h prng_fips1861.c
2006-02-01 21:18:44 +00:00
fd80d52937
Bug 319619 "large" ECC private keys cannot be exported through PKCS #11
...
1) Change the export encrypted private key function to ask the token the wrap
size rather than trying to figure it out ourselves.
2) Fix the soften to correctly return the size.
r=wtc, nelsonb
2006-02-01 16:43:47 +00:00
24f377f7dd
318970 RSA FIPS tests r=wan-teh sr=bobRelyea
2006-01-31 00:49:40 +00:00
e3acf26812
318970 RSA FIPS tests r=wan-teh sr=bobRelyea
2006-01-31 00:49:02 +00:00
6ea97d820f
bug 323903, further improvements on displaying certificate extensions.
...
Patch contributed by Kaspar Brand, supplementing the recent checkin for bug 259031.
r=Martin v. Loewis / kengert
2006-01-30 23:21:00 +00:00
e5919f82cb
318970 RSA FIPS Alg Tests r=wan-teh, sr=bRelyea
2006-01-30 19:58:52 +00:00
e4ed0ba860
Fix broken build, caused by c++ style comment in c code.
2006-01-28 02:38:07 +00:00
3360534c6e
Set SSL2 and SSL3 timeout times properly for SSL server session cache.
...
Bug 223242. r=jullien.pierre
2006-01-28 02:21:31 +00:00
53ba8beb5d
bug 324109, Re-Add ocsp info string in cert manager, that was accidentially removed by a checkin for bug 212459
...
r=mscott sr=rrelyea
2006-01-27 21:12:37 +00:00
decef2ce52
328967 DSA FIPS tests r=Wan-Teh
2006-01-27 18:53:07 +00:00
47f924a72a
Removed a blank line that broke the ssl_stress function in ecssl.sh, which
...
cannot handle blank lines.
2006-01-27 18:44:13 +00:00
ca32c95cb1
Bugzilla Bug 320589: temporary workaround for SEC_SignData ECDSA signature
...
generation bug introduced by the previous checkin.
2006-01-26 23:51:42 +00:00
dc090904ca
Removed an extraneous semicolon after the last parameter in a function
...
declaration.
2006-01-26 23:21:39 +00:00
0cef564f9f
Bug 323010: nsSecretDecoderRing::SetWindow should be NS_IMETHODIMP, not nsresult, patch by Jeff Walden <jwalden@mit.edu>, r+sr=dveditz
2006-01-26 01:06:42 +00:00
1d340a02f8
Bugzilla bug: 316629. Increased SSLServerSocket timeout from 15 sec to
...
90 sec. Smaller timeout was causing the server to die before client connected.
sr=glen.beasley r=alexei.volkov
2006-01-24 00:42:48 +00:00
91dc066263
Remove unnecessary ISALIST test from sparc versions of freebl DSOs.
...
Bug 302658. r=jullien.pierre,wtchang
2006-01-22 08:43:57 +00:00
c600655628
Make dbck Debug mode work with Softoken. Bug 323570. r=rrelyea.
2006-01-22 06:54:34 +00:00
84f7a58b5e
Don't use variables as structure initializers. Bug 274512. Fix build
...
on HPUX. r=julien.pierre,wtchang
2006-01-22 06:42:14 +00:00
3ab06bd1bf
Detect certdb reference leaks at shutdown with assertions. Bug 324103.
...
r=rrelyea.
2006-01-22 06:36:36 +00:00
de87a39bcf
Bugzilla Bug 323977: use the "mapfile" (ld version script) on FreeBSD.
...
Build the freebl shared libraries with the -Bsymbolic flag for GNU ld.
r=nelsonb. Thanks to Glenn Randers-Pehrson <glennrp@imagemagick.org> for
reporting this bug and verifying these changes.
Modified files: coreconf/FreeBSD.mk nss/lib/freebl/Makefile
2006-01-21 02:33:33 +00:00
0379858bcd
Plug a cert DB reference leak in softoken, related to trust objects.
...
Bug 324103, r=rrelyea
2006-01-21 02:23:42 +00:00
035d4d364f
Bugzilla Bug 320589: miscellaneous code cleanup: distinguish between the
...
length of the field size and the length of the base point order. Report
better error codes. In ECDSA_VerifyDigest, removed unnecessary local
variables and be lenient in the signature lengths we accept.
r=relyea,nelsonb
2006-01-21 02:14:46 +00:00
bce474d96e
Fix for bug 317856 . uninitialized variable correction. r=wtchang
2006-01-20 22:55:15 +00:00
63f98b3b60
Do not attempt to install .chk files when cross-compiling.
...
Bug #317620 r=wtc
2006-01-20 21:52:18 +00:00
0521005f8e
Detect NULL server key pair pointer. Bug 321161. r=wtchang.
