Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-08 04:27:37 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
164,129 Commits 615 Branches 98 Tags 5.9 GiB
8545dab711
Commit Graph

6059 Commits

Author SHA1 Message Date
rrelyea%redhat.com
11b860880e Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails 
Use SEC_GetSignatureAlgorithmOidTag() to map to the signature oid.
r=wtc
 2006-03-15 21:46:24 +00:00
rrelyea%redhat.com
2b42f9feb9 Bugzilla Bug 326503 producing a ProofOfPossession signature on a EC CRMF fails 
patch makes SHA1 the default hashing for RSA rather than MD5.
patch by wtc r=rrelyea.
 2006-03-15 21:42:21 +00:00
rrelyea%redhat.com
aab12ab3a8 bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined 
r=wtc
 2006-03-15 19:22:32 +00:00
rrelyea%redhat.com
c783f88c97 bug 329058 mpmontg.c doesn't compile when MP_CHAR_STORE_SLOW is defined 
r=wtc
 2006-03-15 19:13:12 +00:00
kaie%kuix.de
a789dec260 Bug 236933, Disable SSL2 and other weak ciphers by default 
This patch (v3c) removes the UI to control SSL 2.
Firefox UI-review: beltzner
Firefox code review: mconnor
SeaMonkey UI-review: neil
Seamonkey+PSM code review: rrelyea
 2006-03-14 21:29:13 +00:00
nelson%bolyard.com
2996640c67 Bug 324448. Convert mpi_x86.asm to mpi_x86_asm.c for Win32 built with MSVC. 
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre sr=nelson@bolyard.com
 2006-03-10 06:48:46 +00:00
nelson%bolyard.com
d42549b7ac Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC. 
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
 2006-03-09 23:50:43 +00:00
nelson%bolyard.com
41a9b174bd Bug 324448. Convert mpi_x86.asm to mpi_x86.c for Win32 built with MSVC. 
Patch contributed by Benjamin Smedberg <benjamin@smedbergs.us>
r=julien.pierre  sr=nelson@bolyard.com
 2006-03-09 23:46:45 +00:00
nelson%bolyard.com
19a46702bf Bug 329002. fix cert reference leak. r=alexei.volkov,rrelyea 2006-03-09 23:38:57 +00:00
christophe.ravel.bugs%sun.com
3203ada5f3 Bugzilla 324887: merge ECC and non-ECC QA test scripts. 
Add return code and error message for ssl_stress and ssl_cov.
r=vipul, sr=nelson.
 2006-03-08 00:47:28 +00:00
wtchang%redhat.com
a0ed51d33e Bugzilla Bug 329575: ECPoint_mul should multiply a point by the group order 
faithfully because this operation is required by the public key validation
algorithm.  r=douglas.stebila,vipul.gupta.
 2006-03-08 00:19:34 +00:00
wtchang%redhat.com
d679dc6d35 Bugzilla Bug 320578: added a new function ec_GenerateRandomPrivateKey to 
generate a random private key without bias using the algorithm of FIPS
186-2 Change Notice 1, and use it to generate EC private key d and ECDSA
ephemeral private key k.  The patch is contributed by Douglas Stebila
<douglas@stebila.ca> and improved by me. r=douglas.stebila,vipul.gupta.
 2006-03-06 23:48:39 +00:00
kaie%kuix.de
aa712694ba fix bug 328771 
r=rrelyea sr=dveditz
 2006-03-04 12:22:22 +00:00
wtchang%redhat.com
85a72075f3 Bugzilla Bug 324887: The previous checkin introduced a comment bug. A 
comment line must begin with exactly one '#' character followed by white
space.
 2006-03-03 22:10:30 +00:00
wtchang%redhat.com
f1ca8f1fd1 Bugzilla Bug 324887: merged ECC and non-ECC QA test scripts and removed 
ECC QA test scripts.  The patch is written by Vipul Gupta and Christophe
Ravel of Sun. r=wtc,nelsonb,jpierre
Modified Files:
	cert/cert.sh smime/smime.sh ssl/ssl.sh ssl/sslauth.txt
	ssl/sslcov.txt ssl/sslstress.txt tools/tools.sh
Removed Files:
	fixtests.sh cert/eccert.sh smime/ecsmime.sh ssl/ecssl.sh
	ssl/ecsslauth.txt ssl/ecsslcov.txt ssl/ecsslstress.txt
	tools/ectools.sh
 2006-03-03 20:06:03 +00:00
wtchang%redhat.com
de8be1e067 Bugzilla bug 326482: code cleanup: ssl3_NewKeyPair should not create a key 
pair with only one key. r=nelson.bolyard.
 2006-03-03 18:48:09 +00:00
wtchang%redhat.com
aed20ed068 Bugzilla bug 326482: removed incorrect comments. r=nelson.bolyard. 2006-03-03 18:45:54 +00:00
nelson%bolyard.com
ac042bff56 Fix standalone mpi Makefile to build on OS/X. Bug 327405. 
Patch contributed by Douglas Stebila <douglas@stebila.ca>
 2006-03-03 04:21:56 +00:00
nelson%bolyard.com
5e2ca73982 Bug 327677. Fix cert object reference leak. r=julien.pierre,nelson 
Patch contributed by Alexei Volkov <alexei.volkov.bugs@sun.com>
 2006-03-03 04:00:49 +00:00
wtchang%redhat.com
57a3c7aa21 Bug 236613: change to MPL/LGPL/GPL tri-license. 2006-03-02 22:48:55 +00:00
wtchang%redhat.com
b69eb504ce Bugzilla Bug 320589: fixed PK11_SignatureLen to return the exact length of 
ECDSA signatures.  Backed out a temporary workaround in
ECDSA_SignDigestWithSeed.  Made other changes related to signature lengths.
r=relyea,nelson.bolyard.
Modified Files:
	cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secsign.c
	freebl/ec.c pk11wrap/pk11obj.c pk11wrap/pk11pub.h
	ssl/ssl3con.c
 2006-03-02 00:07:08 +00:00
kaie%kuix.de
c3311666d5 bug 168629, Mozilla incorrectly prompts about submitting to an insecure location from a secure one with base 
href="https://..."
r=rrelyea, sr=bzbarsky
 2006-03-01 23:38:30 +00:00
wtchang%redhat.com
8696bd362e Bugzilla Bug 326403: use "Mozilla Foundation" as the manufacturer or 
producer of our shared libraries/DLLs.  Removed the optional copyright
notices from our DLLs. r=relyea,jpierre.
Modified Files:
	lib/ckfw/builtins/constants.c lib/ckfw/builtins/nssckbi.rc
	lib/ckfw/capi/nsscapi.rc lib/ckfw/dbm/instance.c
	lib/freebl/freebl.rc lib/nss/nss.rc lib/smime/smime.rc
	lib/softoken/pkcs11.c lib/softoken/softokn.rc lib/ssl/ssl.rc
 2006-03-01 19:44:36 +00:00
rrelyea%redhat.com
f95ae18fe7 Remove mp_init/mp_clear calls (and potential mallocs,frees and zeros) 
in tight loops for bug #326482

r=nelson
 2006-03-01 17:09:17 +00:00
rrelyea%redhat.com
6a21aaef0e bug 326482 Implement the derive sensitive only for those derivation functions that require it. 
fixes a performance problem with ECDH.

r=wtchang, nelson.
 2006-03-01 16:12:22 +00:00
nelson%bolyard.com
340adcfbfa Bug 327405. Correct EC keypair Generation. r=vipul.gupta,nelson.bolyard 
Patch contributed by Douglas Stebila <douglas@stebila.ca>
 2006-03-01 07:06:24 +00:00
nelson%bolyard.com
56fc6fa166 Bug 328262. Increment ssl3 statistics counters atomicly. r=wtchang,julien.pierre 2006-03-01 05:45:45 +00:00
wtchang%redhat.com
7986d13c5b Bugzilla Bug 327978: removed obsolete files, superseded by the ecl 
directory.  r=douglas.stebila.
Removed files: GF2m_ecl.c GF2m_ecl.h GFp_ecl.c GFp_ecl.h
 2006-02-28 23:43:19 +00:00
wtchang%redhat.com
30c02d8244 Bugzilla bug 327855: OS2 GCC build should define XP_OS2_EMX for NSPR 
headers.  Removed a duplicate XP_OS2 definition. r=Peter Weilbacher and
Julien Pierre.
 2006-02-28 21:34:29 +00:00
kaie%kuix.de
7962d03260 bug 328302, Cert Viewer: Prefix "raw bytes" display with size information 
r=rrelyea
 2006-02-28 18:30:01 +00:00
nelson%bolyard.com
a86941f281 Bug 326315. Warning Reduction. On TRUNK only. r=Julien.Pierre 2006-02-28 05:56:07 +00:00
nelson%bolyard.com
74a0a6eea2 Bug 325683. EC param parsing error not propagated correctly. 
Fix the cases that Andreas identified.  Patch by Andreas.Sterbenz@sun.com
r=Julien,wtchang,nelson
 2006-02-28 05:44:56 +00:00
nelson%bolyard.com
4b1a1b7cb3 Bug 326690. Enable modutil to configure default slots for the 
AES, SHA256 or SHA512 mechanisms.  r=rrelyea,julien.pierre
 2006-02-28 05:16:00 +00:00
nelson%bolyard.com
52395a4abb Bug 327105. Reintroduce an old bug that prevents _DHE_ cipher suites 
from being negotiated by NSS servers.  Necessary until the server side
of the _DHE_ cipher suites is fully implemented.  r=Julien,Wan-Teh,Vipul
 2006-02-28 04:20:23 +00:00
wtchang%redhat.com
7a0f0203c7 Bugzilla Bug 320038: checked in a better fix that allows us to write 
EC domain parameters as hex strings with leading 00's. r=douglas.stebila
sr=relyea.
Modified files: softoken/ecdecode.c freebl/ecl/ecl-curve.h
 2006-02-27 23:18:34 +00:00
wtchang%redhat.com
1e7792e844 Bugzilla Bug 322871: moved the three new EC-related JNI function symbols to 
a new JSS_4.2.3 section. r=sandeep.konchady.
 2006-02-24 23:56:41 +00:00
nkwan%redhat.com
168ad01945 integrated patch 'build fix' from bugzilla #328246 2006-02-24 19:40:34 +00:00
sandeep.konchady%sun.com
701ae3b6eb Bugzilla bug: 328233 Fix for using SunJCE for all platformas that do not 
use IBM JDK. sr=Alexei.Volkov
 2006-02-23 16:47:17 +00:00
wtchang%redhat.com
564626af0d Bugzilla Bug 322871: Checked in Bob Relyea's patch again. 
