Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-26 06:11:37 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
156,186 Commits 615 Branches 98 Tags 6 GiB
01fe9ff1bf
Commit Graph

3757 Commits

Author SHA1 Message Date
julien.pierre.bugs%sun.com
91408cf272 Fix for bug 317856 . compiler warnings in strsclnt 2006-01-20 00:43:23 +00:00
rrelyea%redhat.com
26731456ca Bugzilla Bug 95323. Conditionally compile nsscapi. 
r=julien
 2006-01-19 19:55:28 +00:00
nelsonb%netscape.com
58862edcbf change QA test order to be bottom-up. Bug 309412. r=jullien.pierre 2006-01-19 11:59:56 +00:00
nelsonb%netscape.com
e521b0a741 Back out last change, which broke the build. 2006-01-19 02:34:12 +00:00
nelsonb%netscape.com
a3089c6a9d Prevent crash when making new cert8.db from old cert5.db. 
This is not the final solution, but it works.
Bug 320029. r=rrelyea,sr=julien.pierre.  On TRUNK.
 2006-01-19 02:16:30 +00:00
nelsonb%netscape.com
f32a4d3f27 Add new function nsslowcert_DecodeAnyDBEntry. Correct the union 
certDBEntry by adding the missing members. Bug 323570. r=rrelyea.
 2006-01-19 02:09:37 +00:00
nelsonb%netscape.com
446a084b09 Softoken will no longer generate excessive key material for some SSL3 
cipher suites.  Bug 274512. r=rrelyea.
 2006-01-19 01:12:53 +00:00
wtchang%redhat.com
d27a2d48d9 Bugzilla Bug 318217: use the new NSPR functions PR_EmulateAcceptRead and 
PR_EmulateSendFile added in NSPR 4.1.  r=nelsonb.
Modified files: manifest.mn sslimpl.h sslsock.c
Removed file: emulate.c
 2006-01-18 23:06:57 +00:00
julien.pierre.bugs%sun.com
0e9451eaef Fix for bug 319495 . Clean up Makefiles for command-line tools. r=nelson 2006-01-18 22:44:39 +00:00
wtchang%redhat.com
ce5e5d7682 Bugzilla Bug 323379: need to set ADDON_PATH for libsoftokn3.so to load 
libfreebl3.so as an add-on on BeOS.  Thanks to Doug Shelton
<doug@sheltonfamily.org>for reporting the bug and verifying the fix.
r=christophe.ravel.
 2006-01-18 20:56:28 +00:00
rrelyea%redhat.com
f822c8f7d0 NSS ECDSA can only sign SHA-1 bug 320583 
r=nelson patch ammended to change SHA-1 to HASH per wtc comment.
 2006-01-17 00:38:59 +00:00
wtchang%redhat.com
143f08953f Bugzilla Bug 320497: indicate that we don't need an executable stack. 
r=wolfgang.rosenauer,jpierre.
Modified files: arcfour-amd64-gas.s mpi/mpi_amd64_gas.s
 2006-01-13 17:33:10 +00:00
alexei.volkov.bugs%sun.com
909bcd2da3 HP and AIX cert extension tests failure fix. 2006-01-13 07:59:31 +00:00
wtchang%redhat.com
cdf90d5eb6 Bugzilla Bug 323079: when libsoftoken and libssl load the freebl library, 
first try without resolving symlinks.  If we fail to load the library and
the pathname is a symbolic link, resolve the symbolic link and try again.
r=jpierre. sr=relyea.
 2006-01-12 23:46:31 +00:00
alexei.volkov.bugs%sun.com
d5a3092f79 cert extension test for 53229: certutil should not use gets(). julien:review+ 2006-01-12 01:09:03 +00:00
wtchang%redhat.com
0d90a194f0 Bugzilla Bug 318968: fixed the build error with NSS_ENABLE_ECC unset. 
Modified files: Makefile fipstest.c
 2006-01-05 21:49:05 +00:00
julien.pierre.bugs%sun.com
fb899e04af Fix the build busted by checkin for bug 318968 2005-12-23 03:14:36 +00:00
wtchang%redhat.com
d8c1021594 Bugzilla Bug 318968: added FIPS ECDSA algorithm test. r=glen.beasley. 
