nelsonb%netscape.com
f87129ad87
Add support for Elliptic Curve Cryptography. Bug 195135.
...
Modified Files:
cmd/lib/SECerrs.h cmd/selfserv/selfserv.c
cmd/tstclnt/tstclnt.c lib/cryptohi/keyhi.h
lib/cryptohi/keythi.h lib/cryptohi/seckey.c
lib/cryptohi/secvfy.c lib/freebl/Makefile lib/freebl/blapi.h
lib/freebl/blapit.h lib/freebl/ldvector.c lib/freebl/loader.c
lib/freebl/loader.h lib/freebl/manifest.mn lib/nss/nss.def
lib/pk11wrap/pk11skey.c lib/pk11wrap/pk11slot.c
lib/softoken/lowkeyti.h lib/softoken/manifest.mn
lib/softoken/pkcs11.c lib/softoken/pkcs11c.c
lib/softoken/pkcs11t.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
lib/ssl/sslcon.c lib/ssl/sslenum.c lib/ssl/sslimpl.h
lib/ssl/sslinfo.c lib/ssl/sslproto.h lib/ssl/sslsecur.c
lib/ssl/sslsock.c lib/ssl/sslt.h lib/util/secerr.h
lib/util/secoid.c lib/util/secoidt.h
Added Files:
lib/freebl/GFp_ecl.c lib/freebl/GFp_ecl.h lib/freebl/ec.c
lib/freebl/ec.h lib/softoken/ecdecode.c
2003-02-27 01:31:38 +00:00
kairo%kairo.at
661116311f
bug 194924 - localeVersion update for 1.4a, r=rchen, sr=blizzard
2003-02-27 00:05:44 +00:00
nelsonb%netscape.com
83101081ca
Add missing dependency on error headers.
2003-02-26 23:52:40 +00:00
nelsonb%netscape.com
53f415bde5
Fix bug 194840. Get new random seed before each attempt to sign with DSA.
2003-02-25 23:45:23 +00:00
kirk.erickson%sun.com
58e6df6d02
Addresses bug 193378 modutil should print an error message,
...
by printing error on SECMOD_DeleteInternalModule() failure.
2003-02-25 02:09:11 +00:00
wtc%netscape.com
3d99d3f6a8
Bug 190537: build OS/2 DLLs using the map files to control symbol export.
...
The patch is contributed by Javier Pedemonte <pedemont@us.ibm.com>.
Modified files: coreconf/OS2.mk coreconf/rules.mk nss/lib/ckfw/nssck.api
2003-02-25 01:40:04 +00:00
pete.zha%sun.com
d1ea99b3c8
bug=193068
...
Missing accesskeys in preference dialogs
r=timeless sr=jaggernaut@netscape.com
2003-02-24 07:59:17 +00:00
robin.lu%sun.com
1c850ced92
fixed bug 149841 It should NOT be possible to open cert manager twice at the same time. r=kaie sr=alecf
2003-02-24 07:07:13 +00:00
wtc%netscape.com
e82f9dbda9
Simplified the test for substrings.
2003-02-22 15:20:07 +00:00
varga%netscape.com
165a71d7b3
Fix for bug 192365. Remove extraneous seltype="multiple" attributes of <tree>s in xul.
...
r=varga, sr=jag, patch by Daniel Crisman <bugzilla@w.d6.org>
2003-02-22 11:48:19 +00:00
mscott%netscape.com
2324ded1fd
ACK this wasn't meant for the trunk. File wasn't tagged properly. Sorry. backing out.
2003-02-22 02:35:31 +00:00
mscott%netscape.com
2f97466dc8
hide ftp channel when building minotaur
2003-02-22 02:22:51 +00:00
nelsonb%netscape.com
15064057ce
Fix bug 160207. Make TLS implementation resistant to timing attacks on
...
CBC block mode cipher suites in TLS. See bug for details.