Add multi-hash ECC to jss (based on the 1.4 JCE).
 2006-02-23 01:21:52 +00:00
wtchang%redhat.com
36adc6cfb7 Bug 322578: backed out the previous checkin. We avoided it by changing NSS. 
r=mark.mentovai.
 2006-02-22 22:40:03 +00:00
wtchang%redhat.com
38794ac310 Bugzilla bug 322578: support ppc<->x86 cross builds for Mac OS X. The 
patch is contributed by Mark Mentovai <mark@moxienet.com>.  r=wtc.
 2006-02-22 22:26:34 +00:00
wtchang%redhat.com
6c376850a1 Bugzilla Bug 328228: fixed the typo "secp169k1". The patch is contributed 
by jyri <jyri.virkki@sun.com>. r=wtc,vipul.gupta.
Modified files: bltest/blapitest.c certutil/certutil.c
 2006-02-22 22:15:57 +00:00
christophe.ravel.bugs%sun.com
178bda1252 Change NSS version to 3.12 Beta on the tip. 2006-02-22 21:22:54 +00:00
kaie%kuix.de
01c86dfa09 bug 321598, Double memory free in nsIX509::getRawDER 
r=rrelyea
 2006-02-22 20:36:53 +00:00
wtchang%redhat.com
8c8a6af5ea Bugzilla Bug 326754: the previous checkin made us fail the NIST DSA PQGGen 
test for [mod = 768] only.  Backed out the more likely culprit.
 2006-02-22 02:12:09 +00:00
sandeep.konchady%sun.com
9df872f66f Bugzilla bug: 310368 Missed a file. 
sr=Glen r=Alexei
 2006-02-21 23:38:58 +00:00
sandeep.konchady%sun.com
7353b4807c Bugzilla bug: 326699 Added check for libjss4.$platform_lib_extension 
sr=Alexei.Volkov r=Christophe.Ravel
 2006-02-21 23:27:49 +00:00
sandeep.konchady%sun.com
509a25cea2 Bugzilla bug: 310368 Modified JSSE_SSLServer and JSS_SSLClient for proper 
cipher preference and communication. sr=Glen.Beasley r=Alexei.Volkov
 2006-02-21 23:25:25 +00:00
sandeep.konchady%sun.com
2fa829a716 Bugzilla bug: 322998 Fix for SSLServerSocket.accept() consuming exception 
cause. sr=Wan-Teh r=Alexei.Volkov
 2006-02-21 22:43:27 +00:00
mark%moxienet.com
0fcfd6405d 322578 Support ppc<->x86 cross builds for Mac OS X. Core cross-compile support. r=bsmedberg r=cls sr=bryner 2006-02-21 00:21:55 +00:00
wtchang%redhat.com
c449f54be3 Bugzilla Bug 327529: unnamed arguments (third and after) for CERT_CreateRDN 
must have the correct CERTAVA * type because compilers can't do automatic
type conversions. r=nelsonb,jpierre.
Modified files: alg1485.c secname.c
 2006-02-20 23:06:55 +00:00
kaie%kuix.de
a0b2d16750 bug=325366, Certificates: Large MS CA version causes decoding failure 
Patch contributed by Martin v. Loewis
r=kengert
 2006-02-20 13:20:47 +00:00
wtchang%redhat.com
97a5c30a94 Renamed DSA_TEST_SEED_BYTES to PQG_TEST_SEED_BYTES. 2006-02-18 02:39:12 +00:00
wtchang%redhat.com
0c104c2ece Bugzilla Bug 327384: fixed an off-by-one error in the size of the 'genenc' 
array.  The patch is contributed by Andreas Sterbenz
<Andreas.Sterbenz@sun.com>. r=wtc,nelsonb
 2006-02-16 22:33:13 +00:00
sandeep.konchady%sun.com
2c88207a24 Bugzilla bug: 317479. Added IBMJCE for tests to work with IBM JDK. 
sr=glen.beasley r=alexei.volkov
 2006-02-16 19:54:08 +00:00
dveditz%cruzio.com
bbb5617f66 bug 327126 prevent missing JSContext during generateCRMFRequest() r=mrbkap, r=kengert, sr=dbaron 2006-02-16 05:38:52 +00:00
glen.beasley%sun.com
1dd17278e7 fix by wan-teh for RSA siggen tests r=glen 2006-02-16 01:50:55 +00:00
wtchang%redhat.com
6e65720ba6 Bugzilla Bug 318967: use 160-bit SEED when generating DSA domain parameters 
(PQG).  Removed unused keySizeIndex variables. Handle the return value and
result output parameter of PQG_VerifyParams separately. Pad H with leading
0's when printing. r=glen.beasley.
 2006-02-16 01:28:35 +00:00
julien.pierre.bugs%sun.com
a4db2be2c9 Fix for bug 321765. Allow NSS to decode certs with unsupported critical extensions. r=wtchang,nelson,rrelyea. 2006-02-16 00:06:24 +00:00
alexei.volkov.bugs%sun.com
e393d91fcb [Bug 326963] Interoperability test with apache/mod_ssl: tstclnt 
produces: assertion failure: secmod_PrivateModuleCount == 0; r=nelson, sr=julie
n
 2006-02-15 22:22:32 +00:00
wtchang%redhat.com
ac55eec5a2 Bugzilla Bug 318962: fixed signed/unsigned comparison warnings by MSVC. 
r=glen.beasley.
 2006-02-15 19:14:09 +00:00
wtchang%redhat.com
4b0281cf28 Bugzilla Bug 318968: more ECDSA test cleanup. Do not zeroize when freezing 
ECParams' arenas.  Use EC_CopyParams to copy ECParams to an EC public key
and allocate the public key's value from the same arena. r=glen.beasley.
 2006-02-15 19:06:51 +00:00
christophe.ravel.bugs%sun.com
4cc50bbc40 322871: JSS needs to handle ECC keys and certs` 
Back out changes by rrelyea (2006-02-10) and glen.beasley (2006-02-14).
r+: wtc
 2006-02-14 23:53:05 +00:00
glen.beasley%sun.com
569463eb3e temp build fix 2006-02-14 20:16:45 +00:00
wtchang%redhat.com
c0887f9e1d Bugzilla Bug 326754: fixed two minor bugs related to the h parameter in 
PQG parameter generation. r=nelsonb,glen.beasley.
 2006-02-14 03:04:57 +00:00
wtchang%redhat.com
b19b5965a5 Bugzilla Bug 326144: need to zeroize a SECItem that contains a copy of the 
secret key. r=relyea,jpierre.
 2006-02-14 02:55:09 +00:00
wtchang%redhat.com
cfe8a9f253 Bugzilla bug 326751: CKR_SIGNATURE_INVALID is a much better default error 
code for NSC_VerifyRecover than CKR_DEVICE_ERROR is. r=relyea.
 2006-02-11 02:03:25 +00:00
glen.beasley%sun.com
7f3ba76b70 318970 RSA sigver test fix r=wan-teh 2006-02-10 23:27:38 +00:00
rrelyea%redhat.com
2b4f5e5d00 Add multi-hash ECC to jss (based on the 1.4 JCE). 2006-02-10 22:06:22 +00:00
rrelyea%redhat.com
1f4cae4de9 Bugzilla Bug 326482 NSS ECC performance problems. 
Patch by Nelson, r=relyea.

Save the public key when we create the keypair so we can use it later.
 2006-02-10 19:39:53 +00:00
rrelyea%redhat.com
57d9010865 Bugzilla Bug 326482 NSS ECC performance problems. 
r=nelsonb
Fix bug where ECC keys were not being copied on server startup
 2006-02-10 18:54:58 +00:00
neil.williams%sun.com
fd25589676 Bug 325657, r=Nelson,Wan-Teh, Unset ECL_USE_FP INT Solaris SPARC freebl 2006-02-10 04:38:05 +00:00
rrelyea%redhat.com
2cf33676b0 Bug 320187 NSC_WrapKey called with null output returns short length 
r=nelsonb
 2006-02-09 19:54:22 +00:00
dougt%meer.net
52822535eb Fixing bug 326358. checking for null mStringBundle is not needed. r/a=kaie 2006-02-09 18:52:28 +00:00
neil.williams%sun.com
8719a5f375 Bug #325682, Adds -Wl,-rpath to link step for Linux distributions 
r=Nelson, sr=Wan-Teh
 2006-02-09 00:12:17 +00:00
rrelyea%redhat.com
2c3bfd1312 Bug 320583 Support for SHA256/384/512 with ECC signing 2006-02-08 06:14:31 +00:00
julien.pierre.bugs%sun.com
af4804d7ef Fix for bug 326144 . softoken leaks in nsc_pbe_key_gen. r=nelson, rrelyea 2006-02-07 00:43:31 +00:00
wtchang%redhat.com
eb3a64e821 Bugzilla Bug 318967: fixed compiler warnings, most of which were char * 
and unsigned char * mismatches. r=glen.beasley.
 2006-02-04 06:39:44 +00:00
kaie%kuix.de
58262b951b Fix build bustage, change // comment to /* */ 2006-02-03 20:22:52 +00:00
kaie%kuix.de
3aa755acfa bug 152426, delegation of HTTP download for OCSP 
r=julien.pierre, r=rrelyea
 2006-02-03 18:14:49 +00:00
cbiesinger%web.de
c2d981f764 bug 183156 remove *UCS2* functions, replacing them with *UTF16* ones 
r+sr=darin
 2006-02-03 14:18:39 +00:00
neil.williams%sun.com
d55302f3a8 bug 245518 r=nelson, fix for p12 files encoded with null PWs 2006-02-02 20:26:03 +00:00
nelson%bolyard.com
564cb27d28 Work around bug 292285: don't encode x400 addresses, don't print CRL contents 
r=julien.pierre
 2006-02-02 07:56:19 +00:00
wtchang%redhat.com
b8088299c2 Allow CKM_ECDSA_SHA1 to be multipart. Bug 325494. 
Patch contributed by Andreas Sterbenz <Andreas.Sterbenz@sun.com>
r=nelsonb,relyea,wtc.
