Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-05 00:25:27 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
124,376 Commits 615 Branches 98 Tags 6 GiB
29b3221b09
Commit Graph

4604 Commits

Author SHA1 Message Date
wtc%netscape.com
061f92769b Bugzilla bug 216693: use "." instead of "org" to specify the list for zip. 2003-08-27 01:13:06 +00:00
wtc%netscape.com
797bd4d0ea Import NSS_3_7_8_RTM. 2003-08-27 01:01:59 +00:00
nicolson%netscape.com
ec0fcca998 Update JSS to version 3.4.1. 2003-08-27 00:08:43 +00:00
wtc%netscape.com
b881a9a0c6 Bugzilla bug 72291: have PK11_ListCerts return all the cert instances on 
tokens.  The patch is Julien Pierre's, with changes by Wan-Teh Chang.
Modified Files: pk11wrap/pk11cert.c pki/pki3hack.c pki/pki3hack.h
 2003-08-25 19:18:02 +00:00
wtc%netscape.com
408be85418 Bugzilla bug 209827: disable optimization to work around what appears to 
be a VACPP optimizer bug.
 2003-08-22 22:34:07 +00:00
jpierre%netscape.com
ad699539d3 Fix for bug 216944 - CERT_VerifyCertificate optimizations issues . r= wtc 2003-08-22 18:47:07 +00:00
caillon%returnzero.com
f8e8aed8a7 Backing out the patch to bug 83536. 
I will reland this when 1.6a re-opens.
r+sr=jst@netscape.com
a=chofmann
 2003-08-22 03:06:53 +00:00
wtc%netscape.com
38be9d9331 Bugzilla bug 216693: running make in mozilla/security/jss should build the 
class jar file.
Modified Files: rules.mk build_java.pl
 2003-08-19 20:08:33 +00:00
cls%seawood.org
1b51ba858c Set MODULE in makefiles at the top of a heirarchy so that module-deps lists are more precise and builds will have the proper order if some subdirs contain other modules. 2003-08-16 00:42:35 +00:00
wtc%netscape.com
ca9de7e2fa Bugscape bug 50033: make the KeyType class public and force it to load 
during CryptoManager.initialize(), before we add JSS as a provider.  The
KeyType class was failing to load properly, because its static initializers
force the class load of KeyWrapAlgorithm, whose signature needed to be
verified, which invoked JSS's signature provider, which accessed KeyType.
Basically, installing JSS as the default signature provider before its
classes have loaded creates a possibility of circular dependencies in class
initialization.  The patch is due to Jamie Nicolson.  r=wtc.
Modified Files: CryptoManager.java pkcs11/KeyType.java
 2003-08-15 01:00:35 +00:00
wtc%netscape.com
4520771cc7 Fix from Ian to address Bugzilla bug 202179. 
The fix restores some old code that was removed as part of our
performance work (Bugzilla bug 145322).  Thus, there may be a
slight performance hit, but obviously, we need to have correct
code first.

This is a part of the code I really don't like.  To summarize,
there was a hack put in a long time ago to make sure that the
PKCS#11 session in which the SSL keys are generated was never
closed until the last key was deleted.  This only worked by chance,
and if any part of the code was changed (as was the case here), this
unstable equilibrium would be lost.  As with all hacks, it wasn't
really documented, so the problem escaped our notice.  As a result of
putting the hack back in, we're going back to the horribly wasteful
operation of opening 4 sessions and immediately closing them.  I intend
to have a proper solution in a later release.
 2003-08-12 18:21:55 +00:00
neil%parkwaycc.co.uk
268983f1b3 Bug 211695 Fix bugs in nsCertTree.cpp r=varga sr=alecf moa=kaie a=asa 2003-08-12 11:20:50 +00:00
kairo%kairo.at
5cbc82d1b5 bug 214207 - update localeVersion for 1.5b - rs=blizzard, a=asa 2003-08-11 11:31:24 +00:00
wtc%netscape.com
5d4cb72997 Deleted useless local variable 'arena' in cert_ImportCAChain. 2003-08-08 23:15:50 +00:00
wtc%netscape.com
1d0969818d Bugscape bug 49314: code cleanup. Throw InvalidKeyException directly 
instead of NoSuchAlgorithmException.
 2003-08-07 21:45:35 +00:00
glen.beasley%sun.com
f0a3999250 215190 delete CA created certs 2003-08-07 00:34:32 +00:00
brendan%mozilla.org
b7cdb7debb Add shared DHashTableOps for [const] char *key use-cases, clean up dhash API abusages (214839, r=dougt, sr=dbaron). 2003-08-05 20:09:21 +00:00
nicolson%netscape.com
75d97a0079 Convert public key to JSS public key. 2003-08-05 18:54:49 +00:00
wtc%netscape.com
f4184b8ca1 Bugzilla bug 214695: fixed incorrect use of PR_AtomicDecrement on reference 
counts.  The reference count should not be read "naked".  Instead, we
should simply use the return value of PR_AtomicDecrement for the result of
the decrement.
Modified Files: dev/devmod.c dev/devslot.c dev/devtoken.c pki/certificate.c
pki/pkibase.c
 2003-08-01 02:02:47 +00:00
nelsonb%netscape.com
e7297b0a76 Fix bug 213084. Detect when cert in signature cannot be imported. 
Detect NULL pointer, don't crash.