2006-01-20 17:40:21 +00:00
b9bbd71bdd
Fix for bug 317856 . compiler warnings in strsclnt
2006-01-20 00:43:23 +00:00
e88416641f
Bugzilla Bug 95323. Conditionally compile nsscapi.
...
r=julien
2006-01-19 19:55:28 +00:00
c10ca51cd5
change QA test order to be bottom-up. Bug 309412. r=jullien.pierre
2006-01-19 11:59:56 +00:00
81262a171f
Back out last change, which broke the build.
2006-01-19 02:34:12 +00:00
0c53a2cee8
Prevent crash when making new cert8.db from old cert5.db.
...
This is not the final solution, but it works.
Bug 320029. r=rrelyea,sr=julien.pierre. On TRUNK.
2006-01-19 02:16:30 +00:00
9e6bb5e04e
Add new function nsslowcert_DecodeAnyDBEntry. Correct the union
...
certDBEntry by adding the missing members. Bug 323570. r=rrelyea.
2006-01-19 02:09:37 +00:00
e601c1afd7
Softoken will no longer generate excessive key material for some SSL3
...
cipher suites. Bug 274512. r=rrelyea.
2006-01-19 01:12:53 +00:00
feef0984c4
Bugzilla Bug 318217: use the new NSPR functions PR_EmulateAcceptRead and
...
PR_EmulateSendFile added in NSPR 4.1. r=nelsonb.
Modified files: manifest.mn sslimpl.h sslsock.c
Removed file: emulate.c
2006-01-18 23:06:57 +00:00
cf6fab0ce0
Fix for bug 319495 . Clean up Makefiles for command-line tools. r=nelson
2006-01-18 22:44:39 +00:00
9cb00badbb
Bugzilla Bug 317620: use "pwd -W" to convert $(DIST) to an absolute
...
pathname (ABS_DIST) under MSYS on Windows. We use the same method to
to define MOZ_BUILD_ROOT in configure.in. The patch is contributed by
Chris Seawood <cls@seawood.org>. r=wtc.
2006-01-18 21:32:27 +00:00
bfb0b53c24
Bugzilla Bug 323379: need to set ADDON_PATH for libsoftokn3.so to load
...
libfreebl3.so as an add-on on BeOS. Thanks to Doug Shelton
<doug@sheltonfamily.org>for reporting the bug and verifying the fix.
r=christophe.ravel.
2006-01-18 20:56:28 +00:00
129a80aa06
NSS ECDSA can only sign SHA-1 bug 320583
...
r=nelson patch ammended to change SHA-1 to HASH per wtc comment.
2006-01-17 00:38:59 +00:00
dbbc444239
Bugzilla Bug 317620: landed NSS 3.11 on the Mozilla trunk. The patch is
...
contributed by Kai Engert <kengert@redhat.com>. r=wtc,bsmedberg.
Bugzilla Bug 288647: (security/manager/Makefile.in only) enable building
NSS with system NSPR. The patch is contributed by Chris Seawood
<cls@seawood.org>. r=wtc,kengert.
Modified Files:
Makefile.in browser/installer/unix/config.it
browser/installer/unix/packages-static
browser/installer/windows/config.it
browser/installer/windows/packages-static
calendar/installer/windows/config.it
calendar/installer/windows/packages-static
camino/Camino.xcode/project.pbxproj
embedding/config/basebrowser-installer-win.pkg
embedding/config/basebrowser-mac-macho
embedding/config/basebrowser-qnx
embedding/config/basebrowser-unix
embedding/config/basebrowser-win embedding/config/minimo-qnx
embedding/config/minimo-unix mail/config/basemail-os2
mail/config/basemail-unix mail/installer/windows/config.it
mail/installer/windows/packages-static
minimo/config/linux_package.sh security/manager/Makefile.in
security/manager/psm.pkg toolkit/mozapps/installer/packager.mk
xpinstall/packager/packages-os2
xpinstall/packager/packages-static-unix
xpinstall/packager/packages-static-win
xpinstall/packager/packages-unix
xpinstall/packager/unix/deliver.pl
xpinstall/packager/win_mfcembed/config.it
xpinstall/packager/windows/browser.jst
xpinstall/packager/windows/config.it
xulrunner/installer/mac/Makefile.in
2006-01-13 18:09:32 +00:00
0c4d029490
Bugzilla Bug 320497: indicate that we don't need an executable stack.
...
r=wolfgang.rosenauer,jpierre.
Modified files: arcfour-amd64-gas.s mpi/mpi_amd64_gas.s
2006-01-13 17:33:10 +00:00
24734ea6fb
Bugzilla Bug 317858: gcc on Linux/ppc doesn't recognize the -z defs linker
...
flag, so we need to use -Wl to pass it to the linker. r=caillon.
