nelsonb%netscape.com
3462419c4d
Invoke crlImportn instead of crlImport in several places where a
...
negative outcome is expected. More work on this is needed.
crlImportN should return a value that tells us if it actually failed,
so that the script can decide whether or not to proceed with vfychain.
But this change makes the outcome more green, less red.
2004-02-03 07:14:52 +00:00
nelsonb%netscape.com
bcc309b891
Honor key usage extensions, whether they're critical or not.
...
Bug 232738. r=jpiperre.
2004-02-03 07:10:04 +00:00
nelsonb%netscape.com
3f581fae9e
Max crlutil return 0 or 1 correctly, depending on the success of the
...
operation. Bug 232937. r=jpierre.
2004-02-03 06:59:35 +00:00
nelsonb%netscape.com
0789875d7d
Change script so that html output and logfile will be broken up into
...
clearly defined and easy-to-find sections.
2004-02-03 04:15:08 +00:00
nelsonb%netscape.com
abc134f1c0
Make output log file more readable by separating each test case.
2004-02-03 03:07:38 +00:00
bishakhabanerjee%netscape.com
3ed803969c
fixed one typo
2004-02-03 01:27:47 +00:00
bishakhabanerjee%netscape.com
d95cb37ea2
checking with all latest revew comments addressed
2004-02-03 00:59:53 +00:00
neil%parkwaycc.co.uk
521d560df7
Bug 232186 Remove deprecated nsIPref usage from PKI chrome moa=kaie r=caillon sr=brendan
2004-01-31 21:11:27 +00:00
jgmyers%speakeasy.net
10b8ef3a20
Extend set of OIDs mapped to text: bug 97406 r=kaie sr=spitzer
2004-01-31 07:10:35 +00:00
jgmyers%speakeasy.net
328311b1d2
Don't use strcmp() on UTF-16: bug 154121 r=kaie sr=sspitzer
2004-01-31 07:09:21 +00:00
nelsonb%netscape.com
3dcf7f696e
When an attempt to initialize a slot fails, free up the resources
...
right away, rather than waiting until NSS_Shutdown. Bug 123693.
Second try. r=relyea.
2004-01-30 04:15:47 +00:00
nelsonb%netscape.com
df07bc6cf4
Back out rev 1.90. It breaks shlibsign.
2004-01-29 23:34:21 +00:00
nelsonb%netscape.com
371b9d618e
Export SECOID_AddEntry. Bug 132942. r=wtc.
2004-01-29 22:51:55 +00:00
nelsonb%netscape.com
50f63ee713
Invoke SECU_RegisterDynamicOids() so that more OIDs will print out.
...
Bug 132942. a=wtc.
2004-01-29 22:48:58 +00:00
nelsonb%netscape.com
792e8d1e9e
Bug 132942. r=wtc
...
Make the following enhancements to NSS's ASN.1 printing code:
- Print warning messages that are properly indendented.
- PrintAsHex notices when the buffer contains entirely printable characters, and is larger than an int, and prints it as text in that case.
- PrintRawString now indents the string, rather than always printing it on
a separate line.
- now prints decoded bit strings
- now prints BMP (UCS2) strings as strings (not as hex) when they contain only printable ASCII characters.
- now prints Universal (UCS4) Strings as strings (not hex) when they contain only printable ASCII characters.
- Decodes certain encoded data that was previously printed as hex.
- Generically decodes ASN.1 data, rather than merely printing an error, when the ASN.1 data doesn't fit a known template.
- properly handles all optional components of basic constraints extensions.
- Prints the names of the bits in the X509 Key Usage extension.
- Prints General Names.
- Print Auth Key ID extensions
- Print subject and issuer alt name extensions
- Print CRL distribution points extensions
- format and print name constraints extensions
- print Authority Information Access extensions
- Print optional X509v2 subject and issuer Unique ID bit strings
2004-01-29 22:45:20 +00:00
nelsonb%netscape.com
a691eadad9
Change some comments and one variable as suggested in review comments.
...
r=relyea,wtc. Bug 124923.
2004-01-29 21:57:41 +00:00
nelsonb%netscape.com
ea227986af
Make SECOID_AddEntry be thread safe. Export it. Bug 124923. r=relyea.
2004-01-29 21:23:36 +00:00
nelsonb%netscape.com
ee55e2e256
Plug leaks. Bug 123693. r=wtc,relyea
2004-01-29 21:18:24 +00:00
jpierre%netscape.com
f5d7282963
Fix for 232377 - assertion in vfychain with DSA cert. r=wtc, nelsonb
2004-01-28 23:25:07 +00:00
nelsonb%netscape.com
6d506e4aea
Export cert functions that decode extensions and traverse decoded
...
extensions. Bug 231881. r= relyea, wtc.
2004-01-28 23:23:45 +00:00
nelsonb%netscape.com
978fc338e7
Change program return value to reflect test outcome. Bug 221737. r=wtc
2004-01-28 22:30:27 +00:00
wchang0222%aol.com
cdec2796b4
Bugzilla bug 232380: deleted CERT_FindExpiredIssuer, which is dead code.
...
In cert_VerifyCertChain, make sure that subjectCert and issuerCert never
point to the same cert to prevent from destroying that cert twice.
r=jpierre,nelsonb.
