chrisk%netscape.com
c2fdb05c18
Added and corrected some comments
...
Added $layercounter
Clarified $boundary generation (a boundary has leading AND trailing CRLFs!)
2000-06-23 18:37:33 +00:00
chrisk%netscape.com
d705ca0332
Preliminary checkin at a state where smime can parse messages generated
...
by itself.
2000-06-23 16:40:31 +00:00
chrisk%netscape.com
3902194f5b
Added some comments and asserts
2000-06-21 18:12:02 +00:00
chrisk%netscape.com
92a3672caa
Oops - fixed the fix. The prototype now correctly unpacks into a
...
DHPublicKey structure.
2000-06-21 00:04:38 +00:00
chrisk%netscape.com
a83d527722
Fix OID for DC AVAs - the root OID in RFC2247 is not different from
...
the root OID in RFC1274 - so the one we had was WRONG.
I don't know where it came from.
2000-06-20 16:31:31 +00:00
chrisk%netscape.com
390a6f1dec
Add code for generation of SMIMEProfile and SMIMEKeyEncryptionPreference
2000-06-20 16:28:59 +00:00
chrisk%netscape.com
23cd2f3659
First feeble attempt at fixing the problem that our definition of
...
Diffie-Hellman key parameters does not encompass all the optional
fields defined in RFC2459, section 7.3.2 (namely j and validationParams).
I added comments reminding us of the fact that PQGParams need to be
extended to hold these, and fixed the ASN1 prototype from its previous
totally broken status to one that decodes prime, subPrime and base
correctly, and skips the rest.
This avoids failure in public key extraction (which is part of verification)
with DH certs.
2000-06-20 16:22:36 +00:00
chrisk%netscape.com
3550ea9e23
Fix problem where DH certs were always rejected when verifying them
...
for EMail encryption.
A Diffie-Hellman key needs to be tested for KU_KEY_AGREEMENT, not
KU_KEY_ENCIPHERMENT.
2000-06-20 16:15:32 +00:00
chrisk%netscape.com
568524e3be
Fixed bug in sequence printing code: array counter was overshooting by one
2000-06-20 14:35:17 +00:00
chrisk%netscape.com
c8e8241728
Fix bug in decoder:
...
When encoding indefinitely & encountering an optional field at the end of
a sequence, right after an IMPLICIT or POINTER template, the decoder
was not propagating the optionalness and the end-of-contents condition
correctly as it hits the end-of-contents octets instead of the optional
field. This is because IMPLICIT and POINTER push TWO states to look
for the next tag, not just one.
(The first state is "afterImplicit" or "afterPointer", the second one
starts with "beforeIdentifier" as usual).
This finally makes decoding envelopedData messages in cmsutil work.
2000-06-20 13:24:01 +00:00
thayes%netscape.com
4cd82c9914
Fix double free of item value that is in an arena.
2000-06-16 23:26:16 +00:00
mcgreer%netscape.com
5c4d045072
attempt to add token support for listing certs & keys
2000-06-16 00:38:44 +00:00
mcgreer%netscape.com
1a4bf955be
more cleanup on cert listing
2000-06-16 00:36:43 +00:00
chrisk%netscape.com
9f56a873d3
Add generation of SMIMECapabilities
2000-06-14 23:17:52 +00:00
chrisk%netscape.com
fa197d9014
canonicalization step adds CRs to LFs only of there are no CRs present.
2000-06-14 23:15:06 +00:00
chrisk%netscape.com
9cbdb3d252
Make example 5.7 of ietf-smime-examples draft decode correctly
...
(we still cannot look up certs by SubjectKeyID, so it won't verify)
2000-06-14 23:12:48 +00:00
beard%netscape.com
32dc89c957
(not part of build) added mozilla/security/nss/lib/smime to access paths.
2000-06-14 03:16:41 +00:00
chrisk%netscape.com
f7113ab1b2
Merge smimetk_branch to tip...
2000-06-13 21:56:37 +00:00
relyea%netscape.com
d43393b11b
reuse old key structures on a given token rather than building it up and
...
tearing it down every time.
2000-06-13 21:37:28 +00:00
relyea%netscape.com
78671954d3
Reuse old Object structures rather than build and free them every time.
2000-06-13 21:34:52 +00:00
chrisk%netscape.com
67e0b44687
Fix DSA / BLAPI interface by creating stub functions that have the
...
correct signature for being called via context->update or context->verify.
