Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-05 00:25:27 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
148,722 Commits 615 Branches 98 Tags 6 GiB
836aa0b284
Commit Graph

5490 Commits

Author SHA1 Message Date
wtchang%redhat.com
184d7ab678 Bugzilla Bug 305835: removed NSS_ENABLE_ECC ifdefs under nss/lib except 
nss/lib/{freebl,softoken,ssl}. r=nelsonb.
Modified Files:
	cryptohi/keyhi.h cryptohi/manifest.mn cryptohi/seckey.c
	cryptohi/secsign.c freebl/ec.c pk11wrap/manifest.mn
	pk11wrap/pk11akey.c pk11wrap/pk11cert.c pk11wrap/pk11mech.c
	pk11wrap/pk11obj.c pk11wrap/pk11skey.c pkcs12/manifest.mn
	pkcs12/p12d.c pkcs7/config.mk pkcs7/p7decode.c
	pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
	smime/config.mk
 2005-09-02 01:24:57 +00:00
wtchang%redhat.com
4113e9229d Bugzilla Bug 303507: changed GCC's default OPTIMIZER back to -O2. 
r=saul.edwards.
 2005-09-02 00:59:00 +00:00
bsmedberg%covad.net
a63c75a8a1 Bug 306615 - Fold PSM into libxul r=darin 2005-09-01 12:43:58 +00:00
wtchang%redhat.com
afccecc775 Bugzilla Bug 257693: code cleanup. 1. Change "X9.63" to "X9.62". 2. In 
EC_ValidatePublicKey, set error codes and handle a NULL return from
ECGroup_fromName.  3. In the ECGroupStr structure, move the validate_point
field up.  4. In the test cases, if the tests that should fail, passed,
say so in the error messages.  r=douglas@stebila.ca.
Modified Files:
	blapi.h ec.c ecl/ecl-priv.h ecl/ecl.c ecl/ecl.h
	ecl/tests/ec2_test.c ecl/tests/ecp_test.c
 2005-08-27 01:09:22 +00:00
gavin%gavinsharp.com
5c09c35d46 Bug 263182: Page Info (Security tab) doesn't explain mixed secure/insecure, r=kaie.bugs, sr=neil.parkwaycc.co.uk 2005-08-26 20:34:31 +00:00
dougt%meer.net
7c0ee6b9d3 Bug 302284. add xpi hash support to InstallTrigger.install(). r=dveditz, sr=shaver, a=asa 2005-08-26 06:46:21 +00:00
julien.pierre.bugs%sun.com
32714968eb Fix for 297802 . r=wtchang . Add $(OS_LIBS) to MKSHLIB rules. 
Add -z defs linker option for Solaris and Linux .
Also add -z ignore on Solaris .
 2005-08-26 02:17:05 +00:00
wtchang%redhat.com
dd1fe47c6d Bugzilla bug 302212: backed out the previous checkin. The corresponding 
Mozilla patch hasn't been checked in yet.
 2005-08-25 23:23:40 +00:00
relyea%netscape.com
33f6464950 Bug 302416 NSS root cert module & fortezza should not be using NSPR static libraries 
r=wtc
sr-julien
Side effects: Root cert module now works with CKF_OS_LOCKING_OK and not callbacks,
but does not work if CKF_OS_LOCKING_OK == 0 and callbacks are define.
 2005-08-25 20:08:27 +00:00
saul.edwards%sun.com
54f6fe8f80 Addendum to 303507 - set default OPTIMIZER for Linux and Solaris gcc builds 
to -O3, consolidate flags to Linux.mk.
 2005-08-24 23:58:36 +00:00
christophe.ravel.bugs%sun.com
a58024a52e Uprev JSS version to 4.1.1 Beta. 2005-08-24 23:39:12 +00:00
wtchang%redhat.com
d624f9129a Bugzilla Bug 296410: further simplify the code by always referencing the 
buffer using the same union member. r=relyea.
VFYContextCVS: ----------------------------------------------------------------------
 2005-08-24 23:05:39 +00:00
wtchang%redhat.com
bb71b54311 Bugzilla bug 302670: backed out the use of system zlib because some Linux 
distributions are using zlib 1.1.4, which causes our signtool tests to
fail intermittently.  Don't know why.
 2005-08-20 01:05:44 +00:00
bienvenu%nventure.com
690785e15a add optional support for mit kerberos for windows, patches by cneberg@gmail.com, r=darin, sr=bienvenu 280792 2005-08-19 14:25:22 +00:00
julien.pierre.bugs%sun.com
22ff330626 Fix AIX build problem 2005-08-18 23:37:31 +00:00
wtchang%redhat.com
b344095748 Bugzilla Bug 266123: support 64-bit PowerPC builds for Linux distributions 
(such as Red Hat and Fedora) whose GCC generates 32-bit code by default.
r=cls.
 2005-08-18 17:48:26 +00:00
nelsonb%netscape.com
3c64b87604 Remove fortezza header files from package. Bug 239960. patch by 
wtchang@redhat.com, r=nelson@bolyard.com Modified Files: prototype
 2005-08-18 03:42:00 +00:00
cbiesinger%web.de
e519fb7724 bug 277587 nsSecureBrowserUIImpl's nsUIContext interface requestor doesn't give 
access to the dom window
patch by Christian Persch <chpe@gnome.org> r=jgmyers sr=roc a=asa
 2005-08-17 13:38:03 +00:00
julien.pierre.bugs%sun.com
6b5d842c09 Fix for bug 217024. add a function for comparing cert validity periods. r=wtchang 2005-08-17 02:04:12 +00:00
sandeep.konchady%sun.com
9c0e116e76 Bug Id: 304195 
Added try/catch block around the method calls within toString().  Calls
such as getInetAddress(), getPort() etc does not check if the socket is
closed, and when applications use toString() on a closed socket, there
is an uncaught exception.
