Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-06 17:16:12 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
108,834 Commits 615 Branches 98 Tags 5.9 GiB
3b649a913b
Commit Graph

3677 Commits

Author SHA1 Message Date
seawood%netscape.com
322da773fb Removing old nmake build makefiles. Bug #158528 r=pavlov 2002-08-10 07:55:43 +00:00
nelsonb%netscape.com
c957d262ac Test the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. Also, order 
tests so all SSL3 tests are done before all TLS tests.
 2002-08-09 22:09:18 +00:00
nelsonb%netscape.com
eeff02773b Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. Fix Usage. 2002-08-09 22:06:12 +00:00
nelsonb%netscape.com
e90c165157 Add support for SSL_RSA_WITH_NULL_SHA. Bug 161529. Fix usage message. 2002-08-09 21:58:28 +00:00
nelsonb%netscape.com
644319e67f Support the TLS_RSA_WITH_NULL_SHA cipher suite. Bug 161529. 2002-08-09 21:53:17 +00:00
relyea%netscape.com
cbd308d951 Handle the switch from the static buffer to the realloc buffer. 2002-08-09 18:48:31 +00:00
relyea%netscape.com
c57a14afb4 remove unreferenced Variable. 2002-08-09 18:05:24 +00:00
jpierre%netscape.com
e6ee1f4c60 Add comment about partial CRLs 2002-08-09 07:09:25 +00:00
wtc%netscape.com
f0a85f101a Bug 148220: removed the unused field 'isFIPS'. 2002-08-08 22:52:14 +00:00
relyea%netscape.com
667aff1517 Bug 607834. save the correct name on so we can reset the database. 2002-08-08 18:02:34 +00:00
kaie%netscape.com
141c541484 b=161394 Fix crash in debug builds 
r=javi sr=alecf
 2002-08-08 14:10:42 +00:00
jpierre%netscape.com
6eeafa0a3a Stop referencing deleted quickder.h header 2002-08-08 01:55:34 +00:00
jpierre%netscape.com
81744b6f54 Updates to quick DER decoder, bug # 161215 
Fixes from Terry's review :
- remove quick allocator
- always allocate entry array even if there is 0 entry
- rename DecodeConstructed to DecodeExplicit and use a better test for that case
- other misc small fixes
Also move SEC_QuickDERDecodeItem to secasn1.h
 2002-08-08 01:54:38 +00:00
wtc%netscape.com
dd0afb2cee Bug 148220: implements FIPS 198 conformance. r=relyea. 
Modified Files: alghmac.c alghmac.h lowpbe.c pkcs11c.c
 2002-08-07 23:27:58 +00:00
nicolson%netscape.com
c397f25253 Don't link to libhpi.so. 2002-08-07 22:53:01 +00:00
nelsonb%netscape.com
3843ef99c0 Fix bug 160207 by changing the error alerts we send for failed decryption. 2002-08-07 20:01:51 +00:00
kaie%netscape.com
5802ed6d9c b=161379 Fix JavaScript warnings in security code 
r=ssaux sr=mscott
 2002-08-07 14:24:04 +00:00
kaie%netscape.com
21f0d86067 b=123917 Remove non-NSS_3_4 codepaths 
r=wtc sr=alecf
 2002-08-07 13:39:57 +00:00
jpierre%netscape.com
9b074c9def Fix for 157649 - allow crlutil to do partial decoding so it can be used as a test program 2002-08-07 03:53:07 +00:00
jpierre%netscape.com
b4ea41c359 Additional error reporting 2002-08-07 03:47:23 +00:00
jpierre%netscape.com
1e8c079b69 Implement partial CRL decoding. Fix for 149816. r=wtc . Uses new quick DER decoder 2002-08-07 03:44:12 +00:00
jpierre%netscape.com
7759ca21de Reorder functions to avoid forward declaration of DecodePointer 2002-08-07 03:40:47 +00:00
jpierre%netscape.com
4607bbf866 Be consistent in memory allocations - use QuickZAlloc 2002-08-07 03:36:46 +00:00
jpierre%netscape.com
42d8685ccc Add new quick DER decoder. r=wtc 2002-08-07 03:25:47 +00:00
wtc%netscape.com
fdc41cd064 Bug 161316: make pk11pqg.h C++ safe. 2002-08-06 18:31:35 +00:00
glen.beasley%sun.com
178cd7c22b commented debug statement 2002-08-06 16:41:43 +00:00
kaie%netscape.com
346ebd7510 b=124037 Decrease cert manager loading time. 