2000-06-12 23:43:42 +00:00
mcgreer%netscape.com
dd3dd4e3e1
added roots.
2000-06-12 22:39:02 +00:00
chrisk%netscape.com
091d437eca
Sorted output for certutil -L
2000-06-12 22:25:40 +00:00
thayes%netscape.com
8d09de22cf
Fix cleanup code in Decrypt to check for NULL pointers
2000-06-12 20:19:39 +00:00
thayes%netscape.com
d562a12ca9
Add permanent (token) key for supporting Secret Decoder Ring (SDR)
...
Bug 26085
2000-06-10 19:00:45 +00:00
nelsonb%netscape.com
9d2744f5ce
Carry forward fix from NSS 2.8 for servers that don't do ssl2.
2000-06-06 20:32:18 +00:00
mcgreer%netscape.com
12b3563350
iterate context creation for all ciphers when doing performance tests.
2000-06-02 23:09:13 +00:00
mcgreer%netscape.com
8afb3c69cf
fork content version between ns-branded builds and mozilla builds.
2000-06-02 22:35:29 +00:00
mcgreer%netscape.com
0307d81230
Allow for building with internal roots.
2000-06-02 18:37:53 +00:00
mcgreer%netscape.com
883e025f3d
Allow for building with internal root certs.
2000-06-02 18:37:14 +00:00
mcgreer%netscape.com
10d32a14b9
more performance testing
...
* timing of context creation for ciphers
* provide system information
2000-06-02 01:40:29 +00:00
thayes%netscape.com
b2aa68c6fe
Use PK11 fixed key lookup to locate the key value. Fix ENCRYPT/DECRYPT bug in
...
SDR_Decrypt.
2000-05-31 23:06:02 +00:00
relyea%netscape.com
d6dd1b2540
Return to using the thread safe version. The non-thread safe version can double free memory
2000-05-31 22:37:17 +00:00
relyea%netscape.com
2900921f0d
Fix bug which would have bypassed mac checking in TLS
2000-05-31 22:36:02 +00:00
relyea%netscape.com
30767104df
Set up code that allows you to run only some of the SSL tests in a single run.
2000-05-31 22:35:00 +00:00
relyea%netscape.com
5243fc1acd
Fix Environment variable overrides.
2000-05-31 22:34:07 +00:00
mcgreer%netscape.com
e771f6a310
fix static array (found with solaris 2.7 build)
2000-05-31 22:17:47 +00:00
thayes%netscape.com
bbed546e6b
Initial version of header for SDR wrappers
2000-05-27 03:31:51 +00:00
nelsonb%netscape.com
51de4ce7a6
Fix build on NT. Correct link order in PKCS11 directory.
2000-05-27 01:30:29 +00:00
nelsonb%netscape.com
211a572ab0
Add new implementation of the algorithm from RFC 2268. Fix some comments.
2000-05-27 01:29:35 +00:00
mcgreer%netscape.com
23966b8923
fix up file handling.
2000-05-26 23:19:17 +00:00
mcgreer%netscape.com
308ca1e370
break off mode list when next option is reached
2000-05-26 23:09:09 +00:00
mcgreer%netscape.com
9fdfa1ad70
fix dsa self-test
2000-05-26 23:05:05 +00:00
mcgreer%netscape.com
746aedde1f
* allow a directory for tests to be specified
...
* separate pqg generation for dsa test
* fix dsa self-test
2000-05-26 23:04:47 +00:00
thayes%netscape.com
27d1adc752
Initial version of the PK11 wrappers for SDR. This version uses a fixed key id (0)
...
and and 3DES key value.
2000-05-26 22:24:01 +00:00
mcgreer%netscape.com
d5c80d5666
self-test
2000-05-26 07:53:38 +00:00
mcgreer%netscape.com
0b167f4b76
self-test
2000-05-26 07:48:19 +00:00
mcgreer%netscape.com
8fef6c639b
Fix up the hashes to only use one mode. Add self-test capability to bltest (test each of the BLAPI functions). DSA self-test not working at this time.
2000-05-26 07:41:22 +00:00
mcgreer%netscape.com
6a074fdf4a
Allow any build to use moz_import rule. mozilla dbm uses different lib name, so copy it over.
2000-05-25 23:10:35 +00:00
nelsonb%netscape.com
bdcd27c9cb
Use the -g keysize value, instead of DES_KEY_LENGTH, for all crypto
...
algorithms except DES and 3DES.
2000-05-25 22:42:23 +00:00