 2005-08-16 23:44:45 +00:00
saul.edwards%sun.com
c3fa2091c5 Bug 303507: Add comba for MPI's multiply and square routines. 
This code is currently for AMD 64 on both Linux and Solaris only.
 2005-08-16 19:25:48 +00:00
nelsonb%netscape.com
d391504d03 Remove fortezza code from libSSL and from the SSL test programs. 
Stop building fortezza's special software token, and fortezza specific
test programs.   Bug 239960. r=rrelyea.
Modified Files:
    cmd/manifest.mn cmd/platlibs.mk cmd/SSLsample/server.c
    cmd/SSLsample/sslsample.c cmd/modutil/modutil.c
    cmd/selfserv/selfserv.c cmd/sslstrength/sslstrength.c
    cmd/strsclnt/strsclnt.c cmd/tstclnt/tstclnt.c
    cmd/vfyserv/vfyserv.c cmd/vfyserv/vfyutil.c lib/manifest.mn
    lib/ssl/nsskea.c lib/ssl/preenc.h lib/ssl/prelib.c
    lib/ssl/ssl.h lib/ssl/ssl3con.c lib/ssl/ssl3prot.h
    lib/ssl/sslauth.c lib/ssl/sslcon.c lib/ssl/sslenum.c
    lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
    lib/ssl/sslsecur.c lib/ssl/sslsnce.c lib/ssl/sslsock.c
    lib/ssl/sslt.h
 2005-08-16 03:42:26 +00:00
wtchang%redhat.com
3e2e9c754f Bugzilla bug 296410: checked in a better fix than the previous checkin. 
Also removed the unused, unexported function SEC_VerifyFile. r=nelsonb.
 2005-08-16 01:57:51 +00:00
wtchang%redhat.com
88fb7bee52 Bugzilla bug 296410: removed unused, unexported function SEC_SignFile. 
r=nelsonb.
 2005-08-16 01:52:17 +00:00
wtchang%redhat.com
af11fc1310 Bugzilla Bug 302670: enable NSS to use system zlib and do that on Linux. 
r=nelsonb.
Modified Files:
	coreconf/Linux.mk nss/cmd/Makefile nss/cmd/manifest.mn
	nss/cmd/platlibs.mk
 2005-08-16 01:08:59 +00:00
wtchang%redhat.com
f95409ea4c Bugzilla Bug 302212: enable Mac OS X x86 builds to target SDKs. The patch 
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
 2005-08-15 22:44:22 +00:00
wtchang%redhat.com
e758a9999b Bugzilla Bug 298612: make sure that the int argument that we pass to the 
isspace, etc. macros is EOF or between 0 and 255. r=nelsonb.
 2005-08-15 22:06:47 +00:00
wtchang%redhat.com
5e25df8763 Bugzilla Bug 298957: removed a comment. The code already does what the 
comment asked for. r=relyea.
 2005-08-15 21:34:42 +00:00
relyea%netscape.com
80d892f39d Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit] 
sr=brendan r=wtc a=dbaron

The issue is the use of the PL_DHash* functions. It's possible that a given call
to PL_DHashOperate which adds a new entry may cause the hash table to expand,
and all the existing entries to be reallocated. PL_DHash does this by allocating
new memory, then copying the entries.

getCacheEntry() returns one of these hash entries. CmpBy() makes two consecutive
calls to getCacheEntry, then uses the returned entries for it's comparisons. If
the second entry call causes a new entry to be added to the table, and causes
the hash table to expand, the pointer to the first entry we retrieved will point
to freed memory.

The fix is to make the usable entry a pointer in the hashtable entry, and return
that pointer. When the hashtable rebuilds it's entries, the pointer will be
copied to the new entry and not be disturbed.
 2005-08-15 21:23:51 +00:00
wtchang%redhat.com
55197b5cfd Bugzilla Bug 289530: fixed signed/unsigned comparison compiler warnings. 
Fixed compilation errors of new ECC code added in the previous checkin.
r=nelsonb.
 2005-08-15 21:23:39 +00:00
relyea%netscape.com
29e52be20d Remove ^M from the tree version of mpcpucache.c 2005-08-15 19:00:17 +00:00
saul.edwards%sun.com
95723d010a Bug 285932: Faster SHA1 implementation for AMD64: sha-fast-amd64-sun.s is 
currently only for Solaris AMD 64 when using Sun studio compilers.
 2005-08-15 16:55:22 +00:00
wtchang%redhat.com
2577eb148c Bugzilla bug 302286: fixed the bug that NSS misinterpreted the 
CKA_PRIME_BITS attribute for DSA's p parameter. r=relyea.
Modified files: pk11wrap/pk11pqg.c softoken/pkcs11c.c
 2005-08-13 00:09:26 +00:00
wtchang%redhat.com
12ebc20147 Bugzilla Bug 302286: PQG_PBITS_TO_INDEX should reject p bits that are 
less than 512 or greater than 1024. r=relyea.