r=rangansen/jkeiser sr=alecf
 2002-08-06 13:25:23 +00:00
kaie%netscape.com
69ea18b8f3 b=136819 Returned value from getPSMContentType is compared to wrong enum 
Patch from t8m@centrum.cz
r=kaie sr=alecf
 2002-08-06 13:21:32 +00:00
kaie%netscape.com
e0682e5b27 b=144435 Allow to edit trust for other people's certificate 
r=javi sr=alecf
 2002-08-06 13:18:12 +00:00
kaie%netscape.com
02d9df0cf7 b=74339 Support import of SSL, S/MIME, and CA certs 
r=javi sr=alecf
 2002-08-06 13:11:15 +00:00
kaie%netscape.com
098841f1b3 b=159053 Memory leak in nsSecureBrowserUIImpl 
r=jkeiser sr=alecf
 2002-08-06 13:06:21 +00:00
kaie%netscape.com
f1bf4f4474 b=135546 Fix internal slot reference leak in cryptojs_generateOneKeyPair() 
r=wtc sr=alecf
 2002-08-06 12:54:39 +00:00
kaie%netscape.com
d47a8b3a35 b=132589 Fix incorrect verification status when viewing email-signing-only certificates. 
r=javi sr=alecf
 2002-08-06 12:51:43 +00:00
henry.jia%sun.com
eed9ab0bdd 3rd patch for bug 158080 
Description: replace the hardcode of "@mozilla.org/embedcomp/window-watcher;1" with NS_WINDOWWATCHER_CONTRACTID
Patch by Henry.Jia@sun.com
r=anto, sr=alecf
 2002-08-06 05:37:58 +00:00
henry.jia%sun.com
17a5f04f77 2nd patch for bug 158080 
Description: replace the hardcode of "@mozilla.org/embedcomp/window-watcher;1" with NS_WINDOWWATCHER_CONTRACTID
Patch by Henry.Jia@sun.com
r=anto, sr=alecf
 2002-08-06 05:11:23 +00:00
jpierre%netscape.com
55bbc1b2b7 Fix for 158141 - add 5 minute slop time for OCSP 2002-08-04 02:50:40 +00:00
relyea%netscape.com
1b5946f3a0 Turn on reset functionality for multiaccessdb clients. 2002-08-02 21:41:01 +00:00
relyea%netscape.com
c0dd962ed9 1) factor out fortezzav1 from the chain processing code to make the code easier 
to read.
2) only extract keys if we are using fortezzav1 cert (should speed up cert verify
a bit).
3) Add function to verify a specific CA cert to verify a userCert Usage.
 2002-08-02 17:51:20 +00:00
relyea%netscape.com
ff0e1ac35e Merge back 3.5 changes to the tip 2002-08-02 17:43:36 +00:00
jpierre%netscape.com
8fa534cac0 Fix compiler warnings on NT 2002-08-02 00:53:15 +00:00
jpierre%netscape.com
9ee98f355e Fix incorrect macro usage 2002-08-02 00:28:23 +00:00
nelsonb%netscape.com
8e038c1211 Correct the test of IP addresses in Subject Alternative Name extensions. 
bug 103752.
 2002-08-01 22:51:56 +00:00
relyea%netscape.com
fee201085d Don't crash if we try to read a nickname that has an invalid cert with it. 2002-08-01 22:28:11 +00:00
ian.mcgreer%sun.com
67ce0992b6 this was obviously backwards 2002-08-01 14:23:49 +00:00
wtc%netscape.com
79910e8ffd Bug 157730: minor tweak suggested by brendan. 2002-08-01 05:17:49 +00:00
relyea%netscape.com
dc346d44ed 1) collections have size values that need to be updated. 
2) handle the case where we can't get the encoding from the cert.
3) Check the cert validity when we first extract it.