Modified Files: certdb/cert.h certhigh/certvfy.c
2004-01-28 21:51:10 +00:00
jgmyers%speakeasy.net
a8dcaab07f
address review comments: bug 231659
2004-01-28 04:29:14 +00:00
jgmyers%speakeasy.net
c9010119e9
rewrite utf8 parser for strictness: bug 231659 r=MisterSSL
2004-01-28 03:48:43 +00:00
jgmyers%speakeasy.net
21b30d0cf2
fix charset conversion: bug 185167 r=kaie sr=sspitzer
2004-01-28 03:44:38 +00:00
jpierre%netscape.com
a5aaee4048
Fix for 231051 - crlutil asserts after deleting CRL. r=wtc, nelsonb
2004-01-28 01:17:13 +00:00
wchang0222%aol.com
6d8fc90771
Bugzilla bug 231018: use AIX.mk for all AIX versions. Removed the
...
AIXm.n.mk files. Removed support for AIX 3.2, 4.1, and 4.2. Removed
unused make variable EXPORT_RULES. Removed unused macro define -DAIX4_3.
The patch is contributed by Philip K. Warren <pkw@us.ibm.com>. r=wtc.
Modified Files:
AIX.mk config.mk
Removed Files:
AIX3.2.mk AIX4.1.mk AIX4.2.mk AIX4.3.mk AIX5.1.mk AIX5.2.mk
2004-01-27 23:55:38 +00:00
relyea%netscape.com
78ce53de23
bug 231698: fix regression in reading SDR data in databases written on 64-bit platforms.
...
r=MisterSSL
2004-01-27 18:31:29 +00:00
caillon%returnzero.com
b2141fb556
AddRef() the out parameter, and check for OOM.
...
Fixes bug 231709, iframes pointing to signed XUL crashes browser
r+sr=jst
2004-01-27 05:01:48 +00:00
jpierre%netscape.com
8c43abd07c
Fix for 231051 - crlutil asserts after importing CRL. r=nelsonb, wtc
2004-01-27 00:02:16 +00:00
nelsonb%netscape.com
0df0cbe4cf
Fix crashes that occur when optional policyQualifiers are not present.
...
Bug 230951. r=kinmoz.
2004-01-23 22:50:01 +00:00
wchang0222%aol.com
d3011eaa97
Bumped version to 1.50 (for NSS 3.10).
2004-01-23 22:15:39 +00:00
nelsonb%netscape.com
77a00800e8
RFC 3280 says Name Constraints do not apply to self-issued CA certs,
...
including self-issued intermediate CA certs (so-called "roll-over" certs).
This fixes an NISCC test failure. Bug 231030. r=wtc.
2004-01-23 06:06:06 +00:00
nelsonb%netscape.com
61d56ab306
When a name attribute's value exceeds the maximum allowed length, display
...
a truncated version of it, followed by ellipsis. Bug 220855. r=wtc
2004-01-22 23:45:30 +00:00
nelsonb%netscape.com
d45b087145
Add -a option for Base64 encoded ASCII input and output.
...
The -i and -o options now understand "-" to mean stdin and stdout.
Usage is displayed when -? or no arguments are given.
Bug 231536. r=relyea.
2004-01-22 22:08:59 +00:00
nelsonb%netscape.com
7709686c56
Correct NSS's key usage tests for certs with non-RSA public keys.
...
Bug 221638. r=relyea.
2004-01-22 22:04:54 +00:00
nelsonb%netscape.com
b99a74cbae
Detect duplicate issuer name and serial number between two temp certs.
...
Bug 230996. r=ian, relyea.
2004-01-22 02:36:53 +00:00
nelsonb%netscape.com
1db7eb8535
Fix name constraints code to pass NIST PKITS test 38. r=wtc. Bug 231223.
2004-01-22 02:33:41 +00:00
nelsonb%netscape.com
ce75f8d873
Move an extern function declaration to the header file where it belongs.
...
Bug 229212. r=relyea.
2004-01-22 02:19:42 +00:00
nelsonb%netscape.com
b45bc04f3b
Fix some erronous code that set SEC_ERROR_NO_MEMORY when there had been
...
no memory failure. r=relyea. Bug 231566
2004-01-22 02:17:26 +00:00
nelsonb%netscape.com
1a1c7cb409
Fix bug in cert path length validation. Bug 221644. r=jpierre
2004-01-21 05:32:18 +00:00
jpierre%netscape.com
f10a7a4ffd
Support GeneralizedTime in NSS tools. bug 210530. r=wtc
2004-01-21 01:15:01 +00:00
nelsonb%netscape.com
14ff763caa
Use the results from PK11_ProtectedAuthenticationPath(slot) in the
...
password callback function. Bug 229023. r=relyea. verified by submittor.
2004-01-21 00:18:59 +00:00
wchang0222%aol.com
5963bd156f
Bugzilla bug 229299: fixed unused variable warning. r=nelsonb.
2004-01-20 22:57:40 +00:00
jgmyers%speakeasy.net
ffbdacaeb8
fix review comment: bug 53133
2004-01-20 19:57:17 +00:00
nelsonb%netscape.com
b35fce94e4
Make this code build on Windows as well as Unix.
2004-01-19 01:05:53 +00:00
nelsonb%netscape.com
0ec6f827c6
Fix two more incorrect cert names that caused erroneous test results.
...
Bug 231221.
2004-01-17 05:55:20 +00:00
nelsonb%netscape.com
d9ccd2ab6f
Correct this script to more accurately report errors. Bug 231221.
2004-01-17 05:04:42 +00:00
nelsonb%netscape.com
d8dc4c1455
Detect absent isCA flags in basic constraints. Detect and reject negative
...
or too large positive path length constraints in basic constraints.
Bug 221644. r=jpierre.
2004-01-16 21:33:16 +00:00
nelsonb%netscape.com
5e140a71db
Fix template for Cert policy extensions. Bug 230951, r=jpierre
2004-01-16 05:36:08 +00:00