 2003-07-31 00:16:27 +00:00
bishakhabanerjee%netscape.com
670906f939 Bug 213903: removing unused variables 'delold', 'save', 'entry' 2003-07-28 22:55:16 +00:00
bishakhabanerjee%netscape.com
0a15715c3b Bug 213902 : removing unused variable "next" in "cert_DecodeNameConstraintSubTree" 2003-07-28 21:53:16 +00:00
bzbarsky%mit.edu
5fa37ec6f3 DeCOMify GetParent/GetBindingParent/GetDocument on nsIContent. Bug 213823, 
r+sr=jst
 2003-07-28 21:35:53 +00:00
glen.beasley%sun.com
6ded2b6eb3 remove no longer used include blapi.h 2003-07-24 23:01:08 +00:00
caillon%returnzero.com
91b7c60bee Bug 83536. 
Merge script principal implementations into one class.
Should reduce footprint, speed up calls to caps a little bit, and fixes several memory leaks.
Also fixes bugs 211174 and 211263
r=jst@netscape.com
sr=bzbarsky@mit.edu
moa=mstoltz@netscape.com (he looked at an earlier patch and said it looked fine, and will do a retroactive review when he returns from vacation as well)
 2003-07-24 05:15:20 +00:00
jpierre%netscape.com
ca7885b3d5 Allow freebl to build correctly under MS VC++ .net 2003 . sr=nelsonb 2003-07-22 02:04:57 +00:00
wtc%netscape.com
bf5f3a80fb Bugzilla bug 213192: take the first two components of $(OS_RELEASE) the 
right way.  The basename function that we were using only works when
$(OS_RELEASE) has exactly three components.  The patch is contributed by
Ed Catmur <ed@catmur.co.uk>.  r=wtc.
 2003-07-21 23:40:51 +00:00
wtc%netscape.com
9675ae3dea Bugzilla bug 211350: support IRIX Alpha releases, whose 'uname -r' output 
contains "-ALPHA...".
 2003-07-21 18:51:08 +00:00
jaggernaut%netscape.com
83c571e877 Bug 25886: Get rid of a bunch of unused NS_DEFINE_IID, NS_DEFINE_CID. r=caillon, sr=dbaron 2003-07-20 07:47:59 +00:00
wtc%netscape.com
59bef8e5ab Bugzilla bug 212797: added Linux2.6.mk so that we can build on Linux 2.6 
kernels.
 2003-07-19 21:21:50 +00:00
wtc%netscape.com
c5f5509f3f Bugzilla bug 213158: fixed the misspelling of "attach". The patch is 
contributed by Pierre Chanial <chanial@noos.fr>.
Modified Files: pk11slot.c secmodt.h
 2003-07-19 20:49:35 +00:00
jaggernaut%netscape.com
2d7ed90a69 Bug 73353: clean up MODULE/REQUIRES story. r=cls, sr=bryner 2003-07-13 22:29:00 +00:00
scott%scott-macgregor.org
20c4cde927 change the doctype from window to dialog. Thanks to Christian Biesinger for pointing that out. 
r/sr=mscott
 2003-07-12 03:31:16 +00:00
scott%scott-macgregor.org
2a9620c300 Bug #212459 --> Give the certificate manager a face lift. Add a 5 pixel border around the tabbox, 
add an ok button which can be used to dismiss the window, inherit the ok/help buttons from the dialog
overlay.

Add spacing between the tree control and the edit / delete buttons underneath the tree control.

r=kaie
sr=sspitzer
 2003-07-12 00:36:01 +00:00
wtc%netscape.com
40490b50de Backed out Bob Relyea's workaround for the deadlock in rev. 1.15. The 
correct fix is in rev. 1.36 of tdcache.c (see Bugzilla bug 212112).
 2003-07-11 21:52:04 +00:00
nicolson%netscape.com
9eaa5fbd47 Remove dependency on secrng.h. We don't need it. 2003-07-11 18:13:26 +00:00
nelsonb%netscape.com
20f4c61bd1 Restore sslreq.txt to text form, where it will have different line 
endings on unix, than on windows or on Mac.
 2003-07-11 04:14:24 +00:00
nelsonb%netscape.com
f23e6eb763 Test with the new file sslreq.dat rather than the old file sslreq.txt. 2003-07-11 04:05:12 +00:00
nelsonb%netscape.com
886c06287a This is sslreq.txt with a different file name, to clearly show that 
this file is to be treated as a binary file, not as text.
 2003-07-11 03:55:55 +00:00
wtc%netscape.com
788ad0837b Bug 212112: we don't need to lock td->cache->lock while calling 
STAN_ForceCERTCertificateUpdate.  This fixed a recursive deadlock.
r=mcgreer.
 2003-07-10 01:24:17 +00:00
nelsonb%netscape.com
0545cae9b8 Change cert_GetCertificateEmailAddresses to return NULL rather than 
a pointer to an empty string when a cert has no email addresses.
Partial fix for bug 211540.  Modified certdb/alg1485.c
 2003-07-09 04:14:23 +00:00
wtc%netscape.com
04e80d83ca Bug 212004: in CERT_IsUserCert we should test for a null cert->trust and 
treat it as no trust.  r=nelsonb.
 2003-07-09 04:12:16 +00:00
nelsonb%netscape.com
6228d8c075 Export SEC_DupCRL and declare it in certdb.h. Bug 208194. 
Modified Files:	nss/nss.def certdb/certdb.h
 2003-07-09 04:00:48 +00:00
wtc%netscape.com
485a88c60e Bug 211384: fixed the bug that importing a CRL that already exists in the 
DB causes NSS_Shutdown to fail.  Two files were changed.  1. crl.c: we
should not obtain a slot reference because PK11_FindCrlByName already
obtained a slot reference.  2. pk11cert.c: cleaned up code and fixed a slot
reference leak if the SECITEM_AllocItem call fails.  r=nelsonb.
