Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-06 17:16:12 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
108,834 Commits 615 Branches 98 Tags 5.9 GiB
3b649a913b
Commit Graph

3677 Commits

Author SHA1 Message Date
wtc%netscape.com
2bd38c9821 Bug 148220: FIPS 198's key size requirement broke the NSS QA. Backing it 
out.
 2002-07-31 00:55:35 +00:00
wtc%netscape.com
9590c529f0 Bug 148220: the previous checkin missed the inclusion of secerr.h. 2002-07-30 23:19:44 +00:00
nelsonb%netscape.com
ca36e61638 Fix code to work when subjectAltName extension not present in server cert. 
Bug 103752.
 2002-07-30 23:15:43 +00:00
wtc%netscape.com
e29a299bc0 Bug 148220: enforce FIPS 198's requirement on the secret key's length. 
Added an assertion.  Set the error code on error return.
 2002-07-30 22:59:13 +00:00
relyea%netscape.com
18b74cde82 Fix pkcs12 memory leak. 2002-07-30 22:51:13 +00:00
bishakhabanerjee%netscape.com
4225da3758 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 21:25:56 +00:00
bishakhabanerjee%netscape.com
65f7eca2f9 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:57:44 +00:00
bishakhabanerjee%netscape.com
e630b647c5 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:44:13 +00:00
bishakhabanerjee%netscape.com
ed1acde055 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 20:36:29 +00:00
nelsonb%netscape.com
ac73526c2c Examine SubjectAltName extensions for SSL server name matching. 
Bug 103752.
 2002-07-30 19:32:33 +00:00
bishakhabanerjee%netscape.com
532b7c841e Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 19:01:18 +00:00
bishakhabanerjee%netscape.com
a37737a1ca Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:49:46 +00:00
bishakhabanerjee%netscape.com
a5ff71eccd Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:44:36 +00:00
bishakhabanerjee%netscape.com
2f5e6fa6d3 Checking in riceman+bmo@mail.rit.edu's patch for bug 133702 2002-07-30 18:36:50 +00:00
wtc%netscape.com
fe44dda52c Bug 159976: removed the incorrect linker options for building a bundle on 
Mac OS X. The patch is contributed by Ben Hines <bhines@alumni.ucsd.edu>.
 2002-07-29 21:48:39 +00:00
nelsonb%netscape.com
b26f28e997 Add missing const qualifiers to NSS's regular expression match functions. 2002-07-29 21:30:31 +00:00
wtc%netscape.com
869ca6f82b Fixed the comment. The length of the secret may be larger than 64 bytes. 2002-07-26 18:20:59 +00:00
wtc%netscape.com
80aae405d5 Removed unused ASN.1 templates and unnecessary declarations. 
Modified Files: lowcert.c pcertt.h
 2002-07-25 03:59:38 +00:00
kaie%netscape.com
8edfce7940 b=141268 OCSP error messages should say OCSP, not OSCP (typo) 
r=hixie sr=alecf a=asa
 2002-07-25 02:48:33 +00:00
kaie%netscape.com
3b8f00e02f b=113844 "Load PKCS#11 Device" dialog sized incorrectly 
r=kaie/javi  sr=alecf  a=asa
 2002-07-25 02:26:52 +00:00
relyea%netscape.com
2cf20e0041 return certs in sorted order. 2002-07-23 00:34:20 +00:00
bishakhabanerjee%netscape.com
5c04279163 Setting number of tests to 252 to take out warnings on nightly QA reports -Bug 156959 2002-07-19 23:46:10 +00:00
wtc%netscape.com
bb5752e0f0 Bug 158339: we should not call secmod_freeParams if RNG_RNGInit fails. 2002-07-19 18:31:30 +00:00
jpierre%netscape.com
d57baf5140 Fix for 158221 - make crlutil save memory by using the new PK11_ImportCRL function with the CRL_DECODE_DONT_COPY_DER option 2002-07-19 01:07:27 +00:00
jpierre%netscape.com
a82b9f46ba 158005 - add new CRL decode and import functions . Benefits are : 
- ability to import to any slot
- ability to specify decode options, such as "don't copy DER"
- ability to specify import options, such as "don't do CRL checks"
This patch also maps the existing functions SEC_NewCrl and CERT_ImportCRL
to this new function, eliminating the code duplication that existed
 2002-07-19 00:59:34 +00:00
nicolson%netscape.com
10ca31b470 Fix 157998: unable to importCertToPerm 2002-07-19 00:20:24 +00:00
jpierre%netscape.com
9a7c0e7303 Fix for 156802 - remove improper check in CRL decoding 2002-07-19 00:12:13 +00:00
jpierre%netscape.com
c509948a27 Remove unreferenced variables 2002-07-18 23:50:03 +00:00
jpierre%netscape.com
24426f202b Fix for 139292 - NSS_NoDBInit regression 2002-07-18 23:08:55 +00:00
leaf%mozilla.org
8860985e79 bug 154840, r=cls, sr=brendan, a=jesup update localeVersion strings 2002-07-17 23:51:49 +00:00
jpierre%netscape.com
0ef036408f Fix usage 2002-07-17 22:53:33 +00:00
jpierre%netscape.com
e7033fb486 Fix for 157996 - add support for SEC_NewCrl browser emulation mode in crlutil 2002-07-17 22:22:26 +00:00
wtc%netscape.com
aa78a2f343 Bug 157946: removed the unused -m option. Added the -v option to Usage(). 2002-07-17 18:39:02 +00:00
glen.beasley%sun.com
51a67c36d3 typecast for AIX build proper way 2002-07-17 01:14:58 +00:00
jpierre%netscape.com
2c39c4639f Fix for 153245 2002-07-17 00:21:09 +00:00
glen.beasley%sun.com
966f2ff5b0 typecast for AIX build 2002-07-16 23:52:45 +00:00
wtc%netscape.com
56c3c291e5 Bug 157750: handle the possibility that some certs do not have a label. 2002-07-16 21:13:40 +00:00
relyea%netscape.com
ccf95e381c Automatically recover from database corruptions when importing new certs. 2002-07-16 16:44:22 +00:00
jpierre%netscape.com
dc151802c8 Make certutil use the new CERT_VerifyCertificate function when verifying certs 2002-07-16 00:45:50 +00:00
nicolson%netscape.com
d77ce5ba26 fix 157622: cleanup javadoc warnings. 