2006-01-13 17:24:13 +00:00
af798d22c0
HP and AIX cert extension tests failure fix.
2006-01-13 07:59:31 +00:00
21d4070e16
Bugzilla Bug 323079: when libsoftoken and libssl load the freebl library,
...
first try without resolving symlinks. If we fail to load the library and
the pathname is a symbolic link, resolve the symbolic link and try again.
r=jpierre. sr=relyea.
2006-01-12 23:46:31 +00:00
0fb55318b1
Bug 106386 Correct misspellings in source code
...
patch by philippuryear@gmail.com r=timeless rs=brendan
2006-01-12 07:57:31 +00:00
c9cb870d39
cert extension test for 53229: certutil should not use gets(). julien:review+
2006-01-12 01:09:03 +00:00
f84918ca40
remove svrcore-config
2006-01-12 00:49:35 +00:00
b3f82a4693
Use a new IID for changed interface nsIX509CertDB2, supplemental checkin for bug 316710
...
r=rrelyea
2006-01-12 00:26:19 +00:00
594e267b04
Bug 322429 nsICertPicker is misleading
...
r=kaie sr=bz
2006-01-11 08:29:49 +00:00
adbdcdd41b
bug 101996, temp file with guessable name used during p12 import.
...
r=rrelyea
2006-01-10 02:51:24 +00:00
8abb1782d1
bug 137506, Only internal token's keys can be exported
...
Patch by Bob Relyea, r=kengert
2006-01-10 02:29:25 +00:00
b42c991d2e
bug 149834, Enhance PSM speed by using new NSS API CERT_VerifyCertificateNow
...
Patch by John G. Myers, r=kengert
2006-01-10 02:14:04 +00:00
ce2b34992a
bug 316710, Land some generic crypto backend code, mostly cleanup, some small enhancements
...
Patch by Bob Relyea, r=kengert
2006-01-10 02:07:47 +00:00
d22a816ef4
added .spec file for building RPM - package is svrcore-devel - a script svrcore-config for getting cflag and ldflag information, and a .pc file for pkg-config
2006-01-06 18:02:35 +00:00
e43ae180d6
Bugzilla Bug 318968: fixed the build error with NSS_ENABLE_ECC unset.
...
Modified files: Makefile fipstest.c
2006-01-05 21:49:05 +00:00
24416549b6
Bugzilla Bug 321865: added coreconf files for Solaris 11. The patch is
...
contributed by Alfred Peng <alfred.peng@sun.com>. r=wtc.
Added files: SunOS5.11.mk SunOS5.11_i86pc.mk
2006-01-03 23:02:11 +00:00
8d81b8a6b6
Bug 321504 Remove unneeded uses of nsIDocumentLoader
...
r+sr=bz
2005-12-26 16:45:59 +00:00
66118848a4
bug 259031, Add support for displaying certificate extensions
...
Patch contributed by Martin v. Loewis.
r=kengert/rrelyea/wtchang sr=shaver/rrelyea
2005-12-25 21:09:45 +00:00
2b8116135c
Fix the build busted by checkin for bug 318968
2005-12-23 03:14:36 +00:00
a9a0f1c1b2
Bugzilla Bug 318968: added FIPS ECDSA algorithm test. r=glen.beasley.
...
Modified file: fipstest.c
Added file: ecdsa.sh
2005-12-22 22:22:17 +00:00
4102e295a8
Bugzilla Bug 318962: combined a PORT_Realloc and a memset call into an
...
equivalent PORT_ZAlloc call. r=glen.beasley.
2005-12-22 22:19:03 +00:00
7af58c4ead
Bugzilla bug 318962: it is legal for PORT_Realloc(oldptr, 0) to return
...
NULL, so that shouldn't be treated as a memory allocation failure.
2005-12-22 01:39:17 +00:00
f4d5ee03d0
Bugzilla bug: 320980. Updated common.c and upgraded the JSS version.
...
sr=glen.beasley
2005-12-21 18:39:24 +00:00
6392f0b284
318958 fixing c++/java comment to C
2005-12-21 00:29:44 +00:00
827078f238
318958 fixing Monte Carlo test r=Wan-Teh
2005-12-21 00:13:52 +00:00
0820769573
318962 buffer fix for SHA Monte Carlo tests r=wan-teh
2005-12-20 18:20:50 +00:00
722f8d77d8
trying to fix SUN bustage
2005-12-20 12:25:21 +00:00
a66df9148e
b=255408 Need to be able to build mozilla --with-system-nss
...
r=wtc/bsmedberg
Note: patches for bugs 288647 and 317620 might be required before enabling this build feature works.