 2006-02-02 07:21:56 +00:00
alexei.volkov.bugs%sun.com
ff1923a307 [Bug 325307] infinite loop in SECU_FindCrlIssuer. r=julien 2006-02-02 02:45:02 +00:00
alexei.volkov.bugs%sun.com
fa47026f19 [Bug 324878] crlutil -L outputs false CRL names. r=julien 2006-02-02 02:35:07 +00:00
alexei.volkov.bugs%sun.com
22c94ce3da 325305: minor memory leak in CERT_FindCertByNameString. r=wtc 2006-02-02 00:57:54 +00:00
richm%stanfordalumni.org
943071919b added Windows build instructions - fixed spec file - added patch file for broken coreconf location.mk 2006-02-01 23:39:01 +00:00
sandeep.konchady%sun.com
831a7ad015 Bugzilla bug: 324451. Changed JSS version to 4.2.3. sr=glen, r=alexei 2006-02-01 23:18:57 +00:00
wtchang%redhat.com
db3d31ac92 Bugzilla Bug 318966: implemented the tests for the NIST RNG Validation 
System.  r=glen.beasley.
Modified file: fipstest.c
Added file: rng.sh
 2006-02-01 21:28:25 +00:00
wtchang%redhat.com
c20388e588 Bugzilla Bug 318966: added two RNG functions FIPS186Change_GenerateX and 
FIPS186Change_ReduceModQForDSA to blapi.h for the NIST RNG Validation
System. r=relyea,nelsonb.
Modified files: blapi.h ldvector.c loader.c loader.h prng_fips1861.c
 2006-02-01 21:18:44 +00:00
rrelyea%redhat.com
3ebd845ca9 Bug 319619 "large" ECC private keys cannot be exported through PKCS #11 
1) Change the export encrypted private key function to ask the token the wrap
size rather than trying to figure it out ourselves.

2) Fix the soften to correctly return the size.


r=wtc, nelsonb
 2006-02-01 16:43:47 +00:00
glen.beasley%sun.com
decb139ec2 318970 RSA FIPS tests r=wan-teh sr=bobRelyea 2006-01-31 00:49:40 +00:00
glen.beasley%sun.com
46b88044bc 318970 RSA FIPS tests r=wan-teh sr=bobRelyea 2006-01-31 00:49:02 +00:00
kaie%kuix.de
c5d0e51fc7 bug 323903, further improvements on displaying certificate extensions. 
Patch contributed by Kaspar Brand, supplementing the recent checkin for bug 259031.
r=Martin v. Loewis / kengert
 2006-01-30 23:21:00 +00:00
glen.beasley%sun.com
b4358c2729 318970 RSA FIPS Alg Tests r=wan-teh, sr=bRelyea 2006-01-30 19:58:52 +00:00
nelsonb%netscape.com
2071d2bc7b Fix broken build, caused by c++ style comment in c code. 2006-01-28 02:38:07 +00:00
nelsonb%netscape.com
ddca75b829 Set SSL2 and SSL3 timeout times properly for SSL server session cache. 
Bug 223242. r=jullien.pierre
 2006-01-28 02:21:31 +00:00
kaie%kuix.de
9c3dcd9900 bug 324109, Re-Add ocsp info string in cert manager, that was accidentially removed by a checkin for bug 212459 
r=mscott sr=rrelyea
 2006-01-27 21:12:37 +00:00
glen.beasley%sun.com
bb11f0b846 328967 DSA FIPS tests r=Wan-Teh 2006-01-27 18:53:07 +00:00
wtchang%redhat.com
b1f1c414d0 Removed a blank line that broke the ssl_stress function in ecssl.sh, which 
cannot handle blank lines.
 2006-01-27 18:44:13 +00:00
wtchang%redhat.com
d2bce3f900 Bugzilla Bug 320589: temporary workaround for SEC_SignData ECDSA signature 
generation bug introduced by the previous checkin.
 2006-01-26 23:51:42 +00:00
wtchang%redhat.com
55e2995224 Removed an extraneous semicolon after the last parameter in a function 
declaration.
 2006-01-26 23:21:39 +00:00
gavin%gavinsharp.com
8460174f41 Bug 323010: nsSecretDecoderRing::SetWindow should be NS_IMETHODIMP, not nsresult, patch by Jeff Walden <jwalden@mit.edu>, r+sr=dveditz 2006-01-26 01:06:42 +00:00
sandeep.konchady%sun.com
e7333df0cd Bugzilla bug: 316629. Increased SSLServerSocket timeout from 15 sec to 
90 sec. Smaller timeout was causing the server to die before client connected.
sr=glen.beasley r=alexei.volkov
 2006-01-24 00:42:48 +00:00
nelsonb%netscape.com
6f9d05f035 Remove unnecessary ISALIST test from sparc versions of freebl DSOs. 
Bug 302658. r=jullien.pierre,wtchang
 2006-01-22 08:43:57 +00:00
nelsonb%netscape.com
6a41641124 Make dbck Debug mode work with Softoken. Bug 323570. r=rrelyea. 2006-01-22 06:54:34 +00:00
nelsonb%netscape.com
944db2b329 Don't use variables as structure initializers. Bug 274512. Fix build 
on HPUX.  r=julien.pierre,wtchang
 2006-01-22 06:42:14 +00:00
nelsonb%netscape.com
06c2abf1fa Detect certdb reference leaks at shutdown with assertions. Bug 324103. 
r=rrelyea.
 2006-01-22 06:36:36 +00:00
wtchang%redhat.com
d6b2459e61 Bugzilla Bug 323977: use the "mapfile" (ld version script) on FreeBSD. 
Build the freebl shared libraries with the -Bsymbolic flag for GNU ld.
r=nelsonb.  Thanks to Glenn Randers-Pehrson <glennrp@imagemagick.org> for
reporting this bug and verifying these changes.
Modified files: coreconf/FreeBSD.mk nss/lib/freebl/Makefile
 2006-01-21 02:33:33 +00:00
nelsonb%netscape.com
9633334de2 Plug a cert DB reference leak in softoken, related to trust objects. 
Bug 324103, r=rrelyea
 2006-01-21 02:23:42 +00:00
wtchang%redhat.com
f116200e1d Bugzilla Bug 320589: miscellaneous code cleanup: distinguish between the 
length of the field size and the length of the base point order.  Report
better error codes.  In ECDSA_VerifyDigest, removed unnecessary local
variables and be lenient in the signature lengths we accept.
r=relyea,nelsonb
 2006-01-21 02:14:46 +00:00
julien.pierre.bugs%sun.com
1477ed4b30 Fix for bug 317856 . uninitialized variable correction. r=wtchang 2006-01-20 22:55:15 +00:00
cls%seawood.org
93e4f37f97 Do not attempt to install .chk files when cross-compiling. 
Bug #317620 r=wtc
 2006-01-20 21:52:18 +00:00
nelsonb%netscape.com
6f9e66cf05 Detect NULL server key pair pointer. Bug 321161. r=wtchang. 2006-01-20 17:40:21 +00:00
julien.pierre.bugs%sun.com
91408cf272 Fix for bug 317856 . compiler warnings in strsclnt 2006-01-20 00:43:23 +00:00
rrelyea%redhat.com
26731456ca Bugzilla Bug 95323. Conditionally compile nsscapi. 
r=julien
 2006-01-19 19:55:28 +00:00
nelsonb%netscape.com
58862edcbf change QA test order to be bottom-up. Bug 309412. r=jullien.pierre 2006-01-19 11:59:56 +00:00
nelsonb%netscape.com
e521b0a741 Back out last change, which broke the build. 2006-01-19 02:34:12 +00:00
nelsonb%netscape.com
a3089c6a9d Prevent crash when making new cert8.db from old cert5.db. 
This is not the final solution, but it works.
Bug 320029. r=rrelyea,sr=julien.pierre.  On TRUNK.
 2006-01-19 02:16:30 +00:00
nelsonb%netscape.com
f32a4d3f27 Add new function nsslowcert_DecodeAnyDBEntry. Correct the union 
certDBEntry by adding the missing members. Bug 323570. r=rrelyea.
 2006-01-19 02:09:37 +00:00
nelsonb%netscape.com
446a084b09 Softoken will no longer generate excessive key material for some SSL3 
cipher suites.  Bug 274512. r=rrelyea.
 2006-01-19 01:12:53 +00:00
wtchang%redhat.com
d27a2d48d9 Bugzilla Bug 318217: use the new NSPR functions PR_EmulateAcceptRead and 
PR_EmulateSendFile added in NSPR 4.1.  r=nelsonb.
Modified files: manifest.mn sslimpl.h sslsock.c
Removed file: emulate.c
 2006-01-18 23:06:57 +00:00
julien.pierre.bugs%sun.com
0e9451eaef Fix for bug 319495 . Clean up Makefiles for command-line tools. r=nelson 2006-01-18 22:44:39 +00:00
wtchang%redhat.com
c1b7e30c6f Bugzilla Bug 317620: use "pwd -W" to convert $(DIST) to an absolute 
pathname (ABS_DIST) under MSYS on Windows.  We use the same method to
to define MOZ_BUILD_ROOT in configure.in.  The patch is contributed by
Chris Seawood <cls@seawood.org>.  r=wtc.
 2006-01-18 21:32:27 +00:00
wtchang%redhat.com
ce5e5d7682 Bugzilla Bug 323379: need to set ADDON_PATH for libsoftokn3.so to load 
libfreebl3.so as an add-on on BeOS.  Thanks to Doug Shelton
<doug@sheltonfamily.org>for reporting the bug and verifying the fix.
r=christophe.ravel.
 2006-01-18 20:56:28 +00:00
rrelyea%redhat.com
f822c8f7d0 NSS ECDSA can only sign SHA-1 bug 320583 
r=nelson patch ammended to change SHA-1 to HASH per wtc comment.
 2006-01-17 00:38:59 +00:00
wtchang%redhat.com
7cb9201cf8 Bugzilla Bug 317620: landed NSS 3.11 on the Mozilla trunk. The patch is 
contributed by Kai Engert <kengert@redhat.com>. r=wtc,bsmedberg.
Bugzilla Bug 288647: (security/manager/Makefile.in only) enable building
NSS with system NSPR.  The patch is contributed by Chris Seawood
<cls@seawood.org>.  r=wtc,kengert.