Modified file: fipstest.c
Added file: ecdsa.sh
 2005-12-22 22:22:17 +00:00
wtchang%redhat.com
e681f06b4a Bugzilla Bug 318962: combined a PORT_Realloc and a memset call into an 
equivalent PORT_ZAlloc call.  r=glen.beasley.
 2005-12-22 22:19:03 +00:00
wtchang%redhat.com
cb01eaf34d Bugzilla bug 318962: it is legal for PORT_Realloc(oldptr, 0) to return 
NULL, so that shouldn't be treated as a memory allocation failure.
 2005-12-22 01:39:17 +00:00
glen.beasley%sun.com
784abb2c93 318958 fixing c++/java comment to C 2005-12-21 00:29:44 +00:00
glen.beasley%sun.com
03bbc006b5 318958 fixing Monte Carlo test r=Wan-Teh 2005-12-21 00:13:52 +00:00
glen.beasley%sun.com
3ce12eeea4 318962 buffer fix for SHA Monte Carlo tests r=wan-teh 2005-12-20 18:20:50 +00:00
wtchang%redhat.com
3b577f224d Bugzilla Bug 317052: removed the obsolete file lib/base/whatnspr.c from 
CVS.  r=relyea.
Modified Files:
	base.h error.c manifest.mn
Removed Files:
	whatnspr.c
 2005-12-19 17:53:28 +00:00
wtchang%redhat.com
165d7b9185 Bugzilla Bug 272484: code cleanup. keythi.h: remove the unused type 
definition of SEC_PKCS5KeyAndPassword.  p12d.c: We only need to set
p12dcx->currentASafeP7Dcx to NULL if it isn't NULL.  r=relyea.
Modified Files: cryptohi/keythi.h pkcs12/p12d.c
 2005-12-19 17:46:30 +00:00
nelsonb%netscape.com
8888626b36 Fix build. Remove c++ style declaration of loop control variables. 2005-12-17 01:03:12 +00:00
glen.beasley%sun.com
f39056f8e1 318964 implement HMAC algorithm tests for FIPS 140-2 validation r=Wan-teh 2005-12-16 16:57:49 +00:00
rrelyea%redhat.com
4961f4ed28 Mac fixes to ckfw. 2005-12-16 01:57:41 +00:00
rrelyea%redhat.com
ec7b991d91 Add support for the cryptoki crypto functions. This support is necessary for 
capi and mackey. r=kaie
 2005-12-16 00:48:02 +00:00
glen.beasley%sun.com
db00345d74 318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh 2005-12-15 18:50:52 +00:00
glen.beasley%sun.com
e14803c6ab 318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh 2005-12-15 18:47:20 +00:00
wtchang%redhat.com
cfdbc102fe Bugzilla Bug 320047: mp_to_unsigned/signed/fixlen_octets copies nothing to 
the buffer if the mp_int is zero. r=nelsonb.
 2005-12-14 02:18:35 +00:00
wtchang%redhat.com
fff23fc797 Bugzilla Bug 236245: Updated NSS to "ECC Cipher Suites for TLS" draft 12 
plus upcoming revisions.  The patch is contributed by Douglas Stebila
of Sun Labs <douglas@stebila.ca>. r=wtc.
Modified Files:
	cmd/selfserv/selfserv.c cmd/strsclnt/strsclnt.c
	cmd/tstclnt/tstclnt.c cmd/vfyserv/vfyserv.c lib/ssl/ssl3con.c
	lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslenum.c
	lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
	lib/ssl/sslsock.c tests/ssl/ecssl.sh tests/ssl/ecsslauth.txt
	tests/ssl/ecsslcov.txt tests/ssl/ecsslstress.txt
	tests/ssl/ssl.sh
 2005-12-14 01:49:40 +00:00
glen.beasley%sun.com
ae4c8fde88 318958 removal of DES and Triple DES 140-1 code r=wan-teh 2005-12-14 01:19:11 +00:00
wtchang%redhat.com
d1a203a963 Bugzilla Bug 320038: ecl/ecl-curve.h: removed unnecessary leading zero byte 
in the base point orders of curves K-233 and K-409.  ec.c: pad the private
key with leading zeros to the length of the base point order.
r=douglas.steblia.