2003-02-21 23:00:16 +00:00
wtc%netscape.com
08b98e2fe3
Bug 194309: cvs removed libpath.c because the freebl_GetLibraryFilePathname
...
function has been replaced by the new NSPR 4.3 function
PR_GetLibraryFilePathname.
2003-02-21 02:40:52 +00:00
wtc%netscape.com
c049211d54
Bug 194309: replaced freebl_GetLibraryFilePathname by the new NSPR 4.3
...
function PR_GetLibraryFilePathname.
Modified files: config.mk manifest.mn shvfy.c
2003-02-21 00:41:24 +00:00
mkaply%us.ibm.com
6298759e60
OS/2 bustage - PR_CALLBACK
2003-02-20 19:09:43 +00:00
wtc%netscape.com
0cf4cab50e
Bug 194222: Removed SECMOD_CallOnce. It is replaced by the new NSPR 4.3
...
function PR_CallOnceWithArg.
Modified files: nss/nssinit.c pk11wrap/pk11cert.c pk11wrap/secmodi.h
2003-02-20 16:58:57 +00:00
wtc%netscape.com
240de54477
Bug 118832: do not include NSS private header files. "genname.h" is simply
...
not needed. "crmfi.h" can be avoided by using the public function
CRMF_EncodeCertReqMessages. r=kaie. sr=bryner. a=asa for mozilla 1.3.
Modified Files: Makefile.in nsCrypto.cpp nsNSSIOLayer.cpp
2003-02-20 14:56:10 +00:00
sonja.mirtitsch%sun.com
8f8e7357ec
writing actual return of modutil to output.log, bug 193394 r=wtc
2003-02-20 00:52:40 +00:00
kaie%netscape.com
d3a44165b9
b=173369 Migrating NSS databases from the "CFM" build to the "mach-o" build
...
r=javi sr=peterv a=asa
2003-02-20 00:19:45 +00:00
sonja.mirtitsch%sun.com
cbe33c407b
echoing modutil commandline to output.log, bug 193394 r=wtc
2003-02-19 23:26:52 +00:00
sonja.mirtitsch%sun.com
61cc07a65d
switching the NSPR version to v4.3-beta1
2003-02-19 23:21:23 +00:00
jpierre%netscape.com
507f9b47a8
Patch for 193961 - incorporate Wan-Teh's feedback
2003-02-19 21:50:49 +00:00
wtc%netscape.com
5cae1f1bc7
Bug 190960: added the DHE ciphersuites back because the underlying NSS bug
...
(bug 188856) that broke them has been fixed. r=kaie. sr=bryner. a=asa for
mozilla1.3.
Modified Files:
netwerk/base/public/security-prefs.js
security/manager/pki/resources/content/ssl3tlsciphers2.xul
security/manager/pki/resources/locale/en-US/pref-ssl.dtd
security/manager/ssl/src/nsNSSComponent.cpp
2003-02-19 15:08:50 +00:00
jpierre%netscape.com
580265aeb3
Fix for bug 193691 . Make QuickDER return an error rather than assert if extraneous data is present in the buffer
2003-02-19 02:29:48 +00:00
thayes%netscape.com
a74f0fa8b2
Bug 192639: Use utility functions for managing token passwords so that
...
cmsutil will prompt for the value if it is not given on the command line.
r=nelsonb
2003-02-19 00:39:39 +00:00
wtc%netscape.com
3294d2a320
Bug 193367: do not call PR_Now() in a loop. r=nelsonb.
2003-02-18 23:26:39 +00:00
ian.mcgreer%sun.com
fbd8eb30c2
bug 174200, don't attempt to decode cert when destroying it, handle failure
...
to decode cert serial number
r=nelsonb
2003-02-18 20:53:14 +00:00
wtc%netscape.com
03d1089088
Add DHE algorithms to the list. (Merged relyea's checkin (rev. 1.3.2.1)
...
from the NSS_3_7_BRANCH to the trunk.)
2003-02-18 02:53:54 +00:00
wtc%netscape.com
b485d030fd
Bug 188856: it is not necessary to declare 'crv' in these blocks because it
...
is already declared in the outer scope.