Have the build system automatically copy overview-summary.html over
index.html so we get a frame-free version.
 2002-07-15 22:52:58 +00:00
nicolson%netscape.com
2bf050cc40 Fix 157622: cleanup javadoc warnings. 
These changes should only affect documentation. There should be no
functional effect of the changes.
 2002-07-15 22:48:06 +00:00
kaie%netscape.com
7a53d72407 b=153232 Add better error message for -8182 
r=javi sr=alecf a=asa
 2002-07-15 13:39:13 +00:00
kaie%netscape.com
a545a67335 b=151250 False warning posting to https site from http site. 
r=javi sr=alecf a=asa
 2002-07-15 13:37:22 +00:00
kaie%netscape.com
5b56e1ff00 b=114893 Can't send encrypted mail if encryption cert has not been imported. Smartcard issue. 
r=javi sr=alecf a=asa
 2002-07-15 13:35:30 +00:00
relyea%netscape.com
f181c1c7a2 Fix solaris signed/unsigned warnings. 
On updating nicknames, create a nickname record if one doesn't exist (that is
somehow the database got corrupted).
 2002-07-13 02:45:04 +00:00
nicolson%netscape.com
44dd584a7a put back the assertion check. 2002-07-12 21:12:22 +00:00
nicolson%netscape.com
fbb8083387 Fix misspelled exception name. 2002-07-12 21:08:22 +00:00
nicolson%netscape.com
8272ce3448 add default constructor 2002-07-12 21:07:40 +00:00
nicolson%netscape.com
79ef0013a6 This test isn't working yet, but I may get it working at some point. 2002-07-12 20:33:39 +00:00
nicolson%netscape.com
528f0be217 Fix 98613: using SSLSocket after close causes crash. 
Now the SSLSocket and SSLServerSocket close() methods only call PR_Close()
on the underlying fd. Freeing data structures is postponed until the
Java object is finalized.
 2002-07-12 04:26:56 +00:00
nicolson%netscape.com
de40255dcc clarify error message. 2002-07-12 04:09:14 +00:00
relyea%netscape.com
08f068a1b9 Update the CERTDB_USER bits when our key gets imported through pkcs #12. 2002-07-12 03:27:44 +00:00
jpierre%netscape.com
a0d70e4967 Make CERT_VerifyCertificate actually work . Oops. 2002-07-12 02:37:49 +00:00
relyea%netscape.com
eb96a2084d 1) When looking for a trust token, return tokens in the following priority order: 
1) r/w token with trust.
2) r/o token with trust.
3) r/w token
4) r/o token

Also, don't crash if we try to change the trust on a cert in temp storage, just return an error.
 2002-07-10 21:34:01 +00:00
wtc%netscape.com
a71935e132 Bug 155626: Handle the failure of ocsp_CreateCertID and use the new 
CERT_GetOCSPResponseStatus function.
 2002-07-10 15:16:10 +00:00
wtc%netscape.com
28c55e9bf1 Sorted the NSS 3.6 symbols in alphabetical order. 2002-07-10 15:04:23 +00:00
jpierre%netscape.com
9f541c35f5 Fix for 149832 : 
do not check certUsageVerifyCA
clean-up comments
correctly check for signature after first try
 2002-07-10 05:02:46 +00:00
jpierre%netscape.com
79e42fa05e Back out last change 2002-07-10 03:41:02 +00:00
jpierre%netscape.com
e7792d0931 Fix bug in new CERT_VerifyCertificate function - fix for 149832 2002-07-10 03:30:15 +00:00
relyea%netscape.com
30e66d1db6 Handle the case where the cert is in both the built-ins and the internal module. 2002-07-10 03:24:14 +00:00
relyea%netscape.com
a035ec8c53 Don't crash if a pkcs #11 device gives us an invalid CRL (or even a valid CRL that we don't know how to parse). 2002-07-10 01:31:01 +00:00
relyea%netscape.com
e42ef90c97 Don't delete the nickname entry until we go to delete the subject entry as well. 2002-07-10 01:04:10 +00:00
jpierre%netscape.com
9bfb36161f Fix for 154212 2002-07-10 00:56:16 +00:00
jpierre%netscape.com
c101367238 Fix for 154212 - update patch for CERT_SaveSMimeProfile based on Bob's comments 2002-07-10 00:07:39 +00:00
wtc%netscape.com
f1205a5879 Removed README.TXT, which is just README with Windows line endings (CRLF). 2002-07-09 17:11:25 +00:00
wtc%netscape.com
93a5154bf5 Added the README file, which explains how to add a root CA certificate to 
the nssckbi loadable root certs module.