 2005-12-13 22:31:34 +00:00
glen.beasley%sun.com
b6c6d7d561 318958 TDEA algorithm tests for FIPS 140-2 2005-12-09 16:55:53 +00:00
relyea%netscape.com
4092a7d72e Initialize mpi data using mpi macros, not static data bug 319252 
r=douglas
 2005-12-08 23:22:26 +00:00
alexei.volkov.bugs%sun.com
8939047c97 305028: make pretty print utility print hex data in case when data type was not recognized; rw+nelson 2005-12-05 23:09:38 +00:00
relyea%netscape.com
77cb1d9d48 Bug 316925 
Key export does not work on tokens with non-sensitive keys that can't wrap.
r=kaie
 2005-11-24 00:40:14 +00:00
relyea%netscape.com
38154c250e Bug 129303 
NSS needs to expose interfaces to deal with multiple token sources of certs.

r=kaie
 2005-11-23 23:56:38 +00:00
relyea%netscape.com
4b7f9f6804 Bug 129303 NSS needs to expose interfaces to deal with multiple token sources of certs 
r=kaie
 2005-11-23 23:54:15 +00:00
relyea%netscape.com
cdcebb8e7e PKCS #11 module to supply Access to the Mac OS X Keychain. 2005-11-23 23:04:08 +00:00
nelsonb%netscape.com
b64584ad16 Fix bug in MP_ALIGN macro that always truncated pointers to 32-bits, 
even on 64-bin platforms.  Bug 298630. r=rrelyea.
 2005-11-23 01:12:34 +00:00
relyea%netscape.com
2537abf9f5 Weave patch: bug 298630 r=nelson 2005-11-22 07:16:43 +00:00
nelsonb%netscape.com
ac287b2f5a Begin building mpcpucache.c. On Sun Studio platforms, build from two 
new .s files.  Bug 298630. r=rrelyea.
 2005-11-22 07:13:32 +00:00
christophe.ravel.bugs%sun.com
0750e1e7ef Turn NSS_BETA off for NSS 3.11 RC2. 
r+ Julien Pierre.
 2005-11-22 01:58:35 +00:00
christophe.ravel.bugs%sun.com
dc5fae9e7c Back to BETA flag on the trunk. 
r+ Julien Pierre
 2005-11-21 18:46:12 +00:00
christophe.ravel.bugs%sun.com
46f08a0c89 Turn NSS_BETA to FALSE for NSS 3.11 RC. 
r+: Julien Pierre.
 2005-11-21 04:08:44 +00:00
alexei.volkov.bugs%sun.com
1f95dbe302 53229: certutil should not use gets(); 
julien rv+; wan-teh sr+
 2005-11-20 01:46:59 +00:00
christophe.ravel.bugs%sun.com
9e6573e0d5 238319: Sun packages changes. 
RPM_RELEASE can be set from the command line.
 2005-11-18 21:52:41 +00:00
nelsonb%netscape.com
94fdf98965 Initialize slot pointer in ssl3_HandleServerHello. Bug 311590. r=wtchang 2005-11-18 01:25:20 +00:00
nelsonb%netscape.com
719073fb14 Restore binary compatilibity for old Fortezza cipher suites. 
Bug 316640. r-glen.beasley
 2005-11-18 01:21:22 +00:00
wtchang%redhat.com
c0f9d272c7 Bugzilla Bug 292427: on Windows, search in $(DIST)/lib before $(DIST)/bin 
because in a Mozilla build $(DIST)/bin may contain old copies of the NSS
DLLs. r=relyea,jpierre.
 2005-11-16 02:17:36 +00:00
relyea%netscape.com
a8e0c27896 Handle nicknames on certificates. 
Fix bug where we weren't allocating enough space for wchar (wide, utf16, etc).
strings in ckcapi_UTF8ToWide().