2003-02-18 02:47:04 +00:00
wtc%netscape.com
629dd8c57a
Bug 192617: export NSS_CMSRecipientInfo_Wrap/UnwrapBulkKey from the smime3
...
shared library.
2003-02-18 00:45:34 +00:00
wtc%netscape.com
46b5be5b53
Bug 134967: handle spaces and hyphens in $(USERNAME). Convert them to
...
underscores. r=seawood@netscape.com .
2003-02-15 20:39:01 +00:00
wtc%netscape.com
c766b3d808
Bug 193055: the "cat ${file} | while read ...do ... done" construct does
...
not work under MKS Korn shell on Windows XP. Replaced it by the equivalent
construct "while read ... do ... done < ${file}".
2003-02-15 04:48:13 +00:00
relyea%netscape.com
4c4ce5586d
Bug 167756. Address Nelson's review comments. remove socket specific latency
...
in favor of a slot specific latency test (already done by pk11wrap code).
2003-02-15 01:21:25 +00:00
relyea%netscape.com
7737f1bf2b
bug193367: Don't blindly copy all the certs from a given S/MIME message into the db.
2003-02-15 00:23:04 +00:00
sonja.mirtitsch%sun.com
6f1f50b42a
bug 193394, change to check returncode of modutil after switching to
...
fips mode, r=wtc
2003-02-14 21:30:45 +00:00
wtc%netscape.com
42ae3a8e2c
There should be no token after #endif.
2003-02-14 05:32:35 +00:00
kirk.erickson%sun.com
1fa1add016
Changed License: MPL to MPL/GPL.
2003-02-13 18:24:07 +00:00
relyea%netscape.com
f9dd52a261
Turn off debugging output now that we have the tinderboxen working correctly.
2003-02-13 17:41:45 +00:00
kirk.erickson%sun.com
2b7de9c634
Added softokn3 library, and the new integrity check files.
2003-02-13 03:30:19 +00:00
wtc%netscape.com
4c2bfee832
Bug 193057: add WINNT5.1_* symlinks in mozilla/dist for Windows XP QA.
2003-02-13 01:45:01 +00:00
relyea%netscape.com
65978ca4e4
Turn off the mangle test for now.
2003-02-12 22:21:59 +00:00
kirk.erickson%sun.com
d44a9d0be8
Removed extraneous ` from PRODUCT_VERSION.
2003-02-12 16:12:14 +00:00
wtc%netscape.com
ff2fd3be04
Bug 107976: allow CC to be overridden (with the full pathname of the C
...
compiler) on the make command line.
Modified files: AIX.mk ruleset.mk
2003-02-11 01:15:36 +00:00
relyea%netscape.com
d104d1a923
Always free the key reference passed to us from the client
2003-02-10 22:36:45 +00:00
kirk.erickson%sun.com
390576ed9e
Resolves bug 191221, by adding dynamic versioning for Solaris.
2003-02-10 18:18:52 +00:00
wtc%netscape.com
ada7b251c4
Bug 131826: backed out the zlib 1.1.4 upgrade because the signtool tests
...
failed.
Modified Files:
README adler32.c compress.c crc32.c deflate.c deflate.h
example.c gzio.c infblock.c infblock.h infcodes.c infcodes.h
inffast.c inffast.h inflate.c inftrees.c inftrees.h infutil.c
infutil.h minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c
zutil.h
2003-02-08 15:00:13 +00:00
wtc%netscape.com
22417a7df4
Bug 131826: checked in the README file of zlib 1.1.4.
2003-02-08 09:10:36 +00:00
wtc%netscape.com
305ac614c0
Bug 131826: upgraded to zlib 1.1.4.
...