 2002-08-01 01:21:28 +00:00
nicolson%netscape.com
994e4ce3a2 Turn off the beta flag. Time for JSS 3.2 RTM! 2002-07-31 22:36:06 +00:00
relyea%netscape.com
4befeb7bba Arg.. version 1.63 was a misapplied patch, (supposed to be checked into the 
3.5 branch). The result is 1.63 backs out 1.62, which is not the intent.
restore 1.62.
 2002-07-31 18:55:59 +00:00
relyea%netscape.com
d9d3b45f9e Bug 157730. Don't crash on bogus input from a PKCS #11 device. 
review = be & wtc.
a = asa
 2002-07-31 18:50:11 +00:00
relyea%netscape.com
bc8d48d520 Protection against Token misbehaving tokens 2002-07-31 02:00:13 +00:00
wtc%netscape.com
2bd38c9821 Bug 148220: FIPS 198's key size requirement broke the NSS QA. Backing it 
out.
 2002-07-31 00:55:35 +00:00
wtc%netscape.com
9590c529f0 Bug 148220: the previous checkin missed the inclusion of secerr.h. 2002-07-30 23:19:44 +00:00
nelsonb%netscape.com
ca36e61638 Fix code to work when subjectAltName extension not present in server cert. 
Bug 103752.
 2002-07-30 23:15:43 +00:00
wtc%netscape.com
e29a299bc0 Bug 148220: enforce FIPS 198's requirement on the secret key's length. 
Added an assertion.  Set the error code on error return.
 2002-07-30 22:59:13 +00:00
relyea%netscape.com
18b74cde82 Fix pkcs12 memory leak. 2002-07-30 22:51:13 +00:00
bishakhabanerjee%netscape.com
4225da3758 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 21:25:56 +00:00
bishakhabanerjee%netscape.com
65f7eca2f9 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:57:44 +00:00
bishakhabanerjee%netscape.com
e630b647c5 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:44:13 +00:00
bishakhabanerjee%netscape.com
ed1acde055 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:36:29 +00:00
nelsonb%netscape.com
ac73526c2c Examine SubjectAltName extensions for SSL server name matching. 
Bug 103752.
 2002-07-30 19:32:33 +00:00
bishakhabanerjee%netscape.com
532b7c841e Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 19:01:18 +00:00
bishakhabanerjee%netscape.com
a37737a1ca Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:49:46 +00:00
bishakhabanerjee%netscape.com
a5ff71eccd Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:44:36 +00:00
bishakhabanerjee%netscape.com
2f5e6fa6d3 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:36:50 +00:00
wtc%netscape.com
fe44dda52c Bug 159976: removed the incorrect linker options for building a bundle on 
Mac OS X. The patch is contributed by Ben Hines <bhines@alumni.ucsd.edu>.
 2002-07-29 21:48:39 +00:00
nelsonb%netscape.com
b26f28e997 Add missing const qualifiers to NSS's regular expression match functions. 2002-07-29 21:30:31 +00:00
wtc%netscape.com
869ca6f82b Fixed the comment. The length of the secret may be larger than 64 bytes. 2002-07-26 18:20:59 +00:00
wtc%netscape.com
80aae405d5 Removed unused ASN.1 templates and unnecessary declarations. 