Modified Files:
	Makefile.in browser/installer/unix/config.it
	browser/installer/unix/packages-static
	browser/installer/windows/config.it
	browser/installer/windows/packages-static
	calendar/installer/windows/config.it
	calendar/installer/windows/packages-static
	camino/Camino.xcode/project.pbxproj
	embedding/config/basebrowser-installer-win.pkg
	embedding/config/basebrowser-mac-macho
	embedding/config/basebrowser-qnx
	embedding/config/basebrowser-unix
	embedding/config/basebrowser-win embedding/config/minimo-qnx
	embedding/config/minimo-unix mail/config/basemail-os2
	mail/config/basemail-unix mail/installer/windows/config.it
	mail/installer/windows/packages-static
	minimo/config/linux_package.sh security/manager/Makefile.in
	security/manager/psm.pkg toolkit/mozapps/installer/packager.mk
	xpinstall/packager/packages-os2
	xpinstall/packager/packages-static-unix
	xpinstall/packager/packages-static-win
	xpinstall/packager/packages-unix
	xpinstall/packager/unix/deliver.pl
	xpinstall/packager/win_mfcembed/config.it
	xpinstall/packager/windows/browser.jst
	xpinstall/packager/windows/config.it
	xulrunner/installer/mac/Makefile.in
 2006-01-13 18:09:32 +00:00
wtchang%redhat.com
143f08953f Bugzilla Bug 320497: indicate that we don't need an executable stack. 
r=wolfgang.rosenauer,jpierre.
Modified files: arcfour-amd64-gas.s mpi/mpi_amd64_gas.s
 2006-01-13 17:33:10 +00:00
wtchang%redhat.com
386f28eb50 Bugzilla Bug 317858: gcc on Linux/ppc doesn't recognize the -z defs linker 
flag, so we need to use -Wl to pass it to the linker. r=caillon.
 2006-01-13 17:24:13 +00:00
alexei.volkov.bugs%sun.com
909bcd2da3 HP and AIX cert extension tests failure fix. 2006-01-13 07:59:31 +00:00
wtchang%redhat.com
cdf90d5eb6 Bugzilla Bug 323079: when libsoftoken and libssl load the freebl library, 
first try without resolving symlinks.  If we fail to load the library and
the pathname is a symbolic link, resolve the symbolic link and try again.
r=jpierre. sr=relyea.
 2006-01-12 23:46:31 +00:00
timeless%mozdev.org
8397d43a6a Bug 106386 Correct misspellings in source code 
patch by philippuryear@gmail.com r=timeless rs=brendan
 2006-01-12 07:57:31 +00:00
alexei.volkov.bugs%sun.com
d5a3092f79 cert extension test for 53229: certutil should not use gets(). julien:review+ 2006-01-12 01:09:03 +00:00
richm%stanfordalumni.org
7fcf5652b0 remove svrcore-config 2006-01-12 00:49:35 +00:00
kaie%kuix.de
96d896ee39 Use a new IID for changed interface nsIX509CertDB2, supplemental checkin for bug 316710 
r=rrelyea
 2006-01-12 00:26:19 +00:00
timeless%mozdev.org
916b41ef3d Bug 322429 nsICertPicker is misleading 
r=kaie sr=bz
 2006-01-11 08:29:49 +00:00
kaie%kuix.de
23733e48f0 bug 101996, temp file with guessable name used during p12 import. 
r=rrelyea
 2006-01-10 02:51:24 +00:00
kaie%kuix.de
76c2868c0e bug 137506, Only internal token's keys can be exported 
Patch by Bob Relyea, r=kengert
 2006-01-10 02:29:25 +00:00
kaie%kuix.de
23de42117e bug 149834, Enhance PSM speed by using new NSS API CERT_VerifyCertificateNow 
Patch by John G. Myers, r=kengert
 2006-01-10 02:14:04 +00:00
kaie%kuix.de
b3b97237fb bug 316710, Land some generic crypto backend code, mostly cleanup, some small enhancements 
Patch by Bob Relyea, r=kengert
 2006-01-10 02:07:47 +00:00
richm%stanfordalumni.org
827d15274c added .spec file for building RPM - package is svrcore-devel - a script svrcore-config for getting cflag and ldflag information, and a .pc file for pkg-config 2006-01-06 18:02:35 +00:00
wtchang%redhat.com
0d90a194f0 Bugzilla Bug 318968: fixed the build error with NSS_ENABLE_ECC unset. 
Modified files: Makefile fipstest.c
 2006-01-05 21:49:05 +00:00
wtchang%redhat.com
319fbb6196 Bugzilla Bug 321865: added coreconf files for Solaris 11. The patch is 
contributed by Alfred Peng <alfred.peng@sun.com>. r=wtc.
Added files: SunOS5.11.mk SunOS5.11_i86pc.mk
 2006-01-03 23:02:11 +00:00
cbiesinger%web.de
72ac26b6ce Bug 321504 Remove unneeded uses of nsIDocumentLoader 
r+sr=bz
 2005-12-26 16:45:59 +00:00
kaie%kuix.de
50e1f3ea38 bug 259031, Add support for displaying certificate extensions 
Patch contributed by Martin v. Loewis.
r=kengert/rrelyea/wtchang sr=shaver/rrelyea
 2005-12-25 21:09:45 +00:00
julien.pierre.bugs%sun.com
fb899e04af Fix the build busted by checkin for bug 318968 2005-12-23 03:14:36 +00:00
wtchang%redhat.com
d8c1021594 Bugzilla Bug 318968: added FIPS ECDSA algorithm test. r=glen.beasley. 
Modified file: fipstest.c
Added file: ecdsa.sh
 2005-12-22 22:22:17 +00:00
wtchang%redhat.com
e681f06b4a Bugzilla Bug 318962: combined a PORT_Realloc and a memset call into an 
equivalent PORT_ZAlloc call.  r=glen.beasley.
 2005-12-22 22:19:03 +00:00
wtchang%redhat.com
cb01eaf34d Bugzilla bug 318962: it is legal for PORT_Realloc(oldptr, 0) to return 
NULL, so that shouldn't be treated as a memory allocation failure.
 2005-12-22 01:39:17 +00:00
sandeep.konchady%sun.com
0d963476e9 Bugzilla bug: 320980. Updated common.c and upgraded the JSS version. 
sr=glen.beasley
 2005-12-21 18:39:24 +00:00
glen.beasley%sun.com
784abb2c93 318958 fixing c++/java comment to C 2005-12-21 00:29:44 +00:00
glen.beasley%sun.com
03bbc006b5 318958 fixing Monte Carlo test r=Wan-Teh 2005-12-21 00:13:52 +00:00
glen.beasley%sun.com
3ce12eeea4 318962 buffer fix for SHA Monte Carlo tests r=wan-teh 2005-12-20 18:20:50 +00:00
kaie%kuix.de
f7632288b8 trying to fix SUN bustage 2005-12-20 12:25:21 +00:00
kaie%kuix.de
55526430f9 b=255408 Need to be able to build mozilla --with-system-nss 
r=wtc/bsmedberg
Note: patches for bugs 288647 and 317620 might be required before enabling this build feature works.
 2005-12-20 09:47:11 +00:00
wtchang%redhat.com
3b577f224d Bugzilla Bug 317052: removed the obsolete file lib/base/whatnspr.c from 
CVS.  r=relyea.
Modified Files:
	base.h error.c manifest.mn
Removed Files:
	whatnspr.c
 2005-12-19 17:53:28 +00:00
wtchang%redhat.com
165d7b9185 Bugzilla Bug 272484: code cleanup. keythi.h: remove the unused type 
definition of SEC_PKCS5KeyAndPassword.  p12d.c: We only need to set
p12dcx->currentASafeP7Dcx to NULL if it isn't NULL.  r=relyea.
Modified Files: cryptohi/keythi.h pkcs12/p12d.c
 2005-12-19 17:46:30 +00:00
nelsonb%netscape.com
8888626b36 Fix build. Remove c++ style declaration of loop control variables. 2005-12-17 01:03:12 +00:00
glen.beasley%sun.com
f39056f8e1 318964 implement HMAC algorithm tests for FIPS 140-2 validation r=Wan-teh 2005-12-16 16:57:49 +00:00
rrelyea%redhat.com
4961f4ed28 Mac fixes to ckfw. 2005-12-16 01:57:41 +00:00
rrelyea%redhat.com
ec7b991d91 Add support for the cryptoki crypto functions. This support is necessary for 
capi and mackey. r=kaie
 2005-12-16 00:48:02 +00:00
glen.beasley%sun.com
db00345d74 318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh 2005-12-15 18:50:52 +00:00
glen.beasley%sun.com
e14803c6ab 318962 Added FIPS 140-2 SHA tests and removed FIPS 140-1 SHA tests r=wan-teh 2005-12-15 18:47:20 +00:00
christophe.ravel.bugs%sun.com
a639509a88 Current version is JSS 4.2.1 Beta. 2005-12-14 19:53:48 +00:00
wtchang%redhat.com
cfdbc102fe Bugzilla Bug 320047: mp_to_unsigned/signed/fixlen_octets copies nothing to 
the buffer if the mp_int is zero. r=nelsonb.
 2005-12-14 02:18:35 +00:00
wtchang%redhat.com
fff23fc797 Bugzilla Bug 236245: Updated NSS to "ECC Cipher Suites for TLS" draft 12 
plus upcoming revisions.  The patch is contributed by Douglas Stebila
of Sun Labs <douglas@stebila.ca>. r=wtc.
Modified Files:
	cmd/selfserv/selfserv.c cmd/strsclnt/strsclnt.c
	cmd/tstclnt/tstclnt.c cmd/vfyserv/vfyserv.c lib/ssl/ssl3con.c
	lib/ssl/ssl3ecc.c lib/ssl/ssl3prot.h lib/ssl/sslenum.c
	lib/ssl/sslimpl.h lib/ssl/sslinfo.c lib/ssl/sslproto.h
	lib/ssl/sslsock.c tests/ssl/ecssl.sh tests/ssl/ecsslauth.txt
	tests/ssl/ecsslcov.txt tests/ssl/ecsslstress.txt
	tests/ssl/ssl.sh
 2005-12-14 01:49:40 +00:00
glen.beasley%sun.com
ae4c8fde88 318958 removal of DES and Triple DES 140-1 code r=wan-teh 2005-12-14 01:19:11 +00:00
wtchang%redhat.com
d1a203a963 Bugzilla Bug 320038: ecl/ecl-curve.h: removed unnecessary leading zero byte 
in the base point orders of curves K-233 and K-409.  ec.c: pad the private
key with leading zeros to the length of the base point order.
r=douglas.steblia.