Modified Files:
adler32.c compress.c crc32.c deflate.c deflate.h example.c
gzio.c infblock.c infblock.h infcodes.c infcodes.h inffast.c
inffast.h inflate.c inftrees.c inftrees.h infutil.c infutil.h
minigzip.c trees.c uncompr.c zconf.h zlib.h zutil.c zutil.h
2003-02-08 08:50:42 +00:00
wtc%netscape.com
80d543aa32
Bug 131826: added maketree.c from zlib 1.1.4.
2003-02-08 08:37:00 +00:00
wtc%netscape.com
9d38af738e
Removed unused files stubs.c and zip_nodl.c.
2003-02-08 08:35:07 +00:00
wtc%netscape.com
a301d47f42
Bug 131826: added new header files from zlib 1.1.4.
...
Added Files: trees.h inffixed.h
2003-02-08 08:30:11 +00:00
relyea%netscape.com
ab77a6c23c
Sigh, the QA scripts look for the word 'failed', but it's common that we
...
can't open the shared library and isn't a real failure, so change the wording
2003-02-08 01:52:37 +00:00
relyea%netscape.com
41a2236e7e
Skip corruption test if someone has locked down the shared library on us.
2003-02-08 00:02:06 +00:00
wtc%netscape.com
5076009554
Exit with 1 rather than -1 on failure. Make sure the program exit with 1
...
on all failures. Remove the symlink, if a file/symlink by that name already
exists, before creating it to avoid the EEXIST error.
2003-02-07 23:41:15 +00:00
wtc%netscape.com
d84be87533
Use <> around standard/system header files. This file does not need
...
string.h, but it should include stdio.h because it uses fprintf and printf.
2003-02-07 23:21:53 +00:00
nelsonb%netscape.com
a39cc492bc
Fix bug 190527. Properly extend buffer when data exceeds 512 bytes.
2003-02-07 23:09:35 +00:00
relyea%netscape.com
7903049797
Fix signed/unsigned display issue.
...
Add more loggin information on errors (rev 1.3 added this but lost it's log).
2003-02-07 23:05:07 +00:00
relyea%netscape.com
d07389a152
*** empty log message ***
2003-02-07 23:02:43 +00:00
relyea%netscape.com
1c52cb2c3d
Add test to see if the shlib was actually changed.
2003-02-07 21:13:10 +00:00
relyea%netscape.com
e196a4143b
Add Mangle logging...
2003-02-07 21:12:26 +00:00
relyea%netscape.com
267c0b8095
Add debugging information. Turn on tempararily to get debug info from tinderbox failures.
2003-02-07 19:22:42 +00:00
kirk.erickson%sun.com
f0a7cc54bb
Moved rules.mk include to the end.
2003-02-07 07:16:37 +00:00
wtc%netscape.com
8a3913ab4f
Set the default compiler to cc.
2003-02-07 06:57:57 +00:00
nelsonb%netscape.com
140acf91e3
Move the implementation of the TLS Pseudo Random Function (PRF) from
...
pkcs11c.c into a new file: tlsprf.c.
2003-02-07 06:42:20 +00:00
nelsonb%netscape.com
1bea4fac99
Fix the dbtests test on Windows, when run in all.sh.
...
The problem was that fips.sh created a file in . named dbtest, which was
actually some text output by a previous test. This dbtest file prevented
the dbtest program from running. The text file now has another name.
2003-02-07 06:32:59 +00:00
kirk.erickson%sun.com
a07280607f
Resolves bug 189504 (Build Linux RPMS).
2003-02-07 05:56:15 +00:00
nelsonb%netscape.com
6a424428f3
MKS shell doesn't know about echor command. Does any shell?
2003-02-07 05:48:34 +00:00
nelsonb%netscape.com
63cbaffd59
Remove unreferenced local variables from functions.
2003-02-07 05:08:01 +00:00
wtc%netscape.com
3da1c11d28
Moved the definition of MD_LIB_RELEASE_FILES from manifest.mn to Makefile
...
so that it is right next to the definition of CHECKLOC, which it uses.
2003-02-06 22:37:37 +00:00
relyea%netscape.com
f97a44db49
Clean up tests
...