Modified Files: lowcert.c pcertt.h
 2002-07-25 03:59:38 +00:00
kaie%netscape.com
8edfce7940 b=141268 OCSP error messages should say OCSP, not OSCP (typo) 
r=hixie sr=alecf a=asa
 2002-07-25 02:48:33 +00:00
kaie%netscape.com
3b8f00e02f b=113844 "Load PKCS#11 Device" dialog sized incorrectly 
r=kaie/javi  sr=alecf  a=asa
 2002-07-25 02:26:52 +00:00
relyea%netscape.com
2cf20e0041 return certs in sorted order. 2002-07-23 00:34:20 +00:00
bishakhabanerjee%netscape.com
5c04279163 Setting number of tests to 252 to take out warnings on nightly QA reports -Bug 156959 2002-07-19 23:46:10 +00:00
wtc%netscape.com
bb5752e0f0 Bug 158339: we should not call secmod_freeParams if RNG_RNGInit fails. 2002-07-19 18:31:30 +00:00
jpierre%netscape.com
d57baf5140 Fix for 158221 - make crlutil save memory by using the new PK11_ImportCRL function with the CRL_DECODE_DONT_COPY_DER option 2002-07-19 01:07:27 +00:00
jpierre%netscape.com
a82b9f46ba 158005 - add new CRL decode and import functions . Benefits are : 
- ability to import to any slot
- ability to specify decode options, such as "don't copy DER"
- ability to specify import options, such as "don't do CRL checks"
This patch also maps the existing functions SEC_NewCrl and CERT_ImportCRL
to this new function, eliminating the code duplication that existed
 2002-07-19 00:59:34 +00:00
nicolson%netscape.com
10ca31b470 Fix 157998: unable to importCertToPerm 2002-07-19 00:20:24 +00:00
jpierre%netscape.com
9a7c0e7303 Fix for 156802 - remove improper check in CRL decoding 2002-07-19 00:12:13 +00:00
jpierre%netscape.com
c509948a27 Remove unreferenced variables 2002-07-18 23:50:03 +00:00
jpierre%netscape.com
24426f202b Fix for 139292 - NSS_NoDBInit regression 2002-07-18 23:08:55 +00:00
leaf%mozilla.org
8860985e79 bug 154840, r=cls, sr=brendan, a=jesup update localeVersion strings 2002-07-17 23:51:49 +00:00
jpierre%netscape.com
0ef036408f Fix usage 2002-07-17 22:53:33 +00:00
jpierre%netscape.com
e7033fb486 Fix for 157996 - add support for SEC_NewCrl browser emulation mode in crlutil 2002-07-17 22:22:26 +00:00
wtc%netscape.com
aa78a2f343 Bug 157946: removed the unused -m option. Added the -v option to Usage(). 2002-07-17 18:39:02 +00:00
glen.beasley%sun.com
51a67c36d3 typecast for AIX build proper way 2002-07-17 01:14:58 +00:00
jpierre%netscape.com
2c39c4639f Fix for 153245 2002-07-17 00:21:09 +00:00
glen.beasley%sun.com
966f2ff5b0 typecast for AIX build 2002-07-16 23:52:45 +00:00
wtc%netscape.com
56c3c291e5 Bug 157750: handle the possibility that some certs do not have a label. 2002-07-16 21:13:40 +00:00
relyea%netscape.com
ccf95e381c Automatically recover from database corruptions when importing new certs. 2002-07-16 16:44:22 +00:00
jpierre%netscape.com
dc151802c8 Make certutil use the new CERT_VerifyCertificate function when verifying certs 2002-07-16 00:45:50 +00:00
nicolson%netscape.com
d77ce5ba26 fix 157622: cleanup javadoc warnings. 
Have the build system automatically copy overview-summary.html over
index.html so we get a frame-free version.
 2002-07-15 22:52:58 +00:00
nicolson%netscape.com
2bf050cc40 Fix 157622: cleanup javadoc warnings. 
These changes should only affect documentation. There should be no
functional effect of the changes.
 2002-07-15 22:48:06 +00:00
kaie%netscape.com
7a53d72407 b=153232 Add better error message for -8182 
r=javi sr=alecf a=asa
 2002-07-15 13:39:13 +00:00
kaie%netscape.com
a545a67335 b=151250 False warning posting to https site from http site. 
r=javi sr=alecf a=asa
 2002-07-15 13:37:22 +00:00
kaie%netscape.com
5b56e1ff00 b=114893 Can't send encrypted mail if encryption cert has not been imported. Smartcard issue. 
r=javi sr=alecf a=asa
 2002-07-15 13:35:30 +00:00
relyea%netscape.com
f181c1c7a2 Fix solaris signed/unsigned warnings. 
On updating nicknames, create a nickname record if one doesn't exist (that is
somehow the database got corrupted).
 2002-07-13 02:45:04 +00:00
nicolson%netscape.com
44dd584a7a put back the assertion check. 2002-07-12 21:12:22 +00:00
nicolson%netscape.com
fbb8083387 Fix misspelled exception name. 2002-07-12 21:08:22 +00:00
nicolson%netscape.com
8272ce3448 add default constructor 2002-07-12 21:07:40 +00:00
nicolson%netscape.com
79ef0013a6 This test isn't working yet, but I may get it working at some point. 2002-07-12 20:33:39 +00:00
nicolson%netscape.com
528f0be217 Fix 98613: using SSLSocket after close causes crash. 