 2003-07-08 18:41:28 +00:00
wtc%netscape.com
b290411a4b Re-enabled the fix for bug 208177. 2003-07-08 18:11:24 +00:00
kaie%netscape.com
26fcd4cf0b b=210948 Some file dialogs have harcoded filter description 
patch from Vincent B�ron
r=kaie sr=brendan
 2003-07-08 14:46:21 +00:00
kaie%netscape.com
e97cef79b0 b=195574 SSL extremely flaky if Ask for Master Password is 'Every time' 
r=darin sr=brendan
 2003-07-08 14:41:02 +00:00
bishakhabanerjee%netscape.com
6a76698c4e patch to correct false failure reporting - bug 167825 2003-07-03 17:50:18 +00:00
nelsonb%netscape.com
c93f000588 Add missing declaration of NSS_Get_SECKEY_EncryptedPrivateKeyInfoTemplate 2003-07-03 07:04:30 +00:00
nelsonb%netscape.com
c636fad8e7 Fix bug 211049. Another issue with empty pointer lists from group 
decodings.  Patch by Wan-Teh Chang <wtc@netscape.com>.
 2003-07-01 01:16:57 +00:00
nelsonb%netscape.com
99c2efd227 Change the function definitions in dev so that the ctags program will 
produce valid tags from these sources.
 2003-07-01 00:32:22 +00:00
wtc%netscape.com
083003b9a2 Bug 210660: backed out the main change in the fix for bug 145322 because 
the adoption of session is not thread safe.  This eliminates most of the
saving of sessions, but we must be correct first, and then optimize.
r=nicolson,nelsonb.
Modified Files: pk11func.h pk11skey.c
 2003-06-27 22:28:50 +00:00
nelsonb%netscape.com
c27a303c8d Fix several bugs reported in bug 210707. 
Change loops over RDNs and AVAs to detect NULL pointers.
Change list of attribute type "keywords" to match RFCs and internet
drafts.
Quote attribute values strings that contain adjacent embedded blanks.
Don't quote hex string values.
Always use hex string values when type OID is unrecognized.
 2003-06-27 00:33:05 +00:00
nelsonb%netscape.com
7c5e03d5f4 Move the declaration for CERT_CompareNameSpace from cert.h to genname.h 
because it is a private function.  Change the interface for this
function so that it returns a SECStatus, unambiguously indicating the
success or failure of the name constraints test.  The function no
longer takes a list of cert subject names, instead, it takes a list
of cert pointers, and optionally outputs one of those pointers when
an error occurs.  This eliminates a cert reference leak.
 2003-06-26 01:56:34 +00:00
nelsonb%netscape.com
7665e37260 This patch extracts rfc822 names from a cert's distinguished name at the 
time when the list of cert names is being built and builds a GeneralName
out of it, just as if the rfc822 name had come from a subject alt name
extension. This way, no special handling is needed of either directory
names or rfc822 names in the name constraints code.  The special "phase 1"
loop in cert_CompareNameWithConstraints disappears compmletely.  And all
the cases in the (former phase 2) loop can now simply assert that the
name's type matches the constraint's type exactly.

This patch also factors out the code that creates new CERTGeneralNames and
that copies a single CERTGeneralName into new separate functions.  This
eliminates a lot of duplicated code whose correctness required lengthy
inspection.  Now these primitive operations are centralized.
 2003-06-26 01:25:10 +00:00
bishakhabanerjee%netscape.com
ef5d950b09 enabling log scraping in header instead 2003-06-25 21:57:21 +00:00
bishakhabanerjee%netscape.com
545f6a1359 enabling log scraping in header instead, where RESULTDIRURL gets created 2003-06-25 21:56:19 +00:00
bishakhabanerjee%netscape.com
6ca298a1d2 removed new variable for Win platform - extra - don't need 2003-06-25 21:39:54 +00:00
bishakhabanerjee%netscape.com
1ee600f7ff fix URL for Windows platform 2003-06-25 20:43:18 +00:00
bishakhabanerjee%netscape.com
1b045cce39 taking out un-needed stuff 2003-06-25 17:39:38 +00:00
wtc%netscape.com
17581e0660 Shorten the clickable text portion of RESULTDIRURL. 2003-06-25 04:23:34 +00:00
bishakhabanerjee%netscape.com
2eb554c104 enabling log scraping 2003-06-25 00:55:13 +00:00
jst%netscape.com
abefba9053 Fixing bug 209884. Writing an inline helper to safely get an nsIScriptContext from a JSContext and making direct callers of JS_GetContextPrivate() use the helper. r=caillon@aillon.org, sr=peterv@netscape.com 2003-06-24 21:43:01 +00:00
nelsonb%netscape.com
a09e87bce0 Whitespace cleanup. This patch causes numerous lines that were wider 
than 80 columns to be folded according to NSS coding conventions.
This patch does not fix any run-time error.
 2003-06-23 23:15:33 +00:00
jshin%mailaps.org
a02a46efd1 bug 205649 : replace U+00E5 represented in ISO-8859-1 (0xe5) with U+00E5 in 
UTF-8 in all XUL files to make them to be genuinely encoded in UTF-8. All the
changes are in comments so that this shouldn't affect anything at run-time.
(r=hwaara)
 2003-06-23 13:18:12 +00:00
nelsonb%netscape.com
2ab3bc3979 CERT_EncodeGeneralName and CERT_DecodeGeneralName contain large switch 
statements that repeat code for every case.  This patch factors out that
common code from the cases, making the switches much smaller and reducing
bloat.
 2003-06-21 08:10:07 +00:00
nelsonb%netscape.com
66f40f98bd Cleanup CERT_GetGeneralNameByType so that it detects when it has 
encountered a general name of a type that it doesn't recognize, and
so that it properly casts the return value to be of the right type.