 2005-08-13 00:07:18 +00:00
wtchang%redhat.com
0824c317a1 Bugzilla Bug 296410: enlarge the buffer size for message digest so that 
we can generate and verify signatures that use SHA-512. r=relyea
Modified files: secsign.c secvfy.c
 2005-08-12 23:50:19 +00:00
wtchang%redhat.com
3caf238827 Bugzilla bug 240554: Alice's cert doesn't need to be added to Bob's db. 
r=relyea.
Modified files: cert.sh eccert.sh
 2005-08-12 23:27:44 +00:00
wtchang%redhat.com
148653a358 Bugzilla bug 240554: we should pass the signature algorithm, not the 
public key's algorithm, to VFY_VerifyData and VFY_VerifyDigest. Only
fixed this in cmssiginfo.c.  In p7decode.c I just added comments saying
they should be fixed. r=relyea.
Modified files: lib/smime/cmssiginfo.c lib/pkcs7/p7decode.c
 2005-08-12 23:26:38 +00:00
wtchang%redhat.com
1a568d0852 Bugzilla bug 240554: set (better) error codes and removed an unreachable 
break statement. r=relyea.
 2005-08-12 23:24:22 +00:00
wtchang%redhat.com
c0bd0e749a Bugzilla bug 240554: fixed signed/unsigned comparison compiler warning. 
r=relyea.
 2005-08-12 23:22:28 +00:00
wtchang%redhat.com
e09393045c Bugzilla bug 292239: have the softoken report Cryptoki version 2.20. 
r=relyea.
 2005-08-12 23:14:22 +00:00
wtchang%redhat.com
2d2b80688d Bugzilla bug 292239: added a change missed in the previous checkin. 
r=relyea.
 2005-08-12 23:12:18 +00:00
relyea%netscape.com
684e5d1c2b Correct mistyped version of wtc patch. 2005-08-12 22:19:19 +00:00
relyea%netscape.com
a584ef4a1d Bug 292239 r wtc & julien 
Merge PKCS #11 v2.20 header files
 2005-08-12 18:58:47 +00:00
sandeep.konchady%sun.com
62ee9e4e59 As per Wan-Teh's suggestion, the comments are modified to look as shown below. 
#/********************************************************************/
#/* The VERSION Strings should be updated in the following           */
#/* files everytime a new release of JSS is generated:               */
#/*                                                                  */
#/* org/mozilla/jss/CryptoManager.java                               */
#/* org/mozilla/jss/CryptoManager.c                                  */
#/* org/mozilla/jss/util/jssver.h                                    */
#/* lib/manifest.mn                                                  */
#/*                                                                  */
#/********************************************************************/
 2005-08-12 18:39:14 +00:00
relyea%netscape.com
5ab7c1109c Bug 303010 Certificate upgrade can drop S/MIME certificates 
r=wtc.

Delay loading the S/MIME records on upgrade until the cert is loaded
 2005-08-12 18:01:26 +00:00
jst%mozilla.jstenback.com
e23ea875f3 Followup changes to bzabarsky's review for bug 296639. Reviews pending, a=drivers@mozilla.org 2005-08-12 04:11:00 +00:00
wtchang%redhat.com
0543618d9c Bugzilla Bug 257693: actually implemented EC_ValidatePublicKey and added a 
test case.  The patch is contributed by Douglas Stebila
<douglas@stebila.ca>.  r=wtc.
Modified Files:
	ec.c ecl/ec2.h ecl/ec2_aff.c ecl/ecl-priv.h ecl/ecl.c
	ecl/ecl.h ecl/ecp.h ecl/ecp_aff.c ecl/tests/ec2_test.c
	ecl/tests/ecp_test.c
 2005-08-12 00:59:19 +00:00
wtchang%redhat.com
67ffaff684 Bugzilla Bug 298514: added a missing break statement and removed an unused 
variable. r=jpierre.
 2005-08-12 00:44:35 +00:00
wtchang%redhat.com
9a026f7eba Bugzilla Bug 240554: added ECDSA support in S/MIME. The patch is 
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified Files:
	cryptohi/secsign.c pkcs7/config.mk pkcs7/p7decode.c
	pkcs7/p7encode.c smime/cmssiginfo.c smime/cmsutil.c
	smime/config.mk
 2005-08-11 23:11:40 +00:00
wtchang%redhat.com
e8ad6847cf Bugzilla Bug 240554: added S/MIME tests for ECDSA. The patch is 
contributed by Vipul Gupta <vipul.gupta@sun.com>. r=wtc.
Modified files: fixtests.sh cert/eccert.sh
Added file: smime/ecsmime.sh
 2005-08-11 22:50:12 +00:00
sandeep.konchady%sun.com
c3281b24a7 Older release of JSS had an issue with gradually slowing socket read time when 
transfering large files (> 10MB).  In order to test this in current and future
release, there needs to be a test client that can read a file and transfer it to
a server (remote or local) via JSS socket.  The server should report the number
of bytes read and the time it took to read these bytes.  There should not no
degradation in read time if there is no leak of any sort.

This is not part of all.pl, but is a client/server that uses JSS to transfer
files securely.  The main purpose of this test would be to test the performance
of large file transfer using JSS.

