jpierre%netscape.com
d6e93928ed
Fix for 254393 - r=nelsonb . PK11_FindKeyByAnyCert returned invalid key objects
2004-08-06 02:24:31 +00:00
jpierre%netscape.com
5b46cda86f
Fix for 249488 - make Single-Threaded mode work
2004-08-03 23:24:37 +00:00
relyea%netscape.com
c2b70291da
1) Add time command to time specific functions.
...
2) improve the help system.
3) bug fixes for arrays.
2004-07-30 00:25:21 +00:00
relyea%netscape.com
b4b4a3f900
Error strings for new error codes.
2004-07-30 00:19:49 +00:00
relyea%netscape.com
e715f98c50
Bugzilla Bug 252702
...
NSS needs to handle better token insertion and removal.
Applied from patch to NSS 3.9
2004-07-29 23:38:14 +00:00
jpierre%netscape.com
14456163f2
Fix for 249488 - root cert module requires locking functions in CK_C_INITIALIZE_ARGS . r=ian, sr=relyea
2004-07-29 22:51:00 +00:00
christophe.ravel.bugs%sun.com
bb366dc102
238319: Sun packages changes.
2004-07-29 18:43:00 +00:00
nelsonb%netscape.com
20e64eb7e5
Correct option parsing, and add missing error messages.
2004-07-28 21:10:07 +00:00
kaie%kuix.de
491abff18f
b=249004 Do not import invalid/untrusted certs, prevent a DoS that disables SSL connections to trusted peers.
...
r=relyea sr=jst/brendan
2004-07-28 00:31:37 +00:00
jst%mozilla.jstenback.com
282f75a3f0
Fixing bug 253121. Make wyciwyg channels and documents carry the source channels security info. r=darin@meer.net, sr=bzbarsky@mit.edu
2004-07-28 00:26:58 +00:00
nelsonb%netscape.com
c55043fc52
Support GeneralizeTime in the CRMF library. Bug 219080. r=julien.
...
Patch by nelson and julien.
2004-07-27 05:06:02 +00:00
christophe.ravel.bugs%sun.com
4380067b18
238319: Sun packages changes.
2004-07-22 17:52:04 +00:00
christophe.ravel.bugs%sun.com
d96ede69ac
238319: Sun packages changes.
2004-07-21 23:23:41 +00:00
relyea%netscape.com
7e82fd4194
Bug 250687
...
NSS Crashes or leaks Cert references if bad certs are passed up by PKCS #11 modules.
r=nelson
sr=ian
2004-07-21 18:18:05 +00:00
relyea%netscape.com
57260fe853
Backing out pk11cert.c changes (not ready for checkin yet). (revert to 1.133)
2004-07-20 23:04:31 +00:00
relyea%netscape.com
950ffdabc7
Fix optimized builds (make tinderbox go green).
2004-07-20 23:02:04 +00:00
glen.beasley%sun.com
b3719b51cb
251635 upgrading to JSS to 4.0
2004-07-20 20:39:25 +00:00
relyea%netscape.com
c5e993c9fd
Missed function definition in previous checkin.
2004-07-19 22:37:48 +00:00
relyea%netscape.com
d0af60d089
refactor pk11util, splitting large single files down to a managable size.
...
bug 246130. The new factor is:
pk11akey.c - asymetric keys constructed from pk11cert.c and pk11skey.c
pk11auth.c - authentication/password management factored from pk11slot.c
pk11cert.c - cert code with private key, crls and trust factored out.
pk11ctx.c -- pkcs11 context code, factored out of pk11skey.c
new pk11func.h -- for backward compatibility.
pk11mech.c - mechanism mapping code, factored mostly from pk11slot.c
pk11nobj.c - netscape objects (crls and trust), factored mostly from pk11cert.c
pk11obj.c - generic object support, factored from pk11skey.c pk11slot.c and
pk11cert.c
pk11priv.h -- private functions factored from pk11func.h
pk11pub.h -- public functions factored from pk11func.h
pk11skey.c - now only symetric key ops; private, public key ops, generic ops
and crypto contexs have been factored out.
pk11slot.c - still slot operations. Authentication, generic object ops,
mechanism mapping has been factored out.