 2002-07-09 17:00:30 +00:00
relyea%netscape.com
73bc75ae28 treat lastTime of 0 as never having checked (not within the interval). 2002-07-09 04:40:35 +00:00
relyea%netscape.com
006e3925e9 1) fix return type warning in pk11ListCertsCallback. 
2) treat lastTime==0 as always outside the delay time. (removes spurious
prompts in FIPS mode on some platforms.)
 2002-07-09 04:39:35 +00:00
dmose%netscape.com
46733612f7 Backing out the patch for bug 87902; a one-line change that caused an SSL/SMTP regression (bug 155431) 2002-07-08 23:24:30 +00:00
jpierre%netscape.com
967d483ebe Add new CERT_VerifyCertificate function - fix for 149832 2002-07-04 03:09:49 +00:00
glen.beasley%sun.com
3a0bcb0fb2 verify certificate in memory method 2002-07-04 00:36:52 +00:00
nicolson%netscape.com
5deb4aec40 Fix 120785: SSLSocket does not throw java.net.BindException. 2002-07-04 00:29:24 +00:00
nicolson%netscape.com
0e19cf236a need to include nspr.h. 2002-07-04 00:25:46 +00:00
glen.beasley%sun.com
d23ce70c2f verify cert in memory 2002-07-04 00:10:48 +00:00
nicolson%netscape.com
ae2a06d43f Fix 121710: throw better SSL exceptions. 2002-07-04 00:03:47 +00:00
nicolson%netscape.com
9db79236dd Print subject name instead of issuer name. 2002-07-03 23:58:58 +00:00
nicolson%netscape.com
8d5e4dc7c6 Update documentation for these functions. 2002-07-03 23:57:12 +00:00
nicolson%netscape.com
4bda169e18 deprecate old classes in favor of the JCA. 2002-07-03 23:51:20 +00:00
nicolson%netscape.com
3c7759665e moved JSSSecureRandomSpi into provider/java/security directory. 2002-07-03 23:49:32 +00:00
nicolson%netscape.com
0254942b89 Provider classes have been moved into the java/security and javax/crypto 
subdirectories.
 2002-07-03 23:48:53 +00:00
nicolson%netscape.com
1daf49c785 Fix 106846: Version strings in CryptoManager need updating. 2002-07-03 23:46:02 +00:00
javi%netscape.com
6f5c3918c6 Go back to the lower case mechanism for the ocspResponse_* flags. 2002-07-03 20:22:27 +00:00
javi%netscape.com
218a44e67b Final patch for Bug 155626 which enables 3rd party apps to use the NSS 
libraries to encode/decode OCSP responses/requests on their own.
 2002-07-03 20:18:10 +00:00
javi%netscape.com
7c36eac5d2 Use the newly exported symbol names. 2002-07-03 00:13:25 +00:00
javi%netscape.com
1f078c5776 Break up OCSP so that 3rd party apps can send off an OCSP request and parse 
it.
 2002-07-03 00:02:39 +00:00
relyea%netscape.com
4f9e4c1700 Handle the case where we don't get the Token object from NewToken (It gets converted from a session object in handleobjects). 2002-07-02 19:58:49 +00:00
relyea%netscape.com
6880c87a8d More performance improvements in listing certs: 
1) reduce more short term memory allocate/frees.
	2) remove sha1 hash calculations from critical paths.
	3) when listing user certs, skip decoding of non-user certs.
 2002-07-02 15:11:29 +00:00
nicolson%netscape.com
e6e1da9b32 typo in error message 2002-06-28 20:14:47 +00:00
ssaux%netscape.com
1c1d0d132e b=154624 Cannot change master password r=javi sr=mscott 2002-06-28 18:08:19 +00:00
relyea%netscape.com
af924e2843 Initialize type fields to supress purify uninitialized reference warnings. 2002-06-28 03:00:10 +00:00
jpierre%netscape.com
6f31863e61 Add VISA root cert - bug 139874 2002-06-28 01:07:37 +00:00
nicolson%netscape.com
bb9ae88653 remove spurious println. 2002-06-27 21:16:42 +00:00
wtc%netscape.com
c81143956b Bugzilla bug 154656: changed "softoken" to "softokn" to match the file 
name.