NOTE: If bufferedStream.mark(Integer.MAX_VALUE); method is invoked then fill
method of BufferedInputStream class copies lot of data using System.arraycopy
(which in-turn use memcpy). This causes very high CPU usage.  This is one of
the reasons secure large file transfer can become slow over time.
 2005-08-11 18:28:59 +00:00
nelsonb%netscape.com
0d980a5ea1 A faster c implementation of SHA1 for most platforms. Bug 285932. 
r=wtchang     Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
 2005-08-11 01:01:08 +00:00
wtchang%redhat.com
9b7075b1d2 Bugzilla Bug 303116: fixed an off-by-one error in the size of the NAF 
buffer. We access this buffer using indices from 0 to orderBitSize.
r=douglas.stebila.
 2005-08-10 20:35:07 +00:00
wtchang%redhat.com
24b5ce2c08 Bugzilla Bug 303116: fixed an off-by-one error when duplicating a string. 
r=douglas.stebila.
 2005-08-10 18:49:29 +00:00
wtchang%redhat.com
19e9429f0d Bugzilla Bug 303116: this file doesn't need to include <strings.h>, which 
doesn't exist on Windows. r=relyea.
Bugzilla Bug 303130: fixed memory leak of mp_int in ECPoints_mul.
r=douglas.stebila.
 2005-08-10 18:46:29 +00:00
wtchang%redhat.com
f728d5d9bb Bugzilla Bug 266123: added ppc64 support. The patch is contributed by 
Markus Rothe <markus@unixforces.net>. r=wtc.
 2005-08-09 22:31:24 +00:00
wtchang%redhat.com
51a9c2f4bd Bugzilla bug 303986: do not assume the line ending is '\n'; it may be the 
two character sequence '\r''\n'.  Make sure a character is a digit before
using it as a digit. r=jpierre.
 2005-08-09 22:19:09 +00:00
nelsonb%netscape.com
c893021cd0 Address review comments. Add test after PORT_Assert. Bug 303334. 
r=rrelyea,sr=wtchang
Modified Files: rijndael.c
 2005-08-09 03:09:38 +00:00
nelsonb%netscape.com
7755e752cd Make changes from review feedback. Bug 303316. r=wtchang. 
Modified Files: freebl/alghmac.h freebl/blapi.h freebl/ldvector.c
freebl/loader.c freebl/loader.h freebl/rawhash.c
freebl/tlsprfalg.c softoken/lowpbe.c softoken/pkcs11c.c
 2005-08-09 02:54:54 +00:00
cbiesinger%web.de
b71260a8a1 297057 fix case of doOK() 
patch by Frank Wein <bugzilla@mcsmurf.de> r=kaie sr=neil a=bsmedberg
 2005-08-06 21:34:04 +00:00
nelsonb%netscape.com
8260a85fe6 Add a new assembly language source file with multiplication code for 
Sparc v8 (not V8plus) CPUs.  This works around a performance regression
by restoring the former code.  Bug 303338. r=wtchang.
Modified Files: Makefile
Added Files:    mpi/mpv_sparcv8x.s
 2005-08-06 11:08:41 +00:00
nelsonb%netscape.com
c02e614a66 Add a comment clarifying that this source file is for sparc v8plus CPUs. 
Upgrade license to tri-license.  Fix a bunch of whitespace problems,
WAY too much indentation.  Related to bug 303338. r=wtchang.
Modified Files: mpi/mpv_sparcv8.s
 2005-08-06 11:06:55 +00:00
nelsonb%netscape.com
1f607bc371 Move the TLS Pseudo Random Function (PRF) and the HMAC algorithm from 
softoken to freebl.  Bug 303316. r=wtchang (with suggested changes)
Modified Files:
	freebl/blapi.h freebl/ldvector.c freebl/loader.c
	freebl/loader.h freebl/manifest.mn softoken/lowpbe.c
	softoken/manifest.mn softoken/pkcs11c.c softoken/pkcs11i.h
	softoken/tlsprf.c
Added Files:
	freebl/alghmac.c freebl/alghmac.h freebl/rawhash.c
	freebl/tlsprfalg.c
Removed Files:
	softoken/alghmac.c softoken/alghmac.h softoken/rawhash.c
 2005-08-06 09:27:28 +00:00
nelsonb%netscape.com
9a8510d59b This is the last trunk version of this file. The file will be moved 
to nss/lib/freebl.  This version is identical to the first version
of this file in nss/lib/freebl.  Bug 303316. r=wtchang.
Modified Files: alghmac.c alghmac.h rawhash.c
 2005-08-06 09:24:13 +00:00
nelsonb%netscape.com
8521bea2ba Add new functions for blapi symmetric ciphers and digest functions, 
so that all those functions can initialize a preallocated context.
Bug 303334. r=rrelyea.
Modified Files: aeskeywrap.c alg2268.c arcfour.c blapi.h blapit.h desblapi.c
ldvector.c loader.c loader.h md2.c md5.c rijndael.c rijndael.h sha512.c
 2005-08-06 07:24:21 +00:00
nelsonb%netscape.com
51714ee5f1 Faster SHA1 implementation. Further corrections expected. bug 285932. 
r=wtchang     Modified Files: prng_fips1861.c sha_fast.c sha_fast.h
 2005-08-06 07:10:34 +00:00
julien.pierre.bugs%sun.com
440dae786f Fix for bug 303494 . SEC_LookupCrls passes the address of a stack variable that goes out of scope. r=nelson,wtchang 2005-08-05 21:15:22 +00:00
wtchang%redhat.com
7931c0ace4 Removed noeccert.sh and noectools.sh from CVS. These two files are 
automatically created by the fixtests.sh script by copying the non-ECC
(default) test scripts to these names. r=vipul.gupta.