 2003-06-21 07:07:47 +00:00
nelsonb%netscape.com
9b63114ba0 The general name code uses arenas, which is good, but it never marks 
and releases space in the arenas, so the arenas just grow and grow
until the test is completely over.  This patch adds comments showing
where mark and release calls could (and probably should) be added.
It also changes CERT_CopyGeneralName to have only two exit paths,
two return statements, in preparation for the eventual use of mark and
release.
 2003-06-21 06:44:43 +00:00
nelsonb%netscape.com
1042ec6f88 a) Add more missing null pointer tests that I discovered. Bug 208649. 
b) change all PORT_*Alloc calls that allocate new structs or arrays of
same to use the PORT_*New* macros instead.
c) ifdef out some dead functions that are rife with failure to detect
allocation failures.
 2003-06-21 05:23:07 +00:00
relyea%netscape.com
663b108222 Fix deadlock bugscape 46733 2003-06-20 23:34:46 +00:00
bishakhabanerjee%netscape.com
9948f8316d sigh, another time 2003-06-20 23:24:11 +00:00
bishakhabanerjee%netscape.com
4d3b8d3282 one more time, trying to make link clickable 2003-06-20 18:36:57 +00:00
nelsonb%netscape.com
a98e4fc078 Declare src argument to SEC_ASN1DecodeItem to be const. 2003-06-20 01:52:19 +00:00
brendan%mozilla.org
e66f3155de Don't include private and unnecessary js header files. 2003-06-19 23:13:59 +00:00
bishakhabanerjee%netscape.com
bc5d5ce9dc echo out RESULTDIRURL; r=wtc 2003-06-19 23:04:25 +00:00
bishakhabanerjee%netscape.com
3d71f8851a made RESULTDIRURL clickable link; r=wtc 2003-06-19 23:03:59 +00:00
nelsonb%netscape.com
1b06e46683 Carry Wan-Teh's fix for bug 208996 forward to trunk. 2003-06-19 03:48:19 +00:00
nelsonb%netscape.com
a4f1b04288 Fix numerous more potential NULL pointer deref crashes. Bug 208038 2003-06-19 01:08:53 +00:00
bishakhabanerjee%netscape.com
05dc77c485 checking in version 1.60 with additional space 2003-06-18 19:13:11 +00:00
neil%parkwaycc.co.uk
6741a52ed1 Bug 209661 remove unnecessary NS_LITERAL_CSTRING( with ).get() r=jag sr=alecf 2003-06-18 14:31:45 +00:00
bishakhabanerjee%netscape.com
1f57ddfe70 backing out my recent changes - some platforms showing tests failed 2003-06-18 08:13:07 +00:00
bishakhabanerjee%netscape.com
709b88a2cb had to put in netscape specific unix base dir as well 2003-06-18 07:11:15 +00:00
bishakhabanerjee%netscape.com
06eeeca399 put URL specific stuff inside nscp specific loop 2003-06-18 06:02:28 +00:00
nelsonb%netscape.com
40399ce6d5 Further refinements to the Name Constraints checking logic, to make it 
more compliant with RFC 3280.  Bug 208047.
 2003-06-18 04:32:44 +00:00
nelsonb%netscape.com
9c76888937 Move declarations of NSS private functions for general names from cert.h 
to genname.h, and eliminate declarations from cert.h that were also
in genname.h.  If we ever decide to make any of these functions public,
we can move their declarations back to cert.h.
 2003-06-18 00:38:12 +00:00
nelsonb%netscape.com
bbf159fcc1 Make CERT_DecodeAVAValue take const inputs and detect NULL pointers. 
Rewrite CERT_CompareAVA to compare the type OIDs first, and then if
the values are not of the same encoding, convert them before comparing.
Also, do comparisons of printableString encoding properly.  Bug 208649.
 2003-06-17 23:44:14 +00:00
kaie%netscape.com
25fb5c7a14 b=209082 Certificate viewer is broken 
r=danm sr=jst
 2003-06-17 23:16:23 +00:00
bishakhabanerjee%netscape.com
ed88f342da modified header to print link of resultsdir to browser log 2003-06-17 21:21:33 +00:00
caillon%returnzero.com
2df173e9c8 Bug 209087 
Content interface out-parameters should use ptr-to-ptrs instead of ref-to-ptrs and some small deCOMtamination.
r+sr=jst@netscape.com
 2003-06-13 20:10:01 +00:00
kaie%netscape.com
5cb8507581 b=209168 Mozilla Mail S/Mime instructs NSS to import the wrong certs 
r=relyea sr=kin
 2003-06-12 20:03:40 +00:00
nelsonb%netscape.com
4bc3e0e70c const. Got it? Const! 2003-06-11 23:12:38 +00:00
seawood%netscape.com
b28ce0a530 Removing old cfm build files. Use the CFM_LAST_RITES tag to resurrect. r=macdev 2003-06-10 20:12:33 +00:00
seawood%netscape.com
53d53dd6cb Removing old cfm build files. r=macdev 2003-06-10 19:03:46 +00:00
nelsonb%netscape.com
786e999bda Harden SECITEM_CompareItem against NULL pointers. 2003-06-07 03:05:49 +00:00
seawood%netscape.com
1a61e5528b Add echo-requires-recursive rule to get a full list of tree's dependencies 2003-06-06 19:21:57 +00:00
nelsonb%netscape.com
546ef9889f Rewrite of cert_CompareNameWithConstraints and the static functions it 
calls, to make it conform with RFC 3280.  Bug 208047.
 2003-06-06 09:12:21 +00:00
nelsonb%netscape.com
3245c4d36c Rewrite SECITEM_ItemsAreEqual to be faster when item lengths are not 
equal and to not crash if an item contains a NULL data pointer.