 2002-06-27 18:34:17 +00:00
jpierre%netscape.com
7ecdf837d4 Fix for 154212 - make CERT_SaveSMimeProfile copy the cert to the database if it comes from an external source 2002-06-27 00:18:35 +00:00
kaie%netscape.com
740ef8dd8d b=154240 security fix 
r=javi sr=alecf
 2002-06-26 14:15:11 +00:00
kaie%netscape.com
ffbb124fef b=154084 entering/leaving secure site alert pops up incessantly 
r=javi sr=alecf
 2002-06-25 23:32:42 +00:00
bzbarsky%mit.edu
e42364fdd5 Fix stretched icon. Bug 110456, patch by Chris Brien 
<christopher_brien@hotmail.com>, r=bzbarsky,ssaux, sr=alecf
 2002-06-25 23:29:48 +00:00
relyea%netscape.com
43480112f3 Initialize type field to clear off purify warnings. 2002-06-25 23:00:59 +00:00
relyea%netscape.com
c8d5ba28b5 Don't force the update if the cert doesn't already exist. 2002-06-25 22:58:13 +00:00
relyea%netscape.com
87a3188583 Collect the full names of the certs, not just the stan names. 2002-06-25 22:57:22 +00:00
relyea%netscape.com
6061b43df2 Add new function which returns the NSS 3.4 style nickname directly from a 
NSSCertificate structure.
 2002-06-25 22:33:37 +00:00
ian.mcgreer%sun.com
4091f82677 two more places to dump templates 2002-06-25 19:40:16 +00:00
ian.mcgreer%sun.com
bb3bfc1199 fix AIX builds, 64-bit compiler chokes on large switches in debug builds 2002-06-25 16:57:40 +00:00
relyea%netscape.com
5fc7efb515 Fix solaris compiler error/warning. Fix prototype to return correct value (PRBool not PRStatus). 2002-06-24 23:54:16 +00:00
kaie%netscape.com
c0454d676c b=87902 Cannot reach TLS intolerant servers through SSL proxy. 
r=javi sr=darin
 2002-06-24 23:02:08 +00:00
relyea%netscape.com
7caefab6ed Don't decode or extract trust for certs if we are just getting the nicknames -- particularly for user certs. 2002-06-24 22:36:59 +00:00
ian.mcgreer%sun.com
2a67969b3c fix broken AIX builds 2002-06-24 22:29:12 +00:00
ian.mcgreer%sun.com
b73a1edc81 log more mechanisms and templates 2002-06-24 22:22:57 +00:00
relyea%netscape.com
cbeed1cfd5 Copy the type value as well as the rest. 2002-06-24 21:57:27 +00:00
relyea%netscape.com
7cc9843630 More performance improvements for PK11ListCerts/ CERT_GetUserCertByUsage(). 2002-06-24 21:54:41 +00:00
nelsonb%netscape.com
071fe9ae9c Fix bug 135261. Create symbolic names for the values 2 and 3 for the 
SSL_REQUIRE_CERTIFICATE option.  Value 2 has always been the default.
New Value 3 is appropriate for servers that want to re-request, but
still not require, client-auth from a client with whom an SSL session
is already established.
 2002-06-22 01:40:32 +00:00
nicolson%netscape.com
01f5e0790f Fix 128259: Cannot get SSL trust for a CA residing on PKCS#11 module. 2002-06-21 23:53:58 +00:00
relyea%netscape.com
3c89da1564 Need to preserve non-modifiable trustbits. 2002-06-21 22:28:03 +00:00
relyea%netscape.com
aa8dddaacb zero structure before we fill it in, not after 2002-06-21 20:25:49 +00:00
nicolson%netscape.com
fe199405d1 fix a build error in JDK 1.2. 2002-06-21 18:31:36 +00:00
wtc%netscape.com
47b432c0f5 Bug 153380: TLS is enabled by default now. 2002-06-21 18:25:46 +00:00
kaie%netscape.com
1887483a18 b=90956 Dot (.) instead of localized characters in pipnss module 
r=ssaux sr=alecf
 2002-06-20 23:41:02 +00:00
kaie%netscape.com
f1f07ddeb8 https surfing: Clicking on a link early leads to "mixed/broken" lock icon 
r=javi sr=rpotts
 2002-06-20 23:36:48 +00:00
bryner%netscape.com
6845058771 Don't crash if NSSDialogs doesn't implement nsICertificateDialogs (bug 150862). r=kaie, sr=blake. 2002-06-20 23:31:47 +00:00
javi%netscape.com
b81e7cc522 Make the file C++ friendly. 2002-06-20 22:32:38 +00:00
relyea%netscape.com
ffa0ecc514 Reduce the cost of decoding a certificate. 2002-06-20 18:53:16 +00:00
relyea%netscape.com
d7a32bbce6 reduce the calls to get the login state as these calls seem to be pretty expensive 
for some tokens.
 2002-06-20 18:49:45 +00:00
relyea%netscape.com
eb95452896 Patches to reduce the cost of getting attributes on certs or finding certs in lists. 2002-06-20 18:46:47 +00:00
nicolson%netscape.com
43274230b4 catch a null pointer and throw it back to Java, instead of crashing in C. 2002-06-19 22:59:08 +00:00
nicolson%netscape.com
105ed4a40e upgrade to NSS 3.4.2. 2002-06-19 22:58:40 +00:00
nicolson%netscape.com
ab90ccc5bf add SSLClientAuth test. 
remove obsolete socketTest.
Get passwords from a file so we can run in batch mode.
 2002-06-19 22:50:47 +00:00
nicolson%netscape.com
9d33093ccb Fix 112227: set SSL server without nickname 
Specify the certificate to use for both server and client auth directly,
rather than by nickname.