 2005-12-13 22:31:34 +00:00
glen.beasley%sun.com
b6c6d7d561 318958 TDEA algorithm tests for FIPS 140-2 2005-12-09 16:55:53 +00:00
relyea%netscape.com
4092a7d72e Initialize mpi data using mpi macros, not static data bug 319252 
r=douglas
 2005-12-08 23:22:26 +00:00
alexei.volkov.bugs%sun.com
8939047c97 305028: make pretty print utility print hex data in case when data type was not recognized; rw+nelson 2005-12-05 23:09:38 +00:00
kaie%kuix.de
3dd35f343e Backing out patch for bug 259031, 
because of build failures on Windows.
 2005-12-02 23:45:53 +00:00
kaie%kuix.de
e1db14b3c4 Trying to fix bustage from checkin for bug 259031. 2005-12-02 23:38:08 +00:00
kaie%kuix.de
f88b21c047 Bug 220815, Non localisable strings in nsCertPicker.cpp and nsNSSIOLayer.cpp 
r=jgmyers, sr=shaver
 2005-12-02 23:08:44 +00:00
kaie%kuix.de
abe3f8e6c5 Bug 259031, Add support for displaying certificate extensions 
Patch provided by Martin v. Loewis
r=rrelyea r=kengert sr=shaver
 2005-12-02 22:29:14 +00:00
timeless%mozdev.org
053abb8229 Bug 299099 remove useless references to nsVoidArray 
r=kaie sr=bz
 2005-12-01 04:23:37 +00:00
gavin%gavinsharp.com
70f6ede8f0 Bug 316302: remove extra whitespace from locales, and other minor fixes, patch by Hendrik Maryns <hendrik.maryns@uni-tuebingen.de>, r=bsmedberg for /mail, r=kaie for /security, r=mconnor for /toolkit 2005-11-30 03:52:11 +00:00
sandeep.konchady%sun.com
f87d628db7 Bugzilla bug: 318133 
Added synchronized block and isClosed for getInetAddress(),
getLocalAddress(), and getLocalPort(). sr=glen.beasley
 2005-11-29 22:40:28 +00:00
jst%mozilla.jstenback.com
8f1863159b Fixing bug 316794. Moving HandleDOMEvent() and Get/SetDocShell from nsIScriptGlobalObject to nsPIDOMWindow. r=mrbkap@gmail.com, sr=peterv@propagandism.org 2005-11-28 23:56:44 +00:00
relyea%netscape.com
77cb1d9d48 Bug 316925 
Key export does not work on tokens with non-sensitive keys that can't wrap.
r=kaie
 2005-11-24 00:40:14 +00:00
relyea%netscape.com
38154c250e Bug 129303 
NSS needs to expose interfaces to deal with multiple token sources of certs.

r=kaie
 2005-11-23 23:56:38 +00:00
relyea%netscape.com
4b7f9f6804 Bug 129303 NSS needs to expose interfaces to deal with multiple token sources of certs 
r=kaie
 2005-11-23 23:54:15 +00:00
sandeep.konchady%sun.com
3e057e0799 Bugzilla bug:310491 
Missed some System.exit(0) and reverted SigTest.java to original format.
sr=glen.beasley
 2005-11-23 23:40:26 +00:00
relyea%netscape.com
cdcebb8e7e PKCS #11 module to supply Access to the Mac OS X Keychain. 2005-11-23 23:04:08 +00:00
nelsonb%netscape.com
b64584ad16 Fix bug in MP_ALIGN macro that always truncated pointers to 32-bits, 
even on 64-bin platforms.  Bug 298630. r=rrelyea.
 2005-11-23 01:12:34 +00:00
relyea%netscape.com
2537abf9f5 Weave patch: bug 298630 r=nelson 2005-11-22 07:16:43 +00:00
nelsonb%netscape.com
ac287b2f5a Begin building mpcpucache.c. On Sun Studio platforms, build from two 
new .s files.  Bug 298630. r=rrelyea.
 2005-11-22 07:13:32 +00:00
christophe.ravel.bugs%sun.com
0750e1e7ef Turn NSS_BETA off for NSS 3.11 RC2. 
r+ Julien Pierre.
 2005-11-22 01:58:35 +00:00
christophe.ravel.bugs%sun.com
dc5fae9e7c Back to BETA flag on the trunk. 
r+ Julien Pierre
 2005-11-21 18:46:12 +00:00
christophe.ravel.bugs%sun.com
46f08a0c89 Turn NSS_BETA to FALSE for NSS 3.11 RC. 
r+: Julien Pierre.
 2005-11-21 04:08:44 +00:00
alexei.volkov.bugs%sun.com
1f95dbe302 53229: certutil should not use gets(); 
julien rv+; wan-teh sr+
 2005-11-20 01:46:59 +00:00
glen.beasley%sun.com
0afeff6110 313798 AES and RC2 Mozilla-JSS fixes r=sandeep, sr=wan-teh 2005-11-19 00:20:53 +00:00
sandeep.konchady%sun.com
848f2d2a1c Bugzilla id:314098 Modified JSS_VERSION to reflect 4.0200 for 4.2 and 
4.1001 for 4.10.1 when used in the constructor. Human readable values
will still be 4.2 or 4.10.1 sr=wtc
 2005-11-18 22:09:39 +00:00
christophe.ravel.bugs%sun.com
9e6573e0d5 238319: Sun packages changes. 
RPM_RELEASE can be set from the command line.
 2005-11-18 21:52:41 +00:00
nelsonb%netscape.com
94fdf98965 Initialize slot pointer in ssl3_HandleServerHello. Bug 311590. r=wtchang 2005-11-18 01:25:20 +00:00
nelsonb%netscape.com
719073fb14 Restore binary compatilibity for old Fortezza cipher suites. 
Bug 316640. r-glen.beasley
 2005-11-18 01:21:22 +00:00
glen.beasley%sun.com
674c455c2e 311934 socket port values are hard coded in the tests sr=sandeepK 2005-11-17 18:34:31 +00:00
wtchang%redhat.com
c0f9d272c7 Bugzilla Bug 292427: on Windows, search in $(DIST)/lib before $(DIST)/bin 
because in a Mozilla build $(DIST)/bin may contain old copies of the NSS
DLLs. r=relyea,jpierre.
 2005-11-16 02:17:36 +00:00
wtchang%redhat.com
f16cac385e Upgraded to NSPR 4.6 and NSS 3.10.2. 2005-11-16 01:46:01 +00:00
relyea%netscape.com
a8e0c27896 Handle nicknames on certificates. 
Fix bug where we weren't allocating enough space for wchar (wide, utf16, etc).
strings in ckcapi_UTF8ToWide().
 2005-11-16 01:17:25 +00:00
neil.williams%sun.com
15d70374a3 Bug 315135, pk12util -w <non-existent pwfile> causes seg fault. 
r=nelson
 2005-11-16 00:59:18 +00:00
wtchang%redhat.com
0ddc82f39a Bugzilla bug 316594: print the value of the BUILD_OPT environment 
variable. r=sandeep.konchady. sr=glen.beasley.
 2005-11-16 00:01:32 +00:00
nelsonb%netscape.com
f3033246a0 Eliminate leak and heap buffer overrun. Bug 315994. r=julien, sr=rrelyea 2005-11-15 23:40:18 +00:00
julien.pierre.bugs%sun.com
77223c1981 fix for bug 316446 . -z defs option was included twice in linker line . r=nelson 2005-11-15 19:01:18 +00:00
wtchang%redhat.com
32d9fe89fe Bugzilla Bug 312202: use the _32 tag in 32-bit HP-UX IPF builds. Use the 
$ORIGIN linker keyword when building shared libraries and executable
programs on HP-UX IPF. r=nelsonb.
Modified Files: coreconf/HP-UX.mk nss/cmd/platlibs.mk
 2005-11-15 18:19:18 +00:00
relyea%netscape.com
89daf52413 New pk11util scripts. 2005-11-15 01:53:44 +00:00
relyea%netscape.com
868598f26a Add loops, conditionals and simple math. 2005-11-15 01:49:01 +00:00
julien.pierre.bugs%sun.com
59d85a9b9a Fix for bug 232604. don't open DBs in user's directory in shlibsign. r=nelson 2005-11-15 00:34:39 +00:00
gavin%gavinsharp.com
2b0f7108e1 Bug 251123, change "Signed by" in security tooltip to "Authenticated by", to be consistent and more correct, patch by kengert@redhat.com, r=beltzner, sr=dveditz 2005-11-15 00:17:16 +00:00
relyea%netscape.com
af1573d374 Add r/w support. The Capi token can now: 
Import certs and keys.
  Delete certs and keys.
 2005-11-15 00:13:58 +00:00
gavin%gavinsharp.com
c68c0a3427 Bug 251123: HTTPS lock icon does not explain mixed secure/non-encrypted icon when hovering, r=kaie+beltzner, sr=dveditz 2005-11-15 00:13:36 +00:00
sandeep.konchady%sun.com
e5e6b59c19 Bugzilla bug: 310491 
Added System.exit(0) and System.exit(1) where appropriate.  Also removed
references to deprecated code and deprecated the test SigTest.java. This
is now replaced by JCASigTest.java. sr=Glen.Beasley
 2005-11-14 23:23:13 +00:00
wtchang%redhat.com
897e7f1f64 Bugzilla Bug 315496: expose the ability to create sensitive or insensitve 
symmetric keys and public/private key pairs.  The patch is contributed by
Thomas Kwan of Red Hat. r=wtc. sr=glen.beasley.
Modified Files:
	org/mozilla/jss/crypto/KeyGenerator.java
	org/mozilla/jss/crypto/KeyPairGenerator.java
	org/mozilla/jss/crypto/KeyPairGeneratorSpi.java
	org/mozilla/jss/pkcs11/PK11KeyGenerator.c
	org/mozilla/jss/pkcs11/PK11KeyGenerator.java
	org/mozilla/jss/pkcs11/PK11KeyPairGenerator.c
	org/mozilla/jss/pkcs11/PK11KeyPairGenerator.java
 2005-11-14 22:15:06 +00:00
sandeep.konchady%sun.com
c20c35ab39 Bugzilla bug: 314098 
Rounding of double(4) + double(1)/10 to two decimal places gives 4.21.