 2005-11-16 01:17:25 +00:00
neil.williams%sun.com
15d70374a3 Bug 315135, pk12util -w <non-existent pwfile> causes seg fault. 
r=nelson
 2005-11-16 00:59:18 +00:00
nelsonb%netscape.com
f3033246a0 Eliminate leak and heap buffer overrun. Bug 315994. r=julien, sr=rrelyea 2005-11-15 23:40:18 +00:00
julien.pierre.bugs%sun.com
77223c1981 fix for bug 316446 . -z defs option was included twice in linker line . r=nelson 2005-11-15 19:01:18 +00:00
wtchang%redhat.com
32d9fe89fe Bugzilla Bug 312202: use the _32 tag in 32-bit HP-UX IPF builds. Use the 
$ORIGIN linker keyword when building shared libraries and executable
programs on HP-UX IPF. r=nelsonb.
Modified Files: coreconf/HP-UX.mk nss/cmd/platlibs.mk
 2005-11-15 18:19:18 +00:00
relyea%netscape.com
89daf52413 New pk11util scripts. 2005-11-15 01:53:44 +00:00
relyea%netscape.com
868598f26a Add loops, conditionals and simple math. 2005-11-15 01:49:01 +00:00
julien.pierre.bugs%sun.com
59d85a9b9a Fix for bug 232604. don't open DBs in user's directory in shlibsign. r=nelson 2005-11-15 00:34:39 +00:00
relyea%netscape.com
af1573d374 Add r/w support. The Capi token can now: 
Import certs and keys.
  Delete certs and keys.
 2005-11-15 00:13:58 +00:00
julien.pierre.bugs%sun.com
ef1384c27b Fix for bug 316250. crmftest doesn't build on OS/2. Add LIB_PREFIX . 2005-11-14 00:17:21 +00:00
julien.pierre.bugs%sun.com
f82a46ec10 Fix for bug 316219. Don't build an import library on OS/2. r=wtchang 2005-11-14 00:13:41 +00:00
julien.pierre.bugs%sun.com
4f35393d59 Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson 2005-11-12 00:14:25 +00:00
julien.pierre.bugs%sun.com
c5d6929c9f Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson 2005-11-11 23:36:33 +00:00
julien.pierre.bugs%sun.com
7c97b65b2b Fix for bug 315033 . Remove dead command-line tool sources. r=nelson 2005-11-11 04:02:16 +00:00
julien.pierre.bugs%sun.com
f0de63d8ed Fix for 292156. Prevent crash in SSL session cache init if invalid arguments are passed. r=nelson 2005-11-11 02:45:59 +00:00
julien.pierre.bugs%sun.com
e5fca3df1d Fix for bug 292156. Add -C SSLCacheEntries option to selfserv. r=nelson 2005-11-11 02:44:56 +00:00
julien.pierre.bugs%sun.com
15a23c7092 Fix for 166727 . certutil should not call CERT_GetDBContentVersion. r=nelson 2005-11-10 21:18:26 +00:00
julien.pierre.bugs%sun.com
f98d49a913 Remove dead config.mk files for modutil and ssltap. Fix for 294720. r=nelson 2005-11-10 03:00:05 +00:00
julien.pierre.bugs%sun.com
7e9a679a65 Resolve symlinks when loader freebl shared libs, and limit iterations to 20. r=wtchang 2005-11-10 02:18:22 +00:00
wtchang%redhat.com
560f560f03 Bugzilla Bug 311432: renamed USE_FP_CODE as ECL_USE_FP. Do not set 
ECL_USE_FP to 1 on Linux x86 to work around the bug.  Moved a dependency
rule to the appropriate section of the makefile. r=nelsonb.
 2005-11-08 22:03:17 +00:00
wtchang%redhat.com
4c003bfe53 Improved a comment. Suggested by Nelson Bolyard of Sun. r=wtc. 2005-11-08 22:00:46 +00:00
alexei.volkov.bugs%sun.com
71d67849a3 fix for 313680: add missing TLS cipher types to SSLTAP. r=nelson 2005-11-07 23:54:33 +00:00
christophe.ravel.bugs%sun.com
e748b37142 238319: Sun packages changes 
Set rpm release to 2 for NSS 3.11
 2005-11-07 20:20:10 +00:00
wtchang%redhat.com
ff785bd766 Bugzilla Bug 298522: added power-up self tests for HMAC SHA-384 and HMAC 
SHA-512.  The patch was written by Glen Beasley of Sun. r=wtc.