Now the SSLSocket and SSLServerSocket close() methods only call PR_Close()
on the underlying fd. Freeing data structures is postponed until the
Java object is finalized.
 2002-07-12 04:26:56 +00:00
nicolson%netscape.com
de40255dcc clarify error message. 2002-07-12 04:09:14 +00:00
relyea%netscape.com
08f068a1b9 Update the CERTDB_USER bits when our key gets imported through pkcs #12. 2002-07-12 03:27:44 +00:00
jpierre%netscape.com
a0d70e4967 Make CERT_VerifyCertificate actually work . Oops. 2002-07-12 02:37:49 +00:00
relyea%netscape.com
eb96a2084d 1) When looking for a trust token, return tokens in the following priority order: 
1) r/w token with trust.
2) r/o token with trust.
3) r/w token
4) r/o token

Also, don't crash if we try to change the trust on a cert in temp storage, just return an error.
 2002-07-10 21:34:01 +00:00
wtc%netscape.com
a71935e132 Bug 155626: Handle the failure of ocsp_CreateCertID and use the new 
CERT_GetOCSPResponseStatus function.
 2002-07-10 15:16:10 +00:00
wtc%netscape.com
28c55e9bf1 Sorted the NSS 3.6 symbols in alphabetical order. 2002-07-10 15:04:23 +00:00
jpierre%netscape.com
9f541c35f5 Fix for 149832 : 
do not check certUsageVerifyCA
clean-up comments
correctly check for signature after first try
 2002-07-10 05:02:46 +00:00
jpierre%netscape.com
79e42fa05e Back out last change 2002-07-10 03:41:02 +00:00
jpierre%netscape.com
e7792d0931 Fix bug in new CERT_VerifyCertificate function - fix for 149832 2002-07-10 03:30:15 +00:00
relyea%netscape.com
30e66d1db6 Handle the case where the cert is in both the built-ins and the internal module. 2002-07-10 03:24:14 +00:00
relyea%netscape.com
a035ec8c53 Don't crash if a pkcs #11 device gives us an invalid CRL (or even a valid CRL that we don't know how to parse). 2002-07-10 01:31:01 +00:00
relyea%netscape.com
e42ef90c97 Don't delete the nickname entry until we go to delete the subject entry as well. 2002-07-10 01:04:10 +00:00
jpierre%netscape.com
9bfb36161f Fix for 154212 2002-07-10 00:56:16 +00:00
jpierre%netscape.com
c101367238 Fix for 154212 - update patch for CERT_SaveSMimeProfile based on Bob's comments 2002-07-10 00:07:39 +00:00
wtc%netscape.com
f1205a5879 Removed README.TXT, which is just README with Windows line endings (CRLF). 2002-07-09 17:11:25 +00:00
wtc%netscape.com
93a5154bf5 Added the README file, which explains how to add a root CA certificate to 
the nssckbi loadable root certs module.
 2002-07-09 17:00:30 +00:00
relyea%netscape.com
73bc75ae28 treat lastTime of 0 as never having checked (not within the interval). 2002-07-09 04:40:35 +00:00
relyea%netscape.com
006e3925e9 1) fix return type warning in pk11ListCertsCallback. 
2) treat lastTime==0 as always outside the delay time. (removes spurious
prompts in FIPS mode on some platforms.)