Fixed this issue.  sr=glen.beasley
 2005-11-14 21:37:32 +00:00
dbaron%dbaron.org
3c95294952 Make PL_InitEvent callers stop doing potentially dangerous casting of function pointers. b=305278 r=dougt sr=darin 2005-11-14 20:09:51 +00:00
julien.pierre.bugs%sun.com
ef1384c27b Fix for bug 316250. crmftest doesn't build on OS/2. Add LIB_PREFIX . 2005-11-14 00:17:21 +00:00
julien.pierre.bugs%sun.com
f82a46ec10 Fix for bug 316219. Don't build an import library on OS/2. r=wtchang 2005-11-14 00:13:41 +00:00
julien.pierre.bugs%sun.com
4f35393d59 Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson 2005-11-12 00:14:25 +00:00
julien.pierre.bugs%sun.com
c5d6929c9f Fix for bug 286685. rename SFTK symbols to SECMOD. r=rrelyea, nelson 2005-11-11 23:36:33 +00:00
bsmedberg%covad.net
78f6d0683d Bug 313309 part 2 - change the NS_DEFINE_STATIC_IID_ACCESSOR macro to NS_DECLARE, and make a NS_DEFINE_ macro that's outside the class declaration, r=shaver 2005-11-11 14:36:26 +00:00
kaie%kuix.de
01e04345d6 bug 265991, Can't import a pfx file encrypted with an empty password 
r=wtchang, sr=dveditz
 2005-11-11 13:28:56 +00:00
julien.pierre.bugs%sun.com
7c97b65b2b Fix for bug 315033 . Remove dead command-line tool sources. r=nelson 2005-11-11 04:02:16 +00:00
julien.pierre.bugs%sun.com
f0de63d8ed Fix for 292156. Prevent crash in SSL session cache init if invalid arguments are passed. r=nelson 2005-11-11 02:45:59 +00:00
julien.pierre.bugs%sun.com
e5fca3df1d Fix for bug 292156. Add -C SSLCacheEntries option to selfserv. r=nelson 2005-11-11 02:44:56 +00:00
julien.pierre.bugs%sun.com
15a23c7092 Fix for 166727 . certutil should not call CERT_GetDBContentVersion. r=nelson 2005-11-10 21:18:26 +00:00
julien.pierre.bugs%sun.com
f98d49a913 Remove dead config.mk files for modutil and ssltap. Fix for 294720. r=nelson 2005-11-10 03:00:05 +00:00
julien.pierre.bugs%sun.com
7e9a679a65 Resolve symlinks when loader freebl shared libs, and limit iterations to 20. r=wtchang 2005-11-10 02:18:22 +00:00
kaie%kuix.de
0fdc7201d3 bug 126601, "Web" should be "web" in Master Password pref panel 
patch by Henrik Lynggaard Hansen, working change only, r=brendan, r=kengert
 2005-11-09 15:32:24 +00:00
wtchang%redhat.com
560f560f03 Bugzilla Bug 311432: renamed USE_FP_CODE as ECL_USE_FP. Do not set 
ECL_USE_FP to 1 on Linux x86 to work around the bug.  Moved a dependency
rule to the appropriate section of the makefile. r=nelsonb.
 2005-11-08 22:03:17 +00:00
wtchang%redhat.com
4c003bfe53 Improved a comment. Suggested by Nelson Bolyard of Sun. r=wtc. 2005-11-08 22:00:46 +00:00
kaie%kuix.de
df2f98120c bug 200119, crash when I shutdown (StopCRLUpdateTimer) [@ nsHashtable::Reset ] 
r=darin, sr=bienvenu
 2005-11-08 17:49:52 +00:00
alexei.volkov.bugs%sun.com
71d67849a3 fix for 313680: add missing TLS cipher types to SSLTAP. r=nelson 2005-11-07 23:54:33 +00:00
christophe.ravel.bugs%sun.com
e748b37142 238319: Sun packages changes 
Set rpm release to 2 for NSS 3.11
 2005-11-07 20:20:10 +00:00
christophe.ravel.bugs%sun.com
d348103b57 238319: Sun packages changes 
Reset rpm release to 1 for JSS 4.2
 2005-11-07 20:19:05 +00:00
wtchang%redhat.com
ff785bd766 Bugzilla Bug 298522: added power-up self tests for HMAC SHA-384 and HMAC 
SHA-512.  The patch was written by Glen Beasley of Sun. r=wtc.
 2005-11-07 19:05:45 +00:00
wtchang%redhat.com
4029572119 Bugzilla bug 313196: include the minimal headers. 2005-11-07 19:00:58 +00:00
wtchang%redhat.com
126f513f21 Bugzilla Bug 313196: checked in a header inclusion change that I missed in 
the previous checkin.
 2005-11-07 18:48:39 +00:00
wtchang%redhat.com
1714be323f Bugzilla Bug 313196: HMAC code should not use a fixed hash input block size 
of 64 bytes, which is wrong for SHA-384 and SHA-512.  This requires adding
the hash input block size to the SECHashObject structure. r=relyea,nelsonb
Modified Files:
	cryptohi/hasht.h cryptohi/sechash.c freebl/alghmac.c
	freebl/blapit.h freebl/rawhash.c
 2005-11-07 18:44:21 +00:00
wtchang%redhat.com
d576bf2833 Replaced the magic constant 20 by SHA1_LENGTH. Use sizeof(buffer) to 
be more robust. r=nelsonb
 2005-11-05 01:00:14 +00:00
relyea%netscape.com
ce75b22933 replace missing header files. 2005-11-04 23:44:19 +00:00
glen.beasley%sun.com
4c538f769b 313176 jss version 4.2 because JSS needs NSS 3.11 and up for bypass sr=sandeep 2005-11-04 23:16:43 +00:00
wtchang%redhat.com
1ce181b01e Bugzilla Bug 311958: Update the nssckbi versions for NSS 3.11. r=relyea. 2005-11-04 22:51:55 +00:00
julien.pierre.bugs%sun.com
799adefa45 Move ret_cr16.s from util to freebl. r=nelsonb 2005-11-04 04:11:04 +00:00
relyea%netscape.com
3597080dab Initial CAPI PKCS #11 Module. 
Needs the updated ckfw.
 2005-11-04 02:05:04 +00:00
wtchang%redhat.com
898c89fc45 Bugzilla Bug 298512: Ensure the seed and seed key input for RNG do not have 
same value for FIPS 140-2. r=nelsonb.
 2005-11-04 01:07:30 +00:00
julien.pierre.bugs%sun.com
f1c5542df0 Remove dead files. r=wtchang 2005-11-04 01:02:50 +00:00
julien.pierre.bugs%sun.com
bd999cb1b2 Remove nmake Makefiles and references to them. r=nelson 2005-11-04 01:01:37 +00:00
julien.pierre.bugs%sun.com
4fb160cf44 Remove dead files. r=wtchang 2005-11-04 00:48:41 +00:00
glen.beasley%sun.com
3033b29443 311934 added PORT_JSSE_SERVER and PORT_JSSE_SERVER plus testing bypass r=sandeep 2005-11-03 23:30:38 +00:00
glen.beasley%sun.com
972005ad9a 313176 allow JSS to enable more NSS SSLOptions r=wtc, sr=nelson 2005-11-03 23:09:26 +00:00
kaie%kuix.de
f242eb6db4 fix bug 252436, non-ascii characters not recognized by master password dialog 
r=dbaron, sr=shaver
 2005-11-03 11:25:53 +00:00
sandeep.konchady%sun.com
d4966d18a9 Bugzilla id: 314583, removed linking of JVM to JSS library and replaced 
reference to classes.zip with rt.jar.
 2005-11-03 00:11:59 +00:00
bsmedberg%covad.net
9f17e5b53d Bug 314821 - stop building dist/gre because nobody uses it and all plans to use it have evaporated, r=cls+dougt 2005-11-02 21:50:36 +00:00
wtchang%redhat.com
e5bbe64221 Import NSPR 4.6 and NSS 3.10.2 temporarily. We will import NSPR 4.6.1 
and NSS 3.11 when they are released.
 2005-11-01 19:00:12 +00:00
wtchang%redhat.com
5ae998a3cd Bugzilla Bug 308242: expose the opFlags and the temporary/permanent 
attributes of PK11_TokenKeyGenWithFlags. r=glen.beasley.
Modified Files:
	crypto/KeyGenerator.java crypto/SymmetricKey.java
	pkcs11/PK11KeyGenerator.c pkcs11/PK11KeyGenerator.java
 2005-11-01 18:38:47 +00:00
julien.pierre.bugs%sun.com
da619f8dec Fix for 314115 . Comments about QuickDER and classic ASN.1 decoders relating to SECItem.type field 2005-10-31 18:52:20 +00:00
julien.pierre.bugs%sun.com
3e221bfb46 Fix for 314115 - QuickDER modifies SECItem.type while decoding. r=wtchang 2005-10-31 18:34:42 +00:00
neil%parkwaycc.co.uk
7fe9ea373d Bug 289444 Adding access keys p=giacomo.magnini@portalis.it r=kaie sr=me 2005-10-30 11:21:44 +00:00
sandeep.konchady%sun.com
b851582ca9 Bugzila bug : 314098 Changed Double to Double.doubleValue() in constructing java.Security.Provider(). sr=wtc 2005-10-28 22:22:44 +00:00
cvshook%sicking.cc
64a0fbd45f Bug 311827: Make GetAttr return a bool rather then an nsresult. 
r/sr=bz
 2005-10-28 11:25:24 +00:00
sandeep.konchady%sun.com
99af98bd06 Bugzilla bug : 314098. Modified JSS provider version to 4.1.1 in 
JSSProvider.java. Reflected this information in all places that needs
to be changed when there is a change in JSS version. r=wtc
 2005-10-28 04:21:16 +00:00
wtchang%redhat.com
2d980ccd93 Bugzilla bug 314089: On HP-UX, use rt.jar instead of classes.zip; for JDK 
1.4 or later use the "server" JVM.  Fixed an error in the pathname of
rt.jar for Linux. r=sandeep.konchady.
 2005-10-28 00:20:38 +00:00
wtchang%redhat.com
e9ee302906 Bugzilla Bug 302212: set DARWIN_SDK_DSOFLAGS and pass -F arguments to ld 
when GCC <= 3.  Contributed by Mark Mentovai <mark@moxienet.com>. r=wtc.
 2005-10-28 00:06:56 +00:00
wtchang%redhat.com
8732358f93 Bugzilla bug 239960: cvs removed cmd/swfort. r=relyea. 2005-10-27 22:49:22 +00:00
wtchang%redhat.com
63eff804d1 Bugzilla Bug 308242: added the extractablePairs method to KeyPairGenerator 
to make the new PK11_ATTR_EXTRACTABLE/PK11_ATTR_UNEXTRACTABLE flags of the
new PK11_GenerateKeyPairWithFlags function available to JSS.  r=nkwan.
sr=glen.beasley.