 2005-11-07 19:05:45 +00:00
wtchang%redhat.com
4029572119 Bugzilla bug 313196: include the minimal headers. 2005-11-07 19:00:58 +00:00
wtchang%redhat.com
126f513f21 Bugzilla Bug 313196: checked in a header inclusion change that I missed in 
the previous checkin.
 2005-11-07 18:48:39 +00:00
wtchang%redhat.com
1714be323f Bugzilla Bug 313196: HMAC code should not use a fixed hash input block size 
of 64 bytes, which is wrong for SHA-384 and SHA-512.  This requires adding
the hash input block size to the SECHashObject structure. r=relyea,nelsonb
Modified Files:
	cryptohi/hasht.h cryptohi/sechash.c freebl/alghmac.c
	freebl/blapit.h freebl/rawhash.c
 2005-11-07 18:44:21 +00:00
wtchang%redhat.com
d576bf2833 Replaced the magic constant 20 by SHA1_LENGTH. Use sizeof(buffer) to 
be more robust. r=nelsonb
 2005-11-05 01:00:14 +00:00
relyea%netscape.com
ce75b22933 replace missing header files. 2005-11-04 23:44:19 +00:00
wtchang%redhat.com
1ce181b01e Bugzilla Bug 311958: Update the nssckbi versions for NSS 3.11. r=relyea. 2005-11-04 22:51:55 +00:00
julien.pierre.bugs%sun.com
799adefa45 Move ret_cr16.s from util to freebl. r=nelsonb 2005-11-04 04:11:04 +00:00
relyea%netscape.com
3597080dab Initial CAPI PKCS #11 Module. 
Needs the updated ckfw.
 2005-11-04 02:05:04 +00:00
wtchang%redhat.com
898c89fc45 Bugzilla Bug 298512: Ensure the seed and seed key input for RNG do not have 
same value for FIPS 140-2. r=nelsonb.
 2005-11-04 01:07:30 +00:00
julien.pierre.bugs%sun.com
bd999cb1b2 Remove nmake Makefiles and references to them. r=nelson 2005-11-04 01:01:37 +00:00
julien.pierre.bugs%sun.com
4fb160cf44 Remove dead files. r=wtchang 2005-11-04 00:48:41 +00:00
julien.pierre.bugs%sun.com
da619f8dec Fix for 314115 . Comments about QuickDER and classic ASN.1 decoders relating to SECItem.type field 2005-10-31 18:52:20 +00:00
julien.pierre.bugs%sun.com
3e221bfb46 Fix for 314115 - QuickDER modifies SECItem.type while decoding. r=wtchang 2005-10-31 18:34:42 +00:00
wtchang%redhat.com
8732358f93 Bugzilla bug 239960: cvs removed cmd/swfort. r=relyea. 2005-10-27 22:49:22 +00:00
wtchang%redhat.com
8e70cf6f2e Bugzilla bug 298522: added power-up self tests for HMAC SHA-1 and HMAC 
SHA-256.  The patch is contributed by Glen Beasley of Sun. r=wtc.
 2005-10-20 21:46:51 +00:00
wtchang%redhat.com
5d658b3517 Build fipstest. 2005-10-19 01:14:20 +00:00
julien.pierre.bugs%sun.com
c3b3a7e2c1 Add dependency on freebl so ssl will rebuild if freebl has changed. 2005-10-19 01:04:16 +00:00
julien.pierre.bugs%sun.com
4c37a26617 Add dependency on freebl so softoken will rebuild if freebl has changed. 2005-10-19 01:03:31 +00:00
wtchang%redhat.com
cc8b26183b Added a shell script for running the NIST AES Algorithm Validation Suite. 2005-10-19 00:55:20 +00:00
wtchang%redhat.com
d2dee7d603 Bugzilla Bug 312395: Added FIPS AES Known Answer Test, Multi-block Message 
Test, and Monte Carlo Test in ECB and CBC modes.  Also changed the types
of some variables from int to unsigned int to fix compiler warnings about
signed/unsigned comparisons.
