Commit Graph

5355 Commits

Author SHA1 Message Date
wtchang%redhat.com
3caf238827 Bugzilla bug 240554: Alice's cert doesn't need to be added to Bob's db.
r=relyea.
Modified files: cert.sh eccert.sh
2005-08-12 23:27:44 +00:00
wtchang%redhat.com
148653a358 Bugzilla bug 240554: we should pass the signature algorithm, not the
public key's algorithm, to VFY_VerifyData and VFY_VerifyDigest. Only
fixed this in cmssiginfo.c.  In p7decode.c I just added comments saying
they should be fixed. r=relyea.
Modified files: lib/smime/cmssiginfo.c lib/pkcs7/p7decode.c
2005-08-12 23:26:38 +00:00
wtchang%redhat.com
1a568d0852 Bugzilla bug 240554: set (better) error codes and removed an unreachable
break statement. r=relyea.
2005-08-12 23:24:22 +00:00
wtchang%redhat.com
c0bd0e749a Bugzilla bug 240554: fixed signed/unsigned comparison compiler warning.
r=relyea.
2005-08-12 23:22:28 +00:00
wtchang%redhat.com
e09393045c Bugzilla bug 292239: have the softoken report Cryptoki version 2.20.
r=relyea.
2005-08-12 23:14:22 +00:00
wtchang%redhat.com
2d2b80688d Bugzilla bug 292239: added a change missed in the previous checkin.
r=relyea.
2005-08-12 23:12:18 +00:00
relyea%netscape.com
684e5d1c2b Correct mistyped version of wtc patch. 2005-08-12 22:19:19 +00:00
relyea%netscape.com
a584ef4a1d Bug 292239 r wtc & julien
Merge PKCS #11 v2.20 header files
2005-08-12 18:58:47 +00:00
sandeep.konchady%sun.com
62ee9e4e59 As per Wan-Teh's suggestion, the comments are modified to look as shown below.
#/********************************************************************/
#/* The VERSION Strings should be updated in the following           */
#/* files everytime a new release of JSS is generated:               */
#/*                                                                  */
#/* org/mozilla/jss/CryptoManager.java                               */
#/* org/mozilla/jss/CryptoManager.c                                  */
#/* org/mozilla/jss/util/jssver.h                                    */
#/* lib/manifest.mn                                                  */
#/*                                                                  */
#/********************************************************************/
2005-08-12 18:39:14 +00:00
relyea%netscape.com
5ab7c1109c Bug 303010 Certificate upgrade can drop S/MIME certificates
r=wtc.

Delay loading the S/MIME records on upgrade until the cert is loaded
2005-08-12 18:01:26 +00:00
jst%mozilla.jstenback.com
e23ea875f3 Followup changes to bzabarsky's review for bug 296639. Reviews pending, a=drivers@mozilla.org 2005-08-12 04:11:00 +00:00
wtchang%redhat.com
0543618d9c Bugzilla Bug 257693: actually implemented EC_ValidatePublicKey and added a
test case.  The patch is contributed by Douglas Stebila
<douglas@stebila.ca>.  r=wtc.
Modified Files:
	ec.c ecl/ec2.h ecl/ec2_aff.c ecl/ecl-priv.h ecl/ecl.c
	ecl/ecl.h ecl/ecp.h ecl/ecp_aff.c ecl/tests/ec2_test.c
	ecl/tests/ecp_test.c
2005-08-12 00:59:19 +00:00
wtchang%redhat.com
67ffaff684 Bugzilla Bug 298514: added a missing break statement and removed an unused
variable. r=jpierre.
2005-08-12 00:44:35 +00:00
wtchang%redhat.com
9a026f7eba Bugzilla Bug 240554: added ECDSA support in S/MIME. The patch is
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified Files:
	cryptohi/secsign.c pkcs7/config.mk pkcs7/p7decode.c
	pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
	smime/config.mk
2005-08-11 23:11:40 +00:00
wtchang%redhat.com
e8ad6847cf Bugzilla Bug 240554: added S/MIME tests for ECDSA. The patch is
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified files: fixtests.sh cert/eccert.sh
Added file: smime/ecsmime.sh
2005-08-11 22:50:12 +00:00
sandeep.konchady%sun.com
c3281b24a7 Older release of JSS had an issue with gradually slowing socket read time when
transfering large files (> 10MB).  In order to test this in current and future
release, there needs to be a test client that can read a file and transfer it to
a server (remote or local) via JSS socket.  The server should report the number
of bytes read and the time it took to read these bytes.  There should not no
degradation in read time if there is no leak of any sort.

This is not part of all.pl, but is a client/server that uses JSS to transfer
files securely.  The main purpose of this test would be to test the performance
of large file transfer using JSS.