 2003-06-06 04:51:26 +00:00
nelsonb%netscape.com
95ac53508c Add new OIDs for directory name attribute types. Bug 207711. 2003-06-06 04:48:45 +00:00
nelsonb%netscape.com
216592c31b Augment and centralize the list of known cert name attribute types. 
Bug 207711.
 2003-06-06 01:17:04 +00:00
nelsonb%netscape.com
f4f2e9f053 Eliminate more NULL pointer dereferences. Bug 207740. 2003-06-05 04:59:38 +00:00
wtc%netscape.com
446bef339f Bug 208343: removed two Baltimore root certificates. 
Modified Files: certdata.c certdata.txt
 2003-06-05 00:53:27 +00:00
wtc%netscape.com
9223dbd69d Temporarily disabled the fix for bug 208177 so that we can debug bug 
167825.
 2003-06-04 14:49:13 +00:00
kairo%kairo.at
0b93c73eee bug 207642 - update localeVersion for 1.5a - r=rchen, sr=blizzard 2003-06-04 11:11:19 +00:00
nelsonb%netscape.com
9eb66804cf PORT_Alloc and PORT_ZAlloc always allocate at least one byte, even if 
the caller requests zero bytes.  This patch makes PORT_ArenaAlloc
and PORT_ArenaZAlloc do the same.
 2003-06-03 23:24:31 +00:00
wtc%netscape.com
196f5f2abe Bug 208177: Our HP-UX build machine has a strange problem. If a 64-bit 
PA-RISC executable calls getcwd() in a network-mounted directory, it fails
with ENOENT.  Since nsinstall calls getcwd(), this breaks our 64-bit HP-UX
nightly builds.  We worked around this problem by building nsinstall as a
32-bit PA-RISC executable for 64-bit PA-RISC builds.  This checkin added a
new make variable INTERNAL_TOOLS which can be set in makefiles whose target
is a tool used only during the build.  Such a tool can be built differently
from NSS proper as long as the tool runs on the build machine.
Modified Files: HP-UXB.11.mk nsinstall/Makefile
 2003-06-03 23:14:03 +00:00
ian.mcgreer%sun.com
115ea01683 bug 156256, removed unused Stan files with long names 2003-06-03 20:59:15 +00:00
wtc%netscape.com
9ad0b80e3a Bug 207379: added instructions for removing a builtin root CA cert from 
NSS.
 2003-06-02 23:16:51 +00:00
nelsonb%netscape.com
ba44a2b994 Back out rev 1.27, which turned verbose mode on by default for debugging 
QA test script failures that only occurred on tinderbox machines.
bug 207313 is now fixed.
 2003-06-02 20:39:48 +00:00
wtc%netscape.com
a2aaa0dd1a Bug 204555: Eliminated other potential crashes in code related to 
certificate names.  r=wtc.  (The patch is Nelson's.)
 2003-06-02 18:10:43 +00:00
nelsonb%netscape.com
d8286a7935 This patch does two things, one large and one small. Bug 207313. 
1, It uses two new symbols SSOCK_FD and STDIN_FD instead of 0 and 1 to
reference members of the poll set array.  I just could never remember whether
pollset[0] was the socket or was stdin.  Now I don't have to remember.
This changes a lot of lines, but is very simple.
2. It implementa a new flag clientSpeaksFirst, set with the -f option.
The only effect of this flag is whether the value of
pollset[SSOCK_FD].in_flags is initially zero (if true) or PR_POLL_READ (if false).  Note that pollset[SSOCK_FD].in_flags is set to PR_POLL_READ after
each succesful write to the socket.
 2003-06-01 03:01:39 +00:00
wtc%netscape.com
1a0ee426a9 Bug 206926: Added the makefile rule to export PRIVATE_EXPORTS headers. 2003-05-31 00:12:18 +00:00
wtc%netscape.com
ce11300ca6 Bug 206926: 1. Undo the changes to secrng.h, pqgutil.h, swfutl.c, 
unix_rand.c, and win_rand.c. 2. Make secrng.h and pqgutil.h private.
3. Public header pk11pqg.h can't include private header pqgutil.h.
4. Many files don't need to include secrng.h.  A few don't need to include
pqgutil.h.  5. Remove duplicate declarations of PQG_DestroyParams and
PQG_DestroyVerify from blapi.h.
 2003-05-30 23:31:32 +00:00
nelsonb%netscape.com
cc8d6b1b9f Eliminate TCP connection reset errors that occur when server requires 
client auth and SSL3 client doesn't authenticate.  The fix is to coalesce
the SSL3 no_certificate alert record with the following records (e.g.
client_key_exchange handshake, change_cipher_spec and finished handshake).
Fix bugs 207313 and 118668.
 2003-05-30 23:22:39 +00:00
kirk.erickson%sun.com
52f15c0d08 Resolves bug 206971 - selfserv should OptimizeSpeed (use NSS_Initialize). 
Both selfserv and strsclnt no longer OptimizeSpace.  Moved SECMOD_DB
defines from nssinit.c to nss.h, make it availble for public use with
NSS_Initialize().
 2003-05-30 17:25:13 +00:00
nelsonb%netscape.com
93542dbdb9 Back out rev 1.28 to test some hypotheses about bug 207313. 2003-05-30 10:06:29 +00:00
nelsonb%netscape.com
1c8bfb4eb2 Correct all the tests in which the server requires client auth, but the 
client does not supply it, so that the client actually will NOT supply
it.  Previously, the client was supplying client auth in all these tests,
and the https requests were completing succesfully, when they should have
been failing.  Bug 207398.