 2002-06-19 20:33:28 +00:00
stephend%netscape.com
aaa4ab622f Bug 151418. Polish Page Info & Certificate Details. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-19 20:32:54 +00:00
ian.mcgreer%sun.com
48d6b949c1 bug 98926, PKCS#11 session logging 2002-06-19 18:32:57 +00:00
rangansen%netscape.com
bff8c533ce exporting CERT_VerifyCertChain. r=relyea 2002-06-19 15:58:51 +00:00
ian.mcgreer%sun.com
4cf84d39dd missed part of last patch (bug 145322) 2002-06-19 15:26:55 +00:00
ian.mcgreer%sun.com
e30639f9cd bug 145322, second patch, clean up pk11_saveContextHelper 2002-06-19 15:22:54 +00:00
ian.mcgreer%sun.com
607f12501a bug 145322, reduce the number of PKCS#11 sessions used in SSL connections, implement new function PK11_SaveContextAlloc 
r=relyea
 2002-06-19 15:21:37 +00:00
ian.mcgreer%sun.com
0992642b67 bug 150704, PK11_Finalize can crash because softoken does not implement C_XXXFinal correctly 2002-06-19 14:59:24 +00:00
bishakhabanerjee%netscape.com
19dbdc5df8 correcting init_mcom function to enable "nssqa" to run at Netscape - 150752 2002-06-18 21:45:31 +00:00
relyea%netscape.com
6f356a0f36 1) Map flags both coming and going. 
2) Finish transaction of the target database not the source database.
 2002-06-18 16:41:41 +00:00
kaie%netscape.com
f21ae0fa21 b=145730 Avoid unnecessary repeated "encrypted page" alerts on JavaScript links. 
r=jst sr=darin
 2002-06-18 14:17:10 +00:00
wtc%netscape.com
29df488eaa Bug 151940: SEC_PKCS12DecoderVerify should call SEC_ASN1DecoderFinish first 
to detect insufficient input data error.
 2002-06-18 05:00:39 +00:00
relyea%netscape.com
27153b6afb Standardize the open flags as 'enums' when using multiaccess databases, no matter 
if we are using PR_ versions of the flags or O_ versions of the flags.
 2002-06-17 18:46:27 +00:00
kaie%netscape.com
549e28cb1f b=148610 Lock icon should be updated as early as possible. 
r=javi sr=rpotts
 2002-06-17 09:56:14 +00:00
stephend%netscape.com
f16abb505b Bug145409. JS strict warnings in certManager.js. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-16 21:19:25 +00:00
nicolson%netscape.com
2d108bf4b9 add new tests. 2002-06-14 18:15:45 +00:00
nicolson%netscape.com
ec04d87172 remove broken code until bug is fixed. 2002-06-14 18:15:21 +00:00
nicolson%netscape.com
ff2ce0953a remove bogus comment. 2002-06-14 18:13:27 +00:00
relyea%netscape.com
e2f5a0ac1f check version of the existing DB, not the updatedb. 2002-06-14 17:29:56 +00:00
kaie%netscape.com
36c340f00c b=119394 Support fetching certificates from LDAP servers. 
r=javi/dmose sr=mscott
 2002-06-14 02:10:02 +00:00
kaie%netscape.com
9202384131 b=150863 Fix lock icon state for low/high crypto mix. 
r=javi sr=alecf
 2002-06-13 23:59:01 +00:00
relyea%netscape.com
d31340924d Add transactions to the database update portion of the code. 2002-06-13 23:25:37 +00:00
relyea%netscape.com
3839be90f6 Update cert handle on token insertion/removal. 2002-06-13 21:43:30 +00:00
relyea%netscape.com
e84f17e0ea Add series to keep track of object handle value validity. 2002-06-13 21:42:41 +00:00
relyea%netscape.com
b7167f5cba Reset the cert cache and clobber cert handles on token insertion an removal 2002-06-13 21:40:43 +00:00
jpierre%netscape.com
8739d6f231 Add missing AOL root CA certs 2002-06-13 10:14:50 +00:00
nicolson%netscape.com
c01ead5178 add javadoc target. 2002-06-12 22:54:16 +00:00
nicolson%netscape.com
caac61f6c1 remove these files--there's no C code in this directory. 2002-06-12 20:18:10 +00:00
nicolson%netscape.com
98fd1b572a Grab NSS headers from directory "nss" instead of directory "security". 2002-06-12 20:11:22 +00:00
nicolson%netscape.com
d8cf3f39f6 remove makefiles for this directory, since it's only Java files. 2002-06-12 20:08:39 +00:00
kaie%netscape.com
53b1d03a9c b=126944 Handle NSS error codes within PSM. 
r=ssaux sr=darin
 2002-06-12 16:44:22 +00:00
wtc%netscape.com
aae4410a4d Bug 150143: use map file to limit exported symbols on Mac OS X. The patch 
is contributed by Brian Ryner <bryner@netscape.com>.
Modified files: Darwin.mk rules.mk
 2002-06-12 00:21:19 +00:00
relyea%netscape.com
696026ef88 When checking NeedInit status, go back and check the token in case the token 
has been initialized offline.