Suppress error messages which we were expecting because it causes the QA
scripts to report a QA failure.
2003-02-06 19:06:39 +00:00
relyea%netscape.com
0022c47e93
Mangle will be changing the shared libraries, so it should link with them.
2003-02-06 18:18:42 +00:00
wtc%netscape.com
d12037cd31
Bug 177387: Put the configuration/assignments before the rules in Makefile.
...
Define MD_LIB_RELEASE_FILES in manifest.mn so that the *.chk files are
included in the mdbinary.jar files generated by the release target.
2003-02-06 16:56:46 +00:00
relyea%netscape.com
f61ba94871
Turn on FIPS test again.
2003-02-06 16:13:44 +00:00
relyea%netscape.com
4bb120679c
Introduce shell variables for DLL_PREFIX and DLL_SUFFIX
2003-02-06 16:13:22 +00:00
wtc%netscape.com
d7d81c7883
Support both ";" and ":" as PATH separators on Windows. MKS Korn shell
...
uses ";" but Cygwin bash uses ":".
2003-02-06 14:52:43 +00:00
wtc%netscape.com
5cc66223d8
Backed out the previous checkin because it doesn't work on Windows.
2003-02-06 05:33:33 +00:00
wtc%netscape.com
eabc27a398
Bug 188441: compile with -D_USE_BIG_FDS on HP-UX. This ensures that fd_set
...
is large enough for 60,000 file descriptors.
2003-02-06 04:43:03 +00:00
wtc%netscape.com
025206b16f
Bug 177387: include the *.chk files in the mdbinary.jar files generated by
...
the release makefile target.
Modified Files: lib/freebl/manifest.mn lib/softoken/manifest.mn
2003-02-06 03:52:37 +00:00
relyea%netscape.com
9dbd723151
Remove mangle test until we can get the correct library name inside fips.sh for all platforms
2003-02-06 01:07:39 +00:00
relyea%netscape.com
7be71c5a0f
Add check to 1) make sure we are in FIPS mode. and 2) to verify that we
...
detect corrupted shared libraries while in FIPS mode.
2003-02-06 00:50:00 +00:00
relyea%netscape.com
90be81e5ad
The NSPR get shared lib interface requires the library name only,
...
not a partial path to the library. This affects AIX.
2003-02-06 00:49:09 +00:00
relyea%netscape.com
f419ac9454
Try to load the new module before we've unloaded the old one. This now
...
works in NSS, and it allows us to back out if the new one didn't load (because
FIPS could not verify the shared module for instance).
2003-02-05 00:35:53 +00:00
relyea%netscape.com
0c754d450b
Update db test to verify cert8 not cert7
2003-02-05 00:33:52 +00:00
relyea%netscape.com
87a6506c3f
Surface the Err codes if we fail to shift to FIPS mode.
...
Add new option to verify that we have shifted to FIPS mode.
2003-02-05 00:31:15 +00:00
relyea%netscape.com
9091d5b06d
1) turn on mangle builds.
...
2) better fix for the missing MAXPATHLEN missing define.
3) make room for the '\0' in the pathname.
2003-02-05 00:29:35 +00:00
relyea%netscape.com
d4c0391ff4
Fix LINUX breakage (define MAXPATHLEN if it wasn't defined the the standard
...
system headers).
2003-02-04 23:39:15 +00:00
relyea%netscape.com
a0499c74ef
Add code to handle symlinks.
...
Add verbose output to print out hashes and signatures.
2003-02-04 23:18:08 +00:00
relyea%netscape.com
efdcf189a1
Add program which will mangle exactly 1 bit in a file.
2003-02-04 23:16:56 +00:00
relyea%netscape.com
75390fc662
Fix windows build breakage.