 2002-07-09 04:39:35 +00:00
dmose%netscape.com
46733612f7 Backing out the patch for bug 87902; a one-line change that caused an SSL/SMTP regression (bug 155431) 2002-07-08 23:24:30 +00:00
jpierre%netscape.com
967d483ebe Add new CERT_VerifyCertificate function - fix for 149832 2002-07-04 03:09:49 +00:00
glen.beasley%sun.com
3a0bcb0fb2 verify certificate in memory method 2002-07-04 00:36:52 +00:00
nicolson%netscape.com
5deb4aec40 Fix 120785: SSLSocket does not throw java.net.BindException. 2002-07-04 00:29:24 +00:00
nicolson%netscape.com
0e19cf236a need to include nspr.h. 2002-07-04 00:25:46 +00:00
glen.beasley%sun.com
d23ce70c2f verify cert in memory 2002-07-04 00:10:48 +00:00
nicolson%netscape.com
ae2a06d43f Fix 121710: throw better SSL exceptions. 2002-07-04 00:03:47 +00:00
nicolson%netscape.com
9db79236dd Print subject name instead of issuer name. 2002-07-03 23:58:58 +00:00
nicolson%netscape.com
8d5e4dc7c6 Update documentation for these functions. 2002-07-03 23:57:12 +00:00
nicolson%netscape.com
4bda169e18 deprecate old classes in favor of the JCA. 2002-07-03 23:51:20 +00:00
nicolson%netscape.com
3c7759665e moved JSSSecureRandomSpi into provider/java/security directory. 2002-07-03 23:49:32 +00:00
nicolson%netscape.com
0254942b89 Provider classes have been moved into the java/security and javax/crypto 
subdirectories.
 2002-07-03 23:48:53 +00:00
nicolson%netscape.com
1daf49c785 Fix 106846: Version strings in CryptoManager need updating. 2002-07-03 23:46:02 +00:00
javi%netscape.com
6f5c3918c6 Go back to the lower case mechanism for the ocspResponse_* flags. 2002-07-03 20:22:27 +00:00
javi%netscape.com
218a44e67b Final patch for Bug 155626 which enables 3rd party apps to use the NSS 
libraries to encode/decode OCSP responses/requests on their own.
 2002-07-03 20:18:10 +00:00
javi%netscape.com
7c36eac5d2 Use the newly exported symbol names. 2002-07-03 00:13:25 +00:00
javi%netscape.com
1f078c5776 Break up OCSP so that 3rd party apps can send off an OCSP request and parse 
it.
 2002-07-03 00:02:39 +00:00
relyea%netscape.com
4f9e4c1700 Handle the case where we don't get the Token object from NewToken (It gets converted from a session object in handleobjects). 2002-07-02 19:58:49 +00:00
relyea%netscape.com
6880c87a8d More performance improvements in listing certs: 
1) reduce more short term memory allocate/frees.
	2) remove sha1 hash calculations from critical paths.
	3) when listing user certs, skip decoding of non-user certs.
 2002-07-02 15:11:29 +00:00
nicolson%netscape.com
e6e1da9b32 typo in error message 2002-06-28 20:14:47 +00:00
ssaux%netscape.com
1c1d0d132e b=154624 Cannot change master password r=javi sr=mscott 2002-06-28 18:08:19 +00:00
relyea%netscape.com
af924e2843 Initialize type fields to supress purify uninitialized reference warnings. 2002-06-28 03:00:10 +00:00
jpierre%netscape.com
6f31863e61 Add VISA root cert - bug 139874 2002-06-28 01:07:37 +00:00
nicolson%netscape.com
bb9ae88653 remove spurious println. 2002-06-27 21:16:42 +00:00
wtc%netscape.com
c81143956b Bugzilla bug 154656: changed "softoken" to "softokn" to match the file 
name.
 2002-06-27 18:34:17 +00:00
jpierre%netscape.com
7ecdf837d4 Fix for 154212 - make CERT_SaveSMimeProfile copy the cert to the database if it comes from an external source 2002-06-27 00:18:35 +00:00
kaie%netscape.com
740ef8dd8d b=154240 security fix 
r=javi sr=alecf
 2002-06-26 14:15:11 +00:00
kaie%netscape.com
ffbb124fef b=154084 entering/leaving secure site alert pops up incessantly 
r=javi sr=alecf
 2002-06-25 23:32:42 +00:00
bzbarsky%mit.edu
e42364fdd5 Fix stretched icon. Bug 110456, patch by Chris Brien 
<christopher_brien@hotmail.com>, r=bzbarsky,ssaux, sr=alecf
 2002-06-25 23:29:48 +00:00
relyea%netscape.com
43480112f3 Initialize type field to clear off purify warnings. 2002-06-25 23:00:59 +00:00
relyea%netscape.com
c8d5ba28b5 Don't force the update if the cert doesn't already exist. 2002-06-25 22:58:13 +00:00
relyea%netscape.com
87a3188583 Collect the full names of the certs, not just the stan names. 2002-06-25 22:57:22 +00:00
relyea%netscape.com
6061b43df2 Add new function which returns the NSS 3.4 style nickname directly from a 
NSSCertificate structure.