 2002-06-11 23:33:25 +00:00
jpierre%netscape.com
b473a8e33d Update for root certs - bug 139874 2002-06-11 23:16:25 +00:00
kirk.erickson%sun.com
80cae9e038 Fixed indentation caught by Wan-Teh (66606). 2002-06-11 22:41:45 +00:00
kirk.erickson%sun.com
6e3d00368d Resolves 66606. Added -O (enable OCSP checking). 2002-06-11 16:29:28 +00:00
ddrinan%netscape.com
c87736a06b Bug 150708. Incorrect keysize when finding bulk alg. r=wtc. 2002-06-10 22:00:32 +00:00
relyea%netscape.com
bb528345ff Return public and private keys in the order specified by the PKCS #11 spec. 2002-06-10 20:33:31 +00:00
leaf%mozilla.org
6e6bf977e5 updating locale version string for impending release, bug 149802 2002-06-07 07:45:38 +00:00
alecf%netscape.com
bcf192e308 fix for bug 101761 - REQUIRES update - remove all REQUIRES that are no longer necessary.. r=cls, a=asa (build-only changes) 2002-06-06 20:28:14 +00:00
jpierre%netscape.com
165951e036 Fix for 141256 - rewrite OCSP HTTP download code to fix error handling 2002-06-06 01:05:40 +00:00
jpierre%netscape.com
42c9d8d43b Fix for 139874 - Inject Latest CA Root Certs 2002-06-06 00:12:56 +00:00
cathleen%netscape.com
64856eb68b clean up last traces of nsCRT::strlen(char* s), bug 124536 r=dp, sr=brendan 2002-06-04 23:05:39 +00:00
thayes%netscape.com
9355438f45 Reserve OID (netscape_name_components 2) - see 605437 2002-06-04 21:46:05 +00:00
bishakhabanerjee%netscape.com
76c8329a07 to build the new NSS tests.. bugzilla bug 144316 2002-06-03 17:16:57 +00:00
wtc%netscape.com
c99a93829c Backed out the previous checkin, which is not being used and triggers 
a bug in gmake 3.76.1 with MKS shell on Windows.
 2002-06-01 04:31:44 +00:00
wtc%netscape.com
a1598af613 Use $(DLL_SUFFIX) instead of ${DLL_SUFFIX}. 2002-06-01 04:25:38 +00:00
nicolson%netscape.com
fa1fbd5d69 Fix 147794: PK11_ImportDERPrivateKeyInfoAndReturnKey frees the private key incorrectly. 2002-06-01 00:43:46 +00:00
rangansen%netscape.com
b355617820 Fix to ensure change password on db is commited - using rv == SECSuccess would actually abort it. 
r = wtc
 2002-06-01 00:37:00 +00:00
kaie%netscape.com
0f6f591340 b=138479 Disable Security tab in View Frame Info 
r=javi sr=jag
 2002-05-30 04:56:16 +00:00
wtc%netscape.com
6a49741d7d This is a test. I changed Revision and Date to bogus values and want to 
see what actually got checked in.
 2002-05-30 02:08:07 +00:00
glen.beasley%sun.com
764659f58f for release eng to build multiple platforms 2002-05-30 00:47:18 +00:00
wtc%netscape.com
118670f573 Import NSPR 4.2 and DBM 1.61. 2002-05-30 00:36:48 +00:00
nicolson%netscape.com
7c6284c42b Fix bug 112330: CryptoToken.changePassword(new ConsolePasswordCallback(), new ConsolePasswordCallback()) throws Native Exception. 
We were zeroing the password after freeing it, which in some cases caused
memory corruption and crashing.
 2002-05-29 21:54:14 +00:00
ian.mcgreer%sun.com
7ad9c0cc44 bug 136701, certutil should use PK11_ListCerts 2002-05-29 18:19:33 +00:00
kaie%netscape.com
b9a747d97f b=130650 In page info, "Security" tab lacks shortcut. 
r=kaie sr=jag
 2002-05-29 03:40:46 +00:00
kaie%netscape.com
bd0b2c053a b=110195 Master passwords steals focus in prefs 
r=kaie sr=alecf
 2002-05-29 03:32:04 +00:00
kirk.erickson%sun.com
9ef935cd78 Fixed OCSP typo. 2002-05-28 18:26:37 +00:00
wtc%netscape.com
a0715a5bd0 Bug 142575: use the PRIVATE keyword for the /EXPORT linker option. 2002-05-25 16:00:55 +00:00
wtc%netscape.com
278f8fcbfa Bug 142575: use the /EXPORT linker option on the command line. 
Modified files: nssinit.c config.mk
 2002-05-25 06:52:19 +00:00
wtc%netscape.com
c82e51fc58 Bug 142575: a better fix. 2002-05-25 01:02:39 +00:00
wtc%netscape.com
54db8b9c90 Bug 142575: added function forwarder for 'mktemp' for "bug compatibility". 2002-05-24 21:00:55 +00:00
javi%netscape.com
d19ba0f868 Make pkcs12.h C++ friendly. 2002-05-24 20:11:29 +00:00
wtc%netscape.com
00ab5fdbae Back out the previous checkin. It broken the cmd/certcgi build. 2002-05-24 14:58:02 +00:00
javi%netscape.com
69088764da Add macros to make header file C++ friendly. 2002-05-24 00:53:48 +00:00
wtc%netscape.com
b1a997971e Bug 142575: on Windows added mktemp (which simply calls _mktemp in the C 
run-time library) to be backward compatible with the bug that mktemp was
accidentally exported from the nss3.dll in NSS 3.2.x and 3.3.x.