NOTE: If bufferedStream.mark(Integer.MAX_VALUE); method is invoked then fill
method of BufferedInputStream class copies lot of data using System.arraycopy
(which in-turn use memcpy). This causes very high CPU usage.  This is one of
the reasons secure large file transfer can become slow over time.
2005-08-11 18:28:59 +00:00
nelsonb%netscape.com
0d980a5ea1 A faster c implementation of SHA1 for most platforms. Bug 285932.
r=wtchang     Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-11 01:01:08 +00:00
wtchang%redhat.com
9b7075b1d2 Bugzilla Bug 303116: fixed an off-by-one error in the size of the NAF
buffer. We access this buffer using indices from 0 to orderBitSize.
r=douglas.stebila.
2005-08-10 20:35:07 +00:00
wtchang%redhat.com
24b5ce2c08 Bugzilla Bug 303116: fixed an off-by-one error when duplicating a string.
r=douglas.stebila.
2005-08-10 18:49:29 +00:00
wtchang%redhat.com
19e9429f0d Bugzilla Bug 303116: this file doesn't need to include <strings.h>, which
doesn't exist on Windows. r=relyea.
Bugzilla Bug 303130: fixed memory leak of mp_int in ECPoints_mul.
r=douglas.stebila.
2005-08-10 18:46:29 +00:00
wtchang%redhat.com
f728d5d9bb Bugzilla Bug 266123: added ppc64 support. The patch is contributed by
Markus Rothe <markus@unixforces.net>. r=wtc.
2005-08-09 22:31:24 +00:00
wtchang%redhat.com
51a9c2f4bd Bugzilla bug 303986: do not assume the line ending is '\n'; it may be the
two character sequence '\r''\n'.  Make sure a character is a digit before
using it as a digit. r=jpierre.
2005-08-09 22:19:09 +00:00
nelsonb%netscape.com
c893021cd0 Address review comments. Add test after PORT_Assert. Bug 303334.
r=rrelyea,sr=wtchang
Modified Files: rijndael.c
2005-08-09 03:09:38 +00:00
nelsonb%netscape.com
7755e752cd Make changes from review feedback. Bug 303316. r=wtchang.
Modified Files: freebl/alghmac.h freebl/blapi.h freebl/ldvector.c
freebl/loader.c freebl/loader.h freebl/rawhash.c
freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
2005-08-09 02:54:54 +00:00
cbiesinger%web.de
b71260a8a1 297057 fix case of doOK()
patch by Frank Wein <bugzilla@mcsmurf.de> r=kaie sr=neil a=bsmedberg
2005-08-06 21:34:04 +00:00
nelsonb%netscape.com
8260a85fe6 Add a new assembly language source file with multiplication code for
Sparc v8 (not V8plus) CPUs.  This works around a performance regression
by restoring the former code.  Bug 303338. r=wtchang.
Modified Files: Makefile
Added Files:    mpi/mpv_sparcv8x.s
2005-08-06 11:08:41 +00:00
nelsonb%netscape.com
c02e614a66 Add a comment clarifying that this source file is for sparc v8plus CPUs.
Upgrade license to tri-license.  Fix a bunch of whitespace problems,
WAY too much indentation.  Related to bug 303338. r=wtchang.
Modified Files: mpi/mpv_sparcv8.s
2005-08-06 11:06:55 +00:00
nelsonb%netscape.com
1f607bc371 Move the TLS Pseudo Random Function (PRF) and the HMAC algorithm from
softoken to freebl.  Bug 303316. r=wtchang (with suggested changes)
Modified Files:
	freebl/blapi.h freebl/ldvector.c freebl/loader.c
	freebl/loader.h freebl/manifest.mn softoken/lowpbe.c
	softoken/manifest.mn softoken/pkcs11c.c softoken/pkcs11i.h
	softoken/tlsprf.c
Added Files:
	freebl/alghmac.c freebl/alghmac.h freebl/rawhash.c
	freebl/tlsprfalg.c
Removed Files:
	softoken/alghmac.c softoken/alghmac.h softoken/rawhash.c
2005-08-06 09:27:28 +00:00
nelsonb%netscape.com
9a8510d59b This is the last trunk version of this file. The file will be moved
to nss/lib/freebl.  This version is identical to the first version
of this file in nss/lib/freebl.  Bug 303316. r=wtchang.
Modified Files: alghmac.c alghmac.h rawhash.c
2005-08-06 09:24:13 +00:00
nelsonb%netscape.com
8521bea2ba Add new functions for blapi symmetric ciphers and digest functions,
so that all those functions can initialize a preallocated context.
Bug 303334. r=rrelyea.