 2003-05-30 05:40:40 +00:00
nelsonb%netscape.com
85c44c32f5 Change the SSL3 stress test to disable TLS, so that it will actually 
test SSL3.  Uses the new -T option recently added to strsclnt.
 2003-05-30 05:38:12 +00:00
nelsonb%netscape.com
a4d31ce381 Add -3 and -T options, with same meaning as in tstclnt and selfserv, 
disabling SSL3 and TLS respectively.  With this change, the QA stress
tests that say they're testing SSL3 or TLS can finally test what they
claim they are testing.
 2003-05-30 05:35:52 +00:00
wtc%netscape.com
18f2adb7f6 Bugzilla 207379: removed the certificate "ValiCert OCSP Responder". 
Bumped version to 1.40 (for NSS 3.9).  r=relyea.
Modified Files: certdata.c certdata.txt nssckbi.h
 2003-05-29 14:26:16 +00:00
nelsonb%netscape.com
7b750ca1fb Correctly copy RDNs with empty AVA lists. Partial fix for bug 204555. 2003-05-28 21:18:09 +00:00
bishakhabanerjee%netscape.com
0d3000e0ea Adding Darwin 6.5 platform 2003-05-28 17:28:36 +00:00
nelsonb%netscape.com
8b986ea952 Fix this file to be proper http request syntax. Note: file is now a 
binary file to assure identical line endings on all platforms.
 2003-05-28 02:18:27 +00:00
nelsonb%netscape.com
d6507e92a9 All diagnostic output goes to stderr, not stdout. This change facilitates 
investigation of bug 207313.
 2003-05-28 02:11:17 +00:00
wtc%netscape.com
b10e3c77d3 Bug 206926: certcgi.c should not include blapi.h. Use the PK11_PQG_ 
functions instead.
 2003-05-28 00:47:47 +00:00
wtc%netscape.com
f6dae5fad2 Bug 206934: use __declspec instead of _declspec. __declspec is the 
documented form and the only form accepted by the MinGW compiler.  The
patch is contributed by Christopher Seawood <seawood@netscape.com>.  r=wtc.
 2003-05-28 00:07:36 +00:00
wtc%netscape.com
332454d9b1 Checked in more temporary debugging code for the strange QA failure on 
Windows.
 2003-05-25 19:19:28 +00:00
wtc%netscape.com
0c43efe373 Enabled verbose mode temporarily for debugging a strange QA failure on 
Windows.
 2003-05-25 04:16:03 +00:00
wtc%netscape.com
cc344de70c Bug 206926: now that secrng.h and pqgutil.h include blapit.h instead of 
blapi.h, some files that include secrng.h or pqgutil.h need to include
blapi.h directly.
Modified Files: certcgi.c swfutl.c unix_rand.c win_rand.c
 2003-05-25 01:21:27 +00:00
nelsonb%netscape.com
b22ba4ae70 Fix bugs experienced with oddly constructed general names. 
Partially fixes bug 204555. r=wtc a=sspitzer
 2003-05-24 06:27:35 +00:00
nelsonb%netscape.com
3051c7eb48 Corrently build the array of pointers to parsed group members, even when 
the group was empty.  Fixes bug 174885 and partially fixes 204555.
 2003-05-24 05:57:21 +00:00
wtc%netscape.com
fc20d83b46 Include nss.h for the declaration of NSS_Shutdown. Use "" around prmem.h 
and prio.h.
 2003-05-24 05:23:42 +00:00
wtc%netscape.com
6022e0f192 Bug 206926: make blapi.h private. Public headers that included blapi.h 
now include blapit.h.  It is necessary to make blapit.h because some
public headers and PSM use the types defined in it.  r=relyea,nelsonb.
Modified Files: cryptohi.h lib/freebl/manifest.mn secrng.h pqgutil.h
 2003-05-24 03:34:55 +00:00
wtc%netscape.com
d19e740fe4 Fixed a typo in the comment. 2003-05-23 23:01:26 +00:00
timeless%mozdev.org
63bd78088c Bug 204067 Creating "@mozilla.org/nsCMSEncoder;1" and then deleting it crashes because m_ecx isn't initialized 
patch by rginda r=kaie sr=kin
 2003-05-23 21:55:15 +00:00
dwitte%stanford.edu
270d3909ca bug 100649: Length() being used where IsEmpty() is meant 
treewide changes to convert incorrect usages of string.Length() to string.IsEmpty().

thanks to afatecha@idea.com.py (Ariel Fatecha) for the patch. r=dwitte, sr=jst.

got the ok from Asa to land into a closed tree.
 2003-05-23 21:34:47 +00:00
kaie%netscape.com
4fef12376a b=168452 PSM embedding freeze/ final step/ mark interfaces as frozen 
r=javi sr=alecf a=sspitzer
 2003-05-23 05:58:11 +00:00
nelsonb%netscape.com
2c6eaafff6 Report the right error code for unrecognized OIDs. 2003-05-22 05:20:02 +00:00
nelsonb%netscape.com
bf4cc8f8d1 Make tstclnt interactive on Windows. Bug 206031. 2003-05-22 04:34:38 +00:00
nelsonb%netscape.com
2a90f64d20 Eliminate double-spacing of output on windows. Bug 206551. r=wtc. 2003-05-22 01:51:18 +00:00
bishakhabanerjee%netscape.com
4db86baa01 coreconf needs HP-UXB.11.22.mk to build on new HP box - bug 177984 2003-05-21 22:08:37 +00:00
dougt%meer.net
80cea543a5 Fixing memory leak. Multiple object creations clobber static allocations. b=206480, r=kaie,sr=dbaron,a=asa 2003-05-21 21:36:46 +00:00
bryner%netscape.com
23a1e5f50a Fix bug 205912, NSS rebuilds too often. Update a timestamp file in the source tree whenever client.mk pulls updates to NSS, and make a second timestamp file dependent on the first that's touched after cleaning NSS. r=seawood, sr=brendan. 2003-05-21 20:13:24 +00:00
nicolson%netscape.com
f0f344e82a update to JSS 3.4 RTM. 2003-05-19 21:44:23 +00:00
nicolson%netscape.com
822995bd0b Partial fix for 189964: support more algorithm names. 2003-05-19 18:36:38 +00:00
bryner%netscape.com
87dd5e215d Remove MOZ_PHOENIX #ifdef in nsSecurityWarningDialogs.cpp; set default security dialog prefs in all.js instead. Fixes bug 172091. Affects firebird build only. 2003-05-19 04:23:22 +00:00
nelsonb%netscape.com
e38f5daae0 If the verbose option is given twice (e.g. -vv) and the server requests 
client auhtentication, tstclnt will display the server's list of trusted
client CA names.