2003-02-04 19:03:11 +00:00
kaie%netscape.com
c4f37c6503
b=191301 Crash if I cancel "Choose token" dialog on Cert import
...
r=javi sr=darin a=dbaron
2003-02-04 01:37:23 +00:00
relyea%netscape.com
83e97a17cc
Shell script to set up the path before running the signing tool
2003-02-03 21:06:57 +00:00
relyea%netscape.com
2d91037f77
Generate .chk file at build time when we build shlibsign
2003-02-03 21:06:18 +00:00
relyea%netscape.com
447f0c56f9
Check bug 188856 into the tip.
...
1)return proper error code in more cases. 2) Fix bug in DH KeyPair Generation.
the essential part of this fix in pkcs11c.c where we add the CKA_NETSCAPE_DB
attribute on Diffie-Hellman key gen. I don't know why the code would have even
thought of working without this (unless we were testing with pregenerated
keys).
The rest of the fix is to surface more of the PKCS #11 error back up. There is
a separate bug to continue tracking the issue of lost PKCS #11 errors.
2003-01-31 23:39:34 +00:00
kaie%netscape.com
0f380e799b
b=189974 Profile Switching fails after JavaScript based cert import
...
PSM portion of fix
r=javi sr=darin a=asa
2003-01-31 22:33:49 +00:00
nelsonb%netscape.com
3f08900d2f
Fix an uninitialized variable. Bug 191396.
2003-01-31 22:26:56 +00:00
nelsonb%netscape.com
340366e2ff
Fix crash in CERT_CheckKeyUsage caused by dereferencing a returned pointer
...
without checkin it for NULL.
2003-01-31 02:49:13 +00:00
nelsonb%netscape.com
9b5a756ce6
Fix bug 191396. Don't generate SEC_ERROR_LIBRARY_FAILURE unnecessarily
...
while doing dsa signatures.
2003-01-31 02:39:36 +00:00
relyea%netscape.com
e7212afe42
FIPS library verifier.
2003-01-30 23:38:07 +00:00
relyea%netscape.com
691d3e25e1
FIPS library verifier
2003-01-30 23:36:37 +00:00
wtc%netscape.com
604f0ed9a1
Bug 191214: fixed the object leaks in signtool that prevented NSS_Shutdown
...
from succeeding and added the NSS_Shutdown call back. r=jpierre.
Modified Files: certgen.c sign.c signtool.c
2003-01-30 23:11:13 +00:00
wtc%netscape.com
060a90105f
Bug 177387: temporarily added freebl_GetLibraryFilePathname to libfreebl.a.
...
This function has the same semantics as the NSPR 4.3 function
PR_GetLibraryFilePathname. This patch should be backed out when NSPR 4.3 is
released.
Modified Files: config.mk manifest.mn
Added Files: libpath.c
2003-01-30 07:00:32 +00:00
jpierre%netscape.com
7f77163102
Fix for 190424 - don't query CKA_NETSCAPE_EMAIL attribute. r=wtc
2003-01-30 05:12:10 +00:00
jpierre%netscape.com
da30938629
Fix for 190424 - don't query CKA_NETSCAPE_EMAIL attribute . r=wtc
2003-01-30 03:02:55 +00:00
jpierre%netscape.com
455618e1a1
Patch for memory leak . Bug 189976 . r=wtc
2003-01-30 02:59:35 +00:00
wtc%netscape.com
78b89796f5
Bug 191214: backed out the previous checkin until this bug (object leaks)
...
is fixed.
2003-01-30 01:50:31 +00:00
wtc%netscape.com
dd7b545622
Bug 171263: signtool should call NSS_Shutdown before it exits.
2003-01-30 00:39:37 +00:00
relyea%netscape.com
510d42958f
Move LIBJAR definitions around so that NT builds.
2003-01-29 23:37:10 +00:00
kaie%netscape.com
ba2b38282a
b=165301 False mixed content (encrypted page with unencrypted information) Security Warning
...
r=javi sr=darin a=asa
2003-01-29 03:52:01 +00:00
relyea%netscape.com
3a46194bdd
1) add vfyserv to the standard build.
...
2) add tool to build shared library signature files for FIP's.
Code to verify requires NSPR changes before we can check it in.