 2002-05-23 22:28:50 +00:00
kirk.erickson%sun.com
fa04da4ff4 Resolves bug 90070 (now exiting with PK12UERR_PK11GETSLOT 13). 2002-05-23 22:21:42 +00:00
nicolson%netscape.com
f2f9158fd3 Fix 146515: PK11PrivKey.fromPrivateKeyInfo enables no operations for RSA keys 2002-05-23 20:32:10 +00:00
nicolson%netscape.com
da61b269f4 move new entry to end of file 2002-05-23 18:45:23 +00:00
nicolson%netscape.com
3a1cd67cf6 cleanup tabs and spaces. 2002-05-23 18:45:00 +00:00
nicolson%netscape.com
d17d79e101 Various minor tweaks for code cleanliness. 2002-05-23 18:29:07 +00:00
glen.beasley%sun.com
7ef88f180e bug 144913 isCertValid addition 2002-05-23 17:52:23 +00:00
relyea%netscape.com
a37f083171 Refresh token cache after login on tokens that need to log in before they 
could read their certs.
 2002-05-22 23:13:05 +00:00
relyea%netscape.com
dccf0f20f4 Close our peer database handles because some platforms (Mac) do bad things 
if you hold two berkelydb handles open to the same database in the same process.
(actually a lot of platforms could cause problems, the Mac version of dbm (1.85)
just does the bad things right away).
 2002-05-22 21:47:23 +00:00
nicolson%netscape.com
411f9347cc Fix http://bugzilla.mozilla.org/show_bug.cgi?id=144934: generating DSA public key from spec is broken. 2002-05-22 02:13:31 +00:00
relyea%netscape.com
482a55e955 Back out the change on Module destruction. 2002-05-22 00:25:48 +00:00
relyea%netscape.com
dc0b0c243c Don't crash if url is specified, but the crl is broken 2002-05-21 21:26:52 +00:00
relyea%netscape.com
91abc91169 Missing component when deleting should not be fatal 2002-05-21 21:26:14 +00:00
relyea%netscape.com
3b707d47e7 Fix spelling error. 
Clear out certs from the cache before the token goes away.
 2002-05-21 21:24:35 +00:00
relyea%netscape.com
c936511eb9 Fix spelling error. 2002-05-21 21:23:33 +00:00
relyea%netscape.com
fe96b95117 Clear out certs associated with tokens that have just been taken off the trust domain. 2002-05-21 21:22:55 +00:00
jpierre%netscape.com
d5de75b62b Fix for bug 137645 - cached certificate does not get its nickname updated after P12 import of matching user certificate 2002-05-20 23:21:39 +00:00
ian.mcgreer%sun.com
dc613b61ee bug 144309, return value of STAN_GetCERTCertificate not checked 
r=wtc
 2002-05-20 18:05:11 +00:00
ian.mcgreer%sun.com
b60654eafd fix bustage caused by generated file discrepancies 2002-05-20 16:01:21 +00:00
ian.mcgreer%sun.com
8fca6832bc need to match ckapi.perl with generated target nssck.api, which was modified 2002-05-20 14:38:48 +00:00
wtc%netscape.com
5b50af192d Bugzilla bug 145178: added OpenBSD build support. The patch is contributed 
by Christopher Seawood <seawood@netscape.com>.
Modified Files: coreconf/config.mk sslmutex.c sslmutex.h
Added Files: coreconf/OpenBSD.mk
 2002-05-18 03:24:17 +00:00
wtc%netscape.com
a1bc754db7 Bugzilla bug 131171: added HP-UX IPF (ia64) support. Portions of the patch 
(attachment 84127) were contributed by Jim Dunn <jdunn@netscape.com>.
 2002-05-18 00:52:11 +00:00
wtc%netscape.com
c8518d87b7 Bugzilla bug 145128: fixed a typo error in sec_pkcs5_rc4(). Also simplfied 
two other similar constructs.  r=relyea.
 2002-05-17 21:29:27 +00:00
kaie%netscape.com
11c622dd7c b=143532 Only allow toggling FIPS when it is safe to 
r=javi sr=alecf
 2002-05-17 19:56:11 +00:00
ian.mcgreer%sun.com
787847bf44 bug 144448, incorrect use of ## operator in creating CKFW entry points 2002-05-17 18:57:34 +00:00
kaie%netscape.com
7b1433c386 b=144823 Localized certificate name is garbled, unable to send out signed/encrypted mail on a localized build 
r=javi sr=mscott
 2002-05-17 01:21:31 +00:00
relyea%netscape.com
f83a0c6851 Fix Linux and Solaris builds 2002-05-17 00:39:26 +00:00
relyea%netscape.com
ff81ec8d87 The tip is now NSS 3.6, make sure new builds properly indicate this 2002-05-16 22:12:37 +00:00
relyea%netscape.com
2491c84161 Add PK11_GetPBEIV to exported symbol list. 2002-05-16 22:12:10 +00:00
relyea%netscape.com
b9c9b409d6 Add function to get the PBEIV. 2002-05-16 22:06:19 +00:00
relyea%netscape.com
9e71058dbf Add support to turn on or off optimizations based on parameters to NSS_Init functions 2002-05-16 22:05:17 +00:00
relyea%netscape.com
7828ad6ad0 Make a single softoken which works for both servers and clients depending on configuration. 