 2005-10-14 20:04:39 +00:00
wtchang%redhat.com
e58492ea00 Bugzilla bug 311440: ssl3_ConsumeHandshakeVariable now longer returns a 
SECItem pointing to memory allocated with PORT_Alloc, so we don't need to
use PORT_Free to free the SECItem's buffer.  r=nelsonb.
 2005-10-14 16:48:58 +00:00
wtchang%redhat.com
b957c8d0a7 Bugzilla Bug 312202: checked in HP-UX IPF (Itanium) porting changes 
contributed by Grace Lu of HP.  Use the .so suffix for shared libraries
on HP-UX IPF.  Support building on HP-UX B.11.23. r=wtc.
Modified Files:
	coreconf/HP-UX.mk nss/lib/nss/nssinit.c
Added Files:
	coreconf/HP-UXB.11.23.mk
 2005-10-12 19:04:13 +00:00
wtchang%redhat.com
2193d926c7 Bugzilla Bug 302998: disallow x=0,1 and k=0. r=nelsonb. 2005-10-12 00:48:25 +00:00
neil.williams%sun.com
8657972540 CBug 290263, patch CERT_CreateCertificateRequest for doing extensions 
r=bob
`VS: ----------------------------------------------------------------------
 2005-10-12 00:10:17 +00:00
relyea%netscape.com
f8422acc69 Attempt to fix HPUX test failures. 
Bug 311279 crmftest core dumps on HP-UX
(verbal) r=wtc
 2005-10-08 00:57:31 +00:00
wtchang%redhat.com
491b4ef092 Bugzilla Bug 304360: generate ECC key with private key value less than the 
group order using a combination of ANSI X9.62 A.4.1 and FIPS 186-2 Change
Notice 1.  Also changed structure of EC key generation functions to match
the scheme used in dsa.c.  The patch is contributed by Douglas Stebila
<douglas@stebila.ca> of Sun Labs. r=wtc.
 2005-10-06 23:16:20 +00:00
wtchang%redhat.com
81299cbc68 Bugzilla Bug 257693: set the correct error code in EC_ValidatePublicKey. 
Documented the return values of ECPoint_validate.  Have the tests compare
the return value of ECPoint_validate with MP_NO for negative test cases.
r=doublas.stebila.
Modified Files:
	ec.c ecl/ecl.h ecl/tests/ec2_test.c ecl/tests/ecp_test.c
 2005-10-06 21:42:55 +00:00
wtchang%redhat.com
d420dda744 Bugzilla bug 259135: fixed build breakage. In C, declarations must precede 
code.
 2005-10-05 22:03:14 +00:00
wtchang%redhat.com
002c9cc505 Bugzilla bug 259135: minor comment fix. 2005-10-05 17:58:01 +00:00
glen.beasley%sun.com
814a61d561 259135 added SHA 256,384,512 and AES powerupself tests sr=Wan-Teh 2005-10-05 16:31:01 +00:00
relyea%netscape.com
b0d1e52691 Back out non-reviewed strictly white space change in pk11sdr.c 2005-10-04 01:11:01 +00:00
wtchang%redhat.com
1a02e7736f Made the test compile and link without errors. 2005-10-04 00:46:50 +00:00
wtchang%redhat.com
775508c3c2 Fixed test file line endings. This file must be considered part of the 
NSS module because it needs the private NSS header blapi.h.
 2005-10-04 00:35:51 +00:00
wtchang%redhat.com
3fad97d84a Fixed test file line endings. 2005-10-04 00:28:55 +00:00
wtchang%redhat.com
058312eaa6 Bugzilla bug 310518: map CKR_PIN_INVALID and CKR_PIN_LEN_RANGE to 
SEC_ERROR_INVALID_PASSWORD instead of SEC_ERROR_BAD_PASSWORD. r=relyea.