2003-01-28 18:53:22 +00:00
relyea%netscape.com
99d710be9c
New header file to dump defines for managing signed FIPs libraries.
2003-01-28 18:50:02 +00:00
relyea%netscape.com
943c3bc77e
Compile modutil with shared libraries.
2003-01-28 16:44:33 +00:00
relyea%netscape.com
6be85505ba
Export functions needed for modutil to be compiled dynamically.
2003-01-28 16:41:46 +00:00
relyea%netscape.com
d58c1ec22c
Remove dead code and symbols from lib jar so that modutil can compile when
...
linked with it.
2003-01-28 16:39:32 +00:00
relyea%netscape.com
368b83f17c
Sign 3 sets of changes are here:
...
1) Provide accessor functions for the PK11_DefaultArray so that modutil
does not have to link statically to access it.
2) Try setting the attribute on an object before we go to the work of copying
it (Function Only used in Java).
3) Optimize searching for the more common types of attributes.
2003-01-28 16:38:04 +00:00
kaie%netscape.com
c422b330bd
b=190640 Remove the DHE ciphersuites until they work
...
r=javi sr=bryner a=asa
2003-01-28 15:06:29 +00:00
kaie%netscape.com
91db3e3aac
b=190394 "website certified by an unknown authority" - nssckbi not found breaks PKI trust
...
r=dougt sr=darin a=asa
2003-01-27 23:53:02 +00:00
wtc%netscape.com
a6be0bf311
Bug 90010: added support for parisc64. I received this patch from
...
Christopher Blizzard <blizzard@mozilla.org>.
2003-01-27 22:36:06 +00:00
wtc%netscape.com
228b3e52ed
Bug 190396.
...
Don't fail the search if the token returned an error that indicates that it
legitimately couldn't find a CRL
2003-01-24 06:37:03 +00:00
relyea%netscape.com
998b101109
Bug 167756. Clean up previous patch: add lastState field, and set the SSL Error on failure.
2003-01-23 22:02:37 +00:00
relyea%netscape.com
17117c5e23
Write changes back to the database when we correct incorrect user bit settings.
2003-01-23 19:38:53 +00:00
relyea%netscape.com
f83c287af6
Set the size value when extracting a key 19011.
2003-01-23 17:30:15 +00:00
relyea%netscape.com
7d03017158
Check for token removal before continuing SSL sessions which have client auth
...
with certs associated with that token. bug 167756.
2003-01-23 17:27:34 +00:00
relyea%netscape.com
61a6011027
Fix bug 180824 Version 3.4 string hard coded in default token name.
2003-01-23 17:16:50 +00:00
wtc%netscape.com
e1a72ee085
Bug 90010: added support for Linux for s390 and s390x. The patch is
...
contributed by Gerhard Tonn <GerhardTonn@swol.de>.
2003-01-23 17:16:32 +00:00
ian.mcgreer%sun.com
ae2e606e54
always use explicit serial numbers on generated certs, should fix QA failures on leia
2003-01-23 15:38:03 +00:00
jpierre%netscape.com
f593a5bac0
Fix for bug #126930 - make SSL_ConfigServreSessionIDCache work on OS/2 by not using shared memory in single process mode. r=nelsonb
2003-01-23 00:15:08 +00:00
wtc%netscape.com
8518277691
Bug 190112: PK11_ReadAttribute needs to call PK11_ExitSlotMonitor before
...
we return because of allocation failure.
2003-01-22 17:44:36 +00:00
wtc%netscape.com
0a514a798c
Bug 189546: updated the comments to reflect what the new code does.
2003-01-22 06:24:53 +00:00
timeless%mozdev.org
06b309aa38
Bug 179798 cookie confirm dialog no longer works in embedding (doesn't call nsIPrompt service)
...
patch by mvl@exedo.nl r=dwitte sr=darin
2003-01-22 05:52:33 +00:00
nelsonb%netscape.com
8a025005e9
Add OIDs for AES Key Wrap mechanism.