Removed Files: cert/noeccert.sh tools/noectools.sh
 2005-08-04 16:27:07 +00:00
dougt%meer.net
a3c8d78e87 Minimo only. Backing out 300373. 2005-08-03 05:24:18 +00:00
nelsonb%netscape.com
60181a7016 NSC_CopyObject can now copy token keys to session keys. Bug 289530. 
r=rrelyea. Modified Files: pkcs11.c pkcs11u.c
 2005-08-03 02:26:55 +00:00
nelsonb%netscape.com
6ee92f33d0 Implement PK11_CopyTokenPrivKeyToSessionPrivKey, function to copy token 
RSA private key to a session key, to eliminate DB lookups and 3DES
unwrapping for every use.  Bug 274538.  r=rrelyea.
Modified Files: nss/nss.def pk11wrap/pk11akey.c pk11wrap/pk11pub.h
 2005-08-03 01:57:40 +00:00
nelsonb%netscape.com
6edae5d3b6 Eliminate numerous potential causes of sending invalid (zero) session 
handles down to a PKCS11 module.  Bug 292049. r=relyea.
Modified Files: pk11akey.c pk11auth.c pk11obj.c pk11skey.c pk11slot.c
 	pk11util.c
 2005-08-03 01:22:07 +00:00
timeless%mozdev.org
d4d47484e2 Bug 283569 OOM crash [@ nsNSS_SSLGetClientAuthData] 
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
 2005-08-02 14:22:50 +00:00
nelsonb%netscape.com
eeb454fae5 remove NSS_CLASSIC code from pk11cert.c and pk11nobj.c. 
bug 293847  r=rrelyea
 2005-08-02 01:34:38 +00:00
wtchang%redhat.com
ea595039b7 Bugzilla Bug 298957: PK11_TokenKeyGenWithFlags will be released in NSS 
3.10.2.
 2005-08-02 01:04:55 +00:00
wtchang%redhat.com
035c21bfa6 Bugzilla Bug 298957: improved the comment for PK11_TokenKeyGenWithFlags. 
r=relyea.
 2005-08-02 01:03:08 +00:00
wtchang%redhat.com
8825fcbdba Bugzilla Bug 302663: SECKEY_CopySubjectPublicKeyInfo needs to copy the 
subjectPublicKeyInfo as a bit string. r=nelsonb,jpierre.  Thanks to
Mikhail Teterin <mi+mozilla@aldan.algebra.com> for the bug report and
Purify output.
 2005-08-02 00:34:00 +00:00
wtchang%redhat.com
b5b833a9c0 Bugzilla Bug 302262: Check for SECITEM_AllocItem failure in 
MPINT_TO_SECITEM. r=nelsonb.
 2005-08-01 22:43:54 +00:00
wtchang%redhat.com
a82541564d Added a comment that answers the question "why isn't there a pairwise 
consistency test for Diffie-Hellman or ECDH key pairs?"
 2005-08-01 21:04:41 +00:00
relyea%netscape.com
f7cb169d0a Bugzilla Bug 298906 really check in the patch to the tip, not a test branch 
crash when accepting new certificate permanently on taschenonkel.de
r=wtc, r=nelson
 2005-08-01 20:41:30 +00:00
wtchang%redhat.com
e4ab6fa7bb Bugzilla Bug 302262: dsa.c should use the macros defined in secmpi.h. 
r=nelsonb.
 2005-08-01 18:51:06 +00:00
relyea%netscape.com
d527565866 I have to many patches in one tree! Stay at 1.103 until this patch has a bug and 
reviews!
 2005-08-01 18:32:45 +00:00
relyea%netscape.com
775b5372bc These changes were part of a different patch, reviews are not yet complete. 
Backing out to previous versions.
 2005-08-01 18:31:12 +00:00
relyea%netscape.com
7af3f28d88 ARG -- reverted to the wrong version. The correct version was 1.103, not 1.102 2005-08-01 18:27:30 +00:00
relyea%netscape.com
625993f336 Backing out previous checkin. This was a separate unreviewed patch. 2005-08-01 18:26:12 +00:00
relyea%netscape.com
b62dc0bebc Bug 298906 crash when accepting new certificate permanently on taschenonkel.de 
r=wtc, sr=nelson
 2005-08-01 18:23:56 +00:00
dveditz%cruzio.com
4cdd3ba458 form action=javascript: shouldn't trigger the insecure submit warning (bug 182179). Patch by Iain MacDonnell, r=dveditz, sr=darin, a=asa 2005-07-31 19:06:27 +00:00
wtchang%redhat.com
7053ab4abf Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support. r=relyea. 2005-07-29 23:43:40 +00:00
wtchang%redhat.com
a3ac2d6b1d Bugzilla Bug 302219: added CKM_RSA_X9_31_KEY_PAIR_GEN support to 
PK11_GenerateKeyPair. r=relyea.