Modified Files: aeskeywrap.c alg2268.c arcfour.c blapi.h blapit.h desblapi.c
ldvector.c loader.c loader.h md2.c md5.c rijndael.c rijndael.h sha512.c
2005-08-06 07:24:21 +00:00
nelsonb%netscape.com
51714ee5f1 Faster SHA1 implementation. Further corrections expected. bug 285932.
r=wtchang     Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
2005-08-06 07:10:34 +00:00
julien.pierre.bugs%sun.com
440dae786f Fix for bug 303494 . SEC_LookupCrls passes the address of a stack variable that goes out of scope. r=nelson,wtchang 2005-08-05 21:15:22 +00:00
wtchang%redhat.com
7931c0ace4 Removed noeccert.sh and noectools.sh from CVS. These two files are
automatically created by the fixtests.sh script by copying the non-ECC
(default) test scripts to these names. r=vipul.gupta.
Removed Files: cert/noeccert.sh tools/noectools.sh
2005-08-04 16:27:07 +00:00
dougt%meer.net
a3c8d78e87 Minimo only. Backing out 300373. 2005-08-03 05:24:18 +00:00
nelsonb%netscape.com
60181a7016 NSC_CopyObject can now copy token keys to session keys. Bug 289530.
r=rrelyea. Modified Files: pkcs11.c pkcs11u.c
2005-08-03 02:26:55 +00:00
nelsonb%netscape.com
6ee92f33d0 Implement PK11_CopyTokenPrivKeyToSessionPrivKey, function to copy token
RSA private key to a session key, to eliminate DB lookups and 3DES
unwrapping for every use.  Bug 274538.  r=rrelyea.
Modified Files: nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11pub.h
2005-08-03 01:57:40 +00:00
nelsonb%netscape.com
6edae5d3b6 Eliminate numerous potential causes of sending invalid (zero) session
handles down to a PKCS11 module.  Bug 292049. r=relyea.
Modified Files: pk11akey.c pk11auth.c pk11obj.c pk11skey.c pk11slot.c
 	pk11util.c
2005-08-03 01:22:07 +00:00
timeless%mozdev.org
d4d47484e2 Bug 283569 OOM crash [@ nsNSS_SSLGetClientAuthData]
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
2005-08-02 14:22:50 +00:00
nelsonb%netscape.com
eeb454fae5 remove NSS_CLASSIC code from pk11cert.c and pk11nobj.c.
bug 293847  r=rrelyea
2005-08-02 01:34:38 +00:00
wtchang%redhat.com
ea595039b7 Bugzilla Bug 298957: PK11_TokenKeyGenWithFlags will be released in NSS
3.10.2.
2005-08-02 01:04:55 +00:00
wtchang%redhat.com
035c21bfa6 Bugzilla Bug 298957: improved the comment for PK11_TokenKeyGenWithFlags.
r=relyea.
2005-08-02 01:03:08 +00:00
wtchang%redhat.com
8825fcbdba Bugzilla Bug 302663: SECKEY_CopySubjectPublicKeyInfo needs to copy the
subjectPublicKeyInfo as a bit string. r=nelsonb,jpierre.  Thanks to
Mikhail Teterin <mi+mozilla@aldan.algebra.com> for the bug report and
Purify output.
2005-08-02 00:34:00 +00:00
wtchang%redhat.com
b5b833a9c0 Bugzilla Bug 302262: Check for SECITEM_AllocItem failure in
MPINT_TO_SECITEM. r=nelsonb.
2005-08-01 22:43:54 +00:00
wtchang%redhat.com
a82541564d Added a comment that answers the question "why isn't there a pairwise
consistency test for Diffie-Hellman or ECDH key pairs?"
2005-08-01 21:04:41 +00:00
relyea%netscape.com
f7cb169d0a Bugzilla Bug 298906 really check in the patch to the tip, not a test branch
crash when accepting new certificate permanently on taschenonkel.de
r=wtc, r=nelson
2005-08-01 20:41:30 +00:00
wtchang%redhat.com
e4ab6fa7bb Bugzilla Bug 302262: dsa.c should use the macros defined in secmpi.h.
r=nelsonb.
2005-08-01 18:51:06 +00:00
relyea%netscape.com
d527565866 I have to many patches in one tree! Stay at 1.103 until this patch has a bug and
reviews!
2005-08-01 18:32:45 +00:00
relyea%netscape.com
775b5372bc These changes were part of a different patch, reviews are not yet complete.
Backing out to previous versions.
2005-08-01 18:31:12 +00:00
relyea%netscape.com
7af3f28d88 ARG -- reverted to the wrong version. The correct version was 1.103, not 1.102 2005-08-01 18:27:30 +00:00
relyea%netscape.com
625993f336 Backing out previous checkin. This was a separate unreviewed patch. 2005-08-01 18:26:12 +00:00