This patch should only have refactoring, no new functions or other changes.
2004-07-19 22:12:38 +00:00
nelsonb%netscape.com
371f19c6b9
Use the "c beautifier" (cb) to give this code a common K&R style with
...
an indentation of 4. Also rewrap a few strangely wrapped lines.
Bug 249330.
2004-07-16 00:04:47 +00:00
nelsonb%netscape.com
2ed86b689a
Apply review feedback to signtool sources. Add test case to QA tests.
...
Bug 248751.
2004-07-15 22:21:57 +00:00
nelsonb%netscape.com
07c4feeb45
Add -X option to produce signed XPI files for mozilla. Bug 248751.
...
Path contributed by jeff klawiter <jeff@j-maxx.net>. r=nelson
2004-07-15 00:01:50 +00:00
nelsonb%netscape.com
98afc62590
Allow subtemplates to have the SEC_ASN1_DYNAMIC flag without asserting.
...
Bug 245429. Patch 4 of 5. r=relyea.
2004-07-13 06:02:54 +00:00
nelsonb%netscape.com
55aa7ccc43
Fix some casts. Wrap some long lines. Remove a bogus assert.
...
Factor a function call out of the arguments of another function call,
which is mostly to make that code more easily debugged.
This is patch 3 of 5 for bug 245429. r=wtc.
2004-07-13 05:52:24 +00:00
nelsonb%netscape.com
f7b4d4bbb7
Function sec_asn1e_write_contents was two functions combined into one,
...
separated by one huge if-then-else. They do different things and take
different arguments. So, I split them into two separate functions:
sec_asn1e_write_contents and sec_asn1e_write_contents_from_buf
the latter of which takes a buf pointer and length argument.
The if statement that chooses between the two is now in the caller.
This is patch 2 of 5 for bug 245429. r=wtc.
2004-07-13 05:49:48 +00:00
nelsonb%netscape.com
f961aed641
rename "explicit" to "isExplicit" because MSVC6 thinks explicit is a c
...
keyword. rename "ignore_stream" to "disallowStreaming" because it
doesn't merely ignore. rename "ignoresubstream" to "disallowStreaming"
for the same reason. Patch 1 of 5 for bug 245429. sr=wtc.
2004-07-13 05:44:47 +00:00
nelsonb%netscape.com
55151bc829
Greatly improve the output of the PKCS12 encoder. Adds output buffering
...
to the output callback function that is called by the ASN.1 encoders,
and which feeds into the next PKCS7 encoder in the outward direction.
Bug 210179. sr=relyea
2004-07-13 05:31:34 +00:00
nelsonb%netscape.com
33f87dfef9
Ensure that the CRMF library always uses a non-null pool pointer when it
...
calls the ASN1 Decoder. This prevents leaks. Bug 178898. r=relyea.
2004-07-13 05:12:31 +00:00
wchang0222%aol.com
409574ee15
Bugzilla bug 248981: PKCS #11 modules that are based on older lib/ckfw (for
...
example, the nssckbi module) save a pointer to the CK_C_INITIALIZE_ARGS
passed to them. So if we pass a pointer to the stack variable moduleArgs,
the pointer will point to a structure that has gone out of scope. To
prevent crashes in these broken modules, we continue to pass a pointer to
the global secmodLockFunctions whenever we can. r=relyea.
2004-07-08 23:23:50 +00:00
wchang0222%aol.com
f3c6f7397f
Bugzilla bug 249284: removed a duplicate declaration of
...
CERT_DecodeDERCertificate. r=nelsonb. Thanks to Chris Newman
of Sun for the bug report.