 2005-07-29 23:23:35 +00:00
relyea%netscape.com
03738e2557 Bug 278276 Slot List Elements cannot be freed by applications. 
wtchang: review+
julien.pierre.bugs: superreview+
 2005-07-28 23:17:43 +00:00
relyea%netscape.com
f212e4ecf1 bug 278276 Slot List Elements cannot be freed by applications. 
wtchang: review+
julien.pierre.bugs: superreview+
	E
 2005-07-28 23:16:26 +00:00
relyea%netscape.com
8be47f79ed bug 278276 Slot List Elements cannot be freed by applications. 
Export a free function for slot list elements.

r = wtc & julien.
 2005-07-28 23:13:21 +00:00
mconnor%steelgryphon.com
e246c70e9d bug 194141 - missing calls to SSL_ClearSessionCache, r=nelson.bolyard, sr=dveditz, a=bsmedberg 2005-07-28 18:15:20 +00:00
wtchang%redhat.com
0fc278d80f Bugzilla Bug 302262: fixed an error in the comment. Set the error code 
if signature verification fails.  r=nelsonb.
 2005-07-27 18:48:44 +00:00
julien.pierre.bugs%sun.com
5c55935a1d Fix for bug 292151 . Prevent strsclnt from starting threads for each connection. Allow specifying a ratio of full handshakes . r=nelson 2005-07-25 20:39:14 +00:00
wtchang%redhat.com
512a35d372 Bugzilla Bug 298514: Moved the FIPS 140-2 pairwise consistency check from 
pk11wrap to softoken because the softoken shared library is our new crypto
module boundary. r=relyea,nelsonb.
Modified files: pk11wrap/pk11akey.c softoken/fipstokn.c softoken/pkcs11c.c
 2005-07-22 22:11:22 +00:00
bzbarsky%mit.edu
10d1c576d9 Expose the subject name for the cert and an nsISupports pointer to the cert on 
nsIPrincipal that represents a certificate principal.  Change preference
storage to ensure matches in not only the fingerprint but also the subjectName
before applying privileges from preferences to a certificate principal.  Remove
possibility for creating certificate principals without a useful identifying
name and make sure that names don't get munged by being forced to ASCII.  Bug
240661, r=caillon, sr=dveditz, a=bsmedberg
 2005-07-22 19:05:42 +00:00
christophe.ravel.bugs%sun.com
f970690695 238319: Sun packages changes 
Change rpm packaging for RHEL3 i386 and x86_64.
 2005-07-22 15:32:50 +00:00
wtchang%redhat.com
75dc722c28 Bugzilla Bug 298957: moved PK11_TokenKeyGenWithFlags from the NSS_3.11 
section to the NSS_3.10.1 section because we plan to export that function
in NSS 3.10.1. r=jpierre.
 2005-07-22 01:43:36 +00:00
wtchang%redhat.com
ee93d82c69 Bugzilla Bug 298516: fixed problems found by code inspection. r=relyea. 
Modified Files: pk11db.c pkcs11.c
 2005-07-22 00:47:18 +00:00
wtchang%redhat.com
256eb43b03 Bugzilla Bug 298957: make the new function PK11_TokenKeyGenWithFlags 
"legacy free" and move the code that set the CKF_ENCRYPT flag by default
and the Fortezza hack code to PK11_TokenKeyGen. r=relyea.
 2005-07-22 00:07:52 +00:00
wtchang%redhat.com
252be2d441 Bugzilla Bug 288647: enable building NSS with an NSPR binary distribution. 
Introduced NSPR_INCLUDE_DIR and NSPR_LIB_DIR make variables. Portions of
the patch were contributed by Chris Seawood <cls@seawood.org>. r=relyea.
Modified Files:
	coreconf/OS2.mk coreconf/OpenVMS.mk coreconf/location.mk
	nss/cmd/platlibs.mk nss/cmd/shlibsign/Makefile
	nss/cmd/shlibsign/sign.cmd nss/cmd/shlibsign/sign.sh
	nss/lib/ckfw/builtins/Makefile
	nss/lib/fortcrypt/swfort/pkcs11/Makefile nss/lib/nss/config.mk
	nss/lib/smime/config.mk nss/lib/softoken/config.mk
	nss/lib/ssl/config.mk
 2005-07-21 23:48:30 +00:00
wtchang%redhat.com
cfbc0bfe3d Bugzilla bug 301212: Upgraded to zlib 1.2.3. r=relyea. 