 2005-10-03 22:41:45 +00:00
relyea%netscape.com
2fcee3f720 remove depricated mechanisms so pk11table continues to build. 2005-10-03 22:19:43 +00:00
relyea%netscape.com
5c3685a18e Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
r=wtc [part 3 of 3]
 2005-10-03 22:01:57 +00:00
relyea%netscape.com
0cefb4acd8 Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
r=wtc [part 2 of 3]
 2005-10-03 22:00:22 +00:00
relyea%netscape.com
0223a07982 This change was not part of bug 272484 and has not been reviewed. 
Back it out.
 2005-10-03 21:58:24 +00:00
relyea%netscape.com
53f4189369 Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
The problem only happens if we try to import a key into a token which then fails
to import. The basic issue was a hack in the pkcs 7 code to support PKCS 12, A
special structure was used to replace the SymKey structure, and the code 'knew'
the special structure existed before it dealt with the symkey. The fix addes a
new capability to symkeys, where applications can attach application specific
data to the key structure. PKCS 12 uses this to attache the PBE information
for CMS. (part 1 of 3)

This patch also improves the key's reuse of sessions, so sessions are not thrashed
when SSL is used with them.

r=wtc
 2005-10-03 21:55:29 +00:00
wtchang%redhat.com
5d52123474 Bugzilla Bug 294106: removed an assertion that's no longer necessary. 
Added buffer length error checking to back up an assertion. r=nelsonb.
 2005-09-30 22:01:46 +00:00
relyea%netscape.com
bb7e1cb9f9 Bugzilla Bug 244922 ASN.1 encoder outputs trash for optional may-stream subtemplate 
r=nelson (original patch by nelson, modifications by me).
 2005-09-30 19:22:48 +00:00
relyea%netscape.com
b354997d97 Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported 
wtc's review r=wtc
 2005-09-29 23:44:39 +00:00
wtchang%redhat.com
5c38b2d572 Bugzilla Bug 294106: dsa.c: use const in the function prototype of 
DSA_GenerateGlobalRandomBytes.  prng_fips1861.c: implemented Algorithm 1
of FIPS 186-2 Change Notice 1 and increased the size (b) of the RNG's
seed-key from 160 bits to 256 bits. r=relyea,nelsonb.
 2005-09-29 23:22:53 +00:00
relyea%netscape.com
952e8e8f45 Tests won't pass if we don't build crmftest 2005-09-29 22:01:52 +00:00
relyea%netscape.com
f07ca5cfef Bug 308887 CRMF request generation problem when using latest firefox 
Add crmf tests to the test suite.
 2005-09-29 21:36:42 +00:00
relyea%netscape.com
9c9cecb9d7 Bugzilla Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported 
r=nelson

This is only the NSS portion of this patch. The PSM portion will be checked in once the
NSS portion is mainlined to mozilla.
 2005-09-29 21:00:58 +00:00
wtchang%redhat.com
fc511c7607 Bug 271317, remove the old fortezza code 2005-09-29 18:09:11 +00:00
relyea%netscape.com
93e1f22027 Bugzilla Bug 298630 freebl needs a memory cache invariant RSA implementation. 
r=nelson
 2005-09-29 17:17:09 +00:00
relyea%netscape.com
b8917d3493 Add better tests for detached signatures. Actually test the other sha 
variants rather than just say we do. done in the context of bug 30887
r=nelson
 2005-09-29 17:14:19 +00:00
relyea%netscape.com
665d2accd1 Bug 271317, remove the old fortezza code 2005-09-29 00:36:53 +00:00
relyea%netscape.com
8d4f93463a Internal NSS defines shared between softoken and the rest of NSS, but not 
exported.

added as part of bug 305697.