2003-01-22 04:35:54 +00:00
wtc%netscape.com
b4f31cb711
Bug 189546: moved the switch statement for known key lengths to the
...
beginning of PK11_GetKeyLength to work around a deadlock in nCipher
module if PK11_ExtractKeyValue is called.
2003-01-22 03:55:21 +00:00
kaie%netscape.com
41218ef77c
b=188363 Bad error messages when server uses an invalid cert (-8054)
...
r=nelsonb sr=blizzard
2003-01-22 03:41:35 +00:00
nelsonb%netscape.com
65a0422f22
Implement new AES Key Wrap mechanisms. Bug 167818.
2003-01-22 03:13:04 +00:00
wtc%netscape.com
fdf8f4dc25
Bug 189345: we incorrectly assumed that a C_XxxFinal call to determine the
...
length of the buffer would also terminate the active operation if the
buffer length is 0. PKCS#11 says it doesn't, so we need to make the
additional C_XxxFinal call even if the buffer length is 0. Allocate a
buffer from the heap if the stack buffer is too small and free the
heap-allocated buffer before we return from pk11_Finalize. We can use the
stack buffer if count is equal to its size.
2003-01-21 19:33:24 +00:00
seawood%netscape.com
5bc0f27843
I always forget to change both the declaration & the definition.
...
Thanks to bird@anduin.net for the patch.
Fixing OS/2 bustage.
2003-01-19 06:43:19 +00:00
seawood%netscape.com
0b3f900ae5
Callback functions must be defined as such.
...
Fixing OS/2 bustage.
2003-01-19 02:43:13 +00:00
kaie%netscape.com
d007c347bc
b=189205 Implement early shutdown of NSS resources
...
r=javi sr=darin
2003-01-18 14:03:00 +00:00
relyea%netscape.com
65a9359e6e
Bug 198364. Tokens keys do not own their handles. Don't let the key
...
get destroyed when freed.
2003-01-18 01:49:33 +00:00
nelsonb%netscape.com
b39068212e
When wrapping secret keys with an unpadded block cipher, null padd the keys
...
as necessary, per the PKCS 11 spec. Also, implement padding and unpadding
for single-part only ciphers.
2003-01-17 05:50:08 +00:00
wtc%netscape.com
3cfd1da0cc
Bug 145029: fixed compiler warnings (mostly "xxx might be used
...
uninitialized").
2003-01-17 02:49:11 +00:00
nelsonb%netscape.com
66dbe61852
One more fix for HPUX and Solaris.
2003-01-16 01:44:43 +00:00
jpierre%netscape.com
bd1c6e2d6f
Fix incorrect usage of QuickDER . See bug 160805 comment 16
2003-01-16 00:56:10 +00:00
nelsonb%netscape.com
52c0e7f513
Fix compilation error. This file is only compiled on 2 platforms.
2003-01-16 00:55:53 +00:00
nelsonb%netscape.com
191e2830e1
Switch from the old vendor-defined mechanism numbers to the new official
...
PKCS 11 mechanism numbers. These numbers will appear in v2.20.
2003-01-16 00:43:58 +00:00
nelsonb%netscape.com
48e7307212
Enforce that softoken's mechanisms are used only with the PKCS 11
...
functions that they're defined to work with.
2003-01-16 00:28:05 +00:00
nelsonb%netscape.com
b4debe71ef
Complete the addition of AES Key Wrap to blapi in freebl.
2003-01-16 00:15:21 +00:00
nelsonb%netscape.com
f8ffa9b2df
Remove the implementation of CKM_KEY_WRAP_LYNKS from softoken.
2003-01-16 00:14:07 +00:00
nelsonb%netscape.com
c74e098433
aeskeywrap.c - implement AES Key Wrap algorithm from RFC 3394
2003-01-14 22:16:04 +00:00
glen.beasley%sun.com
63fb2576a6
solaris pkg version
2003-01-14 20:26:36 +00:00