Modified Files:
	README adler32.c compress.c crc32.c deflate.c deflate.h
	example.c gzio.c infback.c inffast.c inflate.c inflate.h
	inftrees.c inftrees.h minigzip.c trees.c uncompr.c zconf.h
	zlib.h zutil.c zutil.h
 2005-07-20 20:32:42 +00:00
pkw%us.ibm.com
53beab23e9 Bug 296449 - Error in string handling within <keygen> 
r=kaie.bugs@gmail.com, sr=dveditz@cruzio.com, a=benjamin@smedbergs.us
 2005-07-20 19:31:22 +00:00
timeless%mozdev.org
f4f945e14e Bug 283563 OOM crash [@ GetSlotWithMechanism][@ nsKeygenFormProcessor::GetPublicKey] 
patch by b.jacques@planet.nl r=kaie sr=darin a=bsmedberg
 2005-07-13 19:31:14 +00:00
jshin%mailaps.org
fcf7e6f914 bug 224820 : support UTF-16/32 (non-byte oriented char. encoding) in the form submission : r=biesi, sr=bz, a=asa 2005-07-13 16:55:59 +00:00
bzbarsky%mit.edu
1ca43db890 Fix leak due to non-use of already_AddRefed. Bug 296364, r=kaie, sr=bryner 2005-07-13 16:53:06 +00:00
dougt%meer.net
3baac22e47 Backing out my changes in the last few hours because Chase is tagging the tree. (the tree was open, but he was tagging) 2005-07-12 22:01:25 +00:00
dougt%meer.net
094201f074 Fixing build bustage. Must use FORCE_USE_PIC when FORCE_SHARED_LIB. MINIMO only. 2005-07-12 21:39:45 +00:00
dougt%meer.net
5212116105 Fixing 300373. Build/Minimo change. To allow WinCE startup, some of our components must be loaded dynamically regardless if we are building static or not. r=bsmedberg, a=asa 2005-07-11 16:38:28 +00:00
julien.pierre.bugs%sun.com
26dff248b1 Fix for 217024 . Address Wan-Teh's concerns about naming and documentation. Also fix AIX build by removing extraneous comma. 2005-07-09 00:34:43 +00:00
wtchang%redhat.com
6893edd94b Bugzilla bug 300068: fixed the bug that "collection" is used uninitialized 
if "td", "c", or "cc" is NULL.  The patch is contributed by Wolfgang
Rosenauer <mozilla@rosenauer.org>. r=wtc.
 2005-07-08 17:06:15 +00:00
julien.pierre.bugs%sun.com
bae291f63a Fix for bug 217024 . Add a function to compare validity times. r=relyea 2005-07-08 07:06:56 +00:00
julien.pierre.bugs%sun.com
bdc5219738 Fix for bug 292809 . Add flags to NSS_Initialize to better cooperate with the Java SunPKCS11 provider. r=relyea, wtchang 2005-07-08 04:41:32 +00:00
relyea%netscape.com
2b2395e4a9 Bugzilla Bug 287418: remove redundant memory allocation in DSA and ECDSA sign 
wtchang: review+
julien.pierre.bugs: superreview+
 2005-07-07 20:19:36 +00:00
wtchang%redhat.com
74efa171f5 Bugzilla Bug 294122: support building with MSYS (a set of Unix utilities 
for Windows compiled with MinGW).  The patch is contributed by Howard Chu
<hyc@symas.com>. r=wtc,cls.
Modified Files: arch.mk rules.mk
 2005-07-07 16:50:47 +00:00
julien.pierre.bugs%sun.com
0269e27f2d Fix for 297735 . C_Initialize should return CKR_CANT_LOCK . r=wtchang,rrelyea 2005-07-06 22:32:12 +00:00
wtchang%redhat.com
7f68104244 Removed an extraneous line at the end of file added in the previous 
checkin.
 2005-07-06 18:56:37 +00:00
relyea%netscape.com
66d0ee6781 Bug 294556 (not all functions exported) reviews wtc nelsonb 
Bug 298627 (need to access random number generator on a slot). reviews wtc julien
 2005-07-06 18:46:36 +00:00
wtchang%redhat.com
2fa8c48fa5 Bugzilla Bug 298957: pk11_FlagsToAttributes should not add attributes 
whose type is 0. r=relyea.
 2005-07-06 18:36:05 +00:00
wtchang%redhat.com
f8218a271b Bugzilla Bug 298957: code cleanup -- the array size can be MAX_TEMPL_ATTRS. 
r=relyea.
 2005-07-06 18:34:39 +00:00
wtchang%redhat.com
4527e657e5 Bugzilla Bug 299445 - fixed the check for an incomplete code set. 2005-07-06 18:14:26 +00:00
julien.pierre.bugs%sun.com
2e54275977 Fix for 297849 . Allow x86 build on Linux x86_64 machine. r=wtchang 2005-07-05 22:48:38 +00:00
wtchang%redhat.com
14794607bc Trivial comment fix. 2005-07-05 22:41:33 +00:00
wtchang%redhat.com
e624986eb8 Bugzilla Bug 298532: use -fPIC explicitly (which is the default). The 
patch is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
 2005-07-01 00:40:07 +00:00
wtchang%redhat.com
a36a0d6ad4 Bugzilla Bug 287057: fixed memory leaks in callers of cert_FindExtension. 
pass NULL as the SECItem* argument if we only want to know if the extension
exists but don't need its value. r=jpierre,nelsonb.
Modified Files:
	certdb/certdb.c certdb/genname.c certhigh/certhigh.c
	certhigh/certhtml.c certhigh/crlv2.c certhigh/ocsp.c
 2005-06-30 20:53:57 +00:00
julien.pierre.bugs%sun.com
20e7c73484 Fix for 298955 - make rsaperf authenticate to hardware tokens. r=relyea 2005-06-30 20:38:33 +00:00
wtchang%redhat.com
1639879aa6 Bugzilla Bug 298957: added new function PK11_TokenKeyGenWithFlags. 
r=relyea,nelsonb.
Modified files: nss/nss.def pk11wrap/pk11pub.h pk11wrap/pk11skey.c
 2005-06-30 17:50:41 +00:00
wtchang%redhat.com
48f306e0d7 Bugzilla Bug 298532: updated for Mac 10.4u ("universal") SDK, which adds 
support for Intel CPUs.  The patch is contributed by Mark Mentovai
<mark@moxienet.com>. r=wtc.