2005-12-20 09:47:11 +00:00
45db1b5756
Bugzilla Bug 317052: removed the obsolete file lib/base/whatnspr.c from
...
CVS. r=relyea.
Modified Files:
base.h error.c manifest.mn
Removed Files:
whatnspr.c
2005-12-19 17:53:28 +00:00
06b4fdda1a
Bugzilla Bug 272484: code cleanup. keythi.h: remove the unused type
...
definition of SEC_PKCS5KeyAndPassword. p12d.c: We only need to set
p12dcx->currentASafeP7Dcx to NULL if it isn't NULL. r=relyea.
Modified Files: cryptohi/keythi.h pkcs12/p12d.c
2005-12-19 17:46:30 +00:00
19047568b5
Fix build. Remove c++ style declaration of loop control variables.
2005-12-17 01:03:12 +00:00
4e0681121a
318964 implement HMAC algorithm tests for FIPS 140-2 validation r=Wan-teh
2005-12-16 16:57:49 +00:00
bb35ec1ad1
Mac fixes to ckfw.
2005-12-16 01:57:41 +00:00
901eacef3b
Add support for the cryptoki crypto functions. This support is necessary for
...
capi and mackey. r=kaie
2005-12-16 00:48:02 +00:00
7020114b03
318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh
2005-12-15 18:50:52 +00:00
f4a0a3492e
318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh
2005-12-15 18:47:20 +00:00
196108d1d0
Current version is JSS 4.2.1 Beta.
2005-12-14 19:53:48 +00:00
38037a473a
Bugzilla Bug 320047: mp_to_unsigned/signed/fixlen_octets copies nothing to
...
the buffer if the mp_int is zero. r=nelsonb.
2005-12-14 02:18:35 +00:00
f8302eae78
Bugzilla Bug 236245: Updated NSS to "ECC Cipher Suites for TLS" draft 12
...
plus upcoming revisions. The patch is contributed by Douglas Stebila
of Sun Labs <douglas@stebila.ca>. r=wtc.
Modified Files:
cmd/selfserv/selfserv.c cmd/strsclnt/strsclnt.c
cmd/tstclnt/tstclnt.c cmd/vfyserv/vfyserv.c lib/ssl/ssl3con.c
lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslenum.c
lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
lib/ssl/sslsock.c tests/ssl/ecssl.sh tests/ssl/ecsslauth.txt
tests/ssl/ecsslcov.txt tests/ssl/ecsslstress.txt
tests/ssl/ssl.sh
2005-12-14 01:49:40 +00:00
2f95017a80
318958 removal of DES and Triple DES 140-1 code r=wan-teh
2005-12-14 01:19:11 +00:00
a74affdee9
Bugzilla Bug 320038: ecl/ecl-curve.h: removed unnecessary leading zero byte
...
in the base point orders of curves K-233 and K-409. ec.c: pad the private
key with leading zeros to the length of the base point order.
r=douglas.steblia.
2005-12-13 22:31:34 +00:00
d15a3a9c9f
318958 TDEA algorithm tests for FIPS 140-2
2005-12-09 16:55:53 +00:00
3bb8ee4f59
Initialize mpi data using mpi macros, not static data bug 319252
...
r=douglas
2005-12-08 23:22:26 +00:00
3b330a9206
305028: make pretty print utility print hex data in case when data type was not recognized; rw+nelson
2005-12-05 23:09:38 +00:00
9de601126c
Backing out patch for bug 259031,
...
because of build failures on Windows.
2005-12-02 23:45:53 +00:00
4dd943539a
Trying to fix bustage from checkin for bug 259031.
2005-12-02 23:38:08 +00:00
25b467c367
Bug 220815, Non localisable strings in nsCertPicker.cpp and nsNSSIOLayer.cpp
...
r=jgmyers, sr=shaver
2005-12-02 23:08:44 +00:00
46d41e228b
Bug 259031, Add support for displaying certificate extensions
...
Patch provided by Martin v. Loewis
r=rrelyea r=kengert sr=shaver
2005-12-02 22:29:14 +00:00
alexei.volkov.bugs%sun.com
julien.pierre.bugs%sun.com
benjamin%smedbergs.us
glen.beasley%sun.com
rrelyea%redhat.com
nelson%bolyard.com
dbaron%dbaron.org
nkwan%redhat.com
kaie%kuix.de
christophe.ravel.bugs%sun.com
wtchang%redhat.com
sandeep.konchady%sun.com
mark%moxienet.com
dveditz%cruzio.com
neil.williams%sun.com
dougt%meer.net
cbiesinger%web.de
richm%stanfordalumni.org
nelsonb%netscape.com
gavin%gavinsharp.com
cls%seawood.org
timeless%mozdev.org
relyea%netscape.com