 2005-09-28 23:52:59 +00:00
relyea%netscape.com
c4abacd281 Bug 305697 Softoken needs to give on the fly access to additional databases. Part 2, User interface 
r=julien
 2005-09-28 17:17:49 +00:00
relyea%netscape.com
e35607b9c4 bug 305697: open additional database on the fly in softoken. part1: softoken changes. 
r=julien
 2005-09-28 17:12:17 +00:00
nelsonb%netscape.com
ac626ee74e Avoid NULL ptr deref. Bug 310260. patch by Glen.Beasley. r=nelson. 2005-09-28 07:55:37 +00:00
neil.williams%sun.com
7b415783ba Bug 303508, committing attachment 196965. r=nelson,saul 2005-09-23 02:15:03 +00:00
nelsonb%netscape.com
abc6a22d68 Eliminate environment variable SSLNOLOCKS, add environment variable 
SSLFORCELOCKS. Make SSL_FDX option mutually exclusive with SSL_NOLOCKS
option.  Bug 305147. r=rrelyea.
 2005-09-23 01:04:32 +00:00
nelsonb%netscape.com
facd708671 Don't crash when printing an ASN.1 NULL primitive with a NULL prefix 
string.  Bug 309651. r=wtchang.
 2005-09-22 22:45:32 +00:00
nelsonb%netscape.com
d05886f50d Add version info to freebl shared libs for Windows and Unix. bub 303508. 
Modified Files:  config.mk ldvector.c manifest.mn
Added Files:     freebl.rc freeblver.c                 r=wtc.
 2005-09-21 03:01:49 +00:00
nelsonb%netscape.com
f12a0e5a63 Replace "fast" and "slow" with fpu and int in loader.c. Also add a 
comment explaining ISA lists.  r=wtc. bug 303508.
 2005-09-21 02:53:25 +00:00
wtchang%redhat.com
73f597f990 Bug 299197: added the comment for PK11_TokenKeyGen back. r=relyea. 2005-09-21 01:32:11 +00:00
wtchang%redhat.com
ecdf90d92d Bug 299197: fixed comments. r=relyea. 2005-09-21 01:31:37 +00:00
relyea%netscape.com
aa8a2c0490 Only call C_WaitForSlotEvent if the module is PKCS #11 v2.01 or later. 
bug 196811 r=wtc sr=julien
 2005-09-20 20:56:07 +00:00
julien.pierre.bugs%sun.com
b8d9f0ef9a Fix for 293686. Check status from SECU_ParseCommandLine. r=nelson 2005-09-20 05:13:01 +00:00
julien.pierre.bugs%sun.com
48b2d654bd Fix for 292390. NSS tools with missing command-line operands cause crash. r=nelson 2005-09-19 20:59:46 +00:00
julien.pierre.bugs%sun.com
7e8884e00e Fix for 293686 . signver has command-line options with optional arguments. r=nelsonb 2005-09-19 20:52:11 +00:00
christophe.ravel.bugs%sun.com
41da874bf6 238319: Sun packages changes. 
Change libfreebl name on Solaris x86 (following changes from Bugzilla 303508).
 2005-09-19 19:12:24 +00:00
wtchang%redhat.com
13f41d4840 Bugzilla bug 303508: a more elegant way to decide when we need to prefix 
LIBRARY_VERSION with '_'. r=nelsonb.
 2005-09-16 23:18:01 +00:00
julien.pierre.bugs%sun.com
d42e92ad88 Fix hoarked build from previous checkin. Doh. 2005-09-16 21:28:20 +00:00
wtchang%redhat.com
b427dc6efe Bugzilla Bug 298517: when in FIPS mode, impose minimum password length and 
quality to ensure a password guessing probability of less than 1 in
10,000,000, and impose a one second delay after failed login attempt to
allow at most 60 login attempts per minute.  r=relyea,nelsonb.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
 2005-09-16 20:37:58 +00:00
julien.pierre.bugs%sun.com
c56d3589f6 Fix for bug 127960 . Add SSL force handshake APIs which take a timeout . r=nelson 2005-09-16 20:33:09 +00:00
wtchang%redhat.com
2e75eae9d5 Bugzilla Bug 288728: handle invalid values of recipient identifier type. 
r=jpierre,relyea.
 2005-09-16 17:54:31 +00:00
wtchang%redhat.com
019a13cbeb Bugzilla Bug 288728: use a whitelist instead of a blacklist when checking 
for invalid values of "type". r=jpierre,relyea.
 2005-09-16 17:52:37 +00:00