Modified Files:
        crypto/KeyPairGenerator.java crypto/KeyPairGeneratorSpi.java
        pkcs11/PK11KeyPairGenerator.c pkcs11/PK11KeyPairGenerator.java
 2005-10-27 20:47:26 +00:00
wtchang%redhat.com
40145d9911 Bugzilla Bug 302212: allow Mac OS X x86 builds to target SDKs. The patch 
was written by Mark Mentovai <mark@moxienet.com>. r=joshmoz. sr=bryner.
Modified Files:
	configure.in config/autoconf.mk.in config/config.mk
	extensions/java/xpcom/tools/xpidl/Makefile.in
	security/manager/Makefile.in xpcom/typelib/xpidl/Makefile.in
 2005-10-26 19:01:18 +00:00
wtchang%redhat.com
b5bdaf152c Bugzilla Bug 302212: allow Mac OS X x86 builds to target SDKs. The patch 
is contributed by Mark Mentovai <mark@moxienet.com>. r=wtc,joshmoz.
 2005-10-26 17:00:07 +00:00
darin%meer.net
41f1ce15e8 fixes bug 271194 "When going from a secure to a non-secure page without clicking a button in the security dialog, the non-secure page appears as secure" patch by kai, r=dveditz, sr=darin 2005-10-21 18:33:26 +00:00
wtchang%redhat.com
8e70cf6f2e Bugzilla bug 298522: added power-up self tests for HMAC SHA-1 and HMAC 
SHA-256.  The patch is contributed by Glen Beasley of Sun. r=wtc.
 2005-10-20 21:46:51 +00:00
wtchang%redhat.com
7b145dd9ac Bugzilla bug 312774: support building and running the test with IBM JDK. 
Removed the class name and provider name of the SUN provider.  Instead,
we compare our message digest result with the result of all providers that
support the message digest algorithm.  The patch is contributed by Rich
Megginson of Red Hat and improved by Glen Beasley of Sun. r=wtc.
 2005-10-19 01:17:44 +00:00
wtchang%redhat.com
5d658b3517 Build fipstest. 2005-10-19 01:14:20 +00:00
julien.pierre.bugs%sun.com
c3b3a7e2c1 Add dependency on freebl so ssl will rebuild if freebl has changed. 2005-10-19 01:04:16 +00:00
julien.pierre.bugs%sun.com
4c37a26617 Add dependency on freebl so softoken will rebuild if freebl has changed. 2005-10-19 01:03:31 +00:00
wtchang%redhat.com
cc8b26183b Added a shell script for running the NIST AES Algorithm Validation Suite. 2005-10-19 00:55:20 +00:00
wtchang%redhat.com
41c3b79ae3 Bugzilla bug 312774: support building with IBM JDK on Linux. Added -L 
linker flags for IBM JDK's pathnames.  The patch is contributed by Rich
Megginson of Red Hat. r=wtc,glen.beasley.
 2005-10-18 22:36:19 +00:00
darin%meer.net
a6f6369c29 fixes bug 304286 "Certificate failures during automatic check for updates should not give user choice to connect anyway" r=biesi sr=dveditz 2005-10-15 02:46:06 +00:00
wtchang%redhat.com
d2dee7d603 Bugzilla Bug 312395: Added FIPS AES Known Answer Test, Multi-block Message 
Test, and Monte Carlo Test in ECB and CBC modes.  Also changed the types
of some variables from int to unsigned int to fix compiler warnings about
signed/unsigned comparisons.
 2005-10-14 20:04:39 +00:00
wtchang%redhat.com
e58492ea00 Bugzilla bug 311440: ssl3_ConsumeHandshakeVariable now longer returns a 
SECItem pointing to memory allocated with PORT_Alloc, so we don't need to
use PORT_Free to free the SECItem's buffer.  r=nelsonb.
 2005-10-14 16:48:58 +00:00
wtchang%redhat.com
b957c8d0a7 Bugzilla Bug 312202: checked in HP-UX IPF (Itanium) porting changes 
contributed by Grace Lu of HP.  Use the .so suffix for shared libraries
on HP-UX IPF.  Support building on HP-UX B.11.23. r=wtc.
Modified Files:
	coreconf/HP-UX.mk nss/lib/nss/nssinit.c
Added Files:
	coreconf/HP-UXB.11.23.mk
 2005-10-12 19:04:13 +00:00
wtchang%redhat.com
2193d926c7 Bugzilla Bug 302998: disallow x=0,1 and k=0. r=nelsonb. 2005-10-12 00:48:25 +00:00
neil.williams%sun.com
8657972540 CBug 290263, patch CERT_CreateCertificateRequest for doing extensions 
r=bob
`VS: ----------------------------------------------------------------------
 2005-10-12 00:10:17 +00:00
wtchang%redhat.com
b0f84afae7 Bugzilla Bug 311074: cvs removed the unused nfspwd.pl script (which only 
worked on the old Netscape intranet). r=relyea.
Modified Files: OS2.mk command.mk rules.mk
Removed Files: nsinstall/nfspwd nsinstall/nfspwd.pl
 2005-10-10 23:46:13 +00:00
relyea%netscape.com
f8422acc69 Attempt to fix HPUX test failures. 
Bug 311279 crmftest core dumps on HP-UX
(verbal) r=wtc
 2005-10-08 00:57:31 +00:00
wtchang%redhat.com
491b4ef092 Bugzilla Bug 304360: generate ECC key with private key value less than the 
group order using a combination of ANSI X9.62 A.4.1 and FIPS 186-2 Change
Notice 1.  Also changed structure of EC key generation functions to match
the scheme used in dsa.c.  The patch is contributed by Douglas Stebila
<douglas@stebila.ca> of Sun Labs. r=wtc.
 2005-10-06 23:16:20 +00:00
wtchang%redhat.com
81299cbc68 Bugzilla Bug 257693: set the correct error code in EC_ValidatePublicKey. 
Documented the return values of ECPoint_validate.  Have the tests compare
the return value of ECPoint_validate with MP_NO for negative test cases.
r=doublas.stebila.
Modified Files:
	ec.c ecl/ecl.h ecl/tests/ec2_test.c ecl/tests/ecp_test.c
 2005-10-06 21:42:55 +00:00
wtchang%redhat.com
a548d37af0 Bugzilla Bug 311074: removed the unused nfspwd Perl script from TARGETS, 
which caused "gmake clean" to break on a read-only source tree.  The patch
is contributed by Benjamin Smedberg <benjamin@smedbergs.us>. r=wtc.
 2005-10-05 22:25:37 +00:00
wtchang%redhat.com
d420dda744 Bugzilla bug 259135: fixed build breakage. In C, declarations must precede 
code.
 2005-10-05 22:03:14 +00:00
wtchang%redhat.com
002c9cc505 Bugzilla bug 259135: minor comment fix. 2005-10-05 17:58:01 +00:00
glen.beasley%sun.com
2ae43f58d5 171027 removed deprecated code from tests ran by all.pl sr=sandeep 2005-10-05 17:09:03 +00:00
glen.beasley%sun.com
814a61d561 259135 added SHA 256,384,512 and AES powerupself tests sr=Wan-Teh 2005-10-05 16:31:01 +00:00
relyea%netscape.com
b0d1e52691 Back out non-reviewed strictly white space change in pk11sdr.c 2005-10-04 01:11:01 +00:00
wtchang%redhat.com
1a02e7736f Made the test compile and link without errors. 2005-10-04 00:46:50 +00:00
wtchang%redhat.com
775508c3c2 Fixed test file line endings. This file must be considered part of the 
NSS module because it needs the private NSS header blapi.h.
 2005-10-04 00:35:51 +00:00
wtchang%redhat.com
3fad97d84a Fixed test file line endings. 2005-10-04 00:28:55 +00:00
wtchang%redhat.com
058312eaa6 Bugzilla bug 310518: map CKR_PIN_INVALID and CKR_PIN_LEN_RANGE to 
SEC_ERROR_INVALID_PASSWORD instead of SEC_ERROR_BAD_PASSWORD. r=relyea.
 2005-10-03 22:41:45 +00:00
relyea%netscape.com
2fcee3f720 remove depricated mechanisms so pk11table continues to build. 2005-10-03 22:19:43 +00:00
relyea%netscape.com
5c3685a18e Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
r=wtc [part 3 of 3]
 2005-10-03 22:01:57 +00:00
relyea%netscape.com
0cefb4acd8 Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
r=wtc [part 2 of 3]
 2005-10-03 22:00:22 +00:00
relyea%netscape.com
0223a07982 This change was not part of bug 272484 and has not been reviewed. 
Back it out.
 2005-10-03 21:58:24 +00:00
relyea%netscape.com
53f4189369 Bug 272484 Certificate manager crashes [@ _PR_MD_ATOMIC_DECREMENT - PK11_FreeSymKey] 
The problem only happens if we try to import a key into a token which then fails
to import. The basic issue was a hack in the pkcs 7 code to support PKCS 12, A
special structure was used to replace the SymKey structure, and the code 'knew'
the special structure existed before it dealt with the symkey. The fix addes a
new capability to symkeys, where applications can attach application specific
data to the key structure. PKCS 12 uses this to attache the PBE information
for CMS. (part 1 of 3)

This patch also improves the key's reuse of sessions, so sessions are not thrashed
when SSL is used with them.

r=wtc
 2005-10-03 21:55:29 +00:00
bugzilla%arlen.demon.co.uk
a2056d8b42 Bug 309542 Fix a11y problems and crop="right" is deprecated in page info dialog 
p=me r=db48x sr=neil.parkwaycc.co.uk
 2005-10-02 00:09:37 +00:00
wtchang%redhat.com
5d52123474 Bugzilla Bug 294106: removed an assertion that's no longer necessary. 
Added buffer length error checking to back up an assertion. r=nelsonb.
 2005-09-30 22:01:46 +00:00
relyea%netscape.com
bb7e1cb9f9 Bugzilla Bug 244922 ASN.1 encoder outputs trash for optional may-stream subtemplate 
r=nelson (original patch by nelson, modifications by me).
 2005-09-30 19:22:48 +00:00
christophe.ravel.bugs%sun.com
f25e5155ef 238319: Sun packages changes. 
Add an extra line to the copyright file to have the same as NSS and NSPR.
 2005-09-30 01:56:59 +00:00
relyea%netscape.com
b354997d97 Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported 
wtc's review r=wtc
 2005-09-29 23:44:39 +00:00
wtchang%redhat.com
5c38b2d572 Bugzilla Bug 294106: dsa.c: use const in the function prototype of 
DSA_GenerateGlobalRandomBytes.  prng_fips1861.c: implemented Algorithm 1
of FIPS 186-2 Change Notice 1 and increased the size (b) of the RNG's
seed-key from 160 bits to 256 bits. r=relyea,nelsonb.
