Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-06 09:05:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
123,305 Commits 615 Branches 98 Tags 5.9 GiB
525a14b3ed
Commit Graph

1899 Commits

Author SHA1 Message Date
nelsonb%netscape.com
525a14b3ed Put the NSS 3.9 block in ASCII sorting order. 2003-10-17 05:45:19 +00:00
relyea%netscape.com
952d217499 Bug 156770 When we do a file import and give a bad password we get wrong errors back 
When we fail to decode based on a bad password, don't continue.

So once we've tried failed to decode a ANS.1 stream, don't continue collecting
more data.

On microsoft.pfx files, we would wind up decoding to the end of the encrypted
stream, then fail in the padding in PKCS #7. This code bypasses this problem by
making sure we don't continue to try to decode data once we've hit a bad
password failure.
 2003-10-16 23:49:15 +00:00
nelsonb%netscape.com
5251bce355 Eliminate redundant function declarations. Bug 208854. r=wchang0222 2003-10-14 17:44:33 +00:00
relyea%netscape.com
be2e372c47 Fix tinderbox breakage 2003-10-12 22:55:09 +00:00
nelsonb%netscape.com
886718db18 Correctly handle a NULL moduleSpecList. Bug 220217. 2003-10-11 01:49:24 +00:00
jpierre%netscape.com
f2e03876cf Fix for bug 221743 - incorrect certificate usage macro 2003-10-10 23:22:31 +00:00
relyea%netscape.com
40c2250bfc Bug 191467 
Multipart signing and verifying broken for several mechanisms in softoken
Reporter:   	Andreas.Sterbenz@sun.com (Andreas Sterbenz)
sr=nelsonb
 2003-10-10 15:32:26 +00:00
relyea%netscape.com
df0d80f9a5 Bug 203866 
Make unloaded modules visible for administrative purposes.
sr=wtc r=nelson
 2003-10-10 15:29:43 +00:00
relyea%netscape.com
e64bfbce5e Bug 203866. Make unloaded modules visible for administrative purposes. 
sr=wtc r=nelson
 2003-10-10 15:26:23 +00:00
relyea%netscape.com
115f203647 fix bug 203450 
jarevil.c:345: warning: implicit declaration of function \
  `__CERT_AddTempCertToPerm'

Obviously missing a declaration somewhere.