 2003-05-17 05:38:01 +00:00
nelsonb%netscape.com
9c27c51080 Add comments explaining why UMRs are not a problem. 2003-05-17 01:26:41 +00:00
nelsonb%netscape.com
af67e5022b Correct offset arithmetic for "choice" templates. Bug 161580. 
Patch by wtc@netscape.com
 2003-05-17 01:18:53 +00:00
nelsonb%netscape.com
5cdbf1a929 Remove MOZILLA_BSAFE_BUILD. Bug 193090. 2003-05-16 20:21:20 +00:00
nelsonb%netscape.com
28c79da0a3 Remove files that were part of MOZILLA_BSAFE_BUILD. Bug 193090. 2003-05-16 20:17:11 +00:00
nelsonb%netscape.com
08a19951bd Remove support for MOZILLA_BSAFE_BUILD. Bug 193090. 2003-05-16 20:14:59 +00:00
ian.mcgreer%sun.com
cc0baa49b7 bug 204788, DirectoryString should default to UTF8String 
r=nelsonb
 2003-05-15 21:24:10 +00:00
kirk.erickson%sun.com
33c3d5479c Shifted from -xO3 to -xO4 optimization under Solaris. 
Resolves bug 204093.
 2003-05-15 19:12:10 +00:00
jpierre%netscape.com
481bd9b8d6 Fix for bug 204015 - make strsclnt reuse token after it is unplugged . r=nelsonb 2003-05-15 17:09:19 +00:00
nelsonb%netscape.com
00eb799722 Update ssltap's list of TLS ciphersuites. Bug 201158. 2003-05-15 06:28:44 +00:00
glen.beasley%sun.com
c257837f18 201047 ssl timeouts 2003-05-14 22:34:38 +00:00
relyea%netscape.com
b09f41afd7 *** empty log message *** 2003-05-14 22:34:21 +00:00
ian.mcgreer%sun.com
ddad39cba1 bug 202838, move operations outside of slot->objectLock 
r=relyea
 2003-05-14 22:09:03 +00:00
wtc%netscape.com
81a3451b2b Removed an error that was mistakenly introduced in rev. 1.56. 2003-05-14 00:30:21 +00:00
nicolson%netscape.com
027947b867 Fix 205066: double-free in PK11KeyGenerator.c:constructSHA1PBAKey() 2003-05-14 00:04:02 +00:00
wtc%netscape.com
63123ca797 Bug 202593: Create slot->freeListLock and slot->sessionLock in the order 
consistent with the cleanup code on error return.
 2003-05-13 23:00:28 +00:00
wtc%netscape.com
837fa34b7e Bug 202593: the newly added 'lock' field in the NSSToken structure is not 
being used.
 2003-05-13 22:59:20 +00:00
dougt%meer.net
07ce9be0c0 Fixing Makefiles to support DEPENDENT_LIBS. r=kai, a=blizzard, b=205444 2003-05-13 18:28:40 +00:00
ian.mcgreer%sun.com
8720e22f4e bug 203049, move some operations outside of slot->slotLock 
r=relyea
 2003-05-12 21:32:38 +00:00
nelsonb%netscape.com
ff2431f5c0 Fix bug 202270. Eliminate a potential infinite loop. 2003-05-12 21:07:01 +00:00
wtc%netscape.com
34bce4985a Bug 205346: need to include <unistd.h> on BeOS for isatty(). Thanks to 
timeless@bemail.org for the patch.
 2003-05-12 19:52:44 +00:00
wtc%netscape.com
05536f8c3a Bug 205346: fixed a compiler warning about a zero-length format string for 
sprintf.
 2003-05-12 18:58:33 +00:00
wtc%netscape.com
4d2e0f3bbc Bug 202593 and bug 204980: fixed a recursive deadlock introduced by the 
fix for bug 202593. The session returned by nssSlot_CreateSession doesn't
need its own lock.  It is either protected by a higher-level lock (the
slot or module lock) or used by only one thread throughout its lifetime.
Modified Files: dev/devslot.c pk11wrap/dev3hack.c
 2003-05-10 14:21:40 +00:00
wtc%netscape.com
734e118950 Bug 204797: nssTokenObjectCache_Clear needs to lock the cache, otherwise 
multiple threads could clear the cache at the same time after a token is
removed.
 2003-05-10 14:19:04 +00:00
nelsonb%netscape.com
ecf80ee33f Fix bug 143426 by not freeing names in loop that traverses them. 