 2005-09-29 23:22:53 +00:00
relyea%netscape.com
952e8e8f45 Tests won't pass if we don't build crmftest 2005-09-29 22:01:52 +00:00
relyea%netscape.com
f07ca5cfef Bug 308887 CRMF request generation problem when using latest firefox 
Add crmf tests to the test suite.
 2005-09-29 21:36:42 +00:00
relyea%netscape.com
9c9cecb9d7 Bugzilla Bug 119500 PKCS#11 CKF_PROTECTED_AUTHENTICATION_PATH token flag not supported 
r=nelson

This is only the NSS portion of this patch. The PSM portion will be checked in once the
NSS portion is mainlined to mozilla.
 2005-09-29 21:00:58 +00:00
sandeep.konchady%sun.com
913985ea4b Bugzilla Bug 164692 SSL ops that timeout should throw 
java.net.SocketTimeoutException. sr=Glen.Beasley
 2005-09-29 18:48:34 +00:00
wtchang%redhat.com
fc511c7607 Bug 271317, remove the old fortezza code 2005-09-29 18:09:11 +00:00
relyea%netscape.com
93e1f22027 Bugzilla Bug 298630 freebl needs a memory cache invariant RSA implementation. 
r=nelson
 2005-09-29 17:17:09 +00:00
relyea%netscape.com
b8917d3493 Add better tests for detached signatures. Actually test the other sha 
variants rather than just say we do. done in the context of bug 30887
r=nelson
 2005-09-29 17:14:19 +00:00
smontagu%smontagu.org
159e0a2eab Make the dates shown in the Expired Certificate alert have consistent (short) format. Bug 246905, patch by Constantine A. Murenin <cnst+bmo@bugmail.mojo.ru>, r=jgmyers, sr=brendan 2005-09-29 08:41:22 +00:00
relyea%netscape.com
665d2accd1 Bug 271317, remove the old fortezza code 2005-09-29 00:36:53 +00:00
relyea%netscape.com
8d4f93463a Internal NSS defines shared between softoken and the rest of NSS, but not 
exported.

added as part of bug 305697.
 2005-09-28 23:52:59 +00:00
wtchang%redhat.com
6fe5b3ee79 Bugzilla Bug 310336: support building on Windows Server 2003. 
r=Sandeep.Konchady.
 2005-09-28 23:14:44 +00:00
relyea%netscape.com
c4abacd281 Bug 305697 Softoken needs to give on the fly access to additional databases. Part 2, User interface 
r=julien
 2005-09-28 17:17:49 +00:00
relyea%netscape.com
e35607b9c4 bug 305697: open additional database on the fly in softoken. part1: softoken changes. 
r=julien
 2005-09-28 17:12:17 +00:00
nelsonb%netscape.com
ac626ee74e Avoid NULL ptr deref. Bug 310260. patch by Glen.Beasley. r=nelson. 2005-09-28 07:55:37 +00:00
wtchang%redhat.com
3a398b46ec Bugzilla bug 298045: when importing a package of CA certs, display and ask 
the user to trust the root most CA (instead of the leaf most CA) in the
package.  Also make sure that the cert is indeed a CA cert.  r=kaie,relyea.
sr=sfraser.
 2005-09-26 22:43:22 +00:00
neil.williams%sun.com
7b415783ba Bug 303508, committing attachment 196965. r=nelson,saul 2005-09-23 02:15:03 +00:00
nelsonb%netscape.com
abc6a22d68 Eliminate environment variable SSLNOLOCKS, add environment variable 
SSLFORCELOCKS. Make SSL_FDX option mutually exclusive with SSL_NOLOCKS
option.  Bug 305147. r=rrelyea.
 2005-09-23 01:04:32 +00:00
nelsonb%netscape.com
facd708671 Don't crash when printing an ASN.1 NULL primitive with a NULL prefix 
string.  Bug 309651. r=wtchang.
 2005-09-22 22:45:32 +00:00
wtchang%redhat.com
343315772e Bugzilla bug 309640: replaced the French accented a (�) with ASCII a 
because IBM JDK can't handle that 8-bit character in UTF8 locales.  The
patch is contributed by Rich Megginson of Red Hat. r=wtc,glen.beasley.
 2005-09-22 17:58:35 +00:00
christophe.ravel.bugs%sun.com
3f8cd3784d Unset Beta flag to sync up JSS 4.1.1 RTM with NSS 3.10.2 RTM build date. 2005-09-21 21:06:54 +00:00
nelsonb%netscape.com
d05886f50d Add version info to freebl shared libs for Windows and Unix. bub 303508. 
Modified Files:  config.mk ldvector.c manifest.mn
Added Files:     freebl.rc freeblver.c                 r=wtc.
 2005-09-21 03:01:49 +00:00
nelsonb%netscape.com
f12a0e5a63 Replace "fast" and "slow" with fpu and int in loader.c. Also add a 
comment explaining ISA lists.  r=wtc. bug 303508.
 2005-09-21 02:53:25 +00:00
wtchang%redhat.com
73f597f990 Bug 299197: added the comment for PK11_TokenKeyGen back. r=relyea. 2005-09-21 01:32:11 +00:00
wtchang%redhat.com
ecdf90d92d Bug 299197: fixed comments. r=relyea. 2005-09-21 01:31:37 +00:00
db48x%yahoo.com
acc7931e28 fix bug 217611: Page Info can be opened multiple times 
patch by Jason Barnabe (np) <jason_barnabe@fastmail.fm>, r=mconnor
 2005-09-21 01:12:29 +00:00
relyea%netscape.com
aa8a2c0490 Only call C_WaitForSlotEvent if the module is PKCS #11 v2.01 or later. 
bug 196811 r=wtc sr=julien
 2005-09-20 20:56:07 +00:00
julien.pierre.bugs%sun.com
b8d9f0ef9a Fix for 293686. Check status from SECU_ParseCommandLine. r=nelson 2005-09-20 05:13:01 +00:00
julien.pierre.bugs%sun.com
48b2d654bd Fix for 292390. NSS tools with missing command-line operands cause crash. r=nelson 2005-09-19 20:59:46 +00:00
julien.pierre.bugs%sun.com
7e8884e00e Fix for 293686 . signver has command-line options with optional arguments. r=nelsonb 2005-09-19 20:52:11 +00:00
christophe.ravel.bugs%sun.com
41da874bf6 238319: Sun packages changes. 
Change libfreebl name on Solaris x86 (following changes from Bugzilla 303508).
 2005-09-19 19:12:24 +00:00
bzbarsky%mit.edu
1d3384b1c6 Only do expensive GetName() calls if we're actually logging. Bug 304847, 
r=kaie, sr=dmose
 2005-09-19 03:23:21 +00:00
cst%andrew.cmu.edu
7ce62d0cd1 Bug 284636 Fix typo in Website Certified by an Unknown Authority alert 
Patch by stephend and Kurt <supernova_00@yahoo.com> r=kaie sr=bzbarsky
 2005-09-19 00:05:02 +00:00
wtchang%redhat.com
13f41d4840 Bugzilla bug 303508: a more elegant way to decide when we need to prefix 
LIBRARY_VERSION with '_'. r=nelsonb.
 2005-09-16 23:18:01 +00:00
julien.pierre.bugs%sun.com
d42e92ad88 Fix hoarked build from previous checkin. Doh. 2005-09-16 21:28:20 +00:00
wtchang%redhat.com
b427dc6efe Bugzilla Bug 298517: when in FIPS mode, impose minimum password length and 
quality to ensure a password guessing probability of less than 1 in
10,000,000, and impose a one second delay after failed login attempt to
allow at most 60 login attempts per minute.  r=relyea,nelsonb.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
 2005-09-16 20:37:58 +00:00
julien.pierre.bugs%sun.com
c56d3589f6 Fix for bug 127960 . Add SSL force handshake APIs which take a timeout . r=nelson 2005-09-16 20:33:09 +00:00
smfr%smfr.org
8bda56063a Fix bug 307293: make sure we initialize the mType and mTag members of nsNSSASN1Object. r=wtchang, sr=rrelyea. 2005-09-16 18:57:55 +00:00
wtchang%redhat.com
2e75eae9d5 Bugzilla Bug 288728: handle invalid values of recipient identifier type. 
r=jpierre,relyea.
 2005-09-16 17:54:31 +00:00
wtchang%redhat.com
019a13cbeb Bugzilla Bug 288728: use a whitelist instead of a blacklist when checking 
for invalid values of "type". r=jpierre,relyea.
 2005-09-16 17:52:37 +00:00
wtchang%redhat.com
dcad184fa4 Bugzilla Bug 303508: removed the underscore from the name of the "single" 
freebl shared library (freebl_3.dll -> freebl3.dll).  Do the recursive
child builds without changing directories.  This fixed the BUILD_TREE build
problem. r=nelsonb,saul.edwards.
Modified files: Makefile freebl.def manifest.mn
 2005-09-16 17:17:45 +00:00
wtchang%redhat.com
d67071df3f Bugzilla Bug 303508: enhanced the makefile rule for $(MAPFILE). Added 
the new variable MAPFILE_SOURCE instead of the hardcoded
$(LIBRARY_NAME).def to represent the "source" mapfile, and use $< to
refer to the "source" mapfile (prerequisite of the target) in
PROCESS_MAP_FILE. r=nelsonb.
Modified Files:
	AIX.mk BSD_OS.mk Darwin.mk FreeBSD.mk HP-UX.mk IRIX.mk
	Linux.mk Linux2.1.mk Linux2.2.mk Linux2.4.mk Linux2.5.mk
	Linux2.6.mk NCR3.0.mk NEC4.2.mk NetBSD.mk OS2.mk OSF1.mk
	OpenUNIX.mk OpenVMS.mk ReliantUNIX.mk SCO_SV3.2.mk SunOS5.mk
	UNIXWARE2.1.mk WIN16.mk WIN32.mk WINCE.mk rules.mk ruleset.mk
 2005-09-16 17:09:23 +00:00
wtchang%redhat.com
65241f7ef4 Removed an unnecessary -L linker flag. r=nelsonb,saul.edwards. 2005-09-16 17:02:49 +00:00
wtchang%redhat.com
3eac80068d Bugzilla Bug 303508: code cleanup. r=nelsonb,jpierre. 2005-09-16 16:59:22 +00:00