 2005-06-28 21:21:05 +00:00
wtchang%redhat.com
9ee0623105 Bugzilla Bug 298962: Removed dead code: nssBestCertificate_SetArgs, 
nssBestCertificate_Callback, and nssBestCertificateCB. r=jpierre,nelsonb.
Modified files: certificate.c pkitm.h
 2005-06-28 17:55:29 +00:00
wtchang%redhat.com
fafa59ce5f Bugzilla Bug 298953: fixed a memory leak in sslBuffer_Grow if PORT_Realloc 
fails. r=nelsonb.
 2005-06-28 17:48:26 +00:00
julien.pierre.bugs%sun.com
a7638aa1fd Fix for 298538 - fix signature verification in S/MIME with signer-only cert. r=wtchang, nelson 2005-06-27 22:21:19 +00:00
wtchang%redhat.com
2a3bb9d1e0 Bugzilla Bug 295754: moved duplicate function subject_list_sort to 
certificate.c and renamed it nssCertificate_SubjectListSort.
r=relyea,nelsonb.
Modified files: certificate.c pkim.h pkistore.c tdcache.c
 2005-06-27 21:50:06 +00:00
christophe.ravel.bugs%sun.com
80cfefb48e 238319: Sun packages changes 
Reset the rpm release to 1 for NSS 3.11
 2005-06-27 18:22:02 +00:00
christophe.ravel.bugs%sun.com
a12b562c66 After branching NSS_3_10_BRANCH, the tip target is 3.11 2005-06-27 18:21:02 +00:00
wtchang%redhat.com
47bf55ca0f Bugzilla Bug 298409: fixed an array index off-by-one error and a memory 
leak. r=nelsonb.
 2005-06-24 23:00:02 +00:00
wtchang%redhat.com
dd3c6f24d1 Bugzilla Bug 295754: fixed a crash in subject_list_sort if a cert is not 
decodable (e.g., it has unsupported critical extension). r=relyea,nelsonb.
Modified Files: pkistore.c tdcache.c
 2005-06-24 00:33:28 +00:00
wtchang%redhat.com
de7814e763 Bugzilla Bug 298537: replaced hardcoded 3 and 8 with the NSS_VMAJOR and 
NSS_VMINOR macros defined in nss.h. r=relyea,nelsonb.
 2005-06-23 23:41:29 +00:00
wtchang%redhat.com
2540bdf095 Bugzilla Bug 298409: fixed the bug that an array size was incorrectly 
calculated. r=alexei.volkov.
 2005-06-23 22:05:21 +00:00
wtchang%redhat.com
3ee952cfef Bugzilla Bug 297826: add the -Zmap flag to create .map files for DLLs. The 
patch is contributed by Peter Weilbacher <mozilla@Weilbacher.org>.
Reviewed by Julien Pierre and Michael Kaply.
 2005-06-23 18:46:17 +00:00
sandeep.konchady%sun.com
4b431e7e5c Modified JSS/JSSE inter communication tests along with JSSPackageTest 
and all.pl to use platform specific cert/keystore directory.
 2005-06-23 05:59:36 +00:00
christophe.ravel.bugs%sun.com
b58c408d21 297965 - Add a marker at the end of the test result report (result.html) 
r: Julien
mozilla/security/nss/tests/common/cleanup.sh
Add END_OF_TEST<BR> before </BODY>
 2005-06-21 16:31:57 +00:00
christophe.ravel.bugs%sun.com
ccba0763e9 297573 - Modify JSS tests such that they access certs from platform specific directories 
r: Sandeep
Force Perl to do unbuffered output to avoid having Java and
Perl output out of sync.
 2005-06-21 01:17:30 +00:00
relyea%netscape.com
f0a85660c4 Arg! This change was supposed to go to a branch, not the tip. back it out now. 
bob
 2005-06-20 23:14:45 +00:00
relyea%netscape.com
6c951345b4 Test multiaccess Databases. This patch causes softoken to Always use the 
multiaccess Database for clients. This is not intended for the final release
 2005-06-20 23:11:25 +00:00
christophe.ravel.bugs%sun.com
5265f6fc95 297573 - Modify JSS tests such that they access certs from platform specific directories 
r=Sandeep, sr=Glen
Display the result of each test case and global pass rate.
 2005-06-16 23:22:46 +00:00
alexei.volkov.bugs%sun.com
cd0a03b285 fix for bug: 297015 - bltest should run multithreaded. r=julien 2005-06-16 21:11:02 +00:00
timeless%mozdev.org
e1e8f80bf3 Bug 225034 Certificate Manager Crashes Mozilla [@ nsCertTree::CmpByCrit] 
patch by kaie r=timeless sr=darin a=shaver
 2005-06-16 17:27:17 +00:00
timeless%mozdev.org
4f9c680880 Bug 284366 PSM needs to handle Smart Cards seamlessly 
fix casting on 64bit platforms
patch by ajschult@verizon.net r=rrelyea sr=jst a=asa
 2005-06-16 02:00:32 +00:00
bryner%brianryner.com
e4a343f08f Fix assorted issues with fastback, including adding progress listener notifications and introducing the PageHide and PageShow events. See bug 292971 for all of the details. r=darin, sr=bzbarsky, a=shaver. 2005-06-15 23:52:46 +00:00