Patch contributed by liexter@hotmail.com (liqi)
 2003-05-09 23:59:18 +00:00
nicolson%netscape.com
7cd1436ceb Fix 205069: broken loop logic in PFX.java. 2003-05-09 19:02:56 +00:00
nicolson%netscape.com
36d2120328 Replace unnecessary Debug.trace() statement with a comment in the code. 2003-05-09 18:57:15 +00:00
ian.mcgreer%sun.com
f11e523f03 fix bug in last patch 2003-05-09 18:12:11 +00:00
ian.mcgreer%sun.com
8ce0ef089a bug 191757, eliminate some memcpy calls from MD5 
r=nelsonb
 2003-05-08 17:51:55 +00:00
kaie%netscape.com
aeb0a2f7d7 b=193170 PSM must disallow using NSS database with wrong profile 
r=ccarlen sr=jag a=asa
 2003-05-08 13:39:35 +00:00
wtc%netscape.com
6a8405bc5e Bug 204681: fixed build failure with MKS Toolkit on Windows XP. Handle 
the more general 0x pattern instead of just 00 in the output of "uname -v".
 2003-05-07 00:27:37 +00:00
nelsonb%netscape.com
8c95859745 Display an error message instead of crashing if the user forgets the -n 
option with the -O (Dump Chain) option.
 2003-05-06 02:50:03 +00:00
nelsonb%netscape.com
7d5a46cf84 Don't display user's password in hex. Bug 200005. 2003-05-06 02:45:12 +00:00
nelsonb%netscape.com
b5fbd35b21 Don't accept END_OF_CONTENTS octets where they're not allowed. bug 202384. 2003-05-03 06:54:48 +00:00
wtc%netscape.com
f7e98250bc Bug 204011: fixed the bug that nssPKIObjectCollection_AddInstances frees an 
instance twice if add_object_instance fails.  r=mcgreer.
 2003-05-02 03:01:13 +00:00
wtc%netscape.com
4c6dd71c75 Bug 203988: add build support for Linux/mips (such as Sony PlayStation 2 
Linux).  The patch is contributed by Paul Pietromonaco
<ppietro@users.playstation2-linux.com>.  r=wtc.
 2003-05-01 00:29:40 +00:00
bishakhabanerjee%netscape.com
b939a52974 Removed gcc warning - bug 203449 2003-04-29 23:13:33 +00:00
nicolson%netscape.com
f7123ebbf1 Improve parameter class handling. 2003-04-28 23:32:39 +00:00
nicolson%netscape.com
d72dc83313 Build with NSS 3.7.3 RTM. 2003-04-28 23:31:12 +00:00
nicolson%netscape.com
ae6470da30 Fix blackflag 619793: support RC2/CBC/PKCS5Padding. 2003-04-28 21:48:33 +00:00
nicolson%netscape.com
3d44a05368 Move to JSS 3.4 beta. 2003-04-28 21:28:00 +00:00
wtc%netscape.com
c7b24c7949 Declare the new function sec_asn1d_parent_is_indefinite as static. 2003-04-28 20:19:21 +00:00
relyea%netscape.com
ec249ebf48 replace arena grow with code that grows memory nLog n, not n! 2003-04-28 17:56:46 +00:00
nelsonb%netscape.com
d01e78b8c7 Fix two problems that together prevented NSS from reading encrypted 
messages from Lotus notes.  bug 202384.
1. Choice no longer treats END_OF_CONTENTS as a missing choice.
2. The code now correctly determines whether we are in an indefinite-
length encoded constructed type.  Instead of merely looking at the
immediate parent and grandparent states, it walks the state stack
until it finds the next higher state that corresponds to a parsed
tag, ignoring inline, pointer, choice, and other non-tag states.
 2003-04-26 03:41:24 +00:00
nelsonb%netscape.com
1b41efe99c Greatly enhance the debug printing done when conditionally compiled with 
DEBUG_ASN1D_STATES defined.
 2003-04-26 02:15:50 +00:00
nelsonb%netscape.com
fa163f8a45 Change the more recently added "choice" functions to conform to the 
coding style used throughout the rest of the file.
 2003-04-26 01:40:49 +00:00
ian.mcgreer%sun.com
d5aeef1f3f bug 201081, better spreading of session id hash 
r=relyea
 2003-04-24 18:30:12 +00:00
cls%seawood.org
8b363ed6a2 Change the naming scheme for the mingw libraries to use the following format: 
static lib: libfoo.a
import lib: libfoo.dll.a
shared lib: foo.dll
Bug #134113 r=dmose
 2003-04-23 00:54:38 +00:00
ian.mcgreer%sun.com
2d396349bc bug 202553, replace reference mutex with atomic calls in PK11SlotInfo 
r=relyea,wtc
 2003-04-22 14:11:53 +00:00
glen.beasley%sun.com
5973e1c1e8 201245 convert SecretKey to SecretKeyFacade 2003-04-21 21:38:34 +00:00
wtc%netscape.com
e50f01e0d2 Broke a long line. 2003-04-21 21:33:16 +00:00
wtc%netscape.com
31d3df7a50 Bug 134113: use "lib" as the prefix for static and import libraries in the 
Win32 gcc (MinGW) build.  The patch is contributed by Chris Seawood
<cls@seawood.org>.
 2003-04-21 21:03:55 +00:00
wtc%netscape.com
213a402f9d Bug 134113: make NSS build on Win32 using GCC (MinGW). The patch 
(attachment 121068) is contributed by Chris Seawood (cls@seawood.org).
 2003-04-20 04:23:37 +00:00
kaie%netscape.com
f8d7c8b06d b=155760 Changing content by JavaScript document.write => open insecure 
lock icon
r=javi sr=peterv
 2003-04-19 14:04:59 +00:00
relyea%netscape.com
c04f31a7e8 Bug 202593 NSS does not lock non-threadsafe modules correctly. 
Consolidate one lock for non-thread safe modules (not one per slot).
 2003-04-19 00:03:32 +00:00