 2002-06-25 22:33:37 +00:00
ian.mcgreer%sun.com
4091f82677 two more places to dump templates 2002-06-25 19:40:16 +00:00
ian.mcgreer%sun.com
bb3bfc1199 fix AIX builds, 64-bit compiler chokes on large switches in debug builds 2002-06-25 16:57:40 +00:00
relyea%netscape.com
5fc7efb515 Fix solaris compiler error/warning. Fix prototype to return correct value (PRBool not PRStatus). 2002-06-24 23:54:16 +00:00
kaie%netscape.com
c0454d676c b=87902 Cannot reach TLS intolerant servers through SSL proxy. 
r=javi sr=darin
 2002-06-24 23:02:08 +00:00
relyea%netscape.com
7caefab6ed Don't decode or extract trust for certs if we are just getting the nicknames -- particularly for user certs. 2002-06-24 22:36:59 +00:00
ian.mcgreer%sun.com
2a67969b3c fix broken AIX builds 2002-06-24 22:29:12 +00:00
ian.mcgreer%sun.com
b73a1edc81 log more mechanisms and templates 2002-06-24 22:22:57 +00:00
relyea%netscape.com
cbeed1cfd5 Copy the type value as well as the rest. 2002-06-24 21:57:27 +00:00
relyea%netscape.com
7cc9843630 More performance improvements for PK11ListCerts/ CERT_GetUserCertByUsage(). 2002-06-24 21:54:41 +00:00
nelsonb%netscape.com
071fe9ae9c Fix bug 135261. Create symbolic names for the values 2 and 3 for the 
SSL_REQUIRE_CERTIFICATE option.  Value 2 has always been the default.
New Value 3 is appropriate for servers that want to re-request, but
still not require, client-auth from a client with whom an SSL session
is already established.
 2002-06-22 01:40:32 +00:00
nicolson%netscape.com
01f5e0790f Fix 128259: Cannot get SSL trust for a CA residing on PKCS#11 module. 2002-06-21 23:53:58 +00:00
relyea%netscape.com
3c89da1564 Need to preserve non-modifiable trustbits. 2002-06-21 22:28:03 +00:00
relyea%netscape.com
aa8dddaacb zero structure before we fill it in, not after 2002-06-21 20:25:49 +00:00
nicolson%netscape.com
fe199405d1 fix a build error in JDK 1.2. 2002-06-21 18:31:36 +00:00
wtc%netscape.com
47b432c0f5 Bug 153380: TLS is enabled by default now. 2002-06-21 18:25:46 +00:00
kaie%netscape.com
1887483a18 b=90956 Dot (.) instead of localized characters in pipnss module 
r=ssaux sr=alecf
 2002-06-20 23:41:02 +00:00
kaie%netscape.com
f1f07ddeb8 https surfing: Clicking on a link early leads to "mixed/broken" lock icon 
r=javi sr=rpotts
 2002-06-20 23:36:48 +00:00
bryner%netscape.com
6845058771 Don't crash if NSSDialogs doesn't implement nsICertificateDialogs (bug 150862). r=kaie, sr=blake. 2002-06-20 23:31:47 +00:00
javi%netscape.com
b81e7cc522 Make the file C++ friendly. 2002-06-20 22:32:38 +00:00
relyea%netscape.com
ffa0ecc514 Reduce the cost of decoding a certificate. 2002-06-20 18:53:16 +00:00
relyea%netscape.com
d7a32bbce6 reduce the calls to get the login state as these calls seem to be pretty expensive 
for some tokens.
 2002-06-20 18:49:45 +00:00
relyea%netscape.com
eb95452896 Patches to reduce the cost of getting attributes on certs or finding certs in lists. 2002-06-20 18:46:47 +00:00
nicolson%netscape.com
43274230b4 catch a null pointer and throw it back to Java, instead of crashing in C. 2002-06-19 22:59:08 +00:00
nicolson%netscape.com
105ed4a40e upgrade to NSS 3.4.2. 2002-06-19 22:58:40 +00:00
nicolson%netscape.com
ab90ccc5bf add SSLClientAuth test. 
remove obsolete socketTest.