2004-07-07 00:48:53 +00:00
jpierre%netscape.com
4bfc6dca87
Fix for 248981 - make SECMOD_LoadPKCS11Module thread safe. r=relyea
2004-07-01 19:20:51 +00:00
nelsonb%netscape.com
e054aef7bf
Output properly encoded PQGParams. r=wtc. Bug 247738.
2004-07-01 02:07:02 +00:00
jpierre%netscape.com
309d389ab8
Fix for 249310 - add option to disable SSL2 in selfserv . r=nelson
2004-07-01 02:06:31 +00:00
nelsonb%netscape.com
23b32f634b
Treat non-repudiation-only certs as valid signature certs.
...
Bug 240456. r=wtc, sr=relyea.
2004-07-01 00:26:00 +00:00
nelsonb%netscape.com
3bc297e56b
Correct NSS to use the most specific, not most general CN attribute in
...
a cert subject name. Bug 197964. r=wtc.
2004-07-01 00:21:42 +00:00
nelsonb%netscape.com
1d3641f999
Follow the SSL2 specification more closely in accepting and rejecting
...
SSL messages. Previously NSS would reject some it should accept
and vice versa. Bugscape bug 57121. r=wtc,julien
2004-06-24 02:02:39 +00:00
christophe.ravel.bugs%sun.com
3e7b859eec
238319: Sun packages changes.
2004-06-24 01:18:12 +00:00
nelsonb%netscape.com
35ab44f5ac
Fix certutil's ability to read PQG files. Make certutil able to read
...
the files produced by the command "makepqg -a". Plug some memory leaks.
r=relyea,vipul Bug 247739
2004-06-23 22:23:00 +00:00
relyea%netscape.com
501db85dbc
Bug 244914, 244907 r=nelsonb
...
Add support for unprotected private keys without requiring authentication.
Add support to access application specific PKCS #11 objects through NSS.
2004-06-21 23:01:53 +00:00
nelsonb%netscape.com
3b8151e40a
Initialize the "type" member in the SECItems returned by
...
PK11_PQG_ParamGetSeedLen so encoded values will be correct.
Bug 247737. r=relyea.
2004-06-21 19:22:02 +00:00
saul.edwards%sun.com
172f3b4cbc
Bug 245518: add RPATH to BUILD_SUN_PKG, add $ORIGIN to rpath
2004-06-19 06:09:03 +00:00
jpierre%netscape.com
a11c975bed
Fix for 237934 - nss_InitLock not atomic. r=nelson
2004-06-19 03:21:39 +00:00
jpierre%netscape.com
65862c5e4f
Wrap long lines
2004-06-18 02:03:30 +00:00
jpierre%netscape.com
e8c134e6c5
Restore comment that got removed accidentally. And fix typo in it.
2004-06-18 01:34:11 +00:00
jpierre%netscape.com
6aa648b89e
Fix for 247406 . r=wchang0222,glen.beasley
2004-06-18 01:28:41 +00:00
jpierre%netscape.com
b03fe203f6
Fix for 178897 . QuickDER optimizations . r=nelsonb
2004-06-18 00:38:45 +00:00
jpierre%netscape.com
3f739f181e
Backout part of the QuickDER changes from 178895 . r=relyea
2004-06-17 23:23:59 +00:00
nelsonb%netscape.com
44e789e395
Destroy cert references held inside the CMMFCertRepContent struct when
...
that struct is being destroyed. Plugs a cert reference leak.
Bug 245420. r=wtc.
2004-06-17 22:12:34 +00:00
christophe.ravel.bugs%sun.com
9601367ad8
238319: Sun packages changes.
2004-06-17 21:57:20 +00:00
roc+%cs.cmu.edu
0f4150a4e5
Bug 226439. Convert codebase to use AppendLiteral/AssignLiteral/LowerCaseEqualsLiteral. r+sr=darin
2004-06-17 00:13:25 +00:00