r=jpierr, wtc
 2003-10-09 22:17:04 +00:00
nelsonb%netscape.com
810ec798b2 Eliminate one of several redundant OID table lookups. Bug 207033. 2003-10-07 17:19:55 +00:00
nelsonb%netscape.com
8464dc0bb6 Eliminate unnecessary copying of CA names in HandleCertRequest. 
Bug 204686.
 2003-10-07 02:24:01 +00:00
nelsonb%netscape.com
655adbd496 The "valid CA" trust flag now overrides other CA cert checks. 
Works for SSL client as well as other usages.  Bug 200225
 2003-10-07 02:17:56 +00:00
nelsonb%netscape.com
0cd1f0b182 Export new function PK11_ExportEncryptedPrivKeyInfo. Bug 207033. 2003-10-07 01:29:32 +00:00
nelsonb%netscape.com
a1a6a4697c Create new function SECKEYEncryptedPrivateKeyInfo which is just like 
SECKEYEncryptedPrivateKeyInfo except that it identifies the private
key by a private key pointer, rather than by a certificate. Bug 207033.
 2003-10-07 01:26:38 +00:00
nelsonb%netscape.com
96f28b4691 Detect Zero length certs and zero length CA names. Bug 204686. 
Also, eliminate unnecessary copying of incoming certs.
 2003-10-03 02:01:18 +00:00
wtc%netscape.com
9bb8114b44 Bug 220963: need to handle the possibility that symKey may be NULL before 
dereferencing it.
 2003-10-01 23:01:46 +00:00
jpierre%netscape.com
60c78ee111 Fix for bug 141882 - convert email query keys to lowercase when searching . r=wtc 2003-09-30 02:33:40 +00:00
jpierre%netscape.com
347ed6b99f Fix for bug 94413 - OCSP needs more fine tuned error messages. r=wtc 2003-09-30 01:18:55 +00:00
nelsonb%netscape.com
4b6b1fdf59 Move a brace so vi will find the beginning of the function. 2003-09-27 01:45:35 +00:00
nelsonb%netscape.com
3ec40f0ab7 Don't use windowed exponentiation for small public exponents. 
Speeds up public key operations.  Path contributed by
    Sheueling Chang Shantz <sheueling.chang@sun.com>,
    Stephen Fung <stephen.fung@sun.com>, and
    Douglas Stebila <douglas@stebila.ca> of Sun Laboratories.
 2003-09-26 02:15:12 +00:00
jpierre%netscape.com
ec42f9469e Fix typo 2003-09-25 00:25:06 +00:00
nelsonb%netscape.com
b1d1bb21fa Fix bug 204549. Properly handle memory allocation failures. 2003-09-23 20:47:43 +00:00
wtc%netscape.com
3a76d91edd Bugzilla bug 204549: find_objects_by_template was not setting *statusOpt 
before one return statement.  r=nelsonb.
 2003-09-23 20:34:15 +00:00
wtc%netscape.com
95dc921cc9 Bugzilla bug 219713: fixed build bustage on all Unix platforms. We need 
to export CERT_TimeChoiceTemplate as data for Unix.
 2003-09-19 18:00:48 +00:00
jpierre%netscape.com
1b89629c4e Fix for 219082 - support GeneralizedTime in PKCS#7 signatures. r=nelsonb, sr=wtc 2003-09-19 04:16:19 +00:00
jpierre%netscape.com
a1dfac9b48 Fix for 219524 - support GeneralizedTime in S/MIME v3 signatures. r=wtc, sr=nelsonb 2003-09-19 04:14:50 +00:00
jpierre%netscape.com
7d744437c3 Fix for bug 143334 : add support for GeneralizedTime in certificates and CRLs. r=wtc,nelsonb 2003-09-19 04:08:51 +00:00
wtc%netscape.com
b58d136a9c The isOnList function is now unused. 2003-09-18 01:28:52 +00:00
jpierre%netscape.com
81db50ddf4 Fix for bug 215186 - add missing options to PK11_ListCerts . r=wtc 2003-09-18 00:22:18 +00:00
jpierre%netscape.com
58f736296d Add comment in the header for PK11_FindSlotsByAliases 2003-09-12 22:11:31 +00:00
wtc%netscape.com
eb363f3753 Bugzilla bug 215152: removed redundant pointer tests. Use 
SEC_ERROR_LIBRARY_FAILURE for NSS internal errors.
 2003-09-12 20:01:56 +00:00
wtc%netscape.com
f56dde49b6 Bugzilla bug 217247: improved the memory leak fix for the appData nicknames 
returned by PK11_ListCerts.  Instead of allocating them from the heap first
and copying to the arena, allocate them from the arena directly.  r=jpierre
Modified Files: certhigh.c pk11cert.c pki3hack.h pki3hack.c
 2003-09-12 19:38:04 +00:00
wtc%netscape.com
ecf1666d78 Bugzilla bug 214535: fixed a recursive dead lock on cache->lock. We must 
not call nssSlot_IsTokenPresent while cache->lock is locked because
that function may call nssToken_Remove, which locks cache->lock.  r=mcgreer
 2003-09-12 19:17:15 +00:00
wtc%netscape.com
ab28bc253c Bugzilla bug 208971: removed obsolete Mac CFM build files from NSS. 2003-09-11 00:01:07 +00:00
jpierre%netscape.com
763808f28e Fix for 215152 - better error handling 2003-09-10 01:33:25 +00:00
jpierre%netscape.com
568a561eeb Fix for bug 215152 . Improve error handling in PK11_FindSlotsByAliases 2003-09-10 01:31:54 +00:00
jpierre%netscape.com
ff3aebe85f Add PORT_Strpbrk macro 2003-09-08 23:29:14 +00:00
jpierre%netscape.com
f886a5b696 Fix for bug 72291 . resolve memory leak on nicknames . r=relyea 2003-09-05 00:15:52 +00:00
jpierre%netscape.com
61d58e111a Remove erroneous assertions 2003-09-03 23:52:01 +00:00
jpierre%netscape.com
3bc888cc5f Fix for bug 215152 . Export PK11_FindSlotsByAliases. r=relyea 2003-09-03 22:55:10 +00:00
jpierre%netscape.com
509dede7ea Add PK11_FindSlotsByAliases function . r=relyea 2003-09-03 22:48:20 +00:00
jpierre%netscape.com
4ee83fcf13 Fix for 216701 - verify CRLs with cert verification date rather than CRL lastupdate date 2003-08-30 01:07:21 +00:00
wtc%netscape.com
4f4355b894 Bugzilla bug 214674: made the Linux implementation of sslMutex really work. 
They were no-ops in multiprocess mode before.  The patch is Nelson
Bolyard's.  r=wtc.
 2003-08-28 22:23:59 +00:00
jpierre%netscape.com
9260c97765 Fix for 214201. remove unused variable 2003-08-27 01:47:57 +00:00
wtc%netscape.com
b881a9a0c6 Bugzilla bug 72291: have PK11_ListCerts return all the cert instances on 
tokens.  The patch is Julien Pierre's, with changes by Wan-Teh Chang.
Modified Files: pk11wrap/pk11cert.c pki/pki3hack.c pki/pki3hack.h
 2003-08-25 19:18:02 +00:00
wtc%netscape.com
408be85418 Bugzilla bug 209827: disable optimization to work around what appears to 
be a VACPP optimizer bug.
 2003-08-22 22:34:07 +00:00
jpierre%netscape.com
ad699539d3 Fix for bug 216944 - CERT_VerifyCertificate optimizations issues . r= wtc 2003-08-22 18:47:07 +00:00
wtc%netscape.com
4520771cc7 Fix from Ian to address Bugzilla bug 202179. 
The fix restores some old code that was removed as part of our
performance work (Bugzilla bug 145322).  Thus, there may be a
slight performance hit, but obviously, we need to have correct
code first.

This is a part of the code I really don't like.  To summarize,
there was a hack put in a long time ago to make sure that the
PKCS#11 session in which the SSL keys are generated was never
closed until the last key was deleted.  This only worked by chance,
and if any part of the code was changed (as was the case here), this
unstable equilibrium would be lost.  As with all hacks, it wasn't
really documented, so the problem escaped our notice.  As a result of
putting the hack back in, we're going back to the horribly wasteful
operation of opening 4 sessions and immediately closing them.  I intend
to have a proper solution in a later release.
 2003-08-12 18:21:55 +00:00
wtc%netscape.com
5d4cb72997 Deleted useless local variable 'arena' in cert_ImportCAChain. 2003-08-08 23:15:50 +00:00