Get passwords from a file so we can run in batch mode.
 2002-06-19 22:50:47 +00:00
nicolson%netscape.com
9d33093ccb Fix 112227: set SSL server without nickname 
Specify the certificate to use for both server and client auth directly,
rather than by nickname.
 2002-06-19 20:33:28 +00:00
stephend%netscape.com
aaa4ab622f Bug 151418. Polish Page Info & Certificate Details. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-19 20:32:54 +00:00
ian.mcgreer%sun.com
48d6b949c1 bug 98926, PKCS#11 session logging 2002-06-19 18:32:57 +00:00
rangansen%netscape.com
bff8c533ce exporting CERT_VerifyCertChain. r=relyea 2002-06-19 15:58:51 +00:00
ian.mcgreer%sun.com
4cf84d39dd missed part of last patch (bug 145322) 2002-06-19 15:26:55 +00:00
ian.mcgreer%sun.com
e30639f9cd bug 145322, second patch, clean up pk11_saveContextHelper 2002-06-19 15:22:54 +00:00
ian.mcgreer%sun.com
607f12501a bug 145322, reduce the number of PKCS#11 sessions used in SSL connections, implement new function PK11_SaveContextAlloc 
r=relyea
 2002-06-19 15:21:37 +00:00
ian.mcgreer%sun.com
0992642b67 bug 150704, PK11_Finalize can crash because softoken does not implement C_XXXFinal correctly 2002-06-19 14:59:24 +00:00
bishakhabanerjee%netscape.com
19dbdc5df8 correcting init_mcom function to enable "nssqa" to run at Netscape - 150752 2002-06-18 21:45:31 +00:00
relyea%netscape.com
6f356a0f36 1) Map flags both coming and going. 
2) Finish transaction of the target database not the source database.
 2002-06-18 16:41:41 +00:00
kaie%netscape.com
f21ae0fa21 b=145730 Avoid unnecessary repeated "encrypted page" alerts on JavaScript links. 
r=jst sr=darin
 2002-06-18 14:17:10 +00:00
wtc%netscape.com
29df488eaa Bug 151940: SEC_PKCS12DecoderVerify should call SEC_ASN1DecoderFinish first 
to detect insufficient input data error.
 2002-06-18 05:00:39 +00:00
relyea%netscape.com
27153b6afb Standardize the open flags as 'enums' when using multiaccess databases, no matter 
if we are using PR_ versions of the flags or O_ versions of the flags.
 2002-06-17 18:46:27 +00:00
kaie%netscape.com
549e28cb1f b=148610 Lock icon should be updated as early as possible. 
r=javi sr=rpotts
 2002-06-17 09:56:14 +00:00
stephend%netscape.com
f16abb505b Bug145409. JS strict warnings in certManager.js. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-16 21:19:25 +00:00
nicolson%netscape.com
2d108bf4b9 add new tests. 2002-06-14 18:15:45 +00:00
nicolson%netscape.com
ec04d87172 remove broken code until bug is fixed. 2002-06-14 18:15:21 +00:00
nicolson%netscape.com
ff2ce0953a remove bogus comment. 2002-06-14 18:13:27 +00:00
relyea%netscape.com
e2f5a0ac1f check version of the existing DB, not the updatedb. 2002-06-14 17:29:56 +00:00
kaie%netscape.com
36c340f00c b=119394 Support fetching certificates from LDAP servers. 
r=javi/dmose sr=mscott
 2002-06-14 02:10:02 +00:00
kaie%netscape.com
9202384131 b=150863 Fix lock icon state for low/high crypto mix. 
r=javi sr=alecf
 2002-06-13 23:59:01 +00:00
relyea%netscape.com
d31340924d Add transactions to the database update portion of the code. 2002-06-13 23:25:37 +00:00
relyea%netscape.com
3839be90f6 Update cert handle on token insertion/removal. 2002-06-13 21:43:30 +00:00
relyea%netscape.com
e84f17e0ea Add series to keep track of object handle value validity. 2002-06-13 21:42:41 +00:00