Bug 1795087 - land NSS 4684102858e2 UPGRADE_NSS_RELEASE, r=nss-reviewers,nkulatova

2022-10-31 John M. Schanck <jschanck@mozilla.com> * lib/util/secoid.c: Bug 1798150 - on-demand initialization of OID tables. r=nss- reviewers,nkulatova [4684102858e2] [tip] 2022-10-31 Anna Weine <anna.weine@mozilla.com> * lib/freebl/mpi/primes.c, lib/ssl/dhe-param.c: Bug 1792821 - Modification of the primes.c and dhe-params.c in order to have better looking tables r=jschanck [e512213db1c6] 2022-10-25 John M. Schanck <jschanck@mozilla.com> * doc/rst/releases/index.rst, doc/rst/releases/nss_3_79_2.rst: Documentation: Release notes for NSS 3.79.2 [ea50dc1087db] Differential Revision: https://phabricator.services.mozilla.com/D160812
2024-11-23 21:01:08 +00:00 · 2022-10-31 16:41:42 +00:00 · 2022-10-31 16:41:42 +00:00 · d11dd7596d
commit d11dd7596d
parent 70c854539c
7 changed files with 1259 additions and 9492 deletions
--- a/security/nss/TAG-INFO
+++ b/security/nss/TAG-INFO
@ -1 +1 @@
-bed3afeff7fd
+4684102858e2
--- a/security/nss/coreconf/coreconf.dep
+++ b/security/nss/coreconf/coreconf.dep
@ -10,4 +10,3 @@
 */

 #error "Do not include this header file."
-
--- a/security/nss/doc/rst/releases/index.rst
+++ b/security/nss/doc/rst/releases/index.rst
@ -13,8 +13,9 @@ Releases
   nss_3_82.rst
   nss_3_81.rst
   nss_3_80.rst
-   nss_3_79.rst
+   nss_3_79_2.rst
   nss_3_79_1.rst
+   nss_3_79.rst
   nss_3_78_1.rst
   nss_3_78.rst
   nss_3_77.rst
@ -45,8 +46,8 @@ Releases
   **NSS 3.84** is the latest version of NSS.
   Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_84_release_notes`

-   **NSS 3.79.1** is the latest ESR version of NSS.
-   Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_79_1_release_notes`
+   **NSS 3.79.2** is the latest ESR version of NSS.
+   Complete release notes are available here: :ref:`mozilla_projects_nss_nss_3_79_2_release_notes`


 .. container::
--- a/security/nss/doc/rst/releases/nss_3_79_2.rst
+++ b/security/nss/doc/rst/releases/nss_3_79_2.rst
@ -0,0 +1,59 @@
+.. _mozilla_projects_nss_nss_3_79_2_release_notes:
+
+NSS 3.79.2 release notes
+======================
+
+`Introduction <#introduction>`__
+--------------------------------
+
+.. container::
+
+   Network Security Services (NSS) 3.79.2 was released on **25 October 2022**.
+
+
+.. _distribution_information:
+
+`Distribution Information <#distribution_information>`__
+--------------------------------------------------------
+
+.. container::
+
+   The HG tag is NSS_3_79_2_RTM. NSS 3.79.2 requires NSPR 4.34.1 or newer.
+
+   NSS 3.79.2 source distributions are available on ftp.mozilla.org for secure HTTPS download:
+
+   -  Source tarballs:
+      https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_79_2_RTM/src/
+
+   Other releases are available :ref:`mozilla_projects_nss_releases`.
+
+.. _changes_in_nss_3.79.2:
+
+`Changes in NSS 3.79.2 <#changes_in_nss_3.79.2>`__
+----------------------------------------------------
+
+.. container::
+
+   - Bug 1785846 - Bump minimum NSPR version to 4.34.1.
+   - Bug 1777672 - Gracefully handle null nickname in CERT_GetCertNicknameWithValidity.
+
+
+`Compatibility <#compatibility>`__
+----------------------------------
+
+.. container::
+
+   NSS 3.79.2 shared libraries are backwards-compatible with all older NSS 3.x shared
+   libraries. A program linked with older NSS 3.x shared libraries will work with
+   this new version of the shared libraries without recompiling or
+   relinking. Furthermore, applications that restrict their use of NSS APIs to the
+   functions listed in NSS Public Functions will remain compatible with future
+   versions of the NSS shared libraries.
+
+`Feedback <#feedback>`__
+------------------------
+
+.. container::
+
+   Bugs discovered should be reported by filing a bug report on
+   `bugzilla.mozilla.org <https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS>`__ (product NSS).
--- a/security/nss/lib/freebl/mpi/primes.c
+++ b/security/nss/lib/freebl/mpi/primes.c
--- a/security/nss/lib/ssl/dhe-param.c
+++ b/security/nss/lib/ssl/dhe-param.c
--- a/security/nss/lib/util/secoid.c
+++ b/security/nss/lib/util/secoid.c
@ -2137,7 +2137,11 @@ SECOID_FindOIDByMechanism(unsigned long mechanism)
 {
    SECOidData *ret;

-    PR_ASSERT(oidhash != NULL);
+    PR_ASSERT(oidmechhash != NULL);
+    if (oidmechhash == NULL && SECOID_Init() != SECSuccess) {
+        PORT_SetError(SEC_ERROR_LIBRARY_FAILURE);
+        return NULL;
+    }

    ret = PL_HashTableLookupConst(oidmechhash, (void *)(uintptr_t)mechanism);
    if (ret == NULL) {
@ -2153,6 +2157,10 @@ SECOID_FindOID(const SECItem *oid)
    SECOidData *ret;

    PR_ASSERT(oidhash != NULL);
+    if (oidhash == NULL && SECOID_Init() != SECSuccess) {
+        PORT_SetError(SEC_ERROR_LIBRARY_FAILURE);
+        return NULL;
+    }

    ret = PL_HashTableLookupConst(oidhash, oid);
    if (ret == NULL) {