Add the _PAD functions to the internal database token.
 2002-05-16 22:04:12 +00:00
rpotts%netscape.com
73de225b01 bug #46856 (r=valeski, sr=darin). API Changes to nsIWebProgress/nsIWebProgressListener) 2002-05-16 20:57:37 +00:00
relyea%netscape.com
81db56051e Argh. I thought I had compiled this! fixe compile errors. 2002-05-16 20:48:27 +00:00
relyea%netscape.com
ad57ee44a1 Add Transactions (still need to add transactions on database upgrade). 
Make trust objects their own objects to reduce a couple of unnecessary cert decodes.
 2002-05-16 20:39:04 +00:00
wtc%netscape.com
b05d855681 Bug 131171: added HP-UX 11.20 support. 2002-05-16 17:35:41 +00:00
wtc%netscape.com
ec52ca8b50 Bugzilla bug 138532: use pipes instead of semaphores for NetBSD, which does 
not have semaphore.h.  Thanks to Chris Seawood <seawood@netscape.com> for
the patch.  Modified files: sslmutex.h sslmutex.c
 2002-05-16 13:36:03 +00:00
wtc%netscape.com
9d9c8c4c56 Bugzilla bug 133753: added support for AIX 5.1 to security/coreconf. 2002-05-16 13:12:33 +00:00
wtc%netscape.com
272f7f9153 Fixed build breakage on BeOS -- made the ifdef match the one in sslsnce.c. 2002-05-16 05:32:30 +00:00
kaie%netscape.com
1a9df62b37 b=129067 Deleted certs still appear in Cert Manager. 
r=javi sr=alecf
 2002-05-16 04:03:19 +00:00
kaie%netscape.com
6d4667a84a b=129067 Backing out unreliable patch. 
See bugzilla for details.
Better patch will be checked in a minute.
 2002-05-16 03:59:36 +00:00
kaie%netscape.com
4876fecd7c b=136948 Give better feedback when no valid certs for S/Mime are available 
r=javi sr=mscott
 2002-05-16 03:51:37 +00:00
kaie%netscape.com
439537d137 b=144056 security state not reset after loading about:blank pages 
r=javi sr=rpotts
 2002-05-16 03:39:59 +00:00
jpierre%netscape.com
338f2f561a Fix for 141256 - correct HTTP parsing for OCSP in NSS 2002-05-15 23:59:40 +00:00
dougt%netscape.com
c683a217ab Fixes mozilla/strings requiring unfrozen nsCRT class. patch by scc, r=dougt, sr=jag, b=136756 2002-05-15 18:55:21 +00:00
relyea%netscape.com
6f20bf6c21 bug 133397. Move AddPermModule() inside the previously empty if statement where it belongs. 2002-05-14 23:16:16 +00:00
kaie%netscape.com
0bc542e7d3 b=137874 Unable to import CA cert before SSL keep alive connection is terminated 
r=javi sr=alecf
 2002-05-14 20:46:03 +00:00
kaie%netscape.com
a856cfb637 Backing out code from bug 102633 and the unsuccessful fix attempt from bug 137530, because the UI does not work as expected. 
r=javi / sr=alecf for backing out
 2002-05-14 20:42:54 +00:00
nicolson%netscape.com
9bd721b3fc Support DSAPrivateKey. 2002-05-14 02:21:25 +00:00
wtc%netscape.com
8e09a8cca3 Bugzilla bug 135069: SEC_PKCS12DestroyExportContext should free the slot 
reference allocated in SEC_PKCS12CreateExportContext. r=relyea,mcgreer.
 2002-05-13 17:22:46 +00:00
wtc%netscape.com
0c57191723 Bugzilla bug 135824: fixed slot reference leaks in signtool and removed 
a faulty attempt to set user trust.  r=relyea,mcgreer.
Modified files: certgen.c util.c
 2002-05-13 17:08:20 +00:00
wtc%netscape.com
f6f0339d00 Bugzilla bug 135052: more cleanup in SEC_PKCS12DecoderStart. r=relyea. 2002-05-10 23:10:06 +00:00
jpierre%netscape.com
e1a3c306e8 Fix for bug 142868 - CA certificates are imported with NULL nicknames . 2002-05-10 20:21:38 +00:00
relyea%netscape.com
94a587472a Add function to determine if it's safe to delete the internal module. 2002-05-10 18:36:18 +00:00
relyea%netscape.com
fdca53cf70 Detect when we have a previously deleted internal module which has not yet been freed, and don't try to switch to it. 2002-05-10 18:13:44 +00:00
relyea%netscape.com
3ee0c3c996 Add new error code for trying to all previously deleted modules which have not yet been freed. 2002-05-10 18:12:39 +00:00
relyea%netscape.com
0d88474fba Allow both FIPS and non-FIPS tokens to be initialized and active at the same time. 2002-05-10 18:11:37 +00:00
relyea%netscape.com
610b845a52 When we force, we should preserve the NULL nickname semantics. 2002-05-10 18:10:26 +00:00
nicolson%netscape.com
3ebe79c4e3 comment out JDK 1.4 test so we can build with earlier versions 2002-05-